last executing test programs: 6.638695495s ago: executing program 3 (id=4159): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x2, 0xa, 0x106) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3}, 0x55) write$auto(0x3, 0x0, 0xfdf3) close_range$auto(0x2, 0x8, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_DEL_KEY(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00032dbd7000fcdbdf250c00000000000000000600b100070000000e00f200f20ed0e2bdc32860af64000008006100080000000800420005000000b6e1342168605934af0a855d0d7aa0499554e4e553006facb65ad2033afa5cecdf2a58d20726af4aa4b021"], 0x48}, 0x1, 0x0, 0x0, 0x20040000}, 0x880) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/misc/hw_random/rng_available\x00', 0x22000, 0x0) socket(0x27, 0xa, 0x1ff) mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) sendto$auto(0x3, 0x0, 0x2000f, 0x101, &(0x7f0000000000)=@in={0x2, 0x4e22, @rand_addr=0x64010100}, 0x1c) sendto$auto(0x3, 0x0, 0x2000f, 0x101, &(0x7f0000000000)=@in={0x2, 0x4e22, @rand_addr=0x64010100}, 0x1c) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/firmware/acpi/interrupts/ff_slp_btn\x00', 0x8522, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/mac802154_hwsim/ieee802154/phy0/net/wpan0/tx_queue_len\x00', 0x80302, 0x0) sendfile$auto(r4, r4, 0x0, 0x2) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0xa0102, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/0000:00:04.0/remove\x00', 0x2801, 0x0) writev$auto(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000040), 0x400}, 0x5) sendfile$auto(r3, r3, &(0x7f0000000240)=0x6, 0x9) write$auto(r2, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92\x90|l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00'/507, 0x1098c7) mmap$auto(0x0, 0x20009, 0xb17a, 0xeb1, 0x3fd, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) lseek$auto(0x3, 0x7fffffffffffffff, 0x0) wait4$auto(0x0, 0x0, 0xf, 0x0) faccessat2$auto(0x1, 0x0, 0x4, 0x1200) 5.86975875s ago: executing program 0 (id=4162): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/sync_on_suspend\x00', 0x1a1942, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9) 5.869462551s ago: executing program 3 (id=4163): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) r1 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$auto_RTC_IRQP_READ(r1, 0x8008700b, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) getsockopt$auto_SO_RCVTIMEO_OLD(r0, 0xffffffff, 0x14, &(0x7f00000003c0)='\x00\x00+\xa2\xc7\x92\x00\x00\x00\x00\x00\x00\x03\x90\xf9\xe8\x11\x80\a :w\xac[\xbb\xac\xe3\xe0\xff8g:\x04\x00\x00\x00\x00\x00\x00\x00=r\x03\x95\x87\xbaM\xd80=\x81\x8ez\xab\xc3^\xb0\x03Ijj\xc4\xf9\xe6\x84P\x15q\xaa\xc8\x03\xba\x8c\xe3\xc3r\xb8\x1b\x98\xe8\xbc\x11.\xd9A\xb3P\xfa\x04\x95\xfc*\v\xb8\xc5\x16Z\xb7\x82\xbc\x96o\xd2G\xf8\x0f`\xa1\x1f\xc6\xd6\xc5\xdcM\x17\x11\xd2\x12\x988\xa3`\xad[UI\xf7\xc7\xcc\x13XH\xc1\x02\x84$\x97;\xebM`\x7f\xe4\x8dbe\xd8\x901\x8e\'\x10\xf6`^\xd28Xk\x03\x8d\b\xbd\xe2d\\\x11w(\xc7D!,6\x01\x00\x9f\x8bxg\xe2\xfc~\x006\x17\x9b9?,\xd8\n\x82r\x12\xa9\xfd@\x90&\xd3l\xa7[\x9bx\xf7\xb9[m\x9a\xee\"\x9e\x81|\xa4\x8f5\xea\t\x02Axu\xe9io`\x81\xb5\x89\x01\xa0\xa8~]\xd8]\x14}\x8c\xacRc\r\xb7.\x7f\xb3\x85\xff\xf5\xb0\x11/\x80{\xab)\x05\xb3HHU\xcb\x00', 0x0) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fadvise64$auto_POSIX_FADV_NORMAL(0xffffffffffffffff, 0x7, 0xd, 0x0) syz_genetlink_get_family_id$auto_tipcv2(0x0, r0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = socket(0xa, 0x1, 0x84) timer_create$auto(0x8, 0x0, 0x0) getsockopt$auto(r2, 0x84, 0x85, 0x0, 0x0) fcntl$auto(0x3, 0x8, 0x0) write$auto(0x3, 0x0, 0x7fffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x5, 0x9, 0x2000000000940, 0x1ffde, 0x7, 0x4, 0x3fe, 0x9, 0x1, 0x2, 0x7, 0x9, 0x8, 0x8, 0x407, 0x5, 0x8000000007, 0x8000, 0x0, 0x0, 0x0, 0x0, 0xf3, 0x0, 0xfffffffc, 0x0, 0x1, 0x0, [0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x80000000004, 0x0, 0x0, 0xc9, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x47e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4, 0x0, 0x0, 0x59]}, 0x400, 0x81) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="f2000000", @ANYBLOB='p\x00', @ANYRES16], 0x1ac}, 0x1, 0x0, 0x0, 0x24040840}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x19, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='.'], 0x1ac}}, 0x40000) sendmmsg$auto(r3, &(0x7f00000000c0)={{0x0, 0x0, &(0x7f0000000380)={0x0, 0xfc2}, 0xb4, 0x0, 0x80000000, 0x10000}, 0x800}, 0x7, 0x8) r4 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendmsg$auto_IEEE802154_LLSEC_LIST_SECLEVEL(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYRES32=r1, @ANYRES8=r4, @ANYRES32=r4], 0x2c}, 0x1, 0x0, 0x0, 0x4000001}, 0x400c1) read$auto(0x3, 0x0, 0x80) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x20020000) write$auto(0x3, 0x0, 0x100000000) socket(0x2, 0x1, 0x106) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, 0x0, 0xa901, 0x0) 5.623478185s ago: executing program 0 (id=4164): mmap$auto(0x200000000, 0x5, 0x8, 0x40009b72, 0x2, 0x8000) io_uring_setup$auto(0x89, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x2000b, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket(0x22, 0x2, 0x1) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) fstat$auto(r0, 0x0) r1 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0) ioctl$auto(r1, 0x3b87, 0x38) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffff9}, 0x6, 0xe27c, 0x8) openat$auto_stats_seq_fops_netdebug(0xffffffffffffff9c, 0x0, 0x88180, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0) write$auto(0x1, 0x0, 0x80000000) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x44080}, 0x4085) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) userfaultfd$auto(0x7ff) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0xffff2d53, 0x1, 0x4, 0x5, 0x6) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) getegid() bind$auto(0xffffffffffffffff, 0x0, 0x68) 5.2899169s ago: executing program 1 (id=4167): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/dummy0/carrier\x00', 0xc2061, 0x0) write$auto(r0, &(0x7f00000003c0)='7\x00\\\xa0\x04|\x00SeX\xc8cyBX\a\x00\x00\x00\x00\x00\x05\x00;R+I\x14O\'\xafQ\xde09\xea\x0f\x84\x0fg\xb7\x8b\xb1\xc6k\xc2\x06\xb7\x9f\xe13\xc4\xe9c\x0flt\xad\xb9\x16L`\n\x04\xe4f-~\xa2\xa3\xc7\xceh\x13\xe1\xb02a\x86\xe6\xf9>\x0ee\xa00\x1f\xf5\xd8\x1c!\x14\t,S\x86\x02\x00\x00\x00T\xb5', 0x80) timer_delete$auto(0x0) 5.17524492s ago: executing program 1 (id=4168): socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x2000c000}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r1 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) recvmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x2, &(0x7f0000000140)={0x0, 0x4da}, 0x6, 0x0, 0x8, 0x7ff}, 0x1000}, 0xffffffff, 0x4, 0x0) r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) ioctl$auto_UI_DEV_SETUP(r2, 0x405c5503, &(0x7f00000000c0)={{0x9, 0x800, 0x8, 0x80}, "b69a39e325760194fb4a2c36d61c9100fefbbabea6ef2f726b0a6c2ab0b2fd1678e816201cf562363e39f8195fe02b293d84ffff00ffffffffff00", 0xa}) ioctl$auto_UI_DEV_CREATE(r2, 0x5501, 0x0) ioctl$auto_UI_SET_RELBIT(r2, 0x40045566, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x230) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r3, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) msgctl$auto_MSG_INFO(0x5, 0xc, &(0x7f0000000280)={{0x9, 0xffffffffffffffff, 0xffffffffffffffff, 0x2, 0x287f, 0x2, 0x3}, 0x0, 0x0, 0x7fffffff, 0x9, 0x8, 0xffffffff, 0xfffffffffffffffe, 0x1, 0xfc2, 0x26f, @inferred, @raw=0x9}) setresgid$auto(0x0, 0xffffffffffffffff, r4) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0x1d, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}}) io_uring_register$auto(0x2, 0x9, 0x0, 0x0) socket(0x1d, 0x2, 0x6) 5.052383153s ago: executing program 2 (id=4170): r0 = socket(0xa, 0x5, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(r0, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x74) fcntl$auto(0x3, 0x4, 0xa553) fcntl$auto(0x3, 0x4, 0xa553) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) bpf$auto(0x0, &(0x7f0000000440)=@batch={0x9, 0x46e, 0x2, 0x2, 0x3, r1, 0x9, 0x1}, 0x0) mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x20008, 0xfffffffffffffffe, 0x12, 0x401, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/bpq4/statistics/rx_packets\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) mmap$auto(0x0, 0xe97f, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x0) socket(0x2, 0x3, 0xa) mmap$auto(0x0, 0x2, 0x3, 0x11, 0xfffffffffffffffa, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) unshare$auto(0x40000080) r3 = pidfd_open$auto(0x0, 0xa) setns(r3, 0x60020000) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='\xd8\xa7M\xc9\xf0\xa5\x16\x87\x16\xa2$\xc8y\xec\xf1\x16\xee3\xd1\xfd\xc7Z\xc6\xea\xcb\xaa\x15@\a\x84\x86N\tA\x19R\v\x02\xd7\x89\xcf c\x05W\x9b\xcb \x9e\xd3\x02\x16\xb2\x97\xd3\xf5\xf2\xa5\xaan3\xe4\xed\xda \x7f&C\xd3;*\x96\x17\xccI\xd4\xfa5\x8e\xca]\xf7VP\xed\xb3\x9d\xb5\xc4\xa6\xfb\xd9/^\xda@\xe2\x1d\xa2\xaf\xce\xe6\xd6\xa7\xe6\x94\x03\x1a\xd7Nv\x87\xbf@\x86\xb3\x8cH\xfe\xd1\xc8\xe9\x96\b)V\x9f\xc9\xe5\xcc\xd2\x14\x1a\xba\xf6ihlU-\x03\f\xa7}C\x99\x933\x8e\xbd\xa0\xa2p\x9b\xeb\xd9\x82\xa3Y{\t\x03\x92t\"9\xbd\xe7~f\b\x94\xce\xc9[\xb4dXc\x7f\xfeS\x0fjU\xf4\xfe\xc2e\xd9\x1d\xa5\x91\nwd\x9b\xe3f\x15\xc3\xc6\x0f\x04\x02\xbd\xf0\xed\x9fNH\xcf\xa0\x89\'\xe0\x14\x8f\xc0\xdd4\xae{\xf5\xc2,\x80\xea\x1eQ\xf2\x00l$\xad\xf8\x1d\x1a', 0x800, 0x0) pivot_root$auto(&(0x7f0000000100)='..\x00', &(0x7f0000000340)='.\x00z\x86E\xb8\xf1\xcbx\xf6cu<\x0e\xd8\xa5\xcd~\xaf\x80\xd3\xf4\xe5\x02\xf9q p\xe2\x8b\xc0\xedf\xba\x16*\x8ar\xa0\'$A\xe5\xc5\x89\xcb\xd5\xac\x98,\xd4Pycv\xdd\xa1\x84\xfb\xe9\r\x82\x15P*IM\xf7.\xf3v\x85Q\xbc:\xef\xd5\x1a\x9e\xbck\x1d\x114^\x1b\x02\xa1\xb0(\xa2\xdb\xbc\x1a\t\x94\x14\xbb\xc8\xfa\x18I\xff\x7f\xab\xf0\x8f\xd3Gr\xfb5\xf1,\x11\x052u&\xde\x9aF\n\xf0\x06\xfc\x1b\x17\x82%\x14\xb3\x19\x13\f\xbe_\xfdi\x17\xfcv\x82*\xbf<\xfa5\xfd\x8b\x1d\x99\a`\xde\xf4\x8a,\tP) \xf4\xdc\r\x17x\xc6\x18Y\xeaaUY\xeb\xd2\x81\xbare\x00\x8e\xfdA\x93\xb9\xac\xf1\x0eq\x85\xd9\x90\x8a%K\x95\x8fm\v\x98y\x9bc-\xa7;\x117\x19)\x04\xb4\nJ\x0e\x1b\x97e\xee\xdb\xc3\xca\xfe\xa7y\x12\xff\xce') connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0xc, @empty}, 0x54) recvfrom$auto(0xffffffffffffffff, 0xfffffffffffffffc, 0x5, 0x99, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) ioctl$auto(0x3, 0x541b, 0x7f) 4.641118559s ago: executing program 3 (id=4171): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/transparent_hugepage/hugepages-8kB/shmem_enabled\x00', 0x1a1842, 0x0) sendfile$auto(r0, r0, 0x0, 0x6) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r1, 0x0, 0x1f40) pwrite64$auto(r1, &(0x7f0000000040)='/dev/net/tun\x00', 0x2, 0x1000000002) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x4a083, 0x0) ioctl$auto_BLKRRPART(r2, 0x125f, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) prctl$auto(0x34, 0x17, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sysfs$auto(0x2, 0x42, 0x0) prctl$auto_PR_SYS_DISPATCH_ON(0x2, 0x1, 0x0, 0x400, 0x2) write$auto(0x3, 0x0, 0xfdf3) sendmsg$auto_NL80211_CMD_REMOVE_LINK(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x40804) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000200)={{@inferred, 0xffffffff, 0x3, 0x81, "3112d585005a614d19e22af9ffb683dbede3d0bf828bbfba40f035f4be6b7fe5e2f94bd90484b0755015e48d", @raw=0x9}, 0x400005, 0x25, 0x4, @raw=0x6, @integer={0xe7, 0x0, 0x81}, "7a9fc199a16a2311eacf2fc7ae1d8778dc610400000001000f00000000b6debe0eda71bdb5adb17884a16f7ce8c57c0eb327ac702b8d7c2d00"}) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003180), r3) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084) lstat$auto(0x0, &(0x7f0000000180)={0x5, 0x1f, 0x9, 0x62, 0x0, 0x0, 0x0, 0xffc, 0x2, 0x80000000400000a, 0xfffffffffffffffd, 0x9, 0x9, 0xffffffff80000000, 0x11, 0x20000000001, 0x7}) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r3, &(0x7f0000003400)={0x0, 0x0, &(0x7f00000033c0)={&(0x7f0000000000)={0x14, r4, 0x301, 0x70bd29, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/nbd12\x00', 0x44003, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) ioctl$auto_BLKPG(r6, 0x1269, 0x300) read$auto(r3, &(0x7f0000000080)='\x00', 0xff09) 4.281749157s ago: executing program 3 (id=4172): select$auto(0x7, 0x0, &(0x7f0000000100)={[0x9, 0x5, 0x0, 0xfffffffffffffff6, 0x7, 0xfffffffffffdffff, 0xdffffffffffffff8, 0x2, 0x0, 0x10000005e58296f, 0x1e, 0x7, 0x3, 0x200, 0x1, 0x9]}, 0x0, 0x0) mmap$auto(0x0, 0xa, 0xdb, 0x16, 0x5, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002cbd7000fcdbdf252100000008000300", @ANYRES32=r2], 0x28}}, 0x400c080) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000300), r3) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) mmap$auto(0x7fff, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) epoll_create$auto(0x7) socket(0x1d, 0x1, 0x7fff) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), 0xffffffffffffffff) r7 = mq_open$auto(0x0, 0x7e, 0x9, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2002, 0x0) mq_notify$auto(r7, 0x0) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_SET_WIPHY(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002dbd7100f97bf53b7200000408000300", @ANYRES32=r6], 0x24}, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80) syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f00000015c0), r8) sendmsg$auto_TCP_METRICS_CMD_GET(r8, &(0x7f0000001680)={&(0x7f0000001580)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001640)={&(0x7f0000001400)=ANY=[@ANYRESDEC, @ANYBLOB="6538218b3e8f876f083875ac0b81f49b1a3668d6352ec6a51b159746fde02a858dadb363b7b47bfd79e1c035c0cf2cee8d6867bdd0515ee261f855d8db278bf7b342eca5264c5274774bfa9767aa0436c9aa1dde120a72aee052222f4a7637889f2bf5568caddcf48b5407f7989c57edabcad5ae71cf45ed6508cb85bb542e8907fcce248873f9f886dfff39b4e1396073fee97695e4112ef5dd560b36596e570b6fab5bcc833ef4d4317fc8091a2bcfc48e05d96fa7b629f8ad59e7f2fe7c5b433fad99ea747ea0a6e1bcc6954da34c6a36070982d9714c88f143", @ANYBLOB="10002bbd7000ffdbdf250100000014000200fe880000000000000000000000000001"], 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r9 = getpid() process_vm_readv$auto(r9, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000100)='y%', 0xffffffff}, 0x4, 0x0) shmctl$auto_IPC_STAT(0x5, 0x2, &(0x7f0000000040)={{0x9, 0xffffffffffffffff, 0xee01, 0x9, 0x3397, 0x6, 0x4}, 0x1, 0xfff, 0x10, 0x3, @raw=0x9, @inferred=r9, 0xd, 0x0, &(0x7f0000000180)="4538054c2b37fccee2a5848fc5fa85a597526ff471d079584f0e1437e45b99e26e004963e48b7b7297c3e17aeec3e2052d9340846a54813f92e83b950320615203e8d6edc65191003209c376f7d6474eb72cf6062da6a5c707508c5650cf172f00669bc92648dea4a7ce9e6cddef5f82972cf9a5010463ba1a8f598883f00fb607fb96c01483b83cf6d4dc7e66c0a02413eb950e70e52d85c74b1bf28864479e886b8a1880bc6d6180bc1b3c6b424104e0f6b6320c7a7096", &(0x7f00000002c0)="1d09fcaecfa7d8c4f477ef0108d372a9c34d49c8403df07c9f934ca75cbb4a89ff76c32fda15501b273c65b7bcc524c5343c2ebe4aaa53e814e8fc47d9e395779d87234eaf2e7c26b1be79560c59491375875a5c1715698e216c2c1082b2c309464cd161dfa517168446a5beed1cb00a6d8773b7fde25b4afbc085cc0c71536c8db22cccc127ca5dee1f6e5be2786474af9f16313c9c72f575f8319eba04ef40a5050e95f994ed28e9e13501ca8e1d1735e52134615101d7bd5c6e77428e5b551bcf9be75b075eca3ba4bd3d23c09b3e353345ba1ea1afd295f3e9a0bb3d9a537e25d36ca0f4140a4bf623a9c1e314ec43a3fbea1ad981f8922d1ba8bd20be22a7c00f4afda67521bac00f03b05b0a847af7f7ab4ddc8d078f3d48177e1bf53c6f0c16cd5cc14ea79885759a318793b4dd99bcf05a839096b97333b7115d1f2db16789ebd153e19cf01adeb11ccdf2c9037d98eea68bbd1219f968cc8e5e6b5144500c2a11cc22357316f1b408996814382a0c573c7cbdf528d94facd47cc0196b747ba64c6a9d0cfcd9a64f666171e6b6129154f2973d8c5d5cb8543e77d9eb854a3d23e981d47741a02f2d6c9daa73cf6b00933a91e75d1c5ab1ae5a1a9d324e1a40ba17cf524a3aa1e8e9e9da513dcf0a927ded889a9f4fa6f93e7db6a9d7d33953a60c228a86bf5c457aa1ee475ec976fb1abb58200a11789dc870c833a0429373121a1b401cc1b976f94d64ee5c8e84af6ecc95d26ec6bcc573bdcbeb630cfde7076254d724c8a4c0005374f0d1bbd5ccb6f270ace3b5086aa320f9d3aea765fe038ee2ef1bae3a2fa119921a3b6a1ca9caefb24998cffd954e4764bf0fd3002b67957f4fb18a08fb719f00082f9e8d184c680248c1c8bfbd4d6f5223688bfc5ae66d8c97e4328e900c72f942f5569a32c551a052b2f4f9208032fbd90f6eda6040826fbdef4ad6b2c4ad878a4e72dfa654385310f5e46db1b2e030a7f0bfa0cce03952a76ba3c2199eca0a250ab9c2d13d9d72194e0bc06ef55b3d46dfeffcd653a4b7e689bebd02dbb6e12a5876e96a8f427f17ff7ef1fb007f902fec64d80bf4afa88109eb467967578edf698563c7d5641bf2fe792f30b987a9b90a2c296c0a752b600e1384f9e933580a209651b806a811266d18b2457c3eeec76ef78e426daa067af7dad9b12c8635e51652a25019dd0fdb8249c9e2edc2d7b4c1fb7967a77064d30459de0046aa51e83906cbab78432386dfefd21f798c943d773bb55b750db6a9e0473e5aefd50307000248edb56afd2251586545a2699227f35ce0860318333d43cdd2aa3d4e24c5dd8c06c807cb3f82d6e9b3a3412219d8ce9e7e0ab8205a88830bd521b94b4845df1bcbf8085df648cf45f36eee1b8b24917f35691da73b7f1628b20fd556cc24fdf18150c9ebe24343e5761140538fcdafa2b30c541116f758a0ae1e689d2904fe58656b468596069d649df4d382f4c02e83c61edfa5b6662d9f61191a93d9e68915bea7599310caafb50cc2779fdc30dd5aeaf8c4283297e6ca5d2ce66b854d91e4f2a9fec6ca108b6f77a221f5bad628a9c5b46a341d2c9c3bbfc33051b0344246aae7343c43d39ac01f52be1195b5f537eed20ecd1b474f83b0d273ee7c66f84d086b4de5b99a5fe8b1e17be8a8b1ae65004c7b985a19d18b88065e3483cd911006aa75b562cb0c406321f2a10d3498ddb76d5e861bf10cdfe42442422a48775cb7cb73bb681c5143c923910c6eb1d1dc76b26595f5db7a5dd6ffe1e75d807b2cb1fababefaee7410483241d030db92d752c1d338a8d18e1a983bbec7ddde408f490745a7220bdcc65160ff98441ac39f2545a5982d02aa5f7e3bbfdea8ff7af15403bc51bf0571ed0e567458dab8d685ec124c107a9a896cb7e87959c935a6c7c47a3a44403216d7c55dab779a72b169f0e758a747d4fcd2e9dff9afd5235c8c719a1886271ca5cc6b784bd90bbb606cb3b55d5f9c51e61eba0885171cb64c47eff57b1ff4895f01c92d1162b5eb5d879076165360b174399ade67b0cebe0450b519298b73dc629b6e75c835e845c90a78ad1bd9896624eb40a9cb4389463b63882fb1810dfbe0deff5eb1d780a2832cb72cd82a6449638f9eb9f894146eb319c92b1c63b84633e0a27869730e51dc5bb2b513edfb3dbb46ba868066960d6798a0598d13ba7fba41bdd95ed7a0ac7cbf9a02289f30a617b1e80bab48de24368f982ea29be1fc479dce6c574a03397eaf5a72abf7d1d52d24fde3ad407cd7a957d5b5fd2e54be80007df83b092679d859d4188c503b99d2c4f62dfbd57c99ca16d5366cefade53999c6bd61ee7003a722aa503fcfec55bc06e5860c24c094d01e130c496e294c07f3e031a76247fa10373fb41eaeb7da53bd2eaf9896af47d050308e3ce163ec21ebdbbcd32187f668c905204e47b71017225e9ec779692a8c74f2acea5eac2326433dfebb60f97f7d293697fdccc85c7f91b1734c2e3d78f08c98041292c4c43215711aa1a146c2d4b46545c4777d89d2bbe701aced419f62e306276a75b9087d1e67ac288e9a2eea1e05fee0a904c65e9f65001c89201808338a0dbd91bc81e9e1d579181af9af01ac41fec397765c5a1d9db053b4cb7e6530a91531a6e545e576563eb4dd1b0eaffc19a8eda600e2d9183b3cc019e76609216119c0ae5c175f2424f5c640f03f39f05c7acf9af15745b7d4869c09edeaf5fc2566a2fed45e43ca5d59dee6dc961abc315f1dc408b2b8bfdc5a8a7098edc1d4b179f85ee0ceb2181bda27330860b1c137893584b55fbe0acad46ba845e382d9631da676635ddc839aa978d235c9963f29500b87b09341e04cc315d71746c66d1fb1b6f155285e48bec2d5021a9b008002af58734339fdccf3d9cb6f5f4a138acd8fd03853e0244130b03695330aaada902101f3dbdef3bec833f0b2d4d592734eb680eda4e5a55efe16d79c2ba444c060633722da2011889acd0e2c88acc9cad85e627cdeaa3cfd9507236206a8da18e5bc032ce3a18ca0fcd7a44aeb83a65055a7bca825bb2496f2991461c66325a3238ab9f05574c9472fd03da46426ced11efe16b09638f513232cd19f436c99506fd15e73d4028240ae0a995abe86eeef722f8e728289b336b71863b1ea704796ed3eca34f7b292a84516afa3cdd37786f7a478e269eef885c82cc2dcaced052d29a3ed93cb1f64c109a6ce396706e8aa4c73bf34d3b7872212f3265dd1277d05213d5f6ecca8e68cf856598449eaeb300f3f90bb5f6524d888c6fb5266c71418aa1cd688486b0283e0f82a9fbfbf7e9d867a80ae17022231bd8394e93152ffc80a4c834949247656d14b4515151c30ddc573f5fce60c3583a23c6f54ee5d602e0f9dd5df06b06524fe42f46401688be03f4f32bc3461c0f44c24653e79d6a1ac4f3550c06f845b89970f223479ce97b0b0e11b76723f559ec147ea365366d310cfe2968d0cf15692c477e19c1ea89c4265a07744b8ba78d97f62e8b5686e83079860d58e555ba1ee7377314a17f392a9b0adec274c57d7b79d0b57a0e306c3d301c73e693aaea6cd0b6536b0c6a1ea2b93cca1c2f10feac11be78dabd081c31a0a6a37c8e78c76637c9c64be4a93fb2f7f1a9c403d7ec10166208a61e5fbab22ba45c3461b1d6fefadf46f4035e8a1783651923ae624ee9c2d59ca606956ffa8ed9101304158e36ef4d25aab30f7bf1e7ac13dd871a86c3419a64d5fb0159d338c1de63935e4d9295c6dabcf9f01e72ebee0d529bf2af296d534d7276fac421b0140430e9a281f88273dd73a140b4af063cf23f5a614e359a06eab4ed8be8ff813e803f69683c7f06ccf7373e31c30ab6e325e743749eeeb99e7d9e744f8c081ff68cd5be5455a75b124add3380ebed9ae5408fb4a79f2948887d9f8ae3d96b6336a9e429b169e0688dbb0bcc7b2d7e2d21877d5a22fc2c9fadc04791c5ff159fcf23f76c4744f98ccb4424b32be71354998dcba519ac22e7be04d4e2f9229e96d494e94f3cf27061816c357355d81a3c632282c3514a3381c6fd01b2e3a15cb1b23e45e5a4ae6f843fb92326652004b1badc6d5e8c97bf5611a302cd2aefce15bd9300a815734648b722b97499c46ac721cd9469e5abd61f057bf1297b31a924b94691d94c1aed28effd497e7ed49c99681ef5b10bc59dc0cbb27088d13d4553ce6186d191c6bb4a4e583c06b089c546b09e4ea03cb066a2cdc2462d0444b4049441164249d6eed2e8e4cdb50cfd800d1322401bca639a79a176226a9dabb0d0fff157880a50389a3abbb52c646ee47984fe01081f1b55f4e721204229ac2a7c468a584c6f8c28640db782322b8a256fa7437f8303d4ecefab46aaab9b5c60a961f273116f38936a6ad2b6541c23bda975a719bebca87c4126fb6a75df931836a059b62dbdbe2ae9d522097bc1865a997bde5d66d440c01e0d0a662b42a6c0bb65375ae615f2cf891c5d97bbfcedd7cfbf8196d8942599a8416d41192f5be00f13563f5630e496a565f98f5fa382c50e3ddcf4f42835edc2b595f3eeee696375a98b230b4f32a4eaf676757ff4c314e167abf8a158551855bf24534d6083b2872524219cedcf563d7d8abc464b77309211e6dd18f1733432206b6bb8792ebda411540be2adc2e60e471517732f3cb1edc32f5bc8c63ffa3f84ffa9411563e01309b45769448e1222fc2e6f521534631d922dcddceb5e45b6e1ac2bd1be23aa2bfc7cf1c3d8bb3fff2a787a3b9778e755f9e1b72ab088812bd7fa5daa3d8796f44359c0db18ad00fa0c22b7d5935db039be2da3e929da5dc8ba2cb3cf6ae72629cd733aa4bbcdcd8b6221cd8202660b6a3920ec649248ea8d8df14090de9b74ac6498c0d3db04971b0486d0a6e149985321962980a064766da277ac72f0f034774c83b299a297ca1d7bd8cc690ef32b2e4216d9bfa2fe88c69df933905fc2d8d28478541e249eaddf787898fd01cb4ae454b98e1738c3ee5ba97ea42777e4abe9e8b3b02923de9c242f69d9da9d05b815c3070517b83b83a1c0c79df8a06480705f59f0ed9f818a3897c10659dadabaa0a148548429bb30efe5324b63a6c938f75eb86017a3ca212eabaf5128cf4e30bd5e3c98cc277324e1755ce317d74859d7475169c17ae922bbd79d26c20912011be25461dfe66e91f82b2c64d181cdd9f6b4167a1365423e6b804c6edf599056cd7d3d064e8998bd78c21ccd58ee630f6d5cbc424b9d25a3455034456cb49c44fa537e477d7c5755ce167efcb03a097048ace7b3d73ecb5e5b8fabe37df95b99b04599fa96da62a5c727e1f40f0fcfae80559cfcffa26277a51425a5308e278288542b50e843be36ef3cc981c848f1da5e3a841fcf0bdf79445538ce47aa3cf2d9c6edb7e86f019141ca2358b843f08b61a0e612444a5d168a18363792bbb555f82c57fb4942a7d7495ceb0e66dd9d51dfc4d2e542538fe8ae6a918896eae76b5ade3bc1618ae7fc518a0757ca578ce242115a2f368f1d717bf69cc0025489361cf6931a30016528b7bb70ee3c25f9350ac049cdb66e08819e168a8e7a05e4db6c1471e35561ab091007bc1e2d02f3cc433a7ef0eef9b997e7e14c4854d1c5c9095f13d702c41e418b4fadde82e45b8098541449501a7d5151e0ce44900dea333e6650d0eda18c940888437b5e551f855723804ea66497fe17e8e57406651b29e7b131f19f388ceff59664c683dc02d3e72124ff2becdad94b760d607301e1450bf45404b033723d1bcc01abcf47eeb"}) 4.280837662s ago: executing program 0 (id=4173): unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) socket(0x22, 0x2, 0x1) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x129000, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xa083, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r3) ioctl$auto_KVM_CREATE_VM(r2, 0x4048aecb, 0x0) madvise$auto(0x0, 0x2003f2, 0x15) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000040)=ANY=[@ANYRES8, @ANYRES16, @ANYBLOB="df250c0000000000000000"], 0x14}}, 0x24048004) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0xa8, r6, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_SCOPE={0x81, 0x4, 'nfsf\x00\xd8\xef\xe4-\x13+r\xf3\fT1Z\xa7J[\x81\a\xcf-\xdf\x90\x1f\x8f\xc8\x13e\xe2R7D\x832j\xce}\xa3V\xb7\xa1o\\\xe6\x13\xbc\f\xe3\xae\xb8~\xd3\xd2+J\'\xc3\xec\xc9\fp\xc8a\xbe\xfe`\xa7\xa9AKDd\'\xa0\x01\xf6\x13y\xe8\xca\xf4Q\x9e\x03*]\xda\x1e\x11t\xe2\xd5uw+\x93\xfc\x04l\xd3\xa6t\x86k\x80\xd9\x14s\xec\xe2H\xc0=(\xf99\x8ac\xa7\x85\x99\x87'}, @NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x85}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0xa8}}, 0x4000) sendmsg$auto_NFSD_CMD_VERSION_GET(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r6, 0x100, 0x70bd2d, 0x25dfdbfd, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) madvise$auto(0x0, 0x200007, 0x19) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x404001, 0x0) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) 3.97211595s ago: executing program 1 (id=4174): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) mmap$auto(0x0, 0x200009, 0x2, 0x48eb1, 0xffffffffffffffff, 0x300000000000) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) madvise$auto(0x0, 0x6, 0x66) madvise$auto(0x0, 0xffffffffffff0005, 0x19) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) lseek$auto(0x3, 0x7fffffffffffffff, 0x0) mmap$auto(0x0, 0xa00006, 0x400002, 0x40ebe, 0xffffffffffffffff, 0x300000000000) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0xe779, 0x400000000007, 0xdf, 0x13, 0xffffffffffffffff, 0x0) socket(0xa, 0x1, 0x84) r0 = socket(0x28, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) clock_nanosleep$auto(0x8, 0x0, 0x0, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x82202, 0x0) io_uring_setup$auto(0x1, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) write$auto(r0, &(0x7f0000000080)='/dev/ttyS2\x00', 0xe) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) socket(0x2, 0x3, 0xa) 3.209803417s ago: executing program 0 (id=4175): r0 = socket(0x1d, 0x1, 0x84) unshare$auto(0x40000080) socket(0xa, 0x5, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) r3 = bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0xb5, 0x10, 0x7, 0x4, 0xffffffffffffffff, 0xa, "2af051a940806ec05be276cfc83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0xe5, 0x3}, 0x10) bpf$auto(0x18, &(0x7f0000000380)=@bpf_attr_11={0x0, 0x9, 0x866b, 0x100005, 0x80000009, 0xfffffe01, 0xe6d9, r3}, 0x8) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ram1\x00', 0x6281, 0x0) ioctl$auto_BLKZEROOUT(r4, 0x127f, 0x0) ioctl$auto_KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000000240)={0x5a02, 0x0, [{0xc, 0xffff, 0x6}]}) writev$auto(0xffffffffffffffff, 0x0, 0x8) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) ioctl$auto(0xffffffffffffffff, 0x540a, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x80000000000000a, 0x2, 0x0) socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) sysfs$auto(0x2, 0x2, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x3, 0x0, 0x106, 0x0, 0x6c, 0x5}, 0x3}, 0x9a6, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmsg$auto_IOAM6_CMD_DEL_NAMESPACE(0xffffffffffffffff, 0x0, 0x4000000) r5 = socket(0x10, 0x2, 0x14) sendmmsg$auto(r5, 0x0, 0x3d55, 0x0) sendmsg$auto_NL80211_CMD_SET_WIPHY(r5, &(0x7f0000000480)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="02002abd7000fcdbdf25020000000600126a70624cf1677e3100060000000400370108005d00d5000000060015011a230000040037015510a5d12c2f11a63e6a"], 0x34}, 0x1, 0x0, 0x0, 0x20000041}, 0x4008000) sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(r0, &(0x7f0000000300)={&(0x7f0000000200), 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYRES16=0x0, @ANYBLOB="00022bbd7000fcdbdf250700000004000600080004000700000006000100f508000004000600080004001c000000"], 0x48}, 0x1, 0x0, 0x0, 0x40}, 0x4000005) sendfile$auto(0x1, 0x3, 0x0, 0xc01) 2.856073069s ago: executing program 1 (id=4176): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x1, 0x0) socket(0xa, 0x3, 0x3a) setsockopt$auto(0x400000000000003, 0x3a, 0xc8, 0x0, 0x567) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$auto_RTC_SET_TIME(r1, 0x4024700a, &(0x7f00000001c0)={0x4, 0x6, 0x17, 0x8, 0x1, 0x3ff, 0x10, 0x3, 0x3}) unshare$auto(0x40000084) r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r2, 0xc0045516, &(0x7f0000000040)=0x5) request_key$auto_KEY_SPEC_REQKEY_AUTH_KEY(&(0x7f0000000080)='L^[^\x00', &(0x7f00000000c0)=',^@\\([-$&$(}/\x00', &(0x7f0000000100)=',^@\\([-$&$(}/\x00', 0xfffffffffffffff9) fcntl$auto(0x3, 0x4, 0xa553) r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r3, 0xc1105517, &(0x7f00000005c0)={{@inferred, 0x1, 0x9, 0x1, "4941aa833e2fc65b6b3cf7cec76d6778ad8eac3cda35ba9c2b2d43eeb0dc59c8dd3500f11581916caa0d3053"}, 0x4, 0x2, 0x1, @raw=0x8, @reserved="8aa03506c1c39daf5bcda939a026f2d0d75d1e206609e509533b9d37340ed90b2d991dc15b7f54e7228aceb21133c8722c84b0b76691828d127d547a58b659c6d9067aa90ca0ed3b40ec58f8c911bb668c73715853880254b2d220bb3b4357a8feace45c65fb1d9a3c09cf3a379dc1a2acaabb4f067f0d60b906e16aedc80e21", "6cc1888a6393f1b4285854c5368de438f8cc142ef6df1259b05ba1183bedbd31b642b4051bc7955610c61c329794e53111217b0000000000000047a99807bcc1"}) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x0) r4 = epoll_create$auto(0x8800001) epoll_ctl$auto(r4, 0x1, r0, 0x0) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) r5 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x100, 0x83, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}}) r7 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x202e40, 0x0) ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r7, 0xc0305710, &(0x7f0000000040)={0x0, 0x318f, 0x4, 0x0, 0xff, "50cfeeca8e00"}) ioctl$auto_BTRFS_IOC_SUBVOL_CREATE_V2(r6, 0x50009418, &(0x7f0000000300)={@raw=0x8, 0x100000001, 0xfff, @btrfs_ioctl_vol_args_v2_3_0={0x2, &(0x7f0000000100)={0x10000, 0x2, 0x7, 0xffffffffffffffff, {0x4, 0x1, 0x1, 0x88ba, 0x8}, [0x4, 0x93d2, 0xffffffff, 0x200, 0x3a7, 0x3]}}, @devid=0x80}) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/nr14/proto_down\x00', 0x0, 0x0) r8 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/dsp\x00', 0x0, 0x0) read$auto(r8, 0x0, 0x100) mmap$auto(0x0, 0x9, 0xffb, 0x12, 0x3, 0x0) ioctl$auto_RTC_RD_TIME(r5, 0x80247009, &(0x7f0000000000)={0x1, 0x1, 0x6, 0x7f, 0x8, 0xc, 0x3247, 0xffffff82, 0x5}) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/mtdblock0\x00', 0x80, 0x0) 2.06311285s ago: executing program 2 (id=4177): openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x200900, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dri/card1\x00', 0x129e01, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) socket(0x25, 0x803, 0x9) socket(0x2, 0x1, 0x0) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/tracing/set_event\x00', 0x0, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0) r0 = openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/set_event_pid\x00', 0x20000, 0x0) read$auto_ftrace_set_event_pid_fops_trace_events(r0, &(0x7f0000000240)=""/255, 0xff) socket(0xa, 0x5, 0x84) socket(0x28, 0x1, 0x0) r1 = open(&(0x7f0000000100)='.\x00', 0x591002, 0x408) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_GET_MSRS(r1, 0x4008ae89, &(0x7f0000001380)={0x2, 0x0, [{0x4b564dff, 0x400, 0xffffffffffffffff}]}) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) r3 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_5={@target_ifindex, r3, 0x9c, 0x0, 0x1, @relative_fd=r3, 0x80}, 0x96) close_range$auto(0x2, 0xa, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x20401, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) 2.056790852s ago: executing program 0 (id=4178): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/teql0/queues/tx-0/byte_queue_limits/limit_min\x00', 0x88282, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) r1 = fcntl$auto(0xffffffffffffffff, 0x20007, 0xa553) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) getsockopt$auto_SO_MEMINFO(r1, 0x8, 0x37, 0x0, 0x0) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x800) timer_delete$auto(0x1) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) unshare$auto(0x40000080) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) ioctl$auto(r4, 0x2, 0x9) ioctl$auto(0x3, 0x400c4d05, r4) ioctl$auto(0x3, 0x400c4d09, r4) close_range$auto(0x2, 0xa, 0x0) setresuid$auto(0xffffffffffffffff, 0x0, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x123002, 0x0) ioctl$auto_KVM_GET_MSRS(r3, 0xc008ae88, &(0x7f0000000180)={0x7}) ioctl$auto_SNDCTL_DSP_GETBLKSIZE(r0, 0xc0045004, &(0x7f0000000240)="bc44eaba57834b8927c08cc630ad9b9fec20faf337bd0172b6fa33d23a2f4a3374648ee2bc03b0ac05b1869c97d8f5fba8d1ae126d0d455a7edc800c2993fe22502387fc63f329801868cd372b594994b4bba44950aa7344b7e2e8e2b7c43ae075a26fe8373ed69dc809ed428f92f0d6988e0554db25e83d6757551dc2ba0b47c097694ace64c984c7f194e6c2ab222b08c042f14cd814233d7df8a8f05658294bbea6f92d6f48abd7c6fd3b758ad57819aa4f045615b1f412a2b472d1eec95fa1f3dcb89a329be53b8d6aaf7eda56d84a") keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) 1.632343763s ago: executing program 2 (id=4179): mmap$auto(0x0, 0x3, 0x10, 0xeb1, 0x403, 0x8000) mmap$auto(0x1, 0x2020006, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0xfffffffc) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x1, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/tty/ptyc9/power/runtime_suspended_time\x00', 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xc048aec8, r0) close_range$auto(0x2, 0x8, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x1d, 0x2, 0x400) bind$auto(r3, &(0x7f0000000080)=@generic={0x1d, 'my\b\x00\x00\x00\x00\x00\x00\x00\f\x00'}, 0x13) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_TDLS_CHANNEL_SWITCH(r2, 0x0, 0x48080) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop1/integrity/device_is_integrity_capable\x00', 0x109080, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0x400c000) prctl$auto(0x23, 0x20000000000000c, 0x7fffffffefff, 0xfffffffffffffffe, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0x81) recvfrom$auto(0x4, 0x0, 0x1, 0x3ffffd, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) r4 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64) fchdir$auto(r4) openat$auto_hwsim_fops_ps_(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/ieee80211/phy14/hwsim/ps\x00', 0x0, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) 1.607953119s ago: executing program 1 (id=4187): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/transparent_hugepage/hugepages-8kB/shmem_enabled\x00', 0x1a1842, 0x0) sendfile$auto(r0, r0, 0x0, 0x6) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r1, 0x0, 0x1f40) pwrite64$auto(r1, &(0x7f0000000040)='/dev/net/tun\x00', 0x2, 0x1000000002) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x4a083, 0x0) ioctl$auto_BLKRRPART(r2, 0x125f, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) prctl$auto(0x34, 0x17, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sysfs$auto(0x2, 0x42, 0x0) prctl$auto_PR_SYS_DISPATCH_ON(0x2, 0x1, 0x0, 0x400, 0x2) write$auto(0x3, 0x0, 0xfdf3) sendmsg$auto_NL80211_CMD_REMOVE_LINK(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x40804) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000200)={{@inferred, 0xffffffff, 0x3, 0x81, "3112d585005a614d19e22af9ffb683dbede3d0bf828bbfba40f035f4be6b7fe5e2f94bd90484b0755015e48d", @raw=0x9}, 0x400005, 0x25, 0x4, @raw=0x6, @integer={0xe7, 0x0, 0x81}, "7a9fc199a16a2311eacf2fc7ae1d8778dc610400000001000f00000000b6debe0eda71bdb5adb17884a16f7ce8c57c0eb327ac702b8d7c2d00"}) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003180), r3) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084) lstat$auto(0x0, &(0x7f0000000180)={0x5, 0x1f, 0x9, 0x62, 0x0, 0x0, 0x0, 0xffc, 0x2, 0x80000000400000a, 0xfffffffffffffffd, 0x9, 0x9, 0xffffffff80000000, 0x11, 0x20000000001, 0x7}) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r3, &(0x7f0000003400)={0x0, 0x0, &(0x7f00000033c0)={&(0x7f0000000000)={0x14, r4, 0x301, 0x70bd29, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/nbd12\x00', 0x44003, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) ioctl$auto_BLKPG(r6, 0x1269, 0x300) read$auto(r3, &(0x7f0000000080)='\x00', 0xff09) 1.376311055s ago: executing program 3 (id=4180): socket(0x11, 0x80003, 0x300) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x18, 0x3, 0x2) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) fcntl$auto(0x0, 0x408, 0x100000) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x15, 0x5, 0x0) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r3 = ioctl$auto_dma_heap_fops_dma_heap(r2, 0xffffffffffdffe00, &(0x7f0000000140)=';') r4 = epoll_create$auto(0x8800001) epoll_ctl$auto(r4, 0x1, r1, 0x0) socket(0x25, 0x1, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, 0x0) ioctl$auto_UDMABUF_CREATE(r3, 0x40187542, &(0x7f0000000040)={r2, 0x4, 0x1, 0x9}) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, 0x0) select$auto(0xd, 0x0, 0x0, &(0x7f0000000200)={[0x1ff, 0x7, 0x3, 0x8fd6, 0x7, 0x3, 0x15f4da0a, 0x3, 0x3, 0x7f, 0x32, 0x7440, 0x4f, 0x6, 0x9, 0xdffffffffffffffe]}, 0x0) 799.003956ms ago: executing program 1 (id=4181): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/teql0/queues/tx-0/byte_queue_limits/limit_min\x00', 0x88282, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) r1 = fcntl$auto(0xffffffffffffffff, 0x20007, 0xa553) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) getsockopt$auto_SO_MEMINFO(r1, 0x8, 0x37, 0x0, 0x0) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x800) timer_delete$auto(0x1) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) unshare$auto(0x40000080) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x1e, 0x1, 0x0) close_range$auto(0x0, 0x5, 0x0) setresuid$auto(0xffffffffffffffff, 0x0, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x123002, 0x0) ioctl$auto_KVM_GET_MSRS(r3, 0xc008ae88, &(0x7f0000000180)={0x7}) ioctl$auto_SNDCTL_DSP_GETBLKSIZE(r4, 0xc0045004, &(0x7f0000000000)) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) madvise$auto(0xfffffffffffffffe, 0x240007, 0x17) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) r5 = syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB, @ANYRES16=r5, @ANYRES8=r3], 0x3c}}, 0x24048084) madvise$auto(0x0, 0x200007, 0x19) 798.251924ms ago: executing program 0 (id=4190): rseq$auto(&(0x7f0000000140)={0xe, 0x5, 0x2c2, 0x23, 0x8007d, 0x80000000, "26c788a7a5024a9859acd35804093ad080405e5667c1ebdf247e1520d2c4f723c82081928a325dde6dcc8b245461261f1e847bfe4289c4a3d8893fe91794c1a983b7dec4715155f202bcb0489c4e8c9a1391f75a1e4c289bd6c51ca54f1d"}, 0x8000, 0x7fff, 0x6) r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x40080, 0x0) r1 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy11/netdev:wlan1/state\x00', 0x822, 0x0) write$auto(r1, 0x0, 0x5) ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000400)={{0xc, 0x23, 0xa6, 0x83}, "66ac010005000000000068d190eb0d4a4cada7272464294b9183349eef4c1f028fdcc8ecc66fdd02316f064ebd893007abb4c0bbc3b822f66eaf240963110d61771552c03de65800", 0x2}) ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0) ioctl$auto_UI_SET_MSCBIT(r0, 0x40045568, 0x0) r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/set_event\x00', 0x220442, 0x0) mmap$auto(0x6, 0x202000b, 0x9, 0x17, r2, 0x8000) close_range$auto(0x2, 0x8, 0x0) mkdir$auto(0x0, 0x8001) lseek$auto(r2, 0x200006, 0x6) io_uring_setup$auto(0xfffff7fc, 0x0) mmap$auto(0x3, 0xe, 0x339, 0xeb1, r2, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) syz_clone3(&(0x7f0000000240)={0x123062000, 0x0, 0x0, 0x0, {0x14}, 0x0, 0x0, 0x0, 0x0}, 0x58) mremap$auto(0x110c230000, 0x0, 0x101, 0x3, 0xfffffffffffffffc) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv6/conf/netdevsim2/hop_limit\x00', 0x5014c0, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004814}, 0x8800) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/class/zram-control/hot_remove\x00', 0x8001, 0x0) r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv6/conf/tunl0/disable_policy\x00', 0xd02, 0x0) sendfile$auto(r4, r5, 0x0, 0x800048) close_range$auto(r5, 0x8, 0x0) mmap$auto(0x1000000000, 0x0, 0xf, 0x9b72, 0xffffffffffffffff, 0x8000) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/mice\x00', 0x181383, 0x0) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vcsu\x00', 0x544282, 0x0) 647.497711ms ago: executing program 2 (id=4182): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48442, 0x0) read$auto(r0, 0x0, 0x9a28) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) ioctl$auto_XFS_IOC_ATTRLIST_BY_HANDLE(0xffffffffffffffff, 0x4058587a, &(0x7f0000000440)={{r0, &(0x7f0000000100)="0ca894ec1d68d85c1f827795f0e83ec7f8a031b60db05b5d0dc369776f17534585167b248c2bc2c2a18d66e6147981f271f81f227846a889c9875eac8c1edca85c35", 0x1, &(0x7f0000000040)="806b649b267b35f29f285b948568a277", 0x78a, &(0x7f0000000340)="c1f2b0d404e5f0dfa52e7bb73893ad1e51b7064970fbec97637aaad814ae710a8b7d067de45397028c8c44ba3559aa7381ed0bc8cf0f4f6dc0352df3401bf454d765720c3391a8b27e69df8be43cd298c78570e00ddff511a2533a4dd08e2f751cd764ed11b68253dd429610a0e88ab24ba52600d25029cf69949bde9030a3c6906c37dd4ff9772953fc45d41d9c5cb8b9f038c030cf6b28efd026d07c3fd59e9274d791e9258334277b0172a76a4211c82240234fa7c30df01030f50609aac928096c1685a8bd7472c2d6b9605eb970894a474d866a5d5066", &(0x7f00000001c0)=0xd2f}, {[0x4, 0xfffffffd, 0x4, 0xa6df]}, 0x2, 0x7, &(0x7f0000000280)="4c8949"}) mmap$auto(0x0, 0x800008, 0xfffffffffffffe01, 0x1000000000008011, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) r3 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder0\x00', 0x8882, 0x0) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) pidfd_getfd$auto(0xffffffffffffffff, r3, 0xf864) sendmsg$auto_NL80211_CMD_SET_WIPHY(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002dbd7000fddbdf250800030008000300", @ANYRES32=r6], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097d751f33e}, 0x80) sendmsg$auto_NL80211_CMD_RADAR_DETECT(0xffffffffffffffff, &(0x7f0000001800)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000017c0)={&(0x7f0000002380)={0x368, r4, 0x100, 0x70bd28, 0x25dfdbfd, {}, [@NL80211_ATTR_KEY_DEFAULT_TYPES={0x31e, 0x6e, 0x0, 0x1, [@typed={0x8, 0xcd, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x11, 0x0, 0x0, @uid=0xffffffffffffffff}, @nested={0x4, 0x8c}, @nested={0x268, 0x124, 0x0, 0x1, [@nested={0x4, 0xcd}, @generic="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", @generic="aad02303a2889bba6c579ce1b9f724000b0c291d65dba0f6dcb975e343b0055f00b386e1fedaf843980665fe42f6b6ea94894669605aa89aaccc341f9da1046dc2d55141266efa20d2ff7a561996dc334d865e0c06f6022ea29de7060d3844b72c74c94ed89e0b16374b9f774ae469fb93f593c306d8dace2dbf1867423b46f4150074cbfd9a15c7ab0b8f341d205da7b62599d0fcee76d2896befd468ad9928c21f9207f7b1a8a633d7f9f093", @generic="6a91c1b3d2e01e2ed2ca86dc692de27cfa1d3fe921a5c175ff3827ee17824b67dd55952253dab8cebd92e92ebf87e93cb49bef5b10f063712d5d873dc6b1ea12b54ef8b34e056dab122b6374432041dfa6e47c3606e56f9e555b71b43022d3891d51cc646929cd71cfe8d5975910e4c384fdbac03f3a2034c6370e9e602ce17dc00ec1c19eb062f4f0fb230bc480052554f42190ff6667e7f5746b0961ae60d4693f748ae5964ea6101470a216057fd8bf6206", @nested={0x4, 0x119}]}, @generic="9edaec8680fba003ac555b59081983702beb7febdcd69d800ca5449824f3f7f87d1ce5c2a6d86a2020e2c1d219829046ad1a7f90e6e201b89589ad1c5a75304c3ed968634d0f8962614fd007298915002f04fb98237084cac17d3e5a51ed78b983e4250bc732415213000ad4cbb175ae462823c5b142f4f3074ff4f71b0c49e73059993b8f0ac4e6a953612894ecbcb351ee7518353ae321cb19", @nested={0x4, 0x7c}]}, @NL80211_ATTR_CNTDWN_OFFS_BEACON={0x32, 0xba, "f0337d7a57a6c545e9d7300c7fc88ea03130a2d9b4d99a3a8ff6ea9e1ee27f0a1d521debb511e30bdaabda0b2c20"}]}, 0x368}, 0x1, 0x0, 0x0, 0x8800}, 0x6) sendmsg$auto_NL80211_CMD_CONTROL_PORT_FRAME(r2, &(0x7f0000000540)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000500)={&(0x7f0000000580)=ANY=[@ANYBLOB="000081c08967ea095a29f0a2c609bf057d0000", @ANYRES16=r4, @ANYBLOB="00042cbd7000fddbdf2581000000040067000500d30009000000"], 0x20}, 0x1, 0x0, 0x0, 0x4844}, 0x4000044) close_range$auto(0x0, 0xffffffffffffffff, 0x2) socket(0x1e, 0x1, 0x0) socket(0x28, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x805, 0xfffffff3) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x51, &(0x7f0000000200)={0x0}}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x9, &(0x7f0000000180)={0x0, 0xc4}, 0x3, 0x0, 0x0, 0x4004}, 0x7}, 0x5, 0x0) r7 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/block/loop11/rqos/wbt/min_lat_nsec\x00', 0x200, 0x0) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r7, &(0x7f0000000040)=""/67, 0x43) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) r8 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000bc0)='/sys/kernel/tracing/dynamic_events\x00', 0x1, 0x0) write$auto_dynamic_events_ops_trace_dynevent(r8, &(0x7f0000000600)="5fc1061f0d95302000fb34168dcea417f27b2e99e4c6726022c2712cbc471b683779dbdd906f019ab345f1a46f5f8f38330b5337fb49f0f34c9697dc857a9b382a1bd9", 0x43) 235.529953ms ago: executing program 2 (id=4183): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/ksm/pages_to_scan\x00', 0x102, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) 357.732µs ago: executing program 2 (id=4184): unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) socket(0x22, 0x2, 0x1) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x129000, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xa083, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r3) ioctl$auto_KVM_CREATE_VM(r2, 0x4048aecb, 0x0) madvise$auto(0x0, 0x2003f2, 0x15) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000040)=ANY=[@ANYRES8, @ANYRES16, @ANYBLOB="df250c0000000000000000"], 0x14}}, 0x24048004) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0xa8, r6, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_SCOPE={0x81, 0x4, 'nfsf\x00\xd8\xef\xe4-\x13+r\xf3\fT1Z\xa7J[\x81\a\xcf-\xdf\x90\x1f\x8f\xc8\x13e\xe2R7D\x832j\xce}\xa3V\xb7\xa1o\\\xe6\x13\xbc\f\xe3\xae\xb8~\xd3\xd2+J\'\xc3\xec\xc9\fp\xc8a\xbe\xfe`\xa7\xa9AKDd\'\xa0\x01\xf6\x13y\xe8\xca\xf4Q\x9e\x03*]\xda\x1e\x11t\xe2\xd5uw+\x93\xfc\x04l\xd3\xa6t\x86k\x80\xd9\x14s\xec\xe2H\xc0=(\xf99\x8ac\xa7\x85\x99\x87'}, @NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x85}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0xa8}}, 0x4000) sendmsg$auto_NFSD_CMD_VERSION_GET(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r6, 0x100, 0x70bd2d, 0x25dfdbfd, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) madvise$auto(0x0, 0x200007, 0x19) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x404001, 0x0) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) 0s ago: executing program 3 (id=4185): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) write$auto(r0, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xd8\x9c\xf7?:\x1a\xc62\x911e\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xff\x7f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\x87N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00', 0x5) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x400c810}, 0x200448c0) writev$auto(0xca, &(0x7f0000000500)={&(0x7f0000000800)="86d9b0bf291e5e5e8ec53c06000000fe69f6414866bfbe23c315161d44c858285ce900000000000000000000e4cbc079d847d343534f33cb11052d9a64e340584ac5a1a69922566dbe974278ee90575dd977215fb0fa0099144c0b0f61141ab10e39e14017d6b2704e27c54b2599842e214463ceb23217c464375466b80311f58e05c77ecd6c92aea5df645b0a84f51a5fb7b53914632059f161b818c25a8eca6c2025aff2f18730bf3e2830a22bfa37", 0x1}, 0x5) read$auto(r1, 0x0, 0x1f40) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'team_slave_1\x00'}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'team0\x00'}) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_net_shaper(&(0x7f00000005c0), r2) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'veth0_to_bond\x00'}) sendmsg$auto_NET_SHAPER_CMD_DELETE(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000600)=ANY=[], 0x30}, 0x1, 0x0, 0x0, 0x40004}, 0x4051) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'veth0_to_hsr\x00'}) r4 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000780)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_SET_MESH(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0028bd7000fbdbdf25917f00000800030000", @ANYRES32=r6, @ANYBLOB='\b\x00<\x00@\x00\x00\x00'], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x140080e4) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'veth1_to_team\x00'}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'ip6gre0\x00'}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wg1\x00'}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'xfrm0\x00'}) sendmsg$auto_ETHTOOL_MSG_MODULE_GET(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000380)={&(0x7f00000005c0)=ANY=[], 0x114}, 0x1, 0x0, 0x0, 0x24004004}, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r7) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000001c0)={'wlan0\x00'}) kernel console output (not intermixed with test programs): confined pid=24264 comm="syz.0.3285" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe52899acb9 code=0x0 [ 1336.677236][ T30] audit: type=1326 audit(4294970241.278:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24325 comm="syz.2.3300" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7faab699acb9 code=0x0 [ 1337.138028][T24337] random: crng reseeded on system resumption [ 1337.715293][T24346] zswap: compressor not available [ 1340.021820][T24380] random: crng reseeded on system resumption [ 1341.049486][ T30] audit: type=1326 audit(4294970245.701:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24363 comm="syz.0.3309" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe52899acb9 code=0x0 [ 1342.024060][T24410] Invalid ELF header magic: != ELF [ 1343.582276][T24429] Kernel: The 'panic_print' parameter is now deprecated. Please use 'panic_sys_info' and 'panic_console_replay' instead. [ 1344.617515][T12458] Bluetooth: hci1: unexpected event 0x2f length: 435 > 260 [ 1344.617543][T12458] Bluetooth: hci1: Malformed Event: 0x2f [ 1344.729035][T24449] mkiss: ax0: crc mode is auto. [ 1344.925094][T24432] netlink: Failed to add  helper -22 [ 1346.548922][T24426] Process accounting resumed [ 1346.785123][ T30] audit: type=1326 audit(4294970251.461:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24450 comm="syz.1.3326" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8db859acb9 code=0x0 [ 1348.503044][T24485] FAULT_INJECTION: forcing a failure. [ 1348.503044][T24485] name failslab, interval 1, probability 0, space 0, times 0 [ 1348.534294][T24485] CPU: 1 UID: 0 PID: 24485 Comm: syz.2.3333 Tainted: G L syzkaller #0 PREEMPT(full) [ 1348.534345][T24485] Tainted: [L]=SOFTLOCKUP [ 1348.534356][T24485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1348.534375][T24485] Call Trace: [ 1348.534385][T24485] [ 1348.534397][T24485] dump_stack_lvl+0x100/0x190 [ 1348.534440][T24485] should_fail_ex.cold+0x5/0xa [ 1348.534488][T24485] should_failslab+0xc2/0x120 [ 1348.534531][T24485] __kmalloc_cache_noprof+0x80/0x810 [ 1348.534563][T24485] ? cgroup_file_open+0x92/0x460 [ 1348.534604][T24485] ? cgroup_file_open+0x92/0x460 [ 1348.534638][T24485] cgroup_file_open+0x92/0x460 [ 1348.534677][T24485] ? __pfx_cgroup_file_open+0x10/0x10 [ 1348.534718][T24485] kernfs_fop_open+0x8b5/0xd50 [ 1348.534760][T24485] do_dentry_open+0x73e/0x1570 [ 1348.534795][T24485] ? __pfx_kernfs_fop_open+0x10/0x10 [ 1348.534825][T24485] ? security_inode_permission+0xbf/0x250 [ 1348.534875][T24485] vfs_open+0x82/0x3f0 [ 1348.534921][T24485] path_openat+0x21dc/0x3120 [ 1348.534969][T24485] ? __pfx_path_openat+0x10/0x10 [ 1348.535018][T24485] do_filp_open+0x1f7/0x420 [ 1348.535055][T24485] ? __pfx_do_filp_open+0x10/0x10 [ 1348.535118][T24485] ? _raw_spin_unlock+0x28/0x50 [ 1348.535147][T24485] ? alloc_fd+0x476/0x790 [ 1348.535192][T24485] do_sys_openat2+0x12e/0x220 [ 1348.535236][T24485] ? __pfx_do_sys_openat2+0x10/0x10 [ 1348.535283][T24485] ? __fget_files+0x21f/0x3d0 [ 1348.535324][T24485] __x64_sys_openat+0x12d/0x210 [ 1348.535369][T24485] ? __pfx___x64_sys_openat+0x10/0x10 [ 1348.535412][T24485] ? xfd_validate_state+0x129/0x190 [ 1348.535471][T24485] do_syscall_64+0xc9/0xf80 [ 1348.535510][T24485] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1348.535540][T24485] RIP: 0033:0x7faab699acb9 [ 1348.535564][T24485] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1348.535594][T24485] RSP: 002b:00007faab792f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1348.535623][T24485] RAX: ffffffffffffffda RBX: 00007faab6c15fa0 RCX: 00007faab699acb9 [ 1348.535643][T24485] RDX: 0000000000101000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 1348.535669][T24485] RBP: 00007faab6a08bf7 R08: 0000000000000000 R09: 0000000000000000 [ 1348.535687][T24485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1348.535706][T24485] R13: 00007faab6c16038 R14: 00007faab6c15fa0 R15: 00007fff5ba8cc88 [ 1348.535747][T24485] [ 1349.205815][T24478] Process accounting resumed [ 1351.264295][T24540] Invalid ELF header magic: != ELF [ 1353.348612][ T30] audit: type=1800 audit(4294970258.065:101): pid=24580 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3351" name="discovery_nqn" dev="configfs" ino=103088 res=0 errno=0 [ 1355.114246][T24618] FAULT_INJECTION: forcing a failure. [ 1355.114246][T24618] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1355.167806][T24618] CPU: 1 UID: 0 PID: 24618 Comm: syz.1.3359 Tainted: G L syzkaller #0 PREEMPT(full) [ 1355.167839][T24618] Tainted: [L]=SOFTLOCKUP [ 1355.167846][T24618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1355.167855][T24618] Call Trace: [ 1355.167861][T24618] [ 1355.167869][T24618] dump_stack_lvl+0x100/0x190 [ 1355.167892][T24618] should_fail_ex.cold+0x5/0xa [ 1355.167915][T24618] ? __lock_acquire+0x4a5/0x2630 [ 1355.167936][T24618] get_futex_key+0x1d2/0x1620 [ 1355.167958][T24618] ? __pfx_get_futex_key+0x10/0x10 [ 1355.167980][T24618] ? update_se+0x93/0x700 [ 1355.168002][T24618] futex_wait_setup+0x81/0x500 [ 1355.168021][T24618] __futex_wait+0x19f/0x300 [ 1355.168036][T24618] ? __pfx___futex_wait+0x10/0x10 [ 1355.168052][T24618] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 1355.168069][T24618] ? lockdep_hardirqs_on+0x78/0x100 [ 1355.168096][T24618] ? __pfx_futex_wake_mark+0x10/0x10 [ 1355.168124][T24618] ? find_held_lock+0x2b/0x80 [ 1355.168138][T24618] ? futex_wake+0x456/0x530 [ 1355.168166][T24618] futex_wait+0xed/0x380 [ 1355.168181][T24618] ? __pfx_futex_wait+0x10/0x10 [ 1355.168206][T24618] do_futex+0x1ef/0x350 [ 1355.168226][T24618] ? __pfx_do_futex+0x10/0x10 [ 1355.168246][T24618] ? kmem_cache_free+0x143/0x720 [ 1355.168261][T24618] ? mntput_no_expire+0xd8/0x220 [ 1355.168276][T24618] ? mntput_no_expire+0xd8/0x220 [ 1355.168290][T24618] ? putname+0xf5/0x1a0 [ 1355.168310][T24618] __x64_sys_futex+0x34f/0x4d0 [ 1355.168333][T24618] ? __pfx___x64_sys_futex+0x10/0x10 [ 1355.168354][T24618] ? __pfx_path_listxattrat+0x10/0x10 [ 1355.168375][T24618] do_syscall_64+0xc9/0xf80 [ 1355.168394][T24618] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1355.168409][T24618] RIP: 0033:0x7f8db859acb9 [ 1355.168423][T24618] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1355.168438][T24618] RSP: 002b:00007f8db943e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1355.168454][T24618] RAX: ffffffffffffffda RBX: 00007f8db8816098 RCX: 00007f8db859acb9 [ 1355.168464][T24618] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f8db8816098 [ 1355.168473][T24618] RBP: 00007f8db8816090 R08: 0000000000000000 R09: 0000000000000000 [ 1355.168482][T24618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1355.168492][T24618] R13: 00007f8db8816128 R14: 00007ffd94cf2180 R15: 00007ffd94cf2268 [ 1355.168511][T24618] [ 1357.312878][T24645] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3365'. [ 1358.110020][T12458] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 1358.567395][T12458] Bluetooth: hci1: Unable to find connection for big 0xd2 [ 1359.264088][T24676] FAULT_INJECTION: forcing a failure. [ 1359.264088][T24676] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1359.309536][T24675] FAULT_INJECTION: forcing a failure. [ 1359.309536][T24675] name failslab, interval 1, probability 0, space 0, times 0 [ 1359.349772][T24676] CPU: 0 UID: 0 PID: 24676 Comm: syz.3.3370 Tainted: G L syzkaller #0 PREEMPT(full) [ 1359.349817][T24676] Tainted: [L]=SOFTLOCKUP [ 1359.349827][T24676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1359.349842][T24676] Call Trace: [ 1359.349851][T24676] [ 1359.349862][T24676] dump_stack_lvl+0x100/0x190 [ 1359.349900][T24676] should_fail_ex.cold+0x5/0xa [ 1359.349946][T24676] get_futex_key+0x1d2/0x1620 [ 1359.349987][T24676] ? __pfx_get_futex_key+0x10/0x10 [ 1359.350034][T24676] futex_wake+0xea/0x530 [ 1359.350080][T24676] ? __pfx_futex_wake+0x10/0x10 [ 1359.350142][T24676] do_futex+0x32b/0x350 [ 1359.350182][T24676] ? __pfx_do_futex+0x10/0x10 [ 1359.350219][T24676] ? kmem_cache_free+0x143/0x720 [ 1359.350245][T24676] ? mntput_no_expire+0xd8/0x220 [ 1359.350274][T24676] ? mntput_no_expire+0xd8/0x220 [ 1359.350300][T24676] ? putname+0xf5/0x1a0 [ 1359.350341][T24676] __x64_sys_futex+0x34f/0x4d0 [ 1359.350385][T24676] ? __pfx___x64_sys_futex+0x10/0x10 [ 1359.350425][T24676] ? __pfx_path_listxattrat+0x10/0x10 [ 1359.350481][T24676] do_syscall_64+0xc9/0xf80 [ 1359.350521][T24676] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1359.350551][T24676] RIP: 0033:0x7fb3e359acb9 [ 1359.350574][T24676] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1359.350603][T24676] RSP: 002b:00007fb3e44cf0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1359.350631][T24676] RAX: ffffffffffffffda RBX: 00007fb3e3816098 RCX: 00007fb3e359acb9 [ 1359.350651][T24676] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb3e381609c [ 1359.350667][T24676] RBP: 00007fb3e3816090 R08: 0000000000000000 R09: 0000000000000000 [ 1359.350684][T24676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1359.350701][T24676] R13: 00007fb3e3816128 R14: 00007ffc528275d0 R15: 00007ffc528276b8 [ 1359.350738][T24676] [ 1359.686070][T24675] CPU: 1 UID: 0 PID: 24675 Comm: syz.2.3371 Tainted: G L syzkaller #0 PREEMPT(full) [ 1359.686098][T24675] Tainted: [L]=SOFTLOCKUP [ 1359.686104][T24675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1359.686114][T24675] Call Trace: [ 1359.686120][T24675] [ 1359.686126][T24675] dump_stack_lvl+0x100/0x190 [ 1359.686149][T24675] should_fail_ex.cold+0x5/0xa [ 1359.686175][T24675] should_failslab+0xc2/0x120 [ 1359.686196][T24675] kmem_cache_alloc_noprof+0x83/0x780 [ 1359.686216][T24675] ? __pfx_acpi_ut_track_stack_ptr+0x10/0x10 [ 1359.686237][T24675] ? acpi_ut_create_control_state+0x6a/0x100 [ 1359.686260][T24675] ? acpi_ut_create_control_state+0x6a/0x100 [ 1359.686279][T24675] acpi_ut_create_control_state+0x6a/0x100 [ 1359.686299][T24675] acpi_ds_exec_begin_control_op+0x21f/0x530 [ 1359.686314][T24675] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1359.686331][T24675] acpi_ds_exec_begin_op+0x20a/0x9c0 [ 1359.686352][T24675] acpi_ps_create_op+0x7bb/0xd10 [ 1359.686373][T24675] ? __pfx_acpi_ps_create_op+0x10/0x10 [ 1359.686392][T24675] ? __pfx_acpi_ut_trace_ptr+0x10/0x10 [ 1359.686412][T24675] ? acpi_ut_value_exit+0x10d/0x190 [ 1359.686437][T24675] acpi_ps_parse_loop+0xa65/0x24a0 [ 1359.686461][T24675] ? __pfx_acpi_ps_parse_loop+0x10/0x10 [ 1359.686480][T24675] ? acpi_ut_status_exit+0x111/0x1c0 [ 1359.686501][T24675] ? acpi_ds_call_control_method+0x435/0xab0 [ 1359.686521][T24675] acpi_ps_parse_aml+0x81e/0x1120 [ 1359.686544][T24675] acpi_ps_execute_method+0x5c4/0xe90 [ 1359.686569][T24675] acpi_ns_evaluate+0x640/0x1670 [ 1359.686595][T24675] acpi_evaluate_object+0x420/0xe00 [ 1359.686612][T24675] ? kernfs_fop_read_iter+0x46c/0x610 [ 1359.686628][T24675] ? vfs_read+0x825/0xb30 [ 1359.686642][T24675] ? ksys_read+0x12a/0x250 [ 1359.686660][T24675] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 1359.686681][T24675] ? __pfx___might_resched+0x10/0x10 [ 1359.686706][T24675] acpi_evaluate_integer+0xdf/0x220 [ 1359.686744][T24675] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 1359.686768][T24675] ? __pfx_status_show+0x10/0x10 [ 1359.686786][T24675] status_show+0xa0/0x120 [ 1359.686804][T24675] ? __pfx_status_show+0x10/0x10 [ 1359.686826][T24675] dev_attr_show+0x52/0xa0 [ 1359.686848][T24675] ? __pfx_dev_attr_show+0x10/0x10 [ 1359.686867][T24675] sysfs_kf_seq_show+0x217/0x3a0 [ 1359.686889][T24675] seq_read_iter+0x32f/0x1270 [ 1359.686913][T24675] kernfs_fop_read_iter+0x46c/0x610 [ 1359.686930][T24675] ? rw_verify_area+0xce/0x6d0 [ 1359.686944][T24675] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 1359.686961][T24675] vfs_read+0x825/0xb30 [ 1359.686980][T24675] ? __pfx_vfs_read+0x10/0x10 [ 1359.686995][T24675] ? find_held_lock+0x2b/0x80 [ 1359.687022][T24675] ksys_read+0x12a/0x250 [ 1359.687038][T24675] ? __pfx_ksys_read+0x10/0x10 [ 1359.687060][T24675] do_syscall_64+0xc9/0xf80 [ 1359.687081][T24675] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1359.687097][T24675] RIP: 0033:0x7faab699acb9 [ 1359.687111][T24675] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1359.687126][T24675] RSP: 002b:00007faab78ed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1359.687142][T24675] RAX: ffffffffffffffda RBX: 00007faab6c16180 RCX: 00007faab699acb9 [ 1359.687153][T24675] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000006 [ 1359.687163][T24675] RBP: 00007faab6a08bf7 R08: 0000000000000000 R09: 0000000000000000 [ 1359.687172][T24675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1359.687181][T24675] R13: 00007faab6c16218 R14: 00007faab6c16180 R15: 00007fff5ba8cc88 [ 1359.687203][T24675] [ 1359.687237][T24675] ACPI Error: [ 1360.106154][T24684] bridge_slave_1: left allmulticast mode [ 1360.169090][T24684] bridge_slave_1: left promiscuous mode [ 1360.189347][T24684] bridge0: port 2(bridge_slave_1) entered disabled state [ 1360.200673][T24675] Aborting method \_SB.IQST due to previous error (AE_NO_MEMORY) (20250807/psparse-529) [ 1360.212696][T24675] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20250807/psparse-529) [ 1362.879508][T24741] FAULT_INJECTION: forcing a failure. [ 1362.879508][T24741] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1362.996268][T24741] CPU: 0 UID: 0 PID: 24741 Comm: syz.3.3384 Tainted: G L syzkaller #0 PREEMPT(full) [ 1362.996313][T24741] Tainted: [L]=SOFTLOCKUP [ 1362.996319][T24741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1362.996328][T24741] Call Trace: [ 1362.996335][T24741] [ 1362.996341][T24741] dump_stack_lvl+0x100/0x190 [ 1362.996366][T24741] should_fail_ex.cold+0x5/0xa [ 1362.996391][T24741] strncpy_from_user+0x3b/0x2d0 [ 1362.996417][T24741] getname_flags.part.0+0x8f/0x540 [ 1362.996442][T24741] __x64_sys_mknod+0xfe/0x170 [ 1362.996471][T24741] do_syscall_64+0xc9/0xf80 [ 1362.996509][T24741] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1362.996525][T24741] RIP: 0033:0x7fb3e359acb9 [ 1362.996539][T24741] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1362.996554][T24741] RSP: 002b:00007fb3e44f0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 1362.996569][T24741] RAX: ffffffffffffffda RBX: 00007fb3e3815fa0 RCX: 00007fb3e359acb9 [ 1362.996580][T24741] RDX: 0000000000000017 RSI: 0000000000000e6c RDI: 0000200000000080 [ 1362.996589][T24741] RBP: 00007fb3e3608bf7 R08: 0000000000000000 R09: 0000000000000000 [ 1362.996598][T24741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1362.996607][T24741] R13: 00007fb3e3816038 R14: 00007fb3e3815fa0 R15: 00007ffc528276b8 [ 1362.996627][T24741] [ 1365.043752][T24758] netlink: Failed to add  helper -22 [ 1366.470500][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 1366.479948][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 1367.674012][T24810] sp0: Synchronizing with TNC [ 1369.297050][T24834] FAULT_INJECTION: forcing a failure. [ 1369.297050][T24834] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1369.381659][T24834] CPU: 1 UID: 0 PID: 24834 Comm: syz.1.3400 Tainted: G L syzkaller #0 PREEMPT(full) [ 1369.381687][T24834] Tainted: [L]=SOFTLOCKUP [ 1369.381693][T24834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1369.381702][T24834] Call Trace: [ 1369.381708][T24834] [ 1369.381715][T24834] dump_stack_lvl+0x100/0x190 [ 1369.381738][T24834] should_fail_ex.cold+0x5/0xa [ 1369.381761][T24834] ? __lock_acquire+0x4a5/0x2630 [ 1369.381782][T24834] get_futex_key+0x1d2/0x1620 [ 1369.381803][T24834] ? __pfx_get_futex_key+0x10/0x10 [ 1369.381824][T24834] ? update_se+0x93/0x700 [ 1369.381845][T24834] futex_wait_setup+0x81/0x500 [ 1369.381864][T24834] __futex_wait+0x19f/0x300 [ 1369.381885][T24834] ? __pfx___futex_wait+0x10/0x10 [ 1369.381898][T24834] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 1369.381915][T24834] ? lockdep_hardirqs_on+0x78/0x100 [ 1369.381936][T24834] ? __pfx_futex_wake_mark+0x10/0x10 [ 1369.381964][T24834] ? find_held_lock+0x2b/0x80 [ 1369.381979][T24834] ? futex_wake+0x456/0x530 [ 1369.382005][T24834] futex_wait+0xed/0x380 [ 1369.382019][T24834] ? __pfx_futex_wait+0x10/0x10 [ 1369.382037][T24834] ? lockdep_hardirqs_on+0x78/0x100 [ 1369.382059][T24834] do_futex+0x1ef/0x350 [ 1369.382079][T24834] ? __pfx_do_futex+0x10/0x10 [ 1369.382098][T24834] ? putname+0xf5/0x1a0 [ 1369.382116][T24834] ? putname+0xfa/0x1a0 [ 1369.382136][T24834] __x64_sys_futex+0x34f/0x4d0 [ 1369.382159][T24834] ? __pfx___x64_sys_futex+0x10/0x10 [ 1369.382186][T24834] do_syscall_64+0xc9/0xf80 [ 1369.382205][T24834] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1369.382220][T24834] RIP: 0033:0x7f8db859acb9 [ 1369.382233][T24834] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1369.382248][T24834] RSP: 002b:00007f8db943e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1369.382264][T24834] RAX: ffffffffffffffda RBX: 00007f8db8816098 RCX: 00007f8db859acb9 [ 1369.382274][T24834] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f8db8816098 [ 1369.382284][T24834] RBP: 00007f8db8816090 R08: 0000000000000000 R09: 0000000000000000 [ 1369.382293][T24834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1369.382302][T24834] R13: 00007f8db8816128 R14: 00007ffd94cf2180 R15: 00007ffd94cf2268 [ 1369.382322][T24834] [ 1370.173543][T24845] FAULT_INJECTION: forcing a failure. [ 1370.173543][T24845] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1370.196693][T24845] CPU: 1 UID: 0 PID: 24845 Comm: syz.0.3401 Tainted: G L syzkaller #0 PREEMPT(full) [ 1370.196740][T24845] Tainted: [L]=SOFTLOCKUP [ 1370.196749][T24845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1370.196764][T24845] Call Trace: [ 1370.196773][T24845] [ 1370.196784][T24845] dump_stack_lvl+0x100/0x190 [ 1370.196822][T24845] should_fail_ex.cold+0x5/0xa [ 1370.196865][T24845] get_futex_key+0x1d2/0x1620 [ 1370.196907][T24845] ? __pfx_get_futex_key+0x10/0x10 [ 1370.196941][T24845] ? orangefs_debug_write+0x416/0x640 [ 1370.196970][T24845] ? orangefs_debug_write+0x41b/0x640 [ 1370.196999][T24845] ? lock_acquire+0x17c/0x330 [ 1370.197035][T24845] ? __pfx_orangefs_debug_write+0x10/0x10 [ 1370.197068][T24845] futex_wake+0xea/0x530 [ 1370.197111][T24845] ? find_held_lock+0x2b/0x80 [ 1370.197139][T24845] ? __pfx_futex_wake+0x10/0x10 [ 1370.197186][T24845] ? ksys_write+0x190/0x250 [ 1370.197216][T24845] ? ksys_write+0x190/0x250 [ 1370.197254][T24845] do_futex+0x32b/0x350 [ 1370.197292][T24845] ? __pfx_do_futex+0x10/0x10 [ 1370.197340][T24845] __x64_sys_futex+0x34f/0x4d0 [ 1370.197380][T24845] ? fput+0x79/0x100 [ 1370.197416][T24845] ? __pfx___x64_sys_futex+0x10/0x10 [ 1370.197452][T24845] ? ksys_write+0x1ac/0x250 [ 1370.197483][T24845] ? __pfx_ksys_write+0x10/0x10 [ 1370.197524][T24845] do_syscall_64+0xc9/0xf80 [ 1370.197561][T24845] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1370.197590][T24845] RIP: 0033:0x7fe52899acb9 [ 1370.197622][T24845] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1370.197650][T24845] RSP: 002b:00007fe52982f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1370.197676][T24845] RAX: ffffffffffffffda RBX: 00007fe528c16098 RCX: 00007fe52899acb9 [ 1370.197696][T24845] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe528c1609c [ 1370.197714][T24845] RBP: 00007fe528c16090 R08: 0000000000000000 R09: 0000000000000000 [ 1370.197732][T24845] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 1370.197748][T24845] R13: 00007fe528c16128 R14: 00007ffcbe237580 R15: 00007ffcbe237668 [ 1370.197784][T24845] [ 1370.482301][T24844] FAULT_INJECTION: forcing a failure. [ 1370.482301][T24844] name failslab, interval 1, probability 0, space 0, times 0 [ 1370.495978][T24844] CPU: 1 UID: 0 PID: 24844 Comm: syz.1.3402 Tainted: G L syzkaller #0 PREEMPT(full) [ 1370.496022][T24844] Tainted: [L]=SOFTLOCKUP [ 1370.496034][T24844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1370.496052][T24844] Call Trace: [ 1370.496061][T24844] [ 1370.496072][T24844] dump_stack_lvl+0x100/0x190 [ 1370.496113][T24844] should_fail_ex.cold+0x5/0xa [ 1370.496158][T24844] should_failslab+0xc2/0x120 [ 1370.496198][T24844] kmem_cache_alloc_noprof+0x83/0x780 [ 1370.496238][T24844] ? getname_flags.part.0+0x4c/0x540 [ 1370.496280][T24844] ? getname_flags.part.0+0x4c/0x540 [ 1370.496302][T24844] getname_flags.part.0+0x4c/0x540 [ 1370.496325][T24844] getname_flags+0x93/0xf0 [ 1370.496341][T24844] do_sys_openat2+0xc5/0x220 [ 1370.496363][T24844] ? __pfx_do_sys_openat2+0x10/0x10 [ 1370.496392][T24844] __x64_sys_openat+0x12d/0x210 [ 1370.496414][T24844] ? __pfx___x64_sys_openat+0x10/0x10 [ 1370.496435][T24844] ? xfd_validate_state+0x129/0x190 [ 1370.496464][T24844] do_syscall_64+0xc9/0xf80 [ 1370.496484][T24844] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1370.496499][T24844] RIP: 0033:0x7f8db859acb9 [ 1370.496513][T24844] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1370.496530][T24844] RSP: 002b:00007f8db945f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1370.496545][T24844] RAX: ffffffffffffffda RBX: 00007f8db8815fa0 RCX: 00007f8db859acb9 [ 1370.496556][T24844] RDX: 0000000000080080 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 1370.496566][T24844] RBP: 00007f8db8608bf7 R08: 0000000000000000 R09: 0000000000000000 [ 1370.496575][T24844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1370.496584][T24844] R13: 00007f8db8816038 R14: 00007f8db8815fa0 R15: 00007ffd94cf2268 [ 1370.496605][T24844] [ 1373.390161][ T30] audit: type=1326 audit(4294970278.169:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24856 comm="syz.1.3405" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8db859acb9 code=0x0 [ 1375.728608][T12458] Bluetooth: hci1: hcon ffff88803e490000 sent 1 < count 256 [ 1377.122729][T24926] Process accounting paused [ 1377.275869][T12458] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 1377.817388][ T30] audit: type=1326 audit(4294970282.652:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24943 comm="syz.0.3419" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe52899acb9 code=0x0 [ 1378.323771][T24958] mtrr: base(0x7366000) is not aligned on a size(0x4000000000) boundary [ 1378.557639][T24959] input: jJǸ-9%v as /devices/virtual/input/input42 [ 1378.615670][T24963] WARNING! power/level is deprecated; use power/control instead [ 1379.349490][ T5145] Bluetooth: hci3: command 0x0406 tx timeout [ 1379.460357][T24965] Process accounting paused [ 1379.964324][T24986] netlink: 'syz.0.3427': attribute type 8 has an invalid length. [ 1380.702697][T24995] ptp ptp0: only physical clock in use now [ 1380.732170][ T30] audit: type=1326 audit(4294970285.587:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24991 comm="syz.2.3428" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7faab699acb9 code=0x0 [ 1381.118103][T25003] ubi31: attaching mtd0 [ 1381.236872][T25007] FAULT_INJECTION: forcing a failure. [ 1381.236872][T25007] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1381.279278][T25007] CPU: 0 UID: 0 PID: 25007 Comm: syz.3.3433 Tainted: G L syzkaller #0 PREEMPT(full) [ 1381.279324][T25007] Tainted: [L]=SOFTLOCKUP [ 1381.279335][T25007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1381.279352][T25007] Call Trace: [ 1381.279362][T25007] [ 1381.279374][T25007] dump_stack_lvl+0x100/0x190 [ 1381.279414][T25007] should_fail_ex.cold+0x5/0xa [ 1381.279456][T25007] ? prepare_alloc_pages+0x16d/0x5f0 [ 1381.279503][T25007] should_fail_alloc_page+0xeb/0x140 [ 1381.279546][T25007] prepare_alloc_pages+0x1f0/0x5f0 [ 1381.279594][T25007] __alloc_frozen_pages_noprof+0x193/0x2410 [ 1381.279653][T25007] ? __lock_acquire+0x4a5/0x2630 [ 1381.279692][T25007] ? css_rstat_updated+0x1ce/0x5a0 [ 1381.279728][T25007] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1381.279776][T25007] ? __lock_acquire+0x4a5/0x2630 [ 1381.279813][T25007] ? find_held_lock+0x2b/0x80 [ 1381.279841][T25007] ? local_lock_release+0x99/0x130 [ 1381.279882][T25007] ? local_lock_release+0x99/0x130 [ 1381.279922][T25007] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1381.279953][T25007] ? policy_nodemask+0xed/0x4f0 [ 1381.279995][T25007] alloc_pages_mpol+0x1fb/0x550 [ 1381.280035][T25007] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1381.280092][T25007] alloc_pages_noprof+0x131/0x390 [ 1381.280135][T25007] pgd_alloc+0x4d/0x640 [ 1381.280170][T25007] ? mutex_init_lockep+0x110/0x150 [ 1381.280213][T25007] mm_init+0x6da/0x10d0 [ 1381.280248][T25007] mm_alloc+0x97/0xd0 [ 1381.280280][T25007] alloc_bprm+0x2af/0x710 [ 1381.280312][T25007] do_execveat_common.isra.0+0x1d0/0x5b0 [ 1381.280351][T25007] __x64_sys_execve+0x8e/0xb0 [ 1381.280382][T25007] do_syscall_64+0xc9/0xf80 [ 1381.280420][T25007] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1381.280449][T25007] RIP: 0033:0x7fb3e359acb9 [ 1381.280473][T25007] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1381.280503][T25007] RSP: 002b:00007fb3e44f0028 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 1381.280531][T25007] RAX: ffffffffffffffda RBX: 00007fb3e3815fa0 RCX: 00007fb3e359acb9 [ 1381.280551][T25007] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000 [ 1381.280570][T25007] RBP: 00007fb3e3608bf7 R08: 0000000000000000 R09: 0000000000000000 [ 1381.280585][T25007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1381.280603][T25007] R13: 00007fb3e3816038 R14: 00007fb3e3815fa0 R15: 00007ffc528276b8 [ 1381.280649][T25007] [ 1381.567859][T12458] Bluetooth: hci3: command 0x0406 tx timeout [ 1384.136080][T25062] Invalid ELF header magic: != ELF [ 1386.671498][ T5145] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 1387.616563][T25114] FAULT_INJECTION: forcing a failure. [ 1387.616563][T25114] name failslab, interval 1, probability 0, space 0, times 0 [ 1387.682925][T25114] CPU: 1 UID: 0 PID: 25114 Comm: syz.2.3455 Tainted: G L syzkaller #0 PREEMPT(full) [ 1387.682956][T25114] Tainted: [L]=SOFTLOCKUP [ 1387.682962][T25114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1387.682973][T25114] Call Trace: [ 1387.682979][T25114] [ 1387.682985][T25114] dump_stack_lvl+0x100/0x190 [ 1387.683009][T25114] should_fail_ex.cold+0x5/0xa [ 1387.683036][T25114] should_failslab+0xc2/0x120 [ 1387.683057][T25114] __kmalloc_cache_noprof+0x80/0x810 [ 1387.683076][T25114] ? tipc_conn_alloc+0x48/0x590 [ 1387.683093][T25114] ? find_held_lock+0x2b/0x80 [ 1387.683111][T25114] ? tipc_conn_alloc+0x48/0x590 [ 1387.683128][T25114] tipc_conn_alloc+0x48/0x590 [ 1387.683146][T25114] tipc_topsrv_kern_subscr+0x11c/0x3c0 [ 1387.683166][T25114] ? __pfx_tipc_topsrv_kern_subscr+0x10/0x10 [ 1387.683186][T25114] ? net_generic+0xea/0x2a0 [ 1387.683207][T25114] tipc_group_create+0x4ab/0x660 [ 1387.683229][T25114] tipc_setsockopt+0x611/0xe30 [ 1387.683252][T25114] ? __pfx_tipc_setsockopt+0x10/0x10 [ 1387.683282][T25114] ? __pfx_tipc_setsockopt+0x10/0x10 [ 1387.683305][T25114] do_sock_setsockopt+0xf3/0x1d0 [ 1387.683330][T25114] __sys_setsockopt+0x119/0x190 [ 1387.683356][T25114] __x64_sys_setsockopt+0xbd/0x160 [ 1387.683377][T25114] ? do_syscall_64+0x94/0xf80 [ 1387.683394][T25114] ? lockdep_hardirqs_on+0x78/0x100 [ 1387.683411][T25114] do_syscall_64+0xc9/0xf80 [ 1387.683430][T25114] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1387.683446][T25114] RIP: 0033:0x7faab699acb9 [ 1387.683459][T25114] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1387.683473][T25114] RSP: 002b:00007faab792f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 1387.683489][T25114] RAX: ffffffffffffffda RBX: 00007faab6c15fa0 RCX: 00007faab699acb9 [ 1387.683500][T25114] RDX: 0000000000000087 RSI: 000000000000010f RDI: 0000000000000003 [ 1387.683509][T25114] RBP: 00007faab6a08bf7 R08: 0000000000000014 R09: 0000000000000000 [ 1387.683518][T25114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1387.683527][T25114] R13: 00007faab6c16038 R14: 00007faab6c15fa0 R15: 00007fff5ba8cc88 [ 1387.683547][T25114] [ 1388.219736][ T30] audit: type=1326 audit(4294967299.564:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25124 comm="syz.0.3457" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe52899acb9 code=0x0 [ 1393.777774][T25217] FAULT_INJECTION: forcing a failure. [ 1393.777774][T25217] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1393.779323][T25222] __vm_enough_memory: pid: 25222, comm: syz.0.3478, bytes: 4398046511104 not enough memory for the allocation [ 1393.837386][T25217] CPU: 1 UID: 0 PID: 25217 Comm: syz.1.3479 Tainted: G L syzkaller #0 PREEMPT(full) [ 1393.837435][T25217] Tainted: [L]=SOFTLOCKUP [ 1393.837447][T25217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1393.837465][T25217] Call Trace: [ 1393.837475][T25217] [ 1393.837486][T25217] dump_stack_lvl+0x100/0x190 [ 1393.837527][T25217] should_fail_ex.cold+0x5/0xa [ 1393.837570][T25217] ? arch_stack_walk+0xa6/0xf0 [ 1393.837607][T25217] get_futex_key+0x1d2/0x1620 [ 1393.837649][T25217] ? __pfx_get_futex_key+0x10/0x10 [ 1393.837686][T25217] ? stack_trace_save+0x8e/0xc0 [ 1393.837718][T25217] ? __pfx_stack_trace_save+0x10/0x10 [ 1393.837752][T25217] ? stack_depot_save_flags+0x27/0x9c0 [ 1393.837812][T25217] futex_wait_setup+0x81/0x500 [ 1393.837850][T25217] __futex_wait+0x19f/0x300 [ 1393.837882][T25217] ? __pfx___futex_wait+0x10/0x10 [ 1393.837915][T25217] ? __pfx_futex_wake_mark+0x10/0x10 [ 1393.837966][T25217] ? futex_hash+0x2c5/0x380 [ 1393.838014][T25217] futex_wait+0xed/0x380 [ 1393.838042][T25217] ? __pfx_futex_wait+0x10/0x10 [ 1393.838067][T25217] ? lockdep_hardirqs_on+0x78/0x100 [ 1393.838109][T25217] ? fd_install+0x223/0x580 [ 1393.838139][T25217] ? putname+0xf5/0x1a0 [ 1393.838185][T25217] do_futex+0x1ef/0x350 [ 1393.838226][T25217] ? __pfx_do_futex+0x10/0x10 [ 1393.838262][T25217] ? __pfx_do_sys_openat2+0x10/0x10 [ 1393.838308][T25217] ? __fget_files+0x21f/0x3d0 [ 1393.838342][T25217] __x64_sys_futex+0x34f/0x4d0 [ 1393.838385][T25217] ? __x64_sys_openat+0x12d/0x210 [ 1393.838430][T25217] ? __pfx___x64_sys_futex+0x10/0x10 [ 1393.838468][T25217] ? xfd_validate_state+0x129/0x190 [ 1393.838526][T25217] do_syscall_64+0xc9/0xf80 [ 1393.838563][T25217] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1393.838593][T25217] RIP: 0033:0x7f8db859acb9 [ 1393.838618][T25217] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1393.838646][T25217] RSP: 002b:00007f8db945f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1393.838674][T25217] RAX: ffffffffffffffda RBX: 00007f8db8815fa8 RCX: 00007f8db859acb9 [ 1393.838694][T25217] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f8db8815fa8 [ 1393.838713][T25217] RBP: 00007f8db8815fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1393.838730][T25217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1393.838748][T25217] R13: 00007f8db8816038 R14: 00007ffd94cf2180 R15: 00007ffd94cf2268 [ 1393.838796][T25217] [ 1394.946566][T25241] ubi0: attaching mtd0 [ 1394.974811][T25241] ubi0: scanning is finished [ 1394.984527][T25241] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 1395.108697][T25241] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1395.226917][T25250] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1396.382857][T25272] zram: Removed device: zram0 [ 1400.794536][ T30] audit: type=1326 audit(4294967312.246:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25291 comm="syz.3.3494" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb3e359acb9 code=0x0 [ 1400.927479][T25309] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3499'. [ 1400.949468][ T30] audit: type=1800 audit(4294967312.397:107): pid=25309 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3499" name="dbroot" dev="configfs" ino=107530 res=0 errno=0 [ 1404.039458][ T30] audit: type=1326 audit(4294967315.474:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25332 comm="syz.2.3503" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7faab699acb9 code=0x0 [ 1405.054272][T25331] Invalid ELF header magic: != ELF [ 1407.071508][T25382] FAULT_INJECTION: forcing a failure. [ 1407.071508][T25382] name failslab, interval 1, probability 0, space 0, times 0 [ 1407.140247][T25382] CPU: 1 UID: 0 PID: 25382 Comm: syz.3.3508 Tainted: G L syzkaller #0 PREEMPT(full) [ 1407.140276][T25382] Tainted: [L]=SOFTLOCKUP [ 1407.140281][T25382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1407.140291][T25382] Call Trace: [ 1407.140296][T25382] [ 1407.140303][T25382] dump_stack_lvl+0x100/0x190 [ 1407.140327][T25382] should_fail_ex.cold+0x5/0xa [ 1407.140352][T25382] should_failslab+0xc2/0x120 [ 1407.140394][T25382] kmem_cache_alloc_noprof+0x83/0x780 [ 1407.140415][T25382] ? prepare_creds+0x2c/0x950 [ 1407.140433][T25382] ? prepare_creds+0x2c/0x950 [ 1407.140446][T25382] prepare_creds+0x2c/0x950 [ 1407.140462][T25382] __sys_setregid+0x109/0x910 [ 1407.140477][T25382] ? rcu_is_watching+0x12/0xc0 [ 1407.140494][T25382] do_syscall_64+0xc9/0xf80 [ 1407.140514][T25382] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1407.140530][T25382] RIP: 0033:0x7fb3e359acb9 [ 1407.140542][T25382] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1407.140557][T25382] RSP: 002b:00007fb3e44ae028 EFLAGS: 00000246 ORIG_RAX: 0000000000000072 [ 1407.140572][T25382] RAX: ffffffffffffffda RBX: 00007fb3e3816180 RCX: 00007fb3e359acb9 [ 1407.140583][T25382] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffffff [ 1407.140592][T25382] RBP: 00007fb3e3608bf7 R08: 0000000000000000 R09: 0000000000000000 [ 1407.140601][T25382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1407.140610][T25382] R13: 00007fb3e3816218 R14: 00007fb3e3816180 R15: 00007ffc528276b8 [ 1407.140629][T25382] [ 1407.315788][T25365] Process accounting resumed [ 1408.020867][T25407] block2mtd: error: cannot open device inX±jFBB>U;߸Ilk [ 1409.385828][T25404] NFSD: Failed to start, no listeners configured. [ 1409.728075][T25433] Process accounting resumed [ 1411.878262][T25482] input: f as /devices/virtual/input/input43 [ 1415.744892][T25504] zswap: compressor not available [ 1417.283167][ T5145] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 1418.333598][T25573] Console: switching to colour frame buffer device 128x48 [ 1419.276891][T25590] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3546'. [ 1419.304684][T25590] netlink: 354 bytes leftover after parsing attributes in process `syz.3.3546'. [ 1420.494345][ T30] audit: type=1326 audit(4294967332.018:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25604 comm="syz.3.3549" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb3e359acb9 code=0x0 [ 1421.200860][T12458] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 1422.183614][T25626] __vm_enough_memory: pid: 25626, comm: syz.3.3552, bytes: 4398046511104 not enough memory for the allocation [ 1424.287385][T25661] FAULT_INJECTION: forcing a failure. [ 1424.287385][T25661] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1424.300565][T25661] CPU: 0 UID: 0 PID: 25661 Comm: syz.3.3562 Tainted: G L syzkaller #0 PREEMPT(full) [ 1424.300612][T25661] Tainted: [L]=SOFTLOCKUP [ 1424.300625][T25661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1424.300642][T25661] Call Trace: [ 1424.300652][T25661] [ 1424.300663][T25661] dump_stack_lvl+0x100/0x190 [ 1424.300706][T25661] should_fail_ex.cold+0x5/0xa [ 1424.300746][T25661] ? __lock_acquire+0x4a5/0x2630 [ 1424.300787][T25661] get_futex_key+0x1d2/0x1620 [ 1424.300829][T25661] ? __pfx_get_futex_key+0x10/0x10 [ 1424.300869][T25661] ? update_se+0x93/0x700 [ 1424.300911][T25661] futex_wait_setup+0x81/0x500 [ 1424.300949][T25661] __futex_wait+0x19f/0x300 [ 1424.300977][T25661] ? __pfx___futex_wait+0x10/0x10 [ 1424.301002][T25661] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 1424.301034][T25661] ? lockdep_hardirqs_on+0x78/0x100 [ 1424.301072][T25661] ? __pfx_futex_wake_mark+0x10/0x10 [ 1424.301125][T25661] ? find_held_lock+0x2b/0x80 [ 1424.301153][T25661] ? futex_wake+0x456/0x530 [ 1424.301214][T25661] futex_wait+0xed/0x380 [ 1424.301243][T25661] ? __pfx_futex_wait+0x10/0x10 [ 1424.301291][T25661] do_futex+0x1ef/0x350 [ 1424.301332][T25661] ? __pfx_do_futex+0x10/0x10 [ 1424.301370][T25661] ? kmem_cache_free+0x143/0x720 [ 1424.301400][T25661] ? mntput_no_expire+0xd8/0x220 [ 1424.301429][T25661] ? mntput_no_expire+0xd8/0x220 [ 1424.301457][T25661] ? putname+0xf5/0x1a0 [ 1424.301498][T25661] __x64_sys_futex+0x34f/0x4d0 [ 1424.301543][T25661] ? __pfx___x64_sys_futex+0x10/0x10 [ 1424.301584][T25661] ? __pfx_path_listxattrat+0x10/0x10 [ 1424.301627][T25661] do_syscall_64+0xc9/0xf80 [ 1424.301664][T25661] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1424.301694][T25661] RIP: 0033:0x7fb3e359acb9 [ 1424.301718][T25661] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1424.301746][T25661] RSP: 002b:00007fb3e44f00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1424.301775][T25661] RAX: ffffffffffffffda RBX: 00007fb3e3815fa8 RCX: 00007fb3e359acb9 [ 1424.301795][T25661] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb3e3815fa8 [ 1424.301814][T25661] RBP: 00007fb3e3815fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1424.301833][T25661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1424.301851][T25661] R13: 00007fb3e3816038 R14: 00007ffc528275d0 R15: 00007ffc528276b8 [ 1424.301889][T25661] [ 1426.841569][T12458] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 1427.107062][T25691] __vm_enough_memory: pid: 25691, comm: syz.2.3567, bytes: 4398046511104 not enough memory for the allocation [ 1427.561275][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 1427.569935][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 1429.293852][ T30] audit: type=1326 audit(4294967340.899:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25720 comm="syz.0.3573" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe52899acb9 code=0x0 [ 1429.753482][ T30] audit: type=1326 audit(4294967341.361:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25733 comm="syz.3.3575" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb3e359acb9 code=0x0 [ 1432.945807][T25778] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1433.628801][T25790] FAULT_INJECTION: forcing a failure. [ 1433.628801][T25790] name failslab, interval 1, probability 0, space 0, times 0 [ 1433.659684][T25790] CPU: 0 UID: 0 PID: 25790 Comm: syz.3.3590 Tainted: G L syzkaller #0 PREEMPT(full) [ 1433.659717][T25790] Tainted: [L]=SOFTLOCKUP [ 1433.659724][T25790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1433.659734][T25790] Call Trace: [ 1433.659740][T25790] [ 1433.659747][T25790] dump_stack_lvl+0x100/0x190 [ 1433.659769][T25790] should_fail_ex.cold+0x5/0xa [ 1433.659795][T25790] should_failslab+0xc2/0x120 [ 1433.659816][T25790] kmem_cache_alloc_lru_noprof+0x8e/0x7d0 [ 1433.659836][T25790] ? create_new_namespaces+0x3ea/0xab0 [ 1433.659854][T25790] ? unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1433.659870][T25790] ? ksys_unshare+0x455/0xab0 [ 1433.659889][T25790] ? __x64_sys_unshare+0x31/0x40 [ 1433.659909][T25790] ? sock_alloc_inode+0x25/0x1c0 [ 1433.659927][T25790] ? __pfx_sock_alloc_inode+0x10/0x10 [ 1433.659941][T25790] ? sock_alloc_inode+0x25/0x1c0 [ 1433.659955][T25790] ? apparmor_socket_create+0x59/0x310 [ 1433.659976][T25790] sock_alloc_inode+0x25/0x1c0 [ 1433.659991][T25790] alloc_inode+0x68/0x250 [ 1433.660012][T25790] sock_alloc+0x44/0x280 [ 1433.660025][T25790] ? security_socket_create+0x7f/0x250 [ 1433.660045][T25790] sock_create_lite+0x82/0x120 [ 1433.660061][T25790] __netlink_kernel_create+0xbd/0x750 [ 1433.660085][T25790] ? __lock_acquire+0x4a5/0x2630 [ 1433.660105][T25790] ? __pfx___netlink_kernel_create+0x10/0x10 [ 1433.660133][T25790] rtnetlink_net_init+0xb9/0x140 [ 1433.660153][T25790] ? __pfx_rtnetlink_net_init+0x10/0x10 [ 1433.660173][T25790] ? lockdep_init_map_type+0x5c/0x250 [ 1433.660214][T25790] ? __pfx_rtnetlink_rcv+0x10/0x10 [ 1433.660233][T25790] ? __pfx_rtnetlink_bind+0x10/0x10 [ 1433.660253][T25790] ? mutex_init_lockep+0x110/0x150 [ 1433.660277][T25790] ? __pfx_rtnetlink_net_init+0x10/0x10 [ 1433.660296][T25790] ops_init+0x1e2/0x5f0 [ 1433.660320][T25790] setup_net+0x118/0x3a0 [ 1433.660334][T25790] ? __pfx_setup_net+0x10/0x10 [ 1433.660355][T25790] ? lockdep_init_map_type+0x5c/0x250 [ 1433.660375][T25790] ? mutex_init_lockep+0x110/0x150 [ 1433.660399][T25790] copy_net_ns+0x46f/0x7c0 [ 1433.660416][T25790] create_new_namespaces+0x3ea/0xab0 [ 1433.660437][T25790] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1433.660456][T25790] ksys_unshare+0x455/0xab0 [ 1433.660476][T25790] ? native_tss_update_io_bitmap+0x3d6/0x740 [ 1433.660493][T25790] ? __pfx_ksys_unshare+0x10/0x10 [ 1433.660514][T25790] ? xfd_validate_state+0x129/0x190 [ 1433.660543][T25790] __x64_sys_unshare+0x31/0x40 [ 1433.660563][T25790] do_syscall_64+0xc9/0xf80 [ 1433.660583][T25790] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1433.660598][T25790] RIP: 0033:0x7fb3e359acb9 [ 1433.660612][T25790] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1433.660626][T25790] RSP: 002b:00007fb3e44f0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1433.660643][T25790] RAX: ffffffffffffffda RBX: 00007fb3e3815fa0 RCX: 00007fb3e359acb9 [ 1433.660654][T25790] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1433.660664][T25790] RBP: 00007fb3e3608bf7 R08: 0000000000000000 R09: 0000000000000000 [ 1433.660674][T25790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1433.660684][T25790] R13: 00007fb3e3816038 R14: 00007fb3e3815fa0 R15: 00007ffc528276b8 [ 1433.660704][T25790] [ 1436.140163][T25832] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1436.431042][T25836] FAULT_INJECTION: forcing a failure. [ 1436.431042][T25836] name failslab, interval 1, probability 0, space 0, times 0 [ 1436.460860][T25836] CPU: 1 UID: 0 PID: 25836 Comm: syz.3.3597 Tainted: G L syzkaller #0 PREEMPT(full) [ 1436.460911][T25836] Tainted: [L]=SOFTLOCKUP [ 1436.460918][T25836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1436.460928][T25836] Call Trace: [ 1436.460934][T25836] [ 1436.460941][T25836] dump_stack_lvl+0x100/0x190 [ 1436.460964][T25836] should_fail_ex.cold+0x5/0xa [ 1436.460990][T25836] should_failslab+0xc2/0x120 [ 1436.461011][T25836] ? ima_alloc_init_template+0x19d/0x6d0 [ 1436.461030][T25836] __kmalloc_noprof+0xf6/0x9c0 [ 1436.461046][T25836] ? __pfx_prepend_path+0x10/0x10 [ 1436.461073][T25836] ? ima_alloc_init_template+0x19d/0x6d0 [ 1436.461092][T25836] ima_alloc_init_template+0x19d/0x6d0 [ 1436.461113][T25836] ? __pfx_d_absolute_path+0x10/0x10 [ 1436.461139][T25836] ima_add_violation+0x128/0x3c0 [ 1436.461162][T25836] ? __pfx_ima_add_violation+0x10/0x10 [ 1436.461182][T25836] ? ima_d_path+0x132/0x2a0 [ 1436.461206][T25836] ? __pfx_down_write+0x10/0x10 [ 1436.461227][T25836] ? ima_inode_get+0xf3/0x580 [ 1436.461246][T25836] process_measurement+0x150f/0x2400 [ 1436.461270][T25836] ? __pfx_process_measurement+0x10/0x10 [ 1436.461287][T25836] ? __pfx___might_resched+0x10/0x10 [ 1436.461313][T25836] ? trace_contention_end+0xd6/0x110 [ 1436.461334][T25836] ? __mutex_lock+0x26a/0x1b90 [ 1436.461352][T25836] ? find_held_lock+0x2b/0x80 [ 1436.461366][T25836] ? tracing_check_open_get_tr.part.0+0x101/0x170 [ 1436.461390][T25836] ? tracing_check_open_get_tr.part.0+0x101/0x170 [ 1436.461430][T25836] ? tracing_check_open_get_tr.part.0+0x106/0x170 [ 1436.461453][T25836] ? inode_to_bdi+0x9e/0x160 [ 1436.461476][T25836] ima_file_check+0xca/0x110 [ 1436.461494][T25836] ? __pfx_ima_file_check+0x10/0x10 [ 1436.461516][T25836] security_file_post_open+0xc4/0x210 [ 1436.461540][T25836] path_openat+0x1564/0x3120 [ 1436.461564][T25836] ? __pfx_path_openat+0x10/0x10 [ 1436.461588][T25836] do_filp_open+0x1f7/0x420 [ 1436.461606][T25836] ? __pfx_do_filp_open+0x10/0x10 [ 1436.461637][T25836] ? _raw_spin_unlock+0x28/0x50 [ 1436.461651][T25836] ? alloc_fd+0x476/0x790 [ 1436.461672][T25836] do_sys_openat2+0x12e/0x220 [ 1436.461694][T25836] ? __pfx_do_sys_openat2+0x10/0x10 [ 1436.461717][T25836] ? __fget_files+0x21f/0x3d0 [ 1436.461737][T25836] __x64_sys_openat+0x12d/0x210 [ 1436.461759][T25836] ? __pfx___x64_sys_openat+0x10/0x10 [ 1436.461781][T25836] ? xfd_validate_state+0x129/0x190 [ 1436.461815][T25836] do_syscall_64+0xc9/0xf80 [ 1436.461850][T25836] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1436.461880][T25836] RIP: 0033:0x7fb3e359acb9 [ 1436.461912][T25836] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1436.461929][T25836] RSP: 002b:00007fb3e44f0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1436.461946][T25836] RAX: ffffffffffffffda RBX: 00007fb3e3815fa0 RCX: 00007fb3e359acb9 [ 1436.461957][T25836] RDX: 0000000000040000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 1436.461968][T25836] RBP: 00007fb3e3608bf7 R08: 0000000000000000 R09: 0000000000000000 [ 1436.461978][T25836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1436.461987][T25836] R13: 00007fb3e3816038 R14: 00007fb3e3815fa0 R15: 00007ffc528276b8 [ 1436.462008][T25836] [ 1437.021800][ T30] audit: type=1804 audit(4294967348.592:112): pid=25836 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3597" name="/newroot/sys/kernel/tracing/current_tracer" dev="tracefs" ino=47 res=0 errno=0 [ 1437.626543][T25792] Process accounting paused [ 1440.507059][ T30] audit: type=1326 audit(4294967352.183:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25858 comm="syz.2.3601" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7faab699acb9 code=0x0 [ 1442.302721][T25875] Process accounting paused [ 1443.179516][T25902] FAULT_INJECTION: forcing a failure. [ 1443.179516][T25902] name failslab, interval 1, probability 0, space 0, times 0 [ 1443.258666][T25902] CPU: 1 UID: 0 PID: 25902 Comm: syz.2.3606 Tainted: G L syzkaller #0 PREEMPT(full) [ 1443.258693][T25902] Tainted: [L]=SOFTLOCKUP [ 1443.258699][T25902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1443.258708][T25902] Call Trace: [ 1443.258713][T25902] [ 1443.258720][T25902] dump_stack_lvl+0x100/0x190 [ 1443.258743][T25902] should_fail_ex.cold+0x5/0xa [ 1443.258768][T25902] should_failslab+0xc2/0x120 [ 1443.258790][T25902] kmem_cache_alloc_noprof+0x83/0x780 [ 1443.258809][T25902] ? __proc_create+0xc2/0x8c0 [ 1443.258831][T25902] ? __proc_create+0x2cb/0x8c0 [ 1443.258856][T25902] ? __proc_create+0x2cb/0x8c0 [ 1443.258876][T25902] __proc_create+0x2cb/0x8c0 [ 1443.258899][T25902] ? __pfx___proc_create+0x10/0x10 [ 1443.258920][T25902] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1443.258946][T25902] proc_create_reg+0x75/0x170 [ 1443.258962][T25902] proc_create_net_data+0x8e/0x1c0 [ 1443.258985][T25902] ? __pfx_proc_create_net_data+0x10/0x10 [ 1443.259013][T25902] ? __pfx_netlink_net_init+0x10/0x10 [ 1443.259034][T25902] netlink_net_init+0x50/0x80 [ 1443.259053][T25902] ops_init+0x1e2/0x5f0 [ 1443.259078][T25902] setup_net+0x118/0x3a0 [ 1443.259093][T25902] ? __pfx_setup_net+0x10/0x10 [ 1443.259114][T25902] ? lockdep_init_map_type+0x5c/0x250 [ 1443.259135][T25902] ? mutex_init_lockep+0x110/0x150 [ 1443.259158][T25902] copy_net_ns+0x46f/0x7c0 [ 1443.259176][T25902] create_new_namespaces+0x3ea/0xab0 [ 1443.259197][T25902] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1443.259216][T25902] ksys_unshare+0x455/0xab0 [ 1443.259236][T25902] ? native_tss_update_io_bitmap+0x3d6/0x740 [ 1443.259252][T25902] ? __pfx_ksys_unshare+0x10/0x10 [ 1443.259272][T25902] ? xfd_validate_state+0x129/0x190 [ 1443.259301][T25902] __x64_sys_unshare+0x31/0x40 [ 1443.259324][T25902] do_syscall_64+0xc9/0xf80 [ 1443.259343][T25902] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1443.259359][T25902] RIP: 0033:0x7faab699acb9 [ 1443.259372][T25902] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1443.259387][T25902] RSP: 002b:00007faab792f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1443.259402][T25902] RAX: ffffffffffffffda RBX: 00007faab6c15fa0 RCX: 00007faab699acb9 [ 1443.259412][T25902] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1443.259422][T25902] RBP: 00007faab6a08bf7 R08: 0000000000000000 R09: 0000000000000000 [ 1443.259431][T25902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1443.259440][T25902] R13: 00007faab6c16038 R14: 00007faab6c15fa0 R15: 00007fff5ba8cc88 [ 1443.259461][T25902] [ 1444.105188][T25911] FAULT_INJECTION: forcing a failure. [ 1444.105188][T25911] name failslab, interval 1, probability 0, space 0, times 0 [ 1444.146116][T25911] CPU: 0 UID: 0 PID: 25911 Comm: syz.0.3610 Tainted: G L syzkaller #0 PREEMPT(full) [ 1444.146144][T25911] Tainted: [L]=SOFTLOCKUP [ 1444.146150][T25911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1444.146160][T25911] Call Trace: [ 1444.146166][T25911] [ 1444.146173][T25911] dump_stack_lvl+0x100/0x190 [ 1444.146201][T25911] should_fail_ex.cold+0x5/0xa [ 1444.146227][T25911] should_failslab+0xc2/0x120 [ 1444.146251][T25911] kmem_cache_alloc_noprof+0x83/0x780 [ 1444.146272][T25911] ? audit_log_start+0x29d/0x930 [ 1444.146298][T25911] ? audit_log_start+0x29d/0x930 [ 1444.146318][T25911] audit_log_start+0x29d/0x930 [ 1444.146342][T25911] ? __pfx_audit_log_start+0x10/0x10 [ 1444.146368][T25911] ? integrity_audit_msg+0x41/0x60 [ 1444.146386][T25911] integrity_audit_message+0x10c/0x4f0 [ 1444.146404][T25911] ? __pfx_integrity_audit_message+0x10/0x10 [ 1444.146421][T25911] ? __pfx_ima_add_template_entry+0x10/0x10 [ 1444.146441][T25911] integrity_audit_msg+0x41/0x60 [ 1444.146459][T25911] ima_add_violation+0x1b9/0x3c0 [ 1444.146483][T25911] ? __pfx_ima_add_violation+0x10/0x10 [ 1444.146508][T25911] ? ima_d_path+0x132/0x2a0 [ 1444.146534][T25911] ? __pfx_down_write+0x10/0x10 [ 1444.146556][T25911] ? ima_inode_get+0xf3/0x580 [ 1444.146575][T25911] process_measurement+0x150f/0x2400 [ 1444.146600][T25911] ? __pfx_process_measurement+0x10/0x10 [ 1444.146617][T25911] ? __pfx___might_resched+0x10/0x10 [ 1444.146643][T25911] ? trace_contention_end+0xd6/0x110 [ 1444.146663][T25911] ? __mutex_lock+0x26a/0x1b90 [ 1444.146682][T25911] ? find_held_lock+0x2b/0x80 [ 1444.146696][T25911] ? tracing_check_open_get_tr.part.0+0x101/0x170 [ 1444.146720][T25911] ? tracing_check_open_get_tr.part.0+0x101/0x170 [ 1444.146760][T25911] ? tracing_check_open_get_tr.part.0+0x106/0x170 [ 1444.146784][T25911] ? inode_to_bdi+0x9e/0x160 [ 1444.146807][T25911] ima_file_check+0xca/0x110 [ 1444.146825][T25911] ? __pfx_ima_file_check+0x10/0x10 [ 1444.146848][T25911] security_file_post_open+0xc4/0x210 [ 1444.146871][T25911] path_openat+0x1564/0x3120 [ 1444.146895][T25911] ? __pfx_path_openat+0x10/0x10 [ 1444.146919][T25911] do_filp_open+0x1f7/0x420 [ 1444.146938][T25911] ? __pfx_do_filp_open+0x10/0x10 [ 1444.146969][T25911] ? _raw_spin_unlock+0x28/0x50 [ 1444.146983][T25911] ? alloc_fd+0x476/0x790 [ 1444.147004][T25911] do_sys_openat2+0x12e/0x220 [ 1444.147027][T25911] ? __pfx_do_sys_openat2+0x10/0x10 [ 1444.147050][T25911] ? __fget_files+0x21f/0x3d0 [ 1444.147070][T25911] __x64_sys_openat+0x12d/0x210 [ 1444.147095][T25911] ? __pfx___x64_sys_openat+0x10/0x10 [ 1444.147133][T25911] ? xfd_validate_state+0x129/0x190 [ 1444.147190][T25911] do_syscall_64+0xc9/0xf80 [ 1444.147227][T25911] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1444.147253][T25911] RIP: 0033:0x7fe52899acb9 [ 1444.147274][T25911] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1444.147301][T25911] RSP: 002b:00007fe529850028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1444.147327][T25911] RAX: ffffffffffffffda RBX: 00007fe528c15fa0 RCX: 00007fe52899acb9 [ 1444.147348][T25911] RDX: 0000000000040000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 1444.147368][T25911] RBP: 00007fe528a08bf7 R08: 0000000000000000 R09: 0000000000000000 [ 1444.147385][T25911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1444.147402][T25911] R13: 00007fe528c16038 R14: 00007fe528c15fa0 R15: 00007ffcbe237668 [ 1444.147439][T25911] [ 1444.148244][T25911] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64 [ 1444.520431][T25911] audit: out of memory in audit_log_start [ 1444.946396][T25925] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1445.343217][ T30] audit: type=1326 audit(4294967357.040:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25919 comm="syz.1.3613" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8db859acb9 code=0x0 [ 1445.394024][T25926] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1446.600519][ T30] audit: type=1326 audit(4294967358.307:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25933 comm="syz.0.3617" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe52899acb9 code=0x0 [ 1446.718595][ T30] audit: type=1326 audit(4294967358.398:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25939 comm="syz.2.3619" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7faab699acb9 code=0x0 [ 1447.098532][T25956] Invalid ELF header magic: != ELF [ 1447.927472][T25948] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1448.058755][T25972] netlink: 334 bytes leftover after parsing attributes in process `syz.2.3624'. [ 1448.179816][T25974] ptrace attach of "./syz-executor exec"[14190] was attempted by "./syz-executor exec"[25974] [ 1448.754652][T25986] FAULT_INJECTION: forcing a failure. [ 1448.754652][T25986] name failslab, interval 1, probability 0, space 0, times 0 [ 1448.798066][T25986] CPU: 1 UID: 0 PID: 25986 Comm: syz.2.3626 Tainted: G L syzkaller #0 PREEMPT(full) [ 1448.798105][T25986] Tainted: [L]=SOFTLOCKUP [ 1448.798112][T25986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1448.798122][T25986] Call Trace: [ 1448.798128][T25986] [ 1448.798135][T25986] dump_stack_lvl+0x100/0x190 [ 1448.798160][T25986] should_fail_ex.cold+0x5/0xa [ 1448.798186][T25986] should_failslab+0xc2/0x120 [ 1448.798207][T25986] __kmalloc_cache_noprof+0x80/0x810 [ 1448.798222][T25986] ? __asan_memcpy+0x3c/0x60 [ 1448.798237][T25986] ? ima_add_digest_entry+0x52/0x520 [ 1448.798258][T25986] ? ima_add_digest_entry+0x52/0x520 [ 1448.798274][T25986] ima_add_digest_entry+0x52/0x520 [ 1448.798293][T25986] ima_add_template_entry+0x476/0x800 [ 1448.798314][T25986] ? __pfx_ima_add_template_entry+0x10/0x10 [ 1448.798333][T25986] ? ima_alloc_init_template+0x51f/0x6d0 [ 1448.798358][T25986] ima_add_violation+0x184/0x3c0 [ 1448.798382][T25986] ? __pfx_ima_add_violation+0x10/0x10 [ 1448.798401][T25986] ? ima_d_path+0x132/0x2a0 [ 1448.798426][T25986] ? __pfx_down_write+0x10/0x10 [ 1448.798446][T25986] ? ima_inode_get+0xf3/0x580 [ 1448.798465][T25986] process_measurement+0x150f/0x2400 [ 1448.798490][T25986] ? __pfx_process_measurement+0x10/0x10 [ 1448.798507][T25986] ? __pfx___might_resched+0x10/0x10 [ 1448.798533][T25986] ? trace_contention_end+0xd6/0x110 [ 1448.798554][T25986] ? __mutex_lock+0x26a/0x1b90 [ 1448.798572][T25986] ? find_held_lock+0x2b/0x80 [ 1448.798587][T25986] ? tracing_check_open_get_tr.part.0+0x101/0x170 [ 1448.798611][T25986] ? tracing_check_open_get_tr.part.0+0x101/0x170 [ 1448.798652][T25986] ? tracing_check_open_get_tr.part.0+0x106/0x170 [ 1448.798675][T25986] ? inode_to_bdi+0x9e/0x160 [ 1448.798703][T25986] ima_file_check+0xca/0x110 [ 1448.798724][T25986] ? __pfx_ima_file_check+0x10/0x10 [ 1448.798749][T25986] security_file_post_open+0xc4/0x210 [ 1448.798773][T25986] path_openat+0x1564/0x3120 [ 1448.798797][T25986] ? __pfx_path_openat+0x10/0x10 [ 1448.798821][T25986] do_filp_open+0x1f7/0x420 [ 1448.798840][T25986] ? __pfx_do_filp_open+0x10/0x10 [ 1448.798881][T25986] ? _raw_spin_unlock+0x28/0x50 [ 1448.798897][T25986] ? alloc_fd+0x476/0x790 [ 1448.798920][T25986] do_sys_openat2+0x12e/0x220 [ 1448.798944][T25986] ? __pfx_do_sys_openat2+0x10/0x10 [ 1448.798971][T25986] ? __fget_files+0x21f/0x3d0 [ 1448.798992][T25986] __x64_sys_openat+0x12d/0x210 [ 1448.799014][T25986] ? __pfx___x64_sys_openat+0x10/0x10 [ 1448.799035][T25986] ? xfd_validate_state+0x129/0x190 [ 1448.799065][T25986] do_syscall_64+0xc9/0xf80 [ 1448.799085][T25986] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1448.799101][T25986] RIP: 0033:0x7faab699acb9 [ 1448.799116][T25986] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1448.799131][T25986] RSP: 002b:00007faab792f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1448.799147][T25986] RAX: ffffffffffffffda RBX: 00007faab6c15fa0 RCX: 00007faab699acb9 [ 1448.799158][T25986] RDX: 0000000000040000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 1448.799168][T25986] RBP: 00007faab6a08bf7 R08: 0000000000000000 R09: 0000000000000000 [ 1448.799177][T25986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1448.799186][T25986] R13: 00007faab6c16038 R14: 00007faab6c15fa0 R15: 00007fff5ba8cc88 [ 1448.799207][T25986] [ 1448.799238][T25986] ima: OUT OF MEMORY ERROR creating queue entry [ 1449.533436][ T30] audit: type=1804 audit(4294967361.254:117): pid=25986 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.2.3626" name="/newroot/sys/kernel/tracing/current_tracer" dev="tracefs" ino=47 res=0 errno=0 [ 1449.672373][ T30] audit: type=1804 audit(4294967361.254:118): pid=25986 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3626" name="/newroot/sys/kernel/tracing/current_tracer" dev="tracefs" ino=47 res=0 errno=0 [ 1449.803521][T25993] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1449.994122][ T30] audit: type=1800 audit(4294967361.727:119): pid=25999 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3638" name="discovery_nqn" dev="configfs" ino=111828 res=0 errno=0 [ 1450.458007][ T30] audit: type=1326 audit(4294967362.189:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25995 comm="syz.0.3628" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe52899acb9 code=0x0 [ 1451.231604][T26015] vhci_hcd vhci_hcd.2: invalid port number 252 [ 1451.322703][T26015] vhci_hcd vhci_hcd.2: default hub control req: 040f v0772 i00fc l2 [ 1454.109476][T26043] FAULT_INJECTION: forcing a failure. [ 1454.109476][T26043] name failslab, interval 1, probability 0, space 0, times 0 [ 1454.131339][T26043] CPU: 1 UID: 0 PID: 26043 Comm: syz.2.3636 Tainted: G L syzkaller #0 PREEMPT(full) [ 1454.131385][T26043] Tainted: [L]=SOFTLOCKUP [ 1454.131396][T26043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1454.131413][T26043] Call Trace: [ 1454.131423][T26043] [ 1454.131434][T26043] dump_stack_lvl+0x100/0x190 [ 1454.131474][T26043] should_fail_ex.cold+0x5/0xa [ 1454.131521][T26043] should_failslab+0xc2/0x120 [ 1454.131561][T26043] __kmalloc_cache_noprof+0x80/0x810 [ 1454.131590][T26043] ? kvm_set_irq_routing+0x24f/0x960 [ 1454.131633][T26043] ? kvm_set_irq_routing+0x24f/0x960 [ 1454.131665][T26043] kvm_set_irq_routing+0x24f/0x960 [ 1454.131709][T26043] kvm_arch_vm_ioctl+0xf08/0x18d0 [ 1454.131753][T26043] ? __pfx_stack_trace_save+0x10/0x10 [ 1454.131788][T26043] ? __pfx_kvm_arch_vm_ioctl+0x10/0x10 [ 1454.131835][T26043] ? __lock_acquire+0x4a5/0x2630 [ 1454.131876][T26043] ? __lock_acquire+0x4a5/0x2630 [ 1454.131918][T26043] ? __lock_acquire+0x4a5/0x2630 [ 1454.131960][T26043] ? __lock_acquire+0x4a5/0x2630 [ 1454.132016][T26043] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 1454.132035][T26043] ? is_bpf_text_address+0x94/0x1a0 [ 1454.132058][T26043] ? kernel_text_address+0x8d/0x100 [ 1454.132081][T26043] ? __kernel_text_address+0xd/0x30 [ 1454.132103][T26043] ? unwind_get_return_address+0x59/0xa0 [ 1454.132121][T26043] ? arch_stack_walk+0xa6/0xf0 [ 1454.132145][T26043] ? stack_trace_save+0x8e/0xc0 [ 1454.132161][T26043] ? __pfx_stack_trace_save+0x10/0x10 [ 1454.132178][T26043] ? stack_depot_save_flags+0x27/0x9c0 [ 1454.132201][T26043] ? __lock_acquire+0x4a5/0x2630 [ 1454.132222][T26043] ? kasan_save_stack+0x3f/0x50 [ 1454.132240][T26043] ? kasan_save_stack+0x30/0x50 [ 1454.132258][T26043] ? kasan_save_track+0x14/0x30 [ 1454.132276][T26043] ? kasan_save_free_info+0x3b/0x70 [ 1454.132290][T26043] ? __kasan_slab_free+0x5f/0x80 [ 1454.132308][T26043] ? kfree+0x1c7/0x690 [ 1454.132320][T26043] ? tomoyo_path_number_perm+0x46d/0x580 [ 1454.132341][T26043] ? security_file_ioctl+0xd3/0x230 [ 1454.132361][T26043] ? __x64_sys_ioctl+0xb7/0x210 [ 1454.132389][T26043] kvm_vm_ioctl+0x1564/0x4020 [ 1454.132417][T26043] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 1454.132447][T26043] ? kasan_quarantine_put+0x104/0x240 [ 1454.132464][T26043] ? lockdep_hardirqs_on+0x78/0x100 [ 1454.132486][T26043] ? find_held_lock+0x2b/0x80 [ 1454.132500][T26043] ? tomoyo_path_number_perm+0x28f/0x580 [ 1454.132521][T26043] ? tomoyo_path_number_perm+0x28f/0x580 [ 1454.132545][T26043] ? tomoyo_path_number_perm+0x188/0x580 [ 1454.132568][T26043] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1454.132590][T26043] ? futex_wait+0x125/0x380 [ 1454.132610][T26043] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1454.132635][T26043] ? do_vfs_ioctl+0x226/0x13e0 [ 1454.132658][T26043] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 1454.132687][T26043] ? find_held_lock+0x2b/0x80 [ 1454.132701][T26043] ? hook_file_ioctl_common+0x146/0x410 [ 1454.132728][T26043] ? __fget_files+0x21f/0x3d0 [ 1454.132747][T26043] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 1454.132768][T26043] __x64_sys_ioctl+0x18e/0x210 [ 1454.132792][T26043] do_syscall_64+0xc9/0xf80 [ 1454.132811][T26043] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1454.132826][T26043] RIP: 0033:0x7faab699acb9 [ 1454.132840][T26043] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1454.132855][T26043] RSP: 002b:00007faab792f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1454.132871][T26043] RAX: ffffffffffffffda RBX: 00007faab6c15fa0 RCX: 00007faab699acb9 [ 1454.132881][T26043] RDX: 0010000000000402 RSI: 000000000000ae60 RDI: 0000000000000003 [ 1454.132891][T26043] RBP: 00007faab6a08bf7 R08: 0000000000000000 R09: 0000000000000000 [ 1454.132900][T26043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1454.132909][T26043] R13: 00007faab6c16038 R14: 00007faab6c15fa0 R15: 00007fff5ba8cc88 [ 1454.132930][T26043] [ 1456.783764][ T30] audit: type=1326 audit(4294967368.546:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26052 comm="syz.1.3640" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8db859acb9 code=0x0 [ 1458.318251][T26074] Invalid ELF header magic: != ELF [ 1458.447095][T26075] FAULT_INJECTION: forcing a failure. [ 1458.447095][T26075] name failslab, interval 1, probability 0, space 0, times 0 [ 1458.476510][T26075] CPU: 0 UID: 0 PID: 26075 Comm: syz.0.3651 Tainted: G L syzkaller #0 PREEMPT(full) [ 1458.476555][T26075] Tainted: [L]=SOFTLOCKUP [ 1458.476566][T26075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1458.476583][T26075] Call Trace: [ 1458.476593][T26075] [ 1458.476603][T26075] dump_stack_lvl+0x100/0x190 [ 1458.476642][T26075] should_fail_ex.cold+0x5/0xa [ 1458.476687][T26075] should_failslab+0xc2/0x120 [ 1458.476726][T26075] kmem_cache_alloc_noprof+0x83/0x780 [ 1458.476763][T26075] ? __pfx_acct_collect+0x10/0x10 [ 1458.476788][T26075] ? taskstats_exit+0x650/0xbd0 [ 1458.476822][T26075] ? taskstats_exit+0x650/0xbd0 [ 1458.476852][T26075] taskstats_exit+0x650/0xbd0 [ 1458.476880][T26075] ? __pfx_acct_update_integrals+0x10/0x10 [ 1458.476911][T26075] ? __pfx_taskstats_exit+0x10/0x10 [ 1458.476942][T26075] ? rcu_read_lock_any_held+0x6a/0xa0 [ 1458.476973][T26075] ? exit_signals+0x395/0xaf0 [ 1458.477010][T26075] do_exit+0x5ca/0x2a30 [ 1458.477054][T26075] ? __pfx_do_exit+0x10/0x10 [ 1458.477094][T26075] ? do_raw_spin_lock+0x128/0x260 [ 1458.477135][T26075] ? find_held_lock+0x2b/0x80 [ 1458.477162][T26075] ? get_signal+0x7e0/0x21e0 [ 1458.477197][T26075] do_group_exit+0xd5/0x2a0 [ 1458.477241][T26075] get_signal+0x1ec7/0x21e0 [ 1458.477294][T26075] ? __pfx_get_signal+0x10/0x10 [ 1458.477329][T26075] ? do_futex+0x192/0x350 [ 1458.477372][T26075] arch_do_signal_or_restart+0x91/0x770 [ 1458.477410][T26075] ? putname+0xf5/0x1a0 [ 1458.477443][T26075] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1458.477492][T26075] ? __pfx___x64_sys_futex+0x10/0x10 [ 1458.477538][T26075] exit_to_user_mode_loop+0x86/0x4b0 [ 1458.477576][T26075] ? rcu_is_watching+0x12/0xc0 [ 1458.477605][T26075] do_syscall_64+0x4ea/0xf80 [ 1458.477641][T26075] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1458.477670][T26075] RIP: 0033:0x7fe52899acb9 [ 1458.477693][T26075] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1458.477719][T26075] RSP: 002b:00007fe52982f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1458.477745][T26075] RAX: fffffffffffffe00 RBX: 00007fe528c16098 RCX: 00007fe52899acb9 [ 1458.477764][T26075] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe528c16098 [ 1458.477782][T26075] RBP: 00007fe528c16090 R08: 0000000000000000 R09: 0000000000000000 [ 1458.477799][T26075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1458.477816][T26075] R13: 00007fe528c16128 R14: 00007ffcbe237580 R15: 00007ffcbe237668 [ 1458.477854][T26075] [ 1459.315180][T26092] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1459.391809][T26092] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 1459.577423][T26093] vhci_hcd vhci_hcd.2: invalid port number 252 [ 1459.586115][T26093] vhci_hcd vhci_hcd.2: default hub control req: 040f v0772 i00fc l2 [ 1459.746323][T26090] binder: 26081:26090 ioctl c018620c 0 returned -1 [ 1461.054114][T26115] __vm_enough_memory: pid: 26115, comm: syz.1.3650, bytes: 4398046511104 not enough memory for the allocation [ 1461.404187][ T30] audit: type=1326 audit(4294967373.192:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26119 comm="syz.3.3655" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb3e359acb9 code=0x0 [ 1462.454463][T26134] FAULT_INJECTION: forcing a failure. [ 1462.454463][T26134] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1462.474820][T26134] CPU: 0 UID: 0 PID: 26134 Comm: syz.3.3656 Tainted: G L syzkaller #0 PREEMPT(full) [ 1462.474868][T26134] Tainted: [L]=SOFTLOCKUP [ 1462.474879][T26134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1462.474900][T26134] Call Trace: [ 1462.474910][T26134] [ 1462.474921][T26134] dump_stack_lvl+0x100/0x190 [ 1462.474969][T26134] should_fail_ex.cold+0x5/0xa [ 1462.475019][T26134] get_futex_key+0x1d2/0x1620 [ 1462.475061][T26134] ? __pfx_get_futex_key+0x10/0x10 [ 1462.475098][T26134] ? find_held_lock+0x2b/0x80 [ 1462.475126][T26134] ? futex_wake+0x456/0x530 [ 1462.475179][T26134] futex_wake+0xea/0x530 [ 1462.475227][T26134] ? __pfx_futex_wake+0x10/0x10 [ 1462.475286][T26134] do_futex+0x32b/0x350 [ 1462.475326][T26134] ? __pfx_do_futex+0x10/0x10 [ 1462.475364][T26134] ? do_raw_spin_lock+0x128/0x260 [ 1462.475406][T26134] ? find_held_lock+0x2b/0x80 [ 1462.475434][T26134] ? __do_sys_close_range+0x4cd/0x740 [ 1462.475478][T26134] __x64_sys_futex+0x34f/0x4d0 [ 1462.475521][T26134] ? __do_sys_close_range+0x25d/0x740 [ 1462.475557][T26134] ? __pfx___x64_sys_futex+0x10/0x10 [ 1462.475600][T26134] ? __pfx___do_sys_close_range+0x10/0x10 [ 1462.475648][T26134] do_syscall_64+0xc9/0xf80 [ 1462.475699][T26134] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1462.475730][T26134] RIP: 0033:0x7fb3e359acb9 [ 1462.475755][T26134] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1462.475783][T26134] RSP: 002b:00007fb3e44f00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1462.475812][T26134] RAX: ffffffffffffffda RBX: 00007fb3e3815fa8 RCX: 00007fb3e359acb9 [ 1462.475832][T26134] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb3e3815fac [ 1462.475851][T26134] RBP: 00007fb3e3815fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1462.475869][T26134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1462.475886][T26134] R13: 00007fb3e3816038 R14: 00007ffc528275d0 R15: 00007ffc528276b8 [ 1462.475924][T26134] [ 1466.879479][T26196] FAULT_INJECTION: forcing a failure. [ 1466.879479][T26196] name failslab, interval 1, probability 0, space 0, times 0 [ 1466.909588][T26196] CPU: 1 UID: 0 PID: 26196 Comm: syz.3.3667 Tainted: G L syzkaller #0 PREEMPT(full) [ 1466.909635][T26196] Tainted: [L]=SOFTLOCKUP [ 1466.909645][T26196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1466.909662][T26196] Call Trace: [ 1466.909671][T26196] [ 1466.909682][T26196] dump_stack_lvl+0x100/0x190 [ 1466.909723][T26196] should_fail_ex.cold+0x5/0xa [ 1466.909769][T26196] should_failslab+0xc2/0x120 [ 1466.909811][T26196] kmem_cache_alloc_lru_noprof+0x8e/0x7d0 [ 1466.909853][T26196] ? __lock_acquire+0x4a5/0x2630 [ 1466.909891][T26196] ? __d_alloc+0x34/0xa80 [ 1466.909932][T26196] ? __d_alloc+0x34/0xa80 [ 1466.909965][T26196] __d_alloc+0x34/0xa80 [ 1466.910006][T26196] d_alloc_parallel+0x111/0x14e0 [ 1466.910050][T26196] ? trace_event_raw_event_rpcgss_svc_wrap_failed.cold+0x4/0x1a [ 1466.910087][T26196] ? is_bpf_text_address+0x8a/0x1a0 [ 1466.910132][T26196] ? is_bpf_text_address+0x8a/0x1a0 [ 1466.910178][T26196] ? bpf_ksym_find+0x124/0x1c0 [ 1466.910220][T26196] ? __pfx_d_alloc_parallel+0x10/0x10 [ 1466.910270][T26196] ? lockdep_init_map_type+0x5c/0x250 [ 1466.910311][T26196] ? lockdep_init_map_type+0x5c/0x250 [ 1466.910355][T26196] __lookup_slow+0x193/0x460 [ 1466.910399][T26196] ? __pfx___lookup_slow+0x10/0x10 [ 1466.910472][T26196] lookup_slow+0x50/0x70 [ 1466.910515][T26196] path_lookupat+0x5e8/0xc40 [ 1466.910551][T26196] filename_lookup+0x202/0x590 [ 1466.910595][T26196] ? __pfx_filename_lookup+0x10/0x10 [ 1466.910659][T26196] ? getname_flags.part.0+0x1c5/0x540 [ 1466.910711][T26196] path_listxattrat+0x128/0x370 [ 1466.910759][T26196] ? __pfx_path_listxattrat+0x10/0x10 [ 1466.910804][T26196] do_syscall_64+0xc9/0xf80 [ 1466.910844][T26196] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1466.910875][T26196] RIP: 0033:0x7fb3e359acb9 [ 1466.910899][T26196] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1466.910928][T26196] RSP: 002b:00007fb3e44f0028 EFLAGS: 00000246 ORIG_RAX: 00000000000000c3 [ 1466.910956][T26196] RAX: ffffffffffffffda RBX: 00007fb3e3815fa0 RCX: 00007fb3e359acb9 [ 1466.910976][T26196] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000000 [ 1466.910994][T26196] RBP: 00007fb3e3608bf7 R08: 0000000000000000 R09: 0000000000000000 [ 1466.911012][T26196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1466.911029][T26196] R13: 00007fb3e3816038 R14: 00007fb3e3815fa0 R15: 00007ffc528276b8 [ 1466.911069][T26196] [ 1468.244028][T26222] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1469.372086][T26237] ptp ptp0: only physical clock in use now [ 1469.380182][ T30] audit: type=1326 audit(4294967381.217:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26236 comm="syz.1.3675" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8db859acb9 code=0x0 [ 1470.329958][T26241] ubi31: attaching mtd0 [ 1470.520086][T26197] Process accounting resumed [ 1470.638421][ T5145] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 1470.843882][T26251] FAULT_INJECTION: forcing a failure. [ 1470.843882][T26251] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1470.927446][T26251] CPU: 1 UID: 0 PID: 26251 Comm: syz.1.3679 Tainted: G L syzkaller #0 PREEMPT(full) [ 1470.927475][T26251] Tainted: [L]=SOFTLOCKUP [ 1470.927481][T26251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1470.927492][T26251] Call Trace: [ 1470.927498][T26251] [ 1470.927505][T26251] dump_stack_lvl+0x100/0x190 [ 1470.927529][T26251] should_fail_ex.cold+0x5/0xa [ 1470.927551][T26251] ? find_held_lock+0x2b/0x80 [ 1470.927570][T26251] get_futex_key+0x1d2/0x1620 [ 1470.927592][T26251] ? __pfx_get_futex_key+0x10/0x10 [ 1470.927611][T26251] ? find_held_lock+0x2b/0x80 [ 1470.927626][T26251] ? __kernel_text_address+0xd/0x30 [ 1470.927649][T26251] ? unwind_get_return_address+0x59/0xa0 [ 1470.927668][T26251] ? arch_stack_walk+0xa6/0xf0 [ 1470.927688][T26251] futex_wait_setup+0x81/0x500 [ 1470.927707][T26251] __futex_wait+0x19f/0x300 [ 1470.927722][T26251] ? __pfx___futex_wait+0x10/0x10 [ 1470.927739][T26251] ? __pfx_futex_wake_mark+0x10/0x10 [ 1470.927764][T26251] ? futex_hash+0x2c5/0x380 [ 1470.927788][T26251] futex_wait+0xed/0x380 [ 1470.927802][T26251] ? __pfx_futex_wait+0x10/0x10 [ 1470.927826][T26251] do_futex+0x1ef/0x350 [ 1470.927847][T26251] ? __pfx_do_futex+0x10/0x10 [ 1470.927866][T26251] ? kmem_cache_free+0x143/0x720 [ 1470.927883][T26251] ? putname+0xf5/0x1a0 [ 1470.927903][T26251] __x64_sys_futex+0x34f/0x4d0 [ 1470.927926][T26251] ? __pfx___x64_sys_futex+0x10/0x10 [ 1470.927946][T26251] ? __pfx_path_listxattrat+0x10/0x10 [ 1470.927971][T26251] do_syscall_64+0xc9/0xf80 [ 1470.927990][T26251] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1470.928006][T26251] RIP: 0033:0x7f8db859acb9 [ 1470.928020][T26251] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1470.928035][T26251] RSP: 002b:00007f8db945f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1470.928050][T26251] RAX: ffffffffffffffda RBX: 00007f8db8815fa8 RCX: 00007f8db859acb9 [ 1470.928060][T26251] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f8db8815fa8 [ 1470.928070][T26251] RBP: 00007f8db8815fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1470.928080][T26251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1470.928089][T26251] R13: 00007f8db8816038 R14: 00007ffd94cf2180 R15: 00007ffd94cf2268 [ 1470.928109][T26251] [ 1470.989596][T12458] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 1472.629772][T26279] Process accounting resumed [ 1472.701030][T12458] Bluetooth: hci2: command 0x0406 tx timeout [ 1473.325261][T26276] binder: 26275:26276 ioctl c018620c 0 returned -1 [ 1474.484864][T26292] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1474.746684][ T5145] Bluetooth: hci2: command 0x0406 tx timeout [ 1476.444749][T26337] Invalid ELF header magic: != ELF [ 1476.908621][T26353] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3698'. [ 1477.314425][T26362] random: crng reseeded on system resumption [ 1477.878908][T26354] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3698'. [ 1479.433834][ T5145] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1481.490982][T12458] Bluetooth: hci0: command 0x0c1a tx timeout [ 1482.356291][ T30] audit: type=1800 audit(4294967394.271:124): pid=26456 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3716" name="lu_gp_id" dev="configfs" ino=114819 res=0 errno=0 [ 1483.345728][ T5145] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 1483.354741][ T5145] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:0' [ 1483.364205][ T5145] CPU: 0 UID: 0 PID: 5145 Comm: kworker/u9:1 Tainted: G L syzkaller #0 PREEMPT(full) [ 1483.364250][ T5145] Tainted: [L]=SOFTLOCKUP [ 1483.364261][ T5145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1483.364288][ T5145] Workqueue: hci1 hci_rx_work [ 1483.364327][ T5145] Call Trace: [ 1483.364336][ T5145] [ 1483.364347][ T5145] dump_stack_lvl+0x100/0x190 [ 1483.364383][ T5145] sysfs_warn_dup.cold+0x1c/0x28 [ 1483.364423][ T5145] sysfs_create_dir_ns+0x24b/0x2b0 [ 1483.364461][ T5145] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 1483.364498][ T5145] ? find_held_lock+0x2b/0x80 [ 1483.364527][ T5145] ? kobject_add_internal+0x25f/0x930 [ 1483.364566][ T5145] ? kobject_add_internal+0x25f/0x930 [ 1483.364606][ T5145] ? do_raw_spin_unlock+0x145/0x1e0 [ 1483.364648][ T5145] kobject_add_internal+0x2c8/0x930 [ 1483.364689][ T5145] kobject_add+0x16a/0x1e0 [ 1483.364727][ T5145] ? __pfx_kobject_add+0x10/0x10 [ 1483.364762][ T5145] ? class_to_subsys+0x10f/0x150 [ 1483.364822][ T5145] ? kobject_put+0xb9/0x640 [ 1483.364856][ T5145] ? _raw_spin_unlock+0x28/0x50 [ 1483.364895][ T5145] device_add+0x294/0x1950 [ 1483.364940][ T5145] ? __pfx_dev_set_name+0x10/0x10 [ 1483.364987][ T5145] ? __pfx_device_add+0x10/0x10 [ 1483.365027][ T5145] ? mgmt_send_event_skb+0x2fb/0x460 [ 1483.365073][ T5145] hci_conn_add_sysfs+0x1a3/0x260 [ 1483.365116][ T5145] le_conn_complete_evt+0x11cb/0x1f40 [ 1483.365164][ T5145] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 1483.365197][ T5145] ? __pfx_bt_warn+0x10/0x10 [ 1483.365249][ T5145] hci_le_conn_complete_evt+0x23c/0x3a0 [ 1483.365288][ T5145] ? skb_pull_data+0x15f/0x1e0 [ 1483.365327][ T5145] hci_le_meta_evt+0x34a/0x5f0 [ 1483.365366][ T5145] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 1483.365409][ T5145] hci_event_packet+0x682/0x11c0 [ 1483.365445][ T5145] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 1483.365485][ T5145] ? __pfx_hci_event_packet+0x10/0x10 [ 1483.365522][ T5145] ? kcov_remote_start+0x374/0x660 [ 1483.365541][ T5145] ? lockdep_hardirqs_on+0x78/0x100 [ 1483.365564][ T5145] hci_rx_work+0x451/0xfc0 [ 1483.365586][ T5145] process_one_work+0x9c2/0x1840 [ 1483.365617][ T5145] ? __pfx_process_one_work+0x10/0x10 [ 1483.365646][ T5145] ? assign_work+0x19c/0x250 [ 1483.365668][ T5145] worker_thread+0x5da/0xe40 [ 1483.365697][ T5145] ? kthread+0x17d/0x730 [ 1483.365716][ T5145] ? __pfx_worker_thread+0x10/0x10 [ 1483.365736][ T5145] kthread+0x3b3/0x730 [ 1483.365757][ T5145] ? __pfx_kthread+0x10/0x10 [ 1483.365776][ T5145] ? ret_from_fork+0x79/0xaf0 [ 1483.365790][ T5145] ? ret_from_fork+0x79/0xaf0 [ 1483.365804][ T5145] ? rcu_is_watching+0x12/0xc0 [ 1483.365819][ T5145] ? __pfx_kthread+0x10/0x10 [ 1483.365840][ T5145] ret_from_fork+0x754/0xaf0 [ 1483.365855][ T5145] ? __pfx_ret_from_fork+0x10/0x10 [ 1483.365870][ T5145] ? __switch_to+0x7b9/0x10c0 [ 1483.365889][ T5145] ? __pfx_kthread+0x10/0x10 [ 1483.365910][ T5145] ret_from_fork_asm+0x1a/0x30 [ 1483.365948][ T5145] [ 1483.365971][ T5145] kobject: kobject_add_internal failed for hci1:0 with -EEXIST, don't try to register things with the same name in the same directory. [ 1483.577620][T26248] Bluetooth: hci0: command 0x0c1a tx timeout [ 1483.583107][ T5145] Bluetooth: hci1: failed to register connection device [ 1484.562666][T26479] input: 9%vJ,6 as /devices/virtual/input/input46 [ 1484.972043][T17254] netdevsim netdevsim1336 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1485.706348][T26248] Bluetooth: hci1: command 0x0c1a tx timeout [ 1485.843457][T26492] NFSD: Failed to start, no listeners configured. [ 1485.966045][T26497] netlink: 'syz.2.3725': attribute type 8 has an invalid length. [ 1487.073555][T26519] snd_virmidi snd_virmidi.0: control 61678:131081:3:y>o[k<:0 is already present [ 1487.121197][T26517] netlink: 338 bytes leftover after parsing attributes in process `syz.0.3729'. [ 1487.774023][ T5145] Bluetooth: hci1: command 0x0c1a tx timeout [ 1488.086052][T26531] Invalid ELF header magic: != ELF [ 1488.655929][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 1488.669243][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 1489.036579][T26560] netlink: 'syz.3.3739': attribute type 8 has an invalid length. [ 1489.760567][T26570] FAULT_INJECTION: forcing a failure. [ 1489.760567][T26570] name failslab, interval 1, probability 0, space 0, times 0 [ 1489.845245][T26570] CPU: 1 UID: 0 PID: 26570 Comm: syz.2.3741 Tainted: G L syzkaller #0 PREEMPT(full) [ 1489.845298][T26570] Tainted: [L]=SOFTLOCKUP [ 1489.845310][T26570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1489.845329][T26570] Call Trace: [ 1489.845345][T26570] [ 1489.845357][T26570] dump_stack_lvl+0x100/0x190 [ 1489.845400][T26570] should_fail_ex.cold+0x5/0xa [ 1489.845448][T26570] should_failslab+0xc2/0x120 [ 1489.845490][T26570] kmem_cache_alloc_lru_noprof+0x8e/0x7d0 [ 1489.845527][T26570] ? __pfx_css_rstat_updated+0x10/0x10 [ 1489.845559][T26570] ? sock_alloc_inode+0x25/0x1c0 [ 1489.845593][T26570] ? __pfx_sock_alloc_inode+0x10/0x10 [ 1489.845620][T26570] ? sock_alloc_inode+0x25/0x1c0 [ 1489.845648][T26570] sock_alloc_inode+0x25/0x1c0 [ 1489.845677][T26570] alloc_inode+0x68/0x250 [ 1489.845722][T26570] sock_alloc+0x44/0x280 [ 1489.845747][T26570] ? security_socket_create+0x7f/0x250 [ 1489.845786][T26570] __sock_create+0xc2/0x860 [ 1489.845826][T26570] __sys_socket+0x14d/0x260 [ 1489.845862][T26570] ? __pfx___sys_socket+0x10/0x10 [ 1489.845901][T26570] ? do_user_addr_fault+0x8d6/0x12f0 [ 1489.845940][T26570] __x64_sys_socket+0x72/0xb0 [ 1489.845973][T26570] ? lockdep_hardirqs_on+0x78/0x100 [ 1489.846008][T26570] do_syscall_64+0xc9/0xf80 [ 1489.846046][T26570] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1489.846085][T26570] RIP: 0033:0x7faab699c547 [ 1489.846110][T26570] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1489.846140][T26570] RSP: 002b:00007faab792df98 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 1489.846169][T26570] RAX: ffffffffffffffda RBX: 00007faab6c15fa0 RCX: 00007faab699c547 [ 1489.846189][T26570] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 1489.846207][T26570] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 1489.846225][T26570] R10: 0000200000005cc0 R11: 0000000000000286 R12: 0000000000000000 [ 1489.846243][T26570] R13: 00007faab6c16038 R14: 00007faab6c15fa0 R15: 00007fff5ba8cc88 [ 1489.846286][T26570] [ 1490.283583][T26570] socket: no more sockets [ 1491.834063][T26248] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1492.164203][T26592] FAULT_INJECTION: forcing a failure. [ 1492.164203][T26592] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1492.272409][T26592] CPU: 0 UID: 0 PID: 26592 Comm: syz.3.3746 Tainted: G L syzkaller #0 PREEMPT(full) [ 1492.272458][T26592] Tainted: [L]=SOFTLOCKUP [ 1492.272470][T26592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1492.272489][T26592] Call Trace: [ 1492.272498][T26592] [ 1492.272510][T26592] dump_stack_lvl+0x100/0x190 [ 1492.272551][T26592] should_fail_ex.cold+0x5/0xa [ 1492.272598][T26592] get_futex_key+0x1d2/0x1620 [ 1492.272641][T26592] ? __pfx_get_futex_key+0x10/0x10 [ 1492.272691][T26592] futex_wait_setup+0x81/0x500 [ 1492.272730][T26592] __futex_wait+0x19f/0x300 [ 1492.272761][T26592] ? __pfx___futex_wait+0x10/0x10 [ 1492.272794][T26592] ? __pfx_futex_wake_mark+0x10/0x10 [ 1492.272846][T26592] ? find_held_lock+0x2b/0x80 [ 1492.272874][T26592] ? futex_wake+0x456/0x530 [ 1492.272927][T26592] futex_wait+0xed/0x380 [ 1492.272955][T26592] ? __pfx_futex_wait+0x10/0x10 [ 1492.272989][T26592] ? lockdep_hardirqs_on+0x78/0x100 [ 1492.273034][T26592] do_futex+0x1ef/0x350 [ 1492.273074][T26592] ? __pfx_do_futex+0x10/0x10 [ 1492.273114][T26592] ? putname+0xf5/0x1a0 [ 1492.273162][T26592] ? putname+0xfa/0x1a0 [ 1492.273204][T26592] __x64_sys_futex+0x34f/0x4d0 [ 1492.273251][T26592] ? __pfx___x64_sys_futex+0x10/0x10 [ 1492.273305][T26592] do_syscall_64+0xc9/0xf80 [ 1492.273343][T26592] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1492.273373][T26592] RIP: 0033:0x7fb3e359acb9 [ 1492.273403][T26592] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1492.273436][T26592] RSP: 002b:00007fb3e44cf0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1492.273465][T26592] RAX: ffffffffffffffda RBX: 00007fb3e3816098 RCX: 00007fb3e359acb9 [ 1492.273486][T26592] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb3e3816098 [ 1492.273505][T26592] RBP: 00007fb3e3816090 R08: 0000000000000000 R09: 0000000000000000 [ 1492.273523][T26592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1492.273540][T26592] R13: 00007fb3e3816128 R14: 00007ffc528275d0 R15: 00007ffc528276b8 [ 1492.273578][T26592] [ 1493.137511][ T30] audit: type=1326 audit(4294967405.113:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26594 comm="syz.1.3755" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8db859acb9 code=0x0 [ 1493.899000][ T5145] Bluetooth: hci0: command 0x0c1a tx timeout [ 1494.251514][T26614] Invalid ELF header magic: != ELF [ 1495.603257][T26632] __vm_enough_memory: pid: 26632, comm: syz.2.3754, bytes: 4398046511104 not enough memory for the allocation [ 1495.976986][T26248] Bluetooth: hci0: command 0x0c1a tx timeout [ 1497.897429][ T30] audit: type=1326 audit(4294967299.735:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26663 comm="syz.1.3762" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8db859acb9 code=0x0 [ 1498.363772][T26665] snd_virmidi snd_virmidi.0: control 61678:131081:3:y>o[k<:0 is already present [ 1499.079946][T26680] FAULT_INJECTION: forcing a failure. [ 1499.079946][T26680] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1499.136194][T26680] CPU: 0 UID: 0 PID: 26680 Comm: syz.3.3764 Tainted: G L syzkaller #0 PREEMPT(full) [ 1499.136244][T26680] Tainted: [L]=SOFTLOCKUP [ 1499.136256][T26680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1499.136275][T26680] Call Trace: [ 1499.136285][T26680] [ 1499.136297][T26680] dump_stack_lvl+0x100/0x190 [ 1499.136344][T26680] should_fail_ex.cold+0x5/0xa [ 1499.136393][T26680] get_futex_key+0x1d2/0x1620 [ 1499.136437][T26680] ? __pfx_get_futex_key+0x10/0x10 [ 1499.136488][T26680] futex_wake+0xea/0x530 [ 1499.136537][T26680] ? __pfx_futex_wake+0x10/0x10 [ 1499.136583][T26680] ? rcu_is_watching+0x12/0xc0 [ 1499.136613][T26680] ? lockdep_hardirqs_on+0x78/0x100 [ 1499.136658][T26680] do_futex+0x32b/0x350 [ 1499.136699][T26680] ? __pfx_do_futex+0x10/0x10 [ 1499.136738][T26680] ? putname+0xf5/0x1a0 [ 1499.136774][T26680] ? putname+0xfa/0x1a0 [ 1499.136822][T26680] __x64_sys_futex+0x34f/0x4d0 [ 1499.136868][T26680] ? __pfx___x64_sys_futex+0x10/0x10 [ 1499.136922][T26680] do_syscall_64+0xc9/0xf80 [ 1499.136961][T26680] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1499.136991][T26680] RIP: 0033:0x7fb3e359acb9 [ 1499.137016][T26680] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1499.137045][T26680] RSP: 002b:00007fb3e44ae0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1499.137074][T26680] RAX: ffffffffffffffda RBX: 00007fb3e3816188 RCX: 00007fb3e359acb9 [ 1499.137095][T26680] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb3e381618c [ 1499.137114][T26680] RBP: 00007fb3e3816180 R08: 0000000000000000 R09: 0000000000000000 [ 1499.137133][T26680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1499.137151][T26680] R13: 00007fb3e3816218 R14: 00007ffc528275d0 R15: 00007ffc528276b8 [ 1499.137191][T26680] [ 1499.779076][T26688] Invalid ELF header magic: != ELF [ 1500.381498][T26638] Process accounting paused [ 1501.303935][T26722] hub 1-0:1.0: USB hub found [ 1501.365652][T26722] hub 1-0:1.0: 1 port detected [ 1501.896616][ T30] audit: type=1326 audit(4294967304.019:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26720 comm="syz.2.3775" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7faab699acb9 code=0x0 [ 1503.219883][T26741] input: f as /devices/virtual/input/input47 [ 1503.316145][T26733] Process accounting paused [ 1504.257481][T26760] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1506.731585][ T30] audit: type=1326 audit(4294967308.877:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26787 comm="syz.1.3786" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8db859acb9 code=0x0 [ 1507.725085][T26805] FAULT_INJECTION: forcing a failure. [ 1507.725085][T26805] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1507.764525][T26805] CPU: 1 UID: 0 PID: 26805 Comm: syz.1.3788 Tainted: G L syzkaller #0 PREEMPT(full) [ 1507.764554][T26805] Tainted: [L]=SOFTLOCKUP [ 1507.764560][T26805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1507.764569][T26805] Call Trace: [ 1507.764575][T26805] [ 1507.764582][T26805] dump_stack_lvl+0x100/0x190 [ 1507.764605][T26805] should_fail_ex.cold+0x5/0xa [ 1507.764630][T26805] get_futex_key+0x1d2/0x1620 [ 1507.764652][T26805] ? __pfx_get_futex_key+0x10/0x10 [ 1507.764676][T26805] futex_wake+0xea/0x530 [ 1507.764698][T26805] ? rcu_is_watching+0x12/0xc0 [ 1507.764714][T26805] ? lockdep_hardirqs_on+0x78/0x100 [ 1507.764732][T26805] ? __pfx_futex_wake+0x10/0x10 [ 1507.764756][T26805] ? fd_install+0x223/0x580 [ 1507.764771][T26805] ? putname+0xf5/0x1a0 [ 1507.764794][T26805] do_futex+0x32b/0x350 [ 1507.764814][T26805] ? __pfx_do_futex+0x10/0x10 [ 1507.764832][T26805] ? __pfx_do_sys_openat2+0x10/0x10 [ 1507.764863][T26805] ? __fget_files+0x21f/0x3d0 [ 1507.764882][T26805] __x64_sys_futex+0x34f/0x4d0 [ 1507.764903][T26805] ? __x64_sys_openat+0x12d/0x210 [ 1507.764926][T26805] ? __pfx___x64_sys_futex+0x10/0x10 [ 1507.764946][T26805] ? xfd_validate_state+0x129/0x190 [ 1507.764975][T26805] do_syscall_64+0xc9/0xf80 [ 1507.764995][T26805] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1507.765010][T26805] RIP: 0033:0x7f8db859acb9 [ 1507.765023][T26805] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1507.765038][T26805] RSP: 002b:00007f8db943e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1507.765053][T26805] RAX: ffffffffffffffda RBX: 00007f8db8816098 RCX: 00007f8db859acb9 [ 1507.765063][T26805] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f8db881609c [ 1507.765072][T26805] RBP: 00007f8db8816090 R08: 0000000000000000 R09: 0000000000000000 [ 1507.765082][T26805] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000 [ 1507.765091][T26805] R13: 00007f8db8816128 R14: 00007ffd94cf2180 R15: 00007ffd94cf2268 [ 1507.765111][T26805] [ 1508.870090][T26800] Invalid ELF header magic: != ELF [ 1509.081462][T26825] XFS: Clearing xfsstats [ 1510.105049][T26844] binder: 26842:26844 ioctl c018620c 0 returned -1 [ 1510.154438][T26851] NFSD: Failed to start, no listeners configured. [ 1510.572754][T26854] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.3797: iget: checksum invalid [ 1510.604746][T26854] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 1510.623915][T26854] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.3797: iget: checksum invalid [ 1510.639951][T26854] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 1510.797350][T26854] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.3797: iget: checksum invalid [ 1510.856654][T26854] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 1510.899960][T26854] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.3797: iget: checksum invalid [ 1510.983115][T26854] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 1511.017071][T26856] zswap: compressor W;0?u=8}L(Eֹjj8+xpȜNkRuoo [ 1511.450320][T26868] dump_stack_lvl+0x100/0x190 [ 1511.450344][T26868] should_fail_ex.cold+0x5/0xa [ 1511.450369][T26868] should_failslab+0xc2/0x120 [ 1511.450392][T26868] kmem_cache_alloc_noprof+0x83/0x780 [ 1511.450412][T26868] ? prepare_creds+0x2c/0x950 [ 1511.450429][T26868] ? prepare_creds+0x2c/0x950 [ 1511.450441][T26868] prepare_creds+0x2c/0x950 [ 1511.450456][T26868] __sys_setregid+0x109/0x910 [ 1511.450471][T26868] ? rcu_is_watching+0x12/0xc0 [ 1511.450488][T26868] do_syscall_64+0xc9/0xf80 [ 1511.450510][T26868] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1511.450525][T26868] RIP: 0033:0x7f8db859acb9 [ 1511.450538][T26868] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1511.450553][T26868] RSP: 002b:00007f8db943e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000072 [ 1511.450569][T26868] RAX: ffffffffffffffda RBX: 00007f8db8816090 RCX: 00007f8db859acb9 [ 1511.450579][T26868] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffffff [ 1511.450589][T26868] RBP: 00007f8db8608bf7 R08: 0000000000000000 R09: 0000000000000000 [ 1511.450598][T26868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1511.450606][T26868] R13: 00007f8db8816128 R14: 00007f8db8816090 R15: 00007ffd94cf2268 [ 1511.450626][T26868] [ 1513.019299][T26906] netlink: 186 bytes leftover after parsing attributes in process `syz.0.3817'. [ 1513.042935][ C1] process 26897 (syz.1.3807) no longer affine to cpu1 [ 1513.043021][ T22] process 26911 (syz.2.3810) no longer affine to cpu1 [ 1513.043553][ T22] process 26902 (syz.2.3810) no longer affine to cpu1 [ 1513.043647][ T22] process 14265 (syz-executor) no longer affine to cpu1 [ 1513.044807][ C1] process 14190 (syz-executor) no longer affine to cpu1 [ 1513.044897][ T22] process 26901 (syz.1.3807) no longer affine to cpu1 [ 1513.044981][ T22] process 26905 (syz.1.3807) no longer affine to cpu1 [ 1513.051723][ C0] process 26899 (syz.1.3807) no longer affine to cpu1 [ 1513.104116][T26906] netlink: 186 bytes leftover after parsing attributes in process `syz.0.3817'. [ 1513.218087][ T5892] smpboot: CPU 1 is now offline [ 1513.397410][ T5892] process 26907 (syz.2.3810) no longer affine to cpu1 [ 1513.504036][T26920] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3811'. [ 1513.627334][T26923] Line length is too long: Should be less than 4094 [ 1514.422136][T26938] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input48 [ 1514.773990][T26938] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input49 [ 1517.386633][T26995] Invalid ELF header magic: != ELF [ 1517.416965][T26988] NFSD: Failed to start, no listeners configured. [ 1517.996012][T27004] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1518.312100][T27008] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 1519.146849][T27024] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3833'. [ 1519.260977][T27025] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3833'. [ 1519.302947][T27022] netlink: 13 bytes leftover after parsing attributes in process `syz.3.3833'. [ 1519.336366][T27022] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3833'. [ 1519.548876][T27029] input: f as /devices/virtual/input/input50 [ 1522.698131][T27094] FAULT_INJECTION: forcing a failure. [ 1522.698131][T27094] name failslab, interval 1, probability 0, space 0, times 0 [ 1522.728509][T27094] CPU: 0 UID: 0 PID: 27094 Comm: syz.0.3845 Tainted: G L syzkaller #0 PREEMPT(full) [ 1522.728536][T27094] Tainted: [L]=SOFTLOCKUP [ 1522.728547][T27094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1522.728557][T27094] Call Trace: [ 1522.728564][T27094] [ 1522.728570][T27094] dump_stack_lvl+0x100/0x190 [ 1522.728595][T27094] should_fail_ex.cold+0x5/0xa [ 1522.728621][T27094] should_failslab+0xc2/0x120 [ 1522.728642][T27094] __kmalloc_cache_noprof+0x80/0x810 [ 1522.728658][T27094] ? resv_map_alloc+0x7e/0x400 [ 1522.728680][T27094] ? resv_map_alloc+0x7e/0x400 [ 1522.728699][T27094] resv_map_alloc+0x7e/0x400 [ 1522.728718][T27094] hugetlb_reserve_pages+0x64d/0x1170 [ 1522.728744][T27094] ? __pfx_hugetlb_reserve_pages+0x10/0x10 [ 1522.728767][T27094] ? atime_needs_update+0x8b/0x6b0 [ 1522.728795][T27094] hugetlbfs_file_mmap_prepare+0x3d3/0x640 [ 1522.728824][T27094] __mmap_region+0xe7f/0x2820 [ 1522.728844][T27094] ? __pfx___mmap_region+0x10/0x10 [ 1522.728867][T27094] ? find_held_lock+0x2b/0x80 [ 1522.728882][T27094] ? is_bpf_text_address+0x8a/0x1a0 [ 1522.728904][T27094] ? is_bpf_text_address+0x8a/0x1a0 [ 1522.728926][T27094] ? bpf_ksym_find+0x124/0x1c0 [ 1522.728944][T27094] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 1522.728963][T27094] ? is_bpf_text_address+0x94/0x1a0 [ 1522.728985][T27094] ? kernel_text_address+0x8d/0x100 [ 1522.729008][T27094] ? __kernel_text_address+0xd/0x30 [ 1522.729029][T27094] ? unwind_get_return_address+0x59/0xa0 [ 1522.729056][T27094] ? stack_trace_save+0x8e/0xc0 [ 1522.729098][T27094] ? rcu_is_watching+0x12/0xc0 [ 1522.729117][T27094] mmap_region+0x180/0x3e0 [ 1522.729139][T27094] do_mmap+0xc63/0x12f0 [ 1522.729164][T27094] ? __pfx_do_mmap+0x10/0x10 [ 1522.729185][T27094] ? __pfx_down_write_killable+0x10/0x10 [ 1522.729209][T27094] vm_mmap_pgoff+0x29e/0x470 [ 1522.729234][T27094] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1522.729255][T27094] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 1522.729279][T27094] ? hugetlbfs_get_inode+0x36e/0x6f0 [ 1522.729299][T27094] ksys_mmap_pgoff+0x1c4/0x5b0 [ 1522.729323][T27094] __x64_sys_mmap+0x125/0x190 [ 1522.729340][T27094] do_syscall_64+0xc9/0xf80 [ 1522.729364][T27094] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1522.729380][T27094] RIP: 0033:0x7fe52899acb9 [ 1522.729394][T27094] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1522.729409][T27094] RSP: 002b:00007fe52982f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1522.729424][T27094] RAX: ffffffffffffffda RBX: 00007fe528c16090 RCX: 00007fe52899acb9 [ 1522.729434][T27094] RDX: 0000000000000002 RSI: 0000000000000005 RDI: 0000000000000000 [ 1522.729443][T27094] RBP: 00007fe528a08bf7 R08: 0000000000000401 R09: 0000300000000000 [ 1522.729454][T27094] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000 [ 1522.729464][T27094] R13: 00007fe528c16128 R14: 00007fe528c16090 R15: 00007ffcbe237668 [ 1522.729484][T27094] [ 1522.731306][T27084] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1523.229225][T27084] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1523.240340][T27084] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 1523.296289][T27084] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 1523.328905][T27084] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1523.346467][T27084] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1523.362675][T27084] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 1523.596765][T27104] input: f as /devices/virtual/input/input51 [ 1524.046763][ T5145] Bluetooth: hci0: command 0x0c1a tx timeout [ 1525.239850][ T5145] Bluetooth: hci1: command 0x0c1a tx timeout [ 1525.319380][ T5145] Bluetooth: hci2: command 0x0406 tx timeout [ 1525.398881][ T5145] Bluetooth: hci3: command 0x0406 tx timeout [ 1526.311295][ T30] audit: type=1326 audit(4294967328.478:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27100 comm="syz.1.3850" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8db859acb9 code=0x0 [ 1527.308049][ T5145] Bluetooth: hci1: command 0x0c1a tx timeout [ 1527.474138][ T5145] Bluetooth: hci3: command 0x0406 tx timeout [ 1528.570366][T27144] usb usb36: usbfs: process 27144 (syz.0.3854) did not claim interface 0 before use [ 1528.712728][T27144] Invalid ELF header magic: != ELF [ 1529.376708][ T5145] Bluetooth: hci1: command 0x0c1a tx timeout [ 1529.421676][T27161] netlink: 330 bytes leftover after parsing attributes in process `syz.2.3858'. [ 1529.835568][T27174] futex_wake_op: syz.1.3863 tries to shift op by -2048; fix this program [ 1529.854883][T27175] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1529.870622][T27174] futex_wake_op: syz.1.3863 tries to shift op by -2048; fix this program [ 1529.924240][T27174] ubi1: attaching mtd0 [ 1529.944867][T27174] ubi1: scanning is finished [ 1529.971009][T27174] ubi1 error: ubi_read_volume_table: the layout volume was not found [ 1530.265720][T27174] ubi1 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1530.346656][T27178] zswap: compressor 000 not available [ 1530.413395][T27182] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 1530.607857][T27192] NFSD: Failed to start, no listeners configured. [ 1530.631666][T27180] Process accounting resumed [ 1531.564164][T27229] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1532.085812][T27241] sg_write: data in/out 220/90 bytes for SCSI command 0x0-- guessing data in; [ 1532.085812][T27241] program syz.3.3871 not setting count and/or reply_len properly [ 1532.572636][T27255] Invalid ELF header magic: != ELF [ 1533.496321][T27276] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1533.527062][T27263] Process accounting resumed [ 1534.114880][ T30] audit: type=1326 audit(4294967336.421:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27270 comm="syz.1.3877" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8db859acb9 code=0x0 [ 1534.496892][T27286] openvswitch: HfR: Dropping previously announced user features [ 1534.605143][T27286] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3879'. [ 1534.654073][T27286] HfR: left promiscuous mode [ 1535.764271][T27309] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma? [ 1535.830898][T27315] vivid-007: ================= START STATUS ================= [ 1535.862166][T27315] vivid-007: Generate PTS: true [ 1535.916292][T27315] vivid-007: Generate SCR: true [ 1535.929018][T27315] tpg source WxH: 320x240 (Y'CbCr) [ 1535.978988][T27315] tpg field: 1 [ 1535.990383][T27315] tpg crop: (0,0)/320x240 [ 1535.996694][T27315] tpg compose: (0,0)/320x240 [ 1536.043431][T27315] tpg colorspace: 8 [ 1536.057623][T27315] tpg transfer function: 0/0 [ 1536.127973][T27315] tpg Y'CbCr encoding: 0/0 [ 1536.161248][T27315] tpg quantization: 0/0 [ 1536.171401][T27315] tpg RGB range: 0/2 [ 1536.211173][T27315] vivid-007: ================== END STATUS ================== [ 1536.722685][T27327] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3888'. [ 1536.813654][T27328] FAULT_INJECTION: forcing a failure. [ 1536.813654][T27328] name failslab, interval 1, probability 0, space 0, times 0 [ 1536.867997][T27328] CPU: 1 UID: 0 PID: 27328 Comm: syz.0.3888 Tainted: G L syzkaller #0 PREEMPT(full) [ 1536.868044][T27328] Tainted: [L]=SOFTLOCKUP [ 1536.868055][T27328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1536.868073][T27328] Call Trace: [ 1536.868083][T27328] [ 1536.868095][T27328] dump_stack_lvl+0x100/0x190 [ 1536.868138][T27328] should_fail_ex.cold+0x5/0xa [ 1536.868183][T27328] should_failslab+0xc2/0x120 [ 1536.868222][T27328] __kmalloc_cache_noprof+0x80/0x810 [ 1536.868255][T27328] ? ring_buffer_read_start+0x149/0x460 [ 1536.868307][T27328] ? ring_buffer_read_start+0x149/0x460 [ 1536.868351][T27328] ring_buffer_read_start+0x149/0x460 [ 1536.868407][T27328] ? __pfx_ring_buffer_read_start+0x10/0x10 [ 1536.868448][T27328] ? lockdep_init_map_type+0x5c/0x250 [ 1536.868490][T27328] ? ring_buffer_overruns+0x14e/0x1a0 [ 1536.868526][T27328] tracing_open+0x986/0xe00 [ 1536.868567][T27328] do_dentry_open+0x73e/0x1570 [ 1536.868595][T27328] ? __pfx_tracing_open+0x10/0x10 [ 1536.868630][T27328] ? security_inode_permission+0xbf/0x250 [ 1536.868673][T27328] vfs_open+0x82/0x3f0 [ 1536.868713][T27328] path_openat+0x21dc/0x3120 [ 1536.868755][T27328] ? __pfx_path_openat+0x10/0x10 [ 1536.868797][T27328] do_filp_open+0x1f7/0x420 [ 1536.868829][T27328] ? __pfx_do_filp_open+0x10/0x10 [ 1536.868882][T27328] ? _raw_spin_unlock+0x28/0x50 [ 1536.868906][T27328] ? alloc_fd+0x476/0x790 [ 1536.868944][T27328] do_sys_openat2+0x12e/0x220 [ 1536.868982][T27328] ? __pfx_do_sys_openat2+0x10/0x10 [ 1536.869021][T27328] ? __fget_files+0x21f/0x3d0 [ 1536.869055][T27328] __x64_sys_openat+0x12d/0x210 [ 1536.869093][T27328] ? __pfx___x64_sys_openat+0x10/0x10 [ 1536.869130][T27328] ? xfd_validate_state+0x129/0x190 [ 1536.869181][T27328] do_syscall_64+0xc9/0xf80 [ 1536.869213][T27328] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1536.869239][T27328] RIP: 0033:0x7fe52899acb9 [ 1536.869259][T27328] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1536.869284][T27328] RSP: 002b:00007fe52982f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1536.869309][T27328] RAX: ffffffffffffffda RBX: 00007fe528c16090 RCX: 00007fe52899acb9 [ 1536.869342][T27328] RDX: 1a6b75d638828712 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1536.869360][T27328] RBP: 00007fe528a08bf7 R08: 0000000000000000 R09: 0000000000000000 [ 1536.869381][T27328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1536.869397][T27328] R13: 00007fe528c16128 R14: 00007fe528c16090 R15: 00007ffcbe237668 [ 1536.869432][T27328] [ 1537.913184][T27347] vivid-009: ================= START STATUS ================= [ 1537.925572][T27347] vivid-009: Radio HW Seek Mode: Bounded [ 1537.931329][T27347] vivid-009: Radio Programmable HW Seek: false [ 1538.016992][T27347] vivid-009: RDS Rx I/O Mode: Block I/O [ 1538.065557][T27347] vivid-009: Generate RBDS Instead of RDS: false [ 1538.109204][T27347] vivid-009: RDS Reception: true [ 1538.117097][T27347] vivid-009: RDS Program Type: 0 inactive [ 1538.150106][T27347] vivid-009: RDS PS Name: inactive [ 1538.163447][T27347] vivid-009: RDS Radio Text: inactive [ 1538.169135][T27347] vivid-009: RDS Traffic Announcement: false inactive [ 1538.482550][T27347] vivid-009: RDS Traffic Program: false inactive [ 1538.504100][T27347] vivid-009: RDS Music: false inactive [ 1538.731605][T27347] vivid-009: ================== END STATUS ================== [ 1539.311915][T27371] FAULT_INJECTION: forcing a failure. [ 1539.311915][T27371] name failslab, interval 1, probability 0, space 0, times 0 [ 1539.324850][T27371] CPU: 1 UID: 0 PID: 27371 Comm: syz.0.3895 Tainted: G L syzkaller #0 PREEMPT(full) [ 1539.324877][T27371] Tainted: [L]=SOFTLOCKUP [ 1539.324883][T27371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1539.324893][T27371] Call Trace: [ 1539.324900][T27371] [ 1539.324906][T27371] dump_stack_lvl+0x100/0x190 [ 1539.324930][T27371] should_fail_ex.cold+0x5/0xa [ 1539.324956][T27371] should_failslab+0xc2/0x120 [ 1539.324977][T27371] kmem_cache_alloc_noprof+0x83/0x780 [ 1539.324996][T27371] ? __proc_create+0xc2/0x8c0 [ 1539.325019][T27371] ? __proc_create+0x2cb/0x8c0 [ 1539.325045][T27371] ? __proc_create+0x2cb/0x8c0 [ 1539.325065][T27371] __proc_create+0x2cb/0x8c0 [ 1539.325088][T27371] ? __pfx___proc_create+0x10/0x10 [ 1539.325117][T27371] _proc_mkdir+0xb9/0x210 [ 1539.325131][T27371] ? __pfx__proc_mkdir+0x10/0x10 [ 1539.325144][T27371] ? proc_net_ns_init+0x42/0x420 [ 1539.325162][T27371] proc_net_ns_init+0x273/0x420 [ 1539.325177][T27371] ? __pfx_proc_net_ns_init+0x10/0x10 [ 1539.325197][T27371] ops_init+0x1e2/0x5f0 [ 1539.325225][T27371] setup_net+0x118/0x3a0 [ 1539.325238][T27371] ? __pfx_setup_net+0x10/0x10 [ 1539.325259][T27371] ? lockdep_init_map_type+0x5c/0x250 [ 1539.325281][T27371] ? mutex_init_lockep+0x110/0x150 [ 1539.325303][T27371] copy_net_ns+0x46f/0x7c0 [ 1539.325320][T27371] create_new_namespaces+0x3ea/0xab0 [ 1539.325341][T27371] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1539.325360][T27371] ksys_unshare+0x455/0xab0 [ 1539.325382][T27371] ? __pfx_ksys_unshare+0x10/0x10 [ 1539.325403][T27371] ? xfd_validate_state+0x129/0x190 [ 1539.325439][T27371] __x64_sys_unshare+0x31/0x40 [ 1539.325460][T27371] do_syscall_64+0xc9/0xf80 [ 1539.325481][T27371] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1539.325496][T27371] RIP: 0033:0x7fe52899acb9 [ 1539.325510][T27371] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1539.325525][T27371] RSP: 002b:00007fe52982f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1539.325540][T27371] RAX: ffffffffffffffda RBX: 00007fe528c16090 RCX: 00007fe52899acb9 [ 1539.325551][T27371] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1539.325560][T27371] RBP: 00007fe528a08bf7 R08: 0000000000000000 R09: 0000000000000000 [ 1539.325570][T27371] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1539.325580][T27371] R13: 00007fe528c16128 R14: 00007fe528c16090 R15: 00007ffcbe237668 [ 1539.325601][T27371] [ 1540.156220][T27384] FAULT_INJECTION: forcing a failure. [ 1540.156220][T27384] name failslab, interval 1, probability 0, space 0, times 0 [ 1540.214274][T27384] CPU: 0 UID: 0 PID: 27384 Comm: syz.2.3898 Tainted: G L syzkaller #0 PREEMPT(full) [ 1540.214330][T27384] Tainted: [L]=SOFTLOCKUP [ 1540.214341][T27384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1540.214360][T27384] Call Trace: [ 1540.214370][T27384] [ 1540.214381][T27384] dump_stack_lvl+0x100/0x190 [ 1540.214423][T27384] should_fail_ex.cold+0x5/0xa [ 1540.214472][T27384] should_failslab+0xc2/0x120 [ 1540.214514][T27384] kmem_cache_alloc_noprof+0x83/0x780 [ 1540.214554][T27384] ? prepare_creds+0x2c/0x950 [ 1540.214587][T27384] ? prepare_creds+0x2c/0x950 [ 1540.214612][T27384] prepare_creds+0x2c/0x950 [ 1540.214642][T27384] __sys_setregid+0x109/0x910 [ 1540.214672][T27384] ? rcu_is_watching+0x12/0xc0 [ 1540.214704][T27384] do_syscall_64+0xc9/0xf80 [ 1540.214743][T27384] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1540.214773][T27384] RIP: 0033:0x7faab699acb9 [ 1540.214796][T27384] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1540.214825][T27384] RSP: 002b:00007faab78ed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000072 [ 1540.214853][T27384] RAX: ffffffffffffffda RBX: 00007faab6c16180 RCX: 00007faab699acb9 [ 1540.214874][T27384] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffffff [ 1540.214892][T27384] RBP: 00007faab6a08bf7 R08: 0000000000000000 R09: 0000000000000000 [ 1540.214909][T27384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1540.214927][T27384] R13: 00007faab6c16218 R14: 00007faab6c16180 R15: 00007fff5ba8cc88 [ 1540.214966][T27384] [ 1540.409548][T27383] virtio-pci 0000:00:04.0: [Firmware Bug]: Overriding NUMA node to 1. Contact your vendor for updates. [ 1541.286322][ T5145] Bluetooth: hci1: unexpected event 0x01 length: 124 > 1 [ 1541.351527][ T30] audit: type=1326 audit(4294967343.688:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27402 comm="syz.1.3904" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8db859acb9 code=0x0 [ 1543.020384][T27453] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3918'. [ 1544.874436][T27486] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma? [ 1545.071783][T27484] random: crng reseeded on system resumption [ 1546.254433][T27517] Invalid ELF header magic: != ELF [ 1546.413129][T27521] vhci_hcd vhci_hcd.0: invalid port number 16 [ 1546.628677][T27526] ubi0: attaching mtd1 [ 1546.632819][T27526] ubi0 error: ubi_attach_mtd_dev: bad VID header (16777279) or data offsets (16777343) [ 1547.458065][T27547] usb usb36: usbfs: process 27547 (syz.2.3946) did not claim interface 0 before use [ 1547.613729][T27540] FAULT_INJECTION: forcing a failure. [ 1547.613729][T27540] name failslab, interval 1, probability 0, space 0, times 0 [ 1547.722360][T27540] CPU: 1 UID: 0 PID: 27540 Comm: syz.1.3941 Tainted: G I L syzkaller #0 PREEMPT(full) [ 1547.722417][T27540] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 1547.722431][T27540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1547.722448][T27540] Call Trace: [ 1547.722458][T27540] [ 1547.722470][T27540] dump_stack_lvl+0x100/0x190 [ 1547.722512][T27540] should_fail_ex.cold+0x5/0xa [ 1547.722560][T27540] should_failslab+0xc2/0x120 [ 1547.722600][T27540] kmem_cache_alloc_lru_noprof+0x8e/0x7d0 [ 1547.722639][T27540] ? __pfx___debug_object_init+0x10/0x10 [ 1547.722679][T27540] ? __d_alloc+0x34/0xa80 [ 1547.722727][T27540] ? __d_alloc+0x34/0xa80 [ 1547.722760][T27540] __d_alloc+0x34/0xa80 [ 1547.722801][T27540] d_alloc_pseudo+0x1c/0xc0 [ 1547.722846][T27540] alloc_file_pseudo+0xcf/0x230 [ 1547.722890][T27540] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 1547.722931][T27540] ? alloc_fd+0x476/0x790 [ 1547.722970][T27540] sock_alloc_file+0x50/0x210 [ 1547.723017][T27540] __sys_socket+0x1c0/0x260 [ 1547.723052][T27540] ? __pfx___sys_socket+0x10/0x10 [ 1547.723086][T27540] ? xfd_validate_state+0x129/0x190 [ 1547.723130][T27540] ? __task_pid_nr_ns+0x1f5/0x500 [ 1547.723178][T27540] __x64_sys_socket+0x72/0xb0 [ 1547.723212][T27540] ? lockdep_hardirqs_on+0x78/0x100 [ 1547.723248][T27540] do_syscall_64+0xc9/0xf80 [ 1547.723286][T27540] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1547.723316][T27540] RIP: 0033:0x7f8db859acb9 [ 1547.723340][T27540] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1547.723369][T27540] RSP: 002b:00007f8db945f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 1547.723401][T27540] RAX: ffffffffffffffda RBX: 00007f8db8815fa0 RCX: 00007f8db859acb9 [ 1547.723422][T27540] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 000000000000002a [ 1547.723439][T27540] RBP: 00007f8db8608bf7 R08: 0000000000000000 R09: 0000000000000000 [ 1547.723458][T27540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1547.723477][T27540] R13: 00007f8db8816038 R14: 00007f8db8815fa0 R15: 00007ffd94cf2268 [ 1547.723517][T27540] [ 1548.507207][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 1548.517180][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 1548.997306][ T5145] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5 [ 1549.302402][T27585] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1550.770847][T27617] zswap: compressor not available [ 1551.064737][T27640] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1552.207730][T27675] random: crng reseeded on system resumption [ 1553.357346][ T5145] Bluetooth: hci1: unexpected event 0x2c length: 42 > 17 [ 1553.825655][T27730] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma? [ 1554.403919][T27749] FAULT_INJECTION: forcing a failure. [ 1554.403919][T27749] name failslab, interval 1, probability 0, space 0, times 0 [ 1554.436266][T27749] CPU: 1 UID: 0 PID: 27749 Comm: syz.2.4024 Tainted: G I L syzkaller #0 PREEMPT(full) [ 1554.436317][T27749] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 1554.436330][T27749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1554.436346][T27749] Call Trace: [ 1554.436356][T27749] [ 1554.436368][T27749] dump_stack_lvl+0x100/0x190 [ 1554.436408][T27749] should_fail_ex.cold+0x5/0xa [ 1554.436456][T27749] should_failslab+0xc2/0x120 [ 1554.436496][T27749] kmem_cache_alloc_noprof+0x83/0x780 [ 1554.436534][T27749] ? kcm_create+0x11e/0x6a0 [ 1554.436576][T27749] ? kcm_create+0x11e/0x6a0 [ 1554.436607][T27749] kcm_create+0x11e/0x6a0 [ 1554.436643][T27749] __sock_create+0x339/0x860 [ 1554.436683][T27749] __sys_socket+0x14d/0x260 [ 1554.436716][T27749] ? fput+0x79/0x100 [ 1554.436754][T27749] ? __pfx___sys_socket+0x10/0x10 [ 1554.436785][T27749] ? xfd_validate_state+0x129/0x190 [ 1554.436843][T27749] __x64_sys_socket+0x72/0xb0 [ 1554.436884][T27749] ? lockdep_hardirqs_on+0x78/0x100 [ 1554.436919][T27749] do_syscall_64+0xc9/0xf80 [ 1554.436957][T27749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1554.436986][T27749] RIP: 0033:0x7faab699acb9 [ 1554.437008][T27749] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1554.437035][T27749] RSP: 002b:00007faab792f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 1554.437062][T27749] RAX: ffffffffffffffda RBX: 00007faab6c15fa0 RCX: 00007faab699acb9 [ 1554.437081][T27749] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000029 [ 1554.437098][T27749] RBP: 00007faab6a08bf7 R08: 0000000000000000 R09: 0000000000000000 [ 1554.437116][T27749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1554.437134][T27749] R13: 00007faab6c16038 R14: 00007faab6c15fa0 R15: 00007fff5ba8cc88 [ 1554.437173][T27749] [ 1555.553884][T27776] zswap: compressor not available [ 1556.515885][T27815] FAULT_INJECTION: forcing a failure. [ 1556.515885][T27815] name failslab, interval 1, probability 0, space 0, times 0 [ 1556.576286][T27815] CPU: 1 UID: 0 PID: 27815 Comm: syz.3.4049 Tainted: G I L syzkaller #0 PREEMPT(full) [ 1556.576335][T27815] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 1556.576348][T27815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1556.576365][T27815] Call Trace: [ 1556.576374][T27815] [ 1556.576383][T27815] dump_stack_lvl+0x100/0x190 [ 1556.576422][T27815] should_fail_ex.cold+0x5/0xa [ 1556.576463][T27815] should_failslab+0xc2/0x120 [ 1556.576502][T27815] kmem_cache_alloc_noprof+0x83/0x780 [ 1556.576540][T27815] ? kcm_create+0x11e/0x6a0 [ 1556.576582][T27815] ? kcm_create+0x11e/0x6a0 [ 1556.576612][T27815] kcm_create+0x11e/0x6a0 [ 1556.576647][T27815] __sock_create+0x339/0x860 [ 1556.576683][T27815] __sys_socket+0x14d/0x260 [ 1556.576714][T27815] ? fput+0x79/0x100 [ 1556.576761][T27815] ? __pfx___sys_socket+0x10/0x10 [ 1556.576794][T27815] ? xfd_validate_state+0x129/0x190 [ 1556.576850][T27815] __x64_sys_socket+0x72/0xb0 [ 1556.576884][T27815] ? lockdep_hardirqs_on+0x78/0x100 [ 1556.576918][T27815] do_syscall_64+0xc9/0xf80 [ 1556.576956][T27815] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1556.576984][T27815] RIP: 0033:0x7fb3e359acb9 [ 1556.577009][T27815] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1556.577039][T27815] RSP: 002b:00007fb3e44f0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 1556.577068][T27815] RAX: ffffffffffffffda RBX: 00007fb3e3815fa0 RCX: 00007fb3e359acb9 [ 1556.577090][T27815] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000029 [ 1556.577109][T27815] RBP: 00007fb3e3608bf7 R08: 0000000000000000 R09: 0000000000000000 [ 1556.577127][T27815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1556.577146][T27815] R13: 00007fb3e3816038 R14: 00007fb3e3815fa0 R15: 00007ffc528276b8 [ 1556.577186][T27815] [ 1557.600332][T27855] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1558.156841][T27871] MTRR 0 not used [ 1559.138372][T27904] MTRR 0 not used [ 1559.225089][T27901] Invalid ELF header magic: != ELF [ 1560.099331][T27928] random: crng reseeded on system resumption [ 1560.881673][T27927] Process accounting paused [ 1560.951195][T27943] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4096'. [ 1561.509857][T27951] zswap: compressor not available [ 1563.412836][T27990] MTRR 0 not used [ 1564.202798][T27997] Invalid ELF header magic: != ELF [ 1564.291374][T27975] Process accounting paused [ 1564.666437][T28006] Invalid ELF header magic: != ELF [ 1565.311367][T28025] zswap: compressor not available [ 1565.966661][T28053] Invalid ELF header magic: != ELF [ 1567.248717][T28066] Invalid ELF header magic: != ELF [ 1567.441275][ T30] audit: type=1326 audit(4294967369.924:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28086 comm="syz.2.4137" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7faab699acb9 code=0x0 [ 1567.853032][T28102] hub 1-0:1.0: USB hub found [ 1568.019167][T28102] hub 1-0:1.0: 1 port detected [ 1569.970306][T28139] XFS: Clearing xfsstats [ 1570.490397][T28140] Invalid ELF header magic: != ELF [ 1570.835163][T28157] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.4154: iget: checksum invalid [ 1570.847416][T28157] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 1570.859964][T28157] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.4154: iget: checksum invalid [ 1570.880744][T28157] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 1570.898647][T28157] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.4154: iget: checksum invalid [ 1570.982631][T28157] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 1571.030102][T28157] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.4154: iget: checksum invalid [ 1571.318344][T28157] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 1571.354153][T28157] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 1571.370704][T28164] snd_virmidi snd_virmidi.0: control 61678:131081:3:y>o[k<:0 is already present [ 1571.402715][T28157] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 1571.459021][T28159] zswap: compressor W;0?u=8}L(Eֹjj8+xpȜNkRuoo/[k__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130 [ 1578.780358][T28309] [ 1578.780358][T28309] which lock already depends on the new lock. [ 1578.780358][T28309] [ 1578.780367][T28309] [ 1578.780367][T28309] the existing dependency chain (in reverse order) is: [ 1578.780377][T28309] [ 1578.780377][T28309] -> #4 (&rq->__lock){-.-.}-{2:2}: [ 1578.780410][T28309] _raw_spin_lock_nested+0x31/0x40 [ 1578.780437][T28309] raw_spin_rq_lock_nested+0x29/0x130 [ 1578.780464][T28309] task_rq_lock+0xcf/0x490 [ 1578.780491][T28309] cgroup_move_task+0x81/0x2a0 [ 1578.780521][T28309] css_set_move_task+0x285/0x600 [ 1578.780548][T28309] cgroup_post_fork+0x1fe/0x9b0 [ 1578.780576][T28309] copy_process+0x57b0/0x7890 [ 1578.780609][T28309] kernel_clone+0xfc/0x930 [ 1578.780641][T28309] user_mode_thread+0xcc/0x110 [ 1578.780674][T28309] rest_init+0x21/0x260 [ 1578.780709][T28309] start_kernel+0x47a/0x480 [ 1578.780731][T28309] x86_64_start_reservations+0x24/0x30 [ 1578.780758][T28309] x86_64_start_kernel+0x122/0x130 [ 1578.780785][T28309] common_startup_64+0x13e/0x148 [ 1578.780816][T28309] [ 1578.780816][T28309] -> #3 (&p->pi_lock){-.-.}-{2:2}: [ 1578.780854][T28309] _raw_spin_lock_irqsave+0x3a/0x60 [ 1578.780880][T28309] try_to_wake_up+0xb2/0x1a60 [ 1578.780907][T28309] __wake_up_common+0x135/0x1f0 [ 1578.780941][T28309] __wake_up+0x31/0x60 [ 1578.780968][T28309] tty_port_default_wakeup+0x47/0x60 [ 1578.780993][T28309] serial8250_tx_chars+0x68f/0x860 [ 1578.781034][T28309] serial8250_handle_irq+0x73e/0xcb0 [ 1578.781060][T28309] serial8250_default_handle_irq+0x9e/0x270 [ 1578.781087][T28309] serial8250_interrupt+0xf8/0x1d0 [ 1578.781116][T28309] __handle_irq_event_percpu+0x232/0x800 [ 1578.781141][T28309] handle_irq_event+0xab/0x1e0 [ 1578.781165][T28309] handle_edge_irq+0x375/0x970 [ 1578.781204][T28309] __common_interrupt+0xd8/0x2f0 [ 1578.781241][T28309] common_interrupt+0xb9/0xe0 [ 1578.781279][T28309] asm_common_interrupt+0x26/0x40 [ 1578.781305][T28309] finish_task_switch.isra.0+0x20d/0xb70 [ 1578.781335][T28309] __schedule+0xfec/0x5e10 [ 1578.781359][T28309] schedule+0xdd/0x390 [ 1578.781383][T28309] schedule_hrtimeout_range_clock+0x2d8/0x320 [ 1578.781425][T28309] poll_schedule_timeout.constprop.0+0xbe/0x1b0 [ 1578.781455][T28309] do_sys_poll+0x9ab/0xeb0 [ 1578.781479][T28309] __x64_sys_ppoll+0x2b5/0x350 [ 1578.781506][T28309] do_syscall_64+0xc9/0xf80 [ 1578.781535][T28309] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1578.781562][T28309] [ 1578.781562][T28309] -> #2 (&tty->write_wait){-...}-{3:3}: [ 1578.781596][T28309] _raw_spin_lock_irqsave+0x3a/0x60 [ 1578.781621][T28309] __wake_up+0x1c/0x60 [ 1578.781648][T28309] tty_port_default_wakeup+0x47/0x60 [ 1578.781672][T28309] serial8250_tx_chars+0x68f/0x860 [ 1578.781711][T28309] serial8250_handle_irq+0x73e/0xcb0 [ 1578.781737][T28309] serial8250_default_handle_irq+0x9e/0x270 [ 1578.781764][T28309] serial8250_interrupt+0xf8/0x1d0 [ 1578.781793][T28309] __handle_irq_event_percpu+0x232/0x800 [ 1578.781818][T28309] handle_irq_event+0xab/0x1e0 [ 1578.781845][T28309] handle_edge_irq+0x375/0x970 [ 1578.781883][T28309] __common_interrupt+0xd8/0x2f0 [ 1578.781919][T28309] common_interrupt+0xb9/0xe0 [ 1578.781955][T28309] asm_common_interrupt+0x26/0x40 [ 1578.781981][T28309] pv_native_safe_halt+0xf/0x20 [ 1578.782008][T28309] default_idle+0x9/0x10 [ 1578.782040][T28309] default_idle_call+0x6c/0xb0 [ 1578.782074][T28309] do_idle+0x35b/0x4b0 [ 1578.782097][T28309] cpu_startup_entry+0x4f/0x60 [ 1578.782122][T28309] rest_init+0x251/0x260 [ 1578.782156][T28309] start_kernel+0x47a/0x480 [ 1578.782177][T28309] x86_64_start_reservations+0x24/0x30 [ 1578.782204][T28309] x86_64_start_kernel+0x122/0x130 [ 1578.782229][T28309] common_startup_64+0x13e/0x148 [ 1578.782259][T28309] [ 1578.782259][T28309] -> #1 (&port_lock_key){-.-.}-{3:3}: [ 1578.782292][T28309] _raw_spin_lock_irqsave+0x3a/0x60 [ 1578.782317][T28309] serial8250_console_write+0x17e/0x1900 [ 1578.782344][T28309] console_flush_one_record+0x790/0xe50 [ 1578.782369][T28309] console_unlock+0x103/0x260 [ 1578.782391][T28309] vprintk_emit+0x407/0x6b0 [ 1578.782414][T28309] _printk+0xcf/0x110 [ 1578.782437][T28309] register_console.cold+0xc0/0x248 [ 1578.782462][T28309] univ8250_console_init+0x6f/0x80 [ 1578.782554][T28309] console_init+0x371/0x520 [ 1578.782629][T28309] start_kernel+0x300/0x480 [ 1578.782650][T28309] x86_64_start_reservations+0x24/0x30 [ 1578.782677][T28309] x86_64_start_kernel+0x122/0x130 [ 1578.782702][T28309] common_startup_64+0x13e/0x148 [ 1578.782732][T28309] [ 1578.782732][T28309] -> #0 (console_owner){-.-.}-{0:0}: [ 1578.782766][T28309] __lock_acquire+0x14b8/0x2630 [ 1578.782799][T28309] lock_acquire+0x17c/0x330 [ 1578.782836][T28309] console_lock_spinning_enable+0x72/0x80 [ 1578.782877][T28309] console_flush_one_record+0x739/0xe50 [ 1578.782902][T28309] console_unlock+0x103/0x260 [ 1578.782925][T28309] vprintk_emit+0x407/0x6b0 [ 1578.782949][T28309] _printk+0xcf/0x110 [ 1578.782970][T28309] __report_bug.cold+0x15/0x137 [ 1578.782998][T28309] report_bug+0xb2/0x220 [ 1578.783024][T28309] handle_bug+0x166/0x2a0 [ 1578.783056][T28309] exc_invalid_op+0x17/0x50 [ 1578.783088][T28309] asm_exc_invalid_op+0x1a/0x20 [ 1578.783113][T28309] update_rq_clock+0x34a/0xd30 [ 1578.783141][T28309] __schedule+0x1b0d/0x5e10 [ 1578.783166][T28309] schedule+0xdd/0x390 [ 1578.783190][T28309] irqentry_exit+0x197/0x670 [ 1578.783216][T28309] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 1578.783243][T28309] [ 1578.783243][T28309] other info that might help us debug this: [ 1578.783243][T28309] [ 1578.783252][T28309] Chain exists of: [ 1578.783252][T28309] console_owner --> &p->pi_lock --> &rq->__lock [ 1578.783252][T28309] [ 1578.783290][T28309] Possible unsafe locking scenario: [ 1578.783290][T28309] [ 1578.783298][T28309] CPU0 CPU1 [ 1578.783307][T28309] ---- ---- [ 1578.783315][T28309] lock(&rq->__lock); [ 1578.783331][T28309] lock(&p->pi_lock); [ 1578.783348][T28309] lock(&rq->__lock); [ 1578.783366][T28309] lock(console_owner); [ 1578.783382][T28309] [ 1578.783382][T28309] *** DEADLOCK *** [ 1578.783382][T28309] [ 1578.783389][T28309] 3 locks held by syz.1.4181/28309: [ 1578.783405][T28309] #0: ffff8880b843add8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130 [ 1578.783468][T28309] #1: ffffffff8e5cf320 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x110 [ 1578.783525][T28309] #2: ffffffff8e5cf398 (console_srcu){....}-{0:0}, at: console_flush_one_record+0xfd/0xe50 [ 1578.783586][T28309] [ 1578.783586][T28309] stack backtrace: [ 1578.783601][T28309] CPU: 0 UID: 0 PID: 28309 Comm: syz.1.4181 Tainted: G I L syzkaller #0 PREEMPT(full) [ 1578.783644][T28309] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 1578.783656][T28309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1578.783673][T28309] Call Trace: [ 1578.783681][T28309] [ 1578.783692][T28309] dump_stack_lvl+0x100/0x190 [ 1578.783722][T28309] print_circular_bug.cold+0x178/0x1c7 [ 1578.783764][T28309] check_noncircular+0x146/0x160 [ 1578.783805][T28309] __lock_acquire+0x14b8/0x2630 [ 1578.783851][T28309] lock_acquire+0x17c/0x330 [ 1578.783884][T28309] ? console_lock_spinning_enable+0x61/0x80 [ 1578.783927][T28309] ? console_lock_spinning_enable+0x4a/0x80 [ 1578.783974][T28309] console_lock_spinning_enable+0x72/0x80 [ 1578.784015][T28309] ? console_lock_spinning_enable+0x61/0x80 [ 1578.784058][T28309] console_flush_one_record+0x739/0xe50 [ 1578.784087][T28309] ? __pfx_console_flush_one_record+0x10/0x10 [ 1578.784119][T28309] ? is_printk_cpu_sync_owner+0x32/0x40 [ 1578.784151][T28309] console_unlock+0x103/0x260 [ 1578.784176][T28309] ? __pfx_console_unlock+0x10/0x10 [ 1578.784204][T28309] ? do_raw_spin_unlock+0x145/0x1e0 [ 1578.784245][T28309] ? _printk+0xcf/0x110 [ 1578.784271][T28309] vprintk_emit+0x407/0x6b0 [ 1578.784298][T28309] ? __pfx_vprintk_emit+0x10/0x10 [ 1578.784326][T28309] ? stack_trace_save+0x8e/0xc0 [ 1578.784358][T28309] _printk+0xcf/0x110 [ 1578.784382][T28309] ? __pfx__printk+0x10/0x10 [ 1578.784408][T28309] ? kasan_save_stack+0x3f/0x50 [ 1578.784440][T28309] ? kasan_save_stack+0x30/0x50 [ 1578.784472][T28309] ? kasan_save_track+0x14/0x30 [ 1578.784504][T28309] ? kasan_save_free_info+0x3b/0x70 [ 1578.784530][T28309] ? __kasan_slab_free+0x5f/0x80 [ 1578.784564][T28309] ? kmem_cache_free+0x143/0x720 [ 1578.784593][T28309] ? handle_softirqs+0x1ea/0x910 [ 1578.784625][T28309] ? __report_bug.cold+0x5/0x137 [ 1578.784653][T28309] ? __report_bug+0x377/0x3d0 [ 1578.784682][T28309] __report_bug.cold+0x15/0x137 [ 1578.784710][T28309] ? update_rq_clock+0x34a/0xd30 [ 1578.784741][T28309] ? __pfx___report_bug+0x10/0x10 [ 1578.784771][T28309] ? __lock_acquire+0x4a5/0x2630 [ 1578.784809][T28309] ? update_rq_clock+0x34a/0xd30 [ 1578.784844][T28309] report_bug+0xb2/0x220 [ 1578.784871][T28309] ? update_rq_clock+0x34a/0xd30 [ 1578.784901][T28309] handle_bug+0x166/0x2a0 [ 1578.784936][T28309] exc_invalid_op+0x17/0x50 [ 1578.784972][T28309] asm_exc_invalid_op+0x1a/0x20 [ 1578.784998][T28309] RIP: 0010:update_rq_clock+0x34a/0xd30 [ 1578.785031][T28309] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 c8 eb a2 09 a8 04 0f 84 9e fd ff ff 90 0f 0b 90 e9 95 fd ff ff 90 <0f> 0b 90 e9 51 fd ff ff 48 8d bb 18 0e 00 00 48 b8 00 00 00 00 00 [ 1578.785059][T28309] RSP: 0000:ffffc90004ca7d38 EFLAGS: 00010046 [ 1578.785081][T28309] RAX: 0000000000000000 RBX: ffff8880b853adc0 RCX: 0000000000000001 [ 1578.785099][T28309] RDX: 0000000000000046 RSI: ffffffff8dc1b45f RDI: ffffffff8bfa32a0 [ 1578.785118][T28309] RBP: ffffc90004ca7ee0 R08: 0000000000000001 R09: 0000000000000001 [ 1578.785136][T28309] R10: ffffffff90b771d7 R11: 0000000000000000 R12: ffffffff90b7a254 [ 1578.785155][T28309] R13: ffff8880b853bbf0 R14: ffff88801e283d00 R15: ffff8880b853adc0 [ 1578.785183][T28309] ? update_rq_clock+0x9b/0xd30 [ 1578.785215][T28309] __schedule+0x1b0d/0x5e10 [ 1578.785242][T28309] ? try_to_wake_up+0x160/0x1a60 [ 1578.785278][T28309] ? __pfx___schedule+0x10/0x10 [ 1578.785308][T28309] ? trace_irq_enable.constprop.0+0x2d/0x110 [ 1578.785342][T28309] schedule+0xdd/0x390 [ 1578.785369][T28309] irqentry_exit+0x197/0x670 [ 1578.785401][T28309] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 1578.785430][T28309] RIP: 0033:0x7f8db846f40c [ 1578.785451][T28309] Code: c1 89 3a 00 00 49 89 d6 48 89 d3 74 28 25 ff 0f 00 00 83 f0 3d 8d 04 c0 89 c3 c1 eb 04 31 c3 69 db 2d eb d4 27 89 d8 c1 e8 0f <31> c3 81 e3 ff 0f 00 00 48 31 d3 80 3d 2a 2c 3a 00 00 0f 84 1c 01 [ 1578.785478][T28309] RSP: 002b:00007ffd94cf22b0 EFLAGS: 00000a06 [ 1578.785498][T28309] RAX: 0000000000013112 RBX: 0000000098893f2c RCX: ffffffff826739f6 [ 1578.785517][T28309] RDX: ffffffff82673aa7 RSI: ffffffff826739f6 RDI: 00007f8db5ff4008 [ 1578.785536][T28309] RBP: 00000000000008da R08: 00007f8db8800000 R09: 00007f8db8802000 [ 1578.785554][T28309] R10: 00000000826739fa R11: 000000000000001a R12: 00007f8db88163f8 [ 1578.785572][T28309] R13: 000000000006e15b R14: ffffffff82673aa7 R15: 00007f8db9345720 [ 1578.785592][T28309] ? alloc_swap_scan_cluster+0x477/0xce0 [ 1578.785630][T28309] ? alloc_swap_scan_cluster+0x3c6/0xce0 [ 1578.785665][T28309] ? alloc_swap_scan_cluster+0x477/0xce0 [ 1578.785700][T28309] ? alloc_swap_scan_cluster+0x3c6/0xce0 [ 1578.785738][T28309] [ 1579.946421][T28309] debug_locks && !(lock_is_held(&(__rq_lockp(rq))->dep_map) != 0) [ 1579.946440][T28309] WARNING: kernel/sched/sched.h:1571 at update_rq_clock+0x34a/0xd30, CPU#0: syz.1.4181/28309 [ 1579.964391][T28309] Modules linked in: [ 1579.968288][T28309] CPU: 0 UID: 0 PID: 28309 Comm: syz.1.4181 Tainted: G I L syzkaller #0 PREEMPT(full) [ 1579.979234][T28309] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 1579.985725][T28309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1579.995794][T28309] RIP: 0010:update_rq_clock+0x34a/0xd30 [ 1580.001369][T28309] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 c8 eb a2 09 a8 04 0f 84 9e fd ff ff 90 0f 0b 90 e9 95 fd ff ff 90 <0f> 0b 90 e9 51 fd ff ff 48 8d bb 18 0e 00 00 48 b8 00 00 00 00 00 [ 1580.020985][T28309] RSP: 0000:ffffc90004ca7d38 EFLAGS: 00010046 [ 1580.027065][T28309] RAX: 0000000000000000 RBX: ffff8880b853adc0 RCX: 0000000000000001 [ 1580.035040][T28309] RDX: 0000000000000046 RSI: ffffffff8dc1b45f RDI: ffffffff8bfa32a0 [ 1580.043014][T28309] RBP: ffffc90004ca7ee0 R08: 0000000000000001 R09: 0000000000000001 [ 1580.050986][T28309] R10: ffffffff90b771d7 R11: 0000000000000000 R12: ffffffff90b7a254 [ 1580.058962][T28309] R13: ffff8880b853bbf0 R14: ffff88801e283d00 R15: ffff8880b853adc0 [ 1580.066934][T28309] FS: 00005555579f4500(0000) GS:ffff8881245e3000(0000) knlGS:0000000000000000 [ 1580.075865][T28309] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1580.082454][T28309] CR2: 00005555f6ca39d8 CR3: 000000007d0b2000 CR4: 00000000003526f0 [ 1580.090432][T28309] Call Trace: [ 1580.093712][T28309] [ 1580.096639][T28309] __schedule+0x1b0d/0x5e10 [ 1580.101156][T28309] ? try_to_wake_up+0x160/0x1a60 [ 1580.106107][T28309] ? __pfx___schedule+0x10/0x10 [ 1580.110963][T28309] ? trace_irq_enable.constprop.0+0x2d/0x110 [ 1580.116952][T28309] schedule+0xdd/0x390 [ 1580.121027][T28309] irqentry_exit+0x197/0x670 [ 1580.125627][T28309] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 1580.131103][T28309] RIP: 0033:0x7f8db846f40c [ 1580.135520][T28309] Code: c1 89 3a 00 00 49 89 d6 48 89 d3 74 28 25 ff 0f 00 00 83 f0 3d 8d 04 c0 89 c3 c1 eb 04 31 c3 69 db 2d eb d4 27 89 d8 c1 e8 0f <31> c3 81 e3 ff 0f 00 00 48 31 d3 80 3d 2a 2c 3a 00 00 0f 84 1c 01 [ 1580.155129][T28309] RSP: 002b:00007ffd94cf22b0 EFLAGS: 00000a06 [ 1580.161202][T28309] RAX: 0000000000013112 RBX: 0000000098893f2c RCX: ffffffff826739f6 [ 1580.169170][T28309] RDX: ffffffff82673aa7 RSI: ffffffff826739f6 RDI: 00007f8db5ff4008 [ 1580.177140][T28309] RBP: 00000000000008da R08: 00007f8db8800000 R09: 00007f8db8802000 [ 1580.185108][T28309] R10: 00000000826739fa R11: 000000000000001a R12: 00007f8db88163f8 [ 1580.193075][T28309] R13: 000000000006e15b R14: ffffffff82673aa7 R15: 00007f8db9345720 [ 1580.201050][T28309] ? alloc_swap_scan_cluster+0x477/0xce0 [ 1580.206714][T28309] ? alloc_swap_scan_cluster+0x3c6/0xce0 [ 1580.212354][T28309] ? alloc_swap_scan_cluster+0x477/0xce0 [ 1580.217997][T28309] ? alloc_swap_scan_cluster+0x3c6/0xce0 [ 1580.223651][T28309] [ 1580.226670][T28309] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1580.233952][T28309] CPU: 0 UID: 0 PID: 28309 Comm: syz.1.4181 Tainted: G I L syzkaller #0 PREEMPT(full) [ 1580.244902][T28309] Tainted: [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 1580.251389][T28309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026 [ 1580.261444][T28309] Call Trace: [ 1580.264723][T28309] [ 1580.267656][T28309] dump_stack_lvl+0x100/0x190 [ 1580.272343][T28309] vpanic+0x20d/0x630 [ 1580.276327][T28309] panic+0xd1/0xd1 [ 1580.280048][T28309] ? __pfx_panic+0x10/0x10 [ 1580.284470][T28309] ? check_panic_on_warn+0x1f/0x90 [ 1580.289602][T28309] check_panic_on_warn.cold+0x19/0x34 [ 1580.294984][T28309] ? update_rq_clock+0x34a/0xd30 [ 1580.299928][T28309] __warn.cold+0x191/0x2f8 [ 1580.304346][T28309] __report_bug+0x296/0x3d0 [ 1580.308855][T28309] ? update_rq_clock+0x34a/0xd30 [ 1580.313798][T28309] ? __pfx___report_bug+0x10/0x10 [ 1580.318831][T28309] ? __lock_acquire+0x4a5/0x2630 [ 1580.323783][T28309] ? update_rq_clock+0x34a/0xd30 [ 1580.328727][T28309] report_bug+0xb2/0x220 [ 1580.332973][T28309] ? update_rq_clock+0x34a/0xd30 [ 1580.337917][T28309] handle_bug+0x166/0x2a0 [ 1580.342260][T28309] exc_invalid_op+0x17/0x50 [ 1580.346774][T28309] asm_exc_invalid_op+0x1a/0x20 [ 1580.351626][T28309] RIP: 0010:update_rq_clock+0x34a/0xd30 [ 1580.357185][T28309] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 c8 eb a2 09 a8 04 0f 84 9e fd ff ff 90 0f 0b 90 e9 95 fd ff ff 90 <0f> 0b 90 e9 51 fd ff ff 48 8d bb 18 0e 00 00 48 b8 00 00 00 00 00 [ 1580.376800][T28309] RSP: 0000:ffffc90004ca7d38 EFLAGS: 00010046 [ 1580.382870][T28309] RAX: 0000000000000000 RBX: ffff8880b853adc0 RCX: 0000000000000001 [ 1580.390840][T28309] RDX: 0000000000000046 RSI: ffffffff8dc1b45f RDI: ffffffff8bfa32a0 [ 1580.398813][T28309] RBP: ffffc90004ca7ee0 R08: 0000000000000001 R09: 0000000000000001 [ 1580.406783][T28309] R10: ffffffff90b771d7 R11: 0000000000000000 R12: ffffffff90b7a254 [ 1580.414753][T28309] R13: ffff8880b853bbf0 R14: ffff88801e283d00 R15: ffff8880b853adc0 [ 1580.422738][T28309] ? update_rq_clock+0x9b/0xd30 [ 1580.427601][T28309] __schedule+0x1b0d/0x5e10 [ 1580.432118][T28309] ? try_to_wake_up+0x160/0x1a60 [ 1580.437071][T28309] ? __pfx___schedule+0x10/0x10 [ 1580.441927][T28309] ? trace_irq_enable.constprop.0+0x2d/0x110 [ 1580.447922][T28309] schedule+0xdd/0x390 [ 1580.451997][T28309] irqentry_exit+0x197/0x670 [ 1580.456596][T28309] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 1580.462088][T28309] RIP: 0033:0x7f8db846f40c [ 1580.466502][T28309] Code: c1 89 3a 00 00 49 89 d6 48 89 d3 74 28 25 ff 0f 00 00 83 f0 3d 8d 04 c0 89 c3 c1 eb 04 31 c3 69 db 2d eb d4 27 89 d8 c1 e8 0f <31> c3 81 e3 ff 0f 00 00 48 31 d3 80 3d 2a 2c 3a 00 00 0f 84 1c 01 [ 1580.486113][T28309] RSP: 002b:00007ffd94cf22b0 EFLAGS: 00000a06 [ 1580.492181][T28309] RAX: 0000000000013112 RBX: 0000000098893f2c RCX: ffffffff826739f6 [ 1580.500152][T28309] RDX: ffffffff82673aa7 RSI: ffffffff826739f6 RDI: 00007f8db5ff4008 [ 1580.508121][T28309] RBP: 00000000000008da R08: 00007f8db8800000 R09: 00007f8db8802000 [ 1580.516090][T28309] R10: 00000000826739fa R11: 000000000000001a R12: 00007f8db88163f8 [ 1580.524063][T28309] R13: 000000000006e15b R14: ffffffff82673aa7 R15: 00007f8db9345720 [ 1580.532038][T28309] ? alloc_swap_scan_cluster+0x477/0xce0 [ 1580.537692][T28309] ? alloc_swap_scan_cluster+0x3c6/0xce0 [ 1580.543336][T28309] ? alloc_swap_scan_cluster+0x477/0xce0 [ 1580.548977][T28309] ? alloc_swap_scan_cluster+0x3c6/0xce0 [ 1580.554631][T28309] [ 1580.557926][T28309] Kernel Offset: disabled [ 1580.562265][T28309] Rebooting in 86400 seconds..