last executing test programs: 5.187401423s ago: executing program 1 (id=1724): mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x4a, 0x0) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto_EROFS_MOUNT_DAX_NEVER(r0, 0x4, &(0x7f0000000040)='-%\xe0\x00', &(0x7f0000000080), 0x80) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/veth1_to_hsr/proxy_ndp\x00', 0x82002, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = getpid() mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) socket(0xa, 0x801, 0x84) r2 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000165c0)={0x0, 0x0, &(0x7f0000016580)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c349813d3eed18775d2c317601df5cca4a9e05e2fde000000", @ANYRES16=r2, @ANYBLOB="79a327bd7000fbdbdf252000000005000f0050000000"], 0x1c}, 0x1, 0x0, 0x0, 0x2404c000}, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) inotify_add_watch$auto(0xffffffffffffffff, 0x0, 0x1000e6e) prctl$auto(0x6, 0x87, r1, 0x9, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/scsi/sg/debug\x00', 0x400e42, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r4, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32=r4, @ANYBLOB="060006ff05000000080003009b"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r5, 0x0, 0x100000a3d9) mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000) futex$auto(0x0, 0x85, 0x38, 0x0, 0x0, 0x80000000) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0) 4.258080245s ago: executing program 1 (id=1734): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x15, 0x5, 0x0) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x802, 0x0) ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x5, 0x10, 0xff, 0x2, &(0x7f00000002c0)}) get_robust_list$auto(0x1, 0x0, 0x0) r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000040), 0x8006, 0x0) ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0) ioctl$auto_PPPIOCSFLAGS(r1, 0x40047459, 0x0) write$auto(0x3, 0x0, 0xfdef) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xeffd}, 0x1) 4.044306962s ago: executing program 0 (id=1736): msync$auto(0x200000, 0x2000000005, 0x6) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r0 = socket(0x1d, 0x3, 0x1) getsockopt$auto(r0, 0x65, 0x3, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa) msgctl$auto_MSG_INFO(0x10, 0xc, 0x0) unshare$auto(0x40000080) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x2000000df, 0xeb1, 0x401, 0x8000) r2 = socket(0x9, 0x3, 0xa) getsockopt$auto(r2, 0x0, 0x30, 0x0, &(0x7f0000000040)=0xdbb) write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x202000a, 0xffffffff, 0xdc, 0xfffffffffffffffa, 0x7ffc) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) r3 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) syz_genetlink_get_family_id$auto_ethtool(0x0, r1) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x24048084) madvise$auto(0x0, 0x200007, 0x19) close_range$auto(0x0, 0xfffffffffffff000, 0x0) mq_open$auto(&(0x7f0000000180)='\\*)A\x00\x86\x18qS\x19\xb5\xa4\xc8Z\x1a\xbf/\xce\x81xd\xcd9\x91W\x03\x8b\xab\b0\fX-ug9\v\xe1\xe0=\x16\xca\x94\x94\xaf\xec%}\v\x86\x13\xa9\xa96:S\xbb\xcf\xe7\x801\xfe\x8cV\xb9\xe2\xa0\xa7\xb6H)aNr\x06\x8a\xaa\xf1Mv\x03f(+X\xa8\xf1\xd3taY\xa9\xb0!J\xce@\td\xb0q\xb62\xc5\xc1\xc6\xa2&\xada\x1e\xbfGW}d', 0x7f, 0x2049, 0x0) mq_timedsend$auto(r3, 0x0, 0x2, 0x9, 0x0) 3.951195782s ago: executing program 1 (id=1737): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x40048c5) lstat$auto(0x0, 0x0) write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0) socket(0x10, 0x2, 0x14) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mbind$auto(0x2000, 0x100000008, 0x2100000000, 0x0, 0x6, 0x2) madvise$auto(0x110c230000, 0x8031ca, 0x9) mprotect$auto(0x300, 0x806121, 0x8) 3.055413508s ago: executing program 0 (id=1739): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/bond0/queues/tx-5/xps_rxqs\x00', 0xc2481, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x1aa, 0x0, 0x6, 0x0, 0x0, 0x1002}, 0x5}, 0x2, 0x100) getcwd$auto(0x0, 0xffffffffffffffff) bpf$auto(0xf7fff011, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x4, 0xfaae, 0x468, 0x9, 0x2, 0x8, 0x401, 0x4, 0x1fe, 0x5, 0xb41, 0x4, 0x9, 0xd9ee}, 0xa3) writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040), 0x1}, 0x200) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/rxrpc/calls\x00', 0x40280, 0x0) socket(0xa, 0x3, 0x100) socketpair$auto(0xb, 0xd, 0x800e8, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x88000, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) ioctl$auto_TCFLSH2(r0, 0x8924, 0x0) 2.7029292s ago: executing program 0 (id=1741): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/bond0/queues/tx-5/xps_rxqs\x00', 0xc2481, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x1aa, 0x0, 0x6, 0x0, 0x0, 0x1002}, 0x5}, 0x2, 0x100) getcwd$auto(0x0, 0xffffffffffffffff) bpf$auto(0xf7fff011, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x4, 0xfaae, 0x468, 0x9, 0x2, 0x8, 0x401, 0x4, 0x1fe, 0x5, 0xb41, 0x4, 0x9, 0xd9ee}, 0xa3) writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040), 0x1}, 0x200) writev$auto(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000040), 0x400}, 0x5) r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000140)={0x3, 0x7, 0x5, 0x4, 0x7fffffff}) add_key$auto_KEY_SPEC_REQKEY_AUTH_KEY(0x0, 0x0, 0x0, 0x8, 0xfffffffffffffff9) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x100010008000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/rxrpc/calls\x00', 0x40280, 0x0) socket(0xa, 0x3, 0x100) socketpair$auto(0xb, 0xd, 0x800e8, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x88000, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) ioctl$auto_TCFLSH2(r1, 0x8924, 0x0) 2.70217292s ago: executing program 2 (id=1742): read$auto(0x3, 0x0, 0x80) 2.58705205s ago: executing program 1 (id=1743): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/graphics/fbcon/rotate_all\x00', 0xa001, 0x0) write$auto(r0, &(0x7f0000000000)='3\xc7\xff\xff\xff\xdd\x00\b(Ks\x0f\x87|P\x11\xd1li0\x89\x85\x90QM\xd6wfF\xf1x\xb3;c\tP\x03\x84\x97\x99\x83\x97\x81:\xf3\xa3o5\xc5\x86\xed\xa4\x18]\xa3\xc9\x0f\xff\xdak\xb0m\xe1U\xb3\xa2\xee\xdcTJQO\x98\xc8w\x8c\xe7\x00\x00\x00\x1dj\x1e\xebQT\xdd\x9b\x00\x00\x00\x1f\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x9) 2.51161579s ago: executing program 2 (id=1744): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = waitid$auto_P_PGID(0x2, 0x0, &(0x7f0000000100)={@_si_pad}, 0x9, &(0x7f0000000180)={{0x7}, {0x10000, 0x91}, 0x4, 0x0, 0xd33, 0x83, 0x100000001, 0x6, 0x7, 0x1, 0x6b1, 0x9, 0x3, 0x4, 0x8, 0x6}) prctl$auto(0x3a, 0x2, r1, 0x5, 0x800007) prctl$auto(0x5, 0x39a, r1, 0x9, 0x20000000000001ff) sendmsg$auto_NL80211_CMD_SET_WOWLAN(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4400000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x5c, 0x0, 0x8, 0x70bd2c, 0x25dfdbfc, {}, [@NL80211_ATTR_KEY_DATA={0x23, 0x7, "a36f4231a386d241ad3923f80c7d95b4ec5e740c97ccac36edc135f6287f9f"}, @NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x1}, @NL80211_ATTR_CONTROL_PORT={0x4}, @NL80211_ATTR_USE_RRM={0x4}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x8}, @NL80211_ATTR_PID={0x8, 0x52, r1}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4}, 0x8000000) r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi23\x00', 0xb01, 0x0) r3 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0x0) setreuid$auto(0x0, 0x5) fcntl$auto(r3, 0x400, 0x1) ioctl$auto_v4l2_fops_v4l2_dev(r2, 0x80085617, 0x0) 2.357969336s ago: executing program 1 (id=1747): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0) write$auto(r0, &(0x7f00000001c0)='N\x00\x1c\x84\x04Y\x03\b\xc7k\x00\x00\x00\x00|x\xc8\v\xa3\"\xd7kp\\\xb8\xe1\x81\xdaR\xbc\xd0\xa0\xa1;l\x7f\x85D\r\x893_\xd4\xdf\xa5\xe6Vg\x8c\xce\f\xfa\xf3;\xed\xbd\xf8y\xb8\x92\xac\x97\xcb#\xd0R\x9a{\x02wCJ\r8\x11\v7\r\x82#\xd1\xc1\x9djK\x7f\xd7y\v#\xfc)\x06\x9a\x81\x7fIz\x825\v \xdd\xb2<\xa9\xd1\x7f\xbfw\xfeq\x04\x80\n\x9c\x8e2\xb0\x91\xeb\xc3\r\xd7\x9a\xa4\xcd\xbb\xd3\x99\xeb\x16\x0e\xde>\x10\x01{\xb1\xc4\xe0\x97\x92\xabd \xfdGsxA\x84\xfco\a\x1a\x94u\xe5\xe0%>\a\xaa\xf9kwwdb\xd0\xa0\xab\xad=\x85\x05\x96\xf8\x93\x94\x0f\xc6\x06\x88M\xcep\r\x00\xdb\xa861\xfaf\x8a\xa2\xdb\x8f~\"dT\xa4\x13\xbf\x8839\xc0\x04t\x1a|\x86LPZ\x03,\xeb\x1b?\xe05W\xc0\x84=[p\xd0\x13\xc8\x00'/245, 0x90000000000) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x1000, 0x0) socket(0xa, 0x1, 0x84) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\x00\x80\x00\x00\x00\x00\x00\x00j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) r2 = syz_open_procfs$namespace(0x0, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x2000000000000000, 0xffffffffffff0001, 0x15) r3 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x103602, 0x0) getdents$auto(r2, 0x0, 0x18) mmap$auto(0x4, 0x6, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r4 = socket(0x10, 0x2, 0x0) openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f00000001c0), 0x4000, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0xf00, 0x0, 0x8000}, 0x40000) r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000d80), 0xffffffffffffffff) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_PLCA_SET_CFG(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000010c0)={&(0x7f0000000280)=ANY=[@ANYRESOCT=r1, @ANYRES16=r5, @ANYBLOB="01002cbd7000fddbdf25280000001800018014741e0064756d6d793000"/38, @ANYRES8=r3], 0x2c}, 0x1, 0x0, 0x0, 0x1}, 0x20008804) read$auto(r4, &(0x7f0000000080)='MJC802154_HWSIM\x00\xcb\x0fX\xc7\xfdx!\xf7\xb5T\x04\xad\x96\xf4\xbc\xca\xa52UWT1\a\x00\x00\x00\x00\x00\x007\xc9\xa6\x8a', 0x1060) r7 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) ioctl$auto_UI_DEV_SETUP(r7, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa}) ioctl$auto_UI_DEV_CREATE(r7, 0x5501, 0x0) writev$auto(r7, &(0x7f0000000340)={&(0x7f0000000200), 0x18}, 0x8) socket(0x28, 0xc, 0x80000088) exit$auto(0x4) exit$auto(0x7) socket(0x2, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) 2.356844699s ago: executing program 0 (id=1755): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{0x0, 0x10, &(0x7f0000000000)={0x0, 0xd6c6}, 0x2, 0x0, 0xe, 0x4}, 0x3}, 0x200, 0xb07e) socketpair$auto(0x1, 0x2, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = open(0x0, 0x22240, 0x155) r1 = socket(0x2, 0x80802, 0x0) close_range$auto(0x2, 0xa, 0x0) r2 = socket(0x18, 0xa, 0x1) r3 = socket(0xa, 0x2, 0x0) bpf$auto(0x800, &(0x7f0000000380)=@link_update={r0, @new_prog_fd=r3, 0x3}, 0x7) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f0000000900)=ANY=[], 0x11c}, 0x1, 0x0, 0x0, 0x80}, 0x20010040) mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x800000404, 0x8000) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'netdevsim0\x00'}) r5 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/dynamic_events\x00', 0x193442, 0x0) write$auto_dynamic_events_ops_trace_dynevent(r5, &(0x7f0000000040)='e:\ru', 0xffffffffffffff76) bpf$auto_BPF_OBJ_GET(0x7, &(0x7f0000000540)=@query={@target_fd=r5, 0x57, 0x8, 0x43, 0xa, @count, 0x0, 0x7, 0x862, 0x5, 0x7fffffffffffffff}, 0x4) io_uring_setup$auto(0x6, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0) write$auto(r6, &(0x7f0000000440)='Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9m\x1a\xab\xd5\xef\xc0\x04z\xd0I:\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1a}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcbP\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x19\xcb\xdd\x81\xbe\xdeL/\x06(\x03\x00\x00\x00\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C\x1aC\xcaF\x00\x1f\xa2\x1d\xa2\xe2\xb7\xb5\xcc\xc3\xf55_\x95\x03\xc6\x84\xfe)I\xbf\xa1\x92\xe6\x8amP\xac\xa3\"\x05^\xfa\xb3\xc6\x9foy@l+y65\r\xaei\x00\x00\x00\x00\x00', 0x4) openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, 0x0, 0x20100, 0x0) setsockopt$auto(r1, 0x11, 0x67, 0x0, 0x8) socket(0x10, 0x2, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x7}, 0x7}, 0x3, 0x8) r7 = openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000280)='/dev/etherd/discover\x00', 0x541, 0x0) write$auto(r7, 0x0, 0xfdef) 2.337455477s ago: executing program 2 (id=1748): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x0, 0x5, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/029/001\x00', 0x209483, 0x0) r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0xc0482, 0x0) readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7) (fail_nth: 5) write$auto_sg_fops_sg(r0, &(0x7f0000001380)="4a0200000000040000899edb615550fd8c44924d87f0010047eb02eff5d2adc245a4e1eded0e91b86c61b6b42ed6", 0x2e) 2.132234585s ago: executing program 0 (id=1750): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) setreuid$auto(0xffffffffffffffff, 0x8) ioctl$auto(r0, 0x560a, 0x7) openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/ubifs/tst_recovery\x00', 0x20000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth0\x00'}) close_range$auto(0x0, 0xffffffffffffffff, 0x2) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r1) r3 = getpid() process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x800000001, &(0x7f0000000280)={&(0x7f0000000080), 0x1ffffffff}, 0x6, 0x0) kill$auto(r3, 0x6) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptydc\x00', 0x800, 0x0) ioctl$auto_TCFLSH2(r4, 0x80045439, 0x0) r5 = socket(0xa, 0x3, 0x3a) r6 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), r5) r7 = waitid$auto(0x247, 0xffffffffffffffff, &(0x7f0000000140)={@_si_pad}, 0x10000, &(0x7f00000001c0)={{}, {0x1, 0x4}, 0xd7cb, 0x8000000000000000, 0x9, 0x5, 0x200, 0x10001, 0x2, 0x10000, 0x4, 0xfffffffffffffff8, 0x542, 0x4, 0x1, 0x101}) msgctl$auto_IPC_INFO(0x2, 0x3, &(0x7f0000000340)={{0x3, 0xee01, 0xee01, 0x1, 0x6, 0x771f, 0x8}, &(0x7f00000002c0)=0x2, &(0x7f0000000300)=0x2, 0x7f, 0x1c4, 0x400, 0x6, 0x2aa, 0x8, 0xc6, 0x3ff, @inferred=r7, @raw=0x5}) r9 = setfsuid$auto(0xee00) sendmsg$auto_NL802154_CMD_DEL_SEC_LEVEL(r5, &(0x7f0000001600)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x460001}, 0xc, &(0x7f00000015c0)={&(0x7f0000002b40)={0x7b4, r6, 0x8, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_SEC_DEVICE={0x6dc, 0x2e, 0x0, 0x1, [@typed={0x8, 0x95, 0x0, 0x0, @fd=r4}, @typed={0x8, 0x7e, 0x0, 0x0, @u32=0x6}, @typed={0x4, 0x14e}, @typed={0x8, 0x13, 0x0, 0x0, @u32=0x81}, @nested={0x6ba, 0x57, 0x0, 0x1, [@generic="1161fc7669b9b8a0a8bc40c4bb60b63a1d0c4cf38c8f3970fb8340173e6ff77d6ef7f711a93c2da38627c4e4b87ebae6f8197a5edebd7179988eb304fb2517380fb3ae34fe69483e5befb01c8db6a315306d9456a9ec509d1876f320fc3eae2a042c80bdedc3f0c36366e6f9c29117fcfce3b74797f731cc43625d7c902847233a86982296bddd0b9616914e1b7d0abfd42f486e2f0d744dbe38667782fa55abaf62a6738a0896b12836c9d8c52802500f78ced36c8ebabbf913fe81688531dcad5ab0f552a4f083cfc0ee6ed4dbff54c930247646c7634feb7868c13d810e6aa7bc09ef9dfca469c6b80ec18f8f2be82ed708e83a", @nested={0x4, 0x96}, @nested={0x34c, 0x57, 0x0, 0x1, [@typed={0x9, 0x91, 0x0, 0x0, @str='@*/%\x00'}, @generic="ace8450c20827f89b269a69ac503e7d340d23593041e10055cfb145bc28c1e6eccfd638deb719caa03a9a1763caef4a1dcbaea06f1bc7ed4df5721eb54673fc9b370d945192e974f5d99d9c270bfdfec51c9ab2e6e63d1331f185df8e97a5f68663e42b8f42b6ea11650390b17080474b6a20debffc7ab0ff28a9ef119b9b77eeedddbe91c7617a5fed680f7be27f21cf07108f7c6e8f0a3e025f4b640edee662ce9498b3332697f704095f6b3f379063db75eb76d998ed48802bbda793253add680b9dcccb57cedd49f3f87eb64a85748e569aaaf39152420a1139cc670cbd4d272a1480a6b514fb28a8be186786107", @generic="2738616a416c50132fc9d0634d0933d1d037dfa3f7dbd72b765746f681ac498afa74dcc54d86f7b767e21cb77bd0a05f6d6c1bbdfe20932509a523575f26c4fb3c2351819c4c67603282278175b7ec02be6e6eaf77e0d67bb1cd73c594392b967fde21f6ab9e8c7653d40b0ade39ab214d4751d31b8dbfb994b2e48a27a56407e92f3ba05751eda7778bd423a60449d3f2a44f9fd526119549a1e634baaa4868f34e55ead1de7ba25daadfe1988ae6a52c33fd3c857ebed353de7a3b8e08ad019229adb377f04898d6b9e6262666b836060c42beecae05ddc9013e572cecbb832ba7d50ef65483fbf72ef184f72ff8dcc7867147613eba", @typed={0x8, 0x62, 0x0, 0x0, @ipv4=@loopback}, @nested={0x9a, 0x0, 0x0, 0x1, [@generic="ba0a6c97eab789c4d691d8471e1965e26cd06e8b57cc041a4f00d492de4fac6e5ef5e8ccfdec0f64e865ab292157434d366fec35801037507bb9d6411c5c714549a20eecb032ae90ef1d7d0e30888ff67610c6c30c6a0feb069bd6fa4c63717c7e38b7015daaa81444263b57bbde4ab06e3e256b57563017a21a7b20d153562509f1f25acbe5a401f263e42680760061ee4fc5ae2324"]}, @generic="e0b0e72b838e8121e6a5486bb83d131c89cb33613615149005305c9ddbb6bdce3de3a1cc4a65f6bd984ec9c72953afdfbe5bdcc873a335cdb852b1764df7f783b8bc460ac8a5a0a2bf7a0dccd57bb91f210e756938f0a2b07615288733704d310a73491cb6f63019eea1b17a26111094ec752949f571780626be3f8b7fb00b0b9bccefe59b489c230845a1a35ad7ec383b359892d709a421e2220cb078842b1bf4f629b5ee7f795887cfc2c2db5d3f4ea3"]}, @generic="b4f2513e4a8f89c8bf6da27d8adae84abe1e27c3bd3d20bb8efc0296bb9e12d5f20f4cd0329a38003a2cdcdefce754d80f529309b5eb67f8f555506d1f8a0526b63496751b5924f1f01fc355c21fab1b2c92f4944b50b82b25a64ee90eb95fc4c4c287dd49311ba5f8c807538a54da75f3d6681bb39bea8fc0224af7ed417fb148c0935ff2a7f6e6822a2fc03315d63780176923d5810acb57c9709f06fdc5fb5219f116a4531d114355cc20dc686005bf46aa6cb6fc831325967091c164ebf1acac90ce889e51c90c9328", @typed={0xf, 0xcf, 0x0, 0x0, @str='/dev/ptydc\x00'}, @generic="b2a3c5c32e42ced1f11c8050a2f4986a33318794c48f8c71ab22aa7b82345418b513432bfe0c25a570247d85b7acea239b21fd94411f1dacaf8c7936c2bd0cbe795cb1ddc84c0cce52f6", @nested={0x149, 0xee, 0x0, 0x1, [@nested={0xd0, 0x78, 0x0, 0x1, [@typed={0x8, 0x107, 0x0, 0x0, @uid=r8}, @typed={0x8, 0x12b, 0x0, 0x0, @ipv4=@local}, @generic="4503371ba8ff546189a391f19025c09e5c7e8443930b5f71d144340aa5a5ff966cafbf2914984090932fe26e60215f3c11fa0d61fd1f1748d3d29145a69a8aa4efa75b3575b987c2e66456fd2b7a9902aa587fc23d757145f42bd2100f23948bcb3cc23f26f8b72fc92e023f0e7b57f7f90f51d08490517b77a88b511b4a1a0a17385b029a595aed4861cfed9786020dc9068879afc03c5d1acbafe70bb99592c335adec3351a563", @nested={0x4, 0x5c}, @nested={0x4, 0x1d}, @generic, @nested={0x4, 0x2d}, @nested={0x4, 0x11f}, @nested={0x4, 0x2}]}, @typed={0x8, 0x94, 0x0, 0x0, @uid=r9}, @generic="f534233c365395daddad5f273a4ea0a28018499e79800e70d85841c33332ac607b7fa755d4255eda7ddb0e27c425d93fe50372cb08597966af5cb7a705204fd8b0f75edbc20e4c19996c307f46ac6797988a453c16d6e84167d21591e973308f37e47470b1551e826a41c51755"]}]}]}, @NL802154_ATTR_SCAN_DURATION={0x5, 0x24, 0x3}, @NL802154_ATTR_BEACON_INTERVAL={0x5, 0x26, 0x13}, @NL802154_ATTR_PID={0x8, 0x1c, r3}, @NL802154_ATTR_CCA_MODE={0x8, 0xc, 0x5}, @NL802154_ATTR_MAX_ASSOCIATIONS={0x8}, @NL802154_ATTR_SEC_OUT_KEY_ID={0x9c, 0x2b, 0x0, 0x1, [@generic="45840679f45dec8994ed4ec901dbd0c22535bbcd9caaf8041941cc2f3f70a9473c2bf11318f1a4a38926726b55234f3c6177b93e96d7e3f2bfdbe3ed7ac0a424d4c082234355dd3afe8d9b0d1f8f1fad314d6d394e169bab50ae95e22144603bc511baab8a7e72278e7d027a7ffdfedf10dbe52329c525e103dae44463b3e56fc04d63bfba0508b012a2b52bf74d78478772a0e0bc63e023"]}]}, 0x7b4}, 0x1, 0x0, 0x0, 0x40010}, 0x4000800) sendmsg$auto_NL80211_CMD_SET_NOACK_MAP(r1, &(0x7f0000000880)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000840)={&(0x7f00000002c0)={0x560, r2, 0x8, 0x70bd2d, 0x25dfdbfe, {}, [@NL80211_ATTR_IE_RIC={0x344, 0xb2, "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"}, @NL80211_ATTR_WIPHY_ANTENNA_RX={0x8, 0x6a, 0x6}, @NL80211_ATTR_MESH_CONFIG={0x200, 0x23, 0x0, 0x1, [@nested={0x60, 0xea, 0x0, 0x1, [@typed={0x59, 0xe5, 0x0, 0x0, @binary="38f41aa435535db9612e2bf42e9ef3bbd50d85e274917ad9e842353c3c73940b091d5ce0538045c6cff1c22231619fad549e484c21e624d9a66739078c5187259ecbde6190cfccf56521275a6f4850299af2df37d8"}]}, @typed={0x8, 0xe0, 0x0, 0x0, @uid=r9}, @nested={0x193, 0x130, 0x0, 0x1, [@nested={0x4, 0x120}, @generic="0c0f1085f950f68e076e3dd69b9ddbd9cee239c30263867140e88205d49ef030ba3cc9a266a976e5ab6479aeee9bf3e42091a1cc5644dfc2db824fd82b3a5f42b1a2c265f9b354db43a6ee7c798eee14f0b331ca7d614448cc220598974a66", @nested={0x4, 0x140}, @generic="c8c74f17362a7b2c603bfa6eeb2d91f042a7c563e888b4555e55b293bb7db09b2aa7c87d85c15433cd319b0a5960cdac3d4b9335", @nested={0x4, 0xf3}, @generic="eca0e481ac2d7c8baebf55f6e539b18465969534baf7852c945bf2ad0b2ed1c043bceb72097e040a175ea3b37a9f3c6d101d2d82e5813e25b67d65d5899587957b001d7a6f837d64d613ecc484171802bf0ac20a1478b51234d4f6ca7639644da1fdae4eb3c9450df5170e243fe2abbfe238da2b8537860ed9633d83a2c9b4e311361b35489eb0e8ad3b9984744e1ff08f63dedb81d7030004501239585b125e6f9c6ba60f6ddf59a3832427dc3e339ab767052e2f161691d228940e3d3baad6e9c35165f3c96550efaf5903c8273973cacf5fca75e04d8f3d372220fe759cfbe6591824", @nested={0x4, 0x14c}, @typed={0x8, 0x12a, 0x0, 0x0, @fd=r0}]}]}]}, 0x560}, 0x1, 0x0, 0x0, 0x40}, 0x8004) r10 = socket(0x2, 0x2, 0x0) r11 = socket(0x18, 0x5, 0x1) connect$auto(r11, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a) r12 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x2, 0x0) pwritev$auto(r12, &(0x7f00000001c0)={&(0x7f0000000240), 0xe001}, 0x2000000003, 0xe, 0x3) close_range$auto(0x0, 0xfffffffffffff000, 0x0) fsconfig$auto_HIDEPID_NOT_PTRACEABLE(r10, 0x4ec9, &(0x7f0000000040)='.![:$&', &(0x7f0000000080)="afba400c67bc04b548948301257f79f44965b8e5055dccb5eacb556970405e5cf9f4cb65c256a83f09de9a695939666316d6a430141180504a112279d433cb4c1b6f75f8aba85b1a67335199d84fa53693abc17acab0c3315f5f5025a4b395da4e4de139d6293f59656a03a8eb179328d23c85f9ee2f503abc22076792b7e701c39bd308e7bd25be4a3d12522a3ff8bb6cbcdf51c7f03808f60b3a9ffd014abb3db2bd5825a6cf3da0e7d4f5d3deb54faea8caee3118b073030b16310be5674cf39d934506479d96cda80f058fc1a8375f16c7fb7265a77f29c4e4737bbaa70b169eceb2d3d73eccf9de719e30", 0x4) 1.49466109s ago: executing program 2 (id=1751): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/bond0/queues/tx-5/xps_rxqs\x00', 0xc2481, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x1aa, 0x0, 0x6, 0x0, 0x0, 0x1002}, 0x5}, 0x2, 0x100) getcwd$auto(0x0, 0xffffffffffffffff) bpf$auto(0xf7fff011, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x4, 0xfaae, 0x468, 0x9, 0x2, 0x8, 0x401, 0x4, 0x1fe, 0x5, 0xb41, 0x4, 0x9, 0xd9ee}, 0xa3) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/rxrpc/calls\x00', 0x40280, 0x0) socket(0xa, 0x3, 0x100) socketpair$auto(0xb, 0xd, 0x800e8, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x88000, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) ioctl$auto_TCFLSH2(r0, 0x8924, 0x0) 1.493186901s ago: executing program 3 (id=1752): mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) mmap$auto(0x0, 0x2020009, 0x6, 0xf8, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x20342, 0x0) personality$auto(0x8) ppoll$auto(&(0x7f0000000000)={r0, 0x40}, 0x2, 0x0, 0x0, 0x8) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ram0\x00', 0x67f00, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) timer_create$auto(0x0, 0x0, 0x0) timer_gettime$auto(0x0, 0x0) r1 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r1, 0x29, 0x20, 0x0, 0x8002) 1.169951933s ago: executing program 3 (id=1753): read$auto(0x3, 0x0, 0x80) 1.020875317s ago: executing program 2 (id=1754): mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) mmap$auto(0x0, 0x2020009, 0x6, 0xf8, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x20342, 0x0) personality$auto(0x8) ppoll$auto(&(0x7f0000000000)={r0, 0x40}, 0x2, 0x0, 0x0, 0x8) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ram0\x00', 0x67f00, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) timer_create$auto(0x0, 0x0, 0x0) timer_settime$auto(0x0, 0x9, &(0x7f00000000c0)={{0x400000000f, 0x10007}, {0x9, 0x1}}, 0x0) r1 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r1, 0x29, 0x20, 0x0, 0x8002) 1.020728648s ago: executing program 3 (id=1756): mmap$auto(0x0, 0x20009, 0x4000000000db, 0xeb1, 0x400, 0x8000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio1\x00', 0x500, 0x0) write$auto_snd_pcm_oss_f_reg_pcm_oss(r0, &(0x7f0000000080)="c2", 0x1) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x20401, 0x0) inotify_init1$auto(0x800) pipe$auto(0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x154) unshare$auto(0x20000) unlink$auto(&(0x7f0000000040)='./file0\x00') execveat$auto(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x11000) openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x680, 0x0) openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48101, 0x0) socket(0x11, 0x80003, 0x10000) r3 = socket(0x10, 0x2, 0x4) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'dummy0\x00'}) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00') sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) write$auto(r3, &(0x7f0000000000)='-\x00', 0x2fb) ioctl$auto(0x3, 0x40106f52, r2) bpf$auto(0xfffff001, &(0x7f0000000000)=@bpf_attr_3={0xa332, 0x2, 0x7, 0x3, 0xfffffbff, 0x2, 0x1, 0x4, 0x7, "0108a5172d53c2dc73bf58e1423b2178", 0x0, 0x9, 0xffffffffffffffff, 0x81, 0x8, 0x81, 0x10000b03, 0x0, 0x3ff, 0x7, @attach_prog_fd, 0x2, 0x630, 0x57d, 0x9, 0x8}, 0xa3) socket(0xa, 0x3, 0x5) sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000340)=ANY=[@ANYBLOB="c8000000", @ANYRES16, @ANYBLOB="01"], 0xc8}, 0x1, 0x0, 0x0, 0x200009c4}, 0x20058894) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="18000000", @ANYBLOB='v\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) socket(0x10, 0x2, 0x0) 837.420193ms ago: executing program 0 (id=1757): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), r0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) bpf$auto_BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)=@batch={0xc0cb, 0x5, 0xd3f, 0x80000000, 0x2, 0xffffffffffffffff, 0xe5a6, 0xff}, 0x4) r2 = io_uring_setup$auto(0x5, 0x0) mknod$auto(&(0x7f0000000580)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_', 0x1081, 0x9) acct$auto(&(0x7f0000000480)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x0f\x18\xc5\x82-s\x83\xe6\xaeR\x81\r_\x0e\x19\x12\x85\bvf(e\xday)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbHL9aD\xb4\x80\xed\xba>\"\xb6\x7f\xa3f\x1d\a\xa1\x87\x84uA\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e') open(&(0x7f0000000100)='./cgroup.cpu/cgroup.procs\x00', 0x880c2, 0x95) close_range$auto(0x2, r2, 0x0) acct$auto(0x0) socket(0x2, 0x80000, 0x100) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000340), r3) sendmsg$auto_TIPC_NL_NET_SET(r3, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000040)={0x20, r4, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@typed={0x8, 0x2, 0x0, 0x0, @uid=0xee00}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x2) socket(0x1e, 0x4, 0x0) sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r0, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000340)={0x2c, r1, 0x1, 0x70bd2a, 0x25dfdc01, {}, [@ETHTOOL_A_RINGS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x90}, 0x80000) r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r5, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xcfk', 0x81) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) r6 = open(0x0, 0x0, 0x0) lseek$auto(r6, 0x9, 0x0) getdents$auto(r6, 0x0, 0x62d4) 729.916641ms ago: executing program 3 (id=1758): mmap$auto(0xfffffffffffffffc, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r0, 0x4bfb, 0xffffffffffffffff) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') r1 = openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/buffer_subbuf_size_kb\x00', 0x2401, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/bonding/ad_actor_sys_prio\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f00000008c0)=""/61, 0x3d) write$auto(r1, &(0x7f0000000280)='9\x00d1L\xf0\x15\xba\xa17=(\x18\xdd\xff\xec\v\xb5^\xa1/[vv\x19\x00\x7f0\xa30\xc7\x9d\x1f]\xf8\xe04\xe7s\x9a\xd3H\xd3F\x819+\x90S\x10\xb2\b\xf8)\xe4IU\t\xb8\r\x9a\x8e\'Q\xfb\xb5I\x0f\x96;\xc7\\2V\x01g\xf8\xce\xbb\x9d\xa2c2\x00\x7f\xa1:\ax\xbc\x17\xde\x0e<\x00\x00\x00\x00\x00\x00\x00\x06\xc8\xf4\xdf\xcc\x9b\xd7D\xd7ARq', 0x40) r3 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0) getdents$auto(r3, 0x0, 0x62d4) 544.510541ms ago: executing program 3 (id=1759): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c0007ff", @ANYRES16=r1, @ANYBLOB="01002bbd7000fddbdf2504000000050011002e00000076e4632cde93fa65154d1765434c448f5b7c203c92ec85cb28d95e071d262473be9828c3c151f213117e21db26d2a3eb3134a15e82dd6062eb92eb56951fd0a580247a54d891e6d80584d9529b14f341189e6fd9ebb80f24d33d87784da669c8caae6c4ec24c5b70c6ccd2a1d6e40108d3697f743b00d6ac73f57067911f21380950cdb2681a346408b0c2439c845bc88a3bea01ba95cbc2e9083734e7fcd3bff0ca4e62639d2558b059fd4a4ba66cc6fdd6b9e1e012512774376dcf"], 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x4044820) 2.193419ms ago: executing program 1 (id=1760): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/graphics/fbcon/rotate_all\x00', 0xa001, 0x0) write$auto(r0, &(0x7f0000000000)='3\xc7\xff\xff\xff\xdd\x00\b(Ks\x0f\x87|P\x11\xd1li0\x89\x85\x90QM\xd6wfF\xf1x\xb3;c\tP\x03\x84\x97\x99\x83\x97\x81:\xf3\xa3o5\xc5\x86\xed\xa4\x18]\xa3\xc9\x0f\xff\xdak\xb0m\xe1U\xb3\xa2\xee\xdcTJQO\x98\xc8w\x8c\xe7\x00\x00\x00\x1dj\x1e\xebQT\xdd\x9b\x00\x00\x00\x00\x00\x00\x00\x00@\x00\x00\x00\x00', 0x9) 1.005272ms ago: executing program 2 (id=1761): r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa02, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f00000001c0)={{@inferred, 0x7, 0x109, 0x7, "aab8e80600080043529f895cf5e8ec8f46cbb766439d070a0000000000000000000000000000001f00", @raw=0x99f}, 0x6, 0x4, 0x6, @inferred, @integer64={0x442df60c, 0x81, 0x7}, "a4699d30a05edbe0d28473c399a7dc920b153e9b1675451d7de94b4123f970bedd3460c667373fcc59b584d81592f6ab606c276852295e00af49e6de6e768034"}) 0s ago: executing program 3 (id=1762): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0xc1000, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0) r1 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x364f9cefc8a0a83, 0x0) ioctl$auto_tracing_buffers_fops_trace(r1, 0x5220, 0x0) r2 = socket(0x2, 0x1, 0x0) r3 = socket(0x2, 0x5, 0x0) mmap$auto(0x5, 0x400008, 0xe1, 0x5e, 0xffffffffffffffff, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) ioctl$auto(0x3, 0x402c542b, 0x38) syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(0xffffffffffffffff, 0x0, 0x4010) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/igmp\x00', 0x0, 0x0) r5 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000100), r3) sendmsg$auto_L2TP_CMD_SESSION_DELETE(r2, &(0x7f0000000540)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000500)={&(0x7f0000000140)={0x3c0, r5, 0x400, 0x70bd25, 0x25dfdbfd, {}, [@L2TP_ATTR_STATS={0x3a1, 0x1e, 0x0, 0x1, [@generic="4f08f9f4894b6a50b8ab2256e5fc4a9ea8647061769360d6559dc0d8622c42be528c195685105cb09f80d1db094414f24b162cc055c932a2826e71260f026bb887caec2d95f43165ee2185c25c1aa3cc6fa56d587f9a379534b9d76e8b225da66a7bd4123855bcc084fcd85eb6929cd0b299586f376436a1cb58bd033ca17867d72a9cdbd4f9a08b78eabcd41cb0f5def09825fb2d6e12d48f14062c7b20813fb6c05c7cc5c3507425374e7b8e3f0c7b6983303344cd51be1e", @nested={0xfe, 0xa7, 0x0, 0x1, [@typed={0xc, 0x42, 0x0, 0x0, @u64=0x8}, @generic="76c812aae5bf065bb50f4ff6ada7ec6703ad07e8ec18e2a9cfe608511453a1b831827790046651fb66cbc246f1d2115bcac8013553dde8efc73557027b62df356cc7063adecc262493e03da9afab8abd18dafcd94770ed74b890b5975c75476ca214e2556c120a8e5f68719979b4540d5f86b5e1868e7333c1dd4e8589b01a4f99c6df5c4e44af98bdd29be17b10db052ea944905997208f5d94b68e730c1a12b18d3bf5de69d732c3e9d934d1fa985528bec5c08d9970692355000b105b8632d84b07145f1b", @generic="9053ae89994b2f24f085f437647e33268ba84664891f6496ee623b1d0cddb63bb78d4f36", @typed={0x4, 0x88}]}, @nested={0x1e4, 0xf4, 0x0, 0x1, [@typed={0x35, 0xae, 0x0, 0x0, @binary="4b19f3a34aabd797370890e71f868b49bea5846dbae9c01075172869a8b3d1527e7a5c5c2fd0d4eb31d70da2ef80abbbc3"}, @typed={0x94, 0x11d, 0x0, 0x0, @binary="3679b27ab98d11a8e8e9c5c216dc745cd60dc82edda5131b138639998fc72b07de6de3b24780b8ca222963f91deb50794cb41ffc98f0ce7b2d577e7e3965baea7e8a7ea429abe25b7a0051dc866f6604fee15132f94dd21ce743a7ca912b6e622dbcc6ba721b46b634ef6191506287cb403331b3a973d4dcdccaf83ef07a643d39289921784a0df1fff91ce218e567b9"}, @nested={0x4, 0x61}, @generic="147cc26f520b6a26a8a6467111586464b9e3057fcdb4e6a99cd8cfe81eb124979c2efe8bc0a080ddf0d6fcc9f086432f38789414248a6297f3b4ce543793abc3983a34c47935534340a85cf6bb66d1e2839ab505faf198821878b9cfa27185", @nested={0x4, 0xae}, @nested={0x4, 0x9}, @generic="91b22a19897c45c325abd7ac8b1c6d28dada52c14aa398e2d334aeae4c7a1114fc7555e8b451afa09208eb5f26267ea9b95db3a52cc1245d57a5c9bd8b20052aabdc999f4962de45523ea7b1dd88b343b9ef36333f50b79aced148d284b84faea4b59fb0e93dadc7c2a5e66b512361667a128e8a41439a876d48ba361ca8d27b09f7e7478eac4a7ed6ec354d35475a693035887303", @typed={0x14, 0xe8, 0x0, 0x0, @ipv6=@local}]}]}, @L2TP_ATTR_MRU={0x6, 0x1d, 0x101}]}, 0x3c0}, 0x1, 0x0, 0x0, 0xc000}, 0x24008090) pread64$auto(r4, 0x0, 0x2e0423d, 0x588) kernel console output (not intermixed with test programs): t_fallback+0x18c6/0x2460 [ 334.522257][T10701] ? __pfx_gup_fast_fallback+0x10/0x10 [ 334.522281][T10701] ? rcu_is_watching+0x12/0xc0 [ 334.522315][T10701] pin_user_pages_fast+0xa7/0xf0 [ 334.522335][T10701] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 334.522354][T10701] ? io_pin_pages+0xc3/0x1e0 [ 334.522384][T10701] io_pin_pages+0xe6/0x1e0 [ 334.522409][T10701] io_sqe_buffer_register+0x1e8/0x2000 [ 334.522446][T10701] ? rcu_is_watching+0x12/0xc0 [ 334.522474][T10701] ? trace_kmalloc+0x101/0x130 [ 334.522491][T10701] ? __pfx_io_sqe_buffer_register+0x10/0x10 [ 334.522517][T10701] ? io_rsrc_data_alloc+0x2c/0xa0 [ 334.522546][T10701] ? copy_iovec_from_user+0x102/0x140 [ 334.522581][T10701] ? iovec_from_user+0xbb/0x140 [ 334.522613][T10701] io_sqe_buffers_register.cold+0x345/0x4c2 [ 334.522649][T10701] ? __pfx_io_sqe_buffers_register+0x10/0x10 [ 334.522674][T10701] ? __fget_files+0x215/0x3d0 [ 334.522707][T10701] ? __fget_files+0x21f/0x3d0 [ 334.522743][T10701] __do_sys_io_uring_register+0x12f9/0x1ac0 [ 334.522772][T10701] ? __pfx___do_sys_io_uring_register+0x10/0x10 [ 334.522797][T10701] ? __fget_files+0x21f/0x3d0 [ 334.522830][T10701] ? fput+0x79/0x100 [ 334.522850][T10701] ? ksys_write+0x1ac/0x250 [ 334.522878][T10701] ? __pfx_ksys_write+0x10/0x10 [ 334.522913][T10701] do_syscall_64+0x106/0xf80 [ 334.522933][T10701] ? clear_bhb_loop+0x40/0x90 [ 334.522957][T10701] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 334.522977][T10701] RIP: 0033:0x7f9210f9c629 [ 334.522992][T10701] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 334.523012][T10701] RSP: 002b:00007f9211d79028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab [ 334.523030][T10701] RAX: ffffffffffffffda RBX: 00007f9211215fa0 RCX: 00007f9210f9c629 [ 334.523043][T10701] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002 [ 334.523055][T10701] RBP: 00007f9211d79090 R08: 0000000000000000 R09: 0000000000000000 [ 334.523067][T10701] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000002 [ 334.523078][T10701] R13: 00007f9211216038 R14: 00007f9211215fa0 R15: 00007ffd100aa768 [ 334.523103][T10701] [ 335.576544][T10714] binder: 10713:10714 ioctl c00c620f 200000000100 returned -22 [ 335.588931][ T30] audit: type=1807 audit(1771668923.182:8): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 335.602995][ T30] audit: type=1802 audit(1771668923.182:9): pid=10709 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.1.1263" res=0 errno=0 [ 336.548648][T10708] ima: policy update failed [ 336.621173][ T30] audit: type=1802 audit(1771668924.412:10): pid=10708 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1263" res=0 errno=0 [ 336.983770][T10743] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1271'. [ 337.297001][ T30] audit: type=1807 audit(1771668925.082:11): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 337.372374][ T30] audit: type=1802 audit(1771668925.082:12): pid=10748 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.0.1281" res=0 errno=0 [ 338.182446][T10747] ima: policy update failed [ 338.199264][ T30] audit: type=1802 audit(1771668925.981:13): pid=10747 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1281" res=0 errno=0 [ 339.112424][T10782] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input38 [ 339.295993][T10793] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1282'. [ 340.836199][ T30] audit: type=1807 audit(1771668928.620:14): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 340.891734][ T30] audit: type=1802 audit(1771668928.620:15): pid=10822 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.3.1290" res=0 errno=0 [ 342.080599][T10821] ima: policy update failed [ 342.124700][ T30] audit: type=1802 audit(1771668929.909:16): pid=10821 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1290" res=0 errno=0 [ 342.344834][T10842] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input39 [ 342.438425][T10848] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1293'. [ 343.010019][T10850] mkiss: ax0: crc mode is auto. [ 343.945725][T10867] FAULT_INJECTION: forcing a failure. [ 343.945725][T10867] name failslab, interval 1, probability 0, space 0, times 0 [ 344.113380][T10867] CPU: 0 UID: 0 PID: 10867 Comm: syz.2.1296 Tainted: G L syzkaller #0 PREEMPT(full) [ 344.113416][T10867] Tainted: [L]=SOFTLOCKUP [ 344.113423][T10867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 344.113435][T10867] Call Trace: [ 344.113442][T10867] [ 344.113450][T10867] dump_stack_lvl+0x100/0x190 [ 344.113484][T10867] should_fail_ex.cold+0x5/0xa [ 344.113507][T10867] should_failslab+0xc2/0x120 [ 344.113541][T10867] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 344.113570][T10867] ? shmem_alloc_inode+0x25/0x50 [ 344.113590][T10867] ? __lock_acquire+0x4a5/0x2630 [ 344.113616][T10867] ? __pfx_shmem_alloc_inode+0x10/0x10 [ 344.113638][T10867] shmem_alloc_inode+0x25/0x50 [ 344.113657][T10867] alloc_inode+0x68/0x250 [ 344.113682][T10867] new_inode+0x22/0x1c0 [ 344.113708][T10867] shmem_get_inode+0x212/0x1040 [ 344.113735][T10867] ? __pfx_shmem_get_inode+0x10/0x10 [ 344.113763][T10867] ? rcu_is_watching+0x12/0xc0 [ 344.113792][T10867] ? percpu_counter_add_batch+0xb9/0x230 [ 344.113831][T10867] __shmem_file_setup+0x3ac/0x490 [ 344.113857][T10867] ? __pfx___shmem_file_setup+0x10/0x10 [ 344.113887][T10867] ? vm_area_alloc+0x1f/0x160 [ 344.113914][T10867] shmem_zero_setup+0x96/0x1b0 [ 344.113945][T10867] __mmap_region+0x2198/0x29e0 [ 344.113973][T10867] ? rcu_is_watching+0x12/0xc0 [ 344.114003][T10867] ? trace_pelt_se_tp+0x159/0x1b0 [ 344.114027][T10867] ? __pfx___mmap_region+0x10/0x10 [ 344.114095][T10867] ? lockdep_hardirqs_on+0x78/0x100 [ 344.114118][T10867] ? finish_task_switch.isra.0+0x205/0xb80 [ 344.114139][T10867] ? rcu_is_watching+0x12/0xc0 [ 344.114198][T10867] ? rcu_is_watching+0x12/0xc0 [ 344.114227][T10867] ? cap_capable+0x107/0x460 [ 344.114256][T10867] mmap_region+0x180/0x3e0 [ 344.114289][T10867] do_mmap+0xc63/0x12f0 [ 344.114313][T10867] ? __pfx_do_mmap+0x10/0x10 [ 344.114333][T10867] ? __pfx_down_write_killable+0x10/0x10 [ 344.114363][T10867] vm_mmap_pgoff+0x29e/0x470 [ 344.114388][T10867] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 344.114410][T10867] ? do_futex+0x192/0x350 [ 344.114435][T10867] ? __pfx_do_futex+0x10/0x10 [ 344.114465][T10867] ksys_mmap_pgoff+0xe1/0x650 [ 344.114498][T10867] ? __x64_sys_futex+0x34f/0x4d0 [ 344.114522][T10867] ? __x64_sys_futex+0x358/0x4d0 [ 344.114547][T10867] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 344.114581][T10867] ? xfd_validate_state+0x129/0x190 [ 344.114614][T10867] __x64_sys_mmap+0x125/0x190 [ 344.114645][T10867] do_syscall_64+0x106/0xf80 [ 344.114666][T10867] ? clear_bhb_loop+0x40/0x90 [ 344.114691][T10867] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 344.114712][T10867] RIP: 0033:0x7f4de9d9c629 [ 344.114729][T10867] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 344.114754][T10867] RSP: 002b:00007f4deac86028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 344.114774][T10867] RAX: ffffffffffffffda RBX: 00007f4dea016270 RCX: 00007f4de9d9c629 [ 344.114787][T10867] RDX: 00000000000000df RSI: 000000000000e983 RDI: 0000000000000000 [ 344.114800][T10867] RBP: 00007f4de9e32b39 R08: 0000000000000401 R09: 0000000000008000 [ 344.114813][T10867] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 344.114825][T10867] R13: 00007f4dea016308 R14: 00007f4dea016270 R15: 00007ffc82d0eac8 [ 344.114852][T10867] [ 344.841787][T10861] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input40 [ 345.957359][T10882] snd_aloop snd_aloop.0: control 7:265:7::2463 is already present [ 346.256420][T10892] FAULT_INJECTION: forcing a failure. [ 346.256420][T10892] name failslab, interval 1, probability 0, space 0, times 0 [ 346.298514][T10892] CPU: 0 UID: 0 PID: 10892 Comm: syz.2.1304 Tainted: G L syzkaller #0 PREEMPT(full) [ 346.298547][T10892] Tainted: [L]=SOFTLOCKUP [ 346.298554][T10892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 346.298573][T10892] Call Trace: [ 346.298579][T10892] [ 346.298588][T10892] dump_stack_lvl+0x100/0x190 [ 346.298622][T10892] should_fail_ex.cold+0x5/0xa [ 346.298645][T10892] should_failslab+0xc2/0x120 [ 346.298679][T10892] __kmalloc_cache_noprof+0x7a/0x6f0 [ 346.298703][T10892] ? sctp_endpoint_new+0xfc/0xb20 [ 346.298726][T10892] ? __debug_object_init+0x2de/0x3d0 [ 346.298756][T10892] sctp_endpoint_new+0xfc/0xb20 [ 346.298783][T10892] ? __pfx_sctp_endpoint_new+0x10/0x10 [ 346.298807][T10892] ? lockdep_init_map_type+0x5c/0x250 [ 346.298833][T10892] ? lockdep_init_map_type+0x5c/0x250 [ 346.298859][T10892] ? lockdep_init_map_type+0x5c/0x250 [ 346.298888][T10892] sctp_init_sock+0xe2b/0x1300 [ 346.298909][T10892] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 346.298933][T10892] sctp_v6_init_sock+0x16/0x70 [ 346.298954][T10892] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 346.298976][T10892] inet6_create+0xb21/0x12b0 [ 346.299000][T10892] ? inet6_create+0x7f/0x12b0 [ 346.299024][T10892] __sock_create+0x339/0x860 [ 346.299057][T10892] __sys_socket+0x14d/0x260 [ 346.299087][T10892] ? __pfx___sys_socket+0x10/0x10 [ 346.299123][T10892] __x64_sys_socket+0x72/0xb0 [ 346.299152][T10892] ? lockdep_hardirqs_on+0x78/0x100 [ 346.299174][T10892] do_syscall_64+0x106/0xf80 [ 346.299199][T10892] ? clear_bhb_loop+0x40/0x90 [ 346.299224][T10892] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 346.299246][T10892] RIP: 0033:0x7f4de9d9c629 [ 346.299262][T10892] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 346.299282][T10892] RSP: 002b:00007f4deacc8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 346.299302][T10892] RAX: ffffffffffffffda RBX: 00007f4dea016090 RCX: 00007f4de9d9c629 [ 346.299315][T10892] RDX: 0000000000000084 RSI: 0000000000000801 RDI: 000000000000000a [ 346.299327][T10892] RBP: 00007f4de9e32b39 R08: 0000000000000000 R09: 0000000000000000 [ 346.299339][T10892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 346.299351][T10892] R13: 00007f4dea016128 R14: 00007f4dea016090 R15: 00007ffc82d0eac8 [ 346.299376][T10892] [ 346.980830][T10899] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1308'. [ 348.288891][T10924] FAULT_INJECTION: forcing a failure. [ 348.288891][T10924] name failslab, interval 1, probability 0, space 0, times 0 [ 348.329802][T10924] CPU: 0 UID: 0 PID: 10924 Comm: syz.3.1312 Tainted: G L syzkaller #0 PREEMPT(full) [ 348.329835][T10924] Tainted: [L]=SOFTLOCKUP [ 348.329841][T10924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 348.329855][T10924] Call Trace: [ 348.329861][T10924] [ 348.329868][T10924] dump_stack_lvl+0x100/0x190 [ 348.329904][T10924] should_fail_ex.cold+0x5/0xa [ 348.329927][T10924] should_failslab+0xc2/0x120 [ 348.329960][T10924] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 348.329989][T10924] ? vm_area_alloc+0x1f/0x160 [ 348.330012][T10924] ? vma_merge_new_range+0x38b/0xa30 [ 348.330038][T10924] ? __sanitizer_cov_trace_const_cmp8+0x20/0x20 [ 348.330075][T10924] vm_area_alloc+0x1f/0x160 [ 348.330100][T10924] __mmap_region+0x10cc/0x29e0 [ 348.330131][T10924] ? __pfx___mmap_region+0x10/0x10 [ 348.330164][T10924] ? set_next_entity+0x11b/0x9c0 [ 348.330197][T10924] ? __lock_acquire+0x4a5/0x2630 [ 348.330221][T10924] ? find_held_lock+0x2b/0x80 [ 348.330263][T10924] ? find_held_lock+0x2b/0x80 [ 348.330294][T10924] ? finish_task_switch.isra.0+0x200/0xb80 [ 348.330314][T10924] ? finish_task_switch.isra.0+0x200/0xb80 [ 348.330344][T10924] ? trace_sched_exit_tp+0x13a/0x180 [ 348.330367][T10924] ? __schedule+0x1000/0x60e0 [ 348.330427][T10924] ? rcu_is_watching+0x12/0xc0 [ 348.330457][T10924] ? cap_capable+0x107/0x460 [ 348.330486][T10924] mmap_region+0x180/0x3e0 [ 348.330519][T10924] do_mmap+0xc63/0x12f0 [ 348.330544][T10924] ? __pfx_do_mmap+0x10/0x10 [ 348.330564][T10924] ? __pfx_down_write_killable+0x10/0x10 [ 348.330595][T10924] vm_mmap_pgoff+0x29e/0x470 [ 348.330619][T10924] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 348.330641][T10924] ? do_futex+0x192/0x350 [ 348.330666][T10924] ? __pfx_do_futex+0x10/0x10 [ 348.330696][T10924] ksys_mmap_pgoff+0xe1/0x650 [ 348.330729][T10924] ? __x64_sys_futex+0x34f/0x4d0 [ 348.330753][T10924] ? __x64_sys_futex+0x358/0x4d0 [ 348.330778][T10924] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 348.330812][T10924] ? xfd_validate_state+0x129/0x190 [ 348.330844][T10924] __x64_sys_mmap+0x125/0x190 [ 348.330876][T10924] do_syscall_64+0x106/0xf80 [ 348.330897][T10924] ? clear_bhb_loop+0x40/0x90 [ 348.330922][T10924] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 348.330942][T10924] RIP: 0033:0x7f9210f9c629 [ 348.330959][T10924] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 348.330979][T10924] RSP: 002b:00007f920edb2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 348.330999][T10924] RAX: ffffffffffffffda RBX: 00007f9211216270 RCX: 00007f9210f9c629 [ 348.331013][T10924] RDX: 00000000000000df RSI: 000000000000e983 RDI: 0000000000000000 [ 348.331026][T10924] RBP: 00007f9211032b39 R08: 0000000000000401 R09: 0000000000008000 [ 348.331039][T10924] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 348.331051][T10924] R13: 00007f9211216308 R14: 00007f9211216270 R15: 00007ffd100aa768 [ 348.331077][T10924] [ 349.359755][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 349.376557][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 349.473404][T10942] aoe: skb alloc failure [ 349.533178][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 349.546817][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 350.006222][T10950] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1318'. [ 354.808964][T11023] misc userio: Invalid payload size [ 355.530477][T11032] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1339'. [ 356.472030][T11052] netlink: 142 bytes leftover after parsing attributes in process `syz.2.1347'. [ 356.496968][T11052] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1347'. [ 356.650031][T11055] FAULT_INJECTION: forcing a failure. [ 356.650031][T11055] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 356.713637][T11055] CPU: 0 UID: 0 PID: 11055 Comm: syz.3.1349 Tainted: G L syzkaller #0 PREEMPT(full) [ 356.713670][T11055] Tainted: [L]=SOFTLOCKUP [ 356.713676][T11055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 356.713688][T11055] Call Trace: [ 356.713698][T11055] [ 356.713706][T11055] dump_stack_lvl+0x100/0x190 [ 356.713741][T11055] should_fail_ex.cold+0x5/0xa [ 356.713759][T11055] ? prepare_alloc_pages+0x16d/0x5f0 [ 356.713781][T11055] should_fail_alloc_page+0xeb/0x140 [ 356.713814][T11055] prepare_alloc_pages+0x1f0/0x5f0 [ 356.713837][T11055] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 356.713870][T11055] ? __lock_acquire+0x4a5/0x2630 [ 356.713901][T11055] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 356.713931][T11055] ? do_raw_spin_lock+0x128/0x260 [ 356.713958][T11055] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 356.713985][T11055] ? find_held_lock+0x2b/0x80 [ 356.714022][T11055] ? __lock_acquire+0x4a5/0x2630 [ 356.714045][T11055] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 356.714078][T11055] ? policy_nodemask+0xed/0x4f0 [ 356.714112][T11055] alloc_pages_mpol+0x1fb/0x550 [ 356.714145][T11055] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 356.714177][T11055] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 356.714206][T11055] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 356.714239][T11055] folio_alloc_mpol_noprof+0x36/0x340 [ 356.714262][T11055] shmem_alloc_folio+0x135/0x160 [ 356.714286][T11055] shmem_alloc_and_add_folio+0x371/0xd40 [ 356.714319][T11055] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 356.714349][T11055] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 356.714383][T11055] shmem_get_folio_gfp+0x6ab/0x1900 [ 356.714416][T11055] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 356.714445][T11055] ? ktime_get_coarse_real_ts64_mg+0x235/0x300 [ 356.714469][T11055] ? lockdep_hardirqs_on+0x78/0x100 [ 356.714494][T11055] shmem_fault+0x1f9/0xa20 [ 356.714521][T11055] ? __lock_acquire+0x4a5/0x2630 [ 356.714544][T11055] ? __pfx_shmem_fault+0x10/0x10 [ 356.714573][T11055] ? __up_read+0x2c5/0x700 [ 356.714608][T11055] ? __pfx_filemap_map_pages+0x10/0x10 [ 356.714635][T11055] __do_fault+0x10d/0x550 [ 356.714667][T11055] ? __pfx_filemap_map_pages+0x10/0x10 [ 356.714692][T11055] do_fault+0x2db/0x1950 [ 356.714721][T11055] __handle_mm_fault+0x180f/0x2b60 [ 356.714752][T11055] ? __pfx___handle_mm_fault+0x10/0x10 [ 356.714777][T11055] ? pte_offset_map_lock+0x174/0x320 [ 356.714809][T11055] ? find_held_lock+0x2b/0x80 [ 356.714846][T11055] ? follow_page_pte+0x5b3/0x1400 [ 356.714870][T11055] handle_mm_fault+0x36d/0xa20 [ 356.714899][T11055] __get_user_pages+0xf9c/0x34d0 [ 356.714924][T11055] ? down_read_killable+0x30e/0x4c0 [ 356.714948][T11055] ? __lock_acquire+0x4a5/0x2630 [ 356.714971][T11055] ? __pfx___get_user_pages+0x10/0x10 [ 356.714997][T11055] __gup_longterm_locked+0x279/0x16f0 [ 356.715024][T11055] ? __pfx___gup_longterm_locked+0x10/0x10 [ 356.715047][T11055] ? __get_pfnblock_flags_mask+0x140/0x250 [ 356.715067][T11055] ? find_held_lock+0x2b/0x80 [ 356.715097][T11055] ? sanity_check_pinned_pages+0x5f6/0x1250 [ 356.715120][T11055] gup_fast_fallback+0x18c6/0x2460 [ 356.715157][T11055] ? __pfx_gup_fast_fallback+0x10/0x10 [ 356.715182][T11055] ? rcu_is_watching+0x12/0xc0 [ 356.715216][T11055] pin_user_pages_fast+0xa7/0xf0 [ 356.715235][T11055] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 356.715255][T11055] ? io_pin_pages+0xc3/0x1e0 [ 356.715285][T11055] io_pin_pages+0xe6/0x1e0 [ 356.715309][T11055] io_sqe_buffer_register+0x1e8/0x2000 [ 356.715346][T11055] ? rcu_is_watching+0x12/0xc0 [ 356.715374][T11055] ? trace_kmalloc+0x101/0x130 [ 356.715391][T11055] ? __pfx_io_sqe_buffer_register+0x10/0x10 [ 356.715417][T11055] ? io_rsrc_data_alloc+0x2c/0xa0 [ 356.715445][T11055] ? copy_iovec_from_user+0x102/0x140 [ 356.715475][T11055] ? iovec_from_user+0xbb/0x140 [ 356.715507][T11055] io_sqe_buffers_register.cold+0x345/0x4c2 [ 356.715542][T11055] ? __pfx_io_sqe_buffers_register+0x10/0x10 [ 356.715566][T11055] ? __fget_files+0x215/0x3d0 [ 356.715599][T11055] ? __fget_files+0x21f/0x3d0 [ 356.715634][T11055] __do_sys_io_uring_register+0x12f9/0x1ac0 [ 356.715663][T11055] ? __pfx___do_sys_io_uring_register+0x10/0x10 [ 356.715687][T11055] ? __fget_files+0x21f/0x3d0 [ 356.715725][T11055] ? fput+0x79/0x100 [ 356.715745][T11055] ? ksys_write+0x1ac/0x250 [ 356.715773][T11055] ? __pfx_ksys_write+0x10/0x10 [ 356.715807][T11055] do_syscall_64+0x106/0xf80 [ 356.715827][T11055] ? clear_bhb_loop+0x40/0x90 [ 356.715851][T11055] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 356.715870][T11055] RIP: 0033:0x7f9210f9c629 [ 356.715886][T11055] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 356.715905][T11055] RSP: 002b:00007f9211d79028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab [ 356.715924][T11055] RAX: ffffffffffffffda RBX: 00007f9211215fa0 RCX: 00007f9210f9c629 [ 356.715937][T11055] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002 [ 356.715949][T11055] RBP: 00007f9211d79090 R08: 0000000000000000 R09: 0000000000000000 [ 356.715961][T11055] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000002 [ 356.715972][T11055] R13: 00007f9211216038 R14: 00007f9211215fa0 R15: 00007ffd100aa768 [ 356.715997][T11055] [ 358.151271][T11069] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1351'. [ 358.755549][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 358.762619][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 359.578911][T11085] FAULT_INJECTION: forcing a failure. [ 359.578911][T11085] name failslab, interval 1, probability 0, space 0, times 0 [ 359.642333][T11085] CPU: 0 UID: 0 PID: 11085 Comm: syz.1.1357 Tainted: G L syzkaller #0 PREEMPT(full) [ 359.642370][T11085] Tainted: [L]=SOFTLOCKUP [ 359.642377][T11085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 359.642390][T11085] Call Trace: [ 359.642396][T11085] [ 359.642404][T11085] dump_stack_lvl+0x100/0x190 [ 359.642445][T11085] should_fail_ex.cold+0x5/0xa [ 359.642468][T11085] should_failslab+0xc2/0x120 [ 359.642502][T11085] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 359.642533][T11085] ? __alloc_skb+0x140/0x710 [ 359.642557][T11085] __alloc_skb+0x140/0x710 [ 359.642578][T11085] ? __alloc_skb+0x5b7/0x710 [ 359.642616][T11085] ? __pfx___alloc_skb+0x10/0x10 [ 359.642640][T11085] ? __pfx_aa_file_perm+0x10/0x10 [ 359.642667][T11085] new_skb+0x21/0x230 [ 359.642698][T11085] aoecmd_cfg+0x210/0x7a0 [ 359.642733][T11085] ? __pfx_aoecmd_cfg+0x10/0x10 [ 359.642782][T11085] ? aoechr_write+0x10a/0x120 [ 359.642811][T11085] aoechr_write+0x10a/0x120 [ 359.642841][T11085] vfs_write+0x2aa/0x1070 [ 359.642875][T11085] ? __pfx_aoechr_write+0x10/0x10 [ 359.642908][T11085] ? __pfx_vfs_write+0x10/0x10 [ 359.642938][T11085] ? find_held_lock+0x2b/0x80 [ 359.642972][T11085] ? __fget_files+0x215/0x3d0 [ 359.643004][T11085] ? __fget_files+0x215/0x3d0 [ 359.643041][T11085] ? __fget_files+0x21f/0x3d0 [ 359.643082][T11085] ksys_write+0x12a/0x250 [ 359.643114][T11085] ? __pfx_ksys_write+0x10/0x10 [ 359.643154][T11085] do_syscall_64+0x106/0xf80 [ 359.643178][T11085] ? clear_bhb_loop+0x40/0x90 [ 359.643205][T11085] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 359.643228][T11085] RIP: 0033:0x7f556ed9c629 [ 359.643245][T11085] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 359.643267][T11085] RSP: 002b:00007f556fb9e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 359.643288][T11085] RAX: ffffffffffffffda RBX: 00007f556f015fa0 RCX: 00007f556ed9c629 [ 359.643304][T11085] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003 [ 359.643318][T11085] RBP: 00007f556fb9e090 R08: 0000000000000000 R09: 0000000000000000 [ 359.643332][T11085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 359.643345][T11085] R13: 00007f556f016038 R14: 00007f556f015fa0 R15: 00007fffc6be1c38 [ 359.643374][T11085] [ 359.643400][T11085] aoe: skb alloc failure [ 360.631955][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 360.641655][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 360.807282][T11092] nvme_fabrics: missing parameter 'transport=%s' [ 360.817101][T11092] nvme_fabrics: missing parameter 'nqn=%s' [ 361.220999][T11103] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1362'. [ 361.248678][T11098] FAULT_INJECTION: forcing a failure. [ 361.248678][T11098] name failslab, interval 1, probability 0, space 0, times 0 [ 361.308789][T11098] CPU: 0 UID: 0 PID: 11098 Comm: syz.1.1361 Tainted: G L syzkaller #0 PREEMPT(full) [ 361.308820][T11098] Tainted: [L]=SOFTLOCKUP [ 361.308827][T11098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 361.308841][T11098] Call Trace: [ 361.308847][T11098] [ 361.308855][T11098] dump_stack_lvl+0x100/0x190 [ 361.308888][T11098] should_fail_ex.cold+0x5/0xa [ 361.308910][T11098] should_failslab+0xc2/0x120 [ 361.308941][T11098] __kvmalloc_node_noprof+0xfa/0xa00 [ 361.308970][T11098] ? traverse.part.0.constprop.0+0x397/0x650 [ 361.309006][T11098] traverse.part.0.constprop.0+0x397/0x650 [ 361.309035][T11098] ? find_held_lock+0x2b/0x80 [ 361.309065][T11098] ? aa_file_perm+0x268/0x1530 [ 361.309089][T11098] seq_read_iter+0x93f/0x1270 [ 361.309126][T11098] seq_read+0x33b/0x4c0 [ 361.309154][T11098] ? __pfx_seq_read+0x10/0x10 [ 361.309196][T11098] ? __pfx_seq_read+0x10/0x10 [ 361.309222][T11098] proc_reg_read+0x240/0x330 [ 361.309250][T11098] ? __pfx_proc_reg_read+0x10/0x10 [ 361.309277][T11098] vfs_read+0x1e4/0xb30 [ 361.309316][T11098] ? __pfx_vfs_read+0x10/0x10 [ 361.309343][T11098] ? find_held_lock+0x2b/0x80 [ 361.309372][T11098] ? __fget_files+0x215/0x3d0 [ 361.309401][T11098] ? __fget_files+0x215/0x3d0 [ 361.309434][T11098] ? __fget_files+0x21f/0x3d0 [ 361.309469][T11098] __x64_sys_pread64+0x1eb/0x250 [ 361.309500][T11098] ? __pfx___x64_sys_pread64+0x10/0x10 [ 361.309537][T11098] do_syscall_64+0x106/0xf80 [ 361.309559][T11098] ? clear_bhb_loop+0x40/0x90 [ 361.309582][T11098] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 361.309602][T11098] RIP: 0033:0x7f556ed9c629 [ 361.309618][T11098] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 361.309638][T11098] RSP: 002b:00007f556fb9e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 361.309659][T11098] RAX: ffffffffffffffda RBX: 00007f556f015fa0 RCX: 00007f556ed9c629 [ 361.309672][T11098] RDX: 0000000002e0423d RSI: 0000000000000000 RDI: 0000000000000006 [ 361.309683][T11098] RBP: 00007f556fb9e090 R08: 0000000000000000 R09: 0000000000000000 [ 361.309695][T11098] R10: 0000000000000588 R11: 0000000000000246 R12: 0000000000000001 [ 361.309706][T11098] R13: 00007f556f016038 R14: 00007f556f015fa0 R15: 00007fffc6be1c38 [ 361.309731][T11098] [ 362.904137][T11126] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input41 [ 363.946348][T11139] kAFS: No cell specified [ 364.709052][T11143] netlink: 142 bytes leftover after parsing attributes in process `syz.0.1373'. [ 364.745113][T11143] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1373'. [ 366.372609][T11189] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input42 [ 367.447590][T11202] netlink: 142 bytes leftover after parsing attributes in process `syz.3.1389'. [ 367.551517][T11198] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1389'. [ 367.839934][T11210] misc userio: Invalid payload size [ 369.611803][T11254] FAULT_INJECTION: forcing a failure. [ 369.611803][T11254] name failslab, interval 1, probability 0, space 0, times 0 [ 369.679324][T11254] CPU: 0 UID: 0 PID: 11254 Comm: syz.1.1403 Tainted: G L syzkaller #0 PREEMPT(full) [ 369.679362][T11254] Tainted: [L]=SOFTLOCKUP [ 369.679370][T11254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 369.679384][T11254] Call Trace: [ 369.679392][T11254] [ 369.679401][T11254] dump_stack_lvl+0x100/0x190 [ 369.679440][T11254] should_fail_ex.cold+0x5/0xa [ 369.679467][T11254] should_failslab+0xc2/0x120 [ 369.679506][T11254] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 369.679540][T11254] ? vm_area_alloc+0x1f/0x160 [ 369.679568][T11254] ? vma_merge_new_range+0x38b/0xa30 [ 369.679607][T11254] ? __sanitizer_cov_trace_const_cmp8+0x20/0x20 [ 369.679652][T11254] vm_area_alloc+0x1f/0x160 [ 369.679681][T11254] __mmap_region+0x10cc/0x29e0 [ 369.679717][T11254] ? __pfx___mmap_region+0x10/0x10 [ 369.679756][T11254] ? set_next_entity+0x11b/0x9c0 [ 369.679795][T11254] ? __lock_acquire+0x4a5/0x2630 [ 369.679823][T11254] ? find_held_lock+0x2b/0x80 [ 369.679876][T11254] ? find_held_lock+0x2b/0x80 [ 369.679912][T11254] ? finish_task_switch.isra.0+0x200/0xb80 [ 369.679936][T11254] ? finish_task_switch.isra.0+0x200/0xb80 [ 369.679971][T11254] ? trace_sched_exit_tp+0x13a/0x180 [ 369.679998][T11254] ? __schedule+0x1000/0x60e0 [ 369.680058][T11254] ? rcu_is_watching+0x12/0xc0 [ 369.680093][T11254] ? cap_capable+0x107/0x460 [ 369.680128][T11254] mmap_region+0x180/0x3e0 [ 369.680167][T11254] do_mmap+0xc63/0x12f0 [ 369.680195][T11254] ? __pfx_do_mmap+0x10/0x10 [ 369.680218][T11254] ? __pfx_down_write_killable+0x10/0x10 [ 369.680255][T11254] vm_mmap_pgoff+0x29e/0x470 [ 369.680284][T11254] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 369.680310][T11254] ? do_futex+0x192/0x350 [ 369.680339][T11254] ? __pfx_do_futex+0x10/0x10 [ 369.680374][T11254] ksys_mmap_pgoff+0xe1/0x650 [ 369.680413][T11254] ? __x64_sys_futex+0x34f/0x4d0 [ 369.680441][T11254] ? __x64_sys_futex+0x358/0x4d0 [ 369.680471][T11254] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 369.680510][T11254] ? xfd_validate_state+0x129/0x190 [ 369.680549][T11254] __x64_sys_mmap+0x125/0x190 [ 369.680593][T11254] do_syscall_64+0x106/0xf80 [ 369.680619][T11254] ? clear_bhb_loop+0x40/0x90 [ 369.680649][T11254] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 369.680674][T11254] RIP: 0033:0x7f556ed9c629 [ 369.680693][T11254] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 369.680717][T11254] RSP: 002b:00007f556cbd3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 369.680740][T11254] RAX: ffffffffffffffda RBX: 00007f556f016270 RCX: 00007f556ed9c629 [ 369.680756][T11254] RDX: 00000000000000df RSI: 000000000000e983 RDI: 0000000000000000 [ 369.680770][T11254] RBP: 00007f556ee32b39 R08: 0000000000000401 R09: 0000000000008000 [ 369.680785][T11254] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 369.680799][T11254] R13: 00007f556f016308 R14: 00007f556f016270 R15: 00007fffc6be1c38 [ 369.680832][T11254] [ 370.345470][T11247] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input43 [ 370.761265][T11252] tipc: Started in network mode [ 370.766272][T11252] tipc: Node identity ee00, cluster identity 4711 [ 370.772993][T11252] tipc: Node number set to 60928 [ 371.764106][T11264] FAULT_INJECTION: forcing a failure. [ 371.764106][T11264] name failslab, interval 1, probability 0, space 0, times 0 [ 371.853761][T11264] CPU: 0 UID: 0 PID: 11264 Comm: syz.3.1406 Tainted: G L syzkaller #0 PREEMPT(full) [ 371.853796][T11264] Tainted: [L]=SOFTLOCKUP [ 371.853803][T11264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 371.853816][T11264] Call Trace: [ 371.853823][T11264] [ 371.853831][T11264] dump_stack_lvl+0x100/0x190 [ 371.853866][T11264] should_fail_ex.cold+0x5/0xa [ 371.853890][T11264] should_failslab+0xc2/0x120 [ 371.853923][T11264] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 371.853952][T11264] ? vm_area_alloc+0x1f/0x160 [ 371.853976][T11264] ? vma_merge_new_range+0x38b/0xa30 [ 371.854002][T11264] ? __sanitizer_cov_trace_const_cmp8+0x20/0x20 [ 371.854040][T11264] vm_area_alloc+0x1f/0x160 [ 371.854064][T11264] __mmap_region+0x10cc/0x29e0 [ 371.854096][T11264] ? __pfx___mmap_region+0x10/0x10 [ 371.854128][T11264] ? set_next_entity+0x11b/0x9c0 [ 371.854161][T11264] ? __lock_acquire+0x4a5/0x2630 [ 371.854186][T11264] ? find_held_lock+0x2b/0x80 [ 371.854228][T11264] ? find_held_lock+0x2b/0x80 [ 371.854259][T11264] ? finish_task_switch.isra.0+0x200/0xb80 [ 371.854279][T11264] ? finish_task_switch.isra.0+0x200/0xb80 [ 371.854309][T11264] ? trace_sched_exit_tp+0x13a/0x180 [ 371.854332][T11264] ? __schedule+0x1000/0x60e0 [ 371.854382][T11264] ? rcu_is_watching+0x12/0xc0 [ 371.854417][T11264] ? cap_capable+0x107/0x460 [ 371.854448][T11264] mmap_region+0x180/0x3e0 [ 371.854481][T11264] do_mmap+0xc63/0x12f0 [ 371.854505][T11264] ? __pfx_do_mmap+0x10/0x10 [ 371.854525][T11264] ? __pfx_down_write_killable+0x10/0x10 [ 371.854556][T11264] vm_mmap_pgoff+0x29e/0x470 [ 371.854581][T11264] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 371.854603][T11264] ? do_futex+0x192/0x350 [ 371.854629][T11264] ? __pfx_do_futex+0x10/0x10 [ 371.854662][T11264] ksys_mmap_pgoff+0xe1/0x650 [ 371.854696][T11264] ? __x64_sys_futex+0x34f/0x4d0 [ 371.854719][T11264] ? __x64_sys_futex+0x358/0x4d0 [ 371.854745][T11264] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 371.854779][T11264] ? xfd_validate_state+0x129/0x190 [ 371.854812][T11264] __x64_sys_mmap+0x125/0x190 [ 371.854844][T11264] do_syscall_64+0x106/0xf80 [ 371.854865][T11264] ? clear_bhb_loop+0x40/0x90 [ 371.854890][T11264] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 371.854911][T11264] RIP: 0033:0x7f9210f9c629 [ 371.854928][T11264] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 371.854948][T11264] RSP: 002b:00007f9211d79028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 371.854967][T11264] RAX: ffffffffffffffda RBX: 00007f9211215fa0 RCX: 00007f9210f9c629 [ 371.854981][T11264] RDX: 00000000000000df RSI: 000000000000e983 RDI: 0000000000000000 [ 371.854993][T11264] RBP: 00007f9211032b39 R08: 0000000000000401 R09: 0000000000008000 [ 371.855005][T11264] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 371.855018][T11264] R13: 00007f9211216038 R14: 00007f9211215fa0 R15: 00007ffd100aa768 [ 371.855044][T11264] [ 372.877118][T11275] FAULT_INJECTION: forcing a failure. [ 372.877118][T11275] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 372.890845][T11275] CPU: 0 UID: 0 PID: 11275 Comm: syz.1.1409 Tainted: G L syzkaller #0 PREEMPT(full) [ 372.890875][T11275] Tainted: [L]=SOFTLOCKUP [ 372.890882][T11275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 372.890894][T11275] Call Trace: [ 372.890900][T11275] [ 372.890907][T11275] dump_stack_lvl+0x100/0x190 [ 372.890939][T11275] should_fail_ex.cold+0x5/0xa [ 372.890957][T11275] ? prepare_alloc_pages+0x16d/0x5f0 [ 372.890979][T11275] should_fail_alloc_page+0xeb/0x140 [ 372.891013][T11275] prepare_alloc_pages+0x1f0/0x5f0 [ 372.891037][T11275] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 372.891064][T11275] ? is_bpf_text_address+0x81/0x1a0 [ 372.891094][T11275] ? bpf_ksym_find+0x124/0x1c0 [ 372.891118][T11275] ? __lock_acquire+0x4a5/0x2630 [ 372.891149][T11275] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 372.891179][T11275] ? do_raw_spin_lock+0x128/0x260 [ 372.891206][T11275] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 372.891234][T11275] ? find_held_lock+0x2b/0x80 [ 372.891276][T11275] ? __lock_acquire+0x4a5/0x2630 [ 372.891318][T11275] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 372.891360][T11275] ? policy_nodemask+0xed/0x4f0 [ 372.891396][T11275] alloc_pages_mpol+0x1fb/0x550 [ 372.891430][T11275] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 372.891465][T11275] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 372.891496][T11275] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 372.891531][T11275] folio_alloc_mpol_noprof+0x36/0x340 [ 372.891556][T11275] shmem_alloc_folio+0x135/0x160 [ 372.891586][T11275] shmem_alloc_and_add_folio+0x371/0xd40 [ 372.891622][T11275] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 372.891653][T11275] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 372.891689][T11275] shmem_get_folio_gfp+0x6ab/0x1900 [ 372.891724][T11275] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 372.891754][T11275] ? ktime_get_coarse_real_ts64_mg+0x235/0x300 [ 372.891780][T11275] ? lockdep_hardirqs_on+0x78/0x100 [ 372.891807][T11275] shmem_fault+0x1f9/0xa20 [ 372.891835][T11275] ? __lock_acquire+0x4a5/0x2630 [ 372.891860][T11275] ? __pfx_shmem_fault+0x10/0x10 [ 372.891890][T11275] ? __up_read+0x2c5/0x700 [ 372.891931][T11275] ? __pfx_filemap_map_pages+0x10/0x10 [ 372.891959][T11275] __do_fault+0x10d/0x550 [ 372.891993][T11275] ? __pfx_filemap_map_pages+0x10/0x10 [ 372.892020][T11275] do_fault+0x2db/0x1950 [ 372.892046][T11275] __handle_mm_fault+0x180f/0x2b60 [ 372.892080][T11275] ? __pfx___handle_mm_fault+0x10/0x10 [ 372.892108][T11275] ? pte_offset_map_lock+0x174/0x320 [ 372.892142][T11275] ? find_held_lock+0x2b/0x80 [ 372.892182][T11275] ? follow_page_pte+0x5b3/0x1400 [ 372.892208][T11275] handle_mm_fault+0x36d/0xa20 [ 372.892238][T11275] __get_user_pages+0xf9c/0x34d0 [ 372.892265][T11275] ? down_read_killable+0x30e/0x4c0 [ 372.892291][T11275] ? __lock_acquire+0x4a5/0x2630 [ 372.892316][T11275] ? __pfx___get_user_pages+0x10/0x10 [ 372.892348][T11275] __gup_longterm_locked+0x279/0x16f0 [ 372.892377][T11275] ? __pfx___gup_longterm_locked+0x10/0x10 [ 372.892402][T11275] ? __get_pfnblock_flags_mask+0x140/0x250 [ 372.892423][T11275] ? find_held_lock+0x2b/0x80 [ 372.892455][T11275] ? sanity_check_pinned_pages+0x5f6/0x1250 [ 372.892481][T11275] gup_fast_fallback+0x18c6/0x2460 [ 372.892520][T11275] ? __pfx_gup_fast_fallback+0x10/0x10 [ 372.892547][T11275] ? rcu_is_watching+0x12/0xc0 [ 372.892583][T11275] pin_user_pages_fast+0xa7/0xf0 [ 372.892604][T11275] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 372.892637][T11275] ? io_pin_pages+0xc3/0x1e0 [ 372.892667][T11275] io_pin_pages+0xe6/0x1e0 [ 372.892692][T11275] io_sqe_buffer_register+0x1e8/0x2000 [ 372.892748][T11275] ? rcu_is_watching+0x12/0xc0 [ 372.892778][T11275] ? trace_kmalloc+0x101/0x130 [ 372.892797][T11275] ? __pfx_io_sqe_buffer_register+0x10/0x10 [ 372.892826][T11275] ? io_rsrc_data_alloc+0x2c/0xa0 [ 372.892856][T11275] ? copy_iovec_from_user+0x102/0x140 [ 372.892889][T11275] ? iovec_from_user+0xbb/0x140 [ 372.892923][T11275] io_sqe_buffers_register.cold+0x345/0x4c2 [ 372.892961][T11275] ? __pfx_io_sqe_buffers_register+0x10/0x10 [ 372.892987][T11275] ? __fget_files+0x215/0x3d0 [ 372.893033][T11275] ? __fget_files+0x21f/0x3d0 [ 372.893069][T11275] __do_sys_io_uring_register+0x12f9/0x1ac0 [ 372.893098][T11275] ? __pfx___do_sys_io_uring_register+0x10/0x10 [ 372.893122][T11275] ? __fget_files+0x21f/0x3d0 [ 372.893156][T11275] ? fput+0x79/0x100 [ 372.893176][T11275] ? ksys_write+0x1ac/0x250 [ 372.893204][T11275] ? __pfx_ksys_write+0x10/0x10 [ 372.893239][T11275] do_syscall_64+0x106/0xf80 [ 372.893259][T11275] ? clear_bhb_loop+0x40/0x90 [ 372.893283][T11275] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 372.893303][T11275] RIP: 0033:0x7f556ed9c629 [ 372.893319][T11275] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 372.893349][T11275] RSP: 002b:00007f556fb9e028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab [ 372.893368][T11275] RAX: ffffffffffffffda RBX: 00007f556f015fa0 RCX: 00007f556ed9c629 [ 372.893381][T11275] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002 [ 372.893392][T11275] RBP: 00007f556fb9e090 R08: 0000000000000000 R09: 0000000000000000 [ 372.893404][T11275] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000002 [ 372.893416][T11275] R13: 00007f556f016038 R14: 00007f556f015fa0 R15: 00007fffc6be1c38 [ 372.893441][T11275] [ 374.673785][T11288] netlink: 17308 bytes leftover after parsing attributes in process `syz.1.1412'. [ 374.744669][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 374.751362][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 375.574544][T11298] FAULT_INJECTION: forcing a failure. [ 375.574544][T11298] name failslab, interval 1, probability 0, space 0, times 0 [ 375.752309][T11298] CPU: 0 UID: 0 PID: 11298 Comm: syz.3.1414 Tainted: G L syzkaller #0 PREEMPT(full) [ 375.752344][T11298] Tainted: [L]=SOFTLOCKUP [ 375.752352][T11298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 375.752365][T11298] Call Trace: [ 375.752371][T11298] [ 375.752380][T11298] dump_stack_lvl+0x100/0x190 [ 375.752417][T11298] should_fail_ex.cold+0x5/0xa [ 375.752452][T11298] should_failslab+0xc2/0x120 [ 375.752485][T11298] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 375.752515][T11298] ? shmem_alloc_inode+0x25/0x50 [ 375.752537][T11298] ? __pfx_shmem_alloc_inode+0x10/0x10 [ 375.752558][T11298] shmem_alloc_inode+0x25/0x50 [ 375.752581][T11298] alloc_inode+0x68/0x250 [ 375.752605][T11298] new_inode+0x22/0x1c0 [ 375.752632][T11298] shmem_get_inode+0x212/0x1040 [ 375.752659][T11298] ? __pfx_shmem_get_inode+0x10/0x10 [ 375.752683][T11298] ? rcu_is_watching+0x12/0xc0 [ 375.752712][T11298] ? percpu_counter_add_batch+0xb9/0x230 [ 375.752750][T11298] __shmem_file_setup+0x3ac/0x490 [ 375.752776][T11298] ? __pfx___shmem_file_setup+0x10/0x10 [ 375.752805][T11298] ? vm_area_alloc+0x1f/0x160 [ 375.752833][T11298] shmem_zero_setup+0x96/0x1b0 [ 375.752864][T11298] __mmap_region+0x2198/0x29e0 [ 375.752896][T11298] ? __pfx___mmap_region+0x10/0x10 [ 375.752928][T11298] ? set_next_entity+0x11b/0x9c0 [ 375.752961][T11298] ? __lock_acquire+0x4a5/0x2630 [ 375.752985][T11298] ? find_held_lock+0x2b/0x80 [ 375.753027][T11298] ? find_held_lock+0x2b/0x80 [ 375.753058][T11298] ? finish_task_switch.isra.0+0x200/0xb80 [ 375.753078][T11298] ? finish_task_switch.isra.0+0x200/0xb80 [ 375.753115][T11298] ? trace_sched_exit_tp+0x13a/0x180 [ 375.753138][T11298] ? __schedule+0x1000/0x60e0 [ 375.753189][T11298] ? rcu_is_watching+0x12/0xc0 [ 375.753219][T11298] ? cap_capable+0x107/0x460 [ 375.753249][T11298] mmap_region+0x180/0x3e0 [ 375.753282][T11298] do_mmap+0xc63/0x12f0 [ 375.753306][T11298] ? __pfx_do_mmap+0x10/0x10 [ 375.753325][T11298] ? __pfx_down_write_killable+0x10/0x10 [ 375.753357][T11298] vm_mmap_pgoff+0x29e/0x470 [ 375.753381][T11298] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 375.753403][T11298] ? do_futex+0x192/0x350 [ 375.753427][T11298] ? __pfx_do_futex+0x10/0x10 [ 375.753457][T11298] ksys_mmap_pgoff+0xe1/0x650 [ 375.753490][T11298] ? __x64_sys_futex+0x34f/0x4d0 [ 375.753521][T11298] ? __x64_sys_futex+0x358/0x4d0 [ 375.753547][T11298] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 375.753602][T11298] ? xfd_validate_state+0x129/0x190 [ 375.753640][T11298] __x64_sys_mmap+0x125/0x190 [ 375.753678][T11298] do_syscall_64+0x106/0xf80 [ 375.753703][T11298] ? clear_bhb_loop+0x40/0x90 [ 375.753733][T11298] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 375.753758][T11298] RIP: 0033:0x7f9210f9c629 [ 375.753777][T11298] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 375.753801][T11298] RSP: 002b:00007f920f1d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 375.753824][T11298] RAX: ffffffffffffffda RBX: 00007f9211216180 RCX: 00007f9210f9c629 [ 375.753840][T11298] RDX: 00000000000000df RSI: 000000000000e983 RDI: 0000000000000000 [ 375.753854][T11298] RBP: 00007f9211032b39 R08: 0000000000000401 R09: 0000000000008000 [ 375.753869][T11298] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 375.753884][T11298] R13: 00007f9211216218 R14: 00007f9211216180 R15: 00007ffd100aa768 [ 375.753914][T11298] [ 378.704908][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.713486][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.377845][T11366] FAULT_INJECTION: forcing a failure. [ 379.377845][T11366] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 379.509570][T11366] CPU: 0 UID: 0 PID: 11366 Comm: syz.1.1432 Tainted: G L syzkaller #0 PREEMPT(full) [ 379.509601][T11366] Tainted: [L]=SOFTLOCKUP [ 379.509609][T11366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 379.509620][T11366] Call Trace: [ 379.509627][T11366] [ 379.509634][T11366] dump_stack_lvl+0x100/0x190 [ 379.509667][T11366] should_fail_ex.cold+0x5/0xa [ 379.509685][T11366] ? prepare_alloc_pages+0x16d/0x5f0 [ 379.509707][T11366] should_fail_alloc_page+0xeb/0x140 [ 379.509741][T11366] prepare_alloc_pages+0x1f0/0x5f0 [ 379.509772][T11366] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 379.509816][T11366] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 379.509861][T11366] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 379.509896][T11366] ? policy_nodemask+0xed/0x4f0 [ 379.509929][T11366] alloc_pages_mpol+0x1fb/0x550 [ 379.509962][T11366] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 379.509993][T11366] ? unwind_next_frame+0x3c8/0x1ea0 [ 379.510019][T11366] alloc_pages_noprof+0x131/0x390 [ 379.510052][T11366] __pmd_alloc+0x3b/0x9c0 [ 379.510074][T11366] __handle_mm_fault+0xa99/0x2b60 [ 379.510102][T11366] ? mt_find+0x45e/0x8e0 [ 379.510127][T11366] ? __pfx___handle_mm_fault+0x10/0x10 [ 379.510149][T11366] ? __pfx_mt_find+0x10/0x10 [ 379.510191][T11366] handle_mm_fault+0x36d/0xa20 [ 379.510219][T11366] __get_user_pages+0xf9c/0x34d0 [ 379.510246][T11366] ? down_read_killable+0x30e/0x4c0 [ 379.510272][T11366] ? __pfx___get_user_pages+0x10/0x10 [ 379.510290][T11366] ? __lock_acquire+0x4a5/0x2630 [ 379.510320][T11366] __gup_longterm_locked+0x87d/0x16f0 [ 379.510347][T11366] ? __pfx___gup_longterm_locked+0x10/0x10 [ 379.510371][T11366] ? find_held_lock+0x2b/0x80 [ 379.510401][T11366] ? gup_fast_fallback+0x146d/0x2460 [ 379.510420][T11366] ? sanity_check_pinned_pages+0x5f6/0x1250 [ 379.510448][T11366] gup_fast_fallback+0x18c6/0x2460 [ 379.510485][T11366] ? __pfx_gup_fast_fallback+0x10/0x10 [ 379.510505][T11366] ? kasan_save_stack+0x30/0x50 [ 379.510532][T11366] ? kasan_save_track+0x14/0x30 [ 379.510558][T11366] ? __kasan_slab_alloc+0x89/0x90 [ 379.510590][T11366] ? mempool_alloc_noprof+0x1b7/0x310 [ 379.510607][T11366] ? bvec_alloc+0x197/0x210 [ 379.510633][T11366] ? bio_alloc_bioset+0x59e/0x850 [ 379.510659][T11366] ? blkdev_direct_IO+0xeae/0x1fb0 [ 379.510679][T11366] ? blkdev_read_iter+0x225/0x4f0 [ 379.510698][T11366] ? do_iter_readv_writev+0x60d/0x920 [ 379.510724][T11366] ? vfs_readv+0x4d3/0x8d0 [ 379.510748][T11366] ? do_readv+0x13e/0x340 [ 379.510777][T11366] ? __x64_sys_preadv2+0x11f/0x160 [ 379.510807][T11366] ? do_syscall_64+0x106/0xf80 [ 379.510831][T11366] pin_user_pages_fast+0xa7/0xf0 [ 379.510851][T11366] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 379.510878][T11366] iov_iter_extract_pages+0xa0d/0x1ef0 [ 379.510918][T11366] ? __pfx_iov_iter_extract_pages+0x10/0x10 [ 379.510953][T11366] ? find_held_lock+0x2b/0x80 [ 379.510983][T11366] ? bio_associate_blkg_from_css+0x394/0x13f0 [ 379.511007][T11366] iov_iter_extract_bvecs+0x10e/0xf40 [ 379.511038][T11366] ? bio_associate_blkg_from_css+0x550/0x13f0 [ 379.511061][T11366] ? bio_associate_blkg+0x137/0x2a0 [ 379.511079][T11366] ? bio_associate_blkg+0x137/0x2a0 [ 379.511100][T11366] ? __pfx_iov_iter_extract_bvecs+0x10/0x10 [ 379.511132][T11366] ? bio_init+0x404/0x610 [ 379.511158][T11366] bio_iov_iter_get_pages+0x26a/0x970 [ 379.511195][T11366] blkdev_direct_IO+0x1302/0x1fb0 [ 379.511227][T11366] ? __pfx_blkdev_direct_IO+0x10/0x10 [ 379.511256][T11366] ? __pfx_aa_file_perm+0x10/0x10 [ 379.511276][T11366] ? __pfx__kstrtoull+0x10/0x10 [ 379.511301][T11366] blkdev_read_iter+0x225/0x4f0 [ 379.511327][T11366] do_iter_readv_writev+0x60d/0x920 [ 379.511356][T11366] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 379.511382][T11366] ? common_file_perm+0x1ab/0x4f0 [ 379.511416][T11366] ? bpf_lsm_file_permission+0x9/0x10 [ 379.511444][T11366] ? security_file_permission+0x76/0x210 [ 379.511477][T11366] ? rw_verify_area+0xce/0x6d0 [ 379.511505][T11366] vfs_readv+0x4d3/0x8d0 [ 379.511537][T11366] ? __pfx_vfs_readv+0x10/0x10 [ 379.511580][T11366] ? __fget_files+0x21f/0x3d0 [ 379.511617][T11366] ? do_readv+0x13e/0x340 [ 379.511641][T11366] do_readv+0x13e/0x340 [ 379.511668][T11366] ? __pfx_do_readv+0x10/0x10 [ 379.511694][T11366] ? ksys_write+0x1ac/0x250 [ 379.511722][T11366] ? __pfx_ksys_write+0x10/0x10 [ 379.511754][T11366] __x64_sys_preadv2+0x11f/0x160 [ 379.511794][T11366] do_syscall_64+0x106/0xf80 [ 379.511814][T11366] ? clear_bhb_loop+0x40/0x90 [ 379.511837][T11366] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 379.511857][T11366] RIP: 0033:0x7f556ed9c629 [ 379.511873][T11366] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 379.511892][T11366] RSP: 002b:00007f556fb9e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000147 [ 379.511910][T11366] RAX: ffffffffffffffda RBX: 00007f556f015fa0 RCX: 00007f556ed9c629 [ 379.511924][T11366] RDX: 0000000000000006 RSI: 0000200000000080 RDI: 0000000000000003 [ 379.511935][T11366] RBP: 00007f556fb9e090 R08: 0000000000000400 R09: 000000000000002f [ 379.511947][T11366] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 379.511959][T11366] R13: 00007f556f016038 R14: 00007f556f015fa0 R15: 00007fffc6be1c38 [ 379.511984][T11366] [ 380.961086][T11398] FAULT_INJECTION: forcing a failure. [ 380.961086][T11398] name failslab, interval 1, probability 0, space 0, times 0 [ 381.011337][T11398] CPU: 0 UID: 0 PID: 11398 Comm: syz.0.1441 Tainted: G L syzkaller #0 PREEMPT(full) [ 381.011374][T11398] Tainted: [L]=SOFTLOCKUP [ 381.011382][T11398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 381.011395][T11398] Call Trace: [ 381.011402][T11398] [ 381.011410][T11398] dump_stack_lvl+0x100/0x190 [ 381.011446][T11398] should_fail_ex.cold+0x5/0xa [ 381.011471][T11398] should_failslab+0xc2/0x120 [ 381.011507][T11398] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 381.011538][T11398] ? shmem_alloc_inode+0x25/0x50 [ 381.011560][T11398] ? __lock_acquire+0x4a5/0x2630 [ 381.011586][T11398] ? __pfx_shmem_alloc_inode+0x10/0x10 [ 381.011609][T11398] shmem_alloc_inode+0x25/0x50 [ 381.011629][T11398] alloc_inode+0x68/0x250 [ 381.011661][T11398] new_inode+0x22/0x1c0 [ 381.011690][T11398] shmem_get_inode+0x212/0x1040 [ 381.011719][T11398] ? __pfx_shmem_get_inode+0x10/0x10 [ 381.011745][T11398] ? rcu_is_watching+0x12/0xc0 [ 381.011775][T11398] ? percpu_counter_add_batch+0xb9/0x230 [ 381.011817][T11398] __shmem_file_setup+0x3ac/0x490 [ 381.011844][T11398] ? __pfx___shmem_file_setup+0x10/0x10 [ 381.011876][T11398] ? vm_area_alloc+0x1f/0x160 [ 381.011905][T11398] shmem_zero_setup+0x96/0x1b0 [ 381.011939][T11398] __mmap_region+0x2198/0x29e0 [ 381.011973][T11398] ? __pfx___mmap_region+0x10/0x10 [ 381.012007][T11398] ? set_next_entity+0x11b/0x9c0 [ 381.012043][T11398] ? __lock_acquire+0x4a5/0x2630 [ 381.012068][T11398] ? find_held_lock+0x2b/0x80 [ 381.012112][T11398] ? find_held_lock+0x2b/0x80 [ 381.012145][T11398] ? finish_task_switch.isra.0+0x200/0xb80 [ 381.012167][T11398] ? finish_task_switch.isra.0+0x200/0xb80 [ 381.012199][T11398] ? trace_sched_exit_tp+0x13a/0x180 [ 381.012223][T11398] ? __schedule+0x1000/0x60e0 [ 381.012276][T11398] ? rcu_is_watching+0x12/0xc0 [ 381.012307][T11398] ? cap_capable+0x107/0x460 [ 381.012339][T11398] mmap_region+0x180/0x3e0 [ 381.012374][T11398] do_mmap+0xc63/0x12f0 [ 381.012399][T11398] ? __pfx_do_mmap+0x10/0x10 [ 381.012420][T11398] ? __pfx_down_write_killable+0x10/0x10 [ 381.012453][T11398] vm_mmap_pgoff+0x29e/0x470 [ 381.012479][T11398] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 381.012512][T11398] ? do_futex+0x192/0x350 [ 381.012538][T11398] ? __pfx_do_futex+0x10/0x10 [ 381.012567][T11398] ksys_mmap_pgoff+0xe1/0x650 [ 381.012600][T11398] ? __x64_sys_futex+0x34f/0x4d0 [ 381.012623][T11398] ? __x64_sys_futex+0x358/0x4d0 [ 381.012655][T11398] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 381.012688][T11398] ? xfd_validate_state+0x129/0x190 [ 381.012722][T11398] __x64_sys_mmap+0x125/0x190 [ 381.012754][T11398] do_syscall_64+0x106/0xf80 [ 381.012775][T11398] ? clear_bhb_loop+0x40/0x90 [ 381.012800][T11398] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 381.012821][T11398] RIP: 0033:0x7f1a5b39c629 [ 381.012838][T11398] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 381.012857][T11398] RSP: 002b:00007f1a5c2bd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 381.012877][T11398] RAX: ffffffffffffffda RBX: 00007f1a5b616180 RCX: 00007f1a5b39c629 [ 381.012891][T11398] RDX: 00000000000000df RSI: 000000000000e983 RDI: 0000000000000000 [ 381.012903][T11398] RBP: 00007f1a5b432b39 R08: 0000000000000401 R09: 0000000000008000 [ 381.012916][T11398] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 381.012928][T11398] R13: 00007f1a5b616218 R14: 00007f1a5b616180 R15: 00007ffd74e73e98 [ 381.012954][T11398] [ 381.954545][T11400] FAULT_INJECTION: forcing a failure. [ 381.954545][T11400] name fail_futex, interval 1, probability 0, space 0, times 0 [ 381.982801][T11400] CPU: 0 UID: 0 PID: 11400 Comm: syz.3.1443 Tainted: G L syzkaller #0 PREEMPT(full) [ 381.982834][T11400] Tainted: [L]=SOFTLOCKUP [ 381.982841][T11400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 381.982854][T11400] Call Trace: [ 381.982860][T11400] [ 381.982868][T11400] dump_stack_lvl+0x100/0x190 [ 381.982903][T11400] should_fail_ex.cold+0x5/0xa [ 381.982926][T11400] get_futex_key+0x1d2/0x1620 [ 381.982952][T11400] ? __pfx_get_futex_key+0x10/0x10 [ 381.982984][T11400] futex_wake+0xea/0x530 [ 381.983015][T11400] ? __pfx_futex_wake+0x10/0x10 [ 381.983048][T11400] ? putname+0xb1/0x110 [ 381.983066][T11400] ? kmem_cache_free+0x124/0x6a0 [ 381.983096][T11400] do_futex+0x32b/0x350 [ 381.983121][T11400] ? __pfx_do_futex+0x10/0x10 [ 381.983145][T11400] ? __pfx_do_sys_openat2+0x10/0x10 [ 381.983171][T11400] ? __fget_files+0x21f/0x3d0 [ 381.983204][T11400] __x64_sys_futex+0x34f/0x4d0 [ 381.983231][T11400] ? __x64_sys_openat+0x12d/0x210 [ 381.983255][T11400] ? __pfx___x64_sys_futex+0x10/0x10 [ 381.983291][T11400] do_syscall_64+0x106/0xf80 [ 381.983312][T11400] ? clear_bhb_loop+0x40/0x90 [ 381.983337][T11400] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 381.983357][T11400] RIP: 0033:0x7f9210f9c629 [ 381.983373][T11400] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 381.983394][T11400] RSP: 002b:00007f9211d790e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 381.983413][T11400] RAX: ffffffffffffffda RBX: 00007f9211215fa8 RCX: 00007f9210f9c629 [ 381.983427][T11400] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f9211215fac [ 381.983440][T11400] RBP: 00007f9211215fa0 R08: 0000000000000000 R09: 0000000000000000 [ 381.983452][T11400] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000 [ 381.983464][T11400] R13: 00007f9211216038 R14: 00007ffd100aa680 R15: 00007ffd100aa768 [ 381.983490][T11400] [ 383.023683][T11414] FAULT_INJECTION: forcing a failure. [ 383.023683][T11414] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 383.069435][T11414] CPU: 0 UID: 0 PID: 11414 Comm: syz.0.1447 Tainted: G L syzkaller #0 PREEMPT(full) [ 383.069472][T11414] Tainted: [L]=SOFTLOCKUP [ 383.069479][T11414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 383.069491][T11414] Call Trace: [ 383.069498][T11414] [ 383.069505][T11414] dump_stack_lvl+0x100/0x190 [ 383.069539][T11414] should_fail_ex.cold+0x5/0xa [ 383.069557][T11414] ? prepare_alloc_pages+0x16d/0x5f0 [ 383.069579][T11414] should_fail_alloc_page+0xeb/0x140 [ 383.069613][T11414] prepare_alloc_pages+0x1f0/0x5f0 [ 383.069636][T11414] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 383.069666][T11414] ? find_held_lock+0x2b/0x80 [ 383.069697][T11414] ? free_unref_folios+0xd3f/0x1790 [ 383.069721][T11414] ? free_unref_folios+0xd3f/0x1790 [ 383.069749][T11414] ? do_raw_spin_unlock+0x145/0x1e0 [ 383.069777][T11414] ? _raw_spin_unlock+0x28/0x50 [ 383.069809][T11414] ? free_unref_folios+0xd49/0x1790 [ 383.069836][T11414] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 383.069865][T11414] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 383.069901][T11414] ? folios_put_refs+0x66d/0x840 [ 383.069932][T11414] ? __pfx_folios_put_refs+0x10/0x10 [ 383.069964][T11414] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 383.069997][T11414] ? policy_nodemask+0xed/0x4f0 [ 383.070032][T11414] alloc_pages_mpol+0x1fb/0x550 [ 383.070064][T11414] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 383.070097][T11414] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 383.070126][T11414] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 383.070159][T11414] folio_alloc_mpol_noprof+0x36/0x340 [ 383.070183][T11414] shmem_alloc_folio+0x135/0x160 [ 383.070207][T11414] shmem_alloc_and_add_folio+0x371/0xd40 [ 383.070241][T11414] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 383.070271][T11414] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 383.070308][T11414] shmem_get_folio_gfp+0x6ab/0x1900 [ 383.070341][T11414] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 383.070370][T11414] ? ktime_get_coarse_real_ts64_mg+0x235/0x300 [ 383.070394][T11414] ? lockdep_hardirqs_on+0x78/0x100 [ 383.070417][T11414] shmem_fault+0x1f9/0xa20 [ 383.070450][T11414] ? __lock_acquire+0x4a5/0x2630 [ 383.070473][T11414] ? __pfx_shmem_fault+0x10/0x10 [ 383.070502][T11414] ? __up_read+0x2c5/0x700 [ 383.070537][T11414] ? __pfx_filemap_map_pages+0x10/0x10 [ 383.070563][T11414] __do_fault+0x10d/0x550 [ 383.070595][T11414] ? __pfx_filemap_map_pages+0x10/0x10 [ 383.070621][T11414] do_fault+0x2db/0x1950 [ 383.070644][T11414] __handle_mm_fault+0x180f/0x2b60 [ 383.070676][T11414] ? __pfx___handle_mm_fault+0x10/0x10 [ 383.070702][T11414] ? pte_offset_map_lock+0x174/0x320 [ 383.070734][T11414] ? find_held_lock+0x2b/0x80 [ 383.070772][T11414] ? follow_page_pte+0x5b3/0x1400 [ 383.070796][T11414] handle_mm_fault+0x36d/0xa20 [ 383.070825][T11414] __get_user_pages+0xf9c/0x34d0 [ 383.070851][T11414] ? down_read_killable+0x30e/0x4c0 [ 383.070876][T11414] ? __lock_acquire+0x4a5/0x2630 [ 383.070900][T11414] ? __pfx___get_user_pages+0x10/0x10 [ 383.070926][T11414] __gup_longterm_locked+0x279/0x16f0 [ 383.070954][T11414] ? __pfx___gup_longterm_locked+0x10/0x10 [ 383.070977][T11414] ? __get_pfnblock_flags_mask+0x140/0x250 [ 383.070997][T11414] ? find_held_lock+0x2b/0x80 [ 383.071028][T11414] ? sanity_check_pinned_pages+0x5f6/0x1250 [ 383.071052][T11414] gup_fast_fallback+0x18c6/0x2460 [ 383.071090][T11414] ? __pfx_gup_fast_fallback+0x10/0x10 [ 383.071114][T11414] ? rcu_is_watching+0x12/0xc0 [ 383.071149][T11414] pin_user_pages_fast+0xa7/0xf0 [ 383.071170][T11414] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 383.071189][T11414] ? io_pin_pages+0xc3/0x1e0 [ 383.071220][T11414] io_pin_pages+0xe6/0x1e0 [ 383.071245][T11414] io_sqe_buffer_register+0x1e8/0x2000 [ 383.071286][T11414] ? rcu_is_watching+0x12/0xc0 [ 383.071314][T11414] ? trace_kmalloc+0x101/0x130 [ 383.071332][T11414] ? __pfx_io_sqe_buffer_register+0x10/0x10 [ 383.071358][T11414] ? io_rsrc_data_alloc+0x2c/0xa0 [ 383.071387][T11414] ? copy_iovec_from_user+0x102/0x140 [ 383.071418][T11414] ? iovec_from_user+0xbb/0x140 [ 383.071454][T11414] io_sqe_buffers_register.cold+0x345/0x4c2 [ 383.071491][T11414] ? __pfx_io_sqe_buffers_register+0x10/0x10 [ 383.071515][T11414] ? __fget_files+0x215/0x3d0 [ 383.071549][T11414] ? __fget_files+0x21f/0x3d0 [ 383.071584][T11414] __do_sys_io_uring_register+0x12f9/0x1ac0 [ 383.071614][T11414] ? __pfx___do_sys_io_uring_register+0x10/0x10 [ 383.071638][T11414] ? __fget_files+0x21f/0x3d0 [ 383.071671][T11414] ? fput+0x79/0x100 [ 383.071691][T11414] ? ksys_write+0x1ac/0x250 [ 383.071719][T11414] ? __pfx_ksys_write+0x10/0x10 [ 383.071755][T11414] do_syscall_64+0x106/0xf80 [ 383.071775][T11414] ? clear_bhb_loop+0x40/0x90 [ 383.071798][T11414] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 383.071818][T11414] RIP: 0033:0x7f1a5b39c629 [ 383.071834][T11414] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 383.071853][T11414] RSP: 002b:00007f1a5c2ff028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab [ 383.071872][T11414] RAX: ffffffffffffffda RBX: 00007f1a5b615fa0 RCX: 00007f1a5b39c629 [ 383.071885][T11414] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002 [ 383.071897][T11414] RBP: 00007f1a5c2ff090 R08: 0000000000000000 R09: 0000000000000000 [ 383.071908][T11414] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000002 [ 383.071919][T11414] R13: 00007f1a5b616038 R14: 00007f1a5b615fa0 R15: 00007ffd74e73e98 [ 383.071944][T11414] [ 383.949677][T11421] GUP no longer grows the stack in syz.3.1451 (11421): 5000-401000 (4000) [ 383.958284][T11421] CPU: 0 UID: 0 PID: 11421 Comm: syz.3.1451 Tainted: G L syzkaller #0 PREEMPT(full) [ 383.958315][T11421] Tainted: [L]=SOFTLOCKUP [ 383.958322][T11421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 383.958335][T11421] Call Trace: [ 383.958342][T11421] [ 383.958349][T11421] dump_stack_lvl+0x100/0x190 [ 383.958389][T11421] gup_vma_lookup.cold+0x83/0x96 [ 383.958420][T11421] __get_user_pages+0x241/0x34d0 [ 383.958448][T11421] ? down_read_killable+0x30e/0x4c0 [ 383.958474][T11421] ? __lock_acquire+0x4a5/0x2630 [ 383.958499][T11421] ? __pfx___get_user_pages+0x10/0x10 [ 383.958526][T11421] __gup_longterm_locked+0x279/0x16f0 [ 383.958554][T11421] ? __pfx___gup_longterm_locked+0x10/0x10 [ 383.958578][T11421] ? __get_pfnblock_flags_mask+0x140/0x250 [ 383.958599][T11421] ? find_held_lock+0x2b/0x80 [ 383.958632][T11421] ? sanity_check_pinned_pages+0x5f6/0x1250 [ 383.958656][T11421] gup_fast_fallback+0x18c6/0x2460 [ 383.958695][T11421] ? __pfx_gup_fast_fallback+0x10/0x10 [ 383.958721][T11421] ? rcu_is_watching+0x12/0xc0 [ 383.958756][T11421] pin_user_pages_fast+0xa7/0xf0 [ 383.958777][T11421] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 383.958798][T11421] ? io_pin_pages+0xc3/0x1e0 [ 383.958829][T11421] io_pin_pages+0xe6/0x1e0 [ 383.958854][T11421] io_sqe_buffer_register+0x1e8/0x2000 [ 383.958892][T11421] ? rcu_is_watching+0x12/0xc0 [ 383.958922][T11421] ? trace_kmalloc+0x101/0x130 [ 383.958940][T11421] ? __pfx_io_sqe_buffer_register+0x10/0x10 [ 383.958968][T11421] ? io_rsrc_data_alloc+0x2c/0xa0 [ 383.958998][T11421] ? copy_iovec_from_user+0x102/0x140 [ 383.959030][T11421] ? iovec_from_user+0xbb/0x140 [ 383.959063][T11421] io_sqe_buffers_register.cold+0x345/0x4c2 [ 383.959101][T11421] ? __pfx_io_sqe_buffers_register+0x10/0x10 [ 383.959127][T11421] ? __fget_files+0x215/0x3d0 [ 383.959162][T11421] ? __fget_files+0x21f/0x3d0 [ 383.959199][T11421] __do_sys_io_uring_register+0x12f9/0x1ac0 [ 383.959229][T11421] ? __pfx___do_sys_io_uring_register+0x10/0x10 [ 383.959258][T11421] ? __x64_sys_futex+0x34f/0x4d0 [ 383.959282][T11421] ? __x64_sys_futex+0x358/0x4d0 [ 383.959310][T11421] ? xfd_validate_state+0x129/0x190 [ 383.959348][T11421] do_syscall_64+0x106/0xf80 [ 383.959375][T11421] ? clear_bhb_loop+0x40/0x90 [ 383.959400][T11421] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 383.959421][T11421] RIP: 0033:0x7f9210f9c629 [ 383.959438][T11421] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 383.959458][T11421] RSP: 002b:00007f9211d79028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab [ 383.959478][T11421] RAX: ffffffffffffffda RBX: 00007f9211215fa0 RCX: 00007f9210f9c629 [ 383.959491][T11421] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002 [ 383.959503][T11421] RBP: 00007f9211032b39 R08: 0000000000000000 R09: 0000000000000000 [ 383.959516][T11421] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 383.959528][T11421] R13: 00007f9211216038 R14: 00007f9211215fa0 R15: 00007ffd100aa768 [ 383.959554][T11421] [ 384.879460][T11433] FAULT_INJECTION: forcing a failure. [ 384.879460][T11433] name failslab, interval 1, probability 0, space 0, times 0 [ 384.929827][T11433] CPU: 0 UID: 0 PID: 11433 Comm: syz.3.1453 Tainted: G L syzkaller #0 PREEMPT(full) [ 384.929860][T11433] Tainted: [L]=SOFTLOCKUP [ 384.929867][T11433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 384.929879][T11433] Call Trace: [ 384.929886][T11433] [ 384.929894][T11433] dump_stack_lvl+0x100/0x190 [ 384.929928][T11433] should_fail_ex.cold+0x5/0xa [ 384.929951][T11433] should_failslab+0xc2/0x120 [ 384.929984][T11433] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 384.930014][T11433] ? shmem_alloc_inode+0x25/0x50 [ 384.930034][T11433] ? __lock_acquire+0x4a5/0x2630 [ 384.930059][T11433] ? __pfx_shmem_alloc_inode+0x10/0x10 [ 384.930081][T11433] shmem_alloc_inode+0x25/0x50 [ 384.930099][T11433] alloc_inode+0x68/0x250 [ 384.930124][T11433] new_inode+0x22/0x1c0 [ 384.930150][T11433] shmem_get_inode+0x212/0x1040 [ 384.930177][T11433] ? __pfx_shmem_get_inode+0x10/0x10 [ 384.930201][T11433] ? rcu_is_watching+0x12/0xc0 [ 384.930229][T11433] ? percpu_counter_add_batch+0xb9/0x230 [ 384.930268][T11433] __shmem_file_setup+0x3ac/0x490 [ 384.930303][T11433] ? __pfx___shmem_file_setup+0x10/0x10 [ 384.930333][T11433] ? vm_area_alloc+0x1f/0x160 [ 384.930361][T11433] shmem_zero_setup+0x96/0x1b0 [ 384.930393][T11433] __mmap_region+0x2198/0x29e0 [ 384.930425][T11433] ? __pfx___mmap_region+0x10/0x10 [ 384.930457][T11433] ? set_next_entity+0x11b/0x9c0 [ 384.930491][T11433] ? __lock_acquire+0x4a5/0x2630 [ 384.930514][T11433] ? find_held_lock+0x2b/0x80 [ 384.930556][T11433] ? find_held_lock+0x2b/0x80 [ 384.930587][T11433] ? finish_task_switch.isra.0+0x200/0xb80 [ 384.930607][T11433] ? finish_task_switch.isra.0+0x200/0xb80 [ 384.930637][T11433] ? trace_sched_exit_tp+0x13a/0x180 [ 384.930660][T11433] ? __schedule+0x1000/0x60e0 [ 384.930711][T11433] ? rcu_is_watching+0x12/0xc0 [ 384.930740][T11433] ? cap_capable+0x107/0x460 [ 384.930769][T11433] mmap_region+0x180/0x3e0 [ 384.930802][T11433] do_mmap+0xc63/0x12f0 [ 384.930826][T11433] ? __pfx_do_mmap+0x10/0x10 [ 384.930845][T11433] ? __pfx_down_write_killable+0x10/0x10 [ 384.930877][T11433] vm_mmap_pgoff+0x29e/0x470 [ 384.930901][T11433] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 384.930923][T11433] ? do_futex+0x192/0x350 [ 384.930948][T11433] ? __pfx_do_futex+0x10/0x10 [ 384.930978][T11433] ksys_mmap_pgoff+0xe1/0x650 [ 384.931010][T11433] ? __x64_sys_futex+0x34f/0x4d0 [ 384.931035][T11433] ? __x64_sys_futex+0x358/0x4d0 [ 384.931060][T11433] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 384.931093][T11433] ? xfd_validate_state+0x129/0x190 [ 384.931126][T11433] __x64_sys_mmap+0x125/0x190 [ 384.931158][T11433] do_syscall_64+0x106/0xf80 [ 384.931179][T11433] ? clear_bhb_loop+0x40/0x90 [ 384.931204][T11433] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 384.931224][T11433] RIP: 0033:0x7f9210f9c629 [ 384.931242][T11433] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 384.931264][T11433] RSP: 002b:00007f920f1d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 384.931283][T11433] RAX: ffffffffffffffda RBX: 00007f9211216180 RCX: 00007f9210f9c629 [ 384.931303][T11433] RDX: 00000000000000df RSI: 000000000000e983 RDI: 0000000000000000 [ 384.931315][T11433] RBP: 00007f9211032b39 R08: 0000000000000401 R09: 0000000000008000 [ 384.931328][T11433] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 384.931340][T11433] R13: 00007f9211216218 R14: 00007f9211216180 R15: 00007ffd100aa768 [ 384.931366][T11433] [ 385.665327][T11438] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1454'. [ 385.913667][T11440] FAULT_INJECTION: forcing a failure. [ 385.913667][T11440] name failslab, interval 1, probability 0, space 0, times 0 [ 385.944557][T11440] CPU: 0 UID: 0 PID: 11440 Comm: syz.2.1455 Tainted: G L syzkaller #0 PREEMPT(full) [ 385.944590][T11440] Tainted: [L]=SOFTLOCKUP [ 385.944597][T11440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 385.944610][T11440] Call Trace: [ 385.944617][T11440] [ 385.944625][T11440] dump_stack_lvl+0x100/0x190 [ 385.944659][T11440] should_fail_ex.cold+0x5/0xa [ 385.944682][T11440] ? tomoyo_realpath_from_path+0xb6/0x690 [ 385.944704][T11440] should_failslab+0xc2/0x120 [ 385.944738][T11440] __kmalloc_noprof+0xe0/0x850 [ 385.944772][T11440] tomoyo_realpath_from_path+0xb6/0x690 [ 385.944798][T11440] tomoyo_path_number_perm+0x23c/0x580 [ 385.944828][T11440] ? tomoyo_path_number_perm+0x22e/0x580 [ 385.944860][T11440] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 385.944916][T11440] ? find_held_lock+0x2b/0x80 [ 385.944948][T11440] ? __fget_files+0x215/0x3d0 [ 385.944977][T11440] ? hook_file_ioctl_common+0x146/0x410 [ 385.945013][T11440] ? __fget_files+0x21f/0x3d0 [ 385.945048][T11440] security_file_ioctl+0xd3/0x230 [ 385.945080][T11440] __x64_sys_ioctl+0xb7/0x210 [ 385.945110][T11440] do_syscall_64+0x106/0xf80 [ 385.945131][T11440] ? clear_bhb_loop+0x40/0x90 [ 385.945156][T11440] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 385.945177][T11440] RIP: 0033:0x7f4de9d9c629 [ 385.945194][T11440] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 385.945221][T11440] RSP: 002b:00007f4deace9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 385.945240][T11440] RAX: ffffffffffffffda RBX: 00007f4dea015fa0 RCX: 00007f4de9d9c629 [ 385.945255][T11440] RDX: 0000200000000000 RSI: 00000000c0306201 RDI: 0000000000000003 [ 385.945267][T11440] RBP: 00007f4deace9090 R08: 0000000000000000 R09: 0000000000000000 [ 385.945280][T11440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 385.945292][T11440] R13: 00007f4dea016038 R14: 00007f4dea015fa0 R15: 00007ffc82d0eac8 [ 385.945319][T11440] [ 385.945327][T11440] ERROR: Out of memory at tomoyo_realpath_from_path. [ 387.027345][T11467] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input44 [ 387.038949][T11469] netlink: 2468 bytes leftover after parsing attributes in process `syz.0.1461'. [ 387.147959][T11473] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1461'. [ 387.182995][T11473] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1461'. [ 388.678142][T11514] misc userio: Invalid payload size [ 388.980369][T11523] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1476'. [ 388.992541][T11525] FAULT_INJECTION: forcing a failure. [ 388.992541][T11525] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 389.012954][T11525] CPU: 0 UID: 0 PID: 11525 Comm: syz.2.1477 Tainted: G L syzkaller #0 PREEMPT(full) [ 389.012984][T11525] Tainted: [L]=SOFTLOCKUP [ 389.012991][T11525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 389.013003][T11525] Call Trace: [ 389.013009][T11525] [ 389.013017][T11525] dump_stack_lvl+0x100/0x190 [ 389.013049][T11525] should_fail_ex.cold+0x5/0xa [ 389.013068][T11525] ? prepare_alloc_pages+0x16d/0x5f0 [ 389.013090][T11525] should_fail_alloc_page+0xeb/0x140 [ 389.013125][T11525] prepare_alloc_pages+0x1f0/0x5f0 [ 389.013149][T11525] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 389.013182][T11525] ? __lock_acquire+0x4a5/0x2630 [ 389.013212][T11525] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 389.013243][T11525] ? do_raw_spin_lock+0x128/0x260 [ 389.013270][T11525] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 389.013298][T11525] ? find_held_lock+0x2b/0x80 [ 389.013335][T11525] ? __lock_acquire+0x4a5/0x2630 [ 389.013358][T11525] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 389.013392][T11525] ? policy_nodemask+0xed/0x4f0 [ 389.013425][T11525] alloc_pages_mpol+0x1fb/0x550 [ 389.013457][T11525] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 389.013489][T11525] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 389.013518][T11525] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 389.013551][T11525] folio_alloc_mpol_noprof+0x36/0x340 [ 389.013574][T11525] shmem_alloc_folio+0x135/0x160 [ 389.013597][T11525] shmem_alloc_and_add_folio+0x371/0xd40 [ 389.013631][T11525] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 389.013660][T11525] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 389.013693][T11525] shmem_get_folio_gfp+0x6ab/0x1900 [ 389.013726][T11525] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 389.013755][T11525] ? ktime_get_coarse_real_ts64_mg+0x235/0x300 [ 389.013779][T11525] ? lockdep_hardirqs_on+0x78/0x100 [ 389.013803][T11525] shmem_fault+0x1f9/0xa20 [ 389.013830][T11525] ? __lock_acquire+0x4a5/0x2630 [ 389.013853][T11525] ? __pfx_shmem_fault+0x10/0x10 [ 389.013881][T11525] ? __up_read+0x2c5/0x700 [ 389.013920][T11525] ? __pfx_filemap_map_pages+0x10/0x10 [ 389.013947][T11525] __do_fault+0x10d/0x550 [ 389.013983][T11525] ? __pfx_filemap_map_pages+0x10/0x10 [ 389.014009][T11525] do_fault+0x2db/0x1950 [ 389.014032][T11525] __handle_mm_fault+0x180f/0x2b60 [ 389.014063][T11525] ? __pfx___handle_mm_fault+0x10/0x10 [ 389.014088][T11525] ? pte_offset_map_lock+0x174/0x320 [ 389.014120][T11525] ? find_held_lock+0x2b/0x80 [ 389.014157][T11525] ? follow_page_pte+0x5b3/0x1400 [ 389.014181][T11525] handle_mm_fault+0x36d/0xa20 [ 389.014210][T11525] __get_user_pages+0xf9c/0x34d0 [ 389.014235][T11525] ? down_read_killable+0x30e/0x4c0 [ 389.014259][T11525] ? __lock_acquire+0x4a5/0x2630 [ 389.014282][T11525] ? __pfx___get_user_pages+0x10/0x10 [ 389.014308][T11525] __gup_longterm_locked+0x279/0x16f0 [ 389.014335][T11525] ? __pfx___gup_longterm_locked+0x10/0x10 [ 389.014358][T11525] ? __get_pfnblock_flags_mask+0x140/0x250 [ 389.014378][T11525] ? find_held_lock+0x2b/0x80 [ 389.014408][T11525] ? sanity_check_pinned_pages+0x5f6/0x1250 [ 389.014431][T11525] gup_fast_fallback+0x18c6/0x2460 [ 389.014469][T11525] ? __pfx_gup_fast_fallback+0x10/0x10 [ 389.014493][T11525] ? rcu_is_watching+0x12/0xc0 [ 389.014527][T11525] pin_user_pages_fast+0xa7/0xf0 [ 389.014547][T11525] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 389.014566][T11525] ? io_pin_pages+0xc3/0x1e0 [ 389.014596][T11525] io_pin_pages+0xe6/0x1e0 [ 389.014621][T11525] io_sqe_buffer_register+0x1e8/0x2000 [ 389.014657][T11525] ? rcu_is_watching+0x12/0xc0 [ 389.014685][T11525] ? trace_kmalloc+0x101/0x130 [ 389.014703][T11525] ? __pfx_io_sqe_buffer_register+0x10/0x10 [ 389.014729][T11525] ? io_rsrc_data_alloc+0x2c/0xa0 [ 389.014757][T11525] ? copy_iovec_from_user+0x102/0x140 [ 389.014788][T11525] ? iovec_from_user+0xbb/0x140 [ 389.014820][T11525] io_sqe_buffers_register.cold+0x345/0x4c2 [ 389.014856][T11525] ? __pfx_io_sqe_buffers_register+0x10/0x10 [ 389.014881][T11525] ? __fget_files+0x215/0x3d0 [ 389.014914][T11525] ? __fget_files+0x21f/0x3d0 [ 389.014954][T11525] __do_sys_io_uring_register+0x12f9/0x1ac0 [ 389.014983][T11525] ? __pfx___do_sys_io_uring_register+0x10/0x10 [ 389.015007][T11525] ? __fget_files+0x21f/0x3d0 [ 389.015041][T11525] ? fput+0x79/0x100 [ 389.015060][T11525] ? ksys_write+0x1ac/0x250 [ 389.015088][T11525] ? __pfx_ksys_write+0x10/0x10 [ 389.015124][T11525] do_syscall_64+0x106/0xf80 [ 389.015144][T11525] ? clear_bhb_loop+0x40/0x90 [ 389.015168][T11525] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 389.015188][T11525] RIP: 0033:0x7f4de9d9c629 [ 389.015204][T11525] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 389.015223][T11525] RSP: 002b:00007f4deace9028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab [ 389.015241][T11525] RAX: ffffffffffffffda RBX: 00007f4dea015fa0 RCX: 00007f4de9d9c629 [ 389.015254][T11525] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002 [ 389.015265][T11525] RBP: 00007f4deace9090 R08: 0000000000000000 R09: 0000000000000000 [ 389.015277][T11525] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000002 [ 389.015288][T11525] R13: 00007f4dea016038 R14: 00007f4dea015fa0 R15: 00007ffc82d0eac8 [ 389.015313][T11525] [ 392.648005][T11564] FAULT_INJECTION: forcing a failure. [ 392.648005][T11564] name failslab, interval 1, probability 0, space 0, times 0 [ 392.727873][T11564] CPU: 0 UID: 0 PID: 11564 Comm: syz.0.1485 Tainted: G L syzkaller #0 PREEMPT(full) [ 392.727908][T11564] Tainted: [L]=SOFTLOCKUP [ 392.727915][T11564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 392.727928][T11564] Call Trace: [ 392.727934][T11564] [ 392.727943][T11564] dump_stack_lvl+0x100/0x190 [ 392.727977][T11564] should_fail_ex.cold+0x5/0xa [ 392.728000][T11564] should_failslab+0xc2/0x120 [ 392.728033][T11564] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 392.728061][T11564] ? vm_area_alloc+0x1f/0x160 [ 392.728085][T11564] ? vma_merge_new_range+0x38b/0xa30 [ 392.728110][T11564] ? __sanitizer_cov_trace_const_cmp8+0x20/0x20 [ 392.728147][T11564] vm_area_alloc+0x1f/0x160 [ 392.728171][T11564] __mmap_region+0x10cc/0x29e0 [ 392.728201][T11564] ? __pfx___mmap_region+0x10/0x10 [ 392.728234][T11564] ? set_next_entity+0x11b/0x9c0 [ 392.728267][T11564] ? __lock_acquire+0x4a5/0x2630 [ 392.728291][T11564] ? find_held_lock+0x2b/0x80 [ 392.728332][T11564] ? find_held_lock+0x2b/0x80 [ 392.728362][T11564] ? finish_task_switch.isra.0+0x200/0xb80 [ 392.728383][T11564] ? finish_task_switch.isra.0+0x200/0xb80 [ 392.728413][T11564] ? trace_sched_exit_tp+0x13a/0x180 [ 392.728435][T11564] ? __schedule+0x1000/0x60e0 [ 392.728485][T11564] ? rcu_is_watching+0x12/0xc0 [ 392.728514][T11564] ? cap_capable+0x107/0x460 [ 392.728544][T11564] mmap_region+0x180/0x3e0 [ 392.728577][T11564] do_mmap+0xc63/0x12f0 [ 392.728601][T11564] ? __pfx_do_mmap+0x10/0x10 [ 392.728620][T11564] ? __pfx_down_write_killable+0x10/0x10 [ 392.728659][T11564] vm_mmap_pgoff+0x29e/0x470 [ 392.728684][T11564] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 392.728706][T11564] ? do_futex+0x192/0x350 [ 392.728731][T11564] ? __pfx_do_futex+0x10/0x10 [ 392.728761][T11564] ksys_mmap_pgoff+0xe1/0x650 [ 392.728794][T11564] ? __x64_sys_futex+0x34f/0x4d0 [ 392.728818][T11564] ? __x64_sys_futex+0x358/0x4d0 [ 392.728844][T11564] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 392.728877][T11564] ? xfd_validate_state+0x129/0x190 [ 392.728910][T11564] __x64_sys_mmap+0x125/0x190 [ 392.728941][T11564] do_syscall_64+0x106/0xf80 [ 392.728963][T11564] ? clear_bhb_loop+0x40/0x90 [ 392.728988][T11564] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 392.729009][T11564] RIP: 0033:0x7f1a5b39c629 [ 392.729026][T11564] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 392.729045][T11564] RSP: 002b:00007f1a5c2bd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 392.729065][T11564] RAX: ffffffffffffffda RBX: 00007f1a5b616180 RCX: 00007f1a5b39c629 [ 392.729078][T11564] RDX: 00000000000000df RSI: 000000000000e983 RDI: 0000000000000000 [ 392.729090][T11564] RBP: 00007f1a5b432b39 R08: 0000000000000401 R09: 0000000000008000 [ 392.729103][T11564] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 392.729115][T11564] R13: 00007f1a5b616218 R14: 00007f1a5b616180 R15: 00007ffd74e73e98 [ 392.729142][T11564] [ 395.964105][T11615] FAULT_INJECTION: forcing a failure. [ 395.964105][T11615] name failslab, interval 1, probability 0, space 0, times 0 [ 396.008166][T11615] CPU: 0 UID: 0 PID: 11615 Comm: syz.1.1500 Tainted: G L syzkaller #0 PREEMPT(full) [ 396.008200][T11615] Tainted: [L]=SOFTLOCKUP [ 396.008206][T11615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 396.008219][T11615] Call Trace: [ 396.008226][T11615] [ 396.008233][T11615] dump_stack_lvl+0x100/0x190 [ 396.008267][T11615] should_fail_ex.cold+0x5/0xa [ 396.008291][T11615] ? tomoyo_encode2+0xfb/0x3c0 [ 396.008309][T11615] should_failslab+0xc2/0x120 [ 396.008343][T11615] __kmalloc_noprof+0xe0/0x850 [ 396.008378][T11615] ? d_absolute_path+0x136/0x1b0 [ 396.008408][T11615] tomoyo_encode2+0xfb/0x3c0 [ 396.008432][T11615] tomoyo_encode+0x29/0x50 [ 396.008451][T11615] tomoyo_realpath_from_path+0x18c/0x690 [ 396.008478][T11615] tomoyo_path_number_perm+0x23c/0x580 [ 396.008509][T11615] ? tomoyo_path_number_perm+0x22e/0x580 [ 396.008541][T11615] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 396.008597][T11615] ? find_held_lock+0x2b/0x80 [ 396.008630][T11615] ? __fget_files+0x215/0x3d0 [ 396.008659][T11615] ? hook_file_ioctl_common+0x146/0x410 [ 396.008695][T11615] ? __fget_files+0x21f/0x3d0 [ 396.008736][T11615] security_file_ioctl+0xd3/0x230 [ 396.008769][T11615] __x64_sys_ioctl+0xb7/0x210 [ 396.008798][T11615] do_syscall_64+0x106/0xf80 [ 396.008821][T11615] ? clear_bhb_loop+0x40/0x90 [ 396.008846][T11615] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 396.008868][T11615] RIP: 0033:0x7f556ed9c629 [ 396.008885][T11615] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 396.008905][T11615] RSP: 002b:00007f556fb9e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 396.008925][T11615] RAX: ffffffffffffffda RBX: 00007f556f015fa0 RCX: 00007f556ed9c629 [ 396.008939][T11615] RDX: 0000200000000000 RSI: 00000000c0306201 RDI: 0000000000000003 [ 396.008952][T11615] RBP: 00007f556fb9e090 R08: 0000000000000000 R09: 0000000000000000 [ 396.008965][T11615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 396.008977][T11615] R13: 00007f556f016038 R14: 00007f556f015fa0 R15: 00007fffc6be1c38 [ 396.009004][T11615] [ 396.009020][T11615] ERROR: Out of memory at tomoyo_realpath_from_path. [ 397.179799][T11643] FAULT_INJECTION: forcing a failure. [ 397.179799][T11643] name failslab, interval 1, probability 0, space 0, times 0 [ 397.237302][T11643] CPU: 0 UID: 0 PID: 11643 Comm: syz.1.1508 Tainted: G L syzkaller #0 PREEMPT(full) [ 397.237341][T11643] Tainted: [L]=SOFTLOCKUP [ 397.237349][T11643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 397.237363][T11643] Call Trace: [ 397.237371][T11643] [ 397.237380][T11643] dump_stack_lvl+0x100/0x190 [ 397.237420][T11643] should_fail_ex.cold+0x5/0xa [ 397.237446][T11643] ? process_preds+0x4bc/0x1e10 [ 397.237480][T11643] should_failslab+0xc2/0x120 [ 397.237520][T11643] __kmalloc_noprof+0xe0/0x850 [ 397.237559][T11643] process_preds+0x4bc/0x1e10 [ 397.237600][T11643] ? create_filter_start.constprop.0+0x134/0x310 [ 397.237641][T11643] create_filter+0x140/0x210 [ 397.237677][T11643] ? __pfx_create_filter+0x10/0x10 [ 397.237715][T11643] ? find_held_lock+0x2b/0x80 [ 397.237756][T11643] apply_event_filter+0x220/0x500 [ 397.237793][T11643] ? __pfx_apply_event_filter+0x10/0x10 [ 397.237839][T11643] event_filter_write+0x16d/0x290 [ 397.237874][T11643] vfs_write+0x2aa/0x1070 [ 397.237905][T11643] ? __pfx_event_filter_write+0x10/0x10 [ 397.237930][T11643] ? __pfx_vfs_write+0x10/0x10 [ 397.237959][T11643] ? __fget_files+0x215/0x3d0 [ 397.237995][T11643] ? __fget_files+0x21f/0x3d0 [ 397.238032][T11643] ksys_write+0x12a/0x250 [ 397.238062][T11643] ? __pfx_ksys_write+0x10/0x10 [ 397.238099][T11643] do_syscall_64+0x106/0xf80 [ 397.238120][T11643] ? clear_bhb_loop+0x40/0x90 [ 397.238145][T11643] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 397.238166][T11643] RIP: 0033:0x7f556ed9c629 [ 397.238182][T11643] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 397.238203][T11643] RSP: 002b:00007f556fb9e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 397.238222][T11643] RAX: ffffffffffffffda RBX: 00007f556f015fa0 RCX: 00007f556ed9c629 [ 397.238235][T11643] RDX: 00000000000005c8 RSI: 0000000000000000 RDI: 0000000000000003 [ 397.238247][T11643] RBP: 00007f556ee32b39 R08: 0000000000000000 R09: 0000000000000000 [ 397.238264][T11643] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 397.238276][T11643] R13: 00007f556f016038 R14: 00007f556f015fa0 R15: 00007fffc6be1c38 [ 397.238303][T11643] [ 400.022348][T11704] netlink: 'syz.0.1524': attribute type 1 has an invalid length. [ 400.092038][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 400.098501][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 400.914434][T11736] FAULT_INJECTION: forcing a failure. [ 400.914434][T11736] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 400.982076][T11736] CPU: 0 UID: 0 PID: 11736 Comm: syz.0.1531 Tainted: G L syzkaller #0 PREEMPT(full) [ 400.982110][T11736] Tainted: [L]=SOFTLOCKUP [ 400.982118][T11736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 400.982130][T11736] Call Trace: [ 400.982137][T11736] [ 400.982145][T11736] dump_stack_lvl+0x100/0x190 [ 400.982180][T11736] should_fail_ex.cold+0x5/0xa [ 400.982199][T11736] ? prepare_alloc_pages+0x16d/0x5f0 [ 400.982222][T11736] should_fail_alloc_page+0xeb/0x140 [ 400.982258][T11736] prepare_alloc_pages+0x1f0/0x5f0 [ 400.982284][T11736] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 400.982316][T11736] ? finish_task_switch.isra.0+0x2c6/0xb80 [ 400.982340][T11736] ? __lock_acquire+0x4a5/0x2630 [ 400.982373][T11736] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 400.982405][T11736] ? do_raw_spin_lock+0x128/0x260 [ 400.982444][T11736] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 400.982471][T11736] ? find_held_lock+0x2b/0x80 [ 400.982508][T11736] ? __lock_acquire+0x4a5/0x2630 [ 400.982531][T11736] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 400.982564][T11736] ? policy_nodemask+0xed/0x4f0 [ 400.982597][T11736] alloc_pages_mpol+0x1fb/0x550 [ 400.982629][T11736] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 400.982660][T11736] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 400.982689][T11736] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 400.982721][T11736] folio_alloc_mpol_noprof+0x36/0x340 [ 400.982744][T11736] shmem_alloc_folio+0x135/0x160 [ 400.982767][T11736] shmem_alloc_and_add_folio+0x371/0xd40 [ 400.982800][T11736] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 400.982829][T11736] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 400.982862][T11736] shmem_get_folio_gfp+0x6ab/0x1900 [ 400.982894][T11736] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 400.982923][T11736] ? reacquire_held_locks+0xce/0x1e0 [ 400.982952][T11736] ? __mark_inode_dirty+0xff5/0x1790 [ 400.982980][T11736] shmem_fault+0x1f9/0xa20 [ 400.983007][T11736] ? __lock_acquire+0x4a5/0x2630 [ 400.983030][T11736] ? __pfx_shmem_fault+0x10/0x10 [ 400.983058][T11736] ? __up_read+0x2c5/0x700 [ 400.983094][T11736] ? __pfx_filemap_map_pages+0x10/0x10 [ 400.983120][T11736] __do_fault+0x10d/0x550 [ 400.983151][T11736] ? __pfx_filemap_map_pages+0x10/0x10 [ 400.983177][T11736] do_fault+0x2db/0x1950 [ 400.983200][T11736] __handle_mm_fault+0x180f/0x2b60 [ 400.983231][T11736] ? __pfx___handle_mm_fault+0x10/0x10 [ 400.983256][T11736] ? pte_offset_map_lock+0x174/0x320 [ 400.983287][T11736] ? find_held_lock+0x2b/0x80 [ 400.983324][T11736] ? follow_page_pte+0x5b3/0x1400 [ 400.983348][T11736] handle_mm_fault+0x36d/0xa20 [ 400.983377][T11736] __get_user_pages+0xf9c/0x34d0 [ 400.983402][T11736] ? down_read_killable+0x30e/0x4c0 [ 400.983426][T11736] ? __lock_acquire+0x4a5/0x2630 [ 400.983449][T11736] ? __pfx___get_user_pages+0x10/0x10 [ 400.983475][T11736] __gup_longterm_locked+0x279/0x16f0 [ 400.983502][T11736] ? __pfx___gup_longterm_locked+0x10/0x10 [ 400.983524][T11736] ? __get_pfnblock_flags_mask+0x140/0x250 [ 400.983544][T11736] ? find_held_lock+0x2b/0x80 [ 400.983574][T11736] ? sanity_check_pinned_pages+0x5f6/0x1250 [ 400.983597][T11736] gup_fast_fallback+0x18c6/0x2460 [ 400.983634][T11736] ? __pfx_gup_fast_fallback+0x10/0x10 [ 400.983658][T11736] ? rcu_is_watching+0x12/0xc0 [ 400.983692][T11736] pin_user_pages_fast+0xa7/0xf0 [ 400.983711][T11736] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 400.983731][T11736] ? io_pin_pages+0xc3/0x1e0 [ 400.983760][T11736] io_pin_pages+0xe6/0x1e0 [ 400.983785][T11736] io_sqe_buffer_register+0x1e8/0x2000 [ 400.983822][T11736] ? rcu_is_watching+0x12/0xc0 [ 400.983849][T11736] ? trace_kmalloc+0x101/0x130 [ 400.983867][T11736] ? __pfx_io_sqe_buffer_register+0x10/0x10 [ 400.983892][T11736] ? io_rsrc_data_alloc+0x2c/0xa0 [ 400.983921][T11736] ? copy_iovec_from_user+0x102/0x140 [ 400.983956][T11736] ? iovec_from_user+0xbb/0x140 [ 400.983992][T11736] io_sqe_buffers_register.cold+0x345/0x4c2 [ 400.984029][T11736] ? __pfx_io_sqe_buffers_register+0x10/0x10 [ 400.984054][T11736] ? __fget_files+0x215/0x3d0 [ 400.984087][T11736] ? __fget_files+0x21f/0x3d0 [ 400.984123][T11736] __do_sys_io_uring_register+0x12f9/0x1ac0 [ 400.984152][T11736] ? __pfx___do_sys_io_uring_register+0x10/0x10 [ 400.984176][T11736] ? __fget_files+0x21f/0x3d0 [ 400.984209][T11736] ? fput+0x79/0x100 [ 400.984228][T11736] ? ksys_write+0x1ac/0x250 [ 400.984256][T11736] ? __pfx_ksys_write+0x10/0x10 [ 400.984291][T11736] do_syscall_64+0x106/0xf80 [ 400.984311][T11736] ? clear_bhb_loop+0x40/0x90 [ 400.984335][T11736] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 400.984354][T11736] RIP: 0033:0x7f1a5b39c629 [ 400.984370][T11736] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 400.984390][T11736] RSP: 002b:00007f1a5c2ff028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab [ 400.984408][T11736] RAX: ffffffffffffffda RBX: 00007f1a5b615fa0 RCX: 00007f1a5b39c629 [ 400.984421][T11736] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002 [ 400.984433][T11736] RBP: 00007f1a5c2ff090 R08: 0000000000000000 R09: 0000000000000000 [ 400.984445][T11736] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000002 [ 400.984456][T11736] R13: 00007f1a5b616038 R14: 00007f1a5b615fa0 R15: 00007ffd74e73e98 [ 400.984482][T11736] [ 402.073124][T11738] misc userio: Invalid payload size [ 402.386764][T11742] mmap: syz.1.1532 (11742): VmData 45879296 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 405.336628][T11825] FAULT_INJECTION: forcing a failure. [ 405.336628][T11825] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 405.383597][T11825] CPU: 0 UID: 0 PID: 11825 Comm: syz.0.1555 Tainted: G L syzkaller #0 PREEMPT(full) [ 405.383629][T11825] Tainted: [L]=SOFTLOCKUP [ 405.383636][T11825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 405.383647][T11825] Call Trace: [ 405.383653][T11825] [ 405.383661][T11825] dump_stack_lvl+0x100/0x190 [ 405.383694][T11825] should_fail_ex.cold+0x5/0xa [ 405.383715][T11825] _copy_from_user+0x2e/0xd0 [ 405.383747][T11825] binder_ioctl+0x4e0/0x7710 [ 405.383781][T11825] ? tomoyo_path_number_perm+0x188/0x580 [ 405.383812][T11825] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 405.383844][T11825] ? __pfx_binder_ioctl+0x10/0x10 [ 405.383877][T11825] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 405.383910][T11825] ? do_vfs_ioctl+0x226/0x13e0 [ 405.383936][T11825] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 405.383968][T11825] ? hook_file_ioctl_common+0x146/0x410 [ 405.384002][T11825] ? __fget_files+0x21f/0x3d0 [ 405.384034][T11825] ? __pfx_binder_ioctl+0x10/0x10 [ 405.384060][T11825] __x64_sys_ioctl+0x18e/0x210 [ 405.384090][T11825] do_syscall_64+0x106/0xf80 [ 405.384111][T11825] ? clear_bhb_loop+0x40/0x90 [ 405.384135][T11825] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 405.384154][T11825] RIP: 0033:0x7f1a5b39c629 [ 405.384170][T11825] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 405.384189][T11825] RSP: 002b:00007f1a5c2ff028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 405.384207][T11825] RAX: ffffffffffffffda RBX: 00007f1a5b615fa0 RCX: 00007f1a5b39c629 [ 405.384220][T11825] RDX: 0000200000000000 RSI: 00000000c0306201 RDI: 0000000000000003 [ 405.384232][T11825] RBP: 00007f1a5c2ff090 R08: 0000000000000000 R09: 0000000000000000 [ 405.384243][T11825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 405.384254][T11825] R13: 00007f1a5b616038 R14: 00007f1a5b615fa0 R15: 00007ffd74e73e98 [ 405.384279][T11825] [ 406.083090][T11825] binder: 11824:11825 ioctl c0306201 200000000000 returned -14 [ 407.479949][T11874] snd_aloop snd_aloop.0: control 7:265:7::2463 is already present [ 408.058061][T11890] FAULT_INJECTION: forcing a failure. [ 408.058061][T11890] name failslab, interval 1, probability 0, space 0, times 0 [ 408.135905][T11890] CPU: 0 UID: 0 PID: 11890 Comm: syz.0.1574 Tainted: G L syzkaller #0 PREEMPT(full) [ 408.135938][T11890] Tainted: [L]=SOFTLOCKUP [ 408.135944][T11890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 408.135956][T11890] Call Trace: [ 408.135962][T11890] [ 408.135970][T11890] dump_stack_lvl+0x100/0x190 [ 408.136002][T11890] should_fail_ex.cold+0x5/0xa [ 408.136024][T11890] should_failslab+0xc2/0x120 [ 408.136056][T11890] __kmalloc_cache_noprof+0x7a/0x6f0 [ 408.136080][T11890] ? sg_read+0x27b/0x1760 [ 408.136103][T11890] ? sg_get_rq_mark+0x1b9/0x270 [ 408.136126][T11890] sg_read+0x27b/0x1760 [ 408.136153][T11890] ? iovec_from_user+0xbb/0x140 [ 408.136187][T11890] ? __pfx_sg_read+0x10/0x10 [ 408.136209][T11890] ? common_file_perm+0x1ab/0x4f0 [ 408.136240][T11890] ? __pfx_autoremove_wake_function+0x10/0x10 [ 408.136264][T11890] ? bpf_lsm_file_permission+0x9/0x10 [ 408.136293][T11890] ? security_file_permission+0x76/0x210 [ 408.136326][T11890] ? rw_verify_area+0xce/0x6d0 [ 408.136361][T11890] ? __pfx_sg_read+0x10/0x10 [ 408.136383][T11890] vfs_readv+0x5d8/0x8d0 [ 408.136416][T11890] ? __pfx_vfs_readv+0x10/0x10 [ 408.136443][T11890] ? find_held_lock+0x2b/0x80 [ 408.136487][T11890] ? __fget_files+0x21f/0x3d0 [ 408.136541][T11890] ? do_readv+0x13e/0x340 [ 408.136568][T11890] do_readv+0x13e/0x340 [ 408.136596][T11890] ? __pfx_do_readv+0x10/0x10 [ 408.136631][T11890] do_syscall_64+0x106/0xf80 [ 408.136653][T11890] ? clear_bhb_loop+0x40/0x90 [ 408.136678][T11890] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 408.136699][T11890] RIP: 0033:0x7f1a5b39c629 [ 408.136716][T11890] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 408.136736][T11890] RSP: 002b:00007f1a5c2de028 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 408.136755][T11890] RAX: ffffffffffffffda RBX: 00007f1a5b616090 RCX: 00007f1a5b39c629 [ 408.136769][T11890] RDX: 0000000000000007 RSI: 00002000000001c0 RDI: 0000000000000003 [ 408.136781][T11890] RBP: 00007f1a5c2de090 R08: 0000000000000000 R09: 0000000000000000 [ 408.136794][T11890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 408.136806][T11890] R13: 00007f1a5b616128 R14: 00007f1a5b616090 R15: 00007ffd74e73e98 [ 408.136832][T11890] [ 408.706766][T11906] misc userio: Invalid payload size [ 409.890056][T11936] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1589'. [ 410.241888][T11941] FAULT_INJECTION: forcing a failure. [ 410.241888][T11941] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 410.304750][T11941] CPU: 0 UID: 0 PID: 11941 Comm: syz.3.1591 Tainted: G L syzkaller #0 PREEMPT(full) [ 410.304782][T11941] Tainted: [L]=SOFTLOCKUP [ 410.304788][T11941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 410.304800][T11941] Call Trace: [ 410.304806][T11941] [ 410.304814][T11941] dump_stack_lvl+0x100/0x190 [ 410.304847][T11941] should_fail_ex.cold+0x5/0xa [ 410.304865][T11941] ? prepare_alloc_pages+0x16d/0x5f0 [ 410.304887][T11941] should_fail_alloc_page+0xeb/0x140 [ 410.304921][T11941] prepare_alloc_pages+0x1f0/0x5f0 [ 410.304945][T11941] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 410.304978][T11941] ? __lock_acquire+0x4a5/0x2630 [ 410.305005][T11941] ? __lock_acquire+0x4a5/0x2630 [ 410.305028][T11941] ? css_rstat_updated+0x1ce/0x5a0 [ 410.305049][T11941] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 410.305076][T11941] ? __pfx_css_rstat_updated+0x10/0x10 [ 410.305102][T11941] ? folios_put_refs+0x66d/0x840 [ 410.305134][T11941] ? __pfx_folios_put_refs+0x10/0x10 [ 410.305165][T11941] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 410.305199][T11941] ? policy_nodemask+0xed/0x4f0 [ 410.305240][T11941] alloc_pages_mpol+0x1fb/0x550 [ 410.305272][T11941] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 410.305324][T11941] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 410.305354][T11941] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 410.305389][T11941] folio_alloc_mpol_noprof+0x36/0x340 [ 410.305414][T11941] shmem_alloc_folio+0x135/0x160 [ 410.305439][T11941] shmem_alloc_and_add_folio+0x371/0xd40 [ 410.305486][T11941] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 410.305516][T11941] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 410.305549][T11941] shmem_get_folio_gfp+0x6ab/0x1900 [ 410.305582][T11941] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 410.305611][T11941] ? ktime_get_coarse_real_ts64_mg+0x235/0x300 [ 410.305635][T11941] ? lockdep_hardirqs_on+0x78/0x100 [ 410.305659][T11941] shmem_fault+0x1f9/0xa20 [ 410.305686][T11941] ? __lock_acquire+0x4a5/0x2630 [ 410.305709][T11941] ? __pfx_shmem_fault+0x10/0x10 [ 410.305738][T11941] ? __up_read+0x2c5/0x700 [ 410.305773][T11941] ? __pfx_filemap_map_pages+0x10/0x10 [ 410.305800][T11941] __do_fault+0x10d/0x550 [ 410.305832][T11941] ? __pfx_filemap_map_pages+0x10/0x10 [ 410.305859][T11941] do_fault+0x2db/0x1950 [ 410.305883][T11941] __handle_mm_fault+0x180f/0x2b60 [ 410.305914][T11941] ? __pfx___handle_mm_fault+0x10/0x10 [ 410.305940][T11941] ? pte_offset_map_lock+0x174/0x320 [ 410.305972][T11941] ? find_held_lock+0x2b/0x80 [ 410.306011][T11941] ? follow_page_pte+0x5b3/0x1400 [ 410.306035][T11941] handle_mm_fault+0x36d/0xa20 [ 410.306064][T11941] __get_user_pages+0xf9c/0x34d0 [ 410.306091][T11941] ? down_read_killable+0x30e/0x4c0 [ 410.306116][T11941] ? __lock_acquire+0x4a5/0x2630 [ 410.306139][T11941] ? __pfx___get_user_pages+0x10/0x10 [ 410.306166][T11941] __gup_longterm_locked+0x279/0x16f0 [ 410.306193][T11941] ? __pfx___gup_longterm_locked+0x10/0x10 [ 410.306216][T11941] ? __get_pfnblock_flags_mask+0x140/0x250 [ 410.306240][T11941] ? find_held_lock+0x2b/0x80 [ 410.306271][T11941] ? sanity_check_pinned_pages+0x5f6/0x1250 [ 410.306294][T11941] gup_fast_fallback+0x18c6/0x2460 [ 410.306332][T11941] ? __pfx_gup_fast_fallback+0x10/0x10 [ 410.306356][T11941] ? rcu_is_watching+0x12/0xc0 [ 410.306390][T11941] pin_user_pages_fast+0xa7/0xf0 [ 410.306410][T11941] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 410.306430][T11941] ? io_pin_pages+0xc3/0x1e0 [ 410.306460][T11941] io_pin_pages+0xe6/0x1e0 [ 410.306485][T11941] io_sqe_buffer_register+0x1e8/0x2000 [ 410.306522][T11941] ? rcu_is_watching+0x12/0xc0 [ 410.306555][T11941] ? trace_kmalloc+0x101/0x130 [ 410.306572][T11941] ? __pfx_io_sqe_buffer_register+0x10/0x10 [ 410.306598][T11941] ? io_rsrc_data_alloc+0x2c/0xa0 [ 410.306626][T11941] ? copy_iovec_from_user+0x102/0x140 [ 410.306657][T11941] ? iovec_from_user+0xbb/0x140 [ 410.306688][T11941] io_sqe_buffers_register.cold+0x345/0x4c2 [ 410.306724][T11941] ? __pfx_io_sqe_buffers_register+0x10/0x10 [ 410.306749][T11941] ? __fget_files+0x215/0x3d0 [ 410.306782][T11941] ? __fget_files+0x21f/0x3d0 [ 410.306817][T11941] __do_sys_io_uring_register+0x12f9/0x1ac0 [ 410.306847][T11941] ? __pfx___do_sys_io_uring_register+0x10/0x10 [ 410.306870][T11941] ? __fget_files+0x21f/0x3d0 [ 410.306903][T11941] ? fput+0x79/0x100 [ 410.306923][T11941] ? ksys_write+0x1ac/0x250 [ 410.306951][T11941] ? __pfx_ksys_write+0x10/0x10 [ 410.306986][T11941] do_syscall_64+0x106/0xf80 [ 410.307006][T11941] ? clear_bhb_loop+0x40/0x90 [ 410.307030][T11941] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 410.307050][T11941] RIP: 0033:0x7f9210f9c629 [ 410.307065][T11941] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 410.307084][T11941] RSP: 002b:00007f9211d79028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab [ 410.307103][T11941] RAX: ffffffffffffffda RBX: 00007f9211215fa0 RCX: 00007f9210f9c629 [ 410.307116][T11941] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002 [ 410.307128][T11941] RBP: 00007f9211d79090 R08: 0000000000000000 R09: 0000000000000000 [ 410.307140][T11941] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000002 [ 410.307151][T11941] R13: 00007f9211216038 R14: 00007f9211215fa0 R15: 00007ffd100aa768 [ 410.307177][T11941] [ 411.999704][T11955] netlink: 302 bytes leftover after parsing attributes in process `syz.0.1596'. [ 412.560914][T11967] aoe: skb alloc failure [ 412.585655][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 414.777020][T12007] FAULT_INJECTION: forcing a failure. [ 414.777020][T12007] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 414.842317][T12007] CPU: 0 UID: 0 PID: 12007 Comm: syz.3.1607 Tainted: G L syzkaller #0 PREEMPT(full) [ 414.842352][T12007] Tainted: [L]=SOFTLOCKUP [ 414.842359][T12007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 414.842371][T12007] Call Trace: [ 414.842378][T12007] [ 414.842386][T12007] dump_stack_lvl+0x100/0x190 [ 414.842424][T12007] should_fail_ex.cold+0x5/0xa [ 414.842447][T12007] _copy_to_user+0x32/0xd0 [ 414.842482][T12007] binder_ioctl+0x2914/0x7710 [ 414.842537][T12007] ? __pfx_binder_ioctl+0x10/0x10 [ 414.842565][T12007] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 414.842598][T12007] ? do_vfs_ioctl+0x226/0x13e0 [ 414.842624][T12007] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 414.842651][T12007] ? __pfx_autoremove_wake_function+0x10/0x10 [ 414.842679][T12007] ? hook_file_ioctl_common+0x146/0x410 [ 414.842719][T12007] ? __pfx_binder_ioctl+0x10/0x10 [ 414.842745][T12007] __x64_sys_ioctl+0x18e/0x210 [ 414.842772][T12007] do_syscall_64+0x106/0xf80 [ 414.842799][T12007] ? clear_bhb_loop+0x40/0x90 [ 414.842823][T12007] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 414.842843][T12007] RIP: 0033:0x7f9210f9c629 [ 414.842858][T12007] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 414.842877][T12007] RSP: 002b:00007f920f1f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 414.842896][T12007] RAX: ffffffffffffffda RBX: 00007f9211216090 RCX: 00007f9210f9c629 [ 414.842909][T12007] RDX: 0000200000000000 RSI: 00000000c0306201 RDI: 0000000000000003 [ 414.842921][T12007] RBP: 00007f920f1f6090 R08: 0000000000000000 R09: 0000000000000000 [ 414.842933][T12007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 414.842944][T12007] R13: 00007f9211216128 R14: 00007f9211216090 R15: 00007ffd100aa768 [ 414.842968][T12007] [ 415.032688][T12007] binder: 12004:12007 ioctl c0306201 200000000000 returned -14 [ 415.748679][T11988] Process accounting resumed [ 416.048423][T12041] __vm_enough_memory: pid: 12041, comm: syz.2.1618, bytes: 4398046511104 not enough memory for the allocation [ 416.174915][T12041] __vm_enough_memory: pid: 12041, comm: syz.2.1618, bytes: 4398046511104 not enough memory for the allocation [ 416.341624][T12041] __vm_enough_memory: pid: 12041, comm: syz.2.1618, bytes: 4398046511104 not enough memory for the allocation [ 416.665237][T12041] __vm_enough_memory: pid: 12041, comm: syz.2.1618, bytes: 4398046511104 not enough memory for the allocation [ 416.830503][T12041] __vm_enough_memory: pid: 12041, comm: syz.2.1618, bytes: 4398046511104 not enough memory for the allocation [ 417.438152][T12070] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1622'. [ 418.850066][T12103] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1632'. [ 420.072536][T12128] mkiss: ax0: crc mode is auto. [ 420.339446][T12135] netlink: 2468 bytes leftover after parsing attributes in process `syz.2.1640'. [ 420.410788][T12137] netlink: 2468 bytes leftover after parsing attributes in process `syz.0.1641'. [ 421.765474][ T30] audit: type=1400 audit(1771670032.507:17): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=12157 comm="syz.0.1647" [ 422.107647][T12162] nbd: illegal input index 37139 [ 422.724083][T12177] misc userio: Invalid payload size [ 422.833809][T12174] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1652'. [ 423.199473][T12189] netlink: 2468 bytes leftover after parsing attributes in process `syz.1.1655'. [ 424.070055][T12208] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input45 [ 424.425218][T12212] zswap: compressor not available [ 425.370449][T12243] misc userio: Invalid payload size [ 425.690245][T12247] snd_aloop snd_aloop.0: control 7:265:7::2463 is already present [ 425.708290][T12248] netlink: 2468 bytes leftover after parsing attributes in process `syz.3.1670'. [ 426.238669][T12264] mkiss: ax0: crc mode is auto. [ 426.803757][T12277] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1680'. [ 427.110593][T12284] FAULT_INJECTION: forcing a failure. [ 427.110593][T12284] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 427.161640][T12284] CPU: 0 UID: 0 PID: 12284 Comm: syz.0.1682 Tainted: G L syzkaller #0 PREEMPT(full) [ 427.161672][T12284] Tainted: [L]=SOFTLOCKUP [ 427.161679][T12284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 427.161691][T12284] Call Trace: [ 427.161697][T12284] [ 427.161705][T12284] dump_stack_lvl+0x100/0x190 [ 427.161738][T12284] should_fail_ex.cold+0x5/0xa [ 427.161765][T12284] _copy_to_user+0x32/0xd0 [ 427.161797][T12284] sg_read+0x127d/0x1760 [ 427.161829][T12284] ? __pfx_sg_read+0x10/0x10 [ 427.161851][T12284] ? common_file_perm+0x1ab/0x4f0 [ 427.161882][T12284] ? __pfx_autoremove_wake_function+0x10/0x10 [ 427.161906][T12284] ? bpf_lsm_file_permission+0x9/0x10 [ 427.161935][T12284] ? security_file_permission+0x76/0x210 [ 427.161967][T12284] ? rw_verify_area+0xce/0x6d0 [ 427.161995][T12284] ? __pfx_sg_read+0x10/0x10 [ 427.162017][T12284] vfs_readv+0x5d8/0x8d0 [ 427.162050][T12284] ? __pfx_vfs_readv+0x10/0x10 [ 427.162078][T12284] ? find_held_lock+0x2b/0x80 [ 427.162122][T12284] ? __fget_files+0x21f/0x3d0 [ 427.162158][T12284] ? do_readv+0x13e/0x340 [ 427.162183][T12284] do_readv+0x13e/0x340 [ 427.162210][T12284] ? __pfx_do_readv+0x10/0x10 [ 427.162243][T12284] do_syscall_64+0x106/0xf80 [ 427.162264][T12284] ? clear_bhb_loop+0x40/0x90 [ 427.162289][T12284] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 427.162309][T12284] RIP: 0033:0x7f1a5b39c629 [ 427.162324][T12284] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 427.162344][T12284] RSP: 002b:00007f1a5c2ff028 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 427.162362][T12284] RAX: ffffffffffffffda RBX: 00007f1a5b615fa0 RCX: 00007f1a5b39c629 [ 427.162376][T12284] RDX: 0000000000000007 RSI: 00002000000001c0 RDI: 0000000000000003 [ 427.162387][T12284] RBP: 00007f1a5c2ff090 R08: 0000000000000000 R09: 0000000000000000 [ 427.162399][T12284] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 427.162410][T12284] R13: 00007f1a5b616038 R14: 00007f1a5b615fa0 R15: 00007ffd74e73e98 [ 427.162435][T12284] [ 428.008984][T12306] mkiss: ax0: crc mode is auto. [ 429.270643][T12335] FAULT_INJECTION: forcing a failure. [ 429.270643][T12335] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 429.339848][T12335] CPU: 0 UID: 0 PID: 12335 Comm: syz.0.1697 Tainted: G L syzkaller #0 PREEMPT(full) [ 429.339880][T12335] Tainted: [L]=SOFTLOCKUP [ 429.339887][T12335] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 429.339899][T12335] Call Trace: [ 429.339905][T12335] [ 429.339912][T12335] dump_stack_lvl+0x100/0x190 [ 429.339946][T12335] should_fail_ex.cold+0x5/0xa [ 429.339965][T12335] ? prepare_alloc_pages+0x16d/0x5f0 [ 429.339987][T12335] should_fail_alloc_page+0xeb/0x140 [ 429.340021][T12335] prepare_alloc_pages+0x1f0/0x5f0 [ 429.340045][T12335] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 429.340078][T12335] ? __lock_acquire+0x4a5/0x2630 [ 429.340105][T12335] ? __lock_acquire+0x4a5/0x2630 [ 429.340128][T12335] ? css_rstat_updated+0x1ce/0x5a0 [ 429.340149][T12335] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 429.340176][T12335] ? __pfx_css_rstat_updated+0x10/0x10 [ 429.340202][T12335] ? folios_put_refs+0x66d/0x840 [ 429.340233][T12335] ? __pfx_folios_put_refs+0x10/0x10 [ 429.340264][T12335] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 429.340297][T12335] ? policy_nodemask+0xed/0x4f0 [ 429.340330][T12335] alloc_pages_mpol+0x1fb/0x550 [ 429.340362][T12335] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 429.340396][T12335] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 429.340424][T12335] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 429.340457][T12335] folio_alloc_mpol_noprof+0x36/0x340 [ 429.340480][T12335] shmem_alloc_folio+0x135/0x160 [ 429.340503][T12335] shmem_alloc_and_add_folio+0x371/0xd40 [ 429.340537][T12335] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 429.340571][T12335] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 429.340605][T12335] shmem_get_folio_gfp+0x6ab/0x1900 [ 429.340638][T12335] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 429.340666][T12335] ? ktime_get_coarse_real_ts64_mg+0x235/0x300 [ 429.340690][T12335] ? lockdep_hardirqs_on+0x78/0x100 [ 429.340715][T12335] shmem_fault+0x1f9/0xa20 [ 429.340746][T12335] ? __lock_acquire+0x4a5/0x2630 [ 429.340769][T12335] ? __pfx_shmem_fault+0x10/0x10 [ 429.340798][T12335] ? __up_read+0x2c5/0x700 [ 429.340834][T12335] ? __pfx_filemap_map_pages+0x10/0x10 [ 429.340861][T12335] __do_fault+0x10d/0x550 [ 429.340893][T12335] ? __pfx_filemap_map_pages+0x10/0x10 [ 429.340920][T12335] do_fault+0x2db/0x1950 [ 429.340944][T12335] __handle_mm_fault+0x180f/0x2b60 [ 429.340975][T12335] ? __pfx___handle_mm_fault+0x10/0x10 [ 429.341000][T12335] ? pte_offset_map_lock+0x174/0x320 [ 429.341032][T12335] ? find_held_lock+0x2b/0x80 [ 429.341070][T12335] ? follow_page_pte+0x5b3/0x1400 [ 429.341094][T12335] handle_mm_fault+0x36d/0xa20 [ 429.341122][T12335] __get_user_pages+0xf9c/0x34d0 [ 429.341148][T12335] ? down_read_killable+0x30e/0x4c0 [ 429.341172][T12335] ? __lock_acquire+0x4a5/0x2630 [ 429.341196][T12335] ? __pfx___get_user_pages+0x10/0x10 [ 429.341222][T12335] __gup_longterm_locked+0x279/0x16f0 [ 429.341249][T12335] ? __pfx___gup_longterm_locked+0x10/0x10 [ 429.341275][T12335] ? __get_pfnblock_flags_mask+0x140/0x250 [ 429.341295][T12335] ? find_held_lock+0x2b/0x80 [ 429.341326][T12335] ? sanity_check_pinned_pages+0x5f6/0x1250 [ 429.341350][T12335] gup_fast_fallback+0x18c6/0x2460 [ 429.341387][T12335] ? __pfx_gup_fast_fallback+0x10/0x10 [ 429.341412][T12335] ? rcu_is_watching+0x12/0xc0 [ 429.341445][T12335] pin_user_pages_fast+0xa7/0xf0 [ 429.341465][T12335] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 429.341485][T12335] ? io_pin_pages+0xc3/0x1e0 [ 429.341514][T12335] io_pin_pages+0xe6/0x1e0 [ 429.341539][T12335] io_sqe_buffer_register+0x1e8/0x2000 [ 429.341580][T12335] ? rcu_is_watching+0x12/0xc0 [ 429.341610][T12335] ? trace_kmalloc+0x101/0x130 [ 429.341627][T12335] ? __pfx_io_sqe_buffer_register+0x10/0x10 [ 429.341654][T12335] ? io_rsrc_data_alloc+0x2c/0xa0 [ 429.341682][T12335] ? copy_iovec_from_user+0x102/0x140 [ 429.341713][T12335] ? iovec_from_user+0xbb/0x140 [ 429.341745][T12335] io_sqe_buffers_register.cold+0x345/0x4c2 [ 429.341781][T12335] ? __pfx_io_sqe_buffers_register+0x10/0x10 [ 429.341805][T12335] ? __fget_files+0x215/0x3d0 [ 429.341839][T12335] ? __fget_files+0x21f/0x3d0 [ 429.341876][T12335] __do_sys_io_uring_register+0x12f9/0x1ac0 [ 429.341906][T12335] ? __pfx___do_sys_io_uring_register+0x10/0x10 [ 429.341930][T12335] ? __fget_files+0x21f/0x3d0 [ 429.341963][T12335] ? fput+0x79/0x100 [ 429.341983][T12335] ? ksys_write+0x1ac/0x250 [ 429.342011][T12335] ? __pfx_ksys_write+0x10/0x10 [ 429.342047][T12335] do_syscall_64+0x106/0xf80 [ 429.342067][T12335] ? clear_bhb_loop+0x40/0x90 [ 429.342091][T12335] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 429.342110][T12335] RIP: 0033:0x7f1a5b39c629 [ 429.342126][T12335] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 429.342146][T12335] RSP: 002b:00007f1a5c2ff028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab [ 429.342164][T12335] RAX: ffffffffffffffda RBX: 00007f1a5b615fa0 RCX: 00007f1a5b39c629 [ 429.342177][T12335] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002 [ 429.342189][T12335] RBP: 00007f1a5c2ff090 R08: 0000000000000000 R09: 0000000000000000 [ 429.342201][T12335] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000002 [ 429.342212][T12335] R13: 00007f1a5b616038 R14: 00007f1a5b615fa0 R15: 00007ffd74e73e98 [ 429.342239][T12335] [ 431.784609][T12363] mkiss: ax0: crc mode is auto. [ 432.537752][T12381] mkiss: ax0: crc mode is auto. [ 432.676451][T12383] snd_aloop snd_aloop.0: control 7:265:7::2463 is already present [ 433.146747][T12390] FAULT_INJECTION: forcing a failure. [ 433.146747][T12390] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 433.160783][T12393] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1715'. [ 433.200010][T12390] CPU: 0 UID: 0 PID: 12390 Comm: syz.0.1714 Tainted: G L syzkaller #0 PREEMPT(full) [ 433.200041][T12390] Tainted: [L]=SOFTLOCKUP [ 433.200048][T12390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 433.200060][T12390] Call Trace: [ 433.200066][T12390] [ 433.200074][T12390] dump_stack_lvl+0x100/0x190 [ 433.200107][T12390] should_fail_ex.cold+0x5/0xa [ 433.200129][T12390] _copy_to_user+0x32/0xd0 [ 433.200161][T12390] sg_read+0x127d/0x1760 [ 433.200193][T12390] ? __pfx_sg_read+0x10/0x10 [ 433.200221][T12390] ? common_file_perm+0x1ab/0x4f0 [ 433.200252][T12390] ? __pfx_autoremove_wake_function+0x10/0x10 [ 433.200275][T12390] ? bpf_lsm_file_permission+0x9/0x10 [ 433.200304][T12390] ? security_file_permission+0x76/0x210 [ 433.200337][T12390] ? rw_verify_area+0xce/0x6d0 [ 433.200364][T12390] ? __pfx_sg_read+0x10/0x10 [ 433.200387][T12390] vfs_readv+0x5d8/0x8d0 [ 433.200420][T12390] ? __pfx_vfs_readv+0x10/0x10 [ 433.200448][T12390] ? find_held_lock+0x2b/0x80 [ 433.200493][T12390] ? __fget_files+0x21f/0x3d0 [ 433.200528][T12390] ? do_readv+0x13e/0x340 [ 433.200553][T12390] do_readv+0x13e/0x340 [ 433.200580][T12390] ? __pfx_do_readv+0x10/0x10 [ 433.200613][T12390] do_syscall_64+0x106/0xf80 [ 433.200634][T12390] ? clear_bhb_loop+0x40/0x90 [ 433.200659][T12390] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 433.200679][T12390] RIP: 0033:0x7f1a5b39c629 [ 433.200695][T12390] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 433.200714][T12390] RSP: 002b:00007f1a5c2ff028 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 433.200733][T12390] RAX: ffffffffffffffda RBX: 00007f1a5b615fa0 RCX: 00007f1a5b39c629 [ 433.200745][T12390] RDX: 0000000000000007 RSI: 00002000000001c0 RDI: 0000000000000003 [ 433.200757][T12390] RBP: 00007f1a5c2ff090 R08: 0000000000000000 R09: 0000000000000000 [ 433.200768][T12390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 433.200780][T12390] R13: 00007f1a5b616038 R14: 00007f1a5b615fa0 R15: 00007ffd74e73e98 [ 433.200804][T12390] [ 433.889872][T12411] FAULT_INJECTION: forcing a failure. [ 433.889872][T12411] name failslab, interval 1, probability 0, space 0, times 0 [ 433.916858][T12411] CPU: 0 UID: 0 PID: 12411 Comm: syz.2.1716 Tainted: G L syzkaller #0 PREEMPT(full) [ 433.916891][T12411] Tainted: [L]=SOFTLOCKUP [ 433.916898][T12411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 433.916910][T12411] Call Trace: [ 433.916917][T12411] [ 433.916925][T12411] dump_stack_lvl+0x100/0x190 [ 433.916958][T12411] should_fail_ex.cold+0x5/0xa [ 433.916981][T12411] should_failslab+0xc2/0x120 [ 433.917016][T12411] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 433.917044][T12411] ? vm_area_alloc+0x1f/0x160 [ 433.917068][T12411] ? vma_merge_new_range+0x38b/0xa30 [ 433.917094][T12411] ? __sanitizer_cov_trace_const_cmp8+0x20/0x20 [ 433.917131][T12411] vm_area_alloc+0x1f/0x160 [ 433.917163][T12411] __mmap_region+0x10cc/0x29e0 [ 433.917195][T12411] ? __pfx___mmap_region+0x10/0x10 [ 433.917228][T12411] ? set_next_entity+0x11b/0x9c0 [ 433.917262][T12411] ? __lock_acquire+0x4a5/0x2630 [ 433.917286][T12411] ? find_held_lock+0x2b/0x80 [ 433.917328][T12411] ? find_held_lock+0x2b/0x80 [ 433.917359][T12411] ? finish_task_switch.isra.0+0x200/0xb80 [ 433.917379][T12411] ? finish_task_switch.isra.0+0x200/0xb80 [ 433.917409][T12411] ? trace_sched_exit_tp+0x13a/0x180 [ 433.917432][T12411] ? __schedule+0x1000/0x60e0 [ 433.917482][T12411] ? rcu_is_watching+0x12/0xc0 [ 433.917512][T12411] ? cap_capable+0x107/0x460 [ 433.917542][T12411] mmap_region+0x180/0x3e0 [ 433.917574][T12411] do_mmap+0xc63/0x12f0 [ 433.917598][T12411] ? __pfx_do_mmap+0x10/0x10 [ 433.917618][T12411] ? __pfx_down_write_killable+0x10/0x10 [ 433.917649][T12411] vm_mmap_pgoff+0x29e/0x470 [ 433.917674][T12411] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 433.917696][T12411] ? do_futex+0x192/0x350 [ 433.917721][T12411] ? __pfx_do_futex+0x10/0x10 [ 433.917751][T12411] ksys_mmap_pgoff+0xe1/0x650 [ 433.917784][T12411] ? __x64_sys_futex+0x34f/0x4d0 [ 433.917808][T12411] ? __x64_sys_futex+0x358/0x4d0 [ 433.917834][T12411] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 433.917867][T12411] ? xfd_validate_state+0x129/0x190 [ 433.917900][T12411] __x64_sys_mmap+0x125/0x190 [ 433.917932][T12411] do_syscall_64+0x106/0xf80 [ 433.917953][T12411] ? clear_bhb_loop+0x40/0x90 [ 433.917978][T12411] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 433.917999][T12411] RIP: 0033:0x7f4de9d9c629 [ 433.918016][T12411] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 433.918036][T12411] RSP: 002b:00007f4deac86028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 433.918056][T12411] RAX: ffffffffffffffda RBX: 00007f4dea016270 RCX: 00007f4de9d9c629 [ 433.918069][T12411] RDX: 00000000000000df RSI: 000000000000e983 RDI: 0000000000000000 [ 433.918081][T12411] RBP: 00007f4de9e32b39 R08: 0000000000000401 R09: 0000000000008000 [ 433.918095][T12411] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 433.918107][T12411] R13: 00007f4dea016308 R14: 00007f4dea016270 R15: 00007ffc82d0eac8 [ 433.918133][T12411] [ 434.500789][T12424] aoe: skb alloc failure [ 434.521362][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 434.527720][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 434.573515][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 434.583687][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 435.282096][T12444] random: crng reseeded on system resumption [ 435.577809][T12451] mkiss: ax0: crc mode is auto. [ 435.850383][T12458] mkiss: ax0: crc mode is auto. [ 436.025662][T12461] snd_aloop snd_aloop.0: control 7:265:7::2463 is already present [ 436.049935][T12463] vhci_hcd vhci_hcd.2: invalid port number 16 [ 436.069229][T12463] vhci_hcd vhci_hcd.2: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub [ 437.353199][T12485] mkiss: ax0: crc mode is auto. [ 437.650554][T12489] mkiss: ax0: crc mode is auto. [ 437.665417][T12492] mkiss: ax1: crc mode is auto. [ 437.999147][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 438.012339][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 438.181464][T12508] FAULT_INJECTION: forcing a failure. [ 438.181464][T12508] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 438.219197][T12508] CPU: 0 UID: 0 PID: 12508 Comm: syz.2.1748 Tainted: G L syzkaller #0 PREEMPT(full) [ 438.219229][T12508] Tainted: [L]=SOFTLOCKUP [ 438.219236][T12508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 438.219247][T12508] Call Trace: [ 438.219254][T12508] [ 438.219261][T12508] dump_stack_lvl+0x100/0x190 [ 438.219293][T12508] should_fail_ex.cold+0x5/0xa [ 438.219316][T12508] _copy_to_user+0x32/0xd0 [ 438.219347][T12508] sg_read+0x127d/0x1760 [ 438.219379][T12508] ? __pfx_sg_read+0x10/0x10 [ 438.219401][T12508] ? common_file_perm+0x1ab/0x4f0 [ 438.219432][T12508] ? __pfx_autoremove_wake_function+0x10/0x10 [ 438.219455][T12508] ? bpf_lsm_file_permission+0x9/0x10 [ 438.219484][T12508] ? security_file_permission+0x76/0x210 [ 438.219516][T12508] ? rw_verify_area+0xce/0x6d0 [ 438.219543][T12508] ? __pfx_sg_read+0x10/0x10 [ 438.219565][T12508] vfs_readv+0x5d8/0x8d0 [ 438.219597][T12508] ? __pfx_vfs_readv+0x10/0x10 [ 438.219624][T12508] ? find_held_lock+0x2b/0x80 [ 438.219668][T12508] ? __fget_files+0x21f/0x3d0 [ 438.219704][T12508] ? do_readv+0x13e/0x340 [ 438.219729][T12508] do_readv+0x13e/0x340 [ 438.219756][T12508] ? __pfx_do_readv+0x10/0x10 [ 438.219795][T12508] do_syscall_64+0x106/0xf80 [ 438.219816][T12508] ? clear_bhb_loop+0x40/0x90 [ 438.219840][T12508] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 438.219860][T12508] RIP: 0033:0x7f4de9d9c629 [ 438.219876][T12508] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 438.219895][T12508] RSP: 002b:00007f4deacc8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 438.219914][T12508] RAX: ffffffffffffffda RBX: 00007f4dea016090 RCX: 00007f4de9d9c629 [ 438.219927][T12508] RDX: 0000000000000007 RSI: 00002000000001c0 RDI: 0000000000000003 [ 438.219938][T12508] RBP: 00007f4deacc8090 R08: 0000000000000000 R09: 0000000000000000 [ 438.219950][T12508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 438.219961][T12508] R13: 00007f4dea016128 R14: 00007f4dea016090 R15: 00007ffc82d0eac8 [ 438.219986][T12508] [ 438.435496][T12513] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input47 [ 438.824955][T12520] mkiss: ax0: crc mode is auto. [ 439.403985][T12528] ima: policy update failed [ 439.432715][ T30] audit: type=1802 audit(1771670050.158:18): pid=12528 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1756" res=0 errno=0 [ 439.776859][T12540] FAULT_INJECTION: forcing a failure. [ 439.776859][T12540] name failslab, interval 1, probability 0, space 0, times 0 [ 439.838621][T12540] CPU: 0 UID: 0 PID: 12540 Comm: syz.0.1757 Tainted: G L syzkaller #0 PREEMPT(full) [ 439.838661][T12540] Tainted: [L]=SOFTLOCKUP [ 439.838668][T12540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 439.838681][T12540] Call Trace: [ 439.838687][T12540] [ 439.838694][T12540] dump_stack_lvl+0x100/0x190 [ 439.838729][T12540] should_fail_ex.cold+0x5/0xa [ 439.838752][T12540] should_failslab+0xc2/0x120 [ 439.838786][T12540] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 439.838814][T12540] ? security_inode_alloc+0x3b/0x2c0 [ 439.838843][T12540] ? lockdep_init_map_type+0x5c/0x250 [ 439.838873][T12540] security_inode_alloc+0x3b/0x2c0 [ 439.838901][T12540] inode_init_always_gfp+0xced/0x1040 [ 439.838938][T12540] alloc_inode+0x8e/0x250 [ 439.838962][T12540] new_inode+0x22/0x1c0 [ 439.838988][T12540] shmem_get_inode+0x212/0x1040 [ 439.839015][T12540] ? __pfx_shmem_get_inode+0x10/0x10 [ 439.839038][T12540] ? rcu_is_watching+0x12/0xc0 [ 439.839067][T12540] ? percpu_counter_add_batch+0xb9/0x230 [ 439.839105][T12540] __shmem_file_setup+0x3ac/0x490 [ 439.839131][T12540] ? __pfx___shmem_file_setup+0x10/0x10 [ 439.839161][T12540] ? vm_area_alloc+0x1f/0x160 [ 439.839188][T12540] shmem_zero_setup+0x96/0x1b0 [ 439.839219][T12540] __mmap_region+0x2198/0x29e0 [ 439.839252][T12540] ? __pfx___mmap_region+0x10/0x10 [ 439.839320][T12540] ? lockdep_hardirqs_on+0x78/0x100 [ 439.839342][T12540] ? finish_task_switch.isra.0+0x205/0xb80 [ 439.839364][T12540] ? rcu_is_watching+0x12/0xc0 [ 439.839423][T12540] ? rcu_is_watching+0x12/0xc0 [ 439.839452][T12540] ? cap_capable+0x107/0x460 [ 439.839482][T12540] mmap_region+0x180/0x3e0 [ 439.839514][T12540] do_mmap+0xc63/0x12f0 [ 439.839538][T12540] ? __pfx_do_mmap+0x10/0x10 [ 439.839558][T12540] ? __pfx_down_write_killable+0x10/0x10 [ 439.839589][T12540] vm_mmap_pgoff+0x29e/0x470 [ 439.839613][T12540] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 439.839635][T12540] ? do_futex+0x192/0x350 [ 439.839665][T12540] ? __pfx_do_futex+0x10/0x10 [ 439.839694][T12540] ksys_mmap_pgoff+0xe1/0x650 [ 439.839727][T12540] ? __x64_sys_futex+0x34f/0x4d0 [ 439.839752][T12540] ? __x64_sys_futex+0x358/0x4d0 [ 439.839777][T12540] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 439.839811][T12540] ? xfd_validate_state+0x129/0x190 [ 439.839845][T12540] __x64_sys_mmap+0x125/0x190 [ 439.839877][T12540] do_syscall_64+0x106/0xf80 [ 439.839897][T12540] ? clear_bhb_loop+0x40/0x90 [ 439.839923][T12540] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 439.839943][T12540] RIP: 0033:0x7f1a5b39c629 [ 439.839960][T12540] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 439.839980][T12540] RSP: 002b:00007f1a5c2bd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 439.839999][T12540] RAX: ffffffffffffffda RBX: 00007f1a5b616180 RCX: 00007f1a5b39c629 [ 439.840013][T12540] RDX: 00000000000000df RSI: 000000000000e983 RDI: 0000000000000000 [ 439.840025][T12540] RBP: 00007f1a5b432b39 R08: 0000000000000401 R09: 0000000000008000 [ 439.840037][T12540] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 439.840049][T12540] R13: 00007f1a5b616218 R14: 00007f1a5b616180 R15: 00007ffd74e73e98 [ 439.840076][T12540] [ 440.232035][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.238568][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.343169][T12544] ------------[ cut here ]------------ [ 440.348845][T12544] !reader [ 440.348861][T12544] WARNING: kernel/trace/ring_buffer.c:7381 at ring_buffer_map_get_reader+0x659/0x880, CPU#0: syz.3.1762/12544 [ 440.363440][T12544] Modules linked in: [ 440.367489][T12544] CPU: 0 UID: 0 PID: 12544 Comm: syz.3.1762 Tainted: G L syzkaller #0 PREEMPT(full) [ 440.378427][T12544] Tainted: [L]=SOFTLOCKUP [ 440.382752][T12544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 440.392809][T12544] RIP: 0010:ring_buffer_map_get_reader+0x659/0x880 [ 440.399335][T12544] Code: ff e8 bb d6 fb ff 48 8d 3d 04 43 d1 0e 4c 89 fe 67 48 0f b9 3a e9 e0 fc ff ff 4c 8b 7c 24 58 4c 8b 74 24 60 e8 98 d6 fb ff 90 <0f> 0b 90 e8 8f d6 fb ff 48 89 df 31 db e8 25 12 fe ff 48 8b 74 24 [ 440.418958][T12544] RSP: 0018:ffffc9000565fd90 EFLAGS: 00010083 [ 440.425039][T12544] RAX: 000000000000079e RBX: ffff88813fea5000 RCX: ffffc90006c49000 [ 440.433011][T12544] RDX: 0000000000080000 RSI: ffffffff820c2468 RDI: ffff88804bfadac0 [ 440.440978][T12544] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000 [ 440.448948][T12544] R10: 0000000000000000 R11: ffff88813fea50b0 R12: ffff88813fea50b0 [ 440.456921][T12544] R13: dffffc0000000000 R14: ffff88813fea5190 R15: ffff88813fea5018 [ 440.464893][T12544] FS: 00007f9211d796c0(0000) GS:ffff888124351000(0000) knlGS:0000000000000000 [ 440.473826][T12544] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 440.480410][T12544] CR2: 0000001b30f01ff8 CR3: 00000000280c8000 CR4: 00000000003526f0 [ 440.488390][T12544] Call Trace: [ 440.491667][T12544] [ 440.494623][T12544] ? __pfx_ring_buffer_map_get_reader+0x10/0x10 [ 440.500883][T12544] ? __fget_files+0x21f/0x3d0 [ 440.505575][T12544] tracing_buffers_ioctl+0x30d/0x400 [ 440.510881][T12544] ? __pfx_tracing_buffers_ioctl+0x10/0x10 [ 440.516694][T12544] __x64_sys_ioctl+0x18e/0x210 [ 440.521486][T12544] do_syscall_64+0x106/0xf80 [ 440.526091][T12544] ? clear_bhb_loop+0x40/0x90 [ 440.530773][T12544] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 440.536669][T12544] RIP: 0033:0x7f9210f9c629 [ 440.541086][T12544] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 440.560718][T12544] RSP: 002b:00007f9211d79028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 440.569132][T12544] RAX: ffffffffffffffda RBX: 00007f9211215fa0 RCX: 00007f9210f9c629 [ 440.577100][T12544] RDX: 0000000000000000 RSI: 0000000000005220 RDI: 0000000000000004 [ 440.585071][T12544] RBP: 00007f9211032b39 R08: 0000000000000000 R09: 0000000000000000 [ 440.593057][T12544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 440.601046][T12544] R13: 00007f9211216038 R14: 00007f9211215fa0 R15: 00007ffd100aa768 [ 440.609032][T12544] [ 440.612065][T12544] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 440.619365][T12544] CPU: 0 UID: 0 PID: 12544 Comm: syz.3.1762 Tainted: G L syzkaller #0 PREEMPT(full) [ 440.630314][T12544] Tainted: [L]=SOFTLOCKUP [ 440.634656][T12544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 440.644707][T12544] Call Trace: [ 440.647983][T12544] [ 440.650912][T12544] dump_stack_lvl+0x100/0x190 [ 440.655608][T12544] vpanic+0x552/0x970 [ 440.659598][T12544] ? __pfx_vpanic+0x10/0x10 [ 440.664110][T12544] panic+0xd1/0xe0 [ 440.667833][T12544] ? __pfx_panic+0x10/0x10 [ 440.672257][T12544] check_panic_on_warn.cold+0x19/0x34 [ 440.677629][T12544] ? ring_buffer_map_get_reader+0x659/0x880 [ 440.683533][T12544] __warn.cold+0x191/0x348 [ 440.687958][T12544] __report_bug+0x296/0x3d0 [ 440.692473][T12544] ? ring_buffer_map_get_reader+0x659/0x880 [ 440.698379][T12544] ? __pfx___report_bug+0x10/0x10 [ 440.703404][T12544] ? add_lock_to_list+0x99/0x110 [ 440.708344][T12544] ? lockdep_unlock+0x5a/0xc0 [ 440.713017][T12544] ? rb_set_head_page+0x1e6/0x2f0 [ 440.718044][T12544] ? ring_buffer_map_get_reader+0x659/0x880 [ 440.723951][T12544] report_bug+0xb2/0x220 [ 440.728201][T12544] ? ring_buffer_map_get_reader+0x659/0x880 [ 440.734107][T12544] handle_bug+0x166/0x2a0 [ 440.738443][T12544] exc_invalid_op+0x17/0x50 [ 440.742952][T12544] asm_exc_invalid_op+0x1a/0x20 [ 440.747800][T12544] RIP: 0010:ring_buffer_map_get_reader+0x659/0x880 [ 440.754316][T12544] Code: ff e8 bb d6 fb ff 48 8d 3d 04 43 d1 0e 4c 89 fe 67 48 0f b9 3a e9 e0 fc ff ff 4c 8b 7c 24 58 4c 8b 74 24 60 e8 98 d6 fb ff 90 <0f> 0b 90 e8 8f d6 fb ff 48 89 df 31 db e8 25 12 fe ff 48 8b 74 24 [ 440.773923][T12544] RSP: 0018:ffffc9000565fd90 EFLAGS: 00010083 [ 440.779991][T12544] RAX: 000000000000079e RBX: ffff88813fea5000 RCX: ffffc90006c49000 [ 440.787959][T12544] RDX: 0000000000080000 RSI: ffffffff820c2468 RDI: ffff88804bfadac0 [ 440.795926][T12544] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000 [ 440.803917][T12544] R10: 0000000000000000 R11: ffff88813fea50b0 R12: ffff88813fea50b0 [ 440.811884][T12544] R13: dffffc0000000000 R14: ffff88813fea5190 R15: ffff88813fea5018 [ 440.819864][T12544] ? ring_buffer_map_get_reader+0x658/0x880 [ 440.825792][T12544] ? __pfx_ring_buffer_map_get_reader+0x10/0x10 [ 440.832055][T12544] ? __fget_files+0x21f/0x3d0 [ 440.836744][T12544] tracing_buffers_ioctl+0x30d/0x400 [ 440.842037][T12544] ? __pfx_tracing_buffers_ioctl+0x10/0x10 [ 440.847854][T12544] __x64_sys_ioctl+0x18e/0x210 [ 440.852628][T12544] do_syscall_64+0x106/0xf80 [ 440.857217][T12544] ? clear_bhb_loop+0x40/0x90 [ 440.861900][T12544] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 440.867794][T12544] RIP: 0033:0x7f9210f9c629 [ 440.872206][T12544] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 440.891822][T12544] RSP: 002b:00007f9211d79028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 440.900234][T12544] RAX: ffffffffffffffda RBX: 00007f9211215fa0 RCX: 00007f9210f9c629 [ 440.908201][T12544] RDX: 0000000000000000 RSI: 0000000000005220 RDI: 0000000000000004 [ 440.916166][T12544] RBP: 00007f9211032b39 R08: 0000000000000000 R09: 0000000000000000 [ 440.924130][T12544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 440.932096][T12544] R13: 00007f9211216038 R14: 00007f9211215fa0 R15: 00007ffd100aa768 [ 440.940078][T12544] [ 440.943176][T12544] Kernel Offset: disabled [ 440.947499][T12544] Rebooting in 86400 seconds..