last executing test programs: 7.963325076s ago: executing program 3 (id=3662): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) clone$auto(0x7, 0x80000003, 0x0, 0x0, 0x1) madvise$auto(0x300, 0x2003f0, 0x15) 5.363975215s ago: executing program 3 (id=3670): getcwd$auto(0x0, 0x7) sendmsg$auto_SMC_NETLINK_REMOVE_UEID(0xffffffffffffffff, 0x0, 0x20000000) socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty51\x00', 0x80, 0x0) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0xf3, 0x4, 0x8000000000000000, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyp6\x00', 0xa2502, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) read$auto(r0, 0x0, 0x6) ioctl$auto_TIOCVHANGUP2(r0, 0x5437, 0x0) sendmsg$auto_IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000003b40)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x400c040}, 0x10000040) semctl$auto_GETVAL(0x2, 0x1, 0xc, 0x0) io_uring_setup$auto(0x6, 0x0) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, 0x0, 0x2400c880) 4.240637919s ago: executing program 1 (id=3675): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) mmap$auto(0x0, 0x5c, 0xdf, 0xeb1, 0x401, 0x100000000008000) close_range$auto(0x2, 0xffffffffffffffff, 0x4) socket(0x2, 0x1, 0x106) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0) read$auto(r1, 0x0, 0x9) write$auto(0x3, 0x0, 0xfdef) write$auto(r0, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xd8\x9c\xf7?:\x1a\xc62\x911e\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xff\x7f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\x87N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00', 0xb) 4.2053383s ago: executing program 0 (id=3676): r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec4\x00', 0x101901, 0x0) ioctl$auto_CEC_TRANSMIT(r0, 0xc0386105, 0x0) 4.030856535s ago: executing program 0 (id=3677): openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(0xca, &(0x7f0000000140)='\x04\x14\xa8\x1bk|d\v\x00\x00@\x00\x81\x00\x12\x00\xf6\xf5\x00\xdf\xff\x00', 0x13) 3.770833115s ago: executing program 1 (id=3678): write$auto(0xca, &(0x7f00000002c0)='\x04>2\x1e!\xe2\x00\x94\xf2\xa2\x00\x00\x8d\xa9p\xcc\xccV\xf9ozi\xb2:\x19\x92r\xcc9\x99f\xc5\xed\x84fe\x8a\x8c\xd3*\xfe\x1dE\xa1W8\x03\xcb\tSK\xb4\x893\xf3Q\x7f\xd1|\xefp\xb1\xb3\xcer8\b=\xa4y\xd4\x88\xbc\xe0\xd1\x03\x108a\x90KG,\xf8\v\x88\xe2+\xcb\xf2v\x8bL\xa6\xaa}\x1b\xa5\xd8\x98\xc9\\f\xccT\xa1\x05\x14\x84\xbb\aF,\xc8\xc7u\x93\xe8?\x92\t\xa9`\xff\x93l\x93\xac\n\xdd\xa4\n\x8e\xec\x14\x02|\xf7\xc4\xa0\x06h\xc0\x8f\xf3g6\xb8\x1a\x18\xf2\x93\t\xe8ips\xa7\x9a\x1cFPi\x13\x89DRSO\x97\xb1\xc3\xb8Q\xa2\xb2\xa8\xc3\xd3\xf9\xd4Y\x8d\x8d\xad\x8f[\xbe\xe5\xf1\x9f\x01s\x8eg\x05\xe8\xf9\x8f\xa6g\v', 0x80) r0 = socket(0x1e, 0x4, 0x0) setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14) fsconfig$auto_HIDEPID_INVISIBLE(r0, 0x5, &(0x7f0000000000)='\x04>2\x1e!\xe2\x00\x94\xf2\xa2\x00\x00\x8d\xa9p\xcc\xccV\xf9ozi\xb2:\x19\x92r\xcc9\x99f\xc5\xed\x84fe\x8a\x8c\xd3*\xfe\x1dE\xa1W8\x03\xcb\tSK\xb4\x893\xf3Q\x7f\xd1|\xefp\xb1\xb3\xcer8\b=\xa4y\xd4\x88\xbc\xe0\xd1\x03\x108a\x90KG,\xf8\v\x88\xe2+\xcb\xf2v\x8bL\xa6\xaa}\x1b\xa5\xd8\x98\xc9\\f\xccT\xa1\x05\x14\x84\xbb\aF,\xc8\xc7u\x93\xe8?\x92\t\xa9`\xff\x93l\x93\xac\n\xdd\xa4\n\x8e\xec\x14\x02|\xf7\xc4\xa0\x06h\xc0\x8f\xf3g6\xb8\x1a\x18\xf2\x93\t\xe8ips\xa7\x9a\x1cFPi\x13\x89DRSO\x97\xb1\xc3\xb8Q\xa2\xb2\xa8\xc3\xd3\xf9\xd4Y\x8d\x8d\xad\x8f[\xbe\xe5\xf1\x9f\x01s\x8eg\x05\xe8\xf9\x8f\xa6g\v', &(0x7f0000000100)="f7556d66869719e8c0c05f96294618426ad8131bc159af17675c5aa7d7019a88219bf1f9f2153d9de341f6f523372489670c403791873577bdcef3b1cdbab86453243a0c2c7834d513eb754bf7dd8b88858cc89c19d366431643fd93e4d99d85abdc6bdd5ca1406af41e5fc07031f9169653c6784b6710bf3eca59319d9e031ea6653586d1baae1bce9b18c1d7e3c2739adf22e34298617eb4422991e498d120f1ae35328d042c5638e1d5694ebfd48fd3f08b575ad74f5e6cb08fd21f40a1e17d348275edb77f4016c0325204448ff30d21ce6659041d540ca29dbaa9b4f8d6e5d0f42cbec48ad3f8", 0x2) 3.738866994s ago: executing program 0 (id=3679): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000b40), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_BEARER_DISABLE(r0, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f0000000e80)={0x14, r1, 0x1, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x48000}, 0x4000840) (fail_nth: 2) 3.517642766s ago: executing program 1 (id=3681): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptye9\x00', 0x101e81, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r2 = gettid() kcmp$auto(0x1, r2, 0x1, 0x4, 0x24000) acct$auto(&(0x7f00000000c0)='/dev/ttye9\x00') ioctl$auto_TIOCSWINSZ2(r0, 0x5414, &(0x7f0000000ec0)="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") r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000b40), 0xffffffffffffffff) r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), r1) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r7 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010029bd7073000000001400000008000300", @ANYRES32=r8], 0x24}, 0x1, 0x1400, 0x0, 0xaee2e45ddcc9e3a5}, 0x20040080) r9 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001140), 0xffffffffffffffff) r10 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x24, r9, 0x1, 0x70bd29, 0x25dfdbfb, {0x2, 0x0, 0x14}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r11}, @NL80211_ATTR_WIPHY_FRAG_THRESHOLD={0x8, 0x3f, 0xffffffff}]}, 0x24}, 0x1, 0x1400, 0x0, 0x80}, 0x20000084) r12 = socket$nl_generic(0x10, 0x3, 0x10) r13 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), r12) r14 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r14, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r12, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000480)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r13, @ANYBLOB="010027bd7080ffdbdf25100000000c00018008000100", @ANYRES32=r15, @ANYBLOB='\b\x00\t'], 0x28}, 0x1, 0x0, 0x0, 0x90}, 0x80000) r16 = socket$nl_generic(0x10, 0x3, 0x10) r17 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000001c0), 0xffffffffffffffff) r18 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r18, 0x8933, &(0x7f0000000000)={'macsec0\x00', 0x0}) sendmsg$auto_MACSEC_CMD_UPD_OFFLOAD(r16, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="44010000", @ANYRES16=r17, @ANYBLOB="01002dbd7000fddbdf250a00000008000100", @ANYRES32=r19, @ANYBLOB="280109800c00"], 0x144}, 0x1, 0x0, 0x0, 0x4040085}, 0x0) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r3, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x98, r5, 0x20, 0x70bd27, 0x25dfdbfb, {}, [@ETHTOOL_A_PAUSE_RX={0x5, 0x3, 0x8}, @ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x3}, @ETHTOOL_A_PAUSE_HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r15}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r19}]}, @ETHTOOL_A_PAUSE_RX={0x5, 0x3, 0x1}, @ETHTOOL_A_PAUSE_RX={0x5, 0x3, 0x8}, @ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0xa0}]}, 0x98}, 0x1, 0x0, 0x0, 0x11}, 0x40000) sendmsg$auto_TIPC_NL_BEARER_DISABLE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000003100)={&(0x7f0000000e80)={0x14, r4, 0x1, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x48000}, 0x4000840) 2.991860601s ago: executing program 2 (id=3682): clock_settime$auto(0x0, &(0x7f0000000000)={0x100000000, 0x3b9ac9ff}) mmap$auto(0x0, 0x2020009, 0x3, 0xebe, 0xfffffffffffffffa, 0x8000008000) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/036/001\x00', 0xa901, 0x0) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) ioctl$auto(0x3, 0x2, r0) ioctl$auto_USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000240)={0x5, 0x81, 0x5b, 0x4, &(0x7f0000000000), 0x9, 0xeb90, 0x2, @number_of_packets=0x4, 0x7, 0x476, 0x0}) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) process_vm_readv$auto(0x0, &(0x7f0000000200)={0x0, 0xfff}, 0x0, &(0x7f0000000280)={&(0x7f0000000300)="1138f4bff347ce668eca0a893000d4b6228272771f0708bfd770573ee574f8ebcd04de3df6f402ebde1a4cbee55f9037676ef3c76763da", 0x400000fffffffe}, 0xa, 0x3b9f) close_range$auto(0x2, 0x8, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x0, 0x0) r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) ioctl$auto(r2, 0xc0404d1a, r2) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x9, 0xdf, 0x1000000eb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/miimon\x00', 0x143b42, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) io_uring_setup$auto(0x2, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0) socketpair$auto(0x5b, 0x1, 0x420000, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS2\x00', 0x101f81, 0x0) ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0) ioctl$auto_TIOCVHANGUP2(r3, 0x5437, 0x0) adjtimex$auto(&(0x7f0000000780)={0xf, 0x0, 0x2b8, 0x100000001, 0x6, 0xffffffffffffffff, 0x2, 0x0, 0xe, 0x0, 0x5, {0x2fa}, 0x7fffffffffffffff, 0x4, 0x5, 0x1, 0x0, 0x6, 0x400000000, 0x7, 0x9, 0x5, 0x1}) adjtimex$auto(&(0x7f00000002c0)={0x8c15, 0x0, 0x3, 0x7f, 0xfe4, 0xffffffffffffff16, 0xf6f7, 0x0, 0x800000b, 0xfffffffe, 0x100, {0x10003, 0x4}, 0x8, 0x4, 0x7, 0xffffff62, 0x0, 0x40, 0x1, 0xfffffffffffffffd, 0xfffffffffffffffe, 0x1000000008, 0x10001}) adjtimex$auto(&(0x7f0000000540)={0x72, 0x0, 0xff, 0x800, 0x2, 0xffffffffffffffff, 0xa0c, 0x0, 0x3ffbffffffffff, 0x9536, 0x4007, {0x200, 0x4}, 0x80, 0x80, 0x5, 0x5, 0x0, 0x100000000, 0x21, 0x18d, 0x200, 0xa, 0x2015}) 2.989827535s ago: executing program 3 (id=3683): close_range$auto(0x2, 0x8, 0x0) r0 = socketcall$auto(0x8000, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x60980, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0xae41, r0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto(0x3, 0xae41, r2) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card1/pcm0p/oss\x00', 0x301000, 0x0) write$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000040)="e55614612926ce1f3f8fe255253600c10c450ab7ed344f309f171c17eacaf5e54933f921796351b2f332f7b807f799cc0ed4afb9c858b3c3e23006a5ccca10c4211c661ca71dd0e2fe5cbbfa677c195b29731a8e3a1cce9c47d1946704ae22485a480b91270ce25629bc758e2bfb4b33c283fad0f285778edc39fc3d925f03e45e1772eac426ace919c5afe2245fc47927f16cf9caaf48cae86d23c39db05e01a1c2bf3ff35ec3c229869b6133088b18ead0450b8413a54a747669b34928c51e69dffe761e39f0313defa46629b09eeaf72d9c0ac6e552d5b890bff76ec78917d337d3d4f49a", 0xe6) r4 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000540), 0x20000, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0xc0145401, &(0x7f0000000580)={0x80000006, 0x0, 0xd12b, 0xfffffffd, 0x200a}) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) bpf$auto_BPF_BTF_LOAD(0x12, &(0x7f0000000040)=@bpf_attr_7={@btf_id=0x400, 0x10001}, 0xc) io_uring_setup$auto(0x6, 0x0) write$auto(0xca, &(0x7f0000000000)='\x043\x01\x01\x00\x00\x00\x00 \x00\x96\b\'\x02\xb0\x93l\xeb\x05\xf5\x02\x00\x9d\xed\xf3\xf1\x9c\xeb\xb6,N\x8eQ9|\xd2l\x9f\xca\xac6S\xa2(Q\xcc\x7f\x14Qv\xa4\x12B\x9e\xcc\x00\x03\xdf\x9f\xb9B\xf4\xfa\xf1R\x012\f39\x9e\x8c\xdd\x97\x1fv\xb1\xd7\f\xda|\x85H \x00\xd9<\xe0C9\xb5\x8d\xe5\xf7\xbeV\x9f\x12x7\x12\x02\x00\xe4Ba\x17k\x1e\xfcEoR\xf8\xe5\x85\xc6\xc2\x80\x14\x90\"\xc0\xffZ\x103\x12\xf6a\xb4#\x93E\xd8g\xe9\xc4ij:\xed?\xc6|\xe8\x81', 0x7f) close_range$auto(0x2, 0x8, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/v4l-subdev0\x00', 0x0, 0x0) ioctl$auto(0x3, 0x80885659, 0x38) close_range$auto(0x2, 0x8, 0x0) 2.516984725s ago: executing program 0 (id=3684): timerfd_create$auto_CLOCK_MONOTONIC(0x1, 0x101) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = setfsuid$auto(0xee00) setreuid$auto(r1, 0x0) msgctl$auto_MSG_INFO(0xf89, 0xc, &(0x7f0000000180)={{0x800, 0xee00, 0x0, 0x1, 0x2, 0x58, 0xfe00}, &(0x7f0000000100)=0xb3, &(0x7f0000000140)=0x2, 0x5, 0x7, 0x0, 0x7, 0xfffffffffffffff8, 0x8, 0xb, 0x101, @raw=0x3}) lstat$auto(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000200)={0x1, 0xfffffffffffffffe, 0x7, 0x16d20, r1, r2, 0x0, 0x4, 0x8, 0x3, 0x10000, 0x7, 0x100000000000, 0x6, 0x10, 0x7, 0x6fa}) setsockopt$auto_SO_RCVPRIORITY(0xffffffffffffffff, 0x275, 0x52, &(0x7f0000000040)='}\\\x00', 0x5) ioperm$auto(0x3, 0x1, 0x8) finit_module$auto(r0, 0x0, 0xd) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'wg0\x00', 0x0}) r5 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000001140), 0xffffffffffffffff) sendmsg$auto_WG_CMD_SET_DEVICE(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002800)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010029bd7000fbdbdf250100000008000100", @ANYRES32=r4, @ANYBLOB="94300880"], 0x20}}, 0xc0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r6 = socket(0x2a, 0x2, 0x1) connect$auto(r6, &(0x7f00000000c0)=@qipcrtr={0x2a, 0x1, 0xfffffffe}, 0x55) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x10002}, 0x1) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) close_range$auto(0x2, 0x8, 0x0) r8 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) ioctl$auto_KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$auto(0x3, 0x4048aec9, r7) mmap$auto(0x0, 0x8, 0xdf, 0x29b72, 0x2, 0x8000) mknod$auto(&(0x7f00000002c0)='./file0\x00', 0x1001, 0x3) 2.489274279s ago: executing program 1 (id=3685): openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, 0x0, 0x426a2, 0x0) r0 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/debug/dri/vkms/state\x00', 0xa8201, 0x0) lseek$auto(r0, 0x9, 0x0) mmap$auto(0x0, 0xf569, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS2\x00', 0x3ca01, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Writeback-1/edid_override\x00', 0x40901, 0x0) r1 = mq_open$auto(&(0x7f0000000340)='\x12\xe6D\b\x9e\x00\x80\x8d\f\xb9w-\xbd!\x9eb\xed\xfb\x0f\xe5\x9dZ\xc2\xd1\x01wBV\x91\x8f_\xc0.\x84\xfe\x84\xd1se\x01\x06\x00\xb3\x13_Y&\xa9\x88\xe4\xa2\xb0V\x85\x92<\xb6\xdcT \\\xf2\v\xb1\xe2\xd8\xfa\xd8V\xe5\x00\xfa\xe9!\xc5<\xce\x18=\x06\xdagq\xb5\r\t\xb2\xde\x99\xd50\xbb\x192\x1c4\x86\xc0\xc1-\xd5\x10\xc3\xfc*[8\x89h\xc5\xba\xff\xc8u5f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff) madvise$auto(0x0, 0x2003f2, 0x15) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000040)=ANY=[@ANYRES8, @ANYRES16, @ANYBLOB="df250c0000000000000000"], 0x14}}, 0x24048004) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) r3 = openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, &(0x7f00000013c0)='/proc/self/uid_map\x00', 0x8006, 0x0) write$auto_proc_uid_map_operations_base(r3, 0x0, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)=ANY=[@ANYBLOB="a8000000", @ANYRES16=r2, @ANYBLOB="01002cbd7000fddbdf2502000000810004006e66736600d8efe42d132b72f30c54315aa74a5b8107cf2ddf901f8fc81365e252374483326ace7da356b7a16f5ce613bc0ce3aeb87ed3d22b4a27c3ecc90c70c861befe60a7a9414b446427a001f61379e8caf4519e032a5dda1e1174e2d575772b93fc046cd3a674866b80d91473ece248c03d28f9398a63a785998700000008004300850000000800010002000000"], 0xa8}}, 0x4000) madvise$auto(0x0, 0x200007, 0x19) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x404001, 0x0) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) madvise$auto(0x0, 0xffffffffffff0001, 0x15) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54) unshare$auto(0x22bc) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) bpf$auto(0xfffffffe, &(0x7f00000001c0)=@query={@target_fd, 0x8, 0x3, 0x5, 0xff, @count=0xe35c, 0x0, 0x5, 0x80000000000006, 0xd9, 0xffffffff}, 0x6f2) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000880}, 0x20008000) 1.976687146s ago: executing program 2 (id=3687): write$auto(0xca, &(0x7f0000000140)='\x04\x14\xa8\x1bk|d\v\x00\x00@\x00\x81\x00\x12\x00\xf6\xf5\x00\xdf\xff\x00', 0x13) 1.964610821s ago: executing program 3 (id=3688): socket(0xa, 0x801, 0x106) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x4) r0 = socket(0x10, 0x3, 0x6) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x50) 1.822996644s ago: executing program 2 (id=3689): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket(0x10, 0x3, 0x9) write$auto(r1, 0x0, 0x5) r2 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r0, 0x4b72, r2) 1.625362596s ago: executing program 2 (id=3690): statmount$auto(0x0, &(0x7f0000000180)={0x3, 0x5, 0x9, 0x7352, 0x41, 0x65f, 0x1ffde, 0x7, 0x3, 0x2, 0xb, 0x3, 0x5, 0x101, 0xb4, 0x9, 0x6, 0x7ff, 0x84, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0xb4, 0x4, 0x0, 0x0, 0x0, 0xfffffff9, [0x7, 0x0, 0x68, 0x0, 0x100000000, 0x400000, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x2000000000, 0x0, 0x0, 0x0, 0x9d, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x200000000, 0x1000000000000, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x40003, 0x0, 0x0, 0x0, 0x0, 0x3, 0x800000000000000, 0x7e30e0be]}, 0x1fe, 0xf) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r0 = socket(0xa, 0x1, 0x84) io_uring_setup$auto(0x40000002c55, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x0, 0x5, 0x0) openat$auto_fops_blob_file(0xffffffffffffff9c, &(0x7f0000000140), 0x641, 0x0) io_uring_setup$auto(0x86, 0x0) socket(0xa, 0x1, 0x84) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001280)='/dev/v4l-subdev0\x00', 0x101000, 0x0) ioctl$auto(0x3, 0xc0285628, 0x8) setresuid$auto(0x909b, 0x1, 0x0) r1 = socket(0x28, 0x5, 0x0) bind$auto(r1, &(0x7f0000000080)=@in={0x28}, 0x68) setsockopt$auto(r0, 0x10000000084, 0x7f, 0x0, 0xad4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) fremovexattr$auto(r0, &(0x7f0000000000)=']\x00') socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x24008004) socket(0x2, 0x2, 0x0) bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_4={0x800000000012, 0xffffffffffffffff, 0xc0000001, 0x8}, 0x6f4) socket(0x11, 0x3, 0x80000001) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x9, 0x0, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xcb}) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyt2\x00', 0x101e81, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) 1.615531566s ago: executing program 3 (id=3691): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0x3, 0x200eb2, 0x401, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, r0) ioctl$auto_BTRFS_IOC_SNAP_DESTROY(0xffffffffffffffff, 0x5000940f, &(0x7f0000001200)={@inferred=r0, "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"}) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000440)={'netdevsim0\x00', 0x0}) bpf$auto(0x5, &(0x7f0000000300)=@bpf_attr_3={0x3, 0x4, 0xf, 0x63, 0x400, 0xfffffffd, 0x1, 0x80f0c8, 0x0, "38c1d5cbcb9f6b5e511f0cd8ed068f65", r2, 0x2, 0xffffffffffffffff, 0xe4, 0x2, 0x5, 0x3ad, 0x3, 0x0, 0x3, @attach_prog_fd, 0x6, 0xffff, 0x2, 0x81, 0xfffffffe, 0xffffffffffffffff, 0xffffffffffffffff}, 0x4a) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r3, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) sethostname$auto(0x0, 0x1) futex_waitv$auto(&(0x7f00000004c0)={0x3, 0x1, 0xcb, 0x100}, 0x40, 0x0, &(0x7f0000000500)={0xe2, 0xff}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x6, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002) eventfd$auto(0x0) openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) prctl$auto(0xfffffffa, 0x0, 0x2009, 0x0, 0x0) 1.467105878s ago: executing program 1 (id=3692): r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x2, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r1 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000000), 0x8800, 0x0) ioctl$auto_BTRFS_IOC_DEVICES_READY(r1, 0x90009427, &(0x7f0000001080)={@inferred, "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"}) read$auto(0x3, 0x0, 0xfdef) close_range$auto(0x2, r1, 0x4) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) lseek$auto(0x3, 0xffffffffff800002, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0) ioctl$auto(r2, 0x92106405, r2) r3 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x48180, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f0000000280)={{0x3, 0x1000, 0x1, 0x1, 0x2}, "654c6dbc7a4d30983899a7e1325b6a29ba1e184410ba9f74e82a3fa6c3ccf1bf"}) ioctl$auto_SNDRV_TIMER_IOCTL_PARAMS(r3, 0x40505412, 0x0) write$auto_ftrace_subsystem_filter_fops_trace_events(r0, 0x0, 0x0) prctl$auto(0x9, 0x3, 0x0, 0x6, 0x100000001) r4 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) fallocate$auto(r4, 0x1, 0x820, 0xfffffffffffffffa) ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, &(0x7f0000000180)) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/cifs/smbd_max_receive_size\x00', 0x103742, 0x0) unshare$auto(0x40000080) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) 1.05898089s ago: executing program 3 (id=3693): mmap$auto(0xffffffffffffffff, 0x8, 0x3, 0x800000000000ebd, 0xfffffffffffffffa, 0x8000) mmap$auto(0xfffffffffffffff9, 0x2000a, 0x100000000009f, 0xebe, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/net/nr2/tx_queue_len\x00', 0xa001, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000080), 0x4a00, 0x0) ioctl$auto_RTC_UIE_ON(r0, 0x7003, 0x4) setsockopt$auto(0x3, 0x29, 0x46, 0x0, 0x808) prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x8000000000002, 0x0, 0x10000000, 0x3) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop10\x00', 0x60742, 0x0) write$auto(r1, &(0x7f0000000040)='//\xf2?', 0x80000000) mmap$auto(0x23b, 0x400008, 0xdf, 0x9b72, 0x2, 0x4) madvise$auto(0x0, 0xffffffffffff0001, 0x15) shmdt$auto(0x0) futex_wait$auto(&(0x7f0000000380)="7bca12e8dd1c920f4bc8dacdebfcc1e84ce1836f830f96c3630ddb794e559d5892fceee828c4b1b647e7908f0a0bca5da4cbfcb1b88557441d4beb4bddf03675b5f4", 0xffffffffffffffff, 0x7, 0x2, &(0x7f00000001c0)={0x9, 0x80000000}, 0xf) read$auto(0xffffffffffffffff, 0x0, 0x20) unshare$auto(0x40000080) chdir$auto(&(0x7f0000000340)='./file1\x00') r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x40001, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), 0xffffffffffffffff) waitid$auto_P_PID(0x1, 0x0, 0x0, 0xf, &(0x7f0000000440)={{0x7, 0x24}, {0x929a, 0x1ff}, 0x9, 0x3, 0x4032, 0xfffffffffffffff4, 0x4df, 0x0, 0x8, 0x8fb000, 0x0, 0x100, 0x4, 0x3, 0xd, 0x1}) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r3, 0xc0045516, &(0x7f0000000040)=0x5) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC0\x00', 0x24080, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$auto_RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000180)={0x9, 0x7, 0x8, 0x4, 0x9, 0x100, 0x1ff, 0xfffffffc, 0xfffffffe}) 522.743086ms ago: executing program 0 (id=3694): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x29, 0xa, 0x0) ioctl$auto(r0, 0x89a1, 0x24) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/dummy_hcd.3/usb4/avoid_reset_quirk\x00', 0x1fdb01, 0x0) write$auto(r1, &(0x7f0000000000)='n\x8c', 0x6) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) memfd_create$auto(&(0x7f0000000000)='\x00', 0x8cf) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) openat$auto_sco_debugfs_fops_(0xffffffffffffff9c, 0x0, 0x242, 0x0) r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_TREAD64(r2, 0x400454a4, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NLBL_CIPSOV4_C_ADD(r3, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, 0x0, 0x7b5731b3f16054b0, 0x70bd27, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x0) r4 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/027/001\x00', 0x4a901, 0x0) openat$auto_ima_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f00000000c0), 0x8c02, 0x0) ioctl$auto(r4, 0x5523, r4) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0x0, 0x0) mbind$auto(0xfffffffffffff000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8953, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r5) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r5, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000001300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="05082dbd7000fbdbdf257e0000000800db00ab29dc931f0e02b7745be74fb8e8255f614f85f94bc5ef8facda4b1cb3e135ef23203752a9a06f5adc02fe10fd6059eb5ec860fbb39453d7ba92bd5a73e0e45ce2d585cccf203901d41ed36536bffcadc5fa27dbe72d209b4c922ee03aba35fb65731b21d405c9def0a3765c9b0ff8fbbff63336633bec215ead541e5766cb7e6a546c58ddbc3cbd84697b73ae550f26f7eb", @ANYRES32], 0x1c}, 0x1, 0x0, 0x0, 0x4004044}, 0x8000) r7 = setfsuid$auto(0xee00) setreuid$auto(r7, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000240)={&(0x7f0000001240)={0x1274, r6, 0x800, 0x70bd25, 0x25dfdbfc, {}, [@NL80211_ATTR_EHT_CAPABILITY={0x44, 0x136, "34894352249257bcea477af1e81714915af82bc0d186023da94811a9cc1b1551532297ab26b3788bea35448c77d01fe031fe514a6f22e22baf3665c051a10583"}, @NL80211_ATTR_HE_6GHZ_CAPABILITY={0x48, 0x125, "52254b0f9ed5fa589b2b1b80a1f7b6c3a1b838fdcb98b95486187c2e713e5ce3af8e8fab84be16460c89def6b05291139313bec7a4ff6f1149d20c7669f11f7d68a59aea"}, @NL80211_ATTR_SCHED_SCAN_MULTI={0x4}, @NL80211_ATTR_BSS_DUMP_INCLUDE_USE_DATA={0x4}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x11c7, 0x84, 0x0, 0x1, [@nested={0x1010, 0x7, 0x0, 0x1, [@nested={0x4, 0xef}, @generic="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", @typed={0x8, 0x38, 0x0, 0x0, @uid=r7}]}, @generic="f92f4c58312826fcb328bc85c15902cbc16498796737f1c167d97191442ad9984ba96932239bbee402741c3bbd1c7db3d95dc84bbcef64b5cd767fcf5747483dc87030486b8bdfcb58441a225310a73f9e8137455c6656d2c6da1ede0a17de835e3d09ab04961a6dba237197e9becdb33a3efcd24e62e593d556f9024b3d6e58aab21c7e819246d88c03e0dd6a16588dd2553fe2656a26e08270e59f5028d9b0f87968a29d6b72463b12272d3cab07d4dc397782c765cde2db400e4931ae9fcd1f97fe548b02e5401d1cb092b62b72f58115c7df0e986086549e01eb85915a9bd48844f8366f916c6715463d073f10422e3bb9", @nested={0xbf, 0x151, 0x0, 0x1, [@nested={0x4, 0x70}, @generic="faadcfede3c5468b857bcfec58c9acfb8678029066b5fc7bad632e81a851613c709b6d5bcfa9a6b83332e21cf317dd7ea9a0aeb93e2d173337f87e1db26427a3fe66a56b9ef52546c1f7ceca6b7d47578ae89d4925bf3e7af01deed3365a583a2af5123a9485a25dba7bedf0c71b658f06cfb097b8c48ad8dbc3a371d8e6c7c7061fda93aeeb02103b6199f725a6b43297c179d8abb02a324784f9ff0124bf670d3cc3ce881aa39f1b76d9abede5a13082d3e5b5dee0c4"]}]}, @NL80211_ATTR_CONTROL_PORT_NO_PREAUTH={0x4}]}, 0x1274}, 0x1, 0x0, 0x0, 0x400c1}, 0x4000000) openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy0/netdev:wlan0/rc_rateidx_mcs_mask_5ghz\x00', 0x88000, 0x0) read$auto(r1, &(0x7f0000001200)='\x00', 0x4) 502.763121ms ago: executing program 2 (id=3695): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0) mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000) mmap$auto(0x0, 0x5c, 0xdf, 0xeb1, 0x401, 0x100000000008000) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0) mmap$auto(0x2000, 0x80009, 0xb, 0x8000000008011, r1, 0x0) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x18000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0) read$auto(r2, 0x0, 0x9) write$auto(0x3, 0x0, 0xfdef) write$auto(r0, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xd8\x9c\xf7?:\x1a\xc62\x911e\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xff\x7f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\x87N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00', 0xb) 212.874474ms ago: executing program 1 (id=3696): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0) mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000) mmap$auto(0x0, 0x5c, 0xdf, 0xeb1, 0x401, 0x100000000008000) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0) mmap$auto(0x2000, 0x80009, 0xb, 0x8000000008011, r1, 0x0) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x18000) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0) read$auto(r2, 0x0, 0x9) write$auto(0x3, 0x0, 0xfdef) write$auto(r0, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xd8\x9c\xf7?:\x1a\xc62\x911e\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xff\x7f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\x87N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00', 0xb) 0s ago: executing program 2 (id=3697): write$auto(0xca, 0x0, 0x13) kernel console output (not intermixed with test programs): 2][T20694] [ 1130.530050][T20694] dump_stack_lvl+0x100/0x190 [ 1130.530089][T20694] should_fail_ex.cold+0x5/0xa [ 1130.530116][T20694] should_failslab+0xc2/0x120 [ 1130.530156][T20694] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1130.530179][T20694] ? sc_common_open+0x46/0x200 [ 1130.530206][T20694] ? __pfx___debugfs_file_get+0x10/0x10 [ 1130.530264][T20694] ? find_held_lock+0x2b/0x80 [ 1130.530322][T20694] ? __pfx_stats_fop_open+0x10/0x10 [ 1130.530351][T20694] sc_common_open+0x46/0x200 [ 1130.530379][T20694] full_proxy_open_regular+0x1b6/0x370 [ 1130.530419][T20694] do_dentry_open+0x6d8/0x1660 [ 1130.530450][T20694] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 1130.530493][T20694] vfs_open+0x82/0x3f0 [ 1130.530535][T20694] path_openat+0x208c/0x31a0 [ 1130.530577][T20694] ? __pfx_path_openat+0x10/0x10 [ 1130.530643][T20694] do_file_open+0x20e/0x430 [ 1130.530696][T20694] ? __pfx_do_file_open+0x10/0x10 [ 1130.530750][T20694] ? alloc_fd+0x476/0x790 [ 1130.530783][T20694] ? do_getname+0x191/0x390 [ 1130.530824][T20694] do_sys_openat2+0x10d/0x1e0 [ 1130.530846][T20694] ? __pfx_do_sys_openat2+0x10/0x10 [ 1130.530888][T20694] ? __fget_files+0x21f/0x3d0 [ 1130.530924][T20694] __x64_sys_openat+0x12d/0x210 [ 1130.530947][T20694] ? __pfx___x64_sys_openat+0x10/0x10 [ 1130.530969][T20694] ? xfd_validate_state+0x129/0x190 [ 1130.531038][T20694] do_syscall_64+0x106/0xf80 [ 1130.531088][T20694] ? clear_bhb_loop+0x40/0x90 [ 1130.531119][T20694] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1130.531148][T20694] RIP: 0033:0x7f6f4139bf79 [ 1130.531168][T20694] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1130.531192][T20694] RSP: 002b:00007f6f421d7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1130.531215][T20694] RAX: ffffffffffffffda RBX: 00007f6f41615fa0 RCX: 00007f6f4139bf79 [ 1130.531231][T20694] RDX: 0000000000008382 RSI: 0000200000000640 RDI: ffffffffffffff9c [ 1130.531246][T20694] RBP: 00007f6f414327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1130.531261][T20694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1130.531275][T20694] R13: 00007f6f41616038 R14: 00007f6f41615fa0 R15: 00007ffceb798ba8 [ 1130.531306][T20694] [ 1130.994190][T20700] FAULT_INJECTION: forcing a failure. [ 1130.994190][T20700] name failslab, interval 1, probability 0, space 0, times 0 [ 1131.026607][T20700] CPU: 1 UID: 0 PID: 20700 Comm: syz.0.2724 Not tainted syzkaller #0 PREEMPT(full) [ 1131.026651][T20700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1131.026670][T20700] Call Trace: [ 1131.026680][T20700] [ 1131.026691][T20700] dump_stack_lvl+0x100/0x190 [ 1131.026740][T20700] should_fail_ex.cold+0x5/0xa [ 1131.026772][T20700] should_failslab+0xc2/0x120 [ 1131.026811][T20700] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1131.026844][T20700] ? sk_prot_alloc+0x60/0x2a0 [ 1131.026878][T20700] sk_prot_alloc+0x60/0x2a0 [ 1131.026907][T20700] sk_alloc+0x36/0xe80 [ 1131.026945][T20700] inet_create+0x3a0/0x1060 [ 1131.026978][T20700] ? inet_create+0x94/0x1060 [ 1131.027025][T20700] __sock_create+0x339/0x860 [ 1131.027060][T20700] __sys_socket+0x14d/0x260 [ 1131.027089][T20700] ? __fget_files+0x21f/0x3d0 [ 1131.027124][T20700] ? __pfx___sys_socket+0x10/0x10 [ 1131.027153][T20700] ? xfd_validate_state+0x129/0x190 [ 1131.027196][T20700] __x64_sys_socket+0x72/0xb0 [ 1131.027225][T20700] ? lockdep_hardirqs_on+0x78/0x100 [ 1131.027265][T20700] do_syscall_64+0x106/0xf80 [ 1131.027304][T20700] ? clear_bhb_loop+0x40/0x90 [ 1131.027337][T20700] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1131.027374][T20700] RIP: 0033:0x7fc70399bf79 [ 1131.027397][T20700] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1131.027425][T20700] RSP: 002b:00007fc7047f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 1131.027452][T20700] RAX: ffffffffffffffda RBX: 00007fc703c15fa0 RCX: 00007fc70399bf79 [ 1131.027470][T20700] RDX: 0000000000000106 RSI: 0000000000000801 RDI: 0000000000000002 [ 1131.027487][T20700] RBP: 00007fc703a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1131.027503][T20700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1131.027520][T20700] R13: 00007fc703c16038 R14: 00007fc703c15fa0 R15: 00007ffc59495818 [ 1131.027554][T20700] [ 1131.967250][T18479] Bluetooth: hci4: unexpected event 0x33 length: 124 > 10 [ 1133.037379][T20740] input: f as /devices/virtual/input/input10 [ 1134.550079][T20773] : entered promiscuous mode [ 1134.648346][T20775] block2mtd: illegal erase size [ 1135.171709][T20790] netlink: 'syz.3.2749': attribute type 1 has an invalid length. [ 1135.212772][T20790] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2749'. [ 1135.319901][T20795] FAULT_INJECTION: forcing a failure. [ 1135.319901][T20795] name failslab, interval 1, probability 0, space 0, times 0 [ 1135.386428][T20795] CPU: 0 UID: 0 PID: 20795 Comm: syz.1.2748 Not tainted syzkaller #0 PREEMPT(full) [ 1135.386470][T20795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1135.386489][T20795] Call Trace: [ 1135.386500][T20795] [ 1135.386512][T20795] dump_stack_lvl+0x100/0x190 [ 1135.386561][T20795] should_fail_ex.cold+0x5/0xa [ 1135.386598][T20795] should_failslab+0xc2/0x120 [ 1135.386641][T20795] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1135.386672][T20795] ? seq_create_client1+0x4d/0x640 [ 1135.386737][T20795] ? __pfx_snd_seq_open+0x10/0x10 [ 1135.386784][T20795] seq_create_client1+0x4d/0x640 [ 1135.386835][T20795] ? __pfx_snd_seq_open+0x10/0x10 [ 1135.386884][T20795] snd_seq_open+0x59/0x590 [ 1135.386934][T20795] ? __pfx_snd_seq_open+0x10/0x10 [ 1135.386981][T20795] snd_open+0x22d/0x4c0 [ 1135.387013][T20795] ? __pfx_snd_open+0x10/0x10 [ 1135.387044][T20795] chrdev_open+0x234/0x6a0 [ 1135.387097][T20795] ? __pfx_apparmor_file_open+0x10/0x10 [ 1135.387135][T20795] ? __pfx_chrdev_open+0x10/0x10 [ 1135.387176][T20795] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1135.387223][T20795] do_dentry_open+0x6d8/0x1660 [ 1135.387262][T20795] ? __pfx_chrdev_open+0x10/0x10 [ 1135.387328][T20795] vfs_open+0x82/0x3f0 [ 1135.387382][T20795] path_openat+0x208c/0x31a0 [ 1135.387443][T20795] ? __pfx_path_openat+0x10/0x10 [ 1135.387518][T20795] do_file_open+0x20e/0x430 [ 1135.387565][T20795] ? __pfx_do_file_open+0x10/0x10 [ 1135.387635][T20795] ? alloc_fd+0x476/0x790 [ 1135.387678][T20795] ? do_getname+0x191/0x390 [ 1135.387739][T20795] do_sys_openat2+0x10d/0x1e0 [ 1135.387770][T20795] ? __pfx_do_sys_openat2+0x10/0x10 [ 1135.387820][T20795] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1135.387877][T20795] ? __fget_files+0x21f/0x3d0 [ 1135.387923][T20795] __x64_sys_openat+0x12d/0x210 [ 1135.387956][T20795] ? __pfx___x64_sys_openat+0x10/0x10 [ 1135.387986][T20795] ? ksys_write+0x1ac/0x250 [ 1135.388039][T20795] do_syscall_64+0x106/0xf80 [ 1135.388085][T20795] ? clear_bhb_loop+0x40/0x90 [ 1135.388125][T20795] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1135.388157][T20795] RIP: 0033:0x7fcdd219bf79 [ 1135.388184][T20795] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1135.388216][T20795] RSP: 002b:00007fcdd3007028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1135.388247][T20795] RAX: ffffffffffffffda RBX: 00007fcdd2415fa0 RCX: 00007fcdd219bf79 [ 1135.388268][T20795] RDX: 0000000000000082 RSI: 0000200000000600 RDI: ffffffffffffff9c [ 1135.388289][T20795] RBP: 00007fcdd3007090 R08: 0000000000000000 R09: 0000000000000000 [ 1135.388308][T20795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1135.388327][T20795] R13: 00007fcdd2416038 R14: 00007fcdd2415fa0 R15: 00007ffd7ab407c8 [ 1135.388372][T20795] [ 1137.267358][T20804] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1137.286620][T20804] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1137.299314][T20804] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1137.317294][T20804] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1137.607196][T20821] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 1138.174982][T18479] Bluetooth: hci4: unexpected event 0x33 length: 124 > 10 [ 1138.949827][T18479] Bluetooth: hci4: command 0x0c1a tx timeout [ 1139.346646][T18479] Bluetooth: hci1: command 0x0c1a tx timeout [ 1139.346666][ T5830] Bluetooth: hci3: command 0x0c1a tx timeout [ 1139.346688][ T5833] Bluetooth: hci0: command 0x0c1a tx timeout [ 1140.205675][T20880] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2772'. [ 1140.225971][T20880] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2772'. [ 1140.312143][T20884] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2774'. [ 1140.335764][T20884] netlink: 13 bytes leftover after parsing attributes in process `syz.3.2774'. [ 1140.346072][T20884] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2774'. [ 1140.795509][T20880] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 1141.212217][T20915] FAULT_INJECTION: forcing a failure. [ 1141.212217][T20915] name failslab, interval 1, probability 0, space 0, times 0 [ 1141.233630][T20915] CPU: 0 UID: 0 PID: 20915 Comm: syz.2.2783 Not tainted syzkaller #0 PREEMPT(full) [ 1141.233672][T20915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1141.233691][T20915] Call Trace: [ 1141.233701][T20915] [ 1141.233712][T20915] dump_stack_lvl+0x100/0x190 [ 1141.233764][T20915] should_fail_ex.cold+0x5/0xa [ 1141.233800][T20915] should_failslab+0xc2/0x120 [ 1141.233844][T20915] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1141.233880][T20915] ? skb_clone+0x190/0x400 [ 1141.233933][T20915] skb_clone+0x190/0x400 [ 1141.233980][T20915] netlink_deliver_tap+0xaed/0xcc0 [ 1141.234037][T20915] netlink_unicast+0x650/0x870 [ 1141.234091][T20915] ? __pfx_netlink_unicast+0x10/0x10 [ 1141.234156][T20915] netlink_sendmsg+0x8b0/0xda0 [ 1141.234214][T20915] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1141.234269][T20915] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 1141.234318][T20915] ____sys_sendmsg+0xa54/0xc30 [ 1141.234379][T20915] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1141.234419][T20915] ? __pfx__kstrtoull+0x10/0x10 [ 1141.234461][T20915] ___sys_sendmsg+0x190/0x1e0 [ 1141.234500][T20915] ? __pfx____sys_sendmsg+0x10/0x10 [ 1141.234555][T20915] ? find_held_lock+0x2b/0x80 [ 1141.234647][T20915] __sys_sendmmsg+0x205/0x430 [ 1141.234700][T20915] ? __pfx___sys_sendmmsg+0x10/0x10 [ 1141.234761][T20915] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1141.234830][T20915] ? fput+0x79/0x100 [ 1141.234878][T20915] ? ksys_write+0x1ac/0x250 [ 1141.234917][T20915] ? __pfx_ksys_write+0x10/0x10 [ 1141.234963][T20915] __x64_sys_sendmmsg+0x9c/0x100 [ 1141.235009][T20915] ? lockdep_hardirqs_on+0x78/0x100 [ 1141.235054][T20915] do_syscall_64+0x106/0xf80 [ 1141.235098][T20915] ? clear_bhb_loop+0x40/0x90 [ 1141.235141][T20915] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1141.235174][T20915] RIP: 0033:0x7f930ef9bf79 [ 1141.235201][T20915] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1141.235231][T20915] RSP: 002b:00007f930fe80028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1141.235262][T20915] RAX: ffffffffffffffda RBX: 00007f930f215fa0 RCX: 00007f930ef9bf79 [ 1141.235284][T20915] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 1141.235303][T20915] RBP: 00007f930fe80090 R08: 0000000000000000 R09: 0000000000000000 [ 1141.235322][T20915] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 1141.235341][T20915] R13: 00007f930f216038 R14: 00007f930f215fa0 R15: 00007fff6589ca88 [ 1141.235393][T20915] [ 1141.235418][T20915] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2783'. [ 1141.517130][T20915] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2783'. [ 1144.957379][T20984] FAULT_INJECTION: forcing a failure. [ 1144.957379][T20984] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1145.038692][T20984] CPU: 0 UID: 0 PID: 20984 Comm: syz.0.2800 Not tainted syzkaller #0 PREEMPT(full) [ 1145.038737][T20984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1145.038758][T20984] Call Trace: [ 1145.038768][T20984] [ 1145.038781][T20984] dump_stack_lvl+0x100/0x190 [ 1145.038836][T20984] should_fail_ex.cold+0x5/0xa [ 1145.038869][T20984] ? prepare_alloc_pages+0x16d/0x5f0 [ 1145.038923][T20984] should_fail_alloc_page+0xeb/0x140 [ 1145.038973][T20984] prepare_alloc_pages+0x1f0/0x5f0 [ 1145.039038][T20984] __alloc_frozen_pages_noprof+0x19a/0x2ae0 [ 1145.039089][T20984] ? unwind_next_frame+0x3c8/0x1ea0 [ 1145.039142][T20984] ? exit_to_user_mode_loop+0x100/0x4a0 [ 1145.039187][T20984] ? __lock_acquire+0x4a5/0x2630 [ 1145.039223][T20984] ? arch_stack_walk+0x88/0xf0 [ 1145.039273][T20984] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1145.039317][T20984] ? do_syscall_64+0x668/0xf80 [ 1145.039373][T20984] ? do_raw_spin_lock+0x128/0x260 [ 1145.039420][T20984] ? __lock_acquire+0x4a5/0x2630 [ 1145.039459][T20984] ? __lock_acquire+0x4a5/0x2630 [ 1145.039496][T20984] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1145.039547][T20984] ? policy_nodemask+0xed/0x4f0 [ 1145.039610][T20984] alloc_pages_mpol+0x1fb/0x550 [ 1145.039658][T20984] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1145.039715][T20984] alloc_pages_noprof+0x131/0x390 [ 1145.039764][T20984] __pmd_alloc+0x3b/0x9c0 [ 1145.039816][T20984] __handle_mm_fault+0xa99/0x2b60 [ 1145.039855][T20984] ? mt_find+0x45e/0x8e0 [ 1145.039905][T20984] ? __pfx___handle_mm_fault+0x10/0x10 [ 1145.039934][T20984] ? __pfx_mt_find+0x10/0x10 [ 1145.040004][T20984] ? find_vma+0xbf/0x140 [ 1145.040051][T20984] ? __pfx_find_vma+0x10/0x10 [ 1145.040096][T20984] handle_mm_fault+0x36d/0xa20 [ 1145.040137][T20984] do_user_addr_fault+0x74c/0x12f0 [ 1145.040196][T20984] exc_page_fault+0x6f/0xd0 [ 1145.040244][T20984] asm_exc_page_fault+0x26/0x30 [ 1145.040277][T20984] RIP: 0010:copy_iovec_from_user+0xcf/0x140 [ 1145.040351][T20984] Code: 0f 85 87 00 00 00 4c 89 6b 08 49 83 ec 01 31 ff 48 83 c5 10 4c 89 e6 48 83 c3 10 e8 8b b3 1e fd 4d 85 e4 74 57 e8 a1 b8 1e fd <4c> 8b 6d 08 e8 98 b8 1e fd 4c 8b 7d 00 e8 8f b8 1e fd 31 ff 4c 89 [ 1145.040385][T20984] RSP: 0018:ffffc9000427f8d0 EFLAGS: 00050287 [ 1145.040412][T20984] RAX: 0000000000000047 RBX: ffffc9000427fb40 RCX: ffffc9000c842000 [ 1145.040433][T20984] RDX: 0000000000080000 RSI: ffffffff84e7b9bf RDI: ffff888057cd9e40 [ 1145.040455][T20984] RBP: 0000000000000000 R08: 0000000000000006 R09: 0000000000000000 [ 1145.040475][T20984] R10: 0000000000000040 R11: 0000000000000000 R12: 0000000000000004 [ 1145.040496][T20984] R13: 0000000000000040 R14: dffffc0000000000 R15: 0000000000000000 [ 1145.040530][T20984] ? copy_iovec_from_user+0xcf/0x140 [ 1145.040587][T20984] iovec_from_user+0xa2/0x140 [ 1145.040645][T20984] __import_iovec+0x81/0x640 [ 1145.040707][T20984] import_iovec+0x82/0xb0 [ 1145.040763][T20984] copy_msghdr_from_user+0x2ed/0x4f0 [ 1145.040803][T20984] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 1145.040849][T20984] ? futex_unqueue+0x133/0x2c0 [ 1145.040893][T20984] ___sys_sendmsg+0x106/0x1e0 [ 1145.040933][T20984] ? __pfx____sys_sendmsg+0x10/0x10 [ 1145.040968][T20984] ? __pfx___futex_wait+0x10/0x10 [ 1145.041032][T20984] ? find_held_lock+0x2b/0x80 [ 1145.041108][T20984] __sys_sendmmsg+0x205/0x430 [ 1145.041163][T20984] ? __pfx___sys_sendmmsg+0x10/0x10 [ 1145.041209][T20984] ? file_init_path+0x48e/0x670 [ 1145.041273][T20984] ? __pfx_do_futex+0x10/0x10 [ 1145.041327][T20984] ? __pfx_task_work_run+0x10/0x10 [ 1145.041369][T20984] ? xfd_validate_state+0x129/0x190 [ 1145.041423][T20984] __x64_sys_sendmmsg+0x9c/0x100 [ 1145.041472][T20984] ? lockdep_hardirqs_on+0x78/0x100 [ 1145.041519][T20984] do_syscall_64+0x106/0xf80 [ 1145.041564][T20984] ? clear_bhb_loop+0x40/0x90 [ 1145.041605][T20984] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1145.041639][T20984] RIP: 0033:0x7fc70399bf79 [ 1145.041665][T20984] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1145.041698][T20984] RSP: 002b:00007fc7047f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1145.041728][T20984] RAX: ffffffffffffffda RBX: 00007fc703c15fa0 RCX: 00007fc70399bf79 [ 1145.041750][T20984] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000008 [ 1145.041770][T20984] RBP: 00007fc703a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1145.041790][T20984] R10: 0000000024000000 R11: 0000000000000246 R12: 0000000000000000 [ 1145.041812][T20984] R13: 00007fc703c16038 R14: 00007fc703c15fa0 R15: 00007ffc59495818 [ 1145.041858][T20984] [ 1145.772750][T20987] zswap: compressor not available [ 1145.786273][T20990] Setting dangerous option i915.mitigations - tainting kernel [ 1145.986057][T21001] input: f as /devices/virtual/input/input11 [ 1146.044021][ T5833] Bluetooth: hci1: unexpected event 0x32 length: 727 > 9 [ 1146.067524][T21004] netlink: 11784 bytes leftover after parsing attributes in process `syz.2.2806'. [ 1148.186966][T21044] zswap: compressor not available [ 1148.496836][T21058] input: f as /devices/virtual/input/input12 [ 1149.797060][T21077] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size [ 1149.864932][T21071] zswap: compressor not available [ 1150.280011][T21093] input: f as /devices/virtual/input/input13 [ 1151.064737][T21118] netlink: 186 bytes leftover after parsing attributes in process `syz.0.2836'. [ 1152.198487][T21133] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2840'. [ 1152.693805][T21148] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2842'. [ 1154.089357][T21163] zswap: compressor not available [ 1155.537382][ T30] audit: type=1804 audit(4294967304.973:5): pid=21214 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.2860" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1155.990056][T21224] FAULT_INJECTION: forcing a failure. [ 1155.990056][T21224] name failslab, interval 1, probability 0, space 0, times 0 [ 1156.002873][T21224] CPU: 1 UID: 0 PID: 21224 Comm: syz.0.2862 Tainted: G U syzkaller #0 PREEMPT(full) [ 1156.002912][T21224] Tainted: [U]=USER [ 1156.002921][T21224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1156.002936][T21224] Call Trace: [ 1156.002945][T21224] [ 1156.002954][T21224] dump_stack_lvl+0x100/0x190 [ 1156.002995][T21224] should_fail_ex.cold+0x5/0xa [ 1156.003023][T21224] should_failslab+0xc2/0x120 [ 1156.003065][T21224] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1156.003094][T21224] ? alloc_empty_file+0x55/0x1c0 [ 1156.003140][T21224] alloc_empty_file+0x55/0x1c0 [ 1156.003180][T21224] alloc_file_pseudo+0x13a/0x230 [ 1156.003222][T21224] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 1156.003283][T21224] __shmem_file_setup+0x1a3/0x330 [ 1156.003327][T21224] shmem_zero_setup+0x93/0x1b0 [ 1156.003360][T21224] __mmap_region+0x20b5/0x2760 [ 1156.003391][T21224] ? __pfx___mmap_region+0x10/0x10 [ 1156.003437][T21224] ? finish_task_switch.isra.0+0x205/0xb80 [ 1156.003476][T21224] ? lockdep_hardirqs_on+0x78/0x100 [ 1156.003511][T21224] ? finish_task_switch.isra.0+0x205/0xb80 [ 1156.003600][T21224] ? mm_get_unmapped_area_vmflags+0xd7/0x130 [ 1156.003638][T21224] ? rcu_is_watching+0x12/0xc0 [ 1156.003676][T21224] mmap_region+0x180/0x3e0 [ 1156.003710][T21224] do_mmap+0xc63/0x12f0 [ 1156.003749][T21224] ? __pfx_do_mmap+0x10/0x10 [ 1156.003784][T21224] ? __pfx_down_write_killable+0x10/0x10 [ 1156.003806][T21224] ? __lock_acquire+0x4a5/0x2630 [ 1156.003835][T21224] vm_mmap_pgoff+0x29e/0x470 [ 1156.003876][T21224] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1156.003911][T21224] ? find_held_lock+0x2b/0x80 [ 1156.003950][T21224] ? __x64_sys_futex+0x34f/0x4d0 [ 1156.003975][T21224] ? __x64_sys_futex+0x358/0x4d0 [ 1156.004023][T21224] ksys_mmap_pgoff+0x7d/0x5b0 [ 1156.004071][T21224] __x64_sys_mmap+0x125/0x190 [ 1156.004108][T21224] do_syscall_64+0x106/0xf80 [ 1156.004144][T21224] ? clear_bhb_loop+0x40/0x90 [ 1156.004175][T21224] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1156.004200][T21224] RIP: 0033:0x7fc70399bf79 [ 1156.004220][T21224] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1156.004244][T21224] RSP: 002b:00007fc7047f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1156.004268][T21224] RAX: ffffffffffffffda RBX: 00007fc703c15fa0 RCX: 00007fc70399bf79 [ 1156.004284][T21224] RDX: 0000000000000003 RSI: 0000000002020209 RDI: 0000000000000000 [ 1156.004299][T21224] RBP: 00007fc703a327e0 R08: ffffffffffffffff R09: 0000000000008000 [ 1156.004315][T21224] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 1156.004330][T21224] R13: 00007fc703c16038 R14: 00007fc703c15fa0 R15: 00007ffc59495818 [ 1156.004362][T21224] [ 1156.563687][T21193] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1156.573208][T21193] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1156.579869][T21193] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1156.586409][T21193] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1156.963183][T21239] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2865'. [ 1156.993706][T21239] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2865'. [ 1157.150537][T21246] netlink: 25 bytes leftover after parsing attributes in process `syz.1.2868'. [ 1157.319220][ T5833] Bluetooth: hci4: command 0x0c1a tx timeout [ 1157.883777][T21257] zswap: compressor not available [ 1158.617584][ T5833] Bluetooth: hci3: command 0x0c1a tx timeout [ 1158.627412][ T5833] Bluetooth: hci1: command 0x0c1a tx timeout [ 1158.647492][ T5833] Bluetooth: hci0: command 0x0c1a tx timeout [ 1158.963534][T21294] ptrace attach of "./syz-executor exec"[19502] was attempted by "./syz-executor exec"[21294] [ 1160.615700][T21312] zswap: compressor not available [ 1161.934882][ T30] audit: type=1804 audit(4294967311.367:6): pid=21360 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.2894" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1163.936830][T21376] zswap: compressor not available [ 1166.046256][T21421] FAULT_INJECTION: forcing a failure. [ 1166.046256][T21421] name failslab, interval 1, probability 0, space 0, times 0 [ 1166.109435][T21421] CPU: 1 UID: 0 PID: 21421 Comm: syz.0.2909 Tainted: G U syzkaller #0 PREEMPT(full) [ 1166.109477][T21421] Tainted: [U]=USER [ 1166.109485][T21421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1166.109500][T21421] Call Trace: [ 1166.109508][T21421] [ 1166.109517][T21421] dump_stack_lvl+0x100/0x190 [ 1166.109557][T21421] should_fail_ex.cold+0x5/0xa [ 1166.109587][T21421] should_failslab+0xc2/0x120 [ 1166.109622][T21421] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 1166.109652][T21421] ? shmem_alloc_inode+0x25/0x50 [ 1166.109693][T21421] ? __pfx_shmem_alloc_inode+0x10/0x10 [ 1166.109732][T21421] shmem_alloc_inode+0x25/0x50 [ 1166.109767][T21421] alloc_inode+0x68/0x250 [ 1166.109791][T21421] new_inode+0x22/0x1c0 [ 1166.109816][T21421] shmem_get_inode+0x197/0xf30 [ 1166.109859][T21421] ? __vm_enough_memory+0x184/0x390 [ 1166.109916][T21421] __shmem_file_setup+0x279/0x330 [ 1166.109978][T21421] shmem_zero_setup+0x93/0x1b0 [ 1166.110012][T21421] __mmap_region+0x20b5/0x2760 [ 1166.110044][T21421] ? __pfx___mmap_region+0x10/0x10 [ 1166.110092][T21421] ? finish_task_switch.isra.0+0x200/0xb80 [ 1166.110137][T21421] ? finish_task_switch.isra.0+0x200/0xb80 [ 1166.110191][T21421] ? __schedule+0x1000/0x6020 [ 1166.110262][T21421] ? mm_get_unmapped_area_vmflags+0xd7/0x130 [ 1166.110301][T21421] ? rcu_is_watching+0x12/0xc0 [ 1166.110341][T21421] mmap_region+0x180/0x3e0 [ 1166.110375][T21421] do_mmap+0xc63/0x12f0 [ 1166.110416][T21421] ? __pfx_do_mmap+0x10/0x10 [ 1166.110452][T21421] ? __pfx_down_write_killable+0x10/0x10 [ 1166.110475][T21421] ? __lock_acquire+0x4a5/0x2630 [ 1166.110505][T21421] vm_mmap_pgoff+0x29e/0x470 [ 1166.110547][T21421] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1166.110584][T21421] ? find_held_lock+0x2b/0x80 [ 1166.110624][T21421] ? __x64_sys_futex+0x34f/0x4d0 [ 1166.110649][T21421] ? __x64_sys_futex+0x358/0x4d0 [ 1166.110679][T21421] ksys_mmap_pgoff+0x7d/0x5b0 [ 1166.110718][T21421] __x64_sys_mmap+0x125/0x190 [ 1166.110755][T21421] do_syscall_64+0x106/0xf80 [ 1166.110790][T21421] ? clear_bhb_loop+0x40/0x90 [ 1166.110838][T21421] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1166.110867][T21421] RIP: 0033:0x7fc70399bf79 [ 1166.110888][T21421] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1166.110913][T21421] RSP: 002b:00007fc7047f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1166.110936][T21421] RAX: ffffffffffffffda RBX: 00007fc703c15fa0 RCX: 00007fc70399bf79 [ 1166.110954][T21421] RDX: 0000000000000003 RSI: 0000000002020209 RDI: 0000000000000000 [ 1166.110969][T21421] RBP: 00007fc703a327e0 R08: ffffffffffffffff R09: 0000000000008000 [ 1166.110985][T21421] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 1166.111000][T21421] R13: 00007fc703c16038 R14: 00007fc703c15fa0 R15: 00007ffc59495818 [ 1166.111032][T21421] [ 1167.381082][T21438] FAULT_INJECTION: forcing a failure. [ 1167.381082][T21438] name failslab, interval 1, probability 0, space 0, times 0 [ 1167.463833][T21438] CPU: 1 UID: 0 PID: 21438 Comm: syz.2.2912 Tainted: G U syzkaller #0 PREEMPT(full) [ 1167.463870][T21438] Tainted: [U]=USER [ 1167.463877][T21438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1167.463890][T21438] Call Trace: [ 1167.463898][T21438] [ 1167.463906][T21438] dump_stack_lvl+0x100/0x190 [ 1167.463943][T21438] should_fail_ex.cold+0x5/0xa [ 1167.463969][T21438] should_failslab+0xc2/0x120 [ 1167.464002][T21438] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1167.464026][T21438] ? kvm_dev_ioctl+0xa8d/0x1a80 [ 1167.464057][T21438] kvm_dev_ioctl+0xa8d/0x1a80 [ 1167.464086][T21438] ? find_held_lock+0x2b/0x80 [ 1167.464119][T21438] ? __fget_files+0x215/0x3d0 [ 1167.464146][T21438] ? hook_file_ioctl_common+0x146/0x410 [ 1167.464182][T21438] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 1167.464209][T21438] ? __fget_files+0x21f/0x3d0 [ 1167.464241][T21438] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 1167.464267][T21438] __x64_sys_ioctl+0x18e/0x210 [ 1167.464294][T21438] do_syscall_64+0x106/0xf80 [ 1167.464327][T21438] ? clear_bhb_loop+0x40/0x90 [ 1167.464356][T21438] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1167.464379][T21438] RIP: 0033:0x7f930ef9bf79 [ 1167.464397][T21438] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1167.464419][T21438] RSP: 002b:00007f930fe80028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1167.464441][T21438] RAX: ffffffffffffffda RBX: 00007f930f215fa0 RCX: 00007f930ef9bf79 [ 1167.464456][T21438] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000004 [ 1167.464469][T21438] RBP: 00007f930fe80090 R08: 0000000000000000 R09: 0000000000000000 [ 1167.464483][T21438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1167.464496][T21438] R13: 00007f930f216038 R14: 00007f930f215fa0 R15: 00007fff6589ca88 [ 1167.464525][T21438] [ 1168.673169][T21444] sp0: Synchronizing with TNC [ 1171.537418][T21493] FAULT_INJECTION: forcing a failure. [ 1171.537418][T21493] name failslab, interval 1, probability 0, space 0, times 0 [ 1171.580962][T21493] CPU: 1 UID: 0 PID: 21493 Comm: syz.2.2928 Tainted: G U syzkaller #0 PREEMPT(full) [ 1171.581017][T21493] Tainted: [U]=USER [ 1171.581028][T21493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1171.581047][T21493] Call Trace: [ 1171.581057][T21493] [ 1171.581070][T21493] dump_stack_lvl+0x100/0x190 [ 1171.581122][T21493] should_fail_ex.cold+0x5/0xa [ 1171.581160][T21493] should_failslab+0xc2/0x120 [ 1171.581206][T21493] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1171.581238][T21493] ? sctp_association_new+0xbb/0x2990 [ 1171.581280][T21493] sctp_association_new+0xbb/0x2990 [ 1171.581317][T21493] ? sctp_v4_scope+0x183/0x1a0 [ 1171.581363][T21493] sctp_connect_new_asoc+0x1a8/0x770 [ 1171.581414][T21493] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 1171.581447][T21493] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 1171.581497][T21493] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 1171.581563][T21493] __sctp_connect+0x3e7/0xc70 [ 1171.581607][T21493] ? __pfx___sctp_connect+0x10/0x10 [ 1171.581644][T21493] ? __pfx_sctp_inet_connect+0x10/0x10 [ 1171.581675][T21493] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1171.581718][T21493] ? __pfx_sctp_inet_connect+0x10/0x10 [ 1171.581746][T21493] sctp_inet_connect+0x15f/0x220 [ 1171.581780][T21493] __sys_connect_file+0x141/0x1a0 [ 1171.581826][T21493] __sys_connect+0x141/0x170 [ 1171.581865][T21493] ? __pfx___sys_connect+0x10/0x10 [ 1171.581901][T21493] ? __fget_files+0x21f/0x3d0 [ 1171.581954][T21493] ? __pfx_ksys_write+0x10/0x10 [ 1171.582002][T21493] __x64_sys_connect+0x72/0xb0 [ 1171.582039][T21493] ? lockdep_hardirqs_on+0x78/0x100 [ 1171.582084][T21493] do_syscall_64+0x106/0xf80 [ 1171.582133][T21493] ? clear_bhb_loop+0x40/0x90 [ 1171.582191][T21493] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1171.582224][T21493] RIP: 0033:0x7f930ef9bf79 [ 1171.582251][T21493] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1171.582283][T21493] RSP: 002b:00007f930fe80028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 1171.582314][T21493] RAX: ffffffffffffffda RBX: 00007f930f215fa0 RCX: 00007f930ef9bf79 [ 1171.582335][T21493] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 1171.582355][T21493] RBP: 00007f930fe80090 R08: 0000000000000000 R09: 0000000000000000 [ 1171.582374][T21493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1171.582393][T21493] R13: 00007f930f216038 R14: 00007f930f215fa0 R15: 00007fff6589ca88 [ 1171.582435][T21493] [ 1173.106173][T21518] Lens A: ================= START STATUS ================= [ 1173.113708][T21518] Lens A: Focus, Absolute: 0 [ 1173.118332][T21518] Lens A: ================== END STATUS ================== [ 1175.740235][ T30] audit: type=1804 audit(4294967297.740:7): pid=21551 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.2941" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1178.082324][T21576] block2mtd: illegal erase size [ 1178.552736][T21589] RDS: rds_bind could not find a transport for ::ffff:172.30.0.3, load rds_tcp or rds_rdma? [ 1178.795852][T18479] Bluetooth: hci0: unexpected event 0x33 length: 124 > 10 [ 1181.883733][T21641] syz.2.2960 uses obsolete (PF_INET,SOCK_PACKET) [ 1182.410971][T21648] block2mtd: illegal erase size [ 1182.852832][T21651] input: f as /devices/virtual/input/input14 [ 1183.730539][T21667] ecryptfs_miscdev_write: Invalid packet size [192] [ 1184.019913][T18479] Bluetooth: hci3: unexpected event 0x33 length: 124 > 10 [ 1185.159415][ T30] audit: type=1804 audit(4294967301.920:8): pid=21690 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.2971" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1185.380119][ T30] audit: type=1804 audit(4294967301.960:9): pid=21691 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.2973" name="/newroot/sys/kernel/tracing/set_event" dev="tracefs" ino=11 res=1 errno=0 [ 1186.666238][T21703] netlink: 21 bytes leftover after parsing attributes in process `syz.3.2977'. [ 1187.465252][T21712] netlink: 1408 bytes leftover after parsing attributes in process `syz.3.2980'. [ 1187.504737][T21712] netlink: 427 bytes leftover after parsing attributes in process `syz.3.2980'. [ 1187.750632][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 1187.757097][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 1187.783767][T21720] input: f as /devices/virtual/input/input15 [ 1188.651238][T21723] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1188.659708][T21723] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1188.679943][T21723] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1188.689534][T21723] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1188.969356][T21749] block2mtd: illegal erase size [ 1190.370132][T18479] Bluetooth: hci4: command 0x0c1a tx timeout [ 1190.690537][T18479] Bluetooth: hci1: command 0x0c1a tx timeout [ 1190.693997][ T5833] Bluetooth: hci3: command 0x0c1a tx timeout [ 1190.697840][T18479] Bluetooth: hci0: command 0x0c1a tx timeout [ 1191.801740][T21830] Lens A: ================= START STATUS ================= [ 1191.865886][T21830] Lens A: Focus, Absolute: 0 [ 1191.881000][T21830] Lens A: ================== END STATUS ================== [ 1192.390485][ T30] audit: type=1800 audit(4294967309.150:10): pid=21840 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3011" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 1195.142378][T21912] sd 0:0:1:0: PR command failed: 1026 [ 1195.159876][T21912] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 1195.176528][T21912] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 1196.354871][T21928] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1196.418646][T21928] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1196.434484][T21928] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1196.444178][T21928] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1196.614076][ T30] audit: type=1800 audit(4294967297.880:11): pid=21954 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3031" name="dbroot" dev="configfs" ino=127915 res=0 errno=0 [ 1196.653078][T21954] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3031'. [ 1196.807018][T21954] team0: Port device team_slave_1 removed [ 1197.975556][T18479] Bluetooth: hci4: command 0x0c1a tx timeout [ 1198.443386][T21994] FAULT_INJECTION: forcing a failure. [ 1198.443386][T21994] name failslab, interval 1, probability 0, space 0, times 0 [ 1198.457015][T18479] Bluetooth: hci1: command 0x0c1a tx timeout [ 1198.460051][T21994] CPU: 1 UID: 0 PID: 21994 Comm: syz.1.3040 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1198.460191][T21994] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1198.460230][T21994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1198.460286][T21994] Call Trace: [ 1198.460308][T21994] [ 1198.460339][T21994] dump_stack_lvl+0x100/0x190 [ 1198.460486][T21994] should_fail_ex.cold+0x5/0xa [ 1198.460573][T21994] ? memcg_list_lru_alloc+0x4ec/0x740 [ 1198.460662][T21994] should_failslab+0xc2/0x120 [ 1198.460768][T21994] __kmalloc_noprof+0xe0/0x850 [ 1198.460855][T21994] ? path_openat+0xf95/0x31a0 [ 1198.460958][T21994] memcg_list_lru_alloc+0x4ec/0x740 [ 1198.461082][T21994] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 1198.461169][T21994] ? rcu_read_unlock+0x17/0x60 [ 1198.461294][T21994] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 1198.461427][T21994] __memcg_slab_post_alloc_hook+0x12f/0x9a0 [ 1198.461567][T21994] ? kasan_save_track+0x14/0x30 [ 1198.461665][T21994] kmem_cache_alloc_lru_noprof+0x592/0x6e0 [ 1198.461759][T21994] ? alloc_inode+0x183/0x250 [ 1198.461847][T21994] alloc_inode+0x183/0x250 [ 1198.461922][T21994] path_from_stashed+0x25b/0x750 [ 1198.462038][T21994] ? do_raw_spin_unlock+0x145/0x1e0 [ 1198.462144][T21994] ns_get_path+0x60/0x80 [ 1198.462244][T21994] proc_ns_get_link+0x121/0x230 [ 1198.462366][T21994] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1198.462507][T21994] ? atime_needs_update+0x8b/0x6b0 [ 1198.462602][T21994] pick_link+0xd17/0x13c0 [ 1198.462693][T21994] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1198.462836][T21994] step_into_slowpath+0x9ba/0xf90 [ 1198.462951][T21994] ? __pfx_step_into_slowpath+0x10/0x10 [ 1198.463064][T21994] ? find_held_lock+0x2b/0x80 [ 1198.463121][T21994] path_openat+0xf95/0x31a0 [ 1198.463175][T21994] ? __pfx_path_openat+0x10/0x10 [ 1198.463233][T21994] do_file_open+0x20e/0x430 [ 1198.463280][T21994] ? __pfx_do_file_open+0x10/0x10 [ 1198.463351][T21994] ? alloc_fd+0x476/0x790 [ 1198.463397][T21994] ? do_getname+0x191/0x390 [ 1198.463453][T21994] do_sys_openat2+0x10d/0x1e0 [ 1198.463484][T21994] ? __pfx_do_sys_openat2+0x10/0x10 [ 1198.463542][T21994] ? __fget_files+0x21f/0x3d0 [ 1198.463591][T21994] __x64_sys_openat+0x12d/0x210 [ 1198.463624][T21994] ? __pfx___x64_sys_openat+0x10/0x10 [ 1198.463654][T21994] ? xfd_validate_state+0x129/0x190 [ 1198.463709][T21994] do_syscall_64+0x106/0xf80 [ 1198.463757][T21994] ? clear_bhb_loop+0x40/0x90 [ 1198.463797][T21994] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1198.463831][T21994] RIP: 0033:0x7fcdd215c84e [ 1198.463858][T21994] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1198.463890][T21994] RSP: 002b:00007fcdd3006ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1198.463922][T21994] RAX: ffffffffffffffda RBX: 00007fcdd30076c0 RCX: 00007fcdd215c84e [ 1198.463943][T21994] RDX: 0000000000000002 RSI: 00007fcdd3006f90 RDI: ffffffffffffff9c [ 1198.463964][T21994] RBP: 00007fcdd22327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1198.463990][T21994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1198.464011][T21994] R13: 00007fcdd2416038 R14: 00007fcdd2415fa0 R15: 00007ffd7ab407c8 [ 1198.464054][T21994] [ 1198.464196][ T5833] Bluetooth: hci3: command 0x0c1a tx timeout [ 1198.464241][ T5833] Bluetooth: hci0: command 0x0c1a tx timeout [ 1199.389697][ T30] audit: type=1804 audit(4294967300.660:12): pid=22015 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.3048" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1200.814081][T22033] zswap: compressor not available [ 1201.238537][T18479] Bluetooth: hci3: unexpected event 0x33 length: 124 > 10 [ 1202.326057][T22073] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 1203.330148][T22091] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3069'. [ 1203.448492][T22086] zswap: compressor not available [ 1204.353801][ T30] audit: type=1804 audit(4294967299.370:13): pid=22110 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.3073" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1204.970456][ T30] audit: type=1804 audit(4294967299.980:14): pid=22126 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3078" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1204.999759][ T30] audit: type=1804 audit(4294967300.020:15): pid=22126 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.3078" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1206.764881][T18479] Bluetooth: hci4: unexpected event 0x33 length: 124 > 10 [ 1211.248233][T22228] netlink: 'syz.0.3103': attribute type 4 has an invalid length. [ 1211.269408][T22228] netlink: 314 bytes leftover after parsing attributes in process `syz.0.3103'. [ 1211.942671][T22248] FAULT_INJECTION: forcing a failure. [ 1211.942671][T22248] name failslab, interval 1, probability 0, space 0, times 0 [ 1211.955486][T22248] CPU: 0 UID: 0 PID: 22248 Comm: syz.0.3107 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1211.955545][T22248] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1211.955560][T22248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1211.955581][T22248] Call Trace: [ 1211.955593][T22248] [ 1211.955604][T22248] dump_stack_lvl+0x100/0x190 [ 1211.955661][T22248] should_fail_ex.cold+0x5/0xa [ 1211.955710][T22248] should_failslab+0xc2/0x120 [ 1211.955758][T22248] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 1211.955798][T22248] ? __d_alloc+0x34/0xa80 [ 1211.955857][T22248] __d_alloc+0x34/0xa80 [ 1211.955920][T22248] d_alloc_pseudo+0x1c/0xc0 [ 1211.955955][T22248] alloc_file_pseudo+0xcf/0x230 [ 1211.956010][T22248] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 1211.956076][T22248] __shmem_file_setup+0x1a3/0x330 [ 1211.956135][T22248] shmem_zero_setup+0x93/0x1b0 [ 1211.956190][T22248] __mmap_region+0x20b5/0x2760 [ 1211.956231][T22248] ? __pfx___mmap_region+0x10/0x10 [ 1211.956288][T22248] ? finish_task_switch.isra.0+0x200/0xb80 [ 1211.956331][T22248] ? finish_task_switch.isra.0+0x200/0xb80 [ 1211.956397][T22248] ? __schedule+0x1000/0x6020 [ 1211.956488][T22248] ? mm_get_unmapped_area_vmflags+0xd7/0x130 [ 1211.956538][T22248] ? rcu_is_watching+0x12/0xc0 [ 1211.956587][T22248] mmap_region+0x180/0x3e0 [ 1211.956628][T22248] do_mmap+0xc63/0x12f0 [ 1211.956680][T22248] ? __pfx_do_mmap+0x10/0x10 [ 1211.956733][T22248] ? __pfx_down_write_killable+0x10/0x10 [ 1211.956769][T22248] vm_mmap_pgoff+0x29e/0x470 [ 1211.956839][T22248] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1211.956896][T22248] ? __x64_sys_futex+0x34f/0x4d0 [ 1211.956929][T22248] ? __x64_sys_futex+0x358/0x4d0 [ 1211.956970][T22248] ksys_mmap_pgoff+0x7d/0x5b0 [ 1211.957023][T22248] __x64_sys_mmap+0x125/0x190 [ 1211.957072][T22248] do_syscall_64+0x106/0xf80 [ 1211.957119][T22248] ? clear_bhb_loop+0x40/0x90 [ 1211.957162][T22248] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1211.957196][T22248] RIP: 0033:0x7fc70399bf79 [ 1211.957224][T22248] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1211.957256][T22248] RSP: 002b:00007fc7047f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1211.957289][T22248] RAX: ffffffffffffffda RBX: 00007fc703c15fa0 RCX: 00007fc70399bf79 [ 1211.957310][T22248] RDX: 0000000000000203 RSI: 0000000002020005 RDI: 0000000000000000 [ 1211.957329][T22248] RBP: 00007fc703a327e0 R08: fffffffffffffffa R09: 0000000000008000 [ 1211.957350][T22248] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 1211.957369][T22248] R13: 00007fc703c16038 R14: 00007fc703c15fa0 R15: 00007ffc59495818 [ 1211.957410][T22248] [ 1213.666010][T22276] zswap: compressor not available [ 1213.754729][T22259] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1213.848118][T22259] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1213.889541][T22259] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1213.895636][T22259] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1214.154522][T22295] nbd: must specify at least one socket [ 1214.441549][ T30] audit: type=1804 audit(4294967300.530:16): pid=22308 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.3117" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1214.910213][T22316] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1215.169395][T22270] Bluetooth: hci4: command 0x0c1a tx timeout [ 1215.386951][ T30] audit: type=1800 audit(4294967301.450:17): pid=22324 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3120" name="features" dev="configfs" ino=131242 res=0 errno=0 [ 1215.593383][ T30] audit: type=1804 audit(4294967301.680:18): pid=22331 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3122" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1215.725174][ T30] audit: type=1804 audit(4294967301.710:19): pid=22331 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.3122" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1215.889455][T22270] Bluetooth: hci0: command 0x0c1a tx timeout [ 1215.972950][T22270] Bluetooth: hci1: command 0x0c1a tx timeout [ 1215.979673][T22270] Bluetooth: hci3: command 0x0c1a tx timeout [ 1216.452412][T22350] FAULT_INJECTION: forcing a failure. [ 1216.452412][T22350] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1216.500665][T22350] CPU: 0 UID: 0 PID: 22350 Comm: syz.3.3127 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1216.500704][T22350] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1216.500713][T22350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1216.500728][T22350] Call Trace: [ 1216.500735][T22350] [ 1216.500744][T22350] dump_stack_lvl+0x100/0x190 [ 1216.500783][T22350] should_fail_ex.cold+0x5/0xa [ 1216.500810][T22350] _copy_from_user+0x2e/0xd0 [ 1216.500849][T22350] copy_msghdr_from_user+0x9f/0x4f0 [ 1216.500877][T22350] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 1216.500930][T22350] ___sys_sendmsg+0x106/0x1e0 [ 1216.500956][T22350] ? __pfx____sys_sendmsg+0x10/0x10 [ 1216.501013][T22350] __sys_sendmsg+0x170/0x220 [ 1216.501046][T22350] ? __pfx___sys_sendmsg+0x10/0x10 [ 1216.501095][T22350] do_syscall_64+0x106/0xf80 [ 1216.501127][T22350] ? clear_bhb_loop+0x40/0x90 [ 1216.501155][T22350] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1216.501178][T22350] RIP: 0033:0x7f6f4139bf79 [ 1216.501196][T22350] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1216.501236][T22350] RSP: 002b:00007f6f421d7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1216.501258][T22350] RAX: ffffffffffffffda RBX: 00007f6f41615fa0 RCX: 00007f6f4139bf79 [ 1216.501288][T22350] RDX: 0000000024048084 RSI: 0000200000000440 RDI: 0000000000000003 [ 1216.501302][T22350] RBP: 00007f6f421d7090 R08: 0000000000000000 R09: 0000000000000000 [ 1216.501316][T22350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1216.501329][T22350] R13: 00007f6f41616038 R14: 00007f6f41615fa0 R15: 00007ffceb798ba8 [ 1216.501359][T22350] [ 1216.930674][T22348] FAULT_INJECTION: forcing a failure. [ 1216.930674][T22348] name failslab, interval 1, probability 0, space 0, times 0 [ 1216.947151][T22348] CPU: 0 UID: 0 PID: 22348 Comm: syz.0.3126 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1216.947225][T22348] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1216.947237][T22348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1216.947257][T22348] Call Trace: [ 1216.947267][T22348] [ 1216.947279][T22348] dump_stack_lvl+0x100/0x190 [ 1216.947331][T22348] should_fail_ex.cold+0x5/0xa [ 1216.947367][T22348] ? tomoyo_encode2+0xfb/0x3c0 [ 1216.947409][T22348] should_failslab+0xc2/0x120 [ 1216.947453][T22348] __kmalloc_noprof+0xe0/0x850 [ 1216.947489][T22348] ? d_absolute_path+0x136/0x1b0 [ 1216.947528][T22348] tomoyo_encode2+0xfb/0x3c0 [ 1216.947565][T22348] tomoyo_encode+0x29/0x50 [ 1216.947594][T22348] tomoyo_realpath_from_path+0x18c/0x690 [ 1216.947637][T22348] tomoyo_path_number_perm+0x23c/0x580 [ 1216.947684][T22348] ? tomoyo_path_number_perm+0x22e/0x580 [ 1216.947733][T22348] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1216.947819][T22348] ? find_held_lock+0x2b/0x80 [ 1216.947865][T22348] ? __fget_files+0x215/0x3d0 [ 1216.947901][T22348] ? hook_file_ioctl_common+0x146/0x410 [ 1216.947955][T22348] ? __fget_files+0x21f/0x3d0 [ 1216.948002][T22348] security_file_ioctl+0xd3/0x230 [ 1216.948049][T22348] __x64_sys_ioctl+0xb7/0x210 [ 1216.948087][T22348] do_syscall_64+0x106/0xf80 [ 1216.948130][T22348] ? clear_bhb_loop+0x40/0x90 [ 1216.948169][T22348] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1216.948209][T22348] RIP: 0033:0x7fc70399bf79 [ 1216.948236][T22348] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1216.948267][T22348] RSP: 002b:00007fc7047f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1216.948296][T22348] RAX: ffffffffffffffda RBX: 00007fc703c15fa0 RCX: 00007fc70399bf79 [ 1216.948316][T22348] RDX: 0000000000000007 RSI: 000000000000560a RDI: 0000000000000005 [ 1216.948335][T22348] RBP: 00007fc7047f6090 R08: 0000000000000000 R09: 0000000000000000 [ 1216.948355][T22348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1216.948373][T22348] R13: 00007fc703c16038 R14: 00007fc703c15fa0 R15: 00007ffc59495818 [ 1216.948415][T22348] [ 1216.948462][T22348] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1217.639066][T22359] zswap: compressor not available [ 1217.749533][T22371] input: f as /devices/virtual/input/input16 [ 1218.796775][T22383] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3133'. [ 1218.819559][T22383] FAULT_INJECTION: forcing a failure. [ 1218.819559][T22383] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1218.854665][T22383] CPU: 1 UID: 0 PID: 22383 Comm: syz.0.3133 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1218.854725][T22383] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1218.854734][T22383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1218.854748][T22383] Call Trace: [ 1218.854756][T22383] [ 1218.854764][T22383] dump_stack_lvl+0x100/0x190 [ 1218.854803][T22383] should_fail_ex.cold+0x5/0xa [ 1218.854830][T22383] _copy_from_iter+0x1f4/0x1690 [ 1218.854871][T22383] ? __asan_memset+0x23/0x50 [ 1218.854896][T22383] ? __pfx__copy_from_iter+0x10/0x10 [ 1218.854933][T22383] ? __pfx___alloc_skb+0x10/0x10 [ 1218.854965][T22383] ? __pfx___might_resched+0x10/0x10 [ 1218.854995][T22383] ? __lock_acquire+0x4a5/0x2630 [ 1218.855028][T22383] netlink_sendmsg+0x808/0xda0 [ 1218.855071][T22383] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1218.855107][T22383] ? __import_iovec+0x1d2/0x640 [ 1218.855146][T22383] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 1218.855181][T22383] ____sys_sendmsg+0xa54/0xc30 [ 1218.855208][T22383] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1218.855236][T22383] ? rcu_is_watching+0x12/0xc0 [ 1218.855267][T22383] ? kfree+0x2a0/0x670 [ 1218.855299][T22383] ___sys_sendmsg+0x190/0x1e0 [ 1218.855327][T22383] ? __pfx____sys_sendmsg+0x10/0x10 [ 1218.855378][T22383] ? __pfx___might_resched+0x10/0x10 [ 1218.855413][T22383] __sys_sendmmsg+0x205/0x430 [ 1218.855450][T22383] ? __pfx___sys_sendmmsg+0x10/0x10 [ 1218.855493][T22383] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1218.855541][T22383] ? fput+0x79/0x100 [ 1218.855575][T22383] ? ksys_write+0x1ac/0x250 [ 1218.855603][T22383] ? __pfx_ksys_write+0x10/0x10 [ 1218.855637][T22383] __x64_sys_sendmmsg+0x9c/0x100 [ 1218.855670][T22383] ? lockdep_hardirqs_on+0x78/0x100 [ 1218.855703][T22383] do_syscall_64+0x106/0xf80 [ 1218.855735][T22383] ? clear_bhb_loop+0x40/0x90 [ 1218.855765][T22383] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1218.855789][T22383] RIP: 0033:0x7fc70399bf79 [ 1218.855808][T22383] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1218.855831][T22383] RSP: 002b:00007fc7047f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1218.855853][T22383] RAX: ffffffffffffffda RBX: 00007fc703c15fa0 RCX: 00007fc70399bf79 [ 1218.855869][T22383] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 1218.855883][T22383] RBP: 00007fc7047f6090 R08: 0000000000000000 R09: 0000000000000000 [ 1218.855897][T22383] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002 [ 1218.855911][T22383] R13: 00007fc703c16038 R14: 00007fc703c15fa0 R15: 00007ffc59495818 [ 1218.855941][T22383] [ 1220.264400][T22395] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1220.725323][T22270] Bluetooth: hci4: unexpected event 0x33 length: 124 > 10 [ 1223.439536][T22466] vivid-007: ================= START STATUS ================= [ 1223.501665][T22466] vivid-007: Generate PTS: true [ 1223.507975][T22466] vivid-007: Generate SCR: true [ 1223.518155][T22466] tpg source WxH: 320x240 (Y'CbCr) [ 1223.528293][T22466] tpg field: 1 [ 1223.538431][T22466] tpg crop: (0,0)/320x240 [ 1223.542974][T22466] tpg compose: (0,0)/320x240 [ 1223.547607][T22466] tpg colorspace: 8 [ 1223.559342][T22466] tpg transfer function: 0/0 [ 1223.571652][T22466] tpg Y'CbCr encoding: 0/0 [ 1223.576860][T22466] tpg quantization: 0/0 [ 1223.586654][T22466] tpg RGB range: 0/2 [ 1223.601836][T22466] vivid-007: ================== END STATUS ================== [ 1224.904947][T22484] FAULT_INJECTION: forcing a failure. [ 1224.904947][T22484] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1224.969352][T22484] CPU: 1 UID: 0 PID: 22484 Comm: syz.0.3159 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1224.969407][T22484] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1224.969420][T22484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1224.969439][T22484] Call Trace: [ 1224.969450][T22484] [ 1224.969462][T22484] dump_stack_lvl+0x100/0x190 [ 1224.969516][T22484] should_fail_ex.cold+0x5/0xa [ 1224.969566][T22484] _copy_from_user+0x2e/0xd0 [ 1224.969620][T22484] memdup_user+0x6b/0xe0 [ 1224.969662][T22484] strndup_user+0x78/0xe0 [ 1224.969705][T22484] __x64_sys_fsopen+0x9e/0x220 [ 1224.969739][T22484] do_syscall_64+0x106/0xf80 [ 1224.969788][T22484] ? clear_bhb_loop+0x40/0x90 [ 1224.969830][T22484] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1224.969864][T22484] RIP: 0033:0x7fc70399bf79 [ 1224.969891][T22484] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1224.969924][T22484] RSP: 002b:00007fc7047f6028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae [ 1224.969957][T22484] RAX: ffffffffffffffda RBX: 00007fc703c15fa0 RCX: 00007fc70399bf79 [ 1224.969978][T22484] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 1224.969998][T22484] RBP: 00007fc703a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1224.970019][T22484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1224.970038][T22484] R13: 00007fc703c16038 R14: 00007fc703c15fa0 R15: 00007ffc59495818 [ 1224.970082][T22484] [ 1225.619704][T22497] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3162'. [ 1225.646504][T22496] input: f as /devices/virtual/input/input17 [ 1226.947257][ T30] audit: type=1804 audit(4294967302.340:20): pid=22517 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.3168" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1228.172446][T22270] Bluetooth: hci0: unexpected event 0x33 length: 124 > 10 [ 1228.982966][T22541] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 1229.213480][ T30] audit: type=1804 audit(4294967298.290:21): pid=22547 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.3177" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1229.675536][T22554] netlink: 'syz.2.3179': attribute type 1 has an invalid length. [ 1230.991687][ T30] audit: type=1804 audit(4294967300.070:22): pid=22578 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.3181" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1232.645329][T22601] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 1233.571552][T22605] Lens A: ================= START STATUS ================= [ 1233.585952][T22605] Lens A: Focus, Absolute: 0 [ 1233.590827][T22605] Lens A: ================== END STATUS ================== [ 1235.386610][T22629] FAULT_INJECTION: forcing a failure. [ 1235.386610][T22629] name failslab, interval 1, probability 0, space 0, times 0 [ 1235.463216][T22629] CPU: 1 UID: 0 PID: 22629 Comm: syz.2.3192 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1235.463269][T22629] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1235.463282][T22629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1235.463300][T22629] Call Trace: [ 1235.463310][T22629] [ 1235.463322][T22629] dump_stack_lvl+0x100/0x190 [ 1235.463373][T22629] should_fail_ex.cold+0x5/0xa [ 1235.463410][T22629] should_failslab+0xc2/0x120 [ 1235.463454][T22629] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1235.463486][T22629] ? alloc_pipe_info+0x10e/0x590 [ 1235.463527][T22629] ? aa_file_perm+0x268/0x1530 [ 1235.463573][T22629] alloc_pipe_info+0x10e/0x590 [ 1235.463612][T22629] ? aa_file_perm+0x277/0x1530 [ 1235.463647][T22629] splice_direct_to_actor+0x78f/0xa30 [ 1235.463690][T22629] ? __pfx_direct_splice_actor+0x10/0x10 [ 1235.463730][T22629] ? __pfx_aa_file_perm+0x10/0x10 [ 1235.463768][T22629] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 1235.463821][T22629] do_splice_direct+0x174/0x240 [ 1235.463863][T22629] ? __pfx_do_splice_direct+0x10/0x10 [ 1235.463902][T22629] ? common_file_perm+0x1ab/0x4f0 [ 1235.463949][T22629] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 1235.463991][T22629] ? rw_verify_area+0xce/0x6d0 [ 1235.464029][T22629] do_sendfile+0xadc/0xe20 [ 1235.464075][T22629] ? __pfx_do_sendfile+0x10/0x10 [ 1235.464113][T22629] ? __fget_files+0x21f/0x3d0 [ 1235.464163][T22629] __x64_sys_sendfile64+0x1d8/0x220 [ 1235.464208][T22629] ? ksys_write+0x1ac/0x250 [ 1235.464252][T22629] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 1235.464322][T22629] do_syscall_64+0x106/0xf80 [ 1235.464368][T22629] ? clear_bhb_loop+0x40/0x90 [ 1235.464404][T22629] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1235.464437][T22629] RIP: 0033:0x7f930ef9bf79 [ 1235.464462][T22629] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1235.464491][T22629] RSP: 002b:00007f930fe5f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1235.464541][T22629] RAX: ffffffffffffffda RBX: 00007f930f216090 RCX: 00007f930ef9bf79 [ 1235.464585][T22629] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000005 [ 1235.464608][T22629] RBP: 00007f930fe5f090 R08: 0000000000000000 R09: 0000000000000000 [ 1235.464626][T22629] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000001 [ 1235.464644][T22629] R13: 00007f930f216128 R14: 00007f930f216090 R15: 00007fff6589ca88 [ 1235.464683][T22629] [ 1236.703602][T22654] serio: Serial port pty6 [ 1237.008991][T22654] zswap: compressor not available [ 1238.191352][T22663] bonding: no command found in bonding_masters - use +ifname or -ifname [ 1238.267824][T22713] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 1239.322147][T22660] netlink: 'syz.2.3199': attribute type 33 has an invalid length. [ 1239.471315][T22724] NFSD: Failed to start, no listeners configured. [ 1239.673118][T22660] netlink: 322 bytes leftover after parsing attributes in process `syz.2.3199'. [ 1241.420337][T22738] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1243.162628][T22761] block2mtd: illegal erase size [ 1243.175980][T22270] Bluetooth: hci0: unexpected event 0x33 length: 124 > 10 [ 1243.221560][T22759] ima: policy update failed [ 1243.242277][ T30] audit: type=1802 audit(4294967306.570:23): pid=22759 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.3213" res=0 errno=0 [ 1243.370651][ T30] audit: type=1804 audit(4294967306.700:24): pid=22768 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.3216" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1243.530440][T22773] input: 9%vJ,6 as /devices/virtual/input/input18 [ 1243.843544][T22772] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1244.386790][ T30] audit: type=1804 audit(4294967307.710:25): pid=22784 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3220" name="/newroot/186/file0" dev="tmpfs" ino=981 res=1 errno=0 [ 1245.095949][T22793] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1245.475935][T22806] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3225'. [ 1245.524768][T22806] FAULT_INJECTION: forcing a failure. [ 1245.524768][T22806] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1245.560489][T22806] CPU: 1 UID: 0 PID: 22806 Comm: syz.1.3225 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1245.560551][T22806] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1245.560560][T22806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1245.560574][T22806] Call Trace: [ 1245.560582][T22806] [ 1245.560590][T22806] dump_stack_lvl+0x100/0x190 [ 1245.560634][T22806] should_fail_ex.cold+0x5/0xa [ 1245.560661][T22806] _copy_from_iter+0x1f4/0x1690 [ 1245.560702][T22806] ? __asan_memset+0x23/0x50 [ 1245.560727][T22806] ? __pfx__copy_from_iter+0x10/0x10 [ 1245.560763][T22806] ? __pfx___alloc_skb+0x10/0x10 [ 1245.560795][T22806] ? __pfx___might_resched+0x10/0x10 [ 1245.560826][T22806] ? __lock_acquire+0x4a5/0x2630 [ 1245.560859][T22806] netlink_sendmsg+0x808/0xda0 [ 1245.560904][T22806] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1245.560940][T22806] ? __import_iovec+0x1d2/0x640 [ 1245.560979][T22806] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 1245.561014][T22806] ____sys_sendmsg+0xa54/0xc30 [ 1245.561042][T22806] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1245.561070][T22806] ? rcu_is_watching+0x12/0xc0 [ 1245.561101][T22806] ? kfree+0x2a0/0x670 [ 1245.561128][T22806] ___sys_sendmsg+0x190/0x1e0 [ 1245.561156][T22806] ? __pfx____sys_sendmsg+0x10/0x10 [ 1245.561208][T22806] ? __pfx___might_resched+0x10/0x10 [ 1245.561244][T22806] __sys_sendmmsg+0x205/0x430 [ 1245.561282][T22806] ? __pfx___sys_sendmmsg+0x10/0x10 [ 1245.561342][T22806] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1245.561392][T22806] ? fput+0x79/0x100 [ 1245.561426][T22806] ? ksys_write+0x1ac/0x250 [ 1245.561453][T22806] ? __pfx_ksys_write+0x10/0x10 [ 1245.561487][T22806] __x64_sys_sendmmsg+0x9c/0x100 [ 1245.561520][T22806] ? lockdep_hardirqs_on+0x78/0x100 [ 1245.561554][T22806] do_syscall_64+0x106/0xf80 [ 1245.561586][T22806] ? clear_bhb_loop+0x40/0x90 [ 1245.561620][T22806] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1245.561644][T22806] RIP: 0033:0x7fcdd219bf79 [ 1245.561663][T22806] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1245.561686][T22806] RSP: 002b:00007fcdd3007028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1245.561709][T22806] RAX: ffffffffffffffda RBX: 00007fcdd2415fa0 RCX: 00007fcdd219bf79 [ 1245.561724][T22806] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 1245.561739][T22806] RBP: 00007fcdd3007090 R08: 0000000000000000 R09: 0000000000000000 [ 1245.561753][T22806] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002 [ 1245.561767][T22806] R13: 00007fcdd2416038 R14: 00007fcdd2415fa0 R15: 00007ffd7ab407c8 [ 1245.561797][T22806] [ 1246.629939][T22270] Bluetooth: hci3: unexpected event 0x14 length: 16 > 6 [ 1248.691086][T22831] FAULT_INJECTION: forcing a failure. [ 1248.691086][T22831] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1248.766512][T22831] CPU: 1 UID: 0 PID: 22831 Comm: syz.3.3234 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1248.766565][T22831] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1248.766577][T22831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1248.766598][T22831] Call Trace: [ 1248.766608][T22831] [ 1248.766620][T22831] dump_stack_lvl+0x100/0x190 [ 1248.766673][T22831] should_fail_ex.cold+0x5/0xa [ 1248.766710][T22831] get_futex_key+0x1d2/0x1620 [ 1248.766770][T22831] ? __pfx_get_futex_key+0x10/0x10 [ 1248.766842][T22831] ? do_fault+0x6a4/0x1a00 [ 1248.766893][T22831] futex_wake+0xea/0x530 [ 1248.766931][T22831] ? __handle_mm_fault+0x4ec/0x2b60 [ 1248.766966][T22831] ? __pfx_futex_wake+0x10/0x10 [ 1248.767004][T22831] ? __lock_acquire+0x4a5/0x2630 [ 1248.767039][T22831] ? __pfx___handle_mm_fault+0x10/0x10 [ 1248.767072][T22831] ? __pfx_css_rstat_updated+0x10/0x10 [ 1248.767129][T22831] do_futex+0x32b/0x350 [ 1248.767163][T22831] ? __pfx_do_futex+0x10/0x10 [ 1248.767191][T22831] ? find_held_lock+0x2b/0x80 [ 1248.767252][T22831] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 1248.767296][T22831] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 1248.767357][T22831] __x64_sys_futex+0x34f/0x4d0 [ 1248.767396][T22831] ? exc_page_fault+0x6f/0xd0 [ 1248.767442][T22831] ? __pfx___x64_sys_futex+0x10/0x10 [ 1248.767482][T22831] ? do_user_addr_fault+0x8d6/0x12f0 [ 1248.767540][T22831] do_syscall_64+0x106/0xf80 [ 1248.767584][T22831] ? clear_bhb_loop+0x40/0x90 [ 1248.767625][T22831] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1248.767659][T22831] RIP: 0033:0x7f6f4139bf79 [ 1248.767686][T22831] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1248.767719][T22831] RSP: 002b:00007ffceb798d08 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1248.767750][T22831] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f6f4139bf79 [ 1248.767771][T22831] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6f41615fa8 [ 1248.767791][T22831] RBP: 00000000000011e2 R08: 0000000000000000 R09: 0000000000000000 [ 1248.767811][T22831] R10: 00007f6f41615fa0 R11: 0000000000000246 R12: 0000000000000000 [ 1248.767831][T22831] R13: 00007f6f41615fac R14: 00007f6f41615fa8 R15: 00007f6f41615fa0 [ 1248.767885][T22831] [ 1249.239267][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 1249.245586][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 1249.949199][ T30] audit: type=1804 audit(4294967313.280:26): pid=22842 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.3237" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1250.867870][T22849] netlink: 'syz.1.3238': attribute type 5 has an invalid length. [ 1250.876764][T22849] netlink: 4158 bytes leftover after parsing attributes in process `syz.1.3238'. [ 1251.205556][T22860] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 1252.592729][T22868] futex_wake_op: syz.1.3243 tries to shift op by -2048; fix this program [ 1253.063600][T22879] FAULT_INJECTION: forcing a failure. [ 1253.063600][T22879] name failslab, interval 1, probability 0, space 0, times 0 [ 1253.077329][T22879] CPU: 0 UID: 0 PID: 22879 Comm: syz.3.3244 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1253.077400][T22879] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1253.077413][T22879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1253.077434][T22879] Call Trace: [ 1253.077445][T22879] [ 1253.077457][T22879] dump_stack_lvl+0x100/0x190 [ 1253.077523][T22879] should_fail_ex.cold+0x5/0xa [ 1253.077559][T22879] ? process_preds+0x49c/0x1e10 [ 1253.077595][T22879] should_failslab+0xc2/0x120 [ 1253.077639][T22879] __kmalloc_noprof+0xe0/0x850 [ 1253.077682][T22879] process_preds+0x49c/0x1e10 [ 1253.077729][T22879] ? create_filter_start.constprop.0+0x134/0x310 [ 1253.077779][T22879] create_filter+0x140/0x210 [ 1253.077818][T22879] ? __pfx_create_filter+0x10/0x10 [ 1253.077858][T22879] ? find_held_lock+0x2b/0x80 [ 1253.077926][T22879] apply_event_filter+0x220/0x500 [ 1253.077969][T22879] ? __pfx_apply_event_filter+0x10/0x10 [ 1253.078024][T22879] event_filter_write+0x16d/0x290 [ 1253.078081][T22879] vfs_write+0x2aa/0x1070 [ 1253.078123][T22879] ? __pfx_event_filter_write+0x10/0x10 [ 1253.078181][T22879] ? __pfx_vfs_write+0x10/0x10 [ 1253.078224][T22879] ? __fget_files+0x215/0x3d0 [ 1253.078271][T22879] ? __fget_files+0x21f/0x3d0 [ 1253.078317][T22879] ksys_write+0x12a/0x250 [ 1253.078352][T22879] ? __pfx_ksys_write+0x10/0x10 [ 1253.078398][T22879] do_syscall_64+0x106/0xf80 [ 1253.078440][T22879] ? clear_bhb_loop+0x40/0x90 [ 1253.078477][T22879] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1253.078506][T22879] RIP: 0033:0x7f6f4139bf79 [ 1253.078553][T22879] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1253.078585][T22879] RSP: 002b:00007f6f421b6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1253.078618][T22879] RAX: ffffffffffffffda RBX: 00007f6f41616090 RCX: 00007f6f4139bf79 [ 1253.078642][T22879] RDX: 00000000000005c8 RSI: 0000000000000000 RDI: 0000000000000003 [ 1253.078663][T22879] RBP: 00007f6f414327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1253.078684][T22879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1253.078705][T22879] R13: 00007f6f41616128 R14: 00007f6f41616090 R15: 00007ffceb798ba8 [ 1253.078751][T22879] [ 1255.551309][T22905] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1256.637723][ T30] audit: type=1804 audit(4294967297.410:27): pid=22921 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.3254" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1257.787829][T22941] input: f as /devices/virtual/input/input19 [ 1257.920386][T22945] input: f as /devices/virtual/input/input20 [ 1258.164702][T22946] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1259.468909][T22967] FAULT_INJECTION: forcing a failure. [ 1259.468909][T22967] name failslab, interval 1, probability 0, space 0, times 0 [ 1259.545944][T22967] CPU: 0 UID: 0 PID: 22967 Comm: syz.1.3266 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1259.545994][T22967] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1259.546003][T22967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1259.546017][T22967] Call Trace: [ 1259.546025][T22967] [ 1259.546034][T22967] dump_stack_lvl+0x100/0x190 [ 1259.546070][T22967] should_fail_ex.cold+0x5/0xa [ 1259.546096][T22967] should_failslab+0xc2/0x120 [ 1259.546127][T22967] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1259.546153][T22967] ? dup_fd+0x4d/0xd10 [ 1259.546204][T22967] ? do_futex+0x192/0x350 [ 1259.546241][T22967] dup_fd+0x4d/0xd10 [ 1259.546291][T22967] __do_sys_close_range+0x327/0x740 [ 1259.546345][T22967] ? __pfx___do_sys_close_range+0x10/0x10 [ 1259.546387][T22967] do_syscall_64+0x106/0xf80 [ 1259.546419][T22967] ? clear_bhb_loop+0x40/0x90 [ 1259.546448][T22967] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1259.546471][T22967] RIP: 0033:0x7fcdd219bf79 [ 1259.546489][T22967] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1259.546512][T22967] RSP: 002b:00007fcdd3007028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 1259.546534][T22967] RAX: ffffffffffffffda RBX: 00007fcdd2415fa0 RCX: 00007fcdd219bf79 [ 1259.546549][T22967] RDX: 0000000000000002 RSI: ffffffffffffffff RDI: 0000000000000002 [ 1259.546562][T22967] RBP: 00007fcdd22327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1259.546576][T22967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1259.546589][T22967] R13: 00007fcdd2416038 R14: 00007fcdd2415fa0 R15: 00007ffd7ab407c8 [ 1259.546623][T22967] [ 1260.658940][T22983] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1261.377079][T22967] kexec: Could not allocate control_code_buffer [ 1262.362435][T22270] Bluetooth: hci4: unexpected event 0x33 length: 124 > 10 [ 1263.119711][T23027] zswap: compressor not available [ 1263.673017][ T30] audit: type=1804 audit(4294967299.510:28): pid=23040 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.3284" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1264.967392][T23050] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1264.999918][T23050] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1265.044990][T23050] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1265.073122][T23050] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1266.609260][T22270] Bluetooth: hci4: command 0x0c1a tx timeout [ 1266.893249][T23086] smpboot: CPU 1 is now offline [ 1267.008185][T22270] Bluetooth: hci0: command 0x0c1a tx timeout [ 1267.088574][T22270] Bluetooth: hci1: command 0x0c1a tx timeout [ 1267.094632][T22270] Bluetooth: hci3: command 0x0c1a tx timeout [ 1267.309569][T22270] Bluetooth: hci0: unexpected event 0x14 length: 16 > 6 [ 1267.723388][ T30] audit: type=1804 audit(4294967303.560:29): pid=23103 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.3300" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1268.938371][T23119] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3305'. [ 1269.021865][T23119] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3305'. [ 1269.104700][T23119] FAULT_INJECTION: forcing a failure. [ 1269.104700][T23119] name failslab, interval 1, probability 0, space 0, times 0 [ 1269.221403][T23119] CPU: 0 UID: 0 PID: 23119 Comm: syz.1.3305 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1269.221442][T23119] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1269.221451][T23119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1269.221481][T23119] Call Trace: [ 1269.221494][T23119] [ 1269.221521][T23119] dump_stack_lvl+0x100/0x190 [ 1269.221560][T23119] should_fail_ex.cold+0x5/0xa [ 1269.221587][T23119] should_failslab+0xc2/0x120 [ 1269.221621][T23119] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 1269.221650][T23119] ? __alloc_skb+0x140/0x710 [ 1269.221684][T23119] ? rcu_is_watching+0x12/0xc0 [ 1269.221720][T23119] __alloc_skb+0x140/0x710 [ 1269.221748][T23119] ? __alloc_skb+0x5b7/0x710 [ 1269.221778][T23119] ? __pfx___alloc_skb+0x10/0x10 [ 1269.221807][T23119] ? __pfx_inet6_rtm_newaddr+0x10/0x10 [ 1269.221839][T23119] netlink_ack+0x117/0xb80 [ 1269.221884][T23119] netlink_rcv_skb+0x333/0x420 [ 1269.221922][T23119] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1269.221960][T23119] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1269.222008][T23119] ? netlink_deliver_tap+0x1ae/0xcc0 [ 1269.222049][T23119] netlink_unicast+0x5aa/0x870 [ 1269.222090][T23119] ? __pfx_netlink_unicast+0x10/0x10 [ 1269.222126][T23119] ? __pfx___might_resched+0x10/0x10 [ 1269.222156][T23119] ? __lock_acquire+0x4a5/0x2630 [ 1269.222189][T23119] netlink_sendmsg+0x8b0/0xda0 [ 1269.222231][T23119] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1269.222266][T23119] ? __import_iovec+0x1d2/0x640 [ 1269.222312][T23119] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 1269.222347][T23119] ____sys_sendmsg+0xa54/0xc30 [ 1269.222374][T23119] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1269.222402][T23119] ? rcu_is_watching+0x12/0xc0 [ 1269.222433][T23119] ? kfree+0x2a0/0x670 [ 1269.222458][T23119] ___sys_sendmsg+0x190/0x1e0 [ 1269.222486][T23119] ? __pfx____sys_sendmsg+0x10/0x10 [ 1269.222543][T23119] ? __pfx___might_resched+0x10/0x10 [ 1269.222578][T23119] __sys_sendmmsg+0x205/0x430 [ 1269.222615][T23119] ? __pfx___sys_sendmmsg+0x10/0x10 [ 1269.222658][T23119] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1269.222718][T23119] ? fput+0x79/0x100 [ 1269.222752][T23119] ? ksys_write+0x1ac/0x250 [ 1269.222780][T23119] ? __pfx_ksys_write+0x10/0x10 [ 1269.222813][T23119] __x64_sys_sendmmsg+0x9c/0x100 [ 1269.222845][T23119] ? lockdep_hardirqs_on+0x78/0x100 [ 1269.222879][T23119] do_syscall_64+0x106/0xf80 [ 1269.222912][T23119] ? clear_bhb_loop+0x40/0x90 [ 1269.222959][T23119] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1269.222983][T23119] RIP: 0033:0x7fcdd219bf79 [ 1269.223001][T23119] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1269.223024][T23119] RSP: 002b:00007fcdd3007028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1269.223046][T23119] RAX: ffffffffffffffda RBX: 00007fcdd2415fa0 RCX: 00007fcdd219bf79 [ 1269.223061][T23119] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 1269.223075][T23119] RBP: 00007fcdd3007090 R08: 0000000000000000 R09: 0000000000000000 [ 1269.223089][T23119] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002 [ 1269.223102][T23119] R13: 00007fcdd2416038 R14: 00007fcdd2415fa0 R15: 00007ffd7ab407c8 [ 1269.223132][T23119] [ 1270.897567][T23144] Lens A: ================= START STATUS ================= [ 1270.990357][T23144] Lens A: Focus, Absolute: 0 [ 1271.067365][T23144] Lens A: ================== END STATUS ================== [ 1272.807874][T23173] input: f as /devices/virtual/input/input21 [ 1274.537495][T23182] syz.0.3322 (23182) used obsolete PPPIOCDETACH ioctl [ 1276.112517][T23212] FAULT_INJECTION: forcing a failure. [ 1276.112517][T23212] name failslab, interval 1, probability 0, space 0, times 0 [ 1276.221409][T23212] CPU: 0 UID: 0 PID: 23212 Comm: syz.1.3328 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1276.221451][T23212] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1276.221461][T23212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1276.221476][T23212] Call Trace: [ 1276.221483][T23212] [ 1276.221492][T23212] dump_stack_lvl+0x100/0x190 [ 1276.221532][T23212] should_fail_ex.cold+0x5/0xa [ 1276.221560][T23212] should_failslab+0xc2/0x120 [ 1276.221595][T23212] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1276.221624][T23212] ? do_getname+0x35/0x390 [ 1276.221669][T23212] do_getname+0x35/0x390 [ 1276.221712][T23212] do_sys_openat2+0xc5/0x1e0 [ 1276.221735][T23212] ? __pfx_do_sys_openat2+0x10/0x10 [ 1276.221787][T23212] __x64_sys_openat+0x12d/0x210 [ 1276.221811][T23212] ? __pfx___x64_sys_openat+0x10/0x10 [ 1276.221834][T23212] ? xfd_validate_state+0x129/0x190 [ 1276.221886][T23212] do_syscall_64+0x106/0xf80 [ 1276.221922][T23212] ? clear_bhb_loop+0x40/0x90 [ 1276.221953][T23212] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1276.221978][T23212] RIP: 0033:0x7fcdd219bf79 [ 1276.221998][T23212] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1276.222022][T23212] RSP: 002b:00007fcdd3007028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1276.222045][T23212] RAX: ffffffffffffffda RBX: 00007fcdd2415fa0 RCX: 00007fcdd219bf79 [ 1276.222062][T23212] RDX: 000000000006ab82 RSI: 00002000000011c0 RDI: ffffffffffffff9c [ 1276.222078][T23212] RBP: 00007fcdd22327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1276.222093][T23212] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1276.222107][T23212] R13: 00007fcdd2416038 R14: 00007fcdd2415fa0 R15: 00007ffd7ab407c8 [ 1276.222138][T23212] [ 1276.607807][T23224] Lens A: ================= START STATUS ================= [ 1276.615258][T23224] Lens A: Focus, Absolute: 0 [ 1276.646334][T23224] Lens A: ================== END STATUS ================== [ 1277.733458][T23242] FAULT_INJECTION: forcing a failure. [ 1277.733458][T23242] name failslab, interval 1, probability 0, space 0, times 0 [ 1277.804469][T23242] CPU: 0 UID: 0 PID: 23242 Comm: syz.1.3336 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1277.804508][T23242] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1277.804517][T23242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1277.804531][T23242] Call Trace: [ 1277.804538][T23242] [ 1277.804547][T23242] dump_stack_lvl+0x100/0x190 [ 1277.804584][T23242] should_fail_ex.cold+0x5/0xa [ 1277.804610][T23242] ? copy_splice_read+0x1a3/0xb90 [ 1277.804644][T23242] should_failslab+0xc2/0x120 [ 1277.804696][T23242] __kmalloc_noprof+0xe0/0x850 [ 1277.804734][T23242] copy_splice_read+0x1a3/0xb90 [ 1277.804769][T23242] ? __pfx_copy_splice_read+0x10/0x10 [ 1277.804800][T23242] ? look_up_lock_class+0x64/0x120 [ 1277.804840][T23242] ? lockdep_init_map_type+0x5c/0x250 [ 1277.804868][T23242] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 1277.804898][T23242] ? __pfx_copy_splice_read+0x10/0x10 [ 1277.804927][T23242] do_splice_read+0x285/0x370 [ 1277.804958][T23242] splice_direct_to_actor+0x2a1/0xa30 [ 1277.804989][T23242] ? __pfx_direct_splice_actor+0x10/0x10 [ 1277.805025][T23242] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 1277.805063][T23242] do_splice_direct+0x174/0x240 [ 1277.805094][T23242] ? __pfx_do_splice_direct+0x10/0x10 [ 1277.805121][T23242] ? common_file_perm+0x1ab/0x4f0 [ 1277.805157][T23242] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 1277.805190][T23242] ? rw_verify_area+0xce/0x6d0 [ 1277.805218][T23242] do_sendfile+0xadc/0xe20 [ 1277.805251][T23242] ? __pfx_do_sendfile+0x10/0x10 [ 1277.805278][T23242] ? __fget_files+0x21f/0x3d0 [ 1277.805315][T23242] __x64_sys_sendfile64+0x1d8/0x220 [ 1277.805348][T23242] ? ksys_write+0x1ac/0x250 [ 1277.805376][T23242] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 1277.805419][T23242] do_syscall_64+0x106/0xf80 [ 1277.805451][T23242] ? clear_bhb_loop+0x40/0x90 [ 1277.805481][T23242] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1277.805505][T23242] RIP: 0033:0x7fcdd219bf79 [ 1277.805523][T23242] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1277.805546][T23242] RSP: 002b:00007fcdd2fe6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1277.805567][T23242] RAX: ffffffffffffffda RBX: 00007fcdd2416090 RCX: 00007fcdd219bf79 [ 1277.805583][T23242] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000005 [ 1277.805596][T23242] RBP: 00007fcdd2fe6090 R08: 0000000000000000 R09: 0000000000000000 [ 1277.805610][T23242] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000001 [ 1277.805624][T23242] R13: 00007fcdd2416128 R14: 00007fcdd2416090 R15: 00007ffd7ab407c8 [ 1277.805655][T23242] [ 1278.467787][T23238] zswap: compressor not available [ 1278.789812][T23267] futex_wake_op: syz.0.3340 tries to shift op by -2048; fix this program [ 1280.170031][T23283] FAULT_INJECTION: forcing a failure. [ 1280.170031][T23283] name failslab, interval 1, probability 0, space 0, times 0 [ 1280.217419][T23283] CPU: 0 UID: 0 PID: 23283 Comm: syz.2.3346 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1280.217461][T23283] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1280.217470][T23283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1280.217484][T23283] Call Trace: [ 1280.217492][T23283] [ 1280.217508][T23283] dump_stack_lvl+0x100/0x190 [ 1280.217547][T23283] should_fail_ex.cold+0x5/0xa [ 1280.217572][T23283] ? tomoyo_realpath_from_path+0xb6/0x690 [ 1280.217596][T23283] should_failslab+0xc2/0x120 [ 1280.217628][T23283] __kmalloc_noprof+0xe0/0x850 [ 1280.217661][T23283] tomoyo_realpath_from_path+0xb6/0x690 [ 1280.217691][T23283] tomoyo_path_number_perm+0x23c/0x580 [ 1280.217725][T23283] ? tomoyo_path_number_perm+0x22e/0x580 [ 1280.217761][T23283] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1280.217823][T23283] ? find_held_lock+0x2b/0x80 [ 1280.217855][T23283] ? __fget_files+0x215/0x3d0 [ 1280.217883][T23283] ? hook_file_ioctl_common+0x146/0x410 [ 1280.217923][T23283] ? __fget_files+0x21f/0x3d0 [ 1280.217956][T23283] security_file_ioctl+0xd3/0x230 [ 1280.217992][T23283] __x64_sys_ioctl+0xb7/0x210 [ 1280.218019][T23283] do_syscall_64+0x106/0xf80 [ 1280.218053][T23283] ? clear_bhb_loop+0x40/0x90 [ 1280.218081][T23283] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1280.218105][T23283] RIP: 0033:0x7f930ef9bf79 [ 1280.218124][T23283] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1280.218145][T23283] RSP: 002b:00007f930fe80028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1280.218166][T23283] RAX: ffffffffffffffda RBX: 00007f930f215fa0 RCX: 00007f930ef9bf79 [ 1280.218181][T23283] RDX: 0000000000000038 RSI: 0000000040246f4c RDI: 0000000000000004 [ 1280.218195][T23283] RBP: 00007f930fe80090 R08: 0000000000000000 R09: 0000000000000000 [ 1280.218208][T23283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1280.218220][T23283] R13: 00007f930f216038 R14: 00007f930f215fa0 R15: 00007fff6589ca88 [ 1280.218249][T23283] [ 1280.218283][T23283] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1280.508055][T23278] FAULT_INJECTION: forcing a failure. [ 1280.508055][T23278] name failslab, interval 1, probability 0, space 0, times 0 [ 1280.542200][T23278] CPU: 0 UID: 0 PID: 23278 Comm: syz.1.3344 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1280.542239][T23278] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1280.542248][T23278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1280.542262][T23278] Call Trace: [ 1280.542269][T23278] [ 1280.542277][T23278] dump_stack_lvl+0x100/0x190 [ 1280.542315][T23278] should_fail_ex.cold+0x5/0xa [ 1280.542339][T23278] ? ops_init+0x77/0x5f0 [ 1280.542370][T23278] should_failslab+0xc2/0x120 [ 1280.542401][T23278] __kmalloc_noprof+0xe0/0x850 [ 1280.542433][T23278] ops_init+0x77/0x5f0 [ 1280.542476][T23278] setup_net+0x118/0x3a0 [ 1280.542511][T23278] ? __pfx_setup_net+0x10/0x10 [ 1280.542543][T23278] ? lockdep_init_map_type+0x5c/0x250 [ 1280.542570][T23278] ? mutex_init_lockep+0x110/0x150 [ 1280.542600][T23278] copy_net_ns+0x46f/0x7c0 [ 1280.542639][T23278] create_new_namespaces+0x3ea/0xac0 [ 1280.542680][T23278] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1280.542718][T23278] ksys_unshare+0x455/0xab0 [ 1280.542744][T23278] ? __pfx_ksys_unshare+0x10/0x10 [ 1280.542767][T23278] ? xfd_validate_state+0x129/0x190 [ 1280.542804][T23278] __x64_sys_unshare+0x31/0x40 [ 1280.542827][T23278] do_syscall_64+0x106/0xf80 [ 1280.542859][T23278] ? clear_bhb_loop+0x40/0x90 [ 1280.542887][T23278] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1280.542910][T23278] RIP: 0033:0x7fcdd219bf79 [ 1280.542928][T23278] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1280.542949][T23278] RSP: 002b:00007fcdd3007028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1280.542970][T23278] RAX: ffffffffffffffda RBX: 00007fcdd2415fa0 RCX: 00007fcdd219bf79 [ 1280.542986][T23278] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1280.542999][T23278] RBP: 00007fcdd22327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1280.543013][T23278] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1280.543027][T23278] R13: 00007fcdd2416038 R14: 00007fcdd2415fa0 R15: 00007ffd7ab407c8 [ 1280.543056][T23278] [ 1281.311474][T23287] zswap: compressor not available [ 1283.146398][T23337] FAULT_INJECTION: forcing a failure. [ 1283.146398][T23337] name failslab, interval 1, probability 0, space 0, times 0 [ 1283.210735][T23337] CPU: 0 UID: 0 PID: 23337 Comm: syz.0.3359 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1283.210774][T23337] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1283.210783][T23337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1283.210797][T23337] Call Trace: [ 1283.210804][T23337] [ 1283.210812][T23337] dump_stack_lvl+0x100/0x190 [ 1283.210849][T23337] should_fail_ex.cold+0x5/0xa [ 1283.210875][T23337] should_failslab+0xc2/0x120 [ 1283.210907][T23337] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1283.210934][T23337] ? skb_clone+0x190/0x400 [ 1283.210972][T23337] skb_clone+0x190/0x400 [ 1283.211006][T23337] netlink_deliver_tap+0xaed/0xcc0 [ 1283.211047][T23337] netlink_unicast+0x650/0x870 [ 1283.211087][T23337] ? __pfx_netlink_unicast+0x10/0x10 [ 1283.211133][T23337] netlink_sendmsg+0x8b0/0xda0 [ 1283.211174][T23337] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1283.211214][T23337] ? __import_iovec+0x1d2/0x640 [ 1283.211253][T23337] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 1283.211287][T23337] ____sys_sendmsg+0xa54/0xc30 [ 1283.211314][T23337] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1283.211351][T23337] ___sys_sendmsg+0x190/0x1e0 [ 1283.211377][T23337] ? __pfx____sys_sendmsg+0x10/0x10 [ 1283.211437][T23337] __sys_sendmsg+0x170/0x220 [ 1283.211470][T23337] ? __pfx___sys_sendmsg+0x10/0x10 [ 1283.211521][T23337] do_syscall_64+0x106/0xf80 [ 1283.211554][T23337] ? clear_bhb_loop+0x40/0x90 [ 1283.211583][T23337] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1283.211606][T23337] RIP: 0033:0x7fc70399bf79 [ 1283.211624][T23337] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1283.211646][T23337] RSP: 002b:00007fc7047f6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1283.211668][T23337] RAX: ffffffffffffffda RBX: 00007fc703c15fa0 RCX: 00007fc70399bf79 [ 1283.211683][T23337] RDX: 0000000024048084 RSI: 0000200000000440 RDI: 0000000000000003 [ 1283.211696][T23337] RBP: 00007fc7047f6090 R08: 0000000000000000 R09: 0000000000000000 [ 1283.211710][T23337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1283.211723][T23337] R13: 00007fc703c16038 R14: 00007fc703c15fa0 R15: 00007ffc59495818 [ 1283.211752][T23337] [ 1283.448308][T23341] netlink: 'syz.2.3360': attribute type 1 has an invalid length. [ 1283.457587][T23340] netlink: 'syz.2.3360': attribute type 1 has an invalid length. [ 1284.255874][T22270] Bluetooth: hci0: unexpected event 0x14 length: 16 > 6 [ 1287.459881][T23399] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3375'. [ 1287.985209][ C0] vcan0: j1939_tp_rxtimer: 0xffff88801cedfc00: rx timeout, send abort [ 1287.995124][ C0] vcan0: j1939_tp_rxtimer: 0xffff88805a9a5c00: rx timeout, send abort [ 1288.003800][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88801cedfc00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 1288.019443][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88805a9a5c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 1289.522210][T23409] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1289.552562][T23409] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1289.579856][T23409] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1289.627330][T23409] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1290.360692][T22270] Bluetooth: hci0: unexpected event 0x33 length: 124 > 10 [ 1290.607099][T22270] Bluetooth: hci4: command 0x0c1a tx timeout [ 1291.568482][T22270] Bluetooth: hci0: command 0x0c1a tx timeout [ 1291.647262][T22341] Bluetooth: hci3: command 0x0c1a tx timeout [ 1291.653516][T22270] Bluetooth: hci1: command 0x0c1a tx timeout [ 1292.563471][T23457] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1293.560133][T23474] zswap: compressor not available [ 1293.904802][T23492] FAULT_INJECTION: forcing a failure. [ 1293.904802][T23492] name failslab, interval 1, probability 0, space 0, times 0 [ 1294.037742][T23492] CPU: 0 UID: 0 PID: 23492 Comm: syz.3.3398 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1294.037782][T23492] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1294.037790][T23492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1294.037804][T23492] Call Trace: [ 1294.037812][T23492] [ 1294.037820][T23492] dump_stack_lvl+0x100/0x190 [ 1294.037858][T23492] should_fail_ex.cold+0x5/0xa [ 1294.037884][T23492] should_failslab+0xc2/0x120 [ 1294.037916][T23492] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1294.037938][T23492] ? sctp_add_bind_addr+0xae/0x3e0 [ 1294.037968][T23492] ? __sctp_v6_cmp_addr+0x206/0x530 [ 1294.038008][T23492] sctp_add_bind_addr+0xae/0x3e0 [ 1294.038042][T23492] sctp_copy_local_addr_list+0x349/0x550 [ 1294.038083][T23492] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 1294.038122][T23492] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 1294.038160][T23492] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1294.038196][T23492] sctp_bind_addr_copy+0xe0/0x530 [ 1294.038233][T23492] sctp_connect_new_asoc+0x1c9/0x770 [ 1294.038269][T23492] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 1294.038293][T23492] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 1294.038329][T23492] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 1294.038375][T23492] __sctp_connect+0x3e7/0xc70 [ 1294.038405][T23492] ? __pfx___sctp_connect+0x10/0x10 [ 1294.038431][T23492] ? __pfx_sctp_inet_connect+0x10/0x10 [ 1294.038456][T23492] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1294.038490][T23492] ? __pfx_sctp_inet_connect+0x10/0x10 [ 1294.038513][T23492] sctp_inet_connect+0x15f/0x220 [ 1294.038539][T23492] __sys_connect_file+0x141/0x1a0 [ 1294.038571][T23492] __sys_connect+0x141/0x170 [ 1294.038599][T23492] ? __pfx___sys_connect+0x10/0x10 [ 1294.038626][T23492] ? __fget_files+0x21f/0x3d0 [ 1294.038666][T23492] ? __pfx_ksys_write+0x10/0x10 [ 1294.038700][T23492] __x64_sys_connect+0x72/0xb0 [ 1294.038727][T23492] ? lockdep_hardirqs_on+0x78/0x100 [ 1294.038760][T23492] do_syscall_64+0x106/0xf80 [ 1294.038792][T23492] ? clear_bhb_loop+0x40/0x90 [ 1294.038820][T23492] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1294.038843][T23492] RIP: 0033:0x7f6f4139bf79 [ 1294.038862][T23492] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1294.038884][T23492] RSP: 002b:00007f6f421b6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 1294.038905][T23492] RAX: ffffffffffffffda RBX: 00007f6f41616090 RCX: 00007f6f4139bf79 [ 1294.038920][T23492] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 1294.038933][T23492] RBP: 00007f6f421b6090 R08: 0000000000000000 R09: 0000000000000000 [ 1294.038947][T23492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1294.038960][T23492] R13: 00007f6f41616128 R14: 00007f6f41616090 R15: 00007ffceb798ba8 [ 1294.038989][T23492] [ 1296.737846][T23511] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3401'. [ 1297.137377][T23520] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1297.624129][T23528] netlink: 252 bytes leftover after parsing attributes in process `syz.2.3405'. [ 1297.944355][T23537] input: f as /devices/virtual/input/input22 [ 1299.017635][T23557] FAULT_INJECTION: forcing a failure. [ 1299.017635][T23557] name failslab, interval 1, probability 0, space 0, times 0 [ 1299.077205][T23557] CPU: 0 UID: 0 PID: 23557 Comm: syz.2.3413 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1299.077244][T23557] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1299.077253][T23557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1299.077266][T23557] Call Trace: [ 1299.077274][T23557] [ 1299.077282][T23557] dump_stack_lvl+0x100/0x190 [ 1299.077321][T23557] should_fail_ex.cold+0x5/0xa [ 1299.077346][T23557] should_failslab+0xc2/0x120 [ 1299.077380][T23557] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1299.077406][T23557] ? skb_clone+0x190/0x400 [ 1299.077444][T23557] skb_clone+0x190/0x400 [ 1299.077478][T23557] netlink_deliver_tap+0xaed/0xcc0 [ 1299.077518][T23557] netlink_unicast+0x650/0x870 [ 1299.077558][T23557] ? __pfx_netlink_unicast+0x10/0x10 [ 1299.077605][T23557] netlink_sendmsg+0x8b0/0xda0 [ 1299.077645][T23557] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1299.077680][T23557] ? __import_iovec+0x1d2/0x640 [ 1299.077719][T23557] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 1299.077759][T23557] ____sys_sendmsg+0xa54/0xc30 [ 1299.077786][T23557] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1299.077822][T23557] ___sys_sendmsg+0x190/0x1e0 [ 1299.077849][T23557] ? __pfx____sys_sendmsg+0x10/0x10 [ 1299.077907][T23557] __sys_sendmsg+0x170/0x220 [ 1299.077940][T23557] ? __pfx___sys_sendmsg+0x10/0x10 [ 1299.077989][T23557] do_syscall_64+0x106/0xf80 [ 1299.078022][T23557] ? clear_bhb_loop+0x40/0x90 [ 1299.078050][T23557] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1299.078074][T23557] RIP: 0033:0x7f930ef9bf79 [ 1299.078092][T23557] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1299.078114][T23557] RSP: 002b:00007f930fe80028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1299.078136][T23557] RAX: ffffffffffffffda RBX: 00007f930f215fa0 RCX: 00007f930ef9bf79 [ 1299.078151][T23557] RDX: 0000000024048084 RSI: 0000200000000440 RDI: 0000000000000003 [ 1299.078166][T23557] RBP: 00007f930fe80090 R08: 0000000000000000 R09: 0000000000000000 [ 1299.078179][T23557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1299.078192][T23557] R13: 00007f930f216038 R14: 00007f930f215fa0 R15: 00007fff6589ca88 [ 1299.078221][T23557] [ 1299.426303][T23560] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3416'. [ 1299.460779][T23562] FAULT_INJECTION: forcing a failure. [ 1299.460779][T23562] name failslab, interval 1, probability 0, space 0, times 0 [ 1299.473733][T23562] CPU: 0 UID: 0 PID: 23562 Comm: syz.1.3415 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1299.473780][T23562] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1299.473789][T23562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1299.473804][T23562] Call Trace: [ 1299.473814][T23562] [ 1299.473823][T23562] dump_stack_lvl+0x100/0x190 [ 1299.473864][T23562] should_fail_ex.cold+0x5/0xa [ 1299.473893][T23562] should_failslab+0xc2/0x120 [ 1299.473927][T23562] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1299.473957][T23562] ? __kernfs_new_node+0xd2/0x960 [ 1299.474002][T23562] __kernfs_new_node+0xd2/0x960 [ 1299.474045][T23562] ? __pfx___kernfs_new_node+0x10/0x10 [ 1299.474092][T23562] ? find_held_lock+0x2b/0x80 [ 1299.474127][T23562] ? kernfs_root+0xee/0x2a0 [ 1299.474165][T23562] ? kernfs_root+0xee/0x2a0 [ 1299.474210][T23562] kernfs_new_node+0x11b/0x1a0 [ 1299.474246][T23562] __kernfs_create_file+0x53/0x350 [ 1299.474283][T23562] sysfs_add_file_mode_ns+0x207/0x3c0 [ 1299.474327][T23562] sysfs_merge_group+0x194/0x340 [ 1299.474370][T23562] ? __pfx_sysfs_merge_group+0x10/0x10 [ 1299.474416][T23562] ? __pfx_dev_add_physical_location+0x10/0x10 [ 1299.474452][T23562] ? bus_to_subsys+0x114/0x150 [ 1299.474494][T23562] dpm_sysfs_add+0x237/0x280 [ 1299.474530][T23562] device_add+0x9ef/0x1950 [ 1299.474568][T23562] ? __pfx_device_add+0x10/0x10 [ 1299.474601][T23562] ? __pfx___might_resched+0x10/0x10 [ 1299.474637][T23562] ? lockdep_hardirqs_on+0x78/0x100 [ 1299.474685][T23562] __add_disk+0x518/0xe40 [ 1299.474724][T23562] add_disk_fwnode+0x118/0x5c0 [ 1299.474768][T23562] loop_add+0x90b/0xb60 [ 1299.474808][T23562] ? __pfx_loop_add+0x10/0x10 [ 1299.474866][T23562] ? find_held_lock+0x2b/0x80 [ 1299.474901][T23562] ? __fget_files+0x215/0x3d0 [ 1299.474935][T23562] loop_control_ioctl+0xae/0x620 [ 1299.474978][T23562] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1299.475024][T23562] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1299.475068][T23562] __x64_sys_ioctl+0x18e/0x210 [ 1299.475096][T23562] do_syscall_64+0x106/0xf80 [ 1299.475132][T23562] ? clear_bhb_loop+0x40/0x90 [ 1299.475162][T23562] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1299.475192][T23562] RIP: 0033:0x7fcdd219bf79 [ 1299.475213][T23562] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1299.475237][T23562] RSP: 002b:00007fcdd3007028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1299.475261][T23562] RAX: ffffffffffffffda RBX: 00007fcdd2415fa0 RCX: 00007fcdd219bf79 [ 1299.475277][T23562] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000006 [ 1299.475293][T23562] RBP: 00007fcdd22327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1299.475308][T23562] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1299.475324][T23562] R13: 00007fcdd2416038 R14: 00007fcdd2415fa0 R15: 00007ffd7ab407c8 [ 1299.475355][T23562] [ 1301.657030][T23590] zswap: compressor not available [ 1301.933933][T23590] zswap: compressor not available [ 1301.959708][T23604] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 1302.062012][T23606] smpboot: CPU 1 is now offline [ 1302.465108][T23611] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1302.503183][T23614] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 1302.748340][T23609] smpboot: CPU 1 is now offline [ 1302.798441][T22270] Bluetooth: hci4: unexpected event 0x33 length: 124 > 10 [ 1302.877749][T23624] rnbd_client L202: map_device: Unknown parameter or missing value '7' [ 1303.098865][T23631] netlink: 330 bytes leftover after parsing attributes in process `syz.2.3433'. [ 1303.151347][ T30] audit: type=1804 audit(4294967298.960:30): pid=23633 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.3434" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1303.275259][T23631] gretap0: refused to change device tx_queue_len [ 1303.387222][T23635] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1303.438980][T23637] netlink: 252 bytes leftover after parsing attributes in process `syz.2.3436'. [ 1304.126491][T23650] vhci_hcd vhci_hcd.2: invalid port number 16 [ 1304.236987][T23650] vhci_hcd vhci_hcd.2: invalid port number 16 [ 1304.531774][T23667] input: f as /devices/virtual/input/input23 [ 1305.532812][T23686] FAULT_INJECTION: forcing a failure. [ 1305.532812][T23686] name failslab, interval 1, probability 0, space 0, times 0 [ 1305.560357][T23686] CPU: 0 UID: 0 PID: 23686 Comm: syz.3.3449 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1305.560398][T23686] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1305.560407][T23686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1305.560421][T23686] Call Trace: [ 1305.560429][T23686] [ 1305.560437][T23686] dump_stack_lvl+0x100/0x190 [ 1305.560476][T23686] should_fail_ex.cold+0x5/0xa [ 1305.560502][T23686] ? copy_splice_read+0x1a3/0xb90 [ 1305.560531][T23686] should_failslab+0xc2/0x120 [ 1305.560564][T23686] __kmalloc_noprof+0xe0/0x850 [ 1305.560591][T23686] ? __pfx___might_resched+0x10/0x10 [ 1305.560627][T23686] copy_splice_read+0x1a3/0xb90 [ 1305.560664][T23686] ? __pfx_copy_splice_read+0x10/0x10 [ 1305.560711][T23686] ? __pfx_copy_splice_read+0x10/0x10 [ 1305.560739][T23686] do_splice_read+0x285/0x370 [ 1305.560772][T23686] splice_file_to_pipe+0x82/0x120 [ 1305.560807][T23686] do_splice+0xda1/0x1fd0 [ 1305.560839][T23686] ? __lock_acquire+0x4a5/0x2630 [ 1305.560864][T23686] ? ksys_write+0x190/0x250 [ 1305.560901][T23686] ? __pfx_do_splice+0x10/0x10 [ 1305.560931][T23686] ? __pfx_pipe_clear_nowait+0x10/0x10 [ 1305.560962][T23686] ? find_held_lock+0x2b/0x80 [ 1305.560999][T23686] __do_splice+0x113/0x370 [ 1305.561033][T23686] ? __pfx___do_splice+0x10/0x10 [ 1305.561073][T23686] __x64_sys_splice+0x187/0x250 [ 1305.561121][T23686] do_syscall_64+0x106/0xf80 [ 1305.561154][T23686] ? clear_bhb_loop+0x40/0x90 [ 1305.561183][T23686] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1305.561206][T23686] RIP: 0033:0x7f6f4139bf79 [ 1305.561225][T23686] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1305.561266][T23686] RSP: 002b:00007f6f421d7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 1305.561294][T23686] RAX: ffffffffffffffda RBX: 00007f6f41615fa0 RCX: 00007f6f4139bf79 [ 1305.561309][T23686] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000004 [ 1305.561323][T23686] RBP: 00007f6f421d7090 R08: 0000000080000001 R09: 0000000000000009 [ 1305.561337][T23686] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1305.561354][T23686] R13: 00007f6f41616038 R14: 00007f6f41615fa0 R15: 00007ffceb798ba8 [ 1305.561384][T23686] [ 1306.758645][T23690] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 1306.874344][T23695] smpboot: CPU 1 is now offline [ 1308.674160][T23730] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 1308.874525][T23736] smpboot: CPU 1 is now offline [ 1309.013017][T23747] binder: 23746:23747 unknown command 892678703 [ 1309.056970][T23747] binder: 23746:23747 ioctl c0306201 0 returned -22 [ 1310.500611][T23787] netlink: 314 bytes leftover after parsing attributes in process `syz.2.3485'. [ 1310.615313][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 1310.623849][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 1314.042225][T23860] zswap: compressor not available [ 1314.490898][T22270] Bluetooth: hci1: unexpected event 0x33 length: 124 > 10 [ 1314.693747][T23868] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input26 [ 1315.640686][T23898] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input27 [ 1318.407273][T23935] zswap: compressor not available [ 1318.472466][T23943] netlink: 252 bytes leftover after parsing attributes in process `syz.2.3530'. [ 1320.060866][T23976] loop6: detected capacity change from 0 to 4194304 [ 1320.304915][T23982] netlink: 252 bytes leftover after parsing attributes in process `syz.0.3541'. [ 1320.661544][T23987] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1322.040514][T24008] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 1322.260399][T24009] smpboot: CPU 1 is now offline [ 1322.347515][T24015] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3552'. [ 1322.403747][T24015] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3552'. [ 1322.859972][T24011] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 1323.020420][T24021] smpboot: CPU 1 is now offline [ 1324.079108][T24047] FAULT_INJECTION: forcing a failure. [ 1324.079108][T24047] name failslab, interval 1, probability 0, space 0, times 0 [ 1324.227327][T24047] CPU: 0 UID: 0 PID: 24047 Comm: syz.3.3560 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1324.227367][T24047] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1324.227376][T24047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1324.227389][T24047] Call Trace: [ 1324.227397][T24047] [ 1324.227405][T24047] dump_stack_lvl+0x100/0x190 [ 1324.227442][T24047] should_fail_ex.cold+0x5/0xa [ 1324.227467][T24047] should_failslab+0xc2/0x120 [ 1324.227507][T24047] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1324.227529][T24047] ? sctp_add_bind_addr+0xae/0x3e0 [ 1324.227559][T24047] ? __sctp_v6_cmp_addr+0x206/0x530 [ 1324.227599][T24047] sctp_add_bind_addr+0xae/0x3e0 [ 1324.227632][T24047] sctp_copy_local_addr_list+0x349/0x550 [ 1324.227672][T24047] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 1324.227710][T24047] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 1324.227748][T24047] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1324.227784][T24047] sctp_bind_addr_copy+0xe0/0x530 [ 1324.227835][T24047] sctp_connect_new_asoc+0x1c9/0x770 [ 1324.227859][T24047] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 1324.227881][T24047] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 1324.227915][T24047] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 1324.227958][T24047] __sctp_connect+0x3e7/0xc70 [ 1324.227986][T24047] ? __pfx___sctp_connect+0x10/0x10 [ 1324.228010][T24047] ? __pfx_sctp_inet_connect+0x10/0x10 [ 1324.228034][T24047] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1324.228066][T24047] ? __pfx_sctp_inet_connect+0x10/0x10 [ 1324.228087][T24047] sctp_inet_connect+0x15f/0x220 [ 1324.228111][T24047] __sys_connect_file+0x141/0x1a0 [ 1324.228140][T24047] __sys_connect+0x141/0x170 [ 1324.228166][T24047] ? __pfx___sys_connect+0x10/0x10 [ 1324.228190][T24047] ? __fget_files+0x21f/0x3d0 [ 1324.228227][T24047] ? __pfx_ksys_write+0x10/0x10 [ 1324.228259][T24047] __x64_sys_connect+0x72/0xb0 [ 1324.228285][T24047] ? lockdep_hardirqs_on+0x78/0x100 [ 1324.228317][T24047] do_syscall_64+0x106/0xf80 [ 1324.228347][T24047] ? clear_bhb_loop+0x40/0x90 [ 1324.228373][T24047] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1324.228395][T24047] RIP: 0033:0x7f6f4139bf79 [ 1324.228412][T24047] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1324.228452][T24047] RSP: 002b:00007f6f421d7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 1324.228474][T24047] RAX: ffffffffffffffda RBX: 00007f6f41615fa0 RCX: 00007f6f4139bf79 [ 1324.228488][T24047] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 1324.228506][T24047] RBP: 00007f6f421d7090 R08: 0000000000000000 R09: 0000000000000000 [ 1324.228520][T24047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1324.228533][T24047] R13: 00007f6f41616038 R14: 00007f6f41615fa0 R15: 00007ffceb798ba8 [ 1324.228562][T24047] [ 1326.804098][T24083] netlink: 252 bytes leftover after parsing attributes in process `syz.1.3572'. [ 1327.222972][T24094] netlink: 330 bytes leftover after parsing attributes in process `syz.3.3574'. [ 1328.067126][T24099] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 1328.762961][T24101] smpboot: CPU 1 is now offline [ 1329.014883][T24103] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 1329.077818][T24108] FAULT_INJECTION: forcing a failure. [ 1329.077818][T24108] name failslab, interval 1, probability 0, space 0, times 0 [ 1329.143338][T24108] CPU: 0 UID: 0 PID: 24108 Comm: syz.3.3578 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1329.143378][T24108] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1329.143387][T24108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1329.143402][T24108] Call Trace: [ 1329.143409][T24108] [ 1329.143418][T24108] dump_stack_lvl+0x100/0x190 [ 1329.143457][T24108] should_fail_ex.cold+0x5/0xa [ 1329.143483][T24108] ? tomoyo_realpath_from_path+0xb6/0x690 [ 1329.143508][T24108] should_failslab+0xc2/0x120 [ 1329.143541][T24108] __kmalloc_noprof+0xe0/0x850 [ 1329.143575][T24108] tomoyo_realpath_from_path+0xb6/0x690 [ 1329.143606][T24108] tomoyo_path_number_perm+0x23c/0x580 [ 1329.143641][T24108] ? tomoyo_path_number_perm+0x22e/0x580 [ 1329.143678][T24108] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1329.143725][T24108] ? rcu_read_lock_any_held+0x6a/0xa0 [ 1329.143777][T24108] ? fd_install+0x24f/0x580 [ 1329.143806][T24108] ? hook_file_ioctl_common+0x146/0x410 [ 1329.143855][T24108] security_file_ioctl+0xd3/0x230 [ 1329.143892][T24108] __x64_sys_ioctl+0xb7/0x210 [ 1329.143920][T24108] do_syscall_64+0x106/0xf80 [ 1329.143954][T24108] ? clear_bhb_loop+0x40/0x90 [ 1329.143984][T24108] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1329.144008][T24108] RIP: 0033:0x7f6f4139bf79 [ 1329.144027][T24108] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1329.144050][T24108] RSP: 002b:00007f6f421d7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1329.144085][T24108] RAX: ffffffffffffffda RBX: 00007f6f41615fa0 RCX: 00007f6f4139bf79 [ 1329.144100][T24108] RDX: 0000000000000000 RSI: 0000000000004b72 RDI: 0000000000000000 [ 1329.144113][T24108] RBP: 00007f6f421d7090 R08: 0000000000000000 R09: 0000000000000000 [ 1329.144126][T24108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1329.144140][T24108] R13: 00007f6f41616038 R14: 00007f6f41615fa0 R15: 00007ffceb798ba8 [ 1329.144169][T24108] [ 1329.144177][T24108] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1329.503503][T24110] ubi31: attaching mtd0 [ 1329.506637][T24110] ubi31: scanning is finished [ 1329.506721][T24110] ubi31 error: ubi_read_volume_table: the layout volume was not found [ 1329.604242][T24104] smpboot: CPU 1 is now offline [ 1329.786162][T24116] netlink: 252 bytes leftover after parsing attributes in process `syz.3.3581'. [ 1329.853676][T24110] ubi31 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1329.997267][T24118] netlink: 334 bytes leftover after parsing attributes in process `syz.0.3580'. [ 1330.120349][T24120] FAULT_INJECTION: forcing a failure. [ 1330.120349][T24120] name failslab, interval 1, probability 0, space 0, times 0 [ 1330.163044][T24120] CPU: 0 UID: 0 PID: 24120 Comm: syz.3.3583 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1330.163086][T24120] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1330.163096][T24120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1330.163111][T24120] Call Trace: [ 1330.163120][T24120] [ 1330.163128][T24120] dump_stack_lvl+0x100/0x190 [ 1330.163167][T24120] should_fail_ex.cold+0x5/0xa [ 1330.163194][T24120] should_failslab+0xc2/0x120 [ 1330.163228][T24120] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1330.163255][T24120] ? do_getname+0x35/0x390 [ 1330.163300][T24120] do_getname+0x35/0x390 [ 1330.163340][T24120] do_sys_openat2+0xc5/0x1e0 [ 1330.163363][T24120] ? __pfx_do_sys_openat2+0x10/0x10 [ 1330.163414][T24120] __x64_sys_openat+0x12d/0x210 [ 1330.163438][T24120] ? __pfx___x64_sys_openat+0x10/0x10 [ 1330.163460][T24120] ? xfd_validate_state+0x129/0x190 [ 1330.163501][T24120] do_syscall_64+0x106/0xf80 [ 1330.163536][T24120] ? clear_bhb_loop+0x40/0x90 [ 1330.163565][T24120] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1330.163590][T24120] RIP: 0033:0x7f6f4139bf79 [ 1330.163610][T24120] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1330.163633][T24120] RSP: 002b:00007f6f421d7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1330.163656][T24120] RAX: ffffffffffffffda RBX: 00007f6f41615fa0 RCX: 00007f6f4139bf79 [ 1330.163672][T24120] RDX: 0000000000000002 RSI: 0000000000000000 RDI: ffffffffffffff9c [ 1330.163687][T24120] RBP: 00007f6f414327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1330.163701][T24120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1330.163715][T24120] R13: 00007f6f41616038 R14: 00007f6f41615fa0 R15: 00007ffceb798ba8 [ 1330.163746][T24120] [ 1333.098424][T24159] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1333.153452][T24150] zswap: compressor not available [ 1333.387528][T24163] Lens A: ================= START STATUS ================= [ 1333.510689][T24158] zswap: compressor not available [ 1333.597140][T24163] Lens A: Focus, Absolute: 0 [ 1333.665869][T24163] Lens A: ================== END STATUS ================== [ 1333.799177][T22270] Bluetooth: hci0: unexpected event 0x33 length: 124 > 10 [ 1334.770336][T24184] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 1334.985603][T24186] smpboot: CPU 1 is now offline [ 1336.033000][T24198] zswap: compressor not available [ 1336.906141][T24211] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3606'. [ 1338.749095][T24229] netlink: 62 bytes leftover after parsing attributes in process `syz.1.3609'. [ 1343.011140][T24293] netlink: 'syz.1.3629': attribute type 1 has an invalid length. [ 1343.095120][T24294] input: 9%vJ,6 as /devices/virtual/input/input29 [ 1343.671223][T24299] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3631'. [ 1343.952832][T24304] FAULT_INJECTION: forcing a failure. [ 1343.952832][T24304] name failslab, interval 1, probability 0, space 0, times 0 [ 1344.055533][T24304] CPU: 0 UID: 0 PID: 24304 Comm: syz.2.3632 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1344.055577][T24304] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1344.055587][T24304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1344.055602][T24304] Call Trace: [ 1344.055610][T24304] [ 1344.055619][T24304] dump_stack_lvl+0x100/0x190 [ 1344.055661][T24304] should_fail_ex.cold+0x5/0xa [ 1344.055689][T24304] should_failslab+0xc2/0x120 [ 1344.055730][T24304] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1344.055754][T24304] ? sctp_auth_shkey_create+0x9e/0x210 [ 1344.055800][T24304] sctp_auth_shkey_create+0x9e/0x210 [ 1344.055841][T24304] sctp_endpoint_new+0x589/0xb20 [ 1344.055883][T24304] ? __pfx_sctp_endpoint_new+0x10/0x10 [ 1344.055928][T24304] ? lockdep_init_map_type+0x5c/0x250 [ 1344.055961][T24304] sctp_init_sock+0xe2b/0x1300 [ 1344.055998][T24304] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 1344.056037][T24304] sctp_v6_init_sock+0x16/0x70 [ 1344.056073][T24304] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 1344.056111][T24304] inet6_create+0xb21/0x12b0 [ 1344.056150][T24304] ? inet6_create+0x7f/0x12b0 [ 1344.056190][T24304] __sock_create+0x339/0x860 [ 1344.056223][T24304] inet_ctl_sock_create+0x94/0x230 [ 1344.056250][T24304] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 1344.056278][T24304] ? timer_init_key+0x14c/0x2c0 [ 1344.056334][T24304] ? __pfx_sctp_ctrlsock_init+0x10/0x10 [ 1344.056387][T24304] sctp_ctrlsock_init+0x40/0xd0 [ 1344.056422][T24304] ops_init+0x1e2/0x5f0 [ 1344.056462][T24304] setup_net+0x118/0x3a0 [ 1344.056500][T24304] ? __pfx_setup_net+0x10/0x10 [ 1344.056535][T24304] ? lockdep_init_map_type+0x5c/0x250 [ 1344.056564][T24304] ? mutex_init_lockep+0x110/0x150 [ 1344.056597][T24304] copy_net_ns+0x46f/0x7c0 [ 1344.056640][T24304] create_new_namespaces+0x3ea/0xac0 [ 1344.056686][T24304] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1344.056735][T24304] ksys_unshare+0x455/0xab0 [ 1344.056764][T24304] ? __pfx_ksys_unshare+0x10/0x10 [ 1344.056791][T24304] ? xfd_validate_state+0x129/0x190 [ 1344.056833][T24304] __x64_sys_unshare+0x31/0x40 [ 1344.056859][T24304] do_syscall_64+0x106/0xf80 [ 1344.056895][T24304] ? clear_bhb_loop+0x40/0x90 [ 1344.056927][T24304] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1344.056965][T24304] RIP: 0033:0x7f930ef9bf79 [ 1344.056984][T24304] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1344.057009][T24304] RSP: 002b:00007f930fe80028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1344.057031][T24304] RAX: ffffffffffffffda RBX: 00007f930f215fa0 RCX: 00007f930ef9bf79 [ 1344.057047][T24304] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1344.057062][T24304] RBP: 00007f930f0327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1344.057076][T24304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1344.057091][T24304] R13: 00007f930f216038 R14: 00007f930f215fa0 R15: 00007fff6589ca88 [ 1344.057122][T24304] [ 1344.713702][T24309] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3633'. [ 1344.737747][T24309] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3633'. [ 1345.003927][T22270] Bluetooth: hci4: unexpected event 0x14 length: 16 > 6 [ 1345.831311][T24338] Lens A: ================= START STATUS ================= [ 1345.860370][T24326] zswap: compressor not available [ 1345.908526][T24338] Lens A: Focus, Absolute: 0 [ 1345.922155][T24338] Lens A: ================== END STATUS ================== [ 1347.660502][T22341] Bluetooth: hci3: unexpected event 0x14 length: 16 > 6 [ 1347.894756][T24364] binder: 24361:24364 ioctl c018620c 0 returned -1 [ 1348.347885][T24369] input: jJǸ-9%vJ86 as /devices/virtual/input/input30 [ 1348.754333][T24378] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3650'. [ 1349.740163][T22341] Bluetooth: hci1: unexpected event 0x14 length: 16 > 6 [ 1350.153459][T24409] kafs: addr_prefs: Too many elements in string [ 1350.646202][T24424] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3664'. [ 1350.709935][T24422] FAULT_INJECTION: forcing a failure. [ 1350.709935][T24422] name failslab, interval 1, probability 0, space 0, times 0 [ 1350.854268][T24422] CPU: 0 UID: 0 PID: 24422 Comm: syz.1.3663 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1350.854311][T24422] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1350.854321][T24422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1350.854336][T24422] Call Trace: [ 1350.854344][T24422] [ 1350.854353][T24422] dump_stack_lvl+0x100/0x190 [ 1350.854394][T24422] should_fail_ex.cold+0x5/0xa [ 1350.854422][T24422] should_failslab+0xc2/0x120 [ 1350.854457][T24422] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 1350.854487][T24422] ? __d_alloc+0x34/0xa80 [ 1350.854529][T24422] __d_alloc+0x34/0xa80 [ 1350.854568][T24422] d_alloc_pseudo+0x1c/0xc0 [ 1350.854593][T24422] alloc_file_pseudo+0xcf/0x230 [ 1350.854635][T24422] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 1350.854684][T24422] __shmem_file_setup+0x1a3/0x330 [ 1350.854730][T24422] shmem_zero_setup+0x93/0x1b0 [ 1350.854763][T24422] __mmap_region+0x20b5/0x2760 [ 1350.854796][T24422] ? __pfx___mmap_region+0x10/0x10 [ 1350.854844][T24422] ? finish_task_switch.isra.0+0x205/0xb80 [ 1350.854884][T24422] ? lockdep_hardirqs_on+0x78/0x100 [ 1350.854921][T24422] ? finish_task_switch.isra.0+0x205/0xb80 [ 1350.855014][T24422] ? mm_get_unmapped_area_vmflags+0xd7/0x130 [ 1350.855061][T24422] ? rcu_is_watching+0x12/0xc0 [ 1350.855102][T24422] mmap_region+0x180/0x3e0 [ 1350.855137][T24422] do_mmap+0xc63/0x12f0 [ 1350.855178][T24422] ? __pfx_do_mmap+0x10/0x10 [ 1350.855214][T24422] ? __pfx_down_write_killable+0x10/0x10 [ 1350.855244][T24422] vm_mmap_pgoff+0x29e/0x470 [ 1350.855286][T24422] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1350.855330][T24422] ? __x64_sys_futex+0x34f/0x4d0 [ 1350.855355][T24422] ? __x64_sys_futex+0x358/0x4d0 [ 1350.855385][T24422] ksys_mmap_pgoff+0x7d/0x5b0 [ 1350.855425][T24422] __x64_sys_mmap+0x125/0x190 [ 1350.855462][T24422] do_syscall_64+0x106/0xf80 [ 1350.855497][T24422] ? clear_bhb_loop+0x40/0x90 [ 1350.855527][T24422] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1350.855553][T24422] RIP: 0033:0x7fcdd219bf79 [ 1350.855573][T24422] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1350.855598][T24422] RSP: 002b:00007fcdd2fe6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1350.855622][T24422] RAX: ffffffffffffffda RBX: 00007fcdd2416090 RCX: 00007fcdd219bf79 [ 1350.855638][T24422] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000 [ 1350.855653][T24422] RBP: 00007fcdd22327e0 R08: fffffffffffffffa R09: 0000000000008000 [ 1350.855669][T24422] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 1350.855684][T24422] R13: 00007fcdd2416128 R14: 00007fcdd2416090 R15: 00007ffd7ab407c8 [ 1350.855716][T24422] [ 1351.866185][T22341] Bluetooth: hci3: unexpected event 0x14 length: 16 > 6 [ 1352.715401][T24436] block nbd8: shutting down sockets [ 1353.092146][T22270] Bluetooth: hci1: unexpected event 0x33 length: 124 > 10 [ 1353.448464][T24463] serio: Serial port pty6 [ 1354.127786][T24470] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 1354.230924][T24472] smpboot: CPU 1 is now offline [ 1354.342156][T22270] Bluetooth: hci3: unexpected event 0x14 length: 16 > 6 [ 1354.606267][T24479] FAULT_INJECTION: forcing a failure. [ 1354.606267][T24479] name failslab, interval 1, probability 0, space 0, times 0 [ 1354.700897][T24479] CPU: 0 UID: 0 PID: 24479 Comm: syz.0.3679 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1354.700937][T24479] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1354.700946][T24479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1354.700960][T24479] Call Trace: [ 1354.700968][T24479] [ 1354.700976][T24479] dump_stack_lvl+0x100/0x190 [ 1354.701016][T24479] should_fail_ex.cold+0x5/0xa [ 1354.701042][T24479] should_failslab+0xc2/0x120 [ 1354.701075][T24479] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 1354.701104][T24479] ? __alloc_skb+0x140/0x710 [ 1354.701134][T24479] ? rcu_is_watching+0x12/0xc0 [ 1354.701171][T24479] __alloc_skb+0x140/0x710 [ 1354.701201][T24479] ? __alloc_skb+0x5b7/0x710 [ 1354.701232][T24479] ? __pfx___alloc_skb+0x10/0x10 [ 1354.701272][T24479] netlink_alloc_large_skb+0x69/0x150 [ 1354.701312][T24479] netlink_sendmsg+0x680/0xda0 [ 1354.701354][T24479] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1354.701390][T24479] ? __import_iovec+0x1d2/0x640 [ 1354.701430][T24479] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 1354.701466][T24479] ____sys_sendmsg+0xa54/0xc30 [ 1354.701493][T24479] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1354.701531][T24479] ___sys_sendmsg+0x190/0x1e0 [ 1354.701558][T24479] ? __pfx____sys_sendmsg+0x10/0x10 [ 1354.701619][T24479] __sys_sendmsg+0x170/0x220 [ 1354.701654][T24479] ? __pfx___sys_sendmsg+0x10/0x10 [ 1354.701706][T24479] do_syscall_64+0x106/0xf80 [ 1354.701748][T24479] ? clear_bhb_loop+0x40/0x90 [ 1354.701777][T24479] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1354.701801][T24479] RIP: 0033:0x7fc70399bf79 [ 1354.701820][T24479] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1354.701843][T24479] RSP: 002b:00007fc7047f6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1354.701865][T24479] RAX: ffffffffffffffda RBX: 00007fc703c15fa0 RCX: 00007fc70399bf79 [ 1354.701880][T24479] RDX: 0000000004000840 RSI: 0000200000003140 RDI: 0000000000000003 [ 1354.701895][T24479] RBP: 00007fc7047f6090 R08: 0000000000000000 R09: 0000000000000000 [ 1354.701909][T24479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1354.701922][T24479] R13: 00007fc703c16038 R14: 00007fc703c15fa0 R15: 00007ffc59495818 [ 1354.701952][T24479] [ 1354.924820][ T30] audit: type=1800 audit(4294967303.830:31): pid=24481 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3680" name="dbroot" dev="configfs" ino=145794 res=0 errno=0 [ 1354.997050][T24483] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3681'. [ 1355.363079][T24491] netlink: 280 bytes leftover after parsing attributes in process `syz.1.3681'. [ 1355.384390][T22270] Bluetooth: hci0: unexpected event 0x33 length: 124 > 10 [ 1355.772648][T24496] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3684'. [ 1356.288421][T22270] Bluetooth: hci1: unexpected event 0x14 length: 16 > 6 [ 1357.856578][T24537] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 1358.037264][T24539] smpboot: CPU 1 is now offline [ 1358.247356][T24542] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 1358.278721][T24543] ------------[ cut here ]------------ [ 1358.280209][T24543] [ 1358.280220][T24543] ====================================================== [ 1358.280232][T24543] WARNING: possible circular locking dependency detected [ 1358.280248][T24543] syzkaller #0 Tainted: G U L [ 1358.280265][T24543] ------------------------------------------------------ [ 1358.280276][T24543] syz.3.3693/24543 is trying to acquire lock: [ 1358.280291][T24543] ffffffff8e6f35e0 (console_owner){-.-.}-{0:0}, at: console_lock_spinning_enable+0x61/0x80 [ 1358.280376][T24543] [ 1358.280376][T24543] but task is already holding lock: [ 1358.280384][T24543] ffff8880b843b0e0 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x88/0x140 [ 1358.280472][T24543] [ 1358.280472][T24543] which lock already depends on the new lock. [ 1358.280472][T24543] [ 1358.280482][T24543] [ 1358.280482][T24543] the existing dependency chain (in reverse order) is: [ 1358.280493][T24543] [ 1358.280493][T24543] -> #4 (&rq->__lock){-.-.}-{2:2}: [ 1358.280535][T24543] _raw_spin_lock_nested+0x31/0x40 [ 1358.280573][T24543] raw_spin_rq_lock_nested+0x2c/0x140 [ 1358.280617][T24543] _task_rq_lock+0xcf/0x490 [ 1358.280660][T24543] cgroup_move_task+0x81/0x2b0 [ 1358.280708][T24543] css_set_move_task+0x285/0x600 [ 1358.280749][T24543] cgroup_post_fork+0x202/0x9b0 [ 1358.280790][T24543] copy_process+0x5f26/0x79b0 [ 1358.280817][T24543] kernel_clone+0xfc/0x930 [ 1358.280841][T24543] user_mode_thread+0xcc/0x110 [ 1358.280869][T24543] rest_init+0x21/0x260 [ 1358.280896][T24543] start_kernel+0x47f/0x480 [ 1358.280925][T24543] x86_64_start_reservations+0x24/0x30 [ 1358.280959][T24543] x86_64_start_kernel+0x12b/0x130 [ 1358.281002][T24543] common_startup_64+0x13e/0x148 [ 1358.281065][T24543] [ 1358.281065][T24543] -> #3 (&p->pi_lock){-.-.}-{2:2}: [ 1358.281102][T24543] _raw_spin_lock_irqsave+0x3a/0x60 [ 1358.281139][T24543] try_to_wake_up+0xb2/0x1a80 [ 1358.281179][T24543] autoremove_wake_function+0x16/0x150 [ 1358.281227][T24543] __wake_up_common+0x135/0x1f0 [ 1358.281256][T24543] __wake_up+0x31/0x60 [ 1358.281300][T24543] tty_port_default_wakeup+0x47/0x60 [ 1358.281335][T24543] serial8250_tx_chars+0x68f/0x860 [ 1358.281366][T24543] serial8250_handle_irq+0x73e/0xcb0 [ 1358.281399][T24543] serial8250_default_handle_irq+0x9e/0x270 [ 1358.281442][T24543] serial8250_interrupt+0xf8/0x1d0 [ 1358.281481][T24543] __handle_irq_event_percpu+0x232/0x800 [ 1358.281523][T24543] handle_irq_event+0xab/0x1e0 [ 1358.281563][T24543] handle_edge_irq+0x375/0x970 [ 1358.281600][T24543] __common_interrupt+0xd8/0x2f0 [ 1358.281633][T24543] common_interrupt+0xb9/0xe0 [ 1358.281662][T24543] asm_common_interrupt+0x26/0x40 [ 1358.281693][T24543] kasan_byte_accessible+0x18/0x30 [ 1358.281754][T24543] __kasan_check_byte+0x13/0x50 [ 1358.281790][T24543] lock_acquire+0xf5/0x330 [ 1358.281817][T24543] _raw_spin_lock+0x2e/0x40 [ 1358.281850][T24543] pte_offset_map_lock+0x10f/0x320 [ 1358.281888][T24543] filemap_map_pages+0x417/0x2110 [ 1358.281919][T24543] do_fault+0x9e5/0x1a00 [ 1358.281958][T24543] __handle_mm_fault+0x180f/0x2b60 [ 1358.281984][T24543] handle_mm_fault+0x36d/0xa20 [ 1358.282009][T24543] do_user_addr_fault+0x5a3/0x12f0 [ 1358.282049][T24543] exc_page_fault+0x6f/0xd0 [ 1358.282086][T24543] asm_exc_page_fault+0x26/0x30 [ 1358.282113][T24543] [ 1358.282113][T24543] -> #2 (&tty->write_wait){-.-.}-{3:3}: [ 1358.282150][T24543] _raw_spin_lock_irqsave+0x3a/0x60 [ 1358.282185][T24543] __wake_up+0x1c/0x60 [ 1358.282228][T24543] tty_port_default_wakeup+0x47/0x60 [ 1358.282260][T24543] serial8250_tx_chars+0x68f/0x860 [ 1358.282289][T24543] serial8250_handle_irq+0x73e/0xcb0 [ 1358.282322][T24543] serial8250_default_handle_irq+0x9e/0x270 [ 1358.282358][T24543] serial8250_interrupt+0xf8/0x1d0 [ 1358.282395][T24543] __handle_irq_event_percpu+0x232/0x800 [ 1358.282440][T24543] handle_irq_event+0xab/0x1e0 [ 1358.282477][T24543] handle_edge_irq+0x375/0x970 [ 1358.282512][T24543] __common_interrupt+0xd8/0x2f0 [ 1358.282550][T24543] common_interrupt+0xb9/0xe0 [ 1358.282579][T24543] asm_common_interrupt+0x26/0x40 [ 1358.282626][T24543] _raw_spin_unlock_irqrestore+0x31/0x80 [ 1358.282666][T24543] uart_write+0x29d/0xb20 [ 1358.282693][T24543] n_tty_write+0x44f/0x12d0 [ 1358.282730][T24543] file_tty_write.isra.0+0x4d2/0x890 [ 1358.282759][T24543] redirected_tty_write+0xd4/0x120 [ 1358.282788][T24543] vfs_write+0x6ac/0x1070 [ 1358.282822][T24543] ksys_write+0x12a/0x250 [ 1358.282856][T24543] do_syscall_64+0x106/0xf80 [ 1358.282897][T24543] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1358.282927][T24543] [ 1358.282927][T24543] -> #1 (&port_lock_key){-.-.}-{3:3}: [ 1358.282964][T24543] _raw_spin_lock_irqsave+0x3a/0x60 [ 1358.283001][T24543] serial8250_console_write+0x17e/0x1900 [ 1358.283038][T24543] console_flush_one_record+0x790/0xe50 [ 1358.283079][T24543] console_unlock+0x103/0x260 [ 1358.283117][T24543] vprintk_emit+0x407/0x6b0 [ 1358.283156][T24543] _printk+0xcf/0x110 [ 1358.283181][T24543] register_console.cold+0xc0/0x248 [ 1358.283211][T24543] univ8250_console_init+0x6f/0x80 [ 1358.283254][T24543] console_init+0x371/0x520 [ 1358.283291][T24543] start_kernel+0x305/0x480 [ 1358.283319][T24543] x86_64_start_reservations+0x24/0x30 [ 1358.283352][T24543] x86_64_start_kernel+0x12b/0x130 [ 1358.283382][T24543] common_startup_64+0x13e/0x148 [ 1358.283435][T24543] [ 1358.283435][T24543] -> #0 (console_owner){-.-.}-{0:0}: [ 1358.283474][T24543] __lock_acquire+0x14b8/0x2630 [ 1358.283504][T24543] lock_acquire+0x17c/0x330 [ 1358.283531][T24543] console_lock_spinning_enable+0x72/0x80 [ 1358.283571][T24543] console_flush_one_record+0x739/0xe50 [ 1358.283612][T24543] console_unlock+0x103/0x260 [ 1358.283650][T24543] vprintk_emit+0x407/0x6b0 [ 1358.283690][T24543] _printk+0xcf/0x110 [ 1358.283714][T24543] __report_bug.cold+0x15/0x137 [ 1358.283752][T24543] report_bug+0xb2/0x220 [ 1358.283788][T24543] handle_bug+0x166/0x2a0 [ 1358.283823][T24543] exc_invalid_op+0x17/0x50 [ 1358.283846][T24543] asm_exc_invalid_op+0x1a/0x20 [ 1358.283872][T24543] update_rq_clock+0x40a/0xd20 [ 1358.283916][T24543] __schedule+0x1b19/0x6020 [ 1358.283950][T24543] preempt_schedule_irq+0x50/0x90 [ 1358.283989][T24543] irqentry_exit+0x17b/0x670 [ 1358.284028][T24543] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 1358.284058][T24543] __sanitizer_cov_trace_pc+0x0/0x70 [ 1358.284097][T24543] queue_work_on+0x141/0x1e0 [ 1358.284130][T24543] snd_virmidi_output_trigger+0xf6/0x140 [ 1358.284178][T24543] snd_rawmidi_kernel_write1+0x51f/0x7c0 [ 1358.284214][T24543] snd_rawmidi_write+0x2dc/0xc60 [ 1358.284250][T24543] vfs_write+0x2aa/0x1070 [ 1358.284282][T24543] ksys_write+0x1f8/0x250 [ 1358.284334][T24543] do_syscall_64+0x106/0xf80 [ 1358.284374][T24543] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1358.284404][T24543] [ 1358.284404][T24543] other info that might help us debug this: [ 1358.284404][T24543] [ 1358.284420][T24543] Chain exists of: [ 1358.284420][T24543] console_owner --> &p->pi_lock --> &rq->__lock [ 1358.284420][T24543] [ 1358.284464][T24543] Possible unsafe locking scenario: [ 1358.284464][T24543] [ 1358.284472][T24543] CPU0 CPU1 [ 1358.284480][T24543] ---- ---- [ 1358.284489][T24543] lock(&rq->__lock); [ 1358.284506][T24543] lock(&p->pi_lock); [ 1358.284527][T24543] lock(&rq->__lock); [ 1358.284548][T24543] lock(console_owner); [ 1358.284566][T24543] [ 1358.284566][T24543] *** DEADLOCK *** [ 1358.284566][T24543] [ 1358.284574][T24543] 3 locks held by syz.3.3693/24543: [ 1358.284591][T24543] #0: ffff8880b843b0e0 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x88/0x140 [ 1358.284682][T24543] #1: ffffffff8e7d3a20 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x110 [ 1358.284749][T24543] #2: ffffffff8e7d3a98 (console_srcu){....}-{0:0}, at: console_flush_one_record+0xfd/0xe50 [ 1358.284831][T24543] [ 1358.284831][T24543] stack backtrace: [ 1358.284849][T24543] CPU: 0 UID: 0 PID: 24543 Comm: syz.3.3693 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1358.284896][T24543] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1358.284907][T24543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1358.284925][T24543] Call Trace: [ 1358.284935][T24543] [ 1358.284946][T24543] dump_stack_lvl+0x100/0x190 [ 1358.284988][T24543] print_circular_bug.cold+0x178/0x1c7 [ 1358.285040][T24543] check_noncircular+0x146/0x160 [ 1358.285098][T24543] __lock_acquire+0x14b8/0x2630 [ 1358.285136][T24543] lock_acquire+0x17c/0x330 [ 1358.285166][T24543] ? console_lock_spinning_enable+0x61/0x80 [ 1358.285209][T24543] ? console_lock_spinning_enable+0x4a/0x80 [ 1358.285253][T24543] console_lock_spinning_enable+0x72/0x80 [ 1358.285294][T24543] ? console_lock_spinning_enable+0x61/0x80 [ 1358.285335][T24543] console_flush_one_record+0x739/0xe50 [ 1358.285381][T24543] ? __pfx_console_flush_one_record+0x10/0x10 [ 1358.285436][T24543] ? is_printk_cpu_sync_owner+0x32/0x40 [ 1358.285487][T24543] console_unlock+0x103/0x260 [ 1358.285526][T24543] ? __pfx_console_unlock+0x10/0x10 [ 1358.285570][T24543] ? do_raw_spin_unlock+0x145/0x1e0 [ 1358.285610][T24543] ? _printk+0xcf/0x110 [ 1358.285641][T24543] vprintk_emit+0x407/0x6b0 [ 1358.285686][T24543] ? __pfx_vprintk_emit+0x10/0x10 [ 1358.285730][T24543] ? lock_acquire+0x17c/0x330 [ 1358.285763][T24543] _printk+0xcf/0x110 [ 1358.285789][T24543] ? __pfx__printk+0x10/0x10 [ 1358.285823][T24543] ? __report_bug.cold+0x5/0x137 [ 1358.285863][T24543] __report_bug.cold+0x15/0x137 [ 1358.285901][T24543] ? update_rq_clock+0x40a/0xd20 [ 1358.285949][T24543] ? __pfx___report_bug+0x10/0x10 [ 1358.285988][T24543] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 1358.286035][T24543] ? is_bpf_text_address+0x94/0x1a0 [ 1358.286072][T24543] ? kernel_text_address+0x8d/0x100 [ 1358.286108][T24543] ? rcu_read_unlock+0x2d/0xb0 [ 1358.286140][T24543] ? __kernel_text_address+0xd/0x30 [ 1358.286182][T24543] ? update_rq_clock+0x40a/0xd20 [ 1358.286239][T24543] report_bug+0xb2/0x220 [ 1358.286276][T24543] ? update_rq_clock+0x40a/0xd20 [ 1358.286329][T24543] handle_bug+0x166/0x2a0 [ 1358.286356][T24543] exc_invalid_op+0x17/0x50 [ 1358.286383][T24543] asm_exc_invalid_op+0x1a/0x20 [ 1358.286419][T24543] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 1358.286469][T24543] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 d8 7b ac 09 a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 40 0b 00 00 48 b8 00 00 00 00 00 [ 1358.286501][T24543] RSP: 0018:ffffc9000b437820 EFLAGS: 00010046 [ 1358.286525][T24543] RAX: 0000000000000000 RBX: ffff8880b853b080 RCX: 0000000000000001 [ 1358.286545][T24543] RDX: 0000000000000046 RSI: ffffffff8de4ddbd RDI: ffffffff8c1ad620 [ 1358.286563][T24543] RBP: ffffc9000b4379c8 R08: 0000000000000001 R09: 0000000000000001 [ 1358.286583][T24543] R10: ffffffff90d8f5d7 R11: 0000000000000000 R12: ffffffff90d928d4 [ 1358.286602][T24543] R13: ffff8880b853bec0 R14: ffff88801e6d9e40 R15: ffff8880b853b080 [ 1358.286636][T24543] __schedule+0x1b19/0x6020 [ 1358.286676][T24543] ? tracing_record_taskinfo_sched_switch+0xac/0x560 [ 1358.286738][T24543] ? __pfx___schedule+0x10/0x10 [ 1358.286781][T24543] preempt_schedule_irq+0x50/0x90 [ 1358.286822][T24543] irqentry_exit+0x17b/0x670 [ 1358.286867][T24543] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 1358.286899][T24543] RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x70 [ 1358.286947][T24543] Code: d6 41 59 00 48 89 df 5b e9 9d a4 5e 00 be 03 00 00 00 5b e9 a2 ad e3 02 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1e fa 65 8b 05 c5 6d 02 12 48 8b 34 24 65 48 8b 15 a1 6d 02 [ 1358.286977][T24543] RSP: 0018:ffffc9000b437ad8 EFLAGS: 00000287 [ 1358.286999][T24543] RAX: 000000000002adf6 RBX: 0000000000000000 RCX: ffffc900104bd000 [ 1358.287022][T24543] RDX: 0000000000080000 RSI: ffffffff81ce257b RDI: ffff888036e73c80 [ 1358.287042][T24543] RBP: 0000000000000001 R08: 0000000000000007 R09: 0000000000000000 [ 1358.287061][T24543] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000008 [ 1358.287079][T24543] R13: ffff88813fe5b000 R14: ffff888031f53b00 R15: 0000000000001000 [ 1358.287108][T24543] ? queue_work_on+0x13b/0x1e0 [ 1358.287147][T24543] queue_work_on+0x141/0x1e0 [ 1358.287186][T24543] snd_virmidi_output_trigger+0xf6/0x140 [ 1358.287238][T24543] snd_rawmidi_kernel_write1+0x51f/0x7c0 [ 1358.287284][T24543] snd_rawmidi_write+0x2dc/0xc60 [ 1358.287331][T24543] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 1358.287369][T24543] ? common_file_perm+0x1ab/0x4f0 [ 1358.287426][T24543] ? __pfx_default_wake_function+0x10/0x10 [ 1358.287474][T24543] ? bpf_lsm_file_permission+0x9/0x10 [ 1358.287517][T24543] ? security_file_permission+0x76/0x210 [ 1358.287567][T24543] ? rw_verify_area+0xce/0x6d0 [ 1358.287600][T24543] vfs_write+0x2aa/0x1070 [ 1358.287635][T24543] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 1358.287674][T24543] ? __pfx_vfs_write+0x10/0x10 [ 1358.287708][T24543] ? find_held_lock+0x2b/0x80 [ 1358.287749][T24543] ? __fget_files+0x215/0x3d0 [ 1358.287785][T24543] ? __fget_files+0x215/0x3d0 [ 1358.287825][T24543] ? __fget_files+0x21f/0x3d0 [ 1358.287865][T24543] ksys_write+0x1f8/0x250 [ 1358.287906][T24543] ? __pfx_ksys_write+0x10/0x10 [ 1358.287947][T24543] do_syscall_64+0x106/0xf80 [ 1358.287990][T24543] ? clear_bhb_loop+0x40/0x90 [ 1358.288024][T24543] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1358.288055][T24543] RIP: 0033:0x7f6f4139bf79 [ 1358.288077][T24543] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1358.288107][T24543] RSP: 002b:00007f6f42195028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1358.288134][T24543] RAX: ffffffffffffffda RBX: 00007f6f41616180 RCX: 00007f6f4139bf79 [ 1358.288155][T24543] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000006 [ 1358.288174][T24543] RBP: 00007f6f414327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1358.288193][T24543] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1358.288210][T24543] R13: 00007f6f41616218 R14: 00007f6f41616180 R15: 00007ffceb798ba8 [ 1358.288240][T24543] [ 1359.660877][T24543] debug_locks && !(lock_is_held(&(__rq_lockp(rq))->dep_map) != 0) [ 1359.660899][T24543] WARNING: kernel/sched/sched.h:1600 at update_rq_clock+0x40a/0xd20, CPU#0: syz.3.3693/24543 [ 1359.678925][T24543] Modules linked in: [ 1359.682855][T24543] CPU: 0 UID: 0 PID: 24543 Comm: syz.3.3693 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1359.693831][T24543] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1359.699046][T24543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1359.709117][T24543] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 1359.714743][T24543] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 d8 7b ac 09 a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 40 0b 00 00 48 b8 00 00 00 00 00 [ 1359.734389][T24543] RSP: 0018:ffffc9000b437820 EFLAGS: 00010046 [ 1359.740501][T24543] RAX: 0000000000000000 RBX: ffff8880b853b080 RCX: 0000000000000001 [ 1359.748632][T24543] RDX: 0000000000000046 RSI: ffffffff8de4ddbd RDI: ffffffff8c1ad620 [ 1359.756656][T24543] RBP: ffffc9000b4379c8 R08: 0000000000000001 R09: 0000000000000001 [ 1359.764665][T24543] R10: ffffffff90d8f5d7 R11: 0000000000000000 R12: ffffffff90d928d4 [ 1359.772690][T24543] R13: ffff8880b853bec0 R14: ffff88801e6d9e40 R15: ffff8880b853b080 [ 1359.780694][T24543] FS: 00007f6f421956c0(0000) GS:ffff888124392000(0000) knlGS:0000000000000000 [ 1359.789701][T24543] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1359.796321][T24543] CR2: 000020000011e000 CR3: 000000007595a000 CR4: 00000000003526f0 [ 1359.804321][T24543] Call Trace: [ 1359.807629][T24543] [ 1359.810608][T24543] __schedule+0x1b19/0x6020 [ 1359.815158][T24543] ? tracing_record_taskinfo_sched_switch+0xac/0x560 [ 1359.821919][T24543] ? __pfx___schedule+0x10/0x10 [ 1359.826818][T24543] preempt_schedule_irq+0x50/0x90 [ 1359.831882][T24543] irqentry_exit+0x17b/0x670 [ 1359.836520][T24543] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 1359.842013][T24543] RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x70 [ 1359.848132][T24543] Code: d6 41 59 00 48 89 df 5b e9 9d a4 5e 00 be 03 00 00 00 5b e9 a2 ad e3 02 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1e fa 65 8b 05 c5 6d 02 12 48 8b 34 24 65 48 8b 15 a1 6d 02 [ 1359.867774][T24543] RSP: 0018:ffffc9000b437ad8 EFLAGS: 00000287 [ 1359.873873][T24543] RAX: 000000000002adf6 RBX: 0000000000000000 RCX: ffffc900104bd000 [ 1359.881878][T24543] RDX: 0000000000080000 RSI: ffffffff81ce257b RDI: ffff888036e73c80 [ 1359.889884][T24543] RBP: 0000000000000001 R08: 0000000000000007 R09: 0000000000000000 [ 1359.897890][T24543] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000008 [ 1359.905884][T24543] R13: ffff88813fe5b000 R14: ffff888031f53b00 R15: 0000000000001000 [ 1359.913917][T24543] ? queue_work_on+0x13b/0x1e0 [ 1359.918750][T24543] queue_work_on+0x141/0x1e0 [ 1359.923388][T24543] snd_virmidi_output_trigger+0xf6/0x140 [ 1359.929071][T24543] snd_rawmidi_kernel_write1+0x51f/0x7c0 [ 1359.934774][T24543] snd_rawmidi_write+0x2dc/0xc60 [ 1359.939760][T24543] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 1359.945267][T24543] ? common_file_perm+0x1ab/0x4f0 [ 1359.950340][T24543] ? __pfx_default_wake_function+0x10/0x10 [ 1359.956189][T24543] ? bpf_lsm_file_permission+0x9/0x10 [ 1359.961604][T24543] ? security_file_permission+0x76/0x210 [ 1359.967300][T24543] ? rw_verify_area+0xce/0x6d0 [ 1359.972105][T24543] vfs_write+0x2aa/0x1070 [ 1359.976480][T24543] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 1359.981992][T24543] ? __pfx_vfs_write+0x10/0x10 [ 1359.986809][T24543] ? find_held_lock+0x2b/0x80 [ 1359.991543][T24543] ? __fget_files+0x215/0x3d0 [ 1359.996264][T24543] ? __fget_files+0x215/0x3d0 [ 1360.000988][T24543] ? __fget_files+0x21f/0x3d0 [ 1360.005709][T24543] ksys_write+0x1f8/0x250 [ 1360.010078][T24543] ? __pfx_ksys_write+0x10/0x10 [ 1360.014987][T24543] do_syscall_64+0x106/0xf80 [ 1360.019625][T24543] ? clear_bhb_loop+0x40/0x90 [ 1360.024334][T24543] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1360.030273][T24543] RIP: 0033:0x7f6f4139bf79 [ 1360.034737][T24543] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1360.054586][T24543] RSP: 002b:00007f6f42195028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1360.063030][T24543] RAX: ffffffffffffffda RBX: 00007f6f41616180 RCX: 00007f6f4139bf79 [ 1360.071346][T24543] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000006 [ 1360.079350][T24543] RBP: 00007f6f414327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1360.087376][T24543] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1360.095376][T24543] R13: 00007f6f41616218 R14: 00007f6f41616180 R15: 00007ffceb798ba8 [ 1360.103400][T24543] [ 1360.106459][T24543] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1360.113773][T24543] CPU: 0 UID: 0 PID: 24543 Comm: syz.3.3693 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1360.124755][T24543] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1360.129966][T24543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1360.140043][T24543] Call Trace: [ 1360.143342][T24543] [ 1360.146306][T24543] dump_stack_lvl+0x100/0x190 [ 1360.151025][T24543] vpanic+0x552/0x970 [ 1360.155049][T24543] ? __pfx_vpanic+0x10/0x10 [ 1360.159587][T24543] ? lock_release+0x21e/0x2e0 [ 1360.164303][T24543] panic+0xd1/0xe0 [ 1360.168078][T24543] ? __pfx_panic+0x10/0x10 [ 1360.172555][T24543] check_panic_on_warn.cold+0x19/0x34 [ 1360.177962][T24543] ? update_rq_clock+0x40a/0xd20 [ 1360.182950][T24543] __warn.cold+0x191/0x2f8 [ 1360.187426][T24543] __report_bug+0x296/0x3d0 [ 1360.191973][T24543] ? update_rq_clock+0x40a/0xd20 [ 1360.197056][T24543] ? __pfx___report_bug+0x10/0x10 [ 1360.202123][T24543] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 1360.208332][T24543] ? is_bpf_text_address+0x94/0x1a0 [ 1360.213576][T24543] ? kernel_text_address+0x8d/0x100 [ 1360.218823][T24543] ? rcu_read_unlock+0x2d/0xb0 [ 1360.223619][T24543] ? __kernel_text_address+0xd/0x30 [ 1360.228888][T24543] ? update_rq_clock+0x40a/0xd20 [ 1360.233873][T24543] report_bug+0xb2/0x220 [ 1360.238161][T24543] ? update_rq_clock+0x40a/0xd20 [ 1360.243157][T24543] handle_bug+0x166/0x2a0 [ 1360.247530][T24543] exc_invalid_op+0x17/0x50 [ 1360.252062][T24543] asm_exc_invalid_op+0x1a/0x20 [ 1360.256946][T24543] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 1360.262533][T24543] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 d8 7b ac 09 a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 40 0b 00 00 48 b8 00 00 00 00 00 [ 1360.282199][T24543] RSP: 0018:ffffc9000b437820 EFLAGS: 00010046 [ 1360.288342][T24543] RAX: 0000000000000000 RBX: ffff8880b853b080 RCX: 0000000000000001 [ 1360.296403][T24543] RDX: 0000000000000046 RSI: ffffffff8de4ddbd RDI: ffffffff8c1ad620 [ 1360.304436][T24543] RBP: ffffc9000b4379c8 R08: 0000000000000001 R09: 0000000000000001 [ 1360.312453][T24543] R10: ffffffff90d8f5d7 R11: 0000000000000000 R12: ffffffff90d928d4 [ 1360.320470][T24543] R13: ffff8880b853bec0 R14: ffff88801e6d9e40 R15: ffff8880b853b080 [ 1360.328501][T24543] __schedule+0x1b19/0x6020 [ 1360.333076][T24543] ? tracing_record_taskinfo_sched_switch+0xac/0x560 [ 1360.339834][T24543] ? __pfx___schedule+0x10/0x10 [ 1360.344733][T24543] preempt_schedule_irq+0x50/0x90 [ 1360.349808][T24543] irqentry_exit+0x17b/0x670 [ 1360.354462][T24543] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 1360.359959][T24543] RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x70 [ 1360.366093][T24543] Code: d6 41 59 00 48 89 df 5b e9 9d a4 5e 00 be 03 00 00 00 5b e9 a2 ad e3 02 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1e fa 65 8b 05 c5 6d 02 12 48 8b 34 24 65 48 8b 15 a1 6d 02 [ 1360.385734][T24543] RSP: 0018:ffffc9000b437ad8 EFLAGS: 00000287 [ 1360.391837][T24543] RAX: 000000000002adf6 RBX: 0000000000000000 RCX: ffffc900104bd000 [ 1360.399832][T24543] RDX: 0000000000080000 RSI: ffffffff81ce257b RDI: ffff888036e73c80 [ 1360.408008][T24543] RBP: 0000000000000001 R08: 0000000000000007 R09: 0000000000000000 [ 1360.416191][T24543] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000008 [ 1360.424210][T24543] R13: ffff88813fe5b000 R14: ffff888031f53b00 R15: 0000000000001000 [ 1360.432231][T24543] ? queue_work_on+0x13b/0x1e0 [ 1360.437043][T24543] queue_work_on+0x141/0x1e0 [ 1360.441708][T24543] snd_virmidi_output_trigger+0xf6/0x140 [ 1360.447403][T24543] snd_rawmidi_kernel_write1+0x51f/0x7c0 [ 1360.453088][T24543] snd_rawmidi_write+0x2dc/0xc60 [ 1360.458082][T24543] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 1360.463575][T24543] ? common_file_perm+0x1ab/0x4f0 [ 1360.468650][T24543] ? __pfx_default_wake_function+0x10/0x10 [ 1360.474507][T24543] ? bpf_lsm_file_permission+0x9/0x10 [ 1360.479919][T24543] ? security_file_permission+0x76/0x210 [ 1360.485606][T24543] ? rw_verify_area+0xce/0x6d0 [ 1360.490406][T24543] vfs_write+0x2aa/0x1070 [ 1360.494786][T24543] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 1360.500288][T24543] ? __pfx_vfs_write+0x10/0x10 [ 1360.505089][T24543] ? find_held_lock+0x2b/0x80 [ 1360.509818][T24543] ? __fget_files+0x215/0x3d0 [ 1360.514556][T24543] ? __fget_files+0x215/0x3d0 [ 1360.519279][T24543] ? __fget_files+0x21f/0x3d0 [ 1360.524022][T24543] ksys_write+0x1f8/0x250 [ 1360.528392][T24543] ? __pfx_ksys_write+0x10/0x10 [ 1360.533288][T24543] do_syscall_64+0x106/0xf80 [ 1360.537930][T24543] ? clear_bhb_loop+0x40/0x90 [ 1360.542640][T24543] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1360.548564][T24543] RIP: 0033:0x7f6f4139bf79 [ 1360.553001][T24543] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1360.572636][T24543] RSP: 002b:00007f6f42195028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1360.581090][T24543] RAX: ffffffffffffffda RBX: 00007f6f41616180 RCX: 00007f6f4139bf79 [ 1360.589092][T24543] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000006 [ 1360.597092][T24543] RBP: 00007f6f414327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1360.605124][T24543] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1360.613167][T24543] R13: 00007f6f41616218 R14: 00007f6f41616180 R15: 00007ffceb798ba8 [ 1360.621249][T24543] [ 1360.624815][T24543] Kernel Offset: disabled [ 1360.629197][T24543] Rebooting in 86400 seconds..