last executing test programs: 8.374174137s ago: executing program 1 (id=1018): getsid$auto(0x0) r0 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) read$auto(0x3, 0x0, 0x8080) mmap$auto(0x0, 0x1000000000e983, 0x31, 0x20ebe, r0, 0x8000) mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa) execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/ip_local_port_range\x00', 0x20202, 0x0) socket(0x21, 0x2, 0x2) setsockopt$auto(0x3, 0x1000000110, 0x3, 0xffffffffffffffff, 0x0) setrlimit$auto(0x7, &(0x7f0000000080)={0x0, 0x6}) socket(0x18, 0x4, 0x1) r1 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) fallocate$auto(r1, 0xb, 0x2, 0x4cbd5d) write$auto(r1, &(0x7f0000000440)='\xf6\x85+\xbd;v\x05\x00\x7f\xbf\x12\x0f\xc8\xe1N\xfc9s+\xb7.@\x9c\x16\x92,\xd6\xedGU\xa0\xb8\x8d\x8c?\xe0\xfeY\xfcz^q\xff\xd6\xddu%\xa8\x19\xda\x8a\xec4\x1d\xe4I\'s\x93\x1c\xb1\xe4\t\xc5\xfex5C\xd8\xf4\xd1\xe1\xc3\xa5n4P\xd4\x18\x05\x9e\xaa\xa1\b\xe1H\xb3l\xa1\x99f\'\xd9\v\x16\x0e\xe3v\xd0\xba\x10\xf2!\xa1\x96\x8d\xa9|\xde\x1a\x87a\xd8\x931Ev\xcc\xd7\xc3\r\xf5\xfa\xbd\xa6\xfd\xfa\xc6pvG6\xc7\xe0\xfa\x80\xaef\x15\x00\x00\x00\x00\xa3\x01\x17\x17Z\xd0\x80\xbc\xb2\xae\xcaF\x93\xdf\xab\xc1u[\xe46\x00\x00\x00\x00\x13\xab\x172`\xc9\v]>\xfa\x11\x18\xc6\x85\x1b\x97\xa5SZdxB\x96\xc3\x84\xb8\xcd\x1f\xfcY\x0f6*3\xe3\xe6\xa1Fk2\bOS&\x05o\xa2\xb2\xc9\xd4.\xc8\xda\xf9\x84b\xcd)M\x02\x02\xd7Tv\xf8ag}B+\x9f\xfdS\x9a\xfc\xcb\xbb\x8e^&.\x12\x17\xe3S4\xc8\xb8\xe8\xec8z\xaa\x93+:$\xd2|M\xf2?X/\x03\xab\x1c\xaf', 0x487) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getsockopt$auto(0xffffffffffffffff, 0x28, 0x9, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xb8, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D1c\x00', 0x40001, 0x0) setitimer$auto_ITIMER_REAL(0x0, &(0x7f0000000180)={{0x7, 0x6}, {0x51, 0xd8bd}}, 0x0) alarm$auto(0x2) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0xffffffffffff0005, 0x19) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/cpu/smt/control\x00', 0x2ab42, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) signalfd$auto(r2, &(0x7f00000000c0)={0x3000000000000000}, 0x2) chdir$auto(&(0x7f0000000040)='./cgroup\x00') rename$auto(&(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='./file0\x00') openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) 7.524319875s ago: executing program 0 (id=1021): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) setitimer$auto(0x2, &(0x7f0000000040)={{0x0, 0x8}, {0x0, 0x8}}, 0x0) ioctl$auto(0x3, 0x894b, 0x38) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x12fa02, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xb02, 0x0) socket(0x2, 0x2, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0xb, 0x40000d, 0x10400, 0x6, 0x4, 0x3, 0xffffffffffffffff, [], {0x7, 0x200004, 0x7, 0x2a3, 0x100, 0x3, 0x40100101, 0x6}, {0xf8, 0x4, 0x9, 0x1, 0x3, 0x40, 0xcc, 0x8, 0x100000000}}) pselect6$auto(0x5, &(0x7f0000000400)={[0x1000000008, 0xfffffffffffffffc, 0x0, 0x5, 0x8001, 0x6, 0xac, 0x2000009, 0xffffffffffffff81, 0xffffffff, 0x7fffffffffffffff, 0x8000, 0x1004, 0x9, 0xa, 0x3ff]}, 0x0, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x1, 0x84) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3, @loopback}, 0x54) read$auto(0x3, 0x0, 0x8080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0x3, 0x0, 0x81) mkdir$auto(&(0x7f0000000000)='}[,&*}\x00', 0x2) mkdir$auto(&(0x7f0000000300)='}[,&*}\x00', 0x6) mount$auto(0x0, &(0x7f0000000280)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xcf, 0x0) 7.016186179s ago: executing program 0 (id=1025): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mbind$auto(0x2000, 0x100000008, 0x2100000000, 0x0, 0x6, 0x2) close_range$auto(0x0, 0x5, 0x0) pipe$auto(0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0}, 0x40005) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0xff0f0000, &(0x7f0000000000), 0x3) connect$auto(0x3, 0x0, 0x54) 5.91026315s ago: executing program 1 (id=1027): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) keyctl$auto(0x20000000000001c, 0xffffffffffffffff, 0x363, 0xa, 0x8000000000000007) io_uring_setup$auto(0x891, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x0, 0x0) read$auto(r0, 0x0, 0xfffffdef) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) r1 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/swaps\x00', 0x80, 0x0) pread64$auto(r1, &(0x7f00000000c0)='/proc/swaps\x00', 0x4, 0x45) ioctl$auto(0x3, 0x402c542b, 0x38) ioctl$auto_TIOCSTI2(r0, 0x5412, 0x0) 5.573982368s ago: executing program 1 (id=1028): socket(0xa, 0x801, 0x84) setsockopt$auto(0x3, 0x10000000084, 0x1e, 0x0, 0x8) r0 = socket$nl_generic(0x10, 0x3, 0x10) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6d) openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/trace_marker\x00', 0x43, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000140)=""/41, 0x29) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0x200000008000001b, 0x3) r2 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) ioctl$auto_UBI_IOCATT(r2, 0x40186f40, &(0x7f0000000080)={0xffffffff, 0x0, 0x3f, 0x808, 0x1, 0x1}) mmap$auto(0x7, 0x2020009, 0x2, 0xfffffffffffffff7, 0xfffffffffffffffa, 0x8000) r3 = socket(0x11, 0x80003, 0xffff20a8) setsockopt$auto(r3, 0x107, 0x2, 0x0, 0x28) mmap$auto(0x2000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/pm_test\x00', 0x20461, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000080)="2d296699eb5df9d24db978ee2ae789f693d6325d33d31c0a", 0x18) prctl$auto_PR_GET_SECCOMP(0x15, 0xe, 0x9, 0x6, 0x0) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r5 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) r6 = openat$auto_rfcomm_sock_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x4400, 0x0) read$auto_rfcomm_sock_debugfs_fops_(r6, &(0x7f0000000080)=""/17, 0x11) ioctl$auto_PAGEMAP_SCAN(r5, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x2, 0x7, 0xbff, 0x2c, 0x2c, 0x3, 0x2}) r7 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000180), 0xffffffffffffffff) r8 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv6/conf/nlmon0/addr_gen_mode\x00', 0xa02, 0x0) pwritev2$auto(r8, &(0x7f0000001040)={&(0x7f0000000040), 0x1}, 0x8000000000000001, 0x100020001, 0x7, 0x4) sendmsg$auto_OVS_VPORT_CMD_DEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)={0x20, r7, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@OVS_VPORT_ATTR_UPCALL_STATS={0x4}, @OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0xfff}]}, 0x20}, 0x1, 0x0, 0x0, 0x8800}, 0x4000000) 5.210048718s ago: executing program 2 (id=1030): r0 = socket(0x2, 0x1, 0x106) setreuid$auto(0xffffffffffffffff, 0x8) (async) setsockopt$auto(r0, 0x6, 0xd, &(0x7f0000000140)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00}\xc9\xd0ghB\x8a\n\x8bw\xc8\x9f\x8f\xd1\xd0\xc3i\xd4\x8cO\x90\xaf?J\t\xce%\xcb\xb7Sq)\x12k\xb6\xa7(\\Vpm\xc6Q6\xe2\x0f\xae\xd6\x15\\\xf3\xefOA\xf1G\n\xd6u\x9b\x18+\x83\xc9g*v@\x90\xc6\xc2\xb9\n\a]\x86VDLp\xa2\xb0\xbd`\x144\xb2', 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) (async) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) (async) r1 = socket(0x10, 0x2, 0x0) (async) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) (async, rerun: 32) readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x8) (async, rerun: 32) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) (async) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001140), 0xffffffffffffffff) (async) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x24, r2, 0x1, 0x70bd29, 0x25dfdbfb, {0x2, 0x0, 0x14}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r4}, @NL80211_ATTR_WIPHY_FRAG_THRESHOLD={0x8, 0x3f, 0x9}]}, 0x24}, 0x1, 0x1400, 0x0, 0x80}, 0x20000084) (async) shmctl$auto_IPC_SET(0xfffffffc, 0x1, &(0x7f00000003c0)={{0xfffffff1, 0xffffffffffffffff, 0xee00, 0x4, 0x7, 0x40, 0x2}, 0xba9, 0xb, 0x80000000, 0x37c, @raw=0x100, @raw=0x6, 0x2, 0x0, &(0x7f0000000300)="8b769e8ea10eb94f06a6f6", &(0x7f0000000340)="8b51acf040333fe7993af07d5f0d769ab69288db736b4308772566c3b8ef7a9d965df20fdea6a140e7dff3c3207266cbb30d1deed67297385e00a7f142b015825a30eb154f0a"}) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f00000006c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000680)={&(0x7f0000000440)={0x20c, r2, 0x100, 0x70bd2d, 0x25dfdbfc, {}, [@NL80211_ATTR_FILS_ERP_RRK={0xa, 0xfc, "6bfa1628fb93"}, @NL80211_ATTR_AUTH_TYPE={0x8}, @NL80211_ATTR_TDLS_PEER_CAPABILITY={0x8, 0xcb, 0x9}, @NL80211_ATTR_EMA_RNR_ELEMS={0x112, 0x145, 0x0, 0x1, [@nested={0x62, 0x16, 0x0, 0x1, [@typed={0x8, 0x5, 0x0, 0x0, @ipv4=@rand_addr=0x64010100}, @generic="97937ecb2a8a3f48a04ef04e42f4c419550c6450a76c09a56f52ba655241f1e6bbc5c9cce9287894afd743b11012b0688cf595b3b6eb6a84ff3248c2702009e134e8dd334f00615a7e75", @typed={0x8, 0xc2, 0x0, 0x0, @uid=r5}, @nested={0x4, 0x13}]}, @typed={0x1c, 0xef, 0x0, 0x0, @binary="80caf71bc9dc847afe74a14da2a6dda1ac6f65e838e54bd8"}, @typed={0x8, 0x148, 0x0, 0x0, @ipv4=@multicast1}, @nested={0x4, 0x12b}, @generic="b8309704d10dd420b3cee7357809b45c093711431830c9281d9d7edcd73db5db1ee010bda4a916ddfa7892c2a8dc51a3afadc01b02e0d63dfd624a07afc58dc7e27b23d7e99242a3010643d4a980a4c8543e51c597e72aad48da9e374119", @typed={0x4, 0x123}, @typed={0xc, 0x1e, 0x0, 0x0, @u64=0x9}, @typed={0x14, 0x81, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}]}, @NL80211_ATTR_VENDOR_DATA={0xc7, 0xc5, "2452f539cb5fba6a915c6a26ce7ede76cd3ef39de8ff6a67d738ccf8cb145343e408508901af4f948253a8e0c0acef0591a47a772dcf4e9dd8c5cffb4c5072224bc19b5e6dd8183f06cabfef3bc820ebdfe3f70a9d4a088e38690ee3836df2bf4c1caab664db9f399208df3e7ed1550b20a09366efb868858a5b6a5027692facfa255c1e271a38705a3bf1dbe85c6fc15c790229d4f593f407c5f6708615f98c2ef2c126309fab90b163fd46a70f9a6520cecafc36c9b3704c62ab622d3b74322afd66"}]}, 0x20c}, 0x1, 0x0, 0x0, 0x4005}, 0x4000810) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800) (async) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) recvmmsg$auto(r1, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) (async, rerun: 32) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) (async, rerun: 32) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="19"], 0x1ac}, 0x1, 0x0, 0x0, 0xa00}, 0x40000) (async) io_uring_setup$auto(0x6, 0x0) (async) socket(0xa, 0x1, 0x6) (async, rerun: 32) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (rerun: 32) setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28) r6 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000040), r0) sendmsg$auto_NFC_CMD_GET_DEVICE(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000080)={0xa8, r6, 0x300, 0x70bd28, 0x25dfdbfc, {}, [@NFC_ATTR_VENDOR_DATA={0x93, 0x1f, "9704e60f76ef1b57e3d3dddb15f75c8962fa3319bf6e837cfe4a90d09658378dd0ff2bfa6b28849cb1723b2ba279ef02bba938fbd969cb66b8f940209f33bbd350cd698e6d9c33b2c5ee245bf50faa33419ff3f55582837e2e694315aff00a6a1da7a76631d2041fc2789bf9d1636e4f55e9cf9555e780b9f873665ab2304e916ba1cfb3752feb742c73cfd7557f77"}]}, 0xa8}, 0x1, 0x0, 0x0, 0xc004}, 0x20040000) 4.870436905s ago: executing program 2 (id=1031): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) write$auto(0x3, 0x0, 0xffd8) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS2\x00', 0x101f81, 0xb700) close_range$auto(0x2, 0x8000, 0x0) 3.785669426s ago: executing program 0 (id=1033): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/kernel/debug/ieee80211/phy0/netdev:wlan0/rc_rateidx_mask_5ghz\x00', 0x101200, 0x0) read$auto_debugfs_full_proxy_file_operations_internal(r0, 0x0, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x44eb2, 0xffffffffffffffff, 0x300000000000) mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x40000000) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x10, 0x70bd2c, 0x25dfdbfd, {0xa, 0x0, 0xa00}}, 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='!\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x44}, 0x40090) r1 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r1, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0) 3.784666084s ago: executing program 2 (id=1034): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x404342, 0x0) sendfile$auto(r0, r0, 0x0, 0x82fa5) close_range$auto(0x2, 0xa, 0x0) r1 = socket(0xa, 0x1, 0x84) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd15/queue/scheduler\x00', 0x103a42, 0x0) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) r2 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, 0x0, 0x464900, 0x0) poll$auto(&(0x7f0000000000)={0x3, 0x1, 0xa}, 0x5, 0x108) write$auto(r2, &(0x7f0000000000)='/sys/kernel/security/integrity/evm/evm_xattrs\x00', 0x20000003) mmap$auto(0x0, 0x2020009, 0xffff, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0x3, 0x0, 0x3f00) syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000080), r1) write$auto_fops_ulong_ro_(0xffffffffffffffff, 0x0, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x40000000c07) wait4$auto(0xffffffffffffffff, 0x0, 0x2, 0x0) 3.714677189s ago: executing program 0 (id=1035): mmap$auto(0x0, 0x4, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) mkdir$auto(0x0, 0x8001) mount$auto(0x0, 0x0, 0x0, 0xf, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x4100000a3d7) madvise$auto(0x0, 0x2003f2, 0x15) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/nfsfs/servers\x00', 0x400, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) write$auto(0x3, 0x0, 0xfdef) r0 = io_uring_setup$auto(0x59, &(0x7f0000000100)={0x0, 0x1d, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c2, 0x9, 0x100000000}}) io_uring_register$auto(r0, 0x5, 0x0, 0x1) r1 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$auto_BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="57e72cbd700003dcdf250500000008000300", @ANYRES32], 0x1c}, 0x1, 0x0, 0x0, 0x4040854}, 0x8010) read$auto_ipsec_dbg_fops_ipsec(r0, &(0x7f00000000c0)=""/75, 0x4b) madvise$auto(0x0, 0x200007, 0x19) io_uring_setup$auto(0x5d, 0x0) close_range$auto(0xffffffffffffffff, 0xfffffffffffff000, 0xfff) 3.418784028s ago: executing program 2 (id=1037): socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_RTC_ALM_SET(0xffffffffffffffff, 0x40247007, &(0x7f0000000100)={0x1, 0x3, 0x9, 0x6, 0xfffff0d3, 0x2, 0x6, 0x6, 0xa}) (async) ioctl$auto_RTC_ALM_SET(0xffffffffffffffff, 0x40247007, &(0x7f0000000100)={0x1, 0x3, 0x9, 0x6, 0xfffff0d3, 0x2, 0x6, 0x6, 0xa}) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xffffffffffffffff, 0x8000) sendmsg$auto_NL802154_CMD_SET_CCA_ED_LEVEL(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYRESHEX=0x0], 0x1c}, 0x1, 0x0, 0x0, 0x8001}, 0x40000) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/mtrr\x00', 0x0, 0x0) ioctl$auto(r0, 0x400c4d02, r0) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0) unshare$auto(0x40000080) (async) unshare$auto(0x40000080) pwrite64$auto(0xc8, &(0x7f0000000140)='\vX\xb5n\x91p\xe6\x1eRNM\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00,\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^B\xb8\xe4j\t,\xe4\x90\xcc\x9d\xc5\x0fo\x84\xf4\x89\v\xea\x1b\x95\xafQ;CL\"\x01@\x00\x00\x00\x00\f\x00\xc0\x13\xc8\xe2\xae\xf5\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8d\x81\x81O*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,8\x93\xba\x88\x93\x9d\xb6\x1a\x7f\xc0%\xb0\x83ROJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd6eWj\xdc\xac\x88\xf0\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\xff\xff\x00'/242, 0xfdf0, 0x39) read$auto_proc_iter_file_ops_compat_inode(r1, &(0x7f0000000180)=""/178, 0xb2) (async) read$auto_proc_iter_file_ops_compat_inode(r1, &(0x7f0000000180)=""/178, 0xb2) sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x2000c840) madvise$auto(0x110c230000, 0x1, 0x9) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000000000008000) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x174) (async) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x174) lsetxattr$auto(&(0x7f0000000440)='./file0\x00', &(0x7f0000000580)='security.caility\xf6\x06\xa1\xcd\xd3<\n\x00(\xa2\b\x00\x00\x00\x00\x00\x00\x00E\t\x00\x00\x00\xd4\xf2\xdf\x80\x9c\x87N\xd40\xd3Z\xf3K\x98vW\x7f\x94Z\x0e>\x85S&\xe5\x96\xce\xf15\xb3v\xa8R\x05\x94\x8c\x1df\x11\xbd\xd0\x7fu\xc7y\xe1\xff\xff\xc4\xd5\xee\xd8\x143\xed\xc4|\xd3\f\x05\f\x95\xce\xbf9\xc8\xf1m\x96\xa3\xc0\xf2]\xabq\t\x91\xe69\x8b\x02\x89\xed`\xb4\xcb\xb3O\x97X\xe3\xd0j\xa5\xd0\x9e*\xf9|\xd9\xc2\xf4X\xc9[\xfa\xcf\xa3\xeb\x05EOgaA\xb1@f\x93F0\x8cR\xc5\xb6\x16\xfa\xe7\x13\x00\x02\xf4\x80\xe3\xd2\xf4MP\x87vB\xefJ\xeb\xb3\\\x88\x18` \xca\x8faI\x89\xb6\x91\x1ae\xd2\xad\xbe\xb3\xe6\bX]\xd7\x81.\xd2\xed\xc4\x9f\xb5~\xb4\xc6^\x97\xc3\xa2\x16\x99\xfc\x00_\xe6\xb0G\xe91\xb4+2\x93\n9 EU\x1e\xb4\xbeVt\x89\xf9)\x0f`4O\x00\x00\x00\x00\xa5\xe0\xf5\xb2\x00\x00t\x10\"\xa7\xe1Vv\xe5*\xc5\xe1r\xf5\xa4Cw\x1c/?\xbcn\xe3\x8aX\xfc\xe9,\xca,9\xda\xad\x87\xb1\xb2\xff#\xa1Yi\xd3\x17l6\xa0\xd8\x1b\xad8\a\xfc%\xa6(\xcb\x97(\x16\x81\xbf\xc6\xdbw\x13!\xc9\xc6\xc3\xfbc\xfe\x83\xcd\x16 e\xcd\x91y@\xe2\xd8{\xec\xbb\xbb\x1d5\t\xed>\xa9\x84K\xf0\xd0\x0f\x13)\x17CI\xb7\xf35\xfc\xe8(\xfa\t2\xafQ8}\xd8\xbb\xe4nlR\xf8\xc9\xf2\xa3\xe5\x83\r\t\xb96d\xa2\xef\x0e\\\x8a\x15\xcb\xa9\x03\x00\x00\x00\x00\x00\x00\x00!dJ+\xd2\x01#v\xd8BgB`\x8alo\r\x04\xce\x04$\xaa\x00\xb6\xdb6-0>\xb3u\xd4\xdb\xd8~\xb0\f\xd0\a\xac\xa0\xc7\xf7\'\x8d\xab\xaeC5\xa8f\xe5\xfe\xfc\xc0\xb1rR\xae54\x13\x1c8=\x92\xc3=w\x89\xbb\xfb)\x94p\xc18`G\x00'/505, &(0x7f0000001340), 0x2, 0x0) lsetxattr$auto(&(0x7f0000000d40)='./file0\x00', &(0x7f0000000280)='security.caility\xf6\x06\xa1\xcd\xd3<\x81\a(\xa2f*\xaf\xc8\x02\xe9\x14\x8fE2k\x19{\xd4\xf2\xdf\x80\x9c\x87\x86\xde20\x8e\x1cN\xd40\xd3Z\xf3K\x98vW\x7f\x94Z\x0e>\x85S&\xe5\x96\xce\xf15\xb3v\xa8R\x05\x94\x8c\x1df\x11\xbd\xd0\x7fu\xc7{\xe1\xff\xff\xc4\xbb\x17\xd5\xee\xd8\x143\xed\xc4|\xd3\f\x05\f\x95\xce\xbf9\xc8\xf1m\x96\xa3\xc0\xf29\x8b\x02\x89\xed`\xb4\xcb\xb3O\x97X\xe3\xd0j\xa5\xd0\x9e*\xf9|\xd9\xc2\xf4X\xc9[\xfa\xcf\xa3\xeb\x05EOgaA\xb1@f\x93F0\x8cR\xc5\xb6\x16\xfa\xe7\x13\x00\x02\xf4\x80\xe3\xd2\xf4MP\x87vB\xefJ\xeb\xb3\\\x88\x18` \xca\x8faI\x89\xb6\x91\x1ae\xd2\xad\xbe\xb3\xe6\bX]\xd7\x81.\xd2\xed\xc4\x9f\xb5~\xb4\xc6^\x97\xc3\xa2\x16\x99\xfc\x00_\xe6\xb0G\xe9`\xb4+2\x93\n9 EU\x1e\xb4\xbeVt\x89\xf9\xc7\xe1`4O\x00\x00\x00\x00\xa5\xe0\xf5\xb2\x00\x00t\x10\"\x15\xbc\xdb\x92\xff\xa7\xe1Vv\xe5*\xc5\xe1r\xf5\xa4Cw\x1c/?\xbcn\xe3\x8aX\xfc\xe9,\xca,9\xda\xad\x87\xb1\xb2\xff#\xa1Yi\xd3\x17l6\xa0\xd8\x1b\xad8\a\xfc%\xa6(\xcb\x97(\x16\x81\xbf\xc6\xdbw\x13!\xc9\xc6\xc3\xfbc\xfe\x83\xcd\x16 e\xcd\x91y@\xe2\xd8{\xec\xbb\xbb\x1d5\t\xed>\xa9&\xce\xfc\xab[\xae\xa1\x94\b\xcc/-\x12\x8d\x84K\xf0\xd0\x0f\x13)\x17CI\xb7\xf35\xfc\xe8(\xfa\t2\xafQ8}\xd8\xbb\xe4nlR\xf8\xc9\xf2\xa3\xe5\x83\r\t\xb96d\xd6\x1e\xbd*\xa4\xc9\xcbE2\xe9\x81\xc3\xc3\x8a\x15\xcb\xf2\x03\x00\x00\x00\x00\x00\x00\x00!dJ+\xd2\x01#v\xd8BgB`\x8alP\r\x04\xce\x04$\xaag\xb6\xdb6-0>\xb3u\xd4\xdb\xd8~\xb0\f\xd0\xa9\x9e\xa0\xc7\xf7\'\x8d\xab\xae\x035\xa8f\xe5\xfe\xfc\xc0\xb1rR\xae54\x13\x1c8=\x92\xc3=w\x89\xbb\xfb)\x94p\xc18`G', &(0x7f0000001340), 0x2, 0x0) (async) lsetxattr$auto(&(0x7f0000000d40)='./file0\x00', &(0x7f0000000280)='security.caility\xf6\x06\xa1\xcd\xd3<\x81\a(\xa2f*\xaf\xc8\x02\xe9\x14\x8fE2k\x19{\xd4\xf2\xdf\x80\x9c\x87\x86\xde20\x8e\x1cN\xd40\xd3Z\xf3K\x98vW\x7f\x94Z\x0e>\x85S&\xe5\x96\xce\xf15\xb3v\xa8R\x05\x94\x8c\x1df\x11\xbd\xd0\x7fu\xc7{\xe1\xff\xff\xc4\xbb\x17\xd5\xee\xd8\x143\xed\xc4|\xd3\f\x05\f\x95\xce\xbf9\xc8\xf1m\x96\xa3\xc0\xf29\x8b\x02\x89\xed`\xb4\xcb\xb3O\x97X\xe3\xd0j\xa5\xd0\x9e*\xf9|\xd9\xc2\xf4X\xc9[\xfa\xcf\xa3\xeb\x05EOgaA\xb1@f\x93F0\x8cR\xc5\xb6\x16\xfa\xe7\x13\x00\x02\xf4\x80\xe3\xd2\xf4MP\x87vB\xefJ\xeb\xb3\\\x88\x18` \xca\x8faI\x89\xb6\x91\x1ae\xd2\xad\xbe\xb3\xe6\bX]\xd7\x81.\xd2\xed\xc4\x9f\xb5~\xb4\xc6^\x97\xc3\xa2\x16\x99\xfc\x00_\xe6\xb0G\xe9`\xb4+2\x93\n9 EU\x1e\xb4\xbeVt\x89\xf9\xc7\xe1`4O\x00\x00\x00\x00\xa5\xe0\xf5\xb2\x00\x00t\x10\"\x15\xbc\xdb\x92\xff\xa7\xe1Vv\xe5*\xc5\xe1r\xf5\xa4Cw\x1c/?\xbcn\xe3\x8aX\xfc\xe9,\xca,9\xda\xad\x87\xb1\xb2\xff#\xa1Yi\xd3\x17l6\xa0\xd8\x1b\xad8\a\xfc%\xa6(\xcb\x97(\x16\x81\xbf\xc6\xdbw\x13!\xc9\xc6\xc3\xfbc\xfe\x83\xcd\x16 e\xcd\x91y@\xe2\xd8{\xec\xbb\xbb\x1d5\t\xed>\xa9&\xce\xfc\xab[\xae\xa1\x94\b\xcc/-\x12\x8d\x84K\xf0\xd0\x0f\x13)\x17CI\xb7\xf35\xfc\xe8(\xfa\t2\xafQ8}\xd8\xbb\xe4nlR\xf8\xc9\xf2\xa3\xe5\x83\r\t\xb96d\xd6\x1e\xbd*\xa4\xc9\xcbE2\xe9\x81\xc3\xc3\x8a\x15\xcb\xf2\x03\x00\x00\x00\x00\x00\x00\x00!dJ+\xd2\x01#v\xd8BgB`\x8alP\r\x04\xce\x04$\xaag\xb6\xdb6-0>\xb3u\xd4\xdb\xd8~\xb0\f\xd0\xa9\x9e\xa0\xc7\xf7\'\x8d\xab\xae\x035\xa8f\xe5\xfe\xfc\xc0\xb1rR\xae54\x13\x1c8=\x92\xc3=w\x89\xbb\xfb)\x94p\xc18`G', &(0x7f0000001340), 0x2, 0x0) listxattr$auto(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/attr/prev\x00', 0x101002, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x7, 0x7) select$auto(0x8, 0x0, 0x0, 0x0, 0x0) (async) select$auto(0x8, 0x0, 0x0, 0x0, 0x0) io_setup$auto(0x7ffe, 0x0) (async) io_setup$auto(0x7ffe, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 3.142163814s ago: executing program 1 (id=1039): mmap$auto(0x400000000, 0x2020009, 0x4, 0x2000000eb1, 0xfffffffffffffffa, 0x8002) mmap$auto(0x0, 0x400008, 0x5f, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x6, 0x4000011, 0x0, 0x6, 0x5, 0x80a, 0xffffffffffffffff, [0x0, 0x40], {0x3f000, 0x10001, 0x3, 0x2de, 0x8e, 0xfffffffe, 0x101, 0x6, 0x2000009}, {0xfff7fffc, 0x3, 0x52, 0x1a7, 0x10001, 0x4040, 0x76c5, 0x8, 0x8000000000040000}}) r0 = getpid() process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0x1001}, 0x800000001, &(0x7f0000000500)={&(0x7f0000000080), 0x800001ffffffff}, 0x6, 0x0) r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000140), 0x98d902, 0x0) timer_settime$auto(0x0, 0x519a, 0x0, 0x0) ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) sysfs$auto(0x2, 0x6, 0x0) mmap$auto(0x0, 0x3fffff, 0x7, 0x11, 0xdd, 0x0) sysfs$auto(0x2, 0x3b, 0x0) r2 = fsopen$auto(0x0, 0x1) fsconfig$auto(r2, 0x8, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) r3 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x101440, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_STATUS64(r3, 0x80605414, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0x4, 0x20000000000e31, r3, 0x8000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) quotactl_fd$auto(0xffffffffffffffff, 0x200, 0x0, 0x0) ioctl$auto_NS_GET_USERNS(0xffffffffffffffff, 0xb701, 0x0) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) write$auto(0xffffffffffffffff, 0x0, 0x1) socket(0xa, 0x1, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x288b02, 0x0) socket(0x5, 0xa, 0x9) madvise$auto(0x0, 0xffffffffffff0006, 0x17) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) 2.623935888s ago: executing program 3 (id=1041): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_BEARER_DISABLE(r0, &(0x7f0000002740)={0x0, 0x0, &(0x7f0000002700)={&(0x7f0000000340)={0x1c, r1, 0x401, 0x70bd29, 0x25dfdbfd, {}, [@TIPC_NLA_BEARER={0x8, 0x1, 0x0, 0x1, [@nested={0x4, 0x1}]}]}, 0x1c}, 0x1, 0x3000000000000, 0x0, 0x2400c001}, 0x8000) 2.417589267s ago: executing program 3 (id=1042): sendmsg$auto_NL80211_CMD_ABORT_SCAN(0xffffffffffffffff, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f0000000180)=ANY=[@ANYRES16, @ANYRES16=0x0, @ANYBLOB="d66f6467b95e1063186a7690550c03cb2ad95aea52b1f7212aa02f42928ee175a6e446303df257557b4f6ed299a5368f6809a142f91acfda54572fdce91e1c99402330feba35f6ba63ec1822886994d6cbd0aac3598f56564afe9a71da7561402a5a45518a84f7a5418d7a24da6ee357ebf5290b8b0da470233b700a56299868f288913a3c78d70ed6d6fce7e94b0367b701b133031863eb25a6d5"], 0x218}, 0x1, 0x0, 0x0, 0x4000004}, 0x40080) (async) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) (async) mmap$auto(0x0, 0x8000000000000000, 0xdb, 0x100eb4, 0xffffffffffffffff, 0x4) r0 = socketpair$auto(0x1, 0x5, 0x8, 0x0) mmap$auto(0xfffffffffffffffe, 0x2020009, 0x3, 0x800000000000eb1, r0, 0x8000) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80003, 0x0) (async) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) mmap$auto(0x0, 0xd561, 0x10000000000df, 0xeb2, 0xffffffffffffffff, 0x8000) timer_create$auto(0x2, 0x0, 0x0) (async) socket(0x29, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) (async) socket(0x2, 0x80802, 0x0) (async) r2 = socket(0x2b, 0x1, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) (async) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/virtual/nfc/nfc0/rfkill0/uevent\x00', 0x63102, 0x0) sendfile$auto(r3, r3, 0x0, 0x2) (async) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x9, 0x0, 0x1f, 0x9}, 0x800009}, 0x7, 0x20000000) setsockopt$auto(0x3, 0x9, 0x2f, 0x0, 0x9) setsockopt$auto(0x3, 0x20001, 0x5, 0x0, 0x1) (async) getsockopt$auto_SO_SNDTIMEO_OLD(r1, 0x1, 0x15, &(0x7f0000000080)='//\xf2\x00', &(0x7f0000000100)=0x3) (async) acct$auto(&(0x7f0000000140)='/dev/ptmx\x00') (async) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x26b, 0x4}, {0x0, 0x83}}, 0x0) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0x5) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r4, &(0x7f0000000000)='//\xf2\x00', 0x80000000) (async) mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x0) (async) landlock_restrict_self$auto(r4, 0x1) 2.176333867s ago: executing program 3 (id=1043): sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) r0 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r0, 0x0, 0x6, 0x4) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r1) sendmsg$auto_NL80211_CMD_SET_SAR_SPECS(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000180)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002bbd7000fbdbdf258c0010000c0003e8991314a64c08007b9ccce500", @ANYRES32=0x0, @ANYBLOB="0c0099000400"], 0x28}, 0x1, 0x0, 0x0, 0x400c080}, 0x0) r3 = socket(0x2, 0x5, 0x0) r4 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000380), r1) sendmsg$auto_NL802154_CMD_SET_SEC_PARAMS(r3, &(0x7f0000000580)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000540)={&(0x7f00000003c0)=ANY=[@ANYBLOB='9\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="3eab25bd7000ffdbdf251500000008001600ff03000074002f80a8ef35961ed8cc4caac98d3d6c71a363b2a47dbf81cce31ca2f891a84841e514007d0000000000000000000000ffffe00000026a3ff2996739214558b3b108bc09cfbf166ae88c5f55c8a075a4beceddd395273bca1fda9c1a972571ff5f419763aef55de16cf74003ac692f8aba0949"], 0x90}, 0x1, 0x0, 0x0, 0x20000000}, 0x24004001) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) capset$auto(&(0x7f0000000040)={0x19980330}, 0x0) ioctl$auto(r5, 0x4b67, 0x1) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0) r6 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYBLOB='j\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4) socket(0xa, 0x2, 0x3a) ioctl$auto(0x3, 0x8916, 0x91) sendmmsg$auto(r6, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 2.10969501s ago: executing program 1 (id=1044): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.3/usb4/4-0:1.0/authorized\x00', 0x14b902, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000006a40), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_UPD_OFFLOAD(r1, &(0x7f00000071c0)={0x0, 0x0, &(0x7f0000007180)={&(0x7f0000000000)={0x1c, r2, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@MACSEC_ATTR_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20004004}, 0x20004000) r3 = openat$auto(0xffffffffffffff9c, 0x0, 0x1, 0x4) mmap$auto(0x0, 0x10001, 0xdf, 0x8000000000009b72, r3, 0x8002) open(&(0x7f0000000800)='./file0\x00', 0x0, 0x154) pipe$auto(0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyzd\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0) read$auto(r4, 0x0, 0x7f) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) r5 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) dup3$auto(r5, r5, 0x4) mmap$auto(0x0, 0x8, 0x1000e2, 0xeb1, 0xffffffffffffffff, 0x100008000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/reboot/type\x00', 0x180102, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) exit$auto(0x41) write$auto(0x3, 0x0, 0xfdef) set_tid_address$auto(0x0) mmap$auto(0x0, 0xa, 0x400, 0x13, 0x401, 0x81ff) r6 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x0, 0x0) read$auto(r6, 0x0, 0x1f46) r7 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r7, &(0x7f00000000c0)={0x0, 0xffffffff}, 0x6) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/fs/cifs/smbd_keep_alive_interval\x00', 0x88040, 0x0) write$auto(r0, &(0x7f00000007c0)='f\x00\xb9:\xaa\xc1\r\x02T\xf5\b\x00\x00\x00\x00\x00\x00\x00\xa1\xd0\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\xcc!\"\xa6\"jH\xcd\x10&b/\x9a\xf1w\xddS\x87\xd1vi\xa9\xeaM\x1dY\xa6\x8d\xf2\\\xac\xe1\xcf\xf7\xff\xff\x148\t\xba\xa0Z\x00M\xbcHM{\xa9\xf1R3X\xdfMbe\t\t\x86\x11v\xa2W\x93m\xd9\x93\x98.7Z\xe7|\x9f\x88\x05\x9ej\xc5\xfaT\xa0\x9a\\i\xd1\xb3\x02\xfa\xfeaq\x8d\xf1\xba\xaf\xcc\xce\xb2\xd3~TR\xf1\xad\xd0\x90n\xb6\xd0\xfc(p\xa3\xabk\x19\xcb\xfda\xff&\xad1\x95\xc5\xa9Gb\xe3\xa4\xf1\xe2\x91\x0e\x91iy\xba%+=\xb7\xd3D,\x19\b\x00\x00\x00\x00\x00\x00\x00\xadG\x94\v\xff\xa4\xfc\x95\x00By\xe9\x80\xd3U\xcd9\xe0\xbc\x8cK\xf3\xfd\x89\xda\xaeH.\xe3\x95Xbw\x02\x99\x03\x00\x00\x00\x00\x00\x00\x00\xaf\xc3\x89\x91\x19\xfc+\xe9l\xd3\xf5\x00\x00\x00\x00\x00\x00\x00\x85%c\xa6\x0f\xcfI\xb4a\x1d\xc4\x8f\x12X\xdf\xc2\xd7\x8e\xf4\xb9_\xf6\x10\xfc\x9b\xce\xab\xcf\xa9_\x88\xf4\x1b\x12\x12N\f\x84\r\vsI\x86\xe9\xe6J\xb8\xe4\x8f\x02\x9e\xf45\xd9\xf1\xbd\xfd\x97\xd8OU\t\x9e2K\xe2*~\x9dIe\x00\x00\x00\x00\x00\x00\xce;E\x8c\x05~\x1f\xa5\xa4\x9d\xf6\'\xc4\xf7\xa3\xf2\xfb\x85z>\xd71\xb8\x83\x8e\xa9c6I\x8f\x00\xb2\x03\xfd3\xb8\xe9Xo\xaa\xaeg\xb3\x9e\x8fM:\xa5\x1c \xbe\xfe\"\xa1\x11\xf4~\xa1\x90D/e\xe1\xb1C:}\xd2\x9dT\xc1\xd6[Ld\x06\xee\xc6\xe4\x99uT\xfdl\x94\xe1:\'2aO\xf1\xfa8l\n\xe0l\x1c\x89\xd7U\x99\xe9d?\x04\xd8\xf3\x9c\xd8t\x88@\x89\x15p\x84\xad\xa3V=,U\xa4_\xb9\xa7\xd7O\x91\xb2\x03\xbe\xd5\xa8\x03o\x0e\xa7\x93\xabubg\x10\x19\x82D\xa7\xae9\xf1\xc0\n\xfe;n)OAV\xfe\x8fE-\xea\x7fzO0\xde\xc0WK\xe1\x9b\xfe\xbfR\x8c$p\xf0\xe4\xa5\xbe_\x8d:\xd6\xc5\xf5\x80+\xe6O', 0x181) 1.937670606s ago: executing program 0 (id=1045): bind$auto(0xffffffffffffffff, &(0x7f00000001c0)=@in={0x2, 0x4e23, @multicast2}, 0x2) close_range$auto(0x2, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x54b503, 0x0) mmap$auto(0x5, 0x810004, 0xfff, 0x8000000008011, 0x3, 0xfffffffffffffffe) capset$auto(&(0x7f0000000200)={0x20080522, 0x0}, 0x0) r1 = socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) ioctl$auto(0x3, 0x40045614, r1) mmap$auto(0x102000000007e, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) shutdown$auto(0x200000003, 0x2) madvise$auto(0x0, 0x2003f2, 0x15) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) openat$auto_full_fops_mem(0xffffffffffffff9c, &(0x7f0000000140), 0x10000, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) sched_setaffinity$auto(r0, 0x1, &(0x7f0000000240)=0x10) pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91\vI\x1eRN8\x99\x88\xca\xd9\xec\x1epJ\"ds\x1cJr\xde:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18\x89\v\xea\x1b\x95\xaf\xee\xe69\x8d(<\xc7+\x83\xfcQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd3\x81Y\xa3Fp\v\xdc\xe2\xc3\xc3\xdbS\xdc', 0xfdef, 0x0) syz_genetlink_get_family_id$auto_mac802154_hwsim(&(0x7f0000000100), 0xffffffffffffffff) statmount$auto(&(0x7f0000000040)={0x1f, @raw, 0x80000402, 0xf5ff, 0x6}, 0x0, 0x5, 0x1) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x1, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x3e) 1.846566356s ago: executing program 3 (id=1046): socket(0xa, 0x801, 0x84) setsockopt$auto(0x3, 0x10000000084, 0x1e, 0x0, 0x8) r0 = socket$nl_generic(0x10, 0x3, 0x10) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6d) openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/trace_marker\x00', 0x43, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000140)=""/41, 0x29) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0x200000008000001c, 0x3) r2 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) ioctl$auto_UBI_IOCATT(r2, 0x40186f40, &(0x7f0000000080)={0xffffffff, 0x0, 0x3f, 0x808, 0x1, 0x1}) mmap$auto(0x7, 0x2020009, 0x2, 0xfffffffffffffff7, 0xfffffffffffffffa, 0x8000) r3 = socket(0x11, 0x80003, 0xffff20a8) setsockopt$auto(r3, 0x107, 0x2, 0x0, 0x28) mmap$auto(0x2000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/pm_test\x00', 0x20461, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000080)="2d296699eb5df9d24db978ee2ae789f693d6325d33d31c0a", 0x18) prctl$auto_PR_GET_SECCOMP(0x15, 0xe, 0x9, 0x6, 0x0) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r5 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) r6 = openat$auto_rfcomm_sock_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x4400, 0x0) read$auto_rfcomm_sock_debugfs_fops_(r6, &(0x7f0000000080)=""/17, 0x11) ioctl$auto_PAGEMAP_SCAN(r5, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x2, 0x7, 0xbff, 0x2c, 0x2c, 0x3, 0x2}) r7 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000180), 0xffffffffffffffff) r8 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv6/conf/nlmon0/addr_gen_mode\x00', 0xa02, 0x0) pwritev2$auto(r8, &(0x7f0000001040)={&(0x7f0000000040), 0x1}, 0x8000000000000001, 0x100020001, 0x7, 0x4) sendmsg$auto_OVS_VPORT_CMD_DEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)={0x20, r7, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@OVS_VPORT_ATTR_UPCALL_STATS={0x4}, @OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0xfff}]}, 0x20}, 0x1, 0x0, 0x0, 0x8800}, 0x4000000) 448.509268ms ago: executing program 2 (id=1047): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, 0x0) r0 = socket(0x10, 0x3, 0x6) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/mtrr\x00', 0x0, 0x0) ioctl$auto(r2, 0x40104d06, r2) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="f0020000", @ANYRES16=r1, @ANYBLOB="01002dbd7000fedbdf2505000000da0203800800c000e000000204002a000400110008002e00", @ANYRES32, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b33"], 0x2f0}, 0x1, 0x0, 0x0, 0x40000}, 0x50) r3 = socket(0xa, 0x2, 0x3a) connect$auto(r3, &(0x7f00000000c0)=@l2={0x1f, 0xe0ea, @any, 0x5, 0x2}, 0x55) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000009c0)='/proc/self/net/icmp6\x00', 0x8000, 0x0) read$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f0000000e80)=""/215, 0xd7) r5 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/035/001\x00', 0x400000, 0x0) ioctl$auto_FS_IOC_GETFLAGS(r5, 0x80086601, 0x81) 335.189365ms ago: executing program 3 (id=1048): close_range$auto(0x2, 0x8, 0x0) r0 = getpid() mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'bond_slave_0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYRESDEC=r1, @ANYBLOB="4804d84669dc6cfc06a7bc79389e905b7a2fecd0e359d8c8b546437db73b89844ca66e6358fd903c8b0f61f16a1b3910ad423fe09c865a61535478931884fe2a0048183206cc19fd7677cc3130845ff0acdf51de3d8230c9defa99e7e07335ce55f54bf39f350776315ab909f7174f9355e2388db9fdea92631c2b7eea5093d0b276f1dc6a8586c3cb4613926cf445a61c6f7d03c3dedd309084e2b06453a4f3f76c33b7e9602d53207a66c9b388c255cee7cb3b602e1397065cf8f33010bdcf6e5ff23c9ba538e0e77eb1b9712439981917d0cb883f2a99b0cdb2e62afcba3d0edb53a0dd4c8d8b2686bc62", @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a0001000000000000000000080002006454180089eefda25063f0741047d7a430d64fb7b73f105cc9a2672a1cbd506eda4ae1b0129d6d5fb9d0e357c1a12e767aaa10bef142f9a0a05f41316672582e654ac349504ff77fdae948d4d347907ab623364047389e9a626eabd39547deaf000ab9f63fc2ec9a476d1d75c7136d091fba83cc94c51818f68fd3837b53e8f81669ea1136c5c448bd90b13d3f88a347aa92d80c0cb0d32fb810bd2b288581d13a1245c2b942a6f31409a65de5007f13f79255b7bf04dc168ccc", @ANYRES32=r1, @ANYRES64], 0x68}, 0x1, 0x0, 0x0, 0x4000001}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x28, 0x6, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004}, 0x400c854) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffff5c, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) fcntl$auto(0x3, 0x400, 0x9ec0000000000000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket(0xa, 0x801, 0x84) socket(0x2, 0x1, 0x0) socket(0x2, 0x6, 0x4) open(&(0x7f0000000340)='./file0\x00', 0x22240, 0x0) fcntl$auto(0x3, 0x400, 0x9ec0000000000000) fcntl$auto(0x3, 0x400, 0x9ec0000000000000) process_vm_readv$auto(0x0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f00000000c0), 0xffffffff}, 0x6, 0x0) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video49\x00', 0x2041, 0x0) r4 = socket(0x2, 0x1, 0x106) connect$auto(r4, &(0x7f00000001c0)=@in={0x2, 0x3}, 0x55) kcmp$auto_KCMP_FILE(r0, r2, 0x0, r3, r4) io_uring_setup$auto(0x59, &(0x7f0000000200)={0x0, 0x1d, 0x3800, 0x2, 0x7, 0x480a, 0xffffffffffffffff, [0xffffffff], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6, 0xfffffffffffffffd}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c2, 0x9, 0xb9d0}}) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x731340, 0x0) 247.81915ms ago: executing program 1 (id=1049): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0x200000000ffb, 0x8000000008011, 0x3, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sda\x00', 0x200000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) r0 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) ioctl$auto_SNDCTL_TMR_TEMPO(0xffffffffffffffff, 0xc0045405, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) r1 = socket(0x1d, 0x2, 0x7) getsockopt$auto(r1, 0x6d, 0xcd63, 0xfffffffffffffffe, 0x0) prctl$auto_PR_SET_MM_START_CODE(0x180, 0x1, 0x0, 0x7, 0x410) madvise$auto(0x8, 0x6, 0x8) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bus/usb/003/001\x00', 0x8001, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/uevent_helper\x00', 0x80302, 0x0) mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0xffffffffffffffff, 0x0) r2 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) ioctl$auto(r3, 0x5393, r2) r4 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg$auto(r4, &(0x7f0000000140)={{0x0, 0x3, &(0x7f0000000000)={0x0, 0x80000000}, 0x5, 0x0, 0x2, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0) write$auto_proc_clear_refs_operations_internal(r0, 0x0, 0xffffff4b) r5 = getpid() process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={0x0, 0x40000000001243}, 0x4, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200001, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r6 = socket(0x10, 0x80002, 0x8) close_range$auto(r6, r6, 0x0) 201.993383ms ago: executing program 2 (id=1050): openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x5c4a58ee, 0x6) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) r0 = io_uring_setup$auto(0x86, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/bus/pci/rescan\x00', 0x20681, 0x0) write$auto(r1, &(0x7f0000000440)='0\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7\xf3_R\x8f\x98=\xe2K\xe4s\x95\xf2\x00\x97S\xb9O\xac\xbe\xd6\\J<\x02YK\xd6M\xe6\xe7\xa0\xb8\xc3[\x01\xc5\xe8|\xb0\xb9S\xe6M\xb0\x80\xbf\xa5?=i\x88UB\x1d\x8e\xd3\xc2\x949\xb6\xc7\xb4)M\xed\tN $\xd4\xb2^?J\x92\x9a?\xf8b\x03\xd8\xdd\x84\xdf\x92\xf0\xcd\xd8\xba\xab\x15\x80\x9eo,\xc8\xf2\x82\xd2\x88\xbeL\xa0\x1a\xd3\xd5Oe\x8cN\x95y\x9c}o\x9b\x86_\xf0?\f<\xf3t7\xb6\x0f\x93\xc79@\xd8x\x9e\xef!\x006\b\xdbWB\x84\xdd\xac\xdau\x86g[\x8f\x02@O7\x0f\xf8\x8d(\x9c\xf2NyD\x7f3\x14\x9eg\x86%)\xd6\b\xcd\x1f\x03\x00:\xa6\x83\'\xf4\x89\xc5D\xc4\x02\\\x81\xcf\x02Ep\xf6`\xdc*\x1d\x00\x00\x00\x00\x00\x86\xafk\r\xed\x10\xf7\t\xfc\xa1\xd9;\xb4\xd9r\xc0\t\xd0+\xbde\xce4\xc0\x95\x1d\xe4lr\x86\x16\x9an@\xe5\x1bJ$K\x1e\xb3}T\xbf\xb4\x99\xa2\xc8s\x83\xc2V\xe9\x9b\xaf]\xab\x0f\xbdI\x9ds#\x14(\x0e\x8c\x8b\x85\x18\xc6\xff(\x01\x06\xe0W\xb4k*\x8fn\n\x85\x89\xb38=\xd3\xa9d\xd7}\xd2\x17p\xd3\xdf\x9f\xfbr\xae\"\x11\xd8\xbdC\xb0n\x82\xcb\x01\x02\x93S!p\x84\xd4\x1c\xb3\xbb>\x04]\xd8J\xa1\x13x\x0eD\xe0\xd6\x9c4\xd7\xdb\x01\xf9\xeb\x91\xf9\x8a\xe4f\x83\xc9\"hE\x03\xcb\xaf\x14\x93@m\xa5\xa7\x19\xfb\xd76Q\x9eR\x03\xd2\xca\xcdti@\x17\xcbJ\xdb<\v(e\xc7B:\x14\t!\xb9o>L\x7f\xff\x9e>aK\rRD\xb7', 0x7) r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vbi4\x00', 0x101000, 0x0) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x22a02, 0x0) mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000) write$auto(r3, &(0x7f0000000140)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7\xe6\x04\x8c\x83k', 0x1000000007e) ioctl$auto(r2, 0xc0205647, r0) 71.461929ms ago: executing program 0 (id=1051): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) (async) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x8f3b7a51b80ebd01, 0x0) socket(0xa, 0x1, 0x84) openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000440), 0x20100, 0x0) (async) r0 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000440), 0x20100, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) (async) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) socket(0x2c, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0x5457, 0x0) (async) ioctl$auto_KVM_CREATE_VM(r1, 0x5457, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000040), 0x200000, 0x0) mmap$auto(0x5, 0x2020009, 0x0, 0xeb1, r0, 0x8000) ioctl$auto(0x3, 0xc1485544, 0xb551) (async) ioctl$auto(0x3, 0xc1485544, 0xb551) 0s ago: executing program 3 (id=1052): r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) mmap$auto(0x0, 0x400409, 0xdf, 0x9b72, 0x2, 0x8000) kernel console output (not intermixed with test programs): llect_data cause=failed comm="syz.3.527" name="dbroot" dev="configfs" ino=21625 res=0 errno=0 [ 214.246768][ T8352] FAULT_INJECTION: forcing a failure. [ 214.246768][ T8352] name fail_futex, interval 1, probability 0, space 0, times 0 [ 214.288232][ T8354] FAULT_INJECTION: forcing a failure. [ 214.288232][ T8354] name failslab, interval 1, probability 0, space 0, times 0 [ 214.315990][ T8352] CPU: 0 UID: 0 PID: 8352 Comm: syz.1.532 Tainted: G L syzkaller #0 PREEMPT(full) [ 214.316028][ T8352] Tainted: [L]=SOFTLOCKUP [ 214.316037][ T8352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 214.316051][ T8352] Call Trace: [ 214.316058][ T8352] [ 214.316067][ T8352] dump_stack_lvl+0x100/0x190 [ 214.316098][ T8352] should_fail_ex.cold+0x5/0xa [ 214.316124][ T8352] ? rcu_is_watching+0x12/0xc0 [ 214.316153][ T8352] get_futex_key+0x1d2/0x14f0 [ 214.316177][ T8352] ? __pfx_get_futex_key+0x10/0x10 [ 214.316198][ T8352] ? plist_add+0x4c2/0x680 [ 214.316229][ T8352] ? futex_wait_setup+0x3ef/0x540 [ 214.316260][ T8352] ? futex_wait_setup+0x468/0x540 [ 214.316294][ T8352] futex_wait_setup+0x91/0x540 [ 214.316328][ T8352] __futex_wait+0x19f/0x300 [ 214.316359][ T8352] ? __pfx___futex_wait+0x10/0x10 [ 214.316389][ T8352] ? futex_hash+0x311/0x400 [ 214.316408][ T8352] ? rcu_is_watching+0x12/0xc0 [ 214.316436][ T8352] ? __pfx_futex_wake_mark+0x10/0x10 [ 214.316469][ T8352] ? __pfx_futex_hash+0x10/0x10 [ 214.316489][ T8352] ? get_pid_task+0xfc/0x250 [ 214.316519][ T8352] ? rcu_is_watching+0x12/0xc0 [ 214.316548][ T8352] futex_wait+0xe6/0x370 [ 214.316578][ T8352] ? __pfx_futex_wait+0x10/0x10 [ 214.316610][ T8352] ? io_uring_setup+0xd7/0x160 [ 214.316637][ T8352] ? ksys_write+0x190/0x250 [ 214.316672][ T8352] ? rcu_is_watching+0x12/0xc0 [ 214.316701][ T8352] do_futex+0x265/0x440 [ 214.316729][ T8352] ? __pfx_do_futex+0x10/0x10 [ 214.316758][ T8352] __x64_sys_futex+0x34f/0x4d0 [ 214.316785][ T8352] ? __pfx___x64_sys_futex+0x10/0x10 [ 214.316814][ T8352] ? rcu_is_watching+0x12/0xc0 [ 214.316851][ T8352] do_syscall_64+0x115/0x840 [ 214.316874][ T8352] ? clear_bhb_loop+0x40/0x90 [ 214.316901][ T8352] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 214.316925][ T8352] RIP: 0033:0x7f24f239ce59 [ 214.316944][ T8352] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 214.316968][ T8352] RSP: 002b:00007f24f32a50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 214.316991][ T8352] RAX: ffffffffffffffda RBX: 00007f24f2615fa8 RCX: 00007f24f239ce59 [ 214.317007][ T8352] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f24f2615fa8 [ 214.317022][ T8352] RBP: 00007f24f2615fa0 R08: 0000000000000000 R09: 0000000000000000 [ 214.317036][ T8352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 214.317050][ T8352] R13: 00007f24f2616038 R14: 00007ffe7bd030b0 R15: 00007ffe7bd03198 [ 214.317073][ T8352] [ 214.830888][ T8354] CPU: 0 UID: 0 PID: 8354 Comm: syz.2.533 Tainted: G L syzkaller #0 PREEMPT(full) [ 214.830927][ T8354] Tainted: [L]=SOFTLOCKUP [ 214.830942][ T8354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 214.830957][ T8354] Call Trace: [ 214.830964][ T8354] [ 214.830972][ T8354] dump_stack_lvl+0x100/0x190 [ 214.831004][ T8354] should_fail_ex.cold+0x5/0xa [ 214.831030][ T8354] ? kmem_cache_alloc_noprof+0x6b/0x6a0 [ 214.831060][ T8354] should_failslab+0xc2/0x120 [ 214.831093][ T8354] kmem_cache_alloc_noprof+0x91/0x6a0 [ 214.831120][ T8354] ? percpu_counter_add_batch+0xb9/0x230 [ 214.831160][ T8354] ? vm_area_alloc+0x1f/0x160 [ 214.831183][ T8354] vm_area_alloc+0x1f/0x160 [ 214.831203][ T8354] __mmap_region+0x1033/0x2db0 [ 214.831227][ T8354] ? rcu_is_watching+0x12/0xc0 [ 214.831256][ T8354] ? __pfx___mmap_region+0x10/0x10 [ 214.831278][ T8354] ? __pfx___might_resched+0x10/0x10 [ 214.831315][ T8354] ? do_raw_spin_lock+0x128/0x260 [ 214.831340][ T8354] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 214.831366][ T8354] ? debug_object_activate+0x331/0x490 [ 214.831389][ T8354] ? rcu_is_watching+0x12/0xc0 [ 214.831423][ T8354] ? debug_object_assert_init+0x1c4/0x300 [ 214.831446][ T8354] ? debug_object_assert_init+0x1c4/0x300 [ 214.831468][ T8354] ? lock_release+0x24d/0x310 [ 214.831511][ T8354] ? hrtimer_start_range_ns_common+0x78e/0x18b0 [ 214.831547][ T8354] ? rcu_is_watching+0x12/0xc0 [ 214.831573][ T8354] ? trace_irq_enable.constprop.0+0x122/0x160 [ 214.831630][ T8354] ? futex_unqueue+0x133/0x2c0 [ 214.831651][ T8354] ? lock_release+0x24d/0x310 [ 214.831687][ T8354] ? __pfx_arch_get_unmapped_area_topdown+0x10/0x10 [ 214.831723][ T8354] mmap_region+0x35d/0x620 [ 214.831747][ T8354] ? rcu_is_watching+0x12/0xc0 [ 214.831775][ T8354] ? __pfx_mmap_region+0x10/0x10 [ 214.831801][ T8354] ? cap_mmap_addr+0x4b/0x120 [ 214.831832][ T8354] ? bpf_lsm_mmap_addr+0x9/0x30 [ 214.831853][ T8354] ? security_mmap_addr+0x71/0x1e0 [ 214.831890][ T8354] ? __get_unmapped_area+0x255/0x3e0 [ 214.831925][ T8354] do_mmap+0xc63/0x12f0 [ 214.831984][ T8354] ? __pfx_do_mmap+0x10/0x10 [ 214.832016][ T8354] ? __pfx_down_write_killable+0x10/0x10 [ 214.832043][ T8354] ? __pfx_futex_wait+0x10/0x10 [ 214.832076][ T8354] vm_mmap_pgoff+0x29e/0x470 [ 214.832109][ T8354] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 214.832143][ T8354] ? __pfx_do_futex+0x10/0x10 [ 214.832168][ T8354] ? rcu_is_watching+0x12/0xc0 [ 214.832196][ T8354] ksys_mmap_pgoff+0xe4/0x610 [ 214.832227][ T8354] ? __x64_sys_futex+0x358/0x4d0 [ 214.832253][ T8354] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 214.832284][ T8354] ? xfd_validate_state+0x129/0x190 [ 214.832313][ T8354] __x64_sys_mmap+0x125/0x190 [ 214.832343][ T8354] do_syscall_64+0x115/0x840 [ 214.832365][ T8354] ? clear_bhb_loop+0x40/0x90 [ 214.832392][ T8354] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 214.832416][ T8354] RIP: 0033:0x7f169e19ce59 [ 214.832435][ T8354] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 214.832459][ T8354] RSP: 002b:00007f169efbc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 214.832483][ T8354] RAX: ffffffffffffffda RBX: 00007f169e415fa0 RCX: 00007f169e19ce59 [ 214.832499][ T8354] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 214.832514][ T8354] RBP: 00007f169e232e6f R08: 0000000000000002 R09: 0000000000008000 [ 214.832529][ T8354] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 214.832544][ T8354] R13: 00007f169e416038 R14: 00007f169e415fa0 R15: 00007fff347d1b68 [ 214.832567][ T8354] [ 216.984234][ T8372] sg_write: data in/out 124/2 bytes for SCSI command 0x61-- guessing data in; [ 216.984234][ T8372] program syz.2.537 not setting count and/or reply_len properly [ 219.013166][ T8411] snd_virmidi snd_virmidi.0: control 61674:5:9:yª:20389 is already present [ 219.105384][ T8433] FAULT_INJECTION: forcing a failure. [ 219.105384][ T8433] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 219.295845][ T8433] CPU: 0 UID: 0 PID: 8433 Comm: syz.1.550 Tainted: G L syzkaller #0 PREEMPT(full) [ 219.295883][ T8433] Tainted: [L]=SOFTLOCKUP [ 219.295891][ T8433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 219.295904][ T8433] Call Trace: [ 219.295911][ T8433] [ 219.295919][ T8433] dump_stack_lvl+0x100/0x190 [ 219.295949][ T8433] should_fail_ex.cold+0x5/0xa [ 219.295976][ T8433] _copy_to_iter+0x5a4/0x1720 [ 219.296001][ T8433] ? __pfx__copy_to_iter+0x10/0x10 [ 219.296023][ T8433] ? ping_get_first.isra.0+0x1ab/0x250 [ 219.296048][ T8433] ? seq_read_iter+0xd33/0x1270 [ 219.296085][ T8433] ? rcu_is_watching+0x12/0xc0 [ 219.296111][ T8433] ? seq_read_iter+0xd33/0x1270 [ 219.296143][ T8433] ? lock_release+0x24d/0x310 [ 219.296181][ T8433] seq_read_iter+0xdab/0x1270 [ 219.296219][ T8433] seq_read+0x344/0x4d0 [ 219.296251][ T8433] ? __pfx_seq_read+0x10/0x10 [ 219.296287][ T8433] ? rcu_is_watching+0x12/0xc0 [ 219.296315][ T8433] ? apparmor_file_permission+0x13f/0x1c0 [ 219.296349][ T8433] ? __pfx_seq_read+0x10/0x10 [ 219.296381][ T8433] proc_reg_read+0x240/0x330 [ 219.296415][ T8433] ? __pfx_proc_reg_read+0x10/0x10 [ 219.296449][ T8433] vfs_read+0x1e4/0xb40 [ 219.296485][ T8433] ? __pfx_vfs_read+0x10/0x10 [ 219.296525][ T8433] ? rcu_is_watching+0x12/0xc0 [ 219.296554][ T8433] ? __fget_files+0x21f/0x3d0 [ 219.296592][ T8433] ksys_read+0x12a/0x250 [ 219.296625][ T8433] ? __pfx_ksys_read+0x10/0x10 [ 219.296660][ T8433] ? rcu_is_watching+0x12/0xc0 [ 219.296688][ T8433] do_syscall_64+0x115/0x840 [ 219.296710][ T8433] ? clear_bhb_loop+0x40/0x90 [ 219.296736][ T8433] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 219.296760][ T8433] RIP: 0033:0x7f24f239ce59 [ 219.296777][ T8433] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 219.296800][ T8433] RSP: 002b:00007f24f32a5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 219.296822][ T8433] RAX: ffffffffffffffda RBX: 00007f24f2615fa0 RCX: 00007f24f239ce59 [ 219.296837][ T8433] RDX: 00000000000000d7 RSI: 0000200000000e80 RDI: 0000000000000004 [ 219.296851][ T8433] RBP: 00007f24f32a5090 R08: 0000000000000000 R09: 0000000000000000 [ 219.296865][ T8433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 219.296879][ T8433] R13: 00007f24f2616038 R14: 00007f24f2615fa0 R15: 00007ffe7bd03198 [ 219.296901][ T8433] [ 221.145559][ T8467] snd_virmidi snd_virmidi.0: control 61674:5:9:yª:20389 is already present [ 221.770103][ T8482] FAULT_INJECTION: forcing a failure. [ 221.770103][ T8482] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 221.824102][ T8482] CPU: 0 UID: 0 PID: 8482 Comm: syz.0.562 Tainted: G L syzkaller #0 PREEMPT(full) [ 221.824141][ T8482] Tainted: [L]=SOFTLOCKUP [ 221.824149][ T8482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 221.824162][ T8482] Call Trace: [ 221.824170][ T8482] [ 221.824178][ T8482] dump_stack_lvl+0x100/0x190 [ 221.824208][ T8482] should_fail_ex.cold+0x5/0xa [ 221.824234][ T8482] _copy_to_user+0x32/0xd0 [ 221.824258][ T8482] simple_read_from_buffer+0xcb/0x170 [ 221.824294][ T8482] proc_fail_nth_read+0x1af/0x230 [ 221.824323][ T8482] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 221.824350][ T8482] ? security_file_permission+0x76/0x210 [ 221.824388][ T8482] ? rw_verify_area+0xce/0x6d0 [ 221.824425][ T8482] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 221.824452][ T8482] vfs_read+0x1e4/0xb40 [ 221.824486][ T8482] ? __pfx_vfs_read+0x10/0x10 [ 221.824519][ T8482] ? rcu_is_watching+0x12/0xc0 [ 221.824549][ T8482] ? __fget_files+0x21f/0x3d0 [ 221.824586][ T8482] ksys_read+0x12a/0x250 [ 221.824619][ T8482] ? __pfx_ksys_read+0x10/0x10 [ 221.824655][ T8482] ? rcu_is_watching+0x12/0xc0 [ 221.824682][ T8482] do_syscall_64+0x115/0x840 [ 221.824705][ T8482] ? clear_bhb_loop+0x40/0x90 [ 221.824731][ T8482] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.824754][ T8482] RIP: 0033:0x7fb403f5d68e [ 221.824771][ T8482] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 221.824794][ T8482] RSP: 002b:00007fb404e37fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 221.824816][ T8482] RAX: ffffffffffffffda RBX: 00007fb404e386c0 RCX: 00007fb403f5d68e [ 221.824831][ T8482] RDX: 000000000000000f RSI: 00007fb404e380a0 RDI: 0000000000000004 [ 221.824846][ T8482] RBP: 00007fb404e38090 R08: 0000000000000000 R09: 0000000000000000 [ 221.824860][ T8482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 221.824873][ T8482] R13: 00007fb404216038 R14: 00007fb404215fa0 R15: 00007ffd9f14f518 [ 221.824895][ T8482] [ 222.406329][ T8479] program syz.3.561 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 223.568185][ T8510] ima: policy update failed [ 223.635788][ T30] audit: type=1802 audit(1843104582.520:5): pid=8510 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.567" res=0 errno=0 [ 224.064527][ T8523] nbd: must specify a size in bytes for the device [ 225.078741][ T8547] netlink: 8 bytes leftover after parsing attributes in process `syz.3.576'. [ 226.263891][ T8570] netlink: 8 bytes leftover after parsing attributes in process `syz.0.583'. [ 226.860431][ T8578] snd_virmidi snd_virmidi.0: control 61674:5:9:yª:20389 is already present [ 227.431800][ T8591] netlink: 8 bytes leftover after parsing attributes in process `syz.1.586'. [ 227.840201][ T8602] FAULT_INJECTION: forcing a failure. [ 227.840201][ T8602] name fail_futex, interval 1, probability 0, space 0, times 0 [ 227.896465][ T8602] CPU: 0 UID: 0 PID: 8602 Comm: syz.0.590 Tainted: G L syzkaller #0 PREEMPT(full) [ 227.896508][ T8602] Tainted: [L]=SOFTLOCKUP [ 227.896516][ T8602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 227.896531][ T8602] Call Trace: [ 227.896538][ T8602] [ 227.896546][ T8602] dump_stack_lvl+0x100/0x190 [ 227.896576][ T8602] should_fail_ex.cold+0x5/0xa [ 227.896602][ T8602] get_futex_key+0x295/0x14f0 [ 227.896626][ T8602] ? __pfx_get_futex_key+0x10/0x10 [ 227.896648][ T8602] ? rcu_is_watching+0x12/0xc0 [ 227.896675][ T8602] ? lock_acquire+0x301/0x370 [ 227.896712][ T8602] futex_wake+0xf4/0x5e0 [ 227.896740][ T8602] ? __mutex_lock+0x26d/0x1bd0 [ 227.896764][ T8602] ? __pfx_futex_wake+0x10/0x10 [ 227.896794][ T8602] ? exit_mm_release+0x19/0x30 [ 227.896820][ T8602] ? lock_release+0x24d/0x310 [ 227.896875][ T8602] do_futex+0x2b2/0x440 [ 227.896899][ T8602] ? __pfx_do_futex+0x10/0x10 [ 227.896923][ T8602] ? lock_release+0x24d/0x310 [ 227.896960][ T8602] mm_release+0x24a/0x2f0 [ 227.896984][ T8602] do_exit+0x707/0x2ae0 [ 227.897017][ T8602] ? __pfx_do_exit+0x10/0x10 [ 227.897047][ T8602] ? do_raw_spin_lock+0x128/0x260 [ 227.897071][ T8602] ? get_signal+0x7e0/0x21e0 [ 227.897097][ T8602] do_group_exit+0xd5/0x2a0 [ 227.897129][ T8602] get_signal+0x1ec7/0x21e0 [ 227.897157][ T8602] ? __pfx_get_signal+0x10/0x10 [ 227.897183][ T8602] ? do_futex+0x190/0x440 [ 227.897207][ T8602] arch_do_signal_or_restart+0x91/0x7a0 [ 227.897231][ T8602] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 227.897256][ T8602] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 227.897288][ T8602] ? rcu_is_watching+0x12/0xc0 [ 227.897315][ T8602] exit_to_user_mode_loop+0x139/0x6f0 [ 227.897338][ T8602] ? rcu_is_watching+0x12/0xc0 [ 227.897365][ T8602] do_syscall_64+0x652/0x840 [ 227.897386][ T8602] ? clear_bhb_loop+0x40/0x90 [ 227.897412][ T8602] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 227.897435][ T8602] RIP: 0033:0x7fb403f9ce59 [ 227.897452][ T8602] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 227.897475][ T8602] RSP: 002b:00007fb404e380e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 227.897503][ T8602] RAX: fffffffffffffe00 RBX: 00007fb404215fa8 RCX: 00007fb403f9ce59 [ 227.897518][ T8602] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb404215fa8 [ 227.897532][ T8602] RBP: 00007fb404215fa0 R08: 0000000000000000 R09: 0000000000000000 [ 227.897546][ T8602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 227.897560][ T8602] R13: 00007fb404216038 R14: 00007ffd9f14f430 R15: 00007ffd9f14f518 [ 227.897582][ T8602] [ 228.924348][ T8608] snd_virmidi snd_virmidi.0: control 61674:5:9:yª:20389 is already present [ 229.122268][ T8607] Process accounting paused [ 229.896881][ T8632] FAULT_INJECTION: forcing a failure. [ 229.896881][ T8632] name failslab, interval 1, probability 0, space 0, times 0 [ 230.068694][ T8632] CPU: 0 UID: 0 PID: 8632 Comm: syz.3.598 Tainted: G L syzkaller #0 PREEMPT(full) [ 230.068733][ T8632] Tainted: [L]=SOFTLOCKUP [ 230.068741][ T8632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 230.068756][ T8632] Call Trace: [ 230.068763][ T8632] [ 230.068772][ T8632] dump_stack_lvl+0x100/0x190 [ 230.068810][ T8632] should_fail_ex.cold+0x5/0xa [ 230.068835][ T8632] ? __kmalloc_cache_noprof+0x6b/0x6c0 [ 230.068860][ T8632] should_failslab+0xc2/0x120 [ 230.068892][ T8632] __kmalloc_cache_noprof+0x91/0x6c0 [ 230.068915][ T8632] ? ocfs2_control_open+0x45/0x1d0 [ 230.068943][ T8632] ocfs2_control_open+0x45/0x1d0 [ 230.068968][ T8632] ? __pfx_ocfs2_control_open+0x10/0x10 [ 230.068993][ T8632] misc_open+0x26d/0x450 [ 230.069028][ T8632] ? __pfx_misc_open+0x10/0x10 [ 230.069055][ T8632] chrdev_open+0x234/0x6a0 [ 230.069076][ T8632] ? __pfx_apparmor_file_open+0x10/0x10 [ 230.069108][ T8632] ? __pfx_chrdev_open+0x10/0x10 [ 230.069130][ T8632] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 230.069158][ T8632] do_dentry_open+0x6ab/0x14d0 [ 230.069178][ T8632] ? __pfx_chrdev_open+0x10/0x10 [ 230.069202][ T8632] vfs_open+0x82/0x3f0 [ 230.069230][ T8632] path_openat+0x2873/0x4280 [ 230.069256][ T8632] ? __pfx_path_openat+0x10/0x10 [ 230.069281][ T8632] do_file_open+0x20e/0x430 [ 230.069303][ T8632] ? __pfx_do_file_open+0x10/0x10 [ 230.069333][ T8632] ? alloc_fd+0x471/0x7a0 [ 230.069370][ T8632] ? do_getname+0x191/0x390 [ 230.069398][ T8632] do_sys_openat2+0x10f/0x1e0 [ 230.069426][ T8632] ? __pfx_do_sys_openat2+0x10/0x10 [ 230.069455][ T8632] ? do_raw_spin_lock+0x128/0x260 [ 230.069484][ T8632] __x64_sys_openat+0x12d/0x210 [ 230.069513][ T8632] ? __pfx___x64_sys_openat+0x10/0x10 [ 230.069545][ T8632] ? rcu_is_watching+0x12/0xc0 [ 230.069574][ T8632] do_syscall_64+0x115/0x840 [ 230.069596][ T8632] ? clear_bhb_loop+0x40/0x90 [ 230.069631][ T8632] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 230.069656][ T8632] RIP: 0033:0x7fdbcd19ce59 [ 230.069674][ T8632] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 230.069698][ T8632] RSP: 002b:00007fdbce0c2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 230.069721][ T8632] RAX: ffffffffffffffda RBX: 00007fdbcd416090 RCX: 00007fdbcd19ce59 [ 230.069737][ T8632] RDX: 000000000004c280 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 230.069752][ T8632] RBP: 00007fdbcd232e6f R08: 0000000000000000 R09: 0000000000000000 [ 230.069767][ T8632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 230.069789][ T8632] R13: 00007fdbcd416128 R14: 00007fdbcd416090 R15: 00007ffed5802d68 [ 230.069812][ T8632] [ 231.590876][ T8654] netlink: 4 bytes leftover after parsing attributes in process `syz.3.602'. [ 231.946490][ T8663] FAULT_INJECTION: forcing a failure. [ 231.946490][ T8663] name failslab, interval 1, probability 0, space 0, times 0 [ 231.993407][ T8663] CPU: 0 UID: 0 PID: 8663 Comm: syz.0.606 Tainted: G L syzkaller #0 PREEMPT(full) [ 231.993445][ T8663] Tainted: [L]=SOFTLOCKUP [ 231.993454][ T8663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 231.993469][ T8663] Call Trace: [ 231.993476][ T8663] [ 231.993484][ T8663] dump_stack_lvl+0x100/0x190 [ 231.993516][ T8663] should_fail_ex.cold+0x5/0xa [ 231.993541][ T8663] ? kmem_cache_alloc_lru_noprof+0x67/0x6a0 [ 231.993572][ T8663] should_failslab+0xc2/0x120 [ 231.993611][ T8663] kmem_cache_alloc_lru_noprof+0x8d/0x6a0 [ 231.993641][ T8663] ? __d_alloc+0x35/0xa50 [ 231.993666][ T8663] __d_alloc+0x35/0xa50 [ 231.993689][ T8663] d_alloc_pseudo+0x1c/0xc0 [ 231.993720][ T8663] alloc_file_pseudo+0x118/0x290 [ 231.993749][ T8663] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 231.993782][ T8663] __shmem_file_setup+0x205/0x460 [ 231.993821][ T8663] ? __pfx___shmem_file_setup+0x10/0x10 [ 231.993857][ T8663] ? vm_area_alloc+0x1f/0x160 [ 231.993879][ T8663] shmem_zero_setup+0x96/0x1b0 [ 231.993906][ T8663] __mmap_region+0x24ef/0x2db0 [ 231.993930][ T8663] ? do_file_open+0x20e/0x430 [ 231.993951][ T8663] ? __pfx___mmap_region+0x10/0x10 [ 231.993973][ T8663] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 231.993997][ T8663] ? do_raw_spin_lock+0x128/0x260 [ 231.994024][ T8663] ? do_raw_spin_lock+0x128/0x260 [ 231.994062][ T8663] ? debug_object_assert_init+0x1c4/0x300 [ 231.994087][ T8663] ? debug_object_assert_init+0x1c4/0x300 [ 231.994109][ T8663] ? lock_release+0x24d/0x310 [ 231.994153][ T8663] ? hrtimer_start_range_ns_common+0x78e/0x18b0 [ 231.994190][ T8663] ? rcu_is_watching+0x12/0xc0 [ 231.994217][ T8663] ? trace_irq_enable.constprop.0+0x122/0x160 [ 231.994279][ T8663] mmap_region+0x35d/0x620 [ 231.994304][ T8663] ? rcu_is_watching+0x12/0xc0 [ 231.994331][ T8663] ? __pfx_mmap_region+0x10/0x10 [ 231.994358][ T8663] ? cap_mmap_addr+0x4b/0x120 [ 231.994386][ T8663] ? bpf_lsm_mmap_addr+0x9/0x30 [ 231.994407][ T8663] ? security_mmap_addr+0x71/0x1e0 [ 231.994444][ T8663] ? __get_unmapped_area+0x255/0x3e0 [ 231.994478][ T8663] do_mmap+0xc63/0x12f0 [ 231.994512][ T8663] ? __pfx_do_mmap+0x10/0x10 [ 231.994543][ T8663] ? __pfx_down_write_killable+0x10/0x10 [ 231.994571][ T8663] ? __pfx_futex_wait+0x10/0x10 [ 231.994610][ T8663] vm_mmap_pgoff+0x29e/0x470 [ 231.994644][ T8663] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 231.994678][ T8663] ? __pfx_do_futex+0x10/0x10 [ 231.994705][ T8663] ksys_mmap_pgoff+0xe4/0x610 [ 231.994736][ T8663] ? __x64_sys_futex+0x358/0x4d0 [ 231.994762][ T8663] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 231.994793][ T8663] ? xfd_validate_state+0x129/0x190 [ 231.994823][ T8663] __x64_sys_mmap+0x125/0x190 [ 231.994853][ T8663] do_syscall_64+0x115/0x840 [ 231.994875][ T8663] ? clear_bhb_loop+0x40/0x90 [ 231.994902][ T8663] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 231.994926][ T8663] RIP: 0033:0x7fb403f9ce59 [ 231.994945][ T8663] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 231.994969][ T8663] RSP: 002b:00007fb404e38028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 231.994992][ T8663] RAX: ffffffffffffffda RBX: 00007fb404215fa0 RCX: 00007fb403f9ce59 [ 231.995008][ T8663] RDX: 0000000000000006 RSI: 0000000004020009 RDI: 0000000000000000 [ 231.995022][ T8663] RBP: 00007fb404032e6f R08: 0000000000000401 R09: 0000000000008000 [ 231.995037][ T8663] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 231.995052][ T8663] R13: 00007fb404216038 R14: 00007fb404215fa0 R15: 00007ffd9f14f518 [ 231.995075][ T8663] [ 232.452873][ T8665] snd_virmidi snd_virmidi.0: control 61674:5:9:yª:20389 is already present [ 232.595263][ T8675] netlink: 16 bytes leftover after parsing attributes in process `syz.3.609'. [ 232.649210][ T8678] netlink: 8 bytes leftover after parsing attributes in process `syz.3.610'. [ 233.484881][ T8687] FAULT_INJECTION: forcing a failure. [ 233.484881][ T8687] name fail_futex, interval 1, probability 0, space 0, times 0 [ 233.547977][ T8687] CPU: 0 UID: 0 PID: 8687 Comm: syz.0.611 Tainted: G L syzkaller #0 PREEMPT(full) [ 233.548017][ T8687] Tainted: [L]=SOFTLOCKUP [ 233.548026][ T8687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 233.548041][ T8687] Call Trace: [ 233.548048][ T8687] [ 233.548057][ T8687] dump_stack_lvl+0x100/0x190 [ 233.548090][ T8687] should_fail_ex.cold+0x5/0xa [ 233.548115][ T8687] ? rcu_is_watching+0x12/0xc0 [ 233.548145][ T8687] get_futex_key+0x1d2/0x14f0 [ 233.548168][ T8687] ? __pfx_get_futex_key+0x10/0x10 [ 233.548190][ T8687] ? plist_add+0x4c2/0x680 [ 233.548221][ T8687] ? futex_wait_setup+0x3ef/0x540 [ 233.548251][ T8687] ? futex_wait_setup+0x468/0x540 [ 233.548285][ T8687] futex_wait_setup+0x91/0x540 [ 233.548319][ T8687] __futex_wait+0x19f/0x300 [ 233.548351][ T8687] ? __pfx___futex_wait+0x10/0x10 [ 233.548380][ T8687] ? futex_hash+0x311/0x400 [ 233.548399][ T8687] ? rcu_is_watching+0x12/0xc0 [ 233.548428][ T8687] ? __pfx_futex_wake_mark+0x10/0x10 [ 233.548469][ T8687] ? __pfx_futex_hash+0x10/0x10 [ 233.548489][ T8687] ? futex_wake+0x4ea/0x5e0 [ 233.548518][ T8687] ? rcu_is_watching+0x12/0xc0 [ 233.548546][ T8687] ? rcu_is_watching+0x12/0xc0 [ 233.548576][ T8687] futex_wait+0xe6/0x370 [ 233.548606][ T8687] ? __pfx_futex_wait+0x10/0x10 [ 233.548640][ T8687] ? io_uring_setup+0xd7/0x160 [ 233.548668][ T8687] ? ksys_write+0x190/0x250 [ 233.548704][ T8687] ? rcu_is_watching+0x12/0xc0 [ 233.548732][ T8687] do_futex+0x265/0x440 [ 233.548757][ T8687] ? __pfx_do_futex+0x10/0x10 [ 233.548785][ T8687] __x64_sys_futex+0x34f/0x4d0 [ 233.548813][ T8687] ? __pfx___x64_sys_futex+0x10/0x10 [ 233.548842][ T8687] ? rcu_is_watching+0x12/0xc0 [ 233.548870][ T8687] do_syscall_64+0x115/0x840 [ 233.548893][ T8687] ? clear_bhb_loop+0x40/0x90 [ 233.548920][ T8687] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 233.548944][ T8687] RIP: 0033:0x7fb403f9ce59 [ 233.548962][ T8687] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 233.548986][ T8687] RSP: 002b:00007fb404e380e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 233.549011][ T8687] RAX: ffffffffffffffda RBX: 00007fb404215fa8 RCX: 00007fb403f9ce59 [ 233.549026][ T8687] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb404215fa8 [ 233.549041][ T8687] RBP: 00007fb404215fa0 R08: 0000000000000000 R09: 0000000000000000 [ 233.549056][ T8687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 233.549070][ T8687] R13: 00007fb404216038 R14: 00007ffd9f14f430 R15: 00007ffd9f14f518 [ 233.549093][ T8687] [ 234.181430][ T8696] overlayfs: missing 'lowerdir' [ 234.579237][ T8704] snd_virmidi snd_virmidi.0: control 61674:5:9:yª:20389 is already present [ 234.902436][ T8721] netlink: 8 bytes leftover after parsing attributes in process `syz.3.620'. [ 235.277396][ T8724] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 235.482655][ T8736] smpboot: CPU 1 is now offline [ 236.986873][ T8769] snd_virmidi snd_virmidi.0: control 61674:5:9:yª:20389 is already present [ 238.983342][ T8813] FAULT_INJECTION: forcing a failure. [ 238.983342][ T8813] name failslab, interval 1, probability 0, space 0, times 0 [ 239.096234][ T8813] CPU: 0 UID: 0 PID: 8813 Comm: syz.0.636 Tainted: G L syzkaller #0 PREEMPT(full) [ 239.096273][ T8813] Tainted: [L]=SOFTLOCKUP [ 239.096281][ T8813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 239.096295][ T8813] Call Trace: [ 239.096303][ T8813] [ 239.096311][ T8813] dump_stack_lvl+0x100/0x190 [ 239.096343][ T8813] should_fail_ex.cold+0x5/0xa [ 239.096369][ T8813] ? __kmalloc_cache_noprof+0x6b/0x6c0 [ 239.096393][ T8813] should_failslab+0xc2/0x120 [ 239.096425][ T8813] __kmalloc_cache_noprof+0x91/0x6c0 [ 239.096447][ T8813] ? lockdep_init_map_type+0x5c/0x250 [ 239.096470][ T8813] ? nci_hci_allocate+0x45/0x330 [ 239.096495][ T8813] nci_hci_allocate+0x45/0x330 [ 239.096518][ T8813] nci_allocate_device+0x26f/0x410 [ 239.096559][ T8813] virtual_ncidev_open+0x6f/0x220 [ 239.096583][ T8813] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 239.096608][ T8813] misc_open+0x26d/0x450 [ 239.096636][ T8813] ? __pfx_misc_open+0x10/0x10 [ 239.096663][ T8813] chrdev_open+0x234/0x6a0 [ 239.096685][ T8813] ? __pfx_apparmor_file_open+0x10/0x10 [ 239.096717][ T8813] ? __pfx_chrdev_open+0x10/0x10 [ 239.096740][ T8813] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 239.096768][ T8813] do_dentry_open+0x6ab/0x14d0 [ 239.096788][ T8813] ? __pfx_chrdev_open+0x10/0x10 [ 239.096813][ T8813] vfs_open+0x82/0x3f0 [ 239.096842][ T8813] path_openat+0x2873/0x4280 [ 239.096869][ T8813] ? __pfx_path_openat+0x10/0x10 [ 239.096894][ T8813] do_file_open+0x20e/0x430 [ 239.096915][ T8813] ? __pfx_do_file_open+0x10/0x10 [ 239.096947][ T8813] ? alloc_fd+0x471/0x7a0 [ 239.096984][ T8813] ? do_getname+0x191/0x390 [ 239.097012][ T8813] do_sys_openat2+0x10f/0x1e0 [ 239.097041][ T8813] ? __pfx_do_sys_openat2+0x10/0x10 [ 239.097075][ T8813] __x64_sys_openat+0x12d/0x210 [ 239.097113][ T8813] ? __pfx___x64_sys_openat+0x10/0x10 [ 239.097146][ T8813] ? rcu_is_watching+0x12/0xc0 [ 239.097177][ T8813] do_syscall_64+0x115/0x840 [ 239.097201][ T8813] ? clear_bhb_loop+0x40/0x90 [ 239.097227][ T8813] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.097251][ T8813] RIP: 0033:0x7fb403f9ce59 [ 239.097270][ T8813] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 239.097294][ T8813] RSP: 002b:00007fb404e17028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 239.097317][ T8813] RAX: ffffffffffffffda RBX: 00007fb404216090 RCX: 00007fb403f9ce59 [ 239.097333][ T8813] RDX: 0000000000000200 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 239.097349][ T8813] RBP: 00007fb404032e6f R08: 0000000000000000 R09: 0000000000000000 [ 239.097363][ T8813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 239.097378][ T8813] R13: 00007fb404216128 R14: 00007fb404216090 R15: 00007ffd9f14f518 [ 239.097401][ T8813] [ 239.675737][ T8821] snd_virmidi snd_virmidi.0: control 61674:5:9:yª:20389 is already present [ 240.298379][ T8842] netlink: 28 bytes leftover after parsing attributes in process `syz.0.641'. [ 241.253141][ T8861] netlink: 8 bytes leftover after parsing attributes in process `syz.2.645'. [ 242.944107][ T8906] overlayfs: missing 'lowerdir' [ 243.202808][ T8915] overlayfs: missing 'lowerdir' [ 244.719661][ T8947] FAULT_INJECTION: forcing a failure. [ 244.719661][ T8947] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 244.772249][ T8947] CPU: 0 UID: 0 PID: 8947 Comm: syz.2.660 Tainted: G L syzkaller #0 PREEMPT(full) [ 244.772287][ T8947] Tainted: [L]=SOFTLOCKUP [ 244.772295][ T8947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 244.772309][ T8947] Call Trace: [ 244.772315][ T8947] [ 244.772323][ T8947] dump_stack_lvl+0x100/0x190 [ 244.772353][ T8947] should_fail_ex.cold+0x5/0xa [ 244.772380][ T8947] should_fail_alloc_page+0xeb/0x140 [ 244.772413][ T8947] prepare_alloc_pages+0x1f0/0x5f0 [ 244.772448][ T8947] __alloc_frozen_pages_noprof+0x1af/0x2dc0 [ 244.772480][ T8947] ? do_raw_spin_lock+0x128/0x260 [ 244.772506][ T8947] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 244.772530][ T8947] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 244.772555][ T8947] ? rcu_is_watching+0x12/0xc0 [ 244.772581][ T8947] ? debug_object_assert_init+0x1c4/0x300 [ 244.772605][ T8947] ? do_raw_spin_unlock+0x145/0x1e0 [ 244.772629][ T8947] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 244.772666][ T8947] ? rcu_is_watching+0x12/0xc0 [ 244.772704][ T8947] ? trace_hrtimer_start+0x77/0x220 [ 244.772729][ T8947] ? __css_rstat_updated+0x1ce/0x5a0 [ 244.772768][ T8947] ? rcu_is_watching+0x12/0xc0 [ 244.772796][ T8947] ? rcu_is_watching+0x12/0xc0 [ 244.772821][ T8947] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 244.772856][ T8947] ? policy_nodemask+0xed/0x4f0 [ 244.772888][ T8947] alloc_pages_mpol+0x1fb/0x540 [ 244.772920][ T8947] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 244.772953][ T8947] ? do_raw_spin_lock+0x128/0x260 [ 244.772979][ T8947] folio_alloc_mpol_noprof+0x36/0x260 [ 244.773016][ T8947] vma_alloc_folio_noprof+0xed/0x1d0 [ 244.773051][ T8947] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 244.773089][ T8947] ? rcu_is_watching+0x12/0xc0 [ 244.773117][ T8947] do_anonymous_page+0xb2b/0x2080 [ 244.773155][ T8947] ? rcu_read_unlock+0x2d/0xb0 [ 244.773180][ T8947] __handle_mm_fault+0x1d2c/0x2a00 [ 244.773204][ T8947] ? mt_find+0x45e/0x8e0 [ 244.773230][ T8947] ? __pfx___handle_mm_fault+0x10/0x10 [ 244.773267][ T8947] ? __pfx_mt_find+0x10/0x10 [ 244.773299][ T8947] ? find_vma+0xbf/0x140 [ 244.773326][ T8947] ? __pfx_find_vma+0x10/0x10 [ 244.773354][ T8947] handle_mm_fault+0x37b/0xa30 [ 244.773377][ T8947] do_user_addr_fault+0x74c/0x12f0 [ 244.773413][ T8947] exc_page_fault+0x6f/0xd0 [ 244.773434][ T8947] asm_exc_page_fault+0x26/0x30 [ 244.773456][ T8947] RIP: 0010:__put_user_8+0xd/0x30 [ 244.773478][ T8947] Code: 89 01 31 c9 0f 01 ca e9 11 da 03 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <48> 89 01 31 c9 0f 01 ca c3 cc cc cc cc 66 0f 1f 44 00 00 90 90 90 [ 244.773501][ T8947] RSP: 0018:ffffc90005177bc0 EFLAGS: 00050206 [ 244.773520][ T8947] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000002000 [ 244.773535][ T8947] RDX: ffff888032c78000 RSI: ffffffff825b3cd1 RDI: ffffffff8e207920 [ 244.773549][ T8947] RBP: 00000000011fd010 R08: 0000000000000000 R09: 0000000000000000 [ 244.773563][ T8947] R10: 0000000000000000 R11: 0000000000000000 R12: 00000000000005fe [ 244.773576][ T8947] R13: 0000000000002000 R14: 0000000000000001 R15: 0000000000000000 [ 244.773594][ T8947] ? __might_fault+0x111/0x140 [ 244.773617][ T8947] kpage_read.isra.0+0x124/0x2b0 [ 244.773644][ T8947] ? __pfx_kpagecount_read+0x10/0x10 [ 244.773673][ T8947] proc_reg_read+0x120/0x330 [ 244.773714][ T8947] ? __pfx_proc_reg_read+0x10/0x10 [ 244.773748][ T8947] vfs_readv+0x5d8/0x8d0 [ 244.773784][ T8947] ? __pfx_vfs_readv+0x10/0x10 [ 244.773816][ T8947] ? preempt_count_add+0x76/0x150 [ 244.773855][ T8947] ? rcu_is_watching+0x12/0xc0 [ 244.773885][ T8947] ? __fget_files+0x21f/0x3d0 [ 244.773922][ T8947] ? do_readv+0x13e/0x340 [ 244.773952][ T8947] do_readv+0x13e/0x340 [ 244.773983][ T8947] ? __pfx_do_readv+0x10/0x10 [ 244.774015][ T8947] ? rcu_is_watching+0x12/0xc0 [ 244.774043][ T8947] do_syscall_64+0x115/0x840 [ 244.774064][ T8947] ? clear_bhb_loop+0x40/0x90 [ 244.774090][ T8947] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.774113][ T8947] RIP: 0033:0x7f169e19ce59 [ 244.774130][ T8947] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 244.774152][ T8947] RSP: 002b:00007f169ef9b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 244.774173][ T8947] RAX: ffffffffffffffda RBX: 00007f169e416090 RCX: 00007f169e19ce59 [ 244.774187][ T8947] RDX: 0000000100000007 RSI: 00002000000001c0 RDI: 0000000000000003 [ 244.774201][ T8947] RBP: 00007f169ef9b090 R08: 0000000000000000 R09: 0000000000000000 [ 244.774215][ T8947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 244.774228][ T8947] R13: 00007f169e416128 R14: 00007f169e416090 R15: 00007fff347d1b68 [ 244.774250][ T8947] [ 246.115374][ T8917] kexec: Could not allocate control_code_buffer [ 247.307266][ T8967] snd_virmidi snd_virmidi.0: control 61674:5:9:yª:20389 is already present [ 247.685175][ T8983] netlink: 8 bytes leftover after parsing attributes in process `syz.3.668'. [ 247.747990][ T8985] netlink: 8 bytes leftover after parsing attributes in process `syz.0.670'. [ 248.397592][ T8998] FAULT_INJECTION: forcing a failure. [ 248.397592][ T8998] name fail_futex, interval 1, probability 0, space 0, times 0 [ 248.500834][ T8998] CPU: 0 UID: 0 PID: 8998 Comm: syz.1.671 Tainted: G L syzkaller #0 PREEMPT(full) [ 248.500872][ T8998] Tainted: [L]=SOFTLOCKUP [ 248.500880][ T8998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 248.500902][ T8998] Call Trace: [ 248.500909][ T8998] [ 248.500917][ T8998] dump_stack_lvl+0x100/0x190 [ 248.500947][ T8998] should_fail_ex.cold+0x5/0xa [ 248.500972][ T8998] ? finish_task_switch.isra.0+0x2c0/0x1010 [ 248.501000][ T8998] get_futex_key+0x1d2/0x14f0 [ 248.501023][ T8998] ? __pfx_get_futex_key+0x10/0x10 [ 248.501045][ T8998] ? rcu_is_watching+0x12/0xc0 [ 248.501071][ T8998] ? lock_acquire+0x301/0x370 [ 248.501108][ T8998] futex_wake+0xf4/0x5e0 [ 248.501136][ T8998] ? __mutex_lock+0x26d/0x1bd0 [ 248.501160][ T8998] ? __pfx_futex_wake+0x10/0x10 [ 248.501190][ T8998] ? exit_mm_release+0x19/0x30 [ 248.501215][ T8998] ? lock_release+0x24d/0x310 [ 248.501252][ T8998] do_futex+0x2b2/0x440 [ 248.501276][ T8998] ? __pfx_do_futex+0x10/0x10 [ 248.501299][ T8998] ? lock_release+0x24d/0x310 [ 248.501337][ T8998] mm_release+0x24a/0x2f0 [ 248.501360][ T8998] do_exit+0x707/0x2ae0 [ 248.501401][ T8998] ? __pfx_do_exit+0x10/0x10 [ 248.501431][ T8998] ? do_raw_spin_lock+0x128/0x260 [ 248.501455][ T8998] ? get_signal+0x7e0/0x21e0 [ 248.501480][ T8998] do_group_exit+0xd5/0x2a0 [ 248.501512][ T8998] get_signal+0x1ec7/0x21e0 [ 248.501539][ T8998] ? __might_fault+0xc5/0x140 [ 248.501562][ T8998] ? __pfx_get_signal+0x10/0x10 [ 248.501587][ T8998] ? do_futex+0x190/0x440 [ 248.501611][ T8998] arch_do_signal_or_restart+0x91/0x7a0 [ 248.501634][ T8998] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 248.501661][ T8998] ? rcu_is_watching+0x12/0xc0 [ 248.501689][ T8998] exit_to_user_mode_loop+0x139/0x6f0 [ 248.501711][ T8998] ? rcu_is_watching+0x12/0xc0 [ 248.501738][ T8998] do_syscall_64+0x652/0x840 [ 248.501760][ T8998] ? clear_bhb_loop+0x40/0x90 [ 248.501786][ T8998] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.501809][ T8998] RIP: 0033:0x7f24f239ce59 [ 248.501826][ T8998] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 248.501849][ T8998] RSP: 002b:00007f24f32840e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 248.501871][ T8998] RAX: fffffffffffffe00 RBX: 00007f24f2616098 RCX: 00007f24f239ce59 [ 248.501886][ T8998] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f24f2616098 [ 248.501901][ T8998] RBP: 00007f24f2616090 R08: 0000000000000000 R09: 0000000000000000 [ 248.501915][ T8998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 248.501929][ T8998] R13: 00007f24f2616128 R14: 00007ffe7bd030b0 R15: 00007ffe7bd03198 [ 248.501951][ T8998] [ 249.161887][ T9009] snd_virmidi snd_virmidi.0: control 61674:5:9:yª:20389 is already present [ 249.483590][ T9021] FAULT_INJECTION: forcing a failure. [ 249.483590][ T9021] name failslab, interval 1, probability 0, space 0, times 0 [ 249.586203][ T9021] CPU: 0 UID: 0 PID: 9021 Comm: syz.1.679 Tainted: G L syzkaller #0 PREEMPT(full) [ 249.586240][ T9021] Tainted: [L]=SOFTLOCKUP [ 249.586248][ T9021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 249.586262][ T9021] Call Trace: [ 249.586269][ T9021] [ 249.586277][ T9021] dump_stack_lvl+0x100/0x190 [ 249.586307][ T9021] should_fail_ex.cold+0x5/0xa [ 249.586331][ T9021] ? __kmalloc_cache_noprof+0x6b/0x6c0 [ 249.586354][ T9021] should_failslab+0xc2/0x120 [ 249.586384][ T9021] __kmalloc_cache_noprof+0x91/0x6c0 [ 249.586414][ T9021] ? __kasan_kmalloc+0xaa/0xb0 [ 249.586440][ T9021] ? mqueue_init_fs_context+0x4b/0x690 [ 249.586472][ T9021] mqueue_init_fs_context+0x4b/0x690 [ 249.586502][ T9021] alloc_fs_context+0x60c/0xf40 [ 249.586529][ T9021] mq_init_ns+0x16e/0x820 [ 249.586559][ T9021] copy_ipcs+0x3dd/0x7e0 [ 249.586590][ T9021] create_new_namespaces+0x20a/0xac0 [ 249.586620][ T9021] ? security_capable+0x80/0x260 [ 249.586649][ T9021] unshare_nsproxy_namespaces+0xf2/0x220 [ 249.586674][ T9021] ksys_unshare+0x438/0xab0 [ 249.586703][ T9021] ? __pfx_ksys_unshare+0x10/0x10 [ 249.586731][ T9021] ? ksys_write+0x1ac/0x250 [ 249.586770][ T9021] __x64_sys_unshare+0x31/0x40 [ 249.586803][ T9021] do_syscall_64+0x115/0x840 [ 249.586829][ T9021] ? clear_bhb_loop+0x40/0x90 [ 249.586855][ T9021] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 249.586877][ T9021] RIP: 0033:0x7f24f239ce59 [ 249.586895][ T9021] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 249.586918][ T9021] RSP: 002b:00007f24f32a5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 249.586940][ T9021] RAX: ffffffffffffffda RBX: 00007f24f2615fa0 RCX: 00007f24f239ce59 [ 249.586956][ T9021] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000000 [ 249.586969][ T9021] RBP: 00007f24f32a5090 R08: 0000000000000000 R09: 0000000000000000 [ 249.586984][ T9021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 249.586998][ T9021] R13: 00007f24f2616038 R14: 00007f24f2615fa0 R15: 00007ffe7bd03198 [ 249.587020][ T9021] [ 250.316878][ T9029] netlink: 8 bytes leftover after parsing attributes in process `syz.2.681'. [ 250.556688][ T9032] Format for adding new device is "id port_count num_queues" (uint uint uint). [ 251.345058][ T9044] snd_virmidi snd_virmidi.0: control 61674:5:9:yª:20389 is already present [ 251.862121][ T9066] netlink: 12 bytes leftover after parsing attributes in process `syz.0.690'. [ 252.487197][ T9082] netlink: 8 bytes leftover after parsing attributes in process `syz.0.692'. [ 253.071009][ T9099] netlink: 16 bytes leftover after parsing attributes in process `syz.3.694'. [ 253.101105][ T9101] snd_virmidi snd_virmidi.0: control 61674:5:9:yª:20389 is already present [ 253.405222][ T9106] random: crng reseeded on system resumption [ 253.475878][ T9106] hub 1-0:1.0: USB hub found [ 253.501081][ T9106] hub 1-0:1.0: 1 port detected [ 254.263796][ T9127] netlink: 8 bytes leftover after parsing attributes in process `syz.2.702'. [ 254.921323][ T9154] snd_virmidi snd_virmidi.0: control 61674:5:9:yª:20389 is already present [ 254.969663][ T9150] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 255.108172][ T9157] smpboot: CPU 1 is now offline [ 255.243881][ T9166] overlayfs: missing 'lowerdir' [ 255.417917][ T9169] random: crng reseeded on system resumption [ 256.051517][ T1325] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.061379][ T1325] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.217714][ T9180] netlink: 8 bytes leftover after parsing attributes in process `syz.2.715'. [ 256.348905][ T9189] FAULT_INJECTION: forcing a failure. [ 256.348905][ T9189] name failslab, interval 1, probability 0, space 0, times 0 [ 256.401463][ T9189] CPU: 0 UID: 0 PID: 9189 Comm: syz.1.717 Tainted: G L syzkaller #0 PREEMPT(full) [ 256.401502][ T9189] Tainted: [L]=SOFTLOCKUP [ 256.401511][ T9189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 256.401525][ T9189] Call Trace: [ 256.401533][ T9189] [ 256.401542][ T9189] dump_stack_lvl+0x100/0x190 [ 256.401573][ T9189] should_fail_ex.cold+0x5/0xa [ 256.401599][ T9189] ? kmem_cache_alloc_lru_noprof+0x67/0x6a0 [ 256.401629][ T9189] should_failslab+0xc2/0x120 [ 256.401661][ T9189] kmem_cache_alloc_lru_noprof+0x8d/0x6a0 [ 256.401689][ T9189] ? kasan_save_stack+0x30/0x50 [ 256.401717][ T9189] ? kasan_save_track+0x14/0x30 [ 256.401744][ T9189] ? __kasan_slab_alloc+0x89/0x90 [ 256.401774][ T9189] ? __d_alloc+0x35/0xa50 [ 256.401799][ T9189] __d_alloc+0x35/0xa50 [ 256.401822][ T9189] d_alloc_parallel+0x105/0x14b0 [ 256.401854][ T9189] ? fast_dput+0x4bf/0x6d0 [ 256.401881][ T9189] ? rcu_is_watching+0x12/0xc0 [ 256.401909][ T9189] ? lock_acquire+0x301/0x370 [ 256.401947][ T9189] ? __pfx_d_alloc_parallel+0x10/0x10 [ 256.401977][ T9189] ? lock_acquire+0x301/0x370 [ 256.402013][ T9189] ? __pfx___might_resched+0x10/0x10 [ 256.402052][ T9189] ? down_read+0x13b/0x4c0 [ 256.402080][ T9189] ? __pfx_down_read+0x10/0x10 [ 256.402108][ T9189] __lookup_slow+0x98/0x320 [ 256.402138][ T9189] lookup_slow+0x50/0x70 [ 256.402165][ T9189] link_path_walk+0x1377/0x1cc0 [ 256.402203][ T9189] path_openat+0x1c9/0x4280 [ 256.402223][ T9189] ? __kasan_slab_alloc+0x89/0x90 [ 256.402252][ T9189] ? kmem_cache_alloc_noprof+0x26b/0x6a0 [ 256.402278][ T9189] ? do_getname+0x35/0x390 [ 256.402304][ T9189] ? __x64_sys_openat+0x12d/0x210 [ 256.402338][ T9189] ? __pfx_path_openat+0x10/0x10 [ 256.402363][ T9189] do_file_open+0x20e/0x430 [ 256.402384][ T9189] ? __pfx_do_file_open+0x10/0x10 [ 256.402426][ T9189] ? alloc_fd+0x471/0x7a0 [ 256.402463][ T9189] ? do_getname+0x191/0x390 [ 256.402492][ T9189] do_sys_openat2+0x10f/0x1e0 [ 256.402521][ T9189] ? __pfx_do_sys_openat2+0x10/0x10 [ 256.402552][ T9189] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 256.402581][ T9189] __x64_sys_openat+0x12d/0x210 [ 256.402609][ T9189] ? __pfx___x64_sys_openat+0x10/0x10 [ 256.402642][ T9189] ? rcu_is_watching+0x12/0xc0 [ 256.402670][ T9189] do_syscall_64+0x115/0x840 [ 256.402692][ T9189] ? clear_bhb_loop+0x40/0x90 [ 256.402719][ T9189] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 256.402743][ T9189] RIP: 0033:0x7f24f239ce59 [ 256.402761][ T9189] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 256.402785][ T9189] RSP: 002b:00007f24f32a5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 256.402808][ T9189] RAX: ffffffffffffffda RBX: 00007f24f2615fa0 RCX: 00007f24f239ce59 [ 256.402824][ T9189] RDX: 0000000000040000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 256.402839][ T9189] RBP: 00007f24f2432e6f R08: 0000000000000000 R09: 0000000000000000 [ 256.402853][ T9189] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 256.402868][ T9189] R13: 00007f24f2616038 R14: 00007f24f2615fa0 R15: 00007ffe7bd03198 [ 256.402891][ T9189] [ 257.725781][ T9200] sg_write: data in/out 124/2 bytes for SCSI command 0x61-- guessing data in; [ 257.725781][ T9200] program syz.3.720 not setting count and/or reply_len properly [ 257.975060][ T9200] sg_write: data in/out 124/2 bytes for SCSI command 0x61-- guessing data in; [ 257.975060][ T9200] program syz.3.720 not setting count and/or reply_len properly [ 258.339833][ T9200] sg_write: data in/out 124/2 bytes for SCSI command 0x61-- guessing data in; [ 258.339833][ T9200] program syz.3.720 not setting count and/or reply_len properly [ 258.682402][ T9223] netlink: 504 bytes leftover after parsing attributes in process `syz.0.725'. [ 259.502643][ T50] Bluetooth: hci3: unexpected event 0x04 length: 43 > 10 [ 259.502705][ T50] Bluetooth: hci3: connection err: -111 [ 259.886271][ T9241] Process accounting resumed [ 260.979352][ T9282] snd_virmidi snd_virmidi.0: control 61674:5:9:yª:20389 is already present [ 262.868885][ T9315] overlayfs: missing 'lowerdir' [ 263.657524][ T9340] FAULT_INJECTION: forcing a failure. [ 263.657524][ T9340] name failslab, interval 1, probability 0, space 0, times 0 [ 263.734463][ T9340] CPU: 0 UID: 0 PID: 9340 Comm: syz.2.754 Tainted: G L syzkaller #0 PREEMPT(full) [ 263.734501][ T9340] Tainted: [L]=SOFTLOCKUP [ 263.734509][ T9340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 263.734523][ T9340] Call Trace: [ 263.734530][ T9340] [ 263.734538][ T9340] dump_stack_lvl+0x100/0x190 [ 263.734569][ T9340] should_fail_ex.cold+0x5/0xa [ 263.734593][ T9340] ? __kmalloc_cache_noprof+0x6b/0x6c0 [ 263.734615][ T9340] should_failslab+0xc2/0x120 [ 263.734646][ T9340] __kmalloc_cache_noprof+0x91/0x6c0 [ 263.734667][ T9340] ? rcu_is_watching+0x12/0xc0 [ 263.734694][ T9340] ? sget_fc+0x1c3/0x1d80 [ 263.734727][ T9340] sget_fc+0x1c3/0x1d80 [ 263.734761][ T9340] ? __pfx_set_anon_super_fc+0x10/0x10 [ 263.734791][ T9340] ? __pfx_sget_fc+0x10/0x10 [ 263.734821][ T9340] ? refcount_dec_not_one+0x136/0x1c0 [ 263.734844][ T9340] ? __pfx_refcount_dec_not_one+0x10/0x10 [ 263.734867][ T9340] ? __kmalloc_cache_noprof+0x2e5/0x6c0 [ 263.734887][ T9340] ? __kasan_kmalloc+0xaa/0xb0 [ 263.734915][ T9340] ? __pfx_mqueue_fill_super+0x10/0x10 [ 263.734941][ T9340] get_tree_nodev+0x28/0x190 [ 263.734974][ T9340] mqueue_get_tree+0xf1/0x130 [ 263.734999][ T9340] vfs_get_tree+0x92/0x320 [ 263.735027][ T9340] fc_mount_longterm+0x1a/0x270 [ 263.735059][ T9340] mq_init_ns+0x482/0x820 [ 263.735089][ T9340] copy_ipcs+0x3dd/0x7e0 [ 263.735120][ T9340] create_new_namespaces+0x20a/0xac0 [ 263.735144][ T9340] ? security_capable+0x80/0x260 [ 263.735172][ T9340] unshare_nsproxy_namespaces+0xf2/0x220 [ 263.735198][ T9340] ksys_unshare+0x438/0xab0 [ 263.735227][ T9340] ? __pfx_ksys_unshare+0x10/0x10 [ 263.735255][ T9340] ? ksys_write+0x1ac/0x250 [ 263.735294][ T9340] __x64_sys_unshare+0x31/0x40 [ 263.735322][ T9340] do_syscall_64+0x115/0x840 [ 263.735344][ T9340] ? clear_bhb_loop+0x40/0x90 [ 263.735412][ T9340] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 263.735435][ T9340] RIP: 0033:0x7f169e19ce59 [ 263.735452][ T9340] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 263.735475][ T9340] RSP: 002b:00007f169efbc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 263.735498][ T9340] RAX: ffffffffffffffda RBX: 00007f169e415fa0 RCX: 00007f169e19ce59 [ 263.735513][ T9340] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000000 [ 263.735552][ T9340] RBP: 00007f169efbc090 R08: 0000000000000000 R09: 0000000000000000 [ 263.735566][ T9340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 263.735580][ T9340] R13: 00007f169e416038 R14: 00007f169e415fa0 R15: 00007fff347d1b68 [ 263.735602][ T9340] [ 265.012073][ T9354] FAULT_INJECTION: forcing a failure. [ 265.012073][ T9354] name failslab, interval 1, probability 0, space 0, times 0 [ 265.194635][ T9354] CPU: 0 UID: 0 PID: 9354 Comm: syz.1.753 Tainted: G L syzkaller #0 PREEMPT(full) [ 265.194674][ T9354] Tainted: [L]=SOFTLOCKUP [ 265.194682][ T9354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 265.194697][ T9354] Call Trace: [ 265.194704][ T9354] [ 265.194712][ T9354] dump_stack_lvl+0x100/0x190 [ 265.194744][ T9354] should_fail_ex.cold+0x5/0xa [ 265.194769][ T9354] ? kmem_cache_alloc_noprof+0x6b/0x6a0 [ 265.194798][ T9354] should_failslab+0xc2/0x120 [ 265.194830][ T9354] kmem_cache_alloc_noprof+0x91/0x6a0 [ 265.194858][ T9354] ? rcu_is_watching+0x12/0xc0 [ 265.194887][ T9354] ? alloc_empty_file+0x5b/0x1c0 [ 265.194916][ T9354] alloc_empty_file+0x5b/0x1c0 [ 265.194944][ T9354] alloc_file_pseudo+0x183/0x290 [ 265.194972][ T9354] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 265.195001][ T9354] ? alloc_fd+0x471/0x7a0 [ 265.195044][ T9354] sock_alloc_file+0x50/0x210 [ 265.195079][ T9354] __sys_socket+0x1c0/0x260 [ 265.195103][ T9354] ? __pfx___sys_socket+0x10/0x10 [ 265.195133][ T9354] __x64_sys_socket+0x72/0xb0 [ 265.195157][ T9354] do_syscall_64+0x115/0x840 [ 265.195181][ T9354] ? clear_bhb_loop+0x40/0x90 [ 265.195208][ T9354] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 265.195231][ T9354] RIP: 0033:0x7f24f239e6c7 [ 265.195249][ T9354] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 265.195273][ T9354] RSP: 002b:00007f24f321ff98 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 265.195303][ T9354] RAX: ffffffffffffffda RBX: 00007f24f2616360 RCX: 00007f24f239e6c7 [ 265.195319][ T9354] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 265.195333][ T9354] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 265.195348][ T9354] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000000 [ 265.195362][ T9354] R13: 00007f24f26163f8 R14: 00007f24f2616360 R15: 00007ffe7bd03198 [ 265.195385][ T9354] [ 265.412154][ T9360] overlayfs: missing 'lowerdir' [ 265.942675][ T9369] netlink: 8 bytes leftover after parsing attributes in process `syz.3.759'. [ 266.164158][ T9376] netlink: 8 bytes leftover after parsing attributes in process `syz.2.761'. [ 266.323556][ T9378] netlink: 4 bytes leftover after parsing attributes in process `syz.3.762'. [ 267.481122][ T9405] overlayfs: missing 'lowerdir' [ 267.667682][ T50] Bluetooth: hci0: unexpected event 0x04 length: 43 > 10 [ 267.667729][ T50] Bluetooth: hci0: connection err: -111 [ 267.996084][ T9419] netlink: 8 bytes leftover after parsing attributes in process `syz.2.772'. [ 268.259508][ T9425] netlink: 342 bytes leftover after parsing attributes in process `syz.3.773'. [ 268.328310][ T9421] FAULT_INJECTION: forcing a failure. [ 268.328310][ T9421] name failslab, interval 1, probability 0, space 0, times 0 [ 268.404027][ T9421] CPU: 0 UID: 0 PID: 9421 Comm: syz.3.773 Tainted: G L syzkaller #0 PREEMPT(full) [ 268.404068][ T9421] Tainted: [L]=SOFTLOCKUP [ 268.404077][ T9421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 268.404091][ T9421] Call Trace: [ 268.404099][ T9421] [ 268.404108][ T9421] dump_stack_lvl+0x100/0x190 [ 268.404140][ T9421] should_fail_ex.cold+0x5/0xa [ 268.404164][ T9421] ? __kmalloc_noprof+0xd6/0x820 [ 268.404194][ T9421] should_failslab+0xc2/0x120 [ 268.404233][ T9421] __kmalloc_noprof+0xfc/0x820 [ 268.404261][ T9421] ? lsm_blob_alloc+0x68/0x90 [ 268.404289][ T9421] lsm_blob_alloc+0x68/0x90 [ 268.404316][ T9421] security_task_alloc+0x2a/0x260 [ 268.404338][ T9421] copy_process+0x2b94/0x7ff0 [ 268.404375][ T9421] ? __pfx_copy_process+0x10/0x10 [ 268.404402][ T9421] ? futex_wake+0x4ea/0x5e0 [ 268.404432][ T9421] ? rcu_is_watching+0x12/0xc0 [ 268.404464][ T9421] kernel_clone+0x176/0x9d0 [ 268.404498][ T9421] ? __pfx_kernel_clone+0x10/0x10 [ 268.404534][ T9421] __do_sys_clone+0xd9/0x120 [ 268.404567][ T9421] ? __pfx___do_sys_clone+0x10/0x10 [ 268.404600][ T9421] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 268.404635][ T9421] ? rcu_is_watching+0x12/0xc0 [ 268.404664][ T9421] do_syscall_64+0x115/0x840 [ 268.404686][ T9421] ? clear_bhb_loop+0x40/0x90 [ 268.404716][ T9421] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 268.404742][ T9421] RIP: 0033:0x7fdbcd19ce59 [ 268.404760][ T9421] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 268.404783][ T9421] RSP: 002b:00007fdbce0e2fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 268.404806][ T9421] RAX: ffffffffffffffda RBX: 00007fdbcd415fa0 RCX: 00007fdbcd19ce59 [ 268.404822][ T9421] RDX: 0000200000000180 RSI: 0000200000000080 RDI: 0000000000008000 [ 268.404837][ T9421] RBP: 00007fdbcd232e6f R08: 0000000000000000 R09: 0000000000000000 [ 268.404852][ T9421] R10: 00002000000001c0 R11: 0000000000000206 R12: 0000000000000000 [ 268.404866][ T9421] R13: 00007fdbcd416038 R14: 00007fdbcd415fa0 R15: 00007ffed5802d68 [ 268.404889][ T9421] [ 269.182414][ T9443] overlayfs: missing 'lowerdir' [ 269.369128][ T9454] snd_virmidi snd_virmidi.0: control 61674:5:9:yª:20389 is already present [ 269.383510][ T9453] FAULT_INJECTION: forcing a failure. [ 269.383510][ T9453] name failslab, interval 1, probability 0, space 0, times 0 [ 269.446862][ T9453] CPU: 0 UID: 0 PID: 9453 Comm: syz.1.782 Tainted: G L syzkaller #0 PREEMPT(full) [ 269.446899][ T9453] Tainted: [L]=SOFTLOCKUP [ 269.446907][ T9453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 269.446921][ T9453] Call Trace: [ 269.446928][ T9453] [ 269.446936][ T9453] dump_stack_lvl+0x100/0x190 [ 269.446965][ T9453] should_fail_ex.cold+0x5/0xa [ 269.446990][ T9453] ? kmem_cache_alloc_noprof+0x6b/0x6a0 [ 269.447026][ T9453] should_failslab+0xc2/0x120 [ 269.447057][ T9453] kmem_cache_alloc_noprof+0x91/0x6a0 [ 269.447083][ T9453] ? __pfx_acct_collect+0x10/0x10 [ 269.447113][ T9453] ? taskstats_exit+0x6d3/0xca0 [ 269.447147][ T9453] taskstats_exit+0x6d3/0xca0 [ 269.447178][ T9453] ? __pfx_acct_update_integrals+0x10/0x10 [ 269.447211][ T9453] ? rcu_is_watching+0x12/0xc0 [ 269.447238][ T9453] ? __pfx_taskstats_exit+0x10/0x10 [ 269.447270][ T9453] ? preempt_count_add+0x76/0x150 [ 269.447308][ T9453] do_exit+0x65c/0x2ae0 [ 269.447340][ T9453] ? __pfx_do_exit+0x10/0x10 [ 269.447370][ T9453] ? do_raw_spin_lock+0x128/0x260 [ 269.447394][ T9453] ? get_signal+0x7e0/0x21e0 [ 269.447420][ T9453] do_group_exit+0xd5/0x2a0 [ 269.447452][ T9453] get_signal+0x1ec7/0x21e0 [ 269.447481][ T9453] ? __pfx_get_signal+0x10/0x10 [ 269.447507][ T9453] ? do_futex+0x190/0x440 [ 269.447531][ T9453] arch_do_signal_or_restart+0x91/0x7a0 [ 269.447557][ T9453] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 269.447585][ T9453] ? rcu_is_watching+0x12/0xc0 [ 269.447613][ T9453] exit_to_user_mode_loop+0x139/0x6f0 [ 269.447634][ T9453] ? rcu_is_watching+0x12/0xc0 [ 269.447668][ T9453] do_syscall_64+0x652/0x840 [ 269.447691][ T9453] ? clear_bhb_loop+0x40/0x90 [ 269.447717][ T9453] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 269.447739][ T9453] RIP: 0033:0x7f24f239ce59 [ 269.447757][ T9453] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 269.447779][ T9453] RSP: 002b:00007f24f32a50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 269.447802][ T9453] RAX: fffffffffffffe00 RBX: 00007f24f2615fa8 RCX: 00007f24f239ce59 [ 269.447818][ T9453] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f24f2615fa8 [ 269.447832][ T9453] RBP: 00007f24f2615fa0 R08: 0000000000000000 R09: 0000000000000000 [ 269.447847][ T9453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 269.447860][ T9453] R13: 00007f24f2616038 R14: 00007ffe7bd030b0 R15: 00007ffe7bd03198 [ 269.447882][ T9453] [ 270.870693][ T50] Bluetooth: hci3: unexpected event 0x04 length: 43 > 10 [ 270.870731][ T50] Bluetooth: hci3: connection err: -111 [ 272.372393][ T9503] netlink: 20 bytes leftover after parsing attributes in process `syz.1.795'. [ 272.754349][ T9503] netlink: 8 bytes leftover after parsing attributes in process `syz.1.795'. [ 272.786851][ T9512] netlink: 8 bytes leftover after parsing attributes in process `syz.2.796'. [ 272.802601][ T50] Bluetooth: hci2: unexpected event 0x18 length: 726 > 23 [ 273.417734][ T50] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 273.444077][ T9505] kexec: Could not allocate control_code_buffer [ 274.270548][ T9537] overlayfs: missing 'lowerdir' [ 275.491027][ T5626] Bluetooth: hci0: command 0x0c1a tx timeout [ 275.852195][ T9573] FAULT_INJECTION: forcing a failure. [ 275.852195][ T9573] name failslab, interval 1, probability 0, space 0, times 0 [ 275.919113][ T9573] CPU: 0 UID: 0 PID: 9573 Comm: syz.3.810 Tainted: G L syzkaller #0 PREEMPT(full) [ 275.919159][ T9573] Tainted: [L]=SOFTLOCKUP [ 275.919167][ T9573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 275.919182][ T9573] Call Trace: [ 275.919189][ T9573] [ 275.919198][ T9573] dump_stack_lvl+0x100/0x190 [ 275.919231][ T9573] should_fail_ex.cold+0x5/0xa [ 275.919256][ T9573] ? kmem_cache_alloc_lru_noprof+0x67/0x6a0 [ 275.919288][ T9573] should_failslab+0xc2/0x120 [ 275.919319][ T9573] kmem_cache_alloc_lru_noprof+0x8d/0x6a0 [ 275.919349][ T9573] ? __d_alloc+0x35/0xa50 [ 275.919374][ T9573] __d_alloc+0x35/0xa50 [ 275.919398][ T9573] d_alloc_parallel+0x105/0x14b0 [ 275.919430][ T9573] ? lockref_get_not_dead+0x6a/0x80 [ 275.919452][ T9573] ? lock_release+0x24d/0x310 [ 275.919492][ T9573] ? rcu_is_watching+0x12/0xc0 [ 275.919520][ T9573] ? __pfx_d_alloc_parallel+0x10/0x10 [ 275.919550][ T9573] ? rcu_is_watching+0x12/0xc0 [ 275.919577][ T9573] ? __d_lookup+0x25c/0x4a0 [ 275.919606][ T9573] ? lock_release+0x24d/0x310 [ 275.919643][ T9573] ? __d_lookup+0x266/0x4a0 [ 275.919680][ T9573] path_openat+0x271c/0x4280 [ 275.919707][ T9573] ? __pfx_path_openat+0x10/0x10 [ 275.919732][ T9573] do_file_open+0x20e/0x430 [ 275.919754][ T9573] ? __pfx_do_file_open+0x10/0x10 [ 275.919785][ T9573] ? alloc_fd+0x471/0x7a0 [ 275.919823][ T9573] ? do_getname+0x191/0x390 [ 275.919851][ T9573] do_sys_openat2+0x10f/0x1e0 [ 275.919880][ T9573] ? __pfx_do_sys_openat2+0x10/0x10 [ 275.919909][ T9573] ? lock_release+0x24d/0x310 [ 275.919949][ T9573] __x64_sys_openat+0x12d/0x210 [ 275.919979][ T9573] ? __pfx___x64_sys_openat+0x10/0x10 [ 275.920012][ T9573] ? rcu_is_watching+0x12/0xc0 [ 275.920040][ T9573] do_syscall_64+0x115/0x840 [ 275.920063][ T9573] ? clear_bhb_loop+0x40/0x90 [ 275.920090][ T9573] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.920115][ T9573] RIP: 0033:0x7fdbcd19ce59 [ 275.920133][ T9573] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 275.920162][ T9573] RSP: 002b:00007fdbce0e3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 275.920186][ T9573] RAX: ffffffffffffffda RBX: 00007fdbcd415fa0 RCX: 00007fdbcd19ce59 [ 275.920202][ T9573] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffffffffffff9c [ 275.920217][ T9573] RBP: 00007fdbcd232e6f R08: 0000000000000000 R09: 0000000000000000 [ 275.920232][ T9573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 275.920246][ T9573] R13: 00007fdbcd416038 R14: 00007fdbcd415fa0 R15: 00007ffed5802d68 [ 275.920269][ T9573] [ 277.006516][ T9588] netlink: 20 bytes leftover after parsing attributes in process `syz.2.812'. [ 277.201768][ T9588] hsr_slave_0: left promiscuous mode [ 277.267900][ T9588] hsr_slave_1: left promiscuous mode [ 277.575398][ T50] Bluetooth: hci0: command 0x0c1a tx timeout [ 279.651278][ T5626] Bluetooth: hci0: command 0x0c1a tx timeout [ 280.119256][ T9631] overlayfs: missing 'lowerdir' [ 280.507742][ T9634] netlink: 8 bytes leftover after parsing attributes in process `syz.1.823'. [ 280.732601][ T9637] FAULT_INJECTION: forcing a failure. [ 280.732601][ T9637] name fail_futex, interval 1, probability 0, space 0, times 0 [ 280.843341][ T9637] CPU: 0 UID: 0 PID: 9637 Comm: syz.0.824 Tainted: G L syzkaller #0 PREEMPT(full) [ 280.843380][ T9637] Tainted: [L]=SOFTLOCKUP [ 280.843389][ T9637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 280.843405][ T9637] Call Trace: [ 280.843413][ T9637] [ 280.843421][ T9637] dump_stack_lvl+0x100/0x190 [ 280.843453][ T9637] should_fail_ex.cold+0x5/0xa [ 280.843478][ T9637] ? rcu_is_watching+0x12/0xc0 [ 280.843507][ T9637] get_futex_key+0x1d2/0x14f0 [ 280.843532][ T9637] ? __pfx_get_futex_key+0x10/0x10 [ 280.843553][ T9637] ? __pfx_futex_hash+0x10/0x10 [ 280.843577][ T9637] futex_wake+0xf4/0x5e0 [ 280.843605][ T9637] ? futex_wait+0x11e/0x370 [ 280.843637][ T9637] ? __pfx_futex_wake+0x10/0x10 [ 280.843666][ T9637] ? rcu_is_watching+0x12/0xc0 [ 280.843704][ T9637] do_futex+0x2b2/0x440 [ 280.843729][ T9637] ? __pfx_do_futex+0x10/0x10 [ 280.843754][ T9637] ? __do_sys_statmount+0xb65/0x24d0 [ 280.843790][ T9637] ? lock_release+0x24d/0x310 [ 280.843828][ T9637] __x64_sys_futex+0x34f/0x4d0 [ 280.843854][ T9637] ? __sys_socket+0xac/0x260 [ 280.843878][ T9637] ? __pfx___x64_sys_futex+0x10/0x10 [ 280.843907][ T9637] ? rcu_is_watching+0x12/0xc0 [ 280.843936][ T9637] do_syscall_64+0x115/0x840 [ 280.843958][ T9637] ? clear_bhb_loop+0x40/0x90 [ 280.843985][ T9637] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 280.844009][ T9637] RIP: 0033:0x7fb403f9ce59 [ 280.844029][ T9637] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 280.844052][ T9637] RSP: 002b:00007fb404e380e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 280.844076][ T9637] RAX: ffffffffffffffda RBX: 00007fb404215fa8 RCX: 00007fb403f9ce59 [ 280.844092][ T9637] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb404215fac [ 280.844107][ T9637] RBP: 00007fb404215fa0 R08: 0000000000000001 R09: 0000000000000000 [ 280.844122][ T9637] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 280.844136][ T9637] R13: 00007fb404216038 R14: 00007ffd9f14f430 R15: 00007ffd9f14f518 [ 280.844159][ T9637] [ 281.431524][ T9637] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR [ 281.434310][ T9641] netlink: 4 bytes leftover after parsing attributes in process `syz.1.825'. [ 283.021434][ T9676] overlayfs: missing 'lowerdir' [ 285.045174][ T9704] Process accounting resumed [ 285.360161][ T9732] snd_virmidi snd_virmidi.0: control 61674:5:9:yª:20389 is already present [ 285.764540][ T9735] FAULT_INJECTION: forcing a failure. [ 285.764540][ T9735] name failslab, interval 1, probability 0, space 0, times 0 [ 285.815974][ T9735] CPU: 0 UID: 0 PID: 9735 Comm: syz.1.845 Tainted: G L syzkaller #0 PREEMPT(full) [ 285.816012][ T9735] Tainted: [L]=SOFTLOCKUP [ 285.816020][ T9735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 285.816035][ T9735] Call Trace: [ 285.816042][ T9735] [ 285.816050][ T9735] dump_stack_lvl+0x100/0x190 [ 285.816081][ T9735] should_fail_ex.cold+0x5/0xa [ 285.816107][ T9735] ? kmem_cache_alloc_lru_noprof+0x67/0x6a0 [ 285.816140][ T9735] should_failslab+0xc2/0x120 [ 285.816171][ T9735] kmem_cache_alloc_lru_noprof+0x8d/0x6a0 [ 285.816200][ T9735] ? __d_alloc+0x35/0xa50 [ 285.816226][ T9735] __d_alloc+0x35/0xa50 [ 285.816249][ T9735] d_alloc_pseudo+0x1c/0xc0 [ 285.816280][ T9735] alloc_file_pseudo+0x118/0x290 [ 285.816309][ T9735] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 285.816337][ T9735] ? alloc_fd+0x471/0x7a0 [ 285.816376][ T9735] sock_alloc_file+0x50/0x210 [ 285.816409][ T9735] __sys_socket+0x1c0/0x260 [ 285.816434][ T9735] ? __pfx___sys_socket+0x10/0x10 [ 285.816463][ T9735] __x64_sys_socket+0x72/0xb0 [ 285.816487][ T9735] do_syscall_64+0x115/0x840 [ 285.816510][ T9735] ? clear_bhb_loop+0x40/0x90 [ 285.816540][ T9735] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 285.816565][ T9735] RIP: 0033:0x7f24f239ce59 [ 285.816583][ T9735] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 285.816607][ T9735] RSP: 002b:00007f24f32a5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 285.816629][ T9735] RAX: ffffffffffffffda RBX: 00007f24f2615fa0 RCX: 00007f24f239ce59 [ 285.816646][ T9735] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000028 [ 285.816660][ T9735] RBP: 00007f24f2432e6f R08: 0000000000000000 R09: 0000000000000000 [ 285.816674][ T9735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 285.816688][ T9735] R13: 00007f24f2616038 R14: 00007f24f2615fa0 R15: 00007ffe7bd03198 [ 285.816711][ T9735] [ 287.478787][ T9775] snd_virmidi snd_virmidi.0: control 61674:5:9:yª:20389 is already present [ 288.564615][ T9793] snd_virmidi snd_virmidi.0: control 61674:5:9:yª:20389 is already present [ 290.271825][ T9830] overlayfs: missing 'lowerdir' [ 290.287455][ T5626] Bluetooth: hci2: unexpected event for opcode 0x7c89 [ 292.290392][ T9892] FAULT_INJECTION: forcing a failure. [ 292.290392][ T9892] name fail_futex, interval 1, probability 0, space 0, times 0 [ 292.348476][ T9892] CPU: 0 UID: 0 PID: 9892 Comm: syz.3.883 Tainted: G L syzkaller #0 PREEMPT(full) [ 292.348521][ T9892] Tainted: [L]=SOFTLOCKUP [ 292.348529][ T9892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 292.348544][ T9892] Call Trace: [ 292.348551][ T9892] [ 292.348559][ T9892] dump_stack_lvl+0x100/0x190 [ 292.348589][ T9892] should_fail_ex.cold+0x5/0xa [ 292.348616][ T9892] get_futex_key+0x295/0x14f0 [ 292.348639][ T9892] ? __pfx_get_futex_key+0x10/0x10 [ 292.348661][ T9892] ? rcu_is_watching+0x12/0xc0 [ 292.348687][ T9892] ? lock_acquire+0x301/0x370 [ 292.348724][ T9892] futex_wake+0xf4/0x5e0 [ 292.348752][ T9892] ? __mutex_lock+0x26d/0x1bd0 [ 292.348807][ T9892] ? __pfx_futex_wake+0x10/0x10 [ 292.348837][ T9892] ? exit_mm_release+0x19/0x30 [ 292.348874][ T9892] ? lock_release+0x24d/0x310 [ 292.348913][ T9892] do_futex+0x2b2/0x440 [ 292.348937][ T9892] ? __pfx_do_futex+0x10/0x10 [ 292.348960][ T9892] ? lock_release+0x24d/0x310 [ 292.348997][ T9892] mm_release+0x24a/0x2f0 [ 292.349019][ T9892] do_exit+0x707/0x2ae0 [ 292.349051][ T9892] ? __pfx_do_exit+0x10/0x10 [ 292.349081][ T9892] ? do_raw_spin_lock+0x128/0x260 [ 292.349104][ T9892] ? get_signal+0x7e0/0x21e0 [ 292.349130][ T9892] do_group_exit+0xd5/0x2a0 [ 292.349161][ T9892] get_signal+0x1ec7/0x21e0 [ 292.349190][ T9892] ? __pfx_get_signal+0x10/0x10 [ 292.349215][ T9892] ? do_futex+0x190/0x440 [ 292.349239][ T9892] arch_do_signal_or_restart+0x91/0x7a0 [ 292.349263][ T9892] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 292.349288][ T9892] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 292.349320][ T9892] ? rcu_is_watching+0x12/0xc0 [ 292.349347][ T9892] exit_to_user_mode_loop+0x139/0x6f0 [ 292.349369][ T9892] ? rcu_is_watching+0x12/0xc0 [ 292.349395][ T9892] do_syscall_64+0x652/0x840 [ 292.349417][ T9892] ? clear_bhb_loop+0x40/0x90 [ 292.349442][ T9892] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 292.349465][ T9892] RIP: 0033:0x7fdbcd19ce59 [ 292.349483][ T9892] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 292.349511][ T9892] RSP: 002b:00007fdbce0e30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 292.349534][ T9892] RAX: fffffffffffffe00 RBX: 00007fdbcd415fa8 RCX: 00007fdbcd19ce59 [ 292.349549][ T9892] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fdbcd415fa8 [ 292.349563][ T9892] RBP: 00007fdbcd415fa0 R08: 0000000000000000 R09: 0000000000000000 [ 292.349577][ T9892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 292.349591][ T9892] R13: 00007fdbcd416038 R14: 00007ffed5802c80 R15: 00007ffed5802d68 [ 292.349613][ T9892] [ 293.381235][ T9907] snd_virmidi snd_virmidi.0: control 61674:5:9:yª:20389 is already present [ 293.565766][ T5626] Bluetooth: hci3: unexpected event 0x04 length: 43 > 10 [ 293.565802][ T5626] Bluetooth: hci3: connection err: -111 [ 294.996496][ T5626] Bluetooth: hci2: unexpected event 0x04 length: 43 > 10 [ 294.996545][ T5626] Bluetooth: hci2: connection err: -111 [ 295.028098][ T9951] FAULT_INJECTION: forcing a failure. [ 295.028098][ T9951] name failslab, interval 1, probability 0, space 0, times 0 [ 295.075471][ T9951] CPU: 0 UID: 0 PID: 9951 Comm: syz.2.898 Tainted: G L syzkaller #0 PREEMPT(full) [ 295.075510][ T9951] Tainted: [L]=SOFTLOCKUP [ 295.075518][ T9951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 295.075533][ T9951] Call Trace: [ 295.075540][ T9951] [ 295.075549][ T9951] dump_stack_lvl+0x100/0x190 [ 295.075580][ T9951] should_fail_ex.cold+0x5/0xa [ 295.075606][ T9951] ? kmem_cache_alloc_noprof+0x6b/0x6a0 [ 295.075635][ T9951] should_failslab+0xc2/0x120 [ 295.075667][ T9951] kmem_cache_alloc_noprof+0x91/0x6a0 [ 295.075695][ T9951] ? trace_kmalloc+0xeb/0x110 [ 295.075726][ T9951] ? dup_fd+0x4d/0xd10 [ 295.075765][ T9951] dup_fd+0x4d/0xd10 [ 295.075802][ T9951] ? apparmor_task_alloc+0x2c1/0x3b0 [ 295.075834][ T9951] copy_process+0x2c94/0x7ff0 [ 295.075862][ T9951] ? try_to_wake_up+0x70a/0x1c90 [ 295.075895][ T9951] ? __pfx_copy_process+0x10/0x10 [ 295.075923][ T9951] ? futex_wake+0x4ea/0x5e0 [ 295.075951][ T9951] ? rcu_is_watching+0x12/0xc0 [ 295.075980][ T9951] ? futex_private_hash_put+0x115/0x1c0 [ 295.076005][ T9951] kernel_clone+0x176/0x9d0 [ 295.076032][ T9951] ? __pfx_futex_wake+0x10/0x10 [ 295.076061][ T9951] ? __pfx_kernel_clone+0x10/0x10 [ 295.076097][ T9951] __do_sys_clone+0xd9/0x120 [ 295.076124][ T9951] ? __pfx___do_sys_clone+0x10/0x10 [ 295.076152][ T9951] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 295.076186][ T9951] ? rcu_is_watching+0x12/0xc0 [ 295.076216][ T9951] do_syscall_64+0x115/0x840 [ 295.076238][ T9951] ? clear_bhb_loop+0x40/0x90 [ 295.076265][ T9951] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 295.076289][ T9951] RIP: 0033:0x7f169e19ce59 [ 295.076317][ T9951] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 295.076341][ T9951] RSP: 002b:00007f169efbbfd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 295.076364][ T9951] RAX: ffffffffffffffda RBX: 00007f169e415fa0 RCX: 00007f169e19ce59 [ 295.076383][ T9951] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000008000 [ 295.076398][ T9951] RBP: 00007f169e232e6f R08: 0000000000000000 R09: 0000000000000000 [ 295.076413][ T9951] R10: 00002000000001c0 R11: 0000000000000206 R12: 0000000000000000 [ 295.076427][ T9951] R13: 00007f169e416038 R14: 00007f169e415fa0 R15: 00007fff347d1b68 [ 295.076450][ T9951] [ 297.171666][ T9977] FAULT_INJECTION: forcing a failure. [ 297.171666][ T9977] name failslab, interval 1, probability 0, space 0, times 0 [ 297.231254][ T9977] CPU: 0 UID: 0 PID: 9977 Comm: syz.1.904 Tainted: G L syzkaller #0 PREEMPT(full) [ 297.231291][ T9977] Tainted: [L]=SOFTLOCKUP [ 297.231299][ T9977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 297.231313][ T9977] Call Trace: [ 297.231320][ T9977] [ 297.231328][ T9977] dump_stack_lvl+0x100/0x190 [ 297.231358][ T9977] should_fail_ex.cold+0x5/0xa [ 297.231383][ T9977] ? kmem_cache_alloc_lru_noprof+0x67/0x6a0 [ 297.231412][ T9977] should_failslab+0xc2/0x120 [ 297.231443][ T9977] kmem_cache_alloc_lru_noprof+0x8d/0x6a0 [ 297.231471][ T9977] ? shmem_alloc_inode+0x25/0x50 [ 297.231502][ T9977] ? __pfx_shmem_alloc_inode+0x10/0x10 [ 297.231532][ T9977] shmem_alloc_inode+0x25/0x50 [ 297.231560][ T9977] alloc_inode+0x68/0x250 [ 297.231588][ T9977] new_inode+0x22/0x1c0 [ 297.231615][ T9977] shmem_get_inode+0x1e3/0xf70 [ 297.231648][ T9977] ? __pfx_shmem_get_inode+0x10/0x10 [ 297.231685][ T9977] __shmem_file_setup+0x382/0x460 [ 297.231719][ T9977] ? __pfx___shmem_file_setup+0x10/0x10 [ 297.231753][ T9977] ? vm_area_alloc+0x1f/0x160 [ 297.231774][ T9977] shmem_zero_setup+0x96/0x1b0 [ 297.231800][ T9977] __mmap_region+0x24ef/0x2db0 [ 297.231824][ T9977] ? __pfx___mmap_region+0x10/0x10 [ 297.231845][ T9977] ? __pfx___might_resched+0x10/0x10 [ 297.231883][ T9977] ? process_measurement+0x4c8/0x2350 [ 297.231913][ T9977] ? lock_release+0x24d/0x310 [ 297.231967][ T9977] ? down_write+0x146/0x1f0 [ 297.232004][ T9977] ? do_raw_spin_lock+0x128/0x260 [ 297.232028][ T9977] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 297.232053][ T9977] ? rcu_is_watching+0x12/0xc0 [ 297.232080][ T9977] ? debug_object_assert_init+0x1c4/0x300 [ 297.232105][ T9977] ? lock_release+0x24d/0x310 [ 297.232152][ T9977] ? finish_task_switch.isra.0+0x2c0/0x1010 [ 297.232177][ T9977] ? rcu_is_watching+0x12/0xc0 [ 297.232204][ T9977] ? trace_irq_enable.constprop.0+0x122/0x160 [ 297.232260][ T9977] ? rcu_is_watching+0x12/0xc0 [ 297.232286][ T9977] ? trace_contention_end+0x149/0x1a0 [ 297.232311][ T9977] mmap_region+0x35d/0x620 [ 297.232334][ T9977] ? rcu_is_watching+0x12/0xc0 [ 297.232360][ T9977] ? __pfx_mmap_region+0x10/0x10 [ 297.232386][ T9977] ? cap_mmap_addr+0x4b/0x120 [ 297.232413][ T9977] ? bpf_lsm_mmap_addr+0x9/0x30 [ 297.232433][ T9977] ? security_mmap_addr+0x71/0x1e0 [ 297.232469][ T9977] ? __get_unmapped_area+0x255/0x3e0 [ 297.232502][ T9977] do_mmap+0xc63/0x12f0 [ 297.232534][ T9977] ? __pfx_do_mmap+0x10/0x10 [ 297.232564][ T9977] ? __pfx_down_write_killable+0x10/0x10 [ 297.232590][ T9977] ? __pfx_futex_wait+0x10/0x10 [ 297.232622][ T9977] vm_mmap_pgoff+0x29e/0x470 [ 297.232654][ T9977] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 297.232694][ T9977] ? __pfx_do_futex+0x10/0x10 [ 297.232716][ T9977] ? __pfx_do_sys_openat2+0x10/0x10 [ 297.232747][ T9977] ksys_mmap_pgoff+0xe4/0x610 [ 297.232776][ T9977] ? __x64_sys_futex+0x358/0x4d0 [ 297.232801][ T9977] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 297.232830][ T9977] ? xfd_validate_state+0x129/0x190 [ 297.232860][ T9977] __x64_sys_mmap+0x125/0x190 [ 297.232888][ T9977] do_syscall_64+0x115/0x840 [ 297.232909][ T9977] ? clear_bhb_loop+0x40/0x90 [ 297.232935][ T9977] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 297.232958][ T9977] RIP: 0033:0x7f24f239ce59 [ 297.232981][ T9977] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 297.233004][ T9977] RSP: 002b:00007f24f3263028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 297.233027][ T9977] RAX: ffffffffffffffda RBX: 00007f24f2616180 RCX: 00007f24f239ce59 [ 297.233042][ T9977] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000 [ 297.233056][ T9977] RBP: 00007f24f2432e6f R08: fffffffffffffffa R09: 0000000000008000 [ 297.233071][ T9977] R10: 0800000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 297.233085][ T9977] R13: 00007f24f2616218 R14: 00007f24f2616180 R15: 00007ffe7bd03198 [ 297.233107][ T9977] [ 297.903988][ T9992] futex_wake_op: syz.1.909 tries to shift op by -2048; fix this program [ 297.912545][ T9992] futex_wake_op: syz.1.909 tries to shift op by -2048; fix this program [ 297.923333][ T9992] 0x000000000001-0x000000020000 : "" [ 297.975966][ T9992] ftl_cs: FTL header corrupt! [ 298.067618][ T5626] Bluetooth: hci3: unexpected event 0x04 length: 43 > 10 [ 298.067654][ T5626] Bluetooth: hci3: connection err: -111 [ 298.152750][T10002] FAULT_INJECTION: forcing a failure. [ 298.152750][T10002] name fail_futex, interval 1, probability 0, space 0, times 0 [ 298.177902][T10002] CPU: 0 UID: 0 PID: 10002 Comm: syz.2.911 Tainted: G L syzkaller #0 PREEMPT(full) [ 298.177941][T10002] Tainted: [L]=SOFTLOCKUP [ 298.177956][T10002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 298.177989][T10002] Call Trace: [ 298.177996][T10002] [ 298.178004][T10002] dump_stack_lvl+0x100/0x190 [ 298.178036][T10002] should_fail_ex.cold+0x5/0xa [ 298.178061][T10002] ? rcu_is_watching+0x12/0xc0 [ 298.178091][T10002] get_futex_key+0x1d2/0x14f0 [ 298.178114][T10002] ? __pfx_get_futex_key+0x10/0x10 [ 298.178135][T10002] ? plist_add+0x4c2/0x680 [ 298.178168][T10002] ? futex_wait_setup+0x3ef/0x540 [ 298.178198][T10002] ? futex_wait_setup+0x468/0x540 [ 298.178232][T10002] futex_wait_setup+0x91/0x540 [ 298.178267][T10002] __futex_wait+0x19f/0x300 [ 298.178299][T10002] ? __pfx___futex_wait+0x10/0x10 [ 298.178329][T10002] ? futex_hash+0x311/0x400 [ 298.178349][T10002] ? rcu_is_watching+0x12/0xc0 [ 298.178378][T10002] ? __pfx_futex_wake_mark+0x10/0x10 [ 298.178413][T10002] ? __pfx_futex_hash+0x10/0x10 [ 298.178434][T10002] ? get_pid_task+0xfc/0x250 [ 298.178464][T10002] ? rcu_is_watching+0x12/0xc0 [ 298.178493][T10002] futex_wait+0xe6/0x370 [ 298.178523][T10002] ? __pfx_futex_wait+0x10/0x10 [ 298.178556][T10002] ? io_uring_setup+0xd7/0x160 [ 298.178584][T10002] ? ksys_write+0x190/0x250 [ 298.178618][T10002] ? rcu_is_watching+0x12/0xc0 [ 298.178647][T10002] do_futex+0x265/0x440 [ 298.178672][T10002] ? __pfx_do_futex+0x10/0x10 [ 298.178700][T10002] __x64_sys_futex+0x34f/0x4d0 [ 298.178726][T10002] ? __pfx___x64_sys_futex+0x10/0x10 [ 298.178755][T10002] ? rcu_is_watching+0x12/0xc0 [ 298.178784][T10002] do_syscall_64+0x115/0x840 [ 298.178806][T10002] ? clear_bhb_loop+0x40/0x90 [ 298.178832][T10002] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 298.178856][T10002] RIP: 0033:0x7f169e19ce59 [ 298.178873][T10002] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 298.178897][T10002] RSP: 002b:00007f169efbc0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 298.178925][T10002] RAX: ffffffffffffffda RBX: 00007f169e415fa8 RCX: 00007f169e19ce59 [ 298.178941][T10002] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f169e415fa8 [ 298.178961][T10002] RBP: 00007f169e415fa0 R08: 0000000000000000 R09: 0000000000000000 [ 298.178976][T10002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 298.178990][T10002] R13: 00007f169e416038 R14: 00007fff347d1a80 R15: 00007fff347d1b68 [ 298.179012][T10002] [ 298.589746][ T9980] FAULT_INJECTION: forcing a failure. [ 298.589746][ T9980] name failslab, interval 1, probability 0, space 0, times 0 [ 298.602713][ T9980] CPU: 0 UID: 0 PID: 9980 Comm: syz.0.905 Tainted: G L syzkaller #0 PREEMPT(full) [ 298.602751][ T9980] Tainted: [L]=SOFTLOCKUP [ 298.602760][ T9980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 298.602775][ T9980] Call Trace: [ 298.602781][ T9980] [ 298.602790][ T9980] dump_stack_lvl+0x100/0x190 [ 298.602821][ T9980] should_fail_ex.cold+0x5/0xa [ 298.602846][ T9980] ? kmem_cache_alloc_lru_noprof+0x67/0x6a0 [ 298.602878][ T9980] should_failslab+0xc2/0x120 [ 298.602910][ T9980] kmem_cache_alloc_lru_noprof+0x8d/0x6a0 [ 298.602939][ T9980] ? __d_lookup+0x25c/0x4a0 [ 298.602968][ T9980] ? lock_release+0x24d/0x310 [ 298.603006][ T9980] ? __d_alloc+0x35/0xa50 [ 298.603030][ T9980] __d_alloc+0x35/0xa50 [ 298.603054][ T9980] d_alloc+0x4a/0x1e0 [ 298.603083][ T9980] lookup_one_qstr_excl+0x171/0x250 [ 298.603113][ T9980] start_dirop+0x59/0xb0 [ 298.603149][ T9980] simple_start_creating+0xf9/0x110 [ 298.603187][ T9980] ? __pfx_simple_start_creating+0x10/0x10 [ 298.603226][ T9980] ? mntput+0x70/0xa0 [ 298.603260][ T9980] ? simple_pin_fs+0xa3/0x190 [ 298.603294][ T9980] debugfs_start_creating.part.0+0x82/0x170 [ 298.603324][ T9980] __debugfs_create_file+0xb3/0x4f0 [ 298.603354][ T9980] debugfs_create_file_full+0x41/0x60 [ 298.603384][ T9980] ref_tracker_dir_debugfs+0x19e/0x2e0 [ 298.603411][ T9980] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 298.603437][ T9980] ? ida_alloc_range+0x70d/0x830 [ 298.603473][ T9980] ? kasan_save_track+0x14/0x30 [ 298.603501][ T9980] ? __kasan_kmalloc+0xaa/0xb0 [ 298.603529][ T9980] ? lockdep_init_map_type+0x5c/0x250 [ 298.603553][ T9980] preinit_net.part.0+0x252/0x920 [ 298.603588][ T9980] copy_net_ns+0x339/0x7c0 [ 298.603626][ T9980] create_new_namespaces+0x3ea/0xac0 [ 298.603654][ T9980] unshare_nsproxy_namespaces+0xf2/0x220 [ 298.603681][ T9980] ksys_unshare+0x438/0xab0 [ 298.603711][ T9980] ? __pfx_ksys_unshare+0x10/0x10 [ 298.603747][ T9980] __x64_sys_unshare+0x31/0x40 [ 298.603777][ T9980] do_syscall_64+0x115/0x840 [ 298.603799][ T9980] ? clear_bhb_loop+0x40/0x90 [ 298.603826][ T9980] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 298.603851][ T9980] RIP: 0033:0x7fb403f9ce59 [ 298.603869][ T9980] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 298.603893][ T9980] RSP: 002b:00007fb404e38028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 298.603916][ T9980] RAX: ffffffffffffffda RBX: 00007fb404215fa0 RCX: 00007fb403f9ce59 [ 298.603932][ T9980] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 298.603946][ T9980] RBP: 00007fb404032e6f R08: 0000000000000000 R09: 0000000000000000 [ 298.603961][ T9980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 298.603975][ T9980] R13: 00007fb404216038 R14: 00007fb404215fa0 R15: 00007ffd9f14f518 [ 298.603998][ T9980] [ 301.219940][ T5626] Bluetooth: hci1: unexpected event 0x04 length: 43 > 10 [ 301.219981][ T5626] Bluetooth: hci1: connection err: -111 [ 301.383529][T10058] FAULT_INJECTION: forcing a failure. [ 301.383529][T10058] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 301.443517][T10058] CPU: 0 UID: 0 PID: 10058 Comm: syz.0.924 Tainted: G L syzkaller #0 PREEMPT(full) [ 301.443559][T10058] Tainted: [L]=SOFTLOCKUP [ 301.443568][T10058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 301.443582][T10058] Call Trace: [ 301.443590][T10058] [ 301.443598][T10058] dump_stack_lvl+0x100/0x190 [ 301.443630][T10058] should_fail_ex.cold+0x5/0xa [ 301.443659][T10058] should_fail_alloc_page+0xeb/0x140 [ 301.443693][T10058] prepare_alloc_pages+0x1f0/0x5f0 [ 301.443734][T10058] ? __page_table_check_zero+0x338/0x410 [ 301.443768][T10058] __alloc_frozen_pages_noprof+0x1af/0x2dc0 [ 301.443795][T10058] ? post_alloc_hook+0xed/0x120 [ 301.443818][T10058] ? rcu_is_watching+0x12/0xc0 [ 301.443848][T10058] ? unwind_next_frame+0x3be/0x2090 [ 301.443883][T10058] ? rcu_is_watching+0x12/0xc0 [ 301.443913][T10058] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 301.443943][T10058] ? rcu_is_watching+0x12/0xc0 [ 301.443970][T10058] ? unwind_next_frame+0x3be/0x2090 [ 301.444005][T10058] ? rcu_is_watching+0x12/0xc0 [ 301.444036][T10058] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 301.444069][T10058] ? rcu_is_watching+0x12/0xc0 [ 301.444096][T10058] ? is_bpf_text_address+0x8a/0x1a0 [ 301.444130][T10058] ? lock_release+0x24d/0x310 [ 301.444175][T10058] ? bpf_ksym_find+0x124/0x1c0 [ 301.444200][T10058] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 301.444235][T10058] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 301.444271][T10058] ? policy_nodemask+0xed/0x4f0 [ 301.444304][T10058] alloc_pages_mpol+0x1fb/0x540 [ 301.444338][T10058] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 301.444372][T10058] ? tomoyo_path_number_perm+0x46d/0x580 [ 301.444409][T10058] alloc_pages_noprof+0x1a/0x160 [ 301.444447][T10058] __pmd_alloc+0x3b/0x950 [ 301.444482][T10058] __handle_mm_fault+0xa9c/0x2a00 [ 301.444506][T10058] ? mt_find+0x45e/0x8e0 [ 301.444533][T10058] ? __pfx___handle_mm_fault+0x10/0x10 [ 301.444572][T10058] ? __pfx_mt_find+0x10/0x10 [ 301.444605][T10058] ? find_vma+0xbf/0x140 [ 301.444633][T10058] ? __pfx_find_vma+0x10/0x10 [ 301.444662][T10058] handle_mm_fault+0x37b/0xa30 [ 301.444686][T10058] do_user_addr_fault+0x74c/0x12f0 [ 301.444729][T10058] exc_page_fault+0x6f/0xd0 [ 301.444751][T10058] asm_exc_page_fault+0x26/0x30 [ 301.444775][T10058] RIP: 0010:rep_movs_alternative+0x30/0xa0 [ 301.444810][T10058] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 bd 9d 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 [ 301.444834][T10058] RSP: 0018:ffffc9000359fcf8 EFLAGS: 00050216 [ 301.444853][T10058] RAX: 0000000000000001 RBX: 0000000000000006 RCX: 0000000000000020 [ 301.444868][T10058] RDX: 0000000000000001 RSI: 0000000000000006 RDI: ffffc9000359fd98 [ 301.444882][T10058] RBP: 0000000000000020 R08: 0000000000000001 R09: fffff520006b3fb6 [ 301.444896][T10058] R10: ffffc9000359fdb7 R11: 0000000000000001 R12: 0000000000000000 [ 301.444911][T10058] R13: ffffc9000359fd98 R14: 0000000000000020 R15: ffffc9000359fd98 [ 301.444933][T10058] _copy_from_user+0x98/0xd0 [ 301.444957][T10058] video_usercopy+0x9e0/0x14c0 [ 301.444994][T10058] ? __pfx___video_do_ioctl+0x10/0x10 [ 301.445029][T10058] ? __pfx_video_usercopy+0x10/0x10 [ 301.445076][T10058] ? __fget_files+0x21f/0x3d0 [ 301.445113][T10058] v4l2_ioctl+0x1bd/0x250 [ 301.445148][T10058] ? __pfx_v4l2_ioctl+0x10/0x10 [ 301.445184][T10058] __x64_sys_ioctl+0x18e/0x210 [ 301.445217][T10058] do_syscall_64+0x115/0x840 [ 301.445240][T10058] ? clear_bhb_loop+0x40/0x90 [ 301.445267][T10058] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 301.445290][T10058] RIP: 0033:0x7fb403f9ce59 [ 301.445308][T10058] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 301.445331][T10058] RSP: 002b:00007fb404e38028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 301.445352][T10058] RAX: ffffffffffffffda RBX: 00007fb404215fa0 RCX: 00007fb403f9ce59 [ 301.445368][T10058] RDX: 0000000000000006 RSI: 00000000c0205647 RDI: 0000000000000008 [ 301.445382][T10058] RBP: 00007fb404032e6f R08: 0000000000000000 R09: 0000000000000000 [ 301.445397][T10058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 301.445411][T10058] R13: 00007fb404216038 R14: 00007fb404215fa0 R15: 00007ffd9f14f518 [ 301.445433][T10058] [ 301.904204][T10058] FAULT_INJECTION: forcing a failure. [ 301.904204][T10058] name failslab, interval 1, probability 0, space 0, times 0 [ 301.917093][T10058] CPU: 0 UID: 0 PID: 10058 Comm: syz.0.924 Tainted: G L syzkaller #0 PREEMPT(full) [ 301.917131][T10058] Tainted: [L]=SOFTLOCKUP [ 301.917139][T10058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 301.917154][T10058] Call Trace: [ 301.917162][T10058] [ 301.917171][T10058] dump_stack_lvl+0x100/0x190 [ 301.917202][T10058] should_fail_ex.cold+0x5/0xa [ 301.917228][T10058] ? kmem_cache_alloc_noprof+0x6b/0x6a0 [ 301.917258][T10058] should_failslab+0xc2/0x120 [ 301.917289][T10058] kmem_cache_alloc_noprof+0x91/0x6a0 [ 301.917318][T10058] ? __anon_vma_prepare+0x344/0x5e0 [ 301.917342][T10058] __anon_vma_prepare+0x344/0x5e0 [ 301.917362][T10058] ? rcu_is_watching+0x12/0xc0 [ 301.917392][T10058] __vmf_anon_prepare+0x11f/0x250 [ 301.917427][T10058] do_wp_page+0xc78/0x4350 [ 301.917462][T10058] ? rcu_is_watching+0x12/0xc0 [ 301.917490][T10058] ? __pfx_do_wp_page+0x10/0x10 [ 301.917524][T10058] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 301.917551][T10058] ? __pte_offset_map+0x50/0x310 [ 301.917581][T10058] __handle_mm_fault+0x1ab6/0x2a00 [ 301.917605][T10058] ? mt_find+0x45e/0x8e0 [ 301.917633][T10058] ? __pfx___handle_mm_fault+0x10/0x10 [ 301.917678][T10058] ? __pfx_mt_find+0x10/0x10 [ 301.917704][T10058] ? rcu_is_watching+0x12/0xc0 [ 301.917739][T10058] ? find_vma+0xbf/0x140 [ 301.917767][T10058] ? __pfx_find_vma+0x10/0x10 [ 301.917797][T10058] handle_mm_fault+0x37b/0xa30 [ 301.917821][T10058] do_user_addr_fault+0x74c/0x12f0 [ 301.917858][T10058] exc_page_fault+0x6f/0xd0 [ 301.917880][T10058] asm_exc_page_fault+0x26/0x30 [ 301.917903][T10058] RIP: 0010:rep_movs_alternative+0x33/0xa0 [ 301.917937][T10058] Code: 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 bd 9d 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb [ 301.917961][T10058] RSP: 0018:ffffc9000359fce8 EFLAGS: 00050216 [ 301.917980][T10058] RAX: 0000000000000000 RBX: 0000000000000020 RCX: 0000000000000020 [ 301.917995][T10058] RDX: 0000000000000001 RSI: ffffc9000359fd98 RDI: 0000000000000006 [ 301.918009][T10058] RBP: 0000000000000006 R08: 0000000000000000 R09: fffff520006b3fb6 [ 301.918024][T10058] R10: ffffc9000359fdb7 R11: 0000000000000000 R12: ffffc9000359fd98 [ 301.918038][T10058] R13: 0000000000000026 R14: 00007ffffffff000 R15: 0000000000000000 [ 301.918060][T10058] _copy_to_user+0xa4/0xd0 [ 301.918084][T10058] video_usercopy+0xcad/0x14c0 [ 301.918124][T10058] ? __pfx___video_do_ioctl+0x10/0x10 [ 301.918159][T10058] ? __pfx_video_usercopy+0x10/0x10 [ 301.918198][T10058] ? __fget_files+0x21f/0x3d0 [ 301.918235][T10058] v4l2_ioctl+0x1bd/0x250 [ 301.918269][T10058] ? __pfx_v4l2_ioctl+0x10/0x10 [ 301.918305][T10058] __x64_sys_ioctl+0x18e/0x210 [ 301.918336][T10058] do_syscall_64+0x115/0x840 [ 301.918358][T10058] ? clear_bhb_loop+0x40/0x90 [ 301.918384][T10058] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 301.918408][T10058] RIP: 0033:0x7fb403f9ce59 [ 301.918426][T10058] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 301.918449][T10058] RSP: 002b:00007fb404e38028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 301.918470][T10058] RAX: ffffffffffffffda RBX: 00007fb404215fa0 RCX: 00007fb403f9ce59 [ 301.918485][T10058] RDX: 0000000000000006 RSI: 00000000c0205647 RDI: 0000000000000008 [ 301.918499][T10058] RBP: 00007fb404032e6f R08: 0000000000000000 R09: 0000000000000000 [ 301.918514][T10058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 301.918528][T10058] R13: 00007fb404216038 R14: 00007fb404215fa0 R15: 00007ffd9f14f518 [ 301.918550][T10058] [ 302.421862][T10064] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xfffffd23 [ 302.574368][T10054] netlink: 12 bytes leftover after parsing attributes in process `syz.1.921'. [ 303.940081][T10100] snd_virmidi snd_virmidi.0: control 61674:5:9:yª:20389 is already present [ 304.336876][ T5626] Bluetooth: hci3: unexpected event 0x04 length: 43 > 10 [ 304.336923][ T5626] Bluetooth: hci3: connection err: -111 [ 305.058846][T10132] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xfffffd23 [ 305.760524][T10144] FAULT_INJECTION: forcing a failure. [ 305.760524][T10144] name failslab, interval 1, probability 0, space 0, times 0 [ 305.831998][T10144] CPU: 0 UID: 0 PID: 10144 Comm: syz.0.944 Tainted: G L syzkaller #0 PREEMPT(full) [ 305.832037][T10144] Tainted: [L]=SOFTLOCKUP [ 305.832046][T10144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 305.832060][T10144] Call Trace: [ 305.832068][T10144] [ 305.832076][T10144] dump_stack_lvl+0x100/0x190 [ 305.832108][T10144] should_fail_ex.cold+0x5/0xa [ 305.832134][T10144] ? kmem_cache_alloc_lru_noprof+0x67/0x6a0 [ 305.832165][T10144] should_failslab+0xc2/0x120 [ 305.832200][T10144] kmem_cache_alloc_lru_noprof+0x8d/0x6a0 [ 305.832229][T10144] ? start_dirop+0x79/0xb0 [ 305.832263][T10144] ? alloc_inode+0x68/0x250 [ 305.832292][T10144] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 305.832320][T10144] alloc_inode+0x68/0x250 [ 305.832348][T10144] new_inode+0x22/0x1c0 [ 305.832384][T10144] debugfs_create_symlink+0xd1/0x220 [ 305.832414][T10144] drm_debugfs_clients_add+0x199/0x210 [ 305.832450][T10144] drm_file_alloc+0x5c6/0xb40 [ 305.832488][T10144] drm_open_helper+0x1fc/0x540 [ 305.832526][T10144] drm_open+0x1a0/0x3e0 [ 305.832561][T10144] ? __pfx_drm_open+0x10/0x10 [ 305.832595][T10144] drm_stub_open+0x20f/0x380 [ 305.832630][T10144] ? __pfx_drm_stub_open+0x10/0x10 [ 305.832665][T10144] chrdev_open+0x234/0x6a0 [ 305.832685][T10144] ? __pfx_apparmor_file_open+0x10/0x10 [ 305.832717][T10144] ? __pfx_chrdev_open+0x10/0x10 [ 305.832739][T10144] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 305.832767][T10144] do_dentry_open+0x6ab/0x14d0 [ 305.832787][T10144] ? __pfx_chrdev_open+0x10/0x10 [ 305.832811][T10144] vfs_open+0x82/0x3f0 [ 305.832838][T10144] path_openat+0x2873/0x4280 [ 305.832865][T10144] ? __pfx_path_openat+0x10/0x10 [ 305.832889][T10144] do_file_open+0x20e/0x430 [ 305.832911][T10144] ? __pfx_do_file_open+0x10/0x10 [ 305.832942][T10144] ? alloc_fd+0x471/0x7a0 [ 305.832978][T10144] ? do_getname+0x191/0x390 [ 305.833006][T10144] do_sys_openat2+0x10f/0x1e0 [ 305.833034][T10144] ? __pfx_do_sys_openat2+0x10/0x10 [ 305.833064][T10144] ? __fget_files+0x21f/0x3d0 [ 305.833101][T10144] __x64_sys_openat+0x12d/0x210 [ 305.833130][T10144] ? __pfx___x64_sys_openat+0x10/0x10 [ 305.833162][T10144] ? rcu_is_watching+0x12/0xc0 [ 305.833191][T10144] do_syscall_64+0x115/0x840 [ 305.833214][T10144] ? clear_bhb_loop+0x40/0x90 [ 305.833240][T10144] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 305.833264][T10144] RIP: 0033:0x7fb403f9ce59 [ 305.833283][T10144] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 305.833306][T10144] RSP: 002b:00007fb404e38028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 305.833330][T10144] RAX: ffffffffffffffda RBX: 00007fb404215fa0 RCX: 00007fb403f9ce59 [ 305.833346][T10144] RDX: 0000000000028900 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 305.833362][T10144] RBP: 00007fb404032e6f R08: 0000000000000000 R09: 0000000000000000 [ 305.833386][T10144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 305.833400][T10144] R13: 00007fb404216038 R14: 00007fb404215fa0 R15: 00007ffd9f14f518 [ 305.833422][T10144] [ 306.460216][T10144] debugfs: out of free dentries, can not create symlink 'device' [ 306.763210][T10146] can: request_module (can-proto-0) failed. [ 306.968271][T10166] netlink: 20 bytes leftover after parsing attributes in process `syz.2.947'. [ 308.422409][ T5626] Bluetooth: hci2: unexpected event 0x04 length: 43 > 10 [ 308.422445][ T5626] Bluetooth: hci2: connection err: -111 [ 309.945361][T10239] FAULT_INJECTION: forcing a failure. [ 309.945361][T10239] name failslab, interval 1, probability 0, space 0, times 0 [ 310.088986][T10239] CPU: 0 UID: 0 PID: 10239 Comm: syz.0.968 Tainted: G L syzkaller #0 PREEMPT(full) [ 310.089024][T10239] Tainted: [L]=SOFTLOCKUP [ 310.089031][T10239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 310.089045][T10239] Call Trace: [ 310.089052][T10239] [ 310.089060][T10239] dump_stack_lvl+0x100/0x190 [ 310.089090][T10239] should_fail_ex.cold+0x5/0xa [ 310.089115][T10239] ? kmem_cache_alloc_noprof+0x6b/0x6a0 [ 310.089151][T10239] should_failslab+0xc2/0x120 [ 310.089183][T10239] kmem_cache_alloc_noprof+0x91/0x6a0 [ 310.089209][T10239] ? rcu_is_watching+0x12/0xc0 [ 310.089236][T10239] ? __fget_files+0x215/0x3d0 [ 310.089270][T10239] ? create_new_namespaces+0x30/0xac0 [ 310.089295][T10239] create_new_namespaces+0x30/0xac0 [ 310.089321][T10239] __do_sys_setns+0x213/0x1f30 [ 310.089345][T10239] ? fput+0x79/0x100 [ 310.089368][T10239] ? __pfx___do_sys_setns+0x10/0x10 [ 310.089390][T10239] ? ksys_write+0x1ac/0x250 [ 310.089426][T10239] ? rcu_is_watching+0x12/0xc0 [ 310.089453][T10239] do_syscall_64+0x115/0x840 [ 310.089475][T10239] ? clear_bhb_loop+0x40/0x90 [ 310.089501][T10239] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 310.089524][T10239] RIP: 0033:0x7fb403f9ce59 [ 310.089541][T10239] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 310.089564][T10239] RSP: 002b:00007fb404e38028 EFLAGS: 00000246 ORIG_RAX: 0000000000000134 [ 310.089586][T10239] RAX: ffffffffffffffda RBX: 00007fb404215fa0 RCX: 00007fb403f9ce59 [ 310.089601][T10239] RDX: 0000000000000000 RSI: 0000000060020000 RDI: 0000000000000003 [ 310.089615][T10239] RBP: 00007fb404e38090 R08: 0000000000000000 R09: 0000000000000000 [ 310.089628][T10239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 310.089644][T10239] R13: 00007fb404216038 R14: 00007fb404215fa0 R15: 00007ffd9f14f518 [ 310.089666][T10239] [ 311.395094][T10280] random: crng reseeded on system resumption [ 311.490195][T10280] hub 1-0:1.0: USB hub found [ 311.514244][T10280] hub 1-0:1.0: 1 port detected [ 312.402847][ T5626] Bluetooth: hci1: unexpected event 0x04 length: 43 > 10 [ 312.402884][ T5626] Bluetooth: hci1: connection err: -111 [ 312.670158][T10202] kexec: Could not allocate control_code_buffer [ 313.343811][T10315] snd_virmidi snd_virmidi.0: control 61674:5:9:yª:20389 is already present [ 313.873731][T10325] FAULT_INJECTION: forcing a failure. [ 313.873731][T10325] name failslab, interval 1, probability 0, space 0, times 0 [ 313.949485][T10325] CPU: 0 UID: 0 PID: 10325 Comm: syz.3.982 Tainted: G L syzkaller #0 PREEMPT(full) [ 313.949529][T10325] Tainted: [L]=SOFTLOCKUP [ 313.949539][T10325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 313.949555][T10325] Call Trace: [ 313.949564][T10325] [ 313.949574][T10325] dump_stack_lvl+0x100/0x190 [ 313.949609][T10325] should_fail_ex.cold+0x5/0xa [ 313.949637][T10325] ? __kmalloc_cache_noprof+0x6b/0x6c0 [ 313.949666][T10325] should_failslab+0xc2/0x120 [ 313.949702][T10325] __kmalloc_cache_noprof+0x91/0x6c0 [ 313.949724][T10325] ? shrinker_alloc+0xf5/0xc90 [ 313.949751][T10325] shrinker_alloc+0xf5/0xc90 [ 313.949774][T10325] ? pcpu_alloc_noprof+0x7e8/0x1ca0 [ 313.949796][T10325] ? rcu_is_watching+0x12/0xc0 [ 313.949823][T10325] ? rcu_is_watching+0x12/0xc0 [ 313.949855][T10325] ? trace_irq_enable.constprop.0+0x122/0x160 [ 313.949896][T10325] ? rcu_is_watching+0x12/0xc0 [ 313.949922][T10325] ? __pfx_shrinker_alloc+0x10/0x10 [ 313.949951][T10325] ? lockdep_init_map_type+0x5c/0x250 [ 313.949972][T10325] ? lockdep_init_map_type+0x5c/0x250 [ 313.949993][T10325] ? __raw_spin_lock_init+0x3a/0x110 [ 313.950017][T10325] ? __init_rwsem+0x10e/0x180 [ 313.950040][T10325] sget_fc+0x972/0x1d80 [ 313.950076][T10325] ? __pfx_set_anon_super_fc+0x10/0x10 [ 313.950106][T10325] ? __pfx_sget_fc+0x10/0x10 [ 313.950136][T10325] ? refcount_dec_not_one+0x136/0x1c0 [ 313.950158][T10325] ? __pfx_refcount_dec_not_one+0x10/0x10 [ 313.950181][T10325] ? __kmalloc_cache_noprof+0x2e5/0x6c0 [ 313.950202][T10325] ? __kasan_kmalloc+0xaa/0xb0 [ 313.950230][T10325] ? __pfx_mqueue_fill_super+0x10/0x10 [ 313.950256][T10325] get_tree_nodev+0x28/0x190 [ 313.950289][T10325] mqueue_get_tree+0xf1/0x130 [ 313.950314][T10325] vfs_get_tree+0x92/0x320 [ 313.950343][T10325] fc_mount_longterm+0x1a/0x270 [ 313.950375][T10325] mq_init_ns+0x482/0x820 [ 313.950405][T10325] copy_ipcs+0x3dd/0x7e0 [ 313.950436][T10325] create_new_namespaces+0x20a/0xac0 [ 313.950459][T10325] ? security_capable+0x80/0x260 [ 313.950488][T10325] unshare_nsproxy_namespaces+0xf2/0x220 [ 313.950513][T10325] ksys_unshare+0x438/0xab0 [ 313.950542][T10325] ? __pfx_ksys_unshare+0x10/0x10 [ 313.950575][T10325] __x64_sys_unshare+0x31/0x40 [ 313.950603][T10325] do_syscall_64+0x115/0x840 [ 313.950626][T10325] ? clear_bhb_loop+0x40/0x90 [ 313.950652][T10325] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 313.950675][T10325] RIP: 0033:0x7fdbcd19ce59 [ 313.950692][T10325] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 313.950715][T10325] RSP: 002b:00007fdbce0e3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 313.950737][T10325] RAX: ffffffffffffffda RBX: 00007fdbcd415fa0 RCX: 00007fdbcd19ce59 [ 313.950752][T10325] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000000 [ 313.950783][T10325] RBP: 00007fdbce0e3090 R08: 0000000000000000 R09: 0000000000000000 [ 313.950798][T10325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 313.950812][T10325] R13: 00007fdbcd416038 R14: 00007fdbcd415fa0 R15: 00007ffed5802d68 [ 313.950837][T10325] [ 314.475078][T10328] bdi 43:192: the stable_pages_required attribute has been removed. Use the stable_writes queue attribute instead. [ 315.223386][T10335] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 315.306176][T10335] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 315.414177][T10335] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 315.453899][ T3325] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 315.492799][T10343] netlink: 8 bytes leftover after parsing attributes in process `syz.0.987'. [ 315.509727][T10323] Process accounting paused [ 315.532025][T10335] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 315.679742][T10335] page dumped because: unmovable page [ 315.713860][T10354] netlink: 8 bytes leftover after parsing attributes in process `syz.0.989'. [ 315.750580][T10335] page_owner info is not present (never set?) [ 316.082028][T10359] netlink: 8 bytes leftover after parsing attributes in process `syz.0.998'. [ 316.336874][T10366] FAULT_INJECTION: forcing a failure. [ 316.336874][T10366] name failslab, interval 1, probability 0, space 0, times 0 [ 316.482292][T10366] CPU: 0 UID: 0 PID: 10366 Comm: syz.2.990 Tainted: G L syzkaller #0 PREEMPT(full) [ 316.482330][T10366] Tainted: [L]=SOFTLOCKUP [ 316.482339][T10366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 316.482354][T10366] Call Trace: [ 316.482361][T10366] [ 316.482369][T10366] dump_stack_lvl+0x100/0x190 [ 316.482401][T10366] should_fail_ex.cold+0x5/0xa [ 316.482427][T10366] ? kmem_cache_alloc_noprof+0x6b/0x6a0 [ 316.482457][T10366] should_failslab+0xc2/0x120 [ 316.482489][T10366] kmem_cache_alloc_noprof+0x91/0x6a0 [ 316.482516][T10366] ? tomoyo_path_number_perm+0x46d/0x580 [ 316.482552][T10366] ? __pmd_alloc+0xbf/0x950 [ 316.482588][T10366] __pmd_alloc+0xbf/0x950 [ 316.482621][T10366] __handle_mm_fault+0xa9c/0x2a00 [ 316.482646][T10366] ? mt_find+0x45e/0x8e0 [ 316.482673][T10366] ? __pfx___handle_mm_fault+0x10/0x10 [ 316.482711][T10366] ? __pfx_mt_find+0x10/0x10 [ 316.482745][T10366] ? find_vma+0xbf/0x140 [ 316.482772][T10366] ? __pfx_find_vma+0x10/0x10 [ 316.482802][T10366] handle_mm_fault+0x37b/0xa30 [ 316.482832][T10366] do_user_addr_fault+0x74c/0x12f0 [ 316.482871][T10366] exc_page_fault+0x6f/0xd0 [ 316.482893][T10366] asm_exc_page_fault+0x26/0x30 [ 316.482916][T10366] RIP: 0010:rep_movs_alternative+0x30/0xa0 [ 316.482950][T10366] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 bd 9d 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 [ 316.482974][T10366] RSP: 0018:ffffc900054d7cf8 EFLAGS: 00050216 [ 316.482993][T10366] RAX: 0000000000000001 RBX: 0000000000000006 RCX: 0000000000000020 [ 316.483007][T10366] RDX: 0000000000000001 RSI: 0000000000000006 RDI: ffffc900054d7d98 [ 316.483022][T10366] RBP: 0000000000000020 R08: 0000000000000001 R09: fffff52000a9afb6 [ 316.483037][T10366] R10: ffffc900054d7db7 R11: 0000000000000001 R12: 0000000000000000 [ 316.483051][T10366] R13: ffffc900054d7d98 R14: 0000000000000020 R15: ffffc900054d7d98 [ 316.483074][T10366] _copy_from_user+0x98/0xd0 [ 316.483098][T10366] video_usercopy+0x9e0/0x14c0 [ 316.483132][T10366] ? __pfx___video_do_ioctl+0x10/0x10 [ 316.483167][T10366] ? __pfx_video_usercopy+0x10/0x10 [ 316.483207][T10366] ? __fget_files+0x21f/0x3d0 [ 316.483246][T10366] v4l2_ioctl+0x1bd/0x250 [ 316.483280][T10366] ? __pfx_v4l2_ioctl+0x10/0x10 [ 316.483317][T10366] __x64_sys_ioctl+0x18e/0x210 [ 316.483349][T10366] do_syscall_64+0x115/0x840 [ 316.483371][T10366] ? clear_bhb_loop+0x40/0x90 [ 316.483397][T10366] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 316.483422][T10366] RIP: 0033:0x7f169e19ce59 [ 316.483439][T10366] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 316.483465][T10366] RSP: 002b:00007f169efbc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 316.483486][T10366] RAX: ffffffffffffffda RBX: 00007f169e415fa0 RCX: 00007f169e19ce59 [ 316.483502][T10366] RDX: 0000000000000006 RSI: 00000000c0205647 RDI: 0000000000000008 [ 316.483522][T10366] RBP: 00007f169e232e6f R08: 0000000000000000 R09: 0000000000000000 [ 316.483537][T10366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 316.483551][T10366] R13: 00007f169e416038 R14: 00007f169e415fa0 R15: 00007fff347d1b68 [ 316.483575][T10366] [ 316.814170][T10366] FAULT_INJECTION: forcing a failure. [ 316.814170][T10366] name failslab, interval 1, probability 0, space 0, times 0 [ 316.827010][T10366] CPU: 0 UID: 0 PID: 10366 Comm: syz.2.990 Tainted: G L syzkaller #0 PREEMPT(full) [ 316.827048][T10366] Tainted: [L]=SOFTLOCKUP [ 316.827056][T10366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 316.827070][T10366] Call Trace: [ 316.827079][T10366] [ 316.827087][T10366] dump_stack_lvl+0x100/0x190 [ 316.827117][T10366] should_fail_ex.cold+0x5/0xa [ 316.827143][T10366] ? kmem_cache_alloc_noprof+0x6b/0x6a0 [ 316.827173][T10366] should_failslab+0xc2/0x120 [ 316.827205][T10366] kmem_cache_alloc_noprof+0x91/0x6a0 [ 316.827233][T10366] ? __anon_vma_prepare+0x344/0x5e0 [ 316.827257][T10366] __anon_vma_prepare+0x344/0x5e0 [ 316.827278][T10366] ? rcu_is_watching+0x12/0xc0 [ 316.827308][T10366] __vmf_anon_prepare+0x11f/0x250 [ 316.827343][T10366] do_wp_page+0xc78/0x4350 [ 316.827377][T10366] ? rcu_is_watching+0x12/0xc0 [ 316.827406][T10366] ? __pfx_do_wp_page+0x10/0x10 [ 316.827440][T10366] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 316.827466][T10366] ? __pte_offset_map+0x50/0x310 [ 316.827496][T10366] __handle_mm_fault+0x1ab6/0x2a00 [ 316.827520][T10366] ? mt_find+0x45e/0x8e0 [ 316.827547][T10366] ? __pfx___handle_mm_fault+0x10/0x10 [ 316.827585][T10366] ? __pfx_mt_find+0x10/0x10 [ 316.827611][T10366] ? rcu_is_watching+0x12/0xc0 [ 316.827645][T10366] ? find_vma+0xbf/0x140 [ 316.827673][T10366] ? __pfx_find_vma+0x10/0x10 [ 316.827703][T10366] handle_mm_fault+0x37b/0xa30 [ 316.827733][T10366] do_user_addr_fault+0x74c/0x12f0 [ 316.827770][T10366] exc_page_fault+0x6f/0xd0 [ 316.827793][T10366] asm_exc_page_fault+0x26/0x30 [ 316.827816][T10366] RIP: 0010:rep_movs_alternative+0x33/0xa0 [ 316.827849][T10366] Code: 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 bd 9d 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb [ 316.827873][T10366] RSP: 0018:ffffc900054d7ce8 EFLAGS: 00050216 [ 316.827893][T10366] RAX: 0000000000000000 RBX: 0000000000000020 RCX: 0000000000000020 [ 316.827907][T10366] RDX: 0000000000000001 RSI: ffffc900054d7d98 RDI: 0000000000000006 [ 316.827922][T10366] RBP: 0000000000000006 R08: 0000000000000000 R09: fffff52000a9afb6 [ 316.827937][T10366] R10: ffffc900054d7db7 R11: 0000000000000000 R12: ffffc900054d7d98 [ 316.827952][T10366] R13: 0000000000000026 R14: 00007ffffffff000 R15: 0000000000000000 [ 316.827974][T10366] _copy_to_user+0xa4/0xd0 [ 316.827998][T10366] video_usercopy+0xcad/0x14c0 [ 316.828032][T10366] ? __pfx___video_do_ioctl+0x10/0x10 [ 316.828073][T10366] ? __pfx_video_usercopy+0x10/0x10 [ 316.828113][T10366] ? __fget_files+0x21f/0x3d0 [ 316.828151][T10366] v4l2_ioctl+0x1bd/0x250 [ 316.828185][T10366] ? __pfx_v4l2_ioctl+0x10/0x10 [ 316.828220][T10366] __x64_sys_ioctl+0x18e/0x210 [ 316.828252][T10366] do_syscall_64+0x115/0x840 [ 316.828274][T10366] ? clear_bhb_loop+0x40/0x90 [ 316.828300][T10366] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 316.828323][T10366] RIP: 0033:0x7f169e19ce59 [ 316.828340][T10366] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 316.828363][T10366] RSP: 002b:00007f169efbc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 316.828389][T10366] RAX: ffffffffffffffda RBX: 00007f169e415fa0 RCX: 00007f169e19ce59 [ 316.828406][T10366] RDX: 0000000000000006 RSI: 00000000c0205647 RDI: 0000000000000008 [ 316.828420][T10366] RBP: 00007f169e232e6f R08: 0000000000000000 R09: 0000000000000000 [ 316.828435][T10366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 316.828449][T10366] R13: 00007f169e416038 R14: 00007f169e415fa0 R15: 00007fff347d1b68 [ 316.828472][T10366] [ 317.568013][ T1325] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.574390][ T1325] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.207741][T10397] FAULT_INJECTION: forcing a failure. [ 318.207741][T10397] name failslab, interval 1, probability 0, space 0, times 0 [ 318.270381][T10397] CPU: 0 UID: 0 PID: 10397 Comm: syz.0.999 Tainted: G L syzkaller #0 PREEMPT(full) [ 318.270420][T10397] Tainted: [L]=SOFTLOCKUP [ 318.270427][T10397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 318.270442][T10397] Call Trace: [ 318.270449][T10397] [ 318.270457][T10397] dump_stack_lvl+0x100/0x190 [ 318.270506][T10397] should_fail_ex.cold+0x5/0xa [ 318.270531][T10397] ? __kmalloc_noprof+0xd6/0x820 [ 318.270558][T10397] should_failslab+0xc2/0x120 [ 318.270592][T10397] __kmalloc_noprof+0xfc/0x820 [ 318.270618][T10397] ? alloc_pipe_info+0x1ec/0x590 [ 318.270642][T10397] alloc_pipe_info+0x1ec/0x590 [ 318.270665][T10397] splice_direct_to_actor+0x78f/0xa30 [ 318.270688][T10397] ? __pfx_direct_splice_actor+0x10/0x10 [ 318.270726][T10397] ? __pfx_aa_file_perm+0x10/0x10 [ 318.270758][T10397] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 318.270779][T10397] ? rcu_is_watching+0x12/0xc0 [ 318.270805][T10397] ? get_pid_task+0xfc/0x250 [ 318.270833][T10397] ? lock_release+0x24d/0x310 [ 318.270878][T10397] do_splice_direct+0x174/0x240 [ 318.270898][T10397] ? __pfx_do_splice_direct+0x10/0x10 [ 318.270920][T10397] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 318.270957][T10397] ? bpf_lsm_file_permission+0x9/0x10 [ 318.270993][T10397] ? security_file_permission+0x76/0x210 [ 318.271032][T10397] ? rw_verify_area+0xce/0x6d0 [ 318.271070][T10397] do_sendfile+0xadc/0xe20 [ 318.271105][T10397] ? __pfx_do_sendfile+0x10/0x10 [ 318.271137][T10397] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 318.271162][T10397] ? __fget_files+0x21f/0x3d0 [ 318.271199][T10397] __x64_sys_sendfile64+0x1d8/0x220 [ 318.271222][T10397] ? ksys_write+0x1ac/0x250 [ 318.271255][T10397] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 318.271281][T10397] ? rcu_is_watching+0x12/0xc0 [ 318.271308][T10397] do_syscall_64+0x115/0x840 [ 318.271330][T10397] ? clear_bhb_loop+0x40/0x90 [ 318.271355][T10397] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 318.271378][T10397] RIP: 0033:0x7fb403f9ce59 [ 318.271395][T10397] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 318.271418][T10397] RSP: 002b:00007fb404e38028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 318.271441][T10397] RAX: ffffffffffffffda RBX: 00007fb404215fa0 RCX: 00007fb403f9ce59 [ 318.271456][T10397] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 318.271470][T10397] RBP: 00007fb404e38090 R08: 0000000000000000 R09: 0000000000000000 [ 318.271484][T10397] R10: 0000400000000006 R11: 0000000000000246 R12: 0000000000000001 [ 318.271498][T10397] R13: 00007fb404216038 R14: 00007fb404215fa0 R15: 00007ffd9f14f518 [ 318.271520][T10397] [ 318.896695][T10401] usbip-vudc usbip-vudc.0: gadget not bound [ 319.637090][T10422] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1006'. [ 320.897619][T10425] zswap: compressor not available [ 321.935681][T10466] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1015'. [ 322.309603][ T5626] Bluetooth: hci3: unexpected event 0x04 length: 43 > 10 [ 322.309639][ T5626] Bluetooth: hci3: connection err: -111 [ 323.296433][T10493] usbip-vudc usbip-vudc.0: gadget not bound [ 323.650377][T10501] FAULT_INJECTION: forcing a failure. [ 323.650377][T10501] name failslab, interval 1, probability 0, space 0, times 0 [ 323.744415][T10501] CPU: 0 UID: 0 PID: 10501 Comm: syz.3.1024 Tainted: G L syzkaller #0 PREEMPT(full) [ 323.744456][T10501] Tainted: [L]=SOFTLOCKUP [ 323.744464][T10501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 323.744479][T10501] Call Trace: [ 323.744486][T10501] [ 323.744494][T10501] dump_stack_lvl+0x100/0x190 [ 323.744526][T10501] should_fail_ex.cold+0x5/0xa [ 323.744553][T10501] ? __kmalloc_noprof+0xd6/0x820 [ 323.744581][T10501] should_failslab+0xc2/0x120 [ 323.744614][T10501] __kmalloc_noprof+0xfc/0x820 [ 323.744640][T10501] ? trace_kmalloc+0xeb/0x110 [ 323.744671][T10501] ? lsm_blob_alloc+0x68/0x90 [ 323.744707][T10501] lsm_blob_alloc+0x68/0x90 [ 323.744732][T10501] security_sk_alloc+0x2d/0x290 [ 323.744765][T10501] sk_prot_alloc+0x12a/0x2a0 [ 323.744804][T10501] sk_alloc+0x36/0xe80 [ 323.744833][T10501] __netlink_create+0x5e/0x2c0 [ 323.744867][T10501] ? __wake_up+0x3f/0x60 [ 323.744899][T10501] netlink_create+0x29b/0x610 [ 323.744934][T10501] ? __pfx_genl_bind+0x10/0x10 [ 323.744959][T10501] ? __pfx_genl_unbind+0x10/0x10 [ 323.744982][T10501] ? __pfx_genl_release+0x10/0x10 [ 323.745010][T10501] __sock_create+0x339/0x860 [ 323.745035][T10501] __sys_socket+0x14d/0x260 [ 323.745059][T10501] ? __pfx___sys_socket+0x10/0x10 [ 323.745088][T10501] __x64_sys_socket+0x72/0xb0 [ 323.745119][T10501] do_syscall_64+0x115/0x840 [ 323.745142][T10501] ? clear_bhb_loop+0x40/0x90 [ 323.745169][T10501] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 323.745193][T10501] RIP: 0033:0x7fdbcd19ce59 [ 323.745212][T10501] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 323.745236][T10501] RSP: 002b:00007fdbce0e3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 323.745261][T10501] RAX: ffffffffffffffda RBX: 00007fdbcd415fa0 RCX: 00007fdbcd19ce59 [ 323.745278][T10501] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 323.745292][T10501] RBP: 00007fdbcd232e6f R08: 0000000000000000 R09: 0000000000000000 [ 323.745307][T10501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 323.745322][T10501] R13: 00007fdbcd416038 R14: 00007fdbcd415fa0 R15: 00007ffed5802d68 [ 323.745345][T10501] [ 324.445685][ T30] audit: type=1804 audit(1843104683.220:6): pid=10507 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1024" name="/newroot/248/file0" dev="tmpfs" ino=1317 res=1 errno=0 [ 324.568964][T10510] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1026'. [ 326.326852][T10539] FAULT_INJECTION: forcing a failure. [ 326.326852][T10539] name failslab, interval 1, probability 0, space 0, times 0 [ 326.386676][T10539] CPU: 0 UID: 0 PID: 10539 Comm: syz.3.1032 Tainted: G L syzkaller #0 PREEMPT(full) [ 326.386714][T10539] Tainted: [L]=SOFTLOCKUP [ 326.386723][T10539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 326.386736][T10539] Call Trace: [ 326.386743][T10539] [ 326.386751][T10539] dump_stack_lvl+0x100/0x190 [ 326.386782][T10539] should_fail_ex.cold+0x5/0xa [ 326.386806][T10539] ? __kmalloc_noprof+0xd6/0x820 [ 326.386838][T10539] should_failslab+0xc2/0x120 [ 326.386869][T10539] __kmalloc_noprof+0xfc/0x820 [ 326.386895][T10539] ? __list_lru_init+0xd9/0x4b0 [ 326.386918][T10539] __list_lru_init+0xd9/0x4b0 [ 326.386939][T10539] sget_fc+0xa6f/0x1d80 [ 326.386983][T10539] ? __pfx_set_anon_super_fc+0x10/0x10 [ 326.387014][T10539] ? __pfx_sget_fc+0x10/0x10 [ 326.387044][T10539] ? refcount_dec_not_one+0x136/0x1c0 [ 326.387067][T10539] ? __pfx_refcount_dec_not_one+0x10/0x10 [ 326.387090][T10539] ? __kmalloc_cache_noprof+0x2e5/0x6c0 [ 326.387111][T10539] ? __kasan_kmalloc+0xaa/0xb0 [ 326.387138][T10539] ? __pfx_mqueue_fill_super+0x10/0x10 [ 326.387164][T10539] get_tree_nodev+0x28/0x190 [ 326.387197][T10539] mqueue_get_tree+0xf1/0x130 [ 326.387222][T10539] vfs_get_tree+0x92/0x320 [ 326.387251][T10539] fc_mount_longterm+0x1a/0x270 [ 326.387283][T10539] mq_init_ns+0x482/0x820 [ 326.387313][T10539] copy_ipcs+0x3dd/0x7e0 [ 326.387350][T10539] create_new_namespaces+0x20a/0xac0 [ 326.387374][T10539] ? security_capable+0x80/0x260 [ 326.387403][T10539] unshare_nsproxy_namespaces+0xf2/0x220 [ 326.387434][T10539] ksys_unshare+0x438/0xab0 [ 326.387463][T10539] ? __pfx_ksys_unshare+0x10/0x10 [ 326.387491][T10539] ? ksys_write+0x1ac/0x250 [ 326.387529][T10539] __x64_sys_unshare+0x31/0x40 [ 326.387557][T10539] do_syscall_64+0x115/0x840 [ 326.387579][T10539] ? clear_bhb_loop+0x40/0x90 [ 326.387605][T10539] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 326.387627][T10539] RIP: 0033:0x7fdbcd19ce59 [ 326.387644][T10539] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 326.387668][T10539] RSP: 002b:00007fdbce0e3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 326.387691][T10539] RAX: ffffffffffffffda RBX: 00007fdbcd415fa0 RCX: 00007fdbcd19ce59 [ 326.387706][T10539] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000000 [ 326.387720][T10539] RBP: 00007fdbce0e3090 R08: 0000000000000000 R09: 0000000000000000 [ 326.387738][T10539] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 326.387752][T10539] R13: 00007fdbcd416038 R14: 00007fdbcd415fa0 R15: 00007ffed5802d68 [ 326.387774][T10539] [ 327.321300][T10560] MTRR 1 not used [ 328.575263][T10595] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1043'. [ 328.774789][T10600] FAULT_INJECTION: forcing a failure. [ 328.774789][T10600] name failslab, interval 1, probability 0, space 0, times 0 [ 328.842399][T10602] FAULT_INJECTION: forcing a failure. [ 328.842399][T10602] name failslab, interval 1, probability 0, space 0, times 0 [ 328.856713][T10600] CPU: 0 UID: 0 PID: 10600 Comm: syz.1.1044 Tainted: G L syzkaller #0 PREEMPT(full) [ 328.856750][T10600] Tainted: [L]=SOFTLOCKUP [ 328.856759][T10600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 328.856780][T10600] Call Trace: [ 328.856787][T10600] [ 328.856796][T10600] dump_stack_lvl+0x100/0x190 [ 328.856827][T10600] should_fail_ex.cold+0x5/0xa [ 328.856853][T10600] ? fs_reclaim_acquire+0x70/0x100 [ 328.856887][T10600] should_failslab+0xc2/0x120 [ 328.856925][T10600] __kmalloc_noprof+0xfc/0x820 [ 328.856952][T10600] ? rcu_is_watching+0x12/0xc0 [ 328.856980][T10600] ? tomoyo_realpath_from_path+0xb6/0x690 [ 328.857008][T10600] tomoyo_realpath_from_path+0xb6/0x690 [ 328.857036][T10600] tomoyo_check_open_permission+0x2af/0x3c0 [ 328.857072][T10600] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 328.857115][T10600] ? hook_file_open+0x24f/0x8f0 [ 328.857161][T10600] ? rcu_is_watching+0x12/0xc0 [ 328.857190][T10600] tomoyo_file_open+0x6b/0x90 [ 328.857218][T10600] security_file_open+0xb5/0x1e0 [ 328.857240][T10600] do_dentry_open+0x588/0x14d0 [ 328.857265][T10600] vfs_open+0x82/0x3f0 [ 328.857292][T10600] path_openat+0x2873/0x4280 [ 328.857319][T10600] ? __pfx_path_openat+0x10/0x10 [ 328.857344][T10600] do_file_open+0x20e/0x430 [ 328.857365][T10600] ? __pfx_do_file_open+0x10/0x10 [ 328.857396][T10600] ? alloc_fd+0x471/0x7a0 [ 328.857433][T10600] ? do_getname+0x191/0x390 [ 328.857461][T10600] do_sys_openat2+0x10f/0x1e0 [ 328.857489][T10600] ? __pfx_do_sys_openat2+0x10/0x10 [ 328.857519][T10600] ? __fget_files+0x21f/0x3d0 [ 328.857557][T10600] __x64_sys_openat+0x12d/0x210 [ 328.857586][T10600] ? __pfx___x64_sys_openat+0x10/0x10 [ 328.857619][T10600] ? rcu_is_watching+0x12/0xc0 [ 328.857647][T10600] do_syscall_64+0x115/0x840 [ 328.857670][T10600] ? clear_bhb_loop+0x40/0x90 [ 328.857697][T10600] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 328.857720][T10600] RIP: 0033:0x7f24f239ce59 [ 328.857739][T10600] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 328.857769][T10600] RSP: 002b:00007f24f3263028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 328.857792][T10600] RAX: ffffffffffffffda RBX: 00007f24f2616180 RCX: 00007f24f239ce59 [ 328.857808][T10600] RDX: 0000000000088040 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 328.857824][T10600] RBP: 00007f24f2432e6f R08: 0000000000000000 R09: 0000000000000000 [ 328.857839][T10600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 328.857853][T10600] R13: 00007f24f2616218 R14: 00007f24f2616180 R15: 00007ffe7bd03198 [ 328.857875][T10600] [ 328.857894][T10600] ERROR: Out of memory at tomoyo_realpath_from_path. [ 329.158880][T10602] CPU: 0 UID: 0 PID: 10602 Comm: syz.0.1045 Tainted: G L syzkaller #0 PREEMPT(full) [ 329.158929][T10602] Tainted: [L]=SOFTLOCKUP [ 329.158937][T10602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 329.158952][T10602] Call Trace: [ 329.158960][T10602] [ 329.158970][T10602] dump_stack_lvl+0x100/0x190 [ 329.159002][T10602] should_fail_ex.cold+0x5/0xa [ 329.159027][T10602] ? __kmalloc_cache_node_noprof+0x6e/0x6c0 [ 329.159060][T10602] should_failslab+0xc2/0x120 [ 329.159092][T10602] __kmalloc_cache_node_noprof+0x94/0x6c0 [ 329.159122][T10602] ? lockdep_init_map_type+0x5c/0x250 [ 329.159144][T10602] ? __alloc_workqueue+0x781/0x1940 [ 329.159177][T10602] __alloc_workqueue+0x781/0x1940 [ 329.159209][T10602] alloc_workqueue_noprof+0xc7/0x130 [ 329.159238][T10602] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 329.159271][T10602] ? __pfx___debug_object_init+0x10/0x10 [ 329.159297][T10602] nci_register_device+0x21e/0xb80 [ 329.159334][T10602] ? __pfx_nci_register_device+0x10/0x10 [ 329.159370][T10602] ? lockdep_init_map_type+0x5c/0x250 [ 329.159395][T10602] virtual_ncidev_open+0x141/0x220 [ 329.159420][T10602] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 329.159444][T10602] misc_open+0x26d/0x450 [ 329.159472][T10602] ? __pfx_misc_open+0x10/0x10 [ 329.159500][T10602] chrdev_open+0x234/0x6a0 [ 329.159520][T10602] ? __pfx_apparmor_file_open+0x10/0x10 [ 329.159553][T10602] ? __pfx_chrdev_open+0x10/0x10 [ 329.159575][T10602] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 329.159603][T10602] do_dentry_open+0x6ab/0x14d0 [ 329.159623][T10602] ? __pfx_chrdev_open+0x10/0x10 [ 329.159648][T10602] vfs_open+0x82/0x3f0 [ 329.159676][T10602] path_openat+0x2873/0x4280 [ 329.159703][T10602] ? __pfx_path_openat+0x10/0x10 [ 329.159728][T10602] do_file_open+0x20e/0x430 [ 329.159750][T10602] ? __pfx_do_file_open+0x10/0x10 [ 329.159781][T10602] ? alloc_fd+0x471/0x7a0 [ 329.159819][T10602] ? do_getname+0x191/0x390 [ 329.159847][T10602] do_sys_openat2+0x10f/0x1e0 [ 329.159876][T10602] ? __pfx_do_sys_openat2+0x10/0x10 [ 329.159917][T10602] __x64_sys_openat+0x12d/0x210 [ 329.159947][T10602] ? __pfx___x64_sys_openat+0x10/0x10 [ 329.159981][T10602] ? rcu_is_watching+0x12/0xc0 [ 329.160009][T10602] do_syscall_64+0x115/0x840 [ 329.160033][T10602] ? clear_bhb_loop+0x40/0x90 [ 329.160059][T10602] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 329.160083][T10602] RIP: 0033:0x7fb403f9ce59 [ 329.160102][T10602] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 329.160126][T10602] RSP: 002b:00007fb404e38028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 329.160149][T10602] RAX: ffffffffffffffda RBX: 00007fb404215fa0 RCX: 00007fb403f9ce59 [ 329.160165][T10602] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 329.160180][T10602] RBP: 00007fb404032e6f R08: 0000000000000000 R09: 0000000000000000 [ 329.160194][T10602] R10: 000000000000003e R11: 0000000000000246 R12: 0000000000000000 [ 329.160215][T10602] R13: 00007fb404216038 R14: 00007fb404215fa0 R15: 00007ffd9f14f518 [ 329.160239][T10602] [ 330.238581][T10609] zero sized request [ 330.264499][T10609] netlink: 504 bytes leftover after parsing attributes in process `syz.2.1047'. [ 330.660288][T10621] FAULT_INJECTION: forcing a failure. [ 330.660288][T10621] name failslab, interval 1, probability 0, space 0, times 0 [ 330.730256][T10623] ------------[ cut here ]------------ [ 330.736019][T10623] IS_ERR(old) [ 330.736045][T10623] WARNING: kernel/tracepoint.c:369 at tracepoint_probe_unregister+0x837/0xd10, CPU#0: syz.0.1051/10623 [ 330.751642][T10623] Modules linked in: [ 330.755740][T10623] CPU: 0 UID: 0 PID: 10623 Comm: syz.0.1051 Tainted: G L syzkaller #0 PREEMPT(full) [ 330.767000][T10623] Tainted: [L]=SOFTLOCKUP [ 330.771946][T10623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 330.782581][T10623] RIP: 0010:tracepoint_probe_unregister+0x837/0xd10 [ 330.790031][T10623] Code: cc e8 fd 20 fe ff 48 8d 73 f0 48 c7 c2 b0 a9 0a 82 48 c7 c7 c0 4d 87 8e e8 e6 e1 e1 ff eb ba bb fe ff ff ff e8 da 20 fe ff 90 <0f> 0b 90 eb ac e8 cf 20 fe ff 49 89 dd 45 31 ff 49 be 00 00 00 00 [ 330.810074][T10623] RSP: 0018:ffffc900054c78b0 EFLAGS: 00010293 [ 330.816258][T10623] RAX: 0000000000000000 RBX: 00000000fffffffe RCX: ffffffff820ab2b1 [ 330.824289][T10623] RDX: ffff8880548d1f00 RSI: ffffffff820abaa6 RDI: ffff8880548d1f00 [ 330.832572][T10623] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 330.840647][T10623] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff821118f0 [ 330.848785][T10623] R13: 0000000000000202 R14: 0000000000000002 R15: ffffffff8ecd2240 [ 330.857131][T10623] FS: 00007fb404e386c0(0000) GS:ffff8881242f6000(0000) knlGS:0000000000000000 [ 330.866160][T10623] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 330.873309][T10623] CR2: 0000001b34713ff8 CR3: 000000005d1d4000 CR4: 00000000003526f0 [ 330.881801][T10623] Call Trace: [ 330.885097][T10623] [ 330.888043][T10623] tracing_stop_cmdline_record+0x66/0xa0 [ 330.893865][T10623] __ftrace_event_enable_disable+0x5c4/0x6f0 [ 330.899930][T10623] ftrace_event_set_open+0x224/0x380 [ 330.905301][T10623] do_dentry_open+0x6ab/0x14d0 [ 330.910088][T10623] ? __pfx_ftrace_event_set_open+0x10/0x10 [ 330.916050][T10623] vfs_open+0x82/0x3f0 [ 330.920166][T10623] path_openat+0x2873/0x4280 [ 330.924870][T10623] ? __pfx_path_openat+0x10/0x10 [ 330.929956][T10623] do_file_open+0x20e/0x430 [ 330.934775][T10623] ? __pfx_do_file_open+0x10/0x10 [ 330.939826][T10623] ? alloc_fd+0x471/0x7a0 [ 330.944254][T10623] ? do_getname+0x191/0x390 [ 330.948813][T10623] do_sys_openat2+0x10f/0x1e0 [ 330.953537][T10623] ? __pfx_do_sys_openat2+0x10/0x10 [ 330.958754][T10623] ? lock_release+0x24d/0x310 [ 330.963505][T10623] __x64_sys_openat+0x12d/0x210 [ 330.968378][T10623] ? __pfx___x64_sys_openat+0x10/0x10 [ 330.973801][T10623] ? rcu_is_watching+0x12/0xc0 [ 330.979076][T10623] do_syscall_64+0x115/0x840 [ 330.983973][T10623] ? clear_bhb_loop+0x40/0x90 [ 330.988707][T10623] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 330.994693][T10623] RIP: 0033:0x7fb403f9ce59 [ 330.999138][T10623] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 331.018936][T10623] RSP: 002b:00007fb404e38028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 331.027536][T10623] RAX: ffffffffffffffda RBX: 00007fb404215fa0 RCX: 00007fb403f9ce59 [ 331.035590][T10623] RDX: 0000000000020201 RSI: 0000200000000200 RDI: ffffffffffffff9c [ 331.043615][T10623] RBP: 00007fb404032e6f R08: 0000000000000000 R09: 0000000000000000 [ 331.051636][T10623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 331.059623][T10623] R13: 00007fb404216038 R14: 00007fb404215fa0 R15: 00007ffd9f14f518 [ 331.067670][T10623] [ 331.070789][T10623] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 331.078086][T10623] CPU: 0 UID: 0 PID: 10623 Comm: syz.0.1051 Tainted: G L syzkaller #0 PREEMPT(full) [ 331.089040][T10623] Tainted: [L]=SOFTLOCKUP [ 331.093370][T10623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 331.103619][T10623] Call Trace: [ 331.106917][T10623] [ 331.109859][T10623] dump_stack_lvl+0x100/0x190 [ 331.114560][T10623] vpanic+0x552/0x970 [ 331.118558][T10623] ? __pfx_vpanic+0x10/0x10 [ 331.123092][T10623] ? lock_release+0x24d/0x310 [ 331.127802][T10623] panic+0xd1/0xe0 [ 331.131629][T10623] ? __pfx_panic+0x10/0x10 [ 331.136428][T10623] ? check_panic_on_warn+0x1f/0x90 [ 331.141582][T10623] check_panic_on_warn.cold+0x19/0x34 [ 331.146974][T10623] ? tracepoint_probe_unregister+0x837/0xd10 [ 331.152980][T10623] __warn.cold+0x191/0x318 [ 331.157625][T10623] __report_bug+0x30f/0x440 [ 331.162278][T10623] ? tracepoint_probe_unregister+0x837/0xd10 [ 331.168305][T10623] ? __pfx___report_bug+0x10/0x10 [ 331.173440][T10623] ? rcu_is_watching+0x12/0xc0 [ 331.178229][T10623] ? trace_contention_end+0x126/0x160 [ 331.184175][T10623] ? __mutex_lock+0x26d/0x1bd0 [ 331.188958][T10623] ? tracepoint_probe_unregister+0x31/0xd10 [ 331.194973][T10623] ? rcu_is_watching+0x12/0xc0 [ 331.199771][T10623] ? tracepoint_probe_unregister+0x837/0xd10 [ 331.205793][T10623] report_bug+0xb2/0x220 [ 331.210057][T10623] ? tracepoint_probe_unregister+0x837/0xd10 [ 331.216063][T10623] handle_bug+0x16a/0x2a0 [ 331.220415][T10623] exc_invalid_op+0x17/0x50 [ 331.224941][T10623] asm_exc_invalid_op+0x1a/0x20 [ 331.229894][T10623] RIP: 0010:tracepoint_probe_unregister+0x837/0xd10 [ 331.236511][T10623] Code: cc e8 fd 20 fe ff 48 8d 73 f0 48 c7 c2 b0 a9 0a 82 48 c7 c7 c0 4d 87 8e e8 e6 e1 e1 ff eb ba bb fe ff ff ff e8 da 20 fe ff 90 <0f> 0b 90 eb ac e8 cf 20 fe ff 49 89 dd 45 31 ff 49 be 00 00 00 00 [ 331.256143][T10623] RSP: 0018:ffffc900054c78b0 EFLAGS: 00010293 [ 331.262243][T10623] RAX: 0000000000000000 RBX: 00000000fffffffe RCX: ffffffff820ab2b1 [ 331.270269][T10623] RDX: ffff8880548d1f00 RSI: ffffffff820abaa6 RDI: ffff8880548d1f00 [ 331.278352][T10623] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 331.286340][T10623] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff821118f0 [ 331.294339][T10623] R13: 0000000000000202 R14: 0000000000000002 R15: ffffffff8ecd2240 [ 331.302342][T10623] ? __pfx_probe_sched_switch+0x10/0x10 [ 331.307934][T10623] ? tracepoint_probe_unregister+0x41/0xd10 [ 331.313965][T10623] ? tracepoint_probe_unregister+0x836/0xd10 [ 331.319998][T10623] tracing_stop_cmdline_record+0x66/0xa0 [ 331.325715][T10623] __ftrace_event_enable_disable+0x5c4/0x6f0 [ 331.331738][T10623] ftrace_event_set_open+0x224/0x380 [ 331.337042][T10623] do_dentry_open+0x6ab/0x14d0 [ 331.341841][T10623] ? __pfx_ftrace_event_set_open+0x10/0x10 [ 331.347678][T10623] vfs_open+0x82/0x3f0 [ 331.351788][T10623] path_openat+0x2873/0x4280 [ 331.356413][T10623] ? __pfx_path_openat+0x10/0x10 [ 331.361385][T10623] do_file_open+0x20e/0x430 [ 331.365915][T10623] ? __pfx_do_file_open+0x10/0x10 [ 331.370967][T10623] ? alloc_fd+0x471/0x7a0 [ 331.375330][T10623] ? do_getname+0x191/0x390 [ 331.379855][T10623] do_sys_openat2+0x10f/0x1e0 [ 331.384644][T10623] ? __pfx_do_sys_openat2+0x10/0x10 [ 331.389859][T10623] ? lock_release+0x24d/0x310 [ 331.394564][T10623] __x64_sys_openat+0x12d/0x210 [ 331.399430][T10623] ? __pfx___x64_sys_openat+0x10/0x10 [ 331.404823][T10623] ? rcu_is_watching+0x12/0xc0 [ 331.409601][T10623] do_syscall_64+0x115/0x840 [ 331.414210][T10623] ? clear_bhb_loop+0x40/0x90 [ 331.418904][T10623] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 331.424810][T10623] RIP: 0033:0x7fb403f9ce59 [ 331.429252][T10623] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 331.448894][T10623] RSP: 002b:00007fb404e38028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 331.457341][T10623] RAX: ffffffffffffffda RBX: 00007fb404215fa0 RCX: 00007fb403f9ce59 [ 331.465323][T10623] RDX: 0000000000020201 RSI: 0000200000000200 RDI: ffffffffffffff9c [ 331.473305][T10623] RBP: 00007fb404032e6f R08: 0000000000000000 R09: 0000000000000000 [ 331.481296][T10623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 331.489278][T10623] R13: 00007fb404216038 R14: 00007fb404215fa0 R15: 00007ffd9f14f518 [ 331.497276][T10623] [ 331.500406][T10623] Kernel Offset: disabled [ 331.504769][T10623] Rebooting in 86400 seconds..