last executing test programs: 45.513162479s ago: executing program 3 (id=1262): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) (async) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) (async) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) (async) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) (async) listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x8000001b, 0x80000003, 0x2}, 0x0, 0x6, 0x1) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r1, 0x0, 0x800) (async) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) (async) socket(0x2, 0x801, 0x100) (async) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/fs/ocfs2/loaded_cluster_plugins\x00', 0x800, 0x0) preadv$auto(r2, &(0x7f0000000080)={0x0, 0x6}, 0x7, 0xbbf, 0x69bf) (async) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) (async) r3 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec8\x00', 0x101901, 0x0) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r3, 0xc05c6104, &(0x7f0000000100)={'\x00', 0xffff, 0x6, 0x2, 0x9b4, 0x9, "ce7009002ce100", '\x00', "0201ccb7", '\x00', ["00000f0008b330ac007abfc1", "70d900001100", "0800000000000000000000ec", "00deff1000"]}) (async) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3, @empty}, 0x51) (async) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x4, 0x4008) (async) setgroups$auto(0xc00000000, 0xfffffffffffffffc) (async) keyctl$auto(0x4, 0xfffff7ffffffffff, 0x0, 0x8, 0x8) (async) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r4, &(0x7f0000000300)='/d\x00'/12, 0x100000a3d9) (async) sysfs$auto(0x2, 0x10000000000000e, 0x3) openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) (async) connect$auto(0x3, 0x0, 0xc) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0x8, 0x0) (async) socket(0x28, 0x801, 0x0) socket(0xf, 0x3, 0x2) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/midi2\x00', 0x80001, 0x0) 44.383800697s ago: executing program 3 (id=1266): madvise$auto(0x0, 0x2000040080000004, 0xe) (async, rerun: 32) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) (async, rerun: 32) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 32) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async, rerun: 32) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x5230c1, 0x0) ioctl$auto(r1, 0x4b61, r1) (async) r2 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r2, 0x403c6f2b, 0x0) (async, rerun: 32) ioctl$auto_dvb_demux_fops_dmxdev(r2, 0x400000000006f29, 0x0) (rerun: 32) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0x1a, 0x800, 0x3b) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) mmap$auto(0x0, 0xe983, 0x5, 0xeb1, 0x401, 0x8000) (async, rerun: 32) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (rerun: 32) nanosleep$auto(0x0, 0x0) clock_nanosleep$auto(0x9, 0x0, 0x0, 0x0) (async) mmap$auto(0x2, 0x4020009, 0x7, 0xeb1, 0xffffffffffffffff, 0x8000) write$auto(0xffffffffffffffff, 0x0, 0x40) (async, rerun: 64) modify_ldt$auto(0x1, 0x0, 0x10) (async, rerun: 64) r3 = open(&(0x7f00000000c0)='./file0\x00', 0x22240, 0x0) close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32) io_uring_setup$auto(0x20, 0x0) (async, rerun: 32) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0) (async) write$auto(0x3, 0x0, 0xfdef) (async) ioctl$auto(0x3, 0x5402, r3) (async) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) 40.846900294s ago: executing program 3 (id=1274): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2, 0x1, 0x0) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x6, 0x4, 0x8201, 0x2, 0x808, 0xc, 0x5933, 0x4000000002, 0x3}, 0x6f4) r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyy7\x00', 0x2, 0x0) ioctl$auto_TIOCSWINSZ(r1, 0x5414, &(0x7f00000000c0)="05") bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000440), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r3, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000001c0)=ANY=[@ANYBLOB="20000004", @ANYRES16=r2, @ANYBLOB="010026bd700002dcdf2504005a05c900000c8001800800030017080000"], 0x20}, 0x1, 0x0, 0x0, 0xf4e379f37c5b8231}, 0x4004000) r4 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer1\x00', 0x0, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x700) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'ipvlan0\x00'}) r5 = socket(0x11, 0xa, 0x4) sendmmsg$auto(r5, &(0x7f0000000240)={{&(0x7f0000000140), 0x12, &(0x7f0000000280)={0x0, 0x7fffffff}, 0x7, 0x0, 0x3, 0xfffffffb}, 0x7}, 0xc, 0x7fff) r6 = dup$auto(r4) ioctl$auto_XFS_IOC_GETBMAP(r6, 0xc0205826, &(0x7f0000000080)={0x8000f, 0x80000000, 0x800, 0x1, 0x6fc}) sendto$auto(0x3, 0x0, 0xfffffffffffffdef, 0x101, 0x0, 0x1c) ioctl$auto(0x3, 0x8905, 0x38) 39.160923749s ago: executing program 3 (id=1279): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) r0 = gettid() process_vm_writev$auto(r0, &(0x7f0000002980)={0x0, 0x7ff}, 0x3, &(0x7f0000002a40)={0x0, 0x100000004007}, 0x4, 0x0) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) (async) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) chdir$auto(&(0x7f0000000280)='}[,&*}\x00') unlink$auto(&(0x7f0000000380)='}[,&*}\x00') clone$auto(0x6, 0x9, 0x0, 0x0, 0xe08) (async) r1 = socket(0xa, 0x1, 0x100) setsockopt$auto_SO_MAX_PACING_RATE(r1, 0x6, 0x2f, &(0x7f0000000300)='\xba\xf13\xa4o\xd3\xd2\xe0v\x95\xe6mAk\x90\xa1\xfd\xb0\xe1\xa6W\x85py\x91Q\xe7\xc9\x05\xce\x17\xe6<0e\x12\xe8/\x16\xf0\xd2\xe5\x06[\vFb\xd6\xc0sTv*\xa6\x97\xb4\xcf\xc8d^\xb1\x7f\xeeH\xd2\xa8\xeb\xad\xdfw\xad\x1e\xcf\x13\xd2\xbbh\xb7\xb1\xa2\x14\xbe=Q\xf3\xd6\x85\x8as\x04\x93\x8c3\n\x9e\xcc\xbdP\x89\xee\xa8\x82\x03\x97\xe6^\x85#\x11T\x8dE\xba\nF\xc2\xe2\x06k\xf0~\xa3\x86h\xc2\xb8\xcfk\x1f', 0x6) getsockopt$auto_SO_PEERSEC(r1, 0x22f, 0x1f, &(0x7f0000000000)='%**$$+@]\x00', &(0x7f0000000040)=0x2) 38.175993448s ago: executing program 3 (id=1281): r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x4, 0x1000020088, 0xf, 0x1d, r0, 0x5) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_L2TP_CMD_SESSION_GET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="111329dac2ec4d780fb507783fec"], 0x14}, 0x1, 0x0, 0x0, 0xefb7e034ab6a1498}, 0x24000084) r1 = getpid() process_vm_readv$auto(r1, &(0x7f0000000040)={0x0, 0x9}, 0x1, &(0x7f0000000280)={&(0x7f0000000040), 0xffffffff}, 0x6, 0xec0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty49\x00', 0x800, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x163340, 0x6a) socket(0x2, 0x80802, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x4, @multicast2}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) io_uring_setup$auto(0x9e6, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) mmap$auto(0x6, 0x0, 0x400000000102, 0x10010, 0xffffffffffffffff, 0x935) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r3 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$auto_SMC_NETLINK_ADD_UEID(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="0100050001005b00"/22], 0x1c}, 0x1, 0x0, 0x0, 0x4880}, 0x8092) madvise$auto(0x0, 0xffffffffffff0005, 0x19) pwritev$auto(r3, 0x0, 0xffffffffffffffae, 0x90, 0xfffffffffffffb84) r6 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r2, 0x4b72, r6) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) 37.443904046s ago: executing program 3 (id=1285): io_uring_setup$auto(0x4bf15e08, &(0x7f0000000000)={0x408, 0x3, 0x10101, 0x6fb3, 0x8a, 0xffffd387, 0xffffffffffffffff, [0x100, 0x7, 0x7f], {0x2, 0x7, 0x3034, 0xc, 0x8f, 0x5, 0x5, 0xfffffff9, 0x6}, {0x4000, 0x2, 0x0, 0xfffff000, 0x0, 0xb89, 0xd5, 0x837, 0x8}}) socket(0x28, 0x1, 0x0) r0 = socket(0x10, 0x2, 0x4) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c72da808bf9779d790fb28"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) (async) splice$auto(0x4, 0x0, 0x2, 0x0, 0x1000, 0xf) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x64742, 0x0) fadvise64$auto(r1, 0x7fff, 0x6, 0x1) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) (async) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec29\x00', 0x0, 0x0) openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/trace_options\x00', 0x40000, 0x0) 36.698153731s ago: executing program 32 (id=1285): io_uring_setup$auto(0x4bf15e08, &(0x7f0000000000)={0x408, 0x3, 0x10101, 0x6fb3, 0x8a, 0xffffd387, 0xffffffffffffffff, [0x100, 0x7, 0x7f], {0x2, 0x7, 0x3034, 0xc, 0x8f, 0x5, 0x5, 0xfffffff9, 0x6}, {0x4000, 0x2, 0x0, 0xfffff000, 0x0, 0xb89, 0xd5, 0x837, 0x8}}) socket(0x28, 0x1, 0x0) r0 = socket(0x10, 0x2, 0x4) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c72da808bf9779d790fb28"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) (async) splice$auto(0x4, 0x0, 0x2, 0x0, 0x1000, 0xf) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x64742, 0x0) fadvise64$auto(r1, 0x7fff, 0x6, 0x1) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) (async) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec29\x00', 0x0, 0x0) openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/trace_options\x00', 0x40000, 0x0) 10.851012154s ago: executing program 0 (id=1336): mmap$auto(0x1, 0x82, 0x9, 0xeb0, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x15, 0x3, 0x9) write$auto(r0, 0x0, 0x9) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/035/001\x00', 0x40001, 0x0) ioctl$auto_USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000001040)={0xa0, 0x6, 0xf00, 0x15, 0x3, 0x0, 0x0}) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_BEARER_SET(0xffffffffffffffff, &(0x7f0000002040)={0x0, 0xffffffffffffffd4, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4040}, 0x40045) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x9) mmap$auto(0x0, 0x3, 0xb, 0x3132, 0x4008df3, 0x0) capget$auto(0x0, 0x0) r4 = socket(0x2c, 0x3, 0x0) getsockopt$auto(r4, 0x11b, 0x8, 0x0, 0x0) capset$auto(&(0x7f0000000180)={0x19980330}, 0x0) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r5, 0x4b44, 0x1) pivot_root$auto(0x0, 0x0) open(0x0, 0x7ffd, 0x12) r6 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x48180, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r6, 0x40345410, &(0x7f0000000280)={{0x3, 0x1000, 0x1, 0x1, 0x8}, "c3ccf1bf0000000000002000"}) ioctl$auto_SNDRV_TIMER_IOCTL_INFO(r6, 0x80e85411, &(0x7f00000002c0)={0x7fe3, 0x6, "b908674cfda2f7f351c66f681b0cf4a6f675fcee96065fdca6f219ea386de55097e14dbb38e0462dd9d44d7c6c55e2a5937efe361800", "3b6e33d493a9c79b3387938d612ceab5a4a20e605cd0842aa149397ff8063b45d44f8ce95fa39df1e5e1fc5e51f00fa2dfcc38c9b1ef6596b9e746f5e48ac07048156ea6be1e1ca5d281c7bb11333d0f", 0x397, 0x3, "d3bc655e384df871894a5771758ff164f2cd8098ac193333046911421bc3f1a0cf5d0300000000000000a9001fa7efb0600cc93b5b84a000"}) kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000) 10.074291601s ago: executing program 1 (id=1338): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x1e, 0x6, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcbx\xb2\x18e\x95$\x9d\x804', 0x100000a3d9) setsockopt$auto(0xffffffffffffffff, 0x9, 0x69ce, &(0x7f0000000040)='(%}[\x00', 0x3) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/tty/ptyqe/power/control\x00', 0xa0b02, 0x0) close_range$auto(0x2, 0x8, 0x0) connect$auto(0x3, 0x0, 0x4054) socket(0x10, 0x2, 0x0) memfd_secret$auto(0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) r1 = socket(0x10, 0x2, 0x4) mq_open$auto(&(0x7f0000000000)='P\x02\xb9\xd5\x02r\xbc\xd0\t^\xc0!\x7f\xc0\xdd8\xb0\x80\xfa;\x97\x05n\xf4~Z\x05\xf1\xef\xd1\xf1\b\xd9J\x9bp\xdf\xe7\xcd\x1f\x84-\xbb\x05\xa5\xb8\xfc\xf7v<)\xddR\x02\xd8\r_\x03\xe7\x8eWta\xfa\xbd\xaf\x06kG\xf7\xaa6\x1ch\vmD\xfc|v\xd4Q', 0x7e, 0x9, 0x0) sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x14, 0x0, 0x221, 0x70bd2c, 0x25dfdbeb}, 0x14}, 0x1, 0x0, 0x0, 0x400c050}, 0x4000080) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c00000014"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) socket(0x1, 0x1, 0x0) write$auto(r1, &(0x7f0000000000)='-\x00', 0x2fb) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x8d, 0x20009, 0x4000000000df, 0x11, 0x401, 0x7ff) prctl$auto(0x23, 0x7, 0x7fffffffefff, 0x0, 0x0) mmap$auto(0x7fff, 0x400008, 0xda, 0x9b72, 0x2, 0x480000000008001) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x1, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) 9.660514673s ago: executing program 0 (id=1341): prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x40, r1, 0x1b, 0x70bd26, 0x25dfdbfb, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0x3, 0x0, 0x1, [@typed={0x8, 0x11, 0x0, 0x0, @fd}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) mount$auto(0x0, &(0x7f00000000c0)='.\x00', 0x0, 0x200000000007, 0x0) sysfs$auto(0x2, 0x12, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vbi12\x00', 0x80, 0x0) preadv$auto(r2, &(0x7f0000001540)={&(0x7f0000000040), 0xca80}, 0x2, 0x2f, 0xff) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) fcntl$auto(0x3, 0x4, 0xa553) 9.466339752s ago: executing program 4 (id=1342): unshare$auto(0x40000080) r0 = socket(0x1, 0x5, 0xc) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) mmap$auto(0x0, 0xe00006, 0x2, 0x40eb1, 0x602, 0x300000000000) unshare$auto(0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) setsockopt$auto_SO_LINGER(r0, 0x1, 0xd, &(0x7f0000000100)='/proc/self/oom_adj\x00', 0x7) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/oom_adj\x00', 0x142, 0x0) bpf$auto_BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000140)=@bpf_attr_0={0x2, 0x9, 0x10000, 0xffffffff, 0x3fff0352, 0xffffffffffffffff, 0x3, "ef1d6dd772227e32b69615d3b50fd57f", 0x0, 0xffffffffffffffff, 0x81, 0x8001, 0x2aa}, 0xb) socket(0x10, 0x2, 0x14) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\a'], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x83, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioperm$auto(0x3, 0xe, 0x2000000000000149) read$auto(r1, 0x0, 0x4) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) unshare$auto(0x8000000) syz_clone(0x2360411, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$auto_TUNSETSNDBUF2(0xffffffffffffffff, 0x400454d4, &(0x7f0000000040)) 8.989025333s ago: executing program 0 (id=1343): r0 = openat$auto_tracing_stats_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/stats\x00', 0x4a0000, 0x0) r1 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r2 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_SETVA(r2, 0x7a4, 0x0) read$auto_suspend_stats_fops_(r1, &(0x7f0000000180)=""/102, 0x66) close_range$auto(r0, r1, 0x3) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptya5\x00', 0x62c00, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x101001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000500)='/dev/tty34\x00', 0x2200, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x2a380, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x4, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mincore$auto(0x1000, 0x8001, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710}, 0x10) madvise$auto(0x3, 0xea, 0xfffff66f) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) munmap$auto(0x7ffffffff000, 0x7fb3) 7.896563022s ago: executing program 2 (id=1344): syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'vcan0\x00', 0x0}) connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r0}, 0x18) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mincore$auto(0x1000, 0x8001, 0x0) write$auto(0x3, 0x0, 0xffd8) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/oom_score\x00', 0x0, 0x0) openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/kernel/debug/tracing/saved_tgids\x00', 0x40, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f0000000100)={0x0, 0xfffffc5d, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRESHEX=0x0, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) (async) r2 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) flock$auto(r2, 0x6) open$dir(&(0x7f0000000000)='./file0\x00', 0x42, 0x20) (async) open$dir(&(0x7f0000000000)='./file0\x00', 0x42, 0x20) mmap$auto(0x1, 0x8, 0x4000000000df, 0x40eb4, r1, 0x300000000082) (async) mmap$auto(0x1, 0x8, 0x4000000000df, 0x40eb4, r1, 0x300000000082) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000440)='/dev/ptyzf\x00', 0x1a3200, 0x0) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000440)='/dev/ptyzf\x00', 0x1a3200, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x2000040080000004, 0xe) move_pages$auto(0x0, 0x91, 0x0, 0x0, 0x0, 0x0) epoll_create$auto(0x7) (async) r4 = epoll_create$auto(0x7) epoll_wait$auto(r4, 0x0, 0xe007, 0x1) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) 7.167384998s ago: executing program 4 (id=1345): sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000326bd7017fddbdf250200000008002700080000000a001800aaaa8aaaaabb0000"], 0x28}, 0x1, 0x0, 0x0, 0x4c894}, 0x24008000) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x48180, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) fsconfig$auto(r1, 0x2, 0x0, 0x0, 0x0) pidfd_open$auto(0x0, 0xfffffffe) mmap$auto(0x0, 0x4020009, 0xdb, 0x2000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyr4\x00', 0x1, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) ioctl$auto_TIOCSTI2(r2, 0x5412, &(0x7f0000000840)="13") ioctl$auto_TIOCSTI2(r2, 0x5412, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000280)={{0x3, 0x1000, 0x1, 0x1, 0x2}, "654c6dbc7a4d30983899a7e1325b6a29ba1e184410ba9f74e82a3fa6c3ccf1bf"}) ioctl$auto_SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f0000000300)={0x200aa, 0x5, 0x0, 0x400, 0x9a, "077c1315ff06c9cc9ff4956913870ef95ebcd43e985b110210346f7f05f8bd5d8b4458e71254da2aab17208e518d2a9b3c20bd53a710ce119b1b61b0"}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_3={0x1c, 0xa8b, 0x18c, 0x6a, 0x0, 0x3405, 0x3, 0x9, 0xfffffff5, "63ace816ef77cf00", 0x0, 0x549, 0x4, 0x9c8, 0x0, 0x1009, 0x4, 0xffffffffffffffff, 0x4, 0x2000005, @attach_btf_obj_fd=0x3, 0x166, 0x1, 0x4000000000006, 0x8, 0x48200003, 0xa7be, r2}, 0x7) ioctl$auto_BTRFS_IOC_DEVICES_READY(r3, 0x90009427, &(0x7f00000000c0)={@raw=0x2, "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"}) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001100), r4) msgctl$auto_MSG_INFO(0x1, 0xc, &(0x7f00000011c0)={{0x80, 0xffffffffffffffff, 0xffffffffffffffff, 0x6, 0x9ddd, 0xa0cf, 0x7}, &(0x7f0000001140), &(0x7f0000001180)=0xc4, 0x80, 0x10000, 0x4, 0x0, 0x1000, 0x3, 0x6, 0xaad, @raw=0x2, @inferred=0xffffffffffffffff}) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) 6.735812528s ago: executing program 2 (id=1346): r0 = openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x40001, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = openat$auto_l2cap_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000240), 0xa0300, 0x0) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(r3, &(0x7f0000000100)={0x0, 0xfffffffffffffec6, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYRES64=r0, @ANYRESHEX=r2, @ANYBLOB="b1b50402002cbd7000b099463caff10dcf3cdbdf25028000000800030b80004000080002007f000000449ca4f4f98610a837d27015368cd917d3649bf8baef0899e944c5919db708bc1653acbcb3a7e675d5dde545b5415a3f6aa434118482ef5d84bf74a08a2132e7b9034ed5cff1d30672c7b7501cbcdbbcb076ad1c0a51f7ac20fb321200e223f5f58817bf00769ccf1efdb7451db10392aa19365a731c7f228e74852b5cf28348ac4408631e75fa43dcec5359a973a62f480f678f7e899eadbd8c31b1d3f9539406f672a33b76c45334850802d62b546b303fabe75c54f360"], 0x24}, 0x1, 0x0, 0x0, 0x20044010}, 0x48050) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000001c0)={0x0, 0xd}, 0x1, 0x0, 0x0, 0x800000d}, 0x7}, 0x3, 0x0) write$auto(r1, &(0x7f0000000300)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), r4) sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000001180)=ANY=[@ANYBLOB="5b1de955497c361bb6b1c09468f479f22890e80c669f34fb518bca74426747e46d57814431a9acea7ffca8c3236b800cca7de492518de31ed531ae46deaee40afc13410bea6f64927d48cfd0cc816d65893d7d836ee29643b1568e000000000000000000488bd0d408b72d293ce7fe3cc45f18e17cb4b76dea86af48ecb2ed37e36221ff72e618593ea1157f92eab783b6c6dd1e2a8266f4f76bb78ff0361ff37ae5c7812e48c3735bf233bda342f9f450825f05548bef678deb5155edc3fa14fe77110b53ad0fd66c9f6b9a04e3baf450", @ANYRES16=r4, @ANYRES8=r4], 0x14}, 0x1, 0x0, 0x0, 0x6000091}, 0x40804) unshare$auto(0x40000080) ioperm$auto(0xefdd, 0x4, 0xfffffffa) semget$auto(0xfffffffd, 0xc5, 0x808001) mmap$auto(0x84, 0x0, 0x0, 0x14, 0x401, 0x8000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) r5 = io_uring_setup$auto(0x6, 0x0) mmap$auto(0x8, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x40008000) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event2\x00', 0x26c982, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r6) ioctl$auto_KVM_CREATE_VM(r5, 0xae80, 0x0) r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x60180, 0x0) ioctl$auto(0x3, 0xae41, r7) 5.542424483s ago: executing program 0 (id=1347): mmap$auto(0x0, 0x400008, 0xe3, 0xfffffffffffffff2, 0x2, 0x4000000000008000) madvise$auto(0x4000000, 0xffffffffffff0085, 0x1004) r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder1\x00', 0x0, 0x0) dup$auto(r1) socket(0x2, 0x1, 0x106) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x7, 0x0, 0x1, 0x10001) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0xc1fb, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r3, &(0x7f0000000080)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x65d, 0x7, 0xd, 0x1, 0x958b, 0x1, 0x15f4da09, 0x3, 0x3, 0x62, 0x40008000001f, 0x7, 0x8000000000000000, 0x9, 0x2, 0x10000]}, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, r0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r4 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec29\x00', 0x547002, 0x0) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r4, 0xc05c6104, &(0x7f0000000100)={"fda256c4", 0x3, 0x6, 0x4, 0x9b4, 0x9, "0800aafc241cd010c7543bfbca2ce1", "0200", '\x00\x00 \x00', "2ff43123", ['\x00', "f8ff0b00fbf2ffff0000b401", "0004154db00b0004000400", "5fe10eedab2c4b353c392a92"]}) sysfs$auto(0x2, 0x23, 0x0) r5 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r5, 0x0, 0x4) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) r6 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range$auto(0xffffffffffffffff, r2, 0x1) r8 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$auto(r7, 0xae41, r6) 4.713798199s ago: executing program 1 (id=1348): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0x2, 0x0) openat$auto_ipsec_dbg_fops_ipsec(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim6/ports/0/ipsec\x00', 0x80, 0x0) r0 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r0, 0x107, 0x5, 0x0, 0x8004) r1 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0xfff, 0xdf, 0xeb1, 0x401, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x182, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x9) ioperm$auto(0x3, 0xe, 0x2000000000000149) msgctl$auto_IPC_RMID(0x9, 0x0, 0x0) write$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffffff, &(0x7f0000000400)="4d03935d592d85f3175029fd2a58465567e1b57bebee9871c8d2b9dd039de3d837b1f8239bdf265a250be58e58020726bc641c21bf6ddd5178d8c8383332da", 0x3f) statx$auto(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x6, 0x7, &(0x7f0000000280)={0x8, 0x86c1, 0x120000000000, 0x5, 0x0, 0xee00, 0x40, 0x0, 0xfffffffffffff5f7, 0x4, 0x7fffffff, 0xd7a2, {0xd, 0xccb}, {0x6, 0xcd}, {0xd, 0x3}, {0x2, 0x5}, 0xfffffbff, 0x1, 0xe, 0x5, 0xe, 0xfe, 0x6, 0x8, 0xf, 0x2, 0xd, 0xb0, [0x7fffffffffffffff, 0x2, 0x3, 0x40, 0x9, 0x7f, 0x4e4c, 0x8, 0xffffffffffff6f4c]}) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={0x0, 0x3d0}, 0x1, 0x0, 0x0, 0x4004004}, 0x800) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000440)='/proc/self/net/dev_snmp6/wlan1\x00', 0x22b42, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x4, 0x0) socket(0x11, 0x1, 0xa) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) r4 = openat$auto_fops_u16_(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim1/psample/out_tc\x00', 0x200040, 0x0) recvmmsg$auto(r4, &(0x7f0000000380)={{&(0x7f00000000c0)="6eaff90c27c236f14a35c30286344fab061d22b9b443d1c23fc9644870161edea245e9b09a2c32ba2c97c3ad861dee55caf42055d859308207cb06cf80a268d20e3b8e6a02ca6000435df0003f40c98e", 0x0, &(0x7f0000000240)={&(0x7f0000000140)="e32ec46e7d05973636fc26248e5e040a4876f1ae1c613dcd01d4e67ede6830aa84cdf7a2e209d5dcf9c643dc62eaeefc54c357c7866f9a01f46de76c65898b6b791205ea38675d23539fd21f368574339b0b5c6320da52a1828043d6188d52017650cc4a2a3e540606a3e7bbb8af433b32739cf084058a7ecbe22ea2202266504c3e62cbeb30c40658c5e006b431bb4d86de7df041bd085e25f1d04b3718b377bed37227d1b2fc48d796f10acd12f1cc1b864eb578f7b8f7e84fbef1c51dec76a387", 0x8}, 0xb, &(0x7f0000000280)="e313346087c0be3d8f7a4caf048cab8ca7b0344a963c05d87ee6942964e09f7b1b1a8a9c375b257c873b183fa4253dc7cf43b253106339630d573bea8fe20df6ca969d48a8afc02ea58723d605202ab09409cdd0eb06044db1b40c503601563cc1b44fb0324fe7750e6737f0d4ea564be92d632fcb2b407a55a7a94f433ee48c1e63a9d43686dbc8885115bf7c810bb0eb5423656503115088270e4a907a29e9c6b360440073222d8c1639c8c8f8dd5ff06b285c06a66ed0239701d9342844469a775354a905eab0dce23d7ca7beb7746d60c72edb2342bf5c65cf724820cd66ba95434b319f0bd9736c5a4d813ed3781ad9a284de54970616", 0x0, 0x6}, 0x2}, 0xf37c, 0x101, &(0x7f00000003c0)={0x0, 0x5}) ioctl$auto_MON_IOCG_STATS(0xffffffffffffffff, 0x80089203, &(0x7f0000000080)={0xafa, 0x7}) 4.61371259s ago: executing program 4 (id=1349): sendmsg$auto_NL80211_CMD_SET_CQM(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000002d80)={0x6d8, 0x0, 0x4, 0x70bd29, 0x25dfdbff, {}, [@NL80211_ATTR_TX_RATES={0x6c2, 0x5a, 0x0, 0x1, [@generic="e8cdb24cf237d73d39a08bd644290396e80f9f50658ba723671c5c6b0ceb4a165cbb59a0909f29a401391fe84f122ee3285b267b493212648cab688a76f62fbb38592280de0e0a65c03079a405291d31fce0e81c977ddcad65c90d3f9795f075f8ea88c7589190605fcc9ffd4cda2ded7e609aa395f6fca25c66a475519b9dd11fafbfc03022aed25b02a570479ee5ca284d6a1d079cf08952420b08a564f55501fdd4f56764559fb350ab4570b50f509b9c3531da1a2b3257247078f9204d113735ed0bc63544640838020b94399f02ba94", @nested={0x5ec, 0x30, 0x0, 0x1, [@generic="69c8616a07dc642769d4816f8ce1c84b1504497b609651792a4ebb253419f44737e5a6af8f76cc74de9926be3a90944440ed421613a200a464a25795fe8061e261206ae804275f3ee80c0dd27464a8ebbfdb9a1c8d3f184a4bc5d226a66dc7903ee088e92c8379669e80eb509397935e8cffbf9d321c2e66abc8b455fc6384239cda1a786517372575b90274c8257f08e55b8e", @generic="b85488a846e2f6637286b9d9ce3afea81cbf2af57b47cdf454cd1830c85e5c4a52c0791eb56c182b18281550098ae09981abf0c4f524e5924ed4c04ebe0e63edcc8c064c1e6b0164024cd72d87584c3442d42a7fd70a6f", @generic="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"]}]}]}, 0x6d8}, 0x1, 0x0, 0x0, 0x80}, 0x4008042) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x24, r2, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0xfffffffc}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0xffff}]}, 0x24}, 0x1, 0x0, 0x0, 0x4002000}, 0x40010) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x8, 0x1, 0x2, 0x4, 0x15f4da0e, 0x3, 0xd08, 0xc, 0x8, 0x4, 0x6d3f, 0x9, 0x2, 0x4000000000000d]}, 0x0) write$auto(r0, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9) 4.242723594s ago: executing program 2 (id=1350): openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40102, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) setsockopt$auto(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x10000) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x3f) 4.220273237s ago: executing program 1 (id=1351): prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x40, r1, 0x1b, 0x70bd26, 0x25dfdbfb, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0x3, 0x0, 0x1, [@typed={0x8, 0x11, 0x0, 0x0, @fd}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) mount$auto(0x0, &(0x7f00000000c0)='.\x00', 0x0, 0x200000000007, 0x0) sysfs$auto(0x2, 0x12, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vbi12\x00', 0x80, 0x0) preadv$auto(r2, &(0x7f0000001540)={&(0x7f0000000040), 0xca80}, 0x2, 0x2f, 0xff) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) fcntl$auto(0x3, 0x4, 0xa553) 3.356949918s ago: executing program 0 (id=1352): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x7, 0x40006, 0x1000000005, 0x9f72, 0x2, 0x8000) userfaultfd$auto(0x1) ioctl$auto(0x3, 0xc018aa3f, 0xf0b) syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), r0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) socket(0x23, 0xa, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0) read$auto(r2, 0x0, 0x20) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0xa02, 0x0) unshare$auto(0x40000080) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000005, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x28800, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sg0\x00', 0x40200, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0) mmap$auto(0xfffffffffffffff9, 0x400003, 0x7, 0x9b72, 0x2, 0x8000) setsockopt$auto(0xffffffffffffffff, 0x1, 0x1021, 0x0, 0xd) close_range$auto(0x2, 0xa, 0x0) unshare$auto(0x9) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace\x00', 0x1a6b75d638828712, 0x0) sendfile$auto(r4, r3, 0x0, 0x1000202) 3.165992263s ago: executing program 2 (id=1353): openat$auto_fops_blob_file(0xffffffffffffff9c, &(0x7f0000011500), 0x40002, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/etherd/err\x00', 0x80a02, 0x0) r1 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x101000, 0x0) poll$auto(&(0x7f00000000c0)={r1, 0xa, 0xaf6}, 0x40, 0x0) (async) write$auto_aoe_fops_aoechr(r0, 0x0, 0x0) (async) mmap$auto(0x0, 0x70, 0xdf, 0x9b72, 0x2, 0x80000000008000) semctl$auto(0x7, 0x2, 0x13, 0x1) semctl$auto(0x0, 0x2, 0x13, 0x6) (async) r2 = socket(0x11, 0x80003, 0x0) setsockopt$auto(r2, 0x107, 0x5, 0x0, 0xce24) (async) write$auto(0x3, 0x0, 0x580000000) r3 = socket(0x11, 0x80003, 0x1) setsockopt$auto(r3, 0x107, 0xf, 0x0, 0x6) (async) openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/mem\x00', 0x41, 0x0) (async) write$auto(0x3, 0x0, 0xfffffdef) 2.843378117s ago: executing program 4 (id=1354): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/module/ocfs2_dlmfs/parameters/capabilities\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000840)=""/41, 0x29) socket(0xa, 0x3, 0x73) socket(0x29, 0x5, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r1 = socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3, @rand_addr=0x40020000}, 0x55) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) capset$auto(0x0, 0x0) setsockopt$auto(r1, 0x10000000084, 0x8, 0x0, 0xc) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xb8ff}, 0x1, 0x0, 0x0, 0x9}, 0x100007}, 0x3, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xa4e00, 0x0) ioctl$auto_IOC_PR_PREEMPT_ABORT(r2, 0x401870cc, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) getsockopt$auto(0x6, 0x10f, 0x4, 0xfffffffffffffffe, 0x0) 2.719920774s ago: executing program 1 (id=1355): r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/pid_for_children\x00') ioctl$auto(r0, 0x8004b707, r0) (async, rerun: 64) r1 = socket(0x1d, 0x2, 0x2) (rerun: 64) connect$auto(r1, 0x0, 0x0) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async) r2 = open(&(0x7f0000000140)='./file0\x00', 0x2000, 0x110) pwrite64$auto(r2, &(0x7f0000000040)='\x01\x00\x17\x00\xf6', 0x7, 0x8) 2.5959889s ago: executing program 2 (id=1356): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/rose3/carrier\x00', 0x502, 0x0) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) socket(0x15, 0x5, 0x0) socket(0xa, 0x1, 0x84) socketpair$auto(0x1, 0x204, 0x3, 0x0) dup2$auto(0x5, 0x4) splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9) socket(0x2, 0x3, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x0, 0x5, 0x0, 0x2) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/vm/dirty_writeback_centisecs\x00', 0xb02, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0) prctl$auto(0x41, 0x0, 0x0, 0x0, 0x0) read$auto(r1, 0x0, 0x20) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x80000, 0x0) poll$auto(0x0, 0xd59, 0xffffffff) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) memfd_create$auto(0x0, 0x6) open(0x0, 0x22240, 0x154) rename$auto(&(0x7f0000000040)='./file0\x00', 0x0) rename$auto(&(0x7f0000000000)='./file0\x00', 0x0) unshare$auto(0x40000080) sendfile$auto(r0, r0, 0x0, 0x2) 2.169941922s ago: executing program 1 (id=1357): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async) unshare$auto(0x40000080) r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x40040, 0x0) openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000000), 0x40001, 0x0) (async, rerun: 32) write$auto(r0, 0x0, 0xfff) (rerun: 32) r1 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0) pread64$auto(r1, 0x0, 0x0, 0x9) (async) read$auto_mon_fops_text_t_mon_text(r1, 0x0, 0x0) (async) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) (async) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0) read$auto(r2, 0x0, 0x7) (async, rerun: 32) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/platform/i8042/serio1/resolution\x00', 0x6822c3, 0x0) (rerun: 32) write$auto(r3, 0x0, 0x4) 1.656435492s ago: executing program 4 (id=1358): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) prctl$auto(0x6, 0x1, 0x0, 0x0, 0x6) r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x171781, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/ptype\x00', 0x242480, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000001080)=""/244, 0xf4) ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000240)="58fcb282bcbc38bfaef257e019406ea6c445cd4f7f7662ac0f8a34ba95c0a918d092548333243c4f3b9a39e536b67f5a1a2b0aef73156d31006eefeffdf557da2b1c980e1ce53883444996d1721d7f3ae627c6c604000000200002007910fbc02dda3a2c04b662569054795e32e4a5899ab93d002d849884a5377f") r2 = socket(0x10, 0x2, 0x4) write$auto(r2, &(0x7f00000000c0), 0xffffffffffffffff) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) socket(0x16, 0x2, 0x1) setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/ip6gre0/power/control\x00', 0x10b142, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0xc, 0x3, 0x0, 0x0, 0x2) socket(0x3, 0x3, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x0, 0x0) r3 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mmap$auto(0x3, 0x2, 0xdf, 0xeb1, r3, 0x8000) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/controlC1\x00', 0x505301, 0x0) mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/pci0000:00/0000:00:03.0/config\x00', 0xaa842, 0x0) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv6/conf/sit0/regen_max_retry\x00', 0x800, 0x0) read$auto(r4, 0x0, 0x1ff) write$auto(0x3, 0x0, 0xfdef) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r5, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r2, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9 \xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\xe7\xb6R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) madvise$auto(0x0, 0xffffffffffff0001, 0x15) 1.54349469s ago: executing program 0 (id=1359): openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event2\x00', 0x111000, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0x2, 0x5, 0x0) (async) socket(0x2, 0x5, 0x0) shutdown$auto(0x200000003, 0x2) connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_VPORT_CMD_NEW(r0, &(0x7f0000002f80)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x8100) socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00'}) (async) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00'}) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x6, 0x0) (async) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) mbind$auto(0x2000, 0x100000006, 0x100000000, 0x0, 0x6, 0x2) 495.419536ms ago: executing program 4 (id=1360): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0xb, 0x492c51faa95cba, 0xfffffffe) socket(0xf, 0x3, 0x2) sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000004080)={0x0, 0x0, &(0x7f0000004040)={&(0x7f0000000380)=ANY=[@ANYBLOB="2b00c4bcff48b076b8fb1a46c2e0a879e6c7c8ff17c83d3e2e90f5e2cd6f2af8ed139a7abea99a6f5adb9bee6fb3302f8f8a2f12d0673025a280310001c91274ba6007da505848bdeec6e0a7", @ANYRES16=0x0, @ANYBLOB="010026bd7000ffdbdf250200000004000180"], 0x18}, 0x1, 0x0, 0x0, 0x4}, 0x80) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='R'], 0x1ac}}, 0x40000) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080), 0x7b2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8) sendmsg$auto_NL80211_CMD_LEAVE_MESH(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000980)={&(0x7f0000000a00)=ANY=[@ANYBLOB="84040000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="6bdcfab5378d649e3de0430fe973edc77255054d7f48a18d127fdfdd6c45ff62c4a93301f585da9944f856b5e8ec78e990d5e85d921cbaa2951574134698dae2c79cc487e2061d5eb9cb1fea11293ed2f70b9ee735e78fd4e885176be00e1933039007581fafdcba1cda83d9787b054c388e3b499310977542eb845c0f63abaa6265d01d594a6660f23d5f4c314676a2bc66c986914641f9d1dd13541546fdaa84703f24b29421211b9e5480e08df32c92232e103eeff6bed4a739df778c603ddd13acf5b897ee6a9e171fd4c3c23bab06454ec6bd6e9eb7791cda2cc98fb95e0005001d000500000006001401ac0b0000"], 0x484}, 0x1, 0x0, 0x0, 0x4004041}, 0x40100) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D1\x00', 0x660040, 0x0) openat$auto_generic(0xffffffffffffff9c, &(0x7f0000001500)='/proc/kpagecgroup\x00', 0x101000, 0x0) memfd_create$auto(0x0, 0x7) select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x0, 0x1003, 0x1, 0x948b, 0x3, 0xaa, 0xfffffffffffffffd, 0x3, 0x62, 0x7, 0x9, 0x6d3f, 0x9, 0x10004, 0x8]}, 0x0) statmount$auto(0x0, &(0x7f00000004c0)={0xa, 0x1, 0x401bf, 0x7353, 0x43, 0x6, 0x0, 0x7, 0x1ff, 0x2, 0x9, 0x3, 0x5, 0x20000004, 0x3000, 0x200, 0x6, 0x10003, 0x83, 0x4, 0x200009, 0x7, 0x1ffc, 0x203, 0x400, 0x84, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, [0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x969, 0x0, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x200000000000]}, 0x1fe, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x7fff) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x73, 0x8) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) setfsgid$auto(0xee00) r2 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000080)="af101b8f8a7d3fb11541234c841ad04ef950bd816b1a4f98cd92c3e2a12357557135aad56ced71a1f0d966c275daa2c99a9c0ad115b322b5d8183b96ab92708cc68cbbdfb3df131db9a98348c8", 0x7, 0xa505}, 0x800}, 0x7, 0x4008) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000003680)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_NEW_KEY(r5, &(0x7f00000048c0)={0x0, 0x0, &(0x7f0000004880)={&(0x7f0000000140)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010029bd7000fddbdf250b00000008000300", @ANYRES32=r6, @ANYBLOB="05000000"], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x890) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/dummy_hcd.0/usb1/power/autosuspend_delay_ms\x00', 0x20461, 0x0) 64.031788ms ago: executing program 2 (id=1361): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) (async) nanosleep$auto(&(0x7f0000000180)={0x2, 0x44d4}, 0x0) (async) getpid() clock_nanosleep$auto(0x9, 0x0, 0x0, 0x0) socket$nl_generic(0x11, 0x3, 0x10) (async) ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) (async) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async, rerun: 32) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (rerun: 32) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0x10001, 0x3, 0x62, 0x80000001, 0x7, 0x6d3c, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) (async, rerun: 64) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (rerun: 64) mmap$auto(0x0, 0x1, 0x4000000000df, 0xd8, 0xffffffffffffffff, 0x300000000000) (async) r2 = socket(0xa, 0x5, 0x84) getsockopt$auto(r2, 0x84, 0x9, 0x0, &(0x7f0000000000)=0x9b) (async) ppoll$auto(0x0, 0x7f, 0x0, 0x0, 0x8) (async, rerun: 64) r3 = socket(0x22, 0x3, 0x0) (rerun: 64) ioctl$sock_SIOCGIFINDEX(r3, 0x80044944, 0x0) (async) syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), r3) setsockopt$auto(0xffffffffffffffff, 0x10000000084, 0x9, 0x0, 0x9c) (async) select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x1ff, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x40000080000023, 0x7, 0x8000000000006d3e, 0x9, 0x2, 0x6]}, 0x0) (async, rerun: 64) ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000140)) (async, rerun: 64) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x5, 0x14, 0x944, 0x1ffe0, 0x3, 0x6, 0x1000007, 0x9, 0x400005, 0x4000fff, 0x8000007, 0x8001, 0x2, 0x5, 0x3, 0x40, 0x7, 0x20, 0x309, 0x6, 0x0, 0x7fffffff, 0x200000, 0x0, 0x0, 0xffffffff, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x4, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x800000000000, 0x9, 0x0, 0x0, 0x0, 0x5, 0x7, 0x10000000000, 0x0, 0x4, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x4]}, 0x1fb, 0x81) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 64) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) (rerun: 64) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) (async) openat$auto_sco_debugfs_fops_(0xffffffffffffff9c, 0x0, 0x242, 0x0) 0s ago: executing program 1 (id=1362): r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8402, 0x0) ioctl$auto_SG_SET_RESERVED_SIZE2(r0, 0x2275, &(0x7f0000000080)="046d7e") r1 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec4\x00', 0x101901, 0x0) ioctl$auto_CEC_TRANSMIT(r1, 0xc0386105, &(0x7f0000000340)={0x8f1, 0x1, 0x7, 0x5, 0x7a000000, 0xbb, "ffab6d9e766230af5a9eb64140295715", 0x7, 0x41, 0x7, 0x9c, 0x4, 0x7, 0x40}) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer\x00', 0x0, 0x0) mmap$auto(0x0, 0x5810, 0xffb, 0x8000000008011, 0x3, 0x0) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) setsockopt$auto(r2, 0x1, 0x2, &(0x7f0000000000)='}\x00', 0x0) kernel console output (not intermixed with test programs): 7061 res=0 errno=0 [ 345.976331][ C1] vkms_vblank_simulate: vblank timer overrun [ 347.811728][ T9621] delete_channel: no stack [ 348.940869][ T9627] netlink: 268 bytes leftover after parsing attributes in process `syz.0.680'. [ 351.739054][ T9659] FAULT_INJECTION: forcing a failure. [ 351.739054][ T9659] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 351.806792][ T9659] CPU: 1 UID: 0 PID: 9659 Comm: syz.2.686 Not tainted syzkaller #0 PREEMPT(full) [ 351.806842][ T9659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 351.806862][ T9659] Call Trace: [ 351.806877][ T9659] [ 351.806890][ T9659] dump_stack_lvl+0x16c/0x1f0 [ 351.806965][ T9659] should_fail_ex+0x512/0x640 [ 351.807020][ T9659] _copy_to_iter+0x29f/0x1710 [ 351.807058][ T9659] ? chacha_block_generic+0x211/0x330 [ 351.807114][ T9659] ? __pfx__copy_to_iter+0x10/0x10 [ 351.807154][ T9659] ? __pfx___might_resched+0x10/0x10 [ 351.807187][ T9659] ? crng_make_state+0x48e/0x6d0 [ 351.807248][ T9659] get_random_bytes_user+0x17f/0x3c0 [ 351.807309][ T9659] ? __pfx_get_random_bytes_user+0x10/0x10 [ 351.807363][ T9659] ? do_writev+0x218/0x340 [ 351.807407][ T9659] ? do_futex+0x122/0x350 [ 351.807468][ T9659] ? import_ubuf+0x1b6/0x220 [ 351.807521][ T9659] ? _end+0x641d8700/0x0 [ 351.807555][ T9659] __x64_sys_getrandom+0x183/0x290 [ 351.807591][ T9659] ? __pfx___x64_sys_getrandom+0x10/0x10 [ 351.807649][ T9659] do_syscall_64+0xcd/0x490 [ 351.807697][ T9659] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 351.807743][ T9659] RIP: 0033:0x7f7a23f8ebe9 [ 351.807789][ T9659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 351.807819][ T9659] RSP: 002b:00007f7a24de5038 EFLAGS: 00000246 ORIG_RAX: 000000000000013e [ 351.807851][ T9659] RAX: ffffffffffffffda RBX: 00007f7a241b5fa0 RCX: 00007f7a23f8ebe9 [ 351.807873][ T9659] RDX: 0000000000000003 RSI: ffffffffff600700 RDI: 0000000000000000 [ 351.807894][ T9659] RBP: 00007f7a24011e19 R08: 0000000000000000 R09: 0000000000000000 [ 351.807914][ T9659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 351.807934][ T9659] R13: 00007f7a241b6038 R14: 00007f7a241b5fa0 R15: 00007ffcf8215ba8 [ 351.807969][ T9659] ? _end+0x641d8700/0x0 [ 351.808033][ T9659] [ 352.827311][ T30] audit: type=1804 audit(6442451163.022:21): pid=9680 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.690" name="/newroot/140/file0" dev="tmpfs" ino=760 res=1 errno=0 [ 355.488945][ T9740] vhci_hcd: invalid port number 23 [ 355.508088][ T9744] vhci_hcd: invalid port number 23 [ 356.146871][ T30] audit: type=1800 audit(6442451166.332:22): pid=9754 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.704" name="members" dev="configfs" ino=28178 res=0 errno=0 [ 356.923156][ T30] audit: type=1800 audit(6442451167.122:23): pid=9781 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.709" name="members" dev="configfs" ino=27568 res=0 errno=0 [ 357.227366][ T9782] Process accounting resumed [ 360.807497][ T9860] netlink: 4 bytes leftover after parsing attributes in process `syz.0.718'. [ 360.932243][ T9858] netlink: 4 bytes leftover after parsing attributes in process `syz.0.718'. [ 362.608332][ T9890] ======================================================= [ 362.608332][ T9890] WARNING: The mand mount option has been deprecated and [ 362.608332][ T9890] and is ignored by this kernel. Remove the mand [ 362.608332][ T9890] option from the mount to silence this warning. [ 362.608332][ T9890] ======================================================= [ 363.574884][ T9902] ubi0: attaching mtd0 [ 363.689088][ T9902] ubi0: scanning is finished [ 363.707067][ T9902] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 363.805087][ T9915] netlink: 28 bytes leftover after parsing attributes in process `syz.2.729'. [ 364.151066][ T9902] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 364.262373][ T9918] netlink: 334 bytes leftover after parsing attributes in process `syz.1.730'. [ 364.538848][ T9925] netlink: 4 bytes leftover after parsing attributes in process `syz.0.732'. [ 365.769992][ T9935] netlink: 4 bytes leftover after parsing attributes in process `syz.0.736'. [ 365.832853][ T9946] sysfs_service_op_store: Client not running :-5: [ 366.702671][ T9954] zswap: compressor not available [ 369.504034][T10017] ima: policy update failed [ 369.518358][ T30] audit: type=1802 audit(6442451179.722:24): pid=10017 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.750" res=0 errno=0 [ 369.875827][T10022] netlink: 20 bytes leftover after parsing attributes in process `syz.0.751'. [ 370.392241][T10031] netlink: 8 bytes leftover after parsing attributes in process `syz.2.754'. [ 371.368454][T10044] svc: failed to register nfsdv3 RPC service (errno 101). [ 371.418334][T10044] svc: failed to register nfsaclv3 RPC service (errno 101). [ 372.203809][T10046] svc: failed to register nfsdv3 RPC service (errno 101). [ 372.207616][T10050] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 372.253550][T10046] svc: failed to register nfsaclv3 RPC service (errno 101). [ 372.292963][T10050] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 372.303144][T10050] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 372.309721][T10050] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 373.358923][T10063] synth uevent: /devices/virtual/block/nbd6: unknown uevent action string [ 373.417406][T10063] block nbd6: uevent: failed to send synthetic uevent: -22 [ 373.966719][T10076] netlink: 330 bytes leftover after parsing attributes in process `syz.2.759'. [ 374.256623][ T5869] Bluetooth: hci0: command 0x0406 tx timeout [ 374.306862][ T5869] Bluetooth: hci3: command 0x0406 tx timeout [ 374.313123][ T5869] Bluetooth: hci2: command 0x0406 tx timeout [ 374.313508][ T51] Bluetooth: hci1: command 0x0406 tx timeout [ 374.495664][T10082] netlink: 146 bytes leftover after parsing attributes in process `syz.1.760'. [ 374.634202][T10085] FAULT_INJECTION: forcing a failure. [ 374.634202][T10085] name fail_futex, interval 1, probability 0, space 0, times 0 [ 374.649027][T10085] CPU: 0 UID: 0 PID: 10085 Comm: syz.1.760 Not tainted syzkaller #0 PREEMPT(full) [ 374.649069][T10085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 374.649088][T10085] Call Trace: [ 374.649099][T10085] [ 374.649112][T10085] dump_stack_lvl+0x16c/0x1f0 [ 374.649163][T10085] should_fail_ex+0x512/0x640 [ 374.649216][T10085] get_futex_key+0x1d0/0x1560 [ 374.649261][T10085] ? __pfx_get_futex_key+0x10/0x10 [ 374.649316][T10085] futex_wake+0xea/0x530 [ 374.649368][T10085] ? __pfx_futex_wake+0x10/0x10 [ 374.649417][T10085] ? rcu_is_watching+0x12/0xc0 [ 374.649468][T10085] do_futex+0x1e3/0x350 [ 374.649509][T10085] ? __pfx_do_futex+0x10/0x10 [ 374.649556][T10085] ? __pfx___might_resched+0x10/0x10 [ 374.649596][T10085] __x64_sys_futex+0x1e0/0x4c0 [ 374.649641][T10085] ? __pfx_blkcg_maybe_throttle_current+0x10/0x10 [ 374.649684][T10085] ? __pfx___x64_sys_futex+0x10/0x10 [ 374.649729][T10085] ? __pfx___do_sys_close_range+0x10/0x10 [ 374.649800][T10085] do_syscall_64+0xcd/0x490 [ 374.649850][T10085] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 374.649886][T10085] RIP: 0033:0x7f245578ebe9 [ 374.649912][T10085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 374.649944][T10085] RSP: 002b:00007f24565c90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 374.649975][T10085] RAX: ffffffffffffffda RBX: 00007f24559b6098 RCX: 00007f245578ebe9 [ 374.649996][T10085] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f24559b609c [ 374.650017][T10085] RBP: 00007f24559b6090 R08: 00007f24565eb000 R09: 0000000000000000 [ 374.650043][T10085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 374.650062][T10085] R13: 00007f24559b6128 R14: 00007ffc515c0e10 R15: 00007ffc515c0ef8 [ 374.650104][T10085] getty: ttyS0: read error: Resource temporarily u[ 377.059959][ T30] audit: type=1800 audit(6442451187.262:25): pid=10129 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.768" name="members" dev="configfs" ino=29524 res=0 errno=0 [ 378.270069][T10158] netlink: 12 bytes leftover after parsing attributes in process `syz.0.771'. [ 378.427426][T10156] HfR: entered promiscuous mode [ 378.524386][T10158] HfR: left promiscuous mode [ 378.848144][T10167] netlink: 330 bytes leftover after parsing attributes in process `syz.2.775'. [ 378.901304][T10166] netlink: 330 bytes leftover after parsing attributes in process `syz.2.775'. [ 379.428025][T10176] netlink: 146 bytes leftover after parsing attributes in process `syz.2.777'. [ 383.031288][ T51] Bluetooth: hci2: ACL packet for unknown connection handle 0 [ 383.219534][T10218] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 384.261311][T10232] blktrace: Concurrent blktraces are not allowed on ram7 [ 384.333965][T10232] vhci_hcd: invalid port number 23 [ 384.350768][T10232] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub. [ 384.400318][T10232] FAULT_INJECTION: forcing a failure. [ 384.400318][T10232] name failslab, interval 1, probability 0, space 0, times 0 [ 384.414630][T10232] CPU: 1 UID: 0 PID: 10232 Comm: syz.0.787 Not tainted syzkaller #0 PREEMPT(full) [ 384.414672][T10232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 384.414690][T10232] Call Trace: [ 384.414700][T10232] [ 384.414712][T10232] dump_stack_lvl+0x16c/0x1f0 [ 384.414760][T10232] should_fail_ex+0x512/0x640 [ 384.414805][T10232] ? fs_reclaim_acquire+0xae/0x150 [ 384.414857][T10232] ? security_inode_init_security+0x13f/0x390 [ 384.414909][T10232] should_failslab+0xc2/0x120 [ 384.414952][T10232] __kmalloc_noprof+0xd2/0x510 [ 384.414999][T10232] security_inode_init_security+0x13f/0x390 [ 384.415054][T10232] ? __pfx_shmem_initxattrs+0x10/0x10 [ 384.415110][T10232] ? __pfx_security_inode_init_security+0x10/0x10 [ 384.415179][T10232] shmem_mknod+0x22e/0x450 [ 384.415235][T10232] ? __pfx_shmem_create+0x10/0x10 [ 384.415283][T10232] lookup_open.isra.0+0x11d0/0x1580 [ 384.415326][T10232] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 384.415391][T10232] ? __pfx_down_write+0x10/0x10 [ 384.415437][T10232] ? mnt_get_write_access+0x20c/0x300 [ 384.415494][T10232] path_openat+0x893/0x2cb0 [ 384.415545][T10232] ? __pfx_path_openat+0x10/0x10 [ 384.415587][T10232] ? __lock_acquire+0xb97/0x1ce0 [ 384.415635][T10232] do_filp_open+0x20b/0x470 [ 384.415675][T10232] ? __pfx_do_filp_open+0x10/0x10 [ 384.415744][T10232] ? _raw_spin_unlock+0x28/0x50 [ 384.415779][T10232] ? alloc_fd+0x471/0x7d0 [ 384.415825][T10232] do_sys_openat2+0x11b/0x1d0 [ 384.415876][T10232] ? __pfx_do_sys_openat2+0x10/0x10 [ 384.415925][T10232] ? fd_install+0x225/0x750 [ 384.415972][T10232] __x64_sys_open+0x153/0x1e0 [ 384.416023][T10232] ? __pfx___x64_sys_open+0x10/0x10 [ 384.416089][T10232] ? rcu_is_watching+0x12/0xc0 [ 384.416127][T10232] do_syscall_64+0xcd/0x490 [ 384.416175][T10232] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 384.416208][T10232] RIP: 0033:0x7f6ac358ebe9 [ 384.416232][T10232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 384.416265][T10232] RSP: 002b:00007f6ac43a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 384.416296][T10232] RAX: ffffffffffffffda RBX: 00007f6ac37b5fa0 RCX: 00007f6ac358ebe9 [ 384.416317][T10232] RDX: 0000000000000130 RSI: 0000000000161342 RDI: 0000200000000000 [ 384.416338][T10232] RBP: 00007f6ac3611e19 R08: 0000000000000000 R09: 0000000000000000 [ 384.416358][T10232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 384.416378][T10232] R13: 00007f6ac37b6038 R14: 00007f6ac37b5fa0 R15: 00007fffe1bb5838 [ 384.416421][T10232] [ 387.278471][T10259] Process accounting paused [ 388.681870][T10296] block nbd9: NBD_DISCONNECT [ 388.957125][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 388.963496][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 389.665317][T10310] ubi0: attaching mtd0 [ 389.677813][T10310] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 393.444372][ C0] vcan0: j1939_tp_rxtimer: 0xffff88805df40000: rx timeout, send abort [ 393.953767][ C0] vcan0: j1939_tp_rxtimer: 0xffff88805df40000: abort rx timeout. Force session deactivation [ 394.496325][T10378] ptrace attach of "./syz-executor exec"[10380] was attempted by "./syz-executor exec"[10378] [ 394.668122][T10385] syz.3.812: vmalloc error: size 4503599627371522, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 394.686965][T10385] CPU: 0 UID: 0 PID: 10385 Comm: syz.3.812 Not tainted syzkaller #0 PREEMPT(full) [ 394.687009][T10385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 394.687029][T10385] Call Trace: [ 394.687040][T10385] [ 394.687053][T10385] dump_stack_lvl+0x16c/0x1f0 [ 394.687104][T10385] warn_alloc+0x248/0x3a0 [ 394.687159][T10385] ? __pfx_warn_alloc+0x10/0x10 [ 394.687225][T10385] ? dvb_demux_do_ioctl+0x54e/0x12f0 [ 394.687258][T10385] __vmalloc_node_range_noprof+0xff5/0x14b0 [ 394.687293][T10385] ? __pfx___might_resched+0x10/0x10 [ 394.687329][T10385] ? rcu_is_watching+0x12/0xc0 [ 394.687363][T10385] ? trace_contention_end+0xdd/0x130 [ 394.687418][T10385] ? dvb_demux_do_ioctl+0x54e/0x12f0 [ 394.687457][T10385] ? tomoyo_path_number_perm+0x295/0x580 [ 394.687495][T10385] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 394.687521][T10385] ? __pfx___mutex_lock+0x10/0x10 [ 394.687569][T10385] ? dvb_demux_do_ioctl+0x54e/0x12f0 [ 394.687594][T10385] __vmalloc_node_noprof+0xad/0xf0 [ 394.687618][T10385] ? dvb_demux_do_ioctl+0x54e/0x12f0 [ 394.687647][T10385] dvb_demux_do_ioctl+0x54e/0x12f0 [ 394.687675][T10385] ? do_vfs_ioctl+0x128/0x14f0 [ 394.687722][T10385] dvb_usercopy+0x167/0x340 [ 394.687759][T10385] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 394.687787][T10385] ? __pfx_dvb_usercopy+0x10/0x10 [ 394.687839][T10385] ? __fget_files+0x20e/0x3c0 [ 394.687884][T10385] dvb_demux_ioctl+0x29/0x40 [ 394.687929][T10385] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 394.687971][T10385] __x64_sys_ioctl+0x18e/0x210 [ 394.688018][T10385] do_syscall_64+0xcd/0x490 [ 394.688057][T10385] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 394.688084][T10385] RIP: 0033:0x7f6c2d18ebe9 [ 394.688105][T10385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 394.688132][T10385] RSP: 002b:00007f6c2b3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 394.688159][T10385] RAX: ffffffffffffffda RBX: 00007f6c2d3b6090 RCX: 00007f6c2d18ebe9 [ 394.688176][T10385] RDX: 0010000000000402 RSI: 0000000000006f2d RDI: 0000000000000003 [ 394.688192][T10385] RBP: 00007f6c2d211e19 R08: 0000000000000000 R09: 0000000000000000 [ 394.688208][T10385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 394.688224][T10385] R13: 00007f6c2d3b6128 R14: 00007f6c2d3b6090 R15: 00007fff3101dc48 [ 394.688258][T10385] [ 394.688272][T10385] Mem-Info: [ 394.957072][T10385] active_anon:7168 inactive_anon:8468 isolated_anon:0 [ 394.957072][T10385] active_file:19869 inactive_file:38243 isolated_file:0 [ 394.957072][T10385] unevictable:768 dirty:874 writeback:0 [ 394.957072][T10385] slab_reclaimable:12268 slab_unreclaimable:95226 [ 394.957072][T10385] mapped:25330 shmem:4520 pagetables:1156 [ 394.957072][T10385] sec_pagetables:0 bounce:0 [ 394.957072][T10385] kernel_misc_reclaimable:0 [ 394.957072][T10385] free:1314863 free_pcp:10133 free_cma:0 [ 395.048108][T10385] Node 0 active_anon:28664kB inactive_anon:33792kB active_file:79472kB inactive_file:152844kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:101304kB dirty:3496kB writeback:0kB shmem:16544kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:13360kB pagetables:4440kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 395.113358][T10385] Node 1 active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:128kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:80kB pagetables:136kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 395.162383][T10385] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 395.194671][T10385] lowmem_reserve[]: 0 2480 2481 2481 2481 [ 395.202351][T10385] Node 0 DMA32 free:1331452kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:28612kB inactive_anon:33880kB active_file:78224kB inactive_file:152772kB unevictable:1536kB writepending:3500kB present:3129332kB managed:2539588kB mlocked:0kB bounce:0kB free_pcp:39504kB local_pcp:21044kB free_cma:0kB [ 395.275508][T10385] lowmem_reserve[]: 0 0 1 1 1 [ 395.318779][T10385] Node 0 Normal free:16kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:52kB inactive_anon:0kB active_file:1248kB inactive_file:72kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 395.376929][T10385] lowmem_reserve[]: 0 0 0 0 0 [ 395.384030][T10385] Node 1 Normal free:3913552kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:128kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 395.419292][T10385] lowmem_reserve[]: 0 0 0 0 0 [ 395.424315][T10385] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 395.437677][T10385] Node 0 DMA32: 3613*4kB (UM) 2017*8kB (UME) 1238*16kB (UME) 1001*32kB (UM) 358*64kB (UME) 278*128kB (UM) 120*256kB (UM) 78*512kB (UM) 50*1024kB (UME) 6*2048kB (UM) 258*4096kB (UM) = 1331836kB [ 395.460132][T10385] Node 0 Normal: 2*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB [ 395.480348][T10385] Node 1 Normal: 170*4kB (UME) 53*8kB (UME) 42*16kB (UME) 207*32kB (UME) 80*64kB (UME) 29*128kB (UME) 12*256kB (UME) 10*512kB (UM) 1*1024kB (M) 2*2048kB (ME) 948*4096kB (UM) = 3913552kB [ 395.552898][T10385] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 395.574032][T10385] Node 0 hugepages_total=3 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 395.593331][T10385] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 395.603954][T10385] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 395.712012][T10385] 62613 total pagecache pages [ 395.733554][T10402] netlink: 'syz.1.815': attribute type 11 has an invalid length. [ 395.745041][T10385] 10 pages in swap cache [ 395.774157][T10385] Free swap = 124948kB [ 395.784497][T10402] netlink: 'syz.1.815': attribute type 11 has an invalid length. [ 395.792403][T10403] FAULT_INJECTION: forcing a failure. [ 395.792403][T10403] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 395.792506][T10403] CPU: 0 UID: 0 PID: 10403 Comm: syz.1.815 Not tainted syzkaller #0 PREEMPT(full) [ 395.792546][T10403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 395.792565][T10403] Call Trace: [ 395.792575][T10403] [ 395.792588][T10403] dump_stack_lvl+0x16c/0x1f0 [ 395.792638][T10403] should_fail_ex+0x512/0x640 [ 395.792691][T10403] should_fail_alloc_page+0xe7/0x130 [ 395.792739][T10403] prepare_alloc_pages+0x3c2/0x610 [ 395.792797][T10403] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 395.792846][T10403] ? find_held_lock+0x2b/0x80 [ 395.792877][T10403] ? is_bpf_text_address+0x8a/0x1a0 [ 395.792925][T10403] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 395.792982][T10403] ? get_il_weight+0xea/0x290 [ 395.793033][T10403] ? get_il_weight+0xf4/0x290 [ 395.793078][T10403] ? weighted_interleave_nodes+0x28f/0x560 [ 395.793132][T10403] ? policy_nodemask+0xea/0x4e0 [ 395.793178][T10403] alloc_pages_mpol+0x1fb/0x550 [ 395.793229][T10403] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 395.793277][T10403] ? kasan_save_stack+0x33/0x60 [ 395.793320][T10403] ? __kasan_kmalloc+0xaa/0xb0 [ 395.793359][T10403] ? __get_vm_area_node+0x101/0x330 [ 395.793427][T10403] alloc_pages_noprof+0x131/0x390 [ 395.793479][T10403] get_free_pages_noprof+0x10/0xb0 [ 395.793530][T10403] kasan_populate_vmalloc+0x89/0x1f0 [ 395.793583][T10403] alloc_vmap_area+0x959/0x29c0 [ 395.793658][T10403] ? __pfx_alloc_vmap_area+0x10/0x10 [ 395.793727][T10403] __get_vm_area_node+0x1ca/0x330 [ 395.793795][T10403] __vmalloc_node_range_noprof+0x271/0x14b0 [ 395.793832][T10403] ? n_tty_open+0x1a/0x170 [ 395.793900][T10403] ? __lock_acquire+0xb97/0x1ce0 [ 395.793951][T10403] ? n_tty_open+0x1a/0x170 [ 395.794027][T10403] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 395.794071][T10403] ? find_held_lock+0x2b/0x80 [ 395.794111][T10403] ? n_tty_open+0x12b/0x170 [ 395.794171][T10403] ? n_tty_open+0x1a/0x170 [ 395.794227][T10403] __vmalloc_node_noprof+0xad/0xf0 [ 395.794260][T10403] ? n_tty_open+0x1a/0x170 [ 395.794318][T10403] ? __pfx_n_tty_open+0x10/0x10 [ 395.794376][T10403] n_tty_open+0x1a/0x170 [ 395.794432][T10403] ? __pfx_n_tty_open+0x10/0x10 [ 395.794489][T10403] tty_ldisc_open+0x9f/0x120 [ 395.794534][T10403] tty_ldisc_setup+0x87/0x100 [ 395.794581][T10403] tty_init_dev.part.0+0x1ec/0x500 [ 395.794639][T10403] tty_open+0xa50/0xf90 [ 395.794704][T10403] ? __pfx_tty_open+0x10/0x10 [ 395.794759][T10403] ? chrdev_open+0x10b/0x6a0 [ 395.794815][T10403] ? __pfx_tty_open+0x10/0x10 [ 395.794868][T10403] chrdev_open+0x234/0x6a0 [ 395.794915][T10403] ? __pfx_apparmor_file_open+0x10/0x10 [ 395.794958][T10403] ? __pfx_chrdev_open+0x10/0x10 [ 395.795019][T10403] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 395.795071][T10403] do_dentry_open+0x982/0x1530 [ 395.795120][T10403] ? __pfx_chrdev_open+0x10/0x10 [ 395.795178][T10403] vfs_open+0x82/0x3f0 [ 395.795237][T10403] path_openat+0x1de4/0x2cb0 [ 395.795298][T10403] ? __pfx_path_openat+0x10/0x10 [ 395.795355][T10403] do_filp_open+0x20b/0x470 [ 395.795401][T10403] ? __pfx_do_filp_open+0x10/0x10 [ 395.795482][T10403] ? alloc_fd+0x471/0x7d0 [ 395.795536][T10403] do_sys_openat2+0x11b/0x1d0 [ 395.795594][T10403] ? __pfx_do_sys_openat2+0x10/0x10 [ 395.795672][T10403] __x64_sys_openat+0x174/0x210 [ 395.795730][T10403] ? __pfx___x64_sys_openat+0x10/0x10 [ 395.795809][T10403] do_syscall_64+0xcd/0x490 [ 395.795864][T10403] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 395.795902][T10403] RIP: 0033:0x7f245578ebe9 [ 395.795934][T10403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 395.795976][T10403] RSP: 002b:00007f24565a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 395.796012][T10403] RAX: ffffffffffffffda RBX: 00007f24559b6180 RCX: 00007f245578ebe9 [ 395.796040][T10403] RDX: 0000000000040001 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 395.796064][T10403] RBP: 00007f2455811e19 R08: 0000000000000000 R09: 0000000000000000 [ 395.796088][T10403] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 395.796112][T10403] R13: 00007f24559b6218 R14: 00007f24559b6180 R15: 00007ffc515c0ef8 [ 395.796161][T10403] [ 395.937072][T10403] pty pty228: ldisc open failed (-12), clearing slot 228 [ 396.226895][T10385] Total swap = 124996kB [ 396.247264][T10385] 2097051 pages RAM [ 396.251207][T10385] 0 pages HighMem/MovableOnly [ 396.259459][T10385] 430192 pages reserved [ 396.265211][T10385] 0 pages cma reserved [ 396.280135][T10402] netlink: 'syz.1.815': attribute type 11 has an invalid length. [ 398.150696][T10425] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 398.347890][T10435] FAULT_INJECTION: forcing a failure. [ 398.347890][T10435] name failslab, interval 1, probability 0, space 0, times 0 [ 398.369291][T10435] CPU: 1 UID: 0 PID: 10435 Comm: syz.1.824 Not tainted syzkaller #0 PREEMPT(full) [ 398.369335][T10435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 398.369354][T10435] Call Trace: [ 398.369364][T10435] [ 398.369376][T10435] dump_stack_lvl+0x16c/0x1f0 [ 398.369425][T10435] should_fail_ex+0x512/0x640 [ 398.369468][T10435] ? __kmalloc_noprof+0xbf/0x510 [ 398.369509][T10435] ? vb2_core_allocated_buffers_storage+0xc4/0x220 [ 398.369563][T10435] should_failslab+0xc2/0x120 [ 398.369607][T10435] __kmalloc_noprof+0xd2/0x510 [ 398.369655][T10435] vb2_core_allocated_buffers_storage+0xc4/0x220 [ 398.369721][T10435] vb2_core_reqbufs+0x398/0xfe0 [ 398.369761][T10435] ? __pfx_vb2_core_reqbufs+0x10/0x10 [ 398.369816][T10435] __vb2_init_fileio+0x3f1/0x1100 [ 398.369845][T10435] ? lockdep_hardirqs_on+0x7c/0x110 [ 398.369886][T10435] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 398.369925][T10435] ? __pollwait+0x271/0x490 [ 398.369961][T10435] vb2_core_poll+0x5ec/0x700 [ 398.369995][T10435] vb2_poll+0x33/0x150 [ 398.370043][T10435] vb2_fop_poll+0x10f/0x2c0 [ 398.370103][T10435] ? __pfx_vb2_fop_poll+0x10/0x10 [ 398.370151][T10435] v4l2_poll+0x163/0x320 [ 398.370188][T10435] ? __pfx_v4l2_poll+0x10/0x10 [ 398.370220][T10435] do_select+0xd3d/0x17e0 [ 398.370272][T10435] ? __pfx_do_select+0x10/0x10 [ 398.370299][T10435] ? lock_acquire+0x179/0x350 [ 398.370334][T10435] ? __pfx___pollwait+0x10/0x10 [ 398.370364][T10435] ? __pfx_pollwake+0x10/0x10 [ 398.370440][T10435] ? find_held_lock+0x2b/0x80 [ 398.370464][T10435] ? __might_fault+0xe3/0x190 [ 398.370493][T10435] ? __might_fault+0xe3/0x190 [ 398.370521][T10435] ? __might_fault+0x13b/0x190 [ 398.370562][T10435] ? core_sys_select+0x453/0xc10 [ 398.370587][T10435] core_sys_select+0x453/0xc10 [ 398.370623][T10435] ? __pfx_core_sys_select+0x10/0x10 [ 398.370685][T10435] ? read_tsc+0x9/0x20 [ 398.370716][T10435] ? ktime_get_ts64+0x256/0x400 [ 398.370758][T10435] kern_select+0x15d/0x1e0 [ 398.370785][T10435] ? __pfx_kern_select+0x10/0x10 [ 398.370817][T10435] ? xfd_validate_state+0x61/0x180 [ 398.370863][T10435] __x64_sys_select+0xbd/0x160 [ 398.370890][T10435] ? do_syscall_64+0x91/0x490 [ 398.370925][T10435] ? lockdep_hardirqs_on+0x7c/0x110 [ 398.370958][T10435] do_syscall_64+0xcd/0x490 [ 398.370996][T10435] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 398.371022][T10435] RIP: 0033:0x7f245578ebe9 [ 398.371042][T10435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 398.371068][T10435] RSP: 002b:00007f24565ea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 398.371116][T10435] RAX: ffffffffffffffda RBX: 00007f24559b5fa0 RCX: 00007f245578ebe9 [ 398.371134][T10435] RDX: 0000000000000000 RSI: 0000200000000480 RDI: 0000000000000005 [ 398.371150][T10435] RBP: 00007f2455811e19 R08: 00002000000001c0 R09: 0000000000000000 [ 398.371167][T10435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 398.371183][T10435] R13: 00007f24559b6038 R14: 00007f24559b5fa0 R15: 00007ffc515c0ef8 [ 398.371221][T10435] [ 400.332800][T10429] kexec: Could not allocate control_code_buffer [ 400.579584][T10469] zswap: compressor not available [ 401.027069][T10486] kafs: addr_prefs: Too many elements in string [ 402.453642][T10519] phram: not enough arguments [ 402.497240][T10521] phram: not enough arguments [ 403.387649][T10544] __vm_enough_memory: pid: 10544, comm: syz.0.838, bytes: 4398046511104 not enough memory for the allocation [ 403.544597][T10544] netlink: 16 bytes leftover after parsing attributes in process `syz.0.838'. [ 404.619604][T10561] zswap: compressor not available [ 405.096681][T10566] zswap: compressor not available [ 411.139851][T10686] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 412.032964][T10695] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 412.318610][T10705] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18 [ 412.715926][T10719] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 413.880334][T10742] FAULT_INJECTION: forcing a failure. [ 413.880334][T10742] name failslab, interval 1, probability 0, space 0, times 0 [ 413.914569][T10742] CPU: 0 UID: 0 PID: 10742 Comm: syz.2.874 Not tainted syzkaller #0 PREEMPT(full) [ 413.914613][T10742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 413.914633][T10742] Call Trace: [ 413.914643][T10742] [ 413.914655][T10742] dump_stack_lvl+0x16c/0x1f0 [ 413.914736][T10742] should_fail_ex+0x512/0x640 [ 413.914783][T10742] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 413.914829][T10742] should_failslab+0xc2/0x120 [ 413.914873][T10742] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 413.914912][T10742] ? sk_prot_alloc+0x60/0x2a0 [ 413.914927][T10738] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 413.914984][T10742] sk_prot_alloc+0x60/0x2a0 [ 413.915033][T10742] sk_alloc+0x36/0xc20 [ 413.915081][T10742] tipc_sk_create+0xcf/0x21a0 [ 413.915129][T10742] ? find_held_lock+0x2b/0x80 [ 413.915166][T10742] ? __sock_create+0x2f2/0x8d0 [ 413.915207][T10742] __sock_create+0x335/0x8d0 [ 413.915250][T10742] __sys_socket+0x14d/0x260 [ 413.915287][T10742] ? __pfx___sys_socket+0x10/0x10 [ 413.915324][T10742] ? xfd_validate_state+0x61/0x180 [ 413.915389][T10742] __x64_sys_socket+0x72/0xb0 [ 413.915425][T10742] ? lockdep_hardirqs_on+0x7c/0x110 [ 413.915470][T10742] do_syscall_64+0xcd/0x490 [ 413.915528][T10742] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 413.915564][T10742] RIP: 0033:0x7f7a23f8ebe9 [ 413.915592][T10742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 413.915629][T10742] RSP: 002b:00007f7a24de5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 413.915664][T10742] RAX: ffffffffffffffda RBX: 00007f7a241b5fa0 RCX: 00007f7a23f8ebe9 [ 413.915700][T10742] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 000000000000001e [ 413.915721][T10742] RBP: 00007f7a24011e19 R08: 0000000000000000 R09: 0000000000000000 [ 413.915743][T10742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 413.915765][T10742] R13: 00007f7a241b6038 R14: 00007f7a241b5fa0 R15: 00007ffcf8215ba8 [ 413.915811][T10742] [ 415.372086][T10772] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 417.465356][T10799] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 417.701474][T10797] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 417.753809][T10800] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 418.067297][T10815] FAULT_INJECTION: forcing a failure. [ 418.067297][T10815] name failslab, interval 1, probability 0, space 0, times 0 [ 418.080287][T10815] CPU: 1 UID: 0 PID: 10815 Comm: syz.0.889 Not tainted syzkaller #0 PREEMPT(full) [ 418.080333][T10815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 418.080364][T10815] Call Trace: [ 418.080376][T10815] [ 418.080388][T10815] dump_stack_lvl+0x16c/0x1f0 [ 418.080447][T10815] should_fail_ex+0x512/0x640 [ 418.080493][T10815] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 418.080538][T10815] should_failslab+0xc2/0x120 [ 418.080582][T10815] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 418.080623][T10815] ? fcntl_dirnotify+0x23b/0xb60 [ 418.080672][T10815] fcntl_dirnotify+0x23b/0xb60 [ 418.080725][T10815] do_fcntl+0xe62/0x15a0 [ 418.080774][T10815] ? __pfx_do_fcntl+0x10/0x10 [ 418.080831][T10815] ? tomoyo_file_fcntl+0x6c/0xc0 [ 418.080869][T10815] __x64_sys_fcntl+0x163/0x200 [ 418.080940][T10815] do_syscall_64+0xcd/0x490 [ 418.080991][T10815] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 418.081026][T10815] RIP: 0033:0x7f6ac358ebe9 [ 418.081053][T10815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 418.081086][T10815] RSP: 002b:00007f6ac43a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 [ 418.081120][T10815] RAX: ffffffffffffffda RBX: 00007f6ac37b5fa0 RCX: 00007f6ac358ebe9 [ 418.081142][T10815] RDX: 0000000000000002 RSI: 0000000000000402 RDI: 0000000000000003 [ 418.081163][T10815] RBP: 00007f6ac3611e19 R08: 0000000000000000 R09: 0000000000000000 [ 418.081183][T10815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 418.081204][T10815] R13: 00007f6ac37b6038 R14: 00007f6ac37b5fa0 R15: 00007fffe1bb5838 [ 418.081246][T10815] [ 418.790825][T10805] Process accounting resumed [ 418.797215][T10820] netlink: 28 bytes leftover after parsing attributes in process `syz.2.890'. [ 418.898182][T10820] veth0_macvtap: entered promiscuous mode [ 419.080040][T10829] netlink: 342 bytes leftover after parsing attributes in process `syz.1.892'. [ 419.312883][T10829] : entered promiscuous mode [ 419.735973][T10833] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 420.721834][T10816] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 423.949842][T10910] netlink: 4 bytes leftover after parsing attributes in process `syz.0.907'. [ 424.983953][T10914] Line length is too long: Should be less than 4094 [ 425.373332][T10920] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(16) [ 425.543324][T10927] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 425.717565][T10924] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 426.625402][T10947] netlink: 20 bytes leftover after parsing attributes in process `syz.0.916'. [ 427.129662][T10970] vcan0: tx drop: invalid da for name 0x000000000000003f [ 427.286509][T10971] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 427.394693][T10971] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 428.548465][T11000] FAULT_INJECTION: forcing a failure. [ 428.548465][T11000] name failslab, interval 1, probability 0, space 0, times 0 [ 428.606536][T11000] CPU: 0 UID: 0 PID: 11000 Comm: syz.2.924 Not tainted syzkaller #0 PREEMPT(full) [ 428.606580][T11000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 428.606606][T11000] Call Trace: [ 428.606618][T11000] [ 428.606631][T11000] dump_stack_lvl+0x16c/0x1f0 [ 428.606683][T11000] should_fail_ex+0x512/0x640 [ 428.606731][T11000] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 428.606778][T11000] should_failslab+0xc2/0x120 [ 428.606823][T11000] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 428.606883][T11000] ? alloc_inode+0xc3/0x240 [ 428.606936][T11000] alloc_inode+0xc3/0x240 [ 428.606983][T11000] alloc_anon_inode+0x28/0x3e0 [ 428.607022][T11000] anon_inode_make_secure_inode+0x31/0x140 [ 428.607068][T11000] __anon_inode_getfile+0x1cf/0x280 [ 428.607107][T11000] ? _copy_to_user+0x48/0xd0 [ 428.607139][T11000] io_uring_setup+0x154d/0x2080 [ 428.607187][T11000] ? __pfx_io_uring_setup+0x10/0x10 [ 428.607260][T11000] ? __pfx___might_resched+0x10/0x10 [ 428.607312][T11000] ? xfd_validate_state+0x61/0x180 [ 428.607373][T11000] __x64_sys_io_uring_setup+0xc2/0x170 [ 428.607417][T11000] do_syscall_64+0xcd/0x490 [ 428.607466][T11000] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 428.607499][T11000] RIP: 0033:0x7f7a23f8ebe9 [ 428.607526][T11000] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 428.607554][T11000] RSP: 002b:00007f7a24de5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 428.607582][T11000] RAX: ffffffffffffffda RBX: 00007f7a241b5fa0 RCX: 00007f7a23f8ebe9 [ 428.607600][T11000] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 428.607618][T11000] RBP: 00007f7a24011e19 R08: 0000000000000000 R09: 0000000000000000 [ 428.607636][T11000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 428.607653][T11000] R13: 00007f7a241b6038 R14: 00007f7a241b5fa0 R15: 00007ffcf8215ba8 [ 428.607687][T11000] [ 429.108689][T11005] FAULT_INJECTION: forcing a failure. [ 429.108689][T11005] name failslab, interval 1, probability 0, space 0, times 0 [ 429.157185][T11005] CPU: 1 UID: 0 PID: 11005 Comm: syz.0.925 Not tainted syzkaller #0 PREEMPT(full) [ 429.157229][T11005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 429.157250][T11005] Call Trace: [ 429.157261][T11005] [ 429.157273][T11005] dump_stack_lvl+0x16c/0x1f0 [ 429.157334][T11005] should_fail_ex+0x512/0x640 [ 429.157378][T11005] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 429.157421][T11005] should_failslab+0xc2/0x120 [ 429.157462][T11005] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 429.157502][T11005] ? __mpol_dup+0x74/0x380 [ 429.157555][T11005] __mpol_dup+0x74/0x380 [ 429.157599][T11005] ? __pfx___mpol_dup+0x10/0x10 [ 429.157644][T11005] ? trace_kmem_cache_alloc+0x28/0xc0 [ 429.157687][T11005] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 429.157721][T11005] ? current_cpuset_is_being_rebound+0xf6/0x370 [ 429.157760][T11005] ? sp_alloc+0x27/0x160 [ 429.157809][T11005] sp_alloc+0x4d/0x160 [ 429.157865][T11005] mpol_set_shared_policy+0xab/0x8c0 [ 429.157945][T11005] ? __pfx_shmem_set_policy+0x10/0x10 [ 429.157997][T11005] mbind_range+0x339/0x570 [ 429.158061][T11005] do_mbind+0x848/0xf30 [ 429.158140][T11005] ? __pfx_do_mbind+0x10/0x10 [ 429.158215][T11005] ? __pfx_get_nodes+0x10/0x10 [ 429.158266][T11005] kernel_mbind+0x1e3/0x1f0 [ 429.158320][T11005] ? __pfx_kernel_mbind+0x10/0x10 [ 429.158383][T11005] do_syscall_64+0xcd/0x490 [ 429.158431][T11005] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 429.158465][T11005] RIP: 0033:0x7f6ac358ebe9 [ 429.158489][T11005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 429.158521][T11005] RSP: 002b:00007f6ac437f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 429.158552][T11005] RAX: ffffffffffffffda RBX: 00007f6ac37b6090 RCX: 00007f6ac358ebe9 [ 429.158573][T11005] RDX: 0000000000000004 RSI: 00000000002091d2 RDI: 0000000000000000 [ 429.158592][T11005] RBP: 00007f6ac3611e19 R08: 0000000000000006 R09: 0000000000000002 [ 429.158612][T11005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 429.158631][T11005] R13: 00007f6ac37b6128 R14: 00007f6ac37b6090 R15: 00007fffe1bb5838 [ 429.158673][T11005] [ 431.375735][T11050] input:  as /devices/virtual/input/input19 [ 432.068372][ T30] audit: type=1800 audit(1843104536.610:26): pid=11060 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.937" name="SYSVffffffff" dev="tmpfs" ino=0 res=0 errno=0 [ 432.401155][T11075] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 432.582699][T11068] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 432.677159][T11070] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 432.721751][T11085] netlink: 28 bytes leftover after parsing attributes in process `syz.3.940'. [ 433.320961][T11085] team_slave_1 (unregistering): left promiscuous mode [ 433.335792][T11085] team_slave_1 (unregistering): left allmulticast mode [ 433.361001][T11085] team0: Port device team_slave_1 removed [ 433.430568][T11096] netlink: 12 bytes leftover after parsing attributes in process `syz.2.942'. [ 438.189082][T11186] block nbd8: shutting down sockets [ 438.407064][T11189] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 438.443899][T11189] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 438.504989][T11189] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 438.552010][T11189] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 440.480213][ T5184] Bluetooth: hci0: command 0x0406 tx timeout [ 440.487586][ T51] Bluetooth: hci1: command 0x0406 tx timeout [ 440.546534][ T51] Bluetooth: hci2: command 0x0406 tx timeout [ 440.636691][ T51] Bluetooth: hci3: command 0x0406 tx timeout [ 443.288657][T11241] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 444.018806][T11260] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 445.054378][T11271] FAULT_INJECTION: forcing a failure. [ 445.054378][T11271] name failslab, interval 1, probability 0, space 0, times 0 [ 445.086634][T11271] CPU: 1 UID: 0 PID: 11271 Comm: syz.0.974 Not tainted syzkaller #0 PREEMPT(full) [ 445.086680][T11271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 445.086701][T11271] Call Trace: [ 445.086713][T11271] [ 445.086726][T11271] dump_stack_lvl+0x16c/0x1f0 [ 445.086785][T11271] should_fail_ex+0x512/0x640 [ 445.086831][T11271] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 445.086891][T11271] should_failslab+0xc2/0x120 [ 445.086936][T11271] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 445.086974][T11271] ? __proc_create+0xc3/0x8e0 [ 445.087022][T11271] ? __proc_create+0x2ce/0x8e0 [ 445.087075][T11271] __proc_create+0x2ce/0x8e0 [ 445.087124][T11271] ? __pfx___proc_create+0x10/0x10 [ 445.087179][T11271] ? _raw_write_unlock+0x28/0x50 [ 445.087237][T11271] ? proc_register+0x314/0x5f0 [ 445.087291][T11271] proc_create_reg+0x7d/0x180 [ 445.087347][T11271] proc_create_data+0x86/0x110 [ 445.087403][T11271] ? __pfx_proc_create_data+0x10/0x10 [ 445.087459][T11271] ? cache_register_net+0x137/0x5e0 [ 445.087506][T11271] cache_register_net+0x2d6/0x5e0 [ 445.087552][T11271] nfsd_export_init+0x16e/0x250 [ 445.087594][T11271] ? __pfx_nfsd_net_init+0x10/0x10 [ 445.087631][T11271] nfsd_net_init+0x33/0x3d0 [ 445.087671][T11271] ? __pfx_nfsd_net_init+0x10/0x10 [ 445.087710][T11271] ops_init+0x1e2/0x5f0 [ 445.087770][T11271] setup_net+0x10f/0x380 [ 445.087814][T11271] ? lockdep_init_map_type+0x5c/0x280 [ 445.087864][T11271] ? __pfx_setup_net+0x10/0x10 [ 445.087912][T11271] ? debug_mutex_init+0x37/0x70 [ 445.087958][T11271] copy_net_ns+0x2a6/0x5f0 [ 445.088010][T11271] create_new_namespaces+0x3ea/0xa90 [ 445.088055][T11271] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 445.088097][T11271] ksys_unshare+0x45b/0xa40 [ 445.088142][T11271] ? __pfx_ksys_unshare+0x10/0x10 [ 445.088186][T11271] ? xfd_validate_state+0x61/0x180 [ 445.088246][T11271] __x64_sys_unshare+0x31/0x40 [ 445.088299][T11271] do_syscall_64+0xcd/0x490 [ 445.088347][T11271] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 445.088378][T11271] RIP: 0033:0x7f6ac358ebe9 [ 445.088402][T11271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 445.088434][T11271] RSP: 002b:00007f6ac43a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 445.088467][T11271] RAX: ffffffffffffffda RBX: 00007f6ac37b5fa0 RCX: 00007f6ac358ebe9 [ 445.088488][T11271] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 445.088509][T11271] RBP: 00007f6ac3611e19 R08: 0000000000000000 R09: 0000000000000000 [ 445.088530][T11271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 445.088550][T11271] R13: 00007f6ac37b6038 R14: 00007f6ac37b5fa0 R15: 00007fffe1bb5838 [ 445.088591][T11271] [ 448.756858][T11305] FAULT_INJECTION: forcing a failure. [ 448.756858][T11305] name failslab, interval 1, probability 0, space 0, times 0 [ 448.912243][T11305] CPU: 1 UID: 0 PID: 11305 Comm: syz.2.982 Not tainted syzkaller #0 PREEMPT(full) [ 448.912277][T11305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 448.912292][T11305] Call Trace: [ 448.912300][T11305] [ 448.912309][T11305] dump_stack_lvl+0x16c/0x1f0 [ 448.912346][T11305] should_fail_ex+0x512/0x640 [ 448.912380][T11305] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 448.912412][T11305] should_failslab+0xc2/0x120 [ 448.912451][T11305] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 448.912480][T11305] ? rcu_is_watching+0x12/0xc0 [ 448.912503][T11305] ? key_alloc+0x3e0/0x1330 [ 448.912539][T11305] key_alloc+0x3e0/0x1330 [ 448.912577][T11305] ? trace_kmalloc+0x2b/0xd0 [ 448.912610][T11305] ? __kmalloc_noprof+0x242/0x510 [ 448.912638][T11305] ? __pfx_key_alloc+0x10/0x10 [ 448.912670][T11305] ? aa_get_newest_label+0xd2/0x250 [ 448.912702][T11305] keyring_alloc+0x44/0xc0 [ 448.912739][T11305] lookup_user_key+0xa3f/0x1300 [ 448.912774][T11305] ? __pfx_lookup_user_key+0x10/0x10 [ 448.912803][T11305] ? find_held_lock+0x2b/0x80 [ 448.912824][T11305] ? putname+0x154/0x1a0 [ 448.912857][T11305] ? do_sys_openat2+0x1b0/0x1d0 [ 448.912897][T11305] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 448.912940][T11305] keyctl_setperm_key+0x9d/0x3a0 [ 448.912966][T11305] ? __pfx_keyctl_setperm_key+0x10/0x10 [ 448.912992][T11305] ? xfd_validate_state+0x61/0x180 [ 448.913034][T11305] __do_sys_keyctl+0x29a/0x590 [ 448.913073][T11305] do_syscall_64+0xcd/0x490 [ 448.913126][T11305] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 448.913149][T11305] RIP: 0033:0x7f7a23f8ebe9 [ 448.913177][T11305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 448.913220][T11305] RSP: 002b:00007f7a24de5038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 448.913247][T11305] RAX: ffffffffffffffda RBX: 00007f7a241b5fa0 RCX: 00007f7a23f8ebe9 [ 448.913268][T11305] RDX: 0000000000000107 RSI: ffffeffffffffffe RDI: 0000000000000005 [ 448.913285][T11305] RBP: 00007f7a24011e19 R08: 000800000000000c R09: 0000000000000000 [ 448.913303][T11305] R10: 0000000000000803 R11: 0000000000000246 R12: 0000000000000000 [ 448.913321][T11305] R13: 00007f7a241b6038 R14: 00007f7a241b5fa0 R15: 00007ffcf8215ba8 [ 448.913355][T11305] [ 449.154129][T11293] Process accounting paused [ 450.390946][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 450.407901][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 450.436663][T11326] netlink: 334 bytes leftover after parsing attributes in process `syz.0.987'. [ 450.898522][T11332] bridge0: port 3(vlan1) entered blocking state [ 450.920179][T11332] bridge0: port 3(vlan1) entered disabled state [ 450.966654][T11332] vlan1: entered allmulticast mode [ 450.973326][T11332] veth0_vlan: entered allmulticast mode [ 450.994495][T11332] vlan1: entered promiscuous mode [ 451.001897][T11332] bridge0: port 3(vlan1) entered blocking state [ 451.008310][T11332] bridge0: port 3(vlan1) entered forwarding state [ 451.423945][T11343] crash hp: kexec_trylock() failed, kdump image may be inaccurate [ 453.160657][T11342] kexec: Could not allocate control_code_buffer [ 454.006625][T11379] svc: failed to register nfsdv3 RPC service (errno 101). [ 454.069943][T11379] svc: failed to register nfsaclv3 RPC service (errno 101). [ 455.345525][T11396] FAULT_INJECTION: forcing a failure. [ 455.345525][T11396] name failslab, interval 1, probability 0, space 0, times 0 [ 455.412777][T11396] CPU: 1 UID: 0 PID: 11396 Comm: syz.1.1001 Not tainted syzkaller #0 PREEMPT(full) [ 455.412825][T11396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 455.412847][T11396] Call Trace: [ 455.412859][T11396] [ 455.412872][T11396] dump_stack_lvl+0x16c/0x1f0 [ 455.412924][T11396] should_fail_ex+0x512/0x640 [ 455.412972][T11396] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 455.413013][T11396] should_failslab+0xc2/0x120 [ 455.413057][T11396] __kmalloc_cache_noprof+0x6a/0x3e0 [ 455.413102][T11396] ? lockdep_init_map_type+0x5c/0x280 [ 455.413149][T11396] ? io_uring_alloc_task_context+0x96/0x650 [ 455.413182][T11396] ? lockdep_init_map_type+0x5c/0x280 [ 455.413230][T11396] io_uring_alloc_task_context+0x96/0x650 [ 455.413263][T11396] ? file_init_path+0x4fe/0x760 [ 455.413311][T11396] ? __pfx_io_uring_alloc_task_context+0x10/0x10 [ 455.413347][T11396] ? alloc_file_pseudo+0x1b3/0x230 [ 455.413403][T11396] __io_uring_add_tctx_node+0x2dd/0x500 [ 455.413437][T11396] ? __pfx___io_uring_add_tctx_node+0x10/0x10 [ 455.413475][T11396] ? __anon_inode_getfile+0x17c/0x280 [ 455.413518][T11396] io_uring_setup+0x1579/0x2080 [ 455.413565][T11396] ? __pfx_io_uring_setup+0x10/0x10 [ 455.413618][T11396] ? __pfx___might_resched+0x10/0x10 [ 455.413668][T11396] ? xfd_validate_state+0x61/0x180 [ 455.413733][T11396] __x64_sys_io_uring_setup+0xc2/0x170 [ 455.413779][T11396] do_syscall_64+0xcd/0x490 [ 455.413827][T11396] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 455.413860][T11396] RIP: 0033:0x7f245578ebe9 [ 455.413885][T11396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 455.413918][T11396] RSP: 002b:00007f24565c9038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 455.413950][T11396] RAX: ffffffffffffffda RBX: 00007f24559b6090 RCX: 00007f245578ebe9 [ 455.413973][T11396] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 455.413992][T11396] RBP: 00007f2455811e19 R08: 0000000000000000 R09: 0000000000000000 [ 455.414012][T11396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 455.414031][T11396] R13: 00007f24559b6128 R14: 00007f24559b6090 R15: 00007ffc515c0ef8 [ 455.414072][T11396] [ 456.369107][T11405] blktrace: Concurrent blktraces are not allowed on ram7 [ 457.368067][T11413] FAULT_INJECTION: forcing a failure. [ 457.368067][T11413] name failslab, interval 1, probability 0, space 0, times 0 [ 457.416765][T11413] CPU: 0 UID: 0 PID: 11413 Comm: syz.0.1006 Not tainted syzkaller #0 PREEMPT(full) [ 457.416813][T11413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 457.416832][T11413] Call Trace: [ 457.416842][T11413] [ 457.416856][T11413] dump_stack_lvl+0x16c/0x1f0 [ 457.416905][T11413] should_fail_ex+0x512/0x640 [ 457.416952][T11413] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 457.416999][T11413] should_failslab+0xc2/0x120 [ 457.417043][T11413] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 457.417084][T11413] ? __d_alloc+0x32/0xae0 [ 457.417130][T11413] __d_alloc+0x32/0xae0 [ 457.417180][T11413] d_alloc_parallel+0x111/0x1480 [ 457.417251][T11413] ? __pfx_d_alloc_parallel+0x10/0x10 [ 457.417308][T11413] ? lockdep_init_map_type+0x5c/0x280 [ 457.417354][T11413] ? lockdep_init_map_type+0x5c/0x280 [ 457.417407][T11413] __lookup_slow+0x193/0x460 [ 457.417455][T11413] ? __pfx___lookup_slow+0x10/0x10 [ 457.417502][T11413] ? perf_trace_mm_compaction_suitable_template+0x410/0x5e0 [ 457.417550][T11413] ? perf_trace_mm_compaction_suitable_template+0x410/0x5e0 [ 457.417591][T11413] ? d_lookup+0xe7/0x190 [ 457.417637][T11413] lookup_noperm+0xe1/0x110 [ 457.417687][T11413] simple_start_creating+0xd1/0x1b0 [ 457.417721][T11413] start_creating.part.0+0x82/0x190 [ 457.417753][T11413] __debugfs_create_file+0xa7/0x6b0 [ 457.417789][T11413] debugfs_create_file_full+0x41/0x60 [ 457.417823][T11413] ? __pfx_ipgre_tunnel_setup+0x10/0x10 [ 457.417856][T11413] ref_tracker_dir_debugfs+0x19d/0x290 [ 457.417899][T11413] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 457.417966][T11413] ? trace_contention_end+0xdd/0x130 [ 457.418014][T11413] ? alloc_netdev_mqs+0xd2/0x1530 [ 457.418048][T11413] ? lockdep_init_map_type+0x5c/0x280 [ 457.418089][T11413] alloc_netdev_mqs+0x30f/0x1530 [ 457.418131][T11413] __ip_tunnel_create+0x3ad/0x6e0 [ 457.418171][T11413] ? __pfx___ip_tunnel_create+0x10/0x10 [ 457.418218][T11413] ip_tunnel_init_net+0x22f/0x7d0 [ 457.418261][T11413] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 457.418307][T11413] ? trace_kmalloc+0x2b/0xd0 [ 457.418341][T11413] ? __kmalloc_noprof+0x242/0x510 [ 457.418368][T11413] ? lockdep_init_map_type+0x5c/0x280 [ 457.418406][T11413] ? __pfx_ipgre_init_net+0x10/0x10 [ 457.418438][T11413] ops_init+0x1e2/0x5f0 [ 457.418476][T11413] setup_net+0x10f/0x380 [ 457.418509][T11413] ? lockdep_init_map_type+0x5c/0x280 [ 457.418545][T11413] ? __pfx_setup_net+0x10/0x10 [ 457.418582][T11413] ? debug_mutex_init+0x37/0x70 [ 457.418610][T11413] copy_net_ns+0x2a6/0x5f0 [ 457.418657][T11413] create_new_namespaces+0x3ea/0xa90 [ 457.418695][T11413] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 457.418729][T11413] ksys_unshare+0x45b/0xa40 [ 457.418767][T11413] ? __pfx_ksys_unshare+0x10/0x10 [ 457.418803][T11413] ? xfd_validate_state+0x61/0x180 [ 457.418851][T11413] __x64_sys_unshare+0x31/0x40 [ 457.418885][T11413] do_syscall_64+0xcd/0x490 [ 457.418923][T11413] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 457.418949][T11413] RIP: 0033:0x7f6ac358ebe9 [ 457.418969][T11413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 457.418995][T11413] RSP: 002b:00007f6ac437f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 457.419020][T11413] RAX: ffffffffffffffda RBX: 00007f6ac37b6090 RCX: 00007f6ac358ebe9 [ 457.419037][T11413] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 457.419052][T11413] RBP: 00007f6ac3611e19 R08: 0000000000000000 R09: 0000000000000000 [ 457.419068][T11413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 457.419083][T11413] R13: 00007f6ac37b6128 R14: 00007f6ac37b6090 R15: 00007fffe1bb5838 [ 457.419116][T11413] [ 461.492830][T11447] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1012'. [ 461.805007][T11441] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 462.510576][T11464] FAULT_INJECTION: forcing a failure. [ 462.510576][T11464] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 462.586695][T11464] CPU: 1 UID: 0 PID: 11464 Comm: syz.2.1014 Not tainted syzkaller #0 PREEMPT(full) [ 462.586741][T11464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 462.586762][T11464] Call Trace: [ 462.586775][T11464] [ 462.586789][T11464] dump_stack_lvl+0x16c/0x1f0 [ 462.586842][T11464] should_fail_ex+0x512/0x640 [ 462.586896][T11464] _copy_from_user+0x2e/0xd0 [ 462.586953][T11464] post_copy_siginfo_from_user.isra.0+0x16e/0x300 [ 462.587007][T11464] ? __pfx_post_copy_siginfo_from_user.isra.0+0x10/0x10 [ 462.587061][T11464] ? find_held_lock+0x2b/0x80 [ 462.587115][T11464] do_pidfd_send_signal+0x29e/0x400 [ 462.587162][T11464] ? __pfx_do_pidfd_send_signal+0x10/0x10 [ 462.587224][T11464] __x64_sys_pidfd_send_signal+0x358/0x430 [ 462.587281][T11464] do_syscall_64+0xcd/0x490 [ 462.587333][T11464] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 462.587366][T11464] RIP: 0033:0x7f7a23f8ebe9 [ 462.587389][T11464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 462.587433][T11464] RSP: 002b:00007f7a24de5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a8 [ 462.587466][T11464] RAX: ffffffffffffffda RBX: 00007f7a241b5fa0 RCX: 00007f7a23f8ebe9 [ 462.587490][T11464] RDX: 0000200000000440 RSI: 0000000000000008 RDI: 0000000000000006 [ 462.587511][T11464] RBP: 00007f7a24011e19 R08: 0000000000000000 R09: 0000000000000000 [ 462.587533][T11464] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000 [ 462.587553][T11464] R13: 00007f7a241b6038 R14: 00007f7a241b5fa0 R15: 00007ffcf8215ba8 [ 462.587595][T11464] [ 463.333640][T11471] random: crng reseeded on system resumption [ 464.745892][ T51] Bluetooth: hci1: unexpected event 0x01 length: 5 > 1 [ 465.967101][T11524] ptrace attach of "./syz-executor exec"[11525] was attempted by "./syz-executor exec"[11524] [ 466.693492][T11527] nbd: socks must be embedded in a SOCK_ITEM attr [ 467.306533][T11532] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 468.521654][T11558] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 468.900546][T11573] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input21 [ 469.304203][T11586] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1032'. [ 470.115248][T11606] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1034'. [ 470.130197][T11604] warn_alloc: 1 callbacks suppressed [ 470.130218][T11604] syz.2.1035: vmalloc error: size 4503599627371522, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 470.262881][T11604] CPU: 0 UID: 0 PID: 11604 Comm: syz.2.1035 Not tainted syzkaller #0 PREEMPT(full) [ 470.262922][T11604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 470.262943][T11604] Call Trace: [ 470.262953][T11604] [ 470.262965][T11604] dump_stack_lvl+0x16c/0x1f0 [ 470.263026][T11604] warn_alloc+0x248/0x3a0 [ 470.263077][T11604] ? __pfx_warn_alloc+0x10/0x10 [ 470.263137][T11604] ? dvb_demux_do_ioctl+0x54e/0x12f0 [ 470.263167][T11604] __vmalloc_node_range_noprof+0xff5/0x14b0 [ 470.263198][T11604] ? __pfx___might_resched+0x10/0x10 [ 470.263231][T11604] ? rcu_is_watching+0x12/0xc0 [ 470.263262][T11604] ? trace_contention_end+0xdd/0x130 [ 470.263304][T11604] ? dvb_demux_do_ioctl+0x54e/0x12f0 [ 470.263339][T11604] ? tomoyo_path_number_perm+0x295/0x580 [ 470.263377][T11604] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 470.263406][T11604] ? __pfx___mutex_lock+0x10/0x10 [ 470.263460][T11604] ? dvb_demux_do_ioctl+0x54e/0x12f0 [ 470.263487][T11604] __vmalloc_node_noprof+0xad/0xf0 [ 470.263515][T11604] ? dvb_demux_do_ioctl+0x54e/0x12f0 [ 470.263548][T11604] dvb_demux_do_ioctl+0x54e/0x12f0 [ 470.263579][T11604] ? do_vfs_ioctl+0x128/0x14f0 [ 470.263629][T11604] dvb_usercopy+0x167/0x340 [ 470.263687][T11604] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 470.263717][T11604] ? __pfx_dvb_usercopy+0x10/0x10 [ 470.263775][T11604] ? __fget_files+0x20e/0x3c0 [ 470.263814][T11604] dvb_demux_ioctl+0x29/0x40 [ 470.263857][T11604] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 470.263912][T11604] __x64_sys_ioctl+0x18e/0x210 [ 470.263965][T11604] do_syscall_64+0xcd/0x490 [ 470.264011][T11604] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 470.264043][T11604] RIP: 0033:0x7f7a23f8ebe9 [ 470.264067][T11604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 470.264097][T11604] RSP: 002b:00007f7a24da3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 470.264127][T11604] RAX: ffffffffffffffda RBX: 00007f7a241b6180 RCX: 00007f7a23f8ebe9 [ 470.264148][T11604] RDX: 0010000000000402 RSI: 0000000000006f2d RDI: 0000000000000003 [ 470.264167][T11604] RBP: 00007f7a24011e19 R08: 0000000000000000 R09: 0000000000000000 [ 470.264185][T11604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 470.264205][T11604] R13: 00007f7a241b6218 R14: 00007f7a241b6180 R15: 00007ffcf8215ba8 [ 470.264247][T11604] [ 470.264271][T11604] Mem-Info: [ 470.504022][T11604] active_anon:7162 inactive_anon:14509 isolated_anon:0 [ 470.504022][T11604] active_file:20100 inactive_file:44373 isolated_file:0 [ 470.504022][T11604] unevictable:1368 dirty:3822 writeback:1024 [ 470.504022][T11604] slab_reclaimable:12421 slab_unreclaimable:95372 [ 470.504022][T11604] mapped:27204 shmem:4515 pagetables:1273 [ 470.504022][T11604] sec_pagetables:0 bounce:0 [ 470.504022][T11604] kernel_misc_reclaimable:0 [ 470.504022][T11604] free:1307657 free_pcp:4228 free_cma:0 [ 470.552442][T11604] Node 0 active_anon:28648kB inactive_anon:58036kB active_file:80336kB inactive_file:177364kB unevictable:3936kB isolated(anon):0kB isolated(file):0kB mapped:108800kB dirty:15288kB writeback:4096kB shmem:16524kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB kernel_stack:13476kB pagetables:4956kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 470.585755][T11604] Node 1 active_anon:0kB inactive_anon:0kB active_file:64kB inactive_file:128kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:80kB pagetables:136kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 470.638834][T11604] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 470.668250][T11604] lowmem_reserve[]: 0 2480 2481 2481 2481 [ 470.674319][T11604] Node 0 DMA32 free:1301896kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:28596kB inactive_anon:57936kB active_file:79088kB inactive_file:177292kB unevictable:3936kB writepending:19388kB present:3129332kB managed:2539588kB mlocked:2500kB bounce:0kB free_pcp:17168kB local_pcp:9948kB free_cma:0kB [ 470.784289][T11604] lowmem_reserve[]: 0 0 1 1 1 [ 470.830231][T11604] Node 0 Normal free:16kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:52kB inactive_anon:0kB active_file:1248kB inactive_file:72kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 470.928901][T11604] lowmem_reserve[]: 0 0 0 0 0 [ 470.970465][T11604] Node 1 Normal free:3913356kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:64kB inactive_file:128kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:4kB free_cma:0kB [ 471.016829][T11604] lowmem_reserve[]: 0 0 0 0 0 [ 471.021595][T11604] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 471.126535][T11604] Node 0 DMA32: 3596*4kB (UM) 1513*8kB (M) 1537*16kB (UME) 1618*32kB (UME) 542*64kB (UME) 308*128kB (UME) 128*256kB (UM) 43*512kB (UME) 25*1024kB (UME) 2*2048kB (M) 254*4096kB (UM) = 1301832kB [ 471.146558][T11604] Node 0 Normal: 2*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB [ 471.159188][T11604] Node 1 Normal: 173*4kB (UME) 53*8kB (UME) 45*16kB (UME) 203*32kB (UME) 82*64kB (UME) 29*128kB (UME) 13*256kB (UME) 9*512kB (UM) 1*1024kB (M) 2*2048kB (ME) 948*4096kB (UM) = 3913356kB [ 471.177894][T11604] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 471.243463][T11604] Node 0 hugepages_total=3 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 471.279218][T11604] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 471.346953][T11604] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 471.376538][T11604] 69320 total pagecache pages [ 471.398630][T11604] 10 pages in swap cache [ 471.402981][T11604] Free swap = 124956kB [ 471.426503][T11604] Total swap = 124996kB [ 471.436754][T11604] 2097051 pages RAM [ 471.440912][T11604] 0 pages HighMem/MovableOnly [ 471.492186][T11604] 430192 pages reserved [ 471.496377][T11604] 0 pages cma reserved [ 472.452206][T11637] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 472.829055][T11645] sysfs_service_op_store: Client not running :-5: [ 473.474164][T11658] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 473.521907][T11660] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 473.897538][T11655] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 473.913626][T11658] netlink: ct family unspecified [ 475.039645][T11683] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1054'. [ 475.108891][T11690] lo: entered allmulticast mode [ 475.487731][T11692] lo: left allmulticast mode [ 476.188859][T11711] binder: BINDER_SET_CONTEXT_MGR already set [ 476.233133][T11711] binder: 11709:11711 ioctl 40046207 0 returned -16 [ 476.642717][T11744] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1066'. [ 477.438334][T11767] delete_channel: no stack [ 477.773702][T11781] ACPI: Can not change Invalid GPE/Fixed Event status [ 478.010237][T11772] kernel read not supported for file /gMQ_g _N{7vGlq wĉu}OUVW.uw.`O:KdYѮaj7nwKQHg[壣%'ϖX:DktހX [$O8 bŹ9F@eMU;$Q8҇ŝ赵DtS^0YJpu (pid: 11772 comm: syz.1.1073) [ 478.160630][ T30] audit: type=1800 audit(1843122926.696:27): pid=11772 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1073" name=BEF282E71467B5EE4D5113A25F67BF09FAF25F4EB07BF9B53776EE47D96CBF8671207796D9E9A8E1F0C71F1EC4C4897583E87DBD7F4F91C15556572EB6AD047502772EEC604FC10E15E73AC91B4BCD64590395D1AEC19B969F616AD2FCFC1F37AFCA6EF6C0774BCEE751AEC9486701EFDA5BE5A3A325278FCF96583A04446B747FDE8001DD589188A109C3F1FE5B93244F382062B492F4BCC5B99839FC46ECDC40DDDA654DE055C83BF5E7245138D287DDC59DC5E8B5B5B8DF44D0E8748A53AABEAABA9E5E301AF859F54A700875BA98 dev="mqueue" ino=39044 res=0 errno=0 [ 478.239690][T11792] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1077'. [ 478.908319][T11806] blktrace: Concurrent blktraces are not allowed on loop2 [ 479.302317][T11809] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1082'. [ 479.519219][T11809] veth0_macvtap: entered allmulticast mode [ 479.973829][T11822] delete_channel: no stack [ 479.979293][T11822] delete_channel: no stack [ 480.330963][T11825] Process accounting resumed [ 480.738667][T11843] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 481.021733][T11847] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1090'. [ 482.077723][T11883] FAULT_INJECTION: forcing a failure. [ 482.077723][T11883] name failslab, interval 1, probability 0, space 0, times 0 [ 482.108501][T11883] CPU: 0 UID: 0 PID: 11883 Comm: syz.2.1099 Not tainted syzkaller #0 PREEMPT(full) [ 482.108547][T11883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 482.108569][T11883] Call Trace: [ 482.108581][T11883] [ 482.108594][T11883] dump_stack_lvl+0x16c/0x1f0 [ 482.108646][T11883] should_fail_ex+0x512/0x640 [ 482.108693][T11883] ? __kmalloc_noprof+0xbf/0x510 [ 482.108739][T11883] ? __d_alloc+0x673/0xae0 [ 482.108799][T11883] should_failslab+0xc2/0x120 [ 482.108845][T11883] __kmalloc_noprof+0xd2/0x510 [ 482.108882][T11883] ? __pfx_stack_trace_save+0x10/0x10 [ 482.108919][T11883] ? __d_alloc+0x32/0xae0 [ 482.108965][T11883] __d_alloc+0x673/0xae0 [ 482.109010][T11883] d_alloc_parallel+0x111/0x1480 [ 482.109072][T11883] ? find_held_lock+0x2b/0x80 [ 482.109105][T11883] ? __pfx_d_alloc_parallel+0x10/0x10 [ 482.109161][T11883] ? __d_lookup+0x266/0x4a0 [ 482.109221][T11883] lookup_open.isra.0+0x665/0x1580 [ 482.109263][T11883] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 482.109317][T11883] ? __pfx_down_write+0x10/0x10 [ 482.109363][T11883] ? mnt_get_write_access+0x20c/0x300 [ 482.109422][T11883] path_openat+0x893/0x2cb0 [ 482.109470][T11883] ? do_syscall_64+0xcd/0x490 [ 482.109510][T11883] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 482.109547][T11883] ? __pfx_path_openat+0x10/0x10 [ 482.109587][T11883] ? __lock_acquire+0xb97/0x1ce0 [ 482.109636][T11883] do_filp_open+0x20b/0x470 [ 482.109677][T11883] ? __pfx_do_filp_open+0x10/0x10 [ 482.109753][T11883] ? _raw_spin_unlock+0x28/0x50 [ 482.109797][T11883] ? alloc_fd+0x471/0x7d0 [ 482.109844][T11883] do_sys_openat2+0x11b/0x1d0 [ 482.109914][T11883] ? __pfx_do_sys_openat2+0x10/0x10 [ 482.109985][T11883] __x64_sys_open+0x153/0x1e0 [ 482.110039][T11883] ? __pfx___x64_sys_open+0x10/0x10 [ 482.110102][T11883] ? rcu_is_watching+0x12/0xc0 [ 482.110140][T11883] do_syscall_64+0xcd/0x490 [ 482.110190][T11883] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 482.110224][T11883] RIP: 0033:0x7f7a23f8ebe9 [ 482.110251][T11883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 482.110285][T11883] RSP: 002b:00007f7a24de5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 482.110317][T11883] RAX: ffffffffffffffda RBX: 00007f7a241b5fa0 RCX: 00007f7a23f8ebe9 [ 482.110341][T11883] RDX: 00000000000000b5 RSI: 0000000000103040 RDI: 0000200000000380 [ 482.110363][T11883] RBP: 00007f7a24011e19 R08: 0000000000000000 R09: 0000000000000000 [ 482.110383][T11883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 482.110404][T11883] R13: 00007f7a241b6038 R14: 00007f7a241b5fa0 R15: 00007ffcf8215ba8 [ 482.110448][T11883] [ 482.791135][T11885] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1098'. [ 483.074182][T11907] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1101'. [ 484.277536][T11914] FAULT_INJECTION: forcing a failure. [ 484.277536][T11914] name failslab, interval 1, probability 0, space 0, times 0 [ 484.319909][T11914] CPU: 1 UID: 0 PID: 11914 Comm: syz.3.1102 Not tainted syzkaller #0 PREEMPT(full) [ 484.319966][T11914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 484.319987][T11914] Call Trace: [ 484.320000][T11914] [ 484.320012][T11914] dump_stack_lvl+0x16c/0x1f0 [ 484.320063][T11914] should_fail_ex+0x512/0x640 [ 484.320111][T11914] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 484.320156][T11914] should_failslab+0xc2/0x120 [ 484.320201][T11914] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 484.320242][T11914] ? kvm_arch_vcpu_create+0x4a1/0xb20 [ 484.320297][T11914] kvm_arch_vcpu_create+0x4a1/0xb20 [ 484.320352][T11914] kvm_vm_ioctl+0xfec/0x4000 [ 484.320409][T11914] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 484.320486][T11914] ? kasan_quarantine_put+0x10a/0x240 [ 484.320524][T11914] ? lockdep_hardirqs_on+0x7c/0x110 [ 484.320569][T11914] ? find_held_lock+0x2b/0x80 [ 484.320603][T11914] ? tomoyo_path_number_perm+0x295/0x580 [ 484.320652][T11914] ? tomoyo_path_number_perm+0x18d/0x580 [ 484.320697][T11914] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 484.320754][T11914] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 484.320806][T11914] ? do_vfs_ioctl+0x128/0x14f0 [ 484.320859][T11914] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 484.320924][T11914] ? find_held_lock+0x2b/0x80 [ 484.320965][T11914] ? hook_file_ioctl_common+0x145/0x410 [ 484.321020][T11914] ? __fget_files+0x20e/0x3c0 [ 484.321076][T11914] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 484.321109][T11914] __x64_sys_ioctl+0x18e/0x210 [ 484.321164][T11914] do_syscall_64+0xcd/0x490 [ 484.321212][T11914] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 484.321245][T11914] RIP: 0033:0x7f6c2d18ebe9 [ 484.321270][T11914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 484.321302][T11914] RSP: 002b:00007f6c2df26038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 484.321334][T11914] RAX: ffffffffffffffda RBX: 00007f6c2d3b5fa0 RCX: 00007f6c2d18ebe9 [ 484.321355][T11914] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 484.321374][T11914] RBP: 00007f6c2d211e19 R08: 0000000000000000 R09: 0000000000000000 [ 484.321394][T11914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 484.321414][T11914] R13: 00007f6c2d3b6038 R14: 00007f6c2d3b5fa0 R15: 00007fff3101dc48 [ 484.321455][T11914] [ 484.322152][T11914] kvm: failed to allocate vcpu's emulator [ 486.046158][T11951] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1110'. [ 486.205390][T11956] FAULT_INJECTION: forcing a failure. [ 486.205390][T11956] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 486.241389][T11956] CPU: 0 UID: 0 PID: 11956 Comm: syz.0.1111 Not tainted syzkaller #0 PREEMPT(full) [ 486.241434][T11956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 486.241464][T11956] Call Trace: [ 486.241476][T11956] [ 486.241487][T11956] dump_stack_lvl+0x16c/0x1f0 [ 486.241536][T11956] should_fail_ex+0x512/0x640 [ 486.241582][T11956] _copy_to_user+0x32/0xd0 [ 486.241613][T11956] io_uring_setup+0x14ce/0x2080 [ 486.241657][T11956] ? __pfx_io_uring_setup+0x10/0x10 [ 486.241708][T11956] ? __pfx___might_resched+0x10/0x10 [ 486.241770][T11956] ? xfd_validate_state+0x61/0x180 [ 486.241829][T11956] __x64_sys_io_uring_setup+0xc2/0x170 [ 486.241894][T11956] do_syscall_64+0xcd/0x490 [ 486.241945][T11956] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 486.241978][T11956] RIP: 0033:0x7f6ac358ebe9 [ 486.242004][T11956] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 486.242035][T11956] RSP: 002b:00007f6ac43a0038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 486.242067][T11956] RAX: ffffffffffffffda RBX: 00007f6ac37b5fa0 RCX: 00007f6ac358ebe9 [ 486.242089][T11956] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 486.242109][T11956] RBP: 00007f6ac3611e19 R08: 0000000000000000 R09: 0000000000000000 [ 486.242128][T11956] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 486.242148][T11956] R13: 00007f6ac37b6038 R14: 00007f6ac37b5fa0 R15: 00007fffe1bb5838 [ 486.242190][T11956] [ 487.984168][T11994] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input22 [ 488.060954][T11988] FAULT_INJECTION: forcing a failure. [ 488.060954][T11988] name failslab, interval 1, probability 0, space 0, times 0 [ 488.111726][T11988] CPU: 0 UID: 0 PID: 11988 Comm: syz.0.1115 Not tainted syzkaller #0 PREEMPT(full) [ 488.111767][T11988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 488.111782][T11988] Call Trace: [ 488.111790][T11988] [ 488.111799][T11988] dump_stack_lvl+0x16c/0x1f0 [ 488.111839][T11988] should_fail_ex+0x512/0x640 [ 488.111891][T11988] ? __kmalloc_cache_node_noprof+0x5a/0x420 [ 488.111923][T11988] should_failslab+0xc2/0x120 [ 488.111955][T11988] __kmalloc_cache_node_noprof+0x6d/0x420 [ 488.111982][T11988] ? __lock_acquire+0x62e/0x1ce0 [ 488.112014][T11988] ? __get_vm_area_node+0x101/0x330 [ 488.112055][T11988] __get_vm_area_node+0x101/0x330 [ 488.112096][T11988] __vmalloc_node_range_noprof+0x271/0x14b0 [ 488.112120][T11988] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 488.112157][T11988] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 488.112190][T11988] ? rcu_read_unlock+0x17/0x60 [ 488.112221][T11988] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 488.112248][T11988] ? __memcg_slab_post_alloc_hook+0x4a0/0x960 [ 488.112287][T11988] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 488.112313][T11988] __vmalloc_node_noprof+0xad/0xf0 [ 488.112340][T11988] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 488.112371][T11988] fpu_alloc_guest_fpstate+0x24/0x450 [ 488.112401][T11988] kvm_arch_vcpu_create+0x54e/0xb20 [ 488.112442][T11988] kvm_vm_ioctl+0xfec/0x4000 [ 488.112477][T11988] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 488.112518][T11988] ? kasan_quarantine_put+0x10a/0x240 [ 488.112544][T11988] ? lockdep_hardirqs_on+0x7c/0x110 [ 488.112578][T11988] ? find_held_lock+0x2b/0x80 [ 488.112604][T11988] ? tomoyo_path_number_perm+0x295/0x580 [ 488.112638][T11988] ? tomoyo_path_number_perm+0x18d/0x580 [ 488.112670][T11988] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 488.112699][T11988] ? futex_wake+0x1ad/0x530 [ 488.112742][T11988] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 488.112790][T11988] ? do_vfs_ioctl+0x128/0x14f0 [ 488.112844][T11988] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 488.112900][T11988] ? find_held_lock+0x2b/0x80 [ 488.112922][T11988] ? hook_file_ioctl_common+0x145/0x410 [ 488.112960][T11988] ? __fget_files+0x20e/0x3c0 [ 488.112991][T11988] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 488.113014][T11988] __x64_sys_ioctl+0x18e/0x210 [ 488.113055][T11988] do_syscall_64+0xcd/0x490 [ 488.113101][T11988] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 488.113124][T11988] RIP: 0033:0x7f6ac358ebe9 [ 488.113142][T11988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 488.113165][T11988] RSP: 002b:00007f6ac43a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 488.113187][T11988] RAX: ffffffffffffffda RBX: 00007f6ac37b5fa0 RCX: 00007f6ac358ebe9 [ 488.113202][T11988] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 488.113216][T11988] RBP: 00007f6ac3611e19 R08: 0000000000000000 R09: 0000000000000000 [ 488.113229][T11988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 488.113243][T11988] R13: 00007f6ac37b6038 R14: 00007f6ac37b5fa0 R15: 00007fffe1bb5838 [ 488.113271][T11988] [ 488.113968][T11988] syz.0.1115: vmalloc error: size 896, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 488.526646][T11988] CPU: 1 UID: 0 PID: 11988 Comm: syz.0.1115 Not tainted syzkaller #0 PREEMPT(full) [ 488.526680][T11988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 488.526695][T11988] Call Trace: [ 488.526703][T11988] [ 488.526711][T11988] dump_stack_lvl+0x16c/0x1f0 [ 488.526749][T11988] warn_alloc+0x248/0x3a0 [ 488.526780][T11988] ? __pfx_warn_alloc+0x10/0x10 [ 488.526808][T11988] ? rcu_is_watching+0x12/0xc0 [ 488.526833][T11988] ? trace_kmalloc+0x2b/0xd0 [ 488.526867][T11988] ? __kmalloc_cache_node_noprof+0x272/0x420 [ 488.526899][T11988] ? __kasan_kmalloc+0x8a/0xb0 [ 488.526927][T11988] ? __get_vm_area_node+0x208/0x330 [ 488.526971][T11988] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 488.527005][T11988] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 488.527039][T11988] ? rcu_read_unlock+0x17/0x60 [ 488.527071][T11988] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 488.527099][T11988] ? __memcg_slab_post_alloc_hook+0x4a0/0x960 [ 488.527139][T11988] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 488.527167][T11988] __vmalloc_node_noprof+0xad/0xf0 [ 488.527189][T11988] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 488.527221][T11988] fpu_alloc_guest_fpstate+0x24/0x450 [ 488.527251][T11988] kvm_arch_vcpu_create+0x54e/0xb20 [ 488.527292][T11988] kvm_vm_ioctl+0xfec/0x4000 [ 488.527326][T11988] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 488.527369][T11988] ? kasan_quarantine_put+0x10a/0x240 [ 488.527395][T11988] ? lockdep_hardirqs_on+0x7c/0x110 [ 488.527429][T11988] ? find_held_lock+0x2b/0x80 [ 488.527453][T11988] ? tomoyo_path_number_perm+0x295/0x580 [ 488.527488][T11988] ? tomoyo_path_number_perm+0x18d/0x580 [ 488.527520][T11988] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 488.527548][T11988] ? futex_wake+0x1ad/0x530 [ 488.527598][T11988] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 488.527637][T11988] ? do_vfs_ioctl+0x128/0x14f0 [ 488.527676][T11988] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 488.527722][T11988] ? find_held_lock+0x2b/0x80 [ 488.527744][T11988] ? hook_file_ioctl_common+0x145/0x410 [ 488.527783][T11988] ? __fget_files+0x20e/0x3c0 [ 488.527812][T11988] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 488.527848][T11988] __x64_sys_ioctl+0x18e/0x210 [ 488.527887][T11988] do_syscall_64+0xcd/0x490 [ 488.527921][T11988] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 488.527944][T11988] RIP: 0033:0x7f6ac358ebe9 [ 488.527962][T11988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 488.527985][T11988] RSP: 002b:00007f6ac43a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 488.528006][T11988] RAX: ffffffffffffffda RBX: 00007f6ac37b5fa0 RCX: 00007f6ac358ebe9 [ 488.528021][T11988] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 488.528035][T11988] RBP: 00007f6ac3611e19 R08: 0000000000000000 R09: 0000000000000000 [ 488.528049][T11988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 488.528062][T11988] R13: 00007f6ac37b6038 R14: 00007f6ac37b5fa0 R15: 00007fffe1bb5838 [ 488.528091][T11988] [ 488.528099][T11988] Mem-Info: [ 488.846259][T11988] active_anon:7172 inactive_anon:13145 isolated_anon:0 [ 488.846259][T11988] active_file:17899 inactive_file:41940 isolated_file:0 [ 488.846259][T11988] unevictable:768 dirty:597 writeback:0 [ 488.846259][T11988] slab_reclaimable:11863 slab_unreclaimable:96639 [ 488.846259][T11988] mapped:25135 shmem:4553 pagetables:1261 [ 488.846259][T11988] sec_pagetables:0 bounce:0 [ 488.846259][T11988] kernel_misc_reclaimable:0 [ 488.846259][T11988] free:1304658 free_pcp:12595 free_cma:0 [ 488.846340][T11988] Node 0 active_anon:28688kB inactive_anon:52580kB active_file:71532kB inactive_file:167632kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:100524kB dirty:2388kB writeback:0kB shmem:16676kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:13028kB pagetables:4908kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 489.004475][T11988] Node 1 active_anon:0kB inactive_anon:0kB active_file:64kB inactive_file:128kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:80kB pagetables:136kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 489.088992][T11988] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 489.209418][T11988] lowmem_reserve[]: 0 2480 2481 2481 2481 [ 489.224137][T11988] Node 0 DMA32 free:1290416kB boost:0kB min:34320kB low:42900kB high:51480kB reserved_highatomic:0KB free_highatomic:0KB active_anon:28600kB inactive_anon:56720kB active_file:70284kB inactive_file:167560kB unevictable:1536kB writepending:2388kB present:3129332kB managed:2539588kB mlocked:0kB bounce:0kB free_pcp:44304kB local_pcp:29540kB free_cma:0kB [ 489.355140][T11988] lowmem_reserve[]: 0 0 1 1 1 [ 489.363947][T11988] Node 0 Normal free:16kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:52kB inactive_anon:0kB active_file:1248kB inactive_file:72kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 489.451179][T11988] lowmem_reserve[]: 0 0 0 0 0 [ 489.552439][T11988] Node 1 Normal free:3909100kB boost:0kB min:55560kB low:69448kB high:83336kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:64kB inactive_file:128kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:4256kB local_pcp:1176kB free_cma:0kB [ 489.620089][T11988] lowmem_reserve[]: 0 0 0 0 0 [ 489.631773][T11988] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 489.688507][T11988] Node 0 DMA32: 4412*4kB (UME) 1355*8kB (UM) 1061*16kB (UME) 465*32kB (UME) 483*64kB (UME) 295*128kB (UME) 137*256kB (UM) 46*512kB (UME) 28*1024kB (UME) 5*2048kB (UM) 255*4096kB (UM) = 1271032kB [ 489.746198][T11988] Node 0 Normal: 2*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB [ 489.832859][T11988] Node 1 Normal: 119*4kB (UME) 60*8kB (UME) 55*16kB (UME) 212*32kB (UME) 83*64kB (UME) 31*128kB (UME) 12*256kB (UME) 8*512kB (U) 1*1024kB (M) 2*2048kB (ME) 947*4096kB (UM) = 3909100kB [ 489.894644][T11988] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 489.956480][T11988] Node 0 hugepages_total=3 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 490.016505][T11988] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 490.106541][T11988] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 490.196826][T11988] 64364 total pagecache pages [ 490.201572][T11988] 10 pages in swap cache [ 490.205826][T11988] Free swap = 124956kB [ 490.270507][T11988] Total swap = 124996kB [ 490.274708][T11988] 2097051 pages RAM [ 490.298892][T11988] 0 pages HighMem/MovableOnly [ 490.303601][T11988] 430192 pages reserved [ 490.349984][T11988] 0 pages cma reserved [ 490.364560][T12039] FAULT_INJECTION: forcing a failure. [ 490.364560][T12039] name failslab, interval 1, probability 0, space 0, times 0 [ 490.374465][T11988] kvm: failed to allocate vcpu's fpu [ 490.378734][T12039] CPU: 1 UID: 0 PID: 12039 Comm: syz.2.1122 Not tainted syzkaller #0 PREEMPT(full) [ 490.378786][T12039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 490.378811][T12039] Call Trace: [ 490.378824][T12039] [ 490.378837][T12039] dump_stack_lvl+0x16c/0x1f0 [ 490.378896][T12039] should_fail_ex+0x512/0x640 [ 490.378949][T12039] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 490.379001][T12039] should_failslab+0xc2/0x120 [ 490.379051][T12039] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 490.379096][T12039] ? d_instantiate+0x77/0x90 [ 490.379143][T12039] ? alloc_empty_file+0x55/0x1e0 [ 490.379221][T12039] alloc_empty_file+0x55/0x1e0 [ 490.379279][T12039] alloc_file_pseudo+0x13a/0x230 [ 490.379340][T12039] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 490.379408][T12039] ? security_inode_init_security_anon+0x79/0x240 [ 490.379464][T12039] __anon_inode_getfile+0xe8/0x280 [ 490.379508][T12039] ? _copy_to_user+0x48/0xd0 [ 490.379544][T12039] io_uring_setup+0x154d/0x2080 [ 490.379596][T12039] ? __pfx_io_uring_setup+0x10/0x10 [ 490.379654][T12039] ? __pfx___might_resched+0x10/0x10 [ 490.379709][T12039] ? xfd_validate_state+0x61/0x180 [ 490.379773][T12039] __x64_sys_io_uring_setup+0xc2/0x170 [ 490.379823][T12039] do_syscall_64+0xcd/0x490 [ 490.379877][T12039] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 490.379914][T12039] RIP: 0033:0x7f7a23f8ebe9 [ 490.379941][T12039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 490.379977][T12039] RSP: 002b:00007f7a24de5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 490.380011][T12039] RAX: ffffffffffffffda RBX: 00007f7a241b5fa0 RCX: 00007f7a23f8ebe9 [ 490.380036][T12039] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 490.380057][T12039] RBP: 00007f7a24011e19 R08: 0000000000000000 R09: 0000000000000000 [ 490.380080][T12039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 490.380101][T12039] R13: 00007f7a241b6038 R14: 00007f7a241b5fa0 R15: 00007ffcf8215ba8 [ 490.380145][T12039] [ 491.399301][T12053] input: f as /devices/virtual/input/input23 [ 491.931836][T12077] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 492.333642][T12088] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1133'. [ 493.233307][T12106] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 493.407417][T12091] __vm_enough_memory: pid: 12091, comm: syz.0.1133, bytes: 4398046511104 not enough memory for the allocation [ 494.682686][T12141] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1139'. [ 495.662079][T12160] bond0: option all_slaves_active: invalid value () [ 495.893113][T12160] bond0: option all_slaves_active: invalid value () [ 497.585807][T12189] FAULT_INJECTION: forcing a failure. [ 497.585807][T12189] name fail_futex, interval 1, probability 0, space 0, times 0 [ 497.599547][T12189] CPU: 1 UID: 0 PID: 12189 Comm: syz.0.1150 Not tainted syzkaller #0 PREEMPT(full) [ 497.599580][T12189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 497.599594][T12189] Call Trace: [ 497.599602][T12189] [ 497.599610][T12189] dump_stack_lvl+0x16c/0x1f0 [ 497.599649][T12189] should_fail_ex+0x512/0x640 [ 497.599690][T12189] get_futex_key+0x1d0/0x1560 [ 497.599724][T12189] ? __pfx_get_futex_key+0x10/0x10 [ 497.599753][T12189] ? __pfx_profile_signal_perm+0x10/0x10 [ 497.599785][T12189] futex_wait_setup+0x9d/0x550 [ 497.599831][T12189] __futex_wait+0x194/0x2f0 [ 497.599868][T12189] ? __pfx___futex_wait+0x10/0x10 [ 497.599919][T12189] ? __pfx_futex_wake_mark+0x10/0x10 [ 497.599960][T12189] ? futex_private_hash_put+0x176/0x300 [ 497.599992][T12189] ? futex_private_hash_put+0x18a/0x300 [ 497.600023][T12189] futex_wait+0xe8/0x380 [ 497.600059][T12189] ? __pfx_futex_wait+0x10/0x10 [ 497.600093][T12189] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 497.600130][T12189] ? find_held_lock+0x2b/0x80 [ 497.600154][T12189] ? kill_pid_info_type+0xea/0x2a0 [ 497.600188][T12189] do_futex+0x229/0x350 [ 497.600218][T12189] ? __pfx_do_futex+0x10/0x10 [ 497.600248][T12189] ? do_pidfd_send_signal+0x20e/0x400 [ 497.600285][T12189] __x64_sys_futex+0x1e0/0x4c0 [ 497.600320][T12189] ? __pfx___x64_sys_futex+0x10/0x10 [ 497.600352][T12189] ? fput+0x9b/0xd0 [ 497.600398][T12189] ? __x64_sys_pidfd_send_signal+0x2a7/0x430 [ 497.600453][T12189] do_syscall_64+0xcd/0x490 [ 497.600502][T12189] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 497.600527][T12189] RIP: 0033:0x7f6ac358ebe9 [ 497.600546][T12189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 497.600570][T12189] RSP: 002b:00007f6ac43a00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 497.600592][T12189] RAX: ffffffffffffffda RBX: 00007f6ac37b5fa8 RCX: 00007f6ac358ebe9 [ 497.600608][T12189] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6ac37b5fa8 [ 497.600623][T12189] RBP: 00007f6ac37b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 497.600637][T12189] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 497.600653][T12189] R13: 00007f6ac37b6038 R14: 00007fffe1bb5750 R15: 00007fffe1bb5838 [ 497.600683][T12189] [ 498.245603][T12199] ptrace attach of "./syz-executor exec"[12200] was attempted by "./syz-executor exec"[12199] [ 499.696502][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 499.702922][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 500.837160][T12229] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 502.479475][T12241] mkiss: ax0: crc mode is auto. [ 503.163052][T12268] block2mtd: Using custom MTD label '' for dev [ 503.171229][T12268] block2mtd: error: cannot open device [ 503.273654][T12270] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1167'. [ 503.347416][T12271] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1167'. [ 503.478507][T12271] netlink: 274 bytes leftover after parsing attributes in process `syz.2.1167'. [ 504.166809][T12290] device-mapper: ioctl: device name cannot contain '/' [ 504.185863][T12281] FAULT_INJECTION: forcing a failure. [ 504.185863][T12281] name failslab, interval 1, probability 0, space 0, times 0 [ 504.199400][T12281] CPU: 1 UID: 0 PID: 12281 Comm: syz.1.1169 Not tainted syzkaller #0 PREEMPT(full) [ 504.199453][T12281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 504.199473][T12281] Call Trace: [ 504.199484][T12281] [ 504.199496][T12281] dump_stack_lvl+0x16c/0x1f0 [ 504.199549][T12281] should_fail_ex+0x512/0x640 [ 504.199596][T12281] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 504.199642][T12281] should_failslab+0xc2/0x120 [ 504.199686][T12281] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 504.199725][T12281] ? set_normalized_timespec64+0x69/0xc0 [ 504.199767][T12281] ? __d_alloc+0x32/0xae0 [ 504.199814][T12281] __d_alloc+0x32/0xae0 [ 504.199859][T12281] d_alloc_pseudo+0x1c/0xc0 [ 504.199926][T12281] alloc_file_pseudo+0xcf/0x230 [ 504.199980][T12281] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 504.200032][T12281] ? security_inode_init_security_anon+0x79/0x240 [ 504.200084][T12281] __anon_inode_getfile+0xe8/0x280 [ 504.200138][T12281] ? _copy_to_user+0x48/0xd0 [ 504.200170][T12281] io_uring_setup+0x154d/0x2080 [ 504.200218][T12281] ? __pfx_io_uring_setup+0x10/0x10 [ 504.200271][T12281] ? __pfx___might_resched+0x10/0x10 [ 504.200320][T12281] ? xfd_validate_state+0x61/0x180 [ 504.200379][T12281] __x64_sys_io_uring_setup+0xc2/0x170 [ 504.200431][T12281] do_syscall_64+0xcd/0x490 [ 504.200481][T12281] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 504.200515][T12281] RIP: 0033:0x7f245578ebe9 [ 504.200541][T12281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 504.200574][T12281] RSP: 002b:00007f24565ea038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 504.200605][T12281] RAX: ffffffffffffffda RBX: 00007f24559b5fa0 RCX: 00007f245578ebe9 [ 504.200626][T12281] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 504.200645][T12281] RBP: 00007f2455811e19 R08: 0000000000000000 R09: 0000000000000000 [ 504.200665][T12281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 504.200685][T12281] R13: 00007f24559b6038 R14: 00007f24559b5fa0 R15: 00007ffc515c0ef8 [ 504.200727][T12281] [ 504.460156][T12294] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1171'. [ 505.117482][T12301] FAULT_INJECTION: forcing a failure. [ 505.117482][T12301] name failslab, interval 1, probability 0, space 0, times 0 [ 505.213286][T12301] CPU: 1 UID: 0 PID: 12301 Comm: syz.2.1173 Not tainted syzkaller #0 PREEMPT(full) [ 505.213325][T12301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 505.213345][T12301] Call Trace: [ 505.213356][T12301] [ 505.213367][T12301] dump_stack_lvl+0x16c/0x1f0 [ 505.213414][T12301] should_fail_ex+0x512/0x640 [ 505.213456][T12301] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 505.213498][T12301] should_failslab+0xc2/0x120 [ 505.213538][T12301] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 505.213575][T12301] ? sock_alloc_inode+0x25/0x1c0 [ 505.213628][T12301] ? __pfx_sock_alloc_inode+0x10/0x10 [ 505.213673][T12301] sock_alloc_inode+0x25/0x1c0 [ 505.213720][T12301] alloc_inode+0x64/0x240 [ 505.213765][T12301] sock_alloc+0x40/0x280 [ 505.213809][T12301] __sock_create+0xc1/0x8d0 [ 505.213850][T12301] ? lockdep_init_map_type+0x5c/0x280 [ 505.213915][T12301] smc_create+0x15d/0x2a0 [ 505.213951][T12301] __sock_create+0x335/0x8d0 [ 505.213990][T12301] __sys_socket+0x14d/0x260 [ 505.214023][T12301] ? __pfx___sys_socket+0x10/0x10 [ 505.214054][T12301] ? xfd_validate_state+0x61/0x180 [ 505.214098][T12301] ? __pfx_ksys_write+0x10/0x10 [ 505.214150][T12301] __x64_sys_socket+0x72/0xb0 [ 505.214181][T12301] ? lockdep_hardirqs_on+0x7c/0x110 [ 505.214218][T12301] do_syscall_64+0xcd/0x490 [ 505.214262][T12301] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 505.214293][T12301] RIP: 0033:0x7f7a23f8ebe9 [ 505.214318][T12301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 505.214349][T12301] RSP: 002b:00007f7a24de5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 505.214379][T12301] RAX: ffffffffffffffda RBX: 00007f7a241b5fa0 RCX: 00007f7a23f8ebe9 [ 505.214400][T12301] RDX: 0000000000000001 RSI: 0000000000000001 RDI: 000000000000002b [ 505.214418][T12301] RBP: 00007f7a24011e19 R08: 0000000000000000 R09: 0000000000000000 [ 505.214437][T12301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 505.214455][T12301] R13: 00007f7a241b6038 R14: 00007f7a241b5fa0 R15: 00007ffcf8215ba8 [ 505.214495][T12301] [ 505.214509][T12301] socket: no more sockets [ 506.365929][T12322] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE r҄y*"l-y– [ 506.424387][T12329] FAULT_INJECTION: forcing a failure. [ 506.424387][T12329] name failslab, interval 1, probability 0, space 0, times 0 [ 506.454516][T12329] CPU: 0 UID: 0 PID: 12329 Comm: syz.0.1180 Not tainted syzkaller #0 PREEMPT(full) [ 506.454555][T12329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 506.454574][T12329] Call Trace: [ 506.454583][T12329] [ 506.454594][T12329] dump_stack_lvl+0x16c/0x1f0 [ 506.454639][T12329] should_fail_ex+0x512/0x640 [ 506.454680][T12329] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 506.454721][T12329] should_failslab+0xc2/0x120 [ 506.454761][T12329] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 506.454795][T12329] ? set_normalized_timespec64+0x69/0xc0 [ 506.454831][T12329] ? __d_alloc+0x32/0xae0 [ 506.454873][T12329] __d_alloc+0x32/0xae0 [ 506.454912][T12329] d_alloc_pseudo+0x1c/0xc0 [ 506.454975][T12329] alloc_file_pseudo+0xcf/0x230 [ 506.455035][T12329] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 506.455084][T12329] ? security_inode_init_security_anon+0x79/0x240 [ 506.455138][T12329] __anon_inode_getfile+0xe8/0x280 [ 506.455185][T12329] ? _copy_to_user+0x48/0xd0 [ 506.455213][T12329] io_uring_setup+0x154d/0x2080 [ 506.455254][T12329] ? __pfx_io_uring_setup+0x10/0x10 [ 506.455301][T12329] ? __pfx___might_resched+0x10/0x10 [ 506.455345][T12329] ? xfd_validate_state+0x61/0x180 [ 506.455416][T12329] __x64_sys_io_uring_setup+0xc2/0x170 [ 506.455458][T12329] do_syscall_64+0xcd/0x490 [ 506.455504][T12329] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 506.455534][T12329] RIP: 0033:0x7f6ac358ebe9 [ 506.455564][T12329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 506.455595][T12329] RSP: 002b:00007f6ac43a0038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 506.455625][T12329] RAX: ffffffffffffffda RBX: 00007f6ac37b5fa0 RCX: 00007f6ac358ebe9 [ 506.455645][T12329] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 506.455664][T12329] RBP: 00007f6ac3611e19 R08: 0000000000000000 R09: 0000000000000000 [ 506.455682][T12329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 506.455700][T12329] R13: 00007f6ac37b6038 R14: 00007f6ac37b5fa0 R15: 00007fffe1bb5838 [ 506.455739][T12329] [ 506.894364][T12322] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 506.972006][T12343] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 507.647905][T12359] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 507.812963][ T30] audit: type=1800 audit(1843122956.356:28): pid=12347 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1182" name="dbroot" dev="configfs" ino=41405 res=0 errno=0 [ 508.855983][T12377] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 508.892197][T12372] misc userio: No port type given on /dev/userio [ 509.130079][T12377] CIFS: VFS: Invalid SecurityFlags: [ 510.582427][T12375] Process accounting paused [ 510.601977][T12402] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 511.134141][T12402] CIFS: VFS: Invalid SecurityFlags: [ 511.302840][T12406] FAULT_INJECTION: forcing a failure. [ 511.302840][T12406] name failslab, interval 1, probability 0, space 0, times 0 [ 511.315554][T12406] CPU: 0 UID: 0 PID: 12406 Comm: syz.0.1191 Not tainted syzkaller #0 PREEMPT(full) [ 511.315584][T12406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 511.315599][T12406] Call Trace: [ 511.315606][T12406] [ 511.315633][T12406] dump_stack_lvl+0x16c/0x1f0 [ 511.315669][T12406] should_fail_ex+0x512/0x640 [ 511.315705][T12406] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 511.315737][T12406] should_failslab+0xc2/0x120 [ 511.315770][T12406] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 511.315800][T12406] ? security_file_alloc+0x34/0x2b0 [ 511.315839][T12406] security_file_alloc+0x34/0x2b0 [ 511.315873][T12406] init_file+0x93/0x4c0 [ 511.315908][T12406] alloc_empty_file+0x73/0x1e0 [ 511.315951][T12406] alloc_file_pseudo+0x13a/0x230 [ 511.315989][T12406] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 511.316027][T12406] ? security_inode_init_security_anon+0x79/0x240 [ 511.316063][T12406] __anon_inode_getfile+0xe8/0x280 [ 511.316092][T12406] ? _copy_to_user+0x48/0xd0 [ 511.316121][T12406] io_uring_setup+0x154d/0x2080 [ 511.316171][T12406] ? __pfx_io_uring_setup+0x10/0x10 [ 511.316226][T12406] ? __pfx___might_resched+0x10/0x10 [ 511.316269][T12406] ? xfd_validate_state+0x61/0x180 [ 511.316312][T12406] __x64_sys_io_uring_setup+0xc2/0x170 [ 511.316345][T12406] do_syscall_64+0xcd/0x490 [ 511.316394][T12406] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 511.316427][T12406] RIP: 0033:0x7f6ac358ebe9 [ 511.316454][T12406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 511.316487][T12406] RSP: 002b:00007f6ac43a0038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 511.316517][T12406] RAX: ffffffffffffffda RBX: 00007f6ac37b5fa0 RCX: 00007f6ac358ebe9 [ 511.316552][T12406] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 511.316572][T12406] RBP: 00007f6ac3611e19 R08: 0000000000000000 R09: 0000000000000000 [ 511.316590][T12406] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 511.316608][T12406] R13: 00007f6ac37b6038 R14: 00007f6ac37b5fa0 R15: 00007fffe1bb5838 [ 511.316654][T12406] [ 511.859147][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 511.865524][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 514.057042][T12442] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1196'. [ 514.205388][T12435] random: crng reseeded on system resumption [ 515.100004][T12461] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1203'. [ 517.722101][T12510] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 518.487792][T12526] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 518.717302][T12529] svc: failed to register nfsdv3 RPC service (errno 101). [ 518.735836][T12529] svc: failed to register nfsaclv3 RPC service (errno 101). [ 519.458705][T12543] delete_channel: no stack [ 522.555991][T12581] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1224'. [ 524.534789][T12588] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888078002dc0 pfn:0x78002 [ 524.556954][T12588] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 524.564170][T12588] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 524.611077][T12588] raw: ffff888078002dc0 0000000000000000 00000001ffffffff 0000000000000000 [ 524.676589][T12588] page dumped because: unmovable page [ 524.693357][T12588] page_owner tracks the page as allocated [ 524.721117][T12588] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xd02(GFP_NOIO|__GFP_HIGHMEM|__GFP_ZERO), pid 6709, tgid 6697 (syz.2.134), ts 170640656776, free_ts 163756184157 [ 524.756521][T12588] post_alloc_hook+0x1c0/0x230 [ 524.761681][T12588] get_page_from_freelist+0x132b/0x38e0 [ 524.826526][T12588] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 524.866578][T12588] alloc_pages_mpol+0x1fb/0x550 [ 524.871533][T12588] alloc_pages_noprof+0x131/0x390 [ 524.886537][T12588] brd_submit_bio+0x942/0x1180 [ 524.917595][T12588] __submit_bio+0x304/0x690 [ 524.926049][T12588] submit_bio_noacct_nocheck+0x852/0xd30 [ 524.931892][T12588] submit_bio_noacct+0xc20/0x1ed0 [ 524.937207][T12588] __block_write_full_folio+0x735/0xe00 [ 524.946460][T12588] block_write_full_folio+0x341/0x400 [ 524.952148][T12588] blkdev_writepages+0xb8/0x140 [ 524.962407][T12588] do_writepages+0x27a/0x600 [ 524.997777][T12588] filemap_fdatawrite_wbc+0x104/0x160 [ 525.003451][T12588] __filemap_fdatawrite_range+0xb9/0x100 [ 525.013169][T12588] filemap_write_and_wait_range+0xa3/0x130 [ 525.020814][T12588] page last free pid 6647 tgid 6638 stack trace: [ 525.038555][T12588] __free_frozen_pages+0x7d5/0x10f0 [ 525.087053][T12588] vfree+0x1fd/0xb50 [ 525.091137][T12588] snd_dma_free_pages+0x51/0x70 [ 525.096051][T12588] snd_pcm_lib_free_pages+0x172/0x390 [ 525.112014][T12588] snd_pcm_release_substream.part.0+0x2a8/0x340 [ 525.122153][T12588] snd_pcm_release_substream+0x5b/0x70 [ 525.151505][T12588] snd_pcm_oss_release+0x16f/0x310 [ 525.178940][T12588] __fput+0x402/0xb70 [ 525.183010][T12588] task_work_run+0x14d/0x240 [ 525.219871][T12588] exit_to_user_mode_loop+0xeb/0x110 [ 525.261532][T12588] do_syscall_64+0x3f6/0x490 [ 525.309244][T12588] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 526.197989][T12597] zswap: compressor not available [ 526.787931][T12619] nvme_fabrics: unknown parameter or missing value '7' in ctrl creation request [ 530.572930][T12649] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 530.765882][T12655] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 532.158924][T12674] vivid-003: ================= START STATUS ================= [ 532.179159][T12674] vivid-003: Radio HW Seek Mode: Bounded [ 532.184952][T12674] vivid-003: Radio Programmable HW Seek: false [ 532.209401][T12674] vivid-003: RDS Rx I/O Mode: Block I/O [ 532.217937][T12674] vivid-003: Generate RBDS Instead of RDS: false [ 532.224353][T12674] vivid-003: RDS Reception: true [ 532.416524][T12674] vivid-003: RDS Program Type: 0 inactive [ 532.422348][T12674] vivid-003: RDS PS Name: inactive [ 532.446562][T12674] vivid-003: RDS Radio Text: inactive [ 532.457487][T12674] vivid-003: RDS Traffic Announcement: false inactive [ 532.486553][T12674] vivid-003: RDS Traffic Program: false inactive [ 532.508236][T12674] vivid-003: RDS Music: false inactive [ 532.536701][T12674] vivid-003: ================== END STATUS ================== [ 533.040342][T12693] Invalid ELF header magic: != ELF [ 533.463696][T12704] lo: entered allmulticast mode [ 533.680371][T12708] lo: left allmulticast mode [ 533.934372][ T24] smpboot: CPU 0 is now offline [ 533.940683][T12709] blktrace: Concurrent blktraces are not allowed on loop2 [ 535.142815][T12725] svc: failed to register nfsdv3 RPC service (errno 101). [ 535.227461][T12725] svc: failed to register nfsaclv3 RPC service (errno 101). [ 535.370039][T12722] netlink: 'syz.2.1252': attribute type 1 has an invalid length. [ 535.754391][T12722] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1252'. [ 536.978441][T12755] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 537.019621][T12757] input: f as /devices/virtual/input/input24 [ 537.112405][T12760] netlink: 206 bytes leftover after parsing attributes in process `syz.1.1257'. [ 537.381142][T12766] bridge0: port 3(team0) entered blocking state [ 537.412274][T12766] bridge0: port 3(team0) entered disabled state [ 537.445709][T12766] team0: entered allmulticast mode [ 537.490698][T12766] team_slave_0: entered allmulticast mode [ 537.531658][T12768] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 537.569524][T12766] team_slave_1: entered allmulticast mode [ 537.630272][T12766] team0: entered promiscuous mode [ 537.682358][T12766] team_slave_0: entered promiscuous mode [ 537.732047][T12766] team_slave_1: entered promiscuous mode [ 537.812624][T12766] bridge0: port 3(team0) entered blocking state [ 537.819042][T12766] bridge0: port 3(team0) entered forwarding state [ 539.837760][T12812] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1267'. [ 539.872892][T12812] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1267'. [ 540.639771][T12815] Process accounting resumed [ 540.797932][T12830] ptrace attach of "./syz-executor exec"[5860] was attempted by ""[12830] [ 543.360929][T12792] Process accounting resumed [ 546.863356][ T8888] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 547.029539][T12924] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137 [ 547.100525][T12924] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138 [ 547.136095][ T8888] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 547.189796][T12924] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum [ 547.312317][ T8888] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 547.580240][ T8888] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 548.136829][T12938] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 548.640220][ T8888] team0: left allmulticast mode [ 548.645264][ T8888] team_slave_0: left allmulticast mode [ 548.669198][ T5184] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 548.682136][ T5184] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 548.692206][ T5184] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 548.706538][ T5184] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 548.716919][ T5184] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 548.772325][ T8888] team0: left promiscuous mode [ 548.800293][ T8888] team_slave_0: left promiscuous mode [ 548.850548][ T8888] bridge0: port 3(team0) entered disabled state [ 548.908444][ T8888] bridge_slave_1: left allmulticast mode [ 548.948424][ T8888] bridge_slave_1: left promiscuous mode [ 548.985459][ T8888] bridge0: port 2(bridge_slave_1) entered disabled state [ 549.099703][ T8888] bridge_slave_0: left allmulticast mode [ 549.119476][ T8888] bridge_slave_0: left promiscuous mode [ 549.149757][ T8888] bridge0: port 1(bridge_slave_0) entered disabled state [ 550.787895][ T5184] Bluetooth: hci3: command tx timeout [ 550.899280][ T8888] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 550.928671][ T8888] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 550.958557][ T8888] bond0 (unregistering): Released all slaves [ 551.165966][ T8888] tipc: Left network mode [ 552.866871][ T5184] Bluetooth: hci3: command tx timeout [ 552.941176][T12949] chnl_net:caif_netlink_parms(): no params data found [ 553.803345][ T8888] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 553.833635][ T8888] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 553.912175][ T8888] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 553.937407][ T8888] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 554.038978][ T8888] veth1_macvtap: left promiscuous mode [ 554.061262][ T8888] veth1_vlan: left promiscuous mode [ 554.086340][ T8888] veth0_vlan: left promiscuous mode [ 554.669833][T13032] kAFS: Invalid Command on /proc/fs/afs/cells file [ 554.942390][ T8888] team0 (unregistering): Port device team_slave_0 removed [ 554.950519][ T5184] Bluetooth: hci3: command tx timeout [ 555.578832][T12949] bridge0: port 1(bridge_slave_0) entered blocking state [ 555.585977][T12949] bridge0: port 1(bridge_slave_0) entered disabled state [ 555.635279][T12949] bridge_slave_0: entered allmulticast mode [ 555.662574][T13037] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1301'. [ 555.679793][T12949] bridge_slave_0: entered promiscuous mode [ 555.728036][T12949] bridge0: port 2(bridge_slave_1) entered blocking state [ 555.757153][T12949] bridge0: port 2(bridge_slave_1) entered disabled state [ 555.788230][T12949] bridge_slave_1: entered allmulticast mode [ 555.857698][T12949] bridge_slave_1: entered promiscuous mode [ 556.196935][T12949] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 556.293639][T12949] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 556.557989][T12949] team0: Port device team_slave_0 added [ 556.618184][T12949] team0: Port device team_slave_1 added [ 556.811018][T12949] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 556.859983][T12949] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 556.981165][T12949] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 557.026594][ T5184] Bluetooth: hci3: command tx timeout [ 557.093855][T12949] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 557.180581][T12949] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 557.321833][T12949] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 557.476848][T13064] zswap: compressor not available [ 557.798664][T12949] hsr_slave_0: entered promiscuous mode [ 557.805090][T12949] hsr_slave_1: entered promiscuous mode [ 557.897420][T12949] debugfs: 'hsr0' already exists in 'hsr' [ 557.903297][T12949] Cannot create hsr debugfs directory [ 559.425926][T13096] svc: failed to register nfsdv3 RPC service (errno 101). [ 559.531998][T13096] svc: failed to register nfsaclv3 RPC service (errno 101). [ 559.855506][T12949] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 559.938339][T12949] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 560.063551][T12949] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 560.154677][T13108] FAULT_INJECTION: forcing a failure. [ 560.154677][T13108] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 560.218815][T12949] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 560.297898][T13108] CPU: 1 UID: 0 PID: 13108 Comm: syz.1.1311 Not tainted syzkaller #0 PREEMPT(full) [ 560.297928][T13108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 560.297942][T13108] Call Trace: [ 560.297950][T13108] [ 560.297958][T13108] dump_stack_lvl+0x16c/0x1f0 [ 560.297992][T13108] should_fail_ex+0x512/0x640 [ 560.298027][T13108] _copy_from_user+0x2e/0xd0 [ 560.298064][T13108] post_copy_siginfo_from_user.isra.0+0x16e/0x300 [ 560.298099][T13108] ? __pfx_post_copy_siginfo_from_user.isra.0+0x10/0x10 [ 560.298133][T13108] ? find_held_lock+0x2b/0x80 [ 560.298173][T13108] do_pidfd_send_signal+0x29e/0x400 [ 560.298204][T13108] ? __pfx_do_pidfd_send_signal+0x10/0x10 [ 560.298246][T13108] __x64_sys_pidfd_send_signal+0x358/0x430 [ 560.298282][T13108] do_syscall_64+0xcd/0x490 [ 560.298314][T13108] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 560.298336][T13108] RIP: 0033:0x7f245578ebe9 [ 560.298353][T13108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 560.298374][T13108] RSP: 002b:00007f24565ea038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a8 [ 560.298394][T13108] RAX: ffffffffffffffda RBX: 00007f24559b5fa0 RCX: 00007f245578ebe9 [ 560.298407][T13108] RDX: 0000200000000440 RSI: 0000000000000008 RDI: 0000000000000004 [ 560.298420][T13108] RBP: 00007f2455811e19 R08: 0000000000000000 R09: 0000000000000000 [ 560.298433][T13108] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000 [ 560.298446][T13108] R13: 00007f24559b6038 R14: 00007f24559b5fa0 R15: 00007ffc515c0ef8 [ 560.298472][T13108] [ 562.901822][T13146] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 562.995238][T12949] 8021q: adding VLAN 0 to HW filter on device bond0 [ 563.497134][T13155] random: crng reseeded on system resumption [ 563.580246][T12949] 8021q: adding VLAN 0 to HW filter on device team0 [ 563.854930][ T8891] bridge0: port 1(bridge_slave_0) entered blocking state [ 563.862107][ T8891] bridge0: port 1(bridge_slave_0) entered forwarding state [ 563.959977][ T8891] bridge0: port 2(bridge_slave_1) entered blocking state [ 563.967190][ T8891] bridge0: port 2(bridge_slave_1) entered forwarding state [ 564.391589][T13165] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 565.934572][T13188] svc: failed to register nfsdv3 RPC service (errno 101). [ 566.039189][T13188] svc: failed to register nfsaclv3 RPC service (errno 101). [ 566.175256][T12949] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 567.084718][T13215] [U] cover enable write trace failed, mode=0 (errno 9) [ 567.794041][T12949] veth0_vlan: entered promiscuous mode [ 567.938076][T12949] veth1_vlan: entered promiscuous mode [ 568.206803][T12949] veth0_macvtap: entered promiscuous mode [ 568.352710][T12949] veth1_macvtap: entered promiscuous mode [ 568.465921][T12949] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 568.609187][T12949] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 568.678772][ T9259] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 568.705499][ T9259] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 568.789666][ T9259] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 568.848286][ T9259] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 569.049600][T13258] FAULT_INJECTION: forcing a failure. [ 569.049600][T13258] name failslab, interval 1, probability 0, space 0, times 0 [ 569.139671][ T9274] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 569.149198][T13258] CPU: 1 UID: 0 PID: 13258 Comm: syz.2.1325 Not tainted syzkaller #0 PREEMPT(full) [ 569.149229][T13258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 569.149242][T13258] Call Trace: [ 569.149250][T13258] [ 569.149258][T13258] dump_stack_lvl+0x16c/0x1f0 [ 569.149294][T13258] should_fail_ex+0x512/0x640 [ 569.149328][T13258] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 569.149357][T13258] should_failslab+0xc2/0x120 [ 569.149388][T13258] __kmalloc_cache_noprof+0x6a/0x3e0 [ 569.149412][T13258] ? devlink_fmsg_nest_common.part.0+0x48/0x1e0 [ 569.149470][T13258] devlink_fmsg_nest_common.part.0+0x48/0x1e0 [ 569.149509][T13258] devlink_fmsg_bool_pair_put+0x284/0x2f0 [ 569.149558][T13258] ? __pfx_devlink_fmsg_bool_pair_put+0x10/0x10 [ 569.149595][T13258] ? __kasan_kmalloc+0xaa/0xb0 [ 569.149624][T13258] ? devlink_fmsg_nest_common.part.0+0xcd/0x1e0 [ 569.149663][T13258] nsim_dev_dummy_fmsg_put+0x17e/0x1e0 [ 569.149697][T13258] devlink_health_do_dump+0x240/0x620 [ 569.149740][T13258] devlink_health_report+0x3c9/0x9c0 [ 569.149782][T13258] ? __pfx_devlink_health_report+0x10/0x10 [ 569.149820][T13258] ? _copy_from_user+0x59/0xd0 [ 569.149863][T13258] nsim_dev_health_break_write+0x166/0x210 [ 569.149897][T13258] ? __pfx_nsim_dev_health_break_write+0x10/0x10 [ 569.149941][T13258] full_proxy_write+0x12e/0x1a0 [ 569.149982][T13258] ? __pfx_full_proxy_write+0x10/0x10 [ 569.150019][T13258] vfs_write+0x2a0/0x11d0 [ 569.150051][T13258] ? __pfx___mutex_lock+0x10/0x10 [ 569.150085][T13258] ? __pfx_vfs_write+0x10/0x10 [ 569.150121][T13258] ? __fget_files+0x20e/0x3c0 [ 569.150157][T13258] ksys_write+0x12a/0x250 [ 569.150185][T13258] ? __pfx_ksys_write+0x10/0x10 [ 569.150227][T13258] do_syscall_64+0xcd/0x490 [ 569.150262][T13258] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 569.150287][T13258] RIP: 0033:0x7f7a23f8ebe9 [ 569.150306][T13258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 569.150329][T13258] RSP: 002b:00007f7a24dc4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 569.150351][T13258] RAX: ffffffffffffffda RBX: 00007f7a241b6090 RCX: 00007f7a23f8ebe9 [ 569.150367][T13258] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000005 [ 569.150381][T13258] RBP: 00007f7a24011e19 R08: 0000000000000000 R09: 0000000000000000 [ 569.150395][T13258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 569.150409][T13258] R13: 00007f7a241b6128 R14: 00007f7a241b6090 R15: 00007ffcf8215ba8 [ 569.150440][T13258] [ 569.542014][ T9274] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 569.693796][ T9274] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 569.753009][ T9274] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 571.314955][T13268] Process accounting paused [ 571.350214][T13284] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input25 [ 571.808525][T13291] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1332'. [ 571.937722][T13297] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 572.002378][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 572.020253][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 572.965110][T13307] vhci_hcd: invalid port number 21 [ 573.045501][T13309] FAULT_INJECTION: forcing a failure. [ 573.045501][T13309] name fail_futex, interval 1, probability 0, space 0, times 0 [ 573.145092][T13309] CPU: 1 UID: 0 PID: 13309 Comm: syz.4.1337 Not tainted syzkaller #0 PREEMPT(full) [ 573.145125][T13309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 573.145152][T13309] Call Trace: [ 573.145159][T13309] [ 573.145167][T13309] dump_stack_lvl+0x16c/0x1f0 [ 573.145199][T13309] should_fail_ex+0x512/0x640 [ 573.145234][T13309] get_futex_key+0x1d0/0x1560 [ 573.145273][T13309] ? __pfx_get_futex_key+0x10/0x10 [ 573.145299][T13309] ? futex_private_hash_put+0x176/0x300 [ 573.145344][T13309] futex_wake+0xea/0x530 [ 573.145373][T13309] ? futex_wait+0x120/0x380 [ 573.145403][T13309] ? __pfx_futex_wait+0x10/0x10 [ 573.145434][T13309] ? __pfx_futex_wake+0x10/0x10 [ 573.145467][T13309] ? __lock_acquire+0x62e/0x1ce0 [ 573.145499][T13309] do_futex+0x1e3/0x350 [ 573.145525][T13309] ? __pfx_do_futex+0x10/0x10 [ 573.145552][T13309] ? find_held_lock+0x2b/0x80 [ 573.145575][T13309] __x64_sys_futex+0x1e0/0x4c0 [ 573.145602][T13309] ? __fget_files+0x20e/0x3c0 [ 573.145624][T13309] ? __pfx___x64_sys_futex+0x10/0x10 [ 573.145654][T13309] ? fdget+0x187/0x210 [ 573.145679][T13309] do_syscall_64+0xcd/0x490 [ 573.145708][T13309] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 573.145729][T13309] RIP: 0033:0x7f46ea38ebe9 [ 573.145744][T13309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 573.145764][T13309] RSP: 002b:00007f46eb1640e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 573.145783][T13309] RAX: ffffffffffffffda RBX: 00007f46ea5b5fa8 RCX: 00007f46ea38ebe9 [ 573.145796][T13309] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f46ea5b5fac [ 573.145808][T13309] RBP: 00007f46ea5b5fa0 R08: 00007f46eb165000 R09: 0000000000000000 [ 573.145821][T13309] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 573.145833][T13309] R13: 00007f46ea5b6038 R14: 00007ffd53e14a10 R15: 00007ffd53e14af8 [ 573.145857][T13309] [ 578.865683][T13327] Process accounting paused [ 579.387553][T13397] svc: failed to register nfsdv3 RPC service (errno 111). [ 579.522972][T13397] svc: failed to register nfsaclv3 RPC service (errno 111). [ 580.657133][T13418] aoe: can't write to that file. [ 581.047487][T13426] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 582.211647][T13431] FAULT_INJECTION: forcing a failure. [ 582.211647][T13431] name failslab, interval 1, probability 0, space 0, times 0 [ 582.382593][T13431] CPU: 1 UID: 0 PID: 13431 Comm: syz.2.1356 Not tainted syzkaller #0 PREEMPT(full) [ 582.382627][T13431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 582.382641][T13431] Call Trace: [ 582.382649][T13431] [ 582.382659][T13431] dump_stack_lvl+0x16c/0x1f0 [ 582.382696][T13431] should_fail_ex+0x512/0x640 [ 582.382731][T13431] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 582.382760][T13431] should_failslab+0xc2/0x120 [ 582.382793][T13431] __kmalloc_cache_noprof+0x6a/0x3e0 [ 582.382818][T13431] ? can_pernet_init+0xb7/0x370 [ 582.382849][T13431] ? __pfx_can_pernet_init+0x10/0x10 [ 582.382879][T13431] can_pernet_init+0xb7/0x370 [ 582.382909][T13431] ? __pfx_can_pernet_init+0x10/0x10 [ 582.382936][T13431] ops_init+0x1e2/0x5f0 [ 582.382974][T13431] setup_net+0x10f/0x380 [ 582.383005][T13431] ? lockdep_init_map_type+0x5c/0x280 [ 582.383040][T13431] ? __pfx_setup_net+0x10/0x10 [ 582.383076][T13431] ? debug_mutex_init+0x37/0x70 [ 582.383102][T13431] copy_net_ns+0x2a6/0x5f0 [ 582.383162][T13431] create_new_namespaces+0x3ea/0xa90 [ 582.383197][T13431] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 582.383245][T13431] ksys_unshare+0x45b/0xa40 [ 582.383280][T13431] ? __pfx_ksys_unshare+0x10/0x10 [ 582.383314][T13431] ? xfd_validate_state+0x61/0x180 [ 582.383359][T13431] __x64_sys_unshare+0x31/0x40 [ 582.383391][T13431] do_syscall_64+0xcd/0x490 [ 582.383426][T13431] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 582.383451][T13431] RIP: 0033:0x7f7a23f8ebe9 [ 582.383469][T13431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 582.383492][T13431] RSP: 002b:00007f7a24de5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 582.383515][T13431] RAX: ffffffffffffffda RBX: 00007f7a241b5fa0 RCX: 00007f7a23f8ebe9 [ 582.383530][T13431] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 582.383550][T13431] RBP: 00007f7a24011e19 R08: 0000000000000000 R09: 0000000000000000 [ 582.383564][T13431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 582.383578][T13431] R13: 00007f7a241b6038 R14: 00007f7a241b5fa0 R15: 00007ffcf8215ba8 [ 582.383608][T13431] [ 634.711708][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 634.720530][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 672.635520][ T51] Bluetooth: hci3: command 0x0406 tx timeout [ 696.151265][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 696.160066][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 727.506713][ T31] INFO: task syz-executor:5851 blocked for more than 143 seconds. [ 727.519231][ T31] Not tainted syzkaller #0 [ 727.524208][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 727.533992][ T31] task:syz-executor state:D stack:24024 pid:5851 tgid:5851 ppid:5850 task_flags:0x440100 flags:0x00004002 [ 727.552529][ T31] Call Trace: [ 727.555835][ T31] [ 727.559646][ T31] __schedule+0x1190/0x5de0 [ 727.564197][ T31] ? __lock_acquire+0x62e/0x1ce0 [ 727.571186][ T31] ? __pfx___schedule+0x10/0x10 [ 727.576070][ T31] ? find_held_lock+0x2b/0x80 [ 727.582110][ T31] ? schedule+0x2d7/0x3a0 [ 727.588457][ T31] schedule+0xe7/0x3a0 [ 727.592564][ T31] io_schedule+0xbf/0x130 [ 727.597343][ T31] bit_wait_io+0x15/0xe0 [ 727.601631][ T31] __wait_on_bit+0x65/0x180 [ 727.606174][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 727.614022][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 727.619713][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 727.625730][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 727.633664][ T31] do_get_write_access+0x93d/0x1320 [ 727.639162][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 727.645172][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 727.654391][ T31] ext4_reserve_inode_write+0x1be/0x340 [ 727.663301][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 727.670770][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 727.676235][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 727.682622][ T31] ? rcu_is_watching+0x12/0xc0 [ 727.690258][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 727.695948][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 727.702012][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 727.709724][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 727.715829][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 727.721202][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 727.728877][ T31] ext4_dirty_inode+0xd9/0x130 [ 727.733707][ T31] ? rcu_is_watching+0x12/0xc0 [ 727.739208][ T31] __mark_inode_dirty+0x1ee/0xe40 [ 727.744810][ T31] generic_update_time+0xcf/0xf0 [ 727.757217][ T31] file_update_time+0x17d/0x1c0 [ 727.762114][ T31] ext4_page_mkwrite+0x33d/0x1880 [ 727.772188][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 727.777926][ T31] ? find_held_lock+0x2b/0x80 [ 727.782622][ T31] ? find_held_lock+0x2b/0x80 [ 727.789958][ T31] do_page_mkwrite+0x174/0x380 [ 727.794757][ T31] do_wp_page+0xb10/0x4f00 [ 727.799706][ T31] ? __pfx_do_wp_page+0x10/0x10 [ 727.804588][ T31] ? do_raw_spin_lock+0x12c/0x2b0 [ 727.811659][ T31] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 727.817760][ T31] ? ___pte_offset_map+0x2ad/0x4f0 [ 727.822931][ T31] __handle_mm_fault+0x1b2d/0x2a50 [ 727.830230][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 727.835732][ T31] ? lock_vma_under_rcu+0x1eb/0x530 [ 727.841442][ T31] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 727.849290][ T31] ? rcu_is_watching+0x12/0xc0 [ 727.855652][ T31] handle_mm_fault+0x589/0xd10 [ 727.860701][ T31] ? __bpf_trace_exceptions+0x1/0x40 [ 727.866031][ T31] do_user_addr_fault+0x60c/0x1370 [ 727.873257][ T31] ? rcu_is_watching+0x12/0xc0 [ 727.881451][ T31] exc_page_fault+0x5c/0xb0 [ 727.886003][ T31] asm_exc_page_fault+0x26/0x30 [ 727.893890][ T31] RIP: 0033:0x7f554e068c55 [ 727.898617][ T31] RSP: 002b:00007ffd2ab44b20 EFLAGS: 00010206 [ 727.904725][ T31] RAX: 00007f554ae3fee0 RBX: 00007ffd2ab44c20 RCX: 0000000000000000 [ 727.915228][ T31] RDX: 00007f554ae3fedc RSI: 0000000000000008 RDI: 00007ffd2ab44c20 [ 727.924010][ T31] RBP: 00000000000003e6 R08: 0000000000000000 R09: 0000000000000000 [ 727.934086][ T31] R10: 00007ffd2ab44c00 R11: 0000000000000000 R12: 0000000000000000 [ 727.942529][ T31] R13: 0000000000000120 R14: fffffffffffffee0 R15: 0000000000000120 [ 727.952628][ T31] [ 727.957298][ T31] INFO: task syz.4.1360:13467 blocked for more than 143 seconds. [ 727.965028][ T31] Not tainted syzkaller #0 [ 727.972299][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 727.981212][ T31] task:syz.4.1360 state:D stack:26264 pid:13467 tgid:13467 ppid:12949 task_flags:0x440040 flags:0x00004004 [ 727.998887][ T31] Call Trace: [ 728.002186][ T31] [ 728.005122][ T31] __schedule+0x1190/0x5de0 [ 728.011370][ T31] ? __lock_acquire+0x62e/0x1ce0 [ 728.018307][ T31] ? __pfx___schedule+0x10/0x10 [ 728.023619][ T31] ? find_held_lock+0x2b/0x80 [ 728.029305][ T31] ? schedule+0x2d7/0x3a0 [ 728.033656][ T31] schedule+0xe7/0x3a0 [ 728.039196][ T31] io_schedule+0xbf/0x130 [ 728.043565][ T31] bit_wait_io+0x15/0xe0 [ 728.048761][ T31] __wait_on_bit+0x65/0x180 [ 728.053324][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 728.060794][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 728.066219][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 728.073211][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 728.080412][ T31] do_get_write_access+0x93d/0x1320 [ 728.085637][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 728.092620][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 728.102078][ T31] ext4_reserve_inode_write+0x1be/0x340 [ 728.110244][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 728.115746][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 728.123018][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 728.130007][ T31] ? rcu_is_watching+0x12/0xc0 [ 728.134797][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 728.141967][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 728.148057][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 728.153713][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 728.161896][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 728.167694][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 728.173113][ T31] ext4_dirty_inode+0xd9/0x130 [ 728.179449][ T31] ? rcu_is_watching+0x12/0xc0 [ 728.184257][ T31] __mark_inode_dirty+0x1ee/0xe40 [ 728.190682][ T31] generic_update_time+0xcf/0xf0 [ 728.197789][ T31] file_update_time+0x17d/0x1c0 [ 728.202671][ T31] ext4_page_mkwrite+0x33d/0x1880 [ 728.210318][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 728.215834][ T31] do_page_mkwrite+0x174/0x380 [ 728.223838][ T31] ? __pfx_filemap_map_pages+0x10/0x10 [ 728.230440][ T31] do_pte_missing+0x29d/0x3ba0 [ 728.235240][ T31] ? find_held_lock+0x2b/0x80 [ 728.241865][ T31] ? __handle_mm_fault+0x14fd/0x2a50 [ 728.247960][ T31] __handle_mm_fault+0x152a/0x2a50 [ 728.253139][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 728.260050][ T31] ? lock_vma_under_rcu+0x1eb/0x530 [ 728.267261][ T31] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 728.272846][ T31] handle_mm_fault+0x589/0xd10 [ 728.279091][ T31] ? __bpf_trace_exceptions+0x1/0x40 [ 728.284450][ T31] do_user_addr_fault+0x60c/0x1370 [ 728.290730][ T31] ? rcu_is_watching+0x12/0xc0 [ 728.295817][ T31] exc_page_fault+0x5c/0xb0 [ 728.303018][ T31] asm_exc_page_fault+0x26/0x30 [ 728.308672][ T31] RIP: 0033:0x7f46ea26ed6a [ 728.313136][ T31] RSP: 002b:00007ffd53e14b30 EFLAGS: 00010202 [ 728.322088][ T31] RAX: 0000001b2d516000 RBX: 00007f46eb0e5720 RCX: 0000001b2d515ff8 [ 728.333064][ T31] RDX: 0000001b2d124220 RSI: 0000000000000008 RDI: 00007f46eb0e5720 [ 728.342609][ T31] RBP: ffffffff8b8b30da R08: 00007f46ea5b6128 R09: 00007f46ea5a2000 [ 728.351551][ T31] R10: 00007f46e99fd008 R11: 0000000000000013 R12: 0000000000000013 [ 728.361103][ T31] R13: 00000000000000ee R14: ffffffff8b8b30b4 R15: 0000000000000109 [ 728.370999][ T31] ? mas_store_gfp+0x5d4/0x10b0 [ 728.375895][ T31] ? mas_store_gfp+0x5fa/0x10b0 [ 728.382255][ T31] [ 728.385482][ T31] INFO: task syz.2.1361:13472 blocked for more than 144 seconds. [ 728.394106][ T31] Not tainted syzkaller #0 [ 728.401121][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 728.410962][ T31] task:syz.2.1361 state:D stack:28216 pid:13472 tgid:13472 ppid:5867 task_flags:0x440040 flags:0x00004004 [ 728.424371][ T31] Call Trace: [ 728.430111][ T31] [ 728.433073][ T31] __schedule+0x1190/0x5de0 [ 728.440779][ T31] ? __lock_acquire+0x62e/0x1ce0 [ 728.445772][ T31] ? __pfx___schedule+0x10/0x10 [ 728.451589][ T31] ? find_held_lock+0x2b/0x80 [ 728.457735][ T31] ? schedule+0x2d7/0x3a0 [ 728.462094][ T31] schedule+0xe7/0x3a0 [ 728.471870][ T31] io_schedule+0xbf/0x130 [ 728.476253][ T31] bit_wait_io+0x15/0xe0 [ 728.481997][ T31] __wait_on_bit+0x65/0x180 [ 728.487314][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 728.492278][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 728.499187][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 728.505998][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 728.513346][ T31] do_get_write_access+0x93d/0x1320 [ 728.520317][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 728.527074][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 728.533621][ T31] ext4_reserve_inode_write+0x1be/0x340 [ 728.542659][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 728.551063][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 728.557851][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 728.563863][ T31] ? rcu_is_watching+0x12/0xc0 [ 728.570807][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 728.577794][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 728.583030][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 728.589753][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 728.595414][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 728.601881][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 728.608775][ T31] ext4_dirty_inode+0xd9/0x130 [ 728.613574][ T31] ? rcu_is_watching+0x12/0xc0 [ 728.619787][ T31] __mark_inode_dirty+0x1ee/0xe40 [ 728.624861][ T31] generic_update_time+0xcf/0xf0 [ 728.630917][ T31] file_update_time+0x17d/0x1c0 [ 728.637667][ T31] ext4_page_mkwrite+0x33d/0x1880 [ 728.642733][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 728.650599][ T31] ? do_wp_page+0x1aa7/0x4f00 [ 728.655313][ T31] do_page_mkwrite+0x174/0x380 [ 728.663998][ T31] ? __pfx_filemap_map_pages+0x10/0x10 [ 728.671354][ T31] do_pte_missing+0x29d/0x3ba0 [ 728.676141][ T31] ? find_held_lock+0x2b/0x80 [ 728.682390][ T31] ? __handle_mm_fault+0x14fd/0x2a50 [ 728.688542][ T31] __handle_mm_fault+0x152a/0x2a50 [ 728.693679][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 728.700545][ T31] ? lock_vma_under_rcu+0x1eb/0x530 [ 728.705766][ T31] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 728.713010][ T31] handle_mm_fault+0x589/0xd10 [ 728.719238][ T31] ? __bpf_trace_exceptions+0x1/0x40 [ 728.724568][ T31] do_user_addr_fault+0x60c/0x1370 [ 728.730684][ T31] ? rcu_is_watching+0x12/0xc0 [ 728.735482][ T31] exc_page_fault+0x5c/0xb0 [ 728.742404][ T31] asm_exc_page_fault+0x26/0x30 [ 728.748401][ T31] RIP: 0033:0x7f7a23e61051 [ 728.752839][ T31] RSP: 002b:00007ffcf8215c50 EFLAGS: 00010202 [ 728.761761][ T31] RAX: 0000001b32e64000 RBX: 00007f7a24ce5720 RCX: 0000000000000003 [ 728.773982][ T31] RDX: 0000001b32e63fff RSI: 0000000000000008 RDI: 00007f7a24ce5720 [ 728.783418][ T31] RBP: 00007f7a241b6038 R08: 0000000000000000 R09: 0000000000000000 [ 728.798666][ T31] R10: 00007f7a24ce5700 R11: 0000000000000000 R12: 00000000fffffc03 [ 728.806975][ T31] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 728.815750][ T31] [ 728.820766][ T31] INFO: task syz.1.1362:13473 blocked for more than 144 seconds. [ 728.828795][ T31] Not tainted syzkaller #0 [ 728.833823][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 728.844939][ T31] task:syz.1.1362 state:D stack:27784 pid:13473 tgid:13473 ppid:5865 task_flags:0x440040 flags:0x00004004 [ 728.858952][ T31] Call Trace: [ 728.862244][ T31] [ 728.865203][ T31] __schedule+0x1190/0x5de0 [ 728.871767][ T31] ? __lock_acquire+0x62e/0x1ce0 [ 728.881451][ T31] ? __pfx___schedule+0x10/0x10 [ 728.886541][ T31] ? find_held_lock+0x2b/0x80 [ 728.891235][ T31] ? schedule+0x2d7/0x3a0 [ 728.895580][ T31] schedule+0xe7/0x3a0 [ 728.901932][ T31] io_schedule+0xbf/0x130 [ 728.906498][ T31] bit_wait_io+0x15/0xe0 [ 728.910757][ T31] __wait_on_bit+0x65/0x180 [ 728.916006][ T31] ? __pfx_bit_wait_io+0x10/0x10 [ 728.923136][ T31] out_of_line_wait_on_bit+0xd9/0x110 [ 728.928757][ T31] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 728.934772][ T31] ? __pfx_wake_bit_function+0x10/0x10 [ 728.942693][ T31] do_get_write_access+0x93d/0x1320 [ 728.948258][ T31] jbd2_journal_get_write_access+0x1d6/0x280 [ 728.954259][ T31] __ext4_journal_get_write_access+0x6a/0x340 [ 728.962392][ T31] ext4_reserve_inode_write+0x1be/0x340 [ 728.968165][ T31] __ext4_mark_inode_dirty+0x197/0x870 [ 728.973667][ T31] ? trace_kmem_cache_alloc+0x28/0xc0 [ 728.983746][ T31] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 728.992135][ T31] ? rcu_is_watching+0x12/0xc0 [ 728.998785][ T31] ? trace_jbd2_handle_start+0x1a8/0x230 [ 729.004467][ T31] ? jbd2__journal_start+0xf6/0x6a0 [ 729.010122][ T31] ? __ext4_journal_start_sb+0x195/0x690 [ 729.024432][ T31] ? __ext4_journal_start_sb+0x19e/0x690 [ 729.031405][ T31] ? ext4_dirty_inode+0xa1/0x130 [ 729.038283][ T31] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 729.044147][ T31] ext4_dirty_inode+0xd9/0x130 [ 729.049213][ T31] ? rcu_is_watching+0x12/0xc0 [ 729.053992][ T31] __mark_inode_dirty+0x1ee/0xe40 [ 729.060990][ T31] generic_update_time+0xcf/0xf0 [ 729.065965][ T31] file_update_time+0x17d/0x1c0 [ 729.071186][ T31] ext4_page_mkwrite+0x33d/0x1880 [ 729.076245][ T31] ? __pfx_ext4_page_mkwrite+0x10/0x10 [ 729.084861][ T31] ? __pfx_filemap_map_pages+0x10/0x10 [ 729.092392][ T31] ? pte_alloc_one+0x2b6/0x3a0 [ 729.101572][ T31] do_page_mkwrite+0x174/0x380 [ 729.106654][ T31] ? __pfx_filemap_map_pages+0x10/0x10 [ 729.112146][ T31] do_pte_missing+0x29d/0x3ba0 [ 729.119752][ T31] ? __lock_acquire+0x62e/0x1ce0 [ 729.124719][ T31] __handle_mm_fault+0x152a/0x2a50 [ 729.130197][ T31] ? __pfx___handle_mm_fault+0x10/0x10 [ 729.135670][ T31] ? lock_vma_under_rcu+0x1eb/0x530 [ 729.142940][ T31] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 729.149116][ T31] handle_mm_fault+0x589/0xd10 [ 729.153895][ T31] ? __bpf_trace_exceptions+0x1/0x40 [ 729.161057][ T31] do_user_addr_fault+0x60c/0x1370 [ 729.166202][ T31] ? rcu_is_watching+0x12/0xc0 [ 729.171350][ T31] exc_page_fault+0x5c/0xb0 [ 729.175881][ T31] asm_exc_page_fault+0x26/0x30 [ 729.183793][ T31] RIP: 0033:0x7f245566ed6a [ 729.188710][ T31] RSP: 002b:00007ffc515c0f30 EFLAGS: 00010202 [ 729.194790][ T31] RAX: 0000001b33124000 RBX: 00007f24564e5720 RCX: 0000001b33123ff8 [ 729.206266][ T31] RDX: 00000000003ffde8 RSI: 00000000003ffde8 RDI: 00007f24564e5700 [ 729.216223][ T31] RBP: ffffffff82319db7 R08: 00007f24559b6038 R09: 00007f24559a2000 [ 729.226917][ T31] R10: 00007f24551ff008 R11: 0000000000000000 R12: 0000000000000000 [ 729.234905][ T31] R13: 0000000000000001 R14: ffffffff823194dd R15: 0000000000000001 [ 729.244280][ T31] ? __x64_sys_openat+0x6d/0x210 [ 729.250400][ T31] ? __ia32_compat_sys_openat+0x117/0x210 [ 729.256148][ T31] [ 729.260939][ T31] [ 729.260939][ T31] Showing all locks held in the system: [ 729.271616][ T31] 1 lock held by khungtaskd/31: [ 729.277932][ T31] #0: ffffffff8e5c10a0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0 [ 729.289572][ T31] 3 locks held by syz-executor/5851: [ 729.294865][ T31] #0: ffff888031c37088 (vm_lock){++++}-{0:0}, at: lock_vma_under_rcu+0x11b/0x530 [ 729.306181][ T31] #1: ffff88814d9e8520 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x174/0x380 [ 729.321138][ T31] #2: ffff88814d9ec950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 729.331694][ T31] 3 locks held by syz.4.1360/13467: [ 729.338844][ T31] #0: ffff88807ad9b588 (vm_lock){++++}-{0:0}, at: lock_vma_under_rcu+0x11b/0x530 [ 729.348482][ T31] #1: ffff88814d9e8520 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x174/0x380 [ 729.360373][ T31] #2: ffff88814d9ec950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 729.370238][ T31] 3 locks held by syz.2.1361/13472: [ 729.375439][ T31] #0: ffff88806bb72088 (vm_lock){++++}-{0:0}, at: lock_vma_under_rcu+0x11b/0x530 [ 729.388042][ T31] #1: ffff88814d9e8520 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x174/0x380 [ 729.398908][ T31] #2: ffff88814d9ec950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 729.409389][ T31] 3 locks held by syz.1.1362/13473: [ 729.414591][ T31] #0: ffff888034ca9088 (vm_lock){++++}-{0:0}, at: lock_vma_under_rcu+0x11b/0x530 [ 729.425929][ T31] #1: ffff88814d9e8520 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x174/0x380 [ 729.441515][ T31] #2: ffff88814d9ec950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 729.452324][ T31] [ 729.455100][ T31] ============================================= [ 729.455100][ T31] [ 729.465161][ T31] NMI backtrace for cpu 1 [ 729.465177][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) [ 729.465202][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 729.465215][ T31] Call Trace: [ 729.465223][ T31] [ 729.465232][ T31] dump_stack_lvl+0x116/0x1f0 [ 729.465265][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 729.465289][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 729.465323][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 729.465349][ T31] watchdog+0xf0e/0x1260 [ 729.465387][ T31] ? __pfx_watchdog+0x10/0x10 [ 729.465418][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 729.465469][ T31] ? __kthread_parkme+0x19e/0x250 [ 729.465500][ T31] ? __pfx_watchdog+0x10/0x10 [ 729.465533][ T31] kthread+0x3c5/0x780 [ 729.465567][ T31] ? __pfx_kthread+0x10/0x10 [ 729.465602][ T31] ? rcu_is_watching+0x12/0xc0 [ 729.465627][ T31] ? __pfx_kthread+0x10/0x10 [ 729.465661][ T31] ret_from_fork+0x5d4/0x6f0 [ 729.465696][ T31] ? __pfx_kthread+0x10/0x10 [ 729.465731][ T31] ret_from_fork_asm+0x1a/0x30 [ 729.465771][ T31] [ 729.465786][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 729.582435][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) [ 729.591639][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 729.601712][ T31] Call Trace: [ 729.605026][ T31] [ 729.608010][ T31] dump_stack_lvl+0x3d/0x1f0 [ 729.612635][ T31] vpanic+0x6e8/0x7a0 [ 729.616642][ T31] ? __pfx_vpanic+0x10/0x10 [ 729.621170][ T31] panic+0xca/0xd0 [ 729.624913][ T31] ? __pfx_panic+0x10/0x10 [ 729.629359][ T31] ? nmi_backtrace_stall_check+0x6e/0x540 [ 729.635102][ T31] ? irq_work_queue+0xce/0x100 [ 729.639901][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 729.645910][ T31] ? __wake_up_klogd.part.0+0x99/0xf0 [ 729.651329][ T31] ? watchdog+0xd78/0x1260 [ 729.655905][ T31] ? watchdog+0xd6b/0x1260 [ 729.660362][ T31] watchdog+0xd89/0x1260 [ 729.664635][ T31] ? __pfx_watchdog+0x10/0x10 [ 729.669330][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 729.674547][ T31] ? __kthread_parkme+0x19e/0x250 [ 729.679591][ T31] ? __pfx_watchdog+0x10/0x10 [ 729.684288][ T31] kthread+0x3c5/0x780 [ 729.688372][ T31] ? __pfx_kthread+0x10/0x10 [ 729.692985][ T31] ? rcu_is_watching+0x12/0xc0 [ 729.697763][ T31] ? __pfx_kthread+0x10/0x10 [ 729.702375][ T31] ret_from_fork+0x5d4/0x6f0 [ 729.706987][ T31] ? __pfx_kthread+0x10/0x10 [ 729.711600][ T31] ret_from_fork_asm+0x1a/0x30 [ 729.716422][ T31] [ 729.719519][ T31] Kernel Offset: disabled [ 729.723852][ T31] Rebooting in 86400 seconds..