last executing test programs: 10.175299677s ago: executing program 0 (id=1459): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) ioctl$auto(0x3, 0x80000541b, 0x38) r0 = socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC0\x00', 0x802, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_LIST(r1, 0xc0505510, &(0x7f0000000080)={0x3, 0x83ba, 0x1c2, @inferred, 0x0, "9d4f8ef3f785aae5a5ff69c61ed549546c1eb9f7fe26fe876d9c9dd52e80eb5a7b5bdce62f726f94ddea3b8d240000007e00"}) setsockopt$auto(0x3, 0x10000000084, 0x7c, 0x0, 0x8) getsockopt$auto(r0, 0x84, 0x71, 0x0, &(0x7f0000000280)=0x22a) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/wireless\x00', 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000f40)={'batadv0\x00'}) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cec8\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) madvise$auto(0x0, 0x240007, 0x19) madvise$auto(0x0, 0x2003f2, 0x1) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r3 = pidfd_open$auto(0x1, 0x0) setns(r3, 0x60020000) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cec26\x00', 0xc0000, 0x0) 7.693270122s ago: executing program 0 (id=1472): r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r0, 0x5522, 0xf15) mmap$auto(0x0, 0x2020009, 0xa, 0x800000000000ebc, r0, 0x1000000000008000) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) mmap$auto(0x0, 0xd561, 0x10000000000df, 0xeb2, 0xffffffffffffffff, 0x8000) timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x26b, 0x4}, {0x0, 0x83}}, 0x0) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/netfilter/nf_log/6\x00', 0xa0202, 0x0) sendfile$auto(r2, r2, 0x0, 0x7) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) socket(0xa, 0x801, 0x84) setsockopt$auto(0x3, 0x0, 0x82, 0x0, 0x8) close_range$auto(0x2, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) select$auto(0x100, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x7, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x61, 0x80000000, 0x0, 0x6d3f, 0x8001, 0xb, 0xfffffffffffffffe]}, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x800000002, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendto$auto(0x4, 0x0, 0xff, 0x6, 0x0, 0xe) readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x1}, 0x7) mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x3, 0x2) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x38}}, 0x54) capget$auto(0x0, 0x0) setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28) 6.493448623s ago: executing program 0 (id=1469): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x42, r0, 0x70f9, 0xe) unshare$auto(0x40000080) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto_TIOCSTI2(r1, 0x5412, &(0x7f0000000040)="158f4a2b") r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0) read$auto(r2, 0x0, 0x9) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) unshare$auto(0x40000080) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10044010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop10/mq/0/nr_tags\x00', 0x20000, 0x0) mount_setattr$auto(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000640)={0x10002c, 0x7f, 0x0, @inferred=r4}, 0x287) bpf$auto(0x0, 0x0, 0x10) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) syz_open_procfs$namespace(0x0, &(0x7f0000000200)='ns/net\x00') syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/net\x00') sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 6.492819853s ago: executing program 1 (id=1470): r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000880)='/dev/input/event0\x00', 0x40100, 0x0) ioctl$auto(r0, 0x8000451b, 0xffffffffffffffff) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x0, 0x0) r2 = openat$auto_o2hb_debug_fops_heartbeat(0xffffffffffffff9c, 0x0, 0x200, 0x0) mmap$auto(0x0, 0x2020009, 0x40003, 0xeb1, r2, 0x8000) close_range$auto(r1, r0, 0x5) mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000) mseal$auto(0x0, 0x7dda, 0x0) madvise$auto(0x0, 0x7, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000040)=""/206, 0xce) mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8100) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000013c0)='/sys/module/kvm/parameters/pi_inject_timer\x00', 0x10b142, 0x0) sendfile$auto(r3, r3, 0x0, 0x200) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x8000) r4 = socket(0x29, 0x2, 0x0) sendmmsg$auto(r4, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x400, 0x0) madvise$auto(0xd3b, 0x4, 0x4) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x108002, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xc}, 0x1) r5 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000040), 0x42001, 0x0) ioctl$auto(r5, 0xc05c5340, 0x38) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty19\x00', 0x800, 0x0) ioctl$auto(r6, 0x4b62, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$auto(0x3, 0xc00caee0, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) 6.146058895s ago: executing program 1 (id=1471): mmap$auto(0x0, 0x400005, 0xe2, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) r0 = ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$auto_KVM_GET_MSRS(r0, 0x4400ae8f, &(0x7f0000000040)={0xe1, 0x0, [{0xa4a, 0x1, 0x100}]}) mmap$auto(0x0, 0x4, 0xdf, 0x9b7f, 0x2, 0x200000000000007) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=0xffffffffffffffff, @ANYBLOB="01"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) recvmmsg$auto(0x3, 0x0, 0x10000, 0x68, 0x0) mq_notify$auto(0x4, &(0x7f0000000040)={@sival_ptr=0x0, @inferred, 0x1, @_tid}) sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0}, 0x80) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000000c0)={{0x0, 0x6, 0x0, 0xa7, &(0x7f0000000040), 0x8001, 0x9}, 0x8}, 0x1, 0x9) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0xff, 0x0, 0x7, 0x5}, 0xed7138c}, 0x1, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) ioctl$auto_BLKFLSBUF(0xffffffffffffffff, 0x1261, 0x0) mprotect$auto(0x1000, 0x8, 0x4) mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, 0x602, 0x300000000000) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x15, 0x5, 0x0) rt_sigsuspend$auto(0x0, 0x8) r3 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r3, 0x29, 0xb, 0x0, 0x0) io_uring_setup$auto(0x1d48, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="44000c00e61611886ddba2ebc6692048332cd0cd54dadb0c58e3d6b8e8c7047d71", @ANYRESDEC=r2, @ANYRES64=0x0], 0x44}, 0x1, 0x0, 0x0, 0x20000000}, 0x20044000) r4 = socket(0x10, 0x2, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(r4, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01020000"], 0x14}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040804) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB="c99cd456", @ANYBLOB="00e693fabeb4780fd073995ffcfb8bdf775061bf320fdc6f776d5d1682db53124f4214300400000000000000a688d9c3110ea801f1a41412d011ed52b2237293edab723f334ec2408c9dd9e5e240f38549d58fc1f93800000000"], 0x1ac}, 0x1, 0x0, 0x0, 0x8043}, 0x40000) sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) socket$nl_generic(0x10, 0x3, 0x10) 5.783158871s ago: executing program 3 (id=1474): mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0xa, 0x0) io_uring_setup$auto(0x6, 0x0) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x169000, 0x0) ioctl$auto(r0, 0xc040564a, r0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x5) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x180483, 0x0) unshare$auto(0x40000080) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) gettid() r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) ioctl$auto(r2, 0xc0104d08, r2) socket(0x11, 0x3, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bus/usb/034/001\x00', 0x20882, 0x0) ioctl$auto_USBDEVFS_CONTROL(r3, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x18, 0x2006, 0x7fa, 0x10007fb, &(0x7f0000000080)="4e9358f767ee321e4c8af0d757bf39cc8f4c267c06a1ce98810a2db86bbbc85800"/56}) openat$auto_tk_debug_sleep_time_fops_(0xffffffffffffff9c, 0x0, 0x0, 0x0) rt_sigqueueinfo$auto(0x0, 0x20000009, &(0x7f00000000c0)={@_si_pad}) shmget$auto(0x8, 0x10565, 0x7ff) shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa) shmctl$auto(0x0, 0x0, 0xfffffffffffffffd) shmat$auto(0x0, &(0x7f0000000000)='(\x00', 0xfffffffb) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev6\x00', 0x169000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) kexec_load$auto(0x5, 0x2, 0x0, 0x4) msgctl$auto_MSG_STAT(0x2, 0xb, &(0x7f00000002c0)={{0x4, 0x0, 0x0, 0x9, 0x5, 0xffffff68, 0x4}, &(0x7f00000001c0)=0x9, &(0x7f0000000200)=0x8, 0x10, 0x7, 0x3, 0x46, 0x7, 0x6, 0x9f5, 0x22f3, @raw=0xffff7fff, @raw=0x64}) setresuid$auto(r4, 0x0, r4) 5.679600467s ago: executing program 2 (id=1475): openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x2, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socket(0x23, 0x2, 0x0) shmctl$auto_SHM_INFO(0xfffffff8, 0xe, 0x0) ioctl$auto(r0, 0x89ef, 0x74) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) readv$auto(0x4, &(0x7f0000000100)={0x0, 0x1000}, 0x8) bpf$auto(0x0, 0x0, 0x6f3) mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) write$auto(0x3, 0x0, 0xfdef) shutdown$auto(0x200000003, 0x2) write$auto(0xca, &(0x7f00000001c0)='\x04\x13\xac\x04\x00\x00\x00\x00\x00\x00\x00\x01\n\xdc\x10\x00\x00\xef\xab\xe1ME:\xab \x87|\xe0Z\x1b\x9eZ\xa8\xff\x92+\xc9\x9fs\xbf\xd8\f\x00\x00\x00\xa5V\b\xf1Ne\xc6l\xd0\xdd7\x96gf\xb2\xa0\xf2cN\x8b\x95\xeb\xf3(\x9eM-\xdc\x84N\xc3\tts%\xe9\xbf<\xf1\xdav\xe0n\x04\xb33\x97\xd5\xb4\x02\x94B\xbb\x995\x1e\xf7@\xd8\xca\x8d\a0 \xfa\x87V\xeb1\xe4M%\xdd\xfd\xf6\x8d\xb4\xc7\x9b\x9d\xf5\xd9^\xcdL@\x0f\xd4\x15F,\xc1\xd1i\xa4f/{\xfa\xd5\n\xe1\x95l[\x91\xbfX\xea2\x1b\x8a\x85\t\x00\x05m\x1e\x9b\xca\xfb\x81\x9d{\x19S\xff\xe4\xd2k\x1b/wJ&\x03+{\x84R\xa8\x92\xad\xec\x1b\xb1\xe9\xa7XUo\x93\xd5\xfb\x94\xc4\xdf\x8e\xdd\x97\xfc\x00\x13\xd6\x80g\x7fR;\x88\xf7bm\x8f\xb5\x89\x1a\xb63\x98\xaa\xcc\xbf\x94\xbf#u\xb9', 0x2b) socket(0xa, 0x1, 0x84) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x80000, 0x0) close_range$auto(0x2, 0xa, 0x0) readv$auto(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x40}, 0xa) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0) r2 = ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/rpc/nfsd.fh/channel\x00', 0x8f3b7a51b8063981, 0x0) write$auto(r3, 0x0, 0x8) ioctl$auto_KVM_GET_MSRS(r2, 0x4068aea3, &(0x7f0000000040)={0xbc}) 4.595326115s ago: executing program 0 (id=1476): openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0) r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/security/tomoyo/manager\x00', 0xc0201, 0x0) write$auto_tomoyo_operations_securityfs_if(r1, &(0x7f00000000c0)="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", 0x119) r2 = prctl$auto_PR_SYS_DISPATCH_ON(0x1000, 0x1, 0xffffffffffffffff, 0x4, 0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) kexec_load$auto(0x200000000007, 0x1, 0x0, 0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS1\x00', 0x101e81, 0x0) mmap$auto(0x0, 0x400008, 0xdc, 0x9b72, 0x2, 0x800008000) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x0, 0x0) r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x4ad00, 0x0) r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/controlC2\x00', 0x80, 0x0) timerfd_create$auto_CLOCK_BOOTTIME_ALARM(0x9, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto(r5, 0xc10c5541, r4) ioctl$auto_FUSE_DEV_IOC_CLONE(0xffffffffffffffff, 0xe503, 0x0) r6 = epoll_create$auto(0x3e) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_ALLOC(r2, 0x7a8, 0x0) epoll_ctl$auto(r6, 0x1, 0x8000000000000000, 0x0) r7 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f00000008c0), 0x400, 0x0) read$auto_urandom_fops_random(r7, 0x0, 0x0) mq_notify$auto(r2, &(0x7f0000000340)={@sival_ptr=&(0x7f0000000240)="ddbacadc4fa753064a4aa71d081e0078027d97a88a959d8cb9a33ad9a7fe65b703f4b0c88a653b143296d8112e9e05d73b053b2d348db0ed4dd4214b21fd8e0452a56a1fa863f219061f7f132083b9476b547288b2e964cee16ed9b9e04bcf3ada67dd861396240e9bb75a54beeb38ac63566eb9cd7001dcefd8b262b15d4bcd173d5391c6ccb62fb44bc0413b72cd63ce9b55932fbb2bb95388cd2abd0d09a9f90a68e3decb88389a90cc4f596adcf065e2df178412b5a188aa6ae563817ff7890c02151daa0c7415", @raw=0x6, 0x5}) r8 = epoll_create$auto(0x8800001) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bus/usb/021/001\x00', 0xa901, 0x0) epoll_ctl$auto(r8, 0x1, r0, 0x0) 4.201965709s ago: executing program 1 (id=1477): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0x8, 0x0) shmctl$auto(0x8, 0xff, &(0x7f00000011c0)={{0xd9, 0x0, 0xee01, 0x6, 0x800, 0x5, 0xfffa}, 0x90000000, 0x0, 0x3, 0x6, @raw=0xdc7, @inferred=0xffffffffffffffff, 0x3, 0x0, 0x0, &(0x7f00000001c0)="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"}) mkdir$auto(&(0x7f0000000080)='./file0\x00', 0x1) rmdir$auto(&(0x7f0000000280)='./file0\x00') r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r1, 0xfffffffffffff000, 0x2) r2 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0) landlock_add_rule$auto(r1, 0x1, 0x0, 0x0) ioctl$auto_BTRFS_IOC_RESIZE(r2, 0x50009403, &(0x7f0000001240)={@inferred=r0, "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"}) write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d399b5b", 0xfdef) prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0) prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0) madvise$auto(0x110c230000, 0x8031ca, 0x9) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0xa, 0x15) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1500f9"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 4.201761181s ago: executing program 2 (id=1478): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x103041, 0x0) write$auto(r0, &(0x7f0000000080)='0\x00\xa6\xcc?\x91QU\x9dI\xda\x1b\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,\x14\n\x1c!o\x9e\xb0\xadT\xfbR\xa1Y\x94\x9b\x86\xc3\xdcf\t\x9f}V[8\x04\x13\x8f\xea#\xf8F\xbbOO]e[\xabxo\xd9\x90\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xed\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98j\xe3}\x10\xab\x04_\xcdd\x17\xe4\xcbA\xa5[\b\xb8T\x02tcfD\x91\xcaG\xdaag\xc9\x80\f\xc6P\xa4\xfb:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xa5\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0]V\x11\xcb\xdd\x81\xbe\xdeL~\xa2(\x1d\xa5Y\a\xc1\xe9(\x85R\x96\xe4\x86\\\x13\xa9\x1a&\x19\x8a9\x82\xf0\x83\f\xf7\xeb\x00\x00\x00\x00\x00\x00\x00\x00v\x92r0}, 0x8001) r2 = open_tree_attr$auto(r1, &(0x7f0000000100)='./file0\x00', 0xfffffffa, &(0x7f0000000140)={0x4, 0xa, 0x4, @inferred=r1}, 0xfff) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) r3 = socket(0x11, 0x2, 0x9) ioctl$auto(r3, 0x8910, 0x24) r4 = socket(0x29, 0x2, 0x0) ioctl$auto(r4, 0x89a1, 0x24) unshare$auto(0x20000080) syz_clone(0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) waitid$auto_P_PGID(0x2, 0x0, 0x0, 0x6, 0x0) setsockopt$auto(r2, 0x29, 0x44, 0x0, 0x200568) socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000200)={{@raw=0x7, 0x2, 0xffffffff, 0x480008, "3112d58500a8b47148e22af9ffb683dbede3d0bf828bbf100000e5e2f96ee50484b0755015e48d00", @raw=0xfffffffe}, 0x5c8a, 0x10000005, 0x4, @raw=0x2, @integer={0x5, 0x800, 0x5}, "7a9fc199a16a2311eacf2fc7ae1dc378dc3e8090d70925450ece0bb32777702b07550d000000000000000000ebff0000000000000059a200"}) rt_sigqueueinfo$auto(0x0, 0x4, &(0x7f0000000000)={@siginfo_0_0={0x200, 0x5, 0x5, @_sigsys={0x0, 0x9, 0x2}}}) r5 = socket(0x11, 0x3, 0x9) sendmmsg$auto(r5, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200), 0xf}, 0x7, 0x0, 0x7, 0xe}, 0x5}, 0x1, 0x101) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) write$auto(0x3, 0x0, 0xfffffdef) process_madvise$auto_PIDFD_SELF_THREAD(0xffffffffffffd8f0, &(0x7f00000003c0)={&(0x7f0000000340)="b225666fb534b0af309bd75800b4a4194af003b703f2b37cab743ce404c0953b3b389995587b39ce2a8629144457994539304e4d463ecb030768d7c8ba21d82a34dc", 0x3035208f}, 0xffffffffffffffff, 0x7, 0x7) close_range$auto(0x2, 0xa, 0x0) 4.050063911s ago: executing program 3 (id=1480): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), r0) sendmsg$auto_NL802154_CMD_GET_SEC_KEY(r0, &(0x7f0000000140)={0x0, 0x9e, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r1, 0x2474a7d9180cffa3, 0x70bd2d, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x40040}, 0x40c0) sendmsg$auto_NL802154_CMD_NEW_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x20, r1, 0x800, 0x70bd2b, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x7}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0xffffffffffffffff, 0x8000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000001140)=""/4093, 0xffd) io_uring_setup$auto(0x1, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) openat$auto_rfkill_fops_core(0xffffffffffffff9c, 0x0, 0x200080, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x4) close_range$auto(0x2, 0x8, 0x0) mremap$auto(0x9, 0x3ff, 0x5d, 0x80000000, 0x100) clock_gettime$auto(0x10, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS2\x00', 0x101e81, 0x0) socket(0xa, 0x1, 0x84) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) close_range$auto(0x0, 0xffffeffe, 0x2) socket(0x2, 0x801, 0x106) pipe$auto(0x0) unshare$auto(0x40000080) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) sendmmsg$auto(0x3, 0x0, 0xffffffff, 0xb00) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) 3.628055443s ago: executing program 1 (id=1481): preadv$auto(0xffffffffffffffff, 0x0, 0x7, 0x7, 0x402) madvise$auto(0x110c230000, 0x8031ca, 0x9) read$auto_ptdump_fops_(0xffffffffffffffff, 0x0, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, 0xffffffffffffffff, 0x402) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) mmap$auto(0x0, 0xd561, 0x10000000000df, 0xeb2, 0xffffffffffffffff, 0x8000) timer_create$auto(0x2, 0x0, 0x0) timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x26b, 0x4}, {0x0, 0x83}}, 0x0) mmap$auto(0x0, 0x20006, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0xc, 0x0) io_uring_setup$auto(0x40, &(0x7f00000001c0)={0x1200, 0x5, 0x10000, 0x9, 0x5b77b906, 0x0, 0xffffffffffffffff, [0x70824dd3, 0xe5d, 0x5], {0x8001, 0x38, 0x9, 0x4, 0x4, 0x3, 0x83ff, 0x3, 0x100000000000ffff}, {0x20000000, 0x9, 0x7, 0x2, 0x2, 0xffff13a7, 0x0, 0x449e, 0x1}}) r2 = socket(0x11, 0x80003, 0x300) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan1\x00'}) setsockopt$auto(r2, 0x107, 0xf, 0x0, 0x6) capset$auto(0x0, &(0x7f0000000000)={0x2, 0xe, 0x1ff}) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200), 0x7}, 0x5, 0x0, 0x5, 0x1}, 0x5}, 0x4, 0x100) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/netfilter/nf_log/6\x00', 0xa0202, 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r4, &(0x7f0000000000)='//\xf2\x00', 0x80000000) r5 = pidfd_open$auto(0x1, 0x0) setns(r1, 0x60020000) fspick$auto(r5, 0x0, 0x0) 2.355011033s ago: executing program 2 (id=1482): getpeername$auto(0x3, 0x0, 0x0) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0xa, 0x0) io_uring_setup$auto(0x6, 0x0) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x169000, 0x0) ioctl$auto(r0, 0xc040564a, r0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x5) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x180483, 0x0) unshare$auto(0x40000080) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) gettid() ioctl$auto(0xffffffffffffffff, 0xc0104d08, 0xffffffffffffffff) socket(0x11, 0x3, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bus/usb/034/001\x00', 0x20882, 0x0) ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x18, 0x2006, 0x7fa, 0x10007fb, &(0x7f0000000080)="4e9358f767ee321e4c8af0d757bf39cc8f4c267c06a1ce98810a2db86bbbc85800"/56}) openat$auto_tk_debug_sleep_time_fops_(0xffffffffffffff9c, 0x0, 0x0, 0x0) rt_sigqueueinfo$auto(0x0, 0x20000009, &(0x7f00000000c0)={@_si_pad}) shmget$auto(0x8, 0x10565, 0x7ff) shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa) shmctl$auto(0x0, 0x0, 0xfffffffffffffffd) shmat$auto(0x0, &(0x7f0000000000)='(\x00', 0xfffffffb) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev6\x00', 0x169000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) kexec_load$auto(0x5, 0x2, 0x0, 0x4) msgctl$auto_MSG_STAT(0x2, 0xb, &(0x7f00000002c0)={{0x4, 0x0, 0x0, 0x9, 0x5, 0xffffff68, 0x4}, &(0x7f00000001c0)=0x9, &(0x7f0000000200)=0x8, 0x10, 0x7, 0x3, 0x46, 0x7, 0x6, 0x9f5, 0x22f3, @raw=0xffff7fff, @raw=0x64}) setresuid$auto(r3, 0x0, r3) 2.35481575s ago: executing program 3 (id=1483): r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000880)='/dev/input/event0\x00', 0x40100, 0x0) ioctl$auto(r0, 0x8000451b, 0xffffffffffffffff) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x0, 0x0) r2 = openat$auto_o2hb_debug_fops_heartbeat(0xffffffffffffff9c, 0x0, 0x200, 0x0) mmap$auto(0x0, 0x2020009, 0x40003, 0xeb1, r2, 0x8000) close_range$auto(r1, r0, 0x5) mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000) mseal$auto(0x0, 0x7dda, 0x0) madvise$auto(0x0, 0x7, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000040)=""/206, 0xce) mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8100) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000013c0)='/sys/module/kvm/parameters/pi_inject_timer\x00', 0x10b142, 0x0) sendfile$auto(r3, r3, 0x0, 0x200) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x8000) r4 = socket(0x29, 0x2, 0x0) sendmmsg$auto(r4, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x400, 0x0) madvise$auto(0xd3b, 0x4, 0x4) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x108002, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xc}, 0x1) r5 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000040), 0x42001, 0x0) ioctl$auto(r5, 0xc05c5340, 0x38) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty19\x00', 0x800, 0x0) ioctl$auto(r6, 0x4b62, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$auto(0x3, 0xc00caee0, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) 2.354028196s ago: executing program 0 (id=1490): mmap$auto(0x0, 0x400005, 0xe2, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) r0 = ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$auto_KVM_GET_MSRS(r0, 0x4400ae8f, &(0x7f0000000040)={0xe1, 0x0, [{0xa4a, 0x1, 0x100}]}) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20008010}, 0x400d0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x34000, &(0x7f00000002c0)={0x0, 0xffeb}, 0x1, 0x0, 0x5, 0x7}, 0x8}, 0xffffffff, 0xb00) ioctl$auto_BLKFLSBUF(0xffffffffffffffff, 0x1261, 0x0) mprotect$auto(0x1000, 0x401000, 0x4) mmap$auto(0x4, 0xa00006, 0x1, 0x100000000040eb1, 0x602, 0x300000000003) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket(0x15, 0x5, 0x0) rt_sigsuspend$auto(0x0, 0x8) r2 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r2, 0x29, 0xb, 0x0, 0x0) io_uring_setup$auto(0x1d48, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16, @ANYBLOB="000126bd7000fbdbdf2502"], 0x44}, 0x1, 0x0, 0x0, 0x20000000}, 0x20044000) r3 = socket(0x10, 0x2, 0x0) setsockopt$auto_SO_NOFCS(r1, 0x10004, 0x2b, &(0x7f0000000000)='+%+]\x00', 0x7) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="01020000"], 0x14}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040804) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='R'], 0x1ac}}, 0x40000) sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 1.390751107s ago: executing program 1 (id=1484): r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) setsockopt$auto(r0, 0x110, 0x5, 0x0, 0x8000) ioctl$auto(0xffffffffffffffff, 0x800064c1, 0xffffffffffffffff) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x9) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x481, 0x0) open(&(0x7f00000002c0)='./file0\x00', 0x40a00, 0x1c7) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0) r2 = pidfd_open$auto(0x1, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_ADD_RXSC(r3, &(0x7f0000001340)={0x0, 0x0, &(0x7f0000001300)={&(0x7f0000000000)=ANY=[@ANYBLOB="0800d9ff", @ANYRES16=r4, @ANYBLOB="010025bd7000fedbdf2501000000"], 0x14}, 0x1, 0x0, 0x0, 0x40b4ff741f26f506}, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x1fe, 0xb9, 0x9, 0xfffffffffffffffd, 0x948d, 0x1ff, 0x1, 0x8, 0x8003, 0x65, 0x8000001f, 0x10000001002, 0x100000000006d41, 0x7, 0x1, 0x9]}, 0x0) select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x3, 0x6, 0x7, 0x4, 0x0, 0x4000000000003, 0x4303, 0x1, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x3, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r5 = socket(0xa, 0x3, 0x3b) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x0, 0x5, 0x0) getsockopt$auto_SO_RCVPRIORITY(r5, 0xb, 0x52, &(0x7f0000000140)='!:)\xc9\'+:\x00', &(0x7f0000000180)=0x7) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000020c0), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r6, &(0x7f00000031c0)={0x0, 0x0, &(0x7f0000003180)={&(0x7f0000002100)=ANY=[@ANYBLOB="60100000", @ANYRES16=r7, @ANYBLOB="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"], 0x1060}, 0x1, 0x0, 0x0, 0x8000}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0xe3, 0x10, r2, 0x6f4) socketpair$auto(0x1b, 0x4, 0x8000000000000000, 0x0) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x4, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) 1.348042836s ago: executing program 3 (id=1485): r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000880)='/dev/input/event0\x00', 0x40100, 0x0) ioctl$auto(r0, 0x8000451b, 0xffffffffffffffff) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x0, 0x0) r2 = openat$auto_o2hb_debug_fops_heartbeat(0xffffffffffffff9c, 0x0, 0x200, 0x0) mmap$auto(0x0, 0x2020009, 0x40003, 0xeb1, r2, 0x8000) close_range$auto(r1, r0, 0x5) mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000) mseal$auto(0x0, 0x7dda, 0x0) madvise$auto(0x0, 0x7, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000040)=""/206, 0xce) mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8100) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000013c0)='/sys/module/kvm/parameters/pi_inject_timer\x00', 0x10b142, 0x0) sendfile$auto(r3, r3, 0x0, 0x200) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x8000) r4 = socket(0x29, 0x2, 0x0) sendmmsg$auto(r4, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x400, 0x0) madvise$auto(0xd3b, 0x4, 0x4) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x108002, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xc}, 0x1) r5 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000040), 0x42001, 0x0) ioctl$auto(r5, 0xc05c5340, 0x38) (fail_nth: 1) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty19\x00', 0x800, 0x0) ioctl$auto(r6, 0x4b62, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$auto(0x3, 0xc00caee0, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) 1.054782227s ago: executing program 3 (id=1486): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/controlC2\x00', 0x8aa00, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) mmap$auto(0x0, 0x6, 0xe0, 0x9b72, 0x2, 0x8002) r0 = socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xffffffffffffffff, 0xfffffffffffffffa, 0x108000) init_module$auto(0x0, 0xffff9, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) waitid$auto(0xa, 0xffffffffffffffff, 0x0, 0x1000004, &(0x7f0000000080)={{0x20000009, 0x4}, {0x80000000, 0xfffffffffffffff9}, 0x3fc, 0x281, 0x8000000000000002, 0xffffffffffffffff, 0x7f, 0x9, 0x1, 0xa, 0x7, 0x6, 0x2, 0x6, 0x3, 0x12}) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/ip6_tables_matches\x00', 0x20000, 0x0) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0x20000001005}, 0x1, &(0x7f0000000040)={&(0x7f0000000080), 0xffffffff}, 0x4, 0x0) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/asound/card1/pcm1c/sub2/xrun_injection\x00', 0x8a200, 0x0) pread64$auto(r3, &(0x7f0000000540)='veth1\x00\xe0,\x17\xa0\xf7\x89Pl\x84K?\x01\x84\xa1i\xe00\x81p\xa0U \f\xdbP`:\xe2\'\xa7\xbf\xbd\x04\x18\xad\x90I^\x99M\xe0W\x14\x11\xf4\xeb\x90:\v\xc5\x13*\xfe\x90\xb1\xa9O\xa5\x05\xaa\x8fTi\xd6\x88Q\xda\xca', 0x200000000005, 0xa) mmap$auto(0x3, 0x2, 0x4000000000df, 0xeb1, 0x401, 0x6) connect$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x4003, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/pci0000:00/0000:00:03.0/resource1\x00', 0x0, 0x0) mmap$auto(0x400000000, 0x4, 0x7ffffffc, 0x8000000008011, 0x3, 0x7ffffffffffc) mmap$auto(0x0, 0x402000a, 0xffffffffffffffff, 0x400eb1, 0x401, 0x7fffffffffffffff) mmap$auto(0x4, 0x8, 0xa, 0x40eb2, 0x401, 0x300000000000) mprotect$auto(0x978, 0x6, 0x0) recvmmsg$auto(r3, 0x0, 0x7, 0x20111, 0x0) io_uring_setup$auto(0xf0, &(0x7f0000000180)={0x6, 0x18, 0xd64, 0xc852, 0x6, 0x7, 0xffffffffffffffff, [0x1, 0x401, 0x1000], {0x7, 0x5, 0x1, 0x4, 0x95, 0xf4c, 0x7fff, 0xfffffffb, 0x65f29f6d}, {0x3, 0xadc, 0x10000, 0x0, 0x5, 0xffffffff, 0x1000, 0x400, 0x5}}) sendmmsg$auto(r3, 0x0, 0x11, 0x1) sendmsg$auto_HSR_C_GET_NODE_STATUS(r0, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x44400001}, 0xc, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYRESDEC=r3, @ANYRES32=r1], 0x2c}, 0x1, 0x0, 0x0, 0x4000090}, 0x20000000) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0x8, 0x4000000000df, 0x78, r1, 0x300000000000) write$auto(0xffffffffffffffff, &(0x7f0000000040)='Fm_\xbd\xc3!\x00', 0x7) mmap$auto(0x2002b, 0x4020029, 0x3, 0x7ffffffffffffffa, 0xffffffffffffffff, 0x200008000) socket(0x5, 0x1, 0x84) 436.804383ms ago: executing program 2 (id=1487): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x103041, 0x0) write$auto(r0, &(0x7f0000000080)='0\x00\xa6\xcc?\x91QU\x9dI\xda\x1b\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,\x14\n\x1c!o\x9e\xb0\xadT\xfbR\xa1Y\x94\x9b\x86\xc3\xdcf\t\x9f}V[8\x04\x13\x8f\xea#\xf8F\xbbOO]e[\xabxo\xd9\x90\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xed\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98j\xe3}\x10\xab\x04_\xcdd\x17\xe4\xcbA\xa5[\b\xb8T\x02tcfD\x91\xcaG\xdaag\xc9\x80\f\xc6P\xa4\xfb:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xa5\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0]V\x11\xcb\xdd\x81\xbe\xdeL~\xa2(\x1d\xa5Y\a\xc1\xe9(\x85R\x96\xe4\x86\\\x13\xa9\x1a&\x19\x8a9\x82\xf0\x83\f\xf7\xeb\x00\x00\x00\x00\x00\x00\x00\x00v\x920x0, 0x0, 0x9, 0x5, 0xffffff68, 0x4}, &(0x7f00000001c0)=0x9, &(0x7f0000000200)=0x8, 0x10, 0x7, 0x3, 0x46, 0x7, 0x6, 0x9f5, 0x22f3, @raw=0xffff7fff, @raw=0x64}) setresuid$auto(r4, 0x0, r4) 259.167642ms ago: executing program 1 (id=1489): r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000880)='/dev/input/event0\x00', 0x40100, 0x0) ioctl$auto(r0, 0x8000451b, 0xffffffffffffffff) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x0, 0x0) r2 = openat$auto_o2hb_debug_fops_heartbeat(0xffffffffffffff9c, 0x0, 0x1012c1, 0x0) mmap$auto(0x0, 0x2020009, 0x40003, 0xeb1, r2, 0x8000) close_range$auto(r1, r0, 0x5) mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000) mseal$auto(0x0, 0x7dda, 0x0) madvise$auto(0x0, 0x7, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000040)=""/206, 0xce) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, 0x0, 0x109441, 0x0) mmap$auto(0x9, 0x4, 0x404000000000df, 0x40eb1, r3, 0x300000000000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) socket(0x11, 0xa, 0x300) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x108002, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc0002, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2ab42, 0x0) socket$nl_generic(0x10, 0x3, 0x10) unshare$auto(0x8000400) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x4, 0x1000000000000bc3, 0x800, 0x3, 0xff, 0x10001, 0x400000000003, 0x3, 0xfffffffffffffffc, 0xfffffffffffffffe, 0x80000000, 0x9, 0xffffdfffffffff81, 0x4]}, 0x0) shutdown$auto(0x200000003, 0x1) r4 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x2, 0x0) read$auto(r4, 0x0, 0x39b8) mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8100) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000013c0)='/sys/module/kvm/parameters/pi_inject_timer\x00', 0x10b142, 0x0) 234.520191ms ago: executing program 2 (id=1491): mknod$auto(&(0x7f0000000140)=':,\x00', 0xc3, 0xfffffffa) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0x1e, 0x5, 0x0) mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) r0 = ioctl$auto_TUNSETLINK(0xffffffffffffffff, 0x400454cd, &(0x7f0000000000)=0xda) bpf$auto_BPF_OBJ_GET_INFO_BY_FD(0xf, &(0x7f00000002c0)=@bpf_attr_3={0xdb05, 0xb4a8, 0x1, 0x5b7, 0x7fe8, 0x9, 0x8622, 0x92d, 0x5, "bb7c944d1902ccdb035eba86d79f428b", 0x0, 0xe, 0xffffffffffffffff, 0x19fb8016, 0x7fb, 0x9, 0x6, 0x1, 0x8, 0xfb, @attach_btf_obj_fd, 0xfffffffc, 0x7f, 0x9, 0x5, 0x8}, 0x1) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi22\x00', 0x100, 0x0) r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) mmap$auto(0x0, 0x10001, 0xdf, 0x9b71, 0xffffffffffffffff, 0x0) socket(0xa, 0x1, 0x100) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sequencer\x00', 0x40200, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) fsconfig$auto_XFS_DAX_ALWAYS(r0, 0x7, &(0x7f0000000380)='/dev/snd/midiC2D0\x00', &(0x7f00000003c0), 0x1) write$auto(r2, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x9, 0xd3e, 0x780, 0x9687, 0x100000000000003, 0x3c2a19d5, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x6, 0xa, 0xfffffffffffffffe]}, 0x0) r3 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64) r4 = setfsuid$auto(0xee01) setresuid$auto(0x0, 0x0, r4) fchdir$auto(r3) mkdir$auto(&(0x7f0000000040)='./cgroup\x00', 0x6) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup/cgroup.type\x00', 0x103042, 0x0) rmdir$auto(&(0x7f0000000080)='./cgroup\x00') sendmsg$auto_NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000780)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000740)={0x0}, 0x1, 0x0, 0x0, 0x4048010}, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x22a02, 0x0) write$auto(r5, &(0x7f0000000140)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7\xe6\x04\x8c\x83k', 0x1000000007e) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x7, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) 0s ago: executing program 0 (id=1492): r0 = bpf$auto(0x0, &(0x7f0000000380)=@task_fd_query={0x12, 0x3, 0x4, 0xae30, 0x8000000000008, 0xfff, 0xffffffffffffffff, 0xa, 0x7ff}, 0x6f4) r2 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0xb, 0x40001d, 0x10400, 0xabec, 0x4, 0x3, 0xffffffffffffffff, [], {0x7, 0x200000, 0x7, 0x2a3, 0x100, 0x3, 0x40100101, 0x6}, {0xf8, 0x4, 0x7, 0x1, 0x3, 0x3c, 0xcc, 0x8, 0x100000000}}) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) r3 = socketpair$auto(0x6, 0x2, 0x20000007, 0x0) pselect6$auto(0x5, &(0x7f0000000400)={[0x8, 0x3, 0x0, 0x5, 0x8001, 0x6, 0xac, 0x2000009, 0xffffffffffffff81, 0xffffffff, 0x7fffffffffffffff, 0x8000, 0x1000, 0x9, 0x8, 0x3ff]}, 0x0, 0x0, 0x0, 0x0) getsockopt$auto_SO_PEERPIDFD(r2, 0xfffff210, 0x4d, &(0x7f0000000000)='^\x16z\x13\x870\x04L\xa5$&{P\xd3\x92\x03\xba\xf45\x81\xad}\xc1t^\xec\xd0m\xda\xb75%0\xba\x9d\x1d\xa3{7\x01-\x9b\x00'/53, &(0x7f0000000040)=0x3) sched_rr_get_interval$auto(r1, &(0x7f0000000100)={0x101, 0x3}) r4 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_TIOCMGET(r4, 0x5415, 0x0) io_uring_enter$auto(0x3, 0x4, 0xffffffff, 0x6, 0x0, 0x2) connect$auto(r3, &(0x7f0000000140)=@hci={0x1f, 0x1, 0x4}, 0xe4a1) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/nfs/exports\x00', 0x400, 0x0) pread64$auto(r5, 0x0, 0x1ff, 0x8800000000) ioctl$auto_FS_IOC_RESVSP(r0, 0x40305828, 0x9) bpf$auto(0x0, &(0x7f0000000380)=@task_fd_query={0x12, 0x3, 0x4, 0xae30, 0x8000000000008, 0xfff, 0xffffffffffffffff, 0xa, 0x7ff}, 0x6f4) (async) io_uring_setup$auto(0x59, &(0x7f0000000080)={0xb, 0x40001d, 0x10400, 0xabec, 0x4, 0x3, 0xffffffffffffffff, [], {0x7, 0x200000, 0x7, 0x2a3, 0x100, 0x3, 0x40100101, 0x6}, {0xf8, 0x4, 0x7, 0x1, 0x3, 0x3c, 0xcc, 0x8, 0x100000000}}) (async) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) (async) socketpair$auto(0x6, 0x2, 0x20000007, 0x0) (async) pselect6$auto(0x5, &(0x7f0000000400)={[0x8, 0x3, 0x0, 0x5, 0x8001, 0x6, 0xac, 0x2000009, 0xffffffffffffff81, 0xffffffff, 0x7fffffffffffffff, 0x8000, 0x1000, 0x9, 0x8, 0x3ff]}, 0x0, 0x0, 0x0, 0x0) (async) getsockopt$auto_SO_PEERPIDFD(r2, 0xfffff210, 0x4d, &(0x7f0000000000)='^\x16z\x13\x870\x04L\xa5$&{P\xd3\x92\x03\xba\xf45\x81\xad}\xc1t^\xec\xd0m\xda\xb75%0\xba\x9d\x1d\xa3{7\x01-\x9b\x00'/53, &(0x7f0000000040)=0x3) (async) sched_rr_get_interval$auto(r1, &(0x7f0000000100)={0x101, 0x3}) (async) openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async) ioctl$auto_TIOCMGET(r4, 0x5415, 0x0) (async) io_uring_enter$auto(0x3, 0x4, 0xffffffff, 0x6, 0x0, 0x2) (async) connect$auto(r3, &(0x7f0000000140)=@hci={0x1f, 0x1, 0x4}, 0xe4a1) (async) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/nfs/exports\x00', 0x400, 0x0) (async) pread64$auto(r5, 0x0, 0x1ff, 0x8800000000) (async) ioctl$auto_FS_IOC_RESVSP(r0, 0x40305828, 0x9) (async) kernel console output (not intermixed with test programs): 17 [ 258.402281][ T54] EXT4-fs (sda1): This should not happen!! Data will be lost [ 258.402281][ T54] [ 258.480333][ T54] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1 with max blocks 6 with error 117 [ 258.560851][ T54] EXT4-fs (sda1): This should not happen!! Data will be lost [ 258.560851][ T54] [ 258.618767][ T54] EXT4-fs (sda1): Delayed block allocation failed for inode 2028 at logical offset 63 with max blocks 1 with error 117 [ 258.707979][ T54] EXT4-fs (sda1): This should not happen!! Data will be lost [ 258.707979][ T54] [ 258.913272][ T8467] netlink: 12 bytes leftover after parsing attributes in process `syz.2.669'. [ 259.666052][ T8494] FAULT_INJECTION: forcing a failure. [ 259.666052][ T8494] name failslab, interval 1, probability 0, space 0, times 0 [ 259.728594][ T8497] netlink: 4 bytes leftover after parsing attributes in process `syz.0.673'. [ 259.745482][ T8494] CPU: 0 UID: 0 PID: 8494 Comm: syz.1.672 Tainted: G U L syzkaller #0 PREEMPT(full) [ 259.745522][ T8494] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 259.745531][ T8494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 259.745558][ T8494] Call Trace: [ 259.745565][ T8494] [ 259.745574][ T8494] dump_stack_lvl+0x100/0x190 [ 259.745606][ T8494] should_fail_ex.cold+0x5/0xa [ 259.745637][ T8494] should_failslab+0xc2/0x120 [ 259.745666][ T8494] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 259.745696][ T8494] ? ptlock_alloc+0x1f/0x70 [ 259.745738][ T8494] ptlock_alloc+0x1f/0x70 [ 259.745774][ T8494] pte_alloc_one+0x82/0x3d0 [ 259.745809][ T8494] __pte_alloc+0x6d/0x3e0 [ 259.745837][ T8494] ? __pfx___pte_alloc+0x10/0x10 [ 259.745863][ T8494] ? __pfx___might_resched+0x10/0x10 [ 259.745896][ T8494] ? copy_page_range+0x1c2d/0x5b00 [ 259.745937][ T8494] copy_page_range+0x3dbb/0x5b00 [ 259.746006][ T8494] ? mas_wr_store_entry+0xa1/0x1e80 [ 259.746035][ T8494] ? __pfx_copy_page_range+0x10/0x10 [ 259.746078][ T8494] ? mas_store+0x666/0xac0 [ 259.746106][ T8494] ? __pfx_mas_store+0x10/0x10 [ 259.746139][ T8494] ? __pfx___vma_start_write+0x10/0x10 [ 259.746183][ T8494] dup_mmap+0xd25/0x2180 [ 259.746227][ T8494] ? __pfx_dup_mmap+0x10/0x10 [ 259.746258][ T8494] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 259.746302][ T8494] ? __lock_acquire+0x4a5/0x2630 [ 259.746327][ T8494] ? find_held_lock+0x2b/0x80 [ 259.746358][ T8494] ? __percpu_counter_init_many+0x2bc/0x3b0 [ 259.746413][ T8494] copy_process+0x6c78/0x7ed0 [ 259.746464][ T8494] ? __pfx_copy_process+0x10/0x10 [ 259.746506][ T8494] ? _copy_from_user+0x59/0xd0 [ 259.746536][ T8494] kernel_clone+0x12e/0x9c0 [ 259.746573][ T8494] ? __pfx_kernel_clone+0x10/0x10 [ 259.746606][ T8494] ? futex_private_hash_put+0x107/0x1c0 [ 259.746638][ T8494] ? __pfx_futex_wake+0x10/0x10 [ 259.746674][ T8494] __do_sys_clone3+0x214/0x290 [ 259.746709][ T8494] ? __pfx___do_sys_clone3+0x10/0x10 [ 259.746776][ T8494] ? rcu_is_watching+0x12/0xc0 [ 259.746809][ T8494] do_syscall_64+0x10b/0x830 [ 259.746831][ T8494] ? clear_bhb_loop+0x40/0x90 [ 259.746860][ T8494] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 259.746885][ T8494] RIP: 0033:0x7f253f99ce59 [ 259.746912][ T8494] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 259.746935][ T8494] RSP: 002b:00007f253dbf5ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 259.746957][ T8494] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f253f99ce59 [ 259.746973][ T8494] RDX: 00007f253dbf5f10 RSI: 0000000000000058 RDI: 00007f253dbf5f10 [ 259.746988][ T8494] RBP: 00007f253fa32d6f R08: 0000000000000000 R09: 0000000000000058 [ 259.747002][ T8494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 259.747016][ T8494] R13: 00007f253fc16038 R14: 00007f253fc15fa0 R15: 00007ffea5a33128 [ 259.747047][ T8494] [ 262.376248][ T8546] Format for adding new device is "id port_count num_queues" (uint uint uint). [ 262.454463][ T8546] Format for adding new device is "id port_count num_queues" (uint uint uint). [ 266.444674][ T8631] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[7972] was attempted by ""[8631] [ 266.516851][ T8633] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[5627] was attempted by ""[8633] [ 266.813456][ T8633] can: request_module (can-proto-0) failed. [ 268.982265][ T8685] usb usb35: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 269.019688][ T8685] vhci_hcd vhci_hcd.1: SetHubDepth req not supported for USB 2.0 roothub [ 269.633379][ T8681] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 269.662968][ T8681] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 269.694183][ T8681] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 269.726916][ T8681] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 269.969046][ T8702] futex_wake_op: syz.0.707 tries to shift op by -2048; fix this program [ 270.047075][ T8702] futex_wake_op: syz.0.707 tries to shift op by -2048; fix this program [ 270.101532][ T8703] 0x000000000001-0x000000020000 : "" [ 270.322911][ T8703] ftl_cs: FTL header corrupt! [ 271.117448][ T50] Bluetooth: hci0: command 0x0406 tx timeout [ 271.369193][ T29] audit: type=1800 audit(4029.152:9): pid=8721 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.709" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 271.626168][ T8723] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1 with max blocks 1 with error 117 [ 271.674668][ T50] Bluetooth: hci2: command 0x0406 tx timeout [ 271.695025][ T8723] EXT4-fs (sda1): This should not happen!! Data will be lost [ 271.695025][ T8723] [ 271.754167][ T50] Bluetooth: hci1: command 0x0c1a tx timeout [ 271.760291][ T50] Bluetooth: hci3: command 0x0406 tx timeout [ 272.501309][ T8721] kexec: Could not allocate control_code_buffer [ 273.887133][ T8743] netlink: 342 bytes leftover after parsing attributes in process `syz.0.716'. [ 274.958421][ T8766] usb usb35: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 275.018277][ T8766] vhci_hcd vhci_hcd.1: SetHubDepth req not supported for USB 2.0 roothub [ 275.860035][ T8784] vivid-008: ================= START STATUS ================= [ 275.903860][ T8784] vivid-008: ================== END STATUS ================== [ 275.977263][ T8788] futex_wake_op: syz.3.727 tries to shift op by -2048; fix this program [ 276.075174][ T8788] futex_wake_op: syz.3.727 tries to shift op by -2048; fix this program [ 276.345947][ T1313] ieee802154 phy0 wpan0: encryption failed: -22 [ 276.353497][ T1313] ieee802154 phy1 wpan1: encryption failed: -22 [ 277.542327][ T8820] usb usb35: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 277.598266][ T8820] vhci_hcd vhci_hcd.1: SetHubDepth req not supported for USB 2.0 roothub [ 281.357850][ T8836] Process accounting resumed [ 283.171431][ T13] EXT4-fs (sda1): Delayed block allocation failed for inode 2030 at logical offset 1476 with max blocks 6 with error 117 [ 283.251931][ T13] EXT4-fs (sda1): This should not happen!! Data will be lost [ 283.251931][ T13] [ 283.340724][ T13] EXT4-fs (sda1): Delayed block allocation failed for inode 2034 at logical offset 63 with max blocks 1 with error 117 [ 283.455545][ T13] EXT4-fs (sda1): This should not happen!! Data will be lost [ 283.455545][ T13] [ 283.546269][ T13] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1 with max blocks 1 with error 117 [ 283.649127][ T13] EXT4-fs (sda1): This should not happen!! Data will be lost [ 283.649127][ T13] [ 283.729429][ T13] EXT4-fs (sda1): Delayed block allocation failed for inode 2032 at logical offset 63 with max blocks 1 with error 117 [ 283.820068][ T13] EXT4-fs (sda1): This should not happen!! Data will be lost [ 283.820068][ T13] [ 283.889195][ T13] EXT4-fs (sda1): Delayed block allocation failed for inode 2033 at logical offset 1 with max blocks 1 with error 117 [ 283.969110][ T13] EXT4-fs (sda1): This should not happen!! Data will be lost [ 283.969110][ T13] [ 286.913148][ T13] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 287.498292][ T13] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 287.880780][ T13] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 288.100682][ T13] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 288.982472][ T13] bridge_slave_1: left allmulticast mode [ 289.013730][ T13] bridge_slave_1: left promiscuous mode [ 289.064427][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 289.218956][ T13] bridge_slave_0: left allmulticast mode [ 289.302786][ T13] bridge_slave_0: left promiscuous mode [ 289.322740][ T5638] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 289.338307][ T5638] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 289.348887][ T5638] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 289.373028][ T5638] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 289.385023][ T5638] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 289.452317][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 290.185208][ T9015] can: request_module (can-proto-0) failed. [ 290.199781][ T8999] FAULT_INJECTION: forcing a failure. [ 290.199781][ T8999] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 290.309888][ T8992] kexec: Could not allocate control_code_buffer [ 290.450108][ T8999] CPU: 0 UID: 0 PID: 8999 Comm: syz.2.777 Tainted: G U L syzkaller #0 PREEMPT(full) [ 290.450148][ T8999] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 290.450157][ T8999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 290.450172][ T8999] Call Trace: [ 290.450180][ T8999] [ 290.450189][ T8999] dump_stack_lvl+0x100/0x190 [ 290.450220][ T8999] should_fail_ex.cold+0x5/0xa [ 290.450246][ T8999] ? prepare_alloc_pages+0x16d/0x5f0 [ 290.450282][ T8999] should_fail_alloc_page+0xeb/0x140 [ 290.450314][ T8999] prepare_alloc_pages+0x1f0/0x5f0 [ 290.450350][ T8999] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 290.450376][ T8999] ? rcu_is_watching+0x12/0xc0 [ 290.450406][ T8999] ? trace_mm_page_alloc+0x163/0x1d0 [ 290.450438][ T8999] ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0 [ 290.450462][ T8999] ? __lock_acquire+0x4a5/0x2630 [ 290.450511][ T8999] ? tomoyo_path_number_perm+0x46d/0x580 [ 290.450539][ T8999] ? kasan_save_stack+0x3f/0x50 [ 290.450563][ T8999] ? kasan_save_stack+0x30/0x50 [ 290.450587][ T8999] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 290.450611][ T8999] ? look_up_lock_class+0x55/0x120 [ 290.450633][ T8999] ? tomoyo_path_number_perm+0x46d/0x580 [ 290.450666][ T8999] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 290.450695][ T8999] ? __lock_acquire+0x4a5/0x2630 [ 290.450723][ T8999] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 290.450761][ T8999] ? policy_nodemask+0xed/0x4f0 [ 290.450793][ T8999] alloc_pages_mpol+0x1fb/0x540 [ 290.450824][ T8999] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 290.450861][ T8999] ? vhost_dev_set_owner+0x3b2/0xa30 [ 290.450913][ T8999] ___kmalloc_large_node+0xe5/0x120 [ 290.450953][ T8999] __kmalloc_large_node_noprof+0x1c/0x70 [ 290.450989][ T8999] __kmalloc_noprof+0x5be/0x850 [ 290.451018][ T8999] vhost_dev_set_owner+0x3b2/0xa30 [ 290.451059][ T8999] vhost_net_ioctl+0xfa3/0x1910 [ 290.451089][ T8999] ? do_vfs_ioctl+0x226/0x13e0 [ 290.451114][ T8999] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 290.451139][ T8999] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 290.451176][ T8999] ? find_held_lock+0x2b/0x80 [ 290.451207][ T8999] ? __fget_files+0x215/0x3d0 [ 290.451235][ T8999] ? hook_file_ioctl_common+0x149/0x410 [ 290.451270][ T8999] ? __fget_files+0x21f/0x3d0 [ 290.451303][ T8999] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 290.451336][ T8999] __x64_sys_ioctl+0x18e/0x210 [ 290.451363][ T8999] do_syscall_64+0x10b/0x830 [ 290.451385][ T8999] ? clear_bhb_loop+0x40/0x90 [ 290.451428][ T8999] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 290.451455][ T8999] RIP: 0033:0x7f79b379ce59 [ 290.451475][ T8999] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 290.451497][ T8999] RSP: 002b:00007f79b46d4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 290.451520][ T8999] RAX: ffffffffffffffda RBX: 00007f79b3a16180 RCX: 00007f79b379ce59 [ 290.451535][ T8999] RDX: 0000000000000000 RSI: 000000000000af01 RDI: 0000000000000009 [ 290.451550][ T8999] RBP: 00007f79b3832d6f R08: 0000000000000000 R09: 0000000000000000 [ 290.451564][ T8999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 290.451577][ T8999] R13: 00007f79b3a16218 R14: 00007f79b3a16180 R15: 00007fffa30462b8 [ 290.451610][ T8999] [ 291.371561][ T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 291.419151][ T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 291.458013][ T13] bond0 (unregistering): Released all slaves [ 291.533282][ T5638] Bluetooth: hci3: command tx timeout [ 292.609893][ T9048] openvswitch: netlink: IP tunnel dst address not specified [ 292.786444][ T13] hsr_slave_0: left promiscuous mode [ 292.824558][ T13] hsr_slave_1: left promiscuous mode [ 292.865481][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 292.913518][ T13] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 292.969263][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 293.008835][ T13] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 293.117997][ T13] veth1_macvtap: left promiscuous mode [ 293.144181][ T13] veth0_macvtap: left promiscuous mode [ 293.179210][ T13] veth1_vlan: left promiscuous mode [ 293.198007][ T13] veth0_vlan: left promiscuous mode [ 293.359718][ T9066] netlink: 8 bytes leftover after parsing attributes in process `syz.2.787'. [ 293.561040][ T5638] Bluetooth: hci3: command tx timeout [ 294.303287][ T9082] usbip-vudc usbip-vudc.0: gadget not bound [ 294.418831][ T13] team0 (unregistering): Port device team_slave_1 removed [ 294.457245][ T13] team0 (unregistering): Port device team_slave_0 removed [ 294.773469][ T5288] 8021q: adding VLAN 0 to HW filter on device eth1 [ 295.630163][ T5638] Bluetooth: hci3: command tx timeout [ 296.966664][ T8993] bridge0: port 1(bridge_slave_0) entered blocking state [ 297.006709][ T8993] bridge0: port 1(bridge_slave_0) entered disabled state [ 297.051321][ T8993] bridge_slave_0: entered allmulticast mode [ 297.101512][ T8993] bridge_slave_0: entered promiscuous mode [ 297.141125][ T5288] 8021q: adding VLAN 0 to HW filter on device eth2 [ 297.189476][ T8993] bridge0: port 2(bridge_slave_1) entered blocking state [ 297.236625][ T8993] bridge0: port 2(bridge_slave_1) entered disabled state [ 297.270977][ T8993] bridge_slave_1: entered allmulticast mode [ 297.307375][ T8993] bridge_slave_1: entered promiscuous mode [ 297.494434][ T8993] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 297.569876][ T8993] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 297.700238][ T5638] Bluetooth: hci3: command tx timeout [ 297.920875][ T8993] team0: Port device team_slave_0 added [ 297.967485][ T8993] team0: Port device team_slave_1 added [ 298.481074][ T8993] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 298.516248][ T8993] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 298.612592][ T8993] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 298.836464][ T8993] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 298.862163][ T8993] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 298.956472][ T8993] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 299.178321][ T5288] 8021q: adding VLAN 0 to HW filter on device eth3 [ 299.277577][ T8993] hsr_slave_0: entered promiscuous mode [ 299.305156][ T8993] hsr_slave_1: entered promiscuous mode [ 299.338335][ T8993] debugfs: 'hsr0' already exists in 'hsr' [ 299.369221][ T8993] Cannot create hsr debugfs directory [ 303.133198][ T9189] kexec: Could not allocate control_code_buffer [ 303.981296][ T8993] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 304.046870][ T8993] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 304.089222][ T8993] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 304.155249][ T8993] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 304.199567][ T8993] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 304.279610][ T8993] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 304.346768][ T8993] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 304.451862][ T8993] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 305.268483][ T9239] netlink: 342 bytes leftover after parsing attributes in process `syz.3.809'. [ 306.086831][ T8993] 8021q: adding VLAN 0 to HW filter on device bond0 [ 306.203877][ T9239] kexec: Could not allocate control_code_buffer [ 306.330817][ T8993] 8021q: adding VLAN 0 to HW filter on device team0 [ 306.390842][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 306.398089][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 306.546231][ T54] bridge0: port 2(bridge_slave_1) entered blocking state [ 306.553456][ T54] bridge0: port 2(bridge_slave_1) entered forwarding state [ 307.148098][ T9270] netlink: 'syz.2.812': attribute type 1 has an invalid length. [ 307.219742][ T9270] nbd: error processing sock list [ 307.484312][ T9265] EXT4-fs: 20 callbacks suppressed [ 307.484337][ T9265] EXT4-fs (sda1): Delayed block allocation failed for inode 2034 at logical offset 63 with max blocks 1 with error 117 [ 307.667757][ T9265] EXT4-fs (sda1): This should not happen!! Data will be lost [ 307.667757][ T9265] [ 309.017247][ T9270] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 309.302371][ T5638] Bluetooth: hci1: unexpected event 0x1c length: 725 > 5 [ 310.409039][ T9328] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4:7466:6f72:6d2f:7573, load rds_tcp or rds_rdma? [ 310.474696][ T8993] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 310.774048][ T8993] veth0_vlan: entered promiscuous mode [ 310.906035][ T8993] veth1_vlan: entered promiscuous mode [ 311.183175][ T8993] veth0_macvtap: entered promiscuous mode [ 311.239652][ T8993] veth1_macvtap: entered promiscuous mode [ 311.372357][ T8993] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 311.467329][ T8993] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 311.563309][ T1172] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 311.604766][ T1172] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 311.650577][ T1172] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 311.701442][ T1172] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 311.857564][ T9352] netlink: 342 bytes leftover after parsing attributes in process `syz.2.824'. [ 311.981890][ T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 312.023928][ T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 312.151582][ T1172] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 312.195580][ T1172] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 314.340013][ T13] EXT4-fs (sda1): Delayed block allocation failed for inode 2030 at logical offset 960 with max blocks 64 with error 117 [ 314.420507][ T13] EXT4-fs (sda1): This should not happen!! Data will be lost [ 314.420507][ T13] [ 314.479129][ T13] EXT4-fs (sda1): Delayed block allocation failed for inode 2034 at logical offset 1430 with max blocks 35 with error 117 [ 314.542030][ T13] EXT4-fs (sda1): This should not happen!! Data will be lost [ 314.542030][ T13] [ 314.594693][ T13] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1 with max blocks 3 with error 117 [ 314.656334][ T13] EXT4-fs (sda1): This should not happen!! Data will be lost [ 314.656334][ T13] [ 314.694887][ T9364] kexec: Could not allocate control_code_buffer [ 314.707775][ T13] EXT4-fs (sda1): Delayed block allocation failed for inode 2032 at logical offset 1392 with max blocks 61 with error 117 [ 314.756002][ T9382] netlink: 342 bytes leftover after parsing attributes in process `syz.0.831'. [ 314.766924][ T13] EXT4-fs (sda1): This should not happen!! Data will be lost [ 314.766924][ T13] [ 314.851150][ T13] EXT4-fs (sda1): Delayed block allocation failed for inode 2028 at logical offset 1414 with max blocks 24 with error 117 [ 314.921064][ T13] EXT4-fs (sda1): This should not happen!! Data will be lost [ 314.921064][ T13] [ 315.743159][ T9397] netlink: 346 bytes leftover after parsing attributes in process `syz.3.836'. [ 315.834094][ T9397] netlink: 346 bytes leftover after parsing attributes in process `syz.3.836'. [ 315.970407][ T9395] netlink: 342 bytes leftover after parsing attributes in process `syz.1.835'. [ 316.366084][ T9408] netlink: 4 bytes leftover after parsing attributes in process `syz.0.838'. [ 316.644567][ T1313] ieee802154 phy0 wpan0: encryption failed: -22 [ 316.655281][ T1313] ieee802154 phy1 wpan1: encryption failed: -22 [ 316.838956][ T9410] FAULT_INJECTION: forcing a failure. [ 316.838956][ T9410] name failslab, interval 1, probability 0, space 0, times 0 [ 316.891893][ T9410] CPU: 0 UID: 0 PID: 9410 Comm: syz.0.839 Tainted: G U L syzkaller #0 PREEMPT(full) [ 316.891933][ T9410] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 316.891942][ T9410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 316.891960][ T9410] Call Trace: [ 316.891968][ T9410] [ 316.891976][ T9410] dump_stack_lvl+0x100/0x190 [ 316.892007][ T9410] should_fail_ex.cold+0x5/0xa [ 316.892037][ T9410] ? ops_init+0x77/0x5f0 [ 316.892070][ T9410] should_failslab+0xc2/0x120 [ 316.892100][ T9410] __kmalloc_noprof+0xe0/0x850 [ 316.892122][ T9410] ? __raw_spin_lock_init+0x3a/0x110 [ 316.892156][ T9410] ops_init+0x77/0x5f0 [ 316.892190][ T9410] setup_net+0x118/0x3a0 [ 316.892222][ T9410] ? __pfx_setup_net+0x10/0x10 [ 316.892255][ T9410] ? mutex_init_lockdep+0xf1/0x120 [ 316.892286][ T9410] copy_net_ns+0x46f/0x7c0 [ 316.892324][ T9410] create_new_namespaces+0x3ea/0xac0 [ 316.892363][ T9410] unshare_nsproxy_namespaces+0xf2/0x220 [ 316.892398][ T9410] ksys_unshare+0x438/0xab0 [ 316.892436][ T9410] ? __pfx_ksys_unshare+0x10/0x10 [ 316.892471][ T9410] ? xfd_validate_state+0x129/0x190 [ 316.892498][ T9410] ? arch_syscall_is_vdso_sigreturn+0xb6/0x200 [ 316.892537][ T9410] ? syscall_user_dispatch+0x76/0x130 [ 316.892567][ T9410] __x64_sys_unshare+0x31/0x40 [ 316.892603][ T9410] do_syscall_64+0x10b/0x830 [ 316.892626][ T9410] ? clear_bhb_loop+0x40/0x90 [ 316.892655][ T9410] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 316.892679][ T9410] RIP: 0033:0x7fe42879ce59 [ 316.892699][ T9410] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 316.892722][ T9410] RSP: 002b:00007fe4296d8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 316.892748][ T9410] RAX: ffffffffffffffda RBX: 00007fe428a15fa0 RCX: 00007fe42879ce59 [ 316.892770][ T9410] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 316.892784][ T9410] RBP: 00007fe428832d6f R08: 0000000000000000 R09: 0000000000000000 [ 316.892799][ T9410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 316.892812][ T9410] R13: 00007fe428a16038 R14: 00007fe428a15fa0 R15: 00007ffe4eaba358 [ 316.892850][ T9410] [ 317.231278][ T9419] FAULT_INJECTION: forcing a failure. [ 317.231278][ T9419] name failslab, interval 1, probability 0, space 0, times 0 [ 317.244147][ T9419] CPU: 0 UID: 0 PID: 9419 Comm: syz.1.841 Tainted: G U L syzkaller #0 PREEMPT(full) [ 317.244185][ T9419] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 317.244193][ T9419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 317.244207][ T9419] Call Trace: [ 317.244216][ T9419] [ 317.244224][ T9419] dump_stack_lvl+0x100/0x190 [ 317.244254][ T9419] should_fail_ex.cold+0x5/0xa [ 317.244283][ T9419] ? tomoyo_realpath_from_path+0xb6/0x690 [ 317.244316][ T9419] should_failslab+0xc2/0x120 [ 317.244346][ T9419] __kmalloc_noprof+0xe0/0x850 [ 317.244368][ T9419] ? kfree+0x1dd/0x6c0 [ 317.244405][ T9419] tomoyo_realpath_from_path+0xb6/0x690 [ 317.244443][ T9419] tomoyo_path_number_perm+0x23c/0x580 [ 317.244469][ T9419] ? tomoyo_path_number_perm+0x22e/0x580 [ 317.244496][ T9419] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 317.244551][ T9419] ? find_held_lock+0x2b/0x80 [ 317.244581][ T9419] ? __fget_files+0x215/0x3d0 [ 317.244607][ T9419] ? hook_file_ioctl_common+0x149/0x410 [ 317.244633][ T9419] ? __fget_files+0x215/0x3d0 [ 317.244665][ T9419] ? __fget_files+0x21f/0x3d0 [ 317.244697][ T9419] security_file_ioctl+0xd3/0x230 [ 317.244725][ T9419] __x64_sys_ioctl+0xb7/0x210 [ 317.244750][ T9419] do_syscall_64+0x10b/0x830 [ 317.244772][ T9419] ? clear_bhb_loop+0x40/0x90 [ 317.244801][ T9419] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 317.244825][ T9419] RIP: 0033:0x7f216fb9ce59 [ 317.244851][ T9419] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 317.244872][ T9419] RSP: 002b:00007f21709a1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 317.244894][ T9419] RAX: ffffffffffffffda RBX: 00007f216fe15fa0 RCX: 00007f216fb9ce59 [ 317.244909][ T9419] RDX: 0000200000000040 RSI: 000000004068aea3 RDI: 0000000000000005 [ 317.244922][ T9419] RBP: 00007f21709a1090 R08: 0000000000000000 R09: 0000000000000000 [ 317.244936][ T9419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 317.244949][ T9419] R13: 00007f216fe16038 R14: 00007f216fe15fa0 R15: 00007ffc4f742568 [ 317.244978][ T9419] [ 317.244988][ T9419] ERROR: Out of memory at tomoyo_realpath_from_path. [ 320.095466][ T9456] FAULT_INJECTION: forcing a failure. [ 320.095466][ T9456] name failslab, interval 1, probability 0, space 0, times 0 [ 320.163486][ T9456] CPU: 0 UID: 0 PID: 9456 Comm: syz.1.851 Tainted: G U L syzkaller #0 PREEMPT(full) [ 320.163525][ T9456] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 320.163534][ T9456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 320.163547][ T9456] Call Trace: [ 320.163554][ T9456] [ 320.163563][ T9456] dump_stack_lvl+0x100/0x190 [ 320.163594][ T9456] should_fail_ex.cold+0x5/0xa [ 320.163623][ T9456] should_failslab+0xc2/0x120 [ 320.163652][ T9456] __kvmalloc_node_noprof+0xfa/0xa00 [ 320.163675][ T9456] ? seq_read_iter+0x819/0x1270 [ 320.163708][ T9456] seq_read_iter+0x819/0x1270 [ 320.163736][ T9456] ? lock_acquire+0x1b1/0x370 [ 320.163778][ T9456] kernfs_fop_read_iter+0x46c/0x610 [ 320.163820][ T9456] ? rw_verify_area+0xce/0x6d0 [ 320.163844][ T9456] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 320.163881][ T9456] vfs_read+0x825/0xb30 [ 320.163911][ T9456] ? __pfx_vfs_read+0x10/0x10 [ 320.163955][ T9456] ksys_read+0x12a/0x250 [ 320.163982][ T9456] ? __pfx_ksys_read+0x10/0x10 [ 320.164010][ T9456] ? rcu_is_watching+0x12/0xc0 [ 320.164044][ T9456] do_syscall_64+0x10b/0x830 [ 320.164066][ T9456] ? clear_bhb_loop+0x40/0x90 [ 320.164094][ T9456] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 320.164117][ T9456] RIP: 0033:0x7f216fb9ce59 [ 320.164135][ T9456] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 320.164156][ T9456] RSP: 002b:00007f21709a1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 320.164178][ T9456] RAX: ffffffffffffffda RBX: 00007f216fe15fa0 RCX: 00007f216fb9ce59 [ 320.164193][ T9456] RDX: 00000000000000f7 RSI: 0000200000000040 RDI: 0000000000000003 [ 320.164206][ T9456] RBP: 00007f21709a1090 R08: 0000000000000000 R09: 0000000000000000 [ 320.164226][ T9456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 320.164239][ T9456] R13: 00007f216fe16038 R14: 00007f216fe15fa0 R15: 00007ffc4f742568 [ 320.164271][ T9456] [ 322.201500][ T9508] FAULT_INJECTION: forcing a failure. [ 322.201500][ T9508] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 322.476371][ T9508] CPU: 0 UID: 0 PID: 9508 Comm: syz.2.857 Tainted: G U L syzkaller #0 PREEMPT(full) [ 322.476415][ T9508] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 322.476424][ T9508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 322.476437][ T9508] Call Trace: [ 322.476444][ T9508] [ 322.476455][ T9508] dump_stack_lvl+0x100/0x190 [ 322.476487][ T9508] should_fail_ex.cold+0x5/0xa [ 322.476518][ T9508] _copy_from_user+0x2e/0xd0 [ 322.476545][ T9508] kstrtouint_from_user+0xd6/0x1d0 [ 322.476578][ T9508] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 322.476610][ T9508] ? __lock_acquire+0x4a5/0x2630 [ 322.476637][ T9508] ? lock_acquire+0x1b1/0x370 [ 322.476664][ T9508] proc_fail_nth_write+0x83/0x220 [ 322.476687][ T9508] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 322.476719][ T9508] vfs_write+0x2aa/0x1070 [ 322.476749][ T9508] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 322.476773][ T9508] ? __pfx_vfs_write+0x10/0x10 [ 322.476799][ T9508] ? __fget_files+0x215/0x3d0 [ 322.476833][ T9508] ? __fget_files+0x21f/0x3d0 [ 322.476869][ T9508] ksys_write+0x12a/0x250 [ 322.476895][ T9508] ? __pfx_ksys_write+0x10/0x10 [ 322.476926][ T9508] ? rcu_is_watching+0x12/0xc0 [ 322.476959][ T9508] do_syscall_64+0x10b/0x830 [ 322.476980][ T9508] ? clear_bhb_loop+0x40/0x90 [ 322.477008][ T9508] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 322.477032][ T9508] RIP: 0033:0x7f79b375d68e [ 322.477050][ T9508] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 322.477073][ T9508] RSP: 002b:00007f79b46f4fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 322.477095][ T9508] RAX: ffffffffffffffda RBX: 00007f79b46f56c0 RCX: 00007f79b375d68e [ 322.477110][ T9508] RDX: 0000000000000001 RSI: 00007f79b46f50a0 RDI: 0000000000000006 [ 322.477124][ T9508] RBP: 00007f79b46f5090 R08: 0000000000000000 R09: 0000000000000000 [ 322.477137][ T9508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 322.477151][ T9508] R13: 00007f79b3a16128 R14: 00007f79b3a16090 R15: 00007fffa30462b8 [ 322.477181][ T9508] [ 322.974634][ T9510] netlink: 28 bytes leftover after parsing attributes in process `syz.3.858'. [ 323.139521][ T9510] bond0: entered promiscuous mode [ 323.183845][ T9510] bond_slave_0: entered promiscuous mode [ 323.232881][ T9510] bond_slave_1: entered promiscuous mode [ 324.954824][ T9533] netlink: 342 bytes leftover after parsing attributes in process `syz.0.865'. [ 326.589616][ T9555] ubi0: attaching mtd0 [ 326.673728][ T9555] ubi0: scanning is finished [ 327.462369][ T9555] ubi0 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt0d", error -4 [ 331.739849][ T9617] kexec: Could not allocate control_code_buffer [ 332.354154][ T9637] netlink: 342 bytes leftover after parsing attributes in process `syz.3.890'. [ 333.644057][ T9651] sctp: [Deprecated]: syz.3.892 (pid 9651) Use of int in maxseg socket option. [ 333.644057][ T9651] Use struct sctp_assoc_value instead [ 333.851827][ T9652] netlink: 342 bytes leftover after parsing attributes in process `syz.2.891'. [ 336.314968][ T9682] kexec: Could not allocate control_code_buffer [ 336.615809][ T9704] FAULT_INJECTION: forcing a failure. [ 336.615809][ T9704] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 336.677732][ T9705] netlink: 342 bytes leftover after parsing attributes in process `syz.0.905'. [ 336.720459][ T9704] CPU: 0 UID: 0 PID: 9704 Comm: syz.0.905 Tainted: G U L syzkaller #0 PREEMPT(full) [ 336.720514][ T9704] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 336.720524][ T9704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 336.720540][ T9704] Call Trace: [ 336.720548][ T9704] [ 336.720564][ T9704] dump_stack_lvl+0x100/0x190 [ 336.720606][ T9704] should_fail_ex.cold+0x5/0xa [ 336.720639][ T9704] _copy_to_iter+0x1f3/0x1720 [ 336.720669][ T9704] ? chacha_block_generic+0x265/0x360 [ 336.720703][ T9704] ? __pfx__copy_to_iter+0x10/0x10 [ 336.720743][ T9704] ? lockdep_hardirqs_on+0x78/0x100 [ 336.720768][ T9704] ? crng_make_state+0x2b0/0x6c0 [ 336.720806][ T9704] get_random_bytes_user+0x17b/0x3d0 [ 336.720841][ T9704] ? __pfx_get_random_bytes_user+0x10/0x10 [ 336.720880][ T9704] ? __mutex_unlock_slowpath+0x15d/0x8a0 [ 336.720906][ T9704] ? kernel_write+0x5e3/0x6c0 [ 336.720946][ T9704] ? import_ubuf+0x1b6/0x220 [ 336.720974][ T9704] __x64_sys_getrandom+0x183/0x290 [ 336.721009][ T9704] ? __pfx___x64_sys_getrandom+0x10/0x10 [ 336.721043][ T9704] ? fput+0x79/0x100 [ 336.721094][ T9704] ? rcu_is_watching+0x12/0xc0 [ 336.721130][ T9704] do_syscall_64+0x10b/0x830 [ 336.721154][ T9704] ? clear_bhb_loop+0x40/0x90 [ 336.721185][ T9704] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 336.721211][ T9704] RIP: 0033:0x7fe42879ce59 [ 336.721239][ T9704] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 336.721264][ T9704] RSP: 002b:00007fe4296d8028 EFLAGS: 00000246 ORIG_RAX: 000000000000013e [ 336.721288][ T9704] RAX: ffffffffffffffda RBX: 00007fe428a15fa0 RCX: 00007fe42879ce59 [ 336.721306][ T9704] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000 [ 336.721321][ T9704] RBP: 00007fe4296d8090 R08: 0000000000000000 R09: 0000000000000000 [ 336.721339][ T9704] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 336.721353][ T9704] R13: 00007fe428a16038 R14: 00007fe428a15fa0 R15: 00007ffe4eaba358 [ 336.721386][ T9704] [ 337.808045][ T9707] netlink: 342 bytes leftover after parsing attributes in process `syz.0.906'. [ 339.416547][ T9722] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 339.577040][ T9731] netlink: 'syz.0.913': attribute type 11 has an invalid length. [ 340.617414][ T9744] FAULT_INJECTION: forcing a failure. [ 340.617414][ T9744] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 340.666798][ T9744] CPU: 1 UID: 0 PID: 9744 Comm: syz.0.916 Tainted: G U L syzkaller #0 PREEMPT(full) [ 340.666852][ T9744] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 340.666865][ T9744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 340.666885][ T9744] Call Trace: [ 340.666895][ T9744] [ 340.666909][ T9744] dump_stack_lvl+0x100/0x190 [ 340.666954][ T9744] should_fail_ex.cold+0x5/0xa [ 340.666998][ T9744] _copy_to_iter+0x1f3/0x1720 [ 340.667038][ T9744] ? chacha_block_generic+0x265/0x360 [ 340.667083][ T9744] ? __pfx__copy_to_iter+0x10/0x10 [ 340.667125][ T9744] ? lockdep_hardirqs_on+0x78/0x100 [ 340.667158][ T9744] ? crng_make_state+0x2b0/0x6c0 [ 340.667207][ T9744] get_random_bytes_user+0x17b/0x3d0 [ 340.667254][ T9744] ? __pfx_get_random_bytes_user+0x10/0x10 [ 340.667305][ T9744] ? __mutex_unlock_slowpath+0x15d/0x8a0 [ 340.667339][ T9744] ? kernel_write+0x5e3/0x6c0 [ 340.667394][ T9744] ? import_ubuf+0x1b6/0x220 [ 340.667440][ T9744] __x64_sys_getrandom+0x183/0x290 [ 340.667490][ T9744] ? __pfx___x64_sys_getrandom+0x10/0x10 [ 340.667534][ T9744] ? fput+0x79/0x100 [ 340.667589][ T9744] ? rcu_is_watching+0x12/0xc0 [ 340.667633][ T9744] do_syscall_64+0x10b/0x830 [ 340.667663][ T9744] ? clear_bhb_loop+0x40/0x90 [ 340.667702][ T9744] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 340.667737][ T9744] RIP: 0033:0x7fe42879ce59 [ 340.667763][ T9744] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 340.667800][ T9744] RSP: 002b:00007fe4296d8028 EFLAGS: 00000246 ORIG_RAX: 000000000000013e [ 340.667830][ T9744] RAX: ffffffffffffffda RBX: 00007fe428a15fa0 RCX: 00007fe42879ce59 [ 340.667851][ T9744] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000 [ 340.667869][ T9744] RBP: 00007fe4296d8090 R08: 0000000000000000 R09: 0000000000000000 [ 340.667888][ T9744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 340.667912][ T9744] R13: 00007fe428a16038 R14: 00007fe428a15fa0 R15: 00007ffe4eaba358 [ 340.667960][ T9744] [ 341.102215][ T9746] netlink: 342 bytes leftover after parsing attributes in process `syz.0.916'. [ 341.318993][ T9741] kexec: Could not allocate control_code_buffer [ 341.880076][ T9752] vivid-008: ================= START STATUS ================= [ 341.890786][ T5638] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 341.900655][ T9752] vivid-008: ================== END STATUS ================== [ 341.934783][ T9752] vivid-008: ================= START STATUS ================= [ 342.039243][ T9752] vivid-008: ================== END STATUS ================== [ 342.105133][ T9752] vivid-008: ================= START STATUS ================= [ 342.161654][ T9752] vivid-008: ================== END STATUS ================== [ 342.204061][ T9752] vivid-008: ================= START STATUS ================= [ 342.248038][ T9752] vivid-008: ================== END STATUS ================== [ 342.454214][ T9752] vivid-008: ================= START STATUS ================= [ 342.498400][ T9752] vivid-008: ================== END STATUS ================== [ 342.544314][ T9752] vivid-008: ================= START STATUS ================= [ 342.601483][ T9752] vivid-008: ================== END STATUS ================== [ 342.685813][ T9752] vivid-008: ================= START STATUS ================= [ 342.767469][ T9752] vivid-008: ================== END STATUS ================== [ 342.782250][ T9752] vivid-008: ================= START STATUS ================= [ 342.812152][ T9752] vivid-008: ================== END STATUS ================== [ 342.819905][ T9770] netlink: 'syz.0.920': attribute type 1 has an invalid length. [ 342.830644][ T9752] vivid-008: ================= START STATUS ================= [ 342.838604][ T9752] vivid-008: ================== END STATUS ================== [ 342.847139][ T9752] vivid-008: ================= START STATUS ================= [ 342.879563][ T9752] vivid-008: ================== END STATUS ================== [ 342.915353][ T9752] vivid-008: ================= START STATUS ================= [ 342.950109][ T9763] random: crng reseeded on system resumption [ 343.000096][ T9752] vivid-008: ================== END STATUS ================== [ 343.084764][ T9752] vivid-008: ================= START STATUS ================= [ 343.129307][ T9752] vivid-008: ================== END STATUS ================== [ 343.190813][ T9752] vivid-008: ================= START STATUS ================= [ 343.307705][ T9752] vivid-008: ================== END STATUS ================== [ 343.350166][ T9752] vivid-008: ================= START STATUS ================= [ 343.431380][ T9752] vivid-008: ================== END STATUS ================== [ 344.018899][ T50] Bluetooth: hci3: command 0x2016 tx timeout [ 344.235777][ T9789] netlink: 342 bytes leftover after parsing attributes in process `syz.0.923'. [ 344.596424][ T9802] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 344.753881][ T9805] FAULT_INJECTION: forcing a failure. [ 344.753881][ T9805] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 344.776205][ T9805] CPU: 1 UID: 0 PID: 9805 Comm: syz.0.929 Tainted: G U L syzkaller #0 PREEMPT(full) [ 344.776251][ T9805] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 344.776260][ T9805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 344.776273][ T9805] Call Trace: [ 344.776281][ T9805] [ 344.776290][ T9805] dump_stack_lvl+0x100/0x190 [ 344.776319][ T9805] should_fail_ex.cold+0x5/0xa [ 344.776348][ T9805] _copy_to_iter+0x1f3/0x1720 [ 344.776374][ T9805] ? chacha_block_generic+0x265/0x360 [ 344.776404][ T9805] ? __pfx__copy_to_iter+0x10/0x10 [ 344.776432][ T9805] ? lockdep_hardirqs_on+0x78/0x100 [ 344.776454][ T9805] ? crng_make_state+0x2b0/0x6c0 [ 344.776487][ T9805] get_random_bytes_user+0x17b/0x3d0 [ 344.776517][ T9805] ? __pfx_get_random_bytes_user+0x10/0x10 [ 344.776551][ T9805] ? __mutex_unlock_slowpath+0x15d/0x8a0 [ 344.776574][ T9805] ? kernel_write+0x5e3/0x6c0 [ 344.776609][ T9805] ? import_ubuf+0x1b6/0x220 [ 344.776633][ T9805] __x64_sys_getrandom+0x183/0x290 [ 344.776667][ T9805] ? __pfx___x64_sys_getrandom+0x10/0x10 [ 344.776696][ T9805] ? fput+0x79/0x100 [ 344.776735][ T9805] ? rcu_is_watching+0x12/0xc0 [ 344.776767][ T9805] do_syscall_64+0x10b/0x830 [ 344.776787][ T9805] ? clear_bhb_loop+0x40/0x90 [ 344.776815][ T9805] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 344.776839][ T9805] RIP: 0033:0x7fe42879ce59 [ 344.776857][ T9805] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 344.776878][ T9805] RSP: 002b:00007fe4296d8028 EFLAGS: 00000246 ORIG_RAX: 000000000000013e [ 344.776900][ T9805] RAX: ffffffffffffffda RBX: 00007fe428a15fa0 RCX: 00007fe42879ce59 [ 344.776915][ T9805] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000 [ 344.776930][ T9805] RBP: 00007fe4296d8090 R08: 0000000000000000 R09: 0000000000000000 [ 344.776944][ T9805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 344.776957][ T9805] R13: 00007fe428a16038 R14: 00007fe428a15fa0 R15: 00007ffe4eaba358 [ 344.776986][ T9805] [ 345.055300][ T54] EXT4-fs (sda1): Delayed block allocation failed for inode 2030 at logical offset 960 with max blocks 64 with error 117 [ 345.068464][ T54] EXT4-fs (sda1): This should not happen!! Data will be lost [ 345.068464][ T54] [ 345.100532][ T54] EXT4-fs (sda1): Delayed block allocation failed for inode 2034 at logical offset 1441 with max blocks 1 with error 117 [ 345.113394][ T54] EXT4-fs (sda1): This should not happen!! Data will be lost [ 345.113394][ T54] [ 345.123622][ T54] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1 with max blocks 12 with error 117 [ 345.136354][ T54] EXT4-fs (sda1): This should not happen!! Data will be lost [ 345.136354][ T54] [ 345.147809][ T54] EXT4-fs (sda1): Delayed block allocation failed for inode 2032 at logical offset 1445 with max blocks 8 with error 117 [ 345.160770][ T54] EXT4-fs (sda1): This should not happen!! Data will be lost [ 345.160770][ T54] [ 345.171296][ T54] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 2 with max blocks 1 with error 117 [ 345.183959][ T54] EXT4-fs (sda1): This should not happen!! Data will be lost [ 345.183959][ T54] [ 345.201432][ T9810] netlink: 342 bytes leftover after parsing attributes in process `syz.0.929'. [ 345.449275][ T9813] FAULT_INJECTION: forcing a failure. [ 345.449275][ T9813] name fail_futex, interval 1, probability 0, space 0, times 1 [ 345.481551][ T9813] CPU: 0 UID: 0 PID: 9813 Comm: syz.1.930 Tainted: G U L syzkaller #0 PREEMPT(full) [ 345.481616][ T9813] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 345.481629][ T9813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 345.481649][ T9813] Call Trace: [ 345.481659][ T9813] [ 345.481671][ T9813] dump_stack_lvl+0x100/0x190 [ 345.481716][ T9813] should_fail_ex.cold+0x5/0xa [ 345.481759][ T9813] get_futex_key+0x1d2/0x1510 [ 345.481800][ T9813] ? __pfx_get_futex_key+0x10/0x10 [ 345.481837][ T9813] ? get_futex_key+0x4e8/0x1510 [ 345.481880][ T9813] futex_wait_setup+0x83/0x510 [ 345.481938][ T9813] futex_wait_requeue_pi+0x240/0x890 [ 345.481987][ T9813] ? __pfx_futex_wait_requeue_pi+0x10/0x10 [ 345.482034][ T9813] ? __futex_wait+0x256/0x300 [ 345.482082][ T9813] ? __pfx___futex_wait+0x10/0x10 [ 345.482126][ T9813] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 345.482214][ T9813] ? __pfx_futex_wake_mark+0x10/0x10 [ 345.482283][ T9813] ? __fget_files+0x21f/0x3d0 [ 345.482340][ T9813] do_futex+0x24f/0x350 [ 345.482379][ T9813] ? __pfx_do_futex+0x10/0x10 [ 345.482432][ T9813] __x64_sys_futex+0x34f/0x4d0 [ 345.482477][ T9813] ? __pfx___x64_sys_futex+0x10/0x10 [ 345.482513][ T9813] ? ksys_write+0x1ac/0x250 [ 345.482559][ T9813] ? rcu_is_watching+0x12/0xc0 [ 345.482617][ T9813] do_syscall_64+0x10b/0x830 [ 345.482649][ T9813] ? clear_bhb_loop+0x40/0x90 [ 345.482692][ T9813] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 345.482726][ T9813] RIP: 0033:0x7f216fb9ce59 [ 345.482746][ T9813] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 345.482768][ T9813] RSP: 002b:00007f21709a1028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 345.482790][ T9813] RAX: ffffffffffffffda RBX: 00007f216fe15fa0 RCX: 00007f216fb9ce59 [ 345.482806][ T9813] RDX: 0000000000000001 RSI: 000000000000000b RDI: 0000200000000080 [ 345.482820][ T9813] RBP: 00007f216fc32d6f R08: 0000000000000000 R09: 00000000fffffffa [ 345.482834][ T9813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 345.482848][ T9813] R13: 00007f216fe16038 R14: 00007f216fe15fa0 R15: 00007ffc4f742568 [ 345.482878][ T9813] [ 346.087810][ T50] Bluetooth: hci3: command 0x2016 tx timeout [ 346.343026][ T9822] futex_wake_op: syz.2.928 tries to shift op by -2048; fix this program [ 346.467422][ T9809] 0x000000000001-0x000000000201 : "" [ 346.592266][ T9809] ftl_cs: FTL header corrupt! [ 347.435578][ T9821] kexec: Could not allocate control_code_buffer [ 348.096021][ T9843] nfs4: Unknown parameter 'ECÞHš];^‘ÌYµÙ‰ÜZL‘`š~^g ¨' [ 348.491959][ T9849] netlink: 342 bytes leftover after parsing attributes in process `syz.0.939'. [ 349.094798][ T9858] kafs: addr_prefs: Invalid Command [ 349.138317][ T9864] FAULT_INJECTION: forcing a failure. [ 349.138317][ T9864] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 349.153867][ T9864] CPU: 1 UID: 0 PID: 9864 Comm: syz.2.943 Tainted: G U L syzkaller #0 PREEMPT(full) [ 349.153920][ T9864] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 349.153929][ T9864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 349.153943][ T9864] Call Trace: [ 349.153950][ T9864] [ 349.153958][ T9864] dump_stack_lvl+0x100/0x190 [ 349.153989][ T9864] should_fail_ex.cold+0x5/0xa [ 349.154018][ T9864] _copy_to_iter+0x1f3/0x1720 [ 349.154045][ T9864] ? chacha_block_generic+0x265/0x360 [ 349.154075][ T9864] ? __pfx__copy_to_iter+0x10/0x10 [ 349.154109][ T9864] ? lockdep_hardirqs_on+0x78/0x100 [ 349.154131][ T9864] ? crng_make_state+0x2b0/0x6c0 [ 349.154163][ T9864] get_random_bytes_user+0x17b/0x3d0 [ 349.154194][ T9864] ? __pfx_get_random_bytes_user+0x10/0x10 [ 349.154252][ T9864] ? __mutex_unlock_slowpath+0x15d/0x8a0 [ 349.154275][ T9864] ? kernel_write+0x5e3/0x6c0 [ 349.154312][ T9864] ? import_ubuf+0x1b6/0x220 [ 349.154337][ T9864] __x64_sys_getrandom+0x183/0x290 [ 349.154368][ T9864] ? __pfx___x64_sys_getrandom+0x10/0x10 [ 349.154398][ T9864] ? fput+0x79/0x100 [ 349.154435][ T9864] ? rcu_is_watching+0x12/0xc0 [ 349.154468][ T9864] do_syscall_64+0x10b/0x830 [ 349.154488][ T9864] ? clear_bhb_loop+0x40/0x90 [ 349.154516][ T9864] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 349.154539][ T9864] RIP: 0033:0x7f79b379ce59 [ 349.154558][ T9864] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 349.154580][ T9864] RSP: 002b:00007f79b4716028 EFLAGS: 00000246 ORIG_RAX: 000000000000013e [ 349.154610][ T9864] RAX: ffffffffffffffda RBX: 00007f79b3a15fa0 RCX: 00007f79b379ce59 [ 349.154625][ T9864] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000 [ 349.154643][ T9864] RBP: 00007f79b4716090 R08: 0000000000000000 R09: 0000000000000000 [ 349.154689][ T9864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 349.154713][ T9864] R13: 00007f79b3a16038 R14: 00007f79b3a15fa0 R15: 00007fffa30462b8 [ 349.154753][ T9864] [ 349.508234][ T9868] netlink: 342 bytes leftover after parsing attributes in process `syz.2.943'. [ 350.660809][ T29] audit: type=1800 audit(4114.853:10): pid=9890 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.949" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 351.695071][ T9895] netlink: 342 bytes leftover after parsing attributes in process `syz.0.950'. [ 351.751855][ T9890] kexec: Could not allocate control_code_buffer [ 352.855622][ T9930] FAULT_INJECTION: forcing a failure. [ 352.855622][ T9930] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 352.888566][ T9930] CPU: 1 UID: 0 PID: 9930 Comm: syz.0.960 Tainted: G U L syzkaller #0 PREEMPT(full) [ 352.888618][ T9930] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 352.888634][ T9930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 352.888648][ T9930] Call Trace: [ 352.888656][ T9930] [ 352.888664][ T9930] dump_stack_lvl+0x100/0x190 [ 352.888766][ T9930] should_fail_ex.cold+0x5/0xa [ 352.888810][ T9930] _copy_to_iter+0x1f3/0x1720 [ 352.888913][ T9930] ? chacha_block_generic+0x265/0x360 [ 352.888964][ T9930] ? __pfx__copy_to_iter+0x10/0x10 [ 352.888992][ T9930] ? lockdep_hardirqs_on+0x78/0x100 [ 352.889081][ T9930] ? crng_make_state+0x2b0/0x6c0 [ 352.889161][ T9930] get_random_bytes_user+0x17b/0x3d0 [ 352.889193][ T9930] ? __pfx_get_random_bytes_user+0x10/0x10 [ 352.889229][ T9930] ? __mutex_unlock_slowpath+0x15d/0x8a0 [ 352.889270][ T9930] ? kernel_write+0x5e3/0x6c0 [ 352.889327][ T9930] ? import_ubuf+0x1b6/0x220 [ 352.889352][ T9930] __x64_sys_getrandom+0x183/0x290 [ 352.889383][ T9930] ? __pfx___x64_sys_getrandom+0x10/0x10 [ 352.889413][ T9930] ? fput+0x79/0x100 [ 352.889451][ T9930] ? rcu_is_watching+0x12/0xc0 [ 352.889498][ T9930] do_syscall_64+0x10b/0x830 [ 352.889538][ T9930] ? clear_bhb_loop+0x40/0x90 [ 352.889574][ T9930] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 352.889598][ T9930] RIP: 0033:0x7fe42879ce59 [ 352.889618][ T9930] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 352.889639][ T9930] RSP: 002b:00007fe4296d8028 EFLAGS: 00000246 ORIG_RAX: 000000000000013e [ 352.889662][ T9930] RAX: ffffffffffffffda RBX: 00007fe428a15fa0 RCX: 00007fe42879ce59 [ 352.889677][ T9930] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000 [ 352.889690][ T9930] RBP: 00007fe4296d8090 R08: 0000000000000000 R09: 0000000000000000 [ 352.889703][ T9930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 352.889716][ T9930] R13: 00007fe428a16038 R14: 00007fe428a15fa0 R15: 00007ffe4eaba358 [ 352.889748][ T9930] [ 353.128097][ T9930] netlink: 342 bytes leftover after parsing attributes in process `syz.0.960'. [ 353.384880][ T9937] netlink: 'syz.0.963': attribute type 12 has an invalid length. [ 353.497095][ T9937] netlink: 342 bytes leftover after parsing attributes in process `syz.0.963'. [ 353.639217][ T9939] netlink: 342 bytes leftover after parsing attributes in process `syz.3.964'. [ 354.616399][ T9940] kexec: Could not allocate control_code_buffer [ 355.513384][ T9969] netlink: 28 bytes leftover after parsing attributes in process `syz.0.972'. [ 355.855406][ T9978] FAULT_INJECTION: forcing a failure. [ 355.855406][ T9978] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 355.885362][ T9978] CPU: 0 UID: 0 PID: 9978 Comm: syz.2.974 Tainted: G U L syzkaller #0 PREEMPT(full) [ 355.885413][ T9978] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 355.885422][ T9978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 355.885435][ T9978] Call Trace: [ 355.885442][ T9978] [ 355.885451][ T9978] dump_stack_lvl+0x100/0x190 [ 355.885482][ T9978] should_fail_ex.cold+0x5/0xa [ 355.885511][ T9978] _copy_to_iter+0x1f3/0x1720 [ 355.885538][ T9978] ? chacha_block_generic+0x265/0x360 [ 355.885574][ T9978] ? __pfx__copy_to_iter+0x10/0x10 [ 355.885602][ T9978] ? lockdep_hardirqs_on+0x78/0x100 [ 355.885630][ T9978] ? crng_make_state+0x2b0/0x6c0 [ 355.885664][ T9978] get_random_bytes_user+0x17b/0x3d0 [ 355.885701][ T9978] ? __pfx_get_random_bytes_user+0x10/0x10 [ 355.885735][ T9978] ? __mutex_unlock_slowpath+0x15d/0x8a0 [ 355.885758][ T9978] ? kernel_write+0x5e3/0x6c0 [ 355.885799][ T9978] ? import_ubuf+0x1b6/0x220 [ 355.885825][ T9978] __x64_sys_getrandom+0x183/0x290 [ 355.885856][ T9978] ? __pfx___x64_sys_getrandom+0x10/0x10 [ 355.885885][ T9978] ? fput+0x79/0x100 [ 355.885923][ T9978] ? rcu_is_watching+0x12/0xc0 [ 355.885955][ T9978] do_syscall_64+0x10b/0x830 [ 355.885976][ T9978] ? clear_bhb_loop+0x40/0x90 [ 355.886004][ T9978] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 355.886027][ T9978] RIP: 0033:0x7f79b379ce59 [ 355.886047][ T9978] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 355.886068][ T9978] RSP: 002b:00007f79b4716028 EFLAGS: 00000246 ORIG_RAX: 000000000000013e [ 355.886090][ T9978] RAX: ffffffffffffffda RBX: 00007f79b3a15fa0 RCX: 00007f79b379ce59 [ 355.886105][ T9978] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000 [ 355.886123][ T9978] RBP: 00007f79b4716090 R08: 0000000000000000 R09: 0000000000000000 [ 355.886137][ T9978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 355.886150][ T9978] R13: 00007f79b3a16038 R14: 00007f79b3a15fa0 R15: 00007fffa30462b8 [ 355.886179][ T9978] [ 356.161086][ T9978] netlink: 342 bytes leftover after parsing attributes in process `syz.2.974'. [ 356.327595][ T35] EXT4-fs: 4 callbacks suppressed [ 356.327613][ T35] EXT4-fs (sda1): Delayed block allocation failed for inode 2030 at logical offset 63 with max blocks 1 with error 117 [ 356.395718][ T35] EXT4-fs (sda1): This should not happen!! Data will be lost [ 356.395718][ T35] [ 356.421336][ T35] EXT4-fs (sda1): Delayed block allocation failed for inode 2034 at logical offset 63 with max blocks 1 with error 117 [ 356.478702][ T35] EXT4-fs (sda1): This should not happen!! Data will be lost [ 356.478702][ T35] [ 356.527722][ T35] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1 with max blocks 3 with error 117 [ 356.564792][ T35] EXT4-fs (sda1): This should not happen!! Data will be lost [ 356.564792][ T35] [ 356.589470][ T35] EXT4-fs (sda1): Delayed block allocation failed for inode 2032 at logical offset 63 with max blocks 1 with error 117 [ 356.623642][ T35] EXT4-fs (sda1): This should not happen!! Data will be lost [ 356.623642][ T35] [ 356.650639][ T35] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 2 with max blocks 2 with error 117 [ 356.665162][ T35] EXT4-fs (sda1): This should not happen!! Data will be lost [ 356.665162][ T35] [ 358.014163][T10000] kexec: Could not allocate control_code_buffer [ 358.906260][T10024] FAULT_INJECTION: forcing a failure. [ 358.906260][T10024] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 358.944020][T10024] CPU: 1 UID: 0 PID: 10024 Comm: syz.2.987 Tainted: G U L syzkaller #0 PREEMPT(full) [ 358.944068][T10024] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 358.944079][T10024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 358.944097][T10024] Call Trace: [ 358.944108][T10024] [ 358.944120][T10024] dump_stack_lvl+0x100/0x190 [ 358.944163][T10024] should_fail_ex.cold+0x5/0xa [ 358.944203][T10024] _copy_to_iter+0x1f3/0x1720 [ 358.944240][T10024] ? chacha_block_generic+0x265/0x360 [ 358.944283][T10024] ? __pfx__copy_to_iter+0x10/0x10 [ 358.944323][T10024] ? lockdep_hardirqs_on+0x78/0x100 [ 358.944357][T10024] ? crng_make_state+0x2b0/0x6c0 [ 358.944404][T10024] get_random_bytes_user+0x17b/0x3d0 [ 358.944450][T10024] ? __pfx_get_random_bytes_user+0x10/0x10 [ 358.944499][T10024] ? __mutex_unlock_slowpath+0x15d/0x8a0 [ 358.944540][T10024] ? kernel_write+0x5e3/0x6c0 [ 358.944589][T10024] ? import_ubuf+0x1b6/0x220 [ 358.944624][T10024] __x64_sys_getrandom+0x183/0x290 [ 358.944666][T10024] ? __pfx___x64_sys_getrandom+0x10/0x10 [ 358.944724][T10024] ? fput+0x79/0x100 [ 358.944778][T10024] ? rcu_is_watching+0x12/0xc0 [ 358.944835][T10024] do_syscall_64+0x10b/0x830 [ 358.944871][T10024] ? clear_bhb_loop+0x40/0x90 [ 358.944910][T10024] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 358.944952][T10024] RIP: 0033:0x7f79b379ce59 [ 358.944979][T10024] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 358.945019][T10024] RSP: 002b:00007f79b4716028 EFLAGS: 00000246 ORIG_RAX: 000000000000013e [ 358.945044][T10024] RAX: ffffffffffffffda RBX: 00007f79b3a15fa0 RCX: 00007f79b379ce59 [ 358.945060][T10024] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000 [ 358.945074][T10024] RBP: 00007f79b4716090 R08: 0000000000000000 R09: 0000000000000000 [ 358.945089][T10024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 358.945103][T10024] R13: 00007f79b3a16038 R14: 00007f79b3a15fa0 R15: 00007fffa30462b8 [ 358.945134][T10024] [ 359.581623][T10032] netlink: 342 bytes leftover after parsing attributes in process `syz.2.987'. [ 359.845157][ T5638] Bluetooth: hci0: unexpected event 0x3e length: 358 > 260 [ 359.845210][ T5638] Bluetooth: hci0: unexpected subevent 0x1b length: 357 > 260 [ 359.863780][T10041] usbip-vudc usbip-vudc.0: gadget not bound [ 359.908118][T10034] netlink: 342 bytes leftover after parsing attributes in process `syz.1.989'. [ 361.047067][T10070] syz.3.998 (10070): attempted to duplicate a private mapping with mremap. This is not supported. [ 361.475509][T10053] kexec: Could not allocate control_code_buffer [ 362.331396][T10092] FAULT_INJECTION: forcing a failure. [ 362.331396][T10092] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 362.391460][T10092] CPU: 0 UID: 0 PID: 10092 Comm: syz.1.1002 Tainted: G U L syzkaller #0 PREEMPT(full) [ 362.391512][T10092] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 362.391523][T10092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 362.391543][T10092] Call Trace: [ 362.391553][T10092] [ 362.391565][T10092] dump_stack_lvl+0x100/0x190 [ 362.391606][T10092] should_fail_ex.cold+0x5/0xa [ 362.391647][T10092] _copy_to_iter+0x1f3/0x1720 [ 362.391686][T10092] ? chacha_block_generic+0x265/0x360 [ 362.391739][T10092] ? __pfx__copy_to_iter+0x10/0x10 [ 362.391795][T10092] ? lockdep_hardirqs_on+0x78/0x100 [ 362.391828][T10092] ? crng_make_state+0x2b0/0x6c0 [ 362.391875][T10092] get_random_bytes_user+0x17b/0x3d0 [ 362.391918][T10092] ? __pfx_get_random_bytes_user+0x10/0x10 [ 362.391966][T10092] ? __mutex_unlock_slowpath+0x15d/0x8a0 [ 362.392000][T10092] ? kernel_write+0x5e3/0x6c0 [ 362.392051][T10092] ? import_ubuf+0x1b6/0x220 [ 362.392085][T10092] __x64_sys_getrandom+0x183/0x290 [ 362.392129][T10092] ? __pfx___x64_sys_getrandom+0x10/0x10 [ 362.392169][T10092] ? fput+0x79/0x100 [ 362.392245][T10092] ? rcu_is_watching+0x12/0xc0 [ 362.392289][T10092] do_syscall_64+0x10b/0x830 [ 362.392317][T10092] ? clear_bhb_loop+0x40/0x90 [ 362.392355][T10092] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 362.392391][T10092] RIP: 0033:0x7f216fb9ce59 [ 362.392415][T10092] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 362.392445][T10092] RSP: 002b:00007f21709a1028 EFLAGS: 00000246 ORIG_RAX: 000000000000013e [ 362.392476][T10092] RAX: ffffffffffffffda RBX: 00007f216fe15fa0 RCX: 00007f216fb9ce59 [ 362.392497][T10092] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000 [ 362.392516][T10092] RBP: 00007f21709a1090 R08: 0000000000000000 R09: 0000000000000000 [ 362.392536][T10092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 362.392554][T10092] R13: 00007f216fe16038 R14: 00007f216fe15fa0 R15: 00007ffc4f742568 [ 362.392596][T10092] [ 365.102930][T10146] FAULT_INJECTION: forcing a failure. [ 365.102930][T10146] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 365.150147][T10146] CPU: 0 UID: 0 PID: 10146 Comm: syz.2.1014 Tainted: G U L syzkaller #0 PREEMPT(full) [ 365.150207][T10146] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 365.150216][T10146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 365.150229][T10146] Call Trace: [ 365.150237][T10146] [ 365.150245][T10146] dump_stack_lvl+0x100/0x190 [ 365.150276][T10146] should_fail_ex.cold+0x5/0xa [ 365.150305][T10146] _copy_to_iter+0x1f3/0x1720 [ 365.150333][T10146] ? chacha_block_generic+0x265/0x360 [ 365.150363][T10146] ? __pfx__copy_to_iter+0x10/0x10 [ 365.150391][T10146] ? lockdep_hardirqs_on+0x78/0x100 [ 365.150413][T10146] ? crng_make_state+0x2b0/0x6c0 [ 365.150447][T10146] get_random_bytes_user+0x17b/0x3d0 [ 365.150478][T10146] ? __pfx_get_random_bytes_user+0x10/0x10 [ 365.150547][T10146] ? __mutex_unlock_slowpath+0x15d/0x8a0 [ 365.150571][T10146] ? kernel_write+0x5e3/0x6c0 [ 365.150634][T10146] ? import_ubuf+0x1b6/0x220 [ 365.150671][T10146] __x64_sys_getrandom+0x183/0x290 [ 365.150711][T10146] ? __pfx___x64_sys_getrandom+0x10/0x10 [ 365.150741][T10146] ? fput+0x79/0x100 [ 365.150778][T10146] ? rcu_is_watching+0x12/0xc0 [ 365.150811][T10146] do_syscall_64+0x10b/0x830 [ 365.150831][T10146] ? clear_bhb_loop+0x40/0x90 [ 365.150860][T10146] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 365.150898][T10146] RIP: 0033:0x7f79b379ce59 [ 365.150917][T10146] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 365.150940][T10146] RSP: 002b:00007f79b4716028 EFLAGS: 00000246 ORIG_RAX: 000000000000013e [ 365.150961][T10146] RAX: ffffffffffffffda RBX: 00007f79b3a15fa0 RCX: 00007f79b379ce59 [ 365.150977][T10146] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000 [ 365.151018][T10146] RBP: 00007f79b4716090 R08: 0000000000000000 R09: 0000000000000000 [ 365.151032][T10146] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 365.151046][T10146] R13: 00007f79b3a16038 R14: 00007f79b3a15fa0 R15: 00007fffa30462b8 [ 365.151076][T10146] [ 365.231587][T10128] kexec: Could not allocate control_code_buffer [ 365.481930][T10147] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1014'. [ 366.228504][T10161] FAULT_INJECTION: forcing a failure. [ 366.228504][T10161] name failslab, interval 1, probability 0, space 0, times 0 [ 366.242325][T10161] CPU: 1 UID: 0 PID: 10161 Comm: syz.1.1018 Tainted: G U L syzkaller #0 PREEMPT(full) [ 366.242374][T10161] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 366.242383][T10161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 366.242402][T10161] Call Trace: [ 366.242413][T10161] [ 366.242424][T10161] dump_stack_lvl+0x100/0x190 [ 366.242463][T10161] should_fail_ex.cold+0x5/0xa [ 366.242505][T10161] should_failslab+0xc2/0x120 [ 366.242605][T10161] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 366.242641][T10161] ? do_getname+0x35/0x390 [ 366.242700][T10161] do_getname+0x35/0x390 [ 366.242752][T10161] do_sys_openat2+0xc5/0x1e0 [ 366.242806][T10161] ? __pfx_do_sys_openat2+0x10/0x10 [ 366.242874][T10161] __x64_sys_openat+0x12d/0x210 [ 366.242905][T10161] ? __pfx___x64_sys_openat+0x10/0x10 [ 366.242957][T10161] ? ksys_write+0x1ac/0x250 [ 366.243002][T10161] ? rcu_is_watching+0x12/0xc0 [ 366.243048][T10161] do_syscall_64+0x10b/0x830 [ 366.243079][T10161] ? clear_bhb_loop+0x40/0x90 [ 366.243121][T10161] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 366.243156][T10161] RIP: 0033:0x7f216fb9ce59 [ 366.243184][T10161] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 366.243220][T10161] RSP: 002b:00007f21709a1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 366.243252][T10161] RAX: ffffffffffffffda RBX: 00007f216fe15fa0 RCX: 00007f216fb9ce59 [ 366.243274][T10161] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 366.243295][T10161] RBP: 00007f216fc32d6f R08: 0000000000000000 R09: 0000000000000000 [ 366.243315][T10161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 366.243335][T10161] R13: 00007f216fe16038 R14: 00007f216fe15fa0 R15: 00007ffc4f742568 [ 366.243376][T10161] [ 367.288239][T10186] FAULT_INJECTION: forcing a failure. [ 367.288239][T10186] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 367.339858][T10186] CPU: 0 UID: 0 PID: 10186 Comm: syz.2.1024 Tainted: G U L syzkaller #0 PREEMPT(full) [ 367.339910][T10186] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 367.339921][T10186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 367.339939][T10186] Call Trace: [ 367.339948][T10186] [ 367.339960][T10186] dump_stack_lvl+0x100/0x190 [ 367.340002][T10186] should_fail_ex.cold+0x5/0xa [ 367.340043][T10186] _copy_to_iter+0x1f3/0x1720 [ 367.340081][T10186] ? chacha_block_generic+0x265/0x360 [ 367.340123][T10186] ? __pfx__copy_to_iter+0x10/0x10 [ 367.340162][T10186] ? lockdep_hardirqs_on+0x78/0x100 [ 367.340193][T10186] ? crng_make_state+0x2b0/0x6c0 [ 367.340241][T10186] get_random_bytes_user+0x17b/0x3d0 [ 367.340285][T10186] ? __pfx_get_random_bytes_user+0x10/0x10 [ 367.340335][T10186] ? __mutex_unlock_slowpath+0x15d/0x8a0 [ 367.340368][T10186] ? kernel_write+0x5e3/0x6c0 [ 367.340418][T10186] ? import_ubuf+0x1b6/0x220 [ 367.340463][T10186] __x64_sys_getrandom+0x183/0x290 [ 367.340508][T10186] ? __pfx___x64_sys_getrandom+0x10/0x10 [ 367.340550][T10186] ? fput+0x79/0x100 [ 367.340606][T10186] ? rcu_is_watching+0x12/0xc0 [ 367.340657][T10186] do_syscall_64+0x10b/0x830 [ 367.340687][T10186] ? clear_bhb_loop+0x40/0x90 [ 367.340728][T10186] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 367.340762][T10186] RIP: 0033:0x7f79b379ce59 [ 367.340787][T10186] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 367.340819][T10186] RSP: 002b:00007f79b4716028 EFLAGS: 00000246 ORIG_RAX: 000000000000013e [ 367.340850][T10186] RAX: ffffffffffffffda RBX: 00007f79b3a15fa0 RCX: 00007f79b379ce59 [ 367.340871][T10186] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000 [ 367.340889][T10186] RBP: 00007f79b4716090 R08: 0000000000000000 R09: 0000000000000000 [ 367.340909][T10186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 367.340929][T10186] R13: 00007f79b3a16038 R14: 00007f79b3a15fa0 R15: 00007fffa30462b8 [ 367.340971][T10186] [ 367.690095][T10186] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1024'. [ 368.633676][T10209] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1030'. [ 369.060464][T10193] kexec: Could not allocate control_code_buffer [ 369.469630][T10218] EXT4-fs: 30 callbacks suppressed [ 369.469662][T10218] EXT4-fs (sda1): Delayed block allocation failed for inode 2034 at logical offset 63 with max blocks 1 with error 117 [ 369.518378][T10218] EXT4-fs (sda1): This should not happen!! Data will be lost [ 369.518378][T10218] [ 369.554794][T10216] EXT4-fs (sda1): Delayed block allocation failed for inode 2034 at logical offset 63 with max blocks 1 with error 117 [ 369.581451][T10216] EXT4-fs (sda1): This should not happen!! Data will be lost [ 369.581451][T10216] [ 370.339733][T10249] FAULT_INJECTION: forcing a failure. [ 370.339733][T10249] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 370.381053][T10249] CPU: 1 UID: 0 PID: 10249 Comm: syz.0.1038 Tainted: G U L syzkaller #0 PREEMPT(full) [ 370.381117][T10249] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 370.381130][T10249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 370.381161][T10249] Call Trace: [ 370.381173][T10249] [ 370.381186][T10249] dump_stack_lvl+0x100/0x190 [ 370.381232][T10249] should_fail_ex.cold+0x5/0xa [ 370.381277][T10249] _copy_to_iter+0x1f3/0x1720 [ 370.381319][T10249] ? chacha_block_generic+0x265/0x360 [ 370.381367][T10249] ? __pfx__copy_to_iter+0x10/0x10 [ 370.381407][T10249] ? lockdep_hardirqs_on+0x78/0x100 [ 370.381444][T10249] ? crng_make_state+0x2b0/0x6c0 [ 370.381497][T10249] get_random_bytes_user+0x17b/0x3d0 [ 370.381546][T10249] ? __pfx_get_random_bytes_user+0x10/0x10 [ 370.381608][T10249] ? __mutex_unlock_slowpath+0x15d/0x8a0 [ 370.381646][T10249] ? kernel_write+0x5e3/0x6c0 [ 370.381704][T10249] ? import_ubuf+0x1b6/0x220 [ 370.381744][T10249] __x64_sys_getrandom+0x183/0x290 [ 370.381794][T10249] ? __pfx___x64_sys_getrandom+0x10/0x10 [ 370.381841][T10249] ? fput+0x79/0x100 [ 370.381902][T10249] ? rcu_is_watching+0x12/0xc0 [ 370.381953][T10249] do_syscall_64+0x10b/0x830 [ 370.381985][T10249] ? clear_bhb_loop+0x40/0x90 [ 370.382031][T10249] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 370.382067][T10249] RIP: 0033:0x7fe42879ce59 [ 370.382096][T10249] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 370.382130][T10249] RSP: 002b:00007fe4296d8028 EFLAGS: 00000246 ORIG_RAX: 000000000000013e [ 370.382175][T10249] RAX: ffffffffffffffda RBX: 00007fe428a15fa0 RCX: 00007fe42879ce59 [ 370.382199][T10249] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000 [ 370.382222][T10249] RBP: 00007fe4296d8090 R08: 0000000000000000 R09: 0000000000000000 [ 370.382243][T10249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 370.382264][T10249] R13: 00007fe428a16038 R14: 00007fe428a15fa0 R15: 00007ffe4eaba358 [ 370.382311][T10249] [ 370.655079][T10249] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1038'. [ 371.155488][T10255] random: crng reseeded on system resumption [ 371.950150][T10264] NFSD: Failed to start, no listeners configured. [ 372.462415][T10263] kexec: Could not allocate control_code_buffer [ 372.647629][T10288] FAULT_INJECTION: forcing a failure. [ 372.647629][T10288] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 372.682010][T10288] CPU: 1 UID: 0 PID: 10288 Comm: syz.2.1047 Tainted: G U L syzkaller #0 PREEMPT(full) [ 372.682057][T10288] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 372.682065][T10288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 372.682079][T10288] Call Trace: [ 372.682087][T10288] [ 372.682096][T10288] dump_stack_lvl+0x100/0x190 [ 372.682126][T10288] should_fail_ex.cold+0x5/0xa [ 372.682156][T10288] _copy_to_iter+0x1f3/0x1720 [ 372.682183][T10288] ? chacha_block_generic+0x265/0x360 [ 372.682213][T10288] ? __pfx__copy_to_iter+0x10/0x10 [ 372.682241][T10288] ? lockdep_hardirqs_on+0x78/0x100 [ 372.682263][T10288] ? crng_make_state+0x2b0/0x6c0 [ 372.682297][T10288] get_random_bytes_user+0x17b/0x3d0 [ 372.682328][T10288] ? __pfx_get_random_bytes_user+0x10/0x10 [ 372.682362][T10288] ? __mutex_unlock_slowpath+0x15d/0x8a0 [ 372.682385][T10288] ? kernel_write+0x5e3/0x6c0 [ 372.682426][T10288] ? import_ubuf+0x1b6/0x220 [ 372.682451][T10288] __x64_sys_getrandom+0x183/0x290 [ 372.682483][T10288] ? __pfx___x64_sys_getrandom+0x10/0x10 [ 372.682513][T10288] ? fput+0x79/0x100 [ 372.682551][T10288] ? rcu_is_watching+0x12/0xc0 [ 372.682583][T10288] do_syscall_64+0x10b/0x830 [ 372.682605][T10288] ? clear_bhb_loop+0x40/0x90 [ 372.682632][T10288] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 372.682656][T10288] RIP: 0033:0x7f79b379ce59 [ 372.682675][T10288] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 372.682725][T10288] RSP: 002b:00007f79b4716028 EFLAGS: 00000246 ORIG_RAX: 000000000000013e [ 372.682758][T10288] RAX: ffffffffffffffda RBX: 00007f79b3a15fa0 RCX: 00007f79b379ce59 [ 372.682774][T10288] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000 [ 372.682787][T10288] RBP: 00007f79b4716090 R08: 0000000000000000 R09: 0000000000000000 [ 372.682801][T10288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 372.682815][T10288] R13: 00007f79b3a16038 R14: 00007f79b3a15fa0 R15: 00007fffa30462b8 [ 372.682844][T10288] [ 372.950054][T10288] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1047'. [ 374.407402][T10314] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1051'. [ 375.620081][T10336] Format for adding new device is "id port_count num_queues" (uint uint uint). [ 376.422024][T10342] FAULT_INJECTION: forcing a failure. [ 376.422024][T10342] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 376.446054][T10342] CPU: 0 UID: 0 PID: 10342 Comm: syz.2.1059 Tainted: G U L syzkaller #0 PREEMPT(full) [ 376.446105][T10342] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 376.446113][T10342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 376.446127][T10342] Call Trace: [ 376.446135][T10342] [ 376.446143][T10342] dump_stack_lvl+0x100/0x190 [ 376.446180][T10342] should_fail_ex.cold+0x5/0xa [ 376.446209][T10342] _copy_to_iter+0x1f3/0x1720 [ 376.446236][T10342] ? chacha_block_generic+0x265/0x360 [ 376.446267][T10342] ? __pfx__copy_to_iter+0x10/0x10 [ 376.446295][T10342] ? lockdep_hardirqs_on+0x78/0x100 [ 376.446317][T10342] ? crng_make_state+0x2b0/0x6c0 [ 376.446350][T10342] get_random_bytes_user+0x17b/0x3d0 [ 376.446382][T10342] ? __pfx_get_random_bytes_user+0x10/0x10 [ 376.446417][T10342] ? __mutex_unlock_slowpath+0x15d/0x8a0 [ 376.446440][T10342] ? kernel_write+0x5e3/0x6c0 [ 376.446476][T10342] ? import_ubuf+0x1b6/0x220 [ 376.446500][T10342] __x64_sys_getrandom+0x183/0x290 [ 376.446532][T10342] ? __pfx___x64_sys_getrandom+0x10/0x10 [ 376.446561][T10342] ? fput+0x79/0x100 [ 376.446600][T10342] ? rcu_is_watching+0x12/0xc0 [ 376.446632][T10342] do_syscall_64+0x10b/0x830 [ 376.446653][T10342] ? clear_bhb_loop+0x40/0x90 [ 376.446681][T10342] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 376.446705][T10342] RIP: 0033:0x7f79b379ce59 [ 376.446725][T10342] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 376.446747][T10342] RSP: 002b:00007f79b4716028 EFLAGS: 00000246 ORIG_RAX: 000000000000013e [ 376.446769][T10342] RAX: ffffffffffffffda RBX: 00007f79b3a15fa0 RCX: 00007f79b379ce59 [ 376.446784][T10342] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000 [ 376.446797][T10342] RBP: 00007f79b4716090 R08: 0000000000000000 R09: 0000000000000000 [ 376.446812][T10342] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 376.446825][T10342] R13: 00007f79b3a16038 R14: 00007f79b3a15fa0 R15: 00007fffa30462b8 [ 376.446855][T10342] [ 376.687077][T10331] kexec: Could not allocate control_code_buffer [ 376.827276][T10342] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1059'. [ 377.436204][T10355] FAULT_INJECTION: forcing a failure. [ 377.436204][T10355] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 377.460677][T10355] CPU: 1 UID: 0 PID: 10355 Comm: syz.1.1062 Tainted: G U L syzkaller #0 PREEMPT(full) [ 377.460730][T10355] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 377.460742][T10355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 377.460760][T10355] Call Trace: [ 377.460770][T10355] [ 377.460782][T10355] dump_stack_lvl+0x100/0x190 [ 377.460824][T10355] should_fail_ex.cold+0x5/0xa [ 377.460865][T10355] _copy_from_user+0x2e/0xd0 [ 377.460992][T10355] copy_msghdr_from_user+0x9f/0x4f0 [ 377.461091][T10355] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 377.461176][T10355] ? __pfx__kstrtoull+0x10/0x10 [ 377.461228][T10355] ___sys_sendmsg+0x106/0x1e0 [ 377.461259][T10355] ? __pfx____sys_sendmsg+0x10/0x10 [ 377.461335][T10355] ? find_held_lock+0x2b/0x80 [ 377.461413][T10355] __sys_sendmmsg+0x205/0x430 [ 377.461460][T10355] ? __pfx___sys_sendmmsg+0x10/0x10 [ 377.461515][T10355] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 377.461574][T10355] ? fput+0x79/0x100 [ 377.461624][T10355] ? ksys_write+0x1ac/0x250 [ 377.461662][T10355] ? __pfx_ksys_write+0x10/0x10 [ 377.461708][T10355] __x64_sys_sendmmsg+0x9c/0x100 [ 377.461748][T10355] ? lockdep_hardirqs_on+0x78/0x100 [ 377.461780][T10355] do_syscall_64+0x10b/0x830 [ 377.461809][T10355] ? clear_bhb_loop+0x40/0x90 [ 377.461849][T10355] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 377.461883][T10355] RIP: 0033:0x7f216fb9ce59 [ 377.461909][T10355] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 377.461940][T10355] RSP: 002b:00007f216ddf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 377.461971][T10355] RAX: ffffffffffffffda RBX: 00007f216fe16180 RCX: 00007f216fb9ce59 [ 377.461993][T10355] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000006 [ 377.462012][T10355] RBP: 00007f216ddf6090 R08: 0000000000000000 R09: 0000000000000000 [ 377.462032][T10355] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 377.462051][T10355] R13: 00007f216fe16218 R14: 00007f216fe16180 R15: 00007ffc4f742568 [ 377.462093][T10355] [ 377.771811][ T1313] ieee802154 phy0 wpan0: encryption failed: -22 [ 377.778481][ T1313] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.873820][T10373] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1065'. [ 379.549476][T10385] netlink: 'syz.2.1068': attribute type 11 has an invalid length. [ 379.708812][T10390] EXT4-fs (sda1): Delayed block allocation failed for inode 2034 at logical offset 63 with max blocks 1 with error 117 [ 379.733451][T10390] EXT4-fs (sda1): This should not happen!! Data will be lost [ 379.733451][T10390] [ 380.756549][T10391] kexec: Could not allocate control_code_buffer [ 381.070981][T10401] EXT4-fs (sda1): Delayed block allocation failed for inode 2034 at logical offset 63 with max blocks 1 with error 117 [ 381.103218][T10401] EXT4-fs (sda1): This should not happen!! Data will be lost [ 381.103218][T10401] [ 381.194149][T10425] EXT4-fs (sda1): Delayed block allocation failed for inode 2030 at logical offset 63 with max blocks 1 with error 117 [ 381.252949][T10425] EXT4-fs (sda1): This should not happen!! Data will be lost [ 381.252949][T10425] [ 381.565222][T10441] FAULT_INJECTION: forcing a failure. [ 381.565222][T10441] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 381.580980][T10441] CPU: 1 UID: 0 PID: 10441 Comm: syz.0.1076 Tainted: G U L syzkaller #0 PREEMPT(full) [ 381.581049][T10441] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 381.581061][T10441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 381.581081][T10441] Call Trace: [ 381.581091][T10441] [ 381.581104][T10441] dump_stack_lvl+0x100/0x190 [ 381.581152][T10441] should_fail_ex.cold+0x5/0xa [ 381.581199][T10441] _copy_from_user+0x2e/0xd0 [ 381.581246][T10441] ____sys_sendmsg+0x1d1/0xb70 [ 381.581303][T10441] ? __pfx_____sys_sendmsg+0x10/0x10 [ 381.581361][T10441] ? __pfx__kstrtoull+0x10/0x10 [ 381.581413][T10441] ___sys_sendmsg+0x190/0x1e0 [ 381.581447][T10441] ? __pfx____sys_sendmsg+0x10/0x10 [ 381.581497][T10441] ? find_held_lock+0x2b/0x80 [ 381.581567][T10441] __sys_sendmmsg+0x205/0x430 [ 381.581615][T10441] ? __pfx___sys_sendmmsg+0x10/0x10 [ 381.581671][T10441] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 381.581722][T10441] ? fput+0x79/0x100 [ 381.581767][T10441] ? ksys_write+0x1ac/0x250 [ 381.581803][T10441] ? __pfx_ksys_write+0x10/0x10 [ 381.581850][T10441] __x64_sys_sendmmsg+0x9c/0x100 [ 381.581896][T10441] ? lockdep_hardirqs_on+0x78/0x100 [ 381.581928][T10441] do_syscall_64+0x10b/0x830 [ 381.581958][T10441] ? clear_bhb_loop+0x40/0x90 [ 381.581999][T10441] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 381.582034][T10441] RIP: 0033:0x7fe42879ce59 [ 381.582060][T10441] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 381.582091][T10441] RSP: 002b:00007fe429675028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 381.582122][T10441] RAX: ffffffffffffffda RBX: 00007fe428a16270 RCX: 00007fe42879ce59 [ 381.582144][T10441] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000006 [ 381.582163][T10441] RBP: 00007fe429675090 R08: 0000000000000000 R09: 0000000000000000 [ 381.582183][T10441] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 381.582203][T10441] R13: 00007fe428a16308 R14: 00007fe428a16270 R15: 00007ffe4eaba358 [ 381.582253][T10441] [ 382.953570][T10461] random: crng reseeded on system resumption [ 383.820303][T10480] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1086'. [ 383.834580][T10480] netlink: 354 bytes leftover after parsing attributes in process `syz.0.1086'. [ 385.300388][T10478] kexec: Could not allocate control_code_buffer [ 386.400346][T10504] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[7972] was attempted by ""[10504] [ 386.509210][T10504] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1092'. [ 386.886721][T10527] random: crng reseeded on system resumption [ 387.078720][ T35] EXT4-fs (sda1): Delayed block allocation failed for inode 2034 at logical offset 63 with max blocks 1 with error 117 [ 387.112875][ T35] EXT4-fs (sda1): This should not happen!! Data will be lost [ 387.112875][ T35] [ 387.151241][ T35] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1 with max blocks 2 with error 117 [ 387.200021][ T35] EXT4-fs (sda1): This should not happen!! Data will be lost [ 387.200021][ T35] [ 387.237998][ T35] EXT4-fs (sda1): Delayed block allocation failed for inode 2032 at logical offset 993 with max blocks 31 with error 117 [ 387.282493][ T35] EXT4-fs (sda1): This should not happen!! Data will be lost [ 387.282493][ T35] [ 387.345940][ T35] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 2 with max blocks 1 with error 117 [ 387.378408][ T35] EXT4-fs (sda1): This should not happen!! Data will be lost [ 387.378408][ T35] [ 387.401685][ T35] EXT4-fs (sda1): Delayed block allocation failed for inode 2028 at logical offset 1008 with max blocks 16 with error 117 [ 387.439546][ T35] EXT4-fs (sda1): This should not happen!! Data will be lost [ 387.439546][ T35] [ 388.212467][T10559] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1104'. [ 388.869152][T10574] FAULT_INJECTION: forcing a failure. [ 388.869152][T10574] name fail_futex, interval 1, probability 0, space 0, times 0 [ 388.893314][T10574] CPU: 0 UID: 0 PID: 10574 Comm: syz.1.1108 Tainted: G U L syzkaller #0 PREEMPT(full) [ 388.893370][T10574] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 388.893384][T10574] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 388.893404][T10574] Call Trace: [ 388.893416][T10574] [ 388.893429][T10574] dump_stack_lvl+0x100/0x190 [ 388.893473][T10574] should_fail_ex.cold+0x5/0xa [ 388.893518][T10574] get_futex_key+0x1d2/0x1510 [ 388.893613][T10574] ? __pfx_get_futex_key+0x10/0x10 [ 388.893657][T10574] ? kasan_save_track+0x14/0x30 [ 388.893695][T10574] ? __kasan_kmalloc+0xaa/0xb0 [ 388.893735][T10574] futex_lock_pi+0x1d2/0x7a0 [ 388.893786][T10574] ? __pfx_futex_lock_pi+0x10/0x10 [ 388.893877][T10574] ? __pfx_futex_wake_mark+0x10/0x10 [ 388.893935][T10574] ? ksys_write+0x190/0x250 [ 388.893975][T10574] ? ksys_write+0x190/0x250 [ 388.894026][T10574] do_futex+0x18a/0x350 [ 388.894065][T10574] ? __pfx_do_futex+0x10/0x10 [ 388.894119][T10574] __x64_sys_futex+0x34f/0x4d0 [ 388.894164][T10574] ? __pfx___x64_sys_futex+0x10/0x10 [ 388.894202][T10574] ? ksys_write+0x1ac/0x250 [ 388.894248][T10574] ? rcu_is_watching+0x12/0xc0 [ 388.894298][T10574] do_syscall_64+0x10b/0x830 [ 388.894331][T10574] ? clear_bhb_loop+0x40/0x90 [ 388.894374][T10574] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 388.894410][T10574] RIP: 0033:0x7f216fb9ce59 [ 388.894439][T10574] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 388.894474][T10574] RSP: 002b:00007f21709a1028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 388.894507][T10574] RAX: ffffffffffffffda RBX: 00007f216fe15fa0 RCX: 00007f216fb9ce59 [ 388.894530][T10574] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 388.894551][T10574] RBP: 00007f216fc32d6f R08: 0000000000000000 R09: 000000008000fff5 [ 388.894580][T10574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 388.894602][T10574] R13: 00007f216fe16038 R14: 00007f216fe15fa0 R15: 00007ffc4f742568 [ 388.894652][T10574] [ 389.412283][T10549] kexec: Could not allocate control_code_buffer [ 389.756448][ T5638] Bluetooth: hci0: unexpected subevent 0x05 length: 123 > 12 [ 391.426780][T10621] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1119'. [ 391.770012][ T5638] Bluetooth: hci0: command 0x0406 tx timeout [ 392.814645][T10624] kexec: Could not allocate control_code_buffer [ 392.842296][T10643] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.1123: iget: checksum invalid [ 392.893267][T10643] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 392.927607][T10643] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.1123: iget: checksum invalid [ 392.947009][T10643] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 392.988851][T10643] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.1123: iget: checksum invalid [ 393.018274][T10643] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 393.112264][T10643] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.1123: iget: checksum invalid [ 393.241123][T10643] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 393.321185][T10643] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 393.404325][T10643] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 394.633907][T10690] ubi0: attaching mtd0 [ 394.660877][T10690] ubi0: scanning is finished [ 394.802332][T10663] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„ [ 395.160982][T10690] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 395.192456][T10690] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 395.223849][T10690] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 395.246781][T10690] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 395.311882][T10690] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 395.335183][T10690] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 395.374881][T10690] ubi0: max/mean erase counter: 2/1, WL threshold: 4096, image sequence number: 2296483906 [ 395.480655][T10690] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 395.534916][T10702] ubi0: background thread "ubi_bgt0d" started, PID 10702 [ 395.549265][T10693] ubi0: detaching mtd0 [ 395.625864][T10693] ubi0: mtd0 is detached [ 395.999373][T10708] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1136'. [ 396.121650][T10699] kexec: Could not allocate control_code_buffer [ 398.528626][T10751] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1146'. [ 400.472601][T10771] kexec: Could not allocate control_code_buffer [ 401.712034][T10801] EXT4-fs: 2 callbacks suppressed [ 401.712058][T10801] EXT4-fs (sda1): Delayed block allocation failed for inode 2032 at logical offset 63 with max blocks 1 with error 117 [ 401.748157][T10801] EXT4-fs (sda1): This should not happen!! Data will be lost [ 401.748157][T10801] [ 402.415633][T10814] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1158'. [ 402.843859][T10818] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1160'. [ 404.532224][T10827] kexec: Could not allocate control_code_buffer [ 407.176073][T10892] FAULT_INJECTION: forcing a failure. [ 407.176073][T10892] name failslab, interval 1, probability 0, space 0, times 0 [ 407.250464][T10892] CPU: 0 UID: 0 PID: 10892 Comm: syz.2.1174 Tainted: G U L syzkaller #0 PREEMPT(full) [ 407.250521][T10892] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 407.250535][T10892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 407.250556][T10892] Call Trace: [ 407.250568][T10892] [ 407.250582][T10892] dump_stack_lvl+0x100/0x190 [ 407.250629][T10892] should_fail_ex.cold+0x5/0xa [ 407.250672][T10892] ? tomoyo_encode2+0xfb/0x3c0 [ 407.250894][T10892] should_failslab+0xc2/0x120 [ 407.250938][T10892] __kmalloc_noprof+0xe0/0x850 [ 407.250980][T10892] tomoyo_encode2+0xfb/0x3c0 [ 407.251032][T10892] tomoyo_encode+0x29/0x50 [ 407.251075][T10892] tomoyo_mount_acl+0x14c/0x8b0 [ 407.251117][T10892] ? is_bpf_text_address+0x8a/0x1a0 [ 407.251178][T10892] ? bpf_ksym_find+0x124/0x1c0 [ 407.251217][T10892] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 407.251279][T10892] ? __pfx_tomoyo_mount_acl+0x10/0x10 [ 407.251327][T10892] ? kernel_text_address+0x8d/0x100 [ 407.251377][T10892] ? unwind_get_return_address+0x59/0xa0 [ 407.251477][T10892] ? tomoyo_domain+0xb2/0x150 [ 407.251526][T10892] ? tomoyo_profile+0x47/0x60 [ 407.251611][T10892] tomoyo_mount_permission+0x214/0x460 [ 407.251654][T10892] ? tomoyo_mount_permission+0x1f6/0x460 [ 407.251702][T10892] ? __pfx_tomoyo_mount_permission+0x10/0x10 [ 407.251772][T10892] security_sb_mount+0xdd/0x270 [ 407.251836][T10892] path_mount+0x158/0x23d0 [ 407.251901][T10892] ? __pfx_path_mount+0x10/0x10 [ 407.251946][T10892] ? lockdep_hardirqs_on+0x78/0x100 [ 407.251985][T10892] ? putname+0xb1/0x110 [ 407.252028][T10892] ? kmem_cache_free+0x127/0x6c0 [ 407.252093][T10892] ? __x64_sys_mount+0x293/0x310 [ 407.252139][T10892] __x64_sys_mount+0x293/0x310 [ 407.252188][T10892] ? __pfx___x64_sys_mount+0x10/0x10 [ 407.252242][T10892] ? rcu_is_watching+0x12/0xc0 [ 407.252297][T10892] do_syscall_64+0x10b/0x830 [ 407.252330][T10892] ? clear_bhb_loop+0x40/0x90 [ 407.252373][T10892] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 407.252408][T10892] RIP: 0033:0x7f79b379ce59 [ 407.252436][T10892] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 407.252471][T10892] RSP: 002b:00007f79b46b3028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 407.252504][T10892] RAX: ffffffffffffffda RBX: 00007f79b3a16270 RCX: 00007f79b379ce59 [ 407.252527][T10892] RDX: 0000200000000100 RSI: 00002000000000c0 RDI: 0000000000000000 [ 407.252549][T10892] RBP: 00007f79b3832d6f R08: 0000000000000000 R09: 0000000000000000 [ 407.252570][T10892] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000 [ 407.252590][T10892] R13: 00007f79b3a16308 R14: 00007f79b3a16270 R15: 00007fffa30462b8 [ 407.252636][T10892] [ 408.680768][T10910] bridge0: port 3(dummy0) entered blocking state [ 408.717564][T10910] bridge0: port 3(dummy0) entered disabled state [ 408.771333][T10910] dummy0: entered allmulticast mode [ 408.820871][T10910] dummy0: entered promiscuous mode [ 408.859664][T10910] bridge0: port 3(dummy0) entered blocking state [ 408.866268][T10910] bridge0: port 3(dummy0) entered forwarding state [ 409.167475][T10902] kexec: Could not allocate control_code_buffer [ 410.547379][ T29] audit: type=1800 audit(4175.055:11): pid=10955 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1189" name="dbroot" dev="configfs" ino=41430 res=0 errno=0 [ 411.926534][T10974] Â: entered promiscuous mode [ 412.623744][T11001] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1199'. [ 412.868744][T11001] veth0_vlan: entered allmulticast mode [ 413.004541][T10972] kexec: Could not allocate control_code_buffer [ 415.496534][ T50] Bluetooth: hci3: command 0x2016 tx timeout [ 415.951026][T11042] kexec: Could not allocate control_code_buffer [ 417.648743][ T202] EXT4-fs (sda1): Delayed block allocation failed for inode 2034 at logical offset 63 with max blocks 1 with error 117 [ 417.692743][ T202] EXT4-fs (sda1): This should not happen!! Data will be lost [ 417.692743][ T202] [ 417.716614][ T202] EXT4-fs (sda1): Delayed block allocation failed for inode 2032 at logical offset 993 with max blocks 31 with error 117 [ 417.742162][ T202] EXT4-fs (sda1): This should not happen!! Data will be lost [ 417.742162][ T202] [ 417.779873][ T202] EXT4-fs (sda1): Delayed block allocation failed for inode 2028 at logical offset 1008 with max blocks 16 with error 117 [ 417.826346][ T202] EXT4-fs (sda1): This should not happen!! Data will be lost [ 417.826346][ T202] [ 417.859059][ T202] EXT4-fs (sda1): Delayed block allocation failed for inode 2030 at logical offset 968 with max blocks 56 with error 117 [ 417.893628][ T202] EXT4-fs (sda1): This should not happen!! Data will be lost [ 417.893628][ T202] [ 417.904426][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 418.966293][T11105] kexec: Could not allocate control_code_buffer [ 420.817982][T11149] can: request_module (can-proto-5) failed. [ 422.205989][T11156] kexec: Could not allocate control_code_buffer [ 422.968111][ T202] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1 with max blocks 11 with error 117 [ 422.997553][ T202] EXT4-fs (sda1): This should not happen!! Data will be lost [ 422.997553][ T202] [ 424.991658][T11240] random: crng reseeded on system resumption [ 425.007609][T11239] FAULT_INJECTION: forcing a failure. [ 425.007609][T11239] name failslab, interval 1, probability 0, space 0, times 0 [ 425.054559][T11239] CPU: 1 UID: 0 PID: 11239 Comm: syz.0.1253 Tainted: G U L syzkaller #0 PREEMPT(full) [ 425.054609][T11239] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 425.054620][T11239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 425.054637][T11239] Call Trace: [ 425.054646][T11239] [ 425.054657][T11239] dump_stack_lvl+0x100/0x190 [ 425.054695][T11239] should_fail_ex.cold+0x5/0xa [ 425.054731][T11239] should_failslab+0xc2/0x120 [ 425.054775][T11239] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 425.054805][T11239] ? __d_alloc+0x34/0xa40 [ 425.054886][T11239] __d_alloc+0x34/0xa40 [ 425.054932][T11239] d_alloc+0x4a/0x1e0 [ 425.054975][T11239] lookup_one_qstr_excl+0x171/0x250 [ 425.055049][T11239] start_dirop+0x59/0xb0 [ 425.055091][T11239] simple_start_creating+0xf9/0x110 [ 425.055141][T11239] ? __pfx_simple_start_creating+0x10/0x10 [ 425.055195][T11239] ? mntput+0x70/0xa0 [ 425.055228][T11239] ? simple_pin_fs+0xa3/0x190 [ 425.055273][T11239] debugfs_start_creating.part.0+0x82/0x170 [ 425.055443][T11239] __debugfs_create_file+0xb3/0x4f0 [ 425.055495][T11239] debugfs_create_file_full+0x41/0x60 [ 425.055548][T11239] ref_tracker_dir_debugfs+0x19e/0x2e0 [ 425.055639][T11239] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 425.055677][T11239] ? ida_alloc_range+0x70d/0x830 [ 425.055777][T11239] ? lockdep_init_map_type+0x5c/0x250 [ 425.055814][T11239] preinit_net.part.0+0x252/0x920 [ 425.055889][T11239] copy_net_ns+0x339/0x7c0 [ 425.055972][T11239] create_new_namespaces+0x3ea/0xac0 [ 425.056022][T11239] unshare_nsproxy_namespaces+0xf2/0x220 [ 425.056066][T11239] ksys_unshare+0x438/0xab0 [ 425.056112][T11239] ? __pfx_ksys_unshare+0x10/0x10 [ 425.056153][T11239] ? xfd_validate_state+0x129/0x190 [ 425.056197][T11239] ? ksys_write+0x1ac/0x250 [ 425.056242][T11239] __x64_sys_unshare+0x31/0x40 [ 425.056286][T11239] do_syscall_64+0x10b/0x830 [ 425.056312][T11239] ? clear_bhb_loop+0x40/0x90 [ 425.056348][T11239] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 425.056376][T11239] RIP: 0033:0x7fe42879ce59 [ 425.056400][T11239] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 425.056429][T11239] RSP: 002b:00007fe4296b7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 425.056458][T11239] RAX: ffffffffffffffda RBX: 00007fe428a16090 RCX: 00007fe42879ce59 [ 425.056477][T11239] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 425.056494][T11239] RBP: 00007fe428832d6f R08: 0000000000000000 R09: 0000000000000000 [ 425.056517][T11239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 425.056534][T11239] R13: 00007fe428a16128 R14: 00007fe428a16090 R15: 00007ffe4eaba358 [ 425.056570][T11239] [ 425.487485][T11227] kexec: Could not allocate control_code_buffer [ 425.836936][T11260] futex_wake_op: syz.2.1255 tries to shift op by -2048; fix this program [ 426.487530][T11232] openvswitch: netlink: Multiple metadata blocks provided [ 426.746005][ T29] audit: type=1807 audit(4191.319:12): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0 [ 426.769048][ T29] audit: type=1802 audit(4191.339:13): pid=11283 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.2.1259" res=0 errno=0 [ 427.129089][T11289] Â: entered promiscuous mode [ 427.446998][T11278] ima: policy update failed [ 427.457157][ T29] audit: type=1802 audit(4192.053:14): pid=11278 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1259" res=0 errno=0 [ 427.486850][T11304] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1263: iget: checksum invalid [ 427.527735][T11304] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 427.555464][T11304] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1263: iget: checksum invalid [ 427.600385][T11304] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 427.621840][T11304] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1263: iget: checksum invalid [ 427.644706][T11304] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 427.676639][T11304] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1263: iget: checksum invalid [ 427.716106][T11304] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 427.769494][T11304] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 427.809072][T11304] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 428.171434][T11308] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 428.208069][T11308] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 428.243904][T11308] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 428.266389][T11308] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 428.296304][T11308] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 428.410919][T11313] ecryptfs_miscdev_write: Error while inspecting packet size [ 428.735392][ T5638] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 429.812065][ T50] Bluetooth: hci0: command 0x0406 tx timeout [ 429.825472][T11319] kexec: Could not allocate control_code_buffer [ 430.210056][ T50] Bluetooth: hci2: command 0x0406 tx timeout [ 430.299634][ T50] Bluetooth: hci3: command 0x2016 tx timeout [ 430.299663][ T5635] Bluetooth: hci1: command 0x0c1a tx timeout [ 431.486089][ T5638] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 432.368832][ T5638] Bluetooth: hci3: command 0x2016 tx timeout [ 434.375491][T11397] kexec: Could not allocate control_code_buffer [ 434.962186][T11425] netlink: 'syz.3.1288': attribute type 33 has an invalid length. [ 434.972863][T11425] netlink: 322 bytes leftover after parsing attributes in process `syz.3.1288'. [ 437.625276][T11462] kexec: Could not allocate control_code_buffer [ 437.824438][T11488] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1302'. [ 438.592957][T11509] futex_wake_op: syz.0.1307 tries to shift op by -2048; fix this program [ 438.695607][T11507] 0x000000000001-0x000000020000 : "" [ 438.751686][T11507] ftl_cs: FTL header corrupt! [ 438.787788][T11511] FAULT_INJECTION: forcing a failure. [ 438.787788][T11511] name failslab, interval 1, probability 0, space 0, times 0 [ 438.863896][T11511] CPU: 1 UID: 0 PID: 11511 Comm: syz.2.1308 Tainted: G U L syzkaller #0 PREEMPT(full) [ 438.863950][T11511] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 438.863962][T11511] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 438.863982][T11511] Call Trace: [ 438.863991][T11511] [ 438.864004][T11511] dump_stack_lvl+0x100/0x190 [ 438.864047][T11511] should_fail_ex.cold+0x5/0xa [ 438.864089][T11511] ? __register_sysctl_table+0xac/0x1650 [ 438.864158][T11511] should_failslab+0xc2/0x120 [ 438.864199][T11511] __kmalloc_noprof+0xe0/0x850 [ 438.864239][T11511] __register_sysctl_table+0xac/0x1650 [ 438.864283][T11511] ? is_module_address+0x5f/0xf0 [ 438.864324][T11511] ? __pfx___register_sysctl_table+0x10/0x10 [ 438.864368][T11511] ? is_module_address+0x69/0xf0 [ 438.864399][T11511] ? register_net_sysctl_sz+0x222/0x430 [ 438.864519][T11511] ? __asan_memcpy+0x3c/0x60 [ 438.864577][T11511] sctp_sysctl_net_register+0x15e/0x200 [ 438.864704][T11511] ? __pfx_sctp_defaults_init+0x10/0x10 [ 438.864773][T11511] sctp_defaults_init+0x6d2/0xd90 [ 438.864816][T11511] ? __pfx_sctp_defaults_init+0x10/0x10 [ 438.864858][T11511] ops_init+0x1e2/0x5f0 [ 438.864913][T11511] setup_net+0x118/0x3a0 [ 438.864959][T11511] ? __pfx_setup_net+0x10/0x10 [ 438.865004][T11511] ? mutex_init_lockdep+0xf1/0x120 [ 438.865059][T11511] copy_net_ns+0x46f/0x7c0 [ 438.865112][T11511] create_new_namespaces+0x3ea/0xac0 [ 438.865168][T11511] unshare_nsproxy_namespaces+0xf2/0x220 [ 438.865219][T11511] ksys_unshare+0x438/0xab0 [ 438.865272][T11511] ? __pfx_ksys_unshare+0x10/0x10 [ 438.865322][T11511] ? xfd_validate_state+0x129/0x190 [ 438.865373][T11511] __x64_sys_unshare+0x31/0x40 [ 438.865424][T11511] do_syscall_64+0x10b/0x830 [ 438.865455][T11511] ? clear_bhb_loop+0x40/0x90 [ 438.865499][T11511] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 438.865535][T11511] RIP: 0033:0x7f79b379ce59 [ 438.865562][T11511] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 438.865596][T11511] RSP: 002b:00007f79b4716028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 438.865638][T11511] RAX: ffffffffffffffda RBX: 00007f79b3a15fa0 RCX: 00007f79b379ce59 [ 438.865660][T11511] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 438.865681][T11511] RBP: 00007f79b3832d6f R08: 0000000000000000 R09: 0000000000000000 [ 438.865702][T11511] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 438.865723][T11511] R13: 00007f79b3a16038 R14: 00007f79b3a15fa0 R15: 00007fffa30462b8 [ 438.865768][T11511] [ 438.941639][ T1313] ieee802154 phy0 wpan0: encryption failed: -22 [ 439.129892][ T1313] ieee802154 phy1 wpan1: encryption failed: -22 [ 441.366385][T11542] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1315'. [ 441.656768][T11536] kexec: Could not allocate control_code_buffer [ 444.531757][T11619] input input8: cannot allocate more than FF_MAX_EFFECTS effects [ 445.731628][T11627] kexec: Could not allocate control_code_buffer [ 446.185874][T11661] FAULT_INJECTION: forcing a failure. [ 446.185874][T11661] name failslab, interval 1, probability 0, space 0, times 0 [ 446.216419][T11661] CPU: 1 UID: 0 PID: 11661 Comm: syz.1.1335 Tainted: G U L syzkaller #0 PREEMPT(full) [ 446.216466][T11661] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 446.216475][T11661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 446.216490][T11661] Call Trace: [ 446.216498][T11661] [ 446.216553][T11661] dump_stack_lvl+0x100/0x190 [ 446.216586][T11661] should_fail_ex.cold+0x5/0xa [ 446.216614][T11661] ? tomoyo_realpath_from_path+0xb6/0x690 [ 446.216649][T11661] should_failslab+0xc2/0x120 [ 446.216709][T11661] __kmalloc_noprof+0xe0/0x850 [ 446.216738][T11661] ? kfree+0x1dd/0x6c0 [ 446.216790][T11661] tomoyo_realpath_from_path+0xb6/0x690 [ 446.216838][T11661] tomoyo_check_open_permission+0x2af/0x3c0 [ 446.216867][T11661] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 446.216895][T11661] ? pidfs_alloc_file+0x18f/0x290 [ 446.216925][T11661] ? do_syscall_64+0x10b/0x830 [ 446.216945][T11661] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 446.216977][T11661] ? hook_file_open+0x24e/0x7a0 [ 446.217120][T11661] ? lock_acquire+0x1b1/0x370 [ 446.217153][T11661] tomoyo_file_open+0x6b/0x90 [ 446.217193][T11661] security_file_open+0xb5/0x1e0 [ 446.217225][T11661] do_dentry_open+0x5aa/0x1660 [ 446.217265][T11661] vfs_open+0x82/0x3f0 [ 446.217306][T11661] dentry_open+0x71/0xd0 [ 446.217343][T11661] pidfs_alloc_file+0x18f/0x290 [ 446.217373][T11661] ? __pfx_pidfs_alloc_file+0x10/0x10 [ 446.217411][T11661] pidfd_prepare+0x10c/0x1b0 [ 446.217447][T11661] __x64_sys_pidfd_open+0x105/0x1a0 [ 446.217472][T11661] ? __pfx___x64_sys_pidfd_open+0x10/0x10 [ 446.217499][T11661] ? rcu_is_watching+0x12/0xc0 [ 446.217539][T11661] do_syscall_64+0x10b/0x830 [ 446.217561][T11661] ? clear_bhb_loop+0x40/0x90 [ 446.217590][T11661] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 446.217615][T11661] RIP: 0033:0x7f216fb9ce59 [ 446.217635][T11661] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 446.217659][T11661] RSP: 002b:00007f21709a1028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b2 [ 446.217682][T11661] RAX: ffffffffffffffda RBX: 00007f216fe15fa0 RCX: 00007f216fb9ce59 [ 446.217698][T11661] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 446.217712][T11661] RBP: 00007f216fc32d6f R08: 0000000000000000 R09: 0000000000000000 [ 446.217727][T11661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 446.217741][T11661] R13: 00007f216fe16038 R14: 00007f216fe15fa0 R15: 00007ffc4f742568 [ 446.217773][T11661] [ 446.497143][T11661] ERROR: Out of memory at tomoyo_realpath_from_path. [ 448.276376][ T47] EXT4-fs (sda1): Delayed block allocation failed for inode 2034 at logical offset 63 with max blocks 1 with error 117 [ 448.302428][ T47] EXT4-fs (sda1): This should not happen!! Data will be lost [ 448.302428][ T47] [ 448.372911][ T47] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1 with max blocks 4 with error 117 [ 448.432286][ T47] EXT4-fs (sda1): This should not happen!! Data will be lost [ 448.432286][ T47] [ 448.476774][ T47] EXT4-fs (sda1): Delayed block allocation failed for inode 2032 at logical offset 993 with max blocks 31 with error 117 [ 448.517284][ T47] EXT4-fs (sda1): This should not happen!! Data will be lost [ 448.517284][ T47] [ 448.571430][ T47] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 2 with max blocks 3 with error 117 [ 448.623485][ T47] EXT4-fs (sda1): This should not happen!! Data will be lost [ 448.623485][ T47] [ 448.687923][ T47] EXT4-fs (sda1): Delayed block allocation failed for inode 2033 at logical offset 1 with max blocks 9 with error 117 [ 448.763377][ T47] EXT4-fs (sda1): This should not happen!! Data will be lost [ 448.763377][ T47] [ 448.952410][T11699] kexec: Could not allocate control_code_buffer [ 451.470893][T11764] kexec: Could not allocate control_code_buffer [ 451.707889][ T1313] ieee802154 phy0 wpan0: encryption failed: -22 [ 451.716154][ T1313] ieee802154 phy1 wpan1: encryption failed: -22 [ 452.650082][T11815] FAULT_INJECTION: forcing a failure. [ 452.650082][T11815] name failslab, interval 1, probability 0, space 0, times 0 [ 452.689475][T11815] CPU: 0 UID: 0 PID: 11815 Comm: syz.0.1372 Tainted: G U L syzkaller #0 PREEMPT(full) [ 452.689540][T11815] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 452.689550][T11815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 452.689564][T11815] Call Trace: [ 452.689572][T11815] [ 452.689582][T11815] dump_stack_lvl+0x100/0x190 [ 452.689614][T11815] should_fail_ex.cold+0x5/0xa [ 452.689645][T11815] should_failslab+0xc2/0x120 [ 452.689674][T11815] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 452.689699][T11815] ? __d_alloc+0x34/0xa40 [ 452.689739][T11815] __d_alloc+0x34/0xa40 [ 452.689776][T11815] d_alloc_pseudo+0x1c/0xc0 [ 452.689800][T11815] alloc_file_pseudo_noaccount+0xcf/0x230 [ 452.689843][T11815] ? __pfx_alloc_file_pseudo_noaccount+0x10/0x10 [ 452.689886][T11815] ? iput+0x3a/0x40 [ 452.689924][T11815] bdev_file_open_by_dev+0x13a/0x210 [ 452.690035][T11815] blkdev_bszset+0x170/0x240 [ 452.690092][T11815] ? __pfx_blkdev_bszset+0x10/0x10 [ 452.690122][T11815] ? find_held_lock+0x2b/0x80 [ 452.690154][T11815] ? __fget_files+0x215/0x3d0 [ 452.690182][T11815] ? hook_file_ioctl_common+0x149/0x410 [ 452.690215][T11815] blkdev_ioctl+0x513/0x6f0 [ 452.690245][T11815] ? __pfx_blkdev_ioctl+0x10/0x10 [ 452.690279][T11815] ? __pfx_blkdev_ioctl+0x10/0x10 [ 452.690310][T11815] __x64_sys_ioctl+0x18e/0x210 [ 452.690338][T11815] do_syscall_64+0x10b/0x830 [ 452.690360][T11815] ? clear_bhb_loop+0x40/0x90 [ 452.690390][T11815] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 452.690414][T11815] RIP: 0033:0x7fe42879ce59 [ 452.690435][T11815] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 452.690471][T11815] RSP: 002b:00007fe4296d8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 452.690494][T11815] RAX: ffffffffffffffda RBX: 00007fe428a15fa0 RCX: 00007fe42879ce59 [ 452.690529][T11815] RDX: 00002000000000c0 RSI: 0000000040081271 RDI: 0000000000000004 [ 452.690550][T11815] RBP: 00007fe428832d6f R08: 0000000000000000 R09: 0000000000000000 [ 452.690564][T11815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 452.690579][T11815] R13: 00007fe428a16038 R14: 00007fe428a15fa0 R15: 00007ffe4eaba358 [ 452.690621][T11815] [ 453.847586][ T202] EXT4-fs: 6 callbacks suppressed [ 453.847609][ T202] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1 with max blocks 3 with error 117 [ 453.911782][ T202] EXT4-fs (sda1): This should not happen!! Data will be lost [ 453.911782][ T202] [ 454.329289][T11821] kexec: Could not allocate control_code_buffer [ 455.785084][T11855] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1384'. [ 456.322160][ T202] EXT4-fs (sda1): Delayed block allocation failed for inode 2034 at logical offset 63 with max blocks 1 with error 117 [ 456.335900][ T202] EXT4-fs (sda1): This should not happen!! Data will be lost [ 456.335900][ T202] [ 456.355137][ T202] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1 with max blocks 1 with error 117 [ 456.373191][ T202] EXT4-fs (sda1): This should not happen!! Data will be lost [ 456.373191][ T202] [ 456.384818][ T202] EXT4-fs (sda1): Delayed block allocation failed for inode 2032 at logical offset 993 with max blocks 31 with error 117 [ 456.398722][ T202] EXT4-fs (sda1): This should not happen!! Data will be lost [ 456.398722][ T202] [ 456.415504][ T202] EXT4-fs (sda1): Delayed block allocation failed for inode 2033 at logical offset 1 with max blocks 1 with error 117 [ 456.428244][ T202] EXT4-fs (sda1): This should not happen!! Data will be lost [ 456.428244][ T202] [ 456.524210][T11852] Process accounting resumed [ 456.802442][T11875] can: request_module (can-proto-0) failed. [ 458.030904][T11901] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1397'. [ 458.292434][T11883] kexec: Could not allocate control_code_buffer [ 458.914575][T11916] can: request_module (can-proto-0) failed. [ 459.481810][T11931] usbip-vudc usbip-vudc.0: gadget not bound [ 459.943759][T11938] nbd: must specify a device to reconfigure [ 461.064313][T11940] FAULT_INJECTION: forcing a failure. [ 461.064313][T11940] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 461.126410][T11940] CPU: 0 UID: 0 PID: 11940 Comm: syz.1.1404 Tainted: G U L syzkaller #0 PREEMPT(full) [ 461.126469][T11940] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 461.126482][T11940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 461.126503][T11940] Call Trace: [ 461.126518][T11940] [ 461.126531][T11940] dump_stack_lvl+0x100/0x190 [ 461.126577][T11940] should_fail_ex.cold+0x5/0xa [ 461.126616][T11940] ? prepare_alloc_pages+0x16d/0x5f0 [ 461.126666][T11940] should_fail_alloc_page+0xeb/0x140 [ 461.126713][T11940] prepare_alloc_pages+0x1f0/0x5f0 [ 461.126767][T11940] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 461.126804][T11940] ? rcu_is_watching+0x12/0xc0 [ 461.126846][T11940] ? trace_mm_page_alloc+0x163/0x1d0 [ 461.126892][T11940] ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0 [ 461.126927][T11940] ? __lock_acquire+0x4a5/0x2630 [ 461.126971][T11940] ? tomoyo_path_number_perm+0x46d/0x580 [ 461.127020][T11940] ? kasan_save_stack+0x3f/0x50 [ 461.127053][T11940] ? kasan_save_stack+0x30/0x50 [ 461.127088][T11940] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 461.127123][T11940] ? look_up_lock_class+0x55/0x120 [ 461.127154][T11940] ? tomoyo_path_number_perm+0x46d/0x580 [ 461.127202][T11940] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 461.127245][T11940] ? __lock_acquire+0x4a5/0x2630 [ 461.127286][T11940] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 461.127342][T11940] ? policy_nodemask+0xed/0x4f0 [ 461.127387][T11940] alloc_pages_mpol+0x1fb/0x540 [ 461.127431][T11940] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 461.127485][T11940] ? vhost_dev_set_owner+0x3b2/0xa30 [ 461.127670][T11940] ___kmalloc_large_node+0xe5/0x120 [ 461.127720][T11940] __kmalloc_large_node_noprof+0x1c/0x70 [ 461.127771][T11940] __kmalloc_noprof+0x5be/0x850 [ 461.127813][T11940] vhost_dev_set_owner+0x3b2/0xa30 [ 461.127871][T11940] vhost_net_ioctl+0xfa3/0x1910 [ 461.127952][T11940] ? do_vfs_ioctl+0x226/0x13e0 [ 461.127989][T11940] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 461.128026][T11940] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 461.128079][T11940] ? find_held_lock+0x2b/0x80 [ 461.128125][T11940] ? __fget_files+0x215/0x3d0 [ 461.128165][T11940] ? hook_file_ioctl_common+0x149/0x410 [ 461.128220][T11940] ? __fget_files+0x21f/0x3d0 [ 461.128268][T11940] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 461.128315][T11940] __x64_sys_ioctl+0x18e/0x210 [ 461.128354][T11940] do_syscall_64+0x10b/0x830 [ 461.128385][T11940] ? clear_bhb_loop+0x40/0x90 [ 461.128428][T11940] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 461.128463][T11940] RIP: 0033:0x7f216fb9ce59 [ 461.128491][T11940] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 461.128526][T11940] RSP: 002b:00007f21709a1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 461.128559][T11940] RAX: ffffffffffffffda RBX: 00007f216fe15fa0 RCX: 00007f216fb9ce59 [ 461.128581][T11940] RDX: 0000000000000000 RSI: 000000000000af01 RDI: 0000000000000009 [ 461.128602][T11940] RBP: 00007f216fc32d6f R08: 0000000000000000 R09: 0000000000000000 [ 461.128623][T11940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 461.128643][T11940] R13: 00007f216fe16038 R14: 00007f216fe15fa0 R15: 00007ffc4f742568 [ 461.128689][T11940] [ 462.412272][T11953] kexec: Could not allocate control_code_buffer [ 464.252820][T12001] openvswitch: netlink: Key type 79 is out of range max 32 [ 464.431325][T12002] usbip-vudc usbip-vudc.0: gadget not bound [ 465.869675][T12027] FAULT_INJECTION: forcing a failure. [ 465.869675][T12027] name failslab, interval 1, probability 0, space 0, times 0 [ 466.006923][T12027] CPU: 0 UID: 0 PID: 12027 Comm: syz.2.1421 Tainted: G U L syzkaller #0 PREEMPT(full) [ 466.006979][T12027] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 466.006998][T12027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 466.007020][T12027] Call Trace: [ 466.007032][T12027] [ 466.007045][T12027] dump_stack_lvl+0x100/0x190 [ 466.007091][T12027] should_fail_ex.cold+0x5/0xa [ 466.007135][T12027] ? __list_lru_init+0xd9/0x4b0 [ 466.007166][T12027] should_failslab+0xc2/0x120 [ 466.007207][T12027] __kmalloc_noprof+0xe0/0x850 [ 466.007249][T12027] __list_lru_init+0xd9/0x4b0 [ 466.007284][T12027] alloc_super+0x926/0xd20 [ 466.007329][T12027] ? __pfx_mqueue_fill_super+0x10/0x10 [ 466.007450][T12027] sget_fc+0x117/0xc70 [ 466.007482][T12027] ? __pfx_set_anon_super_fc+0x10/0x10 [ 466.007515][T12027] ? __pfx_mqueue_fill_super+0x10/0x10 [ 466.007559][T12027] get_tree_nodev+0x28/0x190 [ 466.007594][T12027] mqueue_get_tree+0xf1/0x130 [ 466.007645][T12027] vfs_get_tree+0x92/0x320 [ 466.007675][T12027] fc_mount_longterm+0x1a/0x270 [ 466.007714][T12027] mq_init_ns+0x482/0x820 [ 466.007788][T12027] copy_ipcs+0x3dd/0x7e0 [ 466.007829][T12027] create_new_namespaces+0x20a/0xac0 [ 466.007877][T12027] ? security_capable+0x80/0x260 [ 466.007964][T12027] unshare_nsproxy_namespaces+0xf2/0x220 [ 466.008016][T12027] ksys_unshare+0x438/0xab0 [ 466.008072][T12027] ? __pfx_ksys_unshare+0x10/0x10 [ 466.008122][T12027] ? xfd_validate_state+0x129/0x190 [ 466.008173][T12027] __x64_sys_unshare+0x31/0x40 [ 466.008226][T12027] do_syscall_64+0x10b/0x830 [ 466.008259][T12027] ? clear_bhb_loop+0x40/0x90 [ 466.008301][T12027] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 466.008325][T12027] RIP: 0033:0x7f79b379ce59 [ 466.008345][T12027] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 466.008369][T12027] RSP: 002b:00007f79b4692028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 466.008393][T12027] RAX: ffffffffffffffda RBX: 00007f79b3a16360 RCX: 00007f79b379ce59 [ 466.008409][T12027] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c000000 [ 466.008424][T12027] RBP: 00007f79b3832d6f R08: 0000000000000000 R09: 0000000000000000 [ 466.008438][T12027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 466.008453][T12027] R13: 00007f79b3a163f8 R14: 00007f79b3a16360 R15: 00007fffa30462b8 [ 466.008484][T12027] [ 466.322335][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 466.609301][T12011] FAULT_INJECTION: forcing a failure. [ 466.609301][T12011] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 466.650960][T12011] CPU: 0 UID: 0 PID: 12011 Comm: syz.0.1420 Tainted: G U L syzkaller #0 PREEMPT(full) [ 466.651016][T12011] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 466.651035][T12011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 466.651052][T12011] Call Trace: [ 466.651062][T12011] [ 466.651074][T12011] dump_stack_lvl+0x100/0x190 [ 466.651107][T12011] should_fail_ex.cold+0x5/0xa [ 466.651133][T12011] ? prepare_alloc_pages+0x16d/0x5f0 [ 466.651168][T12011] should_fail_alloc_page+0xeb/0x140 [ 466.651200][T12011] prepare_alloc_pages+0x1f0/0x5f0 [ 466.651236][T12011] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 466.651262][T12011] ? rcu_is_watching+0x12/0xc0 [ 466.651293][T12011] ? trace_mm_page_alloc+0x163/0x1d0 [ 466.651325][T12011] ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0 [ 466.651349][T12011] ? __lock_acquire+0x4a5/0x2630 [ 466.651373][T12011] ? tomoyo_path_number_perm+0x46d/0x580 [ 466.651402][T12011] ? kasan_save_stack+0x3f/0x50 [ 466.651425][T12011] ? kasan_save_stack+0x30/0x50 [ 466.651449][T12011] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 466.651476][T12011] ? look_up_lock_class+0x55/0x120 [ 466.651498][T12011] ? tomoyo_path_number_perm+0x46d/0x580 [ 466.651531][T12011] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 466.651568][T12011] ? __lock_acquire+0x4a5/0x2630 [ 466.651597][T12011] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 466.651636][T12011] ? policy_nodemask+0xed/0x4f0 [ 466.651668][T12011] alloc_pages_mpol+0x1fb/0x540 [ 466.651699][T12011] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 466.651736][T12011] ? vhost_dev_set_owner+0x3b2/0xa30 [ 466.651766][T12011] ___kmalloc_large_node+0xe5/0x120 [ 466.651801][T12011] __kmalloc_large_node_noprof+0x1c/0x70 [ 466.651835][T12011] __kmalloc_noprof+0x5be/0x850 [ 466.651864][T12011] vhost_dev_set_owner+0x3b2/0xa30 [ 466.651905][T12011] vhost_net_ioctl+0xfa3/0x1910 [ 466.651936][T12011] ? do_vfs_ioctl+0x226/0x13e0 [ 466.651961][T12011] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 466.651986][T12011] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 466.652024][T12011] ? find_held_lock+0x2b/0x80 [ 466.652058][T12011] ? __fget_files+0x215/0x3d0 [ 466.652086][T12011] ? hook_file_ioctl_common+0x149/0x410 [ 466.652156][T12011] ? __fget_files+0x21f/0x3d0 [ 466.652199][T12011] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 466.652233][T12011] __x64_sys_ioctl+0x18e/0x210 [ 466.652260][T12011] do_syscall_64+0x10b/0x830 [ 466.652282][T12011] ? clear_bhb_loop+0x40/0x90 [ 466.652311][T12011] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 466.652336][T12011] RIP: 0033:0x7fe42879ce59 [ 466.652356][T12011] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 466.652380][T12011] RSP: 002b:00007fe4296d8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 466.652403][T12011] RAX: ffffffffffffffda RBX: 00007fe428a15fa0 RCX: 00007fe42879ce59 [ 466.652419][T12011] RDX: 0000000000000000 RSI: 000000000000af01 RDI: 0000000000000009 [ 466.652434][T12011] RBP: 00007fe428832d6f R08: 0000000000000000 R09: 0000000000000000 [ 466.652448][T12011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 466.652462][T12011] R13: 00007fe428a16038 R14: 00007fe428a15fa0 R15: 00007ffe4eaba358 [ 466.652493][T12011] [ 467.251173][T12023] kexec: Could not allocate control_code_buffer [ 468.491057][ T5638] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 469.296760][ T5638] Bluetooth: hci3: unexpected event 0x1c length: 725 > 5 [ 469.593438][T12063] usbip-vudc usbip-vudc.0: gadget not bound [ 469.606820][T12061] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4:7466:6f72:6d2f:7573, load rds_tcp or rds_rdma? [ 469.773355][T12065] netlink: 'syz.3.1433': attribute type 1 has an invalid length. [ 469.813912][T12065] nbd: error processing sock list [ 471.051246][T12072] kexec: Could not allocate control_code_buffer [ 471.432277][T12091] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1439'. [ 471.525037][T12088] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1438'. [ 471.892291][ T5638] Bluetooth: hci2: unexpected event 0x1c length: 725 > 5 [ 472.419855][T12089] kexec: Could not allocate control_code_buffer [ 472.620199][T12110] netlink: 'syz.1.1444': attribute type 1 has an invalid length. [ 472.631121][T12110] nbd: error processing sock list [ 472.642268][T12112] netlink: 346 bytes leftover after parsing attributes in process `syz.2.1445'. [ 472.697821][T12112] netlink: 346 bytes leftover after parsing attributes in process `syz.2.1445'. [ 473.349479][T12110] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 473.861586][T12126] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1458'. [ 474.235044][T12118] kexec: Could not allocate control_code_buffer [ 474.534345][T12136] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1451'. [ 476.349718][T12158] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1455'. [ 478.812633][T12145] kexec: Could not allocate control_code_buffer [ 479.285888][T12183] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1464'. [ 479.928027][T12196] netlink: 'syz.2.1467': attribute type 11 has an invalid length. [ 480.390450][T12184] kexec: Could not allocate control_code_buffer [ 481.485094][ T5638] Bluetooth: hci2: hcon ffff888035bb8000 sent 0 < count 256 [ 482.278031][T12213] kexec: Could not allocate control_code_buffer [ 484.050563][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 485.620512][T12269] netlink: 'syz.1.1484': attribute type 11 has an invalid length. [ 485.880777][T12256] kexec: Could not allocate control_code_buffer [ 486.441786][T12260] Process accounting paused [ 487.116716][ T47] EXT4-fs: 28 callbacks suppressed [ 487.116741][ T47] EXT4-fs (sda1): Delayed block allocation failed for inode 2032 at logical offset 936 with max blocks 88 with error 117 [ 487.135279][T12304] ================================================================== [ 487.143417][T12304] BUG: KASAN: slab-out-of-bounds in cache_seq_start_rcu+0x3fe/0x420 [ 487.151556][T12304] Read of size 8 at addr ffff888038632800 by task syz.0.1492/12304 [ 487.159491][T12304] [ 487.161853][T12304] CPU: 1 UID: 0 PID: 12304 Comm: syz.0.1492 Tainted: G U L syzkaller #0 PREEMPT(full) [ 487.161904][T12304] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 487.161917][T12304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 487.161937][T12304] Call Trace: [ 487.161949][T12304] [ 487.161962][T12304] dump_stack_lvl+0x100/0x190 [ 487.162001][T12304] print_report+0x13d/0x4b0 [ 487.162050][T12304] ? __virt_addr_valid+0x239/0x430 [ 487.162107][T12304] ? cache_seq_start_rcu+0x3fe/0x420 [ 487.162143][T12304] kasan_report+0xdf/0x1d0 [ 487.162184][T12304] ? cache_seq_start_rcu+0x3fe/0x420 [ 487.162226][T12304] cache_seq_start_rcu+0x3fe/0x420 [ 487.162267][T12304] seq_read_iter+0x2c1/0x1270 [ 487.162314][T12304] seq_read+0x33b/0x4c0 [ 487.162350][T12304] ? __pfx_seq_read+0x10/0x10 [ 487.162399][T12304] ? __pfx_seq_read+0x10/0x10 [ 487.162436][T12304] proc_reg_read+0x240/0x330 [ 487.162477][T12304] ? __pfx_proc_reg_read+0x10/0x10 [ 487.162518][T12304] vfs_read+0x1e4/0xb30 [ 487.162560][T12304] ? __pfx_vfs_read+0x10/0x10 [ 487.162596][T12304] ? find_held_lock+0x2b/0x80 [ 487.162639][T12304] ? __fget_files+0x215/0x3d0 [ 487.162679][T12304] ? __fget_files+0x215/0x3d0 [ 487.162722][T12304] ? __fget_files+0x21f/0x3d0 [ 487.162767][T12304] __x64_sys_pread64+0x1eb/0x250 [ 487.162816][T12304] ? __pfx___x64_sys_pread64+0x10/0x10 [ 487.162861][T12304] ? rcu_is_watching+0x12/0xc0 [ 487.162904][T12304] do_syscall_64+0x10b/0x830 [ 487.162936][T12304] ? clear_bhb_loop+0x40/0x90 [ 487.162974][T12304] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 487.163009][T12304] RIP: 0033:0x7fe42879ce59 [ 487.163036][T12304] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 487.163068][T12304] RSP: 002b:00007fe4295f1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 487.163100][T12304] RAX: ffffffffffffffda RBX: 00007fe428a16630 RCX: 00007fe42879ce59 [ 487.163122][T12304] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000006 [ 487.163142][T12304] RBP: 00007fe428832d6f R08: 0000000000000000 R09: 0000000000000000 [ 487.163162][T12304] R10: 0000008800000000 R11: 0000000000000246 R12: 0000000000000000 [ 487.163183][T12304] R13: 00007fe428a166c8 R14: 00007fe428a16630 R15: 00007ffe4eaba358 [ 487.163216][T12304] [ 487.163226][T12304] [ 487.393925][T12304] Allocated by task 5624: [ 487.398295][T12304] kasan_save_stack+0x30/0x50 [ 487.403014][T12304] kasan_save_track+0x14/0x30 [ 487.407733][T12304] __kasan_kmalloc+0xaa/0xb0 [ 487.412353][T12304] __kmalloc_noprof+0x301/0x850 [ 487.417237][T12304] cache_create_net+0xa2/0x1f0 [ 487.422034][T12304] nfsd_export_init+0x62/0x250 [ 487.426911][T12304] nfsd_net_init+0x69/0x3e0 [ 487.431477][T12304] ops_init+0x1e2/0x5f0 [ 487.435679][T12304] setup_net+0x118/0x3a0 [ 487.439970][T12304] copy_net_ns+0x46f/0x7c0 [ 487.444443][T12304] create_new_namespaces+0x3ea/0xac0 [ 487.449788][T12304] unshare_nsproxy_namespaces+0xf2/0x220 [ 487.455466][T12304] ksys_unshare+0x438/0xab0 [ 487.460021][T12304] __x64_sys_unshare+0x31/0x40 [ 487.464832][T12304] do_syscall_64+0x10b/0x830 [ 487.469451][T12304] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 487.475380][T12304] [ 487.477730][T12304] The buggy address belongs to the object at ffff888038632000 [ 487.477730][T12304] which belongs to the cache kmalloc-2k of size 2048 [ 487.491834][T12304] The buggy address is located 0 bytes to the right of [ 487.491834][T12304] allocated 2048-byte region [ffff888038632000, ffff888038632800) [ 487.506454][T12304] [ 487.508822][T12304] The buggy address belongs to the physical page: [ 487.515269][T12304] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x38630 [ 487.524114][T12304] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 487.532643][T12304] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 487.540237][T12304] page_type: f5(slab) [ 487.544253][T12304] raw: 00fff00000000040 ffff88813fe34000 dead000000000100 dead000000000122 [ 487.552880][T12304] raw: 0000000000000000 0000000800080008 00000000f5000000 0000000000000000 [ 487.561499][T12304] head: 00fff00000000040 ffff88813fe34000 dead000000000100 dead000000000122 [ 487.570207][T12304] head: 0000000000000000 0000000800080008 00000000f5000000 0000000000000000 [ 487.578915][T12304] head: 00fff00000000003 fffffffffffffe01 00000000ffffffff 00000000ffffffff [ 487.587627][T12304] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 487.596326][T12304] page dumped because: kasan: bad access detected [ 487.602778][T12304] page_owner tracks the page as allocated [ 487.608513][T12304] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5624, tgid 5624 (syz-executor), ts 90318035359, free_ts 90259563882 [ 487.629943][T12304] post_alloc_hook+0xfd/0x120 [ 487.634679][T12304] get_page_from_freelist+0x11a6/0x33b0 [ 487.640278][T12304] __alloc_frozen_pages_noprof+0x27c/0x2bc0 [ 487.646211][T12304] new_slab+0xa6/0x6c0 [ 487.650330][T12304] refill_objects+0x277/0x420 [ 487.655056][T12304] __pcs_replace_empty_main+0x375/0x650 [ 487.660633][T12304] __kmalloc_noprof+0x688/0x850 [ 487.665517][T12304] cache_create_net+0xa2/0x1f0 [ 487.670318][T12304] unix_gid_cache_create+0x60/0x130 [ 487.675637][T12304] sunrpc_init_net+0x71/0x190 [ 487.680367][T12304] ops_init+0x1e2/0x5f0 [ 487.684579][T12304] setup_net+0x118/0x3a0 [ 487.688868][T12304] copy_net_ns+0x46f/0x7c0 [ 487.693341][T12304] create_new_namespaces+0x3ea/0xac0 [ 487.698670][T12304] unshare_nsproxy_namespaces+0xf2/0x220 [ 487.704367][T12304] ksys_unshare+0x438/0xab0 [ 487.708919][T12304] page last free pid 5674 tgid 5674 stack trace: [ 487.715267][T12304] __free_frozen_pages+0x747/0x1040 [ 487.720524][T12304] qlist_free_all+0x47/0xf0 [ 487.725058][T12304] kasan_quarantine_reduce+0x1a0/0x1f0 [ 487.730557][T12304] __kasan_slab_alloc+0x69/0x90 [ 487.735448][T12304] kmem_cache_alloc_noprof+0x241/0x6e0 [ 487.740950][T12304] vm_area_alloc+0x1f/0x160 [ 487.745503][T12304] __mmap_region+0x104d/0x2da0 [ 487.750317][T12304] mmap_region+0x35d/0x620 [ 487.754774][T12304] do_mmap+0xc63/0x12f0 [ 487.758975][T12304] vm_mmap_pgoff+0x29e/0x470 [ 487.763648][T12304] ksys_mmap_pgoff+0x3cb/0x610 [ 487.768457][T12304] __x64_sys_mmap+0x125/0x190 [ 487.773173][T12304] do_syscall_64+0x10b/0x830 [ 487.777797][T12304] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 487.783744][T12304] [ 487.786098][T12304] Memory state around the buggy address: [ 487.791756][T12304] ffff888038632700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 487.799849][T12304] ffff888038632780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 487.807942][T12304] >ffff888038632800: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 487.816031][T12304] ^ [ 487.820126][T12304] ffff888038632880: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 487.828219][T12304] ffff888038632900: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 487.836312][T12304] ================================================================== [ 487.880171][ T47] EXT4-fs (sda1): This should not happen!! Data will be lost [ 487.880171][ T47] [ 487.934675][T12304] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 487.941957][T12304] CPU: 0 UID: 0 PID: 12304 Comm: syz.0.1492 Tainted: G U L syzkaller #0 PREEMPT(full) [ 487.952953][T12304] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 487.958175][T12304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 487.968270][T12304] Call Trace: [ 487.971588][T12304] [ 487.974561][T12304] dump_stack_lvl+0x100/0x190 [ 487.979289][T12304] vpanic+0x552/0x970 [ 487.983321][T12304] ? __pfx_vpanic+0x10/0x10 [ 487.987881][T12304] ? cache_seq_start_rcu+0x3fe/0x420 [ 487.993210][T12304] panic+0xd1/0xe0 [ 487.996979][T12304] ? __pfx_panic+0x10/0x10 [ 488.001448][T12304] ? cache_seq_start_rcu+0x3fe/0x420 [ 488.006788][T12304] ? preempt_schedule_common+0x42/0xc0 [ 488.012315][T12304] ? check_panic_on_warn+0x1f/0x90 [ 488.017473][T12304] check_panic_on_warn.cold+0x19/0x34 [ 488.022902][T12304] end_report.part.0+0x3a/0x90 [ 488.027731][T12304] kasan_report.cold+0xe/0x18 [ 488.032480][T12304] ? cache_seq_start_rcu+0x3fe/0x420 [ 488.037865][T12304] cache_seq_start_rcu+0x3fe/0x420 [ 488.043009][T12304] seq_read_iter+0x2c1/0x1270 [ 488.047712][T12304] seq_read+0x33b/0x4c0 [ 488.051882][T12304] ? __pfx_seq_read+0x10/0x10 [ 488.056587][T12304] ? __pfx_seq_read+0x10/0x10 [ 488.061278][T12304] proc_reg_read+0x240/0x330 [ 488.065891][T12304] ? __pfx_proc_reg_read+0x10/0x10 [ 488.071024][T12304] vfs_read+0x1e4/0xb30 [ 488.075202][T12304] ? __pfx_vfs_read+0x10/0x10 [ 488.079899][T12304] ? find_held_lock+0x2b/0x80 [ 488.084601][T12304] ? __fget_files+0x215/0x3d0 [ 488.089297][T12304] ? __fget_files+0x215/0x3d0 [ 488.093995][T12304] ? __fget_files+0x21f/0x3d0 [ 488.098693][T12304] __x64_sys_pread64+0x1eb/0x250 [ 488.103653][T12304] ? __pfx___x64_sys_pread64+0x10/0x10 [ 488.109142][T12304] ? rcu_is_watching+0x12/0xc0 [ 488.113934][T12304] do_syscall_64+0x10b/0x830 [ 488.118538][T12304] ? clear_bhb_loop+0x40/0x90 [ 488.123239][T12304] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 488.129174][T12304] RIP: 0033:0x7fe42879ce59 [ 488.133656][T12304] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 488.153328][T12304] RSP: 002b:00007fe4295f1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 488.161790][T12304] RAX: ffffffffffffffda RBX: 00007fe428a16630 RCX: 00007fe42879ce59 [ 488.169798][T12304] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000006 [ 488.177800][T12304] RBP: 00007fe428832d6f R08: 0000000000000000 R09: 0000000000000000 [ 488.185807][T12304] R10: 0000008800000000 R11: 0000000000000246 R12: 0000000000000000 [ 488.193817][T12304] R13: 00007fe428a166c8 R14: 00007fe428a16630 R15: 00007ffe4eaba358 [ 488.201833][T12304] [ 488.205741][T12304] Kernel Offset: disabled [ 488.210090][T12304] Rebooting in 86400 seconds..