last executing test programs:
7.797123162s ago: executing program 2 (id=3839):
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000d80), 0xffffffffffffffff)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x1eba02, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
ioctl$auto_BLKALIGNOFF(r0, 0x127a, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x40000008000)
sendmsg$auto_NL80211_CMD_GET_MPATH(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x41811}, 0x20000000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x103b02, 0x0)
sendfile$auto(r3, r3, 0x0, 0x8080000001)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
mmap$auto(0x0, 0x1, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
7.354560541s ago: executing program 1 (id=3840):
r0 = prctl$auto_PR_SCHED_CORE_SHARE_TO(0x7, 0x2, 0xffffffffffffffff, 0x6, 0x3)
r1 = socket(0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r2, 0x6, 0xd, &(0x7f0000000280)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00', 0x4)
bind$auto(0x3, 0x0, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3dc)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, 0x0, 0x8000)
bind$auto(0x3, 0x0, 0x6a)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
syz_genetlink_get_family_id$auto_nl80211(0x0, r1)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r1, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24000000}, 0x400c080)
write$auto(0x3, 0x0, 0xfffffdef)
connect$auto(0x3, 0x0, 0x55)
ioctl$auto_PPPIOCSMRU(r0, 0x40047452, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x8ac81, 0x0)
prctl$auto_PR_SET_THP_DISABLE(0x29, 0x10, 0xf3, 0x24c, 0x4093)
process_vm_readv$auto(0x0, &(0x7f0000000080)={&(0x7f0000000000)="87ff3dadcb0775780ba3f83cd6dcf68d7f9480323d9633fee462fd500e21306311b42dc1e180444f642b921a3ae23a61", 0x9ac}, 0xfce, &(0x7f0000000100)={&(0x7f00000000c0)="c47c2a", 0x6}, 0x3, 0x1000)
6.904550713s ago: executing program 0 (id=3841):
r0 = prctl$auto_PR_SCHED_CORE_SHARE_TO(0x7, 0x2, 0xffffffffffffffff, 0x6, 0x3)
r1 = socket(0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r2, 0x6, 0xd, &(0x7f0000000280)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00', 0x4)
bind$auto(0x3, 0x0, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3dc)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, 0x0, 0x8000)
bind$auto(0x3, 0x0, 0x6a)
syz_genetlink_get_family_id$auto_nl80211(0x0, r1)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r1, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24000000}, 0x400c080)
write$auto(0x3, 0x0, 0xfffffdef)
connect$auto(0x3, 0x0, 0x55)
ioctl$auto_PPPIOCSMRU(r0, 0x40047452, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x8ac81, 0x0)
prctl$auto_PR_SET_THP_DISABLE(0x29, 0x10, 0xf3, 0x24c, 0x4093)
process_vm_readv$auto(0x0, &(0x7f0000000080)={&(0x7f0000000000)="87ff3dadcb0775780ba3f83cd6dcf68d7f9480323d9633fee462fd500e21306311b42dc1e180444f642b921a3ae23a61", 0x9ac}, 0xfce, &(0x7f0000000100)={&(0x7f00000000c0)="c47c2a", 0x6}, 0x3, 0x1000)
6.789810463s ago: executing program 2 (id=3843):
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0xe983, 0x3, 0x14, 0xffffffffffffffff, 0x8000)
swapon$auto(0x0, 0x4)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
adjtimex$auto(&(0x7f0000000000)={0xffff92b5, 0x0, 0x9, 0x3, 0x0, 0x80000000000000, 0x80000000, 0x0, 0x4513, 0x9, 0xffffffffffffffff, {0x7, 0x6}, 0xfffffffc, 0xbfa, 0x9, 0x10, 0x0, 0x2, 0x8, 0xff, 0x10000, 0x100000001, 0x4})
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000180)="85f3fb1553598ec47684db1391b13104cecd41f8be06fc90431b916c8446c26b3c40032338db061ac5ca08be6bcb96d4e6127582af833024c4df19d0886c97fd96de84f3022840c11e57ae3c28994dbd466cbdd3cb09d88508ca6703fc06bb12c87e860ae0f9b0631f057dc6ff5ed57e749a5680")
prctl$auto(0xe, 0x0, 0x3, 0x4, 0x400)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x24)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(r0, 0x8, 0xfffffe02)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x20002, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f0000000000)="7f07")
socketcall$auto(0x8000, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x60980, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
swapon$auto(&(0x7f0000000100)='\',\x00', 0x113)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto(0x3, 0xae41, r3)
6.23532657s ago: executing program 1 (id=3844):
r0 = socket(0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r1, 0x6, 0xd, &(0x7f0000000280)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00', 0x4)
bind$auto(0x3, &(0x7f0000000180)=@in={0x2, 0x3, @multicast1}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3dc)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, 0x0, 0x8000)
bind$auto(0x3, 0x0, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
syz_genetlink_get_family_id$auto_nl80211(0x0, r0)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24000000}, 0x400c080)
write$auto(0x3, 0x0, 0xfffffdef)
connect$auto(0x3, 0x0, 0x55)
ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0x40047452, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x8ac81, 0x0)
prctl$auto_PR_SET_THP_DISABLE(0x29, 0x10, 0xf3, 0x24c, 0x4093)
process_vm_readv$auto(0x0, &(0x7f0000000080)={&(0x7f0000000000)="87ff3dadcb0775780ba3f83cd6dcf68d7f9480323d9633fee462fd500e21306311b42dc1e180444f642b921a3ae23a61", 0x9ac}, 0xfce, &(0x7f0000000100)={&(0x7f00000000c0)="c47c2a", 0x6}, 0x3, 0x1000)
5.875330357s ago: executing program 3 (id=3845):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x3, 0x5)
lseek$auto(0x3, 0x0, 0x1)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0x2000d, 0x3, 0xeb1, 0x404, 0x100010008000)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0xffffffffffffffc0, 0x6, 0x9b72, 0x2, 0x8008)
r0 = socket(0xa, 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x37}}, 0x6e)
sendmmsg$auto(r0, 0x0, 0x9, 0x20000000)
socketpair$auto(0xfffffffe, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/tty/ttyr3/dev\x00', 0x40200, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptye9\x00', 0x101e81, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x8000, 0x0)
r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000980)='/dev/ttye9\x00', 0x102, 0x0)
sendfile$auto(r2, r1, 0x0, 0x10000)
close_range$auto(0x2, 0x8, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
5.867386598s ago: executing program 0 (id=3846):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0xa00, 0x0)
ioctl$auto_RTC_UIE_ON(r0, 0x7003, 0x4)
setsockopt$auto(0x3, 0x29, 0x46, 0x0, 0x808)
prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x8000000000002, 0x0, 0x10000000, 0x3)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r1, &(0x7f0000000040)='//\xf2?', 0x80000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
shmdt$auto(0x0)
socket(0x7, 0x3, 0x2)
read$auto(0xffffffffffffffff, 0x0, 0x20)
set_mempolicy$auto(0x6, 0x0, 0x21)
unshare$auto(0x40000080)
chdir$auto(&(0x7f0000000340)='./file1\x00')
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x40001, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
waitid$auto_P_PID(0x1, 0x0, 0x0, 0xf, &(0x7f0000000440)={{0x7, 0x24}, {0x929a, 0x1ff}, 0x9, 0x3, 0x4032, 0xfffffffffffffff4, 0x4df, 0x0, 0x8, 0x8fb000, 0x0, 0x100, 0x4, 0x3, 0xd, 0x1})
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r3, 0xc0045516, &(0x7f0000000040)=0x5)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x24080, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$auto_RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000180)={0x9, 0x7, 0x8, 0x4, 0x9, 0x100, 0x1ff, 0xfffffffc, 0xfffffffe})
5.644995693s ago: executing program 2 (id=3847):
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
write$auto(0x3, 0x0, 0xfdef)
r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r0, 0x5609, r1)
mmap$auto(0x0, 0x2020009, 0x10, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000180), 0x2000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(0x0, r4)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
mmap$auto(0x2000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
r5 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r5, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xbff, 0x2c, 0x2c, 0x3, 0x2})
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16, @ANYBLOB="1b0026bd7000fbdbdf250300000004000800100003800c00038008001c00", @ANYRES32, @ANYBLOB="12000000893c0d00009f17790485908286dd0000040002"], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
read$auto_vhci_fops_hci_vhci(0xffffffffffffffff, &(0x7f0000000200)=""/36, 0x24)
5.295032798s ago: executing program 3 (id=3848):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0)
pwrite64$auto(r0, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88\xa8s\x1c\b\x06\x8a>)\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0)
preadv$auto(0x3, &(0x7f0000000040)={0x0, 0x5}, 0x3, 0xf8, 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae80, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_register$auto(0x2, 0x1d, 0x0, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x200000)
mremap$auto(0x1, 0x4, 0x3, 0x50a, 0x6)
socket(0x2, 0x1, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
5.037952049s ago: executing program 1 (id=3849):
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000d80), 0xffffffffffffffff)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x1eba02, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
ioctl$auto_BLKALIGNOFF(r0, 0x127a, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x40000008000)
sendmsg$auto_NL80211_CMD_GET_MPATH(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x41811}, 0x20000000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x103b02, 0x0)
sendfile$auto(r3, r3, 0x0, 0x8080000001)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
mmap$auto(0x0, 0x1, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
3.703016377s ago: executing program 0 (id=3850):
r0 = prctl$auto_PR_SCHED_CORE_SHARE_TO(0x7, 0x2, 0xffffffffffffffff, 0x6, 0x3)
r1 = socket(0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r2, 0x6, 0xd, &(0x7f0000000280)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00', 0x4)
bind$auto(0x3, 0x0, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3dc)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, 0x0, 0x8000)
bind$auto(0x3, 0x0, 0x6a)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
syz_genetlink_get_family_id$auto_nl80211(0x0, r1)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r1, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24000000}, 0x400c080)
write$auto(0x3, 0x0, 0xfffffdef)
connect$auto(0x3, 0x0, 0x55)
ioctl$auto_PPPIOCSMRU(r0, 0x40047452, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x8ac81, 0x0)
prctl$auto_PR_SET_THP_DISABLE(0x29, 0x10, 0xf3, 0x24c, 0x4093)
process_vm_readv$auto(0x0, &(0x7f0000000080)={&(0x7f0000000000)="87ff3dadcb0775780ba3f83cd6dcf68d7f9480323d9633fee462fd500e21306311b42dc1e180444f642b921a3ae23a61", 0x9ac}, 0xfce, &(0x7f0000000100)={&(0x7f00000000c0)="c47c2a", 0x6}, 0x3, 0x1000)
3.642823579s ago: executing program 3 (id=3851):
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000d80), 0xffffffffffffffff)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x1eba02, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
ioctl$auto_BLKALIGNOFF(r0, 0x127a, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x40000008000)
sendmsg$auto_NL80211_CMD_GET_MPATH(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x41811}, 0x20000000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/fail_over_mac\x00', 0x103b02, 0x0)
sendfile$auto(r3, r3, 0x0, 0x8080000001)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
mmap$auto(0x0, 0x1, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
3.561684088s ago: executing program 1 (id=3852):
r0 = prctl$auto_PR_SCHED_CORE_SHARE_TO(0x7, 0x2, 0xffffffffffffffff, 0x6, 0x3)
r1 = socket(0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r2, 0x6, 0xd, &(0x7f0000000280)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00', 0x4)
bind$auto(0x3, 0x0, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3dc)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, 0x0, 0x8000)
bind$auto(0x3, 0x0, 0x6a)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
syz_genetlink_get_family_id$auto_nl80211(0x0, r1)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r1, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24000000}, 0x400c080)
write$auto(0x3, 0x0, 0xfffffdef)
connect$auto(0x3, 0x0, 0x55)
ioctl$auto_PPPIOCSMRU(r0, 0x40047452, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x8ac81, 0x0)
prctl$auto_PR_SET_THP_DISABLE(0x29, 0x10, 0xf3, 0x24c, 0x4093)
process_vm_readv$auto(0x0, &(0x7f0000000080)={&(0x7f0000000000)="87ff3dadcb0775780ba3f83cd6dcf68d7f9480323d9633fee462fd500e21306311b42dc1e180444f642b921a3ae23a61", 0x9ac}, 0xfce, &(0x7f0000000100)={&(0x7f00000000c0)="c47c2a", 0x6}, 0x3, 0x1000)
3.528032288s ago: executing program 2 (id=3853):
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000d80), 0xffffffffffffffff)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x1eba02, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
ioctl$auto_BLKALIGNOFF(r0, 0x127a, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x40000008000)
sendmsg$auto_NL80211_CMD_GET_MPATH(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x41811}, 0x20000000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x103b02, 0x0)
sendfile$auto(r3, r3, 0x0, 0x8080000001)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
mmap$auto(0x0, 0x1, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
2.617112385s ago: executing program 0 (id=3854):
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0xe983, 0x3, 0x14, 0xffffffffffffffff, 0x8000)
swapon$auto(0x0, 0x4)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
adjtimex$auto(&(0x7f0000000000)={0xffff92b5, 0x0, 0x9, 0x3, 0x0, 0x80000000000000, 0x80000000, 0x0, 0x4513, 0x9, 0xffffffffffffffff, {0x7, 0x6}, 0xfffffffc, 0xbfa, 0x9, 0x10, 0x0, 0x2, 0x8, 0xff, 0x10000, 0x100000001, 0x4})
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000180)="85f3fb1553598ec47684db1391b13104cecd41f8be06fc90431b916c8446c26b3c40032338db061ac5ca08be6bcb96d4e6127582af833024c4df19d0886c97fd96de84f3022840c11e57ae3c28994dbd466cbdd3cb09d88508ca6703fc06bb12c87e860ae0f9b0631f057dc6ff5ed57e749a5680")
prctl$auto(0xe, 0x0, 0x3, 0x4, 0x400)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x24)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(r0, 0x8, 0xfffffe02)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x20002, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f0000000000)="7f07")
socketcall$auto(0x8000, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x60980, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
swapon$auto(&(0x7f0000000100)='\',\x00', 0x113)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto(0x3, 0xae41, r3)
2.423012495s ago: executing program 3 (id=3855):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
getrlimit$auto(0x3, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ram1\x00', 0x6281, 0x0)
ioctl$auto_BLKZEROOUT(r1, 0x127f, 0x0)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0)
lseek$auto(0x3, 0xffffffffff800002, 0x10)
ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8)
unshare$auto(0x40000080)
write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000000)="b2", 0x1)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0)
write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1)
r4 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$auto(r4, 0x40044620, 0xffffffffffffffff)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/apparmor/parameters/lock_policy\x00', 0x82, 0x0)
sendfile$auto(r5, r5, 0x0, 0x5)
getsockopt$auto_SO_MAX_PACING_RATE(r4, 0x87, 0x2f, &(0x7f0000000040)='&-\x00', &(0x7f0000000080)=0x1c)
2.421580984s ago: executing program 1 (id=3863):
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000d80), 0xffffffffffffffff)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x1eba02, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
ioctl$auto_BLKALIGNOFF(r0, 0x127a, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x40000008000)
sendmsg$auto_NL80211_CMD_GET_MPATH(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x41811}, 0x20000000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x103b02, 0x0)
sendfile$auto(r3, r3, 0x0, 0x8080000001)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
mmap$auto(0x0, 0x1, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
2.421107723s ago: executing program 2 (id=3856):
mmap$auto(0x0, 0x20009, 0x386, 0xeb1, 0x401, 0x8000)
openat$auto_rfcomm_dlc_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x141000, 0x0)
r0 = epoll_create$auto(0x4)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0)
socket(0x1d, 0x3, 0x106)
r1 = pidfd_getfd$auto(0xffffffffffffffff, r0, 0x10000)
listen$auto(r1, 0x2)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x10, 0x2, 0x0)
r3 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x1, 0x0)
ioctl$auto(r3, 0x4018620d, 0x9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3b, 0x0, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0xf08f, 0x6d3f, 0x9, 0x8, 0xfffffffffffffffe]}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_TIOCSPGRP2(r1, 0x5410, &(0x7f00000000c0)="ac2cb364f04e3b0f58ddeb858503145768061960533d4c76d5ba8dad4b4f0c2f40735a7c6bffbdd31c253cf7cf0c7bc5579bb29c13b0256a7c5ba6b3be780258d5318726516f4451099812ea57d0ccfbab919453ced90da859a40b")
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002ec0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000002f80)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x11}, 0x24000802)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/icmp\x00', 0x42500, 0x0)
r6 = socket(0x2, 0x2, 0x1)
sendto$auto(r6, 0x0, 0xf, 0xfffffff8, 0x0, 0x1c)
read$auto_proc_reg_file_ops_compat_inode(r5, &(0x7f0000001080)=""/244, 0xf4)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
listmount$auto(&(0x7f0000000080)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x8}, 0x0, 0xf4240, 0x1)
r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto_PTRACE_SETREGSET(0x4205, r7, 0x1, 0x9)
1.481928995s ago: executing program 0 (id=3857):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0xa00, 0x0)
ioctl$auto_RTC_UIE_ON(r0, 0x7003, 0x4)
setsockopt$auto(0x3, 0x29, 0x46, 0x0, 0x808)
prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x8000000000002, 0x0, 0x10000000, 0x3)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r1, &(0x7f0000000040)='//\xf2?', 0x80000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
shmdt$auto(0x0)
socket(0x7, 0x3, 0x2)
read$auto(0xffffffffffffffff, 0x0, 0x20)
set_mempolicy$auto(0x6, 0x0, 0x21)
unshare$auto(0x40000080)
chdir$auto(&(0x7f0000000340)='./file1\x00')
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x40001, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), 0xffffffffffffffff)
waitid$auto_P_PID(0x1, 0x0, 0x0, 0xf, &(0x7f0000000440)={{0x7, 0x24}, {0x929a, 0x1ff}, 0x9, 0x3, 0x4032, 0xfffffffffffffff4, 0x4df, 0x0, 0x8, 0x8fb000, 0x0, 0x100, 0x4, 0x3, 0xd, 0x1})
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x24080, 0x0)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$auto_RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000180)={0x9, 0x7, 0x8, 0x4, 0x9, 0x100, 0x1ff, 0xfffffffc, 0xfffffffe})
1.319023021s ago: executing program 3 (id=3858):
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000d80), 0xffffffffffffffff)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x1eba02, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
ioctl$auto_BLKALIGNOFF(r0, 0x127a, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x40000008000)
sendmsg$auto_NL80211_CMD_GET_MPATH(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x41811}, 0x20000000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
kexec_load$auto(0x5, 0x2, 0x0, 0x4)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/fail_over_mac\x00', 0x103b02, 0x0)
sendfile$auto(r3, r3, 0x0, 0x8080000001)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
mmap$auto(0x0, 0x1, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
688.026315ms ago: executing program 2 (id=3859):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0xa00, 0x0)
ioctl$auto_RTC_UIE_ON(r0, 0x7003, 0x4)
setsockopt$auto(0x3, 0x29, 0x46, 0x0, 0x808)
prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x8000000000002, 0x0, 0x10000000, 0x3)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r1, &(0x7f0000000040)='//\xf2?', 0x80000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
shmdt$auto(0x0)
socket(0x7, 0x3, 0x2)
read$auto(0xffffffffffffffff, 0x0, 0x20)
set_mempolicy$auto(0x6, 0x0, 0x21)
unshare$auto(0x40000080)
chdir$auto(&(0x7f0000000340)='./file1\x00')
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x40001, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
waitid$auto_P_PID(0x1, 0x0, 0x0, 0xf, &(0x7f0000000440)={{0x7, 0x24}, {0x929a, 0x1ff}, 0x9, 0x3, 0x4032, 0xfffffffffffffff4, 0x4df, 0x0, 0x8, 0x8fb000, 0x0, 0x100, 0x4, 0x3, 0xd, 0x1})
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r3, 0xc0045516, &(0x7f0000000040)=0x5)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x24080, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$auto_RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000180)={0x9, 0x7, 0x8, 0x4, 0x9, 0x100, 0x1ff, 0xfffffffc, 0xfffffffe})
620.091997ms ago: executing program 1 (id=3860):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0)
pwrite64$auto(r0, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88\xa8s\x1c\b\x06\x8a>)\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0)
preadv$auto(0x3, &(0x7f0000000040)={0x0, 0x5}, 0x3, 0xf8, 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae80, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_register$auto(0x2, 0x1d, 0x0, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x200000)
mremap$auto(0x1, 0x4, 0x3, 0x50a, 0x6)
socket(0x2, 0x1, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
317.249874ms ago: executing program 3 (id=3861):
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000d80), 0xffffffffffffffff)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x1eba02, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
ioctl$auto_BLKALIGNOFF(r0, 0x127a, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x40000008000)
sendmsg$auto_NL80211_CMD_GET_MPATH(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x41811}, 0x20000000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x103b02, 0x0)
sendfile$auto(r3, r3, 0x0, 0x8080000001)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
mmap$auto(0x0, 0x1, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
0s ago: executing program 0 (id=3862):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000004400), r1)
sendmsg$auto_NFSD_CMD_VERSION_SET(r1, &(0x7f0000004580)={0x0, 0x0, &(0x7f0000004540)={0x0, 0xa4}, 0x1, 0x0, 0x0, 0x8850}, 0x0)
preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2e)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0)
r2 = epoll_create$auto(0x4)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0)
openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, 0x0, 0x401, 0x0)
write$auto(0x3, 0x0, 0x5c8)
statmount$auto(0x0, &(0x7f0000000180)={0x770, 0xfffffffe, 0x8, 0x4, 0x4005, 0x0, 0x5, 0x400, 0x3, 0x9, 0x6, 0x6, 0x4, 0x11ffffffffffb, 0xb2, 0x2, 0x6, 0x10, 0x80, 0x7ff, 0x8000, 0x1, 0x1, 0x202, 0x9, 0xbca7, 0x4, 0x0, 0x0, 0x0, 0x694, [0x2, 0x6, 0x0, 0x5, 0x0, 0x0, 0x20000000000, 0x0, 0x4, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffc01, 0x7fffffff, 0xfffffffffffffffb, 0x0, 0x9, 0x2000000, 0xfffffffffffffffe, 0x0, 0x8, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x1, 0x0, 0x7fffffff, 0x0, 0x0, 0x20000000000000, 0x0, 0x1000000000000200, 0x0, 0x400, 0x96, 0x4000000000009, 0x4, 0xe17, 0x0, 0x6]}, 0x1fe, 0x1)
r3 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
writev$auto(r2, &(0x7f0000000100)={&(0x7f00000000c0), 0x80000000}, 0x9)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x480001, 0x0)
write$auto(r4, 0x0, 0x100000a3d9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
timerfd_gettime$auto(0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x40009, 0x3, 0x19, 0xffffffffffffffff, 0x28000)
madvise$auto(0x0, 0x2003f0, 0x15)
ioctl$auto__ctl_fops_dm_ioctl(r3, 0xfffffffffffffd03, &(0x7f00000001c0))
kernel console output (not intermixed with test programs):
4'.
[ 523.426796][T13291] netlink: 54041 bytes leftover after parsing attributes in process `syz.1.1404'.
[ 523.823521][T13304] zram: Cannot change disksize for initialized device
[ 523.868097][T13298] random: crng reseeded on system resumption
[ 524.928053][T13311] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.3.1412: bg 1: bad block bitmap checksum
[ 524.947851][T13311] EXT4-fs error (device sda1) in ext4_mb_clear_bb:6687: Filesystem failed CRC
[ 525.015904][T13313] random: crng reseeded on system resumption
[ 526.919161][T13349] Invalid ELF header magic: != ELF
[ 527.959571][T13366] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1420'.
[ 527.970878][T13366] netlink: 54041 bytes leftover after parsing attributes in process `syz.3.1420'.
[ 528.921125][T13369] random: crng reseeded on system resumption
[ 529.528706][T13384] random: crng reseeded on system resumption
[ 530.263128][ T29] audit: type=1800 audit(2147483686.621:20): pid=13389 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1427" name="lu_gp_id" dev="configfs" ino=45818 res=0 errno=0
[ 530.285862][T13389] kstrtoul() returned -22 for lu_gp_id
[ 530.334004][T13391] zswap: compressor not available
[ 532.910705][T13433] random: crng reseeded on system resumption
[ 534.130412][T13458] random: crng reseeded on system resumption
[ 536.035562][T13484] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1444'.
[ 536.061445][ T29] audit: type=1800 audit(2147483692.411:21): pid=13468 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1440" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[ 536.123592][T13484] netlink: 54021 bytes leftover after parsing attributes in process `syz.0.1444'.
[ 537.098745][T13499] random: crng reseeded on system resumption
[ 540.465757][T13539] Invalid ELF header magic: != ELF
[ 540.989678][T13545] random: crng reseeded on system resumption
[ 542.482991][T13559] random: crng reseeded on system resumption
[ 544.906224][T13579] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 544.909024][T13579] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 546.181753][T13608] zram: Cannot change disksize for initialized device
[ 546.461351][T13614] zram: Cannot change disksize for initialized device
[ 547.127848][T13628] FAULT_INJECTION: forcing a failure.
[ 547.127848][T13628] name failslab, interval 1, probability 0, space 0, times 0
[ 547.240155][T13628] CPU: 0 UID: 0 PID: 13628 Comm: syz.2.1468 Tainted: G L syzkaller #0 PREEMPT(full)
[ 547.240203][T13628] Tainted: [L]=SOFTLOCKUP
[ 547.240214][T13628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 547.240230][T13628] Call Trace:
[ 547.240239][T13628]
[ 547.240249][T13628] dump_stack_lvl+0x100/0x190
[ 547.240296][T13628] should_fail_ex.cold+0x5/0xa
[ 547.240327][T13628] ? fib_default_rule_add+0x4f/0x420
[ 547.240354][T13628] should_failslab+0xc2/0x120
[ 547.240398][T13628] __kmalloc_noprof+0xe0/0x850
[ 547.240441][T13628] fib_default_rule_add+0x4f/0x420
[ 547.240473][T13628] ipmr_net_init+0x1f1/0x4a0
[ 547.240502][T13628] ? __pfx_ipmr_net_init+0x10/0x10
[ 547.240530][T13628] ops_init+0x1e2/0x5f0
[ 547.240571][T13628] setup_net+0x118/0x3a0
[ 547.240602][T13628] ? __pfx_setup_net+0x10/0x10
[ 547.240632][T13628] ? lockdep_init_map_type+0x5c/0x250
[ 547.240670][T13628] ? mutex_init_lockep+0x110/0x150
[ 547.240714][T13628] copy_net_ns+0x46f/0x7c0
[ 547.240747][T13628] create_new_namespaces+0x3ea/0xac0
[ 547.240782][T13628] copy_namespaces+0x468/0x5e0
[ 547.240813][T13628] copy_process+0x3226/0x7a10
[ 547.240864][T13628] ? __pfx_copy_process+0x10/0x10
[ 547.240896][T13628] ? find_held_lock+0x2b/0x80
[ 547.240958][T13628] kernel_clone+0xfc/0x9a0
[ 547.241019][T13628] ? __pfx_futex_wait+0x10/0x10
[ 547.241062][T13628] ? __pfx_kernel_clone+0x10/0x10
[ 547.241103][T13628] ? finish_task_switch.isra.0+0x205/0xb80
[ 547.241143][T13628] __do_sys_clone+0xd9/0x120
[ 547.241180][T13628] ? __pfx___do_sys_clone+0x10/0x10
[ 547.241211][T13628] ? find_held_lock+0x2b/0x80
[ 547.241283][T13628] do_syscall_64+0x106/0xf80
[ 547.241308][T13628] ? clear_bhb_loop+0x40/0x90
[ 547.241342][T13628] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 547.241370][T13628] RIP: 0033:0x7f34f259c139
[ 547.241395][T13628] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 547.241424][T13628] RSP: 002b:00007f34f33cffd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 547.241451][T13628] RAX: ffffffffffffffda RBX: 00007f34f2816180 RCX: 00007f34f259c139
[ 547.241470][T13628] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211
[ 547.241488][T13628] RBP: 00007f34f26327e0 R08: 0000000000000000 R09: 0000000000000000
[ 547.241505][T13628] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 547.241522][T13628] R13: 00007f34f2816218 R14: 00007f34f2816180 R15: 00007fff6a986ff8
[ 547.241560][T13628]
[ 548.240580][T13639] random: crng reseeded on system resumption
[ 548.677826][T13646] Invalid ELF header magic: != ELF
[ 549.264115][T13653] random: crng reseeded on system resumption
[ 549.656363][T13661] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 549.714499][T13661] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 550.819955][T13679] input: j�J�Ǹ-9%vJ86� as /devices/virtual/input/input29
[ 552.586850][T13701] random: crng reseeded on system resumption
[ 554.521849][T13728] random: crng reseeded on system resumption
[ 555.231948][T13740] random: crng reseeded on system resumption
[ 555.860635][T13760] FAULT_INJECTION: forcing a failure.
[ 555.860635][T13760] name failslab, interval 1, probability 0, space 0, times 0
[ 555.879599][T13760] CPU: 0 UID: 0 PID: 13760 Comm: syz.3.1494 Tainted: G L syzkaller #0 PREEMPT(full)
[ 555.879647][T13760] Tainted: [L]=SOFTLOCKUP
[ 555.879657][T13760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 555.879674][T13760] Call Trace:
[ 555.879684][T13760]
[ 555.879695][T13760] dump_stack_lvl+0x100/0x190
[ 555.879742][T13760] should_fail_ex.cold+0x5/0xa
[ 555.879783][T13760] should_failslab+0xc2/0x120
[ 555.879826][T13760] kmem_cache_alloc_noprof+0x7b/0x6e0
[ 555.879863][T13760] ? __proc_create+0x2cb/0x8c0
[ 555.879910][T13760] __proc_create+0x2cb/0x8c0
[ 555.879950][T13760] ? __pfx___proc_create+0x10/0x10
[ 555.879993][T13760] ? _raw_write_unlock+0x28/0x50
[ 555.880036][T13760] ? proc_register+0x559/0x8a0
[ 555.880080][T13760] proc_create_reg+0x75/0x170
[ 555.880121][T13760] ? __pfx_fib_triestat_seq_show+0x10/0x10
[ 555.880166][T13760] proc_create_net_single+0x86/0x180
[ 555.880206][T13760] ? __pfx_proc_create_net_single+0x10/0x10
[ 555.880249][T13760] ? __pfx___netlink_kernel_create+0x10/0x10
[ 555.880288][T13760] fib_proc_init+0xa9/0x1d0
[ 555.880324][T13760] fib_net_init+0x2af/0x3f0
[ 555.880352][T13760] ? is_module_address+0x69/0xf0
[ 555.880389][T13760] ? __pfx_fib_net_init+0x10/0x10
[ 555.880418][T13760] ? timer_init_key+0x150/0x340
[ 555.880446][T13760] ? __pfx_nl_fib_input+0x10/0x10
[ 555.880480][T13760] ? devinet_init_net+0x56c/0x8d0
[ 555.880518][T13760] ? __pfx_fib_net_init+0x10/0x10
[ 555.880545][T13760] ops_init+0x1e2/0x5f0
[ 555.880576][T13760] setup_net+0x118/0x3a0
[ 555.880605][T13760] ? __pfx_setup_net+0x10/0x10
[ 555.880631][T13760] ? lockdep_init_map_type+0x5c/0x250
[ 555.880670][T13760] ? mutex_init_lockep+0x110/0x150
[ 555.880707][T13760] copy_net_ns+0x46f/0x7c0
[ 555.880737][T13760] create_new_namespaces+0x3ea/0xac0
[ 555.880770][T13760] unshare_nsproxy_namespaces+0xc3/0x1f0
[ 555.880802][T13760] ksys_unshare+0x455/0xab0
[ 555.880835][T13760] ? __pfx_ksys_unshare+0x10/0x10
[ 555.880878][T13760] __x64_sys_unshare+0x31/0x40
[ 555.880909][T13760] do_syscall_64+0x106/0xf80
[ 555.880938][T13760] ? clear_bhb_loop+0x40/0x90
[ 555.880973][T13760] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 555.880998][T13760] RIP: 0033:0x7f184959c139
[ 555.881026][T13760] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 555.881054][T13760] RSP: 002b:00007f184a50f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 555.881078][T13760] RAX: ffffffffffffffda RBX: 00007f1849816090 RCX: 00007f184959c139
[ 555.881096][T13760] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 555.881111][T13760] RBP: 00007f18496327e0 R08: 0000000000000000 R09: 0000000000000000
[ 555.881127][T13760] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 555.881142][T13760] R13: 00007f1849816128 R14: 00007f1849816090 R15: 00007ffc2539ba78
[ 555.881179][T13760]
[ 555.910415][T13762] random: crng reseeded on system resumption
[ 556.887997][T13768] random: crng reseeded on system resumption
[ 557.330862][T13788] random: crng reseeded on system resumption
[ 558.932279][T13811] Invalid ELF header magic: != ELF
[ 559.648995][T13819] random: crng reseeded on system resumption
[ 561.539707][T13861] random: crng reseeded on system resumption
[ 563.036809][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 563.046519][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 563.561211][T13895] random: crng reseeded on system resumption
[ 566.256154][T13947] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1528'.
[ 566.259109][T13947] netlink: 'syz.2.1528': attribute type 1 has an invalid length.
[ 566.259135][T13947] netlink: 51505 bytes leftover after parsing attributes in process `syz.2.1528'.
[ 568.038335][T13974] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1534'.
[ 568.088063][T13974] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1534'.
[ 568.471414][T13978] random: crng reseeded on system resumption
[ 569.733920][ T7001] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[ 569.733958][ T7001] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[ 569.751898][ T7001] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[ 569.751962][ T7001] Bluetooth: hci2: adv larger than maximum supported
[ 569.759377][ T7001] Bluetooth: hci2: adv larger than maximum supported
[ 569.766058][ T7001] Bluetooth: hci2: Malformed LE Event: 0x0d
[ 571.234907][T14019] random: crng reseeded on system resumption
[ 571.774535][T14027] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 572.652678][T14051] Invalid ELF header magic: != ELF
[ 573.032470][ T29] audit: type=1800 audit(2147483729.381:22): pid=14037 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1547" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[ 574.794414][T14088] random: crng reseeded on system resumption
[ 575.477902][T14091] random: crng reseeded on system resumption
[ 575.745776][ T7001] Bluetooth: hci0: ACL packet for unknown connection handle 3680
[ 577.106726][T14119] random: crng reseeded on system resumption
[ 578.957128][T14146] random: crng reseeded on system resumption
[ 579.577917][T14151] random: crng reseeded on system resumption
[ 581.517539][T14174] random: crng reseeded on system resumption
[ 581.965190][T14141] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 582.694790][T14197] random: crng reseeded on system resumption
[ 582.920412][T14189] Invalid ELF header magic: != ELF
[ 583.727691][T14213] random: crng reseeded on system resumption
[ 584.570617][T14222] hub 1-0:1.0: USB hub found
[ 584.578104][T14222] hub 1-0:1.0: 1 port detected
[ 585.935147][T14238] FAULT_INJECTION: forcing a failure.
[ 585.935147][T14238] name failslab, interval 1, probability 0, space 0, times 0
[ 586.002500][T14238] CPU: 0 UID: 0 PID: 14238 Comm: syz.3.1585 Tainted: G L syzkaller #0 PREEMPT(full)
[ 586.002527][T14238] Tainted: [L]=SOFTLOCKUP
[ 586.002533][T14238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 586.002543][T14238] Call Trace:
[ 586.002548][T14238]
[ 586.002554][T14238] dump_stack_lvl+0x100/0x190
[ 586.002581][T14238] should_fail_ex.cold+0x5/0xa
[ 586.002599][T14238] ? net_alloc_generic+0x1e/0x70
[ 586.002614][T14238] should_failslab+0xc2/0x120
[ 586.002636][T14238] __kmalloc_noprof+0xe0/0x850
[ 586.002659][T14238] net_alloc_generic+0x1e/0x70
[ 586.002673][T14238] copy_net_ns+0xc6/0x7c0
[ 586.002688][T14238] ? copy_cgroup_ns+0x71/0x970
[ 586.002705][T14238] create_new_namespaces+0x3ea/0xac0
[ 586.002724][T14238] unshare_nsproxy_namespaces+0xc3/0x1f0
[ 586.002740][T14238] ksys_unshare+0x455/0xab0
[ 586.002759][T14238] ? __pfx_ksys_unshare+0x10/0x10
[ 586.002783][T14238] __x64_sys_unshare+0x31/0x40
[ 586.002800][T14238] do_syscall_64+0x106/0xf80
[ 586.002814][T14238] ? clear_bhb_loop+0x40/0x90
[ 586.002832][T14238] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 586.002848][T14238] RIP: 0033:0x7f184959c139
[ 586.002861][T14238] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 586.002876][T14238] RSP: 002b:00007f184a530028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 586.002891][T14238] RAX: ffffffffffffffda RBX: 00007f1849815fa0 RCX: 00007f184959c139
[ 586.002902][T14238] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 586.002910][T14238] RBP: 00007f18496327e0 R08: 0000000000000000 R09: 0000000000000000
[ 586.002919][T14238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 586.002928][T14238] R13: 00007f1849816038 R14: 00007f1849815fa0 R15: 00007ffc2539ba78
[ 586.002946][T14238]
[ 586.443730][T14247] random: crng reseeded on system resumption
[ 586.969929][T14257] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1589'.
[ 587.018173][T14257] FAULT_INJECTION: forcing a failure.
[ 587.018173][T14257] name failslab, interval 1, probability 0, space 0, times 0
[ 587.018238][T14257] CPU: 1 UID: 0 PID: 14257 Comm: syz.1.1589 Tainted: G L syzkaller #0 PREEMPT(full)
[ 587.018279][T14257] Tainted: [L]=SOFTLOCKUP
[ 587.018289][T14257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 587.018305][T14257] Call Trace:
[ 587.018314][T14257]
[ 587.018333][T14257] dump_stack_lvl+0x100/0x190
[ 587.018381][T14257] should_fail_ex.cold+0x5/0xa
[ 587.018415][T14257] should_failslab+0xc2/0x120
[ 587.018458][T14257] __kmalloc_node_track_caller_noprof+0xe3/0x850
[ 587.018497][T14257] ? kvasprintf_const+0x66/0x1a0
[ 587.018544][T14257] kvasprintf+0xbc/0x150
[ 587.018583][T14257] ? __pfx_kvasprintf+0x10/0x10
[ 587.018624][T14257] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 587.018665][T14257] ? lockdep_init_map_type+0x5c/0x250
[ 587.018708][T14257] kvasprintf_const+0x66/0x1a0
[ 587.018749][T14257] kobject_set_name_vargs+0x5a/0x140
[ 587.018785][T14257] device_create_groups_vargs+0x1b1/0x270
[ 587.018832][T14257] device_create+0xed/0x130
[ 587.018873][T14257] ? __pfx_device_create+0x10/0x10
[ 587.018913][T14257] ? is_console_locked+0x9/0x20
[ 587.018942][T14257] ? con_is_visible+0x65/0x150
[ 587.018979][T14257] ? csi_J+0x57e/0xad0
[ 587.019027][T14257] vcs_make_sysfs+0x32/0x80
[ 587.019065][T14257] vc_allocate+0x539/0x880
[ 587.019108][T14257] ? __pfx_vc_allocate+0x10/0x10
[ 587.019162][T14257] con_install+0xa1/0x620
[ 587.019191][T14257] ? __pfx_con_install+0x10/0x10
[ 587.019223][T14257] ? __pfx_con_install+0x10/0x10
[ 587.019249][T14257] tty_init_dev.part.0+0x9e/0x470
[ 587.019283][T14257] tty_open+0xa63/0xfa0
[ 587.019325][T14257] ? __pfx_tty_open+0x10/0x10
[ 587.019353][T14257] ? chrdev_open+0x589/0x6a0
[ 587.019393][T14257] ? chrdev_open+0x589/0x6a0
[ 587.019440][T14257] ? __pfx_tty_open+0x10/0x10
[ 587.019471][T14257] chrdev_open+0x234/0x6a0
[ 587.019513][T14257] ? __pfx_chrdev_open+0x10/0x10
[ 587.019555][T14257] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 587.019605][T14257] do_dentry_open+0x6d8/0x1660
[ 587.019644][T14257] ? __pfx_chrdev_open+0x10/0x10
[ 587.019694][T14257] vfs_open+0x82/0x3f0
[ 587.019727][T14257] path_openat+0x208c/0x31a0
[ 587.019781][T14257] ? __pfx_path_openat+0x10/0x10
[ 587.019836][T14257] do_file_open+0x20e/0x430
[ 587.019879][T14257] ? __pfx_do_file_open+0x10/0x10
[ 587.019947][T14257] ? alloc_fd+0x476/0x790
[ 587.019990][T14257] ? do_getname+0x191/0x390
[ 587.020022][T14257] do_sys_openat2+0x10d/0x1e0
[ 587.020054][T14257] ? __pfx_do_sys_openat2+0x10/0x10
[ 587.020099][T14257] __x64_sys_openat+0x12d/0x210
[ 587.020131][T14257] ? __pfx___x64_sys_openat+0x10/0x10
[ 587.020178][T14257] do_syscall_64+0x106/0xf80
[ 587.020204][T14257] ? clear_bhb_loop+0x40/0x90
[ 587.020239][T14257] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 587.020269][T14257] RIP: 0033:0x7fcba299c139
[ 587.020293][T14257] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 587.020328][T14257] RSP: 002b:00007fcba37cf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 587.020355][T14257] RAX: ffffffffffffffda RBX: 00007fcba2c15fa0 RCX: 00007fcba299c139
[ 587.020374][T14257] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 587.020393][T14257] RBP: 00007fcba2a327e0 R08: 0000000000000000 R09: 0000000000000000
[ 587.020410][T14257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 587.020427][T14257] R13: 00007fcba2c16038 R14: 00007fcba2c15fa0 R15: 00007ffe15c3b238
[ 587.020467][T14257]
[ 589.355707][T14291] random: crng reseeded on system resumption
[ 590.742605][T14305] bridge0: port 3(team0) entered blocking state
[ 590.799560][T14305] bridge0: port 3(team0) entered disabled state
[ 590.845062][T14305] team0: entered allmulticast mode
[ 590.885826][T14305] team_slave_0: entered allmulticast mode
[ 590.896709][T14305] team_slave_1: entered allmulticast mode
[ 590.907324][T14305] team0: entered promiscuous mode
[ 590.912470][T14305] team_slave_0: entered promiscuous mode
[ 590.981498][T14305] team_slave_1: entered promiscuous mode
[ 591.074883][T14305] bridge0: port 3(team0) entered blocking state
[ 591.081433][T14305] bridge0: port 3(team0) entered forwarding state
[ 592.285769][T14336] Invalid ELF header magic: != ELF
[ 592.397451][T14339] binder: 14338:14339 ioctl c018620c 200000000040 returned -22
[ 592.693793][T14343] random: crng reseeded on system resumption
[ 593.458950][ T29] audit: type=1804 audit(2147483749.821:23): pid=14360 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1612" name="/newroot/404/file0" dev="tmpfs" ino=2073 res=1 errno=0
[ 593.483482][T14360] zram0: detected capacity change from 8 to 0
[ 593.595728][ T29] audit: type=1804 audit(2147483749.821:24): pid=14360 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1612" name="/newroot/404/file0" dev="tmpfs" ino=2073 res=1 errno=0
[ 594.138005][ T7001] Bluetooth: hci2: unexpected event 0x12 length: 440 > 8
[ 595.039145][T14397] netlink: 'syz.3.1618': attribute type 1 has an invalid length.
[ 595.927929][T14378] kexec: Could not allocate control_code_buffer
[ 596.297487][T14411] random: crng reseeded on system resumption
[ 597.060341][ T7001] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[ 597.185777][T14424] Invalid ELF header magic: != ELF
[ 597.802346][T14445] netlink: 'syz.1.1629': attribute type 1 has an invalid length.
[ 598.764788][T14466] random: crng reseeded on system resumption
[ 599.106609][ T6991] Bluetooth: hci3: command 0x0406 tx timeout
[ 599.897856][ T1864] usb usb40-port2: attempt power cycle
[ 600.446212][T14485] Process accounting resumed
[ 600.474402][ T1864] usb usb40-port2: unable to enumerate USB device
[ 600.693780][T14501] netlink: 350 bytes leftover after parsing attributes in process `syz.1.1639'.
[ 601.135838][T14509] netlink: 'syz.3.1642': attribute type 1 has an invalid length.
[ 601.195724][ T7001] Bluetooth: hci3: command 0x0406 tx timeout
[ 601.437193][T14519] random: crng reseeded on system resumption
[ 602.168249][T14530] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[ 602.863349][T14550] random: crng reseeded on system resumption
[ 604.431840][T14569] random: crng reseeded on system resumption
[ 604.980902][T14577] random: crng reseeded on system resumption
[ 608.291142][T14617] Invalid ELF header magic: != ELF
[ 609.112847][T14634] random: crng reseeded on system resumption
[ 610.317970][T14641] random: crng reseeded on system resumption
[ 611.082762][T14657] : Can't lookup blockdev
[ 611.088032][T14657] FAULT_INJECTION: forcing a failure.
[ 611.088032][T14657] name failslab, interval 1, probability 0, space 0, times 0
[ 611.119598][T14657] CPU: 1 UID: 0 PID: 14657 Comm: syz.3.1673 Tainted: G L syzkaller #0 PREEMPT(full)
[ 611.119644][T14657] Tainted: [L]=SOFTLOCKUP
[ 611.119654][T14657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 611.119670][T14657] Call Trace:
[ 611.119679][T14657]
[ 611.119691][T14657] dump_stack_lvl+0x100/0x190
[ 611.119737][T14657] should_fail_ex.cold+0x5/0xa
[ 611.119770][T14657] should_failslab+0xc2/0x120
[ 611.119811][T14657] kmem_cache_alloc_lru_noprof+0x80/0x6e0
[ 611.119848][T14657] ? __d_alloc+0x34/0xa80
[ 611.119899][T14657] __d_alloc+0x34/0xa80
[ 611.119944][T14657] d_alloc_pseudo+0x1c/0xc0
[ 611.119977][T14657] alloc_file_pseudo+0xcf/0x230
[ 611.120010][T14657] ? __pfx_alloc_file_pseudo+0x10/0x10
[ 611.120051][T14657] __shmem_file_setup+0x1a3/0x330
[ 611.120085][T14657] shmem_zero_setup+0x93/0x1b0
[ 611.120124][T14657] __mmap_region+0x20b5/0x2760
[ 611.120165][T14657] ? __pfx___mmap_region+0x10/0x10
[ 611.120224][T14657] ? finish_task_switch.isra.0+0x205/0xb80
[ 611.120252][T14657] ? lockdep_hardirqs_on+0x78/0x100
[ 611.120296][T14657] ? finish_task_switch.isra.0+0x205/0xb80
[ 611.120408][T14657] ? rcu_is_watching+0x12/0xc0
[ 611.120448][T14657] ? cap_capable+0x107/0x460
[ 611.120483][T14657] mmap_region+0x180/0x3e0
[ 611.120521][T14657] do_mmap+0xc63/0x12f0
[ 611.120562][T14657] ? __pfx_do_mmap+0x10/0x10
[ 611.120597][T14657] ? __pfx_down_write_killable+0x10/0x10
[ 611.120632][T14657] vm_mmap_pgoff+0x29e/0x470
[ 611.120678][T14657] ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 611.120727][T14657] ? __x64_sys_futex+0x34f/0x4d0
[ 611.120754][T14657] ? __x64_sys_futex+0x358/0x4d0
[ 611.120789][T14657] ksys_mmap_pgoff+0x7d/0x5b0
[ 611.120834][T14657] __x64_sys_mmap+0x125/0x190
[ 611.120878][T14657] do_syscall_64+0x106/0xf80
[ 611.120904][T14657] ? clear_bhb_loop+0x40/0x90
[ 611.120944][T14657] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 611.120975][T14657] RIP: 0033:0x7f184959c139
[ 611.120998][T14657] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 611.121028][T14657] RSP: 002b:00007f184a530028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 611.121056][T14657] RAX: ffffffffffffffda RBX: 00007f1849815fa0 RCX: 00007f184959c139
[ 611.121074][T14657] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000
[ 611.121090][T14657] RBP: 00007f18496327e0 R08: fffffffffffffffa R09: 0000000000008000
[ 611.121105][T14657] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[ 611.121119][T14657] R13: 00007f1849816038 R14: 00007f1849815fa0 R15: 00007ffc2539ba78
[ 611.121152][T14657]
[ 615.386914][T14698] random: crng reseeded on system resumption
[ 617.539213][T14728] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1688'.
[ 618.909353][T14748] random: crng reseeded on system resumption
[ 621.049024][T14780] netlink: 252 bytes leftover after parsing attributes in process `syz.1.1697'.
[ 621.107541][T14780] netlink: 252 bytes leftover after parsing attributes in process `syz.1.1697'.
[ 621.661335][T14774] netlink: 'syz.2.1698': attribute type 23 has an invalid length.
[ 623.344274][T14802] random: crng reseeded on system resumption
[ 624.473667][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 624.480861][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 625.451764][T14836] usb usb24: usbfs: process 14836 (syz.1.1710) did not claim interface 0 before use
[ 627.622503][T14842] kexec: Could not allocate control_code_buffer
[ 627.924603][T14866] netlink: 186 bytes leftover after parsing attributes in process `syz.2.1715'.
[ 629.666511][ T6991] Bluetooth: hci0: command 0x0406 tx timeout
[ 629.674494][T14858] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[ 629.819592][T14858] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 629.867467][T14858] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 629.873630][T14858] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 630.629186][T14863] Process accounting paused
[ 631.466652][T14914] random: crng reseeded on system resumption
[ 631.747929][ T6991] Bluetooth: hci1: command 0x0406 tx timeout
[ 631.907330][ T6991] Bluetooth: hci3: command 0x0406 tx timeout
[ 631.913344][ T7001] Bluetooth: hci2: command 0x0406 tx timeout
[ 633.623157][T14966] random: crng reseeded on system resumption
[ 634.561429][T14993] random: crng reseeded on system resumption
[ 635.384469][T15003] random: crng reseeded on system resumption
[ 636.012648][T15000] Invalid ELF header magic: != ELF
[ 636.840593][T15028] random: crng reseeded on system resumption
[ 637.677201][T15046] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 637.683534][T15046] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 637.689933][T15046] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 637.707515][T15046] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 638.394086][T15050] random: crng reseeded on system resumption
[ 638.970487][T15061] NFSD: Failed to start, no listeners configured.
[ 639.165247][T15057] Invalid ELF header magic: != ELF
[ 639.746535][ T6991] Bluetooth: hci3: command 0x0406 tx timeout
[ 639.752660][ T7001] Bluetooth: hci2: command 0x0406 tx timeout
[ 639.759683][T12961] Bluetooth: hci1: command 0x0406 tx timeout
[ 639.761621][T15077] net_ratelimit: 5 callbacks suppressed
[ 639.761645][T15077] netlink: NAT attribute has 1 unknown bytes
[ 639.766459][ T7001] Bluetooth: hci0: command 0x0406 tx timeout
[ 640.731551][T15095] random: crng reseeded on system resumption
[ 642.534187][T15115] FAULT_INJECTION: forcing a failure.
[ 642.534187][T15115] name failslab, interval 1, probability 0, space 0, times 0
[ 642.629444][T15115] CPU: 1 UID: 0 PID: 15115 Comm: syz.3.1759 Tainted: G L syzkaller #0 PREEMPT(full)
[ 642.629477][T15115] Tainted: [L]=SOFTLOCKUP
[ 642.629483][T15115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 642.629493][T15115] Call Trace:
[ 642.629498][T15115]
[ 642.629505][T15115] dump_stack_lvl+0x100/0x190
[ 642.629533][T15115] should_fail_ex.cold+0x5/0xa
[ 642.629551][T15115] should_failslab+0xc2/0x120
[ 642.629573][T15115] kmem_cache_alloc_noprof+0x7b/0x6e0
[ 642.629591][T15115] ? pidfs_register_pid+0x97/0x200
[ 642.629611][T15115] ? __pfx___might_resched+0x10/0x10
[ 642.629634][T15115] pidfs_register_pid+0x97/0x200
[ 642.629654][T15115] unix_socketpair+0xda/0x8c0
[ 642.629676][T15115] __sys_socketpair+0x2f7/0x5b0
[ 642.629697][T15115] ? __pfx___sys_socketpair+0x10/0x10
[ 642.629717][T15115] ? xfd_validate_state+0x129/0x190
[ 642.629750][T15115] __x64_sys_socketpair+0x96/0x100
[ 642.629770][T15115] ? lockdep_hardirqs_on+0x78/0x100
[ 642.629794][T15115] do_syscall_64+0x106/0xf80
[ 642.629808][T15115] ? clear_bhb_loop+0x40/0x90
[ 642.629826][T15115] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 642.629840][T15115] RIP: 0033:0x7f184959c139
[ 642.629854][T15115] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 642.629868][T15115] RSP: 002b:00007f184a530028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[ 642.629883][T15115] RAX: ffffffffffffffda RBX: 00007f1849815fa0 RCX: 00007f184959c139
[ 642.629892][T15115] RDX: 8000000000000000 RSI: 0000000000000002 RDI: 0000000000000001
[ 642.629901][T15115] RBP: 00007f18496327e0 R08: 0000000000000000 R09: 0000000000000000
[ 642.629910][T15115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 642.629919][T15115] R13: 00007f1849816038 R14: 00007f1849815fa0 R15: 00007ffc2539ba78
[ 642.629941][T15115]
[ 643.560512][T15129] netlink: 'syz.3.1761': attribute type 1 has an invalid length.
[ 644.337589][T15136] random: crng reseeded on system resumption
[ 644.747541][T15153] misc userio: Invalid payload size
[ 645.141305][T15151] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 645.147746][T15151] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 645.156238][T15151] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 645.164278][T15151] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 645.292261][T15152] zswap: compressor not available
[ 645.762418][T15163] random: crng reseeded on system resumption
[ 646.533888][T15180] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1771'.
[ 646.545217][ T29] audit: type=1800 audit(2147483802.881:25): pid=15180 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1771" name="dbroot" dev="configfs" ino=54623 res=0 errno=0
[ 646.652735][T15181] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1771'.
[ 646.834348][T15186] futex_wake_op: syz.2.1773 tries to shift op by -1; fix this program
[ 647.021777][T15196] random: crng reseeded on system resumption
[ 647.189252][ T7001] Bluetooth: hci3: command 0x0406 tx timeout
[ 647.195399][T15078] Bluetooth: hci2: command 0x0406 tx timeout
[ 647.201656][ T6991] Bluetooth: hci1: command 0x0406 tx timeout
[ 647.208585][T12961] Bluetooth: hci0: command 0x0406 tx timeout
[ 647.438235][T15202] random: crng reseeded on system resumption
[ 648.065837][T15215] random: crng reseeded on system resumption
[ 648.951485][T15223] zswap: compressor not available
[ 650.060524][T15246] random: crng reseeded on system resumption
[ 650.466546][T15251] netlink: 'syz.3.1787': attribute type 1 has an invalid length.
[ 651.588301][ T6991] Bluetooth: hci4: command 0xfc11 tx timeout
[ 651.594607][ T7001] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[ 652.051198][T15265] random: crng reseeded on system resumption
[ 652.835753][T15281] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1791'.
[ 652.904895][T15284] netlink: 'syz.2.1791': attribute type 1 has an invalid length.
[ 652.968593][T15285] mkiss: ax0: crc mode is auto.
[ 653.044351][T15284] netlink: 5 bytes leftover after parsing attributes in process `syz.2.1791'.
[ 653.306460][ T7001] Bluetooth: hci0: Malformed LE Event: 0x0b
[ 654.496625][T15302] random: crng reseeded on system resumption
[ 655.040537][T15309] random: crng reseeded on system resumption
[ 655.848251][T15318] random: crng reseeded on system resumption
[ 657.008856][T15342] random: crng reseeded on system resumption
[ 657.657423][ T7001] Bluetooth: hci3: unexpected event 0x0f length: 440 > 4
[ 658.751559][T15373] futex_wake_op: syz.1.1810 tries to shift op by -1; fix this program
[ 659.053100][T15376] netlink: 'syz.1.1812': attribute type 1 has an invalid length.
[ 659.403994][ T29] audit: type=1326 audit(2147483815.761:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15377 comm="syz.0.1811" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1558b9c139 code=0x0
[ 659.541752][T15394] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[ 659.541752][T15394] The task syz.0.1811 (15394) triggered the difference, watch for misbehavior.
[ 660.061354][ T29] audit: type=1800 audit(2147483816.411:27): pid=15405 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1816" name="dbroot" dev="configfs" ino=55063 res=0 errno=0
[ 660.097314][T15405] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1816'.
[ 660.230655][T15406] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1816'.
[ 661.147217][T15404] Process accounting resumed
[ 661.678109][ T6991] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[ 661.692705][ T6991] Bluetooth: hci3: Injecting HCI hardware error event
[ 661.708102][T15078] Bluetooth: hci3: hardware error 0x00
[ 661.727739][T15426] futex_wake_op: syz.0.1821 tries to shift op by -1; fix this program
[ 661.749103][T15426] FAULT_INJECTION: forcing a failure.
[ 661.749103][T15426] name failslab, interval 1, probability 0, space 0, times 0
[ 661.793540][T15426] CPU: 1 UID: 0 PID: 15426 Comm: syz.0.1821 Tainted: G L syzkaller #0 PREEMPT(full)
[ 661.793587][T15426] Tainted: [L]=SOFTLOCKUP
[ 661.793597][T15426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 661.793615][T15426] Call Trace:
[ 661.793625][T15426]
[ 661.793637][T15426] dump_stack_lvl+0x100/0x190
[ 661.793686][T15426] should_fail_ex.cold+0x5/0xa
[ 661.793717][T15426] ? mempool_init_node+0x2f7/0x6e0
[ 661.793761][T15426] should_failslab+0xc2/0x120
[ 661.793805][T15426] __kmalloc_noprof+0xe0/0x850
[ 661.793841][T15426] ? mempool_init_noprof+0x3a/0x50
[ 661.793890][T15426] ? __pfx_mempool_kmalloc+0x10/0x10
[ 661.793934][T15426] mempool_init_node+0x2f7/0x6e0
[ 661.793994][T15426] ? __pfx_mempool_kmalloc+0x10/0x10
[ 661.794033][T15426] ? __pfx_mempool_kfree+0x10/0x10
[ 661.794073][T15426] mempool_init_noprof+0x3a/0x50
[ 661.794120][T15426] do_fanotify_mark+0x2ee4/0x4010
[ 661.794173][T15426] ? __pfx_do_fanotify_mark+0x10/0x10
[ 661.794212][T15426] ? __x64_sys_futex+0x358/0x4d0
[ 661.794250][T15426] ? xfd_validate_state+0x129/0x190
[ 661.794290][T15426] ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[ 661.794330][T15426] __x64_sys_fanotify_mark+0xbd/0x160
[ 661.794365][T15426] ? do_syscall_64+0x95/0xf80
[ 661.794392][T15426] ? lockdep_hardirqs_on+0x78/0x100
[ 661.794436][T15426] do_syscall_64+0x106/0xf80
[ 661.794460][T15426] ? clear_bhb_loop+0x40/0x90
[ 661.794495][T15426] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 661.794524][T15426] RIP: 0033:0x7f1558b9c139
[ 661.794549][T15426] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 661.794577][T15426] RSP: 002b:00007f1559ae3028 EFLAGS: 00000246 ORIG_RAX: 000000000000012d
[ 661.794605][T15426] RAX: ffffffffffffffda RBX: 00007f1558e15fa0 RCX: 00007f1558b9c139
[ 661.794625][T15426] RDX: 0000000000008009 RSI: 0000000000000105 RDI: 0000000000000000
[ 661.794641][T15426] RBP: 00007f1558c327e0 R08: 0000000000000000 R09: 0000000000000000
[ 661.794658][T15426] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 661.794676][T15426] R13: 00007f1558e16038 R14: 00007f1558e15fa0 R15: 00007ffe7b1d4148
[ 661.794712][T15426]
[ 663.390882][T15445] netlink: 'syz.2.1825': attribute type 1 has an invalid length.
[ 663.595892][ T7001] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[ 663.751414][T15078] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 664.154902][T15456] random: crng reseeded on system resumption
[ 664.193027][T15459] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input30
[ 664.771256][ T29] audit: type=1800 audit(2147483821.121:28): pid=15465 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1829" name="dbroot" dev="configfs" ino=55717 res=0 errno=0
[ 664.827338][T15465] db_root: cannot open: nl80211
[ 664.833841][T15465] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1829'.
[ 664.898289][T15472] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1829'.
[ 665.839573][T15475] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 666.095107][T15488] futex_wake_op: syz.3.1832 tries to shift op by -1; fix this program
[ 666.105219][T15488] FAULT_INJECTION: forcing a failure.
[ 666.105219][T15488] name failslab, interval 1, probability 0, space 0, times 0
[ 666.117998][T15488] CPU: 1 UID: 0 PID: 15488 Comm: syz.3.1832 Tainted: G L syzkaller #0 PREEMPT(full)
[ 666.118044][T15488] Tainted: [L]=SOFTLOCKUP
[ 666.118055][T15488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 666.118073][T15488] Call Trace:
[ 666.118082][T15488]
[ 666.118093][T15488] dump_stack_lvl+0x100/0x190
[ 666.118142][T15488] should_fail_ex.cold+0x5/0xa
[ 666.118176][T15488] ? mempool_init_node+0x2f7/0x6e0
[ 666.118218][T15488] should_failslab+0xc2/0x120
[ 666.118260][T15488] __kmalloc_noprof+0xe0/0x850
[ 666.118296][T15488] ? mempool_init_noprof+0x3a/0x50
[ 666.118340][T15488] ? __pfx_mempool_kmalloc+0x10/0x10
[ 666.118382][T15488] mempool_init_node+0x2f7/0x6e0
[ 666.118431][T15488] ? __pfx_mempool_kmalloc+0x10/0x10
[ 666.118469][T15488] ? __pfx_mempool_kfree+0x10/0x10
[ 666.118509][T15488] mempool_init_noprof+0x3a/0x50
[ 666.118554][T15488] do_fanotify_mark+0x2ee4/0x4010
[ 666.118608][T15488] ? __pfx_do_fanotify_mark+0x10/0x10
[ 666.118734][T15488] ? __x64_sys_futex+0x358/0x4d0
[ 666.118775][T15488] ? xfd_validate_state+0x129/0x190
[ 666.118821][T15488] ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[ 666.118860][T15488] __x64_sys_fanotify_mark+0xbd/0x160
[ 666.118894][T15488] ? do_syscall_64+0x95/0xf80
[ 666.118921][T15488] ? lockdep_hardirqs_on+0x78/0x100
[ 666.118969][T15488] do_syscall_64+0x106/0xf80
[ 666.118996][T15488] ? clear_bhb_loop+0x40/0x90
[ 666.119032][T15488] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 666.119062][T15488] RIP: 0033:0x7f184959c139
[ 666.119087][T15488] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 666.119116][T15488] RSP: 002b:00007f184a530028 EFLAGS: 00000246 ORIG_RAX: 000000000000012d
[ 666.119144][T15488] RAX: ffffffffffffffda RBX: 00007f1849815fa0 RCX: 00007f184959c139
[ 666.119164][T15488] RDX: 0000000000008009 RSI: 0000000000000105 RDI: 0000000000000000
[ 666.119181][T15488] RBP: 00007f18496327e0 R08: 0000000000000000 R09: 0000000000000000
[ 666.119200][T15488] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 666.119217][T15488] R13: 00007f1849816038 R14: 00007f1849815fa0 R15: 00007ffc2539ba78
[ 666.119256][T15488]
[ 666.722652][ T5860] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 666.731702][ T5860] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 666.742057][ T5860] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 666.770957][ T5860] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 666.790427][ T5860] rtc rtc0: __rtc_set_alarm: err=-22
[ 666.935233][T15493] random: crng reseeded on system resumption
[ 668.787373][T15522] bond0: invalid ARP target specified
[ 668.867215][T15522] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1842'.
[ 668.950716][T15522] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 669.036478][T15522] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 669.038142][T15524] FAULT_INJECTION: forcing a failure.
[ 669.038142][T15524] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 669.218007][T15524] CPU: 0 UID: 0 PID: 15524 Comm: syz.1.1842 Tainted: G L syzkaller #0 PREEMPT(full)
[ 669.218034][T15524] Tainted: [L]=SOFTLOCKUP
[ 669.218040][T15524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 669.218050][T15524] Call Trace:
[ 669.218055][T15524]
[ 669.218062][T15524] dump_stack_lvl+0x100/0x190
[ 669.218088][T15524] should_fail_ex.cold+0x5/0xa
[ 669.218105][T15524] ? prepare_alloc_pages+0x16d/0x5f0
[ 669.218130][T15524] should_fail_alloc_page+0xeb/0x140
[ 669.218162][T15524] prepare_alloc_pages+0x1f0/0x5f0
[ 669.218189][T15524] __alloc_frozen_pages_noprof+0x19a/0x2ba0
[ 669.218213][T15524] ? __lock_acquire+0x4a5/0x2630
[ 669.218236][T15524] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 669.218257][T15524] ? do_raw_spin_lock+0x128/0x260
[ 669.218277][T15524] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 669.218297][T15524] ? find_held_lock+0x2b/0x80
[ 669.218324][T15524] ? __lock_acquire+0x4a5/0x2630
[ 669.218341][T15524] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 669.218364][T15524] ? policy_nodemask+0xed/0x4f0
[ 669.218387][T15524] alloc_pages_mpol+0x1fb/0x550
[ 669.218410][T15524] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 669.218431][T15524] ? __folio_batch_add_and_move+0x5e5/0xc60
[ 669.218451][T15524] ? __folio_batch_add_and_move+0x5e5/0xc60
[ 669.218474][T15524] folio_alloc_mpol_noprof+0x36/0x340
[ 669.218490][T15524] shmem_alloc_folio+0x135/0x160
[ 669.218507][T15524] shmem_alloc_and_add_folio+0x371/0xd40
[ 669.218531][T15524] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 669.218552][T15524] ? shmem_allowable_huge_orders+0x2bd/0x400
[ 669.218575][T15524] shmem_get_folio_gfp+0x6ab/0x1900
[ 669.218598][T15524] ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 669.218618][T15524] ? filemap_map_pages+0x9e0/0x2170
[ 669.218640][T15524] shmem_fault+0x1f9/0xa20
[ 669.218658][T15524] ? __lock_acquire+0x4a5/0x2630
[ 669.218675][T15524] ? __pfx_shmem_fault+0x10/0x10
[ 669.218697][T15524] ? __pfx_filemap_map_pages+0x10/0x10
[ 669.218721][T15524] __do_fault+0x10d/0x550
[ 669.218744][T15524] do_fault+0xaf9/0x1a00
[ 669.218761][T15524] __handle_mm_fault+0x180f/0x2b60
[ 669.218781][T15524] ? mt_find+0x45e/0x8e0
[ 669.218798][T15524] ? __pfx___handle_mm_fault+0x10/0x10
[ 669.218813][T15524] ? __pfx_mt_find+0x10/0x10
[ 669.218839][T15524] ? find_vma+0xbf/0x140
[ 669.218858][T15524] ? __pfx_find_vma+0x10/0x10
[ 669.218880][T15524] handle_mm_fault+0x36d/0xa20
[ 669.218901][T15524] do_user_addr_fault+0x74c/0x12f0
[ 669.218929][T15524] exc_page_fault+0x6f/0xd0
[ 669.218952][T15524] asm_exc_page_fault+0x26/0x30
[ 669.218967][T15524] RIP: 0010:rep_movs_alternative+0x4a/0x90
[ 669.218987][T15524] Code: 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 e9 8f 93 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[ 669.219002][T15524] RSP: 0018:ffffc900062afd30 EFLAGS: 00050206
[ 669.219015][T15524] RAX: 0000000000000001 RBX: 0000000000001fe4 RCX: 0000000000007b84
[ 669.219024][T15524] RDX: 0000000000000001 RSI: 0000000000002000 RDI: ffffc9000466107c
[ 669.219033][T15524] RBP: 0000000000007ba0 R08: 0000000000000001 R09: fffff520008cd17f
[ 669.219042][T15524] R10: ffffc90004668bff R11: 0000000000000000 R12: 0000000000000000
[ 669.219051][T15524] R13: ffffc90004661060 R14: 0000000000007ba0 R15: ffffc90004661060
[ 669.219070][T15524] _copy_from_user+0x98/0xd0
[ 669.219091][T15524] bpf_prog_create_from_user+0x109/0x2f0
[ 669.219109][T15524] ? __pfx_seccomp_check_filter+0x10/0x10
[ 669.219128][T15524] do_seccomp+0x7f7/0x2740
[ 669.219158][T15524] ? __pfx_do_seccomp+0x10/0x10
[ 669.219176][T15524] ? __x64_sys_openat+0x12d/0x210
[ 669.219194][T15524] ? xfd_validate_state+0x129/0x190
[ 669.219222][T15524] do_syscall_64+0x106/0xf80
[ 669.219235][T15524] ? clear_bhb_loop+0x40/0x90
[ 669.219253][T15524] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 669.219268][T15524] RIP: 0033:0x7fcba299c139
[ 669.219289][T15524] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 669.219303][T15524] RSP: 002b:00007fcba37ae028 EFLAGS: 00000246 ORIG_RAX: 000000000000013d
[ 669.219317][T15524] RAX: ffffffffffffffda RBX: 00007fcba2c16090 RCX: 00007fcba299c139
[ 669.219327][T15524] RDX: 0000200000000100 RSI: 0000000000000000 RDI: 0000000000000001
[ 669.219336][T15524] RBP: 00007fcba2a327e0 R08: 0000000000000000 R09: 0000000000000000
[ 669.219345][T15524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 669.219355][T15524] R13: 00007fcba2c16128 R14: 00007fcba2c16090 R15: 00007ffe15c3b238
[ 669.219375][T15524]
[ 669.787181][T15522] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 669.794629][T15522] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 670.068075][ T6991] Bluetooth: hci4: command 0xfc11 tx timeout
[ 670.086833][T15078] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[ 671.233204][T15544] random: crng reseeded on system resumption
[ 671.725576][T15548] random: crng reseeded on system resumption
[ 672.615691][T15569] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1852'.
[ 673.141605][T15559] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 673.406944][T15575] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1854'.
[ 673.580143][T15575] netlink: 354 bytes leftover after parsing attributes in process `syz.1.1854'.
[ 674.432076][T15589] random: crng reseeded on system resumption
[ 674.863805][T15596] random: crng reseeded on system resumption
[ 676.262403][T15616] random: crng reseeded on system resumption
[ 677.685217][T15637] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1867'.
[ 677.752624][T15637] macvlan1: entered promiscuous mode
[ 677.766024][T15637] macvlan1: entered allmulticast mode
[ 677.773566][T15637] veth1_vlan: entered allmulticast mode
[ 678.108121][T15641] FAULT_INJECTION: forcing a failure.
[ 678.108121][T15641] name failslab, interval 1, probability 0, space 0, times 0
[ 678.166672][T15641] CPU: 0 UID: 0 PID: 15641 Comm: syz.0.1868 Tainted: G L syzkaller #0 PREEMPT(full)
[ 678.166721][T15641] Tainted: [L]=SOFTLOCKUP
[ 678.166731][T15641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 678.166758][T15641] Call Trace:
[ 678.166766][T15641]
[ 678.166776][T15641] dump_stack_lvl+0x100/0x190
[ 678.166826][T15641] should_fail_ex.cold+0x5/0xa
[ 678.166860][T15641] should_failslab+0xc2/0x120
[ 678.166903][T15641] kmem_cache_alloc_noprof+0x7b/0x6e0
[ 678.166939][T15641] ? security_inode_alloc+0x3b/0x2c0
[ 678.166974][T15641] ? lockdep_init_map_type+0x5c/0x250
[ 678.167018][T15641] security_inode_alloc+0x3b/0x2c0
[ 678.167052][T15641] inode_init_always_gfp+0xced/0x1040
[ 678.167091][T15641] alloc_inode+0x8e/0x250
[ 678.167120][T15641] path_from_stashed+0x25b/0x750
[ 678.167159][T15641] ? do_raw_spin_unlock+0x145/0x1e0
[ 678.167199][T15641] ns_get_path+0x60/0x80
[ 678.167237][T15641] proc_ns_get_link+0x121/0x230
[ 678.167270][T15641] ? __pfx_proc_ns_get_link+0x10/0x10
[ 678.167308][T15641] ? atime_needs_update+0x8b/0x6b0
[ 678.167344][T15641] pick_link+0xd17/0x13c0
[ 678.167378][T15641] ? __pfx_proc_ns_get_link+0x10/0x10
[ 678.167414][T15641] step_into_slowpath+0x9ba/0xf90
[ 678.167456][T15641] ? __pfx_step_into_slowpath+0x10/0x10
[ 678.167490][T15641] ? find_held_lock+0x2b/0x80
[ 678.167542][T15641] path_openat+0xf95/0x31a0
[ 678.167595][T15641] ? __pfx_path_openat+0x10/0x10
[ 678.167649][T15641] do_file_open+0x20e/0x430
[ 678.167692][T15641] ? __pfx_do_file_open+0x10/0x10
[ 678.167766][T15641] ? alloc_fd+0x476/0x790
[ 678.167811][T15641] ? do_getname+0x191/0x390
[ 678.167845][T15641] do_sys_openat2+0x10d/0x1e0
[ 678.167877][T15641] ? __pfx_do_sys_openat2+0x10/0x10
[ 678.167912][T15641] ? __fget_files+0x21f/0x3d0
[ 678.167958][T15641] __x64_sys_openat+0x12d/0x210
[ 678.167990][T15641] ? __pfx___x64_sys_openat+0x10/0x10
[ 678.168036][T15641] do_syscall_64+0x106/0xf80
[ 678.168063][T15641] ? clear_bhb_loop+0x40/0x90
[ 678.168098][T15641] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 678.168126][T15641] RIP: 0033:0x7f1558b5ca0e
[ 678.168161][T15641] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 678.168191][T15641] RSP: 002b:00007f1559ae2ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 678.168220][T15641] RAX: ffffffffffffffda RBX: 00007f1559ae36c0 RCX: 00007f1558b5ca0e
[ 678.168240][T15641] RDX: 0000000000000002 RSI: 00007f1559ae2f90 RDI: ffffffffffffff9c
[ 678.168259][T15641] RBP: 00007f1558c327e0 R08: 0000000000000000 R09: 0000000000000000
[ 678.168277][T15641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 678.168294][T15641] R13: 00007f1558e16038 R14: 00007f1558e15fa0 R15: 00007ffe7b1d4148
[ 678.168334][T15641]
[ 678.568749][T15646] zswap: compressor not available
[ 679.113019][T15664] random: crng reseeded on system resumption
[ 679.131335][T15665] ima: policy update failed
[ 679.136454][ T29] audit: type=1807 audit(2147483835.491:29): UNKNOWN=0"]$|1j0B|d�ӉO+/xWӦ^gq%ḦrO� res=0
[ 679.136509][ T29] audit: type=1802 audit(2147483835.491:30): pid=15665 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.2.1870" res=0 errno=0
[ 679.136556][ T29] audit: type=1802 audit(2147483835.491:31): pid=15665 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1870" res=0 errno=0
[ 679.597754][T15671] FAULT_INJECTION: forcing a failure.
[ 679.597754][T15671] name failslab, interval 1, probability 0, space 0, times 0
[ 679.706547][T15671] CPU: 0 UID: 0 PID: 15671 Comm: syz.0.1872 Tainted: G L syzkaller #0 PREEMPT(full)
[ 679.706594][T15671] Tainted: [L]=SOFTLOCKUP
[ 679.706605][T15671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 679.706621][T15671] Call Trace:
[ 679.706631][T15671]
[ 679.706641][T15671] dump_stack_lvl+0x100/0x190
[ 679.706687][T15671] should_fail_ex.cold+0x5/0xa
[ 679.706718][T15671] ? lsm_blob_alloc+0x68/0x90
[ 679.706742][T15671] should_failslab+0xc2/0x120
[ 679.706783][T15671] __kmalloc_noprof+0xe0/0x850
[ 679.706818][T15671] ? trace_kmem_cache_alloc+0xf3/0x120
[ 679.706860][T15671] lsm_blob_alloc+0x68/0x90
[ 679.706885][T15671] security_sk_alloc+0x2d/0x290
[ 679.706920][T15671] sk_prot_alloc+0x1d1/0x2a0
[ 679.706956][T15671] sk_alloc+0x36/0xe80
[ 679.706997][T15671] unix_create1+0xa6/0x700
[ 679.707032][T15671] unix_create+0x145/0x270
[ 679.707065][T15671] __sock_create+0x339/0x860
[ 679.707107][T15671] __sys_socketpair+0x261/0x5b0
[ 679.707145][T15671] ? __pfx___sys_socketpair+0x10/0x10
[ 679.707183][T15671] ? xfd_validate_state+0x129/0x190
[ 679.707230][T15671] __x64_sys_socketpair+0x96/0x100
[ 679.707266][T15671] ? lockdep_hardirqs_on+0x78/0x100
[ 679.707310][T15671] do_syscall_64+0x106/0xf80
[ 679.707335][T15671] ? clear_bhb_loop+0x40/0x90
[ 679.707369][T15671] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 679.707398][T15671] RIP: 0033:0x7f1558b9c139
[ 679.707432][T15671] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 679.707461][T15671] RSP: 002b:00007f1559ac2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[ 679.707488][T15671] RAX: ffffffffffffffda RBX: 00007f1558e16090 RCX: 00007f1558b9c139
[ 679.707507][T15671] RDX: 8000000000000000 RSI: 0000000000000002 RDI: 0000000000000001
[ 679.707525][T15671] RBP: 00007f1558c327e0 R08: 0000000000000000 R09: 0000000000000000
[ 679.707542][T15671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 679.707559][T15671] R13: 00007f1558e16128 R14: 00007f1558e16090 R15: 00007ffe7b1d4148
[ 679.707597][T15671]
[ 681.362185][T15688] netlink: 'syz.3.1876': attribute type 1 has an invalid length.
[ 681.552133][T15694] random: crng reseeded on system resumption
[ 682.328800][ T7001] Bluetooth: hci2: unexpected event 0x0f length: 440 > 4
[ 682.791756][T15701] Invalid ELF header magic: != ELF
[ 684.382593][T15749] random: crng reseeded on system resumption
[ 684.408472][ T7001] Bluetooth: hci1: Malformed LE Event: 0x0b
[ 684.874084][T15760] Console: switching to colour VGA+ 80x25
[ 685.036799][T15763] netlink: 'syz.2.1890': attribute type 1 has an invalid length.
[ 685.670533][T15774] random: crng reseeded on system resumption
[ 685.909661][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 685.916067][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 686.127717][T15782] netlink: 'syz.2.1902': attribute type 1 has an invalid length.
[ 686.389704][ T7001] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[ 686.398382][ T7001] Bluetooth: hci2: Injecting HCI hardware error event
[ 686.413117][T15078] Bluetooth: hci2: hardware error 0x00
[ 687.107810][T15803] random: crng reseeded on system resumption
[ 687.353277][T15804] netlink: NAT attribute has 1 unknown bytes
[ 687.807680][T15818] random: crng reseeded on system resumption
[ 687.936966][T15814] zswap: compressor not available
[ 688.358124][ T7001] Bluetooth: hci0: unexpected event 0x0f length: 440 > 4
[ 688.479579][T15078] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[ 688.814143][T15850] netlink: 'syz.1.1906': attribute type 1 has an invalid length.
[ 689.203604][T15847] binder: 15846:15847 ioctl c018620c 0 returned -1
[ 691.314416][T15886] Invalid ELF header magic: != ELF
[ 691.607384][T15900] Process accounting paused
[ 691.884446][T15911] futex_wake_op: syz.3.1916 tries to shift op by -1; fix this program
[ 691.909921][T15911] FAULT_INJECTION: forcing a failure.
[ 691.909921][T15911] name failslab, interval 1, probability 0, space 0, times 0
[ 691.971141][T15911] CPU: 0 UID: 0 PID: 15911 Comm: syz.3.1916 Tainted: G L syzkaller #0 PREEMPT(full)
[ 691.971169][T15911] Tainted: [L]=SOFTLOCKUP
[ 691.971174][T15911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 691.971183][T15911] Call Trace:
[ 691.971188][T15911]
[ 691.971195][T15911] dump_stack_lvl+0x100/0x190
[ 691.971224][T15911] should_fail_ex.cold+0x5/0xa
[ 691.971241][T15911] ? mempool_init_node+0x2f7/0x6e0
[ 691.971263][T15911] should_failslab+0xc2/0x120
[ 691.971285][T15911] __kmalloc_noprof+0xe0/0x850
[ 691.971304][T15911] ? mempool_init_noprof+0x3a/0x50
[ 691.971326][T15911] ? __pfx_mempool_kmalloc+0x10/0x10
[ 691.971348][T15911] mempool_init_node+0x2f7/0x6e0
[ 691.971374][T15911] ? __pfx_mempool_kmalloc+0x10/0x10
[ 691.971393][T15911] ? __pfx_mempool_kfree+0x10/0x10
[ 691.971414][T15911] mempool_init_noprof+0x3a/0x50
[ 691.971437][T15911] do_fanotify_mark+0x2ee4/0x4010
[ 691.971465][T15911] ? __pfx_do_fanotify_mark+0x10/0x10
[ 691.971485][T15911] ? __x64_sys_futex+0x358/0x4d0
[ 691.971505][T15911] ? xfd_validate_state+0x129/0x190
[ 691.971526][T15911] ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[ 691.971546][T15911] __x64_sys_fanotify_mark+0xbd/0x160
[ 691.971565][T15911] ? do_syscall_64+0x95/0xf80
[ 691.971578][T15911] ? lockdep_hardirqs_on+0x78/0x100
[ 691.971600][T15911] do_syscall_64+0x106/0xf80
[ 691.971613][T15911] ? clear_bhb_loop+0x40/0x90
[ 691.971631][T15911] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 691.971647][T15911] RIP: 0033:0x7f184959c139
[ 691.971660][T15911] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 691.971674][T15911] RSP: 002b:00007f184a530028 EFLAGS: 00000246 ORIG_RAX: 000000000000012d
[ 691.971689][T15911] RAX: ffffffffffffffda RBX: 00007f1849815fa0 RCX: 00007f184959c139
[ 691.971698][T15911] RDX: 0000000000008009 RSI: 0000000000000105 RDI: 0000000000000000
[ 691.971707][T15911] RBP: 00007f18496327e0 R08: 0000000000000000 R09: 0000000000000000
[ 691.971716][T15911] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 691.971725][T15911] R13: 00007f1849816038 R14: 00007f1849815fa0 R15: 00007ffc2539ba78
[ 691.971744][T15911]
[ 692.107125][T15903] zswap: compressor not available
[ 692.354980][T15922] random: crng reseeded on system resumption
[ 692.421461][T15078] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[ 692.430452][T15078] Bluetooth: hci0: Injecting HCI hardware error event
[ 692.440475][ T7001] Bluetooth: hci0: hardware error 0x00
[ 692.705791][T15921] random: crng reseeded on system resumption
[ 693.272004][T15951] random: crng reseeded on system resumption
[ 693.648680][T15948] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input31
[ 693.904919][T15944] binder: 15943:15944 ioctl c018620c 0 returned -1
[ 694.474805][ T7001] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 696.727560][T16006] random: crng reseeded on system resumption
[ 697.109048][T16002] mkiss: ax0: crc mode is auto.
[ 697.795240][T16019] random: crng reseeded on system resumption
[ 698.429969][T16029] random: crng reseeded on system resumption
[ 698.572073][T16038] zswap: compressor not available
[ 699.164121][T16055] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1942'.
[ 699.188279][T16055] netlink: 'syz.0.1942': attribute type 1 has an invalid length.
[ 699.237290][T16055] netlink: 5 bytes leftover after parsing attributes in process `syz.0.1942'.
[ 699.595300][T16059] random: crng reseeded on system resumption
[ 700.363751][T16073] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 700.437480][T16071] random: crng reseeded on system resumption
[ 701.228947][T16074] Console: switching to colour frame buffer device 128x48
[ 701.686503][T16093] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1950'.
[ 701.778648][T16093] netlink: 354 bytes leftover after parsing attributes in process `syz.0.1950'.
[ 704.274289][T16104] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input32
[ 704.858465][T16107] NFSD: Failed to start, no listeners configured.
[ 705.106536][T16111] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input33
[ 706.887849][T16156] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 707.613761][T16167] usb usb24: usbfs: process 16167 (syz.3.1964) did not claim interface 0 before use
[ 707.701560][T16170] random: crng reseeded on system resumption
[ 708.946505][ T7001] Bluetooth: hci1: command 0x0406 tx timeout
[ 709.339937][T16196] random: crng reseeded on system resumption
[ 710.317614][T16216] random: crng reseeded on system resumption
[ 710.519650][T16224] random: crng reseeded on system resumption
[ 711.003596][T16234] random: crng reseeded on system resumption
[ 711.822653][ T29] audit: type=1804 audit(2147483868.181:32): pid=16247 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1980" name="/newroot/488/file0" dev="tmpfs" ino=2518 res=1 errno=0
[ 711.857994][ T29] audit: type=1804 audit(2147483868.221:33): pid=16247 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.1980" name="/newroot/488/file0" dev="tmpfs" ino=2518 res=1 errno=0
[ 712.661335][T16258] random: crng reseeded on system resumption
[ 713.211059][T16269] random: crng reseeded on system resumption
[ 715.791437][T16276] kexec: Could not allocate control_code_buffer
[ 716.195301][T16321] random: crng reseeded on system resumption
[ 716.767836][T16330] random: crng reseeded on system resumption
[ 718.338761][T16313] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 719.123661][T16374] random: crng reseeded on system resumption
[ 720.067118][T16391] random: crng reseeded on system resumption
[ 721.169770][T16423] random: crng reseeded on system resumption
[ 721.372367][T16431] random: crng reseeded on system resumption
[ 721.727748][T16446] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2027'.
[ 721.789039][T16446] FAULT_INJECTION: forcing a failure.
[ 721.789039][T16446] name failslab, interval 1, probability 0, space 0, times 0
[ 721.821313][T16446] CPU: 1 UID: 0 PID: 16446 Comm: syz.2.2027 Tainted: G L syzkaller #0 PREEMPT(full)
[ 721.821358][T16446] Tainted: [L]=SOFTLOCKUP
[ 721.821368][T16446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 721.821392][T16446] Call Trace:
[ 721.821401][T16446]
[ 721.821412][T16446] dump_stack_lvl+0x100/0x190
[ 721.821460][T16446] should_fail_ex.cold+0x5/0xa
[ 721.821492][T16446] should_failslab+0xc2/0x120
[ 721.821533][T16446] __kmalloc_node_noprof+0xe6/0x850
[ 721.821568][T16446] ? __vmalloc_node_range_noprof+0x3dc/0x1530
[ 721.821606][T16446] __vmalloc_node_range_noprof+0x3dc/0x1530
[ 721.821646][T16446] ? n_tty_open+0x1a/0x170
[ 721.821689][T16446] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 721.821721][T16446] ? __ldsem_down_write_nested+0xfd/0x830
[ 721.821754][T16446] ? __ldsem_down_write_nested+0x10e/0x830
[ 721.821787][T16446] ? is_console_locked+0x9/0x20
[ 721.821824][T16446] ? __pfx___ldsem_down_write_nested+0x10/0x10
[ 721.821864][T16446] ? n_tty_open+0x1a/0x170
[ 721.821894][T16446] __vmalloc_node_noprof+0xad/0xf0
[ 721.821923][T16446] ? n_tty_open+0x1a/0x170
[ 721.821956][T16446] ? __pfx_n_tty_open+0x10/0x10
[ 721.821989][T16446] n_tty_open+0x1a/0x170
[ 721.822021][T16446] tty_ldisc_open+0xa2/0x120
[ 721.822062][T16446] tty_ldisc_setup+0x40/0xf0
[ 721.822102][T16446] tty_init_dev.part.0+0x1b5/0x470
[ 721.822137][T16446] tty_open+0xa63/0xfa0
[ 721.822173][T16446] ? __pfx_tty_open+0x10/0x10
[ 721.822201][T16446] ? chrdev_open+0x10b/0x6a0
[ 721.822240][T16446] ? chrdev_open+0x10b/0x6a0
[ 721.822285][T16446] ? __pfx_tty_open+0x10/0x10
[ 721.822312][T16446] chrdev_open+0x234/0x6a0
[ 721.822348][T16446] ? __pfx_apparmor_file_open+0x10/0x10
[ 721.822381][T16446] ? __pfx_chrdev_open+0x10/0x10
[ 721.822435][T16446] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 721.822486][T16446] do_dentry_open+0x6d8/0x1660
[ 721.822522][T16446] ? __pfx_chrdev_open+0x10/0x10
[ 721.822571][T16446] vfs_open+0x82/0x3f0
[ 721.822605][T16446] path_openat+0x208c/0x31a0
[ 721.822657][T16446] ? __pfx_path_openat+0x10/0x10
[ 721.822711][T16446] do_file_open+0x20e/0x430
[ 721.822754][T16446] ? __pfx_do_file_open+0x10/0x10
[ 721.822825][T16446] ? alloc_fd+0x476/0x790
[ 721.822870][T16446] ? do_getname+0x191/0x390
[ 721.822904][T16446] do_sys_openat2+0x10d/0x1e0
[ 721.822936][T16446] ? __pfx_do_sys_openat2+0x10/0x10
[ 721.822982][T16446] __x64_sys_openat+0x12d/0x210
[ 721.823015][T16446] ? __pfx___x64_sys_openat+0x10/0x10
[ 721.823063][T16446] do_syscall_64+0x106/0xf80
[ 721.823089][T16446] ? clear_bhb_loop+0x40/0x90
[ 721.823125][T16446] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 721.823155][T16446] RIP: 0033:0x7f34f259c139
[ 721.823180][T16446] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 721.823208][T16446] RSP: 002b:00007f34f3412028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 721.823236][T16446] RAX: ffffffffffffffda RBX: 00007f34f2815fa0 RCX: 00007f34f259c139
[ 721.823255][T16446] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 721.823274][T16446] RBP: 00007f34f26327e0 R08: 0000000000000000 R09: 0000000000000000
[ 721.823291][T16446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 721.823309][T16446] R13: 00007f34f2816038 R14: 00007f34f2815fa0 R15: 00007fff6a986ff8
[ 721.823349][T16446]
[ 721.824908][T16446] syz.2.2027: vmalloc error: size 12288, failed to allocated page array size 24, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 722.179285][T16446] CPU: 1 UID: 0 PID: 16446 Comm: syz.2.2027 Tainted: G L syzkaller #0 PREEMPT(full)
[ 722.179325][T16446] Tainted: [L]=SOFTLOCKUP
[ 722.179334][T16446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 722.179348][T16446] Call Trace:
[ 722.179357][T16446]
[ 722.179367][T16446] dump_stack_lvl+0x100/0x190
[ 722.179418][T16446] warn_alloc.cold+0x95/0x1c1
[ 722.179461][T16446] ? __pfx_warn_alloc+0x10/0x10
[ 722.179496][T16446] ? dump_stack_lvl+0x17c/0x190
[ 722.179536][T16446] ? trace_kmalloc+0x101/0x130
[ 722.179574][T16446] ? __kasan_kmalloc+0x8a/0xb0
[ 722.179611][T16446] ? __kmalloc_node_noprof+0x324/0x850
[ 722.179642][T16446] ? __vmalloc_node_range_noprof+0x3dc/0x1530
[ 722.179676][T16446] __vmalloc_node_range_noprof+0x1275/0x1530
[ 722.179717][T16446] ? n_tty_open+0x1a/0x170
[ 722.179761][T16446] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 722.179792][T16446] ? __ldsem_down_write_nested+0xfd/0x830
[ 722.179824][T16446] ? __ldsem_down_write_nested+0x10e/0x830
[ 722.179856][T16446] ? is_console_locked+0x9/0x20
[ 722.179894][T16446] ? __pfx___ldsem_down_write_nested+0x10/0x10
[ 722.179931][T16446] ? n_tty_open+0x1a/0x170
[ 722.179959][T16446] __vmalloc_node_noprof+0xad/0xf0
[ 722.179988][T16446] ? n_tty_open+0x1a/0x170
[ 722.180020][T16446] ? __pfx_n_tty_open+0x10/0x10
[ 722.180052][T16446] n_tty_open+0x1a/0x170
[ 722.180082][T16446] tty_ldisc_open+0xa2/0x120
[ 722.180123][T16446] tty_ldisc_setup+0x40/0xf0
[ 722.180165][T16446] tty_init_dev.part.0+0x1b5/0x470
[ 722.180199][T16446] tty_open+0xa63/0xfa0
[ 722.180234][T16446] ? __pfx_tty_open+0x10/0x10
[ 722.180262][T16446] ? chrdev_open+0x10b/0x6a0
[ 722.180299][T16446] ? chrdev_open+0x10b/0x6a0
[ 722.180341][T16446] ? __pfx_tty_open+0x10/0x10
[ 722.180364][T16446] chrdev_open+0x234/0x6a0
[ 722.180397][T16446] ? __pfx_apparmor_file_open+0x10/0x10
[ 722.180456][T16446] ? __pfx_chrdev_open+0x10/0x10
[ 722.180493][T16446] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 722.180538][T16446] do_dentry_open+0x6d8/0x1660
[ 722.180574][T16446] ? __pfx_chrdev_open+0x10/0x10
[ 722.180618][T16446] vfs_open+0x82/0x3f0
[ 722.180650][T16446] path_openat+0x208c/0x31a0
[ 722.180697][T16446] ? __pfx_path_openat+0x10/0x10
[ 722.180742][T16446] do_file_open+0x20e/0x430
[ 722.180764][T16446] ? __pfx_do_file_open+0x10/0x10
[ 722.180800][T16446] ? alloc_fd+0x476/0x790
[ 722.180822][T16446] ? do_getname+0x191/0x390
[ 722.180839][T16446] do_sys_openat2+0x10d/0x1e0
[ 722.180855][T16446] ? __pfx_do_sys_openat2+0x10/0x10
[ 722.180878][T16446] __x64_sys_openat+0x12d/0x210
[ 722.180895][T16446] ? __pfx___x64_sys_openat+0x10/0x10
[ 722.180919][T16446] do_syscall_64+0x106/0xf80
[ 722.180938][T16446] ? clear_bhb_loop+0x40/0x90
[ 722.180957][T16446] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 722.180972][T16446] RIP: 0033:0x7f34f259c139
[ 722.180986][T16446] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 722.181000][T16446] RSP: 002b:00007f34f3412028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 722.181015][T16446] RAX: ffffffffffffffda RBX: 00007f34f2815fa0 RCX: 00007f34f259c139
[ 722.181025][T16446] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 722.181034][T16446] RBP: 00007f34f26327e0 R08: 0000000000000000 R09: 0000000000000000
[ 722.181042][T16446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 722.181051][T16446] R13: 00007f34f2816038 R14: 00007f34f2815fa0 R15: 00007fff6a986ff8
[ 722.181071][T16446]
[ 722.181248][T16446] Mem-Info:
[ 722.555725][T16446] active_anon:31388 inactive_anon:3 isolated_anon:0
[ 722.555725][T16446] active_file:10230 inactive_file:50030 isolated_file:0
[ 722.555725][T16446] unevictable:768 dirty:1135 writeback:0
[ 722.555725][T16446] slab_reclaimable:14377 slab_unreclaimable:116145
[ 722.555725][T16446] mapped:25330 shmem:21114 pagetables:1165
[ 722.555725][T16446] sec_pagetables:0 bounce:0
[ 722.555725][T16446] kernel_misc_reclaimable:0
[ 722.555725][T16446] free:1264059 free_pcp:16574 free_cma:0
[ 722.688850][T16431] Process accounting resumed
[ 722.728397][T16446] Node 0 active_anon:119052kB inactive_anon:12kB active_file:40920kB inactive_file:199988kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:101320kB dirty:4536kB writeback:0kB shmem:82920kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11020kB pagetables:4444kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 722.813780][T16446] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:116kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 722.867742][T16446] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 722.918542][T16446] lowmem_reserve[]: 0 2478 2479 2479 2479
[ 722.958003][T16446] Node 0 DMA32 free:1116524kB boost:0kB min:34056kB low:42568kB high:51080kB reserved_highatomic:0KB free_highatomic:0KB active_anon:122820kB inactive_anon:12kB active_file:40920kB inactive_file:199988kB unevictable:1536kB writepending:4568kB zspages:0kB present:3129332kB managed:2537504kB mlocked:0kB bounce:0kB free_pcp:61600kB local_pcp:23796kB free_cma:0kB
[ 723.047563][T16451] random: crng reseeded on system resumption
[ 723.123040][T16446] lowmem_reserve[]: 0 0 1 1 1
[ 723.143385][T16446] Node 0 Normal free:12kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1064kB mlocked:0kB bounce:0kB free_pcp:20kB local_pcp:8kB free_cma:0kB
[ 723.226543][T16446] lowmem_reserve[]: 0 0 0 0 0
[ 723.243977][T16446] Node 1 Normal free:3933940kB boost:0kB min:55828kB low:69784kB high:83740kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB writepending:4kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 723.311767][T16446] lowmem_reserve[]: 0 0 0 0 0
[ 723.316599][T16446] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 723.371716][T16446] Node 0 DMA32: 736*4kB (UME) 3214*8kB (UME) 2052*16kB (UME) 641*32kB (UME) 574*64kB (UME) 348*128kB (UME) 324*256kB (UME) 164*512kB (UME) 71*1024kB (UME) 9*2048kB (UME) 171*4096kB (UM) = 1121744kB
[ 723.415780][T16446] Node 0 Normal: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[ 723.452427][T16446] Node 1 Normal: 3*4kB (UM) 11*8kB (UM) 15*16kB (UME) 19*32kB (UME) 9*64kB (UM) 8*128kB (UME) 3*256kB (ME) 5*512kB (UME) 2*1024kB (UM) 3*2048kB (UME) 957*4096kB (UM) = 3933940kB
[ 723.504404][T16446] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 723.524827][T16446] Node 0 hugepages_total=4 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 723.535619][T16461] random: crng reseeded on system resumption
[ 723.549639][T16446] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 723.574544][T16446] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[ 723.641929][T16446] 81347 total pagecache pages
[ 723.647087][T16446] 4 pages in swap cache
[ 723.651256][T16446] Free swap = 124980kB
[ 723.655393][T16446] Total swap = 124996kB
[ 723.806728][T16446] 2097051 pages RAM
[ 723.810589][T16446] 0 pages HighMem/MovableOnly
[ 723.815246][T16446] 430794 pages reserved
[ 723.987137][T16446] 0 pages cma reserved
[ 723.994508][T16446] tty tty16: ldisc open failed (-12), clearing slot 15
[ 724.341530][ T7001] Bluetooth: hci1: unexpected event 0x12 length: 440 > 8
[ 725.117714][ T7001] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[ 725.361260][T16497] random: crng reseeded on system resumption
[ 726.030577][T16512] random: crng reseeded on system resumption
[ 726.698012][T16534] random: crng reseeded on system resumption
[ 726.875149][T16522] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[ 727.187031][ T7001] Bluetooth: hci1: command 0x0406 tx timeout
[ 727.444771][T16548] netlink: 186 bytes leftover after parsing attributes in process `syz.1.2047'.
[ 728.417876][ T1872] usb usb40-port2: attempt power cycle
[ 729.052084][ T1872] usb usb40-port2: unable to enumerate USB device
[ 729.268885][ T7001] Bluetooth: hci1: command 0x0406 tx timeout
[ 729.780370][T16582] random: crng reseeded on system resumption
[ 730.929436][T16602] random: crng reseeded on system resumption
[ 733.652229][T16653] netlink: 252 bytes leftover after parsing attributes in process `syz.0.2067'.
[ 733.662960][T16653] netlink: 252 bytes leftover after parsing attributes in process `syz.0.2067'.
[ 734.373379][T16663] random: crng reseeded on system resumption
[ 734.821337][ T29] audit: type=1804 audit(2147483891.181:34): pid=16669 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2079" name="/newroot/526/file0" dev="tmpfs" ino=2708 res=1 errno=0
[ 734.911092][ T29] audit: type=1804 audit(2147483891.241:35): pid=16669 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2079" name="/newroot/526/file0" dev="tmpfs" ino=2708 res=1 errno=0
[ 735.179426][T16676] random: crng reseeded on system resumption
[ 735.677620][T16685] random: crng reseeded on system resumption
[ 737.318003][T16701] random: crng reseeded on system resumption
[ 739.225301][T16730] random: crng reseeded on system resumption
[ 740.095204][T16748] netlink: 'syz.3.2085': attribute type 23 has an invalid length.
[ 741.351365][ T29] audit: type=1804 audit(2147483897.711:36): pid=16769 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2092" name="/newroot/510/file0" dev="tmpfs" ino=2627 res=1 errno=0
[ 741.373366][ T29] audit: type=1804 audit(2147483897.711:37): pid=16769 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.2092" name="/newroot/510/file0" dev="tmpfs" ino=2627 res=1 errno=0
[ 742.023462][T16779] random: crng reseeded on system resumption
[ 744.528137][T16812] kexec: Could not allocate control_code_buffer
[ 746.351274][T16857] random: crng reseeded on system resumption
[ 747.363762][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 747.370235][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 749.106972][T16904] random: crng reseeded on system resumption
[ 749.933552][T16918] random: crng reseeded on system resumption
[ 750.373196][T16928] random: crng reseeded on system resumption
[ 751.104689][T16946] random: crng reseeded on system resumption
[ 753.438026][T16975] Process accounting paused
[ 753.797222][T16992] random: crng reseeded on system resumption
[ 754.123342][T17001] random: crng reseeded on system resumption
[ 756.193833][T16997] kexec: Could not allocate control_code_buffer
[ 756.451969][T17020] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 758.527661][T17071] random: crng reseeded on system resumption
[ 759.574389][T17082] random: crng reseeded on system resumption
[ 760.458539][T17099] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2151'.
[ 760.516859][T17099] FAULT_INJECTION: forcing a failure.
[ 760.516859][T17099] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 760.615832][T17099] CPU: 1 UID: 0 PID: 17099 Comm: syz.3.2151 Tainted: G L syzkaller #0 PREEMPT(full)
[ 760.615866][T17099] Tainted: [L]=SOFTLOCKUP
[ 760.615872][T17099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 760.615882][T17099] Call Trace:
[ 760.615889][T17099]
[ 760.615896][T17099] dump_stack_lvl+0x100/0x190
[ 760.615923][T17099] should_fail_ex.cold+0x5/0xa
[ 760.615939][T17099] ? prepare_alloc_pages+0x16d/0x5f0
[ 760.615963][T17099] should_fail_alloc_page+0xeb/0x140
[ 760.615988][T17099] prepare_alloc_pages+0x1f0/0x5f0
[ 760.616015][T17099] __alloc_frozen_pages_noprof+0x19a/0x2ba0
[ 760.616038][T17099] ? rcu_is_watching+0x12/0xc0
[ 760.616059][T17099] ? trace_mm_page_alloc+0x17a/0x1d0
[ 760.616082][T17099] ? __alloc_frozen_pages_noprof+0x2b1/0x2ba0
[ 760.616104][T17099] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 760.616123][T17099] ? do_syscall_64+0x106/0xf80
[ 760.616147][T17099] ? native_apic_msr_write+0x28/0x40
[ 760.616177][T17099] ? irq_work_queue_on+0x179/0x1f0
[ 760.616203][T17099] alloc_pages_bulk_noprof+0x782/0x1490
[ 760.616235][T17099] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[ 760.616285][T17099] ? alloc_pages_noprof+0x233/0x390
[ 760.616326][T17099] __kasan_populate_vmalloc+0xf0/0x210
[ 760.616351][T17099] alloc_vmap_area+0x95d/0x2bd0
[ 760.616381][T17099] ? __pfx_alloc_vmap_area+0x10/0x10
[ 760.616408][T17099] __get_vm_area_node+0x1ca/0x330
[ 760.616435][T17099] __vmalloc_node_range_noprof+0x213/0x1530
[ 760.616451][T17099] ? n_tty_open+0x1a/0x170
[ 760.616469][T17099] ? look_up_lock_class+0x64/0x120
[ 760.616486][T17099] ? n_tty_open+0x1a/0x170
[ 760.616508][T17099] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 760.616525][T17099] ? __ldsem_down_write_nested+0xfd/0x830
[ 760.616542][T17099] ? __ldsem_down_write_nested+0x10e/0x830
[ 760.616558][T17099] ? is_console_locked+0x9/0x20
[ 760.616578][T17099] ? __pfx___ldsem_down_write_nested+0x10/0x10
[ 760.616598][T17099] ? n_tty_open+0x1a/0x170
[ 760.616617][T17099] __vmalloc_node_noprof+0xad/0xf0
[ 760.616632][T17099] ? n_tty_open+0x1a/0x170
[ 760.616649][T17099] ? __pfx_n_tty_open+0x10/0x10
[ 760.616666][T17099] n_tty_open+0x1a/0x170
[ 760.616683][T17099] tty_ldisc_open+0xa2/0x120
[ 760.616705][T17099] tty_ldisc_setup+0x40/0xf0
[ 760.616726][T17099] tty_init_dev.part.0+0x1b5/0x470
[ 760.616745][T17099] tty_open+0xa63/0xfa0
[ 760.616763][T17099] ? __pfx_tty_open+0x10/0x10
[ 760.616778][T17099] ? chrdev_open+0x10b/0x6a0
[ 760.616798][T17099] ? chrdev_open+0x10b/0x6a0
[ 760.616821][T17099] ? __pfx_tty_open+0x10/0x10
[ 760.616836][T17099] chrdev_open+0x234/0x6a0
[ 760.616856][T17099] ? __pfx_apparmor_file_open+0x10/0x10
[ 760.616883][T17099] ? __pfx_chrdev_open+0x10/0x10
[ 760.616906][T17099] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 760.616933][T17099] do_dentry_open+0x6d8/0x1660
[ 760.616955][T17099] ? __pfx_chrdev_open+0x10/0x10
[ 760.616982][T17099] vfs_open+0x82/0x3f0
[ 760.617000][T17099] path_openat+0x208c/0x31a0
[ 760.617028][T17099] ? __pfx_path_openat+0x10/0x10
[ 760.617057][T17099] do_file_open+0x20e/0x430
[ 760.617080][T17099] ? __pfx_do_file_open+0x10/0x10
[ 760.617115][T17099] ? alloc_fd+0x476/0x790
[ 760.617138][T17099] ? do_getname+0x191/0x390
[ 760.617154][T17099] do_sys_openat2+0x10d/0x1e0
[ 760.617170][T17099] ? __pfx_do_sys_openat2+0x10/0x10
[ 760.617194][T17099] __x64_sys_openat+0x12d/0x210
[ 760.617210][T17099] ? __pfx___x64_sys_openat+0x10/0x10
[ 760.617235][T17099] do_syscall_64+0x106/0xf80
[ 760.617248][T17099] ? clear_bhb_loop+0x40/0x90
[ 760.617266][T17099] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 760.617282][T17099] RIP: 0033:0x7f184959c139
[ 760.617296][T17099] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 760.617324][T17099] RSP: 002b:00007f184a530028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 760.617340][T17099] RAX: ffffffffffffffda RBX: 00007f1849815fa0 RCX: 00007f184959c139
[ 760.617350][T17099] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 760.617366][T17099] RBP: 00007f18496327e0 R08: 0000000000000000 R09: 0000000000000000
[ 760.617375][T17099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 760.617384][T17099] R13: 00007f1849816038 R14: 00007f1849815fa0 R15: 00007ffc2539ba78
[ 760.617406][T17099]
[ 761.352955][T17099] syz.3.2151: vmalloc error: size 9128, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 761.396487][T17099] CPU: 0 UID: 0 PID: 17099 Comm: syz.3.2151 Tainted: G L syzkaller #0 PREEMPT(full)
[ 761.396514][T17099] Tainted: [L]=SOFTLOCKUP
[ 761.396520][T17099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 761.396529][T17099] Call Trace:
[ 761.396535][T17099]
[ 761.396541][T17099] dump_stack_lvl+0x100/0x190
[ 761.396569][T17099] warn_alloc.cold+0x95/0x1c1
[ 761.396598][T17099] ? __pfx_warn_alloc+0x10/0x10
[ 761.396615][T17099] ? lockdep_hardirqs_on+0x78/0x100
[ 761.396641][T17099] ? __get_vm_area_node+0x2c5/0x330
[ 761.396668][T17099] ? __get_vm_area_node+0x208/0x330
[ 761.396695][T17099] __vmalloc_node_range_noprof+0xbf4/0x1530
[ 761.396713][T17099] ? look_up_lock_class+0x64/0x120
[ 761.396730][T17099] ? n_tty_open+0x1a/0x170
[ 761.396753][T17099] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 761.396769][T17099] ? __ldsem_down_write_nested+0xfd/0x830
[ 761.396786][T17099] ? __ldsem_down_write_nested+0x10e/0x830
[ 761.396810][T17099] ? is_console_locked+0x9/0x20
[ 761.396830][T17099] ? __pfx___ldsem_down_write_nested+0x10/0x10
[ 761.396851][T17099] ? n_tty_open+0x1a/0x170
[ 761.396867][T17099] __vmalloc_node_noprof+0xad/0xf0
[ 761.396883][T17099] ? n_tty_open+0x1a/0x170
[ 761.396901][T17099] ? __pfx_n_tty_open+0x10/0x10
[ 761.396919][T17099] n_tty_open+0x1a/0x170
[ 761.396936][T17099] tty_ldisc_open+0xa2/0x120
[ 761.396958][T17099] tty_ldisc_setup+0x40/0xf0
[ 761.396980][T17099] tty_init_dev.part.0+0x1b5/0x470
[ 761.396998][T17099] tty_open+0xa63/0xfa0
[ 761.397017][T17099] ? __pfx_tty_open+0x10/0x10
[ 761.397030][T17099] ? chrdev_open+0x10b/0x6a0
[ 761.397051][T17099] ? chrdev_open+0x10b/0x6a0
[ 761.397074][T17099] ? __pfx_tty_open+0x10/0x10
[ 761.397089][T17099] chrdev_open+0x234/0x6a0
[ 761.397109][T17099] ? __pfx_apparmor_file_open+0x10/0x10
[ 761.397128][T17099] ? __pfx_chrdev_open+0x10/0x10
[ 761.397150][T17099] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 761.397175][T17099] do_dentry_open+0x6d8/0x1660
[ 761.397196][T17099] ? __pfx_chrdev_open+0x10/0x10
[ 761.397222][T17099] vfs_open+0x82/0x3f0
[ 761.397240][T17099] path_openat+0x208c/0x31a0
[ 761.397268][T17099] ? __pfx_path_openat+0x10/0x10
[ 761.397296][T17099] do_file_open+0x20e/0x430
[ 761.397318][T17099] ? __pfx_do_file_open+0x10/0x10
[ 761.397353][T17099] ? alloc_fd+0x476/0x790
[ 761.397376][T17099] ? do_getname+0x191/0x390
[ 761.397392][T17099] do_sys_openat2+0x10d/0x1e0
[ 761.397408][T17099] ? __pfx_do_sys_openat2+0x10/0x10
[ 761.397431][T17099] __x64_sys_openat+0x12d/0x210
[ 761.397448][T17099] ? __pfx___x64_sys_openat+0x10/0x10
[ 761.397472][T17099] do_syscall_64+0x106/0xf80
[ 761.397485][T17099] ? clear_bhb_loop+0x40/0x90
[ 761.397503][T17099] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 761.397518][T17099] RIP: 0033:0x7f184959c139
[ 761.397533][T17099] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 761.397547][T17099] RSP: 002b:00007f184a530028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 761.397561][T17099] RAX: ffffffffffffffda RBX: 00007f1849815fa0 RCX: 00007f184959c139
[ 761.397571][T17099] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 761.397580][T17099] RBP: 00007f18496327e0 R08: 0000000000000000 R09: 0000000000000000
[ 761.397589][T17099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 761.397598][T17099] R13: 00007f1849816038 R14: 00007f1849815fa0 R15: 00007ffc2539ba78
[ 761.397619][T17099]
[ 761.397656][T17099] Mem-Info:
[ 761.766395][T17099] active_anon:11111 inactive_anon:2 isolated_anon:0
[ 761.766395][T17099] active_file:10209 inactive_file:49705 isolated_file:0
[ 761.766395][T17099] unevictable:768 dirty:586 writeback:0
[ 761.766395][T17099] slab_reclaimable:14361 slab_unreclaimable:117798
[ 761.766395][T17099] mapped:27375 shmem:1362 pagetables:1127
[ 761.766395][T17099] sec_pagetables:0 bounce:0
[ 761.766395][T17099] kernel_misc_reclaimable:0
[ 761.766395][T17099] free:1284875 free_pcp:15076 free_cma:0
[ 761.964762][T17099] Node 0 active_anon:40032kB inactive_anon:0kB active_file:40836kB inactive_file:198688kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:101200kB dirty:2384kB writeback:0kB shmem:3912kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11028kB pagetables:4392kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 762.025729][T17099] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:116kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 762.082584][T17099] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 762.115597][T17099] lowmem_reserve[]: 0 2478 2479 2479 2479
[ 762.121815][T17099] Node 0 DMA32 free:1197176kB boost:0kB min:34056kB low:42568kB high:51080kB reserved_highatomic:0KB free_highatomic:0KB active_anon:40324kB inactive_anon:8kB active_file:40836kB inactive_file:198788kB unevictable:1536kB writepending:2576kB zspages:0kB present:3129332kB managed:2537504kB mlocked:0kB bounce:0kB free_pcp:57752kB local_pcp:30336kB free_cma:0kB
[ 762.155888][T17099] lowmem_reserve[]: 0 0 1 1 1
[ 762.162430][T17099] Node 0 Normal free:12kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1064kB mlocked:0kB bounce:0kB free_pcp:20kB local_pcp:8kB free_cma:0kB
[ 762.192840][T17099] lowmem_reserve[]: 0 0 0 0 0
[ 762.197694][T17099] Node 1 Normal free:3933940kB boost:0kB min:55828kB low:69784kB high:83740kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB writepending:4kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 762.229540][T17099] lowmem_reserve[]: 0 0 0 0 0
[ 762.234309][T17099] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 762.247133][T17099] Node 0 DMA32: 6618*4kB (UME) 4893*8kB (UME) 2257*16kB (UME) 527*32kB (UME) 676*64kB (UME) 468*128kB (UME) 329*256kB (UME) 160*512kB (UME) 75*1024kB (UME) 12*2048kB (UME) 173*4096kB (UM) = 1197888kB
[ 762.267454][T17099] Node 0 Normal: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[ 762.280232][T17099] Node 1 Normal: 3*4kB (UM) 11*8kB (UM) 15*16kB (UME) 19*32kB (UME) 9*64kB (UM) 8*128kB (UME) 3*256kB (ME) 5*512kB (UME) 2*1024kB (UM) 3*2048kB (UME) 957*4096kB (UM) = 3933940kB
[ 762.298188][T17099] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 762.307885][T17099] Node 0 hugepages_total=4 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 762.317330][T17099] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 762.331048][T17099] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[ 762.341215][T17099] 61299 total pagecache pages
[ 762.346088][T17099] 4 pages in swap cache
[ 762.350573][T17099] Free swap = 124980kB
[ 762.355318][T17099] Total swap = 124996kB
[ 762.360247][T17099] 2097051 pages RAM
[ 762.364066][T17099] 0 pages HighMem/MovableOnly
[ 762.369333][T17099] 430794 pages reserved
[ 762.373776][T17099] 0 pages cma reserved
[ 762.378316][T17099] tty tty16: ldisc open failed (-12), clearing slot 15
[ 763.221842][T17127] hub 1-0:1.0: USB hub found
[ 763.230139][T17127] hub 1-0:1.0: 1 port detected
[ 765.721373][T17121] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 766.225671][T17163] blktrace: Concurrent blktraces are not allowed on loop2
[ 767.425101][T17172] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 769.527031][T17202] FAULT_INJECTION: forcing a failure.
[ 769.527031][T17202] name failslab, interval 1, probability 0, space 0, times 0
[ 769.594553][T17202] CPU: 1 UID: 0 PID: 17202 Comm: syz.1.2178 Tainted: G L syzkaller #0 PREEMPT(full)
[ 769.594580][T17202] Tainted: [L]=SOFTLOCKUP
[ 769.594586][T17202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 769.594595][T17202] Call Trace:
[ 769.594600][T17202]
[ 769.594607][T17202] dump_stack_lvl+0x100/0x190
[ 769.594633][T17202] should_fail_ex.cold+0x5/0xa
[ 769.594651][T17202] ? __netlink_kernel_create+0x181/0x750
[ 769.594667][T17202] should_failslab+0xc2/0x120
[ 769.594690][T17202] __kmalloc_noprof+0xe0/0x850
[ 769.594713][T17202] __netlink_kernel_create+0x181/0x750
[ 769.594731][T17202] ? __pfx___netlink_kernel_create+0x10/0x10
[ 769.594753][T17202] fib_net_init+0x26d/0x3f0
[ 769.594767][T17202] ? is_module_address+0x69/0xf0
[ 769.594786][T17202] ? __pfx_fib_net_init+0x10/0x10
[ 769.594801][T17202] ? timer_init_key+0x150/0x340
[ 769.594815][T17202] ? __pfx_nl_fib_input+0x10/0x10
[ 769.594833][T17202] ? devinet_init_net+0x56c/0x8d0
[ 769.594852][T17202] ? __pfx_fib_net_init+0x10/0x10
[ 769.594866][T17202] ops_init+0x1e2/0x5f0
[ 769.594883][T17202] setup_net+0x118/0x3a0
[ 769.594898][T17202] ? __pfx_setup_net+0x10/0x10
[ 769.594911][T17202] ? lockdep_init_map_type+0x5c/0x250
[ 769.594929][T17202] ? mutex_init_lockep+0x110/0x150
[ 769.594959][T17202] copy_net_ns+0x46f/0x7c0
[ 769.594978][T17202] create_new_namespaces+0x3ea/0xac0
[ 769.594998][T17202] unshare_nsproxy_namespaces+0xc3/0x1f0
[ 769.595016][T17202] ksys_unshare+0x455/0xab0
[ 769.595035][T17202] ? __pfx_ksys_unshare+0x10/0x10
[ 769.595060][T17202] __x64_sys_unshare+0x31/0x40
[ 769.595077][T17202] do_syscall_64+0x106/0xf80
[ 769.595091][T17202] ? clear_bhb_loop+0x40/0x90
[ 769.595109][T17202] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 769.595124][T17202] RIP: 0033:0x7fcba299c139
[ 769.595137][T17202] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 769.595152][T17202] RSP: 002b:00007fcba37ae028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 769.595167][T17202] RAX: ffffffffffffffda RBX: 00007fcba2c16090 RCX: 00007fcba299c139
[ 769.595177][T17202] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 769.595185][T17202] RBP: 00007fcba2a327e0 R08: 0000000000000000 R09: 0000000000000000
[ 769.595194][T17202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 769.595205][T17202] R13: 00007fcba2c16128 R14: 00007fcba2c16090 R15: 00007ffe15c3b238
[ 769.595225][T17202]
[ 769.963046][T17208] random: crng reseeded on system resumption
[ 771.314692][T17203] kexec: Could not allocate control_code_buffer
[ 776.155183][T17249] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 776.724206][T17275] kexec: Could not allocate control_code_buffer
[ 777.208220][T17315] random: crng reseeded on system resumption
[ 779.481372][T17330] binder: 17329:17330 ioctl c018620c 0 returned -1
[ 781.272969][T17375] hub 1-0:1.0: USB hub found
[ 781.278001][T17375] hub 1-0:1.0: 1 port detected
[ 781.487686][T17360] kexec: Could not allocate control_code_buffer
[ 781.979831][T17390] random: crng reseeded on system resumption
[ 783.004653][T17406] random: crng reseeded on system resumption
[ 783.613311][T17410] Process accounting resumed
[ 784.107079][T17424] input: j�J�Ǹ-9%vJ86� as /devices/virtual/input/input34
[ 785.379385][T17434] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[ 785.829256][T17447] random: crng reseeded on system resumption
[ 786.512513][T17452] random: crng reseeded on system resumption
[ 786.770445][T17436] kexec: Could not allocate control_code_buffer
[ 787.650440][T17455] hub 1-0:1.0: USB hub found
[ 787.668804][T17455] hub 1-0:1.0: 1 port detected
[ 790.258368][T17519] random: crng reseeded on system resumption
[ 791.095931][T17528] random: crng reseeded on system resumption
[ 792.523343][T17535] hub 1-0:1.0: USB hub found
[ 792.536005][T17535] hub 1-0:1.0: 1 port detected
[ 795.708414][ T5880] usb usb40-port2: attempt power cycle
[ 796.280514][ T5880] usb usb40-port2: unable to enumerate USB device
[ 797.793466][T17629] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[ 798.004777][T17635] hub 1-0:1.0: USB hub found
[ 798.040657][T17635] hub 1-0:1.0: 1 port detected
[ 802.621829][T17717] random: crng reseeded on system resumption
[ 803.346099][T17719] binder: 17718:17719 ioctl c018620c 0 returned -1
[ 806.313515][T17759] kexec: Could not allocate control_code_buffer
[ 806.779142][T17780] input: j�J�Ǹ-9%vJ86� as /devices/virtual/input/input35
[ 807.484859][ T1872] usb usb40-port2: attempt power cycle
[ 808.057920][ T1872] usb usb40-port2: unable to enumerate USB device
[ 808.799119][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 808.805474][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 811.340895][T17844] random: crng reseeded on system resumption
[ 811.401349][T17850] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2282'.
[ 813.723442][T17880] input: j�J�Ǹ-9%vJ86� as /devices/virtual/input/input36
[ 817.761442][T17911] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[ 817.863052][T17899] Process accounting paused
[ 819.270381][T17940] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[ 829.664123][T18102] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 829.907875][T15078] Bluetooth: hci1: command 0x0406 tx timeout
[ 833.328553][T18167] kexec: Could not allocate control_code_buffer
[ 833.941295][T18192] input: j�J�Ǹ-9%vJ86� as /devices/virtual/input/input37
[ 834.147121][T18189] random: crng reseeded on system resumption
[ 835.945576][T18205] kexec: Could not allocate control_code_buffer
[ 838.082485][T18237] kexec: Could not allocate control_code_buffer
[ 839.159366][T18263] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[ 841.296876][T18315] random: crng reseeded on system resumption
[ 841.982681][T18308] kexec: Could not allocate control_code_buffer
[ 843.282603][T18328] kexec: Could not allocate control_code_buffer
[ 844.285813][T18373] random: crng reseeded on system resumption
[ 845.894139][T18408] random: crng reseeded on system resumption
[ 848.189872][T18442] Process accounting resumed
[ 849.183535][T18472] random: crng reseeded on system resumption
[ 849.523202][T18458] kexec: Could not allocate control_code_buffer
[ 851.436217][T18529] random: crng reseeded on system resumption
[ 851.913645][T18511] kexec: Could not allocate control_code_buffer
[ 853.130932][T18535] kexec: Could not allocate control_code_buffer
[ 854.873191][T18572] kexec: Could not allocate control_code_buffer
[ 857.210821][T18612] kexec: Could not allocate control_code_buffer
[ 858.583079][T18645] kexec: Could not allocate control_code_buffer
[ 861.008725][T18701] kexec: Could not allocate control_code_buffer
[ 862.012501][T18716] kexec: Could not allocate control_code_buffer
[ 862.067893][T18736] random: crng reseeded on system resumption
[ 866.017661][T18799] kexec: Could not allocate control_code_buffer
[ 869.421847][T18867] kexec: Could not allocate control_code_buffer
[ 870.231994][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 870.238421][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 871.809991][T18913] kexec: Could not allocate control_code_buffer
[ 872.810273][T18934] kexec: Could not allocate control_code_buffer
[ 873.862325][T18953] kexec: Could not allocate control_code_buffer
[ 874.755163][T18988] random: crng reseeded on system resumption
[ 875.543212][T18984] kexec: Could not allocate control_code_buffer
[ 877.659121][T19029] kexec: Could not allocate control_code_buffer
[ 879.165524][T19055] Process accounting paused
[ 880.981247][T19080] kexec: Could not allocate control_code_buffer
[ 882.733125][T19112] kexec: Could not allocate control_code_buffer
[ 884.141406][T19135] kexec: Could not allocate control_code_buffer
[ 885.412927][T19169] kexec: Could not allocate control_code_buffer
[ 888.049032][T19204] kexec: Could not allocate control_code_buffer
[ 894.101046][T19323] kexec: Could not allocate control_code_buffer
[ 895.423719][T19352] kexec: Could not allocate control_code_buffer
[ 898.620691][T19407] kexec: Could not allocate control_code_buffer
[ 900.705402][T19433] kexec: Could not allocate control_code_buffer
[ 902.454287][T19467] kexec: Could not allocate control_code_buffer
[ 903.372093][T19483] kexec: Could not allocate control_code_buffer
[ 904.842195][T19504] kexec: Could not allocate control_code_buffer
[ 905.877709][T19539] Invalid ELF header magic: != ELF
[ 906.393553][T19538] kexec: Could not allocate control_code_buffer
[ 909.153002][T19585] kexec: Could not allocate control_code_buffer
[ 910.503519][T19616] kexec: Could not allocate control_code_buffer
[ 911.046166][T19611] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 911.566881][T19599] Process accounting resumed
[ 911.666663][T15078] Bluetooth: hci1: command 0x0406 tx timeout
[ 911.830244][T19628] kexec: Could not allocate control_code_buffer
[ 912.295672][T19643] Invalid ELF header magic: != ELF
[ 915.121205][T19674] kexec: Could not allocate control_code_buffer
[ 917.193686][T19700] kexec: Could not allocate control_code_buffer
[ 919.885402][T19745] kexec: Could not allocate control_code_buffer
[ 925.561235][T19850] kexec: Could not allocate control_code_buffer
[ 926.945864][T19900] netlink: 186 bytes leftover after parsing attributes in process `syz.3.2647'.
[ 928.469475][T19909] kexec: Could not allocate control_code_buffer
[ 930.282636][T19942] kexec: Could not allocate control_code_buffer
[ 931.670863][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 931.678119][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 934.102468][T20003] kexec: Could not allocate control_code_buffer
[ 935.777649][T20025] kexec: Could not allocate control_code_buffer
[ 938.100518][T20056] kexec: Could not allocate control_code_buffer
[ 940.574467][T20101] kexec: Could not allocate control_code_buffer
[ 943.158916][T20146] kexec: Could not allocate control_code_buffer
[ 943.469778][T20146] Process accounting paused
[ 945.209688][T20180] kexec: Could not allocate control_code_buffer
[ 946.016693][T20215] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 947.055993][T20234] NFSD: Failed to start, no listeners configured.
[ 948.068556][T15078] Bluetooth: hci1: command 0x0406 tx timeout
[ 948.591926][T20243] kexec: Could not allocate control_code_buffer
[ 948.753611][T20265] blktrace: Concurrent blktraces are not allowed on loop2
[ 949.748387][T20269] kexec: Could not allocate control_code_buffer
[ 949.991351][T20281] blktrace: Concurrent blktraces are not allowed on loop2
[ 951.055058][T20278] kexec: Could not allocate control_code_buffer
[ 954.282377][T20328] kexec: Could not allocate control_code_buffer
[ 956.760407][T20366] kexec: Could not allocate control_code_buffer
[ 958.221430][T20389] kexec: Could not allocate control_code_buffer
[ 958.774471][T20386] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 959.345826][T15078] Bluetooth: hci1: command 0x0406 tx timeout
[ 960.837485][T20428] kexec: Could not allocate control_code_buffer
[ 961.759944][T20454] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 963.826897][T15078] Bluetooth: hci1: command 0x0406 tx timeout
[ 965.443985][T20495] kexec: Could not allocate control_code_buffer
[ 965.984773][T20513] Invalid ELF header magic: != ELF
[ 966.142436][T20520] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 968.225592][T15078] Bluetooth: hci1: command 0x0406 tx timeout
[ 969.670026][T20562] kexec: Could not allocate control_code_buffer
[ 969.913656][T20583] Invalid ELF header magic: != ELF
[ 971.541792][T20595] kexec: Could not allocate control_code_buffer
[ 971.977617][T20615] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 973.512373][T20625] Process accounting resumed
[ 973.985893][T15078] Bluetooth: hci1: command 0x0406 tx timeout
[ 981.931874][T20760] kexec: Could not allocate control_code_buffer
[ 982.394494][T20788] blktrace: Concurrent blktraces are not allowed on loop2
[ 984.489214][T20824] blktrace: Concurrent blktraces are not allowed on loop2
[ 986.798744][T20855] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 986.817642][T20838] kexec: Could not allocate control_code_buffer
[ 988.870276][T15078] Bluetooth: hci1: command 0x0406 tx timeout
[ 989.019081][T20875] kexec: Could not allocate control_code_buffer
[ 991.094050][T20908] kexec: Could not allocate control_code_buffer
[ 993.111353][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 993.117808][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 993.156456][T20955] kexec: Could not allocate control_code_buffer
[ 994.888143][T20988] kexec: Could not allocate control_code_buffer
[ 997.559693][T21070] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 999.587270][T15078] Bluetooth: hci1: command 0x0406 tx timeout
[ 1000.450236][T21102] kexec: Could not allocate control_code_buffer
[ 1001.935198][T21137] kexec: Could not allocate control_code_buffer
[ 1004.076032][T21169] kexec: Could not allocate control_code_buffer
[ 1004.212325][T21178] Process accounting paused
[ 1006.134391][T21219] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1006.378218][T21191] kexec: Could not allocate control_code_buffer
[ 1008.152511][T15078] Bluetooth: hci1: command 0x0406 tx timeout
[ 1009.041678][T21256] kexec: Could not allocate control_code_buffer
[ 1010.127127][T21280] kexec: Could not allocate control_code_buffer
[ 1010.553940][T21307] blktrace: Concurrent blktraces are not allowed on loop2
[ 1012.539261][T21322] kexec: Could not allocate control_code_buffer
[ 1014.183918][T21347] kexec: Could not allocate control_code_buffer
[ 1016.164063][T21389] kexec: Could not allocate control_code_buffer
[ 1017.673551][T21409] kexec: Could not allocate control_code_buffer
[ 1019.708340][T21452] kexec: Could not allocate control_code_buffer
[ 1023.366712][T21520] kexec: Could not allocate control_code_buffer
[ 1025.838571][T21558] kexec: Could not allocate control_code_buffer
[ 1027.284889][T21585] kexec: Could not allocate control_code_buffer
[ 1029.352805][T21625] kexec: Could not allocate control_code_buffer
[ 1030.659818][T21663] zswap: compressor not available
[ 1032.931067][T21695] kexec: Could not allocate control_code_buffer
[ 1035.010963][T21735] Process accounting resumed
[ 1035.912034][T21753] misc userio: Invalid payload size
[ 1036.444975][T21746] kexec: Could not allocate control_code_buffer
[ 1039.440278][T21806] kexec: Could not allocate control_code_buffer
[ 1040.630191][T21831] kexec: Could not allocate control_code_buffer
[ 1042.942374][T21871] kexec: Could not allocate control_code_buffer
[ 1043.617633][T21891] zswap: compressor not available
[ 1044.582318][T21894] kexec: Could not allocate control_code_buffer
[ 1046.364278][T21921] kexec: Could not allocate control_code_buffer
[ 1047.741706][T21942] kexec: Could not allocate control_code_buffer
[ 1050.668697][T21998] kexec: Could not allocate control_code_buffer
[ 1052.379590][T22023] kexec: Could not allocate control_code_buffer
[ 1053.523982][T22069] misc userio: Invalid payload size
[ 1054.248516][T22068] kexec: Could not allocate control_code_buffer
[ 1054.562166][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.568943][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 1057.420809][T22120] kexec: Could not allocate control_code_buffer
[ 1058.050539][T22142] misc userio: Invalid payload size
[ 1060.024169][T22165] kexec: Could not allocate control_code_buffer
[ 1061.526824][T22189] kexec: Could not allocate control_code_buffer
[ 1062.717882][T22211] kexec: Could not allocate control_code_buffer
[ 1065.513985][T22263] kexec: Could not allocate control_code_buffer
[ 1065.795332][T22265] Process accounting paused
[ 1069.299102][T22321] kexec: Could not allocate control_code_buffer
[ 1069.805645][T22350] misc userio: Invalid payload size
[ 1072.315402][T22399] zswap: compressor not available
[ 1078.464366][T22497] kexec: Could not allocate control_code_buffer
[ 1080.984688][T22539] kexec: Could not allocate control_code_buffer
[ 1084.127881][T22608] kexec: Could not allocate control_code_buffer
[ 1084.776449][T22637] mkiss: ax0: crc mode is auto.
[ 1088.412413][T22682] kexec: Could not allocate control_code_buffer
[ 1089.254126][ T29] audit: type=1326 audit(2147484245.602:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22707 comm="syz.1.3178" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fcba299c139 code=0x0
[ 1090.647038][T22717] kexec: Could not allocate control_code_buffer
[ 1092.487518][T22773] bond0: invalid ARP target specified
[ 1092.499199][T22773] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3190'.
[ 1092.508167][T22773] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1092.515619][T22773] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1092.546530][T22773] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1092.571812][T22773] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1092.601444][T22774] FAULT_INJECTION: forcing a failure.
[ 1092.601444][T22774] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1092.631879][T22774] CPU: 1 UID: 0 PID: 22774 Comm: syz.2.3190 Tainted: G L syzkaller #0 PREEMPT(full)
[ 1092.631924][T22774] Tainted: [L]=SOFTLOCKUP
[ 1092.631936][T22774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1092.631953][T22774] Call Trace:
[ 1092.631962][T22774]
[ 1092.631969][T22774] dump_stack_lvl+0x100/0x190
[ 1092.631997][T22774] should_fail_ex.cold+0x5/0xa
[ 1092.632018][T22774] ? prepare_alloc_pages+0x16d/0x5f0
[ 1092.632044][T22774] should_fail_alloc_page+0xeb/0x140
[ 1092.632069][T22774] prepare_alloc_pages+0x1f0/0x5f0
[ 1092.632095][T22774] __alloc_frozen_pages_noprof+0x19a/0x2ba0
[ 1092.632119][T22774] ? __lock_acquire+0x4a5/0x2630
[ 1092.632142][T22774] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1092.632163][T22774] ? do_raw_spin_lock+0x128/0x260
[ 1092.632183][T22774] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1092.632203][T22774] ? find_held_lock+0x2b/0x80
[ 1092.632230][T22774] ? __lock_acquire+0x4a5/0x2630
[ 1092.632247][T22774] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1092.632270][T22774] ? policy_nodemask+0xed/0x4f0
[ 1092.632293][T22774] alloc_pages_mpol+0x1fb/0x550
[ 1092.632316][T22774] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1092.632337][T22774] ? __folio_batch_add_and_move+0x5e5/0xc60
[ 1092.632357][T22774] ? __folio_batch_add_and_move+0x5e5/0xc60
[ 1092.632380][T22774] folio_alloc_mpol_noprof+0x36/0x340
[ 1092.632396][T22774] shmem_alloc_folio+0x135/0x160
[ 1092.632413][T22774] shmem_alloc_and_add_folio+0x371/0xd40
[ 1092.632437][T22774] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 1092.632458][T22774] ? shmem_allowable_huge_orders+0x2bd/0x400
[ 1092.632482][T22774] shmem_get_folio_gfp+0x6ab/0x1900
[ 1092.632505][T22774] ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1092.632525][T22774] ? filemap_map_pages+0x9e0/0x2170
[ 1092.632547][T22774] shmem_fault+0x1f9/0xa20
[ 1092.632565][T22774] ? __lock_acquire+0x4a5/0x2630
[ 1092.632582][T22774] ? __pfx_shmem_fault+0x10/0x10
[ 1092.632604][T22774] ? __pfx_filemap_map_pages+0x10/0x10
[ 1092.632627][T22774] __do_fault+0x10d/0x550
[ 1092.632650][T22774] do_fault+0xaf9/0x1a00
[ 1092.632667][T22774] __handle_mm_fault+0x180f/0x2b60
[ 1092.632686][T22774] ? mt_find+0x45e/0x8e0
[ 1092.632703][T22774] ? __pfx___handle_mm_fault+0x10/0x10
[ 1092.632718][T22774] ? __pfx_mt_find+0x10/0x10
[ 1092.632743][T22774] ? find_vma+0xbf/0x140
[ 1092.632763][T22774] ? __pfx_find_vma+0x10/0x10
[ 1092.632785][T22774] handle_mm_fault+0x36d/0xa20
[ 1092.632805][T22774] do_user_addr_fault+0x74c/0x12f0
[ 1092.632834][T22774] exc_page_fault+0x6f/0xd0
[ 1092.632857][T22774] asm_exc_page_fault+0x26/0x30
[ 1092.632871][T22774] RIP: 0010:rep_movs_alternative+0x4a/0x90
[ 1092.632891][T22774] Code: 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 e9 8f 93 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[ 1092.632905][T22774] RSP: 0018:ffffc90004ca7d30 EFLAGS: 00050206
[ 1092.632918][T22774] RAX: 0000000000000001 RBX: 0000000000001fe4 RCX: 0000000000005b84
[ 1092.632928][T22774] RDX: 0000000000000001 RSI: 0000000000004000 RDI: ffffc90004b9a07c
[ 1092.632937][T22774] RBP: 0000000000007ba0 R08: 0000000000000001 R09: fffff52000973f7f
[ 1092.632947][T22774] R10: ffffc90004b9fbff R11: 0000000000000000 R12: 0000000000000000
[ 1092.632956][T22774] R13: ffffc90004b98060 R14: 0000000000007ba0 R15: ffffc90004b98060
[ 1092.632975][T22774] _copy_from_user+0x98/0xd0
[ 1092.632996][T22774] bpf_prog_create_from_user+0x109/0x2f0
[ 1092.633022][T22774] ? __pfx_seccomp_check_filter+0x10/0x10
[ 1092.633042][T22774] do_seccomp+0x7f7/0x2740
[ 1092.633064][T22774] ? __pfx_do_seccomp+0x10/0x10
[ 1092.633081][T22774] ? __x64_sys_openat+0x12d/0x210
[ 1092.633099][T22774] ? xfd_validate_state+0x129/0x190
[ 1092.633127][T22774] do_syscall_64+0x106/0xf80
[ 1092.633140][T22774] ? clear_bhb_loop+0x40/0x90
[ 1092.633158][T22774] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1092.633172][T22774] RIP: 0033:0x7f34f259c139
[ 1092.633185][T22774] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1092.633198][T22774] RSP: 002b:00007f34f33f1028 EFLAGS: 00000246 ORIG_RAX: 000000000000013d
[ 1092.633211][T22774] RAX: ffffffffffffffda RBX: 00007f34f2816090 RCX: 00007f34f259c139
[ 1092.633221][T22774] RDX: 0000200000000100 RSI: 0000000000000000 RDI: 0000000000000001
[ 1092.633230][T22774] RBP: 00007f34f26327e0 R08: 0000000000000000 R09: 0000000000000000
[ 1092.633239][T22774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1092.633248][T22774] R13: 00007f34f2816128 R14: 00007f34f2816090 R15: 00007fff6a986ff8
[ 1092.633268][T22774]
[ 1093.149311][T22748] kexec: Could not allocate control_code_buffer
[ 1094.708804][T22792] kexec: Could not allocate control_code_buffer
[ 1095.128164][T22811] mkiss: ax0: crc mode is auto.
[ 1096.378950][T22804] kexec: Could not allocate control_code_buffer
[ 1096.539534][T22804] Process accounting resumed
[ 1098.290146][ T29] audit: type=1326 audit(2147484254.642:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22857 comm="syz.3.3206" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f184959c139 code=0x0
[ 1098.424304][T22848] kexec: Could not allocate control_code_buffer
[ 1100.649517][T22889] kexec: Could not allocate control_code_buffer
[ 1103.917902][T22955] kexec: Could not allocate control_code_buffer
[ 1104.555442][T22983] bond0: invalid ARP target specified
[ 1104.568651][T22983] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3231'.
[ 1104.584833][T22983] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1104.594126][T22983] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1104.608757][T22983] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1104.634855][T22983] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1104.654588][T22987] FAULT_INJECTION: forcing a failure.
[ 1104.654588][T22987] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1104.674837][T22987] CPU: 1 UID: 0 PID: 22987 Comm: syz.3.3231 Tainted: G L syzkaller #0 PREEMPT(full)
[ 1104.674881][T22987] Tainted: [L]=SOFTLOCKUP
[ 1104.674891][T22987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1104.674907][T22987] Call Trace:
[ 1104.674917][T22987]
[ 1104.674927][T22987] dump_stack_lvl+0x100/0x190
[ 1104.674983][T22987] should_fail_ex.cold+0x5/0xa
[ 1104.675010][T22987] ? prepare_alloc_pages+0x16d/0x5f0
[ 1104.675056][T22987] should_fail_alloc_page+0xeb/0x140
[ 1104.675097][T22987] prepare_alloc_pages+0x1f0/0x5f0
[ 1104.675143][T22987] __alloc_frozen_pages_noprof+0x19a/0x2ba0
[ 1104.675185][T22987] ? __lock_acquire+0x4a5/0x2630
[ 1104.675227][T22987] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1104.675266][T22987] ? do_raw_spin_lock+0x128/0x260
[ 1104.675305][T22987] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1104.675343][T22987] ? find_held_lock+0x2b/0x80
[ 1104.675394][T22987] ? __lock_acquire+0x4a5/0x2630
[ 1104.675427][T22987] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1104.675470][T22987] ? policy_nodemask+0xed/0x4f0
[ 1104.675515][T22987] alloc_pages_mpol+0x1fb/0x550
[ 1104.675555][T22987] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1104.675593][T22987] ? __folio_batch_add_and_move+0x5e5/0xc60
[ 1104.675632][T22987] ? __folio_batch_add_and_move+0x5e5/0xc60
[ 1104.675675][T22987] folio_alloc_mpol_noprof+0x36/0x340
[ 1104.675708][T22987] shmem_alloc_folio+0x135/0x160
[ 1104.675739][T22987] shmem_alloc_and_add_folio+0x371/0xd40
[ 1104.675786][T22987] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 1104.675826][T22987] ? shmem_allowable_huge_orders+0x2bd/0x400
[ 1104.675872][T22987] shmem_get_folio_gfp+0x6ab/0x1900
[ 1104.675918][T22987] ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1104.675967][T22987] ? filemap_map_pages+0x9e0/0x2170
[ 1104.676011][T22987] shmem_fault+0x1f9/0xa20
[ 1104.676047][T22987] ? __lock_acquire+0x4a5/0x2630
[ 1104.676081][T22987] ? __pfx_shmem_fault+0x10/0x10
[ 1104.676124][T22987] ? __pfx_filemap_map_pages+0x10/0x10
[ 1104.676168][T22987] __do_fault+0x10d/0x550
[ 1104.676211][T22987] do_fault+0xaf9/0x1a00
[ 1104.676243][T22987] __handle_mm_fault+0x180f/0x2b60
[ 1104.676281][T22987] ? mt_find+0x45e/0x8e0
[ 1104.676310][T22987] ? __pfx___handle_mm_fault+0x10/0x10
[ 1104.676341][T22987] ? __pfx_mt_find+0x10/0x10
[ 1104.676386][T22987] ? find_vma+0xbf/0x140
[ 1104.676424][T22987] ? __pfx_find_vma+0x10/0x10
[ 1104.676466][T22987] handle_mm_fault+0x36d/0xa20
[ 1104.676501][T22987] do_user_addr_fault+0x74c/0x12f0
[ 1104.676549][T22987] exc_page_fault+0x6f/0xd0
[ 1104.676587][T22987] asm_exc_page_fault+0x26/0x30
[ 1104.676612][T22987] RIP: 0010:rep_movs_alternative+0x4a/0x90
[ 1104.676644][T22987] Code: 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 e9 8f 93 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[ 1104.676669][T22987] RSP: 0018:ffffc90003857d30 EFLAGS: 00050206
[ 1104.676690][T22987] RAX: 0000000000000001 RBX: 0000000000001fe4 RCX: 0000000000002b84
[ 1104.676705][T22987] RDX: 0000000000000001 RSI: 0000000000007000 RDI: ffffc9000504d07c
[ 1104.676721][T22987] RBP: 0000000000007ba0 R08: 0000000000000001 R09: fffff52000a09f7f
[ 1104.676736][T22987] R10: ffffc9000504fbff R11: 0000000000000000 R12: 0000000000000000
[ 1104.676751][T22987] R13: ffffc90005048060 R14: 0000000000007ba0 R15: ffffc90005048060
[ 1104.676783][T22987] _copy_from_user+0x98/0xd0
[ 1104.676817][T22987] bpf_prog_create_from_user+0x109/0x2f0
[ 1104.676846][T22987] ? __pfx_seccomp_check_filter+0x10/0x10
[ 1104.676877][T22987] do_seccomp+0x7f7/0x2740
[ 1104.676914][T22987] ? __pfx_do_seccomp+0x10/0x10
[ 1104.676949][T22987] ? __x64_sys_openat+0x12d/0x210
[ 1104.676978][T22987] ? xfd_validate_state+0x129/0x190
[ 1104.677025][T22987] do_syscall_64+0x106/0xf80
[ 1104.677047][T22987] ? clear_bhb_loop+0x40/0x90
[ 1104.677077][T22987] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1104.677102][T22987] RIP: 0033:0x7f184959c139
[ 1104.677122][T22987] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1104.677145][T22987] RSP: 002b:00007f184a50f028 EFLAGS: 00000246 ORIG_RAX: 000000000000013d
[ 1104.677167][T22987] RAX: ffffffffffffffda RBX: 00007f1849816090 RCX: 00007f184959c139
[ 1104.677183][T22987] RDX: 0000200000000100 RSI: 0000000000000000 RDI: 0000000000000001
[ 1104.677198][T22987] RBP: 00007f18496327e0 R08: 0000000000000000 R09: 0000000000000000
[ 1104.677213][T22987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1104.677228][T22987] R13: 00007f1849816128 R14: 00007f1849816090 R15: 00007ffc2539ba78
[ 1104.677262][T22987]
[ 1106.763978][T23000] kexec: Could not allocate control_code_buffer
[ 1108.328503][T23032] kexec: Could not allocate control_code_buffer
[ 1109.883684][T23079] mkiss: ax0: crc mode is auto.
[ 1110.355440][T23063] kexec: Could not allocate control_code_buffer
[ 1114.852658][T23141] kexec: Could not allocate control_code_buffer
[ 1115.989766][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 1115.999002][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 1118.427918][T23220] kexec: Could not allocate control_code_buffer
[ 1119.695081][T23225] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1120.692778][ T5888] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1120.710490][ T5888] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1120.718028][ T5888] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1120.725699][ T5888] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1120.754849][ T5888] rtc rtc0: __rtc_set_alarm: err=-22
[ 1122.256282][T23285] kexec: Could not allocate control_code_buffer
[ 1126.566342][T23383] blktrace: Concurrent blktraces are not allowed on loop2
[ 1126.928679][T23376] Process accounting paused
[ 1126.947238][T23370] kexec: Could not allocate control_code_buffer
[ 1128.569133][T23405] kexec: Could not allocate control_code_buffer
[ 1132.634293][T23471] kexec: Could not allocate control_code_buffer
[ 1136.575235][T23535] kexec: Could not allocate control_code_buffer
[ 1136.788366][T23557] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3342'.
[ 1138.149841][T23572] kexec: Could not allocate control_code_buffer
[ 1140.503802][T23610] kexec: Could not allocate control_code_buffer
[ 1142.372872][T23671] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3366'.
[ 1142.427042][T23671] macvlan1: entered promiscuous mode
[ 1142.440199][T23671] macvlan1: entered allmulticast mode
[ 1142.450234][T23671] veth1_vlan: entered allmulticast mode
[ 1143.749612][T23682] kexec: Could not allocate control_code_buffer
[ 1145.002044][T23717] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3376'.
[ 1146.137702][T23737] zswap: compressor not available
[ 1148.160327][T23766] kexec: Could not allocate control_code_buffer
[ 1150.267473][T23826] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3401'.
[ 1150.881859][T23817] kexec: Could not allocate control_code_buffer
[ 1153.176267][T23862] kexec: Could not allocate control_code_buffer
[ 1154.533362][T23893] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3417'.
[ 1154.590628][T23882] kexec: Could not allocate control_code_buffer
[ 1157.190740][T23938] kexec: Could not allocate control_code_buffer
[ 1157.365551][T23951] Process accounting resumed
[ 1161.171773][T24011] kexec: Could not allocate control_code_buffer
[ 1162.582556][T24034] kexec: Could not allocate control_code_buffer
[ 1165.202994][T24083] kexec: Could not allocate control_code_buffer
[ 1167.073788][T24115] kexec: Could not allocate control_code_buffer
[ 1169.411025][T24161] kexec: Could not allocate control_code_buffer
[ 1172.250461][T24207] kexec: Could not allocate control_code_buffer
[ 1174.749425][T24257] kexec: Could not allocate control_code_buffer
[ 1176.773448][T24282] kexec: Could not allocate control_code_buffer
[ 1177.429270][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.435926][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 1178.310753][T24320] kexec: Could not allocate control_code_buffer
[ 1182.673687][T24387] kexec: Could not allocate control_code_buffer
[ 1186.199683][T24464] kexec: Could not allocate control_code_buffer
[ 1187.643426][T24488] Process accounting paused
[ 1188.703038][T24491] kexec: Could not allocate control_code_buffer
[ 1190.083819][T24523] kexec: Could not allocate control_code_buffer
[ 1193.738630][T24570] kexec: Could not allocate control_code_buffer
[ 1198.936921][T24659] kexec: Could not allocate control_code_buffer
[ 1202.575738][T24723] kexec: Could not allocate control_code_buffer
[ 1206.371804][T24781] kexec: Could not allocate control_code_buffer
[ 1208.021565][T24802] kexec: Could not allocate control_code_buffer
[ 1211.014411][T24861] kexec: Could not allocate control_code_buffer
[ 1212.712888][T24878] kexec: Could not allocate control_code_buffer
[ 1214.818924][T24911] kexec: Could not allocate control_code_buffer
[ 1217.958200][T24958] kexec: Could not allocate control_code_buffer
[ 1218.087429][T24958] Process accounting resumed
[ 1219.669379][T24983] kexec: Could not allocate control_code_buffer
[ 1222.596916][T25040] kexec: Could not allocate control_code_buffer
[ 1224.370708][T25076] kexec: Could not allocate control_code_buffer
[ 1226.968039][T25117] kexec: Could not allocate control_code_buffer
[ 1228.938599][T25141] kexec: Could not allocate control_code_buffer
[ 1230.293198][T25166] kexec: Could not allocate control_code_buffer
[ 1230.711663][T25199] Console: switching to colour VGA+ 80x25
[ 1232.882408][T25213] kexec: Could not allocate control_code_buffer
[ 1234.432373][T25237] kexec: Could not allocate control_code_buffer
[ 1238.868323][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 1238.874843][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 1240.773277][T25350] kexec: Could not allocate control_code_buffer
[ 1242.462941][T25379] kexec: Could not allocate control_code_buffer
[ 1248.296087][T25478] Process accounting paused
[ 1261.803230][T25706] kexec: Could not allocate control_code_buffer
[ 1263.592921][T25730] kexec: Could not allocate control_code_buffer
[ 1266.407009][T25777] kexec: Could not allocate control_code_buffer
[ 1268.178385][T25809] kexec: Could not allocate control_code_buffer
[ 1269.778177][T25834] kexec: Could not allocate control_code_buffer
[ 1270.117266][ T29] audit: type=1807 audit(2147484426.473:40): UNKNOWN=0"]$|1j0B|d�ӉO+/xWӦ^gq%ḦrO� res=0
[ 1270.120492][T25861] ima: policy update failed
[ 1270.129371][ T29] audit: type=1802 audit(2147484426.473:41): pid=25861 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.3.3785" res=0 errno=0
[ 1270.236384][T25858] serio: Serial port pty6
[ 1270.244406][ T29] audit: type=1802 audit(2147484426.563:42): pid=25861 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.3785" res=0 errno=0
[ 1272.424316][T25882] kexec: Could not allocate control_code_buffer
[ 1273.939562][T25902] kexec: Could not allocate control_code_buffer
[ 1275.345146][T25944] FAULT_INJECTION: forcing a failure.
[ 1275.345146][T25944] name failslab, interval 1, probability 0, space 0, times 0
[ 1275.394085][T25944] CPU: 1 UID: 0 PID: 25944 Comm: syz.3.3799 Tainted: G L syzkaller #0 PREEMPT(full)
[ 1275.394132][T25944] Tainted: [L]=SOFTLOCKUP
[ 1275.394141][T25944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1275.394157][T25944] Call Trace:
[ 1275.394166][T25944]
[ 1275.394176][T25944] dump_stack_lvl+0x100/0x190
[ 1275.394225][T25944] should_fail_ex.cold+0x5/0xa
[ 1275.394254][T25944] should_failslab+0xc2/0x120
[ 1275.394291][T25944] __kmalloc_cache_noprof+0x7a/0x6f0
[ 1275.394318][T25944] ? snd_pcm_oss_change_params_locked+0x247/0x39f0
[ 1275.394359][T25944] snd_pcm_oss_change_params_locked+0x247/0x39f0
[ 1275.394394][T25944] ? rcu_is_watching+0x12/0xc0
[ 1275.394430][T25944] ? trace_contention_end+0x140/0x180
[ 1275.394464][T25944] ? aa_file_perm+0x277/0x1530
[ 1275.394504][T25944] ? snd_pcm_oss_write+0x49a/0xa30
[ 1275.394537][T25944] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[ 1275.394574][T25944] ? __pfx___mutex_lock+0x10/0x10
[ 1275.394598][T25944] ? try_to_wake_up+0x644/0x1a80
[ 1275.394650][T25944] ? __pfx_try_to_wake_up+0x10/0x10
[ 1275.394692][T25944] ? futex_wake+0x456/0x530
[ 1275.394730][T25944] snd_pcm_oss_make_ready_locked+0xb7/0x130
[ 1275.394767][T25944] snd_pcm_oss_write+0x4bb/0xa30
[ 1275.394803][T25944] ? bpf_lsm_file_permission+0x9/0x10
[ 1275.394837][T25944] ? security_file_permission+0x76/0x210
[ 1275.394881][T25944] vfs_write+0x2aa/0x1070
[ 1275.394915][T25944] ? __pfx_snd_pcm_oss_write+0x10/0x10
[ 1275.394951][T25944] ? __pfx_vfs_write+0x10/0x10
[ 1275.394982][T25944] ? find_held_lock+0x2b/0x80
[ 1275.395017][T25944] ? __fget_files+0x215/0x3d0
[ 1275.395049][T25944] ? __fget_files+0x215/0x3d0
[ 1275.395087][T25944] ? __fget_files+0x21f/0x3d0
[ 1275.395130][T25944] ksys_write+0x12a/0x250
[ 1275.395163][T25944] ? __pfx_ksys_write+0x10/0x10
[ 1275.395206][T25944] do_syscall_64+0x106/0xf80
[ 1275.395229][T25944] ? clear_bhb_loop+0x40/0x90
[ 1275.395259][T25944] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1275.395284][T25944] RIP: 0033:0x7f184959c139
[ 1275.395306][T25944] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1275.395338][T25944] RSP: 002b:00007f184a50f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1275.395363][T25944] RAX: ffffffffffffffda RBX: 00007f1849816090 RCX: 00007f184959c139
[ 1275.395380][T25944] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003
[ 1275.395396][T25944] RBP: 00007f18496327e0 R08: 0000000000000000 R09: 0000000000000000
[ 1275.395412][T25944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1275.395427][T25944] R13: 00007f1849816128 R14: 00007f1849816090 R15: 00007ffc2539ba78
[ 1275.395461][T25944]
[ 1277.504900][T25949] kexec: Could not allocate control_code_buffer
[ 1278.801489][T25979] kexec: Could not allocate control_code_buffer
[ 1279.478097][T25986] Process accounting resumed
[ 1279.836514][T26022] serio: Serial port pty6
[ 1280.472451][T26013] ima: policy update failed
[ 1280.493189][ T29] audit: type=1802 audit(2147484436.843:43): pid=26013 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.3813" res=0 errno=0
[ 1281.378231][T26018] kexec: Could not allocate control_code_buffer
[ 1282.778847][T26049] kexec: Could not allocate control_code_buffer
[ 1284.682478][T26074] kexec: Could not allocate control_code_buffer
[ 1285.959637][T26096] kexec: Could not allocate control_code_buffer
[ 1288.248213][T26124] kexec: Could not allocate control_code_buffer
[ 1289.745227][T26143] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1290.385645][T15078] Bluetooth: hci1: command 0x0406 tx timeout
[ 1290.665951][T26151] kexec: Could not allocate control_code_buffer
[ 1293.959726][T26209] kexec: Could not allocate control_code_buffer
[ 1294.090626][T26194] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1294.465049][T15078] Bluetooth: hci1: command 0x0406 tx timeout
[ 1295.304140][T26221] kexec: Could not allocate control_code_buffer
[ 1296.868267][T26238] kexec: Could not allocate control_code_buffer
[ 1298.019860][T26282] Oops: general protection fault, probably for non-canonical address 0xdffffc000000001e: 0000 [#1] SMP KASAN PTI
[ 1298.031805][T26282] KASAN: null-ptr-deref in range [0x00000000000000f0-0x00000000000000f7]
[ 1298.040259][T26282] CPU: 1 UID: 0 PID: 26282 Comm: syz.0.3862 Tainted: G L syzkaller #0 PREEMPT(full)
[ 1298.051230][T26282] Tainted: [L]=SOFTLOCKUP
[ 1298.055563][T26282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1298.065650][T26282] RIP: 0010:grab_requested_root+0xde/0x3c0
[ 1298.071511][T26282] Code: 02 00 00 49 39 5d 18 0f 84 cd 01 00 00 e8 5a d9 76 ff 48 8d bb 08 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 82 02 00 00 48 8b 83 08 01 00 00 48 85 c0 0f 84
[ 1298.091180][T26282] RSP: 0018:ffffc900000e7d88 EFLAGS: 00010206
[ 1298.097275][T26282] RAX: dffffc0000000000 RBX: ffffffffffffffea RCX: ffffc9000dba1000
[ 1298.105255][T26282] RDX: 000000000000001e RSI: ffffffff82911fc6 RDI: 00000000000000f2
[ 1298.113240][T26282] RBP: ffffc900000e7db0 R08: 0000000000000005 R09: 0000000000000000
[ 1298.121220][T26282] R10: 0000000000000001 R11: 0000000000000000 R12: ffff88802fc28000
[ 1298.129196][T26282] R13: ffff88801e6eb4e0 R14: ffff888033571828 R15: ffff888033571810
[ 1298.137178][T26282] FS: 00007f1559ac26c0(0000) GS:ffff888124454000(0000) knlGS:0000000000000000
[ 1298.146119][T26282] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1298.152724][T26282] CR2: 0000001b30bf8ff8 CR3: 000000006c772000 CR4: 00000000003526f0
[ 1298.160695][T26282] Call Trace:
[ 1298.163969][T26282]
[ 1298.166895][T26282] __do_sys_statmount+0x359/0x2440
[ 1298.172026][T26282] ? __pfx___do_sys_statmount+0x10/0x10
[ 1298.177587][T26282] do_syscall_64+0x106/0xf80
[ 1298.182179][T26282] ? clear_bhb_loop+0x40/0x90
[ 1298.186863][T26282] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1298.192756][T26282] RIP: 0033:0x7f1558b9c139
[ 1298.197178][T26282] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1298.216797][T26282] RSP: 002b:00007f1559ac2028 EFLAGS: 00000246 ORIG_RAX: 00000000000001c9
[ 1298.225221][T26282] RAX: ffffffffffffffda RBX: 00007f1558e16090 RCX: 00007f1558b9c139
[ 1298.233191][T26282] RDX: 00000000000001fe RSI: 0000200000000180 RDI: 0000000000000000
[ 1298.241165][T26282] RBP: 00007f1558c327e0 R08: 0000000000000000 R09: 0000000000000000
[ 1298.249140][T26282] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 1298.257111][T26282] R13: 00007f1558e16128 R14: 00007f1558e16090 R15: 00007ffe7b1d4148
[ 1298.265088][T26282]
[ 1298.268098][T26282] Modules linked in:
[ 1298.272506][T26282] ---[ end trace 0000000000000000 ]---
[ 1298.459201][T26282] RIP: 0010:grab_requested_root+0xde/0x3c0
[ 1298.465384][T26282] Code: 02 00 00 49 39 5d 18 0f 84 cd 01 00 00 e8 5a d9 76 ff 48 8d bb 08 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 82 02 00 00 48 8b 83 08 01 00 00 48 85 c0 0f 84
[ 1298.589449][T26282] RSP: 0018:ffffc900000e7d88 EFLAGS: 00010206
[ 1298.652144][T26282] RAX: dffffc0000000000 RBX: ffffffffffffffea RCX: ffffc9000dba1000
[ 1298.660496][T26282] RDX: 000000000000001e RSI: ffffffff82911fc6 RDI: 00000000000000f2
[ 1298.688929][T26282] RBP: ffffc900000e7db0 R08: 0000000000000005 R09: 0000000000000000
[ 1298.733121][T26282] R10: 0000000000000001 R11: 0000000000000000 R12: ffff88802fc28000
[ 1298.754884][T26282] R13: ffff88801e6eb4e0 R14: ffff888033571828 R15: ffff888033571810
[ 1298.762900][T26282] FS: 00007f1559ac26c0(0000) GS:ffff888124454000(0000) knlGS:0000000000000000
[ 1298.796401][T26279] kexec: Could not allocate control_code_buffer
[ 1298.820084][T26282] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1298.836408][T26282] CR2: 00002000003ab000 CR3: 000000006c772000 CR4: 00000000003526f0
[ 1298.844503][T26282] Kernel panic - not syncing: Fatal exception
[ 1298.850920][T26282] Kernel Offset: disabled
[ 1298.855235][T26282] Rebooting in 86400 seconds..