last executing test programs: 12.481319746s ago: executing program 0 (id=4090): r0 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) r1 = timerfd_create$auto(0x9, 0x0) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) fallocate$auto(r0, 0x1, 0x820, 0x7fff) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x3, 0x1000000002020009, 0x4, 0xeb5, 0xffffffffffffffff, 0x6) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) r4 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_SET_TX_BITRATE_MASK(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="14000000", @ANYBLOB="040006"], 0x14}, 0x1, 0x0, 0x0, 0x4000010}, 0x800) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r5) r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x24040, 0x0) ioctl$auto_BLKTRACESETUP(r6, 0xc0481273, &(0x7f0000000240)={"ef65ce6c00cf81000000ffffffffffffff291d00", 0x3ff, 0x408, 0xffc, 0x400004, 0x200000000040000d}) r7 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000005c0), r5) sendmsg$auto_MACSEC_CMD_ADD_RXSC(r5, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000400)={0x1c, r7, 0x8ff972b65c311bf5, 0x70bd26, 0x25dfdbfe, {}, [@MACSEC_ATTR_IFINDEX={0x8, 0x117}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8090}, 0x4000) ioctl$auto_LOOP_CTL_ADD(r4, 0x4c80, 0xfffffffffffffffd) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14fa02, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f0000000180)="fc5ea5f1401a03cd7d362456adda0cf384c0e2d7bd3d31e409957ab6bd240c4af9373f9691253b947acf08619b") mmap$auto(0x0, 0xb9f, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) prctl$auto(0x3f, 0x1, 0x4, 0x8000000000000000, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_page_owner_stack_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x5054c2, 0x0) bpf$auto(0x5, 0x0, 0x1) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f00000012c0), 0xffffffffffffffff) sendmsg$auto_OVS_FLOW_CMD_DEL(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x18, r9, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@OVS_FLOW_ATTR_CLEAR={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x40}, 0x800) shmctl$auto_IPC_SET(0x100, 0x1, &(0x7f0000000340)={{0x5, 0x0, 0xffffffffffffffff, 0x5, 0x5, 0x101, 0x8}, 0xfffffffd, 0x2, 0x8, 0x4, @inferred, @inferred=0xffffffffffffffff, 0x7, 0x0, &(0x7f0000000200), &(0x7f0000000280)="264bc8780ede80f986f74a927c49c628e345ab4fed5f41a1323ac47e9a29472b8ed284d65eebec54a1f4ecfaa81d586d4daaab98be21aadab47b9640c847072f636a96915a78ecb8b760a4b3a766177e504de24291723e7faed31876d395c3ef1517ca889f3d8d91ee6446a278e06746da71d30fdd91e13e0330d5b4c4ec68a9a723da09271b4e24ad21ab"}) 10.77903145s ago: executing program 0 (id=4094): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r1, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r1) read$auto(r1, &(0x7f0000000000)='\x00', 0x91e2) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) ioctl$auto(r0, 0x4b3c, 0xffffffffffffffff) mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x800000404, 0x8000) setrlimit$auto(0x1000000007, 0x0) bpf$auto_BPF_BTF_LOAD(0x12, &(0x7f00000000c0)=@bpf_attr_1={r0, 0xfffffffffffffffc, @value=0x12c, 0x101}, 0x4) userfaultfd$auto(0x1) 9.126192942s ago: executing program 0 (id=4100): io_uring_setup$auto(0x6, 0x0) unshare$auto(0x40000080) ioctl$auto(0x4000000000000c8, 0x400454d9, 0x3) setresuid$auto(0x8, 0x0, 0x4) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/fail-nth\x00', 0x842, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/zram0/disksize\x00', 0x2202, 0x0) read$auto_cachefiles_daemon_fops_internal(r0, &(0x7f0000000080)=""/232, 0xe8) write$auto(r0, &(0x7f00000001c0)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x3dec) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) keyctl$auto(0xe, 0x1, 0x0, 0x5eaf, 0x8) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/vs/run_estimation\x00', 0x88042, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r1, 0x0, 0x0) r2 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0) write$auto_fuse_dev_operations_fuse_i(r2, &(0x7f0000000440)="11000000000000000000f8000000010000", 0x11) 7.436490802s ago: executing program 0 (id=4105): mmap$auto(0x0, 0x400005, 0xdf, 0x8000000009b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0xb, 0x0) socket(0x2, 0x5, 0x0) r0 = socket(0x18, 0x5, 0x62) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1102000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x8c, 0x0, 0x400, 0x70bd28, 0x25dfdbfe, {}, [@ETHTOOL_A_PAUSE_HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg0\x00'}]}, @ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x3}, @ETHTOOL_A_PAUSE_RX={0x5, 0x3, 0x8}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4040}, 0x4840) socket(0x2, 0x1, 0x84) unshare$auto(0x40000080) open(0x0, 0x22240, 0x155) uname$auto(0x0) r1 = socket(0x2, 0x801, 0x84) getsockopt$auto(r1, 0x84, 0x2, 0x0, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x64, 0x0, 0x1d) 6.819229356s ago: executing program 2 (id=4107): openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cpu/0/msr\x00', 0x80800, 0x0) ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0) (async) socket(0x28, 0x1, 0x50006) syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff) (async) syz_genetlink_get_family_id$auto_ioam6(0x0, 0xffffffffffffffff) (async) socket(0x10, 0x2, 0x0) (async) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async) timer_settime$auto(0x0, 0x9, &(0x7f0000000140)={{0x1, 0x1}, {0x9, 0x2}}, 0x0) (async) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x2a202, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) (async) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) (async) r1 = prctl$auto_SIGCONT(0x401, 0x12, 0xffffffffffffffff, 0x2, 0x2) getsockopt$auto_SO_MEMINFO(r1, 0x200b, 0x37, 0x0, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x48da548d) (async) getsockopt$auto_SO_ACCEPTCONN(0xffffffffffffffff, 0x800, 0x1e, 0x0, 0x0) (async) read$auto(0xffffffffffffffff, 0x0, 0x5) write$auto(0x3, 0x0, 0xffd8) (async) unshare$auto(0x40000080) mmap$auto(0x4, 0x8, 0x2000000000000dd, 0x9b74, r0, 0x7ffd) (async) unshare$auto(0x2) (async) mmap$auto(0xfffffffffffffffb, 0x400008, 0xdf, 0x17, 0x2, 0xffffffffffff0894) (async) ioctl$auto_EVIOCGKEYCODE(0xffffffffffffffff, 0x80084504, 0x0) (async) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) write$auto(r2, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xd8\x9c\xf7?:\x1a\xc62\x911e\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xff\x7f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\x87N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00', 0x5) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) (async) getsockopt$auto_SO_NO_CHECK(r2, 0x7, 0xb, 0x0, 0x0) (async) getcwd$auto(0x0, 0x3) (async) bpf$auto(0x0, &(0x7f0000000580)=@task_fd_query={0x7, 0x4, 0x200, 0x37e, 0x0, 0xf, 0xffffffffffffffff, 0x2, 0x5}, 0x6f4) (async) read$auto_kernel_debug_fops_orangefs_debugfs(0xffffffffffffffff, &(0x7f0000000640)=""/4096, 0x1000) 5.761238305s ago: executing program 2 (id=4109): openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x48402, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/virtual/block/nbd3/queue/iosched/front_merges\x00', 0x2041, 0x0) sendmsg$auto_NL802154_CMD_DEL_SEC_LEVEL(0xffffffffffffffff, 0x0, 0x8000800) r0 = socket(0x2, 0x1, 0x0) sendmsg$auto_NL80211_CMD_SET_MESH_CONFIG(r0, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000480)=ANY=[@ANYBLOB="f0000000", @ANYRES16=0x0, @ANYBLOB="02002dbd7000fedbdf251d0000000800260005000000bd002a002cd5dfcced000000266e3ebba1e9d9ce09bec6839da9972f37387880ec60846ca76bb55d647e91bbd7d28851b1596e58b4ed0bb3a745a4e30ec73d375ce5474d29e6b622d38a6fe7e9fd0b04acd6aa2fb1674a832dd059e9e50c389896800e9535f3acafcf37c4ecf9ffffffffffffff91f85d92d905f124059278b279f8e15ee7de82ca5a5935b1268316da1f86cd20010000000000000077e2cbbc85435a17e6ed44d5c9eaa992a824c2656b8eeed2eec9f4be263c02cb060000000400ec00770500e4000000000008000c01090000"], 0xf0}, 0x1, 0x0, 0x0, 0x80}, 0x4008100) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_SETHMAC(r1, &(0x7f0000001440)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)={0x30, r2, 0x6c5679fc7dece1a9, 0x70bd27, 0x25dfdbff, {}, [@SEG6_ATTR_ALGID={0x5, 0x6, 0x7}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x10001}, @SEG6_ATTR_SECRET={0x4}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x3}]}, 0x30}, 0x1, 0x0, 0x0, 0x24000014}, 0x400c810) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram4\x00', 0x26040, 0x0) ioctl$auto_BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000240)={"ef65ce6c00cf81000000ffffffffffffff291d000000002000", 0x3ff, 0x408, 0xffc, 0x400004, 0x200000000040000d}) ioctl$auto_BLKTRACETEARDOWN(r3, 0x1276, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/bus/scsi/drivers/st/fixed_buffer_size\x00', 0x0, 0x0) read$auto(r4, 0x0, 0x3) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x440c5) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x9, 0x100000001, 0xfffffff9, 0x0, 0x0, 0x0, 0x9, 0xfffe, 0x9, 0x400, 0x7f, 0x7, 0x100004, 0x5, 0x61, 0xff}) socket$nl_generic(0x10, 0x3, 0x10) prctl$auto(0x43, 0x0, 0x0, 0x0, 0x8658) r5 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000380)={0x54, r5, 0x301, 0x70bd25, 0x25dfdbff, {}, [@CTRL_ATTR_FAMILY_NAME={0x5, 0x2, '\x00'}, @CTRL_ATTR_FAMILY_NAME={0x35, 0x2, 'TIPCv\xe2ojn\x9f\xd0\x12\b\x05\x96\xdd,\x018\xd1\xcfP\a\x15\xa6\xbb\xb6\xf5\xf0H@S\xd5\xc9\xc2\x14(\xb6\xd0\xad\xc2\xea\x00\x00\x00\x00\x12\x0e\xf8'}]}, 0x54}, 0x1, 0x0, 0x0, 0x20000800}, 0xc040810) execve$auto(0x0, 0x0, 0x0) setfsuid$auto(0xee01) close_range$auto(0x2, 0x8, 0x0) 5.751097411s ago: executing program 3 (id=4110): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000000), r0) r1 = openat$auto_usbfs_devices_fops_usb(0xffffffffffffff9c, 0x0, 0x48402, 0x0) getsockname$auto(0xffffffffffffffff, &(0x7f0000000000)=@ethernet={0x1, @broadcast}, &(0x7f00000000c0)=0x5) semtimedop$auto(0xfffffffa, &(0x7f0000001000)={0x8000, 0x2, 0x1}, 0x4, &(0x7f0000001080)={0x11, 0x6}) read$auto(r1, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) select$auto(0xa, 0x0, &(0x7f0000000100)={[0x9, 0x5, 0x5, 0xfffffffffffffff6, 0x7, 0xfffffffffffe0002, 0xdffffffffffffff8, 0x2, 0x0, 0x10000005e58296f, 0x800000000020, 0x5, 0x3, 0x200, 0x1, 0x7]}, 0x0, 0x0) mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$auto_ILA_CMD_ADD(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x20, r5, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@ILA_ATTR_LOCATOR_MATCH={0xc, 0x3, 0x24000000000}]}, 0x20}, 0x1, 0x0, 0x0, 0x4010}, 0x0) sendmsg$auto_ILA_CMD_FLUSH(r3, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r5, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@ILA_ATTR_CSUM_MODE={0x5, 0x7, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x5}, 0x40008c4) sendmsg$auto_CTRL_CMD_GETPOLICY(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="032cbd7000fbdbdf250a006300060001001500000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4019}, 0x0) syz_clone(0x81000, &(0x7f0000000040)="70b5129cc0119c1d119582e3eadd52eb0079dc53a85920e2f58c146e4d04ed04f810164880e00944a92caf66c930688cf29df910935127037f04954a8435de62545a3e9b9bac28ce7bce02571f43fffef4a86564322324e683c6ee9506b0e71d609b6eb82580", 0x66, &(0x7f00000000c0), 0x0, &(0x7f00000001c0)) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/pci/drivers/pata_sch/new_id\x00', 0x4242, 0x0) r6 = socket(0x2, 0x80002, 0x73) io_uring_setup$auto(0x406, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_SET_WIPHY(r6, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x404c081}, 0x80) openat$auto_snapshot_fops_user(0xffffffffffffff9c, 0x0, 0x80, 0x0) getrandom$auto(0x0, 0x6000000, 0x3) mmap$auto(0x3, 0x2000b, 0x2, 0x8000000100000011, r1, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/midi2\x00', 0xd82, 0x0) 5.254660808s ago: executing program 2 (id=4111): r0 = socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0xe883, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01eb"], 0x14}}, 0x24004000) bpf$auto(0x3, &(0x7f00000001c0)=@task_fd_query={0x0, 0xffffffffffffffff, 0x8, 0x10035, 0x80208000008, 0x2, r0, 0x20000000000803}, 0x6f0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mlock$auto(0x112, 0x80006) mlockall$auto(0x800000000000005) madvise$auto(0x0, 0x200007, 0x19) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) 4.305746595s ago: executing program 3 (id=4112): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0001, 0x0) ioctl$auto(0x3, 0xc0104d03, r0) r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x100e42, 0x0) write$auto_sg_fops_sg(r1, &(0x7f00000001c0)="bf5b1a8c24000000dbcbc7a996eea7f3804ca6c7591afff6578d2f5f520f687f316ba7327b581cd8d5", 0x29) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') getcwd$auto(0x0, 0xffffffffffffffff) unlinkat$auto(0xffffffffffffffff, 0x0, 0x200) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x8001, 0x0) ioctl$auto(r2, 0x401070cd, 0x5) r3 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) getdents64$auto(r3, 0x0, 0x400) socket(0x2, 0x1, 0x0) r4 = open(&(0x7f0000000100)='.\x00', 0x595082, 0x0) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/maps\x00', 0x80, 0x0) write$auto(r4, 0x0, 0xfffffdf1) linkat$auto(r4, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) mprotect$auto(0x0, 0x8000000000000001, 0x8) write$auto(0x3, 0x0, 0xfffffdef) r5 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8740, 0x0) read$auto_proc_mem_operations_base(r4, &(0x7f0000000580)=""/206, 0xce) ioctl$auto_SNDRV_PCM_IOCTL_HW_REFINE(r4, 0xc2604110, &(0x7f0000000200)={0x0, [{[0x6, 0x200, 0x8, 0x9, 0xf4c, 0x9, 0x10, 0xfffffff2]}, {[0x8, 0x800, 0x100000, 0x1, 0x9, 0x9, 0x400, 0x2]}, {[0x101, 0xa9, 0xffff, 0x7, 0x0, 0xfffffff3, 0x9, 0x2]}], [{[0x1, 0xf5b7, 0x5, 0xc96f664b, 0x5, 0x4, 0x8, 0x1db]}, {[0x2, 0x0, 0x7, 0xfffffd8d, 0x2, 0xfffffff9, 0xe31, 0x1ff]}, {[0x7fff, 0x6, 0x800, 0x9, 0x5, 0x1224, 0x3]}, {[0x401, 0x1, 0x1, 0x1, 0x8, 0x9, 0x40, 0x4]}, {[0x7, 0x6, 0x101, 0x7, 0x8001, 0xf, 0x7, 0x1000]}], [{0x16, 0x6, 0x1, 0x1, 0x1}, {0xd, 0x7, 0x0, 0x1, 0x1, 0x1}, {0x1, 0x10001, 0x1}, {0xffff, 0x9, 0x0, 0x0, 0x1}, {0x3ff, 0x800, 0x0, 0x0, 0x1, 0x1}, {0x6, 0xe, 0x1, 0x0, 0x1, 0x1}, {0x6, 0x6ed, 0x0, 0x0, 0x1, 0x1}, {0x10001, 0x1}, {0x6, 0x81, 0x1, 0x1}, {0x5, 0x3, 0x0, 0x1}, {0x1000, 0x233, 0x1, 0x1, 0x0, 0x1}, {0x80fb, 0x79a3, 0x1, 0x1}], [{0x9, 0x4, 0x1, 0x0, 0x1, 0x1}, {0x1617, 0xfffffffe, 0x0, 0x0, 0x1}, {0x2, 0xca92, 0x1, 0x1, 0x0, 0x1}, {0x5118, 0x2, 0x1, 0x1}, {0x7, 0x2, 0x0, 0x1}, {0x81, 0x8, 0x0, 0x0, 0x0, 0x1}, {0xc2, 0xce, 0x0, 0x1, 0x0, 0x1}, {0x9d05, 0xffffffff, 0x1}, {0xe, 0x1, 0x0, 0x1, 0x1, 0x1}], 0x100, 0x0, 0xa, 0x6, 0x3, 0x8, 0x8, "5bd59767575c60613147f48dd5ea371f", "3efabce3643ee59b01f85666814d30a9915c1545c324b6ffb205ef81fc06c35e9fd16c9713265e01b28e79e481dd27a9"}) ioctl$auto(r5, 0x40045407, 0xffffffffffffffff) 4.16291632s ago: executing program 2 (id=4113): r0 = socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0xe883, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01eb"], 0x14}}, 0x24004000) bpf$auto(0x3, &(0x7f00000001c0)=@task_fd_query={0x0, 0xffffffffffffffff, 0x8, 0x10035, 0x80208000008, 0x2, r0, 0x20000000000803}, 0x6f0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mlock$auto(0x112, 0x80006) madvise$auto(0x0, 0x200007, 0x19) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 4.111310614s ago: executing program 1 (id=4114): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0) timer_create$auto(0x2, 0x0, 0x0) read$auto_ftrace_set_event_pid_fops_trace_events(r1, &(0x7f00000001c0)=""/185, 0xb9) rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8) ioctl$auto_RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, 0x0) timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x26b, 0x4}, {0x225c17d03, 0x83}}, 0x0) read$auto_l2cap_debugfs_fops_(r1, &(0x7f0000000280)=""/156, 0x9c) r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={0x0, 0x6}, 0xa, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyua\x00', 0x20804, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x22, 0x5, 0x7) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc0002, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/sunrpc/parameters/auth_hashtable_size\x00', 0x2ab42, 0x0) openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim3/max_vfs\x00', 0x80000, 0x0) r4 = socket(0x2a, 0x2, 0x1) connect$auto(r4, &(0x7f00000000c0)=@qipcrtr={0x2a, 0xffffffff, 0x4001}, 0x55) write$auto(0x3, 0x0, 0x6) sendfile$auto(r3, r3, 0x0, 0x4f64a1d2) 3.565920522s ago: executing program 2 (id=4115): r0 = socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0xe883, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01eb"], 0x14}}, 0x24004000) bpf$auto(0x3, &(0x7f00000001c0)=@task_fd_query={0x0, 0xffffffffffffffff, 0x8, 0x10035, 0x80208000008, 0x2, r0, 0x20000000000803}, 0x6f0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mlock$auto(0x112, 0x80006) mlockall$auto(0x800000000000005) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 3.448332311s ago: executing program 3 (id=4116): socket(0xa, 0x3, 0xff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000) ioctl$auto_PPPIOCSACTIVE(0xffffffffffffffff, 0x40107446, &(0x7f00000000c0)={0x9, &(0x7f0000000040)={0x5, 0x9, 0x9}}) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, '\x00\x00\x00?\x00'}, 0x55) semctl$auto(0x7, 0x2, 0x13, 0x1) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 3.341324221s ago: executing program 0 (id=4117): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0xffffffffffffffff, 0x10008000) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00', @ANYRES16=0x0, @ANYBLOB="000326"], 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x20000000}, 0x890) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='!\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x44}, 0x40090) r0 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendfile$auto(r1, r0, 0x0, 0x7ffff003) vmsplice$auto(0x2, &(0x7f00000000c0)={0x0, 0x7ff}, 0x8000000000000001, 0x0) write$auto(0x1, 0x0, 0x80000000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x801, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72) socket(0x2, 0x1, 0x0) select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x4000000000000003, 0xfff, 0x1, 0x948b, 0x3, 0x95f4da2d, 0xc, 0x6, 0x62, 0x7, 0xf78b, 0x6d3f, 0xa, 0x5, 0x5]}, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000140), 0x60a41, 0x0) select$auto(0x12, 0x0, 0x0, &(0x7f0000000100)={[0x1fe, 0x6, 0x2, 0xffffffffffffffeb, 0xa00000000000948b, 0x3, 0x15f4da0a, 0x3, 0x4000000000000003, 0x62, 0x8, 0x7, 0x6d3e, 0x7ffb, 0x8000000000000000, 0x6]}, 0x0) close_range$auto(0x2, 0x8, 0x0) madvise$auto(0x110c230000, 0x8031c7, 0x8) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00'}) syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000040), r1) 2.951320353s ago: executing program 1 (id=4118): mmap$auto(0x0, 0x7, 0xdf, 0x9b72, 0x7, 0x28000) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x11, 0x80003, 0x300) sendfile$auto(0x1, r3, 0x0, 0x8fb5) dup2$auto(0x0, 0x3) ioctl$auto(r2, 0x5760, 0x10000000000402) write$auto(0x1, 0x0, 0x80000000) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) fsconfig$auto_JFFS2_COMPR_MODE_NONE(r0, 0x9, &(0x7f0000000040)='{6y\xfa\xd6\bk\xf0\xe3\n', 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x7, 0x3, 0x10001, 0x3, 0x5e, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) prctl$auto(0x4e, 0x2, 0x0, 0x100, 0x2) write$auto(r1, 0x0, 0x100000a3d9) select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948e, 0xffffffffffffffff, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x4000008000001f, 0x7, 0x6d3e, 0x6, 0x2, 0x6]}, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nullb0/queue/scheduler\x00', 0xca002, 0x0) sendfile$auto(r4, r4, 0x0, 0x7ffff000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/irq/6/smp_affinity_list\x00', 0xe0182, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) msync$auto(0x1ffff000, 0x1800000000000ff, 0x3) getrandom$auto(0x0, 0x6000000, 0x3) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) 2.91159363s ago: executing program 3 (id=4120): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_EVIOCGREP(0xffffffffffffffff, 0x80084503, &(0x7f0000000000)=[0x4, 0x7]) r0 = socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54) getsockopt$auto(r0, 0x84, 0x71, 0x0, &(0x7f0000000280)=0x22a) close_range$auto(0x0, 0xfffffffffffff000, 0x2) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty13\x00', 0x60540, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x20342, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/nfs4.nametoid/content\x00', 0x2000, 0x0) pipe2$auto(0x0, 0x0) io_uring_setup$auto(0xf8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1000001, 0x5, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptya7\x00', 0x101e81, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyde\x00', 0x42400, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) read$auto(0x3, 0x0, 0x80) bpf$auto(0x1, &(0x7f0000000100)=@task_fd_query={0x2, 0x4, 0x3, 0x2, 0xb, 0xc, 0xe3, 0x400000000a}, 0x6f4) inotify_init1$auto(0x3000000000000) socket(0x11, 0x3, 0x2) landlock_create_ruleset$auto(&(0x7f0000000280)={0x200, 0xf8, 0x412}, 0x8, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000) 2.609016123s ago: executing program 2 (id=4121): r0 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) r1 = timerfd_create$auto(0x9, 0x0) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) fallocate$auto(r0, 0x1, 0x820, 0x7fff) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x3, 0x1000000002020009, 0x4, 0xeb5, 0xffffffffffffffff, 0x6) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) r4 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_SET_TX_BITRATE_MASK(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="14000000", @ANYBLOB="040006"], 0x14}, 0x1, 0x0, 0x0, 0x4000010}, 0x800) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r5) r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x24040, 0x0) ioctl$auto_BLKTRACESETUP(r6, 0xc0481273, &(0x7f0000000240)={"ef65ce6c00cf81000000ffffffffffffff291d00", 0x3ff, 0x408, 0xffc, 0x400004, 0x200000000040000d}) r7 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000005c0), r5) sendmsg$auto_MACSEC_CMD_ADD_RXSC(r5, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000400)={0x1c, r7, 0x8ff972b65c311bf5, 0x70bd26, 0x25dfdbfe, {}, [@MACSEC_ATTR_IFINDEX={0x8, 0x117}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8090}, 0x4000) ioctl$auto_LOOP_CTL_ADD(r4, 0x4c80, 0xfffffffffffffffd) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14fa02, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f0000000180)="fc5ea5f1401a03cd7d362456adda0cf384c0e2d7bd3d31e409957ab6bd240c4af9373f9691253b947acf08619b") mmap$auto(0x0, 0xb9f, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) prctl$auto(0x3f, 0x1, 0x4, 0x8000000000000000, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_page_owner_stack_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x5054c2, 0x0) bpf$auto(0x5, 0x0, 0x1) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f00000012c0), 0xffffffffffffffff) sendmsg$auto_OVS_FLOW_CMD_DEL(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x18, r9, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@OVS_FLOW_ATTR_CLEAR={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x40}, 0x800) shmctl$auto_IPC_SET(0x100, 0x1, &(0x7f0000000340)={{0x5, 0x0, 0xffffffffffffffff, 0x5, 0x5, 0x101, 0x8}, 0xfffffffd, 0x2, 0x8, 0x4, @inferred, @inferred=0xffffffffffffffff, 0x7, 0x0, &(0x7f0000000200)="68ac21feb7674cb0fcef03253b9a34f1ec989f4441bcf486327a6a51902c6054a01a84bab5610f93", &(0x7f0000000280)="264bc8780ede80f986f74a927c49c628e345ab4fed5f41a1323ac47e9a29472b8ed284d65eebec54a1f4ecfaa81d586d4daaab98be21aadab47b9640c847072f636a96915a78ecb8b760a4b3a766177e504de24291723e7faed31876d395c3ef1517ca889f3d8d91ee6446a278e06746da71d30fdd91e13e0330d5b4c4ec68a9a723da09271b4e24ad21ab"}) 1.186048927s ago: executing program 3 (id=4122): mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x0, 0x100000000008000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) r0 = socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x80000000, 0xdf, 0xeb1, 0x401, 0x8000) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x140242, 0x0) (async) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) writev$auto(r1, &(0x7f0000000200)={0x0, 0x10}, 0x4) (async) r3 = openat$auto_o2hb_debug_fops_heartbeat(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/o2hb/failed_regions\x00', 0xa02, 0x0) pipe$auto(&(0x7f00000000c0)=r3) (async) epoll_create$auto(0x4) (async) socket(0x28, 0x1, 0x0) (async, rerun: 32) socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) socket$nl_generic(0x10, 0x3, 0x10) (async) epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0) epoll_create$auto(0x3) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) close_range$auto(r0, r1, 0xfffffffe) (async) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) (async) io_uring_setup$auto(0x7, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x8000000000000003) (async) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x80045439, 0x0) (async, rerun: 32) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) (rerun: 32) close_range$auto(0x0, 0x5, 0x0) (async, rerun: 64) fanotify_init$auto(0x5, 0x2000000000002) (async, rerun: 64) inotify_init1$auto(0x3000000000000) socket(0x15, 0x5, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup/cgroup.type\x00', 0x103042, 0x0) 1.059461767s ago: executing program 0 (id=4123): socket(0x10, 0x80002, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0) read$auto_configfs_file_operations_configfs_internal(0xffffffffffffffff, &(0x7f0000000040)=""/19, 0x13) ioctl$auto(r0, 0x5646, r0) openat$auto_proc_setgroups_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/setgroups\x00', 0x80000, 0x0) read$auto_v4l2_fops_v4l2_dev(r0, &(0x7f0000000280)=""/40, 0x28) ioctl$auto(r0, 0x2400000, 0xffffffffffffffff) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x802, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0) bpf$auto(0x0, &(0x7f0000000780)=@query={@target_ifindex, 0x718, 0x8004, 0x3, 0x6, @count=0xc43, 0x0, 0x431, 0xffffffffffffffff, 0xa, 0x4}, 0xa3) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, 0x0, 0xa00, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/nr9/tx_queue_len\x00', 0x28040, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup/cgroup.kill\x00', 0xa001, 0x0) write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) prctl$auto(0x3e, 0x1, 0x0, 0x800000000001, 0x0) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ipv6_route\x00', 0x101000, 0x0) pread64$auto(r2, 0x0, 0x8, 0xffff) keyctl$auto(0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0xf4, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="100026bd7000fedbff2503000000080004", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a000100aaaaaaaaaabb00000a000500aaaaaaaaaa3a00", @ANYRES32=r3, @ANYBLOB="08000300faffffff"], 0x60}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101800, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000380)=""/172, 0xac) socket(0x2, 0x3, 0x100) 756.415514ms ago: executing program 1 (id=4124): shmctl$auto_SHM_INFO(0x6, 0xe, &(0x7f0000000240)={{0x240, 0x0, 0xee01, 0x7, 0xfffffffb, 0x7ff, 0xd773}, 0x800, 0x7, 0x101, 0x9, @raw=0x1ff, @inferred=0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000140)="b8047d8182e6e39743e251a937eb90192ab27dbcd1cf851aca6da05f34493411425ce74250b36d1564945ff78a4fa6003efeacd953da7aef7f87c12b9cf5659d8a3ee9501ae700af3812e1e8070986b6181c1b980a16197b9659ba2db5bc4e3c780fec48d6669168afee067c0f5aa20d525a88312e39fa8fe5bc15cb260b2bfc2a03befae0a9cac57ae3001f493b2dae6b95de2edea1ab0c7ebfd325bdc6b9127757fa67d2589a0a9e200b6648b84f2b0f4c3ab06aea9912ed5c12aea01c98b3075154ac560349"}) pwrite64$auto(0xc8, &(0x7f0000000040)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x893\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/231, 0xfdf2, 0x3a) 566.934011ms ago: executing program 1 (id=4125): socket(0xa, 0x3, 0xff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000) ioctl$auto_PPPIOCSACTIVE(0xffffffffffffffff, 0x40107446, &(0x7f00000000c0)={0x9, &(0x7f0000000040)={0x5, 0x9, 0x9}}) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55) semctl$auto(0x7, 0x2, 0x13, 0x1) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0xfc00) 474.115454ms ago: executing program 3 (id=4126): close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000340)='/proc/self/loginuid\x00', 0x101000, 0x0) r0 = openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, 0x0, 0x20740, 0x0) ioctl$auto_IOCTL_STOP_ACCEL_DEV(r0, 0x40096101, &(0x7f0000000240)={@padding, 0xfe}) openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f0000000000), 0x121001, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/rpc/auth.rpcsec.init/flush\x00', 0x28542, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) writev$auto(0xffffffffffffffff, 0x0, 0xa2) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r2 = io_uring_setup$auto(0x6, 0x0) unshare$auto(0x40000080) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0) write$auto(0x3, 0x0, 0xffd8) r3 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000080), r1) sendmsg$auto_ILA_CMD_ADD(r2, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x184208}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x20, r3, 0x20, 0x70bd2c, 0x25dfdbfb, {}, [@ILA_ATTR_LOCATOR={0xc, 0x1, 0x6}]}, 0x20}, 0x1, 0x0, 0x0, 0x2000c0c0}, 0x20000000) r4 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/default/disable_ipv6\x00', 0x202, 0x0) sendfile$auto(r5, r5, 0x0, 0x200) read$auto(r4, 0x0, 0x7) writev$auto(0x3, &(0x7f00000001c0)={0x0, 0x3}, 0x7) 361.7285ms ago: executing program 1 (id=4127): close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptye9\x00', 0x101e81, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/ram1\x00', 0x1ef280, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000980)='/dev/ttye9\x00', 0x102, 0x0) mmap$auto(0x0, 0x2020009, 0x1000000000000006, 0xf8, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/bus/usb/drivers/usblcd/unbind\x00', 0x6e081, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48101, 0x0) write$auto(r0, &(0x7f0000000100)='/surit\x8b\xafR\xf2y/integrity?iqa/policy\x00\xa2\xf4\x92_\xe8\xaeD\xca/ \xe5\xed`\xa4\xb5b\xff\x8c\xcf8\x00\xd5s\xb36\"\'\xb0\x84k\x98\xd7\xca\x06O\xd8Y\x15{W\f=XM\xb7\xf4\xca\xdf\x8fe\xe2\x91>`D{\x9e\xfe\x92\x9f|#5P\x8b\xdd\xd2/\b\xb5g\x18\xed\xaa \x9fs\xe0\x04\x84\x04\x02\x89\x84%d\xc1@\x91W\xf8\xf65\xa8\x1d\xde\alUZ\xab\x17\xba\xf8\x02\x12\x94\xdc\xcb\xc3\x06\x82\xc8G4>J\x83\xd3^\x8d', 0x2000000000c5) ioctl$auto(0x3, 0x40405515, 0x38) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/dummy_hcd.0/usb1/avoid_reset_quirk\x00', 0x68006, 0x0) read$auto(r1, 0x0, 0x20) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) migrate_pages$auto(0x0, 0x99, 0x0, &(0x7f00000001c0)=0x7b) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/dsp\x00', 0x80e42, 0x0) write$auto(0x3, 0x0, 0x100082) r2 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r2, 0x107, 0x12, 0x0, 0x4) socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x1, 0x84) socket(0xa, 0x1, 0x84) sendto$auto(0x3, 0x0, 0x2000f, 0x101, &(0x7f0000000000)=@in={0x2, 0x4e22, @rand_addr=0xc0586300}, 0x1c) io_uring_setup$auto(0x4bf15e08, &(0x7f0000000000)={0x401, 0x8, 0x1000fe, 0x6fb3, 0x8a, 0x4, 0xffffffffffffffff, [0x100, 0x3, 0x7f], {0x2, 0x7, 0x3032, 0xe, 0xf, 0x5, 0x5, 0x4, 0xf08a2b3}, {0x8, 0xfc, 0x6, 0x0, 0x0, 0xf89, 0x9, 0x837, 0x8}}) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'dummy0\x00'}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f00000002c0), r4) sendmsg$auto_SMC_PNETID_FLUSH(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000200)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="fb6127bd7000fcdbdf2504000009cdb09eb8b09a47ddec4a3369273dac863a75b1ec9070a1601d66dbe33b27b3ac38b88cfa37a75375e0d889359056c1ad5c264a2a73b3fe07ee1e7542709e53fdbe68dd0471232e45124f410acf973dd78e9bfd42db55749407bd986bbfbd8c96dea84ccb07c6896f"], 0x14}}, 0x30) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00') 0s ago: executing program 1 (id=4128): syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEC_SET(0xffffffffffffffff, 0x0, 0x20004000) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r0, &(0x7f0000000080)='7\x00\\\xa0\x04|3\x1ck\x00'/24, 0x5) mknod$auto(&(0x7f00000003c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5', 0x20e9, 0x103) r1 = openat$auto_drm_crtc_crc_control_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000380), 0x500, 0x0) write$auto_drm_crtc_crc_control_fops_drm_debugfs_crc(r1, &(0x7f0000003540)='\a', 0x1) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/neigh/veth1_macvtap/locktime\x00', 0x103142, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) capset$auto(&(0x7f0000000100)={0x20080522, 0x0}, 0x0) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/sctp/udp_port\x00', 0x202, 0x0) sendfile$auto(r4, r2, 0x0, 0x6) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x19, 0x2, 0x800008000) shmdt$auto(0x0) mmap$auto(0x0, 0xe983, 0xdf, 0x10, 0x401, 0x8000) shmctl$auto_SHM_LOCK(0x0, 0xb, &(0x7f00000002c0)={{0x973, 0xee01, 0xee01, 0x0, 0x7ff, 0x6, 0xf}, 0x6, 0x2, 0x6, 0x9, @raw=0x7, @raw=0x7f, 0x469b, 0x0, &(0x7f00000001c0)="b1b966ff79d0ca393aaa3ba6e286ecfa162874767db79a4437d15c7db99ba50f689cad797c2a06c1eabd077811ef01f561b53ff97e105901c0f82b8863f22c25e9e060cdbda377e89cc60072ebc6ebcffc04a8dfd4aef8291d27", &(0x7f0000000240)="9d71aeb434ed300c0e773f15aebd174b594283e2f1a55e480a1b2d469d77395dff110067c8ee185d3d43fca4702667a4de943af8ec23b56313d40d3d5c925a8908814ee0ebc20671bccb1be387a73ea214e1a427a9c4dfee6dd204c8d394337b"}) msgctl$auto_MSG_INFO(0x8, 0xc, &(0x7f00000004c0)={{0x6, r5, 0xee00, 0xf, 0x5, 0x7, 0x6}, &(0x7f0000000640)=0x80, &(0x7f0000000340)=0x9, 0x8000000000000006, 0x4, 0xc035, 0x3, 0x104, 0xfffe, 0x81, 0x2, @inferred=r3}) lstat$auto(&(0x7f00000000c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00', &(0x7f0000000540)={0x1, 0x6, 0x41, 0x82a, r5, r6, 0x0, 0x2000fff, 0x0, 0x3fd, 0x6, 0x2, 0x9, 0x2, 0x5, 0x3, 0x7}) mmap$auto(0x8, 0x6, 0x9, 0x8011, r0, 0x80) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) mincore$auto(0x1000, 0x4000000, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/usbmon8\x00', 0x121200, 0x0) mmap$auto(0x0, 0x4000002, 0xfffffffffffffe01, 0x8051, 0x3, 0x0) r7 = syz_clone(0x80021800, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r7, 0x2, 0x1007ff) ptrace$auto_PTRACE_SETREGSET(0x4205, r7, 0x2, 0x9193) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r8 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000600), r8) kernel console output (not intermixed with test programs): 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1079.283478][T20649] RSP: 002b:00007fc1d27d0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 1079.283501][T20649] RAX: ffffffffffffffda RBX: 00007fc1d1be5fa0 RCX: 00007fc1d198f7c9 [ 1079.283520][T20649] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 1079.283536][T20649] RBP: 00007fc1d1a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 1079.283552][T20649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1079.283567][T20649] R13: 00007fc1d1be6038 R14: 00007fc1d1be5fa0 R15: 00007ffcf15930a8 [ 1079.283599][T20649] [ 1079.283622][T20649] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1079.472394][T20650] sctp: Failed to create the SCTP UDP tunneling v4 sock [ 1079.917872][T20639] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 1080.235878][T20656] vivid-007: ================= START STATUS ================= [ 1080.243597][T20656] vivid-007: Generate PTS: true [ 1080.276014][T20656] vivid-007: Generate SCR: true [ 1080.284943][T20656] tpg source WxH: 320x240 (Y'CbCr) [ 1080.312530][T20656] tpg field: 1 [ 1080.333699][T20656] tpg crop: (0,0)/320x240 [ 1080.335240][T20659] FAULT_INJECTION: forcing a failure. [ 1080.335240][T20659] name failslab, interval 1, probability 0, space 0, times 0 [ 1080.374746][T20656] tpg compose: (0,0)/320x240 [ 1080.381727][T20656] tpg colorspace: 8 [ 1080.386305][T20659] CPU: 1 UID: 0 PID: 20659 Comm: syz.1.3224 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1080.386361][T20659] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1080.386375][T20659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1080.386395][T20659] Call Trace: [ 1080.386407][T20659] [ 1080.386420][T20659] dump_stack_lvl+0x16c/0x1f0 [ 1080.386477][T20659] should_fail_ex+0x512/0x640 [ 1080.386515][T20659] ? fs_reclaim_acquire+0xae/0x150 [ 1080.386574][T20659] should_failslab+0xc2/0x120 [ 1080.386628][T20659] __kmalloc_noprof+0xeb/0x910 [ 1080.386667][T20659] ? tomoyo_encode2+0x100/0x3e0 [ 1080.386731][T20659] ? tomoyo_encode2+0x100/0x3e0 [ 1080.386776][T20659] tomoyo_encode2+0x100/0x3e0 [ 1080.386828][T20659] tomoyo_encode+0x29/0x50 [ 1080.386871][T20659] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1080.386930][T20659] tomoyo_mkdev_perm+0x22b/0x570 [ 1080.386966][T20659] ? tomoyo_mkdev_perm+0x217/0x570 [ 1080.387010][T20659] ? __pfx_tomoyo_mkdev_perm+0x10/0x10 [ 1080.387061][T20659] ? do_raw_spin_lock+0x12c/0x2b0 [ 1080.387111][T20659] ? do_raw_spin_unlock+0x172/0x230 [ 1080.387173][T20659] ? __pfx_current_check_access_path+0x10/0x10 [ 1080.387223][T20659] ? simple_lookup+0x105/0x1d0 [ 1080.387281][T20659] tomoyo_path_mknod+0x12a/0x190 [ 1080.387334][T20659] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 1080.387391][T20659] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1080.387451][T20659] security_path_mknod+0x161/0x310 [ 1080.387491][T20659] do_mknodat+0x24e/0x6f0 [ 1080.387541][T20659] ? __pfx_do_mknodat+0x10/0x10 [ 1080.387589][T20659] ? getname_flags.part.0+0x1c5/0x550 [ 1080.387637][T20659] __x64_sys_mknod+0x87/0xb0 [ 1080.387699][T20659] do_syscall_64+0xcd/0xf80 [ 1080.387754][T20659] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1080.387788][T20659] RIP: 0033:0x7f044d58f7c9 [ 1080.387815][T20659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1080.387848][T20659] RSP: 002b:00007f044e423038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 1080.387878][T20659] RAX: ffffffffffffffda RBX: 00007f044d7e5fa0 RCX: 00007f044d58f7c9 [ 1080.387899][T20659] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 1080.387921][T20659] RBP: 00007f044d613f91 R08: 0000000000000000 R09: 0000000000000000 [ 1080.387941][T20659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1080.387961][T20659] R13: 00007f044d7e6038 R14: 00007f044d7e5fa0 R15: 00007ffc898df508 [ 1080.388007][T20659] [ 1080.388036][T20659] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1080.388715][T20656] tpg transfer function: 0/0 [ 1080.429185][T20659] sctp: Failed to create the SCTP UDP tunneling v4 sock [ 1080.675061][T20656] tpg Y'CbCr encoding: 0/0 [ 1080.685586][T20656] tpg quantization: 0/0 [ 1080.695136][T20656] tpg RGB range: 0/2 [ 1080.747887][T20656] vivid-007: ================== END STATUS ================== [ 1080.876059][T20666] random: crng reseeded on system resumption [ 1083.335367][T20705] vivid-007: ================= START STATUS ================= [ 1083.367336][T20705] vivid-007: Generate PTS: true [ 1083.389016][T20705] vivid-007: Generate SCR: true [ 1083.399134][T20705] tpg source WxH: 320x240 (Y'CbCr) [ 1083.409300][T20705] tpg field: 1 [ 1083.417163][T20705] tpg crop: (0,0)/320x240 [ 1083.449927][T20705] tpg compose: (0,0)/320x240 [ 1083.462475][T20705] tpg colorspace: 8 [ 1083.501536][T20705] tpg transfer function: 0/0 [ 1083.510788][T20705] tpg Y'CbCr encoding: 0/0 [ 1083.537669][T20705] tpg quantization: 0/0 [ 1083.541932][T20705] tpg RGB range: 0/2 [ 1083.580489][T20705] vivid-007: ================== END STATUS ================== [ 1085.031968][T20727] vivid-007: ================= START STATUS ================= [ 1085.075062][T20727] vivid-007: Generate PTS: true [ 1085.079976][T20727] vivid-007: Generate SCR: true [ 1085.116594][T20727] tpg source WxH: 320x240 (Y'CbCr) [ 1085.121754][T20727] tpg field: 1 [ 1085.167456][T20727] tpg crop: (0,0)/320x240 [ 1085.190208][T20727] tpg compose: (0,0)/320x240 [ 1085.215071][T20727] tpg colorspace: 8 [ 1085.233272][T20727] tpg transfer function: 0/0 [ 1085.265516][T20727] tpg Y'CbCr encoding: 0/0 [ 1085.279175][T20727] tpg quantization: 0/0 [ 1085.332585][T20732] random: crng reseeded on system resumption [ 1085.355494][T20727] tpg RGB range: 0/2 [ 1085.359424][T20727] vivid-007: ================== END STATUS ================== [ 1085.622611][T20739] FAULT_INJECTION: forcing a failure. [ 1085.622611][T20739] name failslab, interval 1, probability 0, space 0, times 0 [ 1085.635621][T20739] CPU: 0 UID: 0 PID: 20739 Comm: syz.3.3238 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1085.635678][T20739] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1085.635691][T20739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1085.635712][T20739] Call Trace: [ 1085.635723][T20739] [ 1085.635737][T20739] dump_stack_lvl+0x16c/0x1f0 [ 1085.635795][T20739] should_fail_ex+0x512/0x640 [ 1085.635832][T20739] ? __kmalloc_cache_node_noprof+0x62/0x830 [ 1085.635887][T20739] should_failslab+0xc2/0x120 [ 1085.635942][T20739] __kmalloc_cache_node_noprof+0x83/0x830 [ 1085.635993][T20739] ? sbitmap_queue_init_node+0x291/0x4a0 [ 1085.636044][T20739] ? sbitmap_init_node+0x2cc/0x770 [ 1085.636109][T20739] ? sbitmap_queue_init_node+0x291/0x4a0 [ 1085.636161][T20739] sbitmap_queue_init_node+0x291/0x4a0 [ 1085.636220][T20739] blk_mq_init_tags+0x17f/0x320 [ 1085.636275][T20739] blk_mq_alloc_map_and_rqs+0x222/0xeb0 [ 1085.636334][T20739] __blk_mq_alloc_map_and_rqs+0x128/0x1f0 [ 1085.636387][T20739] blk_mq_alloc_tag_set+0x7c3/0x12e0 [ 1085.636448][T20739] loop_add+0x3b2/0xb70 [ 1085.636503][T20739] ? __pfx_loop_add+0x10/0x10 [ 1085.636574][T20739] ? find_held_lock+0x2b/0x80 [ 1085.636617][T20739] loop_control_ioctl+0x13e/0x640 [ 1085.636665][T20739] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1085.636716][T20739] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1085.636764][T20739] __x64_sys_ioctl+0x18e/0x210 [ 1085.636803][T20739] do_syscall_64+0xcd/0xf80 [ 1085.636850][T20739] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1085.636879][T20739] RIP: 0033:0x7f8af4d8f7c9 [ 1085.636903][T20739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1085.636934][T20739] RSP: 002b:00007f8af5c8b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1085.636962][T20739] RAX: ffffffffffffffda RBX: 00007f8af4fe6180 RCX: 00007f8af4d8f7c9 [ 1085.636981][T20739] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 1085.637000][T20739] RBP: 00007f8af4e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 1085.637017][T20739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1085.637035][T20739] R13: 00007f8af4fe6218 R14: 00007f8af4fe6180 R15: 00007ffcd225f608 [ 1085.637072][T20739] [ 1085.637313][T20739] blk-mq: reduced tag depth (128 -> 64) [ 1087.222497][T20756] random: crng reseeded on system resumption [ 1087.458464][T20760] vivid-007: ================= START STATUS ================= [ 1087.485550][T20760] vivid-007: Generate PTS: true [ 1087.545141][T20760] vivid-007: Generate SCR: true [ 1087.635102][T20760] tpg source WxH: 320x240 (Y'CbCr) [ 1087.662694][T20760] tpg field: 1 [ 1087.715070][T20760] tpg crop: (0,0)/320x240 [ 1087.728572][T20760] tpg compose: (0,0)/320x240 [ 1087.781438][T20760] tpg colorspace: 8 [ 1087.911181][T20760] tpg transfer function: 0/0 [ 1087.930780][T20760] tpg Y'CbCr encoding: 0/0 [ 1088.019814][T20760] tpg quantization: 0/0 [ 1088.024069][T20760] tpg RGB range: 0/2 [ 1088.210121][T20760] vivid-007: ================== END STATUS ================== [ 1088.460954][T20776] vivid-007: ================= START STATUS ================= [ 1088.474920][T20776] vivid-007: Generate PTS: true [ 1088.482407][T20776] vivid-007: Generate SCR: true [ 1088.494987][T20776] tpg source WxH: 320x240 (Y'CbCr) [ 1088.500206][T20776] tpg field: 1 [ 1088.503622][T20776] tpg crop: (0,0)/320x240 [ 1088.551866][T20776] tpg compose: (0,0)/320x240 [ 1088.581772][T20776] tpg colorspace: 8 [ 1088.624955][T20776] tpg transfer function: 0/0 [ 1088.641361][T20776] tpg Y'CbCr encoding: 0/0 [ 1088.665073][T20776] tpg quantization: 0/0 [ 1088.669305][T20776] tpg RGB range: 0/2 [ 1088.705149][T20776] vivid-007: ================== END STATUS ================== [ 1089.802247][T20798] random: crng reseeded on system resumption [ 1090.658289][T20809] vivid-007: ================= START STATUS ================= [ 1090.708080][T20809] vivid-007: Generate PTS: true [ 1090.755325][T20809] vivid-007: Generate SCR: true [ 1090.767843][T20809] tpg source WxH: 320x240 (Y'CbCr) [ 1090.772991][T20809] tpg field: 1 [ 1090.795237][T20809] tpg crop: (0,0)/320x240 [ 1090.799648][T20809] tpg compose: (0,0)/320x240 [ 1090.826566][T20809] tpg colorspace: 8 [ 1090.833041][T20809] tpg transfer function: 0/0 [ 1090.866329][T20809] tpg Y'CbCr encoding: 0/0 [ 1090.928286][T20809] tpg quantization: 0/0 [ 1090.932591][T20809] tpg RGB range: 0/2 [ 1091.087774][T20809] vivid-007: ================== END STATUS ================== [ 1094.258602][T20882] FAULT_INJECTION: forcing a failure. [ 1094.258602][T20882] name failslab, interval 1, probability 0, space 0, times 0 [ 1094.305036][T20882] CPU: 0 UID: 0 PID: 20882 Comm: syz.0.3266 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1094.305080][T20882] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1094.305090][T20882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1094.305105][T20882] Call Trace: [ 1094.305114][T20882] [ 1094.305123][T20882] dump_stack_lvl+0x16c/0x1f0 [ 1094.305165][T20882] should_fail_ex+0x512/0x640 [ 1094.305193][T20882] ? fs_reclaim_acquire+0xae/0x150 [ 1094.305236][T20882] should_failslab+0xc2/0x120 [ 1094.305275][T20882] __kmalloc_noprof+0xeb/0x910 [ 1094.305307][T20882] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1094.305355][T20882] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1094.305390][T20882] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1094.305428][T20882] ? tomoyo_profile+0x47/0x60 [ 1094.305469][T20882] tomoyo_mkdev_perm+0x22b/0x570 [ 1094.305509][T20882] ? tomoyo_mkdev_perm+0x217/0x570 [ 1094.305552][T20882] ? __pfx_tomoyo_mkdev_perm+0x10/0x10 [ 1094.305592][T20882] ? do_raw_spin_lock+0x12c/0x2b0 [ 1094.305638][T20882] ? do_raw_spin_unlock+0x172/0x230 [ 1094.305682][T20882] ? __pfx_current_check_access_path+0x10/0x10 [ 1094.305718][T20882] ? simple_lookup+0x105/0x1d0 [ 1094.305759][T20882] tomoyo_path_mknod+0x12a/0x190 [ 1094.305799][T20882] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 1094.305841][T20882] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1094.305884][T20882] security_path_mknod+0x161/0x310 [ 1094.305915][T20882] do_mknodat+0x24e/0x6f0 [ 1094.305953][T20882] ? __pfx_do_mknodat+0x10/0x10 [ 1094.305989][T20882] ? getname_flags.part.0+0x1c5/0x550 [ 1094.306023][T20882] __x64_sys_mknod+0x87/0xb0 [ 1094.306062][T20882] do_syscall_64+0xcd/0xf80 [ 1094.306103][T20882] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1094.306130][T20882] RIP: 0033:0x7fc1d198f7c9 [ 1094.306150][T20882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1094.306174][T20882] RSP: 002b:00007fc1d27d0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 1094.306198][T20882] RAX: ffffffffffffffda RBX: 00007fc1d1be5fa0 RCX: 00007fc1d198f7c9 [ 1094.306214][T20882] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 1094.306229][T20882] RBP: 00007fc1d1a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 1094.306244][T20882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1094.306259][T20882] R13: 00007fc1d1be6038 R14: 00007fc1d1be5fa0 R15: 00007ffcf15930a8 [ 1094.306291][T20882] [ 1094.306348][T20882] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1094.619053][T20883] sctp: Failed to create the SCTP UDP tunneling v4 sock [ 1095.016513][T20889] random: crng reseeded on system resumption [ 1096.193717][T20905] FAULT_INJECTION: forcing a failure. [ 1096.193717][T20905] name failslab, interval 1, probability 0, space 0, times 0 [ 1096.223254][T20905] CPU: 1 UID: 0 PID: 20905 Comm: syz.0.3279 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1096.223311][T20905] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1096.223325][T20905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1096.223344][T20905] Call Trace: [ 1096.223355][T20905] [ 1096.223368][T20905] dump_stack_lvl+0x16c/0x1f0 [ 1096.223424][T20905] should_fail_ex+0x512/0x640 [ 1096.223469][T20905] ? fs_reclaim_acquire+0xae/0x150 [ 1096.223526][T20905] should_failslab+0xc2/0x120 [ 1096.223579][T20905] __kmalloc_noprof+0xeb/0x910 [ 1096.223616][T20905] ? tomoyo_encode2+0x100/0x3e0 [ 1096.223668][T20905] ? tomoyo_encode2+0x100/0x3e0 [ 1096.223709][T20905] tomoyo_encode2+0x100/0x3e0 [ 1096.223755][T20905] tomoyo_encode+0x29/0x50 [ 1096.223794][T20905] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1096.223852][T20905] tomoyo_mkdev_perm+0x22b/0x570 [ 1096.223888][T20905] ? tomoyo_mkdev_perm+0x217/0x570 [ 1096.223929][T20905] ? __pfx_tomoyo_mkdev_perm+0x10/0x10 [ 1096.223969][T20905] ? do_raw_spin_lock+0x12c/0x2b0 [ 1096.224020][T20905] ? do_raw_spin_unlock+0x172/0x230 [ 1096.224083][T20905] ? __pfx_current_check_access_path+0x10/0x10 [ 1096.224131][T20905] ? simple_lookup+0x105/0x1d0 [ 1096.224195][T20905] tomoyo_path_mknod+0x12a/0x190 [ 1096.224251][T20905] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 1096.224308][T20905] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1096.224368][T20905] security_path_mknod+0x161/0x310 [ 1096.224411][T20905] do_mknodat+0x24e/0x6f0 [ 1096.224472][T20905] ? __pfx_do_mknodat+0x10/0x10 [ 1096.224523][T20905] ? getname_flags.part.0+0x1c5/0x550 [ 1096.224573][T20905] __x64_sys_mknod+0x87/0xb0 [ 1096.224630][T20905] do_syscall_64+0xcd/0xf80 [ 1096.224686][T20905] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1096.224721][T20905] RIP: 0033:0x7fc1d198f7c9 [ 1096.224749][T20905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1096.224783][T20905] RSP: 002b:00007fc1d27d0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 1096.224816][T20905] RAX: ffffffffffffffda RBX: 00007fc1d1be5fa0 RCX: 00007fc1d198f7c9 [ 1096.224838][T20905] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 1096.224857][T20905] RBP: 00007fc1d1a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 1096.224877][T20905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1096.224896][T20905] R13: 00007fc1d1be6038 R14: 00007fc1d1be5fa0 R15: 00007ffcf15930a8 [ 1096.224940][T20905] [ 1096.590493][T20910] sctp: Failed to create the SCTP UDP tunneling v4 sock [ 1096.655119][T20905] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1097.594151][T20929] bond0: option slaves: interface -Âô does not exist! [ 1097.997923][T20939] FAULT_INJECTION: forcing a failure. [ 1097.997923][T20939] name failslab, interval 1, probability 0, space 0, times 0 [ 1098.044988][T20939] CPU: 0 UID: 0 PID: 20939 Comm: syz.0.3276 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1098.045031][T20939] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1098.045041][T20939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1098.045056][T20939] Call Trace: [ 1098.045065][T20939] [ 1098.045074][T20939] dump_stack_lvl+0x16c/0x1f0 [ 1098.045123][T20939] should_fail_ex+0x512/0x640 [ 1098.045150][T20939] ? __kmalloc_node_noprof+0xcd/0x930 [ 1098.045190][T20939] should_failslab+0xc2/0x120 [ 1098.045228][T20939] __kmalloc_node_noprof+0xee/0x930 [ 1098.045261][T20939] ? lockdep_init_map_type+0x5c/0x270 [ 1098.045286][T20939] ? blk_mq_alloc_tag_set+0x46f/0x12e0 [ 1098.045325][T20939] ? blk_mq_alloc_tag_set+0x46f/0x12e0 [ 1098.045357][T20939] blk_mq_alloc_tag_set+0x46f/0x12e0 [ 1098.045390][T20939] ? __pfx_idr_alloc+0x10/0x10 [ 1098.045433][T20939] loop_add+0x3b2/0xb70 [ 1098.045473][T20939] ? __pfx_loop_add+0x10/0x10 [ 1098.045530][T20939] ? find_held_lock+0x2b/0x80 [ 1098.045566][T20939] loop_control_ioctl+0x13e/0x640 [ 1098.045607][T20939] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1098.045651][T20939] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1098.045693][T20939] __x64_sys_ioctl+0x18e/0x210 [ 1098.045726][T20939] do_syscall_64+0xcd/0xf80 [ 1098.045766][T20939] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1098.045791][T20939] RIP: 0033:0x7fc1d198f7c9 [ 1098.045811][T20939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1098.045836][T20939] RSP: 002b:00007fc1d278e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1098.045860][T20939] RAX: ffffffffffffffda RBX: 00007fc1d1be6180 RCX: 00007fc1d198f7c9 [ 1098.045876][T20939] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 1098.045892][T20939] RBP: 00007fc1d1a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 1098.045908][T20939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1098.045922][T20939] R13: 00007fc1d1be6218 R14: 00007fc1d1be6180 R15: 00007ffcf15930a8 [ 1098.045954][T20939] [ 1098.674041][T20933] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1098.835385][T20933] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1098.884111][T20933] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1100.584972][ T5851] Bluetooth: hci0: command 0x0c1a tx timeout [ 1100.906843][ T5851] Bluetooth: hci2: command 0x0c1a tx timeout [ 1100.917273][ T5851] Bluetooth: hci1: command 0x0c1a tx timeout [ 1101.820570][T21000] FAULT_INJECTION: forcing a failure. [ 1101.820570][T21000] name failslab, interval 1, probability 0, space 0, times 0 [ 1101.957123][T21000] CPU: 0 UID: 0 PID: 21000 Comm: syz.1.3287 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1101.957167][T21000] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1101.957177][T21000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1101.957193][T21000] Call Trace: [ 1101.957201][T21000] [ 1101.957211][T21000] dump_stack_lvl+0x16c/0x1f0 [ 1101.957254][T21000] should_fail_ex+0x512/0x640 [ 1101.957281][T21000] ? fs_reclaim_acquire+0xae/0x150 [ 1101.957323][T21000] should_failslab+0xc2/0x120 [ 1101.957363][T21000] __kmalloc_noprof+0xeb/0x910 [ 1101.957391][T21000] ? tomoyo_encode2+0x100/0x3e0 [ 1101.957430][T21000] ? tomoyo_encode2+0x100/0x3e0 [ 1101.957462][T21000] tomoyo_encode2+0x100/0x3e0 [ 1101.957500][T21000] tomoyo_encode+0x29/0x50 [ 1101.957532][T21000] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1101.957576][T21000] tomoyo_mkdev_perm+0x22b/0x570 [ 1101.957603][T21000] ? tomoyo_mkdev_perm+0x217/0x570 [ 1101.957633][T21000] ? __pfx_tomoyo_mkdev_perm+0x10/0x10 [ 1101.957663][T21000] ? do_raw_spin_lock+0x12c/0x2b0 [ 1101.957700][T21000] ? do_raw_spin_unlock+0x172/0x230 [ 1101.957752][T21000] ? __pfx_current_check_access_path+0x10/0x10 [ 1101.957788][T21000] ? simple_lookup+0x105/0x1d0 [ 1101.957830][T21000] tomoyo_path_mknod+0x12a/0x190 [ 1101.957870][T21000] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 1101.957911][T21000] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1101.957954][T21000] security_path_mknod+0x161/0x310 [ 1101.957984][T21000] do_mknodat+0x24e/0x6f0 [ 1101.958022][T21000] ? __pfx_do_mknodat+0x10/0x10 [ 1101.958057][T21000] ? getname_flags.part.0+0x1c5/0x550 [ 1101.958091][T21000] __x64_sys_mknod+0x87/0xb0 [ 1101.958130][T21000] do_syscall_64+0xcd/0xf80 [ 1101.958171][T21000] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1101.958196][T21000] RIP: 0033:0x7f044d58f7c9 [ 1101.958216][T21000] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1101.958240][T21000] RSP: 002b:00007f044e423038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 1101.958264][T21000] RAX: ffffffffffffffda RBX: 00007f044d7e5fa0 RCX: 00007f044d58f7c9 [ 1101.958281][T21000] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 1101.958296][T21000] RBP: 00007f044d613f91 R08: 0000000000000000 R09: 0000000000000000 [ 1101.958312][T21000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1101.958327][T21000] R13: 00007f044d7e6038 R14: 00007f044d7e5fa0 R15: 00007ffc898df508 [ 1101.958359][T21000] [ 1101.958381][T21000] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1102.485552][T21000] sctp: Failed to create the SCTP UDP tunneling v4 sock [ 1102.576809][T21007] random: crng reseeded on system resumption [ 1105.270417][T21043] FAULT_INJECTION: forcing a failure. [ 1105.270417][T21043] name failslab, interval 1, probability 0, space 0, times 0 [ 1105.401831][T21046] sctp: Failed to create the SCTP UDP tunneling v4 sock [ 1105.412889][T21045] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3296'. [ 1105.424747][T21043] CPU: 1 UID: 0 PID: 21043 Comm: syz.3.3297 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1105.424804][T21043] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1105.424823][T21043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1105.424843][T21043] Call Trace: [ 1105.424855][T21043] [ 1105.424867][T21043] dump_stack_lvl+0x16c/0x1f0 [ 1105.424924][T21043] should_fail_ex+0x512/0x640 [ 1105.424961][T21043] ? fs_reclaim_acquire+0xae/0x150 [ 1105.425018][T21043] should_failslab+0xc2/0x120 [ 1105.425070][T21043] __kmalloc_noprof+0xeb/0x910 [ 1105.425110][T21043] ? tomoyo_encode2+0x100/0x3e0 [ 1105.425165][T21043] ? tomoyo_encode2+0x100/0x3e0 [ 1105.425211][T21043] tomoyo_encode2+0x100/0x3e0 [ 1105.425263][T21043] tomoyo_encode+0x29/0x50 [ 1105.425308][T21043] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1105.425368][T21043] tomoyo_mkdev_perm+0x22b/0x570 [ 1105.425404][T21043] ? tomoyo_mkdev_perm+0x217/0x570 [ 1105.425446][T21043] ? __pfx_tomoyo_mkdev_perm+0x10/0x10 [ 1105.425489][T21043] ? do_raw_spin_lock+0x12c/0x2b0 [ 1105.425551][T21043] ? do_raw_spin_unlock+0x172/0x230 [ 1105.425615][T21043] ? __pfx_current_check_access_path+0x10/0x10 [ 1105.425665][T21043] ? simple_lookup+0x105/0x1d0 [ 1105.425722][T21043] tomoyo_path_mknod+0x12a/0x190 [ 1105.425777][T21043] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 1105.425835][T21043] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1105.425896][T21043] security_path_mknod+0x161/0x310 [ 1105.425940][T21043] do_mknodat+0x24e/0x6f0 [ 1105.425993][T21043] ? __pfx_do_mknodat+0x10/0x10 [ 1105.426043][T21043] ? getname_flags.part.0+0x1c5/0x550 [ 1105.426092][T21043] __x64_sys_mknod+0x87/0xb0 [ 1105.426147][T21043] do_syscall_64+0xcd/0xf80 [ 1105.426203][T21043] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1105.426238][T21043] RIP: 0033:0x7f8af4d8f7c9 [ 1105.426267][T21043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1105.426301][T21043] RSP: 002b:00007f8af5ccd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 1105.426334][T21043] RAX: ffffffffffffffda RBX: 00007f8af4fe5fa0 RCX: 00007f8af4d8f7c9 [ 1105.426356][T21043] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 1105.426377][T21043] RBP: 00007f8af4e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 1105.426397][T21043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1105.426417][T21043] R13: 00007f8af4fe6038 R14: 00007f8af4fe5fa0 R15: 00007ffcd225f608 [ 1105.426463][T21043] [ 1105.750803][T21045] bridge0: port 2(bridge_slave_1) entered disabled state [ 1105.754169][T21043] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1105.966937][T21045] bridge_slave_1 (unregistering): left allmulticast mode [ 1105.974022][T21045] bridge_slave_1 (unregistering): left promiscuous mode [ 1106.015370][T21045] bridge0: port 2(bridge_slave_1) entered disabled state [ 1106.797969][T21075] blktrace: Concurrent blktraces are not allowed on loop2 [ 1106.850240][T21075] FAULT_INJECTION: forcing a failure. [ 1106.850240][T21075] name failslab, interval 1, probability 0, space 0, times 0 [ 1106.894957][T21075] CPU: 0 UID: 0 PID: 21075 Comm: syz.1.3303 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1106.895014][T21075] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1106.895027][T21075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1106.895048][T21075] Call Trace: [ 1106.895059][T21075] [ 1106.895072][T21075] dump_stack_lvl+0x16c/0x1f0 [ 1106.895128][T21075] should_fail_ex+0x512/0x640 [ 1106.895164][T21075] ? kmem_cache_alloc_node_noprof+0x65/0x800 [ 1106.895218][T21075] should_failslab+0xc2/0x120 [ 1106.895258][T21075] kmem_cache_alloc_node_noprof+0x86/0x800 [ 1106.895289][T21075] ? blk_alloc_queue+0x31/0x750 [ 1106.895321][T21075] ? blk_alloc_queue+0x31/0x750 [ 1106.895352][T21075] ? trace_kmalloc+0x2b/0xb0 [ 1106.895389][T21075] blk_alloc_queue+0x31/0x750 [ 1106.895418][T21075] blk_mq_alloc_queue+0x172/0x280 [ 1106.895453][T21075] ? __pfx_blk_mq_alloc_queue+0x10/0x10 [ 1106.895505][T21075] ? blk_mq_alloc_tag_set+0xb95/0x12e0 [ 1106.895546][T21075] __blk_mq_alloc_disk+0x29/0x120 [ 1106.895581][T21075] loop_add+0x490/0xb70 [ 1106.895622][T21075] ? __pfx_loop_add+0x10/0x10 [ 1106.895679][T21075] ? find_held_lock+0x2b/0x80 [ 1106.895716][T21075] loop_control_ioctl+0x13e/0x640 [ 1106.895757][T21075] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1106.895801][T21075] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1106.895843][T21075] __x64_sys_ioctl+0x18e/0x210 [ 1106.895875][T21075] do_syscall_64+0xcd/0xf80 [ 1106.895915][T21075] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1106.895940][T21075] RIP: 0033:0x7f044d58f7c9 [ 1106.895960][T21075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1106.895985][T21075] RSP: 002b:00007f044e3e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1106.896008][T21075] RAX: ffffffffffffffda RBX: 00007f044d7e6180 RCX: 00007f044d58f7c9 [ 1106.896025][T21075] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 1106.896040][T21075] RBP: 00007f044d613f91 R08: 0000000000000000 R09: 0000000000000000 [ 1106.896056][T21075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1106.896071][T21075] R13: 00007f044d7e6218 R14: 00007f044d7e6180 R15: 00007ffc898df508 [ 1106.896102][T21075] [ 1108.115914][T21088] vivid-007: ================= START STATUS ================= [ 1108.126241][T21086] random: crng reseeded on system resumption [ 1108.135762][T21088] vivid-007: Generate PTS: true [ 1108.140721][T21088] vivid-007: Generate SCR: true [ 1108.185774][T21088] tpg source WxH: 320x240 (Y'CbCr) [ 1108.205228][T21088] tpg field: 1 [ 1108.214801][T21088] tpg crop: (0,0)/320x240 [ 1108.247864][T21088] tpg compose: (0,0)/320x240 [ 1108.252634][T21088] tpg colorspace: 8 [ 1108.276156][T21088] tpg transfer function: 0/0 [ 1108.304995][T21088] tpg Y'CbCr encoding: 0/0 [ 1108.318149][T21088] tpg quantization: 0/0 [ 1108.342721][T21088] tpg RGB range: 0/2 [ 1108.354934][T21088] vivid-007: ================== END STATUS ================== [ 1108.440564][T21094] blktrace: Concurrent blktraces are not allowed on loop2 [ 1109.310083][T21106] FAULT_INJECTION: forcing a failure. [ 1109.310083][T21106] name failslab, interval 1, probability 0, space 0, times 0 [ 1109.375069][T21106] CPU: 1 UID: 0 PID: 21106 Comm: syz.2.3310 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1109.375133][T21106] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1109.375147][T21106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1109.375167][T21106] Call Trace: [ 1109.375179][T21106] [ 1109.375191][T21106] dump_stack_lvl+0x16c/0x1f0 [ 1109.375248][T21106] should_fail_ex+0x512/0x640 [ 1109.375285][T21106] ? fs_reclaim_acquire+0xae/0x150 [ 1109.375343][T21106] should_failslab+0xc2/0x120 [ 1109.375396][T21106] __kmalloc_noprof+0xeb/0x910 [ 1109.375435][T21106] ? tomoyo_encode2+0x100/0x3e0 [ 1109.375486][T21106] ? tomoyo_encode2+0x100/0x3e0 [ 1109.375529][T21106] tomoyo_encode2+0x100/0x3e0 [ 1109.375580][T21106] tomoyo_encode+0x29/0x50 [ 1109.375624][T21106] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1109.375685][T21106] tomoyo_mkdev_perm+0x22b/0x570 [ 1109.375723][T21106] ? tomoyo_mkdev_perm+0x217/0x570 [ 1109.375765][T21106] ? __pfx_tomoyo_mkdev_perm+0x10/0x10 [ 1109.375808][T21106] ? do_raw_spin_lock+0x12c/0x2b0 [ 1109.375857][T21106] ? do_raw_spin_unlock+0x172/0x230 [ 1109.375919][T21106] ? __pfx_current_check_access_path+0x10/0x10 [ 1109.375969][T21106] ? simple_lookup+0x105/0x1d0 [ 1109.376027][T21106] tomoyo_path_mknod+0x12a/0x190 [ 1109.376082][T21106] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 1109.376149][T21106] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1109.376210][T21106] security_path_mknod+0x161/0x310 [ 1109.376253][T21106] do_mknodat+0x24e/0x6f0 [ 1109.376306][T21106] ? __pfx_do_mknodat+0x10/0x10 [ 1109.376356][T21106] ? getname_flags.part.0+0x1c5/0x550 [ 1109.376403][T21106] __x64_sys_mknod+0x87/0xb0 [ 1109.376458][T21106] do_syscall_64+0xcd/0xf80 [ 1109.376513][T21106] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1109.376549][T21106] RIP: 0033:0x7f4d4ef8f7c9 [ 1109.376576][T21106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1109.376611][T21106] RSP: 002b:00007f4d4fec3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 1109.376642][T21106] RAX: ffffffffffffffda RBX: 00007f4d4f1e5fa0 RCX: 00007f4d4ef8f7c9 [ 1109.376666][T21106] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 1109.376686][T21106] RBP: 00007f4d4f013f91 R08: 0000000000000000 R09: 0000000000000000 [ 1109.376708][T21106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1109.376728][T21106] R13: 00007f4d4f1e6038 R14: 00007f4d4f1e5fa0 R15: 00007ffef5e3b858 [ 1109.376773][T21106] [ 1109.376805][T21106] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1110.326655][T21125] random: crng reseeded on system resumption [ 1111.702951][T21146] random: crng reseeded on system resumption [ 1113.585857][T21155] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1113.592094][T21155] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1113.649815][T21155] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1114.802977][T21193] FAULT_INJECTION: forcing a failure. [ 1114.802977][T21193] name failslab, interval 1, probability 0, space 0, times 0 [ 1114.817246][T21193] CPU: 1 UID: 0 PID: 21193 Comm: syz.0.3324 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1114.817289][T21193] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1114.817298][T21193] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1114.817314][T21193] Call Trace: [ 1114.817322][T21193] [ 1114.817332][T21193] dump_stack_lvl+0x16c/0x1f0 [ 1114.817374][T21193] should_fail_ex+0x512/0x640 [ 1114.817402][T21193] ? __kmalloc_cache_noprof+0x5f/0x800 [ 1114.817434][T21193] should_failslab+0xc2/0x120 [ 1114.817473][T21193] __kmalloc_cache_noprof+0x80/0x800 [ 1114.817502][T21193] ? percpu_ref_init+0xec/0x410 [ 1114.817542][T21193] ? percpu_ref_init+0xec/0x410 [ 1114.817577][T21193] ? __pfx_blk_queue_usage_counter_release+0x10/0x10 [ 1114.817618][T21193] percpu_ref_init+0xec/0x410 [ 1114.817657][T21193] blk_alloc_queue+0x574/0x750 [ 1114.817694][T21193] blk_mq_alloc_queue+0x172/0x280 [ 1114.817729][T21193] ? __pfx_blk_mq_alloc_queue+0x10/0x10 [ 1114.817780][T21193] ? blk_mq_alloc_tag_set+0xb95/0x12e0 [ 1114.817821][T21193] __blk_mq_alloc_disk+0x29/0x120 [ 1114.817857][T21193] loop_add+0x490/0xb70 [ 1114.817897][T21193] ? __pfx_loop_add+0x10/0x10 [ 1114.817954][T21193] ? find_held_lock+0x2b/0x80 [ 1114.817991][T21193] loop_control_ioctl+0x13e/0x640 [ 1114.818032][T21193] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1114.818076][T21193] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1114.818118][T21193] __x64_sys_ioctl+0x18e/0x210 [ 1114.818151][T21193] do_syscall_64+0xcd/0xf80 [ 1114.818191][T21193] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1114.818216][T21193] RIP: 0033:0x7fc1d198f7c9 [ 1114.818235][T21193] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1114.818260][T21193] RSP: 002b:00007fc1d278e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1114.818283][T21193] RAX: ffffffffffffffda RBX: 00007fc1d1be6180 RCX: 00007fc1d198f7c9 [ 1114.818300][T21193] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 1114.818316][T21193] RBP: 00007fc1d1a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 1114.818331][T21193] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1114.818347][T21193] R13: 00007fc1d1be6218 R14: 00007fc1d1be6180 R15: 00007ffcf15930a8 [ 1114.818378][T21193] [ 1115.384920][ T5851] Bluetooth: hci0: command 0x0c1a tx timeout [ 1115.625240][ T5851] Bluetooth: hci2: command 0x0c1a tx timeout [ 1115.704971][ T5851] Bluetooth: hci1: command 0x0c1a tx timeout [ 1116.051940][T21192] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1116.075831][T21192] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1116.137361][T21192] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1116.154341][T21217] blktrace: Concurrent blktraces are not allowed on loop2 [ 1116.571560][T21221] vivid-007: ================= START STATUS ================= [ 1116.596381][T21221] vivid-007: Generate PTS: true [ 1116.601342][T21221] vivid-007: Generate SCR: true [ 1116.639507][T21221] tpg source WxH: 320x240 (Y'CbCr) [ 1116.644717][T21221] tpg field: 1 [ 1116.651201][T21221] tpg crop: (0,0)/320x240 [ 1116.659322][T21221] tpg compose: (0,0)/320x240 [ 1116.664054][T21221] tpg colorspace: 8 [ 1116.669477][T21221] tpg transfer function: 0/0 [ 1116.674228][T21221] tpg Y'CbCr encoding: 0/0 [ 1116.683687][T21221] tpg quantization: 0/0 [ 1116.688274][T21221] tpg RGB range: 0/2 [ 1116.692218][T21221] vivid-007: ================== END STATUS ================== [ 1116.764592][T21229] FAULT_INJECTION: forcing a failure. [ 1116.764592][T21229] name failslab, interval 1, probability 0, space 0, times 0 [ 1116.790990][T21229] CPU: 1 UID: 0 PID: 21229 Comm: syz.2.3334 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1116.791046][T21229] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1116.791060][T21229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1116.791082][T21229] Call Trace: [ 1116.791109][T21229] [ 1116.791124][T21229] dump_stack_lvl+0x16c/0x1f0 [ 1116.791186][T21229] should_fail_ex+0x512/0x640 [ 1116.791224][T21229] ? fs_reclaim_acquire+0xae/0x150 [ 1116.791285][T21229] should_failslab+0xc2/0x120 [ 1116.791342][T21229] __kmalloc_noprof+0xeb/0x910 [ 1116.791380][T21229] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1116.791434][T21229] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1116.791480][T21229] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1116.791531][T21229] ? tomoyo_profile+0x47/0x60 [ 1116.791586][T21229] tomoyo_mkdev_perm+0x22b/0x570 [ 1116.791624][T21229] ? tomoyo_mkdev_perm+0x217/0x570 [ 1116.791664][T21229] ? __pfx_tomoyo_mkdev_perm+0x10/0x10 [ 1116.791706][T21229] ? do_raw_spin_lock+0x12c/0x2b0 [ 1116.791754][T21229] ? do_raw_spin_unlock+0x172/0x230 [ 1116.791818][T21229] ? __pfx_current_check_access_path+0x10/0x10 [ 1116.791867][T21229] ? simple_lookup+0x105/0x1d0 [ 1116.791925][T21229] tomoyo_path_mknod+0x12a/0x190 [ 1116.791979][T21229] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 1116.792041][T21229] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1116.792101][T21229] security_path_mknod+0x161/0x310 [ 1116.792149][T21229] do_mknodat+0x24e/0x6f0 [ 1116.792201][T21229] ? __pfx_do_mknodat+0x10/0x10 [ 1116.792250][T21229] ? getname_flags.part.0+0x1c5/0x550 [ 1116.792295][T21229] __x64_sys_mknod+0x87/0xb0 [ 1116.792345][T21229] do_syscall_64+0xcd/0xf80 [ 1116.792398][T21229] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1116.792431][T21229] RIP: 0033:0x7f4d4ef8f7c9 [ 1116.792458][T21229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1116.792492][T21229] RSP: 002b:00007f4d4fec3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 1116.792524][T21229] RAX: ffffffffffffffda RBX: 00007f4d4f1e5fa0 RCX: 00007f4d4ef8f7c9 [ 1116.792546][T21229] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 1116.792567][T21229] RBP: 00007f4d4f013f91 R08: 0000000000000000 R09: 0000000000000000 [ 1116.792587][T21229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1116.792606][T21229] R13: 00007f4d4f1e6038 R14: 00007f4d4f1e5fa0 R15: 00007ffef5e3b858 [ 1116.792650][T21229] [ 1116.792663][T21229] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1117.720546][T21240] random: crng reseeded on system resumption [ 1118.025546][ T5851] Bluetooth: hci0: command 0x0c1a tx timeout [ 1118.105338][ T5851] Bluetooth: hci2: command 0x0c1a tx timeout [ 1118.188786][ T5851] Bluetooth: hci1: command 0x0c1a tx timeout [ 1118.591173][T21256] random: crng reseeded on system resumption [ 1120.531724][T21273] blktrace: Concurrent blktraces are not allowed on loop2 [ 1120.686025][T21273] FAULT_INJECTION: forcing a failure. [ 1120.686025][T21273] name failslab, interval 1, probability 0, space 0, times 0 [ 1120.698896][T21273] CPU: 0 UID: 0 PID: 21273 Comm: syz.2.3340 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1120.698961][T21273] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1120.698981][T21273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1120.699002][T21273] Call Trace: [ 1120.699014][T21273] [ 1120.699028][T21273] dump_stack_lvl+0x16c/0x1f0 [ 1120.699082][T21273] should_fail_ex+0x512/0x640 [ 1120.699120][T21273] ? __kmalloc_cache_node_noprof+0x62/0x830 [ 1120.699182][T21273] should_failslab+0xc2/0x120 [ 1120.699245][T21273] __kmalloc_cache_node_noprof+0x83/0x830 [ 1120.699296][T21273] ? __alloc_disk_node+0x5a/0x6b0 [ 1120.699358][T21273] ? __alloc_disk_node+0x5a/0x6b0 [ 1120.699409][T21273] __alloc_disk_node+0x5a/0x6b0 [ 1120.699469][T21273] __blk_mq_alloc_disk+0x89/0x120 [ 1120.699519][T21273] loop_add+0x490/0xb70 [ 1120.699575][T21273] ? __pfx_loop_add+0x10/0x10 [ 1120.699656][T21273] ? find_held_lock+0x2b/0x80 [ 1120.699708][T21273] loop_control_ioctl+0x13e/0x640 [ 1120.699762][T21273] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1120.699821][T21273] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1120.699877][T21273] __x64_sys_ioctl+0x18e/0x210 [ 1120.699923][T21273] do_syscall_64+0xcd/0xf80 [ 1120.699980][T21273] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1120.700016][T21273] RIP: 0033:0x7f4d4ef8f7c9 [ 1120.700067][T21273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1120.700103][T21273] RSP: 002b:00007f4d4fec3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1120.700137][T21273] RAX: ffffffffffffffda RBX: 00007f4d4f1e5fa0 RCX: 00007f4d4ef8f7c9 [ 1120.700160][T21273] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 1120.700181][T21273] RBP: 00007f4d4f013f91 R08: 0000000000000000 R09: 0000000000000000 [ 1120.700208][T21273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1120.700230][T21273] R13: 00007f4d4f1e6038 R14: 00007f4d4f1e5fa0 R15: 00007ffef5e3b858 [ 1120.700275][T21273] [ 1121.741834][T21296] FAULT_INJECTION: forcing a failure. [ 1121.741834][T21296] name failslab, interval 1, probability 0, space 0, times 0 [ 1121.770265][T21296] CPU: 1 UID: 0 PID: 21296 Comm: syz.0.3347 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1121.770322][T21296] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1121.770336][T21296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1121.770356][T21296] Call Trace: [ 1121.770367][T21296] [ 1121.770382][T21296] dump_stack_lvl+0x16c/0x1f0 [ 1121.770445][T21296] should_fail_ex+0x512/0x640 [ 1121.770481][T21296] ? fs_reclaim_acquire+0xae/0x150 [ 1121.770537][T21296] should_failslab+0xc2/0x120 [ 1121.770591][T21296] __kmalloc_noprof+0xeb/0x910 [ 1121.770629][T21296] ? tomoyo_encode2+0x100/0x3e0 [ 1121.770701][T21296] ? tomoyo_encode2+0x100/0x3e0 [ 1121.770748][T21296] tomoyo_encode2+0x100/0x3e0 [ 1121.770797][T21296] tomoyo_encode+0x29/0x50 [ 1121.770840][T21296] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1121.770901][T21296] tomoyo_mkdev_perm+0x22b/0x570 [ 1121.770937][T21296] ? tomoyo_mkdev_perm+0x217/0x570 [ 1121.770979][T21296] ? __pfx_tomoyo_mkdev_perm+0x10/0x10 [ 1121.771020][T21296] ? do_raw_spin_lock+0x12c/0x2b0 [ 1121.771070][T21296] ? do_raw_spin_unlock+0x172/0x230 [ 1121.771137][T21296] ? __pfx_current_check_access_path+0x10/0x10 [ 1121.771186][T21296] ? simple_lookup+0x105/0x1d0 [ 1121.771245][T21296] tomoyo_path_mknod+0x12a/0x190 [ 1121.771298][T21296] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 1121.771355][T21296] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1121.771414][T21296] security_path_mknod+0x161/0x310 [ 1121.771465][T21296] do_mknodat+0x24e/0x6f0 [ 1121.771517][T21296] ? __pfx_do_mknodat+0x10/0x10 [ 1121.771569][T21296] ? getname_flags.part.0+0x1c5/0x550 [ 1121.771617][T21296] __x64_sys_mknod+0x87/0xb0 [ 1121.771672][T21296] do_syscall_64+0xcd/0xf80 [ 1121.771726][T21296] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1121.771756][T21296] RIP: 0033:0x7fc1d198f7c9 [ 1121.771780][T21296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1121.771815][T21296] RSP: 002b:00007fc1d27d0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 1121.771847][T21296] RAX: ffffffffffffffda RBX: 00007fc1d1be5fa0 RCX: 00007fc1d198f7c9 [ 1121.771870][T21296] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 1121.771890][T21296] RBP: 00007fc1d1a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 1121.771911][T21296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1121.771930][T21296] R13: 00007fc1d1be6038 R14: 00007fc1d1be5fa0 R15: 00007ffcf15930a8 [ 1121.771976][T21296] [ 1122.152301][T21296] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1122.203094][T21303] sctp: Failed to create the SCTP UDP tunneling v4 sock [ 1122.710204][T21304] FAULT_INJECTION: forcing a failure. [ 1122.710204][T21304] name failslab, interval 1, probability 0, space 0, times 0 [ 1122.750831][T21304] CPU: 1 UID: 0 PID: 21304 Comm: syz.3.3348 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1122.750888][T21304] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1122.750903][T21304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1122.750924][T21304] Call Trace: [ 1122.750936][T21304] [ 1122.750950][T21304] dump_stack_lvl+0x16c/0x1f0 [ 1122.751008][T21304] should_fail_ex+0x512/0x640 [ 1122.751046][T21304] ? kmem_cache_alloc_node_noprof+0x65/0x800 [ 1122.751094][T21304] should_failslab+0xc2/0x120 [ 1122.751147][T21304] kmem_cache_alloc_node_noprof+0x86/0x800 [ 1122.751188][T21304] ? blk_alloc_queue+0x31/0x750 [ 1122.751233][T21304] ? blk_alloc_queue+0x31/0x750 [ 1122.751266][T21304] ? trace_kmalloc+0x2b/0xb0 [ 1122.751325][T21304] blk_alloc_queue+0x31/0x750 [ 1122.751367][T21304] blk_mq_alloc_queue+0x172/0x280 [ 1122.751415][T21304] ? __pfx_blk_mq_alloc_queue+0x10/0x10 [ 1122.751486][T21304] ? blk_mq_alloc_tag_set+0xb95/0x12e0 [ 1122.751543][T21304] __blk_mq_alloc_disk+0x29/0x120 [ 1122.751592][T21304] loop_add+0x490/0xb70 [ 1122.751649][T21304] ? __pfx_loop_add+0x10/0x10 [ 1122.751731][T21304] ? find_held_lock+0x2b/0x80 [ 1122.751784][T21304] loop_control_ioctl+0x13e/0x640 [ 1122.751841][T21304] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1122.751901][T21304] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1122.751960][T21304] __x64_sys_ioctl+0x18e/0x210 [ 1122.752007][T21304] do_syscall_64+0xcd/0xf80 [ 1122.752063][T21304] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1122.752097][T21304] RIP: 0033:0x7f8af4d8f7c9 [ 1122.752125][T21304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1122.752160][T21304] RSP: 002b:00007f8af5ccd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1122.752193][T21304] RAX: ffffffffffffffda RBX: 00007f8af4fe5fa0 RCX: 00007f8af4d8f7c9 [ 1122.752216][T21304] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 1122.752238][T21304] RBP: 00007f8af4e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 1122.752258][T21304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1122.752286][T21304] R13: 00007f8af4fe6038 R14: 00007f8af4fe5fa0 R15: 00007ffcd225f608 [ 1122.752332][T21304] [ 1124.535693][T21316] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1124.583451][T21316] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1124.615460][T21316] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1124.689072][T21328] blktrace: Concurrent blktraces are not allowed on loop2 [ 1126.165359][T21350] vivid-007: ================= START STATUS ================= [ 1126.173232][T21350] vivid-007: Generate PTS: true [ 1126.189808][T21350] vivid-007: Generate SCR: true [ 1126.194754][T21350] tpg source WxH: 320x240 (Y'CbCr) [ 1126.214073][T21350] tpg field: 1 [ 1126.220512][T21350] tpg crop: (0,0)/320x240 [ 1126.233709][T21350] tpg compose: (0,0)/320x240 [ 1126.251029][T21350] tpg colorspace: 8 [ 1126.261173][T21350] tpg transfer function: 0/0 [ 1126.266178][T21350] tpg Y'CbCr encoding: 0/0 [ 1126.270644][T21350] tpg quantization: 0/0 [ 1126.285005][T21350] tpg RGB range: 0/2 [ 1126.320344][T21350] vivid-007: ================== END STATUS ================== [ 1126.509322][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 1126.516097][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 1126.585771][T10452] Bluetooth: hci0: command 0x0c1a tx timeout [ 1126.591901][ T5851] Bluetooth: hci2: command 0x0c1a tx timeout [ 1126.665507][ T5851] Bluetooth: hci1: command 0x0c1a tx timeout [ 1126.703315][T21361] FAULT_INJECTION: forcing a failure. [ 1126.703315][T21361] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1126.861416][T21361] CPU: 1 UID: 0 PID: 21361 Comm: syz.3.3360 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1126.861470][T21361] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1126.861482][T21361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1126.861501][T21361] Call Trace: [ 1126.861513][T21361] [ 1126.861527][T21361] dump_stack_lvl+0x16c/0x1f0 [ 1126.861580][T21361] should_fail_ex+0x512/0x640 [ 1126.861623][T21361] _copy_from_user+0x2e/0xd0 [ 1126.861662][T21361] copy_msghdr_from_user+0x98/0x160 [ 1126.861706][T21361] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 1126.861777][T21361] ___sys_sendmsg+0xfe/0x1d0 [ 1126.861823][T21361] ? __pfx____sys_sendmsg+0x10/0x10 [ 1126.861915][T21361] __sys_sendmsg+0x16d/0x220 [ 1126.861959][T21361] ? __pfx___sys_sendmsg+0x10/0x10 [ 1126.862034][T21361] do_syscall_64+0xcd/0xf80 [ 1126.862092][T21361] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1126.862126][T21361] RIP: 0033:0x7f8af4d8f7c9 [ 1126.862153][T21361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1126.862185][T21361] RSP: 002b:00007f8af5ccd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1126.862220][T21361] RAX: ffffffffffffffda RBX: 00007f8af4fe5fa0 RCX: 00007f8af4d8f7c9 [ 1126.862241][T21361] RDX: 00000000040080c4 RSI: 00002000000000c0 RDI: 0000000000000003 [ 1126.862261][T21361] RBP: 00007f8af5ccd090 R08: 0000000000000000 R09: 0000000000000000 [ 1126.862280][T21361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1126.862299][T21361] R13: 00007f8af4fe6038 R14: 00007f8af4fe5fa0 R15: 00007ffcd225f608 [ 1126.862341][T21361] [ 1127.642704][T21366] vivid-007: ================= START STATUS ================= [ 1127.693415][T21368] FAULT_INJECTION: forcing a failure. [ 1127.693415][T21368] name failslab, interval 1, probability 0, space 0, times 0 [ 1127.717466][T21366] vivid-007: Generate PTS: true [ 1127.722435][T21366] vivid-007: Generate SCR: true [ 1127.734932][T21368] CPU: 1 UID: 0 PID: 21368 Comm: syz.0.3362 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1127.734987][T21368] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1127.735000][T21368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1127.735020][T21368] Call Trace: [ 1127.735031][T21368] [ 1127.735044][T21368] dump_stack_lvl+0x16c/0x1f0 [ 1127.735100][T21368] should_fail_ex+0x512/0x640 [ 1127.735137][T21368] ? fs_reclaim_acquire+0xae/0x150 [ 1127.735193][T21368] should_failslab+0xc2/0x120 [ 1127.735244][T21368] __kmalloc_noprof+0xeb/0x910 [ 1127.735282][T21368] ? tomoyo_encode2+0x100/0x3e0 [ 1127.735334][T21368] ? tomoyo_encode2+0x100/0x3e0 [ 1127.735377][T21368] tomoyo_encode2+0x100/0x3e0 [ 1127.735428][T21368] tomoyo_encode+0x29/0x50 [ 1127.735471][T21368] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1127.735528][T21368] tomoyo_mkdev_perm+0x22b/0x570 [ 1127.735563][T21368] ? tomoyo_mkdev_perm+0x217/0x570 [ 1127.735603][T21368] ? __pfx_tomoyo_mkdev_perm+0x10/0x10 [ 1127.735641][T21368] ? do_raw_spin_lock+0x12c/0x2b0 [ 1127.735687][T21368] ? do_raw_spin_unlock+0x172/0x230 [ 1127.735745][T21368] ? __pfx_current_check_access_path+0x10/0x10 [ 1127.735794][T21368] ? simple_lookup+0x105/0x1d0 [ 1127.735856][T21368] tomoyo_path_mknod+0x12a/0x190 [ 1127.735908][T21368] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 1127.735961][T21368] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1127.736016][T21368] security_path_mknod+0x161/0x310 [ 1127.736057][T21368] do_mknodat+0x24e/0x6f0 [ 1127.736107][T21368] ? __pfx_do_mknodat+0x10/0x10 [ 1127.736155][T21368] ? getname_flags.part.0+0x1c5/0x550 [ 1127.736200][T21368] __x64_sys_mknod+0x87/0xb0 [ 1127.736252][T21368] do_syscall_64+0xcd/0xf80 [ 1127.736306][T21368] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1127.736339][T21368] RIP: 0033:0x7fc1d198f7c9 [ 1127.736366][T21368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1127.736398][T21368] RSP: 002b:00007fc1d27d0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 1127.736427][T21368] RAX: ffffffffffffffda RBX: 00007fc1d1be5fa0 RCX: 00007fc1d198f7c9 [ 1127.736449][T21368] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 1127.736469][T21368] RBP: 00007fc1d1a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 1127.736489][T21368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1127.736509][T21368] R13: 00007fc1d1be6038 R14: 00007fc1d1be5fa0 R15: 00007ffcf15930a8 [ 1127.736552][T21368] [ 1127.736584][T21368] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1127.994937][T21366] tpg source WxH: 320x240 (Y'CbCr) [ 1128.000829][T21366] tpg field: 1 [ 1128.004252][T21366] tpg crop: (0,0)/320x240 [ 1128.064875][T21366] tpg compose: (0,0)/320x240 [ 1128.069573][T21366] tpg colorspace: 8 [ 1128.093999][T21366] tpg transfer function: 0/0 [ 1128.115458][T21366] tpg Y'CbCr encoding: 0/0 [ 1128.130255][T21366] tpg quantization: 0/0 [ 1128.134491][T21366] tpg RGB range: 0/2 [ 1128.190588][T21366] vivid-007: ================== END STATUS ================== [ 1128.639723][T21386] vivid-007: ================= START STATUS ================= [ 1128.684983][T21386] vivid-007: Generate PTS: true [ 1128.701010][T21386] vivid-007: Generate SCR: true [ 1128.726648][T21386] tpg source WxH: 320x240 (Y'CbCr) [ 1128.774441][T21386] tpg field: 1 [ 1128.794364][T21386] tpg crop: (0,0)/320x240 [ 1128.810290][T21386] tpg compose: (0,0)/320x240 [ 1128.826652][T21386] tpg colorspace: 8 [ 1128.830536][T21386] tpg transfer function: 0/0 [ 1128.864925][T21386] tpg Y'CbCr encoding: 0/0 [ 1128.876108][T21386] tpg quantization: 0/0 [ 1128.896512][T21386] tpg RGB range: 0/2 [ 1128.900488][T21386] vivid-007: ================== END STATUS ================== [ 1129.751220][T21398] random: crng reseeded on system resumption [ 1131.953776][T21418] random: crng reseeded on system resumption [ 1134.149233][T21432] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3373'. [ 1134.199422][T21434] vivid-007: ================= START STATUS ================= [ 1134.216181][T21434] vivid-007: Generate PTS: true [ 1134.221874][T21434] vivid-007: Generate SCR: true [ 1134.262160][T21434] tpg source WxH: 320x240 (Y'CbCr) [ 1134.283819][T21434] tpg field: 1 [ 1134.289569][T21434] tpg crop: (0,0)/320x240 [ 1134.294025][T21434] tpg compose: (0,0)/320x240 [ 1134.299304][T21434] tpg colorspace: 8 [ 1134.303276][T21434] tpg transfer function: 0/0 [ 1134.309069][T21434] tpg Y'CbCr encoding: 0/0 [ 1134.313895][T21434] tpg quantization: 0/0 [ 1134.318550][T21434] tpg RGB range: 0/2 [ 1134.324631][T21434] vivid-007: ================== END STATUS ================== [ 1135.624469][T21465] FAULT_INJECTION: forcing a failure. [ 1135.624469][T21465] name failslab, interval 1, probability 0, space 0, times 0 [ 1135.650939][T21465] CPU: 1 UID: 0 PID: 21465 Comm: syz.1.3379 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1135.650988][T21465] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1135.650997][T21465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1135.651012][T21465] Call Trace: [ 1135.651019][T21465] [ 1135.651029][T21465] dump_stack_lvl+0x16c/0x1f0 [ 1135.651070][T21465] should_fail_ex+0x512/0x640 [ 1135.651097][T21465] ? __kvmalloc_node_noprof+0x129/0xa40 [ 1135.651134][T21465] should_failslab+0xc2/0x120 [ 1135.651172][T21465] __kvmalloc_node_noprof+0x14a/0xa40 [ 1135.651208][T21465] ? seq_read_iter+0x830/0x12d0 [ 1135.651240][T21465] ? alloc_pages_bulk_noprof+0xac5/0x1410 [ 1135.651276][T21465] ? seq_read_iter+0x830/0x12d0 [ 1135.651306][T21465] seq_read_iter+0x830/0x12d0 [ 1135.651339][T21465] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 1135.651380][T21465] kernfs_fop_read_iter+0x46c/0x610 [ 1135.651424][T21465] copy_splice_read+0x618/0xc20 [ 1135.651467][T21465] ? __pfx_copy_splice_read+0x10/0x10 [ 1135.651505][T21465] ? look_up_lock_class+0x59/0x130 [ 1135.651547][T21465] ? lockdep_init_map_type+0x5c/0x270 [ 1135.651573][T21465] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 1135.651610][T21465] ? __pfx_copy_splice_read+0x10/0x10 [ 1135.651645][T21465] do_splice_read+0x285/0x370 [ 1135.651683][T21465] splice_direct_to_actor+0x2a1/0xa30 [ 1135.651721][T21465] ? __pfx_direct_splice_actor+0x10/0x10 [ 1135.651764][T21465] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 1135.651799][T21465] ? get_pid_task+0xfc/0x250 [ 1135.651829][T21465] do_splice_direct+0x174/0x240 [ 1135.651865][T21465] ? __pfx_do_splice_direct+0x10/0x10 [ 1135.651902][T21465] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 1135.651943][T21465] ? rw_verify_area+0xcf/0x6c0 [ 1135.651982][T21465] do_sendfile+0xb06/0xe50 [ 1135.652053][T21465] ? __pfx_do_sendfile+0x10/0x10 [ 1135.652100][T21465] ? __fget_files+0x20e/0x3c0 [ 1135.652157][T21465] __x64_sys_sendfile64+0x1d8/0x220 [ 1135.652189][T21465] ? ksys_write+0x1ac/0x250 [ 1135.652235][T21465] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 1135.652280][T21465] do_syscall_64+0xcd/0xf80 [ 1135.652333][T21465] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1135.652366][T21465] RIP: 0033:0x7f044d58f7c9 [ 1135.652393][T21465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1135.652426][T21465] RSP: 002b:00007f044e402038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1135.652456][T21465] RAX: ffffffffffffffda RBX: 00007f044d7e6090 RCX: 00007f044d58f7c9 [ 1135.652477][T21465] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 1135.652496][T21465] RBP: 00007f044e402090 R08: 0000000000000000 R09: 0000000000000000 [ 1135.652515][T21465] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 1135.652534][T21465] R13: 00007f044d7e6128 R14: 00007f044d7e6090 R15: 00007ffc898df508 [ 1135.652578][T21465] [ 1135.965031][T21467] blktrace: Concurrent blktraces are not allowed on loop2 [ 1135.974476][T21467] FAULT_INJECTION: forcing a failure. [ 1135.974476][T21467] name failslab, interval 1, probability 0, space 0, times 0 [ 1135.988405][T21467] CPU: 1 UID: 0 PID: 21467 Comm: syz.3.3378 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1135.988464][T21467] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1135.988480][T21467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1135.988501][T21467] Call Trace: [ 1135.988513][T21467] [ 1135.988527][T21467] dump_stack_lvl+0x16c/0x1f0 [ 1135.988587][T21467] should_fail_ex+0x512/0x640 [ 1135.988625][T21467] ? __kmalloc_cache_noprof+0x5f/0x800 [ 1135.988669][T21467] should_failslab+0xc2/0x120 [ 1135.988722][T21467] __kmalloc_cache_noprof+0x80/0x800 [ 1135.988763][T21467] ? blk_alloc_queue_stats+0x3f/0x110 [ 1135.988828][T21467] ? blk_alloc_queue_stats+0x3f/0x110 [ 1135.988882][T21467] blk_alloc_queue_stats+0x3f/0x110 [ 1135.988938][T21467] blk_alloc_queue+0xda/0x750 [ 1135.988991][T21467] blk_mq_alloc_queue+0x172/0x280 [ 1135.989039][T21467] ? __pfx_blk_mq_alloc_queue+0x10/0x10 [ 1135.989109][T21467] ? blk_mq_alloc_tag_set+0xb95/0x12e0 [ 1135.989166][T21467] __blk_mq_alloc_disk+0x29/0x120 [ 1135.989215][T21467] loop_add+0x490/0xb70 [ 1135.989269][T21467] ? __pfx_loop_add+0x10/0x10 [ 1135.989363][T21467] ? find_held_lock+0x2b/0x80 [ 1135.989415][T21467] loop_control_ioctl+0x13e/0x640 [ 1135.989472][T21467] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1135.989533][T21467] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1135.989590][T21467] __x64_sys_ioctl+0x18e/0x210 [ 1135.989637][T21467] do_syscall_64+0xcd/0xf80 [ 1135.989700][T21467] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1135.989736][T21467] RIP: 0033:0x7f8af4d8f7c9 [ 1135.989763][T21467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1135.989799][T21467] RSP: 002b:00007f8af5c8b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1135.989831][T21467] RAX: ffffffffffffffda RBX: 00007f8af4fe6180 RCX: 00007f8af4d8f7c9 [ 1135.989853][T21467] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 1135.989874][T21467] RBP: 00007f8af4e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 1135.989893][T21467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1135.989911][T21467] R13: 00007f8af4fe6218 R14: 00007f8af4fe6180 R15: 00007ffcd225f608 [ 1135.989964][T21467] [ 1136.366664][T21461] zswap: compressor not available [ 1136.639708][T21476] nfsd: Unknown parameter 'ˆ*Ú' [ 1137.157254][T21485] netlink: 'syz.2.3385': attribute type 2 has an invalid length. [ 1137.755853][T21502] random: crng reseeded on system resumption [ 1137.909477][T21505] FAULT_INJECTION: forcing a failure. [ 1137.909477][T21505] name failslab, interval 1, probability 0, space 0, times 0 [ 1137.959298][T21505] CPU: 1 UID: 0 PID: 21505 Comm: syz.2.3388 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1137.959342][T21505] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1137.959352][T21505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1137.959366][T21505] Call Trace: [ 1137.959376][T21505] [ 1137.959385][T21505] dump_stack_lvl+0x16c/0x1f0 [ 1137.959427][T21505] should_fail_ex+0x512/0x640 [ 1137.959456][T21505] ? fs_reclaim_acquire+0xae/0x150 [ 1137.959499][T21505] should_failslab+0xc2/0x120 [ 1137.959538][T21505] __kmalloc_noprof+0xeb/0x910 [ 1137.959566][T21505] ? tomoyo_encode2+0x100/0x3e0 [ 1137.959604][T21505] ? tomoyo_encode2+0x100/0x3e0 [ 1137.959637][T21505] tomoyo_encode2+0x100/0x3e0 [ 1137.959674][T21505] tomoyo_encode+0x29/0x50 [ 1137.959707][T21505] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1137.959750][T21505] tomoyo_mkdev_perm+0x22b/0x570 [ 1137.959777][T21505] ? tomoyo_mkdev_perm+0x217/0x570 [ 1137.959812][T21505] ? __pfx_tomoyo_mkdev_perm+0x10/0x10 [ 1137.959846][T21505] ? do_raw_spin_lock+0x12c/0x2b0 [ 1137.959882][T21505] ? do_raw_spin_unlock+0x172/0x230 [ 1137.959925][T21505] ? __pfx_current_check_access_path+0x10/0x10 [ 1137.959961][T21505] ? simple_lookup+0x105/0x1d0 [ 1137.960003][T21505] tomoyo_path_mknod+0x12a/0x190 [ 1137.960050][T21505] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 1137.960094][T21505] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1137.960138][T21505] security_path_mknod+0x161/0x310 [ 1137.960169][T21505] do_mknodat+0x24e/0x6f0 [ 1137.960207][T21505] ? __pfx_do_mknodat+0x10/0x10 [ 1137.960243][T21505] ? getname_flags.part.0+0x1c5/0x550 [ 1137.960278][T21505] __x64_sys_mknod+0x87/0xb0 [ 1137.960317][T21505] do_syscall_64+0xcd/0xf80 [ 1137.960358][T21505] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1137.960383][T21505] RIP: 0033:0x7f4d4ef8f7c9 [ 1137.960403][T21505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1137.960428][T21505] RSP: 002b:00007f4d4fec3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 1137.960450][T21505] RAX: ffffffffffffffda RBX: 00007f4d4f1e5fa0 RCX: 00007f4d4ef8f7c9 [ 1137.960468][T21505] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 1137.960484][T21505] RBP: 00007f4d4f013f91 R08: 0000000000000000 R09: 0000000000000000 [ 1137.960499][T21505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1137.960515][T21505] R13: 00007f4d4f1e6038 R14: 00007f4d4f1e5fa0 R15: 00007ffef5e3b858 [ 1137.960547][T21505] [ 1137.960572][T21505] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1138.362317][T21508] sctp: Failed to create the SCTP UDP tunneling v4 sock [ 1138.791357][ T5851] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 1138.791402][ T5851] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 1138.809217][ T5851] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 1138.809257][ T5851] Bluetooth: hci1: adv larger than maximum supported [ 1138.820524][ T5851] Bluetooth: hci1: adv larger than maximum supported [ 1138.829111][ T5851] Bluetooth: hci1: Malformed LE Event: 0x0d [ 1140.092532][T21542] FAULT_INJECTION: forcing a failure. [ 1140.092532][T21542] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1140.141293][T21542] CPU: 1 UID: 0 PID: 21542 Comm: syz.1.3396 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1140.141342][T21542] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1140.141352][T21542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1140.141367][T21542] Call Trace: [ 1140.141375][T21542] [ 1140.141384][T21542] dump_stack_lvl+0x16c/0x1f0 [ 1140.141422][T21542] should_fail_ex+0x512/0x640 [ 1140.141451][T21542] _copy_from_user+0x2e/0xd0 [ 1140.141477][T21542] copy_msghdr_from_user+0x98/0x160 [ 1140.141507][T21542] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 1140.141540][T21542] ? __pfx__kstrtoull+0x10/0x10 [ 1140.141577][T21542] ___sys_sendmsg+0xfe/0x1d0 [ 1140.141606][T21542] ? __pfx____sys_sendmsg+0x10/0x10 [ 1140.141743][T21542] ? __pfx___might_resched+0x10/0x10 [ 1140.141797][T21542] __sys_sendmmsg+0x200/0x420 [ 1140.141833][T21542] ? __pfx___sys_sendmmsg+0x10/0x10 [ 1140.141874][T21542] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1140.141927][T21542] ? fput+0x70/0xf0 [ 1140.141954][T21542] ? ksys_write+0x1ac/0x250 [ 1140.141989][T21542] ? __pfx_ksys_write+0x10/0x10 [ 1140.142029][T21542] __x64_sys_sendmmsg+0x9c/0x100 [ 1140.142060][T21542] ? lockdep_hardirqs_on+0x7c/0x110 [ 1140.142099][T21542] do_syscall_64+0xcd/0xf80 [ 1140.142138][T21542] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1140.142172][T21542] RIP: 0033:0x7f044d58f7c9 [ 1140.142192][T21542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1140.142218][T21542] RSP: 002b:00007f044e423038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1140.142242][T21542] RAX: ffffffffffffffda RBX: 00007f044d7e5fa0 RCX: 00007f044d58f7c9 [ 1140.142260][T21542] RDX: 00000000000009a5 RSI: 0000000000000000 RDI: 0000000000000003 [ 1140.142275][T21542] RBP: 00007f044e423090 R08: 0000000000000000 R09: 0000000000000000 [ 1140.142291][T21542] R10: 0000000047ffff7a R11: 0000000000000246 R12: 0000000000000002 [ 1140.142306][T21542] R13: 00007f044d7e6038 R14: 00007f044d7e5fa0 R15: 00007ffc898df508 [ 1140.142338][T21542] [ 1141.074031][T21567] netlink: 186 bytes leftover after parsing attributes in process `syz.1.3409'. [ 1143.869198][ T5851] block nbd17: Receive control failed (result -32) [ 1144.805475][T21618] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1144.895629][T21618] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1144.961361][T21618] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1146.431811][T21663] FAULT_INJECTION: forcing a failure. [ 1146.431811][T21663] name failslab, interval 1, probability 0, space 0, times 0 [ 1146.444653][T21663] CPU: 1 UID: 0 PID: 21663 Comm: syz.1.3422 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1146.444711][T21663] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1146.444725][T21663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1146.444745][T21663] Call Trace: [ 1146.444757][T21663] [ 1146.444770][T21663] dump_stack_lvl+0x16c/0x1f0 [ 1146.444831][T21663] should_fail_ex+0x512/0x640 [ 1146.444870][T21663] ? fs_reclaim_acquire+0xae/0x150 [ 1146.444928][T21663] should_failslab+0xc2/0x120 [ 1146.444980][T21663] __kmalloc_noprof+0xeb/0x910 [ 1146.445018][T21663] ? tomoyo_encode2+0x100/0x3e0 [ 1146.445070][T21663] ? tomoyo_encode2+0x100/0x3e0 [ 1146.445112][T21663] tomoyo_encode2+0x100/0x3e0 [ 1146.445196][T21663] tomoyo_encode+0x29/0x50 [ 1146.445244][T21663] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1146.445306][T21663] tomoyo_mkdev_perm+0x22b/0x570 [ 1146.445344][T21663] ? tomoyo_mkdev_perm+0x217/0x570 [ 1146.445387][T21663] ? __pfx_tomoyo_mkdev_perm+0x10/0x10 [ 1146.445428][T21663] ? do_raw_spin_lock+0x12c/0x2b0 [ 1146.445479][T21663] ? do_raw_spin_unlock+0x172/0x230 [ 1146.445541][T21663] ? __pfx_current_check_access_path+0x10/0x10 [ 1146.445590][T21663] ? simple_lookup+0x105/0x1d0 [ 1146.445648][T21663] tomoyo_path_mknod+0x12a/0x190 [ 1146.445702][T21663] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 1146.445758][T21663] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1146.445817][T21663] security_path_mknod+0x161/0x310 [ 1146.445861][T21663] do_mknodat+0x24e/0x6f0 [ 1146.445913][T21663] ? __pfx_do_mknodat+0x10/0x10 [ 1146.445964][T21663] ? getname_flags.part.0+0x1c5/0x550 [ 1146.446012][T21663] __x64_sys_mknod+0x87/0xb0 [ 1146.446066][T21663] do_syscall_64+0xcd/0xf80 [ 1146.446123][T21663] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1146.446158][T21663] RIP: 0033:0x7f044d58f7c9 [ 1146.446194][T21663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1146.446230][T21663] RSP: 002b:00007f044e423038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 1146.446262][T21663] RAX: ffffffffffffffda RBX: 00007f044d7e5fa0 RCX: 00007f044d58f7c9 [ 1146.446286][T21663] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 1146.446308][T21663] RBP: 00007f044d613f91 R08: 0000000000000000 R09: 0000000000000000 [ 1146.446329][T21663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1146.446349][T21663] R13: 00007f044d7e6038 R14: 00007f044d7e5fa0 R15: 00007ffc898df508 [ 1146.446394][T21663] [ 1146.586279][ T5851] Bluetooth: hci0: command 0x0c1a tx timeout [ 1146.756993][T21663] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1146.830106][T21663] sctp: Failed to create the SCTP UDP tunneling v4 sock [ 1146.904986][ T5851] Bluetooth: hci2: command 0x0c1a tx timeout [ 1146.985774][ T5851] Bluetooth: hci1: command 0x0c1a tx timeout [ 1147.361046][T21678] blktrace: Concurrent blktraces are not allowed on nbd8 [ 1148.209431][T21697] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 1148.223848][T21697] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 1148.232674][T21697] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 1148.244667][T21697] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 1148.342528][T21697] page dumped because: unmovable page [ 1148.354926][T21697] page_owner info is not present (never set?) [ 1148.616338][T21705] FAULT_INJECTION: forcing a failure. [ 1148.616338][T21705] name failslab, interval 1, probability 0, space 0, times 0 [ 1148.685027][T21705] CPU: 1 UID: 0 PID: 21705 Comm: syz.2.3437 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1148.685082][T21705] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1148.685095][T21705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1148.685114][T21705] Call Trace: [ 1148.685126][T21705] [ 1148.685139][T21705] dump_stack_lvl+0x16c/0x1f0 [ 1148.685192][T21705] should_fail_ex+0x512/0x640 [ 1148.685228][T21705] ? __kmalloc_noprof+0xca/0x910 [ 1148.685269][T21705] should_failslab+0xc2/0x120 [ 1148.685321][T21705] __kmalloc_noprof+0xeb/0x910 [ 1148.685356][T21705] ? register_lock_class+0x41/0x4b0 [ 1148.685389][T21705] ? iovec_from_user+0x108/0x140 [ 1148.685434][T21705] ? iovec_from_user+0x108/0x140 [ 1148.685470][T21705] iovec_from_user+0x108/0x140 [ 1148.685514][T21705] __import_iovec+0x88/0x650 [ 1148.685562][T21705] import_iovec+0x86/0xb0 [ 1148.685606][T21705] vfs_writev+0x19b/0xde0 [ 1148.685652][T21705] ? rcu_is_watching+0x12/0xc0 [ 1148.685707][T21705] ? __pfx_vfs_writev+0x10/0x10 [ 1148.685750][T21705] ? fdget_pos+0x2a2/0x370 [ 1148.685830][T21705] ? __fget_files+0x20e/0x3c0 [ 1148.685874][T21705] ? __fget_files+0x190/0x3c0 [ 1148.685932][T21705] ? do_writev+0x132/0x340 [ 1148.685974][T21705] do_writev+0x132/0x340 [ 1148.686026][T21705] ? __pfx_do_writev+0x10/0x10 [ 1148.686082][T21705] do_syscall_64+0xcd/0xf80 [ 1148.686135][T21705] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1148.686170][T21705] RIP: 0033:0x7f4d4ef8f7c9 [ 1148.686196][T21705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1148.686229][T21705] RSP: 002b:00007f4d4fec3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 1148.686260][T21705] RAX: ffffffffffffffda RBX: 00007f4d4f1e5fa0 RCX: 00007f4d4ef8f7c9 [ 1148.686281][T21705] RDX: 000000000000000b RSI: 0000200000000240 RDI: 0000000000000003 [ 1148.686301][T21705] RBP: 00007f4d4fec3090 R08: 0000000000000000 R09: 0000000000000000 [ 1148.686320][T21705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1148.686339][T21705] R13: 00007f4d4f1e6038 R14: 00007f4d4f1e5fa0 R15: 00007ffef5e3b858 [ 1148.686382][T21705] [ 1150.942449][T21727] FAULT_INJECTION: forcing a failure. [ 1150.942449][T21727] name failslab, interval 1, probability 0, space 0, times 0 [ 1150.983468][T21727] CPU: 1 UID: 0 PID: 21727 Comm: syz.0.3434 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1150.983528][T21727] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1150.983542][T21727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1150.983564][T21727] Call Trace: [ 1150.983576][T21727] [ 1150.983589][T21727] dump_stack_lvl+0x16c/0x1f0 [ 1150.983647][T21727] should_fail_ex+0x512/0x640 [ 1150.983697][T21727] ? __kmalloc_cache_noprof+0x5f/0x800 [ 1150.983744][T21727] should_failslab+0xc2/0x120 [ 1150.983800][T21727] __kmalloc_cache_noprof+0x80/0x800 [ 1150.983842][T21727] ? syslog_print_all+0xeb/0x400 [ 1150.983884][T21727] ? syslog_print_all+0xeb/0x400 [ 1150.983918][T21727] syslog_print_all+0xeb/0x400 [ 1150.983959][T21727] ? __pfx_syslog_print_all+0x10/0x10 [ 1150.984017][T21727] ? do_futex+0x122/0x350 [ 1150.984062][T21727] do_syslog+0x32c/0x6c0 [ 1150.984104][T21727] ? __pfx_do_syslog+0x10/0x10 [ 1150.984159][T21727] ? xfd_validate_state+0x61/0x180 [ 1150.984217][T21727] __x64_sys_syslog+0x74/0xb0 [ 1150.984257][T21727] ? lockdep_hardirqs_on+0x7c/0x110 [ 1150.984309][T21727] do_syscall_64+0xcd/0xf80 [ 1150.984364][T21727] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1150.984399][T21727] RIP: 0033:0x7fc1d198f7c9 [ 1150.984425][T21727] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1150.984458][T21727] RSP: 002b:00007fc1d27d0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000067 [ 1150.984490][T21727] RAX: ffffffffffffffda RBX: 00007fc1d1be5fa0 RCX: 00007fc1d198f7c9 [ 1150.984511][T21727] RDX: 00000000000000da RSI: 0000200000000080 RDI: 0000000000000003 [ 1150.984531][T21727] RBP: 00007fc1d1a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 1150.984551][T21727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1150.984571][T21727] R13: 00007fc1d1be6038 R14: 00007fc1d1be5fa0 R15: 00007ffcf15930a8 [ 1150.984615][T21727] [ 1151.978118][T21732] FAULT_INJECTION: forcing a failure. [ 1151.978118][T21732] name failslab, interval 1, probability 0, space 0, times 0 [ 1151.993081][T21732] CPU: 1 UID: 0 PID: 21732 Comm: syz.0.3435 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1151.993135][T21732] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1151.993146][T21732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1151.993164][T21732] Call Trace: [ 1151.993175][T21732] [ 1151.993187][T21732] dump_stack_lvl+0x16c/0x1f0 [ 1151.993239][T21732] should_fail_ex+0x512/0x640 [ 1151.993272][T21732] ? __kmalloc_noprof+0xca/0x910 [ 1151.993310][T21732] should_failslab+0xc2/0x120 [ 1151.993359][T21732] __kmalloc_noprof+0xeb/0x910 [ 1151.993394][T21732] ? quirks_param_set+0x1dc/0x750 [ 1151.993422][T21732] ? quirks_param_set+0x200/0x750 [ 1151.993458][T21732] ? quirks_param_set+0x200/0x750 [ 1151.993488][T21732] quirks_param_set+0x200/0x750 [ 1151.993521][T21732] ? __pfx_quirks_param_set+0x10/0x10 [ 1151.993571][T21732] param_attr_store+0x199/0x300 [ 1151.993620][T21732] ? __pfx_param_attr_store+0x10/0x10 [ 1151.993675][T21732] module_attr_store+0x58/0x80 [ 1151.993714][T21732] ? __pfx_module_attr_store+0x10/0x10 [ 1151.993753][T21732] sysfs_kf_write+0xf2/0x150 [ 1151.993791][T21732] kernfs_fop_write_iter+0x3af/0x570 [ 1151.993838][T21732] ? __pfx_sysfs_kf_write+0x10/0x10 [ 1151.993891][T21732] vfs_write+0x7d3/0x11d0 [ 1151.993943][T21732] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 1151.993998][T21732] ? __pfx_vfs_write+0x10/0x10 [ 1151.994074][T21732] ksys_write+0x12a/0x250 [ 1151.994121][T21732] ? __pfx_ksys_write+0x10/0x10 [ 1151.994181][T21732] do_syscall_64+0xcd/0xf80 [ 1151.994245][T21732] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1151.994280][T21732] RIP: 0033:0x7fc1d198f7c9 [ 1151.994306][T21732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1151.994338][T21732] RSP: 002b:00007fc1d27d0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1151.994368][T21732] RAX: ffffffffffffffda RBX: 00007fc1d1be5fa0 RCX: 00007fc1d198f7c9 [ 1151.994388][T21732] RDX: 0000000000000002 RSI: 0000200000000040 RDI: 0000000000000003 [ 1151.994407][T21732] RBP: 00007fc1d27d0090 R08: 0000000000000000 R09: 0000000000000000 [ 1151.994426][T21732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1151.994445][T21732] R13: 00007fc1d1be6038 R14: 00007fc1d1be5fa0 R15: 00007ffcf15930a8 [ 1151.994489][T21732] [ 1152.627957][T21752] FAULT_INJECTION: forcing a failure. [ 1152.627957][T21752] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1152.641311][T21752] CPU: 0 UID: 0 PID: 21752 Comm: syz.0.3441 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1152.641363][T21752] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1152.641376][T21752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1152.641394][T21752] Call Trace: [ 1152.641406][T21752] [ 1152.641418][T21752] dump_stack_lvl+0x16c/0x1f0 [ 1152.641474][T21752] should_fail_ex+0x512/0x640 [ 1152.641518][T21752] _copy_from_user+0x2e/0xd0 [ 1152.641564][T21752] move_addr_to_kernel+0x65/0x170 [ 1152.641599][T21752] __sys_connect+0xb1/0x160 [ 1152.641634][T21752] ? __pfx___sys_connect+0x10/0x10 [ 1152.641684][T21752] ? __pfx_ksys_write+0x10/0x10 [ 1152.641750][T21752] __x64_sys_connect+0x72/0xb0 [ 1152.641784][T21752] ? lockdep_hardirqs_on+0x7c/0x110 [ 1152.641846][T21752] do_syscall_64+0xcd/0xf80 [ 1152.641899][T21752] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1152.641933][T21752] RIP: 0033:0x7fc1d198f7c9 [ 1152.641959][T21752] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1152.641992][T21752] RSP: 002b:00007fc1d278e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 1152.642022][T21752] RAX: ffffffffffffffda RBX: 00007fc1d1be6180 RCX: 00007fc1d198f7c9 [ 1152.642043][T21752] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 1152.642062][T21752] RBP: 00007fc1d278e090 R08: 0000000000000000 R09: 0000000000000000 [ 1152.642082][T21752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1152.642101][T21752] R13: 00007fc1d1be6218 R14: 00007fc1d1be6180 R15: 00007ffcf15930a8 [ 1152.642143][T21752] [ 1153.284258][T21763] netlink: 146 bytes leftover after parsing attributes in process `syz.0.3444'. [ 1154.577902][T21786] FAULT_INJECTION: forcing a failure. [ 1154.577902][T21786] name failslab, interval 1, probability 0, space 0, times 0 [ 1154.590728][T21786] CPU: 0 UID: 0 PID: 21786 Comm: syz.0.3448 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1154.590769][T21786] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1154.590778][T21786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1154.590794][T21786] Call Trace: [ 1154.590803][T21786] [ 1154.590812][T21786] dump_stack_lvl+0x16c/0x1f0 [ 1154.590854][T21786] should_fail_ex+0x512/0x640 [ 1154.590880][T21786] ? fs_reclaim_acquire+0xae/0x150 [ 1154.590921][T21786] should_failslab+0xc2/0x120 [ 1154.590960][T21786] __kmalloc_noprof+0xeb/0x910 [ 1154.590987][T21786] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1154.591027][T21786] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1154.591060][T21786] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1154.591097][T21786] ? tomoyo_profile+0x47/0x60 [ 1154.591136][T21786] tomoyo_path_number_perm+0x245/0x580 [ 1154.591163][T21786] ? tomoyo_path_number_perm+0x237/0x580 [ 1154.591194][T21786] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1154.591224][T21786] ? find_held_lock+0x2b/0x80 [ 1154.591281][T21786] ? find_held_lock+0x2b/0x80 [ 1154.591312][T21786] ? hook_file_ioctl_common+0x144/0x410 [ 1154.591347][T21786] ? __fget_files+0x20e/0x3c0 [ 1154.591389][T21786] security_file_ioctl+0x9b/0x240 [ 1154.591419][T21786] __x64_sys_ioctl+0xb7/0x210 [ 1154.591458][T21786] do_syscall_64+0xcd/0xf80 [ 1154.591498][T21786] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1154.591523][T21786] RIP: 0033:0x7fc1d198f7c9 [ 1154.591542][T21786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1154.591567][T21786] RSP: 002b:00007fc1d278e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1154.591588][T21786] RAX: ffffffffffffffda RBX: 00007fc1d1be6180 RCX: 00007fc1d198f7c9 [ 1154.591605][T21786] RDX: 00002000000000c0 RSI: 0000000080084504 RDI: 000000000000000b [ 1154.591620][T21786] RBP: 00007fc1d278e090 R08: 0000000000000000 R09: 0000000000000000 [ 1154.591635][T21786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1154.591650][T21786] R13: 00007fc1d1be6218 R14: 00007fc1d1be6180 R15: 00007ffcf15930a8 [ 1154.591681][T21786] [ 1154.591691][T21786] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1155.443906][T21797] vivid-007: ================= START STATUS ================= [ 1155.472659][T21797] vivid-007: Generate PTS: true [ 1155.496366][T21797] vivid-007: Generate SCR: true [ 1155.501347][T21797] tpg source WxH: 320x240 (Y'CbCr) [ 1155.537101][T21797] tpg field: 1 [ 1155.554937][T21797] tpg crop: (0,0)/320x240 [ 1155.570298][T21797] tpg compose: (0,0)/320x240 [ 1155.584919][T21797] tpg colorspace: 8 [ 1155.588897][T21797] tpg transfer function: 0/0 [ 1155.593565][T21797] tpg Y'CbCr encoding: 0/0 [ 1155.611265][T21797] tpg quantization: 0/0 [ 1155.622549][T21797] tpg RGB range: 0/2 [ 1155.636026][T21797] vivid-007: ================== END STATUS ================== [ 1156.242780][T21809] blktrace: Concurrent blktraces are not allowed on loop2 [ 1156.272755][T21809] FAULT_INJECTION: forcing a failure. [ 1156.272755][T21809] name failslab, interval 1, probability 0, space 0, times 0 [ 1156.293218][T21809] CPU: 0 UID: 0 PID: 21809 Comm: syz.2.3454 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1156.293262][T21809] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1156.293272][T21809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1156.293288][T21809] Call Trace: [ 1156.293298][T21809] [ 1156.293309][T21809] dump_stack_lvl+0x16c/0x1f0 [ 1156.293359][T21809] should_fail_ex+0x512/0x640 [ 1156.293392][T21809] ? __kmalloc_cache_node_noprof+0x62/0x830 [ 1156.293432][T21809] should_failslab+0xc2/0x120 [ 1156.293471][T21809] __kmalloc_cache_node_noprof+0x83/0x830 [ 1156.293508][T21809] ? __alloc_disk_node+0x5a/0x6b0 [ 1156.293552][T21809] ? __alloc_disk_node+0x5a/0x6b0 [ 1156.293590][T21809] __alloc_disk_node+0x5a/0x6b0 [ 1156.293631][T21809] __blk_mq_alloc_disk+0x89/0x120 [ 1156.293664][T21809] loop_add+0x490/0xb70 [ 1156.293702][T21809] ? __pfx_loop_add+0x10/0x10 [ 1156.293757][T21809] ? find_held_lock+0x2b/0x80 [ 1156.293792][T21809] loop_control_ioctl+0x13e/0x640 [ 1156.293834][T21809] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1156.293878][T21809] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1156.293920][T21809] __x64_sys_ioctl+0x18e/0x210 [ 1156.293953][T21809] do_syscall_64+0xcd/0xf80 [ 1156.293993][T21809] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1156.294019][T21809] RIP: 0033:0x7f4d4ef8f7c9 [ 1156.294039][T21809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1156.294064][T21809] RSP: 002b:00007f4d4fec3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1156.294087][T21809] RAX: ffffffffffffffda RBX: 00007f4d4f1e5fa0 RCX: 00007f4d4ef8f7c9 [ 1156.294104][T21809] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 1156.294120][T21809] RBP: 00007f4d4f013f91 R08: 0000000000000000 R09: 0000000000000000 [ 1156.294135][T21809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1156.294150][T21809] R13: 00007f4d4f1e6038 R14: 00007f4d4f1e5fa0 R15: 00007ffef5e3b858 [ 1156.294182][T21809] [ 1158.021914][T21825] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1158.034545][T21825] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1158.052584][T21825] Bluetooth: hci1: Opcode 0x0c1a failed: -4 syzkaller syzkaller login: [ 1159.715023][ T5851] Bluetooth: hci0: command 0x0c1a tx timeout [ 1160.105243][ T5851] Bluetooth: hci1: command 0x0c1a tx timeout [ 1160.107948][T10452] Bluetooth: hci2: command 0x0c1a tx timeout [ 1160.232373][T10452] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 1160.232407][T10452] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 1160.248016][T10452] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 1160.248075][T10452] Bluetooth: hci2: adv larger than maximum supported [ 1160.256172][T10452] Bluetooth: hci2: adv larger than maximum supported [ 1160.263045][T10452] Bluetooth: hci2: Malformed LE Event: 0x0d [ 1160.347503][T21879] FAULT_INJECTION: forcing a failure. [ 1160.347503][T21879] name failslab, interval 1, probability 0, space 0, times 0 [ 1160.425325][T21879] CPU: 0 UID: 0 PID: 21879 Comm: syz.2.3467 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1160.425368][T21879] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1160.425379][T21879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1160.425394][T21879] Call Trace: [ 1160.425403][T21879] [ 1160.425412][T21879] dump_stack_lvl+0x16c/0x1f0 [ 1160.425454][T21879] should_fail_ex+0x512/0x640 [ 1160.425481][T21879] ? __kmalloc_cache_noprof+0x5f/0x800 [ 1160.425513][T21879] should_failslab+0xc2/0x120 [ 1160.425552][T21879] __kmalloc_cache_noprof+0x80/0x800 [ 1160.425582][T21879] ? syslog_print_all+0xeb/0x400 [ 1160.425612][T21879] ? syslog_print_all+0xeb/0x400 [ 1160.425636][T21879] syslog_print_all+0xeb/0x400 [ 1160.425665][T21879] ? __pfx_syslog_print_all+0x10/0x10 [ 1160.425705][T21879] ? do_futex+0x122/0x350 [ 1160.425738][T21879] do_syslog+0x32c/0x6c0 [ 1160.425768][T21879] ? __pfx_do_syslog+0x10/0x10 [ 1160.425807][T21879] ? xfd_validate_state+0x61/0x180 [ 1160.425837][T21879] __x64_sys_syslog+0x74/0xb0 [ 1160.425866][T21879] ? lockdep_hardirqs_on+0x7c/0x110 [ 1160.425904][T21879] do_syscall_64+0xcd/0xf80 [ 1160.425943][T21879] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1160.425975][T21879] RIP: 0033:0x7f4d4ef8f7c9 [ 1160.425995][T21879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1160.426020][T21879] RSP: 002b:00007f4d4fec3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000067 [ 1160.426043][T21879] RAX: ffffffffffffffda RBX: 00007f4d4f1e5fa0 RCX: 00007f4d4ef8f7c9 [ 1160.426060][T21879] RDX: 00000000000000da RSI: 0000200000000080 RDI: 0000000000000003 [ 1160.426076][T21879] RBP: 00007f4d4f013f91 R08: 0000000000000000 R09: 0000000000000000 [ 1160.426091][T21879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1160.426105][T21879] R13: 00007f4d4f1e6038 R14: 00007f4d4f1e5fa0 R15: 00007ffef5e3b858 [ 1160.426137][T21879] [ 1161.483447][T21897] blktrace: Concurrent blktraces are not allowed on nbd8 [ 1163.679807][T21918] zswap: compressor not available [ 1164.510324][T21910] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 1168.097213][T21983] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1168.103486][T21983] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1168.110216][T21983] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1169.796252][T10452] Bluetooth: hci0: command 0x0c1a tx timeout [ 1170.105266][T10452] Bluetooth: hci2: command 0x0c1a tx timeout [ 1170.185349][T10452] Bluetooth: hci1: command 0x0c1a tx timeout [ 1170.662469][T22029] FAULT_INJECTION: forcing a failure. [ 1170.662469][T22029] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1170.725309][T22029] CPU: 1 UID: 0 PID: 22029 Comm: syz.1.3497 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1170.725352][T22029] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1170.725363][T22029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1170.725378][T22029] Call Trace: [ 1170.725387][T22029] [ 1170.725397][T22029] dump_stack_lvl+0x16c/0x1f0 [ 1170.725439][T22029] should_fail_ex+0x512/0x640 [ 1170.725471][T22029] get_futex_key+0x1d0/0x15f0 [ 1170.725500][T22029] ? look_up_user_keyrings+0x351/0x790 [ 1170.725529][T22029] ? __pfx_get_futex_key+0x10/0x10 [ 1170.725556][T22029] ? __pfx_look_up_user_keyrings+0x10/0x10 [ 1170.725591][T22029] futex_wake+0xea/0x530 [ 1170.725630][T22029] ? lookup_user_key+0x2ce/0x1300 [ 1170.725658][T22029] ? __pfx_futex_wake+0x10/0x10 [ 1170.725704][T22029] do_futex+0x1e3/0x350 [ 1170.725733][T22029] ? __pfx_do_futex+0x10/0x10 [ 1170.725763][T22029] ? _copy_to_user+0x48/0xd0 [ 1170.725793][T22029] __x64_sys_futex+0x1e0/0x4c0 [ 1170.725825][T22029] ? __pfx___x64_sys_futex+0x10/0x10 [ 1170.725855][T22029] ? xfd_validate_state+0x61/0x180 [ 1170.725887][T22029] do_syscall_64+0xcd/0xf80 [ 1170.725926][T22029] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1170.725952][T22029] RIP: 0033:0x7f044d58f7c9 [ 1170.725971][T22029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1170.725996][T22029] RSP: 002b:00007f044e4020e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1170.726019][T22029] RAX: ffffffffffffffda RBX: 00007f044d7e6098 RCX: 00007f044d58f7c9 [ 1170.726035][T22029] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f044d7e609c [ 1170.726053][T22029] RBP: 00007f044d7e6090 R08: 00007f044e424000 R09: 0000000000000000 [ 1170.726069][T22029] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 1170.726088][T22029] R13: 00007f044d7e6128 R14: 00007ffc898df420 R15: 00007ffc898df508 [ 1170.726120][T22029] [ 1171.700042][T22042] binder: 22041:22042 ioctl c0104d08 200000000040 returned -22 [ 1172.325330][T22051] random: crng reseeded on system resumption [ 1173.941270][T22078] vivid-007: ================= START STATUS ================= [ 1173.979827][T22078] vivid-007: Generate PTS: true [ 1174.000124][T22078] vivid-007: Generate SCR: true [ 1174.022720][T22078] tpg source WxH: 320x240 (Y'CbCr) [ 1174.054585][T22078] tpg field: 1 [ 1174.105110][T22078] tpg crop: (0,0)/320x240 [ 1174.109533][T22078] tpg compose: (0,0)/320x240 [ 1174.114178][T22078] tpg colorspace: 8 [ 1174.214909][T22078] tpg transfer function: 0/0 [ 1174.219592][T22078] tpg Y'CbCr encoding: 0/0 [ 1174.224051][T22078] tpg quantization: 0/0 [ 1174.279044][T22078] tpg RGB range: 0/2 [ 1174.295242][T22078] vivid-007: ================== END STATUS ================== [ 1175.679928][T22102] __vm_enough_memory: pid: 22102, comm: syz.0.3520, bytes: 4398046511104 not enough memory for the allocation [ 1178.605561][T22143] netlink: 'syz.2.3525': attribute type 1 has an invalid length. [ 1181.794406][T22197] blktrace: Concurrent blktraces are not allowed on loop2 [ 1181.837846][T22197] FAULT_INJECTION: forcing a failure. [ 1181.837846][T22197] name failslab, interval 1, probability 0, space 0, times 0 [ 1181.900238][T22197] CPU: 0 UID: 0 PID: 22197 Comm: syz.2.3538 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1181.900296][T22197] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1181.900310][T22197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1181.900333][T22197] Call Trace: [ 1181.900345][T22197] [ 1181.900360][T22197] dump_stack_lvl+0x16c/0x1f0 [ 1181.900420][T22197] should_fail_ex+0x512/0x640 [ 1181.900458][T22197] ? __kmalloc_cache_node_noprof+0x62/0x830 [ 1181.900511][T22197] should_failslab+0xc2/0x120 [ 1181.900574][T22197] __kmalloc_cache_node_noprof+0x83/0x830 [ 1181.900626][T22197] ? sbitmap_queue_init_node+0x291/0x4a0 [ 1181.900675][T22197] ? sbitmap_init_node+0x2cc/0x770 [ 1181.900731][T22197] ? sbitmap_queue_init_node+0x291/0x4a0 [ 1181.900781][T22197] sbitmap_queue_init_node+0x291/0x4a0 [ 1181.900836][T22197] blk_mq_init_tags+0x17f/0x320 [ 1181.900893][T22197] blk_mq_alloc_map_and_rqs+0x222/0xeb0 [ 1181.900954][T22197] __blk_mq_alloc_map_and_rqs+0x128/0x1f0 [ 1181.901008][T22197] blk_mq_alloc_tag_set+0x7c3/0x12e0 [ 1181.901070][T22197] loop_add+0x3b2/0xb70 [ 1181.901126][T22197] ? __pfx_loop_add+0x10/0x10 [ 1181.901207][T22197] ? find_held_lock+0x2b/0x80 [ 1181.901256][T22197] loop_control_ioctl+0x13e/0x640 [ 1181.901313][T22197] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1181.901373][T22197] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1181.901429][T22197] __x64_sys_ioctl+0x18e/0x210 [ 1181.901477][T22197] do_syscall_64+0xcd/0xf80 [ 1181.901531][T22197] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1181.901574][T22197] RIP: 0033:0x7f4d4ef8f7c9 [ 1181.901602][T22197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1181.901636][T22197] RSP: 002b:00007f4d4fec3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1181.901668][T22197] RAX: ffffffffffffffda RBX: 00007f4d4f1e5fa0 RCX: 00007f4d4ef8f7c9 [ 1181.901691][T22197] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 1181.901713][T22197] RBP: 00007f4d4f013f91 R08: 0000000000000000 R09: 0000000000000000 [ 1181.901734][T22197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1181.901754][T22197] R13: 00007f4d4f1e6038 R14: 00007f4d4f1e5fa0 R15: 00007ffef5e3b858 [ 1181.901798][T22197] [ 1182.129891][T22197] blk-mq: reduced tag depth (128 -> 64) [ 1186.779793][T22258] blktrace: Concurrent blktraces are not allowed on loop2 [ 1187.949901][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 1187.956495][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 1189.462965][T22286] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1189.555631][T22286] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1189.575606][T22307] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3566'. [ 1189.621316][T22286] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1191.305037][T10452] Bluetooth: hci0: command 0x0c1a tx timeout [ 1191.627834][T10452] Bluetooth: hci1: command 0x0c1a tx timeout [ 1191.634896][T10452] Bluetooth: hci2: command 0x0c1a tx timeout [ 1198.100897][T22451] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3601'. [ 1198.177922][T22451] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3601'. [ 1198.197164][T22451] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3601'. [ 1198.275881][T22451] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3601'. [ 1198.356220][T22451] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3601'. [ 1198.405398][T22451] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3601'. [ 1198.433175][T22451] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3601'. [ 1198.472141][T22451] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3601'. [ 1198.523770][T22451] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3601'. [ 1198.599159][T22451] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3601'. [ 1201.649567][T22511] : Can't lookup blockdev [ 1202.634962][T22521] blktrace: Concurrent blktraces are not allowed on loop2 [ 1203.425182][T22530] blktrace: Concurrent blktraces are not allowed on loop2 [ 1203.456511][T22530] blk-mq: reduced tag depth (128 -> 64) [ 1208.456064][T22584] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 1209.525050][T22604] __nla_validate_parse: 24 callbacks suppressed [ 1209.525078][T22604] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3637'. [ 1210.230132][T22613] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3640'. [ 1210.874002][T22622] netlink: 330 bytes leftover after parsing attributes in process `syz.2.3642'. [ 1214.393023][T22665] futex_wake_op: syz.3.3650 tries to shift op by -2048; fix this program [ 1214.416154][T22657] blktrace: Concurrent blktraces are not allowed on loop2 [ 1214.437466][T22657] FAULT_INJECTION: forcing a failure. [ 1214.437466][T22657] name failslab, interval 1, probability 0, space 0, times 0 [ 1214.455223][T22657] CPU: 0 UID: 0 PID: 22657 Comm: syz.2.3649 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1214.455287][T22657] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1214.455301][T22657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1214.455323][T22657] Call Trace: [ 1214.455336][T22657] [ 1214.455350][T22657] dump_stack_lvl+0x16c/0x1f0 [ 1214.455409][T22657] should_fail_ex+0x512/0x640 [ 1214.455447][T22657] ? __kmalloc_cache_node_noprof+0x62/0x830 [ 1214.455503][T22657] should_failslab+0xc2/0x120 [ 1214.455556][T22657] __kmalloc_cache_node_noprof+0x83/0x830 [ 1214.455617][T22657] ? lockdep_init_map_type+0x5c/0x270 [ 1214.455652][T22657] ? sbitmap_queue_init_node+0x291/0x4a0 [ 1214.455702][T22657] ? sbitmap_init_node+0x2cc/0x770 [ 1214.455756][T22657] ? sbitmap_queue_init_node+0x291/0x4a0 [ 1214.455806][T22657] sbitmap_queue_init_node+0x291/0x4a0 [ 1214.455863][T22657] blk_mq_init_tags+0x1b4/0x320 [ 1214.455918][T22657] blk_mq_alloc_map_and_rqs+0x222/0xeb0 [ 1214.455980][T22657] __blk_mq_alloc_map_and_rqs+0x128/0x1f0 [ 1214.456032][T22657] blk_mq_alloc_tag_set+0x7c3/0x12e0 [ 1214.456095][T22657] loop_add+0x3b2/0xb70 [ 1214.456151][T22657] ? __pfx_loop_add+0x10/0x10 [ 1214.456231][T22657] ? find_held_lock+0x2b/0x80 [ 1214.456292][T22657] loop_control_ioctl+0x13e/0x640 [ 1214.456350][T22657] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1214.456412][T22657] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1214.456469][T22657] __x64_sys_ioctl+0x18e/0x210 [ 1214.456515][T22657] do_syscall_64+0xcd/0xf80 [ 1214.456578][T22657] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1214.456613][T22657] RIP: 0033:0x7f4d4ef8f7c9 [ 1214.456642][T22657] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1214.456678][T22657] RSP: 002b:00007f4d4fec3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1214.456712][T22657] RAX: ffffffffffffffda RBX: 00007f4d4f1e5fa0 RCX: 00007f4d4ef8f7c9 [ 1214.456734][T22657] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 1214.456753][T22657] RBP: 00007f4d4f013f91 R08: 0000000000000000 R09: 0000000000000000 [ 1214.456774][T22657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1214.456794][T22657] R13: 00007f4d4f1e6038 R14: 00007f4d4f1e5fa0 R15: 00007ffef5e3b858 [ 1214.456838][T22657] [ 1214.457235][T22657] blk-mq: reduced tag depth (128 -> 64) [ 1215.204912][T22674] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3654'. [ 1215.557218][T22674] mac80211_hwsim hwsim29 wlan1: entered allmulticast mode [ 1215.718989][T22674] futex_wake_op: syz.1.3654 tries to shift op by -2048; fix this program [ 1219.089623][T22739] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3667'. [ 1219.171497][T22739] mac80211_hwsim hwsim21 wlan1: entered allmulticast mode [ 1219.449905][T22743] futex_wake_op: syz.0.3667 tries to shift op by -2048; fix this program [ 1220.362685][T22742] binder: 22741:22742 ioctl c018620c 0 returned -22 [ 1221.696519][T22776] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 1222.726423][T10452] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 1222.726469][T10452] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 1222.741417][T10452] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 1222.741457][T10452] Bluetooth: hci1: adv larger than maximum supported [ 1222.749688][T10452] Bluetooth: hci1: Malformed LE Event: 0x0d [ 1223.160371][T22797] blktrace: Concurrent blktraces are not allowed on loop2 [ 1223.580409][T22802] netlink: 346 bytes leftover after parsing attributes in process `syz.0.3685'. [ 1223.667615][T22804] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3684'. [ 1223.783075][T22804] mac80211_hwsim hwsim23 wlan1: entered allmulticast mode [ 1223.963754][T22804] futex_wake_op: syz.2.3684 tries to shift op by -2048; fix this program [ 1226.805203][T22850] netlink: 330 bytes leftover after parsing attributes in process `syz.2.3695'. [ 1229.765568][T10452] block nbd18: Receive control failed (result -32) [ 1231.211384][T22937] kAFS: unparsable volume name [ 1231.688284][T22950] mtrr: base(0xb6000000000) is not aligned on a size(0x6000) boundary [ 1232.229587][T22946] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1232.247753][T22946] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1232.253915][T22946] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1233.547227][T10452] Bluetooth: hci0: command 0x0c1a tx timeout [ 1234.265177][T10452] Bluetooth: hci1: command 0x0c1a tx timeout [ 1234.271761][T10452] Bluetooth: hci2: command 0x0c1a tx timeout [ 1234.830858][T23019] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3746'. [ 1234.852793][T23019] IPv6: NLM_F_CREATE should be specified when creating new route [ 1234.881422][T23021] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3746'. [ 1235.564483][T23036] ima: Unable to open file: /surit‹¯Ṛy/integrity?iqa/policy (-2) [ 1235.718428][T23036] ima: policy update failed [ 1235.732941][ T30] audit: type=1802 audit(2108270467.709:24): pid=23036 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.3750" res=0 errno=0 [ 1236.150840][T23053] netlink: 330 bytes leftover after parsing attributes in process `syz.0.3753'. [ 1240.137559][T23116] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1240.162137][T23116] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1240.178977][T23116] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1240.591038][T23133] blktrace: Concurrent blktraces are not allowed on loop2 [ 1240.603286][T23133] FAULT_INJECTION: forcing a failure. [ 1240.603286][T23133] name failslab, interval 1, probability 0, space 0, times 0 [ 1240.616877][T23133] CPU: 0 UID: 0 PID: 23133 Comm: syz.2.3772 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1240.616935][T23133] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1240.616949][T23133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1240.616970][T23133] Call Trace: [ 1240.616981][T23133] [ 1240.616995][T23133] dump_stack_lvl+0x16c/0x1f0 [ 1240.617052][T23133] should_fail_ex+0x512/0x640 [ 1240.617090][T23133] ? __kmalloc_cache_noprof+0x5f/0x800 [ 1240.617136][T23133] should_failslab+0xc2/0x120 [ 1240.617190][T23133] __kmalloc_cache_noprof+0x80/0x800 [ 1240.617231][T23133] ? blk_alloc_queue_stats+0x3f/0x110 [ 1240.617294][T23133] ? blk_alloc_queue_stats+0x3f/0x110 [ 1240.617347][T23133] blk_alloc_queue_stats+0x3f/0x110 [ 1240.617402][T23133] blk_alloc_queue+0xda/0x750 [ 1240.617443][T23133] blk_mq_alloc_queue+0x172/0x280 [ 1240.617499][T23133] ? __pfx_blk_mq_alloc_queue+0x10/0x10 [ 1240.617573][T23133] ? blk_mq_alloc_tag_set+0xb95/0x12e0 [ 1240.617627][T23133] __blk_mq_alloc_disk+0x29/0x120 [ 1240.617677][T23133] loop_add+0x490/0xb70 [ 1240.617733][T23133] ? __pfx_loop_add+0x10/0x10 [ 1240.617815][T23133] ? find_held_lock+0x2b/0x80 [ 1240.617865][T23133] loop_control_ioctl+0x13e/0x640 [ 1240.617922][T23133] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1240.617983][T23133] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1240.618039][T23133] __x64_sys_ioctl+0x18e/0x210 [ 1240.618084][T23133] do_syscall_64+0xcd/0xf80 [ 1240.618139][T23133] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1240.618174][T23133] RIP: 0033:0x7f4d4ef8f7c9 [ 1240.618202][T23133] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1240.618237][T23133] RSP: 002b:00007f4d4fec3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1240.618269][T23133] RAX: ffffffffffffffda RBX: 00007f4d4f1e5fa0 RCX: 00007f4d4ef8f7c9 [ 1240.618290][T23133] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 1240.618310][T23133] RBP: 00007f4d4f013f91 R08: 0000000000000000 R09: 0000000000000000 [ 1240.618331][T23133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1240.618352][T23133] R13: 00007f4d4f1e6038 R14: 00007f4d4f1e5fa0 R15: 00007ffef5e3b858 [ 1240.618396][T23133] [ 1241.457571][T23153] kAFS: unparsable volume name [ 1241.705026][T23003] Bluetooth: hci0: command 0x0c1a tx timeout [ 1242.101941][T23148] blktrace: Concurrent blktraces are not allowed on loop2 [ 1242.190998][T23003] Bluetooth: hci2: command 0x0c1a tx timeout [ 1242.197349][ T5851] Bluetooth: hci1: command 0x0c1a tx timeout [ 1242.256829][T23148] FAULT_INJECTION: forcing a failure. [ 1242.256829][T23148] name failslab, interval 1, probability 0, space 0, times 0 [ 1242.369837][T23148] CPU: 0 UID: 0 PID: 23148 Comm: syz.2.3774 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1242.369894][T23148] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1242.369908][T23148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1242.369927][T23148] Call Trace: [ 1242.369939][T23148] [ 1242.369953][T23148] dump_stack_lvl+0x16c/0x1f0 [ 1242.370011][T23148] should_fail_ex+0x512/0x640 [ 1242.370051][T23148] ? __kvmalloc_node_noprof+0x129/0xa40 [ 1242.370102][T23148] should_failslab+0xc2/0x120 [ 1242.370171][T23148] __kvmalloc_node_noprof+0x14a/0xa40 [ 1242.370223][T23148] ? sbitmap_init_node+0x1cc/0x770 [ 1242.370276][T23148] ? sbitmap_init_node+0x1cc/0x770 [ 1242.370324][T23148] sbitmap_init_node+0x1cc/0x770 [ 1242.370383][T23148] sbitmap_queue_init_node+0x40/0x4a0 [ 1242.370447][T23148] blk_mq_init_tags+0x17f/0x320 [ 1242.370505][T23148] blk_mq_alloc_map_and_rqs+0x222/0xeb0 [ 1242.370567][T23148] __blk_mq_alloc_map_and_rqs+0x128/0x1f0 [ 1242.370626][T23148] blk_mq_alloc_tag_set+0x7c3/0x12e0 [ 1242.370691][T23148] loop_add+0x3b2/0xb70 [ 1242.370747][T23148] ? __pfx_loop_add+0x10/0x10 [ 1242.370829][T23148] ? find_held_lock+0x2b/0x80 [ 1242.370882][T23148] loop_control_ioctl+0x13e/0x640 [ 1242.370937][T23148] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1242.371000][T23148] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1242.371057][T23148] __x64_sys_ioctl+0x18e/0x210 [ 1242.371104][T23148] do_syscall_64+0xcd/0xf80 [ 1242.371160][T23148] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1242.371197][T23148] RIP: 0033:0x7f4d4ef8f7c9 [ 1242.371226][T23148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1242.371261][T23148] RSP: 002b:00007f4d4fec3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1242.371293][T23148] RAX: ffffffffffffffda RBX: 00007f4d4f1e5fa0 RCX: 00007f4d4ef8f7c9 [ 1242.371316][T23148] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 1242.371337][T23148] RBP: 00007f4d4f013f91 R08: 0000000000000000 R09: 0000000000000000 [ 1242.371358][T23148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1242.371379][T23148] R13: 00007f4d4f1e6038 R14: 00007f4d4f1e5fa0 R15: 00007ffef5e3b858 [ 1242.371429][T23148] [ 1242.371602][T23148] blk-mq: reduced tag depth (128 -> 64) [ 1244.498817][ T30] audit: type=1804 audit(2108270476.459:25): pid=23210 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3789" name="file0" dev="tmpfs" ino=1599 res=1 errno=0 [ 1246.996435][T23263] blktrace: Concurrent blktraces are not allowed on loop2 [ 1248.536320][T23301] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3812'. [ 1249.395221][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 1249.402064][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 1250.008616][T10452] block nbd19: Receive control failed (result -32) [ 1250.394314][T23346] FAULT_INJECTION: forcing a failure. [ 1250.394314][T23346] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1250.408612][T23346] CPU: 1 UID: 0 PID: 23346 Comm: syz.2.3824 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1250.408655][T23346] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1250.408671][T23346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1250.408687][T23346] Call Trace: [ 1250.408697][T23346] [ 1250.408707][T23346] dump_stack_lvl+0x16c/0x1f0 [ 1250.408749][T23346] should_fail_ex+0x512/0x640 [ 1250.408781][T23346] should_fail_alloc_page+0xe7/0x130 [ 1250.408824][T23346] prepare_alloc_pages+0x401/0x670 [ 1250.408864][T23346] ? rcu_is_watching+0x12/0xc0 [ 1250.408902][T23346] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 1250.408940][T23346] ? __pfx_stack_trace_save+0x10/0x10 [ 1250.408984][T23346] ? __lock_acquire+0x436/0x2890 [ 1250.409008][T23346] ? __lock_acquire+0x436/0x2890 [ 1250.409032][T23346] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1250.409063][T23346] ? relay_open+0x653/0xad0 [ 1250.409105][T23346] ? rcu_read_unlock+0x17/0x60 [ 1250.409126][T23346] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1250.409169][T23346] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1250.409208][T23346] ? policy_nodemask+0xea/0x4e0 [ 1250.409249][T23346] alloc_pages_mpol+0x1fb/0x550 [ 1250.409288][T23346] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1250.409325][T23346] ? trace_kmalloc+0x2b/0xb0 [ 1250.409381][T23346] ? trace_kmalloc+0x2b/0xb0 [ 1250.409416][T23346] ? __kmalloc_noprof.cold+0x5d/0x62 [ 1250.409453][T23346] ? relay_open_buf.part.0+0x194/0xc40 [ 1250.409489][T23346] alloc_pages_noprof+0x131/0x390 [ 1250.409550][T23346] relay_open_buf.part.0+0x262/0xc40 [ 1250.409593][T23346] relay_open+0x653/0xad0 [ 1250.409625][T23346] ? debugfs_create_file_full+0x41/0x60 [ 1250.409654][T23346] blk_trace_setup_prepare+0x38e/0x700 [ 1250.409694][T23346] blk_trace_setup+0x1c5/0x3b0 [ 1250.409727][T23346] ? __pfx_blk_trace_setup+0x10/0x10 [ 1250.409758][T23346] ? vsnprintf+0x331/0x11e0 [ 1250.409797][T23346] ? __pfx_vsnprintf+0x10/0x10 [ 1250.409847][T23346] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1250.409887][T23346] ? do_vfs_ioctl+0x128/0x14f0 [ 1250.409922][T23346] blk_trace_ioctl+0x2ce/0x300 [ 1250.409955][T23346] ? __pfx_blk_trace_ioctl+0x10/0x10 [ 1250.409991][T23346] ? find_held_lock+0x2b/0x80 [ 1250.410023][T23346] ? hook_file_ioctl_common+0x144/0x410 [ 1250.410057][T23346] blkdev_ioctl+0x1fa/0x6e0 [ 1250.410095][T23346] ? __pfx_blkdev_ioctl+0x10/0x10 [ 1250.410130][T23346] ? __pfx_blkdev_ioctl+0x10/0x10 [ 1250.410161][T23346] __x64_sys_ioctl+0x18e/0x210 [ 1250.410194][T23346] do_syscall_64+0xcd/0xf80 [ 1250.410234][T23346] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1250.410260][T23346] RIP: 0033:0x7f4d4ef8f7c9 [ 1250.410280][T23346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1250.410306][T23346] RSP: 002b:00007f4d4fe81038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1250.410337][T23346] RAX: ffffffffffffffda RBX: 00007f4d4f1e6180 RCX: 00007f4d4ef8f7c9 [ 1250.410353][T23346] RDX: 0000200000000240 RSI: 00000000c0481273 RDI: 0000000000000009 [ 1250.410369][T23346] RBP: 00007f4d4f013f91 R08: 0000000000000000 R09: 0000000000000000 [ 1250.410384][T23346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1250.410399][T23346] R13: 00007f4d4f1e6218 R14: 00007f4d4f1e6180 R15: 00007ffef5e3b858 [ 1250.410431][T23346] [ 1252.225396][T23361] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1252.254401][T23361] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1252.306320][T23361] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1252.564640][T23382] netlink: 280 bytes leftover after parsing attributes in process `syz.3.3834'. [ 1254.104902][T10452] Bluetooth: hci0: command 0x0c1a tx timeout [ 1254.264977][T10452] Bluetooth: hci2: command 0x0c1a tx timeout [ 1254.344879][T10452] Bluetooth: hci1: command 0x0c1a tx timeout [ 1254.634517][ T30] audit: type=1804 audit(2108270486.609:26): pid=23413 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3842" name="file0" dev="tmpfs" ino=1864 res=1 errno=0 [ 1254.706359][T23419] random: crng reseeded on system resumption [ 1255.131358][T23423] netlink: 186 bytes leftover after parsing attributes in process `syz.0.3844'. [ 1261.497633][T23553] FAULT_INJECTION: forcing a failure. [ 1261.497633][T23553] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1261.511455][T23553] CPU: 1 UID: 0 PID: 23553 Comm: syz.2.3877 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1261.511513][T23553] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1261.511528][T23553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1261.511549][T23553] Call Trace: [ 1261.511561][T23553] [ 1261.511574][T23553] dump_stack_lvl+0x16c/0x1f0 [ 1261.511633][T23553] should_fail_ex+0x512/0x640 [ 1261.511678][T23553] should_fail_alloc_page+0xe7/0x130 [ 1261.511736][T23553] prepare_alloc_pages+0x401/0x670 [ 1261.511799][T23553] ? rcu_is_watching+0x12/0xc0 [ 1261.511853][T23553] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 1261.511901][T23553] ? __pfx_stack_trace_save+0x10/0x10 [ 1261.511961][T23553] ? __lock_acquire+0x436/0x2890 [ 1261.511995][T23553] ? __lock_acquire+0x436/0x2890 [ 1261.512029][T23553] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1261.512073][T23553] ? relay_open+0x653/0xad0 [ 1261.512132][T23553] ? rcu_read_unlock+0x17/0x60 [ 1261.512162][T23553] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1261.512221][T23553] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1261.512275][T23553] ? policy_nodemask+0xea/0x4e0 [ 1261.512330][T23553] alloc_pages_mpol+0x1fb/0x550 [ 1261.512382][T23553] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1261.512428][T23553] ? trace_kmalloc+0x2b/0xb0 [ 1261.512476][T23553] ? trace_kmalloc+0x2b/0xb0 [ 1261.512521][T23553] ? __kmalloc_noprof.cold+0x5d/0x62 [ 1261.512568][T23553] ? relay_open_buf.part.0+0x194/0xc40 [ 1261.512614][T23553] alloc_pages_noprof+0x131/0x390 [ 1261.512663][T23553] relay_open_buf.part.0+0x262/0xc40 [ 1261.512715][T23553] relay_open+0x653/0xad0 [ 1261.512756][T23553] ? debugfs_create_file_full+0x41/0x60 [ 1261.512805][T23553] blk_trace_setup_prepare+0x38e/0x700 [ 1261.512850][T23553] blk_trace_setup+0x1c5/0x3b0 [ 1261.512895][T23553] ? __pfx_blk_trace_setup+0x10/0x10 [ 1261.512934][T23553] ? vsnprintf+0x331/0x11e0 [ 1261.512985][T23553] ? __pfx_vsnprintf+0x10/0x10 [ 1261.513048][T23553] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1261.513099][T23553] ? do_vfs_ioctl+0x128/0x14f0 [ 1261.513144][T23553] blk_trace_ioctl+0x2ce/0x300 [ 1261.513185][T23553] ? __pfx_blk_trace_ioctl+0x10/0x10 [ 1261.513230][T23553] ? find_held_lock+0x2b/0x80 [ 1261.513272][T23553] ? hook_file_ioctl_common+0x144/0x410 [ 1261.513315][T23553] blkdev_ioctl+0x1fa/0x6e0 [ 1261.513352][T23553] ? __pfx_blkdev_ioctl+0x10/0x10 [ 1261.513396][T23553] ? __pfx_blkdev_ioctl+0x10/0x10 [ 1261.513437][T23553] __x64_sys_ioctl+0x18e/0x210 [ 1261.513479][T23553] do_syscall_64+0xcd/0xf80 [ 1261.513530][T23553] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1261.513569][T23553] RIP: 0033:0x7f4d4ef8f7c9 [ 1261.513601][T23553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1261.513636][T23553] RSP: 002b:00007f4d4fe81038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1261.513667][T23553] RAX: ffffffffffffffda RBX: 00007f4d4f1e6180 RCX: 00007f4d4ef8f7c9 [ 1261.513694][T23553] RDX: 0000200000000240 RSI: 00000000c0481273 RDI: 0000000000000009 [ 1261.513715][T23553] RBP: 00007f4d4f013f91 R08: 0000000000000000 R09: 0000000000000000 [ 1261.513741][T23553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1261.513761][T23553] R13: 00007f4d4f1e6218 R14: 00007f4d4f1e6180 R15: 00007ffef5e3b858 [ 1261.513858][T23553] [ 1264.375759][T23583] random: crng reseeded on system resumption [ 1271.817492][T23689] Invalid ELF header magic: != ELF [ 1273.044198][T23701] __vm_enough_memory: pid: 23701, comm: syz.3.3918, bytes: 4398046511104 not enough memory for the allocation [ 1273.519950][T23715] netlink: 'syz.0.3923': attribute type 5 has an invalid length. [ 1273.971887][T23727] vivid-007: ================= START STATUS ================= [ 1274.004624][T23727] vivid-007: Generate PTS: true [ 1274.017211][T23727] vivid-007: Generate SCR: true [ 1274.038626][T23727] tpg source WxH: 320x240 (Y'CbCr) [ 1274.062858][T23727] tpg field: 1 [ 1274.072084][T23727] tpg crop: (0,0)/320x240 [ 1274.093383][T23727] tpg compose: (0,0)/320x240 [ 1274.105075][T23727] tpg colorspace: 8 [ 1274.118721][T23727] tpg transfer function: 0/0 [ 1274.130114][T23727] tpg Y'CbCr encoding: 0/0 [ 1274.138543][T23727] tpg quantization: 0/0 [ 1274.145160][T23727] tpg RGB range: 0/2 [ 1274.149204][T23727] vivid-007: ================== END STATUS ================== [ 1284.758931][T23910] netlink: 'syz.2.3971': attribute type 5 has an invalid length. [ 1285.069923][T23910] zswap: compressor not available [ 1287.315134][T23952] random: crng reseeded on system resumption [ 1289.046173][T23976] FAULT_INJECTION: forcing a failure. [ 1289.046173][T23976] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1289.125175][T23976] CPU: 1 UID: 0 PID: 23976 Comm: syz.2.3986 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1289.125233][T23976] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1289.125247][T23976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1289.125273][T23976] Call Trace: [ 1289.125286][T23976] [ 1289.125299][T23976] dump_stack_lvl+0x16c/0x1f0 [ 1289.125372][T23976] should_fail_ex+0x512/0x640 [ 1289.125418][T23976] should_fail_alloc_page+0xe7/0x130 [ 1289.125484][T23976] prepare_alloc_pages+0x401/0x670 [ 1289.125538][T23976] ? rcu_is_watching+0x12/0xc0 [ 1289.125592][T23976] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 1289.125639][T23976] ? __pfx_stack_trace_save+0x10/0x10 [ 1289.125702][T23976] ? __lock_acquire+0x436/0x2890 [ 1289.125737][T23976] ? __lock_acquire+0x436/0x2890 [ 1289.125772][T23976] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1289.125812][T23976] ? relay_open+0x653/0xad0 [ 1289.125870][T23976] ? rcu_read_unlock+0x17/0x60 [ 1289.125899][T23976] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1289.125957][T23976] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1289.126012][T23976] ? policy_nodemask+0xea/0x4e0 [ 1289.126067][T23976] alloc_pages_mpol+0x1fb/0x550 [ 1289.126121][T23976] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1289.126172][T23976] ? trace_kmalloc+0x2b/0xb0 [ 1289.126225][T23976] ? trace_kmalloc+0x2b/0xb0 [ 1289.126272][T23976] ? __kmalloc_noprof.cold+0x5d/0x62 [ 1289.126323][T23976] ? relay_open_buf.part.0+0x194/0xc40 [ 1289.126401][T23976] alloc_pages_noprof+0x131/0x390 [ 1289.126470][T23976] relay_open_buf.part.0+0x262/0xc40 [ 1289.126538][T23976] relay_open+0x653/0xad0 [ 1289.126584][T23976] ? debugfs_create_file_full+0x41/0x60 [ 1289.126622][T23976] blk_trace_setup_prepare+0x38e/0x700 [ 1289.126669][T23976] blk_trace_setup+0x1c5/0x3b0 [ 1289.126717][T23976] ? __pfx_blk_trace_setup+0x10/0x10 [ 1289.126759][T23976] ? vsnprintf+0x331/0x11e0 [ 1289.126815][T23976] ? __pfx_vsnprintf+0x10/0x10 [ 1289.126892][T23976] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1289.126946][T23976] ? do_vfs_ioctl+0x128/0x14f0 [ 1289.126995][T23976] blk_trace_ioctl+0x2ce/0x300 [ 1289.127040][T23976] ? __pfx_blk_trace_ioctl+0x10/0x10 [ 1289.127103][T23976] ? find_held_lock+0x2b/0x80 [ 1289.127148][T23976] ? hook_file_ioctl_common+0x144/0x410 [ 1289.127194][T23976] blkdev_ioctl+0x1fa/0x6e0 [ 1289.127238][T23976] ? __pfx_blkdev_ioctl+0x10/0x10 [ 1289.127287][T23976] ? __pfx_blkdev_ioctl+0x10/0x10 [ 1289.127336][T23976] __x64_sys_ioctl+0x18e/0x210 [ 1289.127383][T23976] do_syscall_64+0xcd/0xf80 [ 1289.127447][T23976] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1289.127494][T23976] RIP: 0033:0x7f4d4ef8f7c9 [ 1289.127534][T23976] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1289.127569][T23976] RSP: 002b:00007f4d4fe81038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1289.127602][T23976] RAX: ffffffffffffffda RBX: 00007f4d4f1e6180 RCX: 00007f4d4ef8f7c9 [ 1289.127625][T23976] RDX: 0000200000000240 RSI: 00000000c0481273 RDI: 0000000000000009 [ 1289.127647][T23976] RBP: 00007f4d4f013f91 R08: 0000000000000000 R09: 0000000000000000 [ 1289.127667][T23976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1289.127687][T23976] R13: 00007f4d4f1e6218 R14: 00007f4d4f1e6180 R15: 00007ffef5e3b858 [ 1289.127730][T23976] [ 1293.050780][T24033] netlink: 74 bytes leftover after parsing attributes in process `syz.1.4003'. [ 1294.491554][T24071] vivid-007: ================= START STATUS ================= [ 1294.502558][T24071] vivid-007: Generate PTS: true [ 1294.517067][T24071] vivid-007: Generate SCR: true [ 1294.530346][T24071] tpg source WxH: 320x240 (Y'CbCr) [ 1294.554989][T24071] tpg field: 1 [ 1294.562562][T24071] tpg crop: (0,0)/320x240 [ 1294.573992][T24071] tpg compose: (0,0)/320x240 [ 1294.594629][T24071] tpg colorspace: 8 [ 1294.631709][T24071] tpg transfer function: 0/0 [ 1294.673652][T24071] tpg Y'CbCr encoding: 0/0 [ 1294.694191][T24071] tpg quantization: 0/0 [ 1294.704322][T24071] tpg RGB range: 0/2 [ 1294.717308][T24071] vivid-007: ================== END STATUS ================== [ 1297.222134][ T30] audit: type=1804 audit(1843104560.780:27): pid=24117 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.4022" name="/newroot/379/file0" dev="tmpfs" ino=2026 res=1 errno=0 [ 1302.108287][T24230] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4049'. [ 1309.386202][T24329] vivid-007: ================= START STATUS ================= [ 1309.424645][T24329] vivid-007: Generate PTS: true [ 1309.430204][T24329] vivid-007: Generate SCR: true [ 1309.444862][T24329] tpg source WxH: 320x240 (Y'CbCr) [ 1309.470917][T24329] tpg field: 1 [ 1309.474370][T24329] tpg crop: (0,0)/320x240 [ 1309.497719][T24329] tpg compose: (0,0)/320x240 [ 1309.507476][T24329] tpg colorspace: 8 [ 1309.511344][T24329] tpg transfer function: 0/0 [ 1309.538119][T24329] tpg Y'CbCr encoding: 0/0 [ 1309.542618][T24329] tpg quantization: 0/0 [ 1309.574907][T24329] tpg RGB range: 0/2 [ 1309.578980][T24329] vivid-007: ================== END STATUS ================== [ 1310.857362][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 1310.864012][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 1316.585836][T24439] netlink: 'syz.0.4094': attribute type 3 has an invalid length. [ 1316.692235][T24439] netlink: 146 bytes leftover after parsing attributes in process `syz.0.4094'. [ 1319.910129][T22815] smpboot: CPU 1 is now offline [ 1324.133947][T24548] FAULT_INJECTION: forcing a failure. [ 1324.133947][T24548] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1324.253575][T24548] CPU: 0 UID: 0 PID: 24548 Comm: syz.2.4121 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1324.253618][T24548] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1324.253628][T24548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1324.253650][T24548] Call Trace: [ 1324.253658][T24548] [ 1324.253668][T24548] dump_stack_lvl+0x16c/0x1f0 [ 1324.253712][T24548] should_fail_ex+0x512/0x640 [ 1324.253748][T24548] should_fail_alloc_page+0xe7/0x130 [ 1324.253789][T24548] prepare_alloc_pages+0x401/0x670 [ 1324.253829][T24548] ? rcu_is_watching+0x12/0xc0 [ 1324.253867][T24548] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 1324.253902][T24548] ? __pfx_stack_trace_save+0x10/0x10 [ 1324.253945][T24548] ? __lock_acquire+0x436/0x2890 [ 1324.253968][T24548] ? __lock_acquire+0x436/0x2890 [ 1324.253992][T24548] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1324.254023][T24548] ? relay_open+0x653/0xad0 [ 1324.254064][T24548] ? rcu_read_unlock+0x17/0x60 [ 1324.254086][T24548] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1324.254128][T24548] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1324.254168][T24548] ? policy_nodemask+0xea/0x4e0 [ 1324.254208][T24548] alloc_pages_mpol+0x1fb/0x550 [ 1324.254248][T24548] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1324.254284][T24548] ? trace_kmalloc+0x2b/0xb0 [ 1324.254321][T24548] ? trace_kmalloc+0x2b/0xb0 [ 1324.254357][T24548] ? __kmalloc_noprof.cold+0x5d/0x62 [ 1324.254394][T24548] ? relay_open_buf.part.0+0x194/0xc40 [ 1324.254429][T24548] alloc_pages_noprof+0x131/0x390 [ 1324.254469][T24548] relay_open_buf.part.0+0x262/0xc40 [ 1324.254511][T24548] relay_open+0x653/0xad0 [ 1324.254543][T24548] ? debugfs_create_file_full+0x41/0x60 [ 1324.254571][T24548] blk_trace_setup_prepare+0x38e/0x700 [ 1324.254605][T24548] blk_trace_setup+0x1c5/0x3b0 [ 1324.254644][T24548] ? __pfx_blk_trace_setup+0x10/0x10 [ 1324.254674][T24548] ? vsnprintf+0x331/0x11e0 [ 1324.254715][T24548] ? __pfx_vsnprintf+0x10/0x10 [ 1324.254765][T24548] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1324.254805][T24548] ? do_vfs_ioctl+0x128/0x14f0 [ 1324.254840][T24548] blk_trace_ioctl+0x2ce/0x300 [ 1324.254871][T24548] ? __pfx_blk_trace_ioctl+0x10/0x10 [ 1324.254907][T24548] ? find_held_lock+0x2b/0x80 [ 1324.254939][T24548] ? hook_file_ioctl_common+0x144/0x410 [ 1324.254973][T24548] blkdev_ioctl+0x1fa/0x6e0 [ 1324.255003][T24548] ? __pfx_blkdev_ioctl+0x10/0x10 [ 1324.255037][T24548] ? __pfx_blkdev_ioctl+0x10/0x10 [ 1324.255069][T24548] __x64_sys_ioctl+0x18e/0x210 [ 1324.255102][T24548] do_syscall_64+0xcd/0xf80 [ 1324.255141][T24548] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1324.255167][T24548] RIP: 0033:0x7f4d4ef8f7c9 [ 1324.255187][T24548] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1324.255211][T24548] RSP: 002b:00007f4d4fe81038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1324.255235][T24548] RAX: ffffffffffffffda RBX: 00007f4d4f1e6180 RCX: 00007f4d4ef8f7c9 [ 1324.255251][T24548] RDX: 0000200000000240 RSI: 00000000c0481273 RDI: 0000000000000009 [ 1324.255267][T24548] RBP: 00007f4d4f013f91 R08: 0000000000000000 R09: 0000000000000000 [ 1324.255283][T24548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1324.255298][T24548] R13: 00007f4d4f1e6218 R14: 00007f4d4f1e6180 R15: 00007ffef5e3b858 [ 1324.255330][T24548] [ 1326.580146][T24546] ------------[ cut here ]------------ [ 1326.586599][T24546] WARNING: block/blk-wbt.c:741 at wbt_init_enable_default+0x4e/0x60, CPU#0: syz.2.4121/24546 [ 1326.597068][T24546] Modules linked in: [ 1326.601581][T24546] CPU: 0 UID: 0 PID: 24546 Comm: syz.2.4121 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1326.612641][T24546] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1326.617889][T24546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1326.628735][T24546] RIP: 0010:wbt_init_enable_default+0x4e/0x60 [ 1326.635145][T24546] Code: 07 5b 5d e9 b4 8c 22 fd e8 af 8c 22 fd 48 89 ef e8 77 fa ff ff 31 ff 89 c3 89 c6 e8 3c 87 22 fd 85 db 74 dd e8 93 8c 22 fd 90 <0f> 0b 90 eb d2 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 90 90 90 90 [ 1326.656335][T24546] RSP: 0018:ffffc9000459fb88 EFLAGS: 00010287 [ 1326.662497][T24546] RAX: 000000000000ee18 RBX: 00000000fffffff4 RCX: ffffc9000d14b000 [ 1326.671510][T24546] RDX: 0000000000080000 RSI: ffffffff849bcc5d RDI: 0000000000000005 [ 1326.679677][T24546] RBP: ffff888040e38000 R08: 0000000000000005 R09: 0000000000000000 [ 1326.687775][T24546] R10: 00000000fffffff4 R11: ffffffff81000130 R12: ffff888028963930 [ 1326.695878][T24546] R13: ffff888040e38390 R14: ffff888028963940 R15: ffff888040e38090 [ 1326.703907][T24546] FS: 00007f4d4fea26c0(0000) GS:ffff8881248fc000(0000) knlGS:0000000000000000 [ 1326.713183][T24546] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1326.719931][T24546] CR2: 0000001b30905ff8 CR3: 000000001e748000 CR4: 00000000003526f0 [ 1326.728143][T24546] Call Trace: [ 1326.731886][T24546] [ 1326.735030][T24546] blk_register_queue+0x39e/0x4e0 [ 1326.740125][T24546] __add_disk+0x74a/0xf00 [ 1326.744497][T24546] add_disk_fwnode+0x13f/0x5d0 [ 1326.749428][T24546] loop_add+0x903/0xb70 [ 1326.753653][T24546] ? __pfx_loop_add+0x10/0x10 [ 1326.758909][T24546] ? find_held_lock+0x2b/0x80 [ 1326.763687][T24546] loop_control_ioctl+0x13e/0x640 [ 1326.769106][T24546] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1326.774699][T24546] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1326.780353][T24546] __x64_sys_ioctl+0x18e/0x210 [ 1326.785200][T24546] do_syscall_64+0xcd/0xf80 [ 1326.789761][T24546] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1326.795761][T24546] RIP: 0033:0x7f4d4ef8f7c9 [ 1326.800199][T24546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1326.820069][T24546] RSP: 002b:00007f4d4fea2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1326.828714][T24546] RAX: ffffffffffffffda RBX: 00007f4d4f1e6090 RCX: 00007f4d4ef8f7c9 [ 1326.837249][T24546] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 1326.845477][T24546] RBP: 00007f4d4f013f91 R08: 0000000000000000 R09: 0000000000000000 [ 1326.853530][T24546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1326.862224][T24546] R13: 00007f4d4f1e6128 R14: 00007f4d4f1e6090 R15: 00007ffef5e3b858 [ 1326.870710][T24546] [ 1326.873801][T24546] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1326.881135][T24546] CPU: 0 UID: 0 PID: 24546 Comm: syz.2.4121 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1326.892109][T24546] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1326.897320][T24546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1326.907486][T24546] Call Trace: [ 1326.910788][T24546] [ 1326.913742][T24546] dump_stack_lvl+0x3d/0x1f0 [ 1326.918379][T24546] vpanic+0x640/0x6f0 [ 1326.922514][T24546] ? wbt_init_enable_default+0x4e/0x60 [ 1326.928010][T24546] panic+0xca/0xd0 [ 1326.931760][T24546] ? __pfx_panic+0x10/0x10 [ 1326.936209][T24546] check_panic_on_warn+0xab/0xb0 [ 1326.941306][T24546] __warn+0x108/0x3c0 [ 1326.945314][T24546] __report_bug+0x2a0/0x520 [ 1326.949853][T24546] ? wbt_init_enable_default+0x4e/0x60 [ 1326.955334][T24546] ? __pfx___report_bug+0x10/0x10 [ 1326.960400][T24546] ? wbt_init_enable_default+0x4e/0x60 [ 1326.965887][T24546] report_bug+0xb2/0x220 [ 1326.970151][T24546] ? wbt_init_enable_default+0x4e/0x60 [ 1326.975630][T24546] handle_bug+0x127/0x260 [ 1326.979975][T24546] exc_invalid_op+0x17/0x50 [ 1326.984495][T24546] asm_exc_invalid_op+0x1a/0x20 [ 1326.989363][T24546] RIP: 0010:wbt_init_enable_default+0x4e/0x60 [ 1326.995480][T24546] Code: 07 5b 5d e9 b4 8c 22 fd e8 af 8c 22 fd 48 89 ef e8 77 fa ff ff 31 ff 89 c3 89 c6 e8 3c 87 22 fd 85 db 74 dd e8 93 8c 22 fd 90 <0f> 0b 90 eb d2 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 90 90 90 90 [ 1327.015208][T24546] RSP: 0018:ffffc9000459fb88 EFLAGS: 00010287 [ 1327.021299][T24546] RAX: 000000000000ee18 RBX: 00000000fffffff4 RCX: ffffc9000d14b000 [ 1327.029282][T24546] RDX: 0000000000080000 RSI: ffffffff849bcc5d RDI: 0000000000000005 [ 1327.037270][T24546] RBP: ffff888040e38000 R08: 0000000000000005 R09: 0000000000000000 [ 1327.045271][T24546] R10: 00000000fffffff4 R11: ffffffff81000130 R12: ffff888028963930 [ 1327.053278][T24546] R13: ffff888040e38390 R14: ffff888028963940 R15: ffff888040e38090 [ 1327.061289][T24546] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1327.067404][T24546] ? wbt_init_enable_default+0x4d/0x60 [ 1327.072934][T24546] ? wbt_init_enable_default+0x4d/0x60 [ 1327.078477][T24546] blk_register_queue+0x39e/0x4e0 [ 1327.083793][T24546] __add_disk+0x74a/0xf00 [ 1327.088179][T24546] add_disk_fwnode+0x13f/0x5d0 [ 1327.092987][T24546] loop_add+0x903/0xb70 [ 1327.097186][T24546] ? __pfx_loop_add+0x10/0x10 [ 1327.101920][T24546] ? find_held_lock+0x2b/0x80 [ 1327.106631][T24546] loop_control_ioctl+0x13e/0x640 [ 1327.111696][T24546] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1327.117279][T24546] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1327.123317][T24546] __x64_sys_ioctl+0x18e/0x210 [ 1327.128297][T24546] do_syscall_64+0xcd/0xf80 [ 1327.132855][T24546] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1327.138775][T24546] RIP: 0033:0x7f4d4ef8f7c9 [ 1327.143206][T24546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1327.162849][T24546] RSP: 002b:00007f4d4fea2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1327.171283][T24546] RAX: ffffffffffffffda RBX: 00007f4d4f1e6090 RCX: 00007f4d4ef8f7c9 [ 1327.179269][T24546] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 1327.187254][T24546] RBP: 00007f4d4f013f91 R08: 0000000000000000 R09: 0000000000000000 [ 1327.195234][T24546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1327.203213][T24546] R13: 00007f4d4f1e6128 R14: 00007f4d4f1e6090 R15: 00007ffef5e3b858 [ 1327.211248][T24546] [ 1327.214345][T24546] Kernel Offset: disabled [ 1327.218676][T24546] Rebooting in 86400 seconds..