last executing test programs: 12.714641969s ago: executing program 3 (id=449): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_METER_CMD_SET(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x20000000) r1 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000180), r0) sendmsg$auto_ILA_CMD_DEL(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x38, r1, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@ILA_ATTR_IDENT_TYPE={0x5, 0x8, 0xc0}, @ILA_ATTR_IFINDEX={0x8}, @ILA_ATTR_LOCATOR_MATCH={0xc, 0x3, 0x9}, @ILA_ATTR_IDENT_TYPE={0x5, 0x8, 0x3}]}, 0x38}, 0x1, 0x0, 0x0, 0x8004}, 0x800) r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000280), 0xb4080, 0x0) r3 = waitid$auto_P_PGID(0x2, 0x0, &(0x7f00000002c0)={@_si_pad}, 0x0, &(0x7f0000000340)={{0x4, 0xb04}, {0x1, 0xffffffff}, 0x3, 0x100000000, 0x3f, 0xdcb, 0x0, 0xfff, 0xff, 0xffff, 0x9, 0x1, 0xd77, 0x16014396, 0x7fffffffffffffff, 0x9}) r4 = fcntl$auto(r0, 0x6, r3) r5 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000440), r0) sendmsg$auto_BATADV_CMD_GET_BLA_BACKBONE(r0, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x30, r5, 0x200, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_TT_LAST_TTVN={0x5, 0x12, 0x3}, @BATADV_ATTR_BANDWIDTH_UP={0x8, 0x1b, 0xf41}, @BATADV_ATTR_BLA_VID={0x6, 0x20, 0x9}, @BATADV_ATTR_ACTIVE={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x10}, 0x40000) r6 = openat$auto_trace_time_stamp_mode_fops_trace(0xffffffffffffff9c, &(0x7f0000000540)='/sys/kernel/debug/tracing/timestamp_mode\x00', 0x62040, 0x0) r7 = bpf$auto_BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000580)=@bpf_attr_0={0x7, 0x6, 0x6a, 0x2, 0x8, r0, 0x6, "71c931c71e82c400b5fbc94e175e4185", 0x0, r4, 0xe0, 0x1, 0x80000001, 0x2, r2, r6}, 0x3) fsconfig$auto_FSCONFIG_SET_FLAG(r8, 0x0, &(0x7f0000000640)='/sys/kernel/debug/tracing/timestamp_mode\x00', &(0x7f0000000680)="52d9440e53db1d779eadf2fffa83fbc8ddca8ea121ad5afe74482ade2847a8d11b45aecc4c8c9390d5a93ecc18a08cebad8761", 0x3) r13 = syz_genetlink_get_family_id$auto_nlbl_calipso(&(0x7f0000000700), r12) sendmsg$auto_NLBL_CALIPSO_C_REMOVE(r4, &(0x7f00000007c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000780)={&(0x7f0000000740)={0x1c, r13, 0x100, 0x70bd2a, 0x25dfdbfc, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x60000c4}, 0x40044) sendmsg$auto_NL80211_CMD_NEW_INTERFACE(r12, &(0x7f0000000e00)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000dc0)={&(0x7f0000000840)={0x578, 0x0, 0x400, 0x70bd29, 0x25dfdbfc, {}, [@NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0xccb8}, @NL80211_ATTR_RADAR_BACKGROUND={0x4}, @NL80211_ATTR_REKEY_DATA={0x558, 0x7a, 0x0, 0x1, [@typed={0x8, 0xf, 0x0, 0x0, @fd=r8}, @generic="e56d4442548d1fe98ffbfb4935a26da25f1d1a68cddec91319bdfcf099d403e158fc05c67b76d830bb9b93e05d1afa7f8e0ece6bf808e357b2e198e130bb17ed116e6b134ae9c130e44e07cb8528ce1a127f7c89fba2a92e8a35b0390bc8c0979e453cfd1f9fd270b9388275da34b165d60c54bea98e5b2faec318aee033c6f7b4b642eacb0b6474042397da316bd68be2ad6319a8888f9f35140eb372b7e501db206c2cc1dabb736863605374a4d0914eb4507e0508a7a21b00515fe1a097119246b2da1bf5a294b086d53ae3a2e445475972b4040f811b1290d04698f881586089712c8b7828e7592f23adfd7c7407b74a2c67ee9f", @typed={0x101, 0x57, 0x0, 0x0, @binary="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"}, @generic="9c5a1003cdc726071586229f529618983b4902b07115db09fb9c5887e56772b6e5b8d8dded65e114290264c775", @typed={0x8, 0x14a, 0x0, 0x0, @u32=0x800}, @generic="f5a4c303df292a9542fb631e40925512d9d9431916dc60cd63cff3667ec80ce547e2626c7a613042cf2878c9ad695a2a74528005caea4b3f856d0dd5c4a397e1c1dd444276096e008e92f032d5ea7b94a89460b17bcc96631beb14a61bc76f9732c33a253fa4425b208e3bd6b2414072b489f35e23960b28927050edff49534af484949d2d19651ded54413615f76f55df85213e6422fd79c5584820d9ba7801837d8f02661a53680f2ea4efd18f664512281f046f181effa794b6cfafc7e39f3caea7dcf4feeee5e3cf1aa251489cab6fe46d5e3799", @generic="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", @generic="bfb5634f8f7a4199e751dba56e74e876b920fe8e17f10d42696f4a9e2547da2a6dbd4e3bc5282bf03ee322e5cdef8551a48f4c2b46c4c039348cdab5b20ab1d99e02f9130aeb4eca94fa70113cf61084299a14da41cc1167c120651d841476e772dd7e8040c0ad1aaf5d4168b97d5fcecdff15c5e7f1cfd0c93bacb8ae2c86c65baaa2c897ff741ce611729da6028f68a89437a378566e90", @typed={0x8, 0x10e, 0x0, 0x0, @fd=r10}, @generic="dac56fead5f4cc0a3a4c9fbc3c70f89cdc6bcc64c8db8130ecb0ba7ef1186c5fcb91f66ea8634ca567685a2b8ea9fec14589b9515ff2b101547a4dffe2c407a1d1743c13649c3b05bf6e630ed8aed7833fdf00b122903dc23b1092c6a30499da1bedd9f5ca5abee559c6bb26b6fea3e73940bed9fab80719748ad16bd565f28e5708cf5d8edea20a3b540f42533a03cc971907743e140ee6006fe11080d9a398ed81f3415442b0b65b33"]}]}, 0x578}, 0x1, 0x0, 0x0, 0x20000000}, 0x40) pwrite64$auto(r12, &(0x7f0000000e40)='/sys/kernel/debug/tracing/timestamp_mode\x00', 0x400, 0x0) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000e80), r7) r14 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000f00), r10) sendmsg$auto_OVS_FLOW_CMD_SET(r4, &(0x7f00000020c0)={&(0x7f0000000ec0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000002080)={&(0x7f0000000f40)={0x111c, r14, 0x300, 0x70bd29, 0x25dfdbfc, {}, [@OVS_FLOW_ATTR_UFID_FLAGS={0x8, 0xa, 0x5}, @OVS_FLOW_ATTR_ACTIONS={0x10ed, 0x2, 0x0, 0x1, [@generic="870792ecf8038a3d1db2d093960f8aa709070865b8cd5786158a374acfa498f19cc7854462352476e0e9bb3504d543cee3399b71bb1037788ba1c4034198e058c0", @generic="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", @nested={0x94, 0x79, 0x0, 0x1, [@typed={0x8, 0x99, 0x0, 0x0, @ipv4=@private=0xa010102}, @generic="acc27fed1c64538452f00f0e00f45d5e76c6e38eb10c405ccb1048664e594e49d0c5891d1c0b449a9161660fa03043ae53e2a806ec27ede7b584ba3455e3f40523d01846cfdc1ad9abfe22c4e44bca26db73e5b3cd77ea1861847f123565de30544051af19d893c6d9a70ceb5f9e9d7e38426576", @typed={0x8, 0xbd, 0x0, 0x0, @pid=r3}, @nested={0x4, 0xbc}, @nested={0x4, 0x1}, @nested={0x4, 0xd4}]}, @nested={0x14, 0x158, 0x0, 0x1, [@typed={0xe, 0x111, 0x0, 0x0, @str='ovs_meter\x00'}]}]}, @OVS_FLOW_ATTR_UFID_FLAGS={0x8, 0xa, 0x80000000}, @OVS_FLOW_ATTR_UFID_FLAGS={0x8, 0xa, 0x1000}]}, 0x111c}, 0x1, 0x0, 0x0, 0x40}, 0x4c086) syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000002140), 0xffffffffffffffff) sendmsg$auto_SMC_NETLINK_GET_LINK_SMCR(0xffffffffffffffff, &(0x7f0000002240)={&(0x7f0000002100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000002200)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x40040) setsockopt$auto_SO_PROTOCOL(r10, 0x8, 0x26, &(0x7f0000002280)='\x00', 0x0) r15 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000002300), r8) sendmsg$auto_IEEE802154_ASSOCIATE_RESP(r10, &(0x7f00000023c0)={&(0x7f00000022c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000002380)={&(0x7f0000002340)={0x34, r15, 0x10, 0x70bd27, 0x25dfdbfd, {}, [@IEEE802154_ATTR_DEST_SHORT_ADDR={0x6, 0xe, 0x7ff}, @IEEE802154_ATTR_TXPOWER={0x5, 0x21, 0x6}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x1}, @IEEE802154_ATTR_LLSEC_SECLEVEL={0x5, 0x2a, 0x9}]}, 0x34}, 0x1, 0x0, 0x0, 0x6800}, 0x4080) ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000002440)={'pimreg\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000002480)={'ip6tnl0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r12, &(0x7f00000027c0)={&(0x7f0000002400)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000002780)={&(0x7f00000024c0)={0x2b8, 0x0, 0x400, 0x70bd26, 0x25dfdbfe, {}, [@ETHTOOL_A_TUNNEL_INFO_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}]}, @ETHTOOL_A_TUNNEL_INFO_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xfff}]}, @ETHTOOL_A_TUNNEL_INFO_HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xd0}]}, @ETHTOOL_A_TUNNEL_INFO_HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r16}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6b4b}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xfffffffc}]}, @ETHTOOL_A_TUNNEL_INFO_HEADER={0x80, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}]}, @ETHTOOL_A_TUNNEL_INFO_HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x92a}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x574}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}]}, @ETHTOOL_A_TUNNEL_INFO_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x400}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}]}, @ETHTOOL_A_TUNNEL_INFO_HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xb}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r17}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nicvf0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xb}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}]}, @ETHTOOL_A_TUNNEL_INFO_HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xfcf}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}]}, @ETHTOOL_A_TUNNEL_INFO_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}]}]}, 0x2b8}, 0x1, 0x0, 0x0, 0x2000c000}, 0x0) r18 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000002840), r7) sendmsg$auto_NL80211_CMD_NEW_STATION(r11, &(0x7f0000002900)={&(0x7f0000002800)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000028c0)={&(0x7f0000002880)={0x24, r18, 0x200, 0x70bd2c, 0x25dfdbfd, {}, [@NL80211_ATTR_QOS_MAP={0x5, 0xc7, "db"}, @NL80211_ATTR_STA_CAPABILITY={0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x4004084}, 0x4000000) 12.512572408s ago: executing program 3 (id=451): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_CHANNEL_SWITCH(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000140)={&(0x7f0000000600)={0x60, r1, 0x800, 0x70bd2b, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4051}, 0x20004005) r2 = open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x154) unlink$auto(&(0x7f00000001c0)='./file0/file0\x00') accept$auto(r2, 0x0, &(0x7f00000000c0)=0x9) r3 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) fallocate$auto(r2, 0x0, 0x5, 0x4cbd5d) lchown$auto(&(0x7f0000000080)='./file0\x00', 0xee01, 0xee00) write$auto(r3, 0x0, 0x5) mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80402, 0x0) write$auto_ocfs2_control_fops_stack_user(r4, &(0x7f0000003900), 0x0) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xb02, 0x0) mmap$auto(0x0, 0x10000002020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000000000ff) socket(0xa, 0x801, 0x84) socket(0x21, 0x0, 0x465ec3fa) execveat$auto(r2, 0x0, 0x0, 0x0, 0x11000) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_SNDCTL_TMR_CONTINUE(r5, 0x5404, &(0x7f0000000000)="a80b418e8458bf8c10d9") madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x8003, 0x6eb, 0x19) open_by_handle_at$auto(0xffffffffffffffff, 0x0, 0x6) connect$auto(0xffffffffffffffff, 0x0, 0x55) mmap$auto(0x0, 0x2101, 0x4000000000df, 0xeb1, 0x401, 0x8000) getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) 9.495450714s ago: executing program 2 (id=462): mmap$auto(0x0, 0x3, 0x0, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xde, 0x9b7f, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x21, 0x800, 0x84) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x795a, 0x3, 0x0) get_mempolicy$auto(0x0, 0x0, 0x7, 0x8, 0x3) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) write$auto(r0, 0x0, 0x2) getrlimit$auto(0x3, 0x0) fdatasync$auto(r0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0) ioctl$auto_BLKZEROOUT(0xffffffffffffffff, 0x127f, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/controlC2\x00', 0x400, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/019/001\x00', 0x400, 0x0) write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xc8d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\xc6\x00\x89\te\x8d\a\xfb\\n\x89C:\x84D\x10u\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k', 0x100000a3d9) mmap$auto(0x0, 0x4000b, 0x7, 0x9b72, 0x7, 0x28000) r2 = socket(0xa, 0x5, 0x0) getsockopt$auto(r2, 0x84, 0xb, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ea182, 0x0) openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x1, 0x0) write$auto(r1, &(0x7f00000003c0)='\t\x00\x00\x00\x00\x00\x00\x00io1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C\xc4\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x9b\x12\x89\xf4\x8e;\xb1\xd4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7>=\xae\b\xcd\xecD\x97)}\xfaK\xdf>f\xb8&\x959\x03\x0f\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfa\x04\x00\x00\x00\x95k8\x83\xcf\xc5D\xcc\xe6\xdb\x8c\xf1\xb0\xcb\xce\x87eR\x12i\x99\f\x15\xe0\xbf%_-\x06*ghP\x124\xc07-\xb65}\xfa\r\x0f\xb3S\xfb\xe3\xe0\xee\xa2\x03\xcd\xf1G\xea!\xbd\xf5\x94\xb7q\xa4\x84\x95\xaf\xb0]\xe59\xe0\xc1\xee\xc1\xff)\xfb\xfb\xb71\xaf\xdd\xde\xfe\xcb\xc1\x19\xd4\x05\x1d\xebW\rK-x\x1d`\xc7j[\xc7\xe78\xdeZ\xfa\xe8\v\xfd\xf8\xa41L\xfd\xf5O\xf6\xa59f\x03rwd\v\xfd\xe2j\x1eM\x86\xce\x94u\x91\xbdR\x06p6\v\xcf20E\x1e\xa7o\xc8\x81\xe3\x8bv\x1bw\xa1\xbd\a\xd5\xae\at=2[\x87w\x01.\x95r9w\x97\xf7|\x01\x80(aW\x05eN\x00\xd0}ah\xa3RK\x8c\xd1Z\a#\xd6N1\xd26\x11\x02\x9e\xdb\xc1\x86\xa9F\x93\x01\xfd\xc1\xd4\xe4m\x13\xa2\xe9\xe6\xbed\x04\x87\xb8\xcd\x15\x17\xa8>T#X\x00TA\x8a\xb3\xf6\x01\x8b% \x04y\xad\x97m\x99\x97\xecag\xae\x12^\xa7\xfe\xcf\x9b\xddXi\x85J\x8ck\xfa\xbf\x94\xffy\x03k\xb0\xeb\xf4\x9b\xaa\xe9\xa1\x18\xaf\xee\x1e\x00'/544, 0xff) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) init_module$auto(0x0, 0xffff9, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x8000000000000000, 0x15) r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/dev_snmp6/macvtap0\x00', 0x88342, 0x0) pread64$auto(r3, 0x0, 0x8, 0xfffd) 9.03628239s ago: executing program 3 (id=463): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) unshare$auto(0x40000080) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) madvise$auto(0x0, 0x20499d, 0x9) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x2, 0x0) r0 = socket(0xa, 0x3, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x1, 0x6) socket(0x11, 0x80003, 0x300) socket(0x10, 0x2, 0x0) socket(0x2, 0x3, 0x2) socket(0x2, 0x3, 0x104) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x0) socketpair$auto(0x3, 0x5, 0x7, 0x0) bind$auto(r0, 0x0, 0x6f) connect$auto(r0, 0x0, 0x55) syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) socket(0x29, 0x2, 0x0) r1 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsa1\x00', 0x101041, 0x0) write$auto(r1, 0x0, 0x5) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x0) r2 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, 0x0, 0x42000, 0x0) read$auto_proc_pid_smaps_operations_internal(r2, &(0x7f00000002c0)=""/190, 0xfffffe39) 7.174677553s ago: executing program 2 (id=469): rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) sendmsg$auto_ETHTOOL_MSG_TSCONFIG_GET(0xffffffffffffffff, 0x0, 0x2080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) sendmsg$auto_WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000811}, 0x810) r2 = getpid() mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) fcntl$auto(0x0, 0x408, 0x100000) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/mptcp/pm_type\x00', 0xe0002, 0x0) write$auto(r3, &(0x7f0000000180)='//\xf2\x00', 0x8) pwrite64$auto(0xc8, 0x0, 0xfdf0, 0x39) shmctl$auto_IPC_SET(0x9, 0x1, &(0x7f0000000280)={{0x6, 0x0, 0xee01, 0x600000, 0x4, 0x80000000, 0x5}, 0x8, 0xbc6, 0xb5a, 0x100, @raw=0x4, @inferred=r2, 0x7, 0x0, &(0x7f0000000440)="14ce90079095de585fd06630a02dd8a0ecfc6c51eec2e574ef16954b00843638a97fa5f36eaaca881a8b57318d69ff23e2bf1f89813e722415ac144427bfb571f252fdd993db6c147a036f85171f09b95b33e5f7c7cd7c9b3d8d72e88c55668ae28f5f9e307561aae6abf95319a912c899ceb57954ab0fc1ca7d9e2093e3c352ecee7063e56ea62bee271ca823555c7ea4fd4441580003cfc13557b877614cc5de2721aaf13c6a4b150f9326e2a6673119ae3565623dc19cd82919577a34d74efbee70f51bb098e0c8441ec78c5aee3c11105c44d1b3cef85031a3addc", &(0x7f00000005c0)="a7aa8292e6b93d51ba42dc6fea129d585f7ea14601e39b662767db2fd72d17d182b2672433e2d234e01c3211d78a3b1c42292bb61f9f8fc6a2f53467a4c7fa1437497c24c9eb9ffb60bb01dd8bf8b3938af3f14228560508b8d4bfb61797045cf8e1e8ea3a4c13f6b6fa0a6f410d1bb532222f21f03f709c686b00ac7c58b2168f40e8ee414f0350f461ca13d8b23df2e56b15c1627f5ee9f1dd96f43181326650ad11fd8f8b079d99b23d6314e0a22fab0bf83b0b1e770e6456cfdc132be5fb417493e729d89bea497b7dd9ebf8adc20e332e4375028dff4ddb8521347b55292e45f0ee42c7d1"}) lstat$auto(&(0x7f00000006c0)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', &(0x7f0000000340)={0xffffffffffffff81, 0x0, 0x401, 0x7a, 0xee00, 0xee01, 0x0, 0x0, 0x4, 0x7, 0x5, 0x7ff, 0x0, 0xa0, 0x7ff, 0x5, 0x5}) keyctl$auto(0x8000, 0x0, r4, r5, 0x8) r6 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder0\x00', 0x8882, 0x0) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xc9\xb3\xbc\x8c\x1dga08\x90\x86\xdde\x1cJ\x99\x00\x11:\x14\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd8\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfdef, 0x3) ioctl$auto_BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f00000000c0)) bpf$auto_BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)=@bpf_attr_4={0x4, r1, 0x33d, r6}, 0x7fffffff) process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000005246}, 0xa, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) write$auto(0x3, 0x0, 0xfdef) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, 0x0) 6.639704284s ago: executing program 2 (id=471): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) unshare$auto(0x40000080) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) madvise$auto(0x0, 0x20499d, 0x9) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x2, 0x0) r0 = socket(0xa, 0x3, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x1, 0x6) socket(0x11, 0x80003, 0x300) socket(0x10, 0x2, 0x0) socket(0x2, 0x3, 0x2) socket(0x2, 0x3, 0x104) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) socket(0x2, 0x1, 0x0) socketpair$auto(0x3, 0x5, 0x7, 0x0) bind$auto(r0, 0x0, 0x6f) connect$auto(r0, 0x0, 0x55) syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) socket(0x29, 0x2, 0x0) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsa1\x00', 0x101041, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x0) r1 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, 0x0, 0x42000, 0x0) read$auto_proc_pid_smaps_operations_internal(r1, &(0x7f00000002c0)=""/190, 0xfffffe39) 6.593848137s ago: executing program 0 (id=472): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1a9402, 0x0) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x1f40) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) ioctl$auto_XFS_IOC_FD_TO_HANDLE(0xffffffffffffffff, 0xc038586a, &(0x7f0000000140)={r0, &(0x7f0000000200)="e5fe2547d9b008e72ff49702524bcc409a7b2a42cfe8dda4efc8fd79b64b39448eea6b61a29332908fa3df35c2603fcd922f96a9ef753de414e1e9017bc63bdef45d69f50c840788a110a7952f43c04db6db23c633c2707d77a11d2d96b6f7e045845d1a03a120317688e6aa10ed60285d30be008f57b3e4e13ddc76073ae335bd757596615248f1238c0ae94e8841d717ab701849ee34b490f5eadbba63fc0379a2d4891cc0d39cea488cb3b1a2b2b718f47024fa372672816d61b07c2208495f72a05005e0de086e5040faa3d1a227283aceafe0e1dbcd5e3c36be674742f0ac32e7a18033213c859509ad", 0x8, &(0x7f0000000380)="f0d10f30bfc639ba933ea8f73f14408f5bb700e552731836c829c7dfb5a5baf8e61d0fb5e540f812866470465c1601a6f48497fd2481dca0ae4b71afe86934a6d4238ea3ab619cd02bf55ccf9d584e9759b170a5a4211ea05bcde8b276f0656880bcf0af1e932798ec0aedcfba8df4ccc10bbb9f5b2d96963feaa31f21021c7e6aba8f94e71cf626396913aced32a6c854f6c0c4d3f9558440050b3acb32936d8eb3cd4fab2d47819346a08bb106974d315418f02c5edbf1f7964b0f3afa148ce4ae2ad01c4779", 0xe99, &(0x7f0000000480)="f8582bdcb40567175d632eceaa858d1a8ed8c4d39926e2b4556fbec03bd0b5a6245dc8d1f472c16c2c60b92f5c8ada9281540e404c46bbe01cb14249fae1c7c2c88e220c45bc6ba8a040fec21952973d5eccd139ccccf0933a9735a3ed478ed6d93406072f2dd5551fd7ef587d4e9b8bc6909f701cf012d4a705ec778423e1e547ef83b44e9300d508ed7213be6891be51ebbec2659442fd7003707a9f5bee8baf596cf9964d88bf9a3f55b91054091e0e91f399444af59410f636dc63afed88e00d4ec22577c0d55bfcc9537a8062", &(0x7f0000000100)=0x2}) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) ioctl$auto_KVM_GET_MSRS(r2, 0x4400ae8f, &(0x7f0000000480)={0x9d}) writev$auto(r2, &(0x7f0000000180)={0x0, 0x71}, 0xee) syz_open_procfs$namespace(0x0, &(0x7f0000000300)='ns/net\x00') sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x880) timer_create$auto(0x9, 0x0, 0x0) read$auto(0x3, 0x0, 0x8080) socket(0xa, 0x1, 0x100) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) write$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffffff, &(0x7f00000001c0)="624d1bfe595046ab5c98199adf260600de16baef6176e6021e1dce210500e8fdffff0000000000fffffffe00a7ed73de11691c13403c82be", 0x7b) process_mrelease$auto(0xffffffffffffffff, 0xa) write$auto(0x3, 0x0, 0x100082) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = socket(0x2, 0x1, 0x106) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/platform/vhci_hcd.4/usb18/18-0:1.0/usb18-port3/location\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, 0x0, 0x0) connect$auto(r3, &(0x7f0000000080)=@qipcrtr={0x2a, 0xffffffffffffffff, 0x3fff}, 0x54) ioctl$auto(0x3, 0x80000541b, 0x38) read$auto(0x3, 0x0, 0x7fffffff) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) 5.763699552s ago: executing program 3 (id=475): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop15\x00', 0x84100, 0x0) mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) close_range$auto(r0, 0xfffffffffffff000, 0x2000002) mmap$auto(0x6000000000000, 0xfffffffffffffffb, 0x1, 0x12, r0, 0x4) r1 = eventfd$auto(0x4) r2 = openat$auto_urandom_fops_random(0xffffffffffffff9c, 0x0, 0x101b00, 0x0) unshare$auto(0x40000080) ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, 0x0) setresgid$auto(0x0, 0x0, 0x0) mmap$auto(0x0, 0x7, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x802, 0x0) read$auto(r3, 0x0, 0x7) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) prctl$auto(0x4e, 0x3, 0x0, 0x1, 0x0) pipe$auto(&(0x7f0000000280)=r4) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) syz_clone3(&(0x7f00000003c0)={0x2042000, &(0x7f0000000180)=0xffffffffffffffff, &(0x7f00000001c0), &(0x7f0000000240), {0x2d}, &(0x7f0000000280), 0x0, &(0x7f00000002c0)=""/79, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff], 0x5, {r1}}, 0x58) process_madvise$auto_MADV_COLD(r5, &(0x7f00000004c0)={&(0x7f0000000440)="9f8e653135bfc5a70a47a6d8850f7e5b54aba29b991b1ee2e01011414815fdf81c2b9855e711611cbc5e8873d05f265e9f3d38e1ecdb3f2930c19f2f6bac05188a52f265465edd73eb8b1079117a30875607d6f4fb3320fa3a1bdb67569644c8e1a78509", 0x36}, 0x7, 0x14, 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) pwritev$auto(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000), 0x2}, 0x3, 0x11, 0x3) io_uring_enter$auto(0xffffffffffffffff, 0x6, 0x3, 0x5, &(0x7f0000000500)="cc1e80d7241fe039a877a7a78e8e783987f7b332764258fc1644ee337ff1844fac93d3aacad8f2edd31d9092796d4334c05e110b48a37c569f42a31121678d31e7993177dda6f5be565301aac48aeafe685633c77f96fd89c2e9f93a0054bb37514fc209f22ca3ea7fe15cf2587d19af865180836707860a27cc23a2130dbd564c5e0de267", 0x8) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) ioctl$auto_TUNGETDEVNETNS(r1, 0x54e3, 0x0) ioctl$auto(0xffffffffffffffff, 0x40104d06, r2) syz_clone(0x40180311, 0x0, 0x0, 0x0, 0x0, 0x0) 5.570655218s ago: executing program 0 (id=476): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video0\x00', 0xc8600, 0x0) open(&(0x7f0000000100)='.\x00', 0x0, 0x428) ioctl$auto(0x3, 0x4020565a, 0x38) 5.464979051s ago: executing program 1 (id=477): r0 = openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000480)='/sys/kernel/tracing/per_cpu/cpu0/trace\x00', 0x20000, 0x0) read$auto_tracing_fops_trace(r0, &(0x7f0000000580)=""/4096, 0x1000) socket(0x2c, 0xa, 0x8) openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, 0x0, 0x22002, 0x0) openat$auto_proc_mem_operations_base(0xffffffffffffff9c, 0x0, 0x200, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r1 = socket(0x2, 0x5, 0x0) r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), r1) r3 = waitid$auto(0x3, 0xffffffffffffffff, &(0x7f0000000080)={@_si_pad}, 0x8, &(0x7f0000000100)={{0x4, 0x9}, {0x3ff, 0x800}, 0xffffffffffffffff, 0x6, 0x101, 0x10, 0x9, 0x6, 0x1ff, 0xffffffffffff1e39, 0xc, 0x3, 0x1, 0x8, 0x3, 0xa55}) sendmsg$auto_TIPC_NL_NET_SET(r1, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, r2, 0x300, 0x70bd26, 0x25dfdbfe, {}, [@TIPC_NLA_NET={0x20, 0x7, 0x0, 0x1, [@typed={0x8, 0xa8, 0x0, 0x0, @u32=0xfffffff9}, @typed={0xc, 0x45, 0x0, 0x0, @u64}, @typed={0x8, 0x27, 0x0, 0x0, @pid=r3}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000085}, 0x24004000) r4 = io_uring_setup$auto(0x406, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0xfffffffffffeffff, 0x3, 0x0) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, 0x0, 0x80) getrandom$auto(0x0, 0x6000000, 0x3) io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46) io_uring_enter$auto(r4, 0x7, 0x7ffffffb, 0x3, 0x0, 0x3) move_pages$auto(0x0, 0xa, 0x0, 0x0, 0x0, 0x2) io_uring_enter$auto(0x3, 0x5, 0x5f3, 0x3, 0x0, 0x2) 5.355443388s ago: executing program 0 (id=478): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0) setresuid$auto(0x0, 0x0, 0x0) sendmsg$auto_NL80211_CMD_GET_STATION(0xffffffffffffffff, 0x0, 0x8000) r0 = prctl$auto(0x8, 0x4, 0x0, 0x1, 0x0) unshare$auto(0x40000080) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) timer_gettime$auto(0x0, &(0x7f0000001f80)={{0x9, 0x100000001}, {0x9f9a, 0x401}}) sched_setattr$auto(0x0, 0x0, 0x7b) msync$auto(0x1ffff000, 0x1800000fffffff4, 0x400000004) open(0x0, 0x0, 0x20) mmap$auto(0x8005, 0x2020009, 0x3, 0xeb1, r0, 0x8000) r2 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r3, 0x0, 0x20) madvise$auto(0x0, 0xffffffffffff0005, 0x19) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, 0x6) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x2, 0x0) sendmsg$auto_BATADV_CMD_GET_BLA_BACKBONE(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB='40', @ANYRES16=0x0, @ANYBLOB="200b28bd7000fbdbdf250c00000005000a00060000000a"], 0x34}, 0x1, 0x0, 0x0, 0x4011}, 0x4000855) 4.692186419s ago: executing program 1 (id=479): rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) sendmsg$auto_ETHTOOL_MSG_TSCONFIG_GET(0xffffffffffffffff, 0x0, 0x2080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) sendmsg$auto_WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000811}, 0x810) r2 = getpid() mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) fcntl$auto(0x0, 0x408, 0x100000) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/mptcp/pm_type\x00', 0xe0002, 0x0) write$auto(r3, &(0x7f0000000180)='//\xf2\x00', 0x8) pwrite64$auto(0xc8, 0x0, 0xfdf0, 0x39) shmctl$auto_IPC_SET(0x9, 0x1, &(0x7f0000000280)={{0x6, 0x0, 0xee01, 0x600000, 0x4, 0x80000000, 0x5}, 0x8, 0xbc6, 0xb5a, 0x100, @raw=0x4, @inferred=r2, 0x7, 0x0, &(0x7f0000000440)="14ce90079095de585fd06630a02dd8a0ecfc6c51eec2e574ef16954b00843638a97fa5f36eaaca881a8b57318d69ff23e2bf1f89813e722415ac144427bfb571f252fdd993db6c147a036f85171f09b95b33e5f7c7cd7c9b3d8d72e88c55668ae28f5f9e307561aae6abf95319a912c899ceb57954ab0fc1ca7d9e2093e3c352ecee7063e56ea62bee271ca823555c7ea4fd4441580003cfc13557b877614cc5de2721aaf13c6a4b150f9326e2a6673119ae3565623dc19cd82919577a34d74efbee70f51bb098e0c8441ec78c5aee3c11105c44d1b3cef85031a3addc", &(0x7f00000005c0)="a7aa8292e6b93d51ba42dc6fea129d585f7ea14601e39b662767db2fd72d17d182b2672433e2d234e01c3211d78a3b1c42292bb61f9f8fc6a2f53467a4c7fa1437497c24c9eb9ffb60bb01dd8bf8b3938af3f14228560508b8d4bfb61797045cf8e1e8ea3a4c13f6b6fa0a6f410d1bb532222f21f03f709c686b00ac7c58b2168f40e8ee414f0350f461ca13d8b23df2e56b15c1627f5ee9f1dd96f43181326650ad11fd8f8b079d99b23d6314e0a22fab0bf83b0b1e770e6456cfdc132be5fb417493e729d89bea497b7dd9ebf8adc20e332e4375028dff4ddb8521347b55292e45f0ee42c7d1"}) lstat$auto(&(0x7f00000006c0)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', &(0x7f0000000340)={0xffffffffffffff81, 0x0, 0x401, 0x7a, 0xee00, 0xee01, 0x0, 0x0, 0x4, 0x7, 0x5, 0x7ff, 0x0, 0xa0, 0x7ff, 0x5, 0x5}) keyctl$auto(0x8000, 0x0, r4, r5, 0x8) r6 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder0\x00', 0x8882, 0x0) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xc9\xb3\xbc\x8c\x1dga08\x90\x86\xdde\x1cJ\x99\x00\x11:\x14\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd8\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfdef, 0x3) ioctl$auto_BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f00000000c0)) bpf$auto_BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)=@bpf_attr_4={0x4, r1, 0x33d, r6}, 0x7fffffff) process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000005246}, 0xa, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) write$auto(0x3, 0x0, 0xfdef) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, 0x0) 3.872799623s ago: executing program 1 (id=480): r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/if_inet6\x00', 0x181800, 0x0) pread64$auto(r1, &(0x7f0000000000)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xba*G\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90~Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1\x00'/232, 0x3ef, 0x9) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d399b39", 0xfdef) (fail_nth: 5) 3.770916166s ago: executing program 3 (id=481): close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) unshare$auto(0x40000080) setsockopt$auto(0x3, 0x10000000084, 0x78, 0x0, 0x4) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x323340, 0x0) mmap$auto(0x0, 0x3, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) pidfd_open$auto(0x1, 0x0) r0 = socket(0x2, 0x1, 0x0) setsockopt$auto(r0, 0x6, 0x1f, 0x0, 0x3d) setsockopt$auto(0x4, 0x0, 0x484, 0xfffffffffffffffe, 0x20) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) timer_create$auto(0x9, 0x0, 0x0) read$auto(0x3, 0x0, 0x8080) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) process_mrelease$auto(0xffffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) connect$auto(0xffffffffffffffff, 0x0, 0x54) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/event0\x00', 0x40000, 0x0) r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) ioctl$auto_EVIOCGRAB(r1, 0x40044590, &(0x7f0000000000)=0x5) ioctl$auto_EVIOCGMASK(r2, 0x80104592, &(0x7f0000000140)={0x4, 0x800005, 0x400007}) mmap$auto(0x0, 0x4020008, 0xdf, 0xeb1, 0x401, 0x8000) 3.319157005s ago: executing program 0 (id=482): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/compaction_proactiveness\x00', 0xc0781, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0xc, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x9, 0xfce4, 0x200, 0x5, 0x7, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b3662034b19", 0x0, 0xffffffffffffffff, 0x401, 0x7, 0x9, 0x6}, 0x10) bpf$auto(0x6, 0x0, 0x0) 3.041959231s ago: executing program 0 (id=483): mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) r0 = open(&(0x7f00000000c0)='./file0\x00', 0x40000, 0x31) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) mmap$auto(0x0, 0x1, 0xfd5, 0x12, r0, 0x0) mmap$auto(0x9, 0x1ff, 0x4, 0x14, 0x3, 0x0) socket(0xa, 0x3, 0x73) mmap$auto(0xfffffffffffffff9, 0x2000a, 0x10000000000a1, 0xebe, 0x401, 0x8000) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/event0\x00', 0x668401, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/zram0/reset\x00', 0xa001, 0x0) write$auto(r2, &(0x7f0000000040)='7\x00\\\xa0\x01\x00\x01\x00\x00\x00\x00\x00\xc7k', 0x81) write$auto(r1, &(0x7f00000000c0)='/dev/audio1\x00', 0x100000a3d9) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x3, 0x0, 0xfffffffffffffffc, 0x2}, 0xed7138c}, 0x2, 0x9) map_shadow_stack$auto(0x2, 0x3, 0x1) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000480)='/dev/sda1\x00', 0x8800, 0x0) cachestat$auto(r3, &(0x7f0000000640)={0x8, 0x4000000000008}, 0x0, 0x0) r4 = socket(0xa, 0x5, 0x84) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/module/nfs/parameters/nfs_mountpoint_expiry_timeout\x00', 0xa001, 0x0) sendto$auto(r4, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe80000700"}, 0x1c) getsockopt$auto(0xffffffffffffffff, 0x84, 0x85, 0x0, &(0x7f00000000c0)=0x1000c) 2.883530589s ago: executing program 1 (id=484): r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/if_inet6\x00', 0x181800, 0x0) pread64$auto(r1, &(0x7f0000000000)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xba*G\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90~Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1\x00'/232, 0x3ef, 0x9) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d1f9b39", 0xfdef) 2.879100089s ago: executing program 2 (id=485): prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x4e, 0x1, 0x0, 0x0, 0x0) prctl$auto(0x1c, 0x1, 0x0, 0x0, 0xffffffffffffffff) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x163340, 0x16e) socket(0x2, 0x80802, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/rnbd-client/ctl/map_device\x00', 0x40442, 0x0) setsockopt$auto_SO_TYPE(r0, 0x7ff, 0x3, &(0x7f0000000000)='\x95]$:,\\\\^@}.\\\x00', 0x5) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) 2.395434162s ago: executing program 1 (id=486): prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = prctl$auto(0x4e, 0x1, 0x0, 0x0, 0x0) r1 = prctl$auto(0x4e, 0x1, 0x0, 0x0, 0xffffffffffffffff) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r2 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) fcntl$auto_F_GETOWNER_UIDS(r1, 0x11, 0x1e) open(0x0, 0x163340, 0x16e) socket(0x2, 0x80802, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/rnbd-client/ctl/map_device\x00', 0x40442, 0x0) setsockopt$auto_SO_TYPE(r2, 0x7ff, 0x3, &(0x7f0000000000)='\x95]$:,\\\\^@}.\\\x00', 0x5) sendmmsg$auto(r0, &(0x7f0000000240)={{&(0x7f0000000040)="98a6ac36f05cefc2dfc9edc154a5f42b9f6363cb42f314adea1f0a7648e1f60839d0b390e18fb259", 0x8, &(0x7f0000000080)={&(0x7f0000000100)="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", 0x68dddced}, 0x3, &(0x7f0000000200)="21bb5eb9309bb30cbf7b5f131c6d2c7b6c769552", 0xfffffffffffffff9, 0x9}, 0x4}, 0xffffffff, 0x739) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) 2.39518638s ago: executing program 2 (id=487): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop15\x00', 0x84100, 0x0) mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) close_range$auto(r0, 0xfffffffffffff000, 0x2000002) mmap$auto(0x6000000000000, 0xfffffffffffffffb, 0x1, 0x12, r0, 0x4) r1 = eventfd$auto(0x4) r2 = openat$auto_urandom_fops_random(0xffffffffffffff9c, 0x0, 0x101b00, 0x0) unshare$auto(0x40000080) ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, 0x0) setresgid$auto(0x0, 0x0, 0x0) mmap$auto(0x0, 0x7, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x802, 0x0) read$auto(r3, 0x0, 0x7) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) prctl$auto(0x4e, 0x3, 0x0, 0x1, 0x0) pipe$auto(&(0x7f0000000280)=r4) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) syz_clone3(&(0x7f00000003c0)={0x2042000, &(0x7f0000000180)=0xffffffffffffffff, &(0x7f00000001c0), &(0x7f0000000240), {0x2d}, &(0x7f0000000280), 0x0, &(0x7f00000002c0)=""/79, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff], 0x5, {r1}}, 0x58) process_madvise$auto_MADV_COLD(r5, &(0x7f00000004c0)={&(0x7f0000000440)="9f8e653135bfc5a70a47a6d8850f7e5b54aba29b991b1ee2e01011414815fdf81c2b9855e711611cbc5e8873d05f265e9f3d38e1ecdb3f2930c19f2f6bac05188a52f265465edd73eb8b1079117a30875607d6f4fb3320fa3a1bdb67569644c8e1a78509", 0x36}, 0x7, 0x14, 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x2, 0x0) pwritev$auto(r6, &(0x7f0000000100)={&(0x7f0000000000), 0x2}, 0x3, 0x11, 0x3) io_uring_enter$auto(r6, 0x6, 0x3, 0x5, &(0x7f0000000500)="cc1e80d7241fe039a877a7a78e8e783987f7b332764258fc1644ee337ff1844fac93d3aacad8f2edd31d9092796d4334c05e110b48a37c569f42a31121678d31e7993177dda6f5be565301aac48aeafe685633c77f96fd89c2e9f93a0054bb37514fc209f22ca3ea7fe15cf2587d19af865180836707860a27cc23a2130dbd564c5e0de267", 0x8) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) ioctl$auto_TUNGETDEVNETNS(r1, 0x54e3, 0x0) ioctl$auto(0xffffffffffffffff, 0x40104d06, r2) syz_clone(0x40180311, 0x0, 0x0, 0x0, 0x0, 0x0) 2.001491099s ago: executing program 0 (id=488): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) write$auto(0xffffffffffffffff, 0x0, 0x8000000000000001) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rpc/auth.unix.ip/flush\x00', 0x40d81, 0x0) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000100), 0xcb00, 0x0) getsockopt$auto_SO_MEMINFO(0xffffffffffffffff, 0x7, 0x37, &(0x7f0000000180)='\x00', &(0x7f00000001c0)=0x5) unshare$auto(0x40000080) r1 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x1e3000, 0x0) unlink$auto(&(0x7f0000000080)='./cgroup.cpu/cgroup.procs\x00') mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(r0, r0, 0x6f47) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) open(&(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x14e302, 0x20) r2 = socket(0xa, 0x3, 0x3a) setsockopt$auto(r1, 0x29, 0xd2, 0x0, 0x2000567) r3 = fanotify_init$auto(0x65, 0x2) pipe$auto(0x0) dup2$auto(0x5, 0x4) splice$auto(r3, 0x0, r2, 0x0, 0x80000001, 0x8) open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0xe0180, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) socket(0x15, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) 1.530715591s ago: executing program 1 (id=489): openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x2101, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x9) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) socket(0x2, 0x3, 0xa) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) connect$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x4003, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) sendmmsg$auto(0x3, 0x0, 0x9a5, 0x47ffff7a) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/pci0000:00/0000:00:03.0/resource1\x00', 0x0, 0x0) mmap$auto(0x0, 0x3, 0x1000000000001, 0x8000000008011, 0x3, 0x0) r0 = socket(0x2, 0x3, 0x3b) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) io_uring_setup$auto(0xf0, &(0x7f0000000180)={0x6, 0x18, 0xd64, 0xc852, 0x6, 0x7, r0, [0x1, 0x401, 0x1000], {0x7, 0x5, 0x1, 0x4, 0x95, 0xf4c, 0x7fff, 0xfffffffb, 0x65f29f6d}, {0x3, 0xadc, 0x10000, 0x0, 0x5, 0xffffffff, 0x1000, 0x54f, 0x5}}) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x2, 0x0) r2 = socket(0xa, 0x3, 0xff) connect$auto(r2, &(0x7f00000018c0)=@generic={0xa}, 0x55) sendmmsg$auto(0x3, 0x0, 0x6, 0x7fffffe) ioctl$auto_AUTOFS_IOC_ASKUMOUNT(r1, 0x80049370, &(0x7f0000000200)=0x579b) write$auto_proc_mem_operations_base(0xffffffffffffffff, &(0x7f0000000080)="eaa906a2e324661c62fc7a48c0c620d5b0f78b63179c538b3ea11744e6e58e00009d93d07457b5e9", 0x28) syz_clone3(0x0, 0x0) madvise$auto(0x5, 0x7, 0x100000000) mmap$auto(0x0, 0x400008, 0xb, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) r3 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000240), 0x2000, 0x0) io_uring_setup$auto(0x2, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r3, 0xc0285700, 0x0) openat$auto_sync_info_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0xc0042, 0x0) 1.336338257s ago: executing program 2 (id=490): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop15\x00', 0x84100, 0x0) mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) close_range$auto(r0, 0xfffffffffffff000, 0x2000002) mmap$auto(0x6000000000000, 0xfffffffffffffffb, 0x1, 0x12, r0, 0x4) r1 = eventfd$auto(0x4) r2 = openat$auto_urandom_fops_random(0xffffffffffffff9c, 0x0, 0x101b00, 0x0) unshare$auto(0x40000080) ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, 0x0) setresgid$auto(0x0, 0x0, 0x0) mmap$auto(0x0, 0x7, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x802, 0x0) read$auto(r3, 0x0, 0x7) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) prctl$auto(0x4e, 0x3, 0x0, 0x1, 0x0) pipe$auto(&(0x7f0000000280)=r4) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) syz_clone3(&(0x7f00000003c0)={0x2042000, &(0x7f0000000180)=0xffffffffffffffff, &(0x7f00000001c0), &(0x7f0000000240), {0x2d}, &(0x7f0000000280), 0x0, &(0x7f00000002c0)=""/79, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff], 0x5, {r1}}, 0x58) process_madvise$auto_MADV_COLD(r5, &(0x7f00000004c0)={&(0x7f0000000440)="9f8e653135bfc5a70a47a6d8850f7e5b54aba29b991b1ee2e01011414815fdf81c2b9855e711611cbc5e8873d05f265e9f3d38e1ecdb3f2930c19f2f6bac05188a52f265465edd73eb8b1079117a30875607d6f4fb3320fa3a1bdb67569644c8e1a78509", 0x36}, 0x7, 0x14, 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) pwritev$auto(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000), 0x2}, 0x3, 0x11, 0x3) io_uring_enter$auto(0xffffffffffffffff, 0x6, 0x3, 0x5, &(0x7f0000000500)="cc1e80d7241fe039a877a7a78e8e783987f7b332764258fc1644ee337ff1844fac93d3aacad8f2edd31d9092796d4334c05e110b48a37c569f42a31121678d31e7993177dda6f5be565301aac48aeafe685633c77f96fd89c2e9f93a0054bb37514fc209f22ca3ea7fe15cf2587d19af865180836707860a27cc23a2130dbd564c5e0de267", 0x8) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) ioctl$auto_TUNGETDEVNETNS(r1, 0x54e3, 0x0) ioctl$auto(0xffffffffffffffff, 0x40104d06, r2) syz_clone(0x40180311, 0x0, 0x0, 0x0, 0x0, 0x0) 0s ago: executing program 3 (id=491): r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/if_inet6\x00', 0x181800, 0x0) r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000140), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000000)={0x20, r2, 0x101, 0x70bd2b, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x1}]}, 0x20}, 0x1, 0x0, 0x0, 0x64004401}, 0x800) pread64$auto(r1, &(0x7f0000000000)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xba*G\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90~Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1\x00'/232, 0x3ef, 0x9) r4 = open$dir(&(0x7f0000000100)='./file0\x00', 0x141080, 0x0) open_tree_attr$auto(r4, &(0x7f0000000140)='./file0\x00', 0xe, &(0x7f0000000180)={0x1, 0x7, 0x1, @raw=0xffb}, 0x6) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d399b39", 0xfdef) kernel console output (not intermixed with test programs): an up link [ 89.489993][ T5823] team0: Port device team_slave_0 added [ 89.535171][ T5823] team0: Port device team_slave_1 added [ 89.548174][ T5819] hsr_slave_0: entered promiscuous mode [ 89.554624][ T5819] hsr_slave_1: entered promiscuous mode [ 89.564307][ T5825] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 89.576331][ T5827] team0: Port device team_slave_0 added [ 89.609124][ T5825] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 89.620790][ T5827] team0: Port device team_slave_1 added [ 89.628475][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 89.635430][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 89.661863][ T5823] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 89.705105][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 89.712170][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 89.739201][ T5823] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 89.783084][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 89.790859][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 89.817708][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 89.840856][ T5825] team0: Port device team_slave_0 added [ 89.861730][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 89.869222][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 89.895604][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 89.907813][ T51] Bluetooth: hci0: command tx timeout [ 89.915576][ T5825] team0: Port device team_slave_1 added [ 89.966157][ T5823] hsr_slave_0: entered promiscuous mode [ 89.972829][ T5823] hsr_slave_1: entered promiscuous mode [ 89.978548][ T51] Bluetooth: hci3: command tx timeout [ 89.985163][ T5823] debugfs: 'hsr0' already exists in 'hsr' [ 89.991160][ T5823] Cannot create hsr debugfs directory [ 90.057454][ T51] Bluetooth: hci1: command tx timeout [ 90.063300][ T51] Bluetooth: hci2: command tx timeout [ 90.110145][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 90.118013][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 90.145005][ T5825] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 90.183983][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 90.191171][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 90.218337][ T5825] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 90.236149][ T5827] hsr_slave_0: entered promiscuous mode [ 90.242732][ T5827] hsr_slave_1: entered promiscuous mode [ 90.248933][ T5827] debugfs: 'hsr0' already exists in 'hsr' [ 90.254698][ T5827] Cannot create hsr debugfs directory [ 90.447832][ T5825] hsr_slave_0: entered promiscuous mode [ 90.454653][ T5825] hsr_slave_1: entered promiscuous mode [ 90.460992][ T5825] debugfs: 'hsr0' already exists in 'hsr' [ 90.466773][ T5825] Cannot create hsr debugfs directory [ 90.660345][ T5819] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 90.674103][ T5819] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 90.701343][ T5819] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 90.744736][ T5819] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 90.844167][ T5823] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 90.869196][ T5823] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 90.881103][ T5823] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 90.905691][ T5823] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 90.992670][ T5825] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 91.012289][ T5825] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 91.026503][ T5825] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 91.040075][ T5825] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 91.170218][ T5827] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 91.182038][ T5827] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 91.199703][ T5827] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 91.211972][ T5827] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 91.265085][ T5819] 8021q: adding VLAN 0 to HW filter on device bond0 [ 91.312448][ T5819] 8021q: adding VLAN 0 to HW filter on device team0 [ 91.339851][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.347226][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 91.361800][ T5823] 8021q: adding VLAN 0 to HW filter on device bond0 [ 91.397630][ T5823] 8021q: adding VLAN 0 to HW filter on device team0 [ 91.412306][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.419834][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 91.463203][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.470422][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 91.481675][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.488943][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 91.565633][ T5825] 8021q: adding VLAN 0 to HW filter on device bond0 [ 91.605904][ T5823] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 91.638822][ T5825] 8021q: adding VLAN 0 to HW filter on device team0 [ 91.663991][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.671250][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 91.728802][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.736196][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 91.870853][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0 [ 91.960505][ T5827] 8021q: adding VLAN 0 to HW filter on device team0 [ 91.979168][ T51] Bluetooth: hci0: command tx timeout [ 91.993889][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.001407][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.032661][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.039884][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.062120][ T51] Bluetooth: hci3: command tx timeout [ 92.070447][ T10] cfg80211: failed to load regulatory.db [ 92.130206][ T5819] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 92.137292][ T51] Bluetooth: hci2: command tx timeout [ 92.137344][ T51] Bluetooth: hci1: command tx timeout [ 92.193430][ T5823] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 92.340231][ T5819] veth0_vlan: entered promiscuous mode [ 92.376236][ T5823] veth0_vlan: entered promiscuous mode [ 92.400767][ T5819] veth1_vlan: entered promiscuous mode [ 92.413377][ T5823] veth1_vlan: entered promiscuous mode [ 92.489357][ T5819] veth0_macvtap: entered promiscuous mode [ 92.519732][ T5819] veth1_macvtap: entered promiscuous mode [ 92.543895][ T5823] veth0_macvtap: entered promiscuous mode [ 92.563163][ T5825] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 92.579955][ T5823] veth1_macvtap: entered promiscuous mode [ 92.610460][ T5819] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 92.652434][ T5819] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 92.669199][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 92.711148][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 92.721247][ T49] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.731563][ T49] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.751351][ T49] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.760670][ T49] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.774974][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 92.790861][ T49] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.801581][ T49] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.812689][ T49] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.832678][ T49] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.899274][ T5825] veth0_vlan: entered promiscuous mode [ 92.950415][ T5825] veth1_vlan: entered promiscuous mode [ 93.033131][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.043483][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.089161][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.116047][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.125927][ T5827] veth0_vlan: entered promiscuous mode [ 93.152476][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.162084][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.165220][ T5827] veth1_vlan: entered promiscuous mode [ 93.185548][ T5825] veth0_macvtap: entered promiscuous mode [ 93.192059][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.200876][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.203990][ T5825] veth1_macvtap: entered promiscuous mode [ 93.282890][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 93.315094][ T5819] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 93.324515][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 93.382595][ T5827] veth0_macvtap: entered promiscuous mode [ 93.399767][ T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.427387][ T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.436178][ T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.490619][ T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.525315][ T5827] veth1_macvtap: entered promiscuous mode [ 93.610652][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 93.638830][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 93.698364][ T5912] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 93.770006][ T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.801391][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.841991][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.857325][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 93.937920][ T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.947001][ T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.955824][ T12] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.056996][ T5824] Bluetooth: hci0: command tx timeout [ 94.101499][ T5924] Zero length message leads to an empty skb [ 94.137572][ T5824] Bluetooth: hci3: command tx timeout [ 94.189458][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.197814][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.244804][ T5824] Bluetooth: hci1: command tx timeout [ 94.250596][ T51] Bluetooth: hci2: command tx timeout [ 94.494434][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.641489][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.927411][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 94.934462][ T5921] syz.0.1 (5921) used greatest stack depth: 16792 bytes left [ 95.014512][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.054326][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.580411][ T5939] netlink: 'syz.3.4': attribute type 2 has an invalid length. [ 96.137024][ T51] Bluetooth: hci0: command tx timeout [ 96.218896][ T51] Bluetooth: hci3: command tx timeout [ 96.301401][ T51] Bluetooth: hci2: command tx timeout [ 96.321553][ T5824] Bluetooth: hci1: command tx timeout [ 96.407376][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 96.887452][ T5955] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 96.937632][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 97.239477][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 97.417271][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 98.264934][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 98.297605][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 98.305999][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 98.608707][ T5971] futex_wake_op: syz.0.12 tries to shift op by -2048; fix this program [ 98.618472][ T5971] futex_wake_op: syz.0.12 tries to shift op by -2048; fix this program [ 98.633231][ T5971] 0x000000000001-0x000000020000 : "" [ 98.668242][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 98.871070][ T5971] ftl_cs: FTL header corrupt! [ 100.038483][ T5991] FAULT_INJECTION: forcing a failure. [ 100.038483][ T5991] name failslab, interval 1, probability 0, space 0, times 1 [ 100.061489][ T5991] CPU: 1 UID: 0 PID: 5991 Comm: syz.2.15 Not tainted syzkaller #0 PREEMPT(full) [ 100.061517][ T5991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 100.061529][ T5991] Call Trace: [ 100.061536][ T5991] [ 100.061543][ T5991] dump_stack_lvl+0x100/0x190 [ 100.061574][ T5991] should_fail_ex.cold+0x5/0xa [ 100.061595][ T5991] ? tomoyo_encode2+0xfb/0x3c0 [ 100.061628][ T5991] should_failslab+0xc2/0x120 [ 100.061655][ T5991] __kmalloc_noprof+0xe0/0x850 [ 100.061678][ T5991] ? rcu_is_watching+0x12/0xc0 [ 100.061707][ T5991] tomoyo_encode2+0xfb/0x3c0 [ 100.061737][ T5991] tomoyo_encode+0x29/0x50 [ 100.061762][ T5991] tomoyo_realpath_from_path+0x18c/0x690 [ 100.061795][ T5991] tomoyo_check_open_permission+0x2af/0x3c0 [ 100.061820][ T5991] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 100.061865][ T5991] ? do_raw_spin_lock+0x128/0x260 [ 100.061891][ T5991] ? path_get+0x61/0x80 [ 100.061921][ T5991] tomoyo_file_open+0x6b/0x90 [ 100.061941][ T5991] security_file_open+0xb5/0x1e0 [ 100.061967][ T5991] do_dentry_open+0x5aa/0x1660 [ 100.061994][ T5991] ? security_inode_permission+0xbf/0x250 [ 100.062022][ T5991] vfs_open+0x82/0x3f0 [ 100.062043][ T5991] path_openat+0x208c/0x31a0 [ 100.062076][ T5991] ? __pfx_path_openat+0x10/0x10 [ 100.062111][ T5991] do_file_open+0x20e/0x430 [ 100.062138][ T5991] ? __pfx_do_file_open+0x10/0x10 [ 100.062172][ T5991] ? __pfx_kfree_link+0x10/0x10 [ 100.062199][ T5991] ? alloc_fd+0x476/0x790 [ 100.062226][ T5991] ? do_getname+0x191/0x390 [ 100.062246][ T5991] do_sys_openat2+0x10d/0x1e0 [ 100.062269][ T5991] ? __pfx_do_sys_openat2+0x10/0x10 [ 100.062296][ T5991] __x64_sys_openat+0x12d/0x210 [ 100.062317][ T5991] ? __pfx___x64_sys_openat+0x10/0x10 [ 100.062345][ T5991] do_syscall_64+0x106/0xf80 [ 100.062362][ T5991] ? clear_bhb_loop+0x40/0x90 [ 100.062384][ T5991] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 100.062402][ T5991] RIP: 0033:0x7fda2eb9c139 [ 100.062419][ T5991] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 100.062436][ T5991] RSP: 002b:00007fda2fb01028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 100.062454][ T5991] RAX: ffffffffffffffda RBX: 00007fda2ee15fa0 RCX: 00007fda2eb9c139 [ 100.062466][ T5991] RDX: 0000000000008800 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 100.062477][ T5991] RBP: 00007fda2ec327e0 R08: 0000000000000000 R09: 0000000000000000 [ 100.062487][ T5991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 100.062498][ T5991] R13: 00007fda2ee16038 R14: 00007fda2ee15fa0 R15: 00007ffdad7f42f8 [ 100.062521][ T5991] [ 100.062548][ T5991] ERROR: Out of memory at tomoyo_realpath_from_path. [ 102.355472][ T6037] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 102.396998][ T6040] futex_wake_op: syz.2.25 tries to shift op by -2048; fix this program [ 102.406613][ T6037] FAULT_INJECTION: forcing a failure. [ 102.406613][ T6037] name failslab, interval 1, probability 0, space 0, times 0 [ 102.429751][ T6037] CPU: 0 UID: 0 PID: 6037 Comm: syz.3.24 Not tainted syzkaller #0 PREEMPT(full) [ 102.429779][ T6037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 102.429789][ T6037] Call Trace: [ 102.429796][ T6037] [ 102.429804][ T6037] dump_stack_lvl+0x100/0x190 [ 102.429839][ T6037] should_fail_ex.cold+0x5/0xa [ 102.429860][ T6037] should_failslab+0xc2/0x120 [ 102.429889][ T6037] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 102.429912][ T6037] ? alloc_vfsmnt+0x23/0x6a0 [ 102.429934][ T6037] alloc_vfsmnt+0x23/0x6a0 [ 102.429954][ T6037] fc_mount+0x105/0x220 [ 102.429976][ T6037] trace_automount.cold+0x70/0x75 [ 102.430000][ T6037] __traverse_mounts+0x1b9/0x8a0 [ 102.430022][ T6037] step_into_slowpath+0xb7e/0xf90 [ 102.430043][ T6037] ? __d_lookup+0x25c/0x4a0 [ 102.430063][ T6037] ? __d_lookup+0x25c/0x4a0 [ 102.430085][ T6037] ? __pfx_step_into_slowpath+0x10/0x10 [ 102.430107][ T6037] ? __d_lookup+0x266/0x4a0 [ 102.430129][ T6037] ? lookup_fast+0x2da/0x600 [ 102.430149][ T6037] ? inode_permission+0x374/0x620 [ 102.430170][ T6037] link_path_walk+0xf28/0x1cc0 [ 102.430200][ T6037] path_openat+0x1be/0x31a0 [ 102.430225][ T6037] ? kasan_save_stack+0x3f/0x50 [ 102.430248][ T6037] ? kasan_save_stack+0x30/0x50 [ 102.430270][ T6037] ? kasan_save_track+0x14/0x30 [ 102.430292][ T6037] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 102.430320][ T6037] ? __pfx_path_openat+0x10/0x10 [ 102.430354][ T6037] do_file_open+0x20e/0x430 [ 102.430381][ T6037] ? __pfx_do_file_open+0x10/0x10 [ 102.430422][ T6037] ? alloc_fd+0x476/0x790 [ 102.430449][ T6037] ? do_getname+0x191/0x390 [ 102.430469][ T6037] do_sys_openat2+0x10d/0x1e0 [ 102.430488][ T6037] ? __pfx_do_sys_openat2+0x10/0x10 [ 102.430515][ T6037] __x64_sys_openat+0x12d/0x210 [ 102.430535][ T6037] ? __pfx___x64_sys_openat+0x10/0x10 [ 102.430563][ T6037] do_syscall_64+0x106/0xf80 [ 102.430589][ T6037] ? clear_bhb_loop+0x40/0x90 [ 102.430611][ T6037] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 102.430630][ T6037] RIP: 0033:0x7f81c939c139 [ 102.430645][ T6037] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 102.430663][ T6037] RSP: 002b:00007f81c75f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 102.430681][ T6037] RAX: ffffffffffffffda RBX: 00007f81c9615fa0 RCX: 00007f81c939c139 [ 102.430693][ T6037] RDX: 0000000000109c00 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 102.430704][ T6037] RBP: 00007f81c94327e0 R08: 0000000000000000 R09: 0000000000000000 [ 102.430714][ T6037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 102.430725][ T6037] R13: 00007f81c9616038 R14: 00007f81c9615fa0 R15: 00007ffc1cf1b148 [ 102.430747][ T6037] [ 102.431122][ T6040] futex_wake_op: syz.2.25 tries to shift op by -2048; fix this program [ 102.977502][ T6040] 0x000000000001-0x000000020000 : "" [ 103.005144][ T6040] ftl_cs: FTL header corrupt! [ 105.173999][ T6050] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 106.411792][ T6095] futex_wake_op: syz.3.34 tries to shift op by -2048; fix this program [ 106.432076][ T6095] futex_wake_op: syz.3.34 tries to shift op by -2048; fix this program [ 106.596708][ T6095] 0x000000000001-0x000000020000 : "" [ 106.630452][ T6095] ftl_cs: FTL header corrupt! [ 107.211849][ T6103] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 107.411467][ T6106] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 107.457390][ T6107] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 109.001220][ T6111] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„ [ 111.474600][ T6171] futex_wake_op: syz.0.48 tries to shift op by -2048; fix this program [ 111.542096][ T6171] futex_wake_op: syz.0.48 tries to shift op by -2048; fix this program [ 111.568867][ T6171] 0x000000000001-0x000000020000 : "" [ 111.577279][ T6171] ftl_cs: FTL header corrupt! [ 112.180776][ T6178] binder: 6177:6178 ioctl c0306201 2000000000c0 returned -14 [ 114.041322][ T6211] sysfs_service_op_show: Client not running :-5: [ 114.913041][ T6225] binder: 6224:6225 ioctl c0306201 2000000000c0 returned -14 [ 117.765299][ T6271] binder: 6270:6271 ioctl c0306201 2000000000c0 returned -14 [ 120.890721][ T6320] binder: 6319:6320 ioctl c0306201 2000000000c0 returned -14 [ 121.739158][ T6330] netlink: 8 bytes leftover after parsing attributes in process `syz.2.82'. [ 123.053130][ T6351] Invalid ELF header magic: != ELF [ 123.304230][ T6366] futex_wake_op: syz.3.90 tries to shift op by -2048; fix this program [ 123.330491][ T6366] futex_wake_op: syz.3.90 tries to shift op by -2048; fix this program [ 123.359030][ T6366] 0x000000000001-0x000000020000 : "" [ 123.415869][ T6366] ftl_cs: FTL header corrupt! [ 127.353028][ T6423] bridge0: port 3(batadv0) entered blocking state [ 127.360271][ T6423] bridge0: port 3(batadv0) entered disabled state [ 127.366935][ T6423] batadv0: entered allmulticast mode [ 127.407881][ T6424] netlink: 252 bytes leftover after parsing attributes in process `syz.3.101'. [ 127.420999][ T6423] batadv0: entered promiscuous mode [ 127.427412][ T6423] bridge0: port 3(batadv0) entered blocking state [ 127.434273][ T6423] bridge0: port 3(batadv0) entered forwarding state [ 127.471843][ T6424] unsupported nla_type 65535 [ 127.823388][ T6420] ecryptfs_miscdev_write: Invalid packet size [192] [ 127.911543][ T5995] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 127.921125][ T5995] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 128.439406][ T6441] syz.0.104 uses obsolete (PF_INET,SOCK_PACKET) [ 129.190182][ T6453] sp0: Synchronizing with TNC [ 129.663804][ T5996] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 133.038683][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.052486][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.807000][ T6508] Invalid ELF header magic: != ELF [ 135.714331][ T6524] futex_wake_op: syz.0.120 tries to shift op by -2048; fix this program [ 135.737860][ T6524] futex_wake_op: syz.0.120 tries to shift op by -2048; fix this program [ 135.827575][ T6524] 0x000000000001-0x000000020000 : "" [ 135.861224][ T6524] ftl_cs: FTL header corrupt! [ 138.166164][ T6568] FAULT_INJECTION: forcing a failure. [ 138.166164][ T6568] name failslab, interval 1, probability 0, space 0, times 0 [ 138.208853][ T6568] CPU: 0 UID: 0 PID: 6568 Comm: syz.1.128 Not tainted syzkaller #0 PREEMPT(full) [ 138.208879][ T6568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 138.208889][ T6568] Call Trace: [ 138.208896][ T6568] [ 138.208902][ T6568] dump_stack_lvl+0x100/0x190 [ 138.208934][ T6568] should_fail_ex.cold+0x5/0xa [ 138.208954][ T6568] ? lsm_blob_alloc+0x68/0x90 [ 138.208971][ T6568] should_failslab+0xc2/0x120 [ 138.208999][ T6568] __kmalloc_noprof+0xe0/0x850 [ 138.209022][ T6568] ? trace_kmem_cache_alloc+0xf3/0x120 [ 138.209052][ T6568] lsm_blob_alloc+0x68/0x90 [ 138.209070][ T6568] security_sk_alloc+0x2d/0x290 [ 138.209092][ T6568] sk_prot_alloc+0x1d1/0x2a0 [ 138.209116][ T6568] sk_alloc+0x36/0xe80 [ 138.209143][ T6568] inet_create+0x3a0/0x1060 [ 138.209166][ T6568] ? inet_create+0x94/0x1060 [ 138.209193][ T6568] __sock_create+0x339/0x860 [ 138.209220][ T6568] inet_ctl_sock_create+0x94/0x230 [ 138.209243][ T6568] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 138.209265][ T6568] ? lockdep_init_map_type+0x5c/0x250 [ 138.209289][ T6568] ? lockdep_init_map_type+0x5c/0x250 [ 138.209312][ T6568] ? __pfx_igmp_net_init+0x10/0x10 [ 138.209336][ T6568] igmp_net_init+0xd0/0x150 [ 138.209362][ T6568] ops_init+0x1e2/0x5f0 [ 138.209387][ T6568] setup_net+0x118/0x3a0 [ 138.209405][ T6568] ? __pfx_setup_net+0x10/0x10 [ 138.209421][ T6568] ? lockdep_init_map_type+0x5c/0x250 [ 138.209444][ T6568] ? mutex_init_lockep+0x110/0x150 [ 138.209470][ T6568] copy_net_ns+0x46f/0x7c0 [ 138.209491][ T6568] create_new_namespaces+0x3ea/0xac0 [ 138.209514][ T6568] copy_namespaces+0x468/0x5e0 [ 138.209533][ T6568] copy_process+0x3226/0x7a10 [ 138.209564][ T6568] ? __pfx_copy_process+0x10/0x10 [ 138.209603][ T6568] kernel_clone+0xfc/0x9a0 [ 138.209642][ T6568] ? __pfx_futex_wait+0x10/0x10 [ 138.209686][ T6568] ? __pfx_kernel_clone+0x10/0x10 [ 138.209719][ T6568] __do_sys_clone+0xd9/0x120 [ 138.209741][ T6568] ? __pfx___do_sys_clone+0x10/0x10 [ 138.209761][ T6568] ? find_held_lock+0x2b/0x80 [ 138.209805][ T6568] do_syscall_64+0x106/0xf80 [ 138.209821][ T6568] ? clear_bhb_loop+0x40/0x90 [ 138.209845][ T6568] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 138.209873][ T6568] RIP: 0033:0x7f9f0999c139 [ 138.209898][ T6568] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 138.209923][ T6568] RSP: 002b:00007f9f0a846fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 138.209951][ T6568] RAX: ffffffffffffffda RBX: 00007f9f09c16090 RCX: 00007f9f0999c139 [ 138.209965][ T6568] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211 [ 138.209975][ T6568] RBP: 00007f9f09a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 138.209986][ T6568] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 138.209996][ T6568] R13: 00007f9f09c16128 R14: 00007f9f09c16090 R15: 00007ffd7d5a23f8 [ 138.210019][ T6568] [ 138.585848][ T6568] Failed to initialize the IGMP autojoin socket (err -12) [ 139.305771][ T6588] futex_wake_op: syz.3.131 tries to shift op by -2048; fix this program [ 139.314538][ T6588] futex_wake_op: syz.3.131 tries to shift op by -2048; fix this program [ 139.324090][ T6588] 0x000000000001-0x000000020000 : "" [ 139.361817][ T6588] ftl_cs: FTL header corrupt! [ 141.366459][ T6622] netlink: 334 bytes leftover after parsing attributes in process `syz.0.141'. [ 142.115935][ T6643] netlink: 8 bytes leftover after parsing attributes in process `syz.3.148'. [ 142.890820][ T6655] futex_wake_op: syz.3.151 tries to shift op by -2048; fix this program [ 142.911724][ T6655] futex_wake_op: syz.3.151 tries to shift op by -2048; fix this program [ 142.972566][ T6655] 0x000000000001-0x000000020000 : "" [ 143.039656][ T6655] ftl_cs: FTL header corrupt! [ 143.265560][ T6669] binder: 6665:6669 ioctl c0306201 2000000000c0 returned -14 [ 144.252782][ T6654] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 144.260114][ T6654] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 144.286766][ T6654] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 144.332634][ T6654] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 144.350813][ T6654] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 144.373066][ T6654] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 144.387336][ T6654] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 144.397263][ T6654] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 144.410812][ T6654] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 144.431531][ T6654] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 144.442226][ T6654] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 144.462221][ T6654] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 144.880384][ T5996] Bluetooth: hci0: command 0x0c1a tx timeout [ 145.371972][ T6700] process 'syz.3.161' launched './file0' with NULL argv: empty string added [ 146.400012][ T5996] Bluetooth: hci2: command 0x0c1a tx timeout [ 146.407094][ T5996] Bluetooth: hci1: command 0x0c1a tx timeout [ 146.492241][ T5996] Bluetooth: hci3: command 0x0c1a tx timeout [ 146.960934][ T6717] Bluetooth: hci0: command 0x0c1a tx timeout [ 148.026880][ T6750] netlink: 'syz.3.172': attribute type 64 has an invalid length. [ 148.034884][ T6750] netlink: 74 bytes leftover after parsing attributes in process `syz.3.172'. [ 148.482245][ T6717] Bluetooth: hci1: command 0x0c1a tx timeout [ 148.488338][ T5994] Bluetooth: hci2: command 0x0c1a tx timeout [ 148.560862][ T6717] Bluetooth: hci3: command 0x0c1a tx timeout [ 149.047447][ T6717] Bluetooth: hci0: command 0x0c1a tx timeout [ 149.988596][ T6753] Invalid ELF header magic: != ELF [ 150.564241][ T5994] Bluetooth: hci2: command 0x0c1a tx timeout [ 150.571032][ T6717] Bluetooth: hci1: command 0x0c1a tx timeout [ 150.649242][ T6717] Bluetooth: hci3: command 0x0c1a tx timeout [ 152.030275][ T6793] random: crng reseeded on system resumption [ 152.290279][ T6801] futex_wake_op: syz.3.183 tries to shift op by -2048; fix this program [ 152.321708][ T6801] futex_wake_op: syz.3.183 tries to shift op by -2048; fix this program [ 152.346259][ T6803] netlink: 472 bytes leftover after parsing attributes in process `syz.0.184'. [ 152.400306][ T6801] 0x000000000001-0x000000020000 : "" [ 152.449174][ T6801] ftl_cs: FTL header corrupt! [ 152.886606][ T6783] netlink: 342 bytes leftover after parsing attributes in process `syz.2.178'. [ 153.873489][ T6821] zswap: compressor  not available [ 154.801830][ T6838] binder: 6837:6838 ioctl c0306201 2000000000c0 returned -14 [ 155.583420][ T6850] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5 [ 157.368649][ T6717] Bluetooth: hci0: unexpected subevent 0x04 length: 122 > 11 [ 159.258555][ T6912] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 159.968419][ T6908] Invalid ELF header magic: != ELF [ 163.240768][ T6966] netlink: 8 bytes leftover after parsing attributes in process `syz.1.221'. [ 163.996693][ T6974] futex_wake_op: syz.2.222 tries to shift op by -2048; fix this program [ 164.109208][ T6974] futex_wake_op: syz.2.222 tries to shift op by -2048; fix this program [ 164.130331][ T6974] 0x000000000001-0x000000020000 : "" [ 164.232617][ T6974] ftl_cs: FTL header corrupt! [ 165.141605][ T6998] FAULT_INJECTION: forcing a failure. [ 165.141605][ T6998] name failslab, interval 1, probability 0, space 0, times 0 [ 165.179457][ T6998] CPU: 1 UID: 0 PID: 6998 Comm: syz.2.228 Not tainted syzkaller #0 PREEMPT(full) [ 165.179497][ T6998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 165.179523][ T6998] Call Trace: [ 165.179532][ T6998] [ 165.179543][ T6998] dump_stack_lvl+0x100/0x190 [ 165.179591][ T6998] should_fail_ex.cold+0x5/0xa [ 165.179627][ T6998] should_failslab+0xc2/0x120 [ 165.179672][ T6998] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 165.179712][ T6998] ? __alloc_skb+0x140/0x710 [ 165.179764][ T6998] __alloc_skb+0x140/0x710 [ 165.179804][ T6998] ? __alloc_skb+0x5b7/0x710 [ 165.179848][ T6998] ? __pfx___alloc_skb+0x10/0x10 [ 165.179892][ T6998] ? sk_page_frag_refill+0x6c/0x340 [ 165.179936][ T6998] kcm_sendmsg+0x1482/0x2fe0 [ 165.180002][ T6998] ? __pfx_kcm_sendmsg+0x10/0x10 [ 165.180050][ T6998] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 165.180092][ T6998] sock_sendmsg+0x3a1/0x430 [ 165.180132][ T6998] ? __pfx_sock_sendmsg+0x10/0x10 [ 165.180197][ T6998] splice_to_socket+0xb4c/0x11b0 [ 165.180241][ T6998] ? touch_atime+0xa5/0x7a0 [ 165.180299][ T6998] ? __pfx_splice_to_socket+0x10/0x10 [ 165.180394][ T6998] ? trace_kmalloc+0x101/0x130 [ 165.180439][ T6998] ? lockdep_init_map_type+0x5c/0x250 [ 165.180477][ T6998] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 165.180527][ T6998] ? __pfx_splice_to_socket+0x10/0x10 [ 165.180575][ T6998] direct_splice_actor+0x192/0x6c0 [ 165.180624][ T6998] splice_direct_to_actor+0x345/0xa30 [ 165.180667][ T6998] ? __pfx_direct_splice_actor+0x10/0x10 [ 165.180719][ T6998] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 165.180774][ T6998] do_splice_direct+0x174/0x240 [ 165.180819][ T6998] ? __pfx_do_splice_direct+0x10/0x10 [ 165.180858][ T6998] ? common_file_perm+0x1ab/0x4f0 [ 165.180901][ T6998] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 165.180947][ T6998] ? bpf_lsm_file_permission+0x9/0x10 [ 165.180986][ T6998] ? security_file_permission+0x76/0x210 [ 165.181031][ T6998] ? rw_verify_area+0xce/0x6d0 [ 165.181073][ T6998] do_sendfile+0xadc/0xe20 [ 165.181121][ T6998] ? __pfx_do_sendfile+0x10/0x10 [ 165.181166][ T6998] ? __x64_sys_futex+0x34f/0x4d0 [ 165.181201][ T6998] ? __x64_sys_futex+0x358/0x4d0 [ 165.181242][ T6998] __x64_sys_sendfile64+0x1d8/0x220 [ 165.181292][ T6998] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 165.181352][ T6998] do_syscall_64+0x106/0xf80 [ 165.181380][ T6998] ? clear_bhb_loop+0x40/0x90 [ 165.181423][ T6998] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.181455][ T6998] RIP: 0033:0x7fda2eb9c139 [ 165.181482][ T6998] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 165.181545][ T6998] RSP: 002b:00007fda2fae0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 165.181577][ T6998] RAX: ffffffffffffffda RBX: 00007fda2ee16090 RCX: 00007fda2eb9c139 [ 165.181596][ T6998] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000001 [ 165.181614][ T6998] RBP: 00007fda2ec327e0 R08: 0000000000000000 R09: 0000000000000000 [ 165.181632][ T6998] R10: 000000007ffff011 R11: 0000000000000246 R12: 0000000000000000 [ 165.181650][ T6998] R13: 00007fda2ee16128 R14: 00007fda2ee16090 R15: 00007ffdad7f42f8 [ 165.181693][ T6998] [ 165.973954][ T7009] zswap: compressor û not available [ 170.123295][ T7089] binder: 7088:7089 ioctl c0306201 2000000000c0 returned -14 [ 170.514304][ T7083] vhci_hcd vhci_hcd.2: default hub control req: 2307 v0002 i0006 l6 [ 170.753863][ T7083] vhci_hcd: not connected 4 [ 171.507027][ T6717] Bluetooth: hci3: ACL packet too small [ 171.646037][ T7109] zswap: compressor û not available [ 172.856070][ T7141] binder: 7140:7141 ioctl c0306201 2000000000c0 returned -14 [ 174.175942][ T7170] FAULT_INJECTION: forcing a failure. [ 174.175942][ T7170] name failslab, interval 1, probability 0, space 0, times 0 [ 174.190380][ T7170] CPU: 1 UID: 0 PID: 7170 Comm: syz.0.266 Not tainted syzkaller #0 PREEMPT(full) [ 174.190421][ T7170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 174.190439][ T7170] Call Trace: [ 174.190449][ T7170] [ 174.190461][ T7170] dump_stack_lvl+0x100/0x190 [ 174.190521][ T7170] should_fail_ex.cold+0x5/0xa [ 174.190556][ T7170] ? udp_init_sock+0x24e/0x450 [ 174.190595][ T7170] should_failslab+0xc2/0x120 [ 174.190642][ T7170] __kmalloc_noprof+0xe0/0x850 [ 174.190680][ T7170] ? lockdep_init_map_type+0x5c/0x250 [ 174.190725][ T7170] udp_init_sock+0x24e/0x450 [ 174.190787][ T7170] ? __pfx_udp_init_sock+0x10/0x10 [ 174.190831][ T7170] inet_create+0x94c/0x1060 [ 174.190874][ T7170] ? inet_create+0x94/0x1060 [ 174.190922][ T7170] __sock_create+0x339/0x860 [ 174.190971][ T7170] inet_ctl_sock_create+0x94/0x230 [ 174.191010][ T7170] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 174.191045][ T7170] ? lockdep_init_map_type+0x5c/0x250 [ 174.191082][ T7170] ? lockdep_init_map_type+0x5c/0x250 [ 174.191123][ T7170] ? __pfx_igmp_net_init+0x10/0x10 [ 174.191160][ T7170] igmp_net_init+0xd0/0x150 [ 174.191202][ T7170] ops_init+0x1e2/0x5f0 [ 174.191235][ T7170] setup_net+0x118/0x3a0 [ 174.191266][ T7170] ? __pfx_setup_net+0x10/0x10 [ 174.191291][ T7170] ? lockdep_init_map_type+0x5c/0x250 [ 174.191331][ T7170] ? mutex_init_lockep+0x110/0x150 [ 174.191377][ T7170] copy_net_ns+0x46f/0x7c0 [ 174.191421][ T7170] create_new_namespaces+0x3ea/0xac0 [ 174.191462][ T7170] copy_namespaces+0x468/0x5e0 [ 174.191501][ T7170] copy_process+0x3226/0x7a10 [ 174.191546][ T7170] ? __pfx_copy_process+0x10/0x10 [ 174.191581][ T7170] ? find_held_lock+0x2b/0x80 [ 174.191644][ T7170] kernel_clone+0xfc/0x9a0 [ 174.191676][ T7170] ? __pfx_futex_wait+0x10/0x10 [ 174.191719][ T7170] ? __pfx_kernel_clone+0x10/0x10 [ 174.191775][ T7170] __do_sys_clone+0xd9/0x120 [ 174.191809][ T7170] ? __pfx___do_sys_clone+0x10/0x10 [ 174.191841][ T7170] ? find_held_lock+0x2b/0x80 [ 174.191915][ T7170] do_syscall_64+0x106/0xf80 [ 174.191943][ T7170] ? clear_bhb_loop+0x40/0x90 [ 174.191980][ T7170] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 174.192012][ T7170] RIP: 0033:0x7f1b4ed9c139 [ 174.192039][ T7170] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 174.192067][ T7170] RSP: 002b:00007f1b4fbfdfd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 174.192097][ T7170] RAX: ffffffffffffffda RBX: 00007f1b4f016180 RCX: 00007f1b4ed9c139 [ 174.192117][ T7170] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211 [ 174.192135][ T7170] RBP: 00007f1b4ee327e0 R08: 0000000000000000 R09: 0000000000000000 [ 174.192154][ T7170] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 174.192173][ T7170] R13: 00007f1b4f016218 R14: 00007f1b4f016180 R15: 00007ffe898d9d88 [ 174.192210][ T7170] [ 174.484991][ T7170] Failed to initialize the IGMP autojoin socket (err -12) [ 174.766431][ T7177] binder: 7176:7177 ioctl c0306201 2000000000c0 returned -14 [ 175.608546][ T7194] futex_wake_op: syz.3.272 tries to shift op by -2048; fix this program [ 175.633715][ T7194] futex_wake_op: syz.3.272 tries to shift op by -2048; fix this program [ 177.409649][ T7225] FAULT_INJECTION: forcing a failure. [ 177.409649][ T7225] name failslab, interval 1, probability 0, space 0, times 0 [ 177.449880][ T7225] CPU: 0 UID: 0 PID: 7225 Comm: syz.1.278 Not tainted syzkaller #0 PREEMPT(full) [ 177.449922][ T7225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 177.449941][ T7225] Call Trace: [ 177.449952][ T7225] [ 177.449963][ T7225] dump_stack_lvl+0x100/0x190 [ 177.450016][ T7225] should_fail_ex.cold+0x5/0xa [ 177.450052][ T7225] ? __register_sysctl_table+0xbe4/0x1650 [ 177.450096][ T7225] should_failslab+0xc2/0x120 [ 177.450144][ T7225] __kmalloc_noprof+0xe0/0x850 [ 177.450192][ T7225] __register_sysctl_table+0xbe4/0x1650 [ 177.450246][ T7225] ? __pfx___register_sysctl_table+0x10/0x10 [ 177.450289][ T7225] ? is_module_address+0x69/0xf0 [ 177.450327][ T7225] ? register_net_sysctl_sz+0x222/0x430 [ 177.450367][ T7225] ? __asan_memcpy+0x3c/0x60 [ 177.450413][ T7225] sysctl_route_net_init+0x15e/0x2c0 [ 177.450453][ T7225] ? __pfx_sysctl_route_net_init+0x10/0x10 [ 177.450490][ T7225] ops_init+0x1e2/0x5f0 [ 177.450528][ T7225] setup_net+0x118/0x3a0 [ 177.450561][ T7225] ? __pfx_setup_net+0x10/0x10 [ 177.450589][ T7225] ? lockdep_init_map_type+0x5c/0x250 [ 177.450631][ T7225] ? mutex_init_lockep+0x110/0x150 [ 177.450677][ T7225] copy_net_ns+0x46f/0x7c0 [ 177.450717][ T7225] create_new_namespaces+0x3ea/0xac0 [ 177.450758][ T7225] copy_namespaces+0x468/0x5e0 [ 177.450792][ T7225] copy_process+0x3226/0x7a10 [ 177.450850][ T7225] ? __pfx_copy_process+0x10/0x10 [ 177.450913][ T7225] kernel_clone+0xfc/0x9a0 [ 177.450947][ T7225] ? __pfx_futex_wait+0x10/0x10 [ 177.450994][ T7225] ? __pfx_kernel_clone+0x10/0x10 [ 177.451053][ T7225] __do_sys_clone+0xd9/0x120 [ 177.451090][ T7225] ? __pfx___do_sys_clone+0x10/0x10 [ 177.451125][ T7225] ? find_held_lock+0x2b/0x80 [ 177.451204][ T7225] do_syscall_64+0x106/0xf80 [ 177.451235][ T7225] ? clear_bhb_loop+0x40/0x90 [ 177.451274][ T7225] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 177.451307][ T7225] RIP: 0033:0x7f9f0999c139 [ 177.451333][ T7225] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 177.451363][ T7225] RSP: 002b:00007f9f0a825fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 177.451402][ T7225] RAX: ffffffffffffffda RBX: 00007f9f09c16180 RCX: 00007f9f0999c139 [ 177.451423][ T7225] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211 [ 177.451441][ T7225] RBP: 00007f9f09a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 177.451459][ T7225] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 177.451476][ T7225] R13: 00007f9f09c16218 R14: 00007f9f09c16180 R15: 00007ffd7d5a23f8 [ 177.451515][ T7225] [ 177.618352][ T7226] FAULT_INJECTION: forcing a failure. [ 177.618352][ T7226] name failslab, interval 1, probability 0, space 0, times 0 [ 177.730179][ T7225] sysctl could not get directory: /net/ipv4/route -12 [ 177.755284][ T7226] CPU: 0 UID: 0 PID: 7226 Comm: syz.3.279 Not tainted syzkaller #0 PREEMPT(full) [ 177.755323][ T7226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 177.755339][ T7226] Call Trace: [ 177.755349][ T7226] [ 177.755360][ T7226] dump_stack_lvl+0x100/0x190 [ 177.755418][ T7226] should_fail_ex.cold+0x5/0xa [ 177.755456][ T7226] ? udp_init_sock+0x24e/0x450 [ 177.755498][ T7226] should_failslab+0xc2/0x120 [ 177.755542][ T7226] __kmalloc_noprof+0xe0/0x850 [ 177.755580][ T7226] ? lockdep_init_map_type+0x5c/0x250 [ 177.755624][ T7226] udp_init_sock+0x24e/0x450 [ 177.755662][ T7226] ? __pfx_udp_init_sock+0x10/0x10 [ 177.755708][ T7226] inet_create+0x94c/0x1060 [ 177.755747][ T7226] ? inet_create+0x94/0x1060 [ 177.755794][ T7226] __sock_create+0x339/0x860 [ 177.755842][ T7226] inet_ctl_sock_create+0x94/0x230 [ 177.755882][ T7226] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 177.755921][ T7226] ? lockdep_init_map_type+0x5c/0x250 [ 177.755960][ T7226] ? lockdep_init_map_type+0x5c/0x250 [ 177.755999][ T7226] ? __pfx_igmp_net_init+0x10/0x10 [ 177.756042][ T7226] igmp_net_init+0xd0/0x150 [ 177.756086][ T7226] ops_init+0x1e2/0x5f0 [ 177.756122][ T7226] setup_net+0x118/0x3a0 [ 177.756152][ T7226] ? __pfx_setup_net+0x10/0x10 [ 177.756181][ T7226] ? lockdep_init_map_type+0x5c/0x250 [ 177.756222][ T7226] ? mutex_init_lockep+0x110/0x150 [ 177.756261][ T7226] copy_net_ns+0x46f/0x7c0 [ 177.756305][ T7226] create_new_namespaces+0x3ea/0xac0 [ 177.756346][ T7226] copy_namespaces+0x468/0x5e0 [ 177.756380][ T7226] copy_process+0x3226/0x7a10 [ 177.756445][ T7226] ? __pfx_copy_process+0x10/0x10 [ 177.756481][ T7226] ? find_held_lock+0x2b/0x80 [ 177.756534][ T7226] ? futex_private_hash_put+0x107/0x1c0 [ 177.756575][ T7226] kernel_clone+0xfc/0x9a0 [ 177.756613][ T7226] ? __pfx_kernel_clone+0x10/0x10 [ 177.756672][ T7226] __do_sys_clone+0xd9/0x120 [ 177.756708][ T7226] ? __pfx___do_sys_clone+0x10/0x10 [ 177.756742][ T7226] ? find_held_lock+0x2b/0x80 [ 177.756823][ T7226] do_syscall_64+0x106/0xf80 [ 177.756852][ T7226] ? clear_bhb_loop+0x40/0x90 [ 177.756890][ T7226] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 177.756922][ T7226] RIP: 0033:0x7f81c939c139 [ 177.756949][ T7226] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 177.756978][ T7226] RSP: 002b:00007f81c75b3fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 177.757008][ T7226] RAX: ffffffffffffffda RBX: 00007f81c9616180 RCX: 00007f81c939c139 [ 177.757028][ T7226] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211 [ 177.757045][ T7226] RBP: 00007f81c94327e0 R08: 0000000000000000 R09: 0000000000000000 [ 177.757064][ T7226] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 177.757081][ T7226] R13: 00007f81c9616218 R14: 00007f81c9616180 R15: 00007ffc1cf1b148 [ 177.757124][ T7226] [ 177.757383][ T7226] Failed to initialize the IGMP autojoin socket (err -12) [ 177.980352][ T7231] futex_wake_op: syz.2.280 tries to shift op by -2048; fix this program [ 178.169389][ T7231] futex_wake_op: syz.2.280 tries to shift op by -2048; fix this program [ 178.509705][ T7240] FAULT_INJECTION: forcing a failure. [ 178.509705][ T7240] name failslab, interval 1, probability 0, space 0, times 0 [ 178.569578][ T7240] CPU: 0 UID: 0 PID: 7240 Comm: syz.0.281 Not tainted syzkaller #0 PREEMPT(full) [ 178.569605][ T7240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 178.569615][ T7240] Call Trace: [ 178.569621][ T7240] [ 178.569628][ T7240] dump_stack_lvl+0x100/0x190 [ 178.569659][ T7240] should_fail_ex.cold+0x5/0xa [ 178.569680][ T7240] ? ops_init+0x77/0x5f0 [ 178.569696][ T7240] should_failslab+0xc2/0x120 [ 178.569723][ T7240] __kmalloc_noprof+0xe0/0x850 [ 178.569746][ T7240] ? __raw_spin_lock_init+0x3a/0x110 [ 178.569776][ T7240] ops_init+0x77/0x5f0 [ 178.569796][ T7240] setup_net+0x118/0x3a0 [ 178.569814][ T7240] ? __pfx_setup_net+0x10/0x10 [ 178.569831][ T7240] ? lockdep_init_map_type+0x5c/0x250 [ 178.569854][ T7240] ? mutex_init_lockep+0x110/0x150 [ 178.569880][ T7240] copy_net_ns+0x46f/0x7c0 [ 178.569902][ T7240] create_new_namespaces+0x3ea/0xac0 [ 178.569925][ T7240] copy_namespaces+0x468/0x5e0 [ 178.569944][ T7240] copy_process+0x3226/0x7a10 [ 178.569975][ T7240] ? __pfx_copy_process+0x10/0x10 [ 178.569995][ T7240] ? find_held_lock+0x2b/0x80 [ 178.570026][ T7240] ? futex_private_hash_put+0x107/0x1c0 [ 178.570049][ T7240] kernel_clone+0xfc/0x9a0 [ 178.570070][ T7240] ? __pfx_kernel_clone+0x10/0x10 [ 178.570103][ T7240] __do_sys_clone+0xd9/0x120 [ 178.570123][ T7240] ? __pfx___do_sys_clone+0x10/0x10 [ 178.570143][ T7240] ? find_held_lock+0x2b/0x80 [ 178.570188][ T7240] do_syscall_64+0x106/0xf80 [ 178.570204][ T7240] ? clear_bhb_loop+0x40/0x90 [ 178.570226][ T7240] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 178.570244][ T7240] RIP: 0033:0x7f1b4ed9c139 [ 178.570259][ T7240] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 178.570275][ T7240] RSP: 002b:00007f1b4fbfdfd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 178.570293][ T7240] RAX: ffffffffffffffda RBX: 00007f1b4f016180 RCX: 00007f1b4ed9c139 [ 178.570304][ T7240] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211 [ 178.570314][ T7240] RBP: 00007f1b4ee327e0 R08: 0000000000000000 R09: 0000000000000000 [ 178.570324][ T7240] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 178.570334][ T7240] R13: 00007f1b4f016218 R14: 00007f1b4f016180 R15: 00007ffe898d9d88 [ 178.570357][ T7240] [ 180.039288][ T7264] scsi_dev_info_list_add_str: bad dev info string 'ñ' '' '' [ 181.120042][ T7289] futex_wake_op: syz.0.293 tries to shift op by -2048; fix this program [ 181.152591][ T7289] futex_wake_op: syz.0.293 tries to shift op by -2048; fix this program [ 181.191443][ T7289] 0x000000000001-0x000000020000 : "" [ 181.232643][ T7289] ftl_cs: FTL header corrupt! [ 181.297643][ T7288] FAULT_INJECTION: forcing a failure. [ 181.297643][ T7288] name failslab, interval 1, probability 0, space 0, times 0 [ 181.338997][ T7288] CPU: 0 UID: 0 PID: 7288 Comm: syz.1.292 Not tainted syzkaller #0 PREEMPT(full) [ 181.339039][ T7288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 181.339056][ T7288] Call Trace: [ 181.339066][ T7288] [ 181.339077][ T7288] dump_stack_lvl+0x100/0x190 [ 181.339138][ T7288] should_fail_ex.cold+0x5/0xa [ 181.339173][ T7288] ? xfrm_hash_alloc+0xcf/0x100 [ 181.339210][ T7288] should_failslab+0xc2/0x120 [ 181.339256][ T7288] __kmalloc_noprof+0xe0/0x850 [ 181.339304][ T7288] xfrm_hash_alloc+0xcf/0x100 [ 181.339340][ T7288] xfrm_state_init+0x11c/0x640 [ 181.339384][ T7288] ? __pfx_xfrm_net_init+0x10/0x10 [ 181.339422][ T7288] xfrm_net_init+0x20e/0xcc0 [ 181.339469][ T7288] ? __pfx_xfrm_net_init+0x10/0x10 [ 181.339508][ T7288] ops_init+0x1e2/0x5f0 [ 181.339542][ T7288] setup_net+0x118/0x3a0 [ 181.339574][ T7288] ? __pfx_setup_net+0x10/0x10 [ 181.339602][ T7288] ? lockdep_init_map_type+0x5c/0x250 [ 181.339642][ T7288] ? mutex_init_lockep+0x110/0x150 [ 181.339686][ T7288] copy_net_ns+0x46f/0x7c0 [ 181.339724][ T7288] create_new_namespaces+0x3ea/0xac0 [ 181.339765][ T7288] copy_namespaces+0x468/0x5e0 [ 181.339798][ T7288] copy_process+0x3226/0x7a10 [ 181.339854][ T7288] ? __pfx_copy_process+0x10/0x10 [ 181.339889][ T7288] ? find_held_lock+0x2b/0x80 [ 181.339951][ T7288] kernel_clone+0xfc/0x9a0 [ 181.339986][ T7288] ? __pfx_futex_wait+0x10/0x10 [ 181.340030][ T7288] ? __pfx_kernel_clone+0x10/0x10 [ 181.340090][ T7288] __do_sys_clone+0xd9/0x120 [ 181.340133][ T7288] ? __pfx___do_sys_clone+0x10/0x10 [ 181.340167][ T7288] ? find_held_lock+0x2b/0x80 [ 181.340248][ T7288] do_syscall_64+0x106/0xf80 [ 181.340278][ T7288] ? clear_bhb_loop+0x40/0x90 [ 181.340316][ T7288] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.340347][ T7288] RIP: 0033:0x7f9f0999c139 [ 181.340372][ T7288] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 181.340398][ T7288] RSP: 002b:00007f9f0a825fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 181.340428][ T7288] RAX: ffffffffffffffda RBX: 00007f9f09c16180 RCX: 00007f9f0999c139 [ 181.340449][ T7288] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211 [ 181.340479][ T7288] RBP: 00007f9f09a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 181.340498][ T7288] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 181.340516][ T7288] R13: 00007f9f09c16218 R14: 00007f9f09c16180 R15: 00007ffd7d5a23f8 [ 181.340558][ T7288] [ 184.085688][ T7337] ptp ptp0: only physical clock in use now [ 184.184657][ T7347] tipc: Started in network mode [ 184.200404][ T7347] tipc: Node identity ee00, cluster identity 4711 [ 184.221932][ T7347] tipc: Node number set to 60928 [ 184.705557][ T7357] FAULT_INJECTION: forcing a failure. [ 184.705557][ T7357] name failslab, interval 1, probability 0, space 0, times 0 [ 184.727504][ T7357] CPU: 0 UID: 0 PID: 7357 Comm: syz.1.307 Not tainted syzkaller #0 PREEMPT(full) [ 184.727541][ T7357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 184.727557][ T7357] Call Trace: [ 184.727566][ T7357] [ 184.727577][ T7357] dump_stack_lvl+0x100/0x190 [ 184.727624][ T7357] should_fail_ex.cold+0x5/0xa [ 184.727659][ T7357] should_failslab+0xc2/0x120 [ 184.727703][ T7357] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 184.727749][ T7357] ? skb_clone+0x190/0x400 [ 184.727802][ T7357] skb_clone+0x190/0x400 [ 184.727849][ T7357] netlink_deliver_tap+0xaed/0xcc0 [ 184.727906][ T7357] netlink_unicast+0x650/0x870 [ 184.727942][ T7357] ? __pfx_netlink_unicast+0x10/0x10 [ 184.727988][ T7357] netlink_sendmsg+0x8b0/0xda0 [ 184.728025][ T7357] ? __pfx_netlink_sendmsg+0x10/0x10 [ 184.728064][ T7357] ? __import_iovec+0x1d2/0x640 [ 184.728109][ T7357] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 184.728150][ T7357] ____sys_sendmsg+0xa54/0xc30 [ 184.728188][ T7357] ? __pfx_____sys_sendmsg+0x10/0x10 [ 184.728242][ T7357] ___sys_sendmsg+0x190/0x1e0 [ 184.728283][ T7357] ? __pfx____sys_sendmsg+0x10/0x10 [ 184.728368][ T7357] __sys_sendmsg+0x170/0x220 [ 184.728412][ T7357] ? __pfx___sys_sendmsg+0x10/0x10 [ 184.728488][ T7357] do_syscall_64+0x106/0xf80 [ 184.728515][ T7357] ? clear_bhb_loop+0x40/0x90 [ 184.728552][ T7357] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.728583][ T7357] RIP: 0033:0x7f9f0999c139 [ 184.728608][ T7357] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 184.728635][ T7357] RSP: 002b:00007f9f0a868028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 184.728662][ T7357] RAX: ffffffffffffffda RBX: 00007f9f09c15fa0 RCX: 00007f9f0999c139 [ 184.728681][ T7357] RDX: 0000000000008800 RSI: 00002000000000c0 RDI: 0000000000000003 [ 184.728698][ T7357] RBP: 00007f9f0a868090 R08: 0000000000000000 R09: 0000000000000000 [ 184.728715][ T7357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 184.728731][ T7357] R13: 00007f9f09c16038 R14: 00007f9f09c15fa0 R15: 00007ffd7d5a23f8 [ 184.728771][ T7357] [ 185.514372][ T7373] FAULT_INJECTION: forcing a failure. [ 185.514372][ T7373] name failslab, interval 1, probability 0, space 0, times 0 [ 185.536542][ T7373] CPU: 0 UID: 0 PID: 7373 Comm: syz.3.311 Not tainted syzkaller #0 PREEMPT(full) [ 185.536583][ T7373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 185.536601][ T7373] Call Trace: [ 185.536611][ T7373] [ 185.536623][ T7373] dump_stack_lvl+0x100/0x190 [ 185.536676][ T7373] should_fail_ex.cold+0x5/0xa [ 185.536715][ T7373] should_failslab+0xc2/0x120 [ 185.536763][ T7373] __kvmalloc_node_noprof+0xfa/0xa00 [ 185.536806][ T7373] ? bucket_table_alloc.isra.0+0x88/0x460 [ 185.536856][ T7373] bucket_table_alloc.isra.0+0x88/0x460 [ 185.536900][ T7373] rhashtable_init_noprof+0x43b/0x7d0 [ 185.536941][ T7373] ? __pfx_ipmr_new_table_set+0x10/0x10 [ 185.536990][ T7373] rhltable_init_noprof+0x20/0x60 [ 185.537028][ T7373] mr_table_alloc+0x116/0x2e0 [ 185.537060][ T7373] ? __pfx_ipmr_expire_process+0x10/0x10 [ 185.537128][ T7373] ipmr_net_init+0x318/0x4a0 [ 185.537161][ T7373] ? __pfx_ipmr_net_init+0x10/0x10 [ 185.537191][ T7373] ops_init+0x1e2/0x5f0 [ 185.537229][ T7373] setup_net+0x118/0x3a0 [ 185.537263][ T7373] ? __pfx_setup_net+0x10/0x10 [ 185.537305][ T7373] ? lockdep_init_map_type+0x5c/0x250 [ 185.537346][ T7373] ? mutex_init_lockep+0x110/0x150 [ 185.537393][ T7373] copy_net_ns+0x46f/0x7c0 [ 185.537433][ T7373] create_new_namespaces+0x3ea/0xac0 [ 185.537461][ T7373] copy_namespaces+0x468/0x5e0 [ 185.537480][ T7373] copy_process+0x3226/0x7a10 [ 185.537512][ T7373] ? __pfx_copy_process+0x10/0x10 [ 185.537532][ T7373] ? find_held_lock+0x2b/0x80 [ 185.537562][ T7373] ? futex_private_hash_put+0x107/0x1c0 [ 185.537586][ T7373] kernel_clone+0xfc/0x9a0 [ 185.537607][ T7373] ? __pfx_kernel_clone+0x10/0x10 [ 185.537644][ T7373] __do_sys_clone+0xd9/0x120 [ 185.537666][ T7373] ? __pfx___do_sys_clone+0x10/0x10 [ 185.537687][ T7373] ? find_held_lock+0x2b/0x80 [ 185.537731][ T7373] do_syscall_64+0x106/0xf80 [ 185.537749][ T7373] ? clear_bhb_loop+0x40/0x90 [ 185.537770][ T7373] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.537788][ T7373] RIP: 0033:0x7f81c939c139 [ 185.537804][ T7373] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 185.537821][ T7373] RSP: 002b:00007f81c75b3fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 185.537839][ T7373] RAX: ffffffffffffffda RBX: 00007f81c9616180 RCX: 00007f81c939c139 [ 185.537850][ T7373] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211 [ 185.537860][ T7373] RBP: 00007f81c94327e0 R08: 0000000000000000 R09: 0000000000000000 [ 185.537870][ T7373] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 185.537880][ T7373] R13: 00007f81c9616218 R14: 00007f81c9616180 R15: 00007ffc1cf1b148 [ 185.537903][ T7373] [ 187.378645][ T7403] FAULT_INJECTION: forcing a failure. [ 187.378645][ T7403] name failslab, interval 1, probability 0, space 0, times 0 [ 187.395698][ T7403] CPU: 1 UID: 0 PID: 7403 Comm: syz.2.316 Not tainted syzkaller #0 PREEMPT(full) [ 187.395740][ T7403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 187.395757][ T7403] Call Trace: [ 187.395768][ T7403] [ 187.395779][ T7403] dump_stack_lvl+0x100/0x190 [ 187.395830][ T7403] should_fail_ex.cold+0x5/0xa [ 187.395867][ T7403] should_failslab+0xc2/0x120 [ 187.395916][ T7403] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 187.395955][ T7403] ? __proc_create+0x2cb/0x8c0 [ 187.396007][ T7403] __proc_create+0x2cb/0x8c0 [ 187.396051][ T7403] ? __pfx___proc_create+0x10/0x10 [ 187.396098][ T7403] ? _raw_write_unlock+0x28/0x50 [ 187.396145][ T7403] ? proc_register+0x559/0x8a0 [ 187.396191][ T7403] proc_create_reg+0x75/0x170 [ 187.396236][ T7403] proc_create_net_data+0x8e/0x1c0 [ 187.396279][ T7403] ? __pfx_proc_create_net_data+0x10/0x10 [ 187.396321][ T7403] ? __pfx_proc_create_net_data+0x10/0x10 [ 187.396383][ T7403] ? __pfx_ping_v4_proc_init_net+0x10/0x10 [ 187.396420][ T7403] ping_v4_proc_init_net+0x5b/0xd0 [ 187.396453][ T7403] ? udp4_proc_init_net+0x63/0x80 [ 187.396498][ T7403] ops_init+0x1e2/0x5f0 [ 187.396533][ T7403] setup_net+0x118/0x3a0 [ 187.396565][ T7403] ? __pfx_setup_net+0x10/0x10 [ 187.396594][ T7403] ? lockdep_init_map_type+0x5c/0x250 [ 187.396634][ T7403] ? mutex_init_lockep+0x110/0x150 [ 187.396686][ T7403] copy_net_ns+0x46f/0x7c0 [ 187.396724][ T7403] create_new_namespaces+0x3ea/0xac0 [ 187.396766][ T7403] copy_namespaces+0x468/0x5e0 [ 187.396797][ T7403] copy_process+0x3226/0x7a10 [ 187.396853][ T7403] ? __pfx_copy_process+0x10/0x10 [ 187.396905][ T7403] kernel_clone+0xfc/0x9a0 [ 187.396936][ T7403] ? __pfx_futex_wait+0x10/0x10 [ 187.396979][ T7403] ? __pfx_kernel_clone+0x10/0x10 [ 187.397024][ T7403] ? __fget_files+0x21f/0x3d0 [ 187.397079][ T7403] __do_sys_clone+0xd9/0x120 [ 187.397115][ T7403] ? __pfx___do_sys_clone+0x10/0x10 [ 187.397150][ T7403] ? find_held_lock+0x2b/0x80 [ 187.397233][ T7403] do_syscall_64+0x106/0xf80 [ 187.397263][ T7403] ? clear_bhb_loop+0x40/0x90 [ 187.397303][ T7403] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.397345][ T7403] RIP: 0033:0x7fda2eb9c139 [ 187.397374][ T7403] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 187.397404][ T7403] RSP: 002b:00007fda2fabefd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 187.397434][ T7403] RAX: ffffffffffffffda RBX: 00007fda2ee16180 RCX: 00007fda2eb9c139 [ 187.397454][ T7403] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211 [ 187.397472][ T7403] RBP: 00007fda2ec327e0 R08: 0000000000000000 R09: 0000000000000000 [ 187.397491][ T7403] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 187.397510][ T7403] R13: 00007fda2ee16218 R14: 00007fda2ee16180 R15: 00007ffdad7f42f8 [ 187.397553][ T7403] [ 187.882111][ T7412] scsi_dev_info_list_add_str: bad dev info string 'ñ' '' '' [ 188.813628][ T7425] FAULT_INJECTION: forcing a failure. [ 188.813628][ T7425] name failslab, interval 1, probability 0, space 0, times 0 [ 188.876090][ T7425] CPU: 0 UID: 0 PID: 7425 Comm: syz.1.322 Not tainted syzkaller #0 PREEMPT(full) [ 188.876136][ T7425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 188.876153][ T7425] Call Trace: [ 188.876164][ T7425] [ 188.876175][ T7425] dump_stack_lvl+0x100/0x190 [ 188.876228][ T7425] should_fail_ex.cold+0x5/0xa [ 188.876265][ T7425] should_failslab+0xc2/0x120 [ 188.876324][ T7425] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 188.876363][ T7425] ? __proc_create+0x2cb/0x8c0 [ 188.876409][ T7425] __proc_create+0x2cb/0x8c0 [ 188.876445][ T7425] ? __pfx___proc_create+0x10/0x10 [ 188.876489][ T7425] ? _raw_write_unlock+0x28/0x50 [ 188.876530][ T7425] ? proc_register+0x559/0x8a0 [ 188.876571][ T7425] proc_create_reg+0x75/0x170 [ 188.876615][ T7425] proc_create_net_data+0x8e/0x1c0 [ 188.876655][ T7425] ? __pfx_proc_create_net_data+0x10/0x10 [ 188.876708][ T7425] ipmr_net_init+0x2cc/0x4a0 [ 188.876739][ T7425] ? __pfx_ipmr_net_init+0x10/0x10 [ 188.876766][ T7425] ops_init+0x1e2/0x5f0 [ 188.876799][ T7425] setup_net+0x118/0x3a0 [ 188.876828][ T7425] ? __pfx_setup_net+0x10/0x10 [ 188.876853][ T7425] ? lockdep_init_map_type+0x5c/0x250 [ 188.876891][ T7425] ? mutex_init_lockep+0x110/0x150 [ 188.876934][ T7425] copy_net_ns+0x46f/0x7c0 [ 188.876969][ T7425] create_new_namespaces+0x3ea/0xac0 [ 188.877006][ T7425] copy_namespaces+0x468/0x5e0 [ 188.877035][ T7425] copy_process+0x3226/0x7a10 [ 188.877087][ T7425] ? __pfx_copy_process+0x10/0x10 [ 188.877119][ T7425] ? find_held_lock+0x2b/0x80 [ 188.877170][ T7425] ? futex_private_hash_put+0x107/0x1c0 [ 188.877207][ T7425] kernel_clone+0xfc/0x9a0 [ 188.877242][ T7425] ? __pfx_kernel_clone+0x10/0x10 [ 188.877306][ T7425] __do_sys_clone+0xd9/0x120 [ 188.877339][ T7425] ? __pfx___do_sys_clone+0x10/0x10 [ 188.877370][ T7425] ? find_held_lock+0x2b/0x80 [ 188.877446][ T7425] do_syscall_64+0x106/0xf80 [ 188.877472][ T7425] ? clear_bhb_loop+0x40/0x90 [ 188.877507][ T7425] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 188.877538][ T7425] RIP: 0033:0x7f9f0999c139 [ 188.877564][ T7425] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 188.877592][ T7425] RSP: 002b:00007f9f0a825fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 188.877622][ T7425] RAX: ffffffffffffffda RBX: 00007f9f09c16180 RCX: 00007f9f0999c139 [ 188.877642][ T7425] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211 [ 188.877660][ T7425] RBP: 00007f9f09a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 188.877679][ T7425] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 188.877697][ T7425] R13: 00007f9f09c16218 R14: 00007f9f09c16180 R15: 00007ffd7d5a23f8 [ 188.877738][ T7425] [ 190.043810][ T7443] FAULT_INJECTION: forcing a failure. [ 190.043810][ T7443] name failslab, interval 1, probability 0, space 0, times 0 [ 190.059740][ T7443] CPU: 0 UID: 0 PID: 7443 Comm: syz.1.326 Not tainted syzkaller #0 PREEMPT(full) [ 190.059766][ T7443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 190.059777][ T7443] Call Trace: [ 190.059783][ T7443] [ 190.059790][ T7443] dump_stack_lvl+0x100/0x190 [ 190.059821][ T7443] should_fail_ex.cold+0x5/0xa [ 190.059842][ T7443] should_failslab+0xc2/0x120 [ 190.059870][ T7443] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 190.059893][ T7443] ? security_inode_alloc+0x3b/0x2c0 [ 190.059915][ T7443] ? lockdep_init_map_type+0x5c/0x250 [ 190.059940][ T7443] security_inode_alloc+0x3b/0x2c0 [ 190.059963][ T7443] inode_init_always_gfp+0xced/0x1040 [ 190.059992][ T7443] alloc_inode+0x8e/0x250 [ 190.060011][ T7443] sock_alloc+0x44/0x280 [ 190.060029][ T7443] ? security_socket_create+0x7f/0x250 [ 190.060059][ T7443] __sock_create+0xc2/0x860 [ 190.060084][ T7443] __sys_socket+0x14d/0x260 [ 190.060108][ T7443] ? __pfx___sys_socket+0x10/0x10 [ 190.060131][ T7443] ? arch_syscall_is_vdso_sigreturn+0xb6/0x200 [ 190.060165][ T7443] __x64_sys_socket+0x72/0xb0 [ 190.060188][ T7443] ? lockdep_hardirqs_on+0x78/0x100 [ 190.060218][ T7443] do_syscall_64+0x106/0xf80 [ 190.060234][ T7443] ? clear_bhb_loop+0x40/0x90 [ 190.060256][ T7443] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 190.060275][ T7443] RIP: 0033:0x7f9f0999c139 [ 190.060290][ T7443] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 190.060306][ T7443] RSP: 002b:00007f9f0a847028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 190.060325][ T7443] RAX: ffffffffffffffda RBX: 00007f9f09c16090 RCX: 00007f9f0999c139 [ 190.060337][ T7443] RDX: 0000000000000000 RSI: 0000000000000805 RDI: 000000000000001e [ 190.060347][ T7443] RBP: 00007f9f09a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 190.060358][ T7443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 190.060368][ T7443] R13: 00007f9f09c16128 R14: 00007f9f09c16090 R15: 00007ffd7d5a23f8 [ 190.060389][ T7443] [ 190.060529][ T7443] socket: no more sockets [ 190.855576][ T7456] FAULT_INJECTION: forcing a failure. [ 190.855576][ T7456] name failslab, interval 1, probability 0, space 0, times 0 [ 191.062291][ T7456] CPU: 1 UID: 0 PID: 7456 Comm: syz.1.329 Not tainted syzkaller #0 PREEMPT(full) [ 191.062343][ T7456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 191.062360][ T7456] Call Trace: [ 191.062370][ T7456] [ 191.062382][ T7456] dump_stack_lvl+0x100/0x190 [ 191.062432][ T7456] should_fail_ex.cold+0x5/0xa [ 191.062469][ T7456] should_failslab+0xc2/0x120 [ 191.062515][ T7456] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 191.062558][ T7456] ? fib_rules_register+0x30/0x500 [ 191.062587][ T7456] ? net_generic+0xea/0x2a0 [ 191.062613][ T7456] ? net_generic+0xea/0x2a0 [ 191.062643][ T7456] ? __pfx_ipmr_net_init+0x10/0x10 [ 191.062673][ T7456] kmemdup_noprof+0x29/0x60 [ 191.062716][ T7456] fib_rules_register+0x30/0x500 [ 191.062745][ T7456] ? fib_notifier_ops_register+0x123/0x270 [ 191.062778][ T7456] ? __pfx_ipmr_net_init+0x10/0x10 [ 191.062807][ T7456] ipmr_net_init+0xbb/0x4a0 [ 191.062838][ T7456] ? __pfx_ipmr_net_init+0x10/0x10 [ 191.062867][ T7456] ops_init+0x1e2/0x5f0 [ 191.062903][ T7456] setup_net+0x118/0x3a0 [ 191.062935][ T7456] ? __pfx_setup_net+0x10/0x10 [ 191.062962][ T7456] ? lockdep_init_map_type+0x5c/0x250 [ 191.063001][ T7456] ? mutex_init_lockep+0x110/0x150 [ 191.063064][ T7456] copy_net_ns+0x46f/0x7c0 [ 191.063102][ T7456] create_new_namespaces+0x3ea/0xac0 [ 191.063142][ T7456] copy_namespaces+0x468/0x5e0 [ 191.063175][ T7456] copy_process+0x3226/0x7a10 [ 191.063232][ T7456] ? __pfx_copy_process+0x10/0x10 [ 191.063287][ T7456] kernel_clone+0xfc/0x9a0 [ 191.063326][ T7456] ? __pfx_futex_wait+0x10/0x10 [ 191.063371][ T7456] ? __pfx_kernel_clone+0x10/0x10 [ 191.063429][ T7456] __do_sys_clone+0xd9/0x120 [ 191.063465][ T7456] ? __pfx___do_sys_clone+0x10/0x10 [ 191.063501][ T7456] ? find_held_lock+0x2b/0x80 [ 191.063579][ T7456] do_syscall_64+0x106/0xf80 [ 191.063608][ T7456] ? clear_bhb_loop+0x40/0x90 [ 191.063645][ T7456] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 191.063676][ T7456] RIP: 0033:0x7f9f0999c139 [ 191.063703][ T7456] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 191.063731][ T7456] RSP: 002b:00007f9f0a846fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 191.063760][ T7456] RAX: ffffffffffffffda RBX: 00007f9f09c16090 RCX: 00007f9f0999c139 [ 191.063779][ T7456] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211 [ 191.063797][ T7456] RBP: 00007f9f09a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 191.063814][ T7456] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 191.063831][ T7456] R13: 00007f9f09c16128 R14: 00007f9f09c16090 R15: 00007ffd7d5a23f8 [ 191.063871][ T7456] [ 193.139451][ T7490] FAULT_INJECTION: forcing a failure. [ 193.139451][ T7490] name failslab, interval 1, probability 0, space 0, times 0 [ 193.193921][ T7490] CPU: 1 UID: 0 PID: 7490 Comm: syz.2.339 Not tainted syzkaller #0 PREEMPT(full) [ 193.193967][ T7490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 193.193986][ T7490] Call Trace: [ 193.193997][ T7490] [ 193.194010][ T7490] dump_stack_lvl+0x100/0x190 [ 193.194074][ T7490] should_fail_ex.cold+0x5/0xa [ 193.194112][ T7490] should_failslab+0xc2/0x120 [ 193.194160][ T7490] __kmalloc_cache_noprof+0x7a/0x6f0 [ 193.194195][ T7490] ? alloc_bprm+0x86/0x710 [ 193.194242][ T7490] alloc_bprm+0x86/0x710 [ 193.194284][ T7490] do_execveat_common.isra.0+0x19c/0x580 [ 193.194328][ T7490] ? do_getname+0x191/0x390 [ 193.194363][ T7490] __x64_sys_execve+0x93/0xd0 [ 193.194407][ T7490] do_syscall_64+0x106/0xf80 [ 193.194436][ T7490] ? clear_bhb_loop+0x40/0x90 [ 193.194475][ T7490] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.194507][ T7490] RIP: 0033:0x7fda2eb9c139 [ 193.194544][ T7490] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 193.194573][ T7490] RSP: 002b:00007fda2fb01028 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 193.194605][ T7490] RAX: ffffffffffffffda RBX: 00007fda2ee15fa0 RCX: 00007fda2eb9c139 [ 193.194626][ T7490] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000001c0 [ 193.194644][ T7490] RBP: 00007fda2ec327e0 R08: 0000000000000000 R09: 0000000000000000 [ 193.194664][ T7490] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 193.194683][ T7490] R13: 00007fda2ee16038 R14: 00007fda2ee15fa0 R15: 00007ffdad7f42f8 [ 193.194724][ T7490] [ 193.959039][ T7500] FAULT_INJECTION: forcing a failure. [ 193.959039][ T7500] name failslab, interval 1, probability 0, space 0, times 0 [ 194.014983][ T7500] CPU: 1 UID: 0 PID: 7500 Comm: syz.3.341 Not tainted syzkaller #0 PREEMPT(full) [ 194.015027][ T7500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 194.015043][ T7500] Call Trace: [ 194.015053][ T7500] [ 194.015064][ T7500] dump_stack_lvl+0x100/0x190 [ 194.015110][ T7500] should_fail_ex.cold+0x5/0xa [ 194.015146][ T7500] should_failslab+0xc2/0x120 [ 194.015191][ T7500] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 194.015233][ T7500] ? fib_notifier_ops_register+0x32/0x270 [ 194.015274][ T7500] ? proc_create_reg+0xd7/0x170 [ 194.015323][ T7500] ? __pfx_ipmr_net_init+0x10/0x10 [ 194.015353][ T7500] kmemdup_noprof+0x29/0x60 [ 194.015397][ T7500] fib_notifier_ops_register+0x32/0x270 [ 194.015430][ T7500] ? __pfx_ipmr_net_init+0x10/0x10 [ 194.015460][ T7500] ipmr_net_init+0x5b/0x4a0 [ 194.015491][ T7500] ? __pfx_ipmr_net_init+0x10/0x10 [ 194.015520][ T7500] ops_init+0x1e2/0x5f0 [ 194.015551][ T7500] setup_net+0x118/0x3a0 [ 194.015581][ T7500] ? __pfx_setup_net+0x10/0x10 [ 194.015609][ T7500] ? lockdep_init_map_type+0x5c/0x250 [ 194.015648][ T7500] ? mutex_init_lockep+0x110/0x150 [ 194.015694][ T7500] copy_net_ns+0x46f/0x7c0 [ 194.015731][ T7500] create_new_namespaces+0x3ea/0xac0 [ 194.015772][ T7500] copy_namespaces+0x468/0x5e0 [ 194.015805][ T7500] copy_process+0x3226/0x7a10 [ 194.015862][ T7500] ? __pfx_copy_process+0x10/0x10 [ 194.015917][ T7500] kernel_clone+0xfc/0x9a0 [ 194.015949][ T7500] ? __pfx_futex_wait+0x10/0x10 [ 194.015994][ T7500] ? __pfx_kernel_clone+0x10/0x10 [ 194.016037][ T7500] ? __fget_files+0x21f/0x3d0 [ 194.016090][ T7500] __do_sys_clone+0xd9/0x120 [ 194.016126][ T7500] ? __pfx___do_sys_clone+0x10/0x10 [ 194.016160][ T7500] ? find_held_lock+0x2b/0x80 [ 194.016240][ T7500] do_syscall_64+0x106/0xf80 [ 194.016277][ T7500] ? clear_bhb_loop+0x40/0x90 [ 194.016317][ T7500] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 194.016348][ T7500] RIP: 0033:0x7f81c939c139 [ 194.016375][ T7500] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 194.016404][ T7500] RSP: 002b:00007f81c75b3fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 194.016433][ T7500] RAX: ffffffffffffffda RBX: 00007f81c9616180 RCX: 00007f81c939c139 [ 194.016453][ T7500] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211 [ 194.016471][ T7500] RBP: 00007f81c94327e0 R08: 0000000000000000 R09: 0000000000000000 [ 194.016488][ T7500] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 194.016505][ T7500] R13: 00007f81c9616218 R14: 00007f81c9616180 R15: 00007ffc1cf1b148 [ 194.016546][ T7500] [ 194.585182][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.591558][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.808269][ T7523] futex_wake_op: syz.3.346 tries to shift op by -2048; fix this program [ 195.837811][ T7523] futex_wake_op: syz.3.346 tries to shift op by -2048; fix this program [ 195.858026][ T7523] 0x000000000001-0x000000020000 : "" [ 195.917967][ T7523] ftl_cs: FTL header corrupt! [ 196.155556][ T7534] FAULT_INJECTION: forcing a failure. [ 196.155556][ T7534] name failslab, interval 1, probability 0, space 0, times 0 [ 196.212778][ T7534] CPU: 1 UID: 0 PID: 7534 Comm: syz.1.349 Not tainted syzkaller #0 PREEMPT(full) [ 196.212819][ T7534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 196.212835][ T7534] Call Trace: [ 196.212845][ T7534] [ 196.212856][ T7534] dump_stack_lvl+0x100/0x190 [ 196.212904][ T7534] should_fail_ex.cold+0x5/0xa [ 196.212936][ T7534] should_failslab+0xc2/0x120 [ 196.212980][ T7534] __kmalloc_cache_noprof+0x7a/0x6f0 [ 196.213011][ T7534] ? alloc_pipe_info+0x10e/0x590 [ 196.213049][ T7534] ? aa_file_perm+0x268/0x1530 [ 196.213098][ T7534] alloc_pipe_info+0x10e/0x590 [ 196.213138][ T7534] ? aa_file_perm+0x277/0x1530 [ 196.213185][ T7534] splice_direct_to_actor+0x78f/0xa30 [ 196.213227][ T7534] ? __pfx_direct_splice_actor+0x10/0x10 [ 196.213276][ T7534] ? __pfx_aa_file_perm+0x10/0x10 [ 196.213331][ T7534] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 196.213383][ T7534] do_splice_direct+0x174/0x240 [ 196.213422][ T7534] ? __pfx_do_splice_direct+0x10/0x10 [ 196.213458][ T7534] ? common_file_perm+0x1ab/0x4f0 [ 196.213496][ T7534] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 196.213537][ T7534] ? bpf_lsm_file_permission+0x9/0x10 [ 196.213574][ T7534] ? security_file_permission+0x76/0x210 [ 196.213615][ T7534] ? rw_verify_area+0xce/0x6d0 [ 196.213654][ T7534] do_sendfile+0xadc/0xe20 [ 196.213699][ T7534] ? __pfx_do_sendfile+0x10/0x10 [ 196.213738][ T7534] ? __fget_files+0x21f/0x3d0 [ 196.213787][ T7534] __x64_sys_sendfile64+0x1d8/0x220 [ 196.213832][ T7534] ? ksys_write+0x1ac/0x250 [ 196.213870][ T7534] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 196.213927][ T7534] do_syscall_64+0x106/0xf80 [ 196.213956][ T7534] ? clear_bhb_loop+0x40/0x90 [ 196.213992][ T7534] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.214022][ T7534] RIP: 0033:0x7f9f0999c139 [ 196.214045][ T7534] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 196.214071][ T7534] RSP: 002b:00007f9f0a868028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 196.214099][ T7534] RAX: ffffffffffffffda RBX: 00007f9f09c15fa0 RCX: 00007f9f0999c139 [ 196.214117][ T7534] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000001 [ 196.214133][ T7534] RBP: 00007f9f0a868090 R08: 0000000000000000 R09: 0000000000000000 [ 196.214149][ T7534] R10: 0000040000000c07 R11: 0000000000000246 R12: 0000000000000001 [ 196.214166][ T7534] R13: 00007f9f09c16038 R14: 00007f9f09c15fa0 R15: 00007ffd7d5a23f8 [ 196.214203][ T7534] [ 196.748471][ T7537] futex_wake_op: syz.2.350 tries to shift op by -2048; fix this program [ 196.775636][ T7537] futex_wake_op: syz.2.350 tries to shift op by -2048; fix this program [ 196.898038][ T7541] 0x000000000001-0x000000020000 : "" [ 197.000547][ T7541] ftl_cs: FTL header corrupt! [ 197.104140][ T7550] FAULT_INJECTION: forcing a failure. [ 197.104140][ T7550] name failslab, interval 1, probability 0, space 0, times 0 [ 197.170572][ T7550] CPU: 0 UID: 0 PID: 7550 Comm: syz.1.351 Not tainted syzkaller #0 PREEMPT(full) [ 197.170616][ T7550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 197.170635][ T7550] Call Trace: [ 197.170645][ T7550] [ 197.170658][ T7550] dump_stack_lvl+0x100/0x190 [ 197.170709][ T7550] should_fail_ex.cold+0x5/0xa [ 197.170746][ T7550] should_failslab+0xc2/0x120 [ 197.170795][ T7550] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 197.170835][ T7550] ? __proc_create+0x2cb/0x8c0 [ 197.170886][ T7550] __proc_create+0x2cb/0x8c0 [ 197.170930][ T7550] ? __pfx___proc_create+0x10/0x10 [ 197.170974][ T7550] ? _raw_spin_unlock+0x28/0x50 [ 197.171034][ T7550] proc_create_reg+0x75/0x170 [ 197.171092][ T7550] proc_create_net_data+0x8e/0x1c0 [ 197.171138][ T7550] ? __pfx_proc_create_net_data+0x10/0x10 [ 197.171183][ T7550] ? mptcp_net_init+0x4d0/0x620 [ 197.171225][ T7550] ? udp_pernet_init+0x686/0x910 [ 197.171280][ T7550] ? __pfx_udplite4_proc_init_net+0x10/0x10 [ 197.171318][ T7550] udplite4_proc_init_net+0x57/0x80 [ 197.171353][ T7550] ops_init+0x1e2/0x5f0 [ 197.171389][ T7550] setup_net+0x118/0x3a0 [ 197.171422][ T7550] ? __pfx_setup_net+0x10/0x10 [ 197.171451][ T7550] ? lockdep_init_map_type+0x5c/0x250 [ 197.171492][ T7550] ? mutex_init_lockep+0x110/0x150 [ 197.171538][ T7550] copy_net_ns+0x46f/0x7c0 [ 197.171577][ T7550] create_new_namespaces+0x3ea/0xac0 [ 197.171619][ T7550] copy_namespaces+0x468/0x5e0 [ 197.171654][ T7550] copy_process+0x3226/0x7a10 [ 197.171711][ T7550] ? __pfx_copy_process+0x10/0x10 [ 197.171747][ T7550] ? find_held_lock+0x2b/0x80 [ 197.171802][ T7550] ? futex_private_hash_put+0x107/0x1c0 [ 197.171844][ T7550] kernel_clone+0xfc/0x9a0 [ 197.171883][ T7550] ? __pfx_kernel_clone+0x10/0x10 [ 197.171929][ T7550] ? __fget_files+0x21f/0x3d0 [ 197.171984][ T7550] __do_sys_clone+0xd9/0x120 [ 197.172021][ T7550] ? __pfx___do_sys_clone+0x10/0x10 [ 197.172056][ T7550] ? find_held_lock+0x2b/0x80 [ 197.172145][ T7550] do_syscall_64+0x106/0xf80 [ 197.172174][ T7550] ? clear_bhb_loop+0x40/0x90 [ 197.172214][ T7550] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 197.172246][ T7550] RIP: 0033:0x7f9f0999c139 [ 197.172274][ T7550] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 197.172302][ T7550] RSP: 002b:00007f9f0a825fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 197.172335][ T7550] RAX: ffffffffffffffda RBX: 00007f9f09c16180 RCX: 00007f9f0999c139 [ 197.172352][ T7550] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211 [ 197.172368][ T7550] RBP: 00007f9f09a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 197.172384][ T7550] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 197.172400][ T7550] R13: 00007f9f09c16218 R14: 00007f9f09c16180 R15: 00007ffd7d5a23f8 [ 197.172440][ T7550] [ 198.205789][ T7557] FAULT_INJECTION: forcing a failure. [ 198.205789][ T7557] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 198.224631][ T7557] CPU: 1 UID: 0 PID: 7557 Comm: syz.2.353 Not tainted syzkaller #0 PREEMPT(full) [ 198.224673][ T7557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 198.224689][ T7557] Call Trace: [ 198.224699][ T7557] [ 198.224709][ T7557] dump_stack_lvl+0x100/0x190 [ 198.224759][ T7557] should_fail_ex.cold+0x5/0xa [ 198.224793][ T7557] _copy_from_user+0x2e/0xd0 [ 198.224835][ T7557] get_timespec64+0x8b/0x1b0 [ 198.224865][ T7557] ? __pfx_get_timespec64+0x10/0x10 [ 198.224893][ T7557] ? ktime_get+0x200/0x300 [ 198.224930][ T7557] __x64_sys_futex+0x21a/0x4d0 [ 198.224970][ T7557] ? __pfx___x64_sys_futex+0x10/0x10 [ 198.225029][ T7557] do_syscall_64+0x106/0xf80 [ 198.225056][ T7557] ? clear_bhb_loop+0x40/0x90 [ 198.225093][ T7557] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 198.225122][ T7557] RIP: 0033:0x7fda2eb9c139 [ 198.225146][ T7557] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 198.225173][ T7557] RSP: 002b:00007ffdad7f4458 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 198.225201][ T7557] RAX: ffffffffffffffda RBX: 00000000000305eb RCX: 00007fda2eb9c139 [ 198.225220][ T7557] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fda2ee15fac [ 198.225237][ T7557] RBP: 0000000000000032 R08: 0000000000000000 R09: 0000000000000000 [ 198.225253][ T7557] R10: 00007ffdad7f4560 R11: 0000000000000246 R12: 00007ffdad7f4580 [ 198.225270][ T7557] R13: 00007fda2ee15fac R14: 000000000003061d R15: 00007ffdad7f4560 [ 198.225309][ T7557] [ 199.856294][ T7586] futex_wake_op: syz.3.359 tries to shift op by -2048; fix this program [ 199.884993][ T7586] futex_wake_op: syz.3.359 tries to shift op by -2048; fix this program [ 199.973149][ T7586] 0x000000000001-0x000000020000 : "" [ 200.017803][ T7586] ftl_cs: FTL header corrupt! [ 201.247160][ T7616] FAULT_INJECTION: forcing a failure. [ 201.247160][ T7616] name failslab, interval 1, probability 0, space 0, times 0 [ 201.300513][ T7616] CPU: 1 UID: 0 PID: 7616 Comm: syz.1.365 Not tainted syzkaller #0 PREEMPT(full) [ 201.300565][ T7616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 201.300583][ T7616] Call Trace: [ 201.300594][ T7616] [ 201.300605][ T7616] dump_stack_lvl+0x100/0x190 [ 201.300657][ T7616] should_fail_ex.cold+0x5/0xa [ 201.300693][ T7616] should_failslab+0xc2/0x120 [ 201.300741][ T7616] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 201.300785][ T7616] ? cache_create_net+0x2b/0x220 [ 201.300823][ T7616] kmemdup_noprof+0x29/0x60 [ 201.300866][ T7616] cache_create_net+0x2b/0x220 [ 201.300899][ T7616] ip_map_cache_create+0x60/0x130 [ 201.300933][ T7616] ? __pfx_sunrpc_init_net+0x10/0x10 [ 201.300984][ T7616] sunrpc_init_net+0x55/0x190 [ 201.301031][ T7616] ops_init+0x1e2/0x5f0 [ 201.301067][ T7616] setup_net+0x118/0x3a0 [ 201.301099][ T7616] ? __pfx_setup_net+0x10/0x10 [ 201.301128][ T7616] ? lockdep_init_map_type+0x5c/0x250 [ 201.301168][ T7616] ? mutex_init_lockep+0x110/0x150 [ 201.301213][ T7616] copy_net_ns+0x46f/0x7c0 [ 201.301250][ T7616] create_new_namespaces+0x3ea/0xac0 [ 201.301291][ T7616] copy_namespaces+0x468/0x5e0 [ 201.301324][ T7616] copy_process+0x3226/0x7a10 [ 201.301380][ T7616] ? __pfx_copy_process+0x10/0x10 [ 201.301435][ T7616] kernel_clone+0xfc/0x9a0 [ 201.301466][ T7616] ? __pfx_futex_wait+0x10/0x10 [ 201.301512][ T7616] ? __pfx_kernel_clone+0x10/0x10 [ 201.301561][ T7616] ? __fget_files+0x21f/0x3d0 [ 201.301615][ T7616] __do_sys_clone+0xd9/0x120 [ 201.301650][ T7616] ? __pfx___do_sys_clone+0x10/0x10 [ 201.301683][ T7616] ? find_held_lock+0x2b/0x80 [ 201.301762][ T7616] do_syscall_64+0x106/0xf80 [ 201.301790][ T7616] ? clear_bhb_loop+0x40/0x90 [ 201.301827][ T7616] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 201.301858][ T7616] RIP: 0033:0x7f9f0999c139 [ 201.301884][ T7616] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 201.301912][ T7616] RSP: 002b:00007f9f0a825fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 201.301941][ T7616] RAX: ffffffffffffffda RBX: 00007f9f09c16180 RCX: 00007f9f0999c139 [ 201.301960][ T7616] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211 [ 201.301986][ T7616] RBP: 00007f9f09a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 201.302004][ T7616] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 201.302021][ T7616] R13: 00007f9f09c16218 R14: 00007f9f09c16180 R15: 00007ffd7d5a23f8 [ 201.302062][ T7616] [ 201.875743][ T7631] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 202.730788][ T7644] futex_wake_op: syz.2.371 tries to shift op by -2048; fix this program [ 202.758478][ T7644] futex_wake_op: syz.2.371 tries to shift op by -2048; fix this program [ 202.795624][ T7644] 0x000000000001-0x000000020000 : "" [ 202.835575][ T7644] ftl_cs: FTL header corrupt! [ 204.357336][ T7683] FAULT_INJECTION: forcing a failure. [ 204.357336][ T7683] name failslab, interval 1, probability 0, space 0, times 0 [ 204.393469][ T7683] CPU: 0 UID: 0 PID: 7683 Comm: syz.1.378 Not tainted syzkaller #0 PREEMPT(full) [ 204.393515][ T7683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 204.393533][ T7683] Call Trace: [ 204.393544][ T7683] [ 204.393564][ T7683] dump_stack_lvl+0x100/0x190 [ 204.393618][ T7683] should_fail_ex.cold+0x5/0xa [ 204.393656][ T7683] should_failslab+0xc2/0x120 [ 204.393704][ T7683] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 204.393744][ T7683] ? security_inode_alloc+0x3b/0x2c0 [ 204.393782][ T7683] ? lockdep_init_map_type+0x5c/0x250 [ 204.393823][ T7683] security_inode_alloc+0x3b/0x2c0 [ 204.393862][ T7683] inode_init_always_gfp+0xced/0x1040 [ 204.393914][ T7683] alloc_inode+0x8e/0x250 [ 204.393959][ T7683] sock_alloc+0x44/0x280 [ 204.393990][ T7683] ? security_socket_create+0x7f/0x250 [ 204.394029][ T7683] __sock_create+0xc2/0x860 [ 204.394069][ T7683] ? proc_create_reg+0xd7/0x170 [ 204.394118][ T7683] inet_ctl_sock_create+0x94/0x230 [ 204.394159][ T7683] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 204.394197][ T7683] ? lockdep_init_map_type+0x5c/0x250 [ 204.394237][ T7683] ? lockdep_init_map_type+0x5c/0x250 [ 204.394278][ T7683] ? __pfx_igmp_net_init+0x10/0x10 [ 204.394320][ T7683] igmp_net_init+0xd0/0x150 [ 204.394365][ T7683] ops_init+0x1e2/0x5f0 [ 204.394439][ T7683] setup_net+0x118/0x3a0 [ 204.394473][ T7683] ? __pfx_setup_net+0x10/0x10 [ 204.394504][ T7683] ? lockdep_init_map_type+0x5c/0x250 [ 204.394545][ T7683] ? mutex_init_lockep+0x110/0x150 [ 204.394594][ T7683] copy_net_ns+0x46f/0x7c0 [ 204.394633][ T7683] create_new_namespaces+0x3ea/0xac0 [ 204.394674][ T7683] copy_namespaces+0x468/0x5e0 [ 204.394708][ T7683] copy_process+0x3226/0x7a10 [ 204.394766][ T7683] ? __pfx_copy_process+0x10/0x10 [ 204.394822][ T7683] kernel_clone+0xfc/0x9a0 [ 204.394856][ T7683] ? __pfx_futex_wait+0x10/0x10 [ 204.394898][ T7683] ? __pfx_kernel_clone+0x10/0x10 [ 204.394964][ T7683] __do_sys_clone+0xd9/0x120 [ 204.395002][ T7683] ? __pfx___do_sys_clone+0x10/0x10 [ 204.395037][ T7683] ? find_held_lock+0x2b/0x80 [ 204.395119][ T7683] do_syscall_64+0x106/0xf80 [ 204.395150][ T7683] ? clear_bhb_loop+0x40/0x90 [ 204.395189][ T7683] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 204.395220][ T7683] RIP: 0033:0x7f9f0999c139 [ 204.395248][ T7683] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 204.395277][ T7683] RSP: 002b:00007f9f0a825fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 204.395309][ T7683] RAX: ffffffffffffffda RBX: 00007f9f09c16180 RCX: 00007f9f0999c139 [ 204.395329][ T7683] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211 [ 204.395348][ T7683] RBP: 00007f9f09a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 204.395366][ T7683] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 204.395384][ T7683] R13: 00007f9f09c16218 R14: 00007f9f09c16180 R15: 00007ffd7d5a23f8 [ 204.395428][ T7683] [ 204.395489][ T7683] socket: no more sockets [ 204.712487][ T7683] Failed to initialize the IGMP autojoin socket (err -23) [ 205.610244][ T7695] vhci_hcd vhci_hcd.2: invalid port number 255 [ 206.206651][ T7708] FAULT_INJECTION: forcing a failure. [ 206.206651][ T7708] name failslab, interval 1, probability 0, space 0, times 0 [ 206.231403][ T7708] CPU: 0 UID: 0 PID: 7708 Comm: syz.1.385 Not tainted syzkaller #0 PREEMPT(full) [ 206.231450][ T7708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 206.231469][ T7708] Call Trace: [ 206.231479][ T7708] [ 206.231490][ T7708] dump_stack_lvl+0x100/0x190 [ 206.231542][ T7708] should_fail_ex.cold+0x5/0xa [ 206.231580][ T7708] should_failslab+0xc2/0x120 [ 206.231627][ T7708] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 206.231671][ T7708] ? __alloc_skb+0x140/0x710 [ 206.231726][ T7708] __alloc_skb+0x140/0x710 [ 206.231770][ T7708] ? __alloc_skb+0x5b7/0x710 [ 206.231816][ T7708] ? __pfx___alloc_skb+0x10/0x10 [ 206.231866][ T7708] ? sk_page_frag_refill+0x6c/0x340 [ 206.231913][ T7708] kcm_sendmsg+0x1482/0x2fe0 [ 206.231996][ T7708] ? __pfx_kcm_sendmsg+0x10/0x10 [ 206.232050][ T7708] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 206.232095][ T7708] sock_sendmsg+0x3a1/0x430 [ 206.232136][ T7708] ? __pfx_sock_sendmsg+0x10/0x10 [ 206.232202][ T7708] splice_to_socket+0xb4c/0x11b0 [ 206.232245][ T7708] ? touch_atime+0xa5/0x7a0 [ 206.232300][ T7708] ? __pfx_splice_to_socket+0x10/0x10 [ 206.232384][ T7708] ? trace_kmalloc+0x101/0x130 [ 206.232426][ T7708] ? lockdep_init_map_type+0x5c/0x250 [ 206.232464][ T7708] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 206.232504][ T7708] ? __pfx_splice_to_socket+0x10/0x10 [ 206.232552][ T7708] direct_splice_actor+0x192/0x6c0 [ 206.232604][ T7708] splice_direct_to_actor+0x345/0xa30 [ 206.232652][ T7708] ? __pfx_direct_splice_actor+0x10/0x10 [ 206.232706][ T7708] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 206.232764][ T7708] do_splice_direct+0x174/0x240 [ 206.232810][ T7708] ? __pfx_do_splice_direct+0x10/0x10 [ 206.232851][ T7708] ? common_file_perm+0x1ab/0x4f0 [ 206.232894][ T7708] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 206.232941][ T7708] ? bpf_lsm_file_permission+0x9/0x10 [ 206.232993][ T7708] ? security_file_permission+0x76/0x210 [ 206.233040][ T7708] ? rw_verify_area+0xce/0x6d0 [ 206.233084][ T7708] do_sendfile+0xadc/0xe20 [ 206.233133][ T7708] ? __pfx_do_sendfile+0x10/0x10 [ 206.233182][ T7708] ? __x64_sys_futex+0x34f/0x4d0 [ 206.233257][ T7708] ? __x64_sys_futex+0x358/0x4d0 [ 206.233298][ T7708] __x64_sys_sendfile64+0x1d8/0x220 [ 206.233351][ T7708] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 206.233414][ T7708] do_syscall_64+0x106/0xf80 [ 206.233444][ T7708] ? clear_bhb_loop+0x40/0x90 [ 206.233483][ T7708] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 206.233516][ T7708] RIP: 0033:0x7f9f0999c139 [ 206.233542][ T7708] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 206.233571][ T7708] RSP: 002b:00007f9f0a847028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 206.233601][ T7708] RAX: ffffffffffffffda RBX: 00007f9f09c16090 RCX: 00007f9f0999c139 [ 206.233621][ T7708] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000001 [ 206.233638][ T7708] RBP: 00007f9f09a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 206.233655][ T7708] R10: 000000007ffff011 R11: 0000000000000246 R12: 0000000000000000 [ 206.233673][ T7708] R13: 00007f9f09c16128 R14: 00007f9f09c16090 R15: 00007ffd7d5a23f8 [ 206.233715][ T7708] [ 207.769340][ T7725] futex_wake_op: syz.1.387 tries to shift op by -2048; fix this program [ 207.822670][ T7725] futex_wake_op: syz.1.387 tries to shift op by -2048; fix this program [ 207.851909][ T7725] 0x000000000001-0x000000020000 : "" [ 207.911263][ T7725] ftl_cs: FTL header corrupt! [ 208.824540][ T7750] FAULT_INJECTION: forcing a failure. [ 208.824540][ T7750] name failslab, interval 1, probability 0, space 0, times 0 [ 208.904742][ T7750] CPU: 1 UID: 0 PID: 7750 Comm: syz.0.391 Not tainted syzkaller #0 PREEMPT(full) [ 208.904784][ T7750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 208.904802][ T7750] Call Trace: [ 208.904813][ T7750] [ 208.904825][ T7750] dump_stack_lvl+0x100/0x190 [ 208.904876][ T7750] should_fail_ex.cold+0x5/0xa [ 208.904912][ T7750] should_failslab+0xc2/0x120 [ 208.904961][ T7750] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 208.905002][ T7750] ? fib_rules_register+0x30/0x500 [ 208.905028][ T7750] ? net_generic+0xea/0x2a0 [ 208.905054][ T7750] ? net_generic+0xea/0x2a0 [ 208.905083][ T7750] ? __pfx_ipmr_net_init+0x10/0x10 [ 208.905112][ T7750] kmemdup_noprof+0x29/0x60 [ 208.905151][ T7750] fib_rules_register+0x30/0x500 [ 208.905176][ T7750] ? fib_notifier_ops_register+0x123/0x270 [ 208.905207][ T7750] ? __pfx_ipmr_net_init+0x10/0x10 [ 208.905235][ T7750] ipmr_net_init+0xbb/0x4a0 [ 208.905271][ T7750] ? __pfx_ipmr_net_init+0x10/0x10 [ 208.905299][ T7750] ops_init+0x1e2/0x5f0 [ 208.905334][ T7750] setup_net+0x118/0x3a0 [ 208.905363][ T7750] ? __pfx_setup_net+0x10/0x10 [ 208.905388][ T7750] ? lockdep_init_map_type+0x5c/0x250 [ 208.905426][ T7750] ? mutex_init_lockep+0x110/0x150 [ 208.905469][ T7750] copy_net_ns+0x46f/0x7c0 [ 208.905507][ T7750] create_new_namespaces+0x3ea/0xac0 [ 208.905548][ T7750] copy_namespaces+0x468/0x5e0 [ 208.905581][ T7750] copy_process+0x3226/0x7a10 [ 208.905636][ T7750] ? __pfx_copy_process+0x10/0x10 [ 208.905671][ T7750] ? find_held_lock+0x2b/0x80 [ 208.905731][ T7750] ? futex_private_hash_put+0x107/0x1c0 [ 208.905773][ T7750] kernel_clone+0xfc/0x9a0 [ 208.905811][ T7750] ? __pfx_kernel_clone+0x10/0x10 [ 208.905867][ T7750] __do_sys_clone+0xd9/0x120 [ 208.905900][ T7750] ? __pfx___do_sys_clone+0x10/0x10 [ 208.905931][ T7750] ? find_held_lock+0x2b/0x80 [ 208.906006][ T7750] do_syscall_64+0x106/0xf80 [ 208.906032][ T7750] ? clear_bhb_loop+0x40/0x90 [ 208.906067][ T7750] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 208.906093][ T7750] RIP: 0033:0x7f1b4ed9c139 [ 208.906115][ T7750] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 208.906140][ T7750] RSP: 002b:00007f1b4fbfdfd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 208.906167][ T7750] RAX: ffffffffffffffda RBX: 00007f1b4f016180 RCX: 00007f1b4ed9c139 [ 208.906186][ T7750] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211 [ 208.906203][ T7750] RBP: 00007f1b4ee327e0 R08: 0000000000000000 R09: 0000000000000000 [ 208.906220][ T7750] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 208.906237][ T7750] R13: 00007f1b4f016218 R14: 00007f1b4f016180 R15: 00007ffe898d9d88 [ 208.906285][ T7750] [ 210.180651][ T7777] FAULT_INJECTION: forcing a failure. [ 210.180651][ T7777] name failslab, interval 1, probability 0, space 0, times 0 [ 210.221533][ T7777] CPU: 1 UID: 0 PID: 7777 Comm: syz.0.398 Not tainted syzkaller #0 PREEMPT(full) [ 210.221579][ T7777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 210.221597][ T7777] Call Trace: [ 210.221607][ T7777] [ 210.221618][ T7777] dump_stack_lvl+0x100/0x190 [ 210.221667][ T7777] should_fail_ex.cold+0x5/0xa [ 210.221702][ T7777] should_failslab+0xc2/0x120 [ 210.221746][ T7777] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 210.221784][ T7777] ? security_inode_alloc+0x3b/0x2c0 [ 210.221821][ T7777] ? lockdep_init_map_type+0x5c/0x250 [ 210.221863][ T7777] security_inode_alloc+0x3b/0x2c0 [ 210.221901][ T7777] inode_init_always_gfp+0xced/0x1040 [ 210.221961][ T7777] alloc_inode+0x8e/0x250 [ 210.221994][ T7777] new_inode+0x22/0x1c0 [ 210.222030][ T7777] hugetlbfs_get_inode+0x313/0x750 [ 210.222082][ T7777] hugetlb_file_setup+0x15b/0x5b0 [ 210.222131][ T7777] ksys_mmap_pgoff+0x185/0x5b0 [ 210.222183][ T7777] __x64_sys_mmap+0x125/0x190 [ 210.222230][ T7777] do_syscall_64+0x106/0xf80 [ 210.222259][ T7777] ? clear_bhb_loop+0x40/0x90 [ 210.222297][ T7777] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 210.222332][ T7777] RIP: 0033:0x7f1b4ed9c139 [ 210.222357][ T7777] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 210.222382][ T7777] RSP: 002b:00007f1b4fc40028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 210.222411][ T7777] RAX: ffffffffffffffda RBX: 00007f1b4f015fa0 RCX: 00007f1b4ed9c139 [ 210.222430][ T7777] RDX: 0000000000000002 RSI: 0000000000000006 RDI: 0000000000000000 [ 210.222447][ T7777] RBP: 00007f1b4ee327e0 R08: ffffffffffffffff R09: 0000308000000000 [ 210.222466][ T7777] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000 [ 210.222485][ T7777] R13: 00007f1b4f016038 R14: 00007f1b4f015fa0 R15: 00007ffe898d9d88 [ 210.222524][ T7777] [ 211.046631][ T7795] ======================================================= [ 211.046631][ T7795] WARNING: The mand mount option has been deprecated and [ 211.046631][ T7795] and is ignored by this kernel. Remove the mand [ 211.046631][ T7795] option from the mount to silence this warning. [ 211.046631][ T7795] ======================================================= [ 211.657653][ T7810] FAULT_INJECTION: forcing a failure. [ 211.657653][ T7810] name failslab, interval 1, probability 0, space 0, times 0 [ 211.703020][ T7810] CPU: 1 UID: 0 PID: 7810 Comm: syz.1.403 Not tainted syzkaller #0 PREEMPT(full) [ 211.703062][ T7810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 211.703079][ T7810] Call Trace: [ 211.703089][ T7810] [ 211.703101][ T7810] dump_stack_lvl+0x100/0x190 [ 211.703154][ T7810] should_fail_ex.cold+0x5/0xa [ 211.703200][ T7810] should_failslab+0xc2/0x120 [ 211.703249][ T7810] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 211.703290][ T7810] ? __proc_create+0x2cb/0x8c0 [ 211.703342][ T7810] __proc_create+0x2cb/0x8c0 [ 211.703387][ T7810] ? __pfx___proc_create+0x10/0x10 [ 211.703427][ T7810] ? _raw_write_unlock+0x28/0x50 [ 211.703474][ T7810] ? proc_register+0x559/0x8a0 [ 211.703528][ T7810] proc_create_reg+0x75/0x170 [ 211.703573][ T7810] proc_create_net_data+0x8e/0x1c0 [ 211.703618][ T7810] ? __pfx_proc_create_net_data+0x10/0x10 [ 211.703667][ T7810] ? __pfx_inet_init_net+0x10/0x10 [ 211.703708][ T7810] ? __pfx_raw_init_net+0x10/0x10 [ 211.703747][ T7810] raw_init_net+0x57/0x80 [ 211.703789][ T7810] ops_init+0x1e2/0x5f0 [ 211.703824][ T7810] setup_net+0x118/0x3a0 [ 211.703856][ T7810] ? __pfx_setup_net+0x10/0x10 [ 211.703883][ T7810] ? lockdep_init_map_type+0x5c/0x250 [ 211.703922][ T7810] ? mutex_init_lockep+0x110/0x150 [ 211.703969][ T7810] copy_net_ns+0x46f/0x7c0 [ 211.704007][ T7810] create_new_namespaces+0x3ea/0xac0 [ 211.704047][ T7810] copy_namespaces+0x468/0x5e0 [ 211.704080][ T7810] copy_process+0x3226/0x7a10 [ 211.704136][ T7810] ? __pfx_copy_process+0x10/0x10 [ 211.704178][ T7810] ? find_held_lock+0x2b/0x80 [ 211.704231][ T7810] ? futex_private_hash_put+0x107/0x1c0 [ 211.704272][ T7810] kernel_clone+0xfc/0x9a0 [ 211.704309][ T7810] ? __pfx_kernel_clone+0x10/0x10 [ 211.704368][ T7810] __do_sys_clone+0xd9/0x120 [ 211.704403][ T7810] ? __pfx___do_sys_clone+0x10/0x10 [ 211.704437][ T7810] ? find_held_lock+0x2b/0x80 [ 211.704518][ T7810] do_syscall_64+0x106/0xf80 [ 211.704547][ T7810] ? clear_bhb_loop+0x40/0x90 [ 211.704585][ T7810] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 211.704617][ T7810] RIP: 0033:0x7f9f0999c139 [ 211.704644][ T7810] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 211.704673][ T7810] RSP: 002b:00007f9f0a825fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 211.704704][ T7810] RAX: ffffffffffffffda RBX: 00007f9f09c16180 RCX: 00007f9f0999c139 [ 211.704724][ T7810] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211 [ 211.704743][ T7810] RBP: 00007f9f09a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 211.704762][ T7810] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 211.704780][ T7810] R13: 00007f9f09c16218 R14: 00007f9f09c16180 R15: 00007ffd7d5a23f8 [ 211.704822][ T7810] [ 212.741322][ T7825] device-mapper: ioctl: device name cannot be "control", ".", or ".." [ 214.397978][ T7851] FAULT_INJECTION: forcing a failure. [ 214.397978][ T7851] name failslab, interval 1, probability 0, space 0, times 0 [ 214.446596][ T7851] CPU: 0 UID: 0 PID: 7851 Comm: syz.2.414 Not tainted syzkaller #0 PREEMPT(full) [ 214.446640][ T7851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 214.446658][ T7851] Call Trace: [ 214.446668][ T7851] [ 214.446680][ T7851] dump_stack_lvl+0x100/0x190 [ 214.446729][ T7851] should_fail_ex.cold+0x5/0xa [ 214.446756][ T7851] should_failslab+0xc2/0x120 [ 214.446783][ T7851] __kmalloc_cache_noprof+0x7a/0x6f0 [ 214.446803][ T7851] ? syslog_print_all+0xed/0x3f0 [ 214.446830][ T7851] syslog_print_all+0xed/0x3f0 [ 214.446851][ T7851] ? futex_wait+0x125/0x380 [ 214.446878][ T7851] ? __pfx_syslog_print_all+0x10/0x10 [ 214.446920][ T7851] ? bpf_lsm_capable+0x9/0x10 [ 214.446947][ T7851] ? security_capable+0x80/0x260 [ 214.446970][ T7851] do_syslog+0x350/0x6d0 [ 214.446995][ T7851] ? __pfx_do_syslog+0x10/0x10 [ 214.447034][ T7851] __x64_sys_syslog+0x74/0xb0 [ 214.447058][ T7851] ? lockdep_hardirqs_on+0x78/0x100 [ 214.447087][ T7851] do_syscall_64+0x106/0xf80 [ 214.447103][ T7851] ? clear_bhb_loop+0x40/0x90 [ 214.447125][ T7851] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 214.447143][ T7851] RIP: 0033:0x7fda2eb9c139 [ 214.447162][ T7851] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 214.447178][ T7851] RSP: 002b:00007fda2fb01028 EFLAGS: 00000246 ORIG_RAX: 0000000000000067 [ 214.447197][ T7851] RAX: ffffffffffffffda RBX: 00007fda2ee15fa0 RCX: 00007fda2eb9c139 [ 214.447209][ T7851] RDX: 00000000000000f4 RSI: 0000200000000040 RDI: 0000000000000004 [ 214.447226][ T7851] RBP: 00007fda2ec327e0 R08: 0000000000000000 R09: 0000000000000000 [ 214.447236][ T7851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 214.447245][ T7851] R13: 00007fda2ee16038 R14: 00007fda2ee15fa0 R15: 00007ffdad7f42f8 [ 214.447268][ T7851] [ 215.764922][ T29] audit: type=1800 audit(1771372329.500:2): pid=7872 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.420" name="dbroot" dev="configfs" ino=21356 res=0 errno=0 [ 215.895776][ T7879] FAULT_INJECTION: forcing a failure. [ 215.895776][ T7879] name failslab, interval 1, probability 0, space 0, times 0 [ 215.916940][ T7879] CPU: 1 UID: 0 PID: 7879 Comm: syz.3.421 Tainted: G L syzkaller #0 PREEMPT(full) [ 215.916986][ T7879] Tainted: [L]=SOFTLOCKUP [ 215.916996][ T7879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 215.917011][ T7879] Call Trace: [ 215.917021][ T7879] [ 215.917031][ T7879] dump_stack_lvl+0x100/0x190 [ 215.917079][ T7879] should_fail_ex.cold+0x5/0xa [ 215.917112][ T7879] should_failslab+0xc2/0x120 [ 215.917155][ T7879] __kmalloc_cache_noprof+0x7a/0x6f0 [ 215.917186][ T7879] ? alloc_pipe_info+0x10e/0x590 [ 215.917228][ T7879] ? aa_file_perm+0x268/0x1530 [ 215.917278][ T7879] alloc_pipe_info+0x10e/0x590 [ 215.917317][ T7879] ? aa_file_perm+0x277/0x1530 [ 215.917362][ T7879] splice_direct_to_actor+0x78f/0xa30 [ 215.917406][ T7879] ? __pfx_direct_splice_actor+0x10/0x10 [ 215.917445][ T7879] ? __pfx_aa_file_perm+0x10/0x10 [ 215.917495][ T7879] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 215.917548][ T7879] do_splice_direct+0x174/0x240 [ 215.917590][ T7879] ? __pfx_do_splice_direct+0x10/0x10 [ 215.917627][ T7879] ? common_file_perm+0x1ab/0x4f0 [ 215.917664][ T7879] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 215.917708][ T7879] ? rw_verify_area+0xce/0x6d0 [ 215.917745][ T7879] do_sendfile+0xadc/0xe20 [ 215.917788][ T7879] ? __pfx_do_sendfile+0x10/0x10 [ 215.917825][ T7879] ? __fget_files+0x21f/0x3d0 [ 215.917872][ T7879] __x64_sys_sendfile64+0x1d8/0x220 [ 215.917930][ T7879] ? ksys_write+0x1ac/0x250 [ 215.917966][ T7879] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 215.918023][ T7879] do_syscall_64+0x106/0xf80 [ 215.918050][ T7879] ? clear_bhb_loop+0x40/0x90 [ 215.918084][ T7879] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 215.918111][ T7879] RIP: 0033:0x7f81c939c139 [ 215.918134][ T7879] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 215.918160][ T7879] RSP: 002b:00007f81c75d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 215.918187][ T7879] RAX: ffffffffffffffda RBX: 00007f81c9616090 RCX: 00007f81c939c139 [ 215.918204][ T7879] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004 [ 215.918219][ T7879] RBP: 00007f81c75d5090 R08: 0000000000000000 R09: 0000000000000000 [ 215.918236][ T7879] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001 [ 215.918252][ T7879] R13: 00007f81c9616128 R14: 00007f81c9616090 R15: 00007ffc1cf1b148 [ 215.918290][ T7879] [ 216.222888][ T7875] zswap: compressor not available [ 217.953941][ T7904] binder: 7903:7904 ioctl c0306201 2000000000c0 returned -14 [ 218.376253][ T6717] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 219.371279][ T7941] binder: 7940:7941 ioctl c0306201 2000000000c0 returned -14 [ 219.485780][ T7945] FAULT_INJECTION: forcing a failure. [ 219.485780][ T7945] name failslab, interval 1, probability 0, space 0, times 0 [ 219.498819][ T7945] CPU: 1 UID: 0 PID: 7945 Comm: syz.3.437 Tainted: G L syzkaller #0 PREEMPT(full) [ 219.498864][ T7945] Tainted: [L]=SOFTLOCKUP [ 219.498874][ T7945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 219.498890][ T7945] Call Trace: [ 219.498899][ T7945] [ 219.498910][ T7945] dump_stack_lvl+0x100/0x190 [ 219.498954][ T7945] should_fail_ex.cold+0x5/0xa [ 219.498983][ T7945] should_failslab+0xc2/0x120 [ 219.499032][ T7945] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 219.499078][ T7945] ? unix_sysctl_register+0x3c/0x170 [ 219.499127][ T7945] ? __pfx_unix_net_init+0x10/0x10 [ 219.499157][ T7945] kmemdup_noprof+0x29/0x60 [ 219.499212][ T7945] unix_sysctl_register+0x3c/0x170 [ 219.499256][ T7945] unix_net_init+0x54/0x350 [ 219.499286][ T7945] ? __pfx_unix_net_init+0x10/0x10 [ 219.499323][ T7945] ops_init+0x1e2/0x5f0 [ 219.499359][ T7945] setup_net+0x118/0x3a0 [ 219.499400][ T7945] ? __pfx_setup_net+0x10/0x10 [ 219.499428][ T7945] ? lockdep_init_map_type+0x5c/0x250 [ 219.499495][ T7945] ? mutex_init_lockep+0x110/0x150 [ 219.499544][ T7945] copy_net_ns+0x46f/0x7c0 [ 219.499583][ T7945] create_new_namespaces+0x3ea/0xac0 [ 219.499625][ T7945] copy_namespaces+0x468/0x5e0 [ 219.499675][ T7945] copy_process+0x3226/0x7a10 [ 219.499739][ T7945] ? __pfx_copy_process+0x10/0x10 [ 219.499803][ T7945] kernel_clone+0xfc/0x9a0 [ 219.499832][ T7945] ? __pfx_futex_wait+0x10/0x10 [ 219.499873][ T7945] ? __pfx_kernel_clone+0x10/0x10 [ 219.499916][ T7945] __do_sys_clone+0xd9/0x120 [ 219.499937][ T7945] ? __pfx___do_sys_clone+0x10/0x10 [ 219.499956][ T7945] ? find_held_lock+0x2b/0x80 [ 219.500001][ T7945] do_syscall_64+0x106/0xf80 [ 219.500018][ T7945] ? clear_bhb_loop+0x40/0x90 [ 219.500039][ T7945] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 219.500058][ T7945] RIP: 0033:0x7f81c939c139 [ 219.500074][ T7945] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 219.500091][ T7945] RSP: 002b:00007f81c75d4fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 219.500108][ T7945] RAX: ffffffffffffffda RBX: 00007f81c9616090 RCX: 00007f81c939c139 [ 219.500120][ T7945] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211 [ 219.500130][ T7945] RBP: 00007f81c94327e0 R08: 0000000000000000 R09: 0000000000000000 [ 219.500140][ T7945] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 219.500150][ T7945] R13: 00007f81c9616128 R14: 00007f81c9616090 R15: 00007ffc1cf1b148 [ 219.500173][ T7945] [ 220.992626][ T7977] binder: 7976:7977 ioctl c0306201 2000000000c0 returned -14 [ 221.099698][ T7981] netlink: 28 bytes leftover after parsing attributes in process `syz.1.447'. [ 221.113983][ T7983] nbd: must specify a device to reconfigure [ 221.426423][ T7994] FAULT_INJECTION: forcing a failure. [ 221.426423][ T7994] name failslab, interval 1, probability 0, space 0, times 0 [ 221.478220][ T7994] CPU: 1 UID: 0 PID: 7994 Comm: syz.0.450 Tainted: G L syzkaller #0 PREEMPT(full) [ 221.478272][ T7994] Tainted: [L]=SOFTLOCKUP [ 221.478282][ T7994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 221.478300][ T7994] Call Trace: [ 221.478310][ T7994] [ 221.478322][ T7994] dump_stack_lvl+0x100/0x190 [ 221.478374][ T7994] should_fail_ex.cold+0x5/0xa [ 221.478412][ T7994] should_failslab+0xc2/0x120 [ 221.478461][ T7994] __kmalloc_cache_noprof+0x7a/0x6f0 [ 221.478496][ T7994] ? fqdir_init+0x4f/0x1f0 [ 221.478527][ T7994] ? __pfx_proc_create_net_single+0x10/0x10 [ 221.478581][ T7994] fqdir_init+0x4f/0x1f0 [ 221.478616][ T7994] ipv4_frags_init_net+0x2b/0x3d0 [ 221.478669][ T7994] ? __pfx_ipv4_frags_init_net+0x10/0x10 [ 221.478717][ T7994] ops_init+0x1e2/0x5f0 [ 221.478753][ T7994] setup_net+0x118/0x3a0 [ 221.478786][ T7994] ? __pfx_setup_net+0x10/0x10 [ 221.478815][ T7994] ? lockdep_init_map_type+0x5c/0x250 [ 221.478867][ T7994] ? mutex_init_lockep+0x110/0x150 [ 221.478915][ T7994] copy_net_ns+0x46f/0x7c0 [ 221.478954][ T7994] create_new_namespaces+0x3ea/0xac0 [ 221.478997][ T7994] copy_namespaces+0x468/0x5e0 [ 221.479032][ T7994] copy_process+0x3226/0x7a10 [ 221.479092][ T7994] ? __pfx_copy_process+0x10/0x10 [ 221.479147][ T7994] kernel_clone+0xfc/0x9a0 [ 221.479180][ T7994] ? __pfx_futex_wait+0x10/0x10 [ 221.479233][ T7994] ? __pfx_kernel_clone+0x10/0x10 [ 221.479292][ T7994] __do_sys_clone+0xd9/0x120 [ 221.479328][ T7994] ? __pfx___do_sys_clone+0x10/0x10 [ 221.479363][ T7994] ? find_held_lock+0x2b/0x80 [ 221.479445][ T7994] do_syscall_64+0x106/0xf80 [ 221.479475][ T7994] ? clear_bhb_loop+0x40/0x90 [ 221.479514][ T7994] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.479546][ T7994] RIP: 0033:0x7f1b4ed9c139 [ 221.479572][ T7994] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 221.479601][ T7994] RSP: 002b:00007f1b4fbfdfd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 221.479631][ T7994] RAX: ffffffffffffffda RBX: 00007f1b4f016180 RCX: 00007f1b4ed9c139 [ 221.479651][ T7994] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211 [ 221.479669][ T7994] RBP: 00007f1b4ee327e0 R08: 0000000000000000 R09: 0000000000000000 [ 221.479687][ T7994] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 221.479705][ T7994] R13: 00007f1b4f016218 R14: 00007f1b4f016180 R15: 00007ffe898d9d88 [ 221.479747][ T7994] [ 221.890915][ T8000] FAULT_INJECTION: forcing a failure. [ 221.890915][ T8000] name failslab, interval 1, probability 0, space 0, times 0 [ 221.904444][ T8000] CPU: 0 UID: 0 PID: 8000 Comm: syz.2.452 Tainted: G L syzkaller #0 PREEMPT(full) [ 221.904493][ T8000] Tainted: [L]=SOFTLOCKUP [ 221.904503][ T8000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 221.904520][ T8000] Call Trace: [ 221.904530][ T8000] [ 221.904541][ T8000] dump_stack_lvl+0x100/0x190 [ 221.904593][ T8000] should_fail_ex.cold+0x5/0xa [ 221.904629][ T8000] should_failslab+0xc2/0x120 [ 221.904677][ T8000] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 221.904720][ T8000] ? __alloc_skb+0x140/0x710 [ 221.904775][ T8000] __alloc_skb+0x140/0x710 [ 221.904819][ T8000] ? __alloc_skb+0x5b7/0x710 [ 221.904864][ T8000] ? __pfx___alloc_skb+0x10/0x10 [ 221.904914][ T8000] ? sk_page_frag_refill+0x6c/0x340 [ 221.904958][ T8000] kcm_sendmsg+0x1482/0x2fe0 [ 221.905031][ T8000] ? __pfx_kcm_sendmsg+0x10/0x10 [ 221.905084][ T8000] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 221.905128][ T8000] sock_sendmsg+0x3a1/0x430 [ 221.905179][ T8000] ? __pfx_sock_sendmsg+0x10/0x10 [ 221.905245][ T8000] splice_to_socket+0xb4c/0x11b0 [ 221.905290][ T8000] ? touch_atime+0xa5/0x7a0 [ 221.905345][ T8000] ? __pfx_splice_to_socket+0x10/0x10 [ 221.905439][ T8000] ? trace_kmalloc+0x101/0x130 [ 221.905495][ T8000] ? lockdep_init_map_type+0x5c/0x250 [ 221.905536][ T8000] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 221.905579][ T8000] ? __pfx_splice_to_socket+0x10/0x10 [ 221.905627][ T8000] direct_splice_actor+0x192/0x6c0 [ 221.905677][ T8000] splice_direct_to_actor+0x345/0xa30 [ 221.905725][ T8000] ? __pfx_direct_splice_actor+0x10/0x10 [ 221.905778][ T8000] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 221.905833][ T8000] do_splice_direct+0x174/0x240 [ 221.905878][ T8000] ? __pfx_do_splice_direct+0x10/0x10 [ 221.905917][ T8000] ? common_file_perm+0x1ab/0x4f0 [ 221.905956][ T8000] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 221.905997][ T8000] ? bpf_lsm_file_permission+0x9/0x10 [ 221.906037][ T8000] ? security_file_permission+0x76/0x210 [ 221.906082][ T8000] ? rw_verify_area+0xce/0x6d0 [ 221.906121][ T8000] do_sendfile+0xadc/0xe20 [ 221.906176][ T8000] ? __pfx_do_sendfile+0x10/0x10 [ 221.906220][ T8000] ? __x64_sys_futex+0x34f/0x4d0 [ 221.906254][ T8000] ? __x64_sys_futex+0x358/0x4d0 [ 221.906293][ T8000] __x64_sys_sendfile64+0x1d8/0x220 [ 221.906336][ T8000] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 221.906395][ T8000] do_syscall_64+0x106/0xf80 [ 221.906424][ T8000] ? clear_bhb_loop+0x40/0x90 [ 221.906463][ T8000] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.906495][ T8000] RIP: 0033:0x7fda2eb9c139 [ 221.906522][ T8000] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 221.906550][ T8000] RSP: 002b:00007fda2fae0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 221.906580][ T8000] RAX: ffffffffffffffda RBX: 00007fda2ee16090 RCX: 00007fda2eb9c139 [ 221.906599][ T8000] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000001 [ 221.906616][ T8000] RBP: 00007fda2ec327e0 R08: 0000000000000000 R09: 0000000000000000 [ 221.906634][ T8000] R10: 000000007ffff011 R11: 0000000000000246 R12: 0000000000000000 [ 221.906652][ T8000] R13: 00007fda2ee16128 R14: 00007fda2ee16090 R15: 00007ffdad7f42f8 [ 221.906693][ T8000] [ 223.645154][ T8027] binder: 8026:8027 ioctl c0306201 2000000000c0 returned -14 [ 224.303091][ T8038] FAULT_INJECTION: forcing a failure. [ 224.303091][ T8038] name failslab, interval 1, probability 0, space 0, times 0 [ 224.359725][ T8038] CPU: 1 UID: 0 PID: 8038 Comm: syz.1.461 Tainted: G L syzkaller #0 PREEMPT(full) [ 224.359781][ T8038] Tainted: [L]=SOFTLOCKUP [ 224.359792][ T8038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 224.359810][ T8038] Call Trace: [ 224.359820][ T8038] [ 224.359832][ T8038] dump_stack_lvl+0x100/0x190 [ 224.359975][ T8038] should_fail_ex.cold+0x5/0xa [ 224.360012][ T8038] should_failslab+0xc2/0x120 [ 224.360061][ T8038] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 224.360103][ T8038] ? __alloc_skb+0x140/0x710 [ 224.360156][ T8038] __alloc_skb+0x140/0x710 [ 224.360209][ T8038] ? __alloc_skb+0x5b7/0x710 [ 224.360256][ T8038] ? __pfx___alloc_skb+0x10/0x10 [ 224.360308][ T8038] ? sk_page_frag_refill+0x6c/0x340 [ 224.360354][ T8038] kcm_sendmsg+0x1482/0x2fe0 [ 224.360429][ T8038] ? __pfx_kcm_sendmsg+0x10/0x10 [ 224.360478][ T8038] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 224.360520][ T8038] sock_sendmsg+0x3a1/0x430 [ 224.360561][ T8038] ? __pfx_sock_sendmsg+0x10/0x10 [ 224.360627][ T8038] splice_to_socket+0xb4c/0x11b0 [ 224.360672][ T8038] ? touch_atime+0xa5/0x7a0 [ 224.360727][ T8038] ? __pfx_splice_to_socket+0x10/0x10 [ 224.360823][ T8038] ? trace_kmalloc+0x101/0x130 [ 224.360870][ T8038] ? lockdep_init_map_type+0x5c/0x250 [ 224.360920][ T8038] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 224.360963][ T8038] ? __pfx_splice_to_socket+0x10/0x10 [ 224.361012][ T8038] direct_splice_actor+0x192/0x6c0 [ 224.361062][ T8038] splice_direct_to_actor+0x345/0xa30 [ 224.361110][ T8038] ? __pfx_direct_splice_actor+0x10/0x10 [ 224.361162][ T8038] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 224.361212][ T8038] ? futex_private_hash_put+0x107/0x1c0 [ 224.361251][ T8038] do_splice_direct+0x174/0x240 [ 224.361297][ T8038] ? __pfx_do_splice_direct+0x10/0x10 [ 224.361338][ T8038] ? common_file_perm+0x1ab/0x4f0 [ 224.361381][ T8038] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 224.361427][ T8038] ? bpf_lsm_file_permission+0x9/0x10 [ 224.361469][ T8038] ? security_file_permission+0x76/0x210 [ 224.361513][ T8038] ? rw_verify_area+0xce/0x6d0 [ 224.361556][ T8038] do_sendfile+0xadc/0xe20 [ 224.361606][ T8038] ? __pfx_do_sendfile+0x10/0x10 [ 224.361654][ T8038] ? __x64_sys_futex+0x34f/0x4d0 [ 224.361689][ T8038] ? __x64_sys_futex+0x358/0x4d0 [ 224.361730][ T8038] __x64_sys_sendfile64+0x1d8/0x220 [ 224.361781][ T8038] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 224.361841][ T8038] do_syscall_64+0x106/0xf80 [ 224.361869][ T8038] ? clear_bhb_loop+0x40/0x90 [ 224.361917][ T8038] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 224.361949][ T8038] RIP: 0033:0x7f9f0999c139 [ 224.361975][ T8038] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 224.362004][ T8038] RSP: 002b:00007f9f0a847028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 224.362034][ T8038] RAX: ffffffffffffffda RBX: 00007f9f09c16090 RCX: 00007f9f0999c139 [ 224.362055][ T8038] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000001 [ 224.362072][ T8038] RBP: 00007f9f09a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 224.362090][ T8038] R10: 000000007ffff011 R11: 0000000000000246 R12: 0000000000000000 [ 224.362108][ T8038] R13: 00007f9f09c16128 R14: 00007f9f09c16090 R15: 00007ffd7d5a23f8 [ 224.362149][ T8038] [ 226.869903][ T8080] binder: 8079:8080 ioctl c0306201 2000000000c0 returned -14 [ 229.697495][ T8128] binder: 8126:8128 ioctl c0306201 2000000000c0 returned -14 [ 230.162980][ T8134] FAULT_INJECTION: forcing a failure. [ 230.162980][ T8134] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 230.207706][ T8134] CPU: 0 UID: 0 PID: 8134 Comm: syz.1.480 Tainted: G L syzkaller #0 PREEMPT(full) [ 230.207760][ T8134] Tainted: [L]=SOFTLOCKUP [ 230.207769][ T8134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 230.207785][ T8134] Call Trace: [ 230.207795][ T8134] [ 230.207805][ T8134] dump_stack_lvl+0x100/0x190 [ 230.207864][ T8134] should_fail_ex.cold+0x5/0xa [ 230.207898][ T8134] _copy_from_iter+0x1f4/0x1690 [ 230.207950][ T8134] ? __pfx__copy_from_iter+0x10/0x10 [ 230.207998][ T8134] ? __pfx___might_resched+0x10/0x10 [ 230.208047][ T8134] file_tty_write.isra.0+0x45b/0x890 [ 230.208088][ T8134] redirected_tty_write+0xd4/0x120 [ 230.208117][ T8134] vfs_write+0x6ac/0x1070 [ 230.208160][ T8134] ? __pfx_redirected_tty_write+0x10/0x10 [ 230.208193][ T8134] ? __pfx_vfs_write+0x10/0x10 [ 230.208230][ T8134] ? find_held_lock+0x2b/0x80 [ 230.208300][ T8134] ksys_write+0x12a/0x250 [ 230.208339][ T8134] ? __pfx_ksys_write+0x10/0x10 [ 230.208392][ T8134] do_syscall_64+0x106/0xf80 [ 230.208420][ T8134] ? clear_bhb_loop+0x40/0x90 [ 230.208456][ T8134] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 230.208486][ T8134] RIP: 0033:0x7f9f0999c139 [ 230.208510][ T8134] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 230.208536][ T8134] RSP: 002b:00007f9f0a868028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 230.208563][ T8134] RAX: ffffffffffffffda RBX: 00007f9f09c15fa0 RCX: 00007f9f0999c139 [ 230.208581][ T8134] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000003 [ 230.208598][ T8134] RBP: 00007f9f0a868090 R08: 0000000000000000 R09: 0000000000000000 [ 230.208614][ T8134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 230.208630][ T8134] R13: 00007f9f09c16038 R14: 00007f9f09c15fa0 R15: 00007ffd7d5a23f8 [ 230.208671][ T8134] [ 231.275205][ T29] audit: type=1804 audit(1771372345.040:3): pid=8146 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.483" name="/newroot/131/file0" dev="tmpfs" ino=702 res=1 errno=0 [ 231.276826][ T29] audit: type=1804 audit(1771372345.040:4): pid=8152 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.483" name="/newroot/131/file0" dev="tmpfs" ino=702 res=1 errno=0 [ 231.810155][ T8165] FAULT_INJECTION: forcing a failure. [ 231.810155][ T8165] name failslab, interval 1, probability 0, space 0, times 0 [ 231.952487][ T8165] CPU: 0 UID: 0 PID: 8165 Comm: syz.2.487 Tainted: G L syzkaller #0 PREEMPT(full) [ 231.952519][ T8165] Tainted: [L]=SOFTLOCKUP [ 231.952525][ T8165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 231.952535][ T8165] Call Trace: [ 231.952542][ T8165] [ 231.952549][ T8165] dump_stack_lvl+0x100/0x190 [ 231.952580][ T8165] should_fail_ex.cold+0x5/0xa [ 231.952601][ T8165] ? ops_init+0x77/0x5f0 [ 231.952618][ T8165] should_failslab+0xc2/0x120 [ 231.952646][ T8165] __kmalloc_noprof+0xe0/0x850 [ 231.952668][ T8165] ? __raw_spin_lock_init+0x3a/0x110 [ 231.952698][ T8165] ops_init+0x77/0x5f0 [ 231.952719][ T8165] setup_net+0x118/0x3a0 [ 231.952737][ T8165] ? __pfx_setup_net+0x10/0x10 [ 231.952753][ T8165] ? lockdep_init_map_type+0x5c/0x250 [ 231.952776][ T8165] ? mutex_init_lockep+0x110/0x150 [ 231.952817][ T8165] copy_net_ns+0x46f/0x7c0 [ 231.952839][ T8165] create_new_namespaces+0x3ea/0xac0 [ 231.952862][ T8165] copy_namespaces+0x468/0x5e0 [ 231.952881][ T8165] copy_process+0x3226/0x7a10 [ 231.952912][ T8165] ? __pfx_copy_process+0x10/0x10 [ 231.952933][ T8165] ? find_held_lock+0x2b/0x80 [ 231.952963][ T8165] ? futex_private_hash_put+0x107/0x1c0 [ 231.952988][ T8165] kernel_clone+0xfc/0x9a0 [ 231.953009][ T8165] ? __pfx_kernel_clone+0x10/0x10 [ 231.953041][ T8165] __do_sys_clone+0xd9/0x120 [ 231.953065][ T8165] ? __pfx___do_sys_clone+0x10/0x10 [ 231.953084][ T8165] ? find_held_lock+0x2b/0x80 [ 231.953129][ T8165] do_syscall_64+0x106/0xf80 [ 231.953146][ T8165] ? clear_bhb_loop+0x40/0x90 [ 231.953167][ T8165] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 231.953186][ T8165] RIP: 0033:0x7fda2eb9c139 [ 231.953202][ T8165] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 231.953219][ T8165] RSP: 002b:00007fda2fabefd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 231.953237][ T8165] RAX: ffffffffffffffda RBX: 00007fda2ee16180 RCX: 00007fda2eb9c139 [ 231.953248][ T8165] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211 [ 231.953259][ T8165] RBP: 00007fda2ec327e0 R08: 0000000000000000 R09: 0000000000000000 [ 231.953269][ T8165] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 231.953279][ T8165] R13: 00007fda2ee16218 R14: 00007fda2ee16180 R15: 00007ffdad7f42f8 [ 231.953302][ T8165] [ 232.858220][ T8182] FAULT_INJECTION: forcing a failure. [ 232.858220][ T8182] name failslab, interval 1, probability 0, space 0, times 0 [ 232.912535][ T8182] CPU: 1 UID: 0 PID: 8182 Comm: syz.2.490 Tainted: G L syzkaller #0 PREEMPT(full) [ 232.912588][ T8182] Tainted: [L]=SOFTLOCKUP [ 232.912600][ T8182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 232.912619][ T8182] Call Trace: [ 232.912631][ T8182] [ 232.912643][ T8182] dump_stack_lvl+0x100/0x190 [ 232.912697][ T8182] should_fail_ex.cold+0x5/0xa [ 232.912734][ T8182] ? __pfx_ipmr_new_table_set+0x10/0x10 [ 232.912784][ T8182] should_failslab+0xc2/0x120 [ 232.912831][ T8182] ? __pfx_ipmr_new_table_set+0x10/0x10 [ 232.912876][ T8182] __kmalloc_cache_noprof+0x7a/0x6f0 [ 232.912912][ T8182] ? mr_table_alloc+0x5f/0x2e0 [ 232.912953][ T8182] ? __pfx_ipmr_new_table_set+0x10/0x10 [ 232.913000][ T8182] mr_table_alloc+0x5f/0x2e0 [ 232.913031][ T8182] ? __pfx_ipmr_expire_process+0x10/0x10 [ 232.913085][ T8182] ipmr_net_init+0x318/0x4a0 [ 232.913128][ T8182] ? __pfx_ipmr_net_init+0x10/0x10 [ 232.913159][ T8182] ops_init+0x1e2/0x5f0 [ 232.913196][ T8182] setup_net+0x118/0x3a0 [ 232.913229][ T8182] ? __pfx_setup_net+0x10/0x10 [ 232.913259][ T8182] ? lockdep_init_map_type+0x5c/0x250 [ 232.913301][ T8182] ? mutex_init_lockep+0x110/0x150 [ 232.913349][ T8182] copy_net_ns+0x46f/0x7c0 [ 232.913390][ T8182] create_new_namespaces+0x3ea/0xac0 [ 232.913432][ T8182] copy_namespaces+0x468/0x5e0 [ 232.913468][ T8182] copy_process+0x3226/0x7a10 [ 232.913532][ T8182] ? __pfx_copy_process+0x10/0x10 [ 232.913590][ T8182] kernel_clone+0xfc/0x9a0 [ 232.913624][ T8182] ? __pfx_futex_wait+0x10/0x10 [ 232.913672][ T8182] ? __pfx_kernel_clone+0x10/0x10 [ 232.913732][ T8182] __do_sys_clone+0xd9/0x120 [ 232.913770][ T8182] ? __pfx___do_sys_clone+0x10/0x10 [ 232.913806][ T8182] ? find_held_lock+0x2b/0x80 [ 232.913887][ T8182] do_syscall_64+0x106/0xf80 [ 232.913918][ T8182] ? clear_bhb_loop+0x40/0x90 [ 232.913958][ T8182] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 232.913991][ T8182] RIP: 0033:0x7fda2eb9c139 [ 232.914019][ T8182] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 232.914050][ T8182] RSP: 002b:00007fda2fabefd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 232.914082][ T8182] RAX: ffffffffffffffda RBX: 00007fda2ee16180 RCX: 00007fda2eb9c139 [ 232.914111][ T8182] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211 [ 232.914131][ T8182] RBP: 00007fda2ec327e0 R08: 0000000000000000 R09: 0000000000000000 [ 232.914150][ T8182] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 232.914170][ T8182] R13: 00007fda2ee16218 R14: 00007fda2ee16180 R15: 00007ffdad7f42f8 [ 232.914213][ T8182] [ 234.133259][ T8192] ================================================================== [ 234.133274][ T8192] BUG: KASAN: vmalloc-out-of-bounds in sys_imageblit+0x19fb/0x1d60 [ 234.133298][ T8192] Write of size 8 at addr ffffc900040d9000 by task syz.3.491/8192 [ 234.133313][ T8192] [ 234.133324][ T8192] CPU: 0 UID: 0 PID: 8192 Comm: syz.3.491 Tainted: G L syzkaller #0 PREEMPT(full) [ 234.133351][ T8192] Tainted: [L]=SOFTLOCKUP [ 234.133358][ T8192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 234.133369][ T8192] Call Trace: [ 234.133376][ T8192] [ 234.133383][ T8192] dump_stack_lvl+0x100/0x190 [ 234.133410][ T8192] print_report+0x156/0x4c9 [ 234.133435][ T8192] ? _raw_spin_lock_irqsave+0x52/0x60 [ 234.133463][ T8192] ? __virt_addr_valid+0x81/0x620 [ 234.133486][ T8192] ? sys_imageblit+0x19fb/0x1d60 [ 234.133502][ T8192] kasan_report+0xdf/0x1e0 [ 234.133529][ T8192] ? sys_imageblit+0x19fb/0x1d60 [ 234.133547][ T8192] sys_imageblit+0x19fb/0x1d60 [ 234.133566][ T8192] ? __pfx_sys_imageblit+0x10/0x10 [ 234.133584][ T8192] ? prb_read_valid+0x78/0xa0 [ 234.133606][ T8192] ? __pfx_prb_read_valid+0x10/0x10 [ 234.133629][ T8192] drm_fbdev_shmem_defio_imageblit+0x20/0x130 [ 234.133652][ T8192] soft_cursor+0x524/0xa10 [ 234.133677][ T8192] ? fb_get_color_depth+0x120/0x250 [ 234.133701][ T8192] bit_cursor+0xe58/0x16f0 [ 234.133726][ T8192] ? __pfx_bit_cursor+0x10/0x10 [ 234.133750][ T8192] ? __lock_acquire+0x4a5/0x2630 [ 234.133773][ T8192] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 234.133801][ T8192] ? get_color+0x1da/0x450 [ 234.133820][ T8192] ? __pfx_bit_cursor+0x10/0x10 [ 234.133848][ T8192] fbcon_cursor+0x43c/0x5e0 [ 234.133877][ T8192] ? add_softcursor+0x170/0x290 [ 234.133903][ T8192] set_cursor+0x1db/0x250 [ 234.133929][ T8192] con_write+0x89/0xb0 [ 234.133946][ T8192] do_output_char+0x63b/0x850 [ 234.133967][ T8192] n_tty_write+0x528/0x12d0 [ 234.133993][ T8192] ? __pfx_n_tty_write+0x10/0x10 [ 234.134014][ T8192] ? trace_kmalloc+0x101/0x130 [ 234.134041][ T8192] ? __pfx_woken_wake_function+0x10/0x10 [ 234.134068][ T8192] ? rcu_is_watching+0x12/0xc0 [ 234.134092][ T8192] ? file_tty_write.isra.0+0x694/0x890 [ 234.134109][ T8192] ? kfree+0x2ec/0x6b0 [ 234.134127][ T8192] ? __pfx_n_tty_write+0x10/0x10 [ 234.134148][ T8192] file_tty_write.isra.0+0x4d2/0x890 [ 234.134168][ T8192] redirected_tty_write+0xd4/0x120 [ 234.134185][ T8192] vfs_write+0x6ac/0x1070 [ 234.134217][ T8192] ? __pfx_redirected_tty_write+0x10/0x10 [ 234.134236][ T8192] ? __pfx_vfs_write+0x10/0x10 [ 234.134259][ T8192] ? find_held_lock+0x2b/0x80 [ 234.134293][ T8192] ksys_write+0x12a/0x250 [ 234.134318][ T8192] ? __pfx_ksys_write+0x10/0x10 [ 234.134345][ T8192] do_syscall_64+0x106/0xf80 [ 234.134362][ T8192] ? clear_bhb_loop+0x40/0x90 [ 234.134382][ T8192] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 234.134400][ T8192] RIP: 0033:0x7f81c939c139 [ 234.134416][ T8192] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 234.134434][ T8192] RSP: 002b:00007f81c75d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 234.134453][ T8192] RAX: ffffffffffffffda RBX: 00007f81c9616090 RCX: 00007f81c939c139 [ 234.134465][ T8192] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000003 [ 234.134476][ T8192] RBP: 00007f81c94327e0 R08: 0000000000000000 R09: 0000000000000000 [ 234.134487][ T8192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 234.134497][ T8192] R13: 00007f81c9616128 R14: 00007f81c9616090 R15: 00007ffc1cf1b148 [ 234.134513][ T8192] [ 234.134519][ T8192] [ 234.134524][ T8192] The buggy address belongs to a 0-page vmalloc region starting at 0xffffc90003dd9000 allocated at drm_gem_shmem_vmap_locked+0x54b/0x800 [ 234.134559][ T8192] Memory state around the buggy address: [ 234.134569][ T8192] ffffc900040d8f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 234.134582][ T8192] ffffc900040d8f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 234.134594][ T8192] >ffffc900040d9000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 234.134604][ T8192] ^ [ 234.134612][ T8192] ffffc900040d9080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 234.134625][ T8192] ffffc900040d9100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 234.134635][ T8192] ================================================================== [ 234.134764][ T8192] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 234.134780][ T8192] CPU: 0 UID: 0 PID: 8192 Comm: syz.3.491 Tainted: G L syzkaller #0 PREEMPT(full) [ 234.134806][ T8192] Tainted: [L]=SOFTLOCKUP [ 234.134813][ T8192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 234.134824][ T8192] Call Trace: [ 234.134831][ T8192] [ 234.134838][ T8192] dump_stack_lvl+0x100/0x190 [ 234.134873][ T8192] vpanic+0x552/0x970 [ 234.134890][ T8192] ? __pfx_vpanic+0x10/0x10 [ 234.134910][ T8192] ? sys_imageblit+0x19fb/0x1d60 [ 234.134927][ T8192] panic+0xd1/0xe0 [ 234.134943][ T8192] ? __pfx_panic+0x10/0x10 [ 234.134962][ T8192] ? sys_imageblit+0x19fb/0x1d60 [ 234.134978][ T8192] ? preempt_schedule_common+0x42/0xc0 [ 234.135008][ T8192] check_panic_on_warn.cold+0x19/0x34 [ 234.135028][ T8192] end_report.part.0+0x3a/0x90 [ 234.135052][ T8192] kasan_report.cold+0xe/0x18 [ 234.135077][ T8192] ? sys_imageblit+0x19fb/0x1d60 [ 234.135095][ T8192] sys_imageblit+0x19fb/0x1d60 [ 234.135114][ T8192] ? __pfx_sys_imageblit+0x10/0x10 [ 234.135132][ T8192] ? prb_read_valid+0x78/0xa0 [ 234.135154][ T8192] ? __pfx_prb_read_valid+0x10/0x10 [ 234.135177][ T8192] drm_fbdev_shmem_defio_imageblit+0x20/0x130 [ 234.135199][ T8192] soft_cursor+0x524/0xa10 [ 234.135225][ T8192] ? fb_get_color_depth+0x120/0x250 [ 234.135248][ T8192] bit_cursor+0xe58/0x16f0 [ 234.135273][ T8192] ? __pfx_bit_cursor+0x10/0x10 [ 234.135297][ T8192] ? __lock_acquire+0x4a5/0x2630 [ 234.135319][ T8192] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 234.135354][ T8192] ? get_color+0x1da/0x450 [ 234.135375][ T8192] ? __pfx_bit_cursor+0x10/0x10 [ 234.135398][ T8192] fbcon_cursor+0x43c/0x5e0 [ 234.135419][ T8192] ? add_softcursor+0x170/0x290 [ 234.135446][ T8192] set_cursor+0x1db/0x250 [ 234.135471][ T8192] con_write+0x89/0xb0 [ 234.135488][ T8192] do_output_char+0x63b/0x850 [ 234.135508][ T8192] n_tty_write+0x528/0x12d0 [ 234.135533][ T8192] ? __pfx_n_tty_write+0x10/0x10 [ 234.135554][ T8192] ? trace_kmalloc+0x101/0x130 [ 234.135580][ T8192] ? __pfx_woken_wake_function+0x10/0x10 [ 234.135605][ T8192] ? rcu_is_watching+0x12/0xc0 [ 234.135630][ T8192] ? file_tty_write.isra.0+0x694/0x890 [ 234.135646][ T8192] ? kfree+0x2ec/0x6b0 [ 234.135664][ T8192] ? __pfx_n_tty_write+0x10/0x10 [ 234.135685][ T8192] file_tty_write.isra.0+0x4d2/0x890 [ 234.135709][ T8192] redirected_tty_write+0xd4/0x120 [ 234.135726][ T8192] vfs_write+0x6ac/0x1070 [ 234.135748][ T8192] ? __pfx_redirected_tty_write+0x10/0x10 [ 234.135767][ T8192] ? __pfx_vfs_write+0x10/0x10 [ 234.135789][ T8192] ? find_held_lock+0x2b/0x80 [ 234.135820][ T8192] ksys_write+0x12a/0x250 [ 234.135844][ T8192] ? __pfx_ksys_write+0x10/0x10 [ 234.135876][ T8192] do_syscall_64+0x106/0xf80 [ 234.135891][ T8192] ? clear_bhb_loop+0x40/0x90 [ 234.135911][ T8192] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 234.135929][ T8192] RIP: 0033:0x7f81c939c139 [ 234.135943][ T8192] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 234.135960][ T8192] RSP: 002b:00007f81c75d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 234.135977][ T8192] RAX: ffffffffffffffda RBX: 00007f81c9616090 RCX: 00007f81c939c139 [ 234.135988][ T8192] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000003 [ 234.136000][ T8192] RBP: 00007f81c94327e0 R08: 0000000000000000 R09: 0000000000000000 [ 234.136011][ T8192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 234.136023][ T8192] R13: 00007f81c9616128 R14: 00007f81c9616090 R15: 00007ffc1cf1b148 [ 234.136039][ T8192] [ 234.136558][ T8192] Kernel Offset: disabled