last executing test programs: 9.98236331s ago: executing program 0 (id=699): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/snd_hda_intel/parameters/bdl_pos_adj\x00', 0x80102, 0x0) r1 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r1, 0x29, 0x18, 0x0, 0x110) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r2, 0x4bfa, 0x1) r3 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(r3, 0x400, 0x1) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_PROTOCOL_FEATURES(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r4, 0x20, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000850}, 0xc08c) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) r5 = socket$nl_generic(0x10, 0x3, 0x10) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) sysfs$auto(0x2, 0x23, 0x0) r6 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r6, 0x0, 0x4) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) shutdown$auto(0x200000003, 0x2) sendmsg$auto_NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="a001ee", @ANYRES16=r4, @ANYBLOB], 0x1a0}, 0x1, 0x0, 0x0, 0x4040004}, 0x24048000) syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000300), r5) sendfile$auto(r0, r0, 0x0, 0x3) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D1p\x00', 0x121001, 0x0) 8.626696419s ago: executing program 3 (id=702): mmap$auto(0x0, 0x9, 0x3, 0x800019b72, 0x9, 0x8000000000008000) prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x7) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mincore$auto(0x0, 0x10000, 0x0) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) socket(0x2, 0x801, 0x106) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x0, 0x1, 0x0, 0x2) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x8f3b7a51b80ebd01, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000002940)='/dev/fb0\x00', 0x841, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2242, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_NEW_MPATH(r2, 0x0, 0x20080055) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x942, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x0, 0x1, 0x948b, 0x9, 0x15f4da07, 0x6, 0x10, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x8]}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x4, 0xbc3, 0x800, 0x3, 0x8, 0x10001, 0x400000000003, 0x3, 0xfffffffffffffffc, 0xfffffffffffffffe, 0x6, 0x9, 0xffffdfffffffff81, 0x4]}, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) r3 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) write$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000040)="205c2020207e0dc0023af10e9bfa1babfa203753ca9a20370a", 0x19) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r4) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WOWLAN(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010028bd7000fedbdf257a000000080003", @ANYRES32=r6], 0x1c}, 0x1, 0x0, 0x0, 0x2400c815}, 0x804) sendmsg$auto_IEEE802154_SCAN_REQ(r3, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x54, 0x0, 0x10, 0x70bd25, 0x25dfdbff, {}, [@IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0x7}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, 0x77d}, @IEEE802154_ATTR_CHANNELS={0x8, 0x14, 0x6}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, 0x8}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x9}, @IEEE802154_ATTR_CAPABILITY={0x5, 0x11, 0xf}]}, 0x54}}, 0x40844) 8.483569887s ago: executing program 2 (id=703): setgroups$auto(0x0, 0x0) io_uring_setup$auto(0x101, &(0x7f0000000000)={0xee, 0x0, 0x1, 0x0, 0x0, 0x9df4, 0xffffffffffffffff, [0x80000001, 0x4, 0x6], {0x10001, 0xa, 0x5, 0x8, 0xc3, 0x80000000, 0x2, 0x80000001, 0xfff}, {0x3, 0x9, 0x8, 0x1, 0xfffffff2, 0x0, 0x7, 0x6, 0x4}}) setgroups$auto(0x7, &(0x7f00000000c0)=0x1e) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) memfd_create$auto(0x0, 0xd) ftruncate$auto(0x0, 0x8800000) getgroups$auto(0x7fd, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x11, 0x2, 0x2) socket(0xa, 0x3, 0x3a) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0xa, 0x5, 0x0) openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x40001, 0x0) open(&(0x7f0000000040)='./file1\x00', 0x165840, 0x151) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(r0, &(0x7f00000001c0)={{0x0, 0x1aa, 0x0, 0x6, 0x0, 0x0, 0x1002}, 0x5}, 0x2, 0x100) bpf$auto(0xf7fff011, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x4, 0x8, 0x468, 0x9, 0x2, 0x8, 0x3, 0x4, 0x1fb, 0x5, 0xb5, 0x4, 0x806, 0x3}, 0xa3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) fcntl$auto(0x8000000000000001, 0x26, 0x8) io_uring_setup$auto(0x1, 0x0) fcntl$auto(0x8000000000000001, 0x26, 0x0) writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040), 0x1}, 0x200) acct$auto(&(0x7f0000000080)='+:(-),\x00') 8.10591463s ago: executing program 2 (id=704): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capset$auto(&(0x7f0000000100)={0x20080522}, 0x0) prctl$auto(0x7, 0x3f7, 0x0, 0xffffffffffffffff, 0x6) shmctl$auto_IPC_STAT(0xffff, 0x2, &(0x7f00000001c0)={{0x76f8c966, 0xee00, 0xffffffffffffffff, 0x4, 0x3, 0x20000003, 0x8}, 0x8, 0xce, 0x3, 0x4, @raw=0x1, @inferred=0xffffffffffffffff, 0x4, 0x0, &(0x7f0000000280)="072646921a727bd9233ac9ad591af2a532e3c46623665b66c010da25d3609241b85422cfeffd62c863e1bd26d3ec3bb02940cb4e76c1e26eaf0ee7148191ecbc63fd104bf941581b848652331bc1ead1ce621cf97e3d1bae67e83df75a6574a462d7153aa6b168a1dc", &(0x7f0000000180)}) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0) ioctl$auto(r1, 0x5646, r1) read$auto_v4l2_fops_v4l2_dev(r1, 0x0, 0x0) ioctl$auto(r1, 0x2400000, 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000005800)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000057c0)={0x0}, 0x1, 0x0, 0x0, 0x8c0}, 0x1) sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[], 0x40}, 0x1, 0x0, 0x0, 0x20008000}, 0x8044) openat$auto_ima_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) preadv$auto(0x40000000000003, 0x0, 0x6, 0xe27c, 0x8) sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffffffd}, 0x10004}, 0x5, 0x20000000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) madvise$auto(0x0, 0xff7fffffffff0001, 0x15) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, 0x0, 0x80, 0x0) mmap$auto(0xb, 0x2020005, 0x1, 0xfffffffffffff593, 0xffffffffffffffff, 0xffffffff) 7.439508762s ago: executing program 0 (id=707): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001700), r0) getsockopt$auto_SO_RXQ_OVFL(r0, 0x8, 0x28, &(0x7f0000000500)=',{\x00', 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto_seq_oss_f_ops_seq_oss(r1, &(0x7f0000000040)="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", 0x4b9) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r2, &(0x7f0000003400)={0x0, 0xffffffffffffff08, &(0x7f00000033c0)={&(0x7f0000000000)={0x14, 0x0, 0x301, 0x70bd29, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) madvise$auto(0x0, 0xffffff7fffff0005, 0x8) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) socket(0x2, 0x3, 0x6) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/036/001\x00', 0xa901, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x0, 0x0) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) io_uring_setup$auto(0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x5b, 0x1, 0x420000, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS2\x00', 0x101f81, 0x0) 7.150865851s ago: executing program 0 (id=708): select$auto(0x4, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x7, 0x2, 0x1, 0x948b, 0x1000000000000004, 0x15f4da0a, 0x39, 0x3, 0x2fffffffffffffe, 0x80000002, 0x7a142c64, 0x6d3c, 0x5, 0x80, 0xfb]}, 0x0) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D1p\x00', 0x2480, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/fs/ocfs2/loaded_cluster_plugins\x00', 0x800, 0x0) syz_clone(0x4000, &(0x7f00000002c0)="f03f0b0be4f2597d8b11ed14dfa636ba", 0x10, 0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/i8042/serio1/rate\x00', 0x2, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cpu.max\x00', 0x2a02c0, 0x0) sendfile$auto(r0, r0, &(0x7f0000000000)=0x3, 0xad6) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0) ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20800, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x3, 0x3}, 0x18, 0x0) read$auto(r3, 0x0, 0x20) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/fs/cifs/LinuxExtensionsEnabled\x00', 0x48043, 0x0) write$auto(r4, 0x0, 0x6) unshare$auto(0x40000080) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001180)='/sys/devices/virtual/block/zram0/compact\x00', 0x20001, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000000)="b2", 0x1) r6 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0) sendfile$auto(r1, r6, 0x0, 0x1) 6.783279851s ago: executing program 3 (id=709): unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff) madvise$auto(0x0, 0x2003f2, 0x15) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) r3 = openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, &(0x7f00000013c0)='/proc/self/uid_map\x00', 0x8006, 0x0) write$auto_proc_uid_map_operations_base(r3, 0x0, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0xa8, r2, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_SCOPE={0x81, 0x4, 'nfsf\x00\xd8\xef\xe4-\x13+r\xf3\fT1Z\xa7J[\x81\a\xcf-\xdf\x90\x1f\x8f\xc8\x13e\xe2R7D\x832j\xce}\xa3V\xb7\xa1o\\\xe6\x13\xbc\f\xe3\xae\xb8~\xd3\xd2+J\'\xc3\xec\xc9\fp\xc8a\xbe\xfe`\xa7\xa9AKDd\'\xa0\x01\xf6\x13y\xe8\xca\xf4Q\x9e\x03*]\xda\x1e\x11t\xe2\xd5uw+\x93\xfc\x04l\xd3\xa6t\x86k\x80\xd9\x14s\xec\xe2H\xc0=(\xf99\x8ac\xa7\x85\x99\x87'}, @NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x85}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0xa8}}, 0x4000) madvise$auto(0x0, 0x200007, 0x19) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x404001, 0x0) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) bpf$auto(0xfffffffe, &(0x7f00000001c0)=@query={@target_fd, 0x8, 0x3, 0x5, 0xff, @count=0xe35c, 0x0, 0x5, 0x80000000000006, 0xd9, 0xffffffff}, 0x6f2) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000880}, 0x20008000) socket(0x10, 0x2, 0x0) syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000280), 0xffffffffffffffff) 4.922311089s ago: executing program 2 (id=710): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x81, 0x0) ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000840)="13") r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r1, 0x0, 0x4048800) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x0, 0x10000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x7fff, 0x2) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x8002, 0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_OVS_VPORT_CMD_GET(r1, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000880)={0x1018, 0x0, 0x1, 0x70bd2c, 0xfffffffa, {}, [@OVS_VPORT_ATTR_UPCALL_PID={0x1004, 0x5, "13b07e2248fd7a60d3a8ad4dd18f028836cf63a762709e57a20f2cf961375195953ad84c635b4b141fe639c039db2f82a5a4144554fea50a357fb4dc0e06ab5fdc5bddd8d166b27f9e644aac252cb35964811c6f155654ebeb8239f06c57eefabba2f86898ae98056280be3561e7479dc3fbe54cf8ce7e58a24e46088c120b66321533196199ea73844c7e86a8c3e520e7b56ad671ab5dcd39a7366c5cc05beda92f4eeb1d1bd0b83266d458b80b5602a896818ffe613bb97a0f6f7acc871c1b00e1e5f7968bec7810c7e23d0fa7026b34870511f8af91f83a9f9afd2229917e1c56bd157ef07888cecdf550257276c465980f9d9aec31f6899ea0fffc817fc977731d490fd175970b662c5b1fe9d3d9065e2bdb187d4792bc64c032a84f57e872bb16a4a2d706c908fc2af032d60fc460d7ee560e9b1fcca655d2644f0f4b9108309d694b1e1eafe13b76e7d11f697b094dc60920e38fdaa4adab807ad04cccb0cf012ce33c9ab62bde10391e93d64a0d7adcaab16b3e4f78f48eb80884a6a5df66d0dda37a9816c8be98791726de1ba9eecf30a3cbd4599e658213239330a7350e5dea8434931b9730639d7809be3217ce5d5bf545494a944915a9f2ec58ddd5e41f8af0e0f8c346fde90bb336dfc733ede9955fb04daaed86eadd7fec91ee47995801c7e23b134b338c4eaa3e7c2844d5c3db86f5c4762bd144b590408f01f5e3822bce04787d43fdf028981bd59c66c7ec9169b385d17b67d4553091bde8706203f215ec66c288790461bc5066284179a5162d358a4376aa5fa41e07358fe4ed5fd4035015801720b932a76771e57be963b67f7b6d66bc40c8160b5f7e7d2b87700f069b44628251fa7d0f7d58839c1477639c82933dc558d7727070286c84e6c64006fc805e35b2b4c79337074c49f4ac25db4885ce957d9aa77fc385ba7687c6a097564a73bee812a740d6ed9428517d7341d9207f9ed020cff4670379d50f37f5098d4baccb537e76903a8a1bd9ba3118596e399a128c05761ebe9d12dd66064b2f4a23d1f76c0c93a1650c79a3b170caac24af74bb81a0e80f052c265792c1e0f757adf7dcff2afcc0e74337987673808c0abdf28cb278bcafb536d67e4cbe831d552c95995ea5e4fd33fdf1707573fca1a7e4a1622276278b4ece827fff8f2306a5be58106bfb841695cb9b27f48bfac134479e1eb820b6b32630e85999337287f41378cde89be700df3984db5663888d4d2e00c74383a3cc6765cb3eb2b9193ba34b9c39f04909497f358844733cd4db26c827b3081604d7dfc90f7de65df843faf8660a0b646cc7e93f8e073d90e7842630ee2069688d778ca29d632a7d61b0dc904c5dae0a3f63cbb111f3b1bae96048ddc4a0590b86fb37e06a82aa98d493f1840258ab051d9cfcd94700ac96aa1603a3c23679802f27d10c4187019cf5fe404047a51e1f19f1cd3743f4b5edb62640a14240f2a91de918c4191cb801636184cd03ef76be2bf28f7c69c367e11e336a001a1b833b24d08f21448bc9773adeddba30d5ee7021650876135742da1619ca1be92a54208cc5a696c17fa91f59fe39b28b9c0ee0b8d189c397af452b9c260dc68fe0a13ecc79bec7a9e6de497975f310b679cba440f3338fa644e4c8e64fc6e6c247999567107f0f1976a3473f25f1a6e0486d3abe6c48c444f9e09ddd74b060b5a7d22270cc45666a16784c9683c988b3401be7780ad00f3eb2db8e1ae4431955a435217bb08b3736f7b9f1c0e6e1a6137655219fbe0283295e2ecf741d18c01a7ff35285e122b650cec74d2d00607761aa4820c006146535930574ddcf1fc0de18c5ee1480f4460c532baaf74471ed6c95bf69395873349ed44ed05ad29a1ee090f5eddce990a159cfcab31068573bf8862817dc8add08c5f6fb93245f8e5275b276d78026922ecea51923d16dc6c1f8e95451e17309de2f38f22aab64bc2c3f3d14ca8f6e076041e36ec948f252a25fed86853cff76af381f5adaeb20599572d8f0f2308fc2b50fa6d308ce8c0d1ef62d421eacfcdc1a360d029e08746c90c4986823eee59d311ddd2c5324d187292e9e42ba234f05ca41c17a00d9e4b1c94ff6c4beb4df709b4ef16bf4cabd2fe05346ee3f6afbe5147ba9348ecde6af09591b8c5af87e87120010bc27136e157fca26e45f196e20b0be8e5fafd153314f98cb13d6984da9b1c95f116724b95f6b1e8d220551df320639be0d140b3f21358dc6a145647038ddb6486c22634c579c778b95138ad8c3d7a2066574c9140c19717207583eae961f90c692f192659fd5f794d28fc84d5ed5238392d049120e0802ea92713afa3822fbe739568b2f32c01bb6fc3fbd1feb7024a9c58dfdb2f36cbee328ab56cb21bb3b019695b9c8da8a6b614911583805d50d5180ea2199a8f7494b4ecee352939d99df2d5c9c4226f82cd27821f478a935e06308c9793297160acfdc0f34e217afb1200bf376cdf468431b9b05b2e76f17e032ba524490a4f127ecdc5650e90afe8b1ff073b3be8c8f51c7564bc74143cb0be0ad999bc4cfcb269c49542c5fd48bc736daf6329adce58fb3b38be0695de864a4ed2b4b68d3b51053ae9db5dd1768fdf3b0cdfbece634abe3e7400466f4623be517e1407c0d711c6ade1bf4ac8f14a56a5392752a8c6ec4ba93c75e5213cbb2963b70c0b1257dedbd82e60fbd936b284e2d8914bbff7b9ec153cccaad2ed6f649b89428264e125011a4d8294dc04440ef5cd6f555edebf3e7fa053533d3e6b13795baf4471b503ce138c937ea66d37b27745257e75ba0e19d9c2f41ed30c3d68c0ad8c0586e6635419d088ffcd8ea194f2d50bbccd4f7039055180fab914fce0bfaf613cf636741340dcc94749d7ebdb33b89df51af9a1f690a88522d04400c8ebdf9e7204f5027b9ea4531647260a93834d26b23edfd6969576da3322a164d4137b4dae4642bdc5472676b5004abd9d099b8e97b4926fbfe9318989af2921131817db4aaf54050383ee0bf8b79f572f70c2a4f55fbd79800caf889145d4da2051925e6a67a243ad7912c140704dc2bc3fd602a1f1c430b10c2d4c641c3cd29366338c936f08d423f07b73d028ae51e636b1ce180c2c59ee6242eb1ec25634ba56326eb026e5f5efa3f38b3cb5364ad4428271f941c13e40e70001796c08a570df7be6466f05d8b740fd62a790f2bab0fe29508f2198a1c31815a277a6cfd94dedc2a03ae3893da2c3bace33066cd5165a1b3bfee5acfc88a456504994aabcf3d9e5c228749f8e66e38eedbe6cb9e2039ea5a3b0e187c23a0dadfbdda9953c4b201ad040339f8cd45788b4fbbe1db365834ad82cf4ca8467759244fda67e4de9322dd488d6d7012d854e302a2997db202a5343c40394707a6840521025784d52091a8ef1f202174e154f6585e9f24847cfb4cc0c28b0ad8ed63719572f0688118ef49c9fdd42c97b9ae78b1ddaac1c0d9035e25af6b9c70297f0b1e3164c6cb3644ab98eef1df307d0118db4001cbcd9e38d9507771331af1c29e8bc79705fbe9b4e8d845120ad167f580beab01e8d884970c7963e18e1fde40d984584f067563a40bbc5605699bc00aaaa8e8bfadecf1b5d27ff19a2c7ad43270e0b7171704e61f96fbda3f96b000547d506b6dc5d2448ff5447d282a95839e7adc0ca9a12a2a11aab3aa744ebdc0a86adb96c5b3a2f203bc79d9fa3d89235e8737e10bb0e7314f487de6368ddc5444ed99ed5824981a1d012ef8288cda1d60a71006e3a50b70fc8d558b916100f1ebb569936300bd0af2fccbdc1d898acc4ef8288275ed65bc31d53124ed685e4b55cec2991ec9391ad1d9c41223d02b2ad24612a370bbf34157b8081befbbd5ae093e979726d7bed761940193c689dffa758a2d388ea3d0e7c31e80cb9cac0aab1dd7a68fa4c2c9f949de08f4881d1a943cbbc281782a1e3cbd61426af023ce27967edc0f3e6e6ae17f868b7e1ca34fbfeebb97cd4b0a525017a0d5ee50f926ba0de63c331cc45b2d0e3f2a18ee23a521016c1310f5c4d3ca03f45b35dbb39ea55ac8f3eb3854b10dbf1a9dcc3491803e1bcfe4489359927f1c066bb26dd46ac4cf42b79dae5c1588e50e37d7b5fe1821ba4987e498286236763f8977f00efb120c3b8edba403dff6ca379c6d08b501dbd1a99003e727b2beb7f7ff05d5ebcf03579db30a5eab459a69b4a47dcd34e0b770a5a8297dfd5d5bf71966318336a8800dd4e9ab2122be987693f84262f7625ab32b40ee1cfcf74f8050b422b53a6b34f1cde9cd5c1320cb3483e00cd575996e1db34996f825dbb84213dcdc2120d6c80cee996c433904229be211ae07614d4d32b5af40d509a4af8d17757d5e4c2150d8cafc989819a88a29681846216beae95898add33817ad1015e6843c22bf8b9ba2c01714f9ce496bd67c573dc4fb92df7fde2143f2adb855187b70a235cf518ae9c4b7a4f5804b47519cf706dfe8a89c35affaceb4b343351fe0e9766e65ff6d9f0ab4f4a96b6cf22bbabdb1a28691998de847387ccf2df0a17de211bcc676a945ac3f55b68919b67b31d1fa435e0e2e8a8e7fbfba45dd94e2e79adb0ba98924a50992004e16177a5d26118fbe5d5309281edbcc502d92ba26cc1f8aa363e94e101dbfa4efd906ea4c4b2dd2ac4006ba2d19505ebac1cf51a165a8ce7433c0ef3ddf4c675f3140ac910625ffad4d4aa90f1e920a28367b5bdaa4fd006add10578cc94dd61794e105438eab3b073d4796db06028a3b69016ca9a934b4f22c1708c0fe2851950210f7ee1edb0d5a3d53c75764418f3f180b06cc18e748619222285d5bed5fb25d8e38dca4fa8d46858f4046819203ae48d063e8268b48ff06a2b68271e3169310e0517549f8d79a148701d9b31baab97d356fe687f09964402beb6180d47f8d2ddced0b3e4a16a23c0591792af4d3af480936bce6e43ecead23de70422c2d1bd0cec2a31abe4fd924cb436d2ced2a28b14c8dbae79e029eb9706044b6f980cf2f235df2c239283fa43ebaf7a020a6cba198bee14c5002bd7c435e57e124ae0a005b390545e3750354ea3094e509ca64bd8d38c6f838a93556ce587ef9cab32ce7cef1efd3e660f8cc37c382cdb86ad30fe36155f8b1607673723864c5d35e9d5b3435f089b5092a8c9b34bb0994217770ba520bcbfafd2e30065fb5f1d184c9433aa6e9ddc7eeaaaedf55de0d9cc369560c1b50522259d968d6670a42192b1d57d3facc006dadb3eaeffb4e30451b2d4120f638f9861b9726af29c1f1c8147902e80bec3ec4b494f61fabca82c4c72d4583f5697be180e5f4c7ee5631ceea54fa905ad3b4edc426774a588e6a11e1e05f05eda38d902db5d9926a4e2221979595a47848779840883052fd488cee764ffc20c4dbd4d3f6eeb54e846637f5d630e55813f0b2469360ccaaceedd6a0def3e7953e209f21ef1f8c78903a27e658e07b38eb5ed887f706895ff67759c51be1bfa2f4be0f5d89c3e11b47e14171a743daf930ad82ca5ea17d2d9f52b5238e206cadd59a9957293cea7cd8130870f453b71d4c5931caa84b79da167e47fbfaba449f154ae6de31ccba056c1e2ce3b4574a5b50aafb8e2a9621feb26d0dcc55941ec47ca400b560d9caf3aff97782da1e3e390f141307e059eaee078e0381072c8409b524d3872546b61f7c06b8e27624bb7d609a6408280574340d6fe9357c32255d78815ffceccac82dcdca7181a5f1c1b17a369b642b413cdb6b1d69cdda15ca058b003810fd81b41bb37e1d0c7ba42bea"}]}, 0x1018}, 0x1, 0x0, 0x0, 0x8800}, 0x4000000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\b', @ANYRES16=0x0, @ANYBLOB="1b0026bd7000fddbdf250300000004000800100003800c000a"], 0x28}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x300, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4c894}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x9}, 0x3, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x4, 0x0) ioctl$auto_KVM_GET_MSRS(r1, 0xc008ae88, &(0x7f0000000100)={0x3, 0x0, [{0x8, 0x6}, {0x3, 0x2, 0x8000}, {0x3, 0x1, 0x7}, {0x800, 0x7, 0x7c}, {0x7, 0x7f, 0x8000000000000000}, {0x5, 0x93b, 0x3}, {0x7a0, 0x9, 0xa58}]}) r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000300), r2) sendmsg$auto_BATADV_CMD_GET_VLAN(r1, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="20002cbd7000fbdbdf251100000004000f010000000002000000080034000900000004001e0008001b0008000000050033000000000005003800010000007b4bcd30d6cdb2bdbde290dcdc3f4f891452d405202a79ef0cafd6b9c47cfd0f8dafe612b7e974bdb7fb52f1669c5de57d46ddefd6f1"], 0x44}, 0x1, 0x0, 0x0, 0xc0}, 0x1) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event2\x00', 0x52e00, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x1000) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x5) 4.673836447s ago: executing program 2 (id=712): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/sg/def_reserved_size\x00', 0x402, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop11\x00', 0x0, 0x0) mmap$auto(0xce80, 0x1, 0x4000000000de, 0x40eb1, r0, 0x1) r1 = socket(0x29, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r2 = socket(0xa, 0x801, 0x106) setsockopt$auto(r2, 0x6, 0x21, 0x0, 0x10) close_range$auto(r0, r1, 0x1) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) getrandom$auto(0x0, 0x6000000, 0x3) mmap$auto(0x0, 0x810004, 0x2000000efb, 0x8000000008011, r3, 0x8000) ioctl$auto_BLKRRPART(r3, 0x125f, 0x0) mmap$auto(0x0, 0x400004, 0x9, 0x9b72, 0xffffffffffffffff, 0x8000) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r4 = socket(0x11, 0x3, 0x9) syslog$auto(0x9, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x7) r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)) getdents64$auto(r5, 0x0, 0x18) r6 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r6, 0xaf01, 0x5) ioctl$auto(r6, 0x4008af03, 0x0) ioctl$auto_VHOST_NET_SET_BACKEND(r6, 0x4008af30, 0x0) close_range$auto(r4, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) 3.941505937s ago: executing program 2 (id=713): unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r2 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f80, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) r4 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/keys\x00', 0x40280, 0x0) pread64$auto(r4, 0x0, 0x8100000041, 0x413e) clock_nanosleep$auto(0xfffffff2, 0x5, 0x0, 0x0) mremap$auto(0x1ff000, 0x100005, 0x843, 0x3, 0x2) mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000) fsopen$auto(0x0, 0x1) keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff) madvise$auto(0xfffffffffffffffa, 0x9, 0x19) waitid$auto_P_PIDFD(0x3, r1, &(0x7f0000000040)={@siginfo_0_0={0x2, 0x4, 0x0, @_rt={0xffffffffffffffff, 0x0, @sival_ptr=&(0x7f0000000280)="79ca6170c72c9b5affac767c0127e58e38f3f407303ed544651fc514ea2bf3a8d8ec1b5efc99d62cbb8043d4582607afd440f400a4fdcd74a0d6cc759ee437d05a5a149e70f79615cb36ed421aea340b2fe64c6f0439d9294cee642b94067691cdb8738f2363b14d75159d50f1d2041552ec66151a9f701e52dbbc1da461754f08314b0d6bbb04733b1e75896aa1d04e8e80eeef31efb7c1d6d29923d10bb06fc202e8c6970da24c428b428a45a8146761b0799727aa98dee9a474d1ec2011619ef92795e56f01adc6944105d7bf5c917ab81c899a21ee50a5ef56db545f7c67b8077183bc65"}}}, 0x20f5, &(0x7f0000000440)={{0x0, 0x80}, {0x8, 0x3}, 0xc2, 0xfffffffffffffff1, 0x80000001, 0x9, 0x1, 0xffffffffffffffff, 0x101, 0x101, 0xfff, 0x0, 0x3, 0x9, 0x8, 0xfffffffffffffffa}) madvise$auto(0x0, 0x2003f2, 0x15) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x8293, 0x6ca, 0x5, 0x10, r3, 0x8ec) mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0x4, 0x300000000000) socket(0x1d, 0x3, 0x1) ptrace$auto(0x4206, 0x1, 0x100000000, 0xe855) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0) sendfile$auto(r5, r5, 0x0, 0x3) madvise$auto(0x0, 0xffffffffffff0005, 0x3) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x40000, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'veth1_to_bridge\x00'}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'syzkaller1\x00'}) 3.831308208s ago: executing program 1 (id=714): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0xfffffffffffffffe, 0x10004, 0x9, 0x7ffffbffffffffff, 0x401, 0x300000000000) timer_create$auto(0x3, 0x0, 0x0) timer_gettime$auto(0x0, &(0x7f0000001f80)={{0x9, 0x100000001}, {0x9f9a, 0x401}}) sched_setattr$auto(0x0, 0x0, 0x7b) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) madvise$auto(0x0, 0xffffffffffff0005, 0x19) statmount$auto(0x0, &(0x7f0000000180)={0x7, 0x1, 0x9, 0x9, 0x5, 0x6, 0x8, 0x4, 0x3, 0x9, 0x9, 0xffff, 0x4, 0x200000000004, 0xb6, 0xb, 0x9, 0x7, 0x7, 0x6, 0x0, 0x3, 0x22000, 0x1000, 0x9, 0x84, 0x0, 0x4, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x7fffffff, 0x80, 0x7, 0x6, 0x200, 0x8, 0x8, 0x3, 0x0, 0x20000100005, 0x8000000000000000, 0x0, 0x7ff, 0x0, 0x0, 0x6, 0x0, 0x800000000000000, 0x90600000, 0x12a7, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd, 0x2, 0x2, 0x72ddf787, 0x0, 0x7, 0x2, 0x0, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, 0x0, 0x0, 0xffffffffffffffff]}, 0x81, 0x968c) openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1441, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xffff6888, 0x0, 0x0, 0x5, 0x4ea, 0xaff, 0x6, 0x0, 0xfffffffffffffffe, 0x0, 0x962, {0x2000100000000, 0x10010000}, 0x5, 0x40000000006, 0xffffffffffeffffb, 0x6, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0x80020000a747, 0x8, 0x1}) ioctl$auto_IOCTL_VMCI_VERSION2(r1, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, 0x6) mmap$auto(0x0, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000) r3 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/stat\x00', 0x2, 0x0) write$auto_tomoyo_operations_securityfs_if(r3, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/dummy0/carrier\x00', 0x8182, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/bdi/43:384/max_bytes\x00', 0x181482, 0x0) read$auto(r4, 0x0, 0x2) write$auto(0x3, 0x0, 0xfdef) fanotify_mark$auto(0xffffffffffffffff, 0x9, 0x9, 0xffffffffffffffff, 0x0) open(0x0, 0x0, 0x0) 3.799001627s ago: executing program 0 (id=715): socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) get_mempolicy$auto(0x0, 0x0, 0x2, 0x400000000000085, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) getpid() bpf$auto(0x5, 0x0, 0x7) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) r2 = socket(0x25, 0x1, 0x5) rt_sigqueueinfo$auto(0x0, 0x4, &(0x7f0000000000)={@siginfo_0_0={0xf5, 0x14, 0x7e73, @_timer={0x0, 0x80000001, @sival_int=0x81, 0x1}}}) socket(0x11, 0x3, 0x9) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{&(0x7f00000000c0), 0x5ac, &(0x7f0000000100)={&(0x7f00000004c0), 0xe7}, 0x8, &(0x7f0000000180), 0x5, 0x2}, 0x5}, 0x2, 0x100) recvfrom$auto(r2, 0x0, 0x0, 0x1, 0x0, 0x0) prctl$auto(0xffff, 0x6, 0x1, 0x0, 0x6) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x82a02, 0x0) writev$auto(0x3, 0x0, 0x3) getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x10000, 0x0) r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001080)='/dev/v4l-touch5\x00', 0x103040, 0x0) read$auto_v4l2_fops_v4l2_dev(r3, &(0x7f00000010c0)=""/22, 0x16) prctl$auto(0x59616d61, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffe5) r4 = socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getsockopt$auto(r4, 0x6, 0x25, 0x0, 0x0) 3.661733241s ago: executing program 1 (id=716): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x2000000000043, 0x0) r0 = fsopen$auto(0x0, 0x1) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) writev$auto(0x8, &(0x7f0000000040)={&(0x7f0000000000), 0x2000000000001}, 0xabc) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x16, &(0x7f0000000040), 0x1) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/0000:00:01.3/msi_bus\x00', 0x800, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000100)=""/16, 0x10) fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) r2 = socket(0x2, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3d}}, 0x6a) listen$auto(0x3, 0x81) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x128}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x4, 0x8000) r3 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) ioctl$auto_EVIOCGMASK(r3, 0x80104592, &(0x7f0000000180)={0x86f, 0x7}) mmap$auto(0x0, 0x8, 0x72, 0x8b72, 0x8f1, 0x8000) socket(0x2, 0x5, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) bpf$auto(0x5, 0x0, 0x504) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/nbd11/queue/iostats_passthrough\x00', 0x2a001, 0x0) write$auto(r4, &(0x7f0000000040)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) close_range$auto(0x2, 0xa, 0x0) 3.354205132s ago: executing program 1 (id=717): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001700), r0) getsockopt$auto_SO_RXQ_OVFL(r0, 0x8, 0x28, &(0x7f0000000500)=',{\x00', 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto_seq_oss_f_ops_seq_oss(r1, &(0x7f0000000040)="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", 0x4b9) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r2, &(0x7f0000003400)={0x0, 0xffffffffffffff08, &(0x7f00000033c0)={&(0x7f0000000000)={0x14, 0x0, 0x301, 0x70bd29, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) madvise$auto(0x0, 0xffffff7fffff0005, 0x8) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) socket(0x2, 0x3, 0x6) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/036/001\x00', 0xa901, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x0, 0x0) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) io_uring_setup$auto(0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x5b, 0x1, 0x420000, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS2\x00', 0x101f81, 0x0) 3.338709761s ago: executing program 3 (id=718): r0 = socket(0x23, 0x5, 0x0) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000426bd7000fedbdf250200000008002700040000000a001800aa"], 0x28}, 0x1, 0x0, 0x0, 0x4c894}, 0x24008000) r1 = bpf$auto(0x12, &(0x7f0000000040)=@enable_stats={0x1}, 0x26) syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'veth0\x00'}) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', 0x0}) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r4 = socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000200)={{@inferred, 0x658a, 0x1, 0x81, "3112d585005a614d19e22af9ffb683dbede3d0bf828bbfba40f035f4be6b7fe5e2f94bd90484b0755015e48d"}, 0x401, 0x5, 0x4, @inferred, @integer={0xdbe, 0x255, 0x4008}, "7a9fc199a16a2311eacf2fc7ae1d8778dc618090334fdd73340238d21000debe0eda71bdd709254592b67f9cb5adb17884a16f7ce8cbce0bb32791702b8d7c2d"}) r5 = getpid() process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0x20000001005}, 0x1, &(0x7f0000000040)={&(0x7f0000000080), 0xffffffff}, 0x4, 0x0) close_range$auto(0x2, 0x8, 0x0) bpf$auto_BPF_ENABLE_STATS(0x20, &(0x7f0000000340)=@link_update={r1, @new_prog_fd=r4, 0x4, @old_map_fd}, 0x1ff) io_uring_setup$auto(0x59, &(0x7f0000000640)={0x0, 0x1d, 0x3800, 0x2, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7b, 0x0, 0x5, 0xfffffffffffffffd}, {0x100, 0x20001, 0x52, 0x85, 0x2, 0x0, 0x2072c2, 0xc, 0x100000000}}) io_uring_register$auto(0x2, 0x20, &(0x7f0000000240), 0x1) sendmmsg$auto(r6, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x2000000, 0x9}, 0x2}, 0x3, 0x0) recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="df36b153", @ANYRES16=0x0, @ANYRES32=r3, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100aaaa", @ANYRES32=r3, @ANYBLOB="0600060005000000"], 0x60}, 0x1, 0x0, 0x0, 0x40080}, 0x40) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'batadv_slave_1\x00'}) r7 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000003b40)={'veth0_to_hsr\x00'}) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x80002, 0x73) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x28, 0x0, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f1779048590828847"}]}, 0x28}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) 3.104109171s ago: executing program 1 (id=719): waitid$auto(0x8, 0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000180)={{0xfffffffffffffff9, 0x80}, {0x2, 0x6}, 0x4, 0x5, 0x1, 0x3, 0x0, 0x8000, 0x80000000, 0x7, 0xb7, 0x5d9, 0x5, 0x7ff, 0x2055}) mmap$auto(0x2, 0x400008, 0xdf, 0x9b72, 0x2, 0x10000000008000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket(0xa, 0x5, 0x0) r1 = accept$auto(0x3, 0xffffffffffffffff, 0xfffffffffffffffd) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) pread64$auto(0xffffffffffffffff, 0x0, 0x200000000003, 0x2f4a3a23) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2, 0x0) writev$auto(r2, &(0x7f0000000300)={&(0x7f0000000200), 0x200}, 0x3) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptye9\x00', 0x101e81, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x2c402, 0x0) r4 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000980)='/dev/ttye9\x00', 0x102, 0x0) sendfile$auto(r4, r3, 0x0, 0x10000) close_range$auto(0x2, 0x8, 0x0) semctl$auto_GETNCNT(0x0, 0x4, 0xe, 0x4) bpf$auto(0x12, 0x0, 0x26) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r5 = openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Virtual-1/edid_override\x00', 0xc0a82, 0x0) write$auto(r5, &(0x7f0000000500)='\x80\xa3\xf3.\x80UX\xb3\xec4\xfbX+\xa7\xbd\xaa\x10\x9c\xaa\xcaT\xdf\xa1@\xa7J:\x8ao\x8c\x90VBt\x93\x8f\xe19\x9cg\xaa\xb5w\x10\xba9\"T\xfa\'\x1aJz\xf9\x97\x1e\xba\x90\xa1\xc2K\x8f\x1aok\x88\x87\x1d\xdc\x149\b\x15\xb4\xeai\xd2\\ak\xd0O#f[\xff\x8d[\x83[\x00\xaa\xcdc\xae:\"\x1f\x95\xaa\x17\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x9e\x00\x00\x00\xe5\x0f\xe8&\xc4M\x94\xd6Y9\xebA1\x8b.\xd9\xe0\x83\t?&\x00\x00\x00\x00\x00\x00', 0x2d00) r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) fstat$auto(r6, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x4610, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d7) ioctl$auto_XFS_IOC_ERROR_INJECTION(r1, 0x40085874, &(0x7f0000000040)={r5, 0x719d}) ioctl$auto_SNDCTL_DSP_SETFMT(r7, 0xc0045005, &(0x7f0000000080)="dcb81ada7d46c37fb9311d4987f5fbcbc2ef42a57c73e8741742d39c557b4ffb802087296b2fa2bbc183787830edb8323c6b31ee4d8ee0aaff264bc44d32c8acb9") 2.111173304s ago: executing program 1 (id=720): ioctl$auto_BLKTRACESETUP32(0xffffffffffffffff, 0xc0401273, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x60482, 0x0) ioctl$auto_KVM_GET_SUPPORTED_CPUID(r0, 0xc008ae05, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = open(&(0x7f0000000100)='.\x00', 0x595402, 0x408) r2 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x80040, 0x0) write$auto(r1, 0x0, 0xfffffdf1) mmap$auto(0x0, 0xb, 0xdd, 0xeb1, r2, 0x8000) r3 = openat$auto_evm_xattr_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000080), 0x100401, 0x0) write$auto_evm_xattr_ops_evm_secfs(r3, &(0x7f00000000c0)='.', 0x1) io_uring_setup$auto(0x6, 0x0) r4 = socket(0x1f, 0x4, 0x6) getsockopt$auto(r4, 0x6b, 0x8, 0xfffffffffffffffe, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC2\x00', 0x200, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, 0x0, 0x20000010) syz_genetlink_get_family_id$auto_smc_pnetid(0xfffffffffffffffc, 0xffffffffffffffff) socket(0x10, 0x2, 0x0) ioctl$auto(0xffffffffffffffff, 0x89ff, 0x24) mmap$auto(0x0, 0x6, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) socket(0x2, 0x1, 0x0) socket(0x10, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket(0xa, 0x2, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x28b40, 0x0) socket(0xa, 0x801, 0x84) socket(0xa, 0x2, 0x3a) 1.935573567s ago: executing program 3 (id=721): socket(0xa, 0x3, 0x3b) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) quotactl$auto(0x9, 0x0, 0x62a0, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0xe31, 0x40000000000a5, 0x8000) syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), 0xffffffffffffffff) socketpair$auto(0x2, 0x80, 0xfffffffc, 0x0) setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x70003e8) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) madvise$auto(0x0, 0x2003f0, 0x17) 799.694198ms ago: executing program 3 (id=722): mmap$auto(0x0, 0x1000, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x4, 0x2020005, 0x5, 0xab1, 0xffffffffffffffff, 0x8003) madvise$auto_MADV_GUARD_INSTALL(0x0, 0x2021000, 0x66) mremap$auto(0x40200, 0x8000, 0x10001, 0x20, 0x6) r0 = ioctl$auto_TUNGETIFF2(0xffffffffffffffff, 0x800454d2, &(0x7f0000000180)=0x8) r1 = waitid$auto(0x5, 0xffffffffffffffff, &(0x7f0000000100)={@siginfo_0_0={0x2, 0x2, 0x4, @_sigchld={0x0, 0x0, 0x0, 0x4}}}, 0x7dff, 0x0) prctl$auto(0x7ee485ea, 0x0, r1, 0xfff, 0x6) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) rseq$auto(0x0, 0x8000, 0xfffffffe, 0xc0a) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) clock_gettime$auto(0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0xccc6) socket(0x9, 0x2, 0x106) bind$auto(r0, &(0x7f0000000200)=@l2tp={0x2, 0x0, @loopback, 0x4}, 0xffff) connect$auto(0x3, &(0x7f0000000080)=@phonet={0x23, 0xbd, 0x8, 0x10}, 0x54) write$auto(0x3, 0x0, 0x1) recvfrom$auto(0x3, 0x0, 0x800000000e, 0xa00, 0x0, 0xfffffffffffffffd) write$auto(0x1, 0x0, 0x80000000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) syz_open_procfs$namespace(0x0, &(0x7f0000000080)) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0xc76, 0x8000) openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0) io_uring_setup$auto(0xa, 0x0) readv$auto(0x3, &(0x7f0000000040)={0x0, 0x36a}, 0x8) close_range$auto(0x2, 0x8, 0x0) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x10bb41, 0x0) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa0c02, 0x0) ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, 0x0) io_uring_enter$auto(0xffffffffffffffff, 0x9, 0x820e, 0x8b, 0x0, 0x18) 378.204158ms ago: executing program 2 (id=723): socket(0xa, 0x3, 0x3b) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) quotactl$auto(0x9, 0x0, 0x62a0, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0xe31, 0x40000000000a5, 0x8000) syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), 0xffffffffffffffff) socketpair$auto(0x2, 0x80, 0xfffffffc, 0x0) setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) madvise$auto(0x0, 0x2003f0, 0x17) 237.636966ms ago: executing program 0 (id=724): ioperm$auto(0xa, 0x8, 0x80) r0 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/block/nbd2/hctx0/sched_tags_bitmap\x00', 0xa2140, 0x0) read$auto(r0, &(0x7f0000000040)='\x00', 0x3) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'veth0\x00'}) r1 = openat$auto_fops_u32_ro_(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim0/ports/3/bpf_offloaded_id\x00', 0x400000, 0x0) readv$auto(0x3, 0x0, 0x1) r2 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_MON_IOCX_MFETCH(r2, 0xc0109207, 0x0) r3 = socket(0x29, 0x5, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) r4 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$auto_VHOST_SET_FEATURES(r4, 0x4008af00, &(0x7f0000000000)=0x200000000) read$auto(r4, 0x0, 0x3ff) close_range$auto(0x2, 0x8, 0x0) openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, 0x0, 0x200, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x200001, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40, 0x0) sendmmsg$auto(r3, 0x0, 0x3f7ffffe, 0xd9) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x44000) close_range$auto(r1, 0xffffffffffffffff, 0x2) r5 = socket(0xa, 0x2, 0x0) r6 = syz_genetlink_get_family_id$auto_nfc(&(0x7f00000002c0), r5) sendmsg$auto_NFC_CMD_GET_TARGET(r5, &(0x7f0000000500)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x5c, r6, 0x200, 0x70bd28, 0x25dfdbfc, {}, [@NFC_ATTR_DEVICE_POWERED={0x5, 0xc, 0x4}, @NFC_ATTR_IM_PROTOCOLS={0x8, 0xd, 0x6}, @NFC_ATTR_VENDOR_DATA={0x26, 0x1f, "d11d3ae973881803cd97dee4156eacff054335dc0346571bb7af9db67532c9df55df"}, @NFC_ATTR_VENDOR_ID={0x8, 0x1d, 0x4}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, 0x3}]}, 0x5c}, 0x1, 0x0, 0x0, 0x24000000}, 0x50) r7 = socket(0x18, 0xa, 0x1) connect$auto(r7, &(0x7f0000000000)=@in={0x2, 0x100}, 0x2e) syz_clone3(&(0x7f0000000200)={0x243080300, 0x0, 0x0, 0x0, {0x22}, 0x0, 0x0, 0x0, 0x0}, 0x77) r8 = socket(0x2, 0x1, 0x106) setsockopt$auto(r8, 0x6, 0x19, 0x0, 0x4) execveat$auto(r8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=&(0x7f0000000040)='\\(,\x00', &(0x7f00000001c0)=&(0x7f00000000c0)='\x00', 0x1) 162.127417ms ago: executing program 1 (id=725): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capset$auto(&(0x7f0000000100)={0x20080522}, 0x0) prctl$auto(0x7, 0x3f7, 0x0, 0xffffffffffffffff, 0x6) shmctl$auto_IPC_STAT(0xffff, 0x2, &(0x7f00000001c0)={{0x76f8c966, 0xee00, 0xffffffffffffffff, 0x4, 0x3, 0x20000003, 0x8}, 0x8, 0xce, 0x3, 0x4, @raw=0x1, @inferred=0xffffffffffffffff, 0x4, 0x0, &(0x7f0000000280)="072646921a727bd9233ac9ad591af2a532e3c46623665b66c010da25d3609241b85422cfeffd62c863e1bd26d3ec3bb02940cb4e76c1e26eaf0ee7148191ecbc63fd104bf941581b848652331bc1ead1ce621cf97e3d1bae67e83df75a6574a462d7153aa6b168a1dc", &(0x7f0000000180)}) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0) ioctl$auto(r1, 0x5646, r1) read$auto_v4l2_fops_v4l2_dev(r1, 0x0, 0x0) ioctl$auto(r1, 0x2400000, 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000005800)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000057c0)={0x0}, 0x1, 0x0, 0x0, 0x8c0}, 0x1) sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x40}, 0x1, 0x0, 0x0, 0x20008000}, 0x8044) openat$auto_ima_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffff9}, 0x6, 0xe27c, 0x8) sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffffffd}, 0x10004}, 0x5, 0x20000000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) madvise$auto(0x0, 0xff7fffffffff0001, 0x15) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, 0x0, 0x80, 0x0) mmap$auto(0xb, 0x2020005, 0x1, 0xfffffffffffff593, 0xffffffffffffffff, 0xffffffff) 41.850785ms ago: executing program 3 (id=726): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) socket(0x6, 0x3, 0x37) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x26, 0x5, 0x8c68) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/midi2\x00', 0x101e41, 0x0) ioperm$auto(0x4, 0x100000001, 0x4000005) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptyra\x00', 0x74c40, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x40, 0x0) mmap$auto(0x800, 0x8000009, 0x1, 0x19, 0xffffffffffffffff, 0x100000000000008) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) sysfs$auto(0x2, 0x7, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) r3 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000280), 0x141182, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r3, 0x40146f2c, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(0xffffffffffffffff, 0x40146f2b, 0x0) r4 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x50ba82, 0x0) read$auto(r4, 0x0, 0xb4d3) unshare$auto(0x40000080) setsockopt$auto(r0, 0xd0, 0x800000e4, 0x0, 0x569) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) 0s ago: executing program 0 (id=727): mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/tracing_cpumask\x00', 0x8301, 0x0) write$auto(0x3, 0x0, 0x7fffffff) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mbind$auto(0x2000, 0x100000008, 0x2100000000, 0x0, 0x6, 0x2) r0 = fsopen$auto(0x0, 0x1) setrlimit$auto(0x7ffb, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x15, 0xffffffffffffffff, 0x8000) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x40004) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x200, 0xb07e) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002ec0), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000080)={0x34, r2, 0x1, 0x70bd29, 0x25dfdbff, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_LANES={0x8, 0x9, 0x3}]}, 0x34}, 0x1, 0x0, 0x0, 0x11}, 0x24000802) open(0x0, 0x22240, 0x155) close_range$auto(r0, 0xa, 0x0) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) socket(0x10, 0x2, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) syz_clone3(&(0x7f0000000340)={0x400, 0x0, 0x0, 0x0, {0x18}, 0x0, 0x0, 0x0, 0x0}, 0x58) kernel console output (not intermixed with test programs): x348/0xe30 [ 136.835590][ T6775] ? __up_read+0x2c5/0x700 [ 136.835615][ T6775] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 136.835642][ T6775] ? __pfx___up_read+0x10/0x10 [ 136.835666][ T6775] ? rmap_walk_anon+0x561/0x870 [ 136.835706][ T6775] __folio_alloc_noprof+0x13/0x2f0 [ 136.835734][ T6775] alloc_migration_target+0x1d7/0x6d0 [ 136.835756][ T6775] migrate_pages_batch+0x4f2/0x4530 [ 136.835779][ T6775] ? __pfx_alloc_migration_target+0x10/0x10 [ 136.835807][ T6775] ? walk_pgd_range+0x1115/0x1eb0 [ 136.835833][ T6775] ? __pfx_migrate_pages_batch+0x10/0x10 [ 136.835870][ T6775] migrate_pages_sync+0x12c/0x880 [ 136.835892][ T6775] ? __pfx_alloc_migration_target+0x10/0x10 [ 136.835918][ T6775] ? __pfx_migrate_pages_sync+0x10/0x10 [ 136.835937][ T6775] ? __pfx_queue_pages_test_walk+0x10/0x10 [ 136.835962][ T6775] ? walk_page_range_mm_unsafe+0x32c/0xa10 [ 136.835995][ T6775] migrate_pages+0x1aae/0x28a0 [ 136.836019][ T6775] ? __pfx_alloc_migration_target+0x10/0x10 [ 136.836045][ T6775] ? __pfx_migrate_pages+0x10/0x10 [ 136.836067][ T6775] ? queue_pages_range+0x11e/0x180 [ 136.836096][ T6775] ? __up_read+0x2c5/0x700 [ 136.836122][ T6775] ? __pfx___up_read+0x10/0x10 [ 136.836147][ T6775] ? do_migrate_pages+0x451/0x740 [ 136.836164][ T6775] ? do_migrate_pages+0x451/0x740 [ 136.836187][ T6775] do_migrate_pages+0x488/0x740 [ 136.836212][ T6775] ? __pfx_do_migrate_pages+0x10/0x10 [ 136.836235][ T6775] ? rcu_is_watching+0x12/0xc0 [ 136.836262][ T6775] ? cap_capable+0x107/0x460 [ 136.836284][ T6775] ? get_task_mm+0xc2/0xf0 [ 136.836309][ T6775] ? security_capable+0xbd/0x260 [ 136.836337][ T6775] kernel_migrate_pages+0x560/0x700 [ 136.836357][ T6775] ? __pfx_kernel_migrate_pages+0x10/0x10 [ 136.836375][ T6775] ? xfd_validate_state+0x129/0x190 [ 136.836407][ T6775] __x64_sys_migrate_pages+0x96/0x100 [ 136.836427][ T6775] ? lockdep_hardirqs_on+0x78/0x100 [ 136.836449][ T6775] do_syscall_64+0x106/0xf80 [ 136.836469][ T6775] ? clear_bhb_loop+0x40/0x90 [ 136.836491][ T6775] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 136.836510][ T6775] RIP: 0033:0x7f250659c799 [ 136.836526][ T6775] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 136.836543][ T6775] RSP: 002b:00007f2507478028 EFLAGS: 00000246 ORIG_RAX: 0000000000000100 [ 136.836564][ T6775] RAX: ffffffffffffffda RBX: 00007f2506815fa0 RCX: 00007f250659c799 [ 136.836575][ T6775] RDX: 0000200000000100 RSI: 000000000000000a RDI: 0000000000000000 [ 136.836585][ T6775] RBP: 00007f2506632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 136.836595][ T6775] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000000 [ 136.836605][ T6775] R13: 00007f2506816038 R14: 00007f2506815fa0 R15: 00007ffc1ca14038 [ 136.836627][ T6775] [ 137.247343][ T6780] vivid-007: ================= START STATUS ================= [ 137.255065][ T6780] vivid-007: Generate PTS: true [ 137.260478][ T6780] vivid-007: Generate SCR: true [ 137.265422][ T6780] tpg source WxH: 320x240 (Y'CbCr) [ 137.270588][ T6780] tpg field: 1 [ 137.273987][ T6780] tpg crop: (0,0)/320x240 [ 137.278341][ T6780] tpg compose: (0,0)/320x240 [ 137.283011][ T6780] tpg colorspace: 8 [ 137.286810][ T6780] tpg transfer function: 0/0 [ 137.291454][ T6780] tpg Y'CbCr encoding: 0/0 [ 137.295877][ T6780] tpg quantization: 0/0 [ 137.300061][ T6780] tpg RGB range: 0/2 [ 137.303947][ T6780] vivid-007: ================== END STATUS ================== [ 137.941268][ T6783] ptrace attach of "./syz-executor exec"[5822] was attempted by ""[6783] [ 138.195656][ T6801] FAULT_INJECTION: forcing a failure. [ 138.195656][ T6801] name failslab, interval 1, probability 0, space 0, times 0 [ 138.312651][ T6801] CPU: 0 UID: 0 PID: 6801 Comm: syz.0.311 Not tainted syzkaller #0 PREEMPT(full) [ 138.312678][ T6801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 138.312689][ T6801] Call Trace: [ 138.312695][ T6801] [ 138.312703][ T6801] dump_stack_lvl+0x100/0x190 [ 138.312736][ T6801] should_fail_ex.cold+0x5/0xa [ 138.312756][ T6801] ? __list_lru_init+0xd9/0x4b0 [ 138.312781][ T6801] should_failslab+0xc2/0x120 [ 138.312799][ T6801] __kmalloc_noprof+0xe0/0x850 [ 138.312825][ T6801] ? lockdep_init_map_type+0x5c/0x250 [ 138.312853][ T6801] __list_lru_init+0xd9/0x4b0 [ 138.312880][ T6801] alloc_super+0x8d8/0xd20 [ 138.312909][ T6801] ? __pfx_mqueue_fill_super+0x10/0x10 [ 138.312932][ T6801] sget_fc+0x117/0xc70 [ 138.312958][ T6801] ? __pfx_set_anon_super_fc+0x10/0x10 [ 138.312984][ T6801] ? __pfx_mqueue_fill_super+0x10/0x10 [ 138.313007][ T6801] get_tree_nodev+0x28/0x190 [ 138.313035][ T6801] mqueue_get_tree+0xf1/0x130 [ 138.313058][ T6801] vfs_get_tree+0x92/0x320 [ 138.313083][ T6801] fc_mount_longterm+0x1a/0x270 [ 138.313110][ T6801] mq_init_ns+0x482/0x820 [ 138.313138][ T6801] copy_ipcs+0x3dd/0x7e0 [ 138.313166][ T6801] create_new_namespaces+0x20a/0xac0 [ 138.313185][ T6801] ? security_capable+0x80/0x260 [ 138.313213][ T6801] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 138.313235][ T6801] ksys_unshare+0x473/0xad0 [ 138.313259][ T6801] ? __pfx_ksys_unshare+0x10/0x10 [ 138.313293][ T6801] __x64_sys_unshare+0x31/0x40 [ 138.313315][ T6801] do_syscall_64+0x106/0xf80 [ 138.313336][ T6801] ? clear_bhb_loop+0x40/0x90 [ 138.313358][ T6801] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 138.313377][ T6801] RIP: 0033:0x7f0c0b59c799 [ 138.313392][ T6801] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 138.313409][ T6801] RSP: 002b:00007f0c0c4e3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 138.313426][ T6801] RAX: ffffffffffffffda RBX: 00007f0c0b816090 RCX: 00007f0c0b59c799 [ 138.313438][ T6801] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c000000 [ 138.313448][ T6801] RBP: 00007f0c0b632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 138.313458][ T6801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 138.313469][ T6801] R13: 00007f0c0b816128 R14: 00007f0c0b816090 R15: 00007ffefd086258 [ 138.313492][ T6801] [ 138.761395][ T6804] nvme_fabrics: missing parameter 'transport=%s' [ 138.768067][ T6804] nvme_fabrics: missing parameter 'nqn=%s' [ 138.941069][ T6805] nvme_fabrics: missing parameter 'transport=%s' [ 138.948463][ T6805] nvme_fabrics: missing parameter 'nqn=%s' [ 139.249429][ T6819] FAULT_INJECTION: forcing a failure. [ 139.249429][ T6819] name failslab, interval 1, probability 0, space 0, times 0 [ 139.300113][ T6819] CPU: 0 UID: 0 PID: 6819 Comm: syz.1.314 Not tainted syzkaller #0 PREEMPT(full) [ 139.300155][ T6819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 139.300172][ T6819] Call Trace: [ 139.300182][ T6819] [ 139.300194][ T6819] dump_stack_lvl+0x100/0x190 [ 139.300257][ T6819] should_fail_ex.cold+0x5/0xa [ 139.300295][ T6819] should_failslab+0xc2/0x120 [ 139.300328][ T6819] __kmalloc_cache_noprof+0x7a/0x6f0 [ 139.300367][ T6819] ? v9fs_get_tree+0x9c/0xb50 [ 139.300417][ T6819] v9fs_get_tree+0x9c/0xb50 [ 139.300454][ T6819] ? rcu_is_watching+0x12/0xc0 [ 139.300497][ T6819] ? __pfx_v9fs_get_tree+0x10/0x10 [ 139.300539][ T6819] ? bpf_lsm_capable+0x9/0x10 [ 139.300569][ T6819] ? security_capable+0x80/0x260 [ 139.300614][ T6819] vfs_get_tree+0x92/0x320 [ 139.300654][ T6819] vfs_cmd_create+0xd7/0x2a0 [ 139.300694][ T6819] __do_sys_fsconfig+0x55a/0xcb0 [ 139.300735][ T6819] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 139.300793][ T6819] do_syscall_64+0x106/0xf80 [ 139.300827][ T6819] ? clear_bhb_loop+0x40/0x90 [ 139.300865][ T6819] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 139.300895][ T6819] RIP: 0033:0x7ff40fd9c799 [ 139.300921][ T6819] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 139.300949][ T6819] RSP: 002b:00007ff410c38028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 139.300979][ T6819] RAX: ffffffffffffffda RBX: 00007ff410015fa0 RCX: 00007ff40fd9c799 [ 139.300998][ T6819] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003 [ 139.301016][ T6819] RBP: 00007ff40fe32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 139.301033][ T6819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 139.301050][ T6819] R13: 00007ff410016038 R14: 00007ff410015fa0 R15: 00007ffc97f682c8 [ 139.301092][ T6819] [ 140.084773][ T6832] vivid-007: ================= START STATUS ================= [ 140.111858][ T6832] vivid-007: Generate PTS: true [ 140.116806][ T6832] vivid-007: Generate SCR: true [ 140.155802][ T6832] tpg source WxH: 320x240 (Y'CbCr) [ 140.187578][ T6832] tpg field: 1 [ 140.191879][ T6832] tpg crop: (0,0)/320x240 [ 140.196263][ T6832] tpg compose: (0,0)/320x240 [ 140.204413][ T6832] tpg colorspace: 8 [ 140.209878][ T6832] tpg transfer function: 0/0 [ 140.214638][ T6832] tpg Y'CbCr encoding: 0/0 [ 140.219489][ T6832] tpg quantization: 0/0 [ 140.223678][ T6832] tpg RGB range: 0/2 [ 140.227728][ T6832] vivid-007: ================== END STATUS ================== [ 140.420820][ T6850] ptrace attach of "./syz-executor exec"[5820] was attempted by ""[6850] [ 140.893888][ T6860] zswap: compressor not available [ 142.013732][ T6870] vivid-007: ================= START STATUS ================= [ 142.053955][ T6870] vivid-007: Generate PTS: true [ 142.073907][ T6870] vivid-007: Generate SCR: true [ 142.080218][ T6870] tpg source WxH: 320x240 (Y'CbCr) [ 142.085381][ T6870] tpg field: 1 [ 142.091536][ T6870] tpg crop: (0,0)/320x240 [ 142.095911][ T6870] tpg compose: (0,0)/320x240 [ 142.101420][ T6870] tpg colorspace: 8 [ 142.105276][ T6870] tpg transfer function: 0/0 [ 142.110287][ T6870] tpg Y'CbCr encoding: 0/0 [ 142.114795][ T6870] tpg quantization: 0/0 [ 142.122865][ T6870] tpg RGB range: 0/2 [ 142.126857][ T6870] vivid-007: ================== END STATUS ================== [ 142.312621][ T6898] random: crng reseeded on system resumption [ 142.392615][ T6898] hub 1-0:1.0: USB hub found [ 142.427848][ T6898] hub 1-0:1.0: 1 port detected [ 143.299235][ T6910] vivid-007: ================= START STATUS ================= [ 143.317735][ T6910] vivid-007: Generate PTS: true [ 143.337030][ T6910] vivid-007: Generate SCR: true [ 143.372580][ T6910] tpg source WxH: 320x240 (Y'CbCr) [ 143.401683][ T6910] tpg field: 1 [ 143.409648][ T6910] tpg crop: (0,0)/320x240 [ 143.416791][ T6910] tpg compose: (0,0)/320x240 [ 143.435735][ T6910] tpg colorspace: 8 [ 143.444590][ T6910] tpg transfer function: 0/0 [ 143.458437][ T6910] tpg Y'CbCr encoding: 0/0 [ 143.468550][ T6910] tpg quantization: 0/0 [ 143.479609][ T6910] tpg RGB range: 0/2 [ 143.503769][ T6910] vivid-007: ================== END STATUS ================== [ 143.713674][ T6921] vivid-007: ================= START STATUS ================= [ 143.730128][ T6921] vivid-007: Generate PTS: true [ 143.742490][ T6921] vivid-007: Generate SCR: true [ 143.753038][ T6921] tpg source WxH: 320x240 (Y'CbCr) [ 143.765102][ T6921] tpg field: 1 [ 143.771948][ T6921] tpg crop: (0,0)/320x240 [ 143.782085][ T6921] tpg compose: (0,0)/320x240 [ 143.795667][ T6921] tpg colorspace: 8 [ 143.813473][ T6921] tpg transfer function: 0/0 [ 143.829034][ T6921] tpg Y'CbCr encoding: 0/0 [ 143.837698][ T6921] tpg quantization: 0/0 [ 143.847196][ T6921] tpg RGB range: 0/2 [ 143.855827][ T6921] vivid-007: ================== END STATUS ================== [ 144.053984][ T6938] FAULT_INJECTION: forcing a failure. [ 144.053984][ T6938] name failslab, interval 1, probability 0, space 0, times 0 [ 144.080766][ T6938] CPU: 0 UID: 0 PID: 6938 Comm: syz.1.353 Not tainted syzkaller #0 PREEMPT(full) [ 144.080810][ T6938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 144.080827][ T6938] Call Trace: [ 144.080837][ T6938] [ 144.080848][ T6938] dump_stack_lvl+0x100/0x190 [ 144.080900][ T6938] should_fail_ex.cold+0x5/0xa [ 144.080937][ T6938] ? security_inode_init_security+0x113/0x370 [ 144.080975][ T6938] should_failslab+0xc2/0x120 [ 144.081009][ T6938] __kmalloc_noprof+0xe0/0x850 [ 144.081063][ T6938] security_inode_init_security+0x113/0x370 [ 144.081104][ T6938] ? __pfx_shmem_initxattrs+0x10/0x10 [ 144.081140][ T6938] ? __pfx_security_inode_init_security+0x10/0x10 [ 144.081182][ T6938] ? __pfx_make_vfsuid+0x10/0x10 [ 144.081229][ T6938] shmem_symlink+0x15f/0xa00 [ 144.081285][ T6938] ? generic_permission+0xae/0x800 [ 144.081325][ T6938] ? __pfx_shmem_symlink+0x10/0x10 [ 144.081369][ T6938] ? security_inode_permission+0xbf/0x250 [ 144.081418][ T6938] ? inode_permission+0x374/0x620 [ 144.081456][ T6938] ? tomoyo_path_symlink+0x97/0xe0 [ 144.081502][ T6938] vfs_symlink+0x178/0x4d0 [ 144.081547][ T6938] filename_symlinkat+0x2a6/0x560 [ 144.081588][ T6938] ? __pfx_filename_symlinkat+0x10/0x10 [ 144.081623][ T6938] ? strncpy_from_user+0x19d/0x2d0 [ 144.081673][ T6938] ? do_getname+0x191/0x390 [ 144.081714][ T6938] __x64_sys_symlink+0x79/0xb0 [ 144.081757][ T6938] do_syscall_64+0x106/0xf80 [ 144.081791][ T6938] ? clear_bhb_loop+0x40/0x90 [ 144.081830][ T6938] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 144.081862][ T6938] RIP: 0033:0x7ff40fd9c799 [ 144.081889][ T6938] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 144.081918][ T6938] RSP: 002b:00007ff410c38028 EFLAGS: 00000246 ORIG_RAX: 0000000000000058 [ 144.081948][ T6938] RAX: ffffffffffffffda RBX: 00007ff410015fa0 RCX: 00007ff40fd9c799 [ 144.081968][ T6938] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 144.081985][ T6938] RBP: 00007ff40fe32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 144.082003][ T6938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 144.082020][ T6938] R13: 00007ff410016038 R14: 00007ff410015fa0 R15: 00007ffc97f682c8 [ 144.082062][ T6938] [ 144.949814][ T6952] netlink: 8 bytes leftover after parsing attributes in process `syz.2.359'. [ 145.831525][ T6965] zram: Added device: zram3 [ 145.868721][ T6965] input: 00 [ 145.868721][ T6965] as /devices/virtual/input/input11 [ 146.115393][ T6970] mmap: syz.1.364 (6970) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 146.154030][ T6961] vivid-007: ================= START STATUS ================= [ 146.161903][ T6961] vivid-007: Generate PTS: true [ 146.166895][ T6961] vivid-007: Generate SCR: true [ 146.172719][ T6961] tpg source WxH: 320x240 (Y'CbCr) [ 146.178031][ T6961] tpg field: 1 [ 146.184998][ T6961] tpg crop: (0,0)/320x240 [ 146.189740][ T6961] tpg compose: (0,0)/320x240 [ 146.194458][ T6961] tpg colorspace: 8 [ 146.198360][ T6961] tpg transfer function: 0/0 [ 146.248399][ T6961] tpg Y'CbCr encoding: 0/0 [ 146.253283][ T6961] tpg quantization: 0/0 [ 146.267769][ T6961] tpg RGB range: 0/2 [ 146.271833][ T6961] vivid-007: ================== END STATUS ================== [ 146.379834][ T6972] FAULT_INJECTION: forcing a failure. [ 146.379834][ T6972] name failslab, interval 1, probability 0, space 0, times 0 [ 146.398950][ T6972] CPU: 1 UID: 0 PID: 6972 Comm: syz.0.365 Not tainted syzkaller #0 PREEMPT(full) [ 146.398991][ T6972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 146.399008][ T6972] Call Trace: [ 146.399018][ T6972] [ 146.399030][ T6972] dump_stack_lvl+0x100/0x190 [ 146.399083][ T6972] should_fail_ex.cold+0x5/0xa [ 146.399120][ T6972] should_failslab+0xc2/0x120 [ 146.399151][ T6972] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 146.399195][ T6972] ? anon_vma_clone+0x2bd/0xc70 [ 146.399241][ T6972] anon_vma_clone+0x2bd/0xc70 [ 146.399286][ T6972] __split_vma+0x51f/0xd90 [ 146.399328][ T6972] ? __pfx___split_vma+0x10/0x10 [ 146.399378][ T6972] ? __pfx_mas_prev+0x10/0x10 [ 146.399440][ T6972] vms_gather_munmap_vmas+0x39f/0x1500 [ 146.399495][ T6972] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 146.399546][ T6972] ? mas_walk+0x6ef/0x9b0 [ 146.399589][ T6972] __mmap_region+0x492/0x29e0 [ 146.399634][ T6972] ? update_cfs_rq_load_avg+0x51/0x550 [ 146.399669][ T6972] ? __pfx___mmap_region+0x10/0x10 [ 146.399719][ T6972] ? set_next_entity+0x11e/0x9c0 [ 146.399769][ T6972] ? __lock_acquire+0x4a5/0x2630 [ 146.399804][ T6972] ? update_cfs_rq_load_avg+0x51/0x550 [ 146.399848][ T6972] ? lock_acquire+0x1cf/0x380 [ 146.399886][ T6972] ? find_held_lock+0x2b/0x80 [ 146.399914][ T6972] ? finish_task_switch.isra.0+0x200/0xb80 [ 146.399945][ T6972] ? finish_task_switch.isra.0+0x200/0xb80 [ 146.399995][ T6972] ? trace_sched_exit_tp+0x13a/0x180 [ 146.400032][ T6972] ? __schedule+0x1000/0x6120 [ 146.400119][ T6972] ? rcu_is_watching+0x12/0xc0 [ 146.400164][ T6972] ? cap_capable+0x107/0x460 [ 146.400213][ T6972] mmap_region+0x180/0x3e0 [ 146.400267][ T6972] do_mmap+0xc63/0x12f0 [ 146.400310][ T6972] ? __pfx_do_mmap+0x10/0x10 [ 146.400343][ T6972] ? __pfx_down_write_killable+0x10/0x10 [ 146.400403][ T6972] vm_mmap_pgoff+0x29e/0x470 [ 146.400446][ T6972] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 146.400482][ T6972] ? do_futex+0x192/0x350 [ 146.400523][ T6972] ? __pfx_do_futex+0x10/0x10 [ 146.400579][ T6972] ksys_mmap_pgoff+0xe1/0x650 [ 146.400612][ T6972] ? __x64_sys_futex+0x34f/0x4d0 [ 146.400649][ T6972] ? __x64_sys_futex+0x358/0x4d0 [ 146.400690][ T6972] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 146.400724][ T6972] ? xfd_validate_state+0x129/0x190 [ 146.400777][ T6972] __x64_sys_mmap+0x125/0x190 [ 146.400830][ T6972] do_syscall_64+0x106/0xf80 [ 146.400865][ T6972] ? clear_bhb_loop+0x40/0x90 [ 146.400901][ T6972] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 146.400929][ T6972] RIP: 0033:0x7f0c0b59c799 [ 146.400956][ T6972] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 146.400982][ T6972] RSP: 002b:00007f0c0c504028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 146.401011][ T6972] RAX: ffffffffffffffda RBX: 00007f0c0b815fa0 RCX: 00007f0c0b59c799 [ 146.401030][ T6972] RDX: 00000000000000df RSI: 0000000000000005 RDI: 0000000000000000 [ 146.401048][ T6972] RBP: 00007f0c0b632bd9 R08: 0000000000000002 R09: 0000000000008000 [ 146.401065][ T6972] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 146.401084][ T6972] R13: 00007f0c0b816038 R14: 00007f0c0b815fa0 R15: 00007ffefd086258 [ 146.401127][ T6972] [ 147.643883][ T6996] input: 00 [ 147.643883][ T6996] as /devices/virtual/input/input12 [ 147.660345][ T6996] FAULT_INJECTION: forcing a failure. [ 147.660345][ T6996] name failslab, interval 1, probability 0, space 0, times 0 [ 147.674244][ T6996] CPU: 0 UID: 0 PID: 6996 Comm: syz.1.372 Not tainted syzkaller #0 PREEMPT(full) [ 147.674287][ T6996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 147.674305][ T6996] Call Trace: [ 147.674315][ T6996] [ 147.674326][ T6996] dump_stack_lvl+0x100/0x190 [ 147.674377][ T6996] should_fail_ex.cold+0x5/0xa [ 147.674412][ T6996] should_failslab+0xc2/0x120 [ 147.674443][ T6996] __kmalloc_cache_noprof+0x7a/0x6f0 [ 147.674481][ T6996] ? kobject_uevent_env+0x263/0x18b0 [ 147.674532][ T6996] kobject_uevent_env+0x263/0x18b0 [ 147.674581][ T6996] ? kernfs_put+0x3f/0x60 [ 147.674619][ T6996] ? sysfs_do_create_link_sd+0xbb/0x140 [ 147.674651][ T6996] ? bus_to_subsys+0x114/0x150 [ 147.674680][ T6996] device_add+0x116e/0x1950 [ 147.674720][ T6996] ? __pfx_device_add+0x10/0x10 [ 147.674764][ T6996] ? kobject_get+0xbb/0x150 [ 147.674796][ T6996] cdev_device_add+0x12b/0x270 [ 147.674821][ T6996] evdev_connect+0x3a8/0x4b0 [ 147.674855][ T6996] input_attach_handler.isra.0+0x177/0x1e0 [ 147.674890][ T6996] input_register_device.cold+0x139/0x375 [ 147.674924][ T6996] uinput_ioctl_handler.isra.0+0x8d8/0x1d10 [ 147.674962][ T6996] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 147.674994][ T6996] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 147.675038][ T6996] ? find_held_lock+0x2b/0x80 [ 147.675059][ T6996] ? __fget_files+0x215/0x3d0 [ 147.675110][ T6996] ? __pfx_uinput_ioctl+0x10/0x10 [ 147.675147][ T6996] __x64_sys_ioctl+0x18e/0x210 [ 147.675190][ T6996] do_syscall_64+0x106/0xf80 [ 147.675216][ T6996] ? clear_bhb_loop+0x40/0x90 [ 147.675245][ T6996] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.675269][ T6996] RIP: 0033:0x7ff40fd9c799 [ 147.675289][ T6996] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 147.675311][ T6996] RSP: 002b:00007ff410c38028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 147.675335][ T6996] RAX: ffffffffffffffda RBX: 00007ff410015fa0 RCX: 00007ff40fd9c799 [ 147.675351][ T6996] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000005 [ 147.675364][ T6996] RBP: 00007ff40fe32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 147.675378][ T6996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 147.675392][ T6996] R13: 00007ff410016038 R14: 00007ff410015fa0 R15: 00007ffc97f682c8 [ 147.675425][ T6996] [ 148.213810][ T6990] FAULT_INJECTION: forcing a failure. [ 148.213810][ T6990] name failslab, interval 1, probability 0, space 0, times 0 [ 148.237223][ T6990] CPU: 0 UID: 0 PID: 6990 Comm: syz.3.369 Not tainted syzkaller #0 PREEMPT(full) [ 148.237264][ T6990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 148.237282][ T6990] Call Trace: [ 148.237292][ T6990] [ 148.237304][ T6990] dump_stack_lvl+0x100/0x190 [ 148.237363][ T6990] should_fail_ex.cold+0x5/0xa [ 148.237399][ T6990] should_failslab+0xc2/0x120 [ 148.237429][ T6990] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 148.237473][ T6990] ? dst_alloc+0x99/0x1a0 [ 148.237506][ T6990] ? __pfx_ip6_dst_gc+0x10/0x10 [ 148.237538][ T6990] dst_alloc+0x99/0x1a0 [ 148.237571][ T6990] ip6_rt_cache_alloc+0x1ea/0x8e0 [ 148.237615][ T6990] ? __pfx_ip6_rt_cache_alloc+0x10/0x10 [ 148.237668][ T6990] ip6_pol_route+0xd59/0x1230 [ 148.237716][ T6990] ? __pfx_ip6_pol_route+0x10/0x10 [ 148.237759][ T6990] ? lock_acquire+0x1cf/0x380 [ 148.237798][ T6990] ? find_held_lock+0x2b/0x80 [ 148.237844][ T6990] ? __pfx_ip6_pol_route_output+0x10/0x10 [ 148.237887][ T6990] fib6_rule_lookup+0x24c/0x720 [ 148.237931][ T6990] ? __pfx_fib6_rule_lookup+0x10/0x10 [ 148.237971][ T6990] ? __pfx___page_table_check_ptes_set+0x10/0x10 [ 148.238020][ T6990] ? find_held_lock+0x2b/0x80 [ 148.238060][ T6990] ? find_held_lock+0x2b/0x80 [ 148.238086][ T6990] ? percpu_ref_put_many.constprop.0+0xc4/0x2a0 [ 148.238134][ T6990] ? percpu_ref_put_many.constprop.0+0xc4/0x2a0 [ 148.238189][ T6990] ip6_route_output_flags+0x1d0/0x650 [ 148.238232][ T6990] ip6_dst_lookup_tail.constprop.0+0x116/0x2110 [ 148.238292][ T6990] ? __pfx_ip6_dst_lookup_tail.constprop.0+0x10/0x10 [ 148.238344][ T6990] ? __lock_acquire+0x4a5/0x2630 [ 148.238407][ T6990] ip6_dst_lookup_flow+0x99/0x1d0 [ 148.238452][ T6990] ? __pfx_ip6_dst_lookup_flow+0x10/0x10 [ 148.238494][ T6990] ? find_held_lock+0x2b/0x80 [ 148.238521][ T6990] ? rawv6_sendmsg+0xb3c/0x4750 [ 148.238558][ T6990] ? rawv6_sendmsg+0xb3c/0x4750 [ 148.238603][ T6990] rawv6_sendmsg+0xe61/0x4750 [ 148.238639][ T6990] ? css_rstat_updated+0x1ce/0x5a0 [ 148.238670][ T6990] ? __pfx___handle_mm_fault+0x10/0x10 [ 148.238714][ T6990] ? aa_profile_af_perm+0x2f1/0x3a0 [ 148.238769][ T6990] ? __pfx_rawv6_sendmsg+0x10/0x10 [ 148.238810][ T6990] ? find_held_lock+0x2b/0x80 [ 148.238844][ T6990] ? __up_read+0x2c5/0x700 [ 148.238915][ T6990] ? __import_iovec+0x1d2/0x640 [ 148.238947][ T6990] ? __pfx_rawv6_sendmsg+0x10/0x10 [ 148.238984][ T6990] ? inet_sendmsg+0x11c/0x140 [ 148.239022][ T6990] inet_sendmsg+0x11c/0x140 [ 148.239063][ T6990] ____sys_sendmsg+0x9ad/0xc30 [ 148.239109][ T6990] ? __pfx_____sys_sendmsg+0x10/0x10 [ 148.239159][ T6990] ? futex_unqueue+0x133/0x2c0 [ 148.239208][ T6990] ___sys_sendmsg+0x190/0x1e0 [ 148.239258][ T6990] ? __pfx____sys_sendmsg+0x10/0x10 [ 148.239304][ T6990] ? __pfx___futex_wait+0x10/0x10 [ 148.239377][ T6990] ? find_held_lock+0x2b/0x80 [ 148.239434][ T6990] __sys_sendmmsg+0x205/0x430 [ 148.239476][ T6990] ? __pfx___sys_sendmmsg+0x10/0x10 [ 148.239525][ T6990] ? __pfx_do_futex+0x10/0x10 [ 148.239581][ T6990] ? xfd_validate_state+0x129/0x190 [ 148.239632][ T6990] __x64_sys_sendmmsg+0x9c/0x100 [ 148.239668][ T6990] ? lockdep_hardirqs_on+0x78/0x100 [ 148.239704][ T6990] do_syscall_64+0x106/0xf80 [ 148.239738][ T6990] ? clear_bhb_loop+0x40/0x90 [ 148.239777][ T6990] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 148.239809][ T6990] RIP: 0033:0x7f250659c799 [ 148.239836][ T6990] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 148.239864][ T6990] RSP: 002b:00007f2507478028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 148.239893][ T6990] RAX: ffffffffffffffda RBX: 00007f2506815fa0 RCX: 00007f250659c799 [ 148.239912][ T6990] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 148.239930][ T6990] RBP: 00007f2506632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 148.239947][ T6990] R10: 0000000007fffffe R11: 0000000000000246 R12: 0000000000000000 [ 148.239965][ T6990] R13: 00007f2506816038 R14: 00007f2506815fa0 R15: 00007ffc1ca14038 [ 148.240008][ T6990] [ 149.202115][ T7008] netlink: 8 bytes leftover after parsing attributes in process `syz.0.376'. [ 150.272937][ T7016] vivid-007: ================= START STATUS ================= [ 150.280957][ T7016] vivid-007: Generate PTS: true [ 150.285879][ T7016] vivid-007: Generate SCR: true [ 150.291353][ T7016] tpg source WxH: 320x240 (Y'CbCr) [ 150.296508][ T7016] tpg field: 1 [ 150.306577][ T7016] tpg crop: (0,0)/320x240 [ 150.344355][ T7016] tpg compose: (0,0)/320x240 [ 150.358177][ T7016] tpg colorspace: 8 [ 150.368834][ T7016] tpg transfer function: 0/0 [ 150.396145][ T7016] tpg Y'CbCr encoding: 0/0 [ 150.416477][ T7016] tpg quantization: 0/0 [ 150.436762][ T7016] tpg RGB range: 0/2 [ 150.446850][ T7016] vivid-007: ================== END STATUS ================== [ 150.572357][ T7034] input: 00 [ 150.572357][ T7034] as /devices/virtual/input/input13 [ 150.595988][ T7034] FAULT_INJECTION: forcing a failure. [ 150.595988][ T7034] name failslab, interval 1, probability 0, space 0, times 0 [ 150.618347][ T7034] CPU: 1 UID: 0 PID: 7034 Comm: syz.2.382 Not tainted syzkaller #0 PREEMPT(full) [ 150.618397][ T7034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 150.618415][ T7034] Call Trace: [ 150.618425][ T7034] [ 150.618437][ T7034] dump_stack_lvl+0x100/0x190 [ 150.618489][ T7034] should_fail_ex.cold+0x5/0xa [ 150.618525][ T7034] should_failslab+0xc2/0x120 [ 150.618556][ T7034] __kmalloc_cache_noprof+0x7a/0x6f0 [ 150.618595][ T7034] ? kobject_uevent_env+0x263/0x18b0 [ 150.618649][ T7034] kobject_uevent_env+0x263/0x18b0 [ 150.618699][ T7034] ? kernfs_put+0x3f/0x60 [ 150.618740][ T7034] ? sysfs_do_create_link_sd+0xbb/0x140 [ 150.618777][ T7034] ? bus_to_subsys+0x114/0x150 [ 150.618812][ T7034] device_add+0x116e/0x1950 [ 150.618865][ T7034] ? __pfx_device_add+0x10/0x10 [ 150.618920][ T7034] ? kobject_get+0xbb/0x150 [ 150.618963][ T7034] cdev_device_add+0x12b/0x270 [ 150.618997][ T7034] evdev_connect+0x3a8/0x4b0 [ 150.619042][ T7034] input_attach_handler.isra.0+0x177/0x1e0 [ 150.619086][ T7034] input_register_device.cold+0x139/0x375 [ 150.619131][ T7034] uinput_ioctl_handler.isra.0+0x8d8/0x1d10 [ 150.619181][ T7034] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 150.619222][ T7034] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 150.619282][ T7034] ? find_held_lock+0x2b/0x80 [ 150.619311][ T7034] ? __fget_files+0x215/0x3d0 [ 150.619417][ T7034] ? __pfx_uinput_ioctl+0x10/0x10 [ 150.619466][ T7034] __x64_sys_ioctl+0x18e/0x210 [ 150.619511][ T7034] do_syscall_64+0x106/0xf80 [ 150.619545][ T7034] ? clear_bhb_loop+0x40/0x90 [ 150.619584][ T7034] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 150.619615][ T7034] RIP: 0033:0x7f230239c799 [ 150.619640][ T7034] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 150.619666][ T7034] RSP: 002b:00007f2303251028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 150.619694][ T7034] RAX: ffffffffffffffda RBX: 00007f2302615fa0 RCX: 00007f230239c799 [ 150.619713][ T7034] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000005 [ 150.619729][ T7034] RBP: 00007f2302432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 150.619745][ T7034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 150.619762][ T7034] R13: 00007f2302616038 R14: 00007f2302615fa0 R15: 00007ffc86abb6b8 [ 150.619804][ T7034] [ 151.449057][ T7041] sp0: Synchronizing with TNC [ 152.960749][ T7067] netlink: 28 bytes leftover after parsing attributes in process `syz.1.390'. [ 153.397113][ T7073] input: 00 [ 153.397113][ T7073] as /devices/virtual/input/input14 [ 153.439977][ T7073] FAULT_INJECTION: forcing a failure. [ 153.439977][ T7073] name failslab, interval 1, probability 0, space 0, times 0 [ 153.461131][ T7073] CPU: 0 UID: 0 PID: 7073 Comm: syz.0.392 Not tainted syzkaller #0 PREEMPT(full) [ 153.461173][ T7073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 153.461192][ T7073] Call Trace: [ 153.461202][ T7073] [ 153.461214][ T7073] dump_stack_lvl+0x100/0x190 [ 153.461266][ T7073] should_fail_ex.cold+0x5/0xa [ 153.461301][ T7073] ? kobject_get_path+0xcf/0x2c0 [ 153.461339][ T7073] should_failslab+0xc2/0x120 [ 153.461371][ T7073] __kmalloc_noprof+0xe0/0x850 [ 153.461427][ T7073] kobject_get_path+0xcf/0x2c0 [ 153.461475][ T7073] kobject_uevent_env+0x287/0x18b0 [ 153.461525][ T7073] ? kernfs_put+0x3f/0x60 [ 153.461567][ T7073] ? sysfs_do_create_link_sd+0xbb/0x140 [ 153.461606][ T7073] ? bus_to_subsys+0x114/0x150 [ 153.461645][ T7073] device_add+0x116e/0x1950 [ 153.461698][ T7073] ? __pfx_device_add+0x10/0x10 [ 153.461754][ T7073] ? kobject_get+0xbb/0x150 [ 153.461797][ T7073] cdev_device_add+0x12b/0x270 [ 153.461831][ T7073] evdev_connect+0x3a8/0x4b0 [ 153.461877][ T7073] input_attach_handler.isra.0+0x177/0x1e0 [ 153.461923][ T7073] input_register_device.cold+0x139/0x375 [ 153.461969][ T7073] uinput_ioctl_handler.isra.0+0x8d8/0x1d10 [ 153.462020][ T7073] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 153.462079][ T7073] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 153.462140][ T7073] ? find_held_lock+0x2b/0x80 [ 153.462170][ T7073] ? __fget_files+0x215/0x3d0 [ 153.462239][ T7073] ? __pfx_uinput_ioctl+0x10/0x10 [ 153.462289][ T7073] __x64_sys_ioctl+0x18e/0x210 [ 153.462335][ T7073] do_syscall_64+0x106/0xf80 [ 153.462370][ T7073] ? clear_bhb_loop+0x40/0x90 [ 153.462409][ T7073] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 153.462441][ T7073] RIP: 0033:0x7f0c0b59c799 [ 153.462467][ T7073] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 153.462496][ T7073] RSP: 002b:00007f0c0c504028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 153.462526][ T7073] RAX: ffffffffffffffda RBX: 00007f0c0b815fa0 RCX: 00007f0c0b59c799 [ 153.462546][ T7073] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000005 [ 153.462564][ T7073] RBP: 00007f0c0b632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 153.462582][ T7073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 153.462599][ T7073] R13: 00007f0c0b816038 R14: 00007f0c0b815fa0 R15: 00007ffefd086258 [ 153.462641][ T7073] [ 153.866733][ T7082] usb usb15: usbfs: interface 0 claimed by hub while 'syz.3.395' sets config #0 [ 154.536591][ T7101] FAULT_INJECTION: forcing a failure. [ 154.536591][ T7101] name failslab, interval 1, probability 0, space 0, times 0 [ 154.599302][ T7101] CPU: 0 UID: 0 PID: 7101 Comm: syz.0.401 Not tainted syzkaller #0 PREEMPT(full) [ 154.599366][ T7101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 154.599384][ T7101] Call Trace: [ 154.599395][ T7101] [ 154.599407][ T7101] dump_stack_lvl+0x100/0x190 [ 154.599460][ T7101] should_fail_ex.cold+0x5/0xa [ 154.599496][ T7101] should_failslab+0xc2/0x120 [ 154.599529][ T7101] __kmalloc_cache_noprof+0x7a/0x6f0 [ 154.599574][ T7101] ? trace_pid_list_alloc+0x232/0x480 [ 154.599617][ T7101] ? lockdep_init_map_type+0x5c/0x250 [ 154.599665][ T7101] trace_pid_list_alloc+0x232/0x480 [ 154.599717][ T7101] trace_pid_write+0x110/0x460 [ 154.599766][ T7101] ? __pfx_trace_pid_write+0x10/0x10 [ 154.599839][ T7101] event_pid_write.isra.0+0x1e4/0x800 [ 154.599891][ T7101] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 154.599952][ T7101] vfs_write+0x2aa/0x1070 [ 154.600001][ T7101] ? __pfx_ftrace_event_npid_write+0x10/0x10 [ 154.600053][ T7101] ? __pfx_vfs_write+0x10/0x10 [ 154.600099][ T7101] ? __fget_files+0x215/0x3d0 [ 154.600157][ T7101] ? __fget_files+0x21f/0x3d0 [ 154.600217][ T7101] ksys_write+0x12a/0x250 [ 154.600264][ T7101] ? __pfx_ksys_write+0x10/0x10 [ 154.600330][ T7101] do_syscall_64+0x106/0xf80 [ 154.600365][ T7101] ? clear_bhb_loop+0x40/0x90 [ 154.600405][ T7101] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.600437][ T7101] RIP: 0033:0x7f0c0b59c799 [ 154.600463][ T7101] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 154.600491][ T7101] RSP: 002b:00007f0c0c504028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 154.600521][ T7101] RAX: ffffffffffffffda RBX: 00007f0c0b815fa0 RCX: 00007f0c0b59c799 [ 154.600542][ T7101] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 154.600560][ T7101] RBP: 00007f0c0b632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 154.600577][ T7101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 154.600594][ T7101] R13: 00007f0c0b816038 R14: 00007f0c0b815fa0 R15: 00007ffefd086258 [ 154.600636][ T7101] [ 155.516663][ T7099] vivid-007: ================= START STATUS ================= [ 155.529804][ T7099] vivid-007: Generate PTS: true [ 155.534859][ T7099] vivid-007: Generate SCR: true [ 155.539984][ T7099] tpg source WxH: 320x240 (Y'CbCr) [ 155.546298][ T7099] tpg field: 1 [ 155.549854][ T7099] tpg crop: (0,0)/320x240 [ 155.554440][ T7099] tpg compose: (0,0)/320x240 [ 155.600506][ T7099] tpg colorspace: 8 [ 155.626690][ T7099] tpg transfer function: 0/0 [ 155.655882][ T7099] tpg Y'CbCr encoding: 0/0 [ 155.685740][ T7099] tpg quantization: 0/0 [ 155.724561][ T7099] tpg RGB range: 0/2 [ 155.740104][ T7099] vivid-007: ================== END STATUS ================== [ 155.905828][ T7110] vivid-007: ================= START STATUS ================= [ 155.913858][ T7110] vivid-007: Generate PTS: true [ 155.918863][ T7110] vivid-007: Generate SCR: true [ 155.923788][ T7110] tpg source WxH: 320x240 (Y'CbCr) [ 155.931628][ T7110] tpg field: 1 [ 155.938271][ T7110] tpg crop: (0,0)/320x240 [ 155.968671][ T7110] tpg compose: (0,0)/320x240 [ 155.976810][ T7110] tpg colorspace: 8 [ 155.987197][ T7110] tpg transfer function: 0/0 [ 156.005269][ T7110] tpg Y'CbCr encoding: 0/0 [ 156.014868][ T7110] tpg quantization: 0/0 [ 156.034799][ T7110] tpg RGB range: 0/2 [ 156.038766][ T7110] vivid-007: ================== END STATUS ================== [ 156.314130][ T7121] input: 00 [ 156.314130][ T7121] as /devices/virtual/input/input15 [ 156.364021][ T7121] FAULT_INJECTION: forcing a failure. [ 156.364021][ T7121] name failslab, interval 1, probability 0, space 0, times 0 [ 156.438254][ T7121] CPU: 1 UID: 0 PID: 7121 Comm: syz.2.406 Not tainted syzkaller #0 PREEMPT(full) [ 156.438294][ T7121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 156.438309][ T7121] Call Trace: [ 156.438319][ T7121] [ 156.438330][ T7121] dump_stack_lvl+0x100/0x190 [ 156.438375][ T7121] should_fail_ex.cold+0x5/0xa [ 156.438408][ T7121] should_failslab+0xc2/0x120 [ 156.438437][ T7121] __kmalloc_cache_noprof+0x7a/0x6f0 [ 156.438471][ T7121] ? kobject_uevent_env+0x263/0x18b0 [ 156.438521][ T7121] kobject_uevent_env+0x263/0x18b0 [ 156.438567][ T7121] ? kernfs_put+0x3f/0x60 [ 156.438609][ T7121] ? sysfs_do_create_link_sd+0xbb/0x140 [ 156.438648][ T7121] ? bus_to_subsys+0x114/0x150 [ 156.438686][ T7121] device_add+0x116e/0x1950 [ 156.438737][ T7121] ? __pfx_device_add+0x10/0x10 [ 156.438795][ T7121] ? kobject_get+0xbb/0x150 [ 156.438836][ T7121] cdev_device_add+0x12b/0x270 [ 156.438869][ T7121] evdev_connect+0x3a8/0x4b0 [ 156.438913][ T7121] input_attach_handler.isra.0+0x177/0x1e0 [ 156.438957][ T7121] input_register_device.cold+0x139/0x375 [ 156.439002][ T7121] uinput_ioctl_handler.isra.0+0x8d8/0x1d10 [ 156.439063][ T7121] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 156.439105][ T7121] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 156.439164][ T7121] ? find_held_lock+0x2b/0x80 [ 156.439192][ T7121] ? __fget_files+0x215/0x3d0 [ 156.439256][ T7121] ? __pfx_uinput_ioctl+0x10/0x10 [ 156.439304][ T7121] __x64_sys_ioctl+0x18e/0x210 [ 156.439348][ T7121] do_syscall_64+0x106/0xf80 [ 156.439381][ T7121] ? clear_bhb_loop+0x40/0x90 [ 156.439419][ T7121] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 156.439449][ T7121] RIP: 0033:0x7f230239c799 [ 156.439474][ T7121] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 156.439500][ T7121] RSP: 002b:00007f2303251028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 156.439529][ T7121] RAX: ffffffffffffffda RBX: 00007f2302615fa0 RCX: 00007f230239c799 [ 156.439546][ T7121] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000006 [ 156.439562][ T7121] RBP: 00007f2302432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 156.439579][ T7121] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 156.439595][ T7121] R13: 00007f2302616038 R14: 00007f2302615fa0 R15: 00007ffc86abb6b8 [ 156.439634][ T7121] [ 157.442892][ T7137] netlink: 4 bytes leftover after parsing attributes in process `syz.2.410'. [ 157.560851][ T7139] netlink: 25 bytes leftover after parsing attributes in process `syz.2.410'. [ 157.677257][ T7136] syz.0.411 uses obsolete (PF_INET,SOCK_PACKET) [ 159.596482][ T7163] input: 00 [ 159.596482][ T7163] as /devices/virtual/input/input16 [ 159.628994][ T7163] FAULT_INJECTION: forcing a failure. [ 159.628994][ T7163] name failslab, interval 1, probability 0, space 0, times 0 [ 159.651008][ T7163] CPU: 0 UID: 0 PID: 7163 Comm: syz.0.418 Not tainted syzkaller #0 PREEMPT(full) [ 159.651053][ T7163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 159.651070][ T7163] Call Trace: [ 159.651080][ T7163] [ 159.651093][ T7163] dump_stack_lvl+0x100/0x190 [ 159.651145][ T7163] should_fail_ex.cold+0x5/0xa [ 159.651182][ T7163] ? kobject_get_path+0xcf/0x2c0 [ 159.651219][ T7163] should_failslab+0xc2/0x120 [ 159.651250][ T7163] __kmalloc_noprof+0xe0/0x850 [ 159.651304][ T7163] kobject_get_path+0xcf/0x2c0 [ 159.651362][ T7163] kobject_uevent_env+0x287/0x18b0 [ 159.651410][ T7163] ? kernfs_put+0x3f/0x60 [ 159.651453][ T7163] ? sysfs_do_create_link_sd+0xbb/0x140 [ 159.651492][ T7163] ? bus_to_subsys+0x114/0x150 [ 159.651531][ T7163] device_add+0x116e/0x1950 [ 159.651584][ T7163] ? __pfx_device_add+0x10/0x10 [ 159.651649][ T7163] ? kobject_get+0xbb/0x150 [ 159.651692][ T7163] cdev_device_add+0x12b/0x270 [ 159.651725][ T7163] evdev_connect+0x3a8/0x4b0 [ 159.651777][ T7163] input_attach_handler.isra.0+0x177/0x1e0 [ 159.651821][ T7163] input_register_device.cold+0x139/0x375 [ 159.651866][ T7163] uinput_ioctl_handler.isra.0+0x8d8/0x1d10 [ 159.651918][ T7163] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 159.651962][ T7163] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 159.652023][ T7163] ? find_held_lock+0x2b/0x80 [ 159.652052][ T7163] ? __fget_files+0x215/0x3d0 [ 159.652173][ T7163] ? __pfx_uinput_ioctl+0x10/0x10 [ 159.652225][ T7163] __x64_sys_ioctl+0x18e/0x210 [ 159.652267][ T7163] do_syscall_64+0x106/0xf80 [ 159.652299][ T7163] ? clear_bhb_loop+0x40/0x90 [ 159.652338][ T7163] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 159.652371][ T7163] RIP: 0033:0x7f0c0b59c799 [ 159.652398][ T7163] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 159.652425][ T7163] RSP: 002b:00007f0c0c504028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 159.652452][ T7163] RAX: ffffffffffffffda RBX: 00007f0c0b815fa0 RCX: 00007f0c0b59c799 [ 159.652472][ T7163] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000006 [ 159.652489][ T7163] RBP: 00007f0c0b632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 159.652507][ T7163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 159.652524][ T7163] R13: 00007f0c0b816038 R14: 00007f0c0b815fa0 R15: 00007ffefd086258 [ 159.652577][ T7163] [ 160.319322][ T7165] vivid-007: ================= START STATUS ================= [ 160.327915][ T7165] vivid-007: Generate PTS: true [ 160.333066][ T7165] vivid-007: Generate SCR: true [ 160.337983][ T7165] tpg source WxH: 320x240 (Y'CbCr) [ 160.353632][ T7165] tpg field: 1 [ 160.357145][ T7165] tpg crop: (0,0)/320x240 [ 160.391458][ T7165] tpg compose: (0,0)/320x240 [ 160.401372][ T7165] tpg colorspace: 8 [ 160.426703][ T7165] tpg transfer function: 0/0 [ 160.440543][ T7165] tpg Y'CbCr encoding: 0/0 [ 160.497059][ T7165] tpg quantization: 0/0 [ 160.504865][ T7165] tpg RGB range: 0/2 [ 160.508999][ T7165] vivid-007: ================== END STATUS ================== [ 161.238190][ T7185] netlink: 330 bytes leftover after parsing attributes in process `syz.1.423'. [ 161.667166][ T7192] FAULT_INJECTION: forcing a failure. [ 161.667166][ T7192] name failslab, interval 1, probability 0, space 0, times 0 [ 161.681495][ T7192] CPU: 1 UID: 0 PID: 7192 Comm: syz.1.425 Not tainted syzkaller #0 PREEMPT(full) [ 161.681538][ T7192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 161.681556][ T7192] Call Trace: [ 161.681566][ T7192] [ 161.681577][ T7192] dump_stack_lvl+0x100/0x190 [ 161.681627][ T7192] should_fail_ex.cold+0x5/0xa [ 161.681662][ T7192] ? __alloc_workqueue+0x148/0x1880 [ 161.681696][ T7192] should_failslab+0xc2/0x120 [ 161.681728][ T7192] __kmalloc_noprof+0xe0/0x850 [ 161.681778][ T7192] __alloc_workqueue+0x148/0x1880 [ 161.681826][ T7192] alloc_workqueue_noprof+0xd2/0x200 [ 161.681862][ T7192] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 161.681901][ T7192] ? rcu_is_watching+0x12/0xc0 [ 161.681945][ T7192] ? trace_kmalloc+0x101/0x130 [ 161.681969][ T7192] ? __kasan_kmalloc+0xaa/0xb0 [ 161.682006][ T7192] ? __kmalloc_noprof+0x320/0x850 [ 161.682047][ T7192] ieee80211_register_hw+0x1f80/0x4140 [ 161.682108][ T7192] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 161.682148][ T7192] ? __pfx___debug_object_init+0x10/0x10 [ 161.682210][ T7192] ? find_held_lock+0x2b/0x80 [ 161.682243][ T7192] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 161.682289][ T7192] ? __hrtimer_setup+0x178/0x280 [ 161.682330][ T7192] mac80211_hwsim_new_radio+0x2847/0x57d0 [ 161.682394][ T7192] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 161.682443][ T7192] hwsim_new_radio_nl+0xc1f/0x1340 [ 161.682485][ T7192] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 161.682536][ T7192] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280 [ 161.682580][ T7192] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280 [ 161.682631][ T7192] genl_family_rcv_msg_doit+0x214/0x300 [ 161.682680][ T7192] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 161.682724][ T7192] ? genl_get_cmd+0x3ef/0x720 [ 161.682773][ T7192] ? bpf_lsm_capable+0x9/0x10 [ 161.682804][ T7192] ? security_capable+0x80/0x260 [ 161.682844][ T7192] ? ns_capable+0xd2/0xf0 [ 161.682876][ T7192] genl_rcv_msg+0x560/0x800 [ 161.682921][ T7192] ? __pfx_genl_rcv_msg+0x10/0x10 [ 161.682961][ T7192] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 161.683016][ T7192] netlink_rcv_skb+0x159/0x420 [ 161.683052][ T7192] ? __pfx_genl_rcv_msg+0x10/0x10 [ 161.683099][ T7192] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 161.683155][ T7192] ? netlink_deliver_tap+0x1ae/0xcc0 [ 161.683209][ T7192] genl_rcv+0x28/0x40 [ 161.683245][ T7192] netlink_unicast+0x5aa/0x870 [ 161.683288][ T7192] ? __pfx_netlink_unicast+0x10/0x10 [ 161.683342][ T7192] netlink_sendmsg+0x8b0/0xda0 [ 161.683390][ T7192] ? __pfx_netlink_sendmsg+0x10/0x10 [ 161.683426][ T7192] ? __import_iovec+0x1d2/0x640 [ 161.683460][ T7192] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 161.683508][ T7192] ____sys_sendmsg+0xa54/0xc30 [ 161.683554][ T7192] ? __pfx_____sys_sendmsg+0x10/0x10 [ 161.683602][ T7192] ? try_to_wake_up+0x644/0x1a80 [ 161.683641][ T7192] ___sys_sendmsg+0x190/0x1e0 [ 161.683690][ T7192] ? __pfx____sys_sendmsg+0x10/0x10 [ 161.683734][ T7192] ? futex_private_hash_put+0x107/0x1c0 [ 161.683821][ T7192] __sys_sendmsg+0x170/0x220 [ 161.683857][ T7192] ? __pfx___sys_sendmsg+0x10/0x10 [ 161.683892][ T7192] ? __x64_sys_futex+0x34f/0x4d0 [ 161.683955][ T7192] do_syscall_64+0x106/0xf80 [ 161.683987][ T7192] ? clear_bhb_loop+0x40/0x90 [ 161.684026][ T7192] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 161.684058][ T7192] RIP: 0033:0x7ff40fd9c799 [ 161.684085][ T7192] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 161.684113][ T7192] RSP: 002b:00007ff410c38028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 161.684144][ T7192] RAX: ffffffffffffffda RBX: 00007ff410015fa0 RCX: 00007ff40fd9c799 [ 161.684164][ T7192] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007 [ 161.684183][ T7192] RBP: 00007ff40fe32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 161.684209][ T7192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 161.684227][ T7192] R13: 00007ff410016038 R14: 00007ff410015fa0 R15: 00007ffc97f682c8 [ 161.684272][ T7192] [ 162.297666][ T7199] netlink: 25 bytes leftover after parsing attributes in process `syz.2.428'. [ 162.623002][ T7211] FAULT_INJECTION: forcing a failure. [ 162.623002][ T7211] name failslab, interval 1, probability 0, space 0, times 0 [ 162.636580][ T7211] CPU: 0 UID: 0 PID: 7211 Comm: syz.1.431 Not tainted syzkaller #0 PREEMPT(full) [ 162.636621][ T7211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 162.636640][ T7211] Call Trace: [ 162.636649][ T7211] [ 162.636661][ T7211] dump_stack_lvl+0x100/0x190 [ 162.636715][ T7211] should_fail_ex.cold+0x5/0xa [ 162.636754][ T7211] should_failslab+0xc2/0x120 [ 162.636787][ T7211] __kmalloc_cache_noprof+0x7a/0x6f0 [ 162.636821][ T7211] ? apply_subsystem_event_filter+0x45a/0x17d0 [ 162.636855][ T7211] apply_subsystem_event_filter+0x45a/0x17d0 [ 162.636892][ T7211] ? __pfx_apply_subsystem_event_filter+0x10/0x10 [ 162.636925][ T7211] ? _copy_from_user+0x59/0xd0 [ 162.636979][ T7211] ? __pfx_subsystem_filter_write+0x10/0x10 [ 162.637006][ T7211] subsystem_filter_write+0x95/0x120 [ 162.637036][ T7211] vfs_writev+0x5ea/0xe10 [ 162.637062][ T7211] ? rcu_is_watching+0x12/0xc0 [ 162.637096][ T7211] ? __pfx_vfs_writev+0x10/0x10 [ 162.637122][ T7211] ? fdget_pos+0x2aa/0x380 [ 162.637156][ T7211] ? __fget_files+0x21f/0x3d0 [ 162.637190][ T7211] ? do_writev+0x13e/0x340 [ 162.637217][ T7211] do_writev+0x13e/0x340 [ 162.637245][ T7211] ? __pfx_do_writev+0x10/0x10 [ 162.637279][ T7211] do_syscall_64+0x106/0xf80 [ 162.637308][ T7211] ? clear_bhb_loop+0x40/0x90 [ 162.637331][ T7211] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 162.637351][ T7211] RIP: 0033:0x7ff40fd9c799 [ 162.637368][ T7211] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 162.637386][ T7211] RSP: 002b:00007ff410c17028 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 162.637405][ T7211] RAX: ffffffffffffffda RBX: 00007ff410016090 RCX: 00007ff40fd9c799 [ 162.637417][ T7211] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000007 [ 162.637428][ T7211] RBP: 00007ff40fe32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 162.637438][ T7211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 162.637448][ T7211] R13: 00007ff410016128 R14: 00007ff410016090 R15: 00007ffc97f682c8 [ 162.637472][ T7211] [ 163.543105][ T7224] can0: slcan on ttyS2. [ 163.591010][ T7219] vivid-007: ================= START STATUS ================= [ 163.610931][ T7223] can0 (unregistered): slcan off ttyS2. [ 163.677609][ T7219] vivid-007: Generate PTS: true [ 163.697878][ T7219] vivid-007: Generate SCR: true [ 163.709019][ T7219] tpg source WxH: 320x240 (Y'CbCr) [ 163.714202][ T7219] tpg field: 1 [ 163.769586][ T7219] tpg crop: (0,0)/320x240 [ 163.774057][ T7219] tpg compose: (0,0)/320x240 [ 163.778732][ T7219] tpg colorspace: 8 [ 163.792829][ T7219] tpg transfer function: 0/0 [ 163.797583][ T7219] tpg Y'CbCr encoding: 0/0 [ 163.803719][ T7228] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size [ 163.850730][ T7219] tpg quantization: 0/0 [ 163.856960][ T7219] tpg RGB range: 0/2 [ 163.862544][ T7219] vivid-007: ================== END STATUS ================== [ 164.804059][ T7247] FAULT_INJECTION: forcing a failure. [ 164.804059][ T7247] name failslab, interval 1, probability 0, space 0, times 0 [ 164.835601][ T7247] CPU: 0 UID: 0 PID: 7247 Comm: syz.1.442 Not tainted syzkaller #0 PREEMPT(full) [ 164.835628][ T7247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 164.835638][ T7247] Call Trace: [ 164.835645][ T7247] [ 164.835653][ T7247] dump_stack_lvl+0x100/0x190 [ 164.835685][ T7247] should_fail_ex.cold+0x5/0xa [ 164.835707][ T7247] should_failslab+0xc2/0x120 [ 164.835727][ T7247] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 164.835753][ T7247] ? __kernfs_new_node+0xd2/0x960 [ 164.835783][ T7247] __kernfs_new_node+0xd2/0x960 [ 164.835807][ T7247] ? __lock_acquire+0x4a5/0x2630 [ 164.835832][ T7247] ? __pfx___kernfs_new_node+0x10/0x10 [ 164.835863][ T7247] ? find_held_lock+0x2b/0x80 [ 164.835879][ T7247] ? kernfs_root+0xee/0x2a0 [ 164.835903][ T7247] ? kernfs_root+0xee/0x2a0 [ 164.835933][ T7247] kernfs_new_node+0x11b/0x1a0 [ 164.835967][ T7247] kernfs_create_dir_ns+0x4c/0x1a0 [ 164.835998][ T7247] sysfs_create_dir_ns+0x13a/0x2b0 [ 164.836031][ T7247] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 164.836055][ T7247] ? sysfs_create_dir_ns+0x14c/0x2b0 [ 164.836078][ T7247] ? kfree_const+0x5a/0x70 [ 164.836105][ T7247] ? rcu_is_watching+0x12/0xc0 [ 164.836133][ T7247] ? kfree_const+0x5a/0x70 [ 164.836159][ T7247] ? kfree+0x2ec/0x6b0 [ 164.836184][ T7247] kobject_add_internal+0x2c8/0x930 [ 164.836214][ T7247] kobject_add+0x16a/0x1e0 [ 164.836239][ T7247] ? __pfx_kobject_add+0x10/0x10 [ 164.836267][ T7247] ? __pfx_kobject_add+0x10/0x10 [ 164.836300][ T7247] blk_register_queue+0x8d/0x590 [ 164.836333][ T7247] __add_disk+0x73f/0xe40 [ 164.836360][ T7247] ? find_held_lock+0x2b/0x80 [ 164.836379][ T7247] add_disk_fwnode+0x3d4/0x5c0 [ 164.836409][ T7247] zram_add+0x4d2/0x610 [ 164.836428][ T7247] ? __pfx_zram_add+0x10/0x10 [ 164.836463][ T7247] ? find_held_lock+0x2b/0x80 [ 164.836478][ T7247] ? sysfs_file_kobj+0xe4/0x290 [ 164.836503][ T7247] ? __pfx_hot_add_show+0x10/0x10 [ 164.836522][ T7247] hot_add_show+0x21/0x80 [ 164.836542][ T7247] class_attr_show+0x72/0xa0 [ 164.836571][ T7247] ? __pfx_class_attr_show+0x10/0x10 [ 164.836598][ T7247] sysfs_kf_seq_show+0x217/0x3a0 [ 164.836625][ T7247] seq_read_iter+0x32f/0x1270 [ 164.836663][ T7247] kernfs_fop_read_iter+0x46c/0x610 [ 164.836684][ T7247] ? rw_verify_area+0xce/0x6d0 [ 164.836710][ T7247] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 164.836731][ T7247] vfs_read+0x825/0xb30 [ 164.836763][ T7247] ? __pfx_vfs_read+0x10/0x10 [ 164.836806][ T7247] ksys_read+0x12a/0x250 [ 164.836835][ T7247] ? __pfx_ksys_read+0x10/0x10 [ 164.836870][ T7247] do_syscall_64+0x106/0xf80 [ 164.836890][ T7247] ? clear_bhb_loop+0x40/0x90 [ 164.836913][ T7247] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 164.836951][ T7247] RIP: 0033:0x7ff40fd9c799 [ 164.836968][ T7247] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 164.836985][ T7247] RSP: 002b:00007ff410c38028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 164.837009][ T7247] RAX: ffffffffffffffda RBX: 00007ff410015fa0 RCX: 00007ff40fd9c799 [ 164.837026][ T7247] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000005 [ 164.837037][ T7247] RBP: 00007ff40fe32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 164.837048][ T7247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 164.837058][ T7247] R13: 00007ff410016038 R14: 00007ff410015fa0 R15: 00007ffc97f682c8 [ 164.837083][ T7247] [ 164.837124][ T7247] kobject: kobject_add_internal failed for queue (error: -12 parent: zram4) [ 167.492523][ C1] vcan0: j1939_tp_rxtimer: 0xffff888032d57400: rx timeout, send abort [ 167.806118][ T7290] FAULT_INJECTION: forcing a failure. [ 167.806118][ T7290] name failslab, interval 1, probability 0, space 0, times 0 [ 167.849224][ T7290] CPU: 0 UID: 0 PID: 7290 Comm: syz.2.454 Not tainted syzkaller #0 PREEMPT(full) [ 167.849266][ T7290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 167.849285][ T7290] Call Trace: [ 167.849294][ T7290] [ 167.849305][ T7290] dump_stack_lvl+0x100/0x190 [ 167.849358][ T7290] should_fail_ex.cold+0x5/0xa [ 167.849396][ T7290] should_failslab+0xc2/0x120 [ 167.849430][ T7290] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 167.849471][ T7290] ? __kernfs_new_node+0xd2/0x960 [ 167.849521][ T7290] __kernfs_new_node+0xd2/0x960 [ 167.849560][ T7290] ? __kernel_text_address+0xd/0x30 [ 167.849608][ T7290] ? arch_stack_walk+0xa6/0xf0 [ 167.849639][ T7290] ? __pfx___kernfs_new_node+0x10/0x10 [ 167.849690][ T7290] ? find_held_lock+0x2b/0x80 [ 167.849718][ T7290] ? kernfs_root+0xee/0x2a0 [ 167.849758][ T7290] ? kernfs_root+0xee/0x2a0 [ 167.849806][ T7290] kernfs_new_node+0x11b/0x1a0 [ 167.849859][ T7290] kernfs_create_dir_ns+0x4c/0x1a0 [ 167.849911][ T7290] sysfs_create_dir_ns+0x13a/0x2b0 [ 167.849950][ T7290] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 167.849990][ T7290] ? kfree_const+0x5a/0x70 [ 167.850034][ T7290] ? rcu_is_watching+0x12/0xc0 [ 167.850078][ T7290] ? kfree_const+0x5a/0x70 [ 167.850119][ T7290] ? kfree+0x2ec/0x6b0 [ 167.850161][ T7290] kobject_add_internal+0x2c8/0x930 [ 167.850220][ T7290] kobject_add+0x16a/0x1e0 [ 167.850257][ T7290] ? __pfx_kobject_add+0x10/0x10 [ 167.850321][ T7290] kobject_create_and_add+0x7a/0xc0 [ 167.850366][ T7290] __add_disk+0x6fe/0xe40 [ 167.850408][ T7290] ? find_held_lock+0x2b/0x80 [ 167.850442][ T7290] add_disk_fwnode+0x3d4/0x5c0 [ 167.850492][ T7290] zram_add+0x4d2/0x610 [ 167.850526][ T7290] ? __pfx_zram_add+0x10/0x10 [ 167.850587][ T7290] ? find_held_lock+0x2b/0x80 [ 167.850616][ T7290] ? sysfs_file_kobj+0xe4/0x290 [ 167.850657][ T7290] ? __pfx_hot_add_show+0x10/0x10 [ 167.850690][ T7290] hot_add_show+0x21/0x80 [ 167.850723][ T7290] class_attr_show+0x72/0xa0 [ 167.850770][ T7290] ? __pfx_class_attr_show+0x10/0x10 [ 167.850813][ T7290] sysfs_kf_seq_show+0x217/0x3a0 [ 167.850860][ T7290] seq_read_iter+0x32f/0x1270 [ 167.850923][ T7290] kernfs_fop_read_iter+0x46c/0x610 [ 167.850957][ T7290] ? rw_verify_area+0xce/0x6d0 [ 167.850999][ T7290] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 167.851035][ T7290] vfs_read+0x825/0xb30 [ 167.851086][ T7290] ? __pfx_vfs_read+0x10/0x10 [ 167.851162][ T7290] ksys_read+0x12a/0x250 [ 167.851218][ T7290] ? __pfx_ksys_read+0x10/0x10 [ 167.851280][ T7290] do_syscall_64+0x106/0xf80 [ 167.851315][ T7290] ? clear_bhb_loop+0x40/0x90 [ 167.851353][ T7290] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 167.851385][ T7290] RIP: 0033:0x7f230239c799 [ 167.851411][ T7290] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 167.851439][ T7290] RSP: 002b:00007f2303251028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 167.851469][ T7290] RAX: ffffffffffffffda RBX: 00007f2302615fa0 RCX: 00007f230239c799 [ 167.851488][ T7290] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000005 [ 167.851507][ T7290] RBP: 00007f2302432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 167.851524][ T7290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 167.851542][ T7290] R13: 00007f2302616038 R14: 00007f2302615fa0 R15: 00007ffc86abb6b8 [ 167.851585][ T7290] [ 167.851600][ T7290] kobject: kobject_add_internal failed for slaves (error: -12 parent: zram4) [ 168.001681][ C1] vcan0: j1939_tp_rxtimer: 0xffff888032d57400: abort rx timeout. Force session deactivation [ 168.030068][ T7290] kobject: kobject_create_and_add: kobject_add error: -12 [ 168.879609][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 169.636149][ C1] vcan0: j1939_tp_rxtimer: 0xffff888032c17400: rx timeout, send abort [ 170.144484][ C1] vcan0: j1939_tp_rxtimer: 0xffff888032c17400: abort rx timeout. Force session deactivation [ 171.329261][ T7337] netlink: 4 bytes leftover after parsing attributes in process `syz.0.466'. [ 171.351830][ T7337] netlink: 25 bytes leftover after parsing attributes in process `syz.0.466'. [ 172.318974][ T7345] netlink: 4 bytes leftover after parsing attributes in process `syz.3.469'. [ 172.370124][ T7345] netlink: 25 bytes leftover after parsing attributes in process `syz.3.469'. [ 173.324100][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.330798][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.337490][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.344177][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.350735][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.357221][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.363728][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.370237][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.376717][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.383333][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.389863][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.396354][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.402872][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.409383][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.415859][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.422358][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.428944][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.435452][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.441957][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.448432][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.454951][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.461457][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.467943][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.474440][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.480966][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.487464][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.493968][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.500906][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.507384][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.513990][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.520514][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.527031][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.533537][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.540036][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.546553][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.553054][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.559554][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.566032][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.572582][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.579124][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.585629][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.592159][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.598658][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.605191][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.611707][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.618191][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.624840][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.631392][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.637908][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.644479][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.651008][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.657513][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.664035][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.670549][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.677028][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.683535][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.690158][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.696694][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.703226][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.709750][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.716245][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.722758][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.729287][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.735764][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.743714][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.750329][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.756796][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.763391][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.769945][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.776416][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.782939][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.789434][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.795914][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.802418][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.808950][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.815436][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.821931][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.828400][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.834897][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.841403][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.847886][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.854393][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.860887][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.867352][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.873849][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.880365][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.886889][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.893405][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.899958][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.906447][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.912980][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.919478][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.925954][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.932457][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.938954][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.945422][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.951922][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.958484][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.965024][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.971533][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.978011][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.984519][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.991022][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 173.997534][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.004132][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.010712][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.017178][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.023847][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.030370][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.036879][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.043396][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.049900][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.056396][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.062905][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.069569][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.076032][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.082521][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.089031][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.095493][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.101992][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.108458][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.114955][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.121442][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.127907][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.134395][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.141023][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.147526][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.154055][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.161200][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 174.342837][ T7356] FAULT_INJECTION: forcing a failure. [ 174.342837][ T7356] name failslab, interval 1, probability 0, space 0, times 0 [ 174.357073][ T7356] CPU: 1 UID: 0 PID: 7356 Comm: syz.0.472 Not tainted syzkaller #0 PREEMPT(full) [ 174.357116][ T7356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 174.357134][ T7356] Call Trace: [ 174.357145][ T7356] [ 174.357156][ T7356] dump_stack_lvl+0x100/0x190 [ 174.357206][ T7356] should_fail_ex.cold+0x5/0xa [ 174.357239][ T7356] ? tomoyo_encode2+0xfb/0x3c0 [ 174.357267][ T7356] should_failslab+0xc2/0x120 [ 174.357296][ T7356] __kmalloc_noprof+0xe0/0x850 [ 174.357336][ T7356] ? d_absolute_path+0x136/0x1b0 [ 174.357381][ T7356] tomoyo_encode2+0xfb/0x3c0 [ 174.357418][ T7356] tomoyo_encode+0x29/0x50 [ 174.357447][ T7356] tomoyo_realpath_from_path+0x18c/0x690 [ 174.357490][ T7356] tomoyo_path_number_perm+0x23c/0x580 [ 174.357533][ T7356] ? tomoyo_path_number_perm+0x22e/0x580 [ 174.357581][ T7356] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 174.357624][ T7356] ? find_held_lock+0x2b/0x80 [ 174.357651][ T7356] ? rcu_read_unlock+0x17/0x60 [ 174.357688][ T7356] ? do_raw_spin_lock+0x128/0x260 [ 174.357729][ T7356] ? find_held_lock+0x2b/0x80 [ 174.357777][ T7356] ? __pfx_d_add+0x10/0x10 [ 174.357809][ T7356] ? d_alloc+0x176/0x1e0 [ 174.357838][ T7356] ? current_check_access_path+0x281/0x460 [ 174.357873][ T7356] ? __pfx_current_check_access_path+0x10/0x10 [ 174.357908][ T7356] ? simple_lookup+0x105/0x1d0 [ 174.357979][ T7356] ? lookup_one_qstr_excl+0xb3/0x250 [ 174.358020][ T7356] tomoyo_path_mkdir+0x9b/0xe0 [ 174.358055][ T7356] ? __pfx_tomoyo_path_mkdir+0x10/0x10 [ 174.358100][ T7356] security_path_mkdir+0x154/0x2e0 [ 174.358134][ T7356] filename_mkdirat+0x168/0x5e0 [ 174.358165][ T7356] ? __pfx_filename_mkdirat+0x10/0x10 [ 174.358194][ T7356] ? strncpy_from_user+0x19d/0x2d0 [ 174.358243][ T7356] ? do_getname+0x191/0x390 [ 174.358285][ T7356] __x64_sys_mkdir+0x6b/0x90 [ 174.358317][ T7356] do_syscall_64+0x106/0xf80 [ 174.358349][ T7356] ? clear_bhb_loop+0x40/0x90 [ 174.358385][ T7356] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 174.358413][ T7356] RIP: 0033:0x7f0c0b59c799 [ 174.358437][ T7356] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 174.358463][ T7356] RSP: 002b:00007f0c0c504028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 174.358491][ T7356] RAX: ffffffffffffffda RBX: 00007f0c0b815fa0 RCX: 00007f0c0b59c799 [ 174.358509][ T7356] RDX: 0000000000000000 RSI: 0000000000008001 RDI: 0000200000000100 [ 174.358526][ T7356] RBP: 00007f0c0b632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 174.358542][ T7356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 174.358558][ T7356] R13: 00007f0c0b816038 R14: 00007f0c0b815fa0 R15: 00007ffefd086258 [ 174.358599][ T7356] [ 174.358632][ T7356] ERROR: Out of memory at tomoyo_realpath_from_path. [ 174.917780][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805a88e000: rx timeout, send abort [ 175.426144][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805a88e000: abort rx timeout. Force session deactivation [ 183.072017][ T30] audit: type=1804 audit(2147483665.320:3): pid=7481 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.499" name="/newroot/135/file0" dev="tmpfs" ino=708 res=1 errno=0 [ 183.170718][ T30] audit: type=1804 audit(2147483665.410:4): pid=7483 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.499" name="/newroot/135/file0" dev="tmpfs" ino=708 res=1 errno=0 [ 184.078608][ T7502] sd 0:0:1:0: PR command failed: 1026 [ 184.097080][ T7502] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 184.117373][ T7502] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 184.226727][ T7502] can0: slcan on ttyS2. [ 184.263490][ T7499] vivid-007: ================= START STATUS ================= [ 184.310905][ T7499] vivid-007: Generate PTS: true [ 184.340763][ T7499] vivid-007: Generate SCR: true [ 184.345818][ T7499] tpg source WxH: 320x240 (Y'CbCr) [ 184.355261][ T7499] tpg field: 1 [ 184.361567][ T7499] tpg crop: (0,0)/320x240 [ 184.365950][ T7499] tpg compose: (0,0)/320x240 [ 184.471887][ T7499] tpg colorspace: 8 [ 184.475765][ T7499] tpg transfer function: 0/0 [ 184.486294][ T7499] tpg Y'CbCr encoding: 0/0 [ 184.496910][ T7499] tpg quantization: 0/0 [ 184.512223][ T7499] tpg RGB range: 0/2 [ 184.520697][ T7499] vivid-007: ================== END STATUS ================== [ 184.538623][ T7500] can0 (unregistered): slcan off ttyS2. [ 185.002377][ T7510] Invalid ELF header magic: != ELF [ 185.495950][ T7517] FAULT_INJECTION: forcing a failure. [ 185.495950][ T7517] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 185.562396][ T7517] CPU: 1 UID: 0 PID: 7517 Comm: syz.3.509 Not tainted syzkaller #0 PREEMPT(full) [ 185.562424][ T7517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 185.562435][ T7517] Call Trace: [ 185.562442][ T7517] [ 185.562449][ T7517] dump_stack_lvl+0x100/0x190 [ 185.562482][ T7517] should_fail_ex.cold+0x5/0xa [ 185.562503][ T7517] _copy_from_user+0x2e/0xd0 [ 185.562534][ T7517] get_itimerspec64+0x16c/0x2f0 [ 185.562557][ T7517] ? __pfx_get_itimerspec64+0x10/0x10 [ 185.562579][ T7517] ? __pfx_do_futex+0x10/0x10 [ 185.562606][ T7517] __x64_sys_timerfd_settime+0x15f/0x280 [ 185.562633][ T7517] ? __pfx___x64_sys_timerfd_settime+0x10/0x10 [ 185.562661][ T7517] ? xfd_validate_state+0x129/0x190 [ 185.562695][ T7517] do_syscall_64+0x106/0xf80 [ 185.562716][ T7517] ? clear_bhb_loop+0x40/0x90 [ 185.562738][ T7517] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.562757][ T7517] RIP: 0033:0x7f250659c799 [ 185.562772][ T7517] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 185.562797][ T7517] RSP: 002b:00007f2507478028 EFLAGS: 00000246 ORIG_RAX: 000000000000011e [ 185.562816][ T7517] RAX: ffffffffffffffda RBX: 00007f2506815fa0 RCX: 00007f250659c799 [ 185.562828][ T7517] RDX: 0000200000000040 RSI: 0000000000000003 RDI: ffffffffffffffff [ 185.562839][ T7517] RBP: 00007f2506632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 185.562849][ T7517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 185.562859][ T7517] R13: 00007f2506816038 R14: 00007f2506815fa0 R15: 00007ffc1ca14038 [ 185.562882][ T7517] [ 186.380779][ T7522] zswap: compressor not available [ 186.806700][ T7529] netlink: 146 bytes leftover after parsing attributes in process `syz.2.512'. [ 187.022873][ T7533] netlink: 146 bytes leftover after parsing attributes in process `syz.2.512'. [ 187.879495][ T7534] vivid-007: ================= START STATUS ================= [ 187.887299][ T7534] vivid-007: Generate PTS: true [ 187.910085][ T7534] vivid-007: Generate SCR: true [ 187.938893][ T7534] tpg source WxH: 320x240 (Y'CbCr) [ 187.958817][ T7534] tpg field: 1 [ 187.967068][ T7534] tpg crop: (0,0)/320x240 [ 187.977206][ T7534] tpg compose: (0,0)/320x240 [ 187.988164][ T7534] tpg colorspace: 8 [ 188.182011][ T7534] tpg transfer function: 0/0 [ 188.192111][ T7534] tpg Y'CbCr encoding: 0/0 [ 188.395927][ T7534] tpg quantization: 0/0 [ 188.401793][ T7534] tpg RGB range: 0/2 [ 188.418846][ T7534] vivid-007: ================== END STATUS ================== [ 188.898945][ T7572] random: crng reseeded on system resumption [ 188.986517][ T7572] FAULT_INJECTION: forcing a failure. [ 188.986517][ T7572] name failslab, interval 1, probability 0, space 0, times 0 [ 189.029102][ T7572] CPU: 0 UID: 0 PID: 7572 Comm: syz.2.519 Not tainted syzkaller #0 PREEMPT(full) [ 189.029147][ T7572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 189.029167][ T7572] Call Trace: [ 189.029177][ T7572] [ 189.029190][ T7572] dump_stack_lvl+0x100/0x190 [ 189.029242][ T7572] should_fail_ex.cold+0x5/0xa [ 189.029280][ T7572] ? ops_init+0x77/0x5f0 [ 189.029315][ T7572] should_failslab+0xc2/0x120 [ 189.029348][ T7572] __kmalloc_noprof+0xe0/0x850 [ 189.029409][ T7572] ? __pfx_bareudp_init_net+0x10/0x10 [ 189.029465][ T7572] ops_init+0x77/0x5f0 [ 189.029507][ T7572] setup_net+0x118/0x3a0 [ 189.029548][ T7572] ? __pfx_setup_net+0x10/0x10 [ 189.029584][ T7572] ? lockdep_init_map_type+0x5c/0x250 [ 189.029629][ T7572] ? mutex_init_lockep+0x110/0x150 [ 189.029678][ T7572] copy_net_ns+0x46f/0x7c0 [ 189.029725][ T7572] create_new_namespaces+0x3ea/0xac0 [ 189.029770][ T7572] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 189.029806][ T7572] ksys_unshare+0x473/0xad0 [ 189.029848][ T7572] ? __pfx_ksys_unshare+0x10/0x10 [ 189.029905][ T7572] __x64_sys_unshare+0x31/0x40 [ 189.029944][ T7572] do_syscall_64+0x106/0xf80 [ 189.029979][ T7572] ? clear_bhb_loop+0x40/0x90 [ 189.030019][ T7572] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 189.030060][ T7572] RIP: 0033:0x7f230239c799 [ 189.030087][ T7572] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 189.030123][ T7572] RSP: 002b:00007f2303251028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 189.030153][ T7572] RAX: ffffffffffffffda RBX: 00007f2302615fa0 RCX: 00007f230239c799 [ 189.030174][ T7572] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 189.030193][ T7572] RBP: 00007f2302432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 189.030211][ T7572] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 189.030229][ T7572] R13: 00007f2302616038 R14: 00007f2302615fa0 R15: 00007ffc86abb6b8 [ 189.030272][ T7572] [ 190.560938][ T7591] netlink: 4 bytes leftover after parsing attributes in process `syz.2.523'. [ 190.581283][ T7591] netlink: 13 bytes leftover after parsing attributes in process `syz.2.523'. [ 191.160380][ T7603] netlink: 4 bytes leftover after parsing attributes in process `syz.3.526'. [ 191.225493][ T7603] netlink: 'syz.3.526': attribute type 1 has an invalid length. [ 191.255651][ T7603] netlink: 5 bytes leftover after parsing attributes in process `syz.3.526'. [ 192.090545][ T7614] vivid-007: ================= START STATUS ================= [ 192.098250][ T7614] vivid-007: Generate PTS: true [ 192.103364][ T7614] vivid-007: Generate SCR: true [ 192.108363][ T7614] tpg source WxH: 320x240 (Y'CbCr) [ 192.139146][ T7614] tpg field: 1 [ 192.152561][ T7614] tpg crop: (0,0)/320x240 [ 192.157016][ T7614] tpg compose: (0,0)/320x240 [ 192.209895][ T7614] tpg colorspace: 8 [ 192.213988][ T7614] tpg transfer function: 0/0 [ 192.218629][ T7614] tpg Y'CbCr encoding: 0/0 [ 192.248916][ T7614] tpg quantization: 0/0 [ 192.253143][ T7614] tpg RGB range: 0/2 [ 192.257073][ T7614] vivid-007: ================== END STATUS ================== [ 193.272161][ T7635] vivid-007: ================= START STATUS ================= [ 193.281574][ T7635] vivid-007: Generate PTS: true [ 193.286591][ T7635] vivid-007: Generate SCR: true [ 193.312414][ T7635] tpg source WxH: 320x240 (Y'CbCr) [ 193.318365][ T7635] tpg field: 1 [ 193.341024][ T7635] tpg crop: (0,0)/320x240 [ 193.348208][ T7635] tpg compose: (0,0)/320x240 [ 193.369273][ T7635] tpg colorspace: 8 [ 193.373139][ T7635] tpg transfer function: 0/0 [ 193.378361][ T7635] tpg Y'CbCr encoding: 0/0 [ 193.398855][ T7635] tpg quantization: 0/0 [ 193.403064][ T7635] tpg RGB range: 0/2 [ 193.403884][ T7638] snd_virmidi snd_virmidi.0: control 1:-5:4194312:1Õ…:0 is already present [ 193.406981][ T7635] vivid-007: ================== END STATUS ================== [ 193.407056][ T7631] vivid-007: ================= START STATUS ================= [ 193.453963][ T7631] vivid-007: Generate PTS: true [ 193.473342][ T7631] vivid-007: Generate SCR: true [ 193.483384][ T7631] tpg source WxH: 320x240 (Y'CbCr) [ 193.515973][ T7631] tpg field: 1 [ 193.526142][ T7631] tpg crop: (0,0)/320x240 [ 193.539065][ T7631] tpg compose: (0,0)/320x240 [ 193.638884][ T7631] tpg colorspace: 8 [ 193.643051][ T7631] tpg transfer function: 0/0 [ 193.647681][ T7631] tpg Y'CbCr encoding: 0/0 [ 193.726935][ T7631] tpg quantization: 0/0 [ 193.768939][ T7631] tpg RGB range: 0/2 [ 193.772910][ T7631] vivid-007: ================== END STATUS ================== [ 194.551285][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.557669][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 196.061159][ T7666] vivid-007: ================= START STATUS ================= [ 196.079074][ T7666] vivid-007: Generate PTS: true [ 196.084013][ T7666] vivid-007: Generate SCR: true [ 196.089602][ T7666] tpg source WxH: 320x240 (Y'CbCr) [ 196.094768][ T7666] tpg field: 1 [ 196.098172][ T7666] tpg crop: (0,0)/320x240 [ 196.130517][ T7666] tpg compose: (0,0)/320x240 [ 196.139200][ T7666] tpg colorspace: 8 [ 196.148890][ T7666] tpg transfer function: 0/0 [ 196.153522][ T7666] tpg Y'CbCr encoding: 0/0 [ 196.178590][ T7666] tpg quantization: 0/0 [ 196.190481][ T7666] tpg RGB range: 0/2 [ 196.194518][ T7666] vivid-007: ================== END STATUS ================== [ 199.465821][ T7693] vivid-007: ================= START STATUS ================= [ 199.478826][ T7693] vivid-007: Generate PTS: true [ 199.489235][ T7693] vivid-007: Generate SCR: true [ 199.505328][ T7693] tpg source WxH: 320x240 (Y'CbCr) [ 199.510875][ T7693] tpg field: 1 [ 199.514290][ T7693] tpg crop: (0,0)/320x240 [ 199.535947][ T7693] tpg compose: (0,0)/320x240 [ 199.598891][ T7693] tpg colorspace: 8 [ 199.602917][ T7693] tpg transfer function: 0/0 [ 199.607632][ T7693] tpg Y'CbCr encoding: 0/0 [ 199.742385][ T7693] tpg quantization: 0/0 [ 199.746616][ T7693] tpg RGB range: 0/2 [ 199.798818][ T7693] vivid-007: ================== END STATUS ================== [ 200.271531][ T7709] netlink: 'syz.1.553': attribute type 64 has an invalid length. [ 200.299812][ T7709] netlink: 74 bytes leftover after parsing attributes in process `syz.1.553'. [ 200.886075][ T7716] vivid-007: ================= START STATUS ================= [ 200.903492][ T7716] vivid-007: Generate PTS: true [ 200.916518][ T7716] vivid-007: Generate SCR: true [ 200.929890][ T7716] tpg source WxH: 320x240 (Y'CbCr) [ 200.979496][ T7716] tpg field: 1 [ 200.986051][ T7716] tpg crop: (0,0)/320x240 [ 201.000469][ T7716] tpg compose: (0,0)/320x240 [ 201.011268][ T7716] tpg colorspace: 8 [ 201.016943][ T7716] tpg transfer function: 0/0 [ 201.032969][ T7716] tpg Y'CbCr encoding: 0/0 [ 201.045378][ T7716] tpg quantization: 0/0 [ 201.062170][ T7716] tpg RGB range: 0/2 [ 201.088050][ T7716] vivid-007: ================== END STATUS ================== [ 201.442509][ T7732] netlink: 4 bytes leftover after parsing attributes in process `syz.0.558'. [ 201.509271][ T7732] netlink: 'syz.0.558': attribute type 1 has an invalid length. [ 201.546231][ T7732] netlink: 51505 bytes leftover after parsing attributes in process `syz.0.558'. [ 202.181965][ T7717] syz.3.556 invoked oom-killer: gfp_mask=0x440dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO|__GFP_COMP), order=0, oom_score_adj=1000 [ 202.261030][ T7717] CPU: 1 UID: 0 PID: 7717 Comm: syz.3.556 Not tainted syzkaller #0 PREEMPT(full) [ 202.261070][ T7717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 202.261086][ T7717] Call Trace: [ 202.261095][ T7717] [ 202.261105][ T7717] dump_stack_lvl+0x100/0x190 [ 202.261153][ T7717] dump_header+0xfb/0x606 [ 202.261184][ T7717] oom_kill_process.cold+0xd/0x330 [ 202.261217][ T7717] out_of_memory+0x340/0x14f0 [ 202.261266][ T7717] ? __pfx_out_of_memory+0x10/0x10 [ 202.261317][ T7717] mem_cgroup_out_of_memory+0xc6/0x130 [ 202.261354][ T7717] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 202.261389][ T7717] ? find_held_lock+0x2b/0x80 [ 202.261422][ T7717] ? do_raw_spin_unlock+0x145/0x1e0 [ 202.261463][ T7717] ? _raw_spin_unlock+0x28/0x50 [ 202.261495][ T7717] try_charge_memcg+0x652/0xc90 [ 202.261531][ T7717] ? __pfx_try_charge_memcg+0x10/0x10 [ 202.261557][ T7717] ? rcu_read_unlock+0x17/0x60 [ 202.261593][ T7717] ? rcu_read_unlock+0x17/0x60 [ 202.261630][ T7717] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 202.261674][ T7717] __memcg_kmem_charge_page+0xd0/0x530 [ 202.261709][ T7717] __alloc_frozen_pages_noprof+0x328/0x2ba0 [ 202.261761][ T7717] ? find_held_lock+0x2b/0x80 [ 202.261785][ T7717] ? is_bpf_text_address+0x8a/0x1a0 [ 202.261826][ T7717] ? is_bpf_text_address+0x8a/0x1a0 [ 202.261866][ T7717] ? bpf_ksym_find+0x124/0x1c0 [ 202.261898][ T7717] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 202.261928][ T7717] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 202.261970][ T7717] ? kernel_text_address+0x8d/0x100 [ 202.262012][ T7717] ? unwind_get_return_address+0x59/0xa0 [ 202.262041][ T7717] ? arch_stack_walk+0xa6/0xf0 [ 202.262084][ T7717] ? stack_trace_save+0x8e/0xc0 [ 202.262109][ T7717] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 202.262158][ T7717] ? policy_nodemask+0xed/0x4f0 [ 202.262190][ T7717] alloc_pages_mpol+0x1fb/0x550 [ 202.262219][ T7717] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 202.262247][ T7717] ? __lock_acquire+0x4a5/0x2630 [ 202.262289][ T7717] alloc_pages_noprof+0x131/0x390 [ 202.262319][ T7717] pte_alloc_one+0x1e/0x3e0 [ 202.262351][ T7717] __pte_alloc+0x6d/0x3f0 [ 202.262377][ T7717] ? __pfx___pte_alloc+0x10/0x10 [ 202.262405][ T7717] ? __vma_start_exclude_readers+0x238/0x810 [ 202.262439][ T7717] ? walk_to_pmd+0x302/0x4c0 [ 202.262474][ T7717] get_locked_pte+0xa1/0xc0 [ 202.262507][ T7717] insert_page+0xcc/0x220 [ 202.262539][ T7717] ? __pfx_insert_page+0x10/0x10 [ 202.262567][ T7717] ? __pfx_down_read_trylock+0x10/0x10 [ 202.262625][ T7717] vm_insert_page+0x2c0/0x400 [ 202.262661][ T7717] kcov_mmap+0xca/0x130 [ 202.262706][ T7717] __mmap_region+0x1443/0x29e0 [ 202.262749][ T7717] ? mas_ascend+0x53d/0xb30 [ 202.262778][ T7717] ? __pfx___mmap_region+0x10/0x10 [ 202.262866][ T7717] ? __lock_acquire+0x4a5/0x2630 [ 202.262991][ T7717] mmap_region+0x30a/0x3e0 [ 202.263038][ T7717] do_mmap+0xc63/0x12f0 [ 202.263074][ T7717] ? __pfx_do_mmap+0x10/0x10 [ 202.263104][ T7717] ? __pfx_down_write_killable+0x10/0x10 [ 202.263150][ T7717] vm_mmap_pgoff+0x29e/0x470 [ 202.263188][ T7717] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 202.263214][ T7717] ? __fget_files+0x215/0x3d0 [ 202.263264][ T7717] ? __fget_files+0x21f/0x3d0 [ 202.263315][ T7717] ksys_mmap_pgoff+0x3c8/0x650 [ 202.263343][ T7717] ? __x64_sys_futex+0x34f/0x4d0 [ 202.263377][ T7717] ? __x64_sys_futex+0x358/0x4d0 [ 202.263412][ T7717] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 202.263441][ T7717] ? xfd_validate_state+0x129/0x190 [ 202.263488][ T7717] __x64_sys_mmap+0x125/0x190 [ 202.263533][ T7717] do_syscall_64+0x106/0xf80 [ 202.263563][ T7717] ? clear_bhb_loop+0x40/0x90 [ 202.263605][ T7717] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.263632][ T7717] RIP: 0033:0x7f250659c502 [ 202.263655][ T7717] Code: 4f 01 00 0f 1f 44 00 00 41 f7 c1 ff 0f 00 00 75 27 55 89 cd 53 48 89 fb 48 85 ff 74 3b 41 89 ea 48 89 df b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 6e 5b 5d c3 0f 1f 00 48 c7 c0 e8 ff ff ff 64 [ 202.263680][ T7717] RSP: 002b:00007ffc1ca140e8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 202.263706][ T7717] RAX: ffffffffffffffda RBX: 00007f25043f6000 RCX: 00007f250659c502 [ 202.263724][ T7717] RDX: 0000000000000003 RSI: 0000000000400000 RDI: 00007f25043f6000 [ 202.263740][ T7717] RBP: 0000000000000011 R08: 00000000000000db R09: 0000000000000000 [ 202.263756][ T7717] R10: 0000000000000011 R11: 0000000000000206 R12: 0000000000000003 [ 202.263772][ T7717] R13: 0000000000000003 R14: 0000000000000000 R15: 00007f2506815fa0 [ 202.263810][ T7717] [ 202.263820][ T7717] memory: usage 3068kB, limit 3072kB, failcnt 35342 [ 202.389389][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 202.607715][ T7717] memory+swap: usage 60100kB, limit 9007199254740988kB, failcnt 0 [ 202.610936][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 202.669987][ T7717] kmem: usage 1100kB, limit 9007199254740988kB, failcnt 0 [ 202.803686][ T7717] Memory cgroup stats for /syz3: [ 202.804147][ T7717] cache 1482752 [ 202.854346][ T7717] rss 204800 [ 202.857606][ T7717] rss_huge 0 [ 202.903069][ T7717] shmem 1351680 [ 202.906601][ T7717] mapped_file 0 [ 202.941488][ T7717] dirty 0 [ 202.944588][ T7717] writeback 0 [ 202.947905][ T7717] workingset_refault_anon 2630 [ 203.000076][ T7717] workingset_refault_file 5829 [ 203.048904][ T7717] swap 58396672 [ 203.052480][ T7717] swapcached 132374528 [ 203.056576][ T7717] pgpgin 74960 [ 203.080024][ T7717] pgpgout 74467 [ 203.096469][ T7717] pgfault 65208 [ 203.112722][ T7717] pgmajfault 1142 [ 203.122854][ T7717] inactive_anon 1662976 [ 203.143103][ T7717] active_anon 225280 [ 203.147042][ T7717] inactive_file 131072 [ 203.173472][ T7717] active_file 0 [ 203.176998][ T7717] unevictable 0 [ 203.204519][ T7717] hierarchical_memory_limit 3145728 [ 203.224788][ T7717] hierarchical_memsw_limit 9223372036854771712 [ 203.258856][ T7717] total_cache 1482752 [ 203.269155][ T7717] total_rss 204800 [ 203.272908][ T7717] total_rss_huge 0 [ 203.301062][ T7717] total_shmem 1351680 [ 203.305091][ T7717] total_mapped_file 0 [ 203.348896][ T7717] total_dirty 0 [ 203.362704][ T7717] total_writeback 0 [ 203.366612][ T7717] total_workingset_refault_anon 2630 [ 203.418085][ T7717] total_workingset_refault_file 5829 [ 203.450192][ T7717] total_swap 58396672 [ 203.454236][ T7717] total_swapcached 132374528 [ 203.476508][ T7717] total_pgpgin 74960 [ 203.486895][ T7717] total_pgpgout 74467 [ 203.501783][ T7717] total_pgfault 65208 [ 203.505821][ T7717] total_pgmajfault 1142 [ 203.548915][ T7717] total_inactive_anon 1662976 [ 203.553679][ T7717] total_active_anon 225280 [ 203.558119][ T7717] total_inactive_file 131072 [ 203.589110][ T7717] total_active_file 0 [ 203.614971][ T7717] total_unevictable 0 [ 203.630224][ T7717] anon_cost 1 [ 203.632880][ T7741] random: crng reseeded on system resumption [ 203.668896][ T7717] file_cost 0 [ 203.672229][ T7717] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.477,pid=7380,uid=0 [ 203.702475][ T7734] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000 [ 203.735706][ T7717] Memory cgroup out of memory: Killed process 7380 (syz.3.477) total-vm:106856kB, anon-rss:1228kB, file-rss:59608kB, shmem-rss:0kB, UID:0 pgtables:232kB oom_score_adj:1000 [ 203.739003][ T7734] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 203.815847][ T7742] FAULT_INJECTION: forcing a failure. [ 203.815847][ T7742] name failslab, interval 1, probability 0, space 0, times 0 [ 203.888907][ T7742] CPU: 1 UID: 0 PID: 7742 Comm: syz.0.560 Not tainted syzkaller #0 PREEMPT(full) [ 203.888949][ T7742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 203.888967][ T7742] Call Trace: [ 203.888976][ T7742] [ 203.888988][ T7742] dump_stack_lvl+0x100/0x190 [ 203.889036][ T7742] should_fail_ex.cold+0x5/0xa [ 203.889072][ T7742] should_failslab+0xc2/0x120 [ 203.889106][ T7742] __kmalloc_cache_noprof+0x7a/0x6f0 [ 203.889144][ T7742] ? register_netdevice+0x50c/0x2210 [ 203.889184][ T7742] ? lockdep_init_map_type+0x5c/0x250 [ 203.889233][ T7742] register_netdevice+0x50c/0x2210 [ 203.889281][ T7742] ? __pfx_register_netdevice+0x10/0x10 [ 203.889332][ T7742] ? __pfx_loopback_net_init+0x10/0x10 [ 203.889378][ T7742] register_netdev+0x34/0x50 [ 203.889416][ T7742] loopback_net_init+0x7a/0x170 [ 203.889462][ T7742] ? __pfx_loopback_net_init+0x10/0x10 [ 203.889504][ T7742] ops_init+0x1e2/0x5f0 [ 203.889559][ T7742] setup_net+0x118/0x3a0 [ 203.889600][ T7742] ? __pfx_setup_net+0x10/0x10 [ 203.889636][ T7742] ? lockdep_init_map_type+0x5c/0x250 [ 203.889677][ T7742] ? mutex_init_lockep+0x110/0x150 [ 203.889727][ T7742] copy_net_ns+0x46f/0x7c0 [ 203.889774][ T7742] create_new_namespaces+0x3ea/0xac0 [ 203.889818][ T7742] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 203.889856][ T7742] ksys_unshare+0x473/0xad0 [ 203.889897][ T7742] ? __pfx_ksys_unshare+0x10/0x10 [ 203.889959][ T7742] __x64_sys_unshare+0x31/0x40 [ 203.889998][ T7742] do_syscall_64+0x106/0xf80 [ 203.890033][ T7742] ? clear_bhb_loop+0x40/0x90 [ 203.890070][ T7742] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.890099][ T7742] RIP: 0033:0x7f0c0b59c799 [ 203.890126][ T7742] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 203.890154][ T7742] RSP: 002b:00007f0c0c4e3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 203.890185][ T7742] RAX: ffffffffffffffda RBX: 00007f0c0b816090 RCX: 00007f0c0b59c799 [ 203.890205][ T7742] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 203.890223][ T7742] RBP: 00007f0c0b632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 203.890243][ T7742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 203.890261][ T7742] R13: 00007f0c0b816128 R14: 00007f0c0b816090 R15: 00007ffefd086258 [ 203.890304][ T7742] [ 204.080335][ T3481] [drm:drm_crtc_add_crc_entry] *ERROR* Overflow of CRC buffer, userspace reads too slow. [ 204.169078][ T7734] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 204.176715][ T7734] page_type: f5(slab) [ 204.269381][ T7734] raw: 00fff00000000040 ffff888140413280 dead000000000100 dead000000000122 [ 204.312519][ T7734] raw: 0000000000000000 0000000800190019 00000000f5000000 0000000000000000 [ 204.419677][ T7734] head: 00fff00000000040 ffff888140413280 dead000000000100 dead000000000122 [ 204.500012][ T7734] head: 0000000000000000 0000000800190019 00000000f5000000 0000000000000000 [ 204.578852][ T7734] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff [ 204.587654][ T7734] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 204.651041][ T7734] page dumped because: unmovable page [ 204.688853][ T7734] page_owner tracks the page as allocated [ 204.694925][ T7734] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5206, tgid 5206 (udevadm), ts 35304131043, free_ts 28765639937 [ 204.818820][ T7734] post_alloc_hook+0x153/0x170 [ 204.868858][ T7734] get_page_from_freelist+0x111d/0x3140 [ 204.888847][ T7734] __alloc_frozen_pages_noprof+0x27c/0x2ba0 [ 204.896259][ T7734] new_slab+0xa6/0x6d0 [ 204.962978][ T7734] refill_objects+0x26b/0x400 [ 204.967777][ T7734] __pcs_replace_empty_main+0x19f/0x600 [ 205.002027][ T7734] kmem_cache_alloc_lru_noprof+0x485/0x6e0 [ 205.007929][ T7734] alloc_inode+0x183/0x250 [ 205.026016][ T7734] iget_locked+0x1d9/0x6d0 [ 205.048833][ T7734] kernfs_get_inode+0x46/0x470 [ 205.053716][ T7734] kernfs_iop_lookup+0x1a7/0x2d0 [ 205.058709][ T7734] __lookup_slow+0x251/0x460 [ 205.139077][ T7734] lookup_slow+0x50/0x70 [ 205.143406][ T7734] link_path_walk+0x1377/0x1cc0 [ 205.148297][ T7734] path_lookupat+0x74/0xc40 [ 205.221141][ T7734] filename_lookup+0x202/0x590 [ 205.226018][ T7734] page last free pid 1 tgid 1 stack trace: [ 205.268883][ T7734] __free_frozen_pages+0x7e1/0x10d0 [ 205.274613][ T7734] free_contig_range+0xde/0x1d0 [ 205.308833][ T7734] destroy_args+0xa8/0x7a0 [ 205.313337][ T7734] debug_vm_pgtable+0x1b66/0x34c0 [ 205.318448][ T7734] do_one_initcall+0x11d/0x760 [ 205.398905][ T7734] kernel_init_freeable+0x6e5/0x7a0 [ 205.404237][ T7734] kernel_init+0x1f/0x1e0 [ 205.408621][ T7734] ret_from_fork+0x754/0xd80 [ 205.458862][ T7734] ret_from_fork_asm+0x1a/0x30 [ 205.716816][ T7750] FAULT_INJECTION: forcing a failure. [ 205.716816][ T7750] name failslab, interval 1, probability 0, space 0, times 0 [ 205.716878][ T7750] CPU: 0 UID: 0 PID: 7750 Comm: syz.2.563 Not tainted syzkaller #0 PREEMPT(full) [ 205.716913][ T7750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 205.716931][ T7750] Call Trace: [ 205.716941][ T7750] [ 205.716952][ T7750] dump_stack_lvl+0x100/0x190 [ 205.717003][ T7750] should_fail_ex.cold+0x5/0xa [ 205.717040][ T7750] should_failslab+0xc2/0x120 [ 205.717070][ T7750] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 205.717118][ T7750] ? kvasprintf_const+0x66/0x1a0 [ 205.717157][ T7750] kvasprintf+0xbc/0x150 [ 205.717184][ T7750] ? __pfx_kvasprintf+0x10/0x10 [ 205.717216][ T7750] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 205.717262][ T7750] ? lockdep_init_map_type+0x5c/0x250 [ 205.717309][ T7750] kvasprintf_const+0x66/0x1a0 [ 205.717340][ T7750] kobject_set_name_vargs+0x5a/0x140 [ 205.717383][ T7750] device_create_groups_vargs+0x1b1/0x270 [ 205.717441][ T7750] device_create+0xed/0x130 [ 205.717471][ T7750] ? __pfx_device_create+0x10/0x10 [ 205.717523][ T7750] ? is_console_locked+0x9/0x20 [ 205.717555][ T7750] ? con_is_visible+0x65/0x150 [ 205.717601][ T7750] ? csi_J+0x57e/0xad0 [ 205.717642][ T7750] vcs_make_sysfs+0x32/0x80 [ 205.717670][ T7750] vc_allocate+0x539/0x880 [ 205.717705][ T7750] ? __pfx_vc_allocate+0x10/0x10 [ 205.717752][ T7750] con_install+0xa1/0x620 [ 205.717799][ T7750] ? __pfx_con_install+0x10/0x10 [ 205.717842][ T7750] ? __pfx_con_install+0x10/0x10 [ 205.717877][ T7750] tty_init_dev.part.0+0x9e/0x470 [ 205.717922][ T7750] tty_open+0xa63/0xfa0 [ 205.717969][ T7750] ? __pfx_tty_open+0x10/0x10 [ 205.718006][ T7750] ? chrdev_open+0x589/0x6a0 [ 205.718034][ T7750] ? chrdev_open+0x589/0x6a0 [ 205.718070][ T7750] ? __pfx_tty_open+0x10/0x10 [ 205.718117][ T7750] chrdev_open+0x234/0x6a0 [ 205.718149][ T7750] ? __pfx_chrdev_open+0x10/0x10 [ 205.718181][ T7750] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 205.718220][ T7750] do_dentry_open+0x6d8/0x1660 [ 205.718247][ T7750] ? __pfx_chrdev_open+0x10/0x10 [ 205.718291][ T7750] vfs_open+0x82/0x3f0 [ 205.718330][ T7750] path_openat+0x208c/0x31a0 [ 205.718374][ T7750] ? __pfx_path_openat+0x10/0x10 [ 205.718418][ T7750] do_file_open+0x20e/0x430 [ 205.718449][ T7750] ? __pfx_do_file_open+0x10/0x10 [ 205.718512][ T7750] ? alloc_fd+0x476/0x790 [ 205.718544][ T7750] ? do_getname+0x191/0x390 [ 205.718586][ T7750] do_sys_openat2+0x10d/0x1e0 [ 205.718625][ T7750] ? __pfx_do_sys_openat2+0x10/0x10 [ 205.718667][ T7750] ? __pfx_idempotent_init_module+0x10/0x10 [ 205.718719][ T7750] __x64_sys_openat+0x12d/0x210 [ 205.718765][ T7750] ? __pfx___x64_sys_openat+0x10/0x10 [ 205.718826][ T7750] do_syscall_64+0x106/0xf80 [ 205.718860][ T7750] ? clear_bhb_loop+0x40/0x90 [ 205.718895][ T7750] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 205.718926][ T7750] RIP: 0033:0x7f230239c799 [ 205.718953][ T7750] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 205.718982][ T7750] RSP: 002b:00007f2303251028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 205.719010][ T7750] RAX: ffffffffffffffda RBX: 00007f2302615fa0 RCX: 00007f230239c799 [ 205.719029][ T7750] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 205.719048][ T7750] RBP: 00007f2302432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 205.719066][ T7750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 205.719082][ T7750] R13: 00007f2302616038 R14: 00007f2302615fa0 R15: 00007ffc86abb6b8 [ 205.719122][ T7750] [ 206.702500][ T7380] syz.3.477 (7380) used greatest stack depth: 17496 bytes left [ 207.352588][ T7756] vivid-007: ================= START STATUS ================= [ 207.377115][ T7756] vivid-007: Generate PTS: true [ 207.424138][ T7756] vivid-007: Generate SCR: true [ 207.430121][ T7756] tpg source WxH: 320x240 (Y'CbCr) [ 207.435416][ T7756] tpg field: 1 [ 207.444484][ T7756] tpg crop: (0,0)/320x240 [ 207.450501][ T7756] tpg compose: (0,0)/320x240 [ 207.455139][ T7756] tpg colorspace: 8 [ 207.461664][ T7763] __vm_enough_memory: pid: 7763, comm: syz.0.567, bytes: 4398046511104 not enough memory for the allocation [ 207.478919][ T7756] tpg transfer function: 0/0 [ 207.487100][ T7756] tpg Y'CbCr encoding: 0/0 [ 207.511659][ T7756] tpg quantization: 0/0 [ 207.516379][ T7756] tpg RGB range: 0/2 [ 207.528982][ T7756] vivid-007: ================== END STATUS ================== [ 208.315771][ T7780] FAULT_INJECTION: forcing a failure. [ 208.315771][ T7780] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 208.315846][ T7780] CPU: 1 UID: 0 PID: 7780 Comm: syz.0.571 Not tainted syzkaller #0 PREEMPT(full) [ 208.315879][ T7780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 208.315895][ T7780] Call Trace: [ 208.315905][ T7780] [ 208.315916][ T7780] dump_stack_lvl+0x100/0x190 [ 208.315963][ T7780] should_fail_ex.cold+0x5/0xa [ 208.315998][ T7780] _copy_from_user+0x2e/0xd0 [ 208.316045][ T7780] get_itimerspec64+0x16c/0x2f0 [ 208.316079][ T7780] ? __pfx_get_itimerspec64+0x10/0x10 [ 208.316112][ T7780] ? __pfx_do_futex+0x10/0x10 [ 208.316156][ T7780] __x64_sys_timerfd_settime+0x15f/0x280 [ 208.316198][ T7780] ? __pfx___x64_sys_timerfd_settime+0x10/0x10 [ 208.316241][ T7780] ? xfd_validate_state+0x129/0x190 [ 208.316295][ T7780] do_syscall_64+0x106/0xf80 [ 208.316328][ T7780] ? clear_bhb_loop+0x40/0x90 [ 208.316362][ T7780] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 208.316391][ T7780] RIP: 0033:0x7f0c0b59c799 [ 208.316415][ T7780] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 208.316442][ T7780] RSP: 002b:00007f0c0c504028 EFLAGS: 00000246 ORIG_RAX: 000000000000011e [ 208.316470][ T7780] RAX: ffffffffffffffda RBX: 00007f0c0b815fa0 RCX: 00007f0c0b59c799 [ 208.316506][ T7780] RDX: 0000200000000040 RSI: 0000000000000003 RDI: ffffffffffffffff [ 208.316524][ T7780] RBP: 00007f0c0b632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 208.316540][ T7780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 208.316557][ T7780] R13: 00007f0c0b816038 R14: 00007f0c0b815fa0 R15: 00007ffefd086258 [ 208.316597][ T7780] [ 208.426143][ T7778] vivid-007: ================= START STATUS ================= [ 208.426202][ T7778] vivid-007: Generate PTS: true [ 208.426250][ T7778] vivid-007: Generate SCR: true [ 208.426281][ T7778] tpg source WxH: 320x240 (Y'CbCr) [ 208.426298][ T7778] tpg field: 1 [ 208.426310][ T7778] tpg crop: (0,0)/320x240 [ 208.426328][ T7778] tpg compose: (0,0)/320x240 [ 208.426346][ T7778] tpg colorspace: 8 [ 208.426357][ T7778] tpg transfer function: 0/0 [ 208.426371][ T7778] tpg Y'CbCr encoding: 0/0 [ 208.426385][ T7778] tpg quantization: 0/0 [ 208.426399][ T7778] tpg RGB range: 0/2 [ 208.426412][ T7778] vivid-007: ================== END STATUS ================== [ 209.375239][ T7793] nvme_fcloop: unknown parameter or missing value '7' [ 209.471309][ T7799] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 211.082504][ T7817] vivid-007: ================= START STATUS ================= [ 211.110833][ T7817] vivid-007: Generate PTS: true [ 211.115818][ T7817] vivid-007: Generate SCR: true [ 211.125239][ T7817] tpg source WxH: 320x240 (Y'CbCr) [ 211.158849][ T7817] tpg field: 1 [ 211.162432][ T7817] tpg crop: (0,0)/320x240 [ 211.166806][ T7817] tpg compose: (0,0)/320x240 [ 211.179269][ T7817] tpg colorspace: 8 [ 211.183156][ T7817] tpg transfer function: 0/0 [ 211.189137][ T7817] tpg Y'CbCr encoding: 0/0 [ 211.193601][ T7817] tpg quantization: 0/0 [ 211.197782][ T7817] tpg RGB range: 0/2 [ 211.226312][ T7817] vivid-007: ================== END STATUS ================== [ 211.254748][ T7824] vivid-007: ================= START STATUS ================= [ 211.278829][ T7824] vivid-007: Generate PTS: true [ 211.284501][ T7824] vivid-007: Generate SCR: true [ 211.298865][ T7824] tpg source WxH: 320x240 (Y'CbCr) [ 211.304106][ T7824] tpg field: 1 [ 211.307517][ T7824] tpg crop: (0,0)/320x240 [ 211.314181][ T7824] tpg compose: (0,0)/320x240 [ 211.330721][ T7824] tpg colorspace: 8 [ 211.346267][ T7824] tpg transfer function: 0/0 [ 211.379135][ T7824] tpg Y'CbCr encoding: 0/0 [ 211.383645][ T7824] tpg quantization: 0/0 [ 211.408180][ T7824] tpg RGB range: 0/2 [ 211.424949][ T7824] vivid-007: ================== END STATUS ================== [ 211.468856][ T7820] vivid-007: ================= START STATUS ================= [ 211.477565][ T7820] vivid-007: Generate PTS: true [ 211.536086][ T7820] vivid-007: Generate SCR: true [ 211.561597][ T7820] tpg source WxH: 320x240 (Y'CbCr) [ 211.566805][ T7820] tpg field: 1 [ 211.688871][ T7820] tpg crop: (0,0)/320x240 [ 211.713603][ T7820] tpg compose: (0,0)/320x240 [ 211.743951][ T7820] tpg colorspace: 8 [ 211.747825][ T7820] tpg transfer function: 0/0 [ 211.765074][ T7820] tpg Y'CbCr encoding: 0/0 [ 211.803646][ T7820] tpg quantization: 0/0 [ 211.838313][ T7820] tpg RGB range: 0/2 [ 211.861807][ T7820] vivid-007: ================== END STATUS ================== [ 211.982645][ T51] Bluetooth: hci0: command 0x0406 tx timeout [ 211.989651][ T5836] Bluetooth: hci1: command 0x0406 tx timeout [ 211.990187][ T5838] Bluetooth: hci2: command 0x0406 tx timeout [ 211.995691][ T5836] Bluetooth: hci3: command 0x0406 tx timeout [ 214.940529][ T7888] vivid-007: ================= START STATUS ================= [ 214.948366][ T7888] vivid-007: Generate PTS: true [ 214.953379][ T7888] vivid-007: Generate SCR: true [ 214.960688][ T7894] Invalid ELF header magic: != ELF [ 214.965956][ T7888] tpg source WxH: 320x240 (Y'CbCr) [ 214.972801][ T7888] tpg field: 1 [ 214.976272][ T7888] tpg crop: (0,0)/320x240 [ 214.982846][ T7888] tpg compose: (0,0)/320x240 [ 214.987455][ T7888] tpg colorspace: 8 [ 215.014679][ T7888] tpg transfer function: 0/0 [ 215.048593][ T7888] tpg Y'CbCr encoding: 0/0 [ 215.062580][ T7888] tpg quantization: 0/0 [ 215.083513][ T7888] tpg RGB range: 0/2 [ 215.102027][ T7888] vivid-007: ================== END STATUS ================== [ 215.398731][ T7899] vivid-007: ================= START STATUS ================= [ 215.423514][ T7899] vivid-007: Generate PTS: true [ 215.440977][ T7899] vivid-007: Generate SCR: true [ 215.478186][ T7899] tpg source WxH: 320x240 (Y'CbCr) [ 215.494424][ T7899] tpg field: 1 [ 215.512781][ T7899] tpg crop: (0,0)/320x240 [ 215.522373][ T7899] tpg compose: (0,0)/320x240 [ 215.527201][ T7899] tpg colorspace: 8 [ 215.531240][ T7899] tpg transfer function: 0/0 [ 215.536793][ T7899] tpg Y'CbCr encoding: 0/0 [ 215.541554][ T7899] tpg quantization: 0/0 [ 215.546923][ T7899] tpg RGB range: 0/2 [ 215.551046][ T7899] vivid-007: ================== END STATUS ================== [ 216.290507][ T7908] vivid-007: ================= START STATUS ================= [ 216.298215][ T7908] vivid-007: Generate PTS: true [ 216.337299][ T7908] vivid-007: Generate SCR: true [ 216.352264][ T7908] tpg source WxH: 320x240 (Y'CbCr) [ 216.360849][ T7908] tpg field: 1 [ 216.367544][ T7908] tpg crop: (0,0)/320x240 [ 216.377869][ T7908] tpg compose: (0,0)/320x240 [ 216.398850][ T7908] tpg colorspace: 8 [ 216.408842][ T7908] tpg transfer function: 0/0 [ 216.421693][ T7908] tpg Y'CbCr encoding: 0/0 [ 216.435259][ T7908] tpg quantization: 0/0 [ 216.476707][ T7908] tpg RGB range: 0/2 [ 216.538880][ T7908] vivid-007: ================== END STATUS ================== [ 217.867115][ T7935] process 'syz.2.602' launched './file0' with NULL argv: empty string added [ 217.953429][ T7926] zswap: compressor not available [ 219.617231][ T7958] vivid-007: ================= START STATUS ================= [ 219.636170][ T7958] vivid-007: Generate PTS: true [ 219.660596][ T7958] vivid-007: Generate SCR: true [ 219.730983][ T7958] tpg source WxH: 320x240 (Y'CbCr) [ 219.808995][ T7958] tpg field: 1 [ 219.809018][ T7958] tpg crop: (0,0)/320x240 [ 219.809043][ T7958] tpg compose: (0,0)/320x240 [ 219.813101][ T7958] tpg colorspace: 8 [ 219.813119][ T7958] tpg transfer function: 0/0 [ 219.813129][ T7958] tpg Y'CbCr encoding: 0/0 [ 219.813138][ T7958] tpg quantization: 0/0 [ 219.813147][ T7958] tpg RGB range: 0/2 [ 219.813155][ T7958] vivid-007: ================== END STATUS ================== [ 220.468631][ T7971] vivid-007: ================= START STATUS ================= [ 220.476597][ T7971] vivid-007: Generate PTS: true [ 220.482049][ T7971] vivid-007: Generate SCR: true [ 220.487985][ T7971] tpg source WxH: 320x240 (Y'CbCr) [ 220.493790][ T7971] tpg field: 1 [ 220.497202][ T7971] tpg crop: (0,0)/320x240 [ 220.557529][ T7971] tpg compose: (0,0)/320x240 [ 220.570428][ T7971] tpg colorspace: 8 [ 220.585793][ T7971] tpg transfer function: 0/0 [ 220.719918][ T7971] tpg Y'CbCr encoding: 0/0 [ 220.728943][ T7971] tpg quantization: 0/0 [ 220.733308][ T7971] tpg RGB range: 0/2 [ 220.835061][ T7971] vivid-007: ================== END STATUS ================== [ 221.576645][ T7988] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 221.993650][ T7998] vivid-007: ================= START STATUS ================= [ 222.008298][ T7998] vivid-007: Generate PTS: true [ 222.017190][ T7998] vivid-007: Generate SCR: true [ 222.027840][ T7998] tpg source WxH: 320x240 (Y'CbCr) [ 222.037645][ T7998] tpg field: 1 [ 222.088859][ T7998] tpg crop: (0,0)/320x240 [ 222.096748][ T7998] tpg compose: (0,0)/320x240 [ 222.108271][ T7998] tpg colorspace: 8 [ 222.151730][ T7998] tpg transfer function: 0/0 [ 222.163356][ T7998] tpg Y'CbCr encoding: 0/0 [ 222.184808][ T7998] tpg quantization: 0/0 [ 222.234803][ T7998] tpg RGB range: 0/2 [ 222.267494][ T7998] vivid-007: ================== END STATUS ================== [ 222.959132][ T8012] vivid-007: ================= START STATUS ================= [ 222.986757][ T8012] vivid-007: Generate PTS: true [ 223.007944][ T8012] vivid-007: Generate SCR: true [ 223.033443][ T8012] tpg source WxH: 320x240 (Y'CbCr) [ 223.048294][ T8012] tpg field: 1 [ 223.058422][ T8012] tpg crop: (0,0)/320x240 [ 223.071672][ T8012] tpg compose: (0,0)/320x240 [ 223.083669][ T8012] tpg colorspace: 8 [ 223.093864][ T8012] tpg transfer function: 0/0 [ 223.111666][ T8012] tpg Y'CbCr encoding: 0/0 [ 223.119170][ T8012] tpg quantization: 0/0 [ 223.127661][ T8012] tpg RGB range: 0/2 [ 223.139677][ T8012] vivid-007: ================== END STATUS ================== [ 223.856502][ T8021] FAULT_INJECTION: forcing a failure. [ 223.856502][ T8021] name failslab, interval 1, probability 0, space 0, times 0 [ 223.870446][ T8021] CPU: 1 UID: 0 PID: 8021 Comm: syz.1.618 Not tainted syzkaller #0 PREEMPT(full) [ 223.870490][ T8021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 223.870509][ T8021] Call Trace: [ 223.870520][ T8021] [ 223.870531][ T8021] dump_stack_lvl+0x100/0x190 [ 223.870583][ T8021] should_fail_ex.cold+0x5/0xa [ 223.870617][ T8021] should_failslab+0xc2/0x120 [ 223.870649][ T8021] __kmalloc_cache_noprof+0x7a/0x6f0 [ 223.870694][ T8021] ? alloc_fdtable+0xbd/0x2d0 [ 223.870737][ T8021] ? find_held_lock+0x2b/0x80 [ 223.870767][ T8021] ? dup_fd+0x924/0xd10 [ 223.870800][ T8021] alloc_fdtable+0xbd/0x2d0 [ 223.870849][ T8021] dup_fd+0x995/0xd10 [ 223.870893][ T8021] __x64_sys_close_range+0x405/0x5d0 [ 223.870930][ T8021] ? __pfx___x64_sys_close_range+0x10/0x10 [ 223.870977][ T8021] do_syscall_64+0x106/0xf80 [ 223.871012][ T8021] ? clear_bhb_loop+0x40/0x90 [ 223.871060][ T8021] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 223.871092][ T8021] RIP: 0033:0x7ff40fd9c799 [ 223.871117][ T8021] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 223.871144][ T8021] RSP: 002b:00007ff410c38028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 223.871174][ T8021] RAX: ffffffffffffffda RBX: 00007ff410015fa0 RCX: 00007ff40fd9c799 [ 223.871192][ T8021] RDX: 0000000000000002 RSI: 0000000000000008 RDI: 0000000000000003 [ 223.871209][ T8021] RBP: 00007ff40fe32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 223.871226][ T8021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 223.871244][ T8021] R13: 00007ff410016038 R14: 00007ff410015fa0 R15: 00007ffc97f682c8 [ 223.871283][ T8021] [ 223.985438][ C0] vcan0: j1939_tp_rxtimer: 0xffff88805bbc7c00: rx timeout, send abort [ 224.056625][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88805bbc7c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 224.851198][ T8028] vivid-007: ================= START STATUS ================= [ 224.889236][ T8028] vivid-007: Generate PTS: true [ 224.919423][ T8028] vivid-007: Generate SCR: true [ 224.938268][ T8028] tpg source WxH: 320x240 (Y'CbCr) [ 224.948387][ T8028] tpg field: 1 [ 224.969775][ T8028] tpg crop: (0,0)/320x240 [ 224.988374][ T8028] tpg compose: (0,0)/320x240 [ 225.008611][ T8028] tpg colorspace: 8 [ 225.058854][ T8028] tpg transfer function: 0/0 [ 225.108923][ T8028] tpg Y'CbCr encoding: 0/0 [ 225.113499][ T8028] tpg quantization: 0/0 [ 225.117697][ T8028] tpg RGB range: 0/2 [ 225.123387][ T8028] vivid-007: ================== END STATUS ================== [ 226.524072][ T8062] FAULT_INJECTION: forcing a failure. [ 226.524072][ T8062] name failslab, interval 1, probability 0, space 0, times 0 [ 226.540132][ T8062] CPU: 1 UID: 0 PID: 8062 Comm: syz.0.626 Tainted: G L syzkaller #0 PREEMPT(full) [ 226.540183][ T8062] Tainted: [L]=SOFTLOCKUP [ 226.540193][ T8062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 226.540212][ T8062] Call Trace: [ 226.540221][ T8062] [ 226.540233][ T8062] dump_stack_lvl+0x100/0x190 [ 226.540284][ T8062] should_fail_ex.cold+0x5/0xa [ 226.540319][ T8062] ? __seq_open_private+0x22/0xd0 [ 226.540361][ T8062] should_failslab+0xc2/0x120 [ 226.540392][ T8062] __kmalloc_noprof+0xe0/0x850 [ 226.540444][ T8062] ? __pfx_stats_fop_open+0x10/0x10 [ 226.540474][ T8062] __seq_open_private+0x22/0xd0 [ 226.540518][ T8062] sc_common_open+0x6b/0x200 [ 226.540554][ T8062] full_proxy_open_regular+0x1b6/0x370 [ 226.540598][ T8062] do_dentry_open+0x6d8/0x1660 [ 226.540627][ T8062] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 226.540688][ T8062] vfs_open+0x82/0x3f0 [ 226.540732][ T8062] path_openat+0x208c/0x31a0 [ 226.540777][ T8062] ? __pfx_path_openat+0x10/0x10 [ 226.540823][ T8062] do_file_open+0x20e/0x430 [ 226.540858][ T8062] ? __pfx_do_file_open+0x10/0x10 [ 226.540920][ T8062] ? alloc_fd+0x476/0x790 [ 226.540955][ T8062] ? do_getname+0x191/0x390 [ 226.540998][ T8062] do_sys_openat2+0x10d/0x1e0 [ 226.541036][ T8062] ? __pfx_do_sys_openat2+0x10/0x10 [ 226.541079][ T8062] ? __fget_files+0x21f/0x3d0 [ 226.541136][ T8062] __x64_sys_openat+0x12d/0x210 [ 226.541177][ T8062] ? __pfx___x64_sys_openat+0x10/0x10 [ 226.541233][ T8062] do_syscall_64+0x106/0xf80 [ 226.541268][ T8062] ? clear_bhb_loop+0x40/0x90 [ 226.541304][ T8062] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 226.541332][ T8062] RIP: 0033:0x7f0c0b59c799 [ 226.541355][ T8062] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 226.541381][ T8062] RSP: 002b:00007f0c0c4e3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 226.541408][ T8062] RAX: ffffffffffffffda RBX: 00007f0c0b816090 RCX: 00007f0c0b59c799 [ 226.541426][ T8062] RDX: 0000000000008382 RSI: 0000200000000640 RDI: ffffffffffffff9c [ 226.541443][ T8062] RBP: 00007f0c0b632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 226.541460][ T8062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 226.541476][ T8062] R13: 00007f0c0b816128 R14: 00007f0c0b816090 R15: 00007ffefd086258 [ 226.541515][ T8062] [ 227.118320][ T8059] vivid-007: ================= START STATUS ================= [ 227.138960][ T8059] vivid-007: Generate PTS: true [ 227.158878][ T8059] vivid-007: Generate SCR: true [ 227.183987][ T8059] tpg source WxH: 320x240 (Y'CbCr) [ 227.208884][ T8059] tpg field: 1 [ 227.212339][ T8059] tpg crop: (0,0)/320x240 [ 227.237050][ T8059] tpg compose: (0,0)/320x240 [ 227.258317][ T8059] tpg colorspace: 8 [ 227.268658][ T8059] tpg transfer function: 0/0 [ 227.281570][ T8059] tpg Y'CbCr encoding: 0/0 [ 227.286420][ T8059] tpg quantization: 0/0 [ 227.331355][ T8059] tpg RGB range: 0/2 [ 227.355474][ T8059] vivid-007: ================== END STATUS ================== [ 227.789935][ T30] audit: type=1804 audit(2147483669.160:5): pid=8068 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.627" name="/newroot/150/file0" dev="tmpfs" ino=791 res=1 errno=0 [ 227.838912][ T30] audit: type=1804 audit(2147483669.160:6): pid=8078 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.627" name="/newroot/150/file0" dev="tmpfs" ino=791 res=1 errno=0 [ 228.921728][ T8093] vivid-007: ================= START STATUS ================= [ 228.941662][ T8093] vivid-007: Generate PTS: true [ 228.946610][ T8093] vivid-007: Generate SCR: true [ 228.968898][ T8093] tpg source WxH: 320x240 (Y'CbCr) [ 228.979038][ T8093] tpg field: 1 [ 228.982503][ T8093] tpg crop: (0,0)/320x240 [ 229.001864][ T8093] tpg compose: (0,0)/320x240 [ 229.006500][ T8093] tpg colorspace: 8 [ 229.039774][ T8093] tpg transfer function: 0/0 [ 229.044389][ T8093] tpg Y'CbCr encoding: 0/0 [ 229.058907][ T8093] tpg quantization: 0/0 [ 229.063112][ T8093] tpg RGB range: 0/2 [ 229.067000][ T8093] vivid-007: ================== END STATUS ================== [ 234.764677][ T8166] Invalid ELF header magic: != ELF [ 235.731605][ T5830] Bluetooth: hci2: unexpected subevent 0x18 length: 123 > 19 [ 235.740251][ T5830] Bluetooth: hci2: Unable to find connection for dst f9:56:cc:cc:70:a9 sid 0x00 [ 240.751225][ T8227] zswap: compressor not available [ 240.803457][ T8225] netlink: 28 bytes leftover after parsing attributes in process `syz.0.660'. [ 241.135441][ T8225] bond0: (slave bond_slave_1): Releasing backup interface [ 242.945918][ T8255] netlink: zone id is out of range [ 242.962139][ T8255] netlink: zone id is out of range [ 243.010892][ T8255] netlink: zone id is out of range [ 243.025787][ T8255] netlink: zone id is out of range [ 243.093186][ T8255] netlink: zone id is out of range [ 243.165133][ T8255] netlink: zone id is out of range [ 243.183506][ T8235] kexec: Could not allocate control_code_buffer [ 243.200162][ T8255] netlink: zone id is out of range [ 243.216049][ T8255] netlink: zone id is out of range [ 243.237642][ T8255] netlink: zone id is out of range [ 243.296712][ T8255] netlink: zone id is out of range [ 245.413113][ T8292] vivid-007: ================= START STATUS ================= [ 245.420918][ T8292] vivid-007: Generate PTS: true [ 245.428860][ T8292] vivid-007: Generate SCR: true [ 245.433887][ T8292] tpg source WxH: 320x240 (Y'CbCr) [ 245.439205][ T8292] tpg field: 1 [ 245.444291][ T8292] tpg crop: (0,0)/320x240 [ 245.448662][ T8292] tpg compose: (0,0)/320x240 [ 245.463645][ T8292] tpg colorspace: 8 [ 245.473808][ T8292] tpg transfer function: 0/0 [ 245.478844][ T8292] tpg Y'CbCr encoding: 0/0 [ 245.483588][ T8292] tpg quantization: 0/0 [ 245.513394][ T8292] tpg RGB range: 0/2 [ 245.517357][ T8292] vivid-007: ================== END STATUS ================== [ 247.291405][ T8306] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17 [ 248.105046][ T8310] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18 [ 251.158243][ T8350] vivid-007: ================= START STATUS ================= [ 251.168793][ T8350] vivid-007: Generate PTS: true [ 251.173718][ T8350] vivid-007: Generate SCR: true [ 251.208877][ T8350] tpg source WxH: 320x240 (Y'CbCr) [ 251.214022][ T8350] tpg field: 1 [ 251.250023][ T8350] tpg crop: (0,0)/320x240 [ 251.267143][ T8350] tpg compose: (0,0)/320x240 [ 251.283281][ T8350] tpg colorspace: 8 [ 251.292655][ T8350] tpg transfer function: 0/0 [ 251.307269][ T8350] tpg Y'CbCr encoding: 0/0 [ 251.338637][ T8350] tpg quantization: 0/0 [ 251.362547][ T8350] tpg RGB range: 0/2 [ 251.389295][ T8350] vivid-007: ================== END STATUS ================== [ 252.356820][ T8369] zswap: compressor û not available [ 252.618563][ T8383] netlink: 346 bytes leftover after parsing attributes in process `syz.0.688'. [ 252.731212][ T8383] Invalid ELF header magic: != ELF [ 253.319581][ T30] audit: type=1804 audit(2147483694.730:7): pid=8393 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.686" name="/newroot/182/file0" dev="tmpfs" ino=959 res=1 errno=0 [ 253.420285][ T30] audit: type=1804 audit(2147483694.830:8): pid=8394 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.686" name="/newroot/182/file0" dev="tmpfs" ino=959 res=1 errno=0 [ 253.846299][ T8403] netlink: 28 bytes leftover after parsing attributes in process `syz.1.691'. [ 254.269930][ T8390] Invalid ELF header magic: != ELF [ 254.522722][ T8378] rnbd_client L213: map_device: Parameters missing [ 256.020406][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.026783][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.241564][ T8431] vivid-007: ================= START STATUS ================= [ 256.281605][ T8431] vivid-007: Generate PTS: true [ 256.286543][ T8431] vivid-007: Generate SCR: true [ 256.352577][ T8431] tpg source WxH: 320x240 (Y'CbCr) [ 256.377003][ T8431] tpg field: 1 [ 256.394120][ T8431] tpg crop: (0,0)/320x240 [ 256.414254][ T8431] tpg compose: (0,0)/320x240 [ 256.448855][ T8431] tpg colorspace: 8 [ 256.464137][ T8431] tpg transfer function: 0/0 [ 256.637848][ T8431] tpg Y'CbCr encoding: 0/0 [ 256.716934][ T8431] tpg quantization: 0/0 [ 256.798871][ T8431] tpg RGB range: 0/2 [ 256.811901][ T8431] vivid-007: ================== END STATUS ================== [ 258.477443][ T8469] vivid-007: ================= START STATUS ================= [ 258.485374][ T8469] vivid-007: Generate PTS: true [ 258.503334][ T8469] vivid-007: Generate SCR: true [ 258.516049][ T8469] tpg source WxH: 320x240 (Y'CbCr) [ 258.549328][ T8469] tpg field: 1 [ 258.552906][ T8469] tpg crop: (0,0)/320x240 [ 258.557316][ T8469] tpg compose: (0,0)/320x240 [ 258.693165][ T8469] tpg colorspace: 8 [ 258.727888][ T8469] tpg transfer function: 0/0 [ 258.774015][ T8469] tpg Y'CbCr encoding: 0/0 [ 258.867854][ T8469] tpg quantization: 0/0 [ 258.876045][ T8469] tpg RGB range: 0/2 [ 258.899501][ T8469] vivid-007: ================== END STATUS ================== [ 260.608301][ T8484] kexec: Could not allocate control_code_buffer [ 260.999698][ T8500] NFSD: Failed to start, no listeners configured. [ 261.630272][ T8504] netlink: 'syz.2.710': attribute type 10 has an invalid length. [ 261.669002][ T8504] netlink: 330 bytes leftover after parsing attributes in process `syz.2.710'. [ 265.847329][ T8550] FAULT_INJECTION: forcing a failure. [ 265.847329][ T8550] name failslab, interval 1, probability 0, space 0, times 0 [ 265.861047][ T8550] CPU: 0 UID: 0 PID: 8550 Comm: syz.0.715 Tainted: G L syzkaller #0 PREEMPT(full) [ 265.861095][ T8550] Tainted: [L]=SOFTLOCKUP [ 265.861106][ T8550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 265.861123][ T8550] Call Trace: [ 265.861134][ T8550] [ 265.861146][ T8550] dump_stack_lvl+0x100/0x190 [ 265.861196][ T8550] should_fail_ex.cold+0x5/0xa [ 265.861234][ T8550] should_failslab+0xc2/0x120 [ 265.861277][ T8550] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 265.861318][ T8550] ? security_file_alloc+0x34/0x2c0 [ 265.861347][ T8550] ? trace_kmem_cache_alloc+0xf3/0x120 [ 265.861378][ T8550] security_file_alloc+0x34/0x2c0 [ 265.861397][ T8550] init_file+0x95/0x480 [ 265.861418][ T8550] alloc_empty_file+0x73/0x1c0 [ 265.861440][ T8550] alloc_file_pseudo+0x13a/0x230 [ 265.861464][ T8550] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 265.861487][ T8550] ? alloc_fd+0x476/0x790 [ 265.861508][ T8550] sock_alloc_file+0x50/0x210 [ 265.861532][ T8550] __sys_socket+0x1c0/0x260 [ 265.861560][ T8550] ? __pfx___sys_socket+0x10/0x10 [ 265.861594][ T8550] __x64_sys_socket+0x72/0xb0 [ 265.861622][ T8550] ? lockdep_hardirqs_on+0x78/0x100 [ 265.861645][ T8550] do_syscall_64+0x106/0xf80 [ 265.861665][ T8550] ? clear_bhb_loop+0x40/0x90 [ 265.861687][ T8550] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 265.861705][ T8550] RIP: 0033:0x7f0c0b59c799 [ 265.861723][ T8550] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 265.861740][ T8550] RSP: 002b:00007f0c0c504028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 265.861758][ T8550] RAX: ffffffffffffffda RBX: 00007f0c0b815fa0 RCX: 00007f0c0b59c799 [ 265.861771][ T8550] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002 [ 265.861781][ T8550] RBP: 00007f0c0b632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 265.861792][ T8550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 265.861802][ T8550] R13: 00007f0c0b816038 R14: 00007f0c0b815fa0 R15: 00007ffefd086258 [ 265.861825][ T8550] [ 266.671725][ T8569] FAULT_INJECTION: forcing a failure. [ 266.671725][ T8569] name failslab, interval 1, probability 0, space 0, times 0 [ 266.716545][ T8569] CPU: 1 UID: 0 PID: 8569 Comm: syz.3.726 Tainted: G L syzkaller #0 PREEMPT(full) [ 266.716595][ T8569] Tainted: [L]=SOFTLOCKUP [ 266.716605][ T8569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 266.716623][ T8569] Call Trace: [ 266.716634][ T8569] [ 266.716647][ T8569] dump_stack_lvl+0x100/0x190 [ 266.716700][ T8569] should_fail_ex.cold+0x5/0xa [ 266.716740][ T8569] should_failslab+0xc2/0x120 [ 266.716775][ T8569] __kmalloc_cache_noprof+0x7a/0x6f0 [ 266.716814][ T8569] ? vidtv_mux_create_pid_ctx_once.part.0+0x49/0x200 [ 266.716868][ T8569] vidtv_mux_create_pid_ctx_once.part.0+0x49/0x200 [ 266.716914][ T8569] vidtv_mux_init+0x8a6/0xbf0 [ 266.716959][ T8569] vidtv_start_feed+0x33e/0x4c0 [ 266.717008][ T8569] ? __pfx_vidtv_start_feed+0x10/0x10 [ 266.717057][ T8569] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 266.717112][ T8569] ? mark_held_locks+0x40/0x70 [ 266.717168][ T8569] ? __pfx_vidtv_start_feed+0x10/0x10 [ 266.717216][ T8569] dmx_ts_feed_start_filtering+0xf6/0x220 [ 266.717276][ T8569] dvb_dmxdev_start_feed+0x273/0x3f0 [ 266.717326][ T8569] dvb_dmxdev_filter_start+0x1b6/0xdd0 [ 266.717378][ T8569] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 266.717429][ T8569] dvb_demux_do_ioctl+0xe64/0x1200 [ 266.717490][ T8569] dvb_usercopy+0x167/0x340 [ 266.717531][ T8569] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 266.717579][ T8569] ? __pfx_dvb_usercopy+0x10/0x10 [ 266.717638][ T8569] ? __fget_files+0x21f/0x3d0 [ 266.717697][ T8569] dvb_demux_ioctl+0x29/0x40 [ 266.717738][ T8569] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 266.717781][ T8569] __x64_sys_ioctl+0x18e/0x210 [ 266.717829][ T8569] do_syscall_64+0x106/0xf80 [ 266.717865][ T8569] ? clear_bhb_loop+0x40/0x90 [ 266.717905][ T8569] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 266.717937][ T8569] RIP: 0033:0x7f250659c799 [ 266.717964][ T8569] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 266.717994][ T8569] RSP: 002b:00007f2507457028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 266.718023][ T8569] RAX: ffffffffffffffda RBX: 00007f2506816090 RCX: 00007f250659c799 [ 266.718044][ T8569] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000002 [ 266.718063][ T8569] RBP: 00007f2506632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 266.718081][ T8569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 266.718099][ T8569] R13: 00007f2506816128 R14: 00007f2506816090 R15: 00007ffc1ca14038 [ 266.718143][ T8569] [ 266.718278][ T5934] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI [ 266.977406][ T5934] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 266.985837][ T5934] CPU: 1 UID: 0 PID: 5934 Comm: kworker/1:7 Tainted: G L syzkaller #0 PREEMPT(full) [ 266.996964][ T5934] Tainted: [L]=SOFTLOCKUP [ 267.001292][ T5934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 267.011443][ T5934] Workqueue: events vidtv_mux_tick [ 267.016669][ T5934] RIP: 0010:vidtv_psi_ts_psi_write_into+0x54a/0xbc0 [ 267.023288][ T5934] Code: ec 7e dc f9 4c 8d 63 20 4c 89 e0 48 c1 e8 03 80 3c 28 00 0f 85 e8 04 00 00 48 8b 43 20 48 89 c2 48 89 c1 48 c1 ea 03 83 e1 07 <0f> b6 14 2a 38 ca 7f 08 84 d2 0f 85 19 05 00 00 0f b6 10 48 8b 7c [ 267.042910][ T5934] RSP: 0018:ffffc900046ef3f8 EFLAGS: 00010202 [ 267.048999][ T5934] RAX: 0000000000000002 RBX: ffffc900046ef678 RCX: 0000000000000002 [ 267.057150][ T5934] RDX: 0000000000000000 RSI: ffffffff882b8fd4 RDI: ffff888028f05b80 [ 267.065128][ T5934] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000 [ 267.073106][ T5934] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc900046ef698 [ 267.081174][ T5934] R13: 0000000000000178 R14: 0000000000000000 R15: 0000000000000008 [ 267.089154][ T5934] FS: 0000000000000000(0000) GS:ffff88812444c000(0000) knlGS:0000000000000000 [ 267.098098][ T5934] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 267.104692][ T5934] CR2: 0000001b3081aff8 CR3: 0000000072bcc000 CR4: 00000000003526f0 [ 267.112761][ T5934] Call Trace: [ 267.116044][ T5934] [ 267.118990][ T5934] ? __pfx_vidtv_psi_ts_psi_write_into+0x10/0x10 [ 267.125351][ T5934] vidtv_psi_pmt_write_into+0x3b2/0xa70 [ 267.130917][ T5934] ? __pfx_vidtv_psi_pmt_write_into+0x10/0x10 [ 267.137003][ T5934] ? vidtv_psi_pat_write_into+0x56a/0x690 [ 267.142738][ T5934] ? __pfx_vidtv_psi_pat_write_into+0x10/0x10 [ 267.148840][ T5934] ? __skb_to_sgvec+0x541/0xad0 [ 267.153719][ T5934] vidtv_mux_push_si+0x932/0xe80 [ 267.158675][ T5934] ? __pfx_vidtv_mux_push_si+0x10/0x10 [ 267.164161][ T5934] ? __pfx_vidtv_ts_pcr_write_into+0x10/0x10 [ 267.170177][ T5934] vidtv_mux_tick+0xe96/0x1480 [ 267.174958][ T5934] ? __pick_eevdf+0x14c/0x440 [ 267.179649][ T5934] ? __lock_acquire+0x4a5/0x2630 [ 267.184608][ T5934] ? __pfx_vidtv_mux_tick+0x10/0x10 [ 267.189824][ T5934] ? __lock_acquire+0x4a5/0x2630 [ 267.194782][ T5934] ? debug_object_deactivate+0x2e4/0x3b0 [ 267.200431][ T5934] ? finish_task_switch.isra.0+0x200/0xb80 [ 267.206262][ T5934] ? rcu_is_watching+0x12/0xc0 [ 267.211048][ T5934] process_one_work+0x9d7/0x1920 [ 267.216011][ T5934] ? __pfx_process_one_work+0x10/0x10 [ 267.221415][ T5934] ? __pfx_vidtv_mux_tick+0x10/0x10 [ 267.226629][ T5934] worker_thread+0x5da/0xe40 [ 267.231244][ T5934] ? __pfx_worker_thread+0x10/0x10 [ 267.236376][ T5934] ? kthread+0x13a/0x450 [ 267.240632][ T5934] ? __pfx_worker_thread+0x10/0x10 [ 267.245761][ T5934] kthread+0x370/0x450 [ 267.249847][ T5934] ? __pfx_kthread+0x10/0x10 [ 267.254454][ T5934] ret_from_fork+0x754/0xd80 [ 267.259064][ T5934] ? __pfx_ret_from_fork+0x10/0x10 [ 267.264207][ T5934] ? __switch_to+0x7b4/0x1120 [ 267.268902][ T5934] ? __pfx_kthread+0x10/0x10 [ 267.273613][ T5934] ret_from_fork_asm+0x1a/0x30 [ 267.278490][ T5934] [ 267.281511][ T5934] Modules linked in: [ 267.286611][ T5934] ---[ end trace 0000000000000000 ]--- [ 267.400558][ T5934] RIP: 0010:vidtv_psi_ts_psi_write_into+0x54a/0xbc0 [ 267.533540][ T5934] Code: ec 7e dc f9 4c 8d 63 20 4c 89 e0 48 c1 e8 03 80 3c 28 00 0f 85 e8 04 00 00 48 8b 43 20 48 89 c2 48 89 c1 48 c1 ea 03 83 e1 07 <0f> b6 14 2a 38 ca 7f 08 84 d2 0f 85 19 05 00 00 0f b6 10 48 8b 7c [ 267.630971][ T5934] RSP: 0018:ffffc900046ef3f8 EFLAGS: 00010202 [ 267.691540][ T5934] RAX: 0000000000000002 RBX: ffffc900046ef678 RCX: 0000000000000002 [ 267.708794][ T5934] RDX: 0000000000000000 RSI: ffffffff882b8fd4 RDI: ffff888028f05b80 [ 267.727033][ T5934] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000 [ 267.749010][ T5934] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc900046ef698 [ 267.757281][ T5934] R13: 0000000000000178 R14: 0000000000000000 R15: 0000000000000008 [ 267.766281][ T5934] FS: 0000000000000000(0000) GS:ffff88812444c000(0000) knlGS:0000000000000000 [ 267.776343][ T5934] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 267.784711][ T5934] CR2: 0000001b307e7ff8 CR3: 000000007ca2e000 CR4: 00000000003526f0 [ 267.793136][ T5934] Kernel panic - not syncing: Fatal exception [ 267.799380][ T5934] Kernel Offset: disabled [ 267.803795][ T5934] Rebooting in 86400 seconds..