last executing test programs: 3.894413192s ago: executing program 2 (id=1006): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x59, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) getsockname$auto(0xffffffffffffffff, &(0x7f0000000000)=@tipc=@nameseq={0x1e, 0x1, 0x0, {0x0, 0x0, 0x2003}}, 0x0) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r0 = socket(0x1e, 0x4, 0x0) setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x101d0, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 3.667553308s ago: executing program 2 (id=1007): r0 = openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000080), 0x141501, 0x0) write$auto_split_huge_pages_fops_huge_memory(r0, &(0x7f00000000c0)='1', 0x1) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'ip6gre0\x00', 0x0}) sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000480)=ANY=[@ANYBLOB="22046e14", @ANYRES16=r3, @ANYBLOB="00042cbd7000ffdbdf250100000008000700050000000800050006000000f5ff0100697036677265300008000200", @ANYRES32=0x0, @ANYBLOB], 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x2000000) sendmsg$auto_OVS_DP_CMD_DEL(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="000331bd6000fcdbffffffff0000080007000900000008000900", @ANYRES32=r4, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x2004c0d4}, 0x488c4) r5 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0) sendfile$auto(r5, r5, 0x0, 0x10000800000003) 3.466838811s ago: executing program 0 (id=1009): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ram10\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000000)='//\xf2\x00', 0x80000000) mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48004}, 0x4050) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) 2.741698616s ago: executing program 0 (id=1013): openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0x20000, 0x0) timer_create$auto(0x9, 0x0, 0x0) socket(0xa, 0x1, 0x100) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x802, 0x0) mmap$auto(0x1000000000, 0x10000040000b, 0x1000000000000df, 0x4000009b73, r1, 0x8003) select$auto(0xc, 0x0, 0x0, &(0x7f00000002c0)={[0x1000000000000202, 0x7, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x3c2a19d5, 0x6, 0xb, 0x62, 0x8, 0x7, 0x6d3f, 0x6, 0xa, 0xfffffffffffffffe]}, 0x0) select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x1fb, 0x20007, 0xfffffffffffffffb, 0xc40, 0x4, 0x3, 0x3, 0x3, 0xffffffffffffffff, 0x3, 0x80000000003ffffc, 0x2, 0x6d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0) 2.262034407s ago: executing program 3 (id=1016): close_range$auto(0x2, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x2200, 0x0) read$auto(r1, 0x0, 0x10001) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/cifs/dfscache\x00', 0x101a41, 0x0) write$auto(r2, 0x0, 0x6) io_uring_setup$auto(0x800, 0x0) 2.045672318s ago: executing program 3 (id=1017): mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x8000, 0x0) write$auto_console_fops_tty_io(0xffffffffffffffff, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) pwrite64$auto(0xffffffffffffffff, 0x0, 0x4e, 0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) ioctl$auto(r1, 0xc0045520, r0) 1.6774463s ago: executing program 1 (id=1019): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) ioctl$auto(0xffffffffffffffff, 0x2, 0x9) sysfs$auto(0x2, 0x40, 0x2) read$auto(0xffffffffffffffff, 0x0, 0x1f40) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r0, 0x4b49, 0x1) write$auto(0xffffffffffffffff, 0x0, 0xffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) r1 = socket(0xa, 0x5, 0x84) sendto$auto(r1, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c) 1.611665385s ago: executing program 3 (id=1020): unshare$auto(0x6c000000) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0) bind$auto(0x3, 0x0, 0x6a) unshare$auto(0x40000080) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) setsockopt$auto(0x3, 0x10000000084, 0x7c, 0x0, 0x8) write$auto(r0, &(0x7f0000000040)='7\x00]\xa4\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x9) socket(0xf, 0x3, 0x2) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x7fff, 0x2) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x82002, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x40200, 0x0) 1.577973447s ago: executing program 0 (id=1021): r0 = socket(0x29, 0x2, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = socket(0x29, 0x2, 0x0) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) recvmmsg$auto(r2, &(0x7f0000000040)={{0x0, 0x1, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r1, 0x891d, 0x24) r3 = socket(0x29, 0x2, 0x0) ioctl$auto(r3, 0x89f0, 0x24) ioctl$auto(r0, 0x89f1, 0x24) 1.43491097s ago: executing program 1 (id=1022): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x24044010}, 0xc0) sysfs$auto(0x2, 0x1f, 0x0) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/pm_debug_messages\x00', 0xa001, 0x0) r0 = socket(0x1e, 0x4, 0x0) setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x101d0, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.070571824s ago: executing program 1 (id=1023): r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x1c7983, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) write$auto_ocfs2_control_fops_stack_user(0xffffffffffffffff, &(0x7f0000003900), 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x80, 0xf, 0x4, 0x1c77, r0, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x40000000) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) 934.541812ms ago: executing program 1 (id=1024): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) shutdown$auto(r0, 0xda6) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) ioctl$auto_BLKRRPART(0xffffffffffffffff, 0x125f, 0x700000000000000) r1 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x6, 0x1, 0x9, 0x7, 0x3b, 0x3ff, 0x1ffde, 0x7, 0x6, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb2, 0x9, 0x3, 0x40fffc, 0x80, 0x7, 0x40000, 0x7, 0x2000, 0x200, 0x0, 0x81, 0x0, 0x7, 0x0, 0x0, 0x0, [0x1000000001, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x3, 0x0, 0x9, 0x0, 0x0, 0x0, 0x7]}, 0x202, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x5}, 0x7, 0x0) 853.219323ms ago: executing program 2 (id=1025): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) setreuid$auto(0xffffffffffffffff, 0x8) ioctl$auto(r0, 0x560a, 0x7) openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/ubifs/tst_recovery\x00', 0x20000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth0\x00'}) close_range$auto(0x0, 0xffffffffffffffff, 0x2) socket(0x2, 0x2, 0x0) r2 = socket(0x18, 0x5, 0x1) connect$auto(r2, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a) close_range$auto(0x0, 0xfffffffffffff000, 0x0) 844.769133ms ago: executing program 3 (id=1026): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) ustat$auto(0x801, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_trace_clock_fops_trace(0xffffffffffffff9c, 0x0, 0x141402, 0x0) sysfs$auto(0x2, 0x100000000000029, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0x81a0ae8c, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/loop6\x00', 0x101282, 0x0) ioctl$auto_SG_GET_RESERVED_SIZE(r0, 0x4c00, 0x0) 646.260146ms ago: executing program 2 (id=1027): openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bus/usb/037/001\x00', 0x20882, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/block/nbd7/power/autosuspend_delay_ms\x00', 0x22902, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x189401, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = socketcall$auto(0xa, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4040aea0, &(0x7f00000000c0)={0xdd}) 636.616379ms ago: executing program 3 (id=1028): close_range$auto(0x0, 0xfffffffffffff000, 0x2) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x10, 0x2, 0x9) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bond0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r2, r1, 0x8, 0x7f, 0xffffffffffffffff, @relative_fd, 0x4}, 0xf) r3 = bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x1}, 0x4) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'ip6gre0\x00'}) 515.917667ms ago: executing program 0 (id=1029): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) ioctl$auto_TUNGETFILTER(0xffffffffffffffff, 0x801054db, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20000, 0x0) openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, 0x0, 0x80042, 0x0) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x1f40) r1 = socket(0x2, 0x801, 0x106) setsockopt$auto(r1, 0x6, 0x12, 0x0, 0xa1) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f00000000c0)={0x0, 0xffffffff}, 0x5) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) 511.59788ms ago: executing program 1 (id=1030): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/block/nbd7/power/autosuspend_delay_ms\x00', 0x22902, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) socket(0x10, 0x2, 0x4) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff050006000100", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) setresuid$auto(0x0, 0x8, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc6}, 0x1, 0x0, 0x2, 0x9}, 0x7}, 0x3, 0xa6) 420.390808ms ago: executing program 3 (id=1031): prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) unshare$auto(0x40000080) ioctl$auto_RNDADDENTROPY2(0xffffffffffffffff, 0x40085203, &(0x7f0000000000)=[0xfff, 0x2688]) mmap$auto(0x2000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mlockall$auto(0x800000000000005) ioctl$auto_SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, &(0x7f0000000100)="000004") r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x0, 0x0) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) pidfd_send_signal$auto_PIDFD_SIGNAL_THREAD_GROUP(r1, 0x3, 0x0, 0x2) ioctl$auto_SNDCTL_DSP_GETFMTS(r0, 0x8004500b, 0x0) 340.875805ms ago: executing program 0 (id=1032): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rpc/nfsd.fh/channel\x00', 0x8f3b7a51b80ebd01, 0x0) sendmsg$auto_CTRL_CMD_GETFAMILY2(0xffffffffffffffff, 0x0, 0x4000050) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) syz_genetlink_get_family_id$auto_taskstats(0x0, 0xffffffffffffffff) openat$auto_hwsim_fops_rx_rssi_(0xffffffffffffff9c, 0x0, 0x400000, 0x0) read$auto_v4l2_fops_v4l2_dev(0xffffffffffffffff, 0x0, 0x0) futex$auto(0x0, 0x86, 0x8, 0x0, 0x0, 0x7) readv$auto(0x3, 0x0, 0x1) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x2a742, 0x0) write$auto(0x3, 0x0, 0xffffffff) mmap$auto(0x0, 0x10000, 0xde, 0x11, r0, 0x28000) 271.707213ms ago: executing program 2 (id=1033): ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x6ab82, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xa505}, 0xffffffff}, 0x7, 0x4008) writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x1}, 0x9) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x68b82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r0) r2 = openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/kvm/insn_emulation_fail\x00', 0xa2540, 0x0) read$auto_stat_fops_per_vm_kvm_main(r2, 0x0, 0x0) 261.62966ms ago: executing program 1 (id=1034): r0 = openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000080), 0x141501, 0x0) write$auto_split_huge_pages_fops_huge_memory(r0, &(0x7f00000000c0)='1', 0x1) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'ip6gre0\x00', 0x0}) sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000480)=ANY=[@ANYBLOB="22046e14", @ANYRES16=r3, @ANYBLOB="00042cbd7000ffdbdf250100000008000700050000000800050006000000f5ff0100697036677265300008000200", @ANYRES32=0x0, @ANYBLOB], 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x2000000) sendmsg$auto_OVS_DP_CMD_DEL(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="000331bd6000fcdbffffffff0000080007000900000008000900", @ANYRES32=r4, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x2004c0d4}, 0x488c4) r5 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0) sendfile$auto(r5, r5, 0x0, 0x10000800000003) 77.298541ms ago: executing program 0 (id=1035): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/loop10/queue/add_random\x00', 0x80302, 0x0) mmap$auto(0x0, 0x2, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x0, 0x2000, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00'}) r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x2000, 0x0) ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000080)=0x6a) ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000080)) ioctl$auto_FBIOPAN_DISPLAY(r0, 0x4606, 0x0) ioctl$auto_SOUND_MIXER_READ_DEVMASK2(r0, 0x40044620, 0x0) close_range$auto(0x2, 0x8, 0x0) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2) 0s ago: executing program 2 (id=1036): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) mprotect$auto(0x1ffffffff000, 0x100004, 0x6) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0xe, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) r2 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000280), 0x141182, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r2, 0x403c6f2b, 0x0) kernel console output (not intermixed with test programs): s=1 errno=0 [ 119.237076][ T6461] FAULT_INJECTION: forcing a failure. [ 119.237076][ T6461] name failslab, interval 1, probability 0, space 0, times 0 [ 119.276796][ T6461] CPU: 0 UID: 0 PID: 6461 Comm: syz.2.203 Tainted: G L syzkaller #0 PREEMPT(full) [ 119.276844][ T6461] Tainted: [L]=SOFTLOCKUP [ 119.276854][ T6461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 119.276872][ T6461] Call Trace: [ 119.276881][ T6461] [ 119.276893][ T6461] dump_stack_lvl+0x100/0x190 [ 119.276949][ T6461] should_fail_ex.cold+0x5/0xa [ 119.276987][ T6461] should_failslab+0xc2/0x120 [ 119.277022][ T6461] __kmalloc_cache_noprof+0x7a/0x6f0 [ 119.277063][ T6461] ? fsnotify_alloc_group+0x92/0x330 [ 119.277109][ T6461] fsnotify_alloc_group+0x92/0x330 [ 119.277149][ T6461] do_inotify_init+0x4b/0x5e0 [ 119.277180][ T6461] __x64_sys_inotify_init1+0x30/0x40 [ 119.277208][ T6461] do_syscall_64+0x115/0x840 [ 119.277245][ T6461] ? clear_bhb_loop+0x40/0x90 [ 119.277277][ T6461] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 119.277303][ T6461] RIP: 0033:0x7fcd9339ce59 [ 119.277330][ T6461] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 119.277360][ T6461] RSP: 002b:00007fcd9422f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000126 [ 119.277389][ T6461] RAX: ffffffffffffffda RBX: 00007fcd93616090 RCX: 00007fcd9339ce59 [ 119.277405][ T6461] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0003000000000000 [ 119.277421][ T6461] RBP: 00007fcd93432d6f R08: 0000000000000000 R09: 0000000000000000 [ 119.277435][ T6461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 119.277448][ T6461] R13: 00007fcd93616128 R14: 00007fcd93616090 R15: 00007ffce42c0b18 [ 119.277484][ T6461] [ 119.611952][ T6466] netlink: 330 bytes leftover after parsing attributes in process `syz.2.207'. [ 121.494109][ T6514] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 121.721609][ T6522] FAULT_INJECTION: forcing a failure. [ 121.721609][ T6522] name failslab, interval 1, probability 0, space 0, times 0 [ 121.756041][ T6522] CPU: 0 UID: 0 PID: 6522 Comm: syz.0.224 Tainted: G L syzkaller #0 PREEMPT(full) [ 121.756087][ T6522] Tainted: [L]=SOFTLOCKUP [ 121.756096][ T6522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 121.756112][ T6522] Call Trace: [ 121.756121][ T6522] [ 121.756131][ T6522] dump_stack_lvl+0x100/0x190 [ 121.756167][ T6522] should_fail_ex.cold+0x5/0xa [ 121.756203][ T6522] ? __alloc_empty_sheaf+0x35/0x50 [ 121.756244][ T6522] should_failslab+0xc2/0x120 [ 121.756278][ T6522] __kmalloc_noprof+0xe0/0x850 [ 121.756302][ T6522] ? __pcs_replace_empty_main+0x13a/0x650 [ 121.756345][ T6522] ? __pcs_replace_empty_main+0x13a/0x650 [ 121.756394][ T6522] __alloc_empty_sheaf+0x35/0x50 [ 121.756434][ T6522] __pcs_replace_empty_main+0x3e8/0x650 [ 121.756484][ T6522] ? __d_alloc+0x64c/0xa40 [ 121.756521][ T6522] __kmalloc_noprof+0x688/0x850 [ 121.756557][ T6522] __d_alloc+0x64c/0xa40 [ 121.756599][ T6522] d_alloc_parallel+0x111/0x14e0 [ 121.756632][ T6522] ? __pfx___schedule+0x10/0x10 [ 121.756682][ T6522] ? __pfx_d_alloc_parallel+0x10/0x10 [ 121.756709][ T6522] ? lockdep_hardirqs_on+0x78/0x100 [ 121.756749][ T6522] ? irqentry_exit+0x24d/0x970 [ 121.756790][ T6522] ? lockdep_init_map_type+0x5c/0x250 [ 121.756835][ T6522] ? lockdep_init_map_type+0x5c/0x250 [ 121.756884][ T6522] __lookup_slow+0x193/0x460 [ 121.756928][ T6522] ? __pfx___lookup_slow+0x10/0x10 [ 121.756967][ T6522] ? lock_acquire+0x5e/0x370 [ 121.757048][ T6522] lookup_slow+0x50/0x70 [ 121.757092][ T6522] link_path_walk+0x1377/0x1cc0 [ 121.757136][ T6522] path_openat+0x1be/0x31a0 [ 121.757186][ T6522] ? __pfx_path_openat+0x10/0x10 [ 121.757219][ T6522] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 121.757256][ T6522] ? lockdep_hardirqs_on+0x78/0x100 [ 121.757294][ T6522] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 121.757330][ T6522] ? stack_depot_save_flags+0x479/0x9d0 [ 121.757383][ T6522] do_file_open+0x20e/0x430 [ 121.757417][ T6522] ? kasan_save_stack+0x30/0x50 [ 121.757450][ T6522] ? __pfx_do_file_open+0x10/0x10 [ 121.757484][ T6522] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.757547][ T6522] ? find_held_lock+0x2b/0x80 [ 121.757581][ T6522] ? __might_fault+0xc5/0x140 [ 121.757622][ T6522] ? __might_fault+0xc5/0x140 [ 121.757669][ T6522] file_open_name+0x198/0x3b0 [ 121.757712][ T6522] ? __pfx_file_open_name+0x10/0x10 [ 121.757763][ T6522] ? do_getname+0x191/0x390 [ 121.757807][ T6522] acct_on+0xa4/0x9e0 [ 121.757842][ T6522] ? __pfx_acct_on+0x10/0x10 [ 121.757876][ T6522] ? bpf_lsm_capable+0x9/0x10 [ 121.757904][ T6522] ? security_capable+0x80/0x260 [ 121.757935][ T6522] __x64_sys_acct+0x81/0x1e0 [ 121.757968][ T6522] ? lockdep_hardirqs_on+0x78/0x100 [ 121.758006][ T6522] do_syscall_64+0x115/0x840 [ 121.758053][ T6522] ? clear_bhb_loop+0x40/0x90 [ 121.758088][ T6522] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.758121][ T6522] RIP: 0033:0x7f3b51b9ce59 [ 121.758145][ T6522] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 121.758172][ T6522] RSP: 002b:00007f3b52a5c028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 121.758198][ T6522] RAX: ffffffffffffffda RBX: 00007f3b51e15fa0 RCX: 00007f3b51b9ce59 [ 121.758217][ T6522] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000440 [ 121.758233][ T6522] RBP: 00007f3b51c32d6f R08: 0000000000000000 R09: 0000000000000000 [ 121.758250][ T6522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 121.758265][ T6522] R13: 00007f3b51e16038 R14: 00007f3b51e15fa0 R15: 00007fffa6d24328 [ 121.758302][ T6522] [ 123.242929][ T29] audit: type=1800 audit(1780428838.760:3): pid=6540 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.228" name="trace_marker" dev="tracefs" ino=2939 res=0 errno=0 [ 124.375377][ T6561] netlink: Conntrack attr type has unexpected length (type=3, length=0, expected=8) [ 125.318201][ T6579] vhci_hcd vhci_hcd.2: invalid port number 255 [ 126.825308][ T6609] netlink: 'syz.2.250': attribute type 21 has an invalid length. [ 126.876320][ T6609] netlink: 326 bytes leftover after parsing attributes in process `syz.2.250'. [ 129.359123][ T29] audit: type=1804 audit(1780428844.870:4): pid=6655 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.261" name="/newroot/64/file0" dev="tmpfs" ino=347 res=1 errno=0 [ 130.307920][ T6681] netlink: 'syz.2.271': attribute type 1 has an invalid length. [ 130.349628][ T6681] netlink: 'syz.2.271': attribute type 6 has an invalid length. [ 131.347484][ T6701] netlink: 266 bytes leftover after parsing attributes in process `syz.2.278'. [ 131.375876][ T6701] IPv6: NLM_F_CREATE should be specified when creating new route [ 132.563387][ T6737] netlink: 28 bytes leftover after parsing attributes in process `syz.0.293'. [ 132.580211][ T6737] veth1_macvtap: left promiscuous mode [ 132.585783][ T6737] macsec0: entered promiscuous mode [ 132.592829][ T6737] macsec0: entered allmulticast mode [ 132.640672][ T6740] FAULT_INJECTION: forcing a failure. [ 132.640672][ T6740] name failslab, interval 1, probability 0, space 0, times 0 [ 132.674117][ T6740] CPU: 0 UID: 0 PID: 6740 Comm: syz.3.294 Tainted: G L syzkaller #0 PREEMPT(full) [ 132.674165][ T6740] Tainted: [L]=SOFTLOCKUP [ 132.674176][ T6740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 132.674193][ T6740] Call Trace: [ 132.674202][ T6740] [ 132.674213][ T6740] dump_stack_lvl+0x100/0x190 [ 132.674251][ T6740] should_fail_ex.cold+0x5/0xa [ 132.674289][ T6740] ? sk_prot_alloc+0x10b/0x2a0 [ 132.674323][ T6740] should_failslab+0xc2/0x120 [ 132.674356][ T6740] __kmalloc_noprof+0xe0/0x850 [ 132.674382][ T6740] ? lockdep_init_map_type+0x5c/0x250 [ 132.674433][ T6740] sk_prot_alloc+0x10b/0x2a0 [ 132.674471][ T6740] sk_alloc+0x36/0xe80 [ 132.674499][ T6740] pppoe_create+0x32/0x360 [ 132.674540][ T6740] pppox_create+0x15c/0x2c0 [ 132.674582][ T6740] __sock_create+0x339/0x860 [ 132.674633][ T6740] __sys_socket+0x14d/0x260 [ 132.674670][ T6740] ? __pfx___sys_socket+0x10/0x10 [ 132.674715][ T6740] __x64_sys_socket+0x72/0xb0 [ 132.674759][ T6740] ? lockdep_hardirqs_on+0x78/0x100 [ 132.674798][ T6740] do_syscall_64+0x115/0x840 [ 132.674834][ T6740] ? clear_bhb_loop+0x40/0x90 [ 132.674869][ T6740] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 132.674894][ T6740] RIP: 0033:0x7f988439ce59 [ 132.674916][ T6740] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 132.674942][ T6740] RSP: 002b:00007f98852e7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 132.674969][ T6740] RAX: ffffffffffffffda RBX: 00007f9884615fa0 RCX: 00007f988439ce59 [ 132.674985][ T6740] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000018 [ 132.674999][ T6740] RBP: 00007f9884432d6f R08: 0000000000000000 R09: 0000000000000000 [ 132.675014][ T6740] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 132.675029][ T6740] R13: 00007f9884616038 R14: 00007f9884615fa0 R15: 00007ffd6015a2f8 [ 132.675064][ T6740] [ 132.946234][ T1316] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.954151][ T1316] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.209281][ T6750] sg_write: data in/out 1664248075/33556514 bytes for SCSI command 0x0-- guessing data in; [ 133.209281][ T6750] program syz.2.298 not setting count and/or reply_len properly [ 133.674916][ T6760] zswap: compressor not available [ 134.010231][ T6774] netlink: 354 bytes leftover after parsing attributes in process `syz.1.306'. [ 134.519921][ T6787] netlink: 186 bytes leftover after parsing attributes in process `syz.1.313'. [ 134.524753][ T6789] netlink: 8 bytes leftover after parsing attributes in process `syz.2.312'. [ 136.873886][ T6849] FAULT_INJECTION: forcing a failure. [ 136.873886][ T6849] name failslab, interval 1, probability 0, space 0, times 0 [ 136.893940][ T6849] CPU: 1 UID: 0 PID: 6849 Comm: syz.1.333 Tainted: G L syzkaller #0 PREEMPT(full) [ 136.893987][ T6849] Tainted: [L]=SOFTLOCKUP [ 136.893997][ T6849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 136.894014][ T6849] Call Trace: [ 136.894024][ T6849] [ 136.894035][ T6849] dump_stack_lvl+0x100/0x190 [ 136.894071][ T6849] should_fail_ex.cold+0x5/0xa [ 136.894108][ T6849] should_failslab+0xc2/0x120 [ 136.894141][ T6849] __kmalloc_cache_noprof+0x7a/0x6f0 [ 136.894178][ T6849] ? alloc_tty_struct+0x96/0x8c0 [ 136.894221][ T6849] alloc_tty_struct+0x96/0x8c0 [ 136.894268][ T6849] ? __pfx_alloc_tty_struct+0x10/0x10 [ 136.894321][ T6849] tty_init_dev.part.0+0x20/0x470 [ 136.894365][ T6849] tty_open+0xa63/0xfa0 [ 136.894411][ T6849] ? __pfx_tty_open+0x10/0x10 [ 136.894448][ T6849] ? chrdev_open+0x589/0x6a0 [ 136.894483][ T6849] ? chrdev_open+0x589/0x6a0 [ 136.894524][ T6849] ? __pfx_tty_open+0x10/0x10 [ 136.894563][ T6849] chrdev_open+0x234/0x6a0 [ 136.894600][ T6849] ? __pfx_chrdev_open+0x10/0x10 [ 136.894637][ T6849] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 136.894684][ T6849] do_dentry_open+0x6ab/0x14d0 [ 136.894718][ T6849] ? __pfx_chrdev_open+0x10/0x10 [ 136.894759][ T6849] vfs_open+0x82/0x3f0 [ 136.894802][ T6849] path_openat+0x208c/0x31a0 [ 136.894848][ T6849] ? __pfx_path_openat+0x10/0x10 [ 136.894897][ T6849] do_file_open+0x20e/0x430 [ 136.894935][ T6849] ? __pfx_do_file_open+0x10/0x10 [ 136.894996][ T6849] ? alloc_fd+0x476/0x790 [ 136.895033][ T6849] ? do_getname+0x191/0x390 [ 136.895077][ T6849] do_sys_openat2+0x10d/0x1e0 [ 136.895120][ T6849] ? __pfx_do_sys_openat2+0x10/0x10 [ 136.895166][ T6849] ? __fget_files+0x21f/0x3d0 [ 136.895214][ T6849] __x64_sys_openat+0x12d/0x210 [ 136.895265][ T6849] ? __pfx___x64_sys_openat+0x10/0x10 [ 136.895316][ T6849] ? rcu_is_watching+0x12/0xc0 [ 136.895354][ T6849] do_syscall_64+0x115/0x840 [ 136.895394][ T6849] ? clear_bhb_loop+0x40/0x90 [ 136.895428][ T6849] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 136.895457][ T6849] RIP: 0033:0x7f9ea3d9ce59 [ 136.895482][ T6849] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 136.895508][ T6849] RSP: 002b:00007f9ea4cc8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 136.895534][ T6849] RAX: ffffffffffffffda RBX: 00007f9ea4016090 RCX: 00007f9ea3d9ce59 [ 136.895553][ T6849] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 136.895570][ T6849] RBP: 00007f9ea3e32d6f R08: 0000000000000000 R09: 0000000000000000 [ 136.895586][ T6849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 136.895602][ T6849] R13: 00007f9ea4016128 R14: 00007f9ea4016090 R15: 00007ffd95fc2248 [ 136.895640][ T6849] [ 138.914637][ T6883] FAULT_INJECTION: forcing a failure. [ 138.914637][ T6883] name failslab, interval 1, probability 0, space 0, times 0 [ 138.930797][ T6883] CPU: 0 UID: 0 PID: 6883 Comm: syz.0.343 Tainted: G L syzkaller #0 PREEMPT(full) [ 138.930845][ T6883] Tainted: [L]=SOFTLOCKUP [ 138.930855][ T6883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 138.930870][ T6883] Call Trace: [ 138.930877][ T6883] [ 138.930888][ T6883] dump_stack_lvl+0x100/0x190 [ 138.930925][ T6883] should_fail_ex.cold+0x5/0xa [ 138.930963][ T6883] should_failslab+0xc2/0x120 [ 138.930998][ T6883] __kmalloc_cache_noprof+0x7a/0x6f0 [ 138.931038][ T6883] ? mqueue_init_fs_context+0x4b/0x690 [ 138.931073][ T6883] mqueue_init_fs_context+0x4b/0x690 [ 138.931107][ T6883] alloc_fs_context+0x60c/0xf40 [ 138.931154][ T6883] mq_init_ns+0x16e/0x820 [ 138.931187][ T6883] copy_ipcs+0x3dd/0x7e0 [ 138.931231][ T6883] create_new_namespaces+0x20a/0xac0 [ 138.931268][ T6883] ? security_capable+0x80/0x260 [ 138.931300][ T6883] unshare_nsproxy_namespaces+0xf2/0x220 [ 138.931339][ T6883] ksys_unshare+0x438/0xab0 [ 138.931381][ T6883] ? __pfx_ksys_unshare+0x10/0x10 [ 138.931418][ T6883] ? xfd_validate_state+0x129/0x190 [ 138.931457][ T6883] __x64_sys_unshare+0x31/0x40 [ 138.931496][ T6883] do_syscall_64+0x115/0x840 [ 138.931534][ T6883] ? clear_bhb_loop+0x40/0x90 [ 138.931569][ T6883] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 138.931598][ T6883] RIP: 0033:0x7f3b51b9ce59 [ 138.931621][ T6883] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 138.931647][ T6883] RSP: 002b:00007f3b52a5c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 138.931672][ T6883] RAX: ffffffffffffffda RBX: 00007f3b51e15fa0 RCX: 00007f3b51b9ce59 [ 138.931690][ T6883] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c000000 [ 138.931706][ T6883] RBP: 00007f3b51c32d6f R08: 0000000000000000 R09: 0000000000000000 [ 138.931721][ T6883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 138.931737][ T6883] R13: 00007f3b51e16038 R14: 00007f3b51e15fa0 R15: 00007fffa6d24328 [ 138.931773][ T6883] [ 139.166810][ T6885] netlink: 208 bytes leftover after parsing attributes in process `syz.2.346'. [ 139.205182][ T6885] FAULT_INJECTION: forcing a failure. [ 139.205182][ T6885] name failslab, interval 1, probability 0, space 0, times 0 [ 139.224457][ T6885] CPU: 1 UID: 0 PID: 6885 Comm: syz.2.346 Tainted: G L syzkaller #0 PREEMPT(full) [ 139.224503][ T6885] Tainted: [L]=SOFTLOCKUP [ 139.224512][ T6885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 139.224529][ T6885] Call Trace: [ 139.224538][ T6885] [ 139.224548][ T6885] dump_stack_lvl+0x100/0x190 [ 139.224583][ T6885] should_fail_ex.cold+0x5/0xa [ 139.224628][ T6885] should_failslab+0xc2/0x120 [ 139.224664][ T6885] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 139.224708][ T6885] ? __kernfs_new_node+0xd2/0x9f0 [ 139.224748][ T6885] __kernfs_new_node+0xd2/0x9f0 [ 139.224782][ T6885] ? __pfx___kernfs_new_node+0x10/0x10 [ 139.224823][ T6885] ? find_held_lock+0x2b/0x80 [ 139.224857][ T6885] ? kernfs_root+0xee/0x2a0 [ 139.224886][ T6885] ? kernfs_root+0xee/0x2a0 [ 139.224926][ T6885] kernfs_new_node+0x11b/0x1a0 [ 139.224968][ T6885] kernfs_create_link+0xcc/0x240 [ 139.225015][ T6885] sysfs_do_create_link_sd+0x90/0x140 [ 139.225050][ T6885] sysfs_create_link+0x61/0xc0 [ 139.225081][ T6885] driver_sysfs_add+0x112/0x2d0 [ 139.225125][ T6885] device_bind_driver+0x16/0x70 [ 139.225170][ T6885] mac80211_hwsim_new_radio+0x3f5/0x5aa0 [ 139.225209][ T6885] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 139.225258][ T6885] ? rcu_is_watching+0x12/0xc0 [ 139.225292][ T6885] ? do_trace_netlink_extack+0x74/0x1f0 [ 139.225325][ T6885] ? __nla_validate_parse+0x1e7/0x28b0 [ 139.225360][ T6885] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 139.225408][ T6885] hwsim_new_radio_nl+0xc5f/0x1370 [ 139.225444][ T6885] ? rcu_is_watching+0x12/0xc0 [ 139.225477][ T6885] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 139.225524][ T6885] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1e5/0x2f0 [ 139.225568][ T6885] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0 [ 139.225629][ T6885] genl_family_rcv_msg_doit+0x214/0x300 [ 139.225678][ T6885] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 139.225723][ T6885] ? genl_get_cmd+0x3e7/0x760 [ 139.225771][ T6885] ? bpf_lsm_capable+0x9/0x10 [ 139.225801][ T6885] ? security_capable+0x80/0x260 [ 139.225831][ T6885] ? ns_capable+0xd2/0xf0 [ 139.225867][ T6885] genl_rcv_msg+0x560/0x800 [ 139.225914][ T6885] ? __pfx_genl_rcv_msg+0x10/0x10 [ 139.225957][ T6885] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 139.226005][ T6885] netlink_rcv_skb+0x159/0x420 [ 139.226042][ T6885] ? __pfx_genl_rcv_msg+0x10/0x10 [ 139.226083][ T6885] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 139.226133][ T6885] ? netlink_deliver_tap+0x1ae/0xcc0 [ 139.226172][ T6885] genl_rcv+0x28/0x40 [ 139.226208][ T6885] netlink_unicast+0x585/0x850 [ 139.226249][ T6885] ? __pfx_netlink_unicast+0x10/0x10 [ 139.226290][ T6885] netlink_sendmsg+0x8b0/0xda0 [ 139.226330][ T6885] ? __pfx_netlink_sendmsg+0x10/0x10 [ 139.226365][ T6885] ? __import_iovec+0x1d2/0x640 [ 139.226407][ T6885] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 139.226442][ T6885] ____sys_sendmsg+0x9e1/0xb70 [ 139.226474][ T6885] ? __pfx_netlink_sendmsg+0x10/0x10 [ 139.226512][ T6885] ? __pfx_____sys_sendmsg+0x10/0x10 [ 139.226559][ T6885] ? __pfx_futex_wake_mark+0x10/0x10 [ 139.226593][ T6885] ___sys_sendmsg+0x190/0x1e0 [ 139.226641][ T6885] ? __pfx____sys_sendmsg+0x10/0x10 [ 139.226713][ T6885] __sys_sendmsg+0x170/0x220 [ 139.226736][ T6885] ? __pfx___sys_sendmsg+0x10/0x10 [ 139.226762][ T6885] ? __x64_sys_futex+0x34f/0x4d0 [ 139.226803][ T6885] ? rcu_is_watching+0x12/0xc0 [ 139.226837][ T6885] do_syscall_64+0x115/0x840 [ 139.226871][ T6885] ? clear_bhb_loop+0x40/0x90 [ 139.226904][ T6885] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 139.226930][ T6885] RIP: 0033:0x7fcd9339ce59 [ 139.226953][ T6885] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 139.226978][ T6885] RSP: 002b:00007fcd94250028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 139.227004][ T6885] RAX: ffffffffffffffda RBX: 00007fcd93615fa0 RCX: 00007fcd9339ce59 [ 139.227022][ T6885] RDX: 0000000004048000 RSI: 0000200000004240 RDI: 0000000000000006 [ 139.227039][ T6885] RBP: 00007fcd93432d6f R08: 0000000000000000 R09: 0000000000000000 [ 139.227055][ T6885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 139.227071][ T6885] R13: 00007fcd93616038 R14: 00007fcd93615fa0 R15: 00007ffce42c0b18 [ 139.227107][ T6885] [ 141.024919][ T6920] netlink: 306 bytes leftover after parsing attributes in process `syz.0.356'. [ 141.594854][ T6938] FAULT_INJECTION: forcing a failure. [ 141.594854][ T6938] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 141.639243][ T6938] CPU: 0 UID: 0 PID: 6938 Comm: syz.0.360 Tainted: G L syzkaller #0 PREEMPT(full) [ 141.639290][ T6938] Tainted: [L]=SOFTLOCKUP [ 141.639300][ T6938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 141.639316][ T6938] Call Trace: [ 141.639325][ T6938] [ 141.639335][ T6938] dump_stack_lvl+0x100/0x190 [ 141.639371][ T6938] should_fail_ex.cold+0x5/0xa [ 141.639402][ T6938] ? prepare_alloc_pages+0x16d/0x5f0 [ 141.639443][ T6938] should_fail_alloc_page+0xeb/0x140 [ 141.639480][ T6938] prepare_alloc_pages+0x1f0/0x5f0 [ 141.639523][ T6938] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 141.639568][ T6938] ? rcu_is_watching+0x12/0xc0 [ 141.639605][ T6938] ? __lock_acquire+0x4a5/0x2630 [ 141.639643][ T6938] ? __css_rstat_updated+0x1ce/0x5a0 [ 141.639685][ T6938] ? __pfx___css_rstat_updated+0x10/0x10 [ 141.639730][ T6938] ? xas_create+0x1f4/0x14e0 [ 141.639768][ T6938] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 141.639816][ T6938] ? rcu_is_watching+0x12/0xc0 [ 141.639848][ T6938] ? __mod_memcg_lruvec_state+0x18c/0x5b0 [ 141.639895][ T6938] ? find_held_lock+0x2b/0x80 [ 141.639940][ T6938] ? __lock_acquire+0x4a5/0x2630 [ 141.639992][ T6938] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 141.640035][ T6938] ? policy_nodemask+0xed/0x4f0 [ 141.640071][ T6938] alloc_pages_mpol+0x1fb/0x540 [ 141.640102][ T6938] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 141.640132][ T6938] ? filemap_get_entry+0x22d/0x450 [ 141.640158][ T6938] ? filemap_get_entry+0x22d/0x450 [ 141.640191][ T6938] folio_alloc_noprof+0x22/0x250 [ 141.640230][ T6938] filemap_alloc_folio_noprof.part.0+0x377/0x450 [ 141.640275][ T6938] ? __pfx_filemap_alloc_folio_noprof.part.0+0x10/0x10 [ 141.640320][ T6938] ? rcu_is_watching+0x12/0xc0 [ 141.640356][ T6938] __filemap_get_folio_mpol+0x6a4/0xe70 [ 141.640395][ T6938] ioctx_alloc+0x7e1/0x21a0 [ 141.640448][ T6938] ? __pfx_ioctx_alloc+0x10/0x10 [ 141.640495][ T6938] __x64_sys_io_setup+0xc9/0x220 [ 141.640537][ T6938] do_syscall_64+0x115/0x840 [ 141.640576][ T6938] ? clear_bhb_loop+0x40/0x90 [ 141.640608][ T6938] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 141.640637][ T6938] RIP: 0033:0x7f3b51b9ce59 [ 141.640660][ T6938] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 141.640686][ T6938] RSP: 002b:00007f3b52a3b028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 141.640713][ T6938] RAX: ffffffffffffffda RBX: 00007f3b51e16090 RCX: 00007f3b51b9ce59 [ 141.640732][ T6938] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff [ 141.640749][ T6938] RBP: 00007f3b51c32d6f R08: 0000000000000000 R09: 0000000000000000 [ 141.640766][ T6938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 141.640781][ T6938] R13: 00007f3b51e16128 R14: 00007f3b51e16090 R15: 00007fffa6d24328 [ 141.640817][ T6938] [ 143.180745][ T6985] FAULT_INJECTION: forcing a failure. [ 143.180745][ T6985] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 143.209517][ T6985] CPU: 0 UID: 0 PID: 6985 Comm: syz.3.375 Tainted: G L syzkaller #0 PREEMPT(full) [ 143.209564][ T6985] Tainted: [L]=SOFTLOCKUP [ 143.209574][ T6985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 143.209588][ T6985] Call Trace: [ 143.209596][ T6985] [ 143.209605][ T6985] dump_stack_lvl+0x100/0x190 [ 143.209639][ T6985] should_fail_ex.cold+0x5/0xa [ 143.209671][ T6985] ? prepare_alloc_pages+0x16d/0x5f0 [ 143.209709][ T6985] should_fail_alloc_page+0xeb/0x140 [ 143.209742][ T6985] prepare_alloc_pages+0x1f0/0x5f0 [ 143.209779][ T6985] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 143.209829][ T6985] ? __lock_acquire+0x4a5/0x2630 [ 143.209869][ T6985] ? __css_rstat_updated+0x1ce/0x5a0 [ 143.209909][ T6985] ? __pfx___css_rstat_updated+0x10/0x10 [ 143.209950][ T6985] ? xas_create+0x1f4/0x14e0 [ 143.209987][ T6985] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 143.210035][ T6985] ? rcu_is_watching+0x12/0xc0 [ 143.210065][ T6985] ? __mod_memcg_lruvec_state+0x18c/0x5b0 [ 143.210107][ T6985] ? find_held_lock+0x2b/0x80 [ 143.210148][ T6985] ? __lock_acquire+0x4a5/0x2630 [ 143.210187][ T6985] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 143.210226][ T6985] ? policy_nodemask+0xed/0x4f0 [ 143.210259][ T6985] alloc_pages_mpol+0x1fb/0x540 [ 143.210293][ T6985] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 143.210338][ T6985] ? filemap_get_entry+0x22d/0x450 [ 143.210364][ T6985] ? filemap_get_entry+0x22d/0x450 [ 143.210394][ T6985] folio_alloc_noprof+0x22/0x250 [ 143.210430][ T6985] filemap_alloc_folio_noprof.part.0+0x377/0x450 [ 143.210481][ T6985] ? __pfx_filemap_alloc_folio_noprof.part.0+0x10/0x10 [ 143.210523][ T6985] ? rcu_is_watching+0x12/0xc0 [ 143.210555][ T6985] __filemap_get_folio_mpol+0x6a4/0xe70 [ 143.210590][ T6985] ioctx_alloc+0x7e1/0x21a0 [ 143.210640][ T6985] ? __pfx_ioctx_alloc+0x10/0x10 [ 143.210683][ T6985] __x64_sys_io_setup+0xc9/0x220 [ 143.210722][ T6985] do_syscall_64+0x115/0x840 [ 143.210762][ T6985] ? clear_bhb_loop+0x40/0x90 [ 143.210794][ T6985] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 143.210820][ T6985] RIP: 0033:0x7f988439ce59 [ 143.210842][ T6985] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 143.210867][ T6985] RSP: 002b:00007f98852c6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 143.210891][ T6985] RAX: ffffffffffffffda RBX: 00007f9884616090 RCX: 00007f988439ce59 [ 143.210909][ T6985] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff [ 143.210925][ T6985] RBP: 00007f9884432d6f R08: 0000000000000000 R09: 0000000000000000 [ 143.210941][ T6985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 143.210957][ T6985] R13: 00007f9884616128 R14: 00007f9884616090 R15: 00007ffd6015a2f8 [ 143.210995][ T6985] [ 143.738501][ T6989] netlink: 17 bytes leftover after parsing attributes in process `syz.1.377'. [ 143.925374][ T29] audit: type=1804 audit(1780428859.440:5): pid=6974 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.374" name="/newroot/90/file0" dev="tmpfs" ino=476 res=1 errno=0 [ 145.348274][ T7028] FAULT_INJECTION: forcing a failure. [ 145.348274][ T7028] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 145.373417][ T7028] CPU: 0 UID: 0 PID: 7028 Comm: syz.1.389 Tainted: G L syzkaller #0 PREEMPT(full) [ 145.373465][ T7028] Tainted: [L]=SOFTLOCKUP [ 145.373474][ T7028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 145.373491][ T7028] Call Trace: [ 145.373500][ T7028] [ 145.373510][ T7028] dump_stack_lvl+0x100/0x190 [ 145.373547][ T7028] should_fail_ex.cold+0x5/0xa [ 145.373578][ T7028] ? prepare_alloc_pages+0x16d/0x5f0 [ 145.373617][ T7028] should_fail_alloc_page+0xeb/0x140 [ 145.373663][ T7028] prepare_alloc_pages+0x1f0/0x5f0 [ 145.373706][ T7028] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 145.373762][ T7028] ? __lock_acquire+0x4a5/0x2630 [ 145.373805][ T7028] ? __css_rstat_updated+0x1ce/0x5a0 [ 145.373850][ T7028] ? __pfx___css_rstat_updated+0x10/0x10 [ 145.373895][ T7028] ? xas_create+0x1f4/0x14e0 [ 145.373935][ T7028] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 145.373987][ T7028] ? rcu_is_watching+0x12/0xc0 [ 145.374020][ T7028] ? __mod_memcg_lruvec_state+0x18c/0x5b0 [ 145.374067][ T7028] ? find_held_lock+0x2b/0x80 [ 145.374112][ T7028] ? __lock_acquire+0x4a5/0x2630 [ 145.374155][ T7028] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 145.374197][ T7028] ? policy_nodemask+0xed/0x4f0 [ 145.374233][ T7028] alloc_pages_mpol+0x1fb/0x540 [ 145.374269][ T7028] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 145.374302][ T7028] ? filemap_get_entry+0x22d/0x450 [ 145.374330][ T7028] ? filemap_get_entry+0x22d/0x450 [ 145.374363][ T7028] folio_alloc_noprof+0x22/0x250 [ 145.374403][ T7028] filemap_alloc_folio_noprof.part.0+0x377/0x450 [ 145.374446][ T7028] ? __pfx_filemap_alloc_folio_noprof.part.0+0x10/0x10 [ 145.374498][ T7028] __filemap_get_folio_mpol+0x6a4/0xe70 [ 145.374538][ T7028] ioctx_alloc+0x7e1/0x21a0 [ 145.374592][ T7028] ? __pfx_ioctx_alloc+0x10/0x10 [ 145.374650][ T7028] __x64_sys_io_setup+0xc9/0x220 [ 145.374694][ T7028] do_syscall_64+0x115/0x840 [ 145.374733][ T7028] ? clear_bhb_loop+0x40/0x90 [ 145.374771][ T7028] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 145.374801][ T7028] RIP: 0033:0x7f9ea3d9ce59 [ 145.374825][ T7028] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 145.374851][ T7028] RSP: 002b:00007f9ea4cc8028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 145.374878][ T7028] RAX: ffffffffffffffda RBX: 00007f9ea4016090 RCX: 00007f9ea3d9ce59 [ 145.374897][ T7028] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff [ 145.374915][ T7028] RBP: 00007f9ea3e32d6f R08: 0000000000000000 R09: 0000000000000000 [ 145.374932][ T7028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 145.374948][ T7028] R13: 00007f9ea4016128 R14: 00007f9ea4016090 R15: 00007ffd95fc2248 [ 145.374986][ T7028] [ 145.748316][ T7034] FAULT_INJECTION: forcing a failure. [ 145.748316][ T7034] name failslab, interval 1, probability 0, space 0, times 0 [ 145.761412][ T7034] CPU: 1 UID: 0 PID: 7034 Comm: syz.2.393 Tainted: G L syzkaller #0 PREEMPT(full) [ 145.761456][ T7034] Tainted: [L]=SOFTLOCKUP [ 145.761466][ T7034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 145.761482][ T7034] Call Trace: [ 145.761492][ T7034] [ 145.761501][ T7034] dump_stack_lvl+0x100/0x190 [ 145.761538][ T7034] should_fail_ex.cold+0x5/0xa [ 145.761575][ T7034] should_failslab+0xc2/0x120 [ 145.761618][ T7034] __kmalloc_cache_noprof+0x7a/0x6f0 [ 145.761659][ T7034] ? alloc_fs_context+0x57/0xf40 [ 145.761710][ T7034] alloc_fs_context+0x57/0xf40 [ 145.761755][ T7034] mq_init_ns+0x16e/0x820 [ 145.761788][ T7034] copy_ipcs+0x3dd/0x7e0 [ 145.761823][ T7034] create_new_namespaces+0x20a/0xac0 [ 145.761860][ T7034] ? security_capable+0x80/0x260 [ 145.761890][ T7034] unshare_nsproxy_namespaces+0xf2/0x220 [ 145.761928][ T7034] ksys_unshare+0x438/0xab0 [ 145.761969][ T7034] ? __pfx_ksys_unshare+0x10/0x10 [ 145.762006][ T7034] ? xfd_validate_state+0x129/0x190 [ 145.762046][ T7034] __x64_sys_unshare+0x31/0x40 [ 145.762085][ T7034] do_syscall_64+0x115/0x840 [ 145.762123][ T7034] ? clear_bhb_loop+0x40/0x90 [ 145.762159][ T7034] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 145.762188][ T7034] RIP: 0033:0x7fcd9339ce59 [ 145.762212][ T7034] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 145.762239][ T7034] RSP: 002b:00007fcd94250028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 145.762265][ T7034] RAX: ffffffffffffffda RBX: 00007fcd93615fa0 RCX: 00007fcd9339ce59 [ 145.762282][ T7034] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c000000 [ 145.762297][ T7034] RBP: 00007fcd93432d6f R08: 0000000000000000 R09: 0000000000000000 [ 145.762313][ T7034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 145.762329][ T7034] R13: 00007fcd93616038 R14: 00007fcd93615fa0 R15: 00007ffce42c0b18 [ 145.762369][ T7034] [ 146.080114][ T7037] FAULT_INJECTION: forcing a failure. [ 146.080114][ T7037] name failslab, interval 1, probability 0, space 0, times 0 [ 146.094191][ T7037] CPU: 0 UID: 0 PID: 7037 Comm: syz.3.395 Tainted: G L syzkaller #0 PREEMPT(full) [ 146.094239][ T7037] Tainted: [L]=SOFTLOCKUP [ 146.094249][ T7037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 146.094266][ T7037] Call Trace: [ 146.094276][ T7037] [ 146.094287][ T7037] dump_stack_lvl+0x100/0x190 [ 146.094325][ T7037] should_fail_ex.cold+0x5/0xa [ 146.094363][ T7037] should_failslab+0xc2/0x120 [ 146.094398][ T7037] __kmalloc_cache_noprof+0x7a/0x6f0 [ 146.094439][ T7037] ? snd_pcm_hw_param_near.constprop.0+0xbc/0x850 [ 146.094479][ T7037] ? kfree+0x223/0x6c0 [ 146.094528][ T7037] snd_pcm_hw_param_near.constprop.0+0xbc/0x850 [ 146.094575][ T7037] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 146.094618][ T7037] ? __pfx_rate_dst_frames+0x10/0x10 [ 146.094646][ T7037] ? calc_dst_frames.constprop.0.isra.0+0xed/0x120 [ 146.094708][ T7037] snd_pcm_oss_change_params_locked+0x193a/0x39f0 [ 146.094769][ T7037] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 146.094811][ T7037] ? __pfx___mutex_lock+0x10/0x10 [ 146.094878][ T7037] snd_pcm_oss_get_active_substream+0x175/0x1d0 [ 146.094926][ T7037] snd_pcm_oss_ioctl+0x25e1/0x37c0 [ 146.094968][ T7037] ? __fget_files+0x215/0x3d0 [ 146.094999][ T7037] ? hook_file_ioctl_common+0x149/0x410 [ 146.095036][ T7037] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 146.095080][ T7037] ? __fget_files+0x21f/0x3d0 [ 146.095113][ T7037] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 146.095151][ T7037] __x64_sys_ioctl+0x18e/0x210 [ 146.095181][ T7037] do_syscall_64+0x115/0x840 [ 146.095217][ T7037] ? clear_bhb_loop+0x40/0x90 [ 146.095251][ T7037] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 146.095281][ T7037] RIP: 0033:0x7f988439ce59 [ 146.095304][ T7037] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 146.095329][ T7037] RSP: 002b:00007f98852e7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 146.095355][ T7037] RAX: ffffffffffffffda RBX: 00007f9884615fa0 RCX: 00007f988439ce59 [ 146.095374][ T7037] RDX: 0000000000000000 RSI: 00000000c0045005 RDI: 0000000000000003 [ 146.095390][ T7037] RBP: 00007f9884432d6f R08: 0000000000000000 R09: 0000000000000000 [ 146.095407][ T7037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 146.095423][ T7037] R13: 00007f9884616038 R14: 00007f9884615fa0 R15: 00007ffd6015a2f8 [ 146.095460][ T7037] [ 146.817448][ T7056] random: crng reseeded on system resumption [ 147.954239][ T7067] FAULT_INJECTION: forcing a failure. [ 147.954239][ T7067] name failslab, interval 1, probability 0, space 0, times 0 [ 147.992561][ T7067] CPU: 1 UID: 0 PID: 7067 Comm: syz.1.403 Tainted: G L syzkaller #0 PREEMPT(full) [ 147.992608][ T7067] Tainted: [L]=SOFTLOCKUP [ 147.992617][ T7067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 147.992633][ T7067] Call Trace: [ 147.992641][ T7067] [ 147.992650][ T7067] dump_stack_lvl+0x100/0x190 [ 147.992684][ T7067] should_fail_ex.cold+0x5/0xa [ 147.992720][ T7067] should_failslab+0xc2/0x120 [ 147.992751][ T7067] __kmalloc_cache_noprof+0x7a/0x6f0 [ 147.992789][ T7067] ? alloc_fs_context+0x57/0xf40 [ 147.992835][ T7067] alloc_fs_context+0x57/0xf40 [ 147.992879][ T7067] mq_init_ns+0x16e/0x820 [ 147.992913][ T7067] copy_ipcs+0x3dd/0x7e0 [ 147.992946][ T7067] create_new_namespaces+0x20a/0xac0 [ 147.992993][ T7067] ? security_capable+0x80/0x260 [ 147.993023][ T7067] unshare_nsproxy_namespaces+0xf2/0x220 [ 147.993061][ T7067] ksys_unshare+0x438/0xab0 [ 147.993104][ T7067] ? __pfx_ksys_unshare+0x10/0x10 [ 147.993138][ T7067] ? xfd_validate_state+0x129/0x190 [ 147.993177][ T7067] __x64_sys_unshare+0x31/0x40 [ 147.993212][ T7067] do_syscall_64+0x115/0x840 [ 147.993249][ T7067] ? clear_bhb_loop+0x40/0x90 [ 147.993287][ T7067] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.993314][ T7067] RIP: 0033:0x7f9ea3d9ce59 [ 147.993337][ T7067] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 147.993363][ T7067] RSP: 002b:00007f9ea4ce9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 147.993390][ T7067] RAX: ffffffffffffffda RBX: 00007f9ea4015fa0 RCX: 00007f9ea3d9ce59 [ 147.993409][ T7067] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c000000 [ 147.993425][ T7067] RBP: 00007f9ea3e32d6f R08: 0000000000000000 R09: 0000000000000000 [ 147.993441][ T7067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 147.993456][ T7067] R13: 00007f9ea4016038 R14: 00007f9ea4015fa0 R15: 00007ffd95fc2248 [ 147.993492][ T7067] [ 148.265343][ T7069] netlink: 208 bytes leftover after parsing attributes in process `syz.3.406'. [ 148.277582][ T7069] FAULT_INJECTION: forcing a failure. [ 148.277582][ T7069] name failslab, interval 1, probability 0, space 0, times 0 [ 148.302604][ T7069] CPU: 1 UID: 0 PID: 7069 Comm: syz.3.406 Tainted: G L syzkaller #0 PREEMPT(full) [ 148.302649][ T7069] Tainted: [L]=SOFTLOCKUP [ 148.302659][ T7069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 148.302675][ T7069] Call Trace: [ 148.302684][ T7069] [ 148.302696][ T7069] dump_stack_lvl+0x100/0x190 [ 148.302732][ T7069] should_fail_ex.cold+0x5/0xa [ 148.302770][ T7069] should_failslab+0xc2/0x120 [ 148.302806][ T7069] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 148.302850][ T7069] ? __kernfs_new_node+0xd2/0x9f0 [ 148.302890][ T7069] __kernfs_new_node+0xd2/0x9f0 [ 148.302926][ T7069] ? __pfx___kernfs_new_node+0x10/0x10 [ 148.302978][ T7069] ? find_held_lock+0x2b/0x80 [ 148.303015][ T7069] ? kernfs_root+0xee/0x2a0 [ 148.303045][ T7069] ? kernfs_root+0xee/0x2a0 [ 148.303083][ T7069] kernfs_new_node+0x11b/0x1a0 [ 148.303120][ T7069] kernfs_create_link+0xcc/0x240 [ 148.303161][ T7069] sysfs_do_create_link_sd+0x90/0x140 [ 148.303193][ T7069] sysfs_create_link+0x61/0xc0 [ 148.303223][ T7069] driver_sysfs_add+0x112/0x2d0 [ 148.303267][ T7069] device_bind_driver+0x16/0x70 [ 148.303310][ T7069] mac80211_hwsim_new_radio+0x3f5/0x5aa0 [ 148.303366][ T7069] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 148.303416][ T7069] ? rcu_is_watching+0x12/0xc0 [ 148.303447][ T7069] ? do_trace_netlink_extack+0x74/0x1f0 [ 148.303478][ T7069] ? __nla_validate_parse+0x1e7/0x28b0 [ 148.303513][ T7069] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 148.303560][ T7069] hwsim_new_radio_nl+0xc5f/0x1370 [ 148.303595][ T7069] ? rcu_is_watching+0x12/0xc0 [ 148.303629][ T7069] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 148.303675][ T7069] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1e5/0x2f0 [ 148.303720][ T7069] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0 [ 148.303773][ T7069] genl_family_rcv_msg_doit+0x214/0x300 [ 148.303818][ T7069] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 148.303859][ T7069] ? genl_get_cmd+0x3e7/0x760 [ 148.303906][ T7069] ? bpf_lsm_capable+0x9/0x10 [ 148.303941][ T7069] ? security_capable+0x80/0x260 [ 148.303972][ T7069] ? ns_capable+0xd2/0xf0 [ 148.304008][ T7069] genl_rcv_msg+0x560/0x800 [ 148.304054][ T7069] ? __pfx_genl_rcv_msg+0x10/0x10 [ 148.304097][ T7069] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 148.304147][ T7069] netlink_rcv_skb+0x159/0x420 [ 148.304185][ T7069] ? __pfx_genl_rcv_msg+0x10/0x10 [ 148.304228][ T7069] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 148.304280][ T7069] ? netlink_deliver_tap+0x1ae/0xcc0 [ 148.304321][ T7069] genl_rcv+0x28/0x40 [ 148.304358][ T7069] netlink_unicast+0x585/0x850 [ 148.304400][ T7069] ? __pfx_netlink_unicast+0x10/0x10 [ 148.304447][ T7069] netlink_sendmsg+0x8b0/0xda0 [ 148.304490][ T7069] ? __pfx_netlink_sendmsg+0x10/0x10 [ 148.304525][ T7069] ? __import_iovec+0x1d2/0x640 [ 148.304568][ T7069] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 148.304603][ T7069] ____sys_sendmsg+0x9e1/0xb70 [ 148.304636][ T7069] ? __pfx_netlink_sendmsg+0x10/0x10 [ 148.304675][ T7069] ? __pfx_____sys_sendmsg+0x10/0x10 [ 148.304719][ T7069] ? __pfx_futex_wake_mark+0x10/0x10 [ 148.304761][ T7069] ___sys_sendmsg+0x190/0x1e0 [ 148.304802][ T7069] ? __pfx____sys_sendmsg+0x10/0x10 [ 148.304887][ T7069] __sys_sendmsg+0x170/0x220 [ 148.304917][ T7069] ? __pfx___sys_sendmsg+0x10/0x10 [ 148.304953][ T7069] ? __x64_sys_futex+0x34f/0x4d0 [ 148.304998][ T7069] ? rcu_is_watching+0x12/0xc0 [ 148.305037][ T7069] do_syscall_64+0x115/0x840 [ 148.305076][ T7069] ? clear_bhb_loop+0x40/0x90 [ 148.305111][ T7069] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 148.305140][ T7069] RIP: 0033:0x7f988439ce59 [ 148.305163][ T7069] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 148.305189][ T7069] RSP: 002b:00007f98852e7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 148.305216][ T7069] RAX: ffffffffffffffda RBX: 00007f9884615fa0 RCX: 00007f988439ce59 [ 148.305234][ T7069] RDX: 0000000004048000 RSI: 0000200000004240 RDI: 0000000000000005 [ 148.305251][ T7069] RBP: 00007f9884432d6f R08: 0000000000000000 R09: 0000000000000000 [ 148.305268][ T7069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 148.305284][ T7069] R13: 00007f9884616038 R14: 00007f9884615fa0 R15: 00007ffd6015a2f8 [ 148.305324][ T7069] [ 148.967497][ C1] sd 0:0:1:0: [sda] tag#1016 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 148.978226][ C1] sd 0:0:1:0: [sda] tag#1016 CDB: Read(6) 08 00 00 00 09 00 00 00 00 00 00 00 [ 149.736354][ T7096] FAULT_INJECTION: forcing a failure. [ 149.736354][ T7096] name failslab, interval 1, probability 0, space 0, times 0 [ 149.782508][ T7096] CPU: 1 UID: 0 PID: 7096 Comm: syz.3.416 Tainted: G L syzkaller #0 PREEMPT(full) [ 149.782552][ T7096] Tainted: [L]=SOFTLOCKUP [ 149.782561][ T7096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 149.782576][ T7096] Call Trace: [ 149.782584][ T7096] [ 149.782594][ T7096] dump_stack_lvl+0x100/0x190 [ 149.782629][ T7096] should_fail_ex.cold+0x5/0xa [ 149.782665][ T7096] should_failslab+0xc2/0x120 [ 149.782699][ T7096] __kmalloc_cache_noprof+0x7a/0x6f0 [ 149.782741][ T7096] ? alloc_fs_context+0x57/0xf40 [ 149.782788][ T7096] alloc_fs_context+0x57/0xf40 [ 149.782835][ T7096] mq_init_ns+0x16e/0x820 [ 149.782870][ T7096] copy_ipcs+0x3dd/0x7e0 [ 149.782901][ T7096] create_new_namespaces+0x20a/0xac0 [ 149.782937][ T7096] ? security_capable+0x80/0x260 [ 149.782970][ T7096] unshare_nsproxy_namespaces+0xf2/0x220 [ 149.783008][ T7096] ksys_unshare+0x438/0xab0 [ 149.783051][ T7096] ? __pfx_ksys_unshare+0x10/0x10 [ 149.783088][ T7096] ? xfd_validate_state+0x129/0x190 [ 149.783127][ T7096] __x64_sys_unshare+0x31/0x40 [ 149.783162][ T7096] do_syscall_64+0x115/0x840 [ 149.783199][ T7096] ? clear_bhb_loop+0x40/0x90 [ 149.783254][ T7096] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.783282][ T7096] RIP: 0033:0x7f988439ce59 [ 149.783303][ T7096] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 149.783328][ T7096] RSP: 002b:00007f98852e7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 149.783354][ T7096] RAX: ffffffffffffffda RBX: 00007f9884615fa0 RCX: 00007f988439ce59 [ 149.783369][ T7096] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c000000 [ 149.783393][ T7096] RBP: 00007f9884432d6f R08: 0000000000000000 R09: 0000000000000000 [ 149.783409][ T7096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 149.783424][ T7096] R13: 00007f9884616038 R14: 00007f9884615fa0 R15: 00007ffd6015a2f8 [ 149.783459][ T7096] [ 150.674581][ T7107] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 150.694842][ T7107] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 150.710472][ T7107] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 150.727000][ T7107] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 150.873748][ T7115] FAULT_INJECTION: forcing a failure. [ 150.873748][ T7115] name fail_futex, interval 1, probability 0, space 0, times 0 [ 150.928479][ T7115] CPU: 0 UID: 0 PID: 7115 Comm: syz.1.422 Tainted: G L syzkaller #0 PREEMPT(full) [ 150.928521][ T7115] Tainted: [L]=SOFTLOCKUP [ 150.928531][ T7115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 150.928546][ T7115] Call Trace: [ 150.928554][ T7115] [ 150.928564][ T7115] dump_stack_lvl+0x100/0x190 [ 150.928599][ T7115] should_fail_ex.cold+0x5/0xa [ 150.928635][ T7115] get_futex_key+0x1d2/0x1510 [ 150.928686][ T7115] ? __pfx_get_futex_key+0x10/0x10 [ 150.928733][ T7115] ? __pfx_clockevents_program_event+0x10/0x10 [ 150.928767][ T7115] ? find_held_lock+0x2b/0x80 [ 150.928806][ T7115] futex_wake+0xea/0x530 [ 150.928843][ T7115] ? __pfx_futex_wake+0x10/0x10 [ 150.928877][ T7115] ? lockdep_hardirqs_on+0x78/0x100 [ 150.928931][ T7115] do_futex+0x32b/0x350 [ 150.928958][ T7115] ? __pfx_do_futex+0x10/0x10 [ 150.928985][ T7115] ? kasan_check_range+0x180/0x1e0 [ 150.929028][ T7115] __x64_sys_futex+0x34f/0x4d0 [ 150.929062][ T7115] ? __pfx___x64_sys_futex+0x10/0x10 [ 150.929093][ T7115] ? __pfx___do_sys_prctl+0x10/0x10 [ 150.929120][ T7115] ? arch_syscall_is_vdso_sigreturn+0xb6/0x200 [ 150.929163][ T7115] ? syscall_user_dispatch+0x76/0x130 [ 150.929198][ T7115] do_syscall_64+0x115/0x840 [ 150.929245][ T7115] ? clear_bhb_loop+0x40/0x90 [ 150.929281][ T7115] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 150.929311][ T7115] RIP: 0033:0x7f9ea3d9ce59 [ 150.929334][ T7115] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 150.929360][ T7115] RSP: 002b:00007f9ea4ce90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 150.929387][ T7115] RAX: ffffffffffffffda RBX: 00007f9ea4015fa8 RCX: 00007f9ea3d9ce59 [ 150.929406][ T7115] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f9ea4015fac [ 150.929423][ T7115] RBP: 00007f9ea4015fa0 R08: 0000000000000001 R09: 0000000000000000 [ 150.929440][ T7115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 150.929456][ T7115] R13: 00007f9ea4016038 R14: 00007ffd95fc2160 R15: 00007ffd95fc2248 [ 150.929493][ T7115] [ 151.411270][ T7123] ima: policy update failed [ 151.417681][ T29] audit: type=1802 audit(1780428866.930:6): pid=7123 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.426" res=0 errno=0 [ 151.594728][ T7135] netlink: 25 bytes leftover after parsing attributes in process `syz.0.431'. [ 152.687536][ T5646] Bluetooth: hci0: command 0x0c1a tx timeout [ 152.764172][ T5646] Bluetooth: hci3: command 0x0c1a tx timeout [ 152.769557][ T7169] FAULT_INJECTION: forcing a failure. [ 152.769557][ T7169] name failslab, interval 1, probability 0, space 0, times 0 [ 152.770459][ T5646] Bluetooth: hci2: command 0x0c1a tx timeout [ 152.790528][ T4948] Bluetooth: hci1: command 0x0c1a tx timeout [ 152.799131][ T7169] CPU: 1 UID: 0 PID: 7169 Comm: syz.1.439 Tainted: G L syzkaller #0 PREEMPT(full) [ 152.799177][ T7169] Tainted: [L]=SOFTLOCKUP [ 152.799186][ T7169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 152.799203][ T7169] Call Trace: [ 152.799212][ T7169] [ 152.799222][ T7169] dump_stack_lvl+0x100/0x190 [ 152.799257][ T7169] should_fail_ex.cold+0x5/0xa [ 152.799295][ T7169] should_failslab+0xc2/0x120 [ 152.799329][ T7169] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 152.799374][ T7169] ? __d_alloc+0x34/0xa40 [ 152.799433][ T7169] __d_alloc+0x34/0xa40 [ 152.799473][ T7169] ? __pfx_stack_trace_save+0x10/0x10 [ 152.799513][ T7169] d_alloc_parallel+0x111/0x14e0 [ 152.799543][ T7169] ? kasan_save_stack+0x3f/0x50 [ 152.799572][ T7169] ? kasan_save_stack+0x30/0x50 [ 152.799599][ T7169] ? kasan_save_free_info+0x3b/0x70 [ 152.799645][ T7169] ? link_path_walk+0x161f/0x1cc0 [ 152.799678][ T7169] ? __pfx_d_alloc_parallel+0x10/0x10 [ 152.799712][ T7169] ? lockdep_init_map_type+0x5c/0x250 [ 152.799759][ T7169] ? lockdep_init_map_type+0x5c/0x250 [ 152.799808][ T7169] __lookup_slow+0x193/0x460 [ 152.799846][ T7169] ? __pfx___lookup_slow+0x10/0x10 [ 152.799900][ T7169] lookup_slow+0x50/0x70 [ 152.799932][ T7169] link_path_walk+0x1377/0x1cc0 [ 152.799965][ T7169] path_openat+0x1be/0x31a0 [ 152.799999][ T7169] ? kasan_save_stack+0x3f/0x50 [ 152.800022][ T7169] ? kasan_save_stack+0x30/0x50 [ 152.800043][ T7169] ? kasan_save_track+0x14/0x30 [ 152.800065][ T7169] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 152.800107][ T7169] ? __pfx_path_openat+0x10/0x10 [ 152.800144][ T7169] do_file_open+0x20e/0x430 [ 152.800174][ T7169] ? __pfx_do_file_open+0x10/0x10 [ 152.800211][ T7169] ? __pfx_kfree_link+0x10/0x10 [ 152.800241][ T7169] ? alloc_fd+0x476/0x790 [ 152.800270][ T7169] ? do_getname+0x191/0x390 [ 152.800305][ T7169] do_sys_openat2+0x10d/0x1e0 [ 152.800339][ T7169] ? __pfx_do_sys_openat2+0x10/0x10 [ 152.800374][ T7169] ? ksys_semctl.constprop.0+0x14e/0x2e0 [ 152.800406][ T7169] __x64_sys_openat+0x12d/0x210 [ 152.800443][ T7169] ? __pfx___x64_sys_openat+0x10/0x10 [ 152.800482][ T7169] ? rcu_is_watching+0x12/0xc0 [ 152.800514][ T7169] do_syscall_64+0x115/0x840 [ 152.800551][ T7169] ? clear_bhb_loop+0x40/0x90 [ 152.800582][ T7169] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 152.800611][ T7169] RIP: 0033:0x7f9ea3d5d68e [ 152.800635][ T7169] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 152.800664][ T7169] RSP: 002b:00007f9ea4cc7ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 152.800691][ T7169] RAX: ffffffffffffffda RBX: 00007f9ea4cc86c0 RCX: 00007f9ea3d5d68e [ 152.800712][ T7169] RDX: 0000000000000002 RSI: 00007f9ea4cc7f90 RDI: ffffffffffffff9c [ 152.800730][ T7169] RBP: 00007f9ea3e32d6f R08: 0000000000000000 R09: 0000000000000000 [ 152.800744][ T7169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 152.800757][ T7169] R13: 00007f9ea4016128 R14: 00007f9ea4016090 R15: 00007ffd95fc2248 [ 152.800788][ T7169] [ 153.436155][ T7182] netlink: 330 bytes leftover after parsing attributes in process `syz.3.445'. [ 155.453888][ T7205] FAULT_INJECTION: forcing a failure. [ 155.453888][ T7205] name failslab, interval 1, probability 0, space 0, times 0 [ 155.471800][ T7205] CPU: 0 UID: 0 PID: 7205 Comm: syz.0.459 Tainted: G L syzkaller #0 PREEMPT(full) [ 155.471847][ T7205] Tainted: [L]=SOFTLOCKUP [ 155.471858][ T7205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 155.471875][ T7205] Call Trace: [ 155.471883][ T7205] [ 155.471893][ T7205] dump_stack_lvl+0x100/0x190 [ 155.471929][ T7205] should_fail_ex.cold+0x5/0xa [ 155.471966][ T7205] ? memcg_list_lru_alloc+0x4ec/0x740 [ 155.471993][ T7205] should_failslab+0xc2/0x120 [ 155.472026][ T7205] __kmalloc_noprof+0xe0/0x850 [ 155.472051][ T7205] ? __lock_acquire+0x4a5/0x2630 [ 155.472098][ T7205] memcg_list_lru_alloc+0x4ec/0x740 [ 155.472133][ T7205] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 155.472175][ T7205] __memcg_slab_post_alloc_hook+0x27e/0xff0 [ 155.472230][ T7205] ? kasan_save_track+0x14/0x30 [ 155.472263][ T7205] kmem_cache_alloc_lru_noprof+0x592/0x6e0 [ 155.472307][ T7205] ? alloc_inode+0x183/0x250 [ 155.472356][ T7205] alloc_inode+0x183/0x250 [ 155.472400][ T7205] path_from_stashed+0x25b/0x750 [ 155.472438][ T7205] ? do_raw_spin_unlock+0x145/0x1e0 [ 155.472481][ T7205] ns_get_path+0x60/0x80 [ 155.472529][ T7205] proc_ns_get_link+0x121/0x230 [ 155.472560][ T7205] ? __pfx_proc_ns_get_link+0x10/0x10 [ 155.472595][ T7205] ? atime_needs_update+0x8b/0x6b0 [ 155.472627][ T7205] pick_link+0xd17/0x13c0 [ 155.472654][ T7205] ? __pfx_proc_ns_get_link+0x10/0x10 [ 155.472690][ T7205] step_into_slowpath+0x9ba/0xf90 [ 155.472728][ T7205] ? __pfx_step_into_slowpath+0x10/0x10 [ 155.472757][ T7205] ? find_held_lock+0x2b/0x80 [ 155.472801][ T7205] path_openat+0xf95/0x31a0 [ 155.472848][ T7205] ? __pfx_path_openat+0x10/0x10 [ 155.472897][ T7205] do_file_open+0x20e/0x430 [ 155.472934][ T7205] ? __pfx_do_file_open+0x10/0x10 [ 155.472992][ T7205] ? alloc_fd+0x476/0x790 [ 155.473029][ T7205] ? do_getname+0x191/0x390 [ 155.473071][ T7205] do_sys_openat2+0x10d/0x1e0 [ 155.473110][ T7205] ? __pfx_do_sys_openat2+0x10/0x10 [ 155.473169][ T7205] ? __fget_files+0x21f/0x3d0 [ 155.473212][ T7205] __x64_sys_openat+0x12d/0x210 [ 155.473251][ T7205] ? __pfx___x64_sys_openat+0x10/0x10 [ 155.473297][ T7205] ? rcu_is_watching+0x12/0xc0 [ 155.473328][ T7205] do_syscall_64+0x115/0x840 [ 155.473364][ T7205] ? clear_bhb_loop+0x40/0x90 [ 155.473400][ T7205] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 155.473431][ T7205] RIP: 0033:0x7f3b51b5d68e [ 155.473455][ T7205] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 155.473482][ T7205] RSP: 002b:00007f3b52a5bec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 155.473519][ T7205] RAX: ffffffffffffffda RBX: 00007f3b52a5c6c0 RCX: 00007f3b51b5d68e [ 155.473538][ T7205] RDX: 0000000000000002 RSI: 00007f3b52a5bf90 RDI: ffffffffffffff9c [ 155.473556][ T7205] RBP: 00007f3b51c32d6f R08: 0000000000000000 R09: 0000000000000000 [ 155.473574][ T7205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 155.473590][ T7205] R13: 00007f3b51e16038 R14: 00007f3b51e15fa0 R15: 00007fffa6d24328 [ 155.473629][ T7205] [ 155.887990][ T7210] netlink: 28 bytes leftover after parsing attributes in process `syz.1.460'. [ 155.926482][ T7210] veth1_macvtap: left promiscuous mode [ 155.934583][ T7210] macsec0: entered promiscuous mode [ 155.947954][ T7210] macsec0: entered allmulticast mode [ 156.095136][ T7219] FAULT_INJECTION: forcing a failure. [ 156.095136][ T7219] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 156.114342][ T7219] CPU: 0 UID: 0 PID: 7219 Comm: syz.2.455 Tainted: G L syzkaller #0 PREEMPT(full) [ 156.114387][ T7219] Tainted: [L]=SOFTLOCKUP [ 156.114397][ T7219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 156.114414][ T7219] Call Trace: [ 156.114422][ T7219] [ 156.114432][ T7219] dump_stack_lvl+0x100/0x190 [ 156.114467][ T7219] should_fail_ex.cold+0x5/0xa [ 156.114498][ T7219] ? prepare_alloc_pages+0x16d/0x5f0 [ 156.114538][ T7219] should_fail_alloc_page+0xeb/0x140 [ 156.114575][ T7219] prepare_alloc_pages+0x1f0/0x5f0 [ 156.114611][ T7219] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 156.114654][ T7219] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 156.114703][ T7219] ? unwind_get_return_address+0x59/0xa0 [ 156.114741][ T7219] ? arch_stack_walk+0xa6/0xf0 [ 156.114811][ T7219] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 156.114855][ T7219] ? __pfx_stack_trace_save+0x10/0x10 [ 156.114890][ T7219] ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0 [ 156.114944][ T7219] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 156.114983][ T7219] ? __pmd_alloc+0xbf/0x950 [ 156.115012][ T7219] ? __handle_mm_fault+0xa9c/0x2a00 [ 156.115050][ T7219] ? handle_mm_fault+0x37b/0xa30 [ 156.115085][ T7219] ? __get_user_pages+0x1178/0x32a0 [ 156.115113][ T7219] ? populate_vma_page_range+0x267/0x3f0 [ 156.115142][ T7219] ? __mm_populate+0x107/0x3a0 [ 156.115166][ T7219] ? vm_mmap_pgoff+0x37f/0x470 [ 156.115195][ T7219] ? ksys_mmap_pgoff+0xe4/0x610 [ 156.115228][ T7219] ? __x64_sys_mmap+0x125/0x190 [ 156.115264][ T7219] ? do_syscall_64+0x115/0x840 [ 156.115303][ T7219] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 156.115333][ T7219] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 156.115375][ T7219] ? policy_nodemask+0xed/0x4f0 [ 156.115411][ T7219] alloc_pages_mpol+0x1fb/0x540 [ 156.115447][ T7219] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 156.115484][ T7219] ? __lock_acquire+0x4a5/0x2630 [ 156.115532][ T7219] alloc_pages_noprof+0x1a/0x160 [ 156.115572][ T7219] pte_alloc_one+0x1c/0x3d0 [ 156.115611][ T7219] __pte_alloc+0x6d/0x380 [ 156.115642][ T7219] ? __pfx___pte_alloc+0x10/0x10 [ 156.115675][ T7219] ? do_raw_spin_lock+0x128/0x260 [ 156.115705][ T7219] ? find_held_lock+0x2b/0x80 [ 156.115742][ T7219] do_anonymous_page+0x13c6/0x2050 [ 156.115787][ T7219] ? __pmd_alloc+0x3fb/0x950 [ 156.115825][ T7219] __handle_mm_fault+0x1d2c/0x2a00 [ 156.115874][ T7219] ? mt_find+0x45e/0x8e0 [ 156.115917][ T7219] ? __pfx___handle_mm_fault+0x10/0x10 [ 156.115957][ T7219] ? __pfx_mt_find+0x10/0x10 [ 156.116029][ T7219] handle_mm_fault+0x37b/0xa30 [ 156.116079][ T7219] __get_user_pages+0x1178/0x32a0 [ 156.116126][ T7219] ? __pfx___get_user_pages+0x10/0x10 [ 156.116172][ T7219] populate_vma_page_range+0x267/0x3f0 [ 156.116212][ T7219] ? __pfx_populate_vma_page_range+0x10/0x10 [ 156.116254][ T7219] ? __pfx_find_vma_intersection+0x10/0x10 [ 156.116291][ T7219] ? do_mmap+0x93f/0x12f0 [ 156.116330][ T7219] __mm_populate+0x107/0x3a0 [ 156.116370][ T7219] ? __pfx___mm_populate+0x10/0x10 [ 156.116410][ T7219] ? up_write+0x28c/0x4f0 [ 156.116445][ T7219] vm_mmap_pgoff+0x37f/0x470 [ 156.116486][ T7219] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 156.116523][ T7219] ? do_futex+0x192/0x350 [ 156.116549][ T7219] ? __pfx_do_futex+0x10/0x10 [ 156.116580][ T7219] ksys_mmap_pgoff+0xe4/0x610 [ 156.116610][ T7219] ? __x64_sys_futex+0x358/0x4d0 [ 156.116638][ T7219] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 156.116666][ T7219] ? xfd_validate_state+0x129/0x190 [ 156.116688][ T7219] ? ksys_write+0x1ac/0x250 [ 156.116723][ T7219] __x64_sys_mmap+0x125/0x190 [ 156.116752][ T7219] do_syscall_64+0x115/0x840 [ 156.116785][ T7219] ? clear_bhb_loop+0x40/0x90 [ 156.116815][ T7219] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 156.116843][ T7219] RIP: 0033:0x7fcd9339ce59 [ 156.116866][ T7219] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 156.116892][ T7219] RSP: 002b:00007fcd94250028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 156.116918][ T7219] RAX: ffffffffffffffda RBX: 00007fcd93615fa0 RCX: 00007fcd9339ce59 [ 156.116933][ T7219] RDX: 00000000000000df RSI: 0000000000000008 RDI: 0000000000000000 [ 156.116948][ T7219] RBP: 00007fcd93432d6f R08: 0000000000000002 R09: 0000000000008000 [ 156.116963][ T7219] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 156.116978][ T7219] R13: 00007fcd93616038 R14: 00007fcd93615fa0 R15: 00007ffce42c0b18 [ 156.117014][ T7219] [ 156.578056][ T7219] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 156.603053][ T7217] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 157.286007][ T7232] ima: policy update failed [ 157.291006][ T29] audit: type=1802 audit(1780428872.810:7): pid=7232 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.461" res=0 errno=0 [ 157.658506][ T7249] netlink: 28 bytes leftover after parsing attributes in process `syz.2.466'. [ 157.674861][ T7249] veth1_macvtap: left promiscuous mode [ 157.682250][ T7249] macsec0: entered promiscuous mode [ 157.687651][ T7249] macsec0: entered allmulticast mode [ 157.850261][ T7253] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 157.881578][ T7253] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 157.906271][ T7253] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 157.924054][ T7253] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 158.135649][ T7255] random: crng reseeded on system resumption [ 159.547792][ T7287] netlink: 25 bytes leftover after parsing attributes in process `syz.3.486'. [ 159.879103][ T5646] Bluetooth: hci0: command 0x0c1a tx timeout [ 159.969544][ T5646] Bluetooth: hci3: command 0x0c1a tx timeout [ 159.969596][ T5640] Bluetooth: hci2: command 0x0c1a tx timeout [ 159.976700][ T5646] Bluetooth: hci1: command 0x0c1a tx timeout [ 160.800968][ T7321] FAULT_INJECTION: forcing a failure. [ 160.800968][ T7321] name failslab, interval 1, probability 0, space 0, times 0 [ 160.879081][ T7321] CPU: 1 UID: 0 PID: 7321 Comm: syz.0.485 Tainted: G L syzkaller #0 PREEMPT(full) [ 160.879111][ T7321] Tainted: [L]=SOFTLOCKUP [ 160.879117][ T7321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 160.879126][ T7321] Call Trace: [ 160.879132][ T7321] [ 160.879138][ T7321] dump_stack_lvl+0x100/0x190 [ 160.879159][ T7321] should_fail_ex.cold+0x5/0xa [ 160.879179][ T7321] ? realloc_user_queue+0xe9/0x310 [ 160.879200][ T7321] should_failslab+0xc2/0x120 [ 160.879218][ T7321] __kmalloc_noprof+0xe0/0x850 [ 160.879236][ T7321] realloc_user_queue+0xe9/0x310 [ 160.879257][ T7321] ? __pfx_snd_timer_user_open+0x10/0x10 [ 160.879277][ T7321] snd_timer_user_open+0xfc/0x180 [ 160.879298][ T7321] snd_open+0x201/0x450 [ 160.879316][ T7321] ? __pfx_snd_open+0x10/0x10 [ 160.879334][ T7321] chrdev_open+0x234/0x6a0 [ 160.879352][ T7321] ? __pfx_apparmor_file_open+0x10/0x10 [ 160.879376][ T7321] ? __pfx_chrdev_open+0x10/0x10 [ 160.879395][ T7321] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 160.879419][ T7321] do_dentry_open+0x6ab/0x14d0 [ 160.879437][ T7321] ? __pfx_chrdev_open+0x10/0x10 [ 160.879459][ T7321] vfs_open+0x82/0x3f0 [ 160.879481][ T7321] path_openat+0x208c/0x31a0 [ 160.879506][ T7321] ? __pfx_path_openat+0x10/0x10 [ 160.879530][ T7321] do_file_open+0x20e/0x430 [ 160.879549][ T7321] ? __pfx_do_file_open+0x10/0x10 [ 160.879580][ T7321] ? alloc_fd+0x476/0x790 [ 160.879599][ T7321] ? do_getname+0x191/0x390 [ 160.879621][ T7321] do_sys_openat2+0x10d/0x1e0 [ 160.879642][ T7321] ? __pfx_do_sys_openat2+0x10/0x10 [ 160.879665][ T7321] ? __fget_files+0x21f/0x3d0 [ 160.879685][ T7321] __x64_sys_openat+0x12d/0x210 [ 160.879708][ T7321] ? __pfx___x64_sys_openat+0x10/0x10 [ 160.879733][ T7321] ? rcu_is_watching+0x12/0xc0 [ 160.879752][ T7321] do_syscall_64+0x115/0x840 [ 160.879772][ T7321] ? clear_bhb_loop+0x40/0x90 [ 160.879789][ T7321] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 160.879804][ T7321] RIP: 0033:0x7f3b51b9ce59 [ 160.879818][ T7321] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 160.879832][ T7321] RSP: 002b:00007f3b52a3b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 160.879847][ T7321] RAX: ffffffffffffffda RBX: 00007f3b51e16090 RCX: 00007f3b51b9ce59 [ 160.879856][ T7321] RDX: 0000000000101000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 160.879865][ T7321] RBP: 00007f3b51c32d6f R08: 0000000000000000 R09: 0000000000000000 [ 160.879877][ T7321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 160.879885][ T7321] R13: 00007f3b51e16128 R14: 00007f3b51e16090 R15: 00007fffa6d24328 [ 160.879904][ T7321] [ 161.614360][ T7329] syz.2.489 (7329) used obsolete PPPIOCDETACH ioctl [ 162.105024][ T7337] netlink: 28 bytes leftover after parsing attributes in process `syz.3.491'. [ 162.321339][ T7337] veth1_macvtap: left promiscuous mode [ 162.335030][ T7337] macsec0: entered promiscuous mode [ 162.349107][ T7337] macsec0: entered allmulticast mode [ 162.657057][ T7348] netlink: Conntrack attr type has unexpected length (type=3, length=0, expected=8) [ 163.294077][ T7358] FAULT_INJECTION: forcing a failure. [ 163.294077][ T7358] name failslab, interval 1, probability 0, space 0, times 0 [ 163.316446][ T7358] CPU: 1 UID: 0 PID: 7358 Comm: syz.1.498 Tainted: G L syzkaller #0 PREEMPT(full) [ 163.316491][ T7358] Tainted: [L]=SOFTLOCKUP [ 163.316501][ T7358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 163.316518][ T7358] Call Trace: [ 163.316527][ T7358] [ 163.316538][ T7358] dump_stack_lvl+0x100/0x190 [ 163.316573][ T7358] should_fail_ex.cold+0x5/0xa [ 163.316610][ T7358] ? __d_alloc+0x64c/0xa40 [ 163.316647][ T7358] should_failslab+0xc2/0x120 [ 163.316681][ T7358] __kmalloc_noprof+0xe0/0x850 [ 163.316716][ T7358] __d_alloc+0x64c/0xa40 [ 163.316758][ T7358] d_alloc_parallel+0x111/0x14e0 [ 163.316788][ T7358] ? stack_trace_save+0x8e/0xc0 [ 163.316827][ T7358] ? look_up_lock_class+0x55/0x120 [ 163.316868][ T7358] ? register_lock_class+0x40/0x560 [ 163.316917][ T7358] ? __pfx_d_alloc_parallel+0x10/0x10 [ 163.316949][ T7358] ? lockdep_init_map_type+0x5c/0x250 [ 163.316994][ T7358] ? lockdep_init_map_type+0x5c/0x250 [ 163.317044][ T7358] __lookup_slow+0x193/0x460 [ 163.317088][ T7358] ? __pfx___lookup_slow+0x10/0x10 [ 163.317164][ T7358] lookup_slow+0x50/0x70 [ 163.317281][ T7358] link_path_walk+0x1377/0x1cc0 [ 163.317327][ T7358] path_openat+0x1be/0x31a0 [ 163.317377][ T7358] ? __pfx_path_openat+0x10/0x10 [ 163.317411][ T7358] ? stack_trace_save+0x8e/0xc0 [ 163.317447][ T7358] ? __pfx_stack_trace_save+0x10/0x10 [ 163.317485][ T7358] ? stack_depot_save_flags+0x27/0x9d0 [ 163.317528][ T7358] ? __kasan_slab_alloc+0x89/0x90 [ 163.317557][ T7358] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 163.317601][ T7358] ? do_getname+0x35/0x390 [ 163.317649][ T7358] do_file_open+0x20e/0x430 [ 163.317681][ T7358] ? kasan_save_stack+0x30/0x50 [ 163.317708][ T7358] ? __pfx_do_file_open+0x10/0x10 [ 163.317742][ T7358] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 163.317803][ T7358] ? find_held_lock+0x2b/0x80 [ 163.317836][ T7358] ? __might_fault+0xc5/0x140 [ 163.317877][ T7358] ? __might_fault+0xc5/0x140 [ 163.317925][ T7358] file_open_name+0x198/0x3b0 [ 163.317970][ T7358] ? __pfx_file_open_name+0x10/0x10 [ 163.318022][ T7358] ? do_getname+0x191/0x390 [ 163.318067][ T7358] acct_on+0xa4/0x9e0 [ 163.318103][ T7358] ? __pfx_acct_on+0x10/0x10 [ 163.318137][ T7358] ? bpf_lsm_capable+0x9/0x10 [ 163.318167][ T7358] ? security_capable+0x80/0x260 [ 163.318210][ T7358] __x64_sys_acct+0x81/0x1e0 [ 163.318243][ T7358] ? lockdep_hardirqs_on+0x78/0x100 [ 163.318283][ T7358] do_syscall_64+0x115/0x840 [ 163.318321][ T7358] ? clear_bhb_loop+0x40/0x90 [ 163.318357][ T7358] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 163.318386][ T7358] RIP: 0033:0x7f9ea3d9ce59 [ 163.318410][ T7358] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 163.318437][ T7358] RSP: 002b:00007f9ea4ce9028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 163.318465][ T7358] RAX: ffffffffffffffda RBX: 00007f9ea4015fa0 RCX: 00007f9ea3d9ce59 [ 163.318483][ T7358] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000440 [ 163.318501][ T7358] RBP: 00007f9ea3e32d6f R08: 0000000000000000 R09: 0000000000000000 [ 163.318518][ T7358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 163.318534][ T7358] R13: 00007f9ea4016038 R14: 00007f9ea4015fa0 R15: 00007ffd95fc2248 [ 163.318574][ T7358] [ 166.509724][ T7412] HfR: entered promiscuous mode [ 166.856346][ T7412] netlink: 12 bytes leftover after parsing attributes in process `syz.0.523'. [ 166.886867][ T7412] HfR: left promiscuous mode [ 170.057479][ T7485] netlink: 146 bytes leftover after parsing attributes in process `syz.3.537'. [ 170.407430][ T7492] netlink: 334 bytes leftover after parsing attributes in process `syz.0.541'. [ 170.555231][ T7495] netlink: 28 bytes leftover after parsing attributes in process `syz.2.542'. [ 171.139192][ T7505] random: crng reseeded on system resumption [ 174.432865][ T7562] random: crng reseeded on system resumption [ 177.130087][ T7614] FAULT_INJECTION: forcing a failure. [ 177.130087][ T7614] name failslab, interval 1, probability 0, space 0, times 0 [ 177.191899][ T7614] CPU: 1 UID: 0 PID: 7614 Comm: syz.3.570 Tainted: G L syzkaller #0 PREEMPT(full) [ 177.191945][ T7614] Tainted: [L]=SOFTLOCKUP [ 177.191955][ T7614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 177.191971][ T7614] Call Trace: [ 177.191980][ T7614] [ 177.191990][ T7614] dump_stack_lvl+0x100/0x190 [ 177.192026][ T7614] should_fail_ex.cold+0x5/0xa [ 177.192061][ T7614] ? realloc_user_queue+0xe9/0x310 [ 177.192098][ T7614] should_failslab+0xc2/0x120 [ 177.192131][ T7614] __kmalloc_noprof+0xe0/0x850 [ 177.192164][ T7614] realloc_user_queue+0xe9/0x310 [ 177.192204][ T7614] ? __pfx_snd_timer_user_open+0x10/0x10 [ 177.192245][ T7614] snd_timer_user_open+0xfc/0x180 [ 177.192286][ T7614] snd_open+0x201/0x450 [ 177.192322][ T7614] ? __pfx_snd_open+0x10/0x10 [ 177.192357][ T7614] chrdev_open+0x234/0x6a0 [ 177.192390][ T7614] ? __pfx_apparmor_file_open+0x10/0x10 [ 177.192423][ T7614] ? __pfx_chrdev_open+0x10/0x10 [ 177.192460][ T7614] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 177.192506][ T7614] do_dentry_open+0x6ab/0x14d0 [ 177.192541][ T7614] ? __pfx_chrdev_open+0x10/0x10 [ 177.192584][ T7614] vfs_open+0x82/0x3f0 [ 177.192640][ T7614] path_openat+0x208c/0x31a0 [ 177.192689][ T7614] ? __pfx_path_openat+0x10/0x10 [ 177.192738][ T7614] do_file_open+0x20e/0x430 [ 177.192776][ T7614] ? __pfx_do_file_open+0x10/0x10 [ 177.192838][ T7614] ? alloc_fd+0x476/0x790 [ 177.192876][ T7614] ? do_getname+0x191/0x390 [ 177.192920][ T7614] do_sys_openat2+0x10d/0x1e0 [ 177.192962][ T7614] ? __pfx_do_sys_openat2+0x10/0x10 [ 177.193008][ T7614] ? __fget_files+0x21f/0x3d0 [ 177.193048][ T7614] __x64_sys_openat+0x12d/0x210 [ 177.193090][ T7614] ? __pfx___x64_sys_openat+0x10/0x10 [ 177.193141][ T7614] ? rcu_is_watching+0x12/0xc0 [ 177.193178][ T7614] do_syscall_64+0x115/0x840 [ 177.193217][ T7614] ? clear_bhb_loop+0x40/0x90 [ 177.193252][ T7614] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 177.193281][ T7614] RIP: 0033:0x7f988439ce59 [ 177.193304][ T7614] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 177.193334][ T7614] RSP: 002b:00007f98852c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 177.193361][ T7614] RAX: ffffffffffffffda RBX: 00007f9884616090 RCX: 00007f988439ce59 [ 177.193381][ T7614] RDX: 0000000000101000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 177.193400][ T7614] RBP: 00007f9884432d6f R08: 0000000000000000 R09: 0000000000000000 [ 177.193416][ T7614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 177.193433][ T7614] R13: 00007f9884616128 R14: 00007f9884616090 R15: 00007ffd6015a2f8 [ 177.193468][ T7614] [ 178.327037][ T7622] netlink: 354 bytes leftover after parsing attributes in process `syz.1.582'. [ 178.615117][ T7629] dyndbg: bad flag-op 3, at start of 30 [ 178.640199][ T7629] dyndbg: flags parse failed [ 180.217847][ T7668] netlink: 16 bytes leftover after parsing attributes in process `syz.1.589'. [ 180.834406][ T7677] dyndbg: bad flag-op 3, at start of 30 [ 180.857420][ T7677] dyndbg: flags parse failed [ 180.942417][ T7683] netlink: 330 bytes leftover after parsing attributes in process `syz.2.595'. [ 180.980302][ T7683] : renamed from bond_slave_0 (while UP) [ 181.038489][ T7683] netlink: 330 bytes leftover after parsing attributes in process `syz.2.595'. [ 181.099198][ T7688] netlink: 12 bytes leftover after parsing attributes in process `syz.1.596'. [ 181.166193][ T7688] netlink: 8 bytes leftover after parsing attributes in process `syz.1.596'. [ 181.812570][ T7702] netlink: 28 bytes leftover after parsing attributes in process `syz.3.602'. [ 182.289576][ T7716] netlink: 142 bytes leftover after parsing attributes in process `syz.0.607'. [ 182.387601][ T7718] netlink: 25 bytes leftover after parsing attributes in process `syz.3.608'. [ 182.515900][ T7722] netlink: 342 bytes leftover after parsing attributes in process `syz.3.610'. [ 183.357211][ T7747] __nla_validate_parse: 2 callbacks suppressed [ 183.357236][ T7747] netlink: 25 bytes leftover after parsing attributes in process `syz.0.620'. [ 185.332715][ T7780] netlink: 334 bytes leftover after parsing attributes in process `syz.3.626'. [ 186.972715][ T7813] block2mtd: error: cannot open device  [ 187.755148][ T7821] netlink: 28 bytes leftover after parsing attributes in process `syz.0.641'. [ 188.282576][ T7836] netlink: 4 bytes leftover after parsing attributes in process `syz.2.649'. [ 188.315801][ T7836] netlink: 13 bytes leftover after parsing attributes in process `syz.2.649'. [ 188.632071][ T7845] kvm: kvm [7843]: vcpu5, guest rIP: 0xfff0 Unhandled WRMSR(0x11e) = 0x1000 [ 189.100158][ T7856] netlink: 266 bytes leftover after parsing attributes in process `syz.2.654'. [ 189.944933][ T7874] netlink: 330 bytes leftover after parsing attributes in process `syz.3.660'. [ 189.961768][ T7874] gretap0: refused to change device tx_queue_len [ 191.666410][ T7905] vivid-007: ================= START STATUS ================= [ 191.693596][ T7905] vivid-007: Enable Output Cropping: true grabbed [ 191.701693][ T7905] vivid-007: Enable Output Composing: true grabbed [ 191.709506][ T7905] vivid-007: Enable Output Scaler: true grabbed [ 191.717868][ T7905] vivid-007: Tx RGB Quantization Range: Automatic grabbed [ 191.725298][ T7905] vivid-007: Transmit Mode: HDMI grabbed [ 191.731233][ T7905] vivid-007: Hotplug Present: 0x00000000 [ 191.736948][ T7905] vivid-007: RxSense Present: 0x00000000 [ 191.743442][ T7905] vivid-007: EDID Present: 0x00000000 [ 191.749023][ T7905] vivid-007: ================== END STATUS ================== [ 192.912968][ T7934] No such timeout policy "" [ 192.939093][ T7934] netlink: Failed to associated timeout policy '' [ 194.361368][ T1316] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.369420][ T1316] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.097707][ T7978] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 195.493942][ T7987] netlink: 4 bytes leftover after parsing attributes in process `syz.0.695'. [ 195.505276][ T7987] netlink: 13 bytes leftover after parsing attributes in process `syz.0.695'. syzkaller syzkaller login: [ 196.909288][ T8016] netlink: 4 bytes leftover after parsing attributes in process `syz.3.705'. [ 196.933197][ T8016] netlink: 13 bytes leftover after parsing attributes in process `syz.3.705'. [ 198.006310][ T8042] FAULT_INJECTION: forcing a failure. [ 198.006310][ T8042] name failslab, interval 1, probability 0, space 0, times 0 [ 198.020758][ T8043] sg_read: process 492 (syz.1.716) changed security contexts after opening file descriptor, this is not allowed. [ 198.052358][ T8042] CPU: 0 UID: 0 PID: 8042 Comm: syz.0.717 Tainted: G L syzkaller #0 PREEMPT(full) [ 198.052399][ T8042] Tainted: [L]=SOFTLOCKUP [ 198.052409][ T8042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 198.052429][ T8042] Call Trace: [ 198.052437][ T8042] [ 198.052447][ T8042] dump_stack_lvl+0x100/0x190 [ 198.052484][ T8042] should_fail_ex.cold+0x5/0xa [ 198.052522][ T8042] should_failslab+0xc2/0x120 [ 198.052561][ T8042] __kmalloc_cache_noprof+0x7a/0x6f0 [ 198.052600][ T8042] ? subflow_create_ctx+0x9b/0x2e0 [ 198.052651][ T8042] subflow_create_ctx+0x9b/0x2e0 [ 198.052696][ T8042] subflow_ulp_init+0xc3/0x4f0 [ 198.052738][ T8042] tcp_set_ulp+0x32e/0x7f0 [ 198.052778][ T8042] mptcp_subflow_create_socket+0x385/0xa30 [ 198.052810][ T8042] ? __pfx_mptcp_subflow_create_socket+0x10/0x10 [ 198.052840][ T8042] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 198.052876][ T8042] ? find_held_lock+0x2b/0x80 [ 198.052911][ T8042] ? tomoyo_check_inet_address+0x40d/0x6d0 [ 198.052957][ T8042] __mptcp_nmpc_sk+0x17f/0x880 [ 198.052990][ T8042] ? __pfx___mptcp_nmpc_sk+0x10/0x10 [ 198.053020][ T8042] ? register_lock_class+0x40/0x560 [ 198.053068][ T8042] mptcp_connect+0x7e/0xaf0 [ 198.053107][ T8042] __inet_stream_connect+0x208/0xfa0 [ 198.053158][ T8042] ? __pfx___inet_stream_connect+0x10/0x10 [ 198.053200][ T8042] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 198.053235][ T8042] ? __pfx_inet_stream_connect+0x10/0x10 [ 198.053274][ T8042] ? __local_bh_enable_ip+0x9e/0x120 [ 198.053304][ T8042] ? __pfx_inet_stream_connect+0x10/0x10 [ 198.053325][ T8042] inet_stream_connect+0x57/0xa0 [ 198.053348][ T8042] __sys_connect_file+0x141/0x1a0 [ 198.053372][ T8042] __sys_connect+0x141/0x170 [ 198.053393][ T8042] ? __pfx___sys_connect+0x10/0x10 [ 198.053427][ T8042] __x64_sys_connect+0x72/0xb0 [ 198.053449][ T8042] ? lockdep_hardirqs_on+0x78/0x100 [ 198.053469][ T8042] do_syscall_64+0x115/0x840 [ 198.053488][ T8042] ? clear_bhb_loop+0x40/0x90 [ 198.053505][ T8042] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 198.053520][ T8042] RIP: 0033:0x7f3b51b9ce59 [ 198.053534][ T8042] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 198.053558][ T8042] RSP: 002b:00007f3b52a5c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 198.053574][ T8042] RAX: ffffffffffffffda RBX: 00007f3b51e15fa0 RCX: 00007f3b51b9ce59 [ 198.053584][ T8042] RDX: 0000000000000051 RSI: 0000200000000080 RDI: 0000000000000003 [ 198.053594][ T8042] RBP: 00007f3b51c32d6f R08: 0000000000000000 R09: 0000000000000000 [ 198.053604][ T8042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 198.053612][ T8042] R13: 00007f3b51e16038 R14: 00007f3b51e15fa0 R15: 00007fffa6d24328 [ 198.053633][ T8042] [ 198.824311][ T8055] netlink: 28 bytes leftover after parsing attributes in process `syz.2.719'. [ 198.895974][ T8055] veth0_vlan: entered allmulticast mode [ 200.153783][ T8077] No such timeout policy "" [ 200.178566][ T8077] netlink: Failed to associated timeout policy '' [ 200.232588][ T8081] netlink: 334 bytes leftover after parsing attributes in process `syz.2.729'. [ 200.546198][ T8091] block2mtd: error: cannot open device  [ 201.371587][ T8109] netlink: 138 bytes leftover after parsing attributes in process `syz.0.746'. [ 201.411297][ T8113] netlink: 28 bytes leftover after parsing attributes in process `syz.1.738'. [ 201.500624][ T8115] netlink: 28 bytes leftover after parsing attributes in process `syz.0.740'. [ 201.564379][ T8115] team0: Port device team_slave_0 removed [ 202.633471][ T8136] vivid-007: ================= START STATUS ================= [ 202.666892][ T8136] vivid-007: Enable Output Cropping: true grabbed [ 202.713013][ T8136] vivid-007: Enable Output Composing: true grabbed [ 202.758775][ T8136] vivid-007: Enable Output Scaler: true grabbed [ 202.783871][ T8136] vivid-007: Tx RGB Quantization Range: Automatic grabbed [ 202.817126][ T8136] vivid-007: Transmit Mode: HDMI grabbed [ 202.835509][ T8136] vivid-007: Hotplug Present: 0x00000000 [ 202.862105][ T8136] vivid-007: RxSense Present: 0x00000000 [ 202.882043][ T8136] vivid-007: EDID Present: 0x00000000 [ 202.911293][ T8136] vivid-007: ================== END STATUS ================== [ 205.046957][ T8179] vivid-007: ================= START STATUS ================= [ 205.070602][ T8179] vivid-007: Enable Output Cropping: true grabbed [ 205.107346][ T8179] vivid-007: Enable Output Composing: true grabbed [ 205.155124][ T8179] vivid-007: Enable Output Scaler: true grabbed [ 205.191431][ T8179] vivid-007: Tx RGB Quantization Range: Automatic grabbed [ 205.230579][ T8179] vivid-007: Transmit Mode: HDMI grabbed [ 205.266879][ T8179] vivid-007: Hotplug Present: 0x00000000 [ 205.307383][ T8179] vivid-007: RxSense Present: 0x00000000 [ 205.344415][ T8179] vivid-007: EDID Present: 0x00000000 [ 205.381792][ T8179] vivid-007: ================== END STATUS ================== [ 207.485125][ T8215] FAULT_INJECTION: forcing a failure. [ 207.485125][ T8215] name failslab, interval 1, probability 0, space 0, times 0 [ 207.512642][ T8215] CPU: 0 UID: 0 PID: 8215 Comm: syz.1.779 Tainted: G L syzkaller #0 PREEMPT(full) [ 207.512688][ T8215] Tainted: [L]=SOFTLOCKUP [ 207.512705][ T8215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 207.512723][ T8215] Call Trace: [ 207.512732][ T8215] [ 207.512743][ T8215] dump_stack_lvl+0x100/0x190 [ 207.512779][ T8215] should_fail_ex.cold+0x5/0xa [ 207.512815][ T8215] ? lsm_blob_alloc+0x68/0x90 [ 207.512856][ T8215] should_failslab+0xc2/0x120 [ 207.512891][ T8215] __kmalloc_noprof+0xe0/0x850 [ 207.512924][ T8215] ? trace_kmem_cache_alloc+0xd5/0x100 [ 207.512967][ T8215] lsm_blob_alloc+0x68/0x90 [ 207.513010][ T8215] security_sk_alloc+0x2d/0x290 [ 207.513043][ T8215] sk_prot_alloc+0x1d1/0x2a0 [ 207.513082][ T8215] sk_alloc+0x36/0xe80 [ 207.513110][ T8215] inet_create+0x3a0/0x1060 [ 207.513154][ T8215] ? inet_create+0x94/0x1060 [ 207.513203][ T8215] __sock_create+0x339/0x860 [ 207.513247][ T8215] mptcp_subflow_create_socket+0xec/0xa30 [ 207.513283][ T8215] ? __pfx_mptcp_subflow_create_socket+0x10/0x10 [ 207.513313][ T8215] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 207.513351][ T8215] ? find_held_lock+0x2b/0x80 [ 207.513387][ T8215] ? tomoyo_check_inet_address+0x40d/0x6d0 [ 207.513432][ T8215] __mptcp_nmpc_sk+0x17f/0x880 [ 207.513466][ T8215] ? __pfx___mptcp_nmpc_sk+0x10/0x10 [ 207.513497][ T8215] ? register_lock_class+0x40/0x560 [ 207.513551][ T8215] mptcp_connect+0x7e/0xaf0 [ 207.513589][ T8215] __inet_stream_connect+0x208/0xfa0 [ 207.513645][ T8215] ? __pfx___inet_stream_connect+0x10/0x10 [ 207.513689][ T8215] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 207.513725][ T8215] ? __pfx_inet_stream_connect+0x10/0x10 [ 207.513768][ T8215] ? __local_bh_enable_ip+0x9e/0x120 [ 207.513807][ T8215] ? __pfx_inet_stream_connect+0x10/0x10 [ 207.513849][ T8215] inet_stream_connect+0x57/0xa0 [ 207.513894][ T8215] __sys_connect_file+0x141/0x1a0 [ 207.514013][ T8215] __sys_connect+0x141/0x170 [ 207.514057][ T8215] ? __pfx___sys_connect+0x10/0x10 [ 207.514126][ T8215] __x64_sys_connect+0x72/0xb0 [ 207.514168][ T8215] ? lockdep_hardirqs_on+0x78/0x100 [ 207.514208][ T8215] do_syscall_64+0x115/0x840 [ 207.514246][ T8215] ? clear_bhb_loop+0x40/0x90 [ 207.514281][ T8215] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 207.514312][ T8215] RIP: 0033:0x7f9ea3d9ce59 [ 207.514336][ T8215] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 207.514364][ T8215] RSP: 002b:00007f9ea4ce9028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 207.514392][ T8215] RAX: ffffffffffffffda RBX: 00007f9ea4015fa0 RCX: 00007f9ea3d9ce59 [ 207.514411][ T8215] RDX: 0000000000000051 RSI: 0000200000000080 RDI: 0000000000000003 [ 207.514427][ T8215] RBP: 00007f9ea3e32d6f R08: 0000000000000000 R09: 0000000000000000 [ 207.514445][ T8215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 207.514462][ T8215] R13: 00007f9ea4016038 R14: 00007f9ea4015fa0 R15: 00007ffd95fc2248 [ 207.514501][ T8215] [ 208.085475][ T8220] block2mtd: error: cannot open device  [ 208.701695][ T8232] capability: warning: `syz.2.774' uses 32-bit capabilities (legacy support in use) [ 208.765960][ T8234] kvm: kvm [8233]: vcpu5, guest rIP: 0xfff0 Unhandled RDMSR(0x40000029) [ 211.905983][ T8315] netlink: zone id is out of range [ 211.921063][ T8315] FAULT_INJECTION: forcing a failure. [ 211.921063][ T8315] name failslab, interval 1, probability 0, space 0, times 0 [ 211.938880][ T8315] CPU: 0 UID: 0 PID: 8315 Comm: syz.1.803 Tainted: G L syzkaller #0 PREEMPT(full) [ 211.938925][ T8315] Tainted: [L]=SOFTLOCKUP [ 211.938934][ T8315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 211.938949][ T8315] Call Trace: [ 211.938968][ T8315] [ 211.938980][ T8315] dump_stack_lvl+0x100/0x190 [ 211.939017][ T8315] should_fail_ex.cold+0x5/0xa [ 211.939057][ T8315] should_failslab+0xc2/0x120 [ 211.939092][ T8315] __kmalloc_cache_noprof+0x7a/0x6f0 [ 211.939134][ T8315] ? ovs_ct_limit_cmd_set+0x30a/0xa70 [ 211.939188][ T8315] ovs_ct_limit_cmd_set+0x30a/0xa70 [ 211.939239][ T8315] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 211.939285][ T8315] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1e5/0x2f0 [ 211.939331][ T8315] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0 [ 211.939383][ T8315] genl_family_rcv_msg_doit+0x214/0x300 [ 211.939430][ T8315] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 211.939471][ T8315] ? genl_get_cmd+0x3e7/0x760 [ 211.939519][ T8315] ? bpf_lsm_capable+0x9/0x10 [ 211.939547][ T8315] ? security_capable+0x80/0x260 [ 211.939575][ T8315] ? ns_capable+0xd2/0xf0 [ 211.939609][ T8315] genl_rcv_msg+0x560/0x800 [ 211.939653][ T8315] ? __pfx_genl_rcv_msg+0x10/0x10 [ 211.939694][ T8315] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 211.939746][ T8315] netlink_rcv_skb+0x159/0x420 [ 211.939779][ T8315] ? __pfx_genl_rcv_msg+0x10/0x10 [ 211.939822][ T8315] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 211.939874][ T8315] ? netlink_deliver_tap+0x1ae/0xcc0 [ 211.939916][ T8315] genl_rcv+0x28/0x40 [ 211.939961][ T8315] netlink_unicast+0x585/0x850 [ 211.940005][ T8315] ? __pfx_netlink_unicast+0x10/0x10 [ 211.940042][ T8315] ? __build_skb_around+0x278/0x390 [ 211.940087][ T8315] ? is_vmalloc_addr+0x86/0xa0 [ 211.940134][ T8315] netlink_sendmsg+0x8b0/0xda0 [ 211.940179][ T8315] ? __pfx_netlink_sendmsg+0x10/0x10 [ 211.940215][ T8315] ? __import_iovec+0x1d2/0x640 [ 211.940259][ T8315] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 211.940296][ T8315] ____sys_sendmsg+0x9e1/0xb70 [ 211.940331][ T8315] ? __pfx_netlink_sendmsg+0x10/0x10 [ 211.940373][ T8315] ? __pfx_____sys_sendmsg+0x10/0x10 [ 211.940416][ T8315] ? rcu_is_watching+0x12/0xc0 [ 211.940448][ T8315] ? ___sys_sendmsg+0x19d/0x1e0 [ 211.940482][ T8315] ? kfree+0x1dd/0x6c0 [ 211.940524][ T8315] ___sys_sendmsg+0x190/0x1e0 [ 211.940562][ T8315] ? __pfx____sys_sendmsg+0x10/0x10 [ 211.940631][ T8315] ? __pfx___might_resched+0x10/0x10 [ 211.940670][ T8315] __sys_sendmmsg+0x205/0x430 [ 211.940705][ T8315] ? __pfx___sys_sendmmsg+0x10/0x10 [ 211.940745][ T8315] ? __pfx_do_futex+0x10/0x10 [ 211.940792][ T8315] ? xfd_validate_state+0x129/0x190 [ 211.940832][ T8315] __x64_sys_sendmmsg+0x9c/0x100 [ 211.940861][ T8315] ? lockdep_hardirqs_on+0x78/0x100 [ 211.940901][ T8315] do_syscall_64+0x115/0x840 [ 211.940939][ T8315] ? clear_bhb_loop+0x40/0x90 [ 211.940980][ T8315] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 211.941007][ T8315] RIP: 0033:0x7f9ea3d9ce59 [ 211.941030][ T8315] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 211.941057][ T8315] RSP: 002b:00007f9ea4ce9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 211.941087][ T8315] RAX: ffffffffffffffda RBX: 00007f9ea4015fa0 RCX: 00007f9ea3d9ce59 [ 211.941106][ T8315] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 211.941123][ T8315] RBP: 00007f9ea3e32d6f R08: 0000000000000000 R09: 0000000000000000 [ 211.941139][ T8315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 211.941156][ T8315] R13: 00007f9ea4016038 R14: 00007f9ea4015fa0 R15: 00007ffd95fc2248 [ 211.941194][ T8315] [ 213.148162][ T8326] input: jJǸ-9%vJ86 as /devices/virtual/input/input5 [ 213.971185][ T8354] netlink: 28 bytes leftover after parsing attributes in process `syz.3.818'. [ 214.001705][ T8354] ipvlan1: entered promiscuous mode [ 214.008203][ T8354] ipvlan1: entered allmulticast mode [ 214.015761][ T8354] veth0_vlan: entered allmulticast mode [ 214.933998][ T8381] block2mtd: error: cannot open device  [ 216.348112][ T8408] Invalid ELF header magic: != ELF [ 216.984960][ T8428] block2mtd: error: cannot open device  [ 218.326827][ T8457] netlink: 266 bytes leftover after parsing attributes in process `syz.0.849'. [ 218.351065][ T8457] IPv6: NLM_F_CREATE should be specified when creating new route [ 218.705182][ T8465] netlink: 342 bytes leftover after parsing attributes in process `syz.0.852'. [ 219.284682][ T8485] netlink: 28 bytes leftover after parsing attributes in process `syz.2.857'. [ 220.905912][ T8525] FAULT_INJECTION: forcing a failure. [ 220.905912][ T8525] name fail_futex, interval 1, probability 0, space 0, times 0 [ 220.931557][ T8525] CPU: 1 UID: 0 PID: 8525 Comm: syz.0.877 Tainted: G L syzkaller #0 PREEMPT(full) [ 220.931604][ T8525] Tainted: [L]=SOFTLOCKUP [ 220.931615][ T8525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 220.931632][ T8525] Call Trace: [ 220.931641][ T8525] [ 220.931651][ T8525] dump_stack_lvl+0x100/0x190 [ 220.931686][ T8525] should_fail_ex.cold+0x5/0xa [ 220.931728][ T8525] get_futex_key+0x1d2/0x1510 [ 220.931779][ T8525] ? __pfx_get_futex_key+0x10/0x10 [ 220.931838][ T8525] futex_wake+0xea/0x530 [ 220.931873][ T8525] ? rcu_is_watching+0x12/0xc0 [ 220.931909][ T8525] ? __pfx_futex_wake+0x10/0x10 [ 220.931948][ T8525] ? putname+0xb1/0x110 [ 220.931982][ T8525] ? kmem_cache_free+0x127/0x6c0 [ 220.932031][ T8525] do_futex+0x32b/0x350 [ 220.932060][ T8525] ? __pfx_do_futex+0x10/0x10 [ 220.932085][ T8525] ? __pfx_do_sys_openat2+0x10/0x10 [ 220.932131][ T8525] ? __fget_files+0x21f/0x3d0 [ 220.932167][ T8525] __x64_sys_futex+0x34f/0x4d0 [ 220.932198][ T8525] ? __x64_sys_openat+0x12d/0x210 [ 220.932241][ T8525] ? __pfx___x64_sys_futex+0x10/0x10 [ 220.932276][ T8525] ? rcu_is_watching+0x12/0xc0 [ 220.932313][ T8525] do_syscall_64+0x115/0x840 [ 220.932351][ T8525] ? clear_bhb_loop+0x40/0x90 [ 220.932384][ T8525] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.932413][ T8525] RIP: 0033:0x7f3b51b9ce59 [ 220.932435][ T8525] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 220.932462][ T8525] RSP: 002b:00007f3b52a5c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 220.932489][ T8525] RAX: ffffffffffffffda RBX: 00007f3b51e15fa8 RCX: 00007f3b51b9ce59 [ 220.932508][ T8525] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3b51e15fac [ 220.932525][ T8525] RBP: 00007f3b51e15fa0 R08: 0000000000000001 R09: 0000000000000000 [ 220.932547][ T8525] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 220.932563][ T8525] R13: 00007f3b51e16038 R14: 00007fffa6d24240 R15: 00007fffa6d24328 [ 220.932600][ T8525] [ 221.580637][ T8542] netlink: zone id is out of range [ 221.601916][ T8542] FAULT_INJECTION: forcing a failure. [ 221.601916][ T8542] name failslab, interval 1, probability 0, space 0, times 0 [ 221.647335][ T8542] CPU: 1 UID: 0 PID: 8542 Comm: syz.3.872 Tainted: G L syzkaller #0 PREEMPT(full) [ 221.647384][ T8542] Tainted: [L]=SOFTLOCKUP [ 221.647394][ T8542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 221.647411][ T8542] Call Trace: [ 221.647420][ T8542] [ 221.647431][ T8542] dump_stack_lvl+0x100/0x190 [ 221.647469][ T8542] should_fail_ex.cold+0x5/0xa [ 221.647507][ T8542] should_failslab+0xc2/0x120 [ 221.647544][ T8542] __kmalloc_cache_noprof+0x7a/0x6f0 [ 221.647586][ T8542] ? ovs_ct_limit_cmd_set+0x30a/0xa70 [ 221.647639][ T8542] ovs_ct_limit_cmd_set+0x30a/0xa70 [ 221.647695][ T8542] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 221.647742][ T8542] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1e5/0x2f0 [ 221.647789][ T8542] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0 [ 221.647842][ T8542] genl_family_rcv_msg_doit+0x214/0x300 [ 221.647891][ T8542] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 221.647934][ T8542] ? genl_get_cmd+0x3e7/0x760 [ 221.647983][ T8542] ? bpf_lsm_capable+0x9/0x10 [ 221.648015][ T8542] ? security_capable+0x80/0x260 [ 221.648046][ T8542] ? ns_capable+0xd2/0xf0 [ 221.648081][ T8542] genl_rcv_msg+0x560/0x800 [ 221.648128][ T8542] ? __pfx_genl_rcv_msg+0x10/0x10 [ 221.648172][ T8542] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 221.648239][ T8542] netlink_rcv_skb+0x159/0x420 [ 221.648278][ T8542] ? __pfx_genl_rcv_msg+0x10/0x10 [ 221.648322][ T8542] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 221.648374][ T8542] ? netlink_deliver_tap+0x1ae/0xcc0 [ 221.648416][ T8542] genl_rcv+0x28/0x40 [ 221.648454][ T8542] netlink_unicast+0x585/0x850 [ 221.648497][ T8542] ? __pfx_netlink_unicast+0x10/0x10 [ 221.648532][ T8542] ? __build_skb_around+0x278/0x390 [ 221.648571][ T8542] ? is_vmalloc_addr+0x86/0xa0 [ 221.648611][ T8542] netlink_sendmsg+0x8b0/0xda0 [ 221.648651][ T8542] ? __pfx_netlink_sendmsg+0x10/0x10 [ 221.648680][ T8542] ? __import_iovec+0x1d2/0x640 [ 221.648703][ T8542] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 221.648724][ T8542] ____sys_sendmsg+0x9e1/0xb70 [ 221.648742][ T8542] ? __pfx_netlink_sendmsg+0x10/0x10 [ 221.648763][ T8542] ? __pfx_____sys_sendmsg+0x10/0x10 [ 221.648784][ T8542] ? rcu_is_watching+0x12/0xc0 [ 221.648801][ T8542] ? ___sys_sendmsg+0x19d/0x1e0 [ 221.648819][ T8542] ? kfree+0x1dd/0x6c0 [ 221.648842][ T8542] ___sys_sendmsg+0x190/0x1e0 [ 221.648863][ T8542] ? __pfx____sys_sendmsg+0x10/0x10 [ 221.648910][ T8542] ? __pfx___might_resched+0x10/0x10 [ 221.648943][ T8542] __sys_sendmmsg+0x205/0x430 [ 221.648974][ T8542] ? __pfx___sys_sendmmsg+0x10/0x10 [ 221.649013][ T8542] ? __pfx_do_futex+0x10/0x10 [ 221.649060][ T8542] ? xfd_validate_state+0x129/0x190 [ 221.649100][ T8542] __x64_sys_sendmmsg+0x9c/0x100 [ 221.649128][ T8542] ? lockdep_hardirqs_on+0x78/0x100 [ 221.649168][ T8542] do_syscall_64+0x115/0x840 [ 221.649207][ T8542] ? clear_bhb_loop+0x40/0x90 [ 221.649251][ T8542] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.649278][ T8542] RIP: 0033:0x7f988439ce59 [ 221.649301][ T8542] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 221.649329][ T8542] RSP: 002b:00007f98852e7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 221.649356][ T8542] RAX: ffffffffffffffda RBX: 00007f9884615fa0 RCX: 00007f988439ce59 [ 221.649375][ T8542] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 221.649393][ T8542] RBP: 00007f9884432d6f R08: 0000000000000000 R09: 0000000000000000 [ 221.649410][ T8542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 221.649426][ T8542] R13: 00007f9884616038 R14: 00007f9884615fa0 R15: 00007ffd6015a2f8 [ 221.649465][ T8542] [ 221.899325][ T0] NOHZ tick-stop error: local softirq work is pending, handler #c0!!! [ 222.333383][ T8545] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 222.587514][ T8558] FAULT_INJECTION: forcing a failure. [ 222.587514][ T8558] name failslab, interval 1, probability 0, space 0, times 0 [ 222.600874][ T8558] CPU: 0 UID: 0 PID: 8558 Comm: syz.2.878 Tainted: G L syzkaller #0 PREEMPT(full) [ 222.600921][ T8558] Tainted: [L]=SOFTLOCKUP [ 222.600931][ T8558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 222.600948][ T8558] Call Trace: [ 222.600957][ T8558] [ 222.600968][ T8558] dump_stack_lvl+0x100/0x190 [ 222.601004][ T8558] should_fail_ex.cold+0x5/0xa [ 222.601042][ T8558] ? lsm_blob_alloc+0x68/0x90 [ 222.601084][ T8558] should_failslab+0xc2/0x120 [ 222.601116][ T8558] __kmalloc_noprof+0xe0/0x850 [ 222.601142][ T8558] ? trace_kmem_cache_alloc+0xd5/0x100 [ 222.601183][ T8558] lsm_blob_alloc+0x68/0x90 [ 222.601225][ T8558] security_prepare_creds+0x2d/0x290 [ 222.601269][ T8558] prepare_creds+0x5d6/0x950 [ 222.601301][ T8558] lookup_user_key+0x8e9/0x1300 [ 222.601339][ T8558] ? __pfx_lookup_user_key+0x10/0x10 [ 222.601374][ T8558] ? do_futex+0x192/0x350 [ 222.601404][ T8558] ? __pfx_do_futex+0x10/0x10 [ 222.601437][ T8558] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 222.601476][ T8558] ? __x64_sys_futex+0x34f/0x4d0 [ 222.601504][ T8558] ? __x64_sys_futex+0x358/0x4d0 [ 222.601543][ T8558] keyctl_watch_key+0x52/0x500 [ 222.601577][ T8558] __do_sys_keyctl+0x29f/0x5a0 [ 222.601621][ T8558] do_syscall_64+0x115/0x840 [ 222.601662][ T8558] ? clear_bhb_loop+0x40/0x90 [ 222.601693][ T8558] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 222.601721][ T8558] RIP: 0033:0x7fcd9339ce59 [ 222.601748][ T8558] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 222.601777][ T8558] RSP: 002b:00007fcd94250028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 222.601805][ T8558] RAX: ffffffffffffffda RBX: 00007fcd93615fa0 RCX: 00007fcd9339ce59 [ 222.601825][ T8558] RDX: 0000000000000005 RSI: ffffffffffffffff RDI: 0200000000000020 [ 222.601843][ T8558] RBP: 00007fcd93432d6f R08: 0000000000000008 R09: 0000000000000000 [ 222.601860][ T8558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 222.601876][ T8558] R13: 00007fcd93616038 R14: 00007fcd93615fa0 R15: 00007ffce42c0b18 [ 222.601914][ T8558] [ 222.965581][ T8564] __vm_enough_memory: pid: 8564, comm: syz.0.880, bytes: 4398046457856 not enough memory for the allocation [ 223.275372][ T8570] sd 0:0:1:0: PR command failed: 1026 [ 223.285877][ T8572] netlink: zone id is out of range [ 223.292691][ T8572] FAULT_INJECTION: forcing a failure. [ 223.292691][ T8572] name failslab, interval 1, probability 0, space 0, times 0 [ 223.297678][ T8570] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 223.314007][ T8572] CPU: 1 UID: 0 PID: 8572 Comm: syz.2.884 Tainted: G L syzkaller #0 PREEMPT(full) [ 223.314056][ T8572] Tainted: [L]=SOFTLOCKUP [ 223.314067][ T8572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 223.314085][ T8572] Call Trace: [ 223.314095][ T8572] [ 223.314107][ T8572] dump_stack_lvl+0x100/0x190 [ 223.314143][ T8572] should_fail_ex.cold+0x5/0xa [ 223.314182][ T8572] should_failslab+0xc2/0x120 [ 223.314217][ T8572] __kmalloc_cache_noprof+0x7a/0x6f0 [ 223.314267][ T8572] ? ovs_ct_limit_cmd_set+0x30a/0xa70 [ 223.314321][ T8572] ovs_ct_limit_cmd_set+0x30a/0xa70 [ 223.314380][ T8572] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 223.314427][ T8572] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1e5/0x2f0 [ 223.314478][ T8572] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0 [ 223.314533][ T8572] genl_family_rcv_msg_doit+0x214/0x300 [ 223.314582][ T8572] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 223.314625][ T8572] ? genl_get_cmd+0x3e7/0x760 [ 223.314674][ T8572] ? bpf_lsm_capable+0x9/0x10 [ 223.314705][ T8572] ? security_capable+0x80/0x260 [ 223.314735][ T8572] ? ns_capable+0xd2/0xf0 [ 223.314772][ T8572] genl_rcv_msg+0x560/0x800 [ 223.314819][ T8572] ? __pfx_genl_rcv_msg+0x10/0x10 [ 223.314862][ T8572] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 223.314923][ T8572] netlink_rcv_skb+0x159/0x420 [ 223.314961][ T8572] ? __pfx_genl_rcv_msg+0x10/0x10 [ 223.315005][ T8572] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 223.315063][ T8572] ? netlink_deliver_tap+0x1ae/0xcc0 [ 223.315105][ T8572] genl_rcv+0x28/0x40 [ 223.315142][ T8572] netlink_unicast+0x585/0x850 [ 223.315187][ T8572] ? __pfx_netlink_unicast+0x10/0x10 [ 223.315222][ T8572] ? __build_skb_around+0x278/0x390 [ 223.315266][ T8572] ? is_vmalloc_addr+0x86/0xa0 [ 223.315315][ T8572] netlink_sendmsg+0x8b0/0xda0 [ 223.315361][ T8572] ? __pfx_netlink_sendmsg+0x10/0x10 [ 223.315397][ T8572] ? __import_iovec+0x1d2/0x640 [ 223.315442][ T8572] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 223.315487][ T8572] ____sys_sendmsg+0x9e1/0xb70 [ 223.315523][ T8572] ? __pfx_netlink_sendmsg+0x10/0x10 [ 223.315566][ T8572] ? __pfx_____sys_sendmsg+0x10/0x10 [ 223.315611][ T8572] ? rcu_is_watching+0x12/0xc0 [ 223.315643][ T8572] ? ___sys_sendmsg+0x19d/0x1e0 [ 223.315678][ T8572] ? kfree+0x1dd/0x6c0 [ 223.315724][ T8572] ___sys_sendmsg+0x190/0x1e0 [ 223.315767][ T8572] ? __pfx____sys_sendmsg+0x10/0x10 [ 223.315844][ T8572] ? __pfx___might_resched+0x10/0x10 [ 223.315884][ T8572] __sys_sendmmsg+0x205/0x430 [ 223.315920][ T8572] ? __pfx___sys_sendmmsg+0x10/0x10 [ 223.315962][ T8572] ? __pfx_do_futex+0x10/0x10 [ 223.316010][ T8572] ? xfd_validate_state+0x129/0x190 [ 223.316051][ T8572] __x64_sys_sendmmsg+0x9c/0x100 [ 223.316079][ T8572] ? lockdep_hardirqs_on+0x78/0x100 [ 223.316119][ T8572] do_syscall_64+0x115/0x840 [ 223.316158][ T8572] ? clear_bhb_loop+0x40/0x90 [ 223.316194][ T8572] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 223.316224][ T8572] RIP: 0033:0x7fcd9339ce59 [ 223.316248][ T8572] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 223.316276][ T8572] RSP: 002b:00007fcd94250028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 223.316304][ T8572] RAX: ffffffffffffffda RBX: 00007fcd93615fa0 RCX: 00007fcd9339ce59 [ 223.316324][ T8572] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 223.316341][ T8572] RBP: 00007fcd93432d6f R08: 0000000000000000 R09: 0000000000000000 [ 223.316359][ T8572] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 223.316375][ T8572] R13: 00007fcd93616038 R14: 00007fcd93615fa0 R15: 00007ffce42c0b18 [ 223.316415][ T8572] [ 223.328429][ T8570] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 224.707487][ T8604] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input6 [ 225.681821][ T5646] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 225.681848][ T5646] Bluetooth: hci2: unexpected subevent 0x0e length: 725 > 15 [ 225.697777][ T5646] Bluetooth: hci2: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 226.740976][ T8638] netlink: 28 bytes leftover after parsing attributes in process `syz.2.907'. [ 226.750622][ T8638] ipvlan1: entered promiscuous mode [ 226.757467][ T8638] ipvlan1: entered allmulticast mode [ 226.951262][ T5646] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 226.951301][ T5646] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 226.967226][ T5646] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 226.967287][ T5646] Bluetooth: hci1: adv larger than maximum supported [ 226.974755][ T5646] Bluetooth: hci1: adv larger than maximum supported [ 226.981542][ T5646] Bluetooth: hci1: Unknown advertising packet type: 0x3f [ 226.989978][ T5646] Bluetooth: hci1: Malformed LE Event: 0x0d [ 227.235180][ T8648] FAULT_INJECTION: forcing a failure. [ 227.235180][ T8648] name failslab, interval 1, probability 0, space 0, times 0 [ 227.250151][ T8648] CPU: 0 UID: 0 PID: 8648 Comm: syz.3.911 Tainted: G L syzkaller #0 PREEMPT(full) [ 227.250194][ T8648] Tainted: [L]=SOFTLOCKUP [ 227.250203][ T8648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 227.250217][ T8648] Call Trace: [ 227.250227][ T8648] [ 227.250238][ T8648] dump_stack_lvl+0x100/0x190 [ 227.250275][ T8648] should_fail_ex.cold+0x5/0xa [ 227.250311][ T8648] should_failslab+0xc2/0x120 [ 227.250338][ T8648] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 227.250362][ T8648] ? inet_bind2_bucket_create+0x36/0x5f0 [ 227.250385][ T8648] ? do_raw_spin_lock+0x128/0x260 [ 227.250406][ T8648] inet_bind2_bucket_create+0x36/0x5f0 [ 227.250425][ T8648] __inet_hash_connect+0x1527/0x2000 [ 227.250449][ T8648] ? __pfx___inet_check_established+0x10/0x10 [ 227.250467][ T8648] ? __pfx___inet_hash_connect+0x10/0x10 [ 227.250486][ T8648] ? inet_init_ehash_secret+0xd/0x60 [ 227.250500][ T8648] ? inet_hash_connect+0x9f/0x340 [ 227.250518][ T8648] tcp_v4_connect+0xeb3/0x1b40 [ 227.250548][ T8648] ? __pfx_tcp_v4_connect+0x10/0x10 [ 227.250576][ T8648] ? __lock_acquire+0x4a5/0x2630 [ 227.250601][ T8648] __inet_stream_connect+0x208/0xfa0 [ 227.250628][ T8648] ? __pfx___inet_stream_connect+0x10/0x10 [ 227.250651][ T8648] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 227.250669][ T8648] ? __pfx_inet_stream_connect+0x10/0x10 [ 227.250692][ T8648] ? __local_bh_enable_ip+0x9e/0x120 [ 227.250711][ T8648] ? __pfx_inet_stream_connect+0x10/0x10 [ 227.250732][ T8648] inet_stream_connect+0x57/0xa0 [ 227.250755][ T8648] __sys_connect_file+0x141/0x1a0 [ 227.250779][ T8648] __sys_connect+0x141/0x170 [ 227.250800][ T8648] ? __pfx___sys_connect+0x10/0x10 [ 227.250837][ T8648] __x64_sys_connect+0x72/0xb0 [ 227.250858][ T8648] ? lockdep_hardirqs_on+0x78/0x100 [ 227.250878][ T8648] do_syscall_64+0x115/0x840 [ 227.250898][ T8648] ? clear_bhb_loop+0x40/0x90 [ 227.250916][ T8648] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 227.250932][ T8648] RIP: 0033:0x7f988439ce59 [ 227.250946][ T8648] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 227.250961][ T8648] RSP: 002b:00007f98852e7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 227.250976][ T8648] RAX: ffffffffffffffda RBX: 00007f9884615fa0 RCX: 00007f988439ce59 [ 227.250986][ T8648] RDX: 0000000000000051 RSI: 0000200000000080 RDI: 0000000000000003 [ 227.250995][ T8648] RBP: 00007f9884432d6f R08: 0000000000000000 R09: 0000000000000000 [ 227.251007][ T8648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 227.251017][ T8648] R13: 00007f9884616038 R14: 00007f9884615fa0 R15: 00007ffd6015a2f8 [ 227.251036][ T8648] [ 228.112359][ T8663] futex_wake_op: syz.0.916 tries to shift op by -2048; fix this program [ 228.122703][ T8663] futex_wake_op: syz.0.916 tries to shift op by -2048; fix this program [ 229.907019][ T8707] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input7 [ 230.644125][ T8726] netlink: 8 bytes leftover after parsing attributes in process `syz.2.937'. [ 231.720480][ T8738] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8 [ 232.626926][ T8753] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input9 [ 233.146603][ T8765] FAULT_INJECTION: forcing a failure. [ 233.146603][ T8765] name failslab, interval 1, probability 0, space 0, times 0 [ 233.187499][ T8765] CPU: 0 UID: 0 PID: 8765 Comm: syz.1.948 Tainted: G L syzkaller #0 PREEMPT(full) [ 233.187549][ T8765] Tainted: [L]=SOFTLOCKUP [ 233.187559][ T8765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 233.187576][ T8765] Call Trace: [ 233.187586][ T8765] [ 233.187597][ T8765] dump_stack_lvl+0x100/0x190 [ 233.187635][ T8765] should_fail_ex.cold+0x5/0xa [ 233.187674][ T8765] should_failslab+0xc2/0x120 [ 233.187711][ T8765] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 233.187743][ T8765] ? vidtv_psi_short_event_desc_init+0x312/0x5f0 [ 233.187791][ T8765] kstrdup+0x51/0xe0 [ 233.187824][ T8765] vidtv_psi_short_event_desc_init+0x312/0x5f0 [ 233.187866][ T8765] vidtv_psi_desc_clone+0x33f/0x5d0 [ 233.187904][ T8765] vidtv_channel_si_init+0x76c/0x18f0 [ 233.187960][ T8765] vidtv_mux_init+0x526/0xbf0 [ 233.188007][ T8765] vidtv_start_feed+0x34e/0x500 [ 233.188040][ T8765] ? __pfx_vidtv_start_feed+0x10/0x10 [ 233.188074][ T8765] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 233.188129][ T8765] dmx_section_feed_start_filtering+0x3a8/0x660 [ 233.188187][ T8765] dvb_dmxdev_filter_start+0x767/0xdd0 [ 233.188231][ T8765] dvb_demux_do_ioctl+0xe64/0x1200 [ 233.188276][ T8765] dvb_usercopy+0x167/0x340 [ 233.188318][ T8765] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 233.188350][ T8765] ? __pfx_dvb_usercopy+0x10/0x10 [ 233.188406][ T8765] ? __fget_files+0x21f/0x3d0 [ 233.188447][ T8765] dvb_demux_ioctl+0x29/0x40 [ 233.188472][ T8765] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 233.188519][ T8765] __x64_sys_ioctl+0x18e/0x210 [ 233.188552][ T8765] do_syscall_64+0x115/0x840 [ 233.188589][ T8765] ? clear_bhb_loop+0x40/0x90 [ 233.188662][ T8765] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 233.188692][ T8765] RIP: 0033:0x7f9ea3d9ce59 [ 233.188714][ T8765] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 233.188741][ T8765] RSP: 002b:00007f9ea4ce9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 233.188769][ T8765] RAX: ffffffffffffffda RBX: 00007f9ea4015fa0 RCX: 00007f9ea3d9ce59 [ 233.188788][ T8765] RDX: 0000000000000000 RSI: 00000000403c6f2b RDI: 0000000000000006 [ 233.188805][ T8765] RBP: 00007f9ea3e32d6f R08: 0000000000000000 R09: 0000000000000000 [ 233.188821][ T8765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 233.188836][ T8765] R13: 00007f9ea4016038 R14: 00007f9ea4015fa0 R15: 00007ffd95fc2248 [ 233.188874][ T8765] [ 234.332551][ T8780] netlink: 28 bytes leftover after parsing attributes in process `syz.1.952'. [ 234.415191][ T8780] ipvlan1: entered promiscuous mode [ 234.421872][ T8780] ipvlan1: entered allmulticast mode [ 234.441275][ T8780] veth0_vlan: entered allmulticast mode [ 234.971577][ T8794] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 236.875800][ T8829] netlink: 28 bytes leftover after parsing attributes in process `syz.0.965'. [ 237.065098][ T8829] ipvlan1: entered promiscuous mode [ 237.076625][ T8829] ipvlan1: entered allmulticast mode [ 237.086692][ T8829] veth0_vlan: entered allmulticast mode [ 237.404829][ T8845] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input10 [ 237.531460][ T8843] futex_wake_op: syz.3.972 tries to shift op by -2048; fix this program [ 237.557252][ T8843] 0x000000000001-0x000000000003 : "" [ 237.607993][ T8843] ftl_cs: FTL header corrupt! [ 237.856645][ T8857] FAULT_INJECTION: forcing a failure. [ 237.856645][ T8857] name failslab, interval 1, probability 0, space 0, times 0 [ 237.884319][ T8857] CPU: 1 UID: 0 PID: 8857 Comm: syz.2.976 Tainted: G L syzkaller #0 PREEMPT(full) [ 237.884366][ T8857] Tainted: [L]=SOFTLOCKUP [ 237.884376][ T8857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 237.884394][ T8857] Call Trace: [ 237.884403][ T8857] [ 237.884414][ T8857] dump_stack_lvl+0x100/0x190 [ 237.884459][ T8857] should_fail_ex.cold+0x5/0xa [ 237.884498][ T8857] should_failslab+0xc2/0x120 [ 237.884533][ T8857] __kmalloc_cache_noprof+0x7a/0x6f0 [ 237.884576][ T8857] ? snd_pcm_oss_change_params_locked+0x247/0x39f0 [ 237.884627][ T8857] snd_pcm_oss_change_params_locked+0x247/0x39f0 [ 237.884679][ T8857] ? __mutex_lock+0x26d/0x1b10 [ 237.884724][ T8857] ? tomoyo_path_number_perm+0x188/0x580 [ 237.884764][ T8857] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 237.884814][ T8857] ? __pfx___mutex_lock+0x10/0x10 [ 237.884874][ T8857] ? do_vfs_ioctl+0x226/0x13e0 [ 237.884910][ T8857] snd_pcm_oss_make_ready+0xeb/0x1b0 [ 237.884953][ T8857] snd_pcm_oss_ioctl+0x7b4/0x37c0 [ 237.884996][ T8857] ? __fget_files+0x215/0x3d0 [ 237.885027][ T8857] ? hook_file_ioctl_common+0x149/0x410 [ 237.885065][ T8857] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 237.885110][ T8857] ? __fget_files+0x21f/0x3d0 [ 237.885149][ T8857] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 237.885192][ T8857] __x64_sys_ioctl+0x18e/0x210 [ 237.885225][ T8857] do_syscall_64+0x115/0x840 [ 237.885264][ T8857] ? clear_bhb_loop+0x40/0x90 [ 237.885299][ T8857] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 237.885329][ T8857] RIP: 0033:0x7fcd9339ce59 [ 237.885356][ T8857] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 237.885383][ T8857] RSP: 002b:00007fcd94250028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 237.885411][ T8857] RAX: ffffffffffffffda RBX: 00007fcd93615fa0 RCX: 00007fcd9339ce59 [ 237.885431][ T8857] RDX: 00002000000000c0 RSI: 00000000800c5012 RDI: 0000000000000007 [ 237.885457][ T8857] RBP: 00007fcd93432d6f R08: 0000000000000000 R09: 0000000000000000 [ 237.885475][ T8857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 237.885491][ T8857] R13: 00007fcd93616038 R14: 00007fcd93615fa0 R15: 00007ffce42c0b18 [ 237.885526][ T8857] [ 238.410360][ T8868] netlink: 26 bytes leftover after parsing attributes in process `syz.0.980'. [ 238.568240][ T8860] FAULT_INJECTION: forcing a failure. [ 238.568240][ T8860] name failslab, interval 1, probability 0, space 0, times 0 [ 238.597220][ T8860] CPU: 1 UID: 0 PID: 8860 Comm: syz.3.978 Tainted: G L syzkaller #0 PREEMPT(full) [ 238.597269][ T8860] Tainted: [L]=SOFTLOCKUP [ 238.597279][ T8860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 238.597296][ T8860] Call Trace: [ 238.597306][ T8860] [ 238.597317][ T8860] dump_stack_lvl+0x100/0x190 [ 238.597353][ T8860] should_fail_ex.cold+0x5/0xa [ 238.597404][ T8860] should_failslab+0xc2/0x120 [ 238.597439][ T8860] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 238.597485][ T8860] ? __pmd_alloc+0xbf/0x950 [ 238.597528][ T8860] __pmd_alloc+0xbf/0x950 [ 238.597568][ T8860] walk_to_pmd+0x3a3/0x4c0 [ 238.597606][ T8860] insert_pages+0xf1/0x5e0 [ 238.597649][ T8860] ? __pfx_insert_pages+0x10/0x10 [ 238.597687][ T8860] ? __pfx_down_read_trylock+0x10/0x10 [ 238.597729][ T8860] vm_insert_pages+0x138/0x440 [ 238.597773][ T8860] io_uring_mmap+0x4c7/0x523 [ 238.597808][ T8860] ? __pfx_io_uring_mmap+0x10/0x10 [ 238.597835][ T8860] ? vm_area_alloc+0x1f/0x160 [ 238.597876][ T8860] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 238.597916][ T8860] ? lockdep_init_map_type+0x5c/0x250 [ 238.597966][ T8860] __mmap_region+0x13e1/0x2dd0 [ 238.598017][ T8860] ? __pfx___mmap_region+0x10/0x10 [ 238.598070][ T8860] ? rcu_is_watching+0x12/0xc0 [ 238.598103][ T8860] ? trace_pelt_se_tp+0x13b/0x190 [ 238.598164][ T8860] ? __lock_acquire+0x4a5/0x2630 [ 238.598209][ T8860] ? do_raw_spin_unlock+0x145/0x1e0 [ 238.598242][ T8860] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 238.598301][ T8860] ? rcu_is_watching+0x12/0xc0 [ 238.598353][ T8860] ? __lock_acquire+0x4a5/0x2630 [ 238.598452][ T8860] ? __mutex_unlock_slowpath+0x15d/0x8a0 [ 238.598510][ T8860] mmap_region+0x527/0x620 [ 238.598542][ T8860] ? __pfx_mmap_region+0x10/0x10 [ 238.598579][ T8860] ? bpf_lsm_capable+0x9/0x10 [ 238.598610][ T8860] ? security_capable+0x80/0x260 [ 238.598643][ T8860] do_mmap+0xc63/0x12f0 [ 238.598687][ T8860] ? __pfx_do_mmap+0x10/0x10 [ 238.598722][ T8860] ? __pfx_down_write_killable+0x10/0x10 [ 238.598775][ T8860] vm_mmap_pgoff+0x29e/0x470 [ 238.598821][ T8860] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 238.598855][ T8860] ? __fget_files+0x215/0x3d0 [ 238.598893][ T8860] ? __fget_files+0x21f/0x3d0 [ 238.598928][ T8860] ksys_mmap_pgoff+0x3cb/0x610 [ 238.598962][ T8860] ? __x64_sys_futex+0x358/0x4d0 [ 238.598993][ T8860] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 238.599026][ T8860] ? xfd_validate_state+0x129/0x190 [ 238.599053][ T8860] ? ksys_write+0x1ac/0x250 [ 238.599092][ T8860] __x64_sys_mmap+0x125/0x190 [ 238.599127][ T8860] do_syscall_64+0x115/0x840 [ 238.599164][ T8860] ? clear_bhb_loop+0x40/0x90 [ 238.599200][ T8860] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.599235][ T8860] RIP: 0033:0x7f988439ce59 [ 238.599260][ T8860] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 238.599287][ T8860] RSP: 002b:00007f98852e7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 238.599315][ T8860] RAX: ffffffffffffffda RBX: 00007f9884615fa0 RCX: 00007f988439ce59 [ 238.599335][ T8860] RDX: 0000000000000ffb RSI: 0000000000000009 RDI: 0000000000000000 [ 238.599352][ T8860] RBP: 00007f9884432d6f R08: 0000000000000003 R09: 0000000000000000 [ 238.599370][ T8860] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000000 [ 238.599393][ T8860] R13: 00007f9884616038 R14: 00007f9884615fa0 R15: 00007ffd6015a2f8 [ 238.599434][ T8860] [ 239.368509][ T8881] FAULT_INJECTION: forcing a failure. [ 239.368509][ T8881] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 239.393183][ T8881] CPU: 0 UID: 0 PID: 8881 Comm: syz.3.985 Tainted: G L syzkaller #0 PREEMPT(full) [ 239.393230][ T8881] Tainted: [L]=SOFTLOCKUP [ 239.393241][ T8881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 239.393259][ T8881] Call Trace: [ 239.393268][ T8881] [ 239.393280][ T8881] dump_stack_lvl+0x100/0x190 [ 239.393319][ T8881] should_fail_ex.cold+0x5/0xa [ 239.393347][ T8881] ? prepare_alloc_pages+0x16d/0x5f0 [ 239.393387][ T8881] should_fail_alloc_page+0xeb/0x140 [ 239.393426][ T8881] prepare_alloc_pages+0x1f0/0x5f0 [ 239.393469][ T8881] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 239.393517][ T8881] ? do_raw_spin_lock+0x128/0x260 [ 239.393554][ T8881] ? kasan_save_stack+0x3f/0x50 [ 239.393582][ T8881] ? kasan_save_stack+0x30/0x50 [ 239.393609][ T8881] ? kasan_save_track+0x14/0x30 [ 239.393636][ T8881] ? __kasan_slab_alloc+0x89/0x90 [ 239.393665][ T8881] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 239.393711][ T8881] ? ptlock_alloc+0x1f/0x70 [ 239.393750][ T8881] ? pte_alloc_one+0x82/0x3d0 [ 239.393794][ T8881] ? __pte_alloc+0x6d/0x380 [ 239.393824][ T8881] ? walk_pgd_range+0xb99/0x1dd0 [ 239.393851][ T8881] ? __walk_page_range+0x171/0x850 [ 239.393879][ T8881] ? walk_page_range_vma_unsafe+0x209/0x8f0 [ 239.393910][ T8881] ? madvise_guard_install+0x421/0x790 [ 239.393946][ T8881] ? madvise_vma_behavior+0xb9b/0x2240 [ 239.393983][ T8881] ? madvise_walk_vmas+0x71c/0xa90 [ 239.394018][ T8881] ? madvise_do_behavior+0x1ea/0x510 [ 239.394056][ T8881] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 239.394101][ T8881] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.394138][ T8881] ? look_up_lock_class+0x55/0x120 [ 239.394193][ T8881] ? __lock_acquire+0x4a5/0x2630 [ 239.394240][ T8881] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 239.394282][ T8881] ? policy_nodemask+0xed/0x4f0 [ 239.394318][ T8881] alloc_pages_mpol+0x1fb/0x540 [ 239.394354][ T8881] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 239.394387][ T8881] ? do_raw_spin_lock+0x128/0x260 [ 239.394419][ T8881] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 239.394458][ T8881] alloc_pages_noprof+0x1a/0x160 [ 239.394497][ T8881] pte_alloc_one+0x1c/0x3d0 [ 239.394536][ T8881] __pte_alloc+0x6d/0x380 [ 239.394568][ T8881] ? __pfx___pte_alloc+0x10/0x10 [ 239.394598][ T8881] ? walk_pgd_range+0x1391/0x1dd0 [ 239.394626][ T8881] ? walk_pgd_range+0x1391/0x1dd0 [ 239.394661][ T8881] walk_pgd_range+0xb99/0x1dd0 [ 239.394696][ T8881] ? __pfx_guard_install_set_pte+0x10/0x10 [ 239.394731][ T8881] ? __pfx_guard_install_pte_entry+0x10/0x10 [ 239.394779][ T8881] ? __pfx_guard_install_set_pte+0x10/0x10 [ 239.394820][ T8881] ? __pfx_guard_install_set_pte+0x10/0x10 [ 239.394859][ T8881] ? __pfx_guard_install_set_pte+0x10/0x10 [ 239.394897][ T8881] ? __pfx_walk_pgd_range+0x10/0x10 [ 239.394927][ T8881] ? rcu_is_watching+0x12/0xc0 [ 239.394961][ T8881] ? trace_pelt_se_tp+0x13b/0x190 [ 239.395010][ T8881] __walk_page_range+0x171/0x850 [ 239.395040][ T8881] ? do_raw_spin_lock+0x128/0x260 [ 239.395087][ T8881] walk_page_range_vma_unsafe+0x209/0x8f0 [ 239.395124][ T8881] ? __pfx_walk_page_range_vma_unsafe+0x10/0x10 [ 239.395175][ T8881] madvise_guard_install+0x421/0x790 [ 239.395222][ T8881] ? __pfx_madvise_guard_install+0x10/0x10 [ 239.395260][ T8881] ? __pfx_guard_install_pud_entry+0x10/0x10 [ 239.395290][ T8881] ? __pfx_guard_install_pmd_entry+0x10/0x10 [ 239.395322][ T8881] ? __pfx_guard_install_pte_entry+0x10/0x10 [ 239.395361][ T8881] ? __pfx_guard_install_set_pte+0x10/0x10 [ 239.395405][ T8881] madvise_vma_behavior+0xb9b/0x2240 [ 239.395449][ T8881] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 239.395491][ T8881] ? lock_vma_under_rcu+0x17c/0x590 [ 239.395537][ T8881] ? lock_vma_under_rcu+0x25/0x590 [ 239.395578][ T8881] ? lock_vma_under_rcu+0x1f9/0x590 [ 239.395620][ T8881] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 239.395670][ T8881] ? __futex_wait+0x256/0x300 [ 239.395713][ T8881] madvise_walk_vmas+0x71c/0xa90 [ 239.395759][ T8881] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 239.395810][ T8881] ? find_held_lock+0x2b/0x80 [ 239.395852][ T8881] madvise_do_behavior+0x1ea/0x510 [ 239.395895][ T8881] ? __pfx_madvise_do_behavior+0x10/0x10 [ 239.395932][ T8881] ? futex_wait+0x11e/0x370 [ 239.395979][ T8881] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 239.396025][ T8881] do_madvise+0x195/0x240 [ 239.396062][ T8881] ? __pfx_do_madvise+0x10/0x10 [ 239.396099][ T8881] ? do_futex+0x192/0x350 [ 239.396136][ T8881] ? _raw_spin_unlock_irq+0x23/0x50 [ 239.396207][ T8881] ? exit_to_user_mode_loop+0xf3/0x670 [ 239.396264][ T8881] __x64_sys_madvise+0xa9/0x110 [ 239.396301][ T8881] ? lockdep_hardirqs_on+0x78/0x100 [ 239.396342][ T8881] do_syscall_64+0x115/0x840 [ 239.396380][ T8881] ? clear_bhb_loop+0x40/0x90 [ 239.396416][ T8881] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.396446][ T8881] RIP: 0033:0x7f988439ce59 [ 239.396470][ T8881] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 239.396498][ T8881] RSP: 002b:00007f98852e7028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 239.396526][ T8881] RAX: ffffffffffffffda RBX: 00007f9884615fa0 RCX: 00007f988439ce59 [ 239.396545][ T8881] RDX: 0000000000000066 RSI: 0000000002021000 RDI: 0000000000000000 [ 239.396562][ T8881] RBP: 00007f9884432d6f R08: 0000000000000000 R09: 0000000000000000 [ 239.396580][ T8881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 239.396597][ T8881] R13: 00007f9884616038 R14: 00007f9884615fa0 R15: 00007ffd6015a2f8 [ 239.396637][ T8881] [ 240.905469][ T8911] netlink: 342 bytes leftover after parsing attributes in process `syz.3.993'. [ 243.175821][ T8970] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1010'. [ 243.223221][ T8970] netlink: 'syz.3.1010': attribute type 7 has an invalid length. [ 244.873962][ T9003] FAULT_INJECTION: forcing a failure. [ 244.873962][ T9003] name failslab, interval 1, probability 0, space 0, times 0 [ 244.888023][ T9003] CPU: 1 UID: 0 PID: 9003 Comm: syz.3.1020 Tainted: G L syzkaller #0 PREEMPT(full) [ 244.888074][ T9003] Tainted: [L]=SOFTLOCKUP [ 244.888085][ T9003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 244.888107][ T9003] Call Trace: [ 244.888117][ T9003] [ 244.888128][ T9003] dump_stack_lvl+0x100/0x190 [ 244.888166][ T9003] should_fail_ex.cold+0x5/0xa [ 244.888206][ T9003] should_failslab+0xc2/0x120 [ 244.888242][ T9003] __kmalloc_cache_noprof+0x7a/0x6f0 [ 244.888285][ T9003] ? seg6_net_init+0xac/0x1c0 [ 244.888316][ T9003] ? lockdep_init_map_type+0x5c/0x250 [ 244.888367][ T9003] ? __pfx_seg6_net_init+0x10/0x10 [ 244.888400][ T9003] seg6_net_init+0xac/0x1c0 [ 244.888441][ T9003] ops_init+0x1e2/0x5f0 [ 244.888478][ T9003] setup_net+0x118/0x3a0 [ 244.888511][ T9003] ? __pfx_setup_net+0x10/0x10 [ 244.888543][ T9003] ? mutex_init_lockdep+0xf1/0x120 [ 244.888580][ T9003] copy_net_ns+0x46f/0x7c0 [ 244.888618][ T9003] create_new_namespaces+0x3ea/0xac0 [ 244.888665][ T9003] unshare_nsproxy_namespaces+0xf2/0x220 [ 244.888705][ T9003] ksys_unshare+0x438/0xab0 [ 244.888749][ T9003] ? __pfx_ksys_unshare+0x10/0x10 [ 244.888788][ T9003] ? xfd_validate_state+0x129/0x190 [ 244.888832][ T9003] __x64_sys_unshare+0x31/0x40 [ 244.888876][ T9003] do_syscall_64+0x115/0x840 [ 244.888913][ T9003] ? clear_bhb_loop+0x40/0x90 [ 244.888947][ T9003] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.888977][ T9003] RIP: 0033:0x7f988439ce59 [ 244.888998][ T9003] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 244.889025][ T9003] RSP: 002b:00007f98852c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 244.889050][ T9003] RAX: ffffffffffffffda RBX: 00007f9884616090 RCX: 00007f988439ce59 [ 244.889068][ T9003] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 244.889084][ T9003] RBP: 00007f9884432d6f R08: 0000000000000000 R09: 0000000000000000 [ 244.889101][ T9003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 244.889118][ T9003] R13: 00007f9884616128 R14: 00007f9884616090 R15: 00007ffd6015a2f8 [ 244.889156][ T9003] [ 245.414443][ T9014] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1024'. [ 246.335587][ T9043] FAULT_INJECTION: forcing a failure. [ 246.335587][ T9043] name failslab, interval 1, probability 0, space 0, times 0 [ 246.335650][ T9043] CPU: 0 UID: 0 PID: 9043 Comm: syz.2.1036 Tainted: G L syzkaller #0 PREEMPT(full) [ 246.335682][ T9043] Tainted: [L]=SOFTLOCKUP [ 246.335690][ T9043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 246.335699][ T9043] Call Trace: [ 246.335704][ T9043] [ 246.335710][ T9043] dump_stack_lvl+0x100/0x190 [ 246.335731][ T9043] should_fail_ex.cold+0x5/0xa [ 246.335751][ T9043] should_failslab+0xc2/0x120 [ 246.335770][ T9043] __kmalloc_cache_noprof+0x7a/0x6f0 [ 246.335816][ T9043] ? vidtv_mux_create_pid_ctx_once.part.0+0x49/0x200 [ 246.335845][ T9043] vidtv_mux_create_pid_ctx_once.part.0+0x49/0x200 [ 246.335870][ T9043] vidtv_mux_init+0x8a6/0xbf0 [ 246.335894][ T9043] vidtv_start_feed+0x34e/0x500 [ 246.335912][ T9043] ? __pfx_vidtv_start_feed+0x10/0x10 [ 246.335929][ T9043] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 246.335957][ T9043] dmx_section_feed_start_filtering+0x3a8/0x660 [ 246.335984][ T9043] dvb_dmxdev_filter_start+0x767/0xdd0 [ 246.336007][ T9043] dvb_demux_do_ioctl+0xe64/0x1200 [ 246.336028][ T9043] dvb_usercopy+0x167/0x340 [ 246.336050][ T9043] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 246.336067][ T9043] ? __pfx_dvb_usercopy+0x10/0x10 [ 246.336096][ T9043] ? __fget_files+0x21f/0x3d0 [ 246.336117][ T9043] dvb_demux_ioctl+0x29/0x40 [ 246.336130][ T9043] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 246.336144][ T9043] __x64_sys_ioctl+0x18e/0x210 [ 246.336161][ T9043] do_syscall_64+0x115/0x840 [ 246.336181][ T9043] ? clear_bhb_loop+0x40/0x90 [ 246.336199][ T9043] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 246.336214][ T9043] RIP: 0033:0x7fcd9339ce59 [ 246.336228][ T9043] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 246.336242][ T9043] RSP: 002b:00007fcd94250028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 246.336256][ T9043] RAX: ffffffffffffffda RBX: 00007fcd93615fa0 RCX: 00007fcd9339ce59 [ 246.336266][ T9043] RDX: 0000000000000000 RSI: 00000000403c6f2b RDI: 0000000000000005 [ 246.336275][ T9043] RBP: 00007fcd93432d6f R08: 0000000000000000 R09: 0000000000000000 [ 246.336286][ T9043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 246.336295][ T9043] R13: 00007fcd93616038 R14: 00007fcd93615fa0 R15: 00007ffce42c0b18 [ 246.336315][ T9043] [ 246.336431][ T10] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI [ 246.336459][ T10] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 246.336484][ T10] CPU: 0 UID: 0 PID: 10 Comm: kworker/0:1 Tainted: G L syzkaller #0 PREEMPT(full) [ 246.336520][ T10] Tainted: [L]=SOFTLOCKUP [ 246.336525][ T10] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 246.336539][ T10] Workqueue: events vidtv_mux_tick [ 246.336562][ T10] RIP: 0010:vidtv_psi_ts_psi_write_into+0x4bb/0xb40 [ 246.336581][ T10] Code: 0b e2 d7 f9 4d 8d 65 20 4c 89 e0 48 c1 e8 03 80 3c 18 00 0f 85 fe 04 00 00 49 8b 45 20 48 89 c2 48 89 c1 48 c1 ea 03 83 e1 07 <0f> b6 14 1a 38 ca 7f 08 84 d2 0f 85 c6 04 00 00 0f b6 10 48 8b 7c [ 246.336596][ T10] RSP: 0018:ffffc900000f73f0 EFLAGS: 00010202 [ 246.336607][ T10] RAX: 0000000000000002 RBX: dffffc0000000000 RCX: 0000000000000002 [ 246.336616][ T10] RDX: 0000000000000000 RSI: ffffffff88301a35 RDI: ffff88801e29be00 [ 246.336626][ T10] RBP: 0000000000000008 R08: 0000000000000005 R09: 0000000000000000 [ 246.336635][ T10] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc900000f7690 [ 246.336643][ T10] R13: ffffc900000f7670 R14: 0000000000000178 R15: 0000000000000000 [ 246.336653][ T10] FS: 0000000000000000(0000) GS:ffff88812438a000(0000) knlGS:0000000000000000 [ 246.336667][ T10] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 246.336677][ T10] CR2: 0000001b34b11ff8 CR3: 0000000079c70000 CR4: 00000000003526f0 [ 246.336686][ T10] Call Trace: [ 246.336690][ T10] [ 246.336698][ T10] ? __pfx_vidtv_psi_ts_psi_write_into+0x10/0x10 [ 246.336719][ T10] vidtv_psi_pmt_write_into+0x3b2/0xa70 [ 246.336739][ T10] ? __pfx_vidtv_psi_pmt_write_into+0x10/0x10 [ 246.336758][ T10] ? vidtv_psi_pat_write_into+0x56a/0x690 [ 246.336777][ T10] ? __pfx_vidtv_psi_pat_write_into+0x10/0x10 [ 246.336807][ T10] ? find_held_lock+0x2b/0x80 [ 246.336826][ T10] ? unwind_next_frame+0x3be/0x2090 [ 246.336844][ T10] ? unwind_next_frame+0x3be/0x2090 [ 246.336863][ T10] vidtv_mux_push_si+0x932/0xe80 [ 246.336885][ T10] ? __pfx_vidtv_mux_push_si+0x10/0x10 [ 246.336922][ T10] ? arch_stack_walk+0x94/0xf0 [ 246.336949][ T10] ? __lock_acquire+0x4a5/0x2630 [ 246.336971][ T10] ? __lock_acquire+0x4a5/0x2630 [ 246.336993][ T10] ? vidtv_memset+0x50/0x90 [ 246.337009][ T10] ? vidtv_ts_pcr_write_into+0x45b/0x650 [ 246.337027][ T10] ? do_raw_spin_lock+0x128/0x260 [ 246.337043][ T10] vidtv_mux_tick+0xe93/0x1460 [ 246.337065][ T10] ? __lock_acquire+0x4a5/0x2630 [ 246.337090][ T10] ? __pfx_vidtv_mux_tick+0x10/0x10 [ 246.337111][ T10] ? __lock_acquire+0x4a5/0x2630 [ 246.337132][ T10] ? do_raw_spin_unlock+0x145/0x1e0 [ 246.337147][ T10] ? debug_object_deactivate+0x2e4/0x3b0 [ 246.337169][ T10] ? rcu_is_watching+0x12/0xc0 [ 246.337187][ T10] process_one_work+0xa0e/0x1980 [ 246.337204][ T10] ? __pfx_process_one_work+0x10/0x10 [ 246.337220][ T10] ? __pfx_vidtv_mux_tick+0x10/0x10 [ 246.337241][ T10] worker_thread+0x5ef/0xe50 [ 246.337256][ T10] ? __pfx_worker_thread+0x10/0x10 [ 246.337269][ T10] ? kthread+0x13a/0x450 [ 246.337293][ T10] ? __pfx_worker_thread+0x10/0x10 [ 246.337305][ T10] kthread+0x370/0x450 [ 246.337325][ T10] ? __pfx_kthread+0x10/0x10 [ 246.337346][ T10] ret_from_fork+0x72b/0xd50 [ 246.337361][ T10] ? __pfx_ret_from_fork+0x10/0x10 [ 246.337376][ T10] ? __switch_to+0x800/0x1100 [ 246.337394][ T10] ? __switch_to_asm+0x39/0x70 [ 246.337413][ T10] ? __pfx_kthread+0x10/0x10 [ 246.337433][ T10] ret_from_fork_asm+0x1a/0x30 [ 246.337455][ T10] [ 246.337460][ T10] Modules linked in: [ 246.337484][ T10] ---[ end trace 0000000000000000 ]--- [ 246.337497][ T10] RIP: 0010:vidtv_psi_ts_psi_write_into+0x4bb/0xb40 [ 246.337529][ T10] Code: 0b e2 d7 f9 4d 8d 65 20 4c 89 e0 48 c1 e8 03 80 3c 18 00 0f 85 fe 04 00 00 49 8b 45 20 48 89 c2 48 89 c1 48 c1 ea 03 83 e1 07 <0f> b6 14 1a 38 ca 7f 08 84 d2 0f 85 c6 04 00 00 0f b6 10 48 8b 7c [ 246.337554][ T10] RSP: 0018:ffffc900000f73f0 EFLAGS: 00010202 [ 246.337573][ T10] RAX: 0000000000000002 RBX: dffffc0000000000 RCX: 0000000000000002 [ 246.337583][ T10] RDX: 0000000000000000 RSI: ffffffff88301a35 RDI: ffff88801e29be00 [ 246.337592][ T10] RBP: 0000000000000008 R08: 0000000000000005 R09: 0000000000000000 [ 246.337601][ T10] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc900000f7690 [ 246.337610][ T10] R13: ffffc900000f7670 R14: 0000000000000178 R15: 0000000000000000 [ 246.337620][ T10] FS: 0000000000000000(0000) GS:ffff88812438a000(0000) knlGS:0000000000000000 [ 246.337634][ T10] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 246.337648][ T10] CR2: 0000001b34b11ff8 CR3: 0000000079c70000 CR4: 00000000003526f0 [ 246.337668][ T10] Kernel panic - not syncing: Fatal exception [ 246.337982][ T10] Kernel Offset: disabled