last executing test programs: 9.692102501s ago: executing program 3 (id=783): socket(0xa, 0x1, 0x84) (async) mmap$auto(0x0, 0x40009, 0xdf, 0x40009b72, 0xffffffffffffffff, 0x28000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/blkio.bfq.sectors\x00', 0x182, 0x0) write$auto(r0, &(0x7f00000000c0)='\x00', 0x7) (async, rerun: 64) setsockopt$auto(0x3, 0x5, 0x10, 0x0, 0x8) (async, rerun: 64) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x10, 0x2, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3, 0x0) ioctl$auto_KVM_CHECK_EXTENSION(r2, 0xae03, 0x9) (async) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="cb5b"], 0x14}, 0x1, 0x0, 0x0, 0x84}, 0x0) open_by_handle_at$auto(r1, &(0x7f0000000080)={0xfffffffffffffd26, 0x401}, 0x1) (async) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) (async) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x13) (async, rerun: 64) mmap$auto(0xffffffffffffffff, 0x2020009, 0x8000000000000001, 0xeb1, r2, 0x9) (async, rerun: 64) close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/rcutree/parameters/rcu_resched_ns\x00', 0x20000, 0x0) read$auto(r4, 0x0, 0x20) (async) socket(0x2, 0x801, 0x106) (async) io_uring_setup$auto(0x6, 0x0) write$auto(0xca, &(0x7f0000000140)='\x042\x01\f\r\a\x00\xf6OL\xc8\xbe\x94\xf2\xa2\x00\xfb\x84(\x83\";\xa8\xd7\x05uXR\xa3\xb3@T\x89\x8e\xd4Q\xdd\xb80\xc7\xad\\\xf7C\xb3\x8f\r?\xb3>r\xdf\x99%\xd6s\xe3\x8b*\xe2\xbc\xc9\x8bV\xf0\xb7\xec.\xae\xe1\x04\x00\x00\x00\xaa', 0x2da) (async) socket(0x10, 0x80002, 0x0) (async, rerun: 64) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.max.depth\x00', 0x20480, 0x0) (rerun: 64) write$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000100)='7', 0x7) capset$auto(&(0x7f0000000280)={0x2, 0xffffffffffffffff}, &(0x7f00000002c0)={0x69, 0x7}) (async) fallocate$auto(0xffffffffffffffff, 0x10, 0x7, 0x9) (async) setfsuid$auto(0xee00) 8.984736675s ago: executing program 3 (id=787): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000) r0 = socket(0x1d, 0x2, 0x7) bpf$auto(0x4, &(0x7f0000000140)=@link_create={@map_fd=r0, @target_fd=r0, 0x1, 0x5, @kprobe_multi={0x3, 0xe7a, 0xd4, 0x1, 0x8}}, 0x1) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/irq/25/smp_affinity\x00', 0x40302, 0x0) read$auto(0x3, 0x0, 0x8080) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0xe) 8.791289338s ago: executing program 3 (id=789): mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) r0 = memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x5) socket(0x15, 0x5, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0xffff) statmount$auto(0x0, 0x0, 0x7ffffffff000, 0x0) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/008/001\x00', 0x8901, 0x0) ioctl$auto_USBDEVFS_GETDRIVER(r1, 0x41045508, &(0x7f00000004c0)={0x6, "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"}) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYRES64=r2, @ANYRES16=r1, @ANYRESOCT=r0], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) read$auto(r2, &(0x7f0000002300)='MAC802154_HWSIM\x00', 0xfdef) io_submit$auto(0x105, 0x3, &(0x7f0000000180)=&(0x7f0000000100)={0x7f, 0x5161d735, 0x6, 0x7, 0x1, r2, 0xc000000, 0x5, 0xd, 0x0, 0x8, r2}) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/conf/bridge_slave_1/medium_id\x00', 0x101802, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xffffffffffffffff, 0x8000) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x7f, 0x3, 0x0, 0x11c, 0x87f) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) timer_create$auto(0x2, 0x0, 0x0) mmap$auto(0x457, 0xe983, 0x5, 0x819, 0xffffffffffffffff, 0x7fff) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/tcp_tw_reuse\x00', 0x14000, 0x0) socket(0xf, 0x6, 0x5) mmap$auto(0x0, 0x400108, 0x3, 0x9b72, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x3, 0x0) r5 = fsopen$auto(0x0, 0x8002bb0) fsconfig$auto(r5, 0x8, 0x0, 0x0, 0x0) fsconfig$auto(r4, 0x1, &(0x7f0000000240)='\x00sK\xce7\x9fpL\xcb$x\x00\xf0+\xd3\xd6g[.M|HK\xccO+\xec\xdcS\x95\xb2\xc7\x88\xa9\x82\x10|\xe2n+\xbfI_\xf0\xdd\x0e\xa2\xf3\xc9h\xaaSF\xc6K\x8c\x9bfh\x8c\xf5\x84\xcc\xc4\a\xc7\x12E\x85\x0e\xf3\xa0\xa1\xec\xc0\xe0\x83\xde+\xec\x97\n1sg\xa1\xd5\t`\x96\xfd\xf2Ms\x03\x022\x13\x9c\xc7q<\xe2\x0e\xf7\x1d\xfe{z\x04\xac\r\xeb\xe12s\x90\x00\xef\x9eA\n\xd4n\x95\xa3\v]\x97\x97b$q,/\xb7\xe1\x92-\n;\xbd>\xa8\xfb\x98F\x0f\xc4j\x8bp\xfca\x17\xd6\r\xef\xba\x9a8N\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000080)="6d1c2f8cde01f4aa2b68bbbe2033ffa31b270de8803de2e4", 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) madvise$auto(0x0, 0xffffffffffff0001, 0x15) 7.274866081s ago: executing program 3 (id=795): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/kernel/bpf_stats_enabled\x00', 0x20200, 0x0) preadv$auto(r0, &(0x7f0000000240)={0x0, 0x9}, 0xc, 0x9, 0x402) sendmmsg$auto(0xffffffffffffffff, 0x0, 0xffffffff, 0xc5c) (async) madvise$auto(0x110c230000, 0x8031ca, 0x9) (async) madvise$auto(0x110d230000, 0x1, 0x9) (async) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000300), 0x60081, 0x0) ioctl$auto_PPPIOCATTACH(r2, 0x4004743d, &(0x7f0000000340)=0x4) (async) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/1-0:1.0/usb1-port1/quirks\x00', 0x0, 0x0) r4 = openat$auto_dma_buf_debug_fops_(0xffffffffffffff9c, &(0x7f0000000200), 0x500, 0x0) read$auto_dma_buf_debug_fops_(r4, &(0x7f0000000240)=""/83, 0x53) (async) sendfile$auto(r1, r3, 0x0, 0x3) io_uring_register$auto_IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000000000)="a62f257833a04cfd", 0x3c08) (async) r5 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)) fcntl$auto(r5, 0x402, 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x82, 0x0) socket(0x2, 0x1, 0x0) (async) socket(0x2, 0x5, 0x0) (async) epoll_ctl$auto(0x5, 0x1, 0xffffffffffffffff, 0x0) (async) epoll_ctl$auto(0x5, 0x3, 0xffffffffffffffff, 0x0) (async) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/apparmor/parameters/audit\x00', 0x2, 0x0) read$auto(r6, &(0x7f00000003c0)=']%\'\x00', 0x5) 6.88062883s ago: executing program 3 (id=797): exit$auto(0x2) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000140), r0) r2 = getpgrp(0x0) sendmsg$auto_TASKSTATS_CMD_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x1c, r1, 0xa01, 0x70bd2b, 0x25dfdbfb, {}, [@TASKSTATS_CMD_ATTR_TGID={0x8, 0x2, r2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4001}, 0x20000000) (async) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/adsp1\x00', 0x0, 0x0) ioctl$auto_SOUND_MIXER_READ_STEREODEVS2(r3, 0x80044dfb, &(0x7f0000000040)) (async) fadvise64$auto_POSIX_FADV_NORMAL(r3, 0x0, 0x6, 0x0) 5.936447139s ago: executing program 3 (id=800): socket$nl_generic(0x10, 0x3, 0x10) shmctl$auto_SHM_INFO(0xd247, 0xe, &(0x7f00000002c0)={{0x8, 0x0, 0xee01, 0x9, 0x6, 0xd306, 0x5}, 0x8, 0x1, 0x0, 0xf6, @inferred=0xffffffffffffffff, @raw=0x1, 0x0, 0x0, &(0x7f00000000c0)="6b0d84eca0bed9f4fd065a0354c7d486ada0cc3e4fc45b9c5df322f0867db08030d1065fce6269520eff78826e291fdaf45f7dded93a3bcf10daf319297a4d93677dba43b939bf5ff3423a732a58ea77536d90bc9618117626c5533a6a3a9684cc00a56b14fe49e1aa3e9fec0f6fa48dd0cfcc1dad", 0x0}) (async) shmctl$auto_SHM_INFO(0xd247, 0xe, &(0x7f00000002c0)={{0x8, 0x0, 0xee01, 0x9, 0x6, 0xd306, 0x5}, 0x8, 0x1, 0x0, 0xf6, @inferred=0xffffffffffffffff, @raw=0x1, 0x0, 0x0, &(0x7f00000000c0)="6b0d84eca0bed9f4fd065a0354c7d486ada0cc3e4fc45b9c5df322f0867db08030d1065fce6269520eff78826e291fdaf45f7dded93a3bcf10daf319297a4d93677dba43b939bf5ff3423a732a58ea77536d90bc9618117626c5533a6a3a9684cc00a56b14fe49e1aa3e9fec0f6fa48dd0cfcc1dad", 0x0}) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), r0) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="07031abd70250c00587b22"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x40800) getpid() (async) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) r3 = getpid() process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) (async) openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) (async) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff) (async) r6 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(r5, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f0000000200)={0x14, r6, 0x1, 0x70bd26, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x48080) (async) sendmsg$auto_NFSD_CMD_LISTENER_SET(r5, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f0000000200)={0x14, r6, 0x1, 0x70bd26, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x48080) sendmsg$auto_NFSD_CMD_LISTENER_GET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, r6, 0x1, 0x70bd2b, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4000804}, 0x50) (async) sendmsg$auto_NFSD_CMD_LISTENER_GET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, r6, 0x1, 0x70bd2b, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4000804}, 0x50) r7 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) r8 = openat$auto_proc_setgroups_operations_base(0xffffffffffffff9c, &(0x7f0000003540)='/proc/thread-self/setgroups\x00', 0x2, 0x0) writev$auto(r8, &(0x7f0000003600)={0x0, 0x2}, 0x8) rename$auto(&(0x7f0000000480)='./file0\x00', &(0x7f0000000100)='./file1\x00') write$auto(r7, &(0x7f0000000040)='\x00', 0x1) r9 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto_PTRACE_GET_SYSCALL_USER_DISPATCH_CONFIG(0x4211, r9, 0x100, 0x100000001) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000340), r0) (async) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000340), r0) lstat$auto(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x7, 0x7fff, 0x975, 0x8, 0xee01, 0xee01, 0x0, 0x4, 0x9, 0x1, 0xfffffffffffff958, 0x3282, 0x1, 0xffffffffffffd372, 0x2, 0x41cc, 0x79258000}) 4.651458987s ago: executing program 0 (id=808): openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x4000, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) sysfs$auto(0x2, 0x23, 0x0) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x8000000401, 0x8000) socket(0xa, 0x1, 0x100) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/pci0000:00/0000:00:04.0/resource0\x00', 0xc0082, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) socketpair$auto(0x1009, 0x5, 0x8, 0x0) r0 = socket(0xa, 0x801, 0x84) getsockopt$auto(r0, 0x84, 0xc, 0x0, 0x0) r1 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000008040), 0x2, 0x0) ioctl$auto_I2C_SMBUS(r1, 0x720, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x840, 0x0) ioctl$auto(r2, 0x5608, 0x7) r3 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r3, 0x107, 0x14, 0x0, 0x4) sendto$auto(r3, 0x0, 0x13, 0xc, &(0x7f0000000000)=@tipc=@name={0x1e, 0x2, 0x3, {{0x41, 0x4}, 0x2}}, 0x1e) r4 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) ioctl$auto_SW_SYNC_IOC_INC(r4, 0x40045701, &(0x7f0000000080)=0x2) r5 = fsopen$auto(0x0, 0x1) fsconfig$auto_SHMEM_HUGE_NEVER(r5, 0x4, &(0x7f0000000040)='\xe5\xf1\xd5\t\x94\t1\xe5T@k\x9a\xe0T\x9e$zG=\xd3i\x02\xf97%\x1bx%[\xba\xcb\xe01\xf7$\x14A0\xce\x9e\xf1', &(0x7f0000001680), 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) io_uring_setup$auto(0x6, 0x0) r6 = socket(0xa, 0x5, 0x0) getsockopt$auto(r6, 0x84, 0x10, 0x0, 0x0) epoll_ctl$auto(r5, 0x9, r2, &(0x7f00000000c0)={0x9, 0x6}) 4.433897382s ago: executing program 1 (id=809): unshare$auto(0x8000000) semget$auto(0x0, 0x2e4a, 0x8000) semtimedop$auto(0x0, &(0x7f0000000000)={0x7, 0x9, 0x36ec}, 0x1f4, 0x0) mkdir$auto(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x8cd) bpf$auto_BPF_OBJ_GET_INFO_BY_FD(0xf, &(0x7f00000002c0)=@test={0xffffffffffffffff, 0x0, 0x856, 0x189, 0x8, 0x7fff, 0x7fff, 0x10000, 0xc91a, 0x7, 0x5, 0x3, 0x3, 0x3, 0x6}, 0x1) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mtdblock0\x00', 0x14fe02, 0x0) mmap$auto(0x0, 0x9, 0x7, 0x8000000008011, 0x3, 0x8000) mprotect$auto(0x200000000000, 0x806122, 0xc) sched_setscheduler$auto(0x0, 0x5, &(0x7f0000000040)={0x2}) ioprio_set$auto(0x2, 0x800000000, 0x8) read$auto(r0, 0x0, 0x0) unshare$auto(0x40000080) settimeofday$auto(0x0, &(0x7f0000000100)={0x82, 0x4}) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/smaps_rollup\x00', 0x840, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) read$auto(0x3, 0x0, 0x400000000f34) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/cifs/dfscache\x00', 0x101a41, 0x0) write$auto(r1, 0x0, 0x6) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) write$auto(r2, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9) unshare$auto(0x8000400) 3.946373254s ago: executing program 1 (id=811): openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x40, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) mprotect$auto(0x110c238000, 0x1, 0x3) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r0, 0x0, 0x9a28) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000100)={0x0, 0x4dcf3887}, 0x7) r2 = socket(0x10, 0x1, 0x106) getsockopt$auto(r2, 0x11c, 0x3, 0xfffffffffffffffe, 0xfffffffffffffffd) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000004ec0)='/dev/snd/pcmC1D0p\x00', 0x2100, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(0x3, 0x400, 0x9ec0000000000000) rename$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='./cgroup\x00') process_madvise$auto_MADV_DOFORK(0xffffffffffffffff, 0x0, 0x0, 0xb, 0x9) 2.820850429s ago: executing program 1 (id=814): recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) 2.751280101s ago: executing program 1 (id=815): mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x5) socket(0x15, 0x5, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0xffff) statmount$auto(0x0, 0x0, 0x7ffffffff000, 0x0) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/008/001\x00', 0x8901, 0x0) ioctl$auto_USBDEVFS_GETDRIVER(r0, 0x41045508, &(0x7f00000004c0)={0x6, "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"}) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) read$auto(r1, &(0x7f0000002300)='MAC802154_HWSIM\x00', 0xfdef) io_submit$auto(0x5, 0x6, &(0x7f0000000180)=&(0x7f0000000100)={0x7f, 0x5161d731, 0x6, 0x7, 0x1, r1, 0xc000000, 0x7, 0xd, 0x0, 0x8, r1}) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/conf/bridge_slave_1/medium_id\x00', 0x101802, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xffffffffffffffff, 0x8000) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) timer_create$auto(0x2, 0x0, 0x0) mmap$auto(0x457, 0xe983, 0x5, 0x819, 0xffffffffffffffff, 0x7fff) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/tcp_tw_reuse\x00', 0x14000, 0x0) socket(0xf, 0x6, 0x5) mmap$auto(0x0, 0x400108, 0x3, 0x9b72, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x3, 0x0) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) fsconfig$auto(r3, 0x1, &(0x7f0000000240)='\x00sK\xce7\x9fpL\xcb$x\x00\xf0+\xd3\xd6g[.M|HK\xccO+\xec\xdcS\x95\xb2\xc7\x88\xa9\x82\x10|\xe2n+\xbfI_\xf0\xdd\x0e\xa2\xf3\xc9h\xaaSF\xc6K\x8c\x9bfh\x8c\xf5\x84\xcc\xc4\a\xc7\x12E\x85\x0e\xf3\xa0\xa1\xec\xc0\xe0\x83\xde+\xec\x97\n1sg\xa1\xd5\t`\x96\xfd\xf2Ms\x03\x022\x13\x9c\xc7q<\xe2\x0e\xf7\x1d\xfe{z\x04\xac\r\xeb\xe12s\x90\x00\xef\x9eA\n\xd4n\x95\xa3\v]\x97\x97b$q,/\xb7\xe1\x92-\n;\xbd>\xa8\xfb\x98F\x0f\xc4j\x8bp\xfca\x17\xd6\r\xef\xba\x9a8N\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000080)="6d1c2f8cde01f4aa2b68bbbe2033ffa31b270de8803de2e4", 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) madvise$auto(0xfff8, 0xffffffffffff0001, 0x15) 2.576421827s ago: executing program 2 (id=816): mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x5) socket(0x15, 0x5, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0xffff) statmount$auto(0x0, 0x0, 0x7ffffffff000, 0x0) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/008/001\x00', 0x8901, 0x0) ioctl$auto_USBDEVFS_GETDRIVER(r0, 0x41045508, &(0x7f00000004c0)={0x6, "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"}) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) read$auto(r1, &(0x7f0000002300)='MAC802154_HWSIM\x00', 0xfdef) io_submit$auto(0x5, 0x6, &(0x7f0000000180)=&(0x7f0000000100)={0x7f, 0x5161d731, 0x6, 0x7, 0x1, r1, 0xc000000, 0x7, 0xd, 0x0, 0x8, r1}) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/conf/bridge_slave_1/medium_id\x00', 0x101802, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xffffffffffffffff, 0x8000) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) timer_create$auto(0x2, 0x0, 0x0) mmap$auto(0x457, 0xe983, 0x5, 0x819, 0xffffffffffffffff, 0x7fff) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/tcp_tw_reuse\x00', 0x14000, 0x0) socket(0xf, 0x6, 0x5) mmap$auto(0x0, 0x400108, 0x3, 0x9b72, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x3, 0x0) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) fsconfig$auto(r3, 0x1, &(0x7f0000000240)='\x00sK\xce7\x9fpL\xcb$x\x00\xf0+\xd3\xd6g[.M|HK\xccO+\xec\xdcS\x95\xb2\xc7\x88\xa9\x82\x10|\xe2n+\xbfI_\xf0\xdd\x0e\xa2\xf3\xc9h\xaaSF\xc6K\x8c\x9bfh\x8c\xf5\x84\xcc\xc4\a\xc7\x12E\x85\x0e\xf3\xa0\xa1\xec\xc0\xe0\x83\xde+\xec\x97\n1sg\xa1\xd5\t`\x96\xfd\xf2Ms\x03\x022\x13\x9c\xc7q<\xe2\x0e\xf7\x1d\xfe{z\x04\xac\r\xeb\xe12s\x90\x00\xef\x9eA\n\xd4n\x95\xa3\v]\x97\x97b$q,/\xb7\xe1\x92-\n;\xbd>\xa8\xfb\x98F\x0f\xc4j\x8bp\xfca\x17\xd6\r\xef\xba\x9a8N\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000080)="6d1c2f8cde01f4aa2b68bbbe2033ffa31b270de8803de2e4", 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) madvise$auto(0x80000, 0xffffffffffff0001, 0x15) 2.080110591s ago: executing program 0 (id=817): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/oom_adj\x00', 0x980, 0x0) read$auto(r0, 0x0, 0x4) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) ioctl$auto_SNDCTL_DSP_SETTRIGGER(0xffffffffffffffff, 0x40045010, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x111442, 0x0) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r3 = socket(0x1e, 0x5, 0x0) ioctl$auto(r3, 0x89e1, r3) bpf$auto_BPF_LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex, r1, 0x1000, 0xffffffff, r2, @relative_fd=r0, 0x8}, 0x6) process_madvise$auto_MADV_DOFORK(r4, 0x0, 0x0, 0xb, 0x9) unshare$auto(0x6c000000) 1.348718406s ago: executing program 2 (id=818): socket(0x15, 0x5, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x200000000eb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002dbd7000f9dbdf2501000000060002000100000005000700570000000800090108000000050004000300000014001f00fe88000000000000000000000000000114002000ff010000000000000000000000000001"], 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r1 = getpid() process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x800000001, &(0x7f0000000280)={&(0x7f0000000080), 0x1ffffffff}, 0x6, 0x0) write$auto(r0, &(0x7f0000000040)='S\x00\x00\x00\xfe\xff\xff\xff', 0x8587) setsockopt$auto(0x3, 0x1, 0x3c, 0x0, 0x9) 1.219008517s ago: executing program 2 (id=819): unshare$auto(0x40000080) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x402, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x8a241, 0x0) mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4044001) r1 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cuse\x00', 0x20a00, 0x0) pread64$auto(r1, &(0x7f00000012c0)='/d~v\apts/ptmx\x00', 0x10000000005, 0x8) sendmsg$auto_VDPA_CMD_DEV_DEL(0xffffffffffffffff, 0x0, 0x40050) getsockopt$auto_SO_PEERCRED(r0, 0x7fff, 0x11, &(0x7f0000000000)='/\xda\xee\x00', &(0x7f0000000040)=0x5) ioctl$auto_FS_IOC_UNRESVSP64(0xffffffffffffffff, 0x4030582b, 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0xc0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x6) r2 = socket(0x2, 0x1, 0x0) bind$auto(r2, 0x0, 0x6a) sendmmsg$auto(r2, 0x0, 0x5, 0x20000000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/tty/ptybf/dev\x00', 0x1e2902, 0x0) sendfile$auto(r3, r3, 0x0, 0x3) openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f00000000c0), 0x183282, 0x0) timer_gettime$auto(0x4, 0x0) setsockopt$auto(0x3, 0x0, 0xc8, 0xfffffffffffffffc, 0x4) 1.023091888s ago: executing program 0 (id=820): r0 = socket(0x2, 0x1, 0x106) (async) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x3, 0x2) (async) openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy0/misc\x00', 0x20a40, 0x0) (async) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) (async) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) (async) close_range$auto(0x2, r1, 0x0) (async) r3 = socket(0x10, 0x2, 0x4) (async) sendmsg$auto_ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010337bd7000ffdbdf25100000000c0001"], 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x80000) (async) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) (async) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x20904, 0x0) r4 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r4, @ANYRES8=r2], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x10) write$auto(r3, &(0x7f0000000000)='-\x00', 0xfdef) (async) socket(0x21, 0x2, 0xa) (async) getsockopt$auto(0x6, 0x110, 0x6, 0xffffffffffffffff, 0x0) (async) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) (async) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) 945.98385ms ago: executing program 1 (id=821): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sr0\x00', 0x60742, 0x0) fallocate$auto(r0, 0x3, 0x4e88, 0x4cbd5d) 852.713602ms ago: executing program 0 (id=822): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/net/can/stats\x00', 0x121040, 0x0) openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) (async) pread64$auto(r0, 0x0, 0x100006, 0xc982) 818.480674ms ago: executing program 2 (id=823): close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) socket(0x11, 0x2, 0x9) unshare$auto(0x40000080) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x8800, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x787806, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r1 = socket(0x2, 0x801, 0x84) getsockopt$auto(r1, 0x84, 0x76, 0x0, &(0x7f00000002c0)=0x1000c0) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0xa, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYRES32=r1, @ANYRES32=r0, @ANYBLOB="4a4306e6aba0e973e9ecc05812cd40977dacc377cddd10dd98efa42049216eae2340c58ccdc0d007af321ec79024684d315f934af19feb1a80da69a53020862b2d136e4ad00479bc1f2acfaad679f6310f9e95ab4118ec939537d12bb7918104067650524bf081510f1736c03a99125055211221f4f9ad8c50ba223a5cdf5cbfb249eb6e15e3c717b484b0bd23e7068f"], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x2000c082) write$auto(r0, &(0x7f0000000000)='-\x00', 0xfdef) 790.82791ms ago: executing program 1 (id=824): mmap$auto(0x0, 0x4020009, 0x761, 0xebe, 0xffffffffffffffff, 0x8000) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000426bd7000fedbdf250200000008002700040000000a001800aa0000aa"], 0x28}, 0x1, 0x0, 0x0, 0x4c894}, 0x24008000) openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_score_adj\x00', 0x142, 0x0) readv$auto(0x3, &(0x7f00000001c0)={0x0, 0xfa}, 0x7) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\x00\x80\x00\x00\x00\x00\x00\x00j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)) fchdir$auto(r0) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x0) r1 = openat$auto_fault_around_bytes_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x100000, 0x0) splice$auto(r1, 0x0, r1, 0x0, 0x8000000000000002, 0x5) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/net/rpc/auth.unix.gid/content\x00', 0x0, 0x0) madvise$auto(0x0, 0x8000000000000001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) time$auto(0x0) 704.535463ms ago: executing program 0 (id=825): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) ustat$auto(0x801, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a) r0 = socket(0x2, 0x5, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) sendmmsg$auto(r0, &(0x7f0000000100)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0xff80}, 0x7, 0x0, 0x4, 0xb}, 0x8}, 0x5, 0x7fffffff) unshare$auto(0x40000080) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001480)='/proc/sys/net/ipv6/conf/geneve0/disable_ipv6\x00', 0x40001, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003180), r2) write$auto(r1, &(0x7f0000001680)='\v\x90\xd1\xda\xbc>1\x8ag\x14\x18\xbe\xdc\x00', 0x1) 352.79822ms ago: executing program 2 (id=826): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) mmap$auto(0x0, 0x7, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x0, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x602, 0x1) r1 = open(&(0x7f0000000000)='./bus\x00', 0x12ba7e, 0x45) fanotify_mark$auto(0x0, 0x451, 0xa, r1, 0x0) r2 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) fallocate$auto(r2, 0x0, 0x400000a, 0x4b) read$auto(r0, 0x0, 0x1f40) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f00000000c0)={0x0, 0xffffffff}, 0x6) mmap$auto(0x1, 0x200004, 0x4000000000e3, 0x40e32, 0xd, 0x300000000000) 136.961859ms ago: executing program 2 (id=827): mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x5) socket(0x15, 0x5, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0xffff) statmount$auto(0x0, 0x0, 0x7ffffffff000, 0x0) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/008/001\x00', 0x8901, 0x0) ioctl$auto_USBDEVFS_GETDRIVER(r0, 0x41045508, &(0x7f00000004c0)={0x6, "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"}) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) read$auto(r1, &(0x7f0000002300)='MAC802154_HWSIM\x00', 0xfdef) io_submit$auto(0x5, 0x6, &(0x7f0000000180)=&(0x7f0000000100)={0x7f, 0x5161d731, 0x6, 0x7, 0x1, r1, 0xc000000, 0x7, 0xd, 0x0, 0x8, r1}) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/conf/bridge_slave_1/medium_id\x00', 0x101802, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xffffffffffffffff, 0x8000) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) timer_create$auto(0x2, 0x0, 0x0) mmap$auto(0x457, 0xe983, 0x5, 0x819, 0xffffffffffffffff, 0x7fff) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/tcp_tw_reuse\x00', 0x14000, 0x0) socket(0xf, 0x6, 0x5) mmap$auto(0x0, 0x400108, 0x3, 0x9b72, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x3, 0x0) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) fsconfig$auto(r3, 0x1, &(0x7f0000000240)='\x00sK\xce7\x9fpL\xcb$x\x00\xf0+\xd3\xd6g[.M|HK\xccO+\xec\xdcS\x95\xb2\xc7\x88\xa9\x82\x10|\xe2n+\xbfI_\xf0\xdd\x0e\xa2\xf3\xc9h\xaaSF\xc6K\x8c\x9bfh\x8c\xf5\x84\xcc\xc4\a\xc7\x12E\x85\x0e\xf3\xa0\xa1\xec\xc0\xe0\x83\xde+\xec\x97\n1sg\xa1\xd5\t`\x96\xfd\xf2Ms\x03\x022\x13\x9c\xc7q<\xe2\x0e\xf7\x1d\xfe{z\x04\xac\r\xeb\xe12s\x90\x00\xef\x9eA\n\xd4n\x95\xa3\v]\x97\x97b$q,/\xb7\xe1\x92-\n;\xbd>\xa8\xfb\x98F\x0f\xc4j\x8bp\xfca\x17\xd6\r\xef\xba\x9a8N\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000080)="6d1c2f8cde01f4aa2b68bbbe2033ffa31b270de8803de2e4", 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) madvise$auto(0x1000000, 0xffffffffffff0001, 0x15) 0s ago: executing program 0 (id=828): io_uring_setup$auto(0x386, &(0x7f0000000000)={0x5, 0x1, 0x4c, 0x0, 0x1, 0x8, 0xffffffffffffffff, [0xfffffffa, 0x8, 0xa], {0x8, 0x8, 0x3fc000, 0x4, 0x751, 0x3, 0x3b, 0xec5, 0xffff}, {0xd5, 0x80000000, 0x1bee, 0x5d, 0x400, 0x9, 0x7, 0x8000, 0x7f}}) r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x0, 0x0) r1 = fsopen$auto(0x0, 0x1) fsconfig$auto(r1, 0x8, 0x0, 0x0, 0x0) r2 = fsopen$auto(0x0, 0x1) fsconfig$auto(r2, 0x6, 0x0, 0x0, 0x0) write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d399b39", 0xfdef) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1f, 0x5, 0x3) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) socket(0x11, 0xa, 0x402fd) sendmmsg$auto(0x4, 0x0, 0x9a6, 0xa) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/memory.force_empty\x00', 0xa001, 0x0) write$auto(r3, &(0x7f0000000000)='3\xc7\xff\xff\xff\xdd\x00\b(Ks\x0f\x87|P\x11\xd1li0\x89\x85\x90QM\xd6wfF\xf1x\xb3;c\tP\x03\x84\x97\x99\x83\x97\x81:\xf3\xa3o5\xc5\x86\xed\xa4\x18]\xa3\xc9\x0f\xff\xdak\xb0m\xe1U\xb3\xa2\xee\xdcTJQO\x98\xc8w\x8c\xe7\x00\x00\x00\x1dj\x1e\xebQT\xdd\x9b\x00'/101, 0x9) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xa00) read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, &(0x7f00000002c0)=""/266, 0x10a) mmap$auto(0x5, 0x2020009, 0xb, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) setregid$auto(0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) kernel console output (not intermixed with test programs): c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 164.666056][ T7216] RSP: 002b:00007f111bea0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 164.666081][ T7216] RAX: ffffffffffffffda RBX: 00007f111b215fa0 RCX: 00007f111af9cdd9 [ 164.666099][ T7216] RDX: 0000000000008587 RSI: 0000200000000040 RDI: 0000000000000004 [ 164.666115][ T7216] RBP: 00007f111bea0090 R08: 0000000000000000 R09: 0000000000000000 [ 164.666131][ T7216] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 164.666150][ T7216] R13: 00007f111b216038 R14: 00007f111b215fa0 R15: 00007fffeb9191c8 [ 164.666185][ T7216] [ 164.989669][ T7220] FAULT_INJECTION: forcing a failure. [ 164.989669][ T7220] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 165.173274][ T7220] CPU: 0 UID: 0 PID: 7220 Comm: syz.1.310 Not tainted syzkaller #0 PREEMPT(full) [ 165.173310][ T7220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 165.173325][ T7220] Call Trace: [ 165.173333][ T7220] [ 165.173343][ T7220] dump_stack_lvl+0x100/0x190 [ 165.173378][ T7220] should_fail_ex.cold+0x5/0xa [ 165.173408][ T7220] ? prepare_alloc_pages+0x16d/0x5f0 [ 165.173456][ T7220] should_fail_alloc_page+0xeb/0x140 [ 165.173489][ T7220] prepare_alloc_pages+0x1f0/0x5f0 [ 165.173523][ T7220] ? __up_read+0x2c1/0x6e0 [ 165.173556][ T7220] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 165.173616][ T7220] ? irqentry_exit+0x246/0x790 [ 165.173649][ T7220] ? lockdep_hardirqs_on+0x78/0x100 [ 165.173684][ T7220] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 165.173745][ T7220] ? rep_movs_alternative+0x4a/0x90 [ 165.173787][ T7220] ? _copy_from_iter+0x270/0x1690 [ 165.173816][ T7220] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 165.173858][ T7220] ? policy_nodemask+0xed/0x4f0 [ 165.173894][ T7220] alloc_pages_mpol+0x1fb/0x540 [ 165.173927][ T7220] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 165.173969][ T7220] alloc_pages_noprof+0x1a/0x160 [ 165.174006][ T7220] anon_pipe_write+0xacb/0x18c0 [ 165.174053][ T7220] ? __pfx_anon_pipe_write+0x10/0x10 [ 165.174088][ T7220] ? apparmor_file_permission+0x13f/0x1c0 [ 165.174135][ T7220] ? bpf_lsm_file_permission+0x9/0x10 [ 165.174160][ T7220] ? security_file_permission+0x76/0x210 [ 165.174192][ T7220] ? rw_verify_area+0xce/0x6d0 [ 165.174221][ T7220] vfs_write+0x6ac/0x1070 [ 165.174253][ T7220] ? __pfx_anon_pipe_write+0x10/0x10 [ 165.174289][ T7220] ? __pfx_vfs_write+0x10/0x10 [ 165.174315][ T7220] ? find_held_lock+0x2b/0x80 [ 165.174370][ T7220] ksys_write+0x1f8/0x250 [ 165.174401][ T7220] ? __pfx_ksys_write+0x10/0x10 [ 165.174440][ T7220] ? rcu_is_watching+0x12/0xc0 [ 165.174478][ T7220] do_syscall_64+0x10b/0xf80 [ 165.174510][ T7220] ? clear_bhb_loop+0x40/0x90 [ 165.174545][ T7220] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.174573][ T7220] RIP: 0033:0x7f1d4659cdd9 [ 165.174596][ T7220] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 165.174621][ T7220] RSP: 002b:00007f1d474c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 165.174647][ T7220] RAX: ffffffffffffffda RBX: 00007f1d46815fa0 RCX: 00007f1d4659cdd9 [ 165.174665][ T7220] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 165.174682][ T7220] RBP: 00007f1d474c6090 R08: 0000000000000000 R09: 0000000000000000 [ 165.174699][ T7220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 165.174715][ T7220] R13: 00007f1d46816038 R14: 00007f1d46815fa0 R15: 00007ffc71509258 [ 165.174752][ T7220] [ 165.584868][ T7221] netlink: 'syz.3.308': attribute type 11 has an invalid length. [ 166.114280][ T7240] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input7 [ 166.380363][ T7246] netlink: 342 bytes leftover after parsing attributes in process `syz.1.314'. [ 167.971916][ T7264] FAULT_INJECTION: forcing a failure. [ 167.971916][ T7264] name failslab, interval 1, probability 0, space 0, times 0 [ 167.985570][ T7264] CPU: 0 UID: 0 PID: 7264 Comm: syz.3.319 Not tainted syzkaller #0 PREEMPT(full) [ 167.985605][ T7264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 167.985620][ T7264] Call Trace: [ 167.985629][ T7264] [ 167.985639][ T7264] dump_stack_lvl+0x100/0x190 [ 167.985675][ T7264] should_fail_ex.cold+0x5/0xa [ 167.985723][ T7264] should_failslab+0xc2/0x120 [ 167.985755][ T7264] __kmalloc_cache_noprof+0x7a/0x6f0 [ 167.985793][ T7264] ? genl_start+0x1e8/0x970 [ 167.985829][ T7264] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0 [ 167.985880][ T7264] genl_start+0x1e8/0x970 [ 167.985922][ T7264] __netlink_dump_start+0x60e/0x990 [ 167.985961][ T7264] genl_family_rcv_msg_dumpit+0x1e2/0x2e0 [ 167.986004][ T7264] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 167.986053][ T7264] ? rcu_is_watching+0x12/0xc0 [ 167.986086][ T7264] ? __pfx_genl_start+0x10/0x10 [ 167.986121][ T7264] ? __pfx_genl_dumpit+0x10/0x10 [ 167.986158][ T7264] ? __pfx_genl_done+0x10/0x10 [ 167.986203][ T7264] ? bpf_lsm_capable+0x9/0x10 [ 167.986233][ T7264] ? security_capable+0x80/0x260 [ 167.986281][ T7264] genl_rcv_msg+0x471/0x800 [ 167.986324][ T7264] ? __pfx_genl_rcv_msg+0x10/0x10 [ 167.986363][ T7264] ? __pfx_ioam6_genl_dumpns_start+0x10/0x10 [ 167.986393][ T7264] ? __pfx_ioam6_genl_dumpns+0x10/0x10 [ 167.986422][ T7264] ? __pfx_ioam6_genl_dumpns_done+0x10/0x10 [ 167.986467][ T7264] netlink_rcv_skb+0x159/0x420 [ 167.986502][ T7264] ? __pfx_genl_rcv_msg+0x10/0x10 [ 167.986543][ T7264] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 167.986595][ T7264] ? netlink_deliver_tap+0x1ae/0xcc0 [ 167.986634][ T7264] genl_rcv+0x28/0x40 [ 167.986668][ T7264] netlink_unicast+0x585/0x850 [ 167.986709][ T7264] ? __pfx_netlink_unicast+0x10/0x10 [ 167.986755][ T7264] netlink_sendmsg+0x8b0/0xda0 [ 167.986797][ T7264] ? __pfx_netlink_sendmsg+0x10/0x10 [ 167.986831][ T7264] ? __import_iovec+0x1d2/0x640 [ 167.986863][ T7264] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 167.986907][ T7264] ____sys_sendmsg+0x9e1/0xb70 [ 167.986940][ T7264] ? __pfx_netlink_sendmsg+0x10/0x10 [ 167.986981][ T7264] ? __pfx_____sys_sendmsg+0x10/0x10 [ 167.987030][ T7264] ___sys_sendmsg+0x190/0x1e0 [ 167.987066][ T7264] ? __pfx____sys_sendmsg+0x10/0x10 [ 167.987146][ T7264] __sys_sendmsg+0x170/0x220 [ 167.987179][ T7264] ? __pfx___sys_sendmsg+0x10/0x10 [ 167.987221][ T7264] ? rcu_is_watching+0x12/0xc0 [ 167.987258][ T7264] do_syscall_64+0x10b/0xf80 [ 167.987289][ T7264] ? clear_bhb_loop+0x40/0x90 [ 167.987324][ T7264] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 167.987351][ T7264] RIP: 0033:0x7f4c7879cdd9 [ 167.987373][ T7264] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 167.987397][ T7264] RSP: 002b:00007f4c795af028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 167.987421][ T7264] RAX: ffffffffffffffda RBX: 00007f4c78a15fa0 RCX: 00007f4c7879cdd9 [ 167.987439][ T7264] RDX: 0000000024000010 RSI: 0000200000000140 RDI: 0000000000000003 [ 167.987456][ T7264] RBP: 00007f4c795af090 R08: 0000000000000000 R09: 0000000000000000 [ 167.987472][ T7264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 167.987488][ T7264] R13: 00007f4c78a16038 R14: 00007f4c78a15fa0 R15: 00007fffa8525088 [ 167.987523][ T7264] [ 168.926159][ T7277] FAULT_INJECTION: forcing a failure. [ 168.926159][ T7277] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 168.969821][ T7277] CPU: 1 UID: 0 PID: 7277 Comm: syz.1.324 Not tainted syzkaller #0 PREEMPT(full) [ 168.969861][ T7277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 168.969874][ T7277] Call Trace: [ 168.969881][ T7277] [ 168.969891][ T7277] dump_stack_lvl+0x100/0x190 [ 168.969926][ T7277] should_fail_ex.cold+0x5/0xa [ 168.969961][ T7277] _copy_from_iter+0x1f4/0x1690 [ 168.969990][ T7277] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 168.970032][ T7277] ? __pfx__copy_from_iter+0x10/0x10 [ 168.970079][ T7277] ? alloc_pages_mpol+0x25a/0x540 [ 168.970118][ T7277] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 168.970156][ T7277] copy_page_from_iter+0x238/0x300 [ 168.970184][ T7277] anon_pipe_write+0xaf0/0x18c0 [ 168.970228][ T7277] ? __pfx_anon_pipe_write+0x10/0x10 [ 168.970262][ T7277] ? apparmor_file_permission+0x13f/0x1c0 [ 168.970308][ T7277] ? bpf_lsm_file_permission+0x9/0x10 [ 168.970334][ T7277] ? security_file_permission+0x76/0x210 [ 168.970366][ T7277] ? rw_verify_area+0xce/0x6d0 [ 168.970396][ T7277] vfs_write+0x6ac/0x1070 [ 168.970427][ T7277] ? __pfx_anon_pipe_write+0x10/0x10 [ 168.970460][ T7277] ? __pfx_vfs_write+0x10/0x10 [ 168.970484][ T7277] ? find_held_lock+0x2b/0x80 [ 168.970535][ T7277] ksys_write+0x1f8/0x250 [ 168.970561][ T7277] ? __pfx_ksys_write+0x10/0x10 [ 168.970589][ T7277] ? rcu_is_watching+0x12/0xc0 [ 168.970621][ T7277] do_syscall_64+0x10b/0xf80 [ 168.970648][ T7277] ? clear_bhb_loop+0x40/0x90 [ 168.970677][ T7277] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 168.970715][ T7277] RIP: 0033:0x7f1d4659cdd9 [ 168.970734][ T7277] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 168.970756][ T7277] RSP: 002b:00007f1d474c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 168.970779][ T7277] RAX: ffffffffffffffda RBX: 00007f1d46815fa0 RCX: 00007f1d4659cdd9 [ 168.970794][ T7277] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 168.970808][ T7277] RBP: 00007f1d474c6090 R08: 0000000000000000 R09: 0000000000000000 [ 168.970822][ T7277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 168.970836][ T7277] R13: 00007f1d46816038 R14: 00007f1d46815fa0 R15: 00007ffc71509258 [ 168.970867][ T7277] [ 169.453929][ T30] audit: type=1326 audit(1777600396.645:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7274 comm="syz.3.323" exe="/root/ci-qemu-gce-upstream-auto/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4c7879cdd9 code=0x0 [ 169.983351][ T7300] FAULT_INJECTION: forcing a failure. [ 169.983351][ T7300] name failslab, interval 1, probability 0, space 0, times 0 [ 170.008367][ T7300] CPU: 0 UID: 0 PID: 7300 Comm: syz.1.330 Not tainted syzkaller #0 PREEMPT(full) [ 170.008402][ T7300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 170.008418][ T7300] Call Trace: [ 170.008427][ T7300] [ 170.008437][ T7300] dump_stack_lvl+0x100/0x190 [ 170.008473][ T7300] should_fail_ex.cold+0x5/0xa [ 170.008509][ T7300] should_failslab+0xc2/0x120 [ 170.008540][ T7300] __kmalloc_cache_noprof+0x7a/0x6f0 [ 170.008578][ T7300] ? genl_start+0x1e8/0x970 [ 170.008613][ T7300] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0 [ 170.008663][ T7300] genl_start+0x1e8/0x970 [ 170.008712][ T7300] __netlink_dump_start+0x60e/0x990 [ 170.008751][ T7300] genl_family_rcv_msg_dumpit+0x1e2/0x2e0 [ 170.008793][ T7300] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 170.008841][ T7300] ? rcu_is_watching+0x12/0xc0 [ 170.008874][ T7300] ? __pfx_genl_start+0x10/0x10 [ 170.008909][ T7300] ? __pfx_genl_dumpit+0x10/0x10 [ 170.008943][ T7300] ? __pfx_genl_done+0x10/0x10 [ 170.008983][ T7300] ? bpf_lsm_capable+0x9/0x10 [ 170.009013][ T7300] ? security_capable+0x80/0x260 [ 170.009059][ T7300] genl_rcv_msg+0x471/0x800 [ 170.009102][ T7300] ? __pfx_genl_rcv_msg+0x10/0x10 [ 170.009145][ T7300] ? __pfx_ioam6_genl_dumpns_start+0x10/0x10 [ 170.009175][ T7300] ? __pfx_ioam6_genl_dumpns+0x10/0x10 [ 170.009204][ T7300] ? __pfx_ioam6_genl_dumpns_done+0x10/0x10 [ 170.009248][ T7300] netlink_rcv_skb+0x159/0x420 [ 170.009283][ T7300] ? __pfx_genl_rcv_msg+0x10/0x10 [ 170.009324][ T7300] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 170.009374][ T7300] ? netlink_deliver_tap+0x1ae/0xcc0 [ 170.009416][ T7300] genl_rcv+0x28/0x40 [ 170.009450][ T7300] netlink_unicast+0x585/0x850 [ 170.009495][ T7300] ? __pfx_netlink_unicast+0x10/0x10 [ 170.009542][ T7300] netlink_sendmsg+0x8b0/0xda0 [ 170.009578][ T7300] ? __pfx_netlink_sendmsg+0x10/0x10 [ 170.009607][ T7300] ? __import_iovec+0x1d2/0x640 [ 170.009636][ T7300] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 170.009678][ T7300] ____sys_sendmsg+0x9e1/0xb70 [ 170.009718][ T7300] ? __pfx_netlink_sendmsg+0x10/0x10 [ 170.009752][ T7300] ? __pfx_____sys_sendmsg+0x10/0x10 [ 170.009802][ T7300] ___sys_sendmsg+0x190/0x1e0 [ 170.009840][ T7300] ? __pfx____sys_sendmsg+0x10/0x10 [ 170.009920][ T7300] __sys_sendmsg+0x170/0x220 [ 170.009947][ T7300] ? __pfx___sys_sendmsg+0x10/0x10 [ 170.009987][ T7300] ? rcu_is_watching+0x12/0xc0 [ 170.010021][ T7300] do_syscall_64+0x10b/0xf80 [ 170.010051][ T7300] ? clear_bhb_loop+0x40/0x90 [ 170.010083][ T7300] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.010107][ T7300] RIP: 0033:0x7f1d4659cdd9 [ 170.010128][ T7300] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 170.010150][ T7300] RSP: 002b:00007f1d474c6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 170.010175][ T7300] RAX: ffffffffffffffda RBX: 00007f1d46815fa0 RCX: 00007f1d4659cdd9 [ 170.010192][ T7300] RDX: 0000000024000010 RSI: 0000200000000140 RDI: 0000000000000003 [ 170.010207][ T7300] RBP: 00007f1d474c6090 R08: 0000000000000000 R09: 0000000000000000 [ 170.010222][ T7300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 170.010237][ T7300] R13: 00007f1d46816038 R14: 00007f1d46815fa0 R15: 00007ffc71509258 [ 170.010268][ T7300] [ 170.605178][ T7309] FAULT_INJECTION: forcing a failure. [ 170.605178][ T7309] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 170.618823][ T7309] CPU: 0 UID: 0 PID: 7309 Comm: syz.1.333 Not tainted syzkaller #0 PREEMPT(full) [ 170.618865][ T7309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 170.618881][ T7309] Call Trace: [ 170.618889][ T7309] [ 170.618897][ T7309] dump_stack_lvl+0x100/0x190 [ 170.618930][ T7309] should_fail_ex.cold+0x5/0xa [ 170.618956][ T7309] ? prepare_alloc_pages+0x16d/0x5f0 [ 170.618992][ T7309] should_fail_alloc_page+0xeb/0x140 [ 170.619029][ T7309] prepare_alloc_pages+0x1f0/0x5f0 [ 170.619064][ T7309] ? __up_read+0x2c1/0x6e0 [ 170.619094][ T7309] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 170.619156][ T7309] ? irqentry_exit+0x246/0x790 [ 170.619188][ T7309] ? lockdep_hardirqs_on+0x78/0x100 [ 170.619222][ T7309] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 170.619281][ T7309] ? rep_movs_alternative+0x4a/0x90 [ 170.619327][ T7309] ? _copy_from_iter+0x270/0x1690 [ 170.619356][ T7309] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 170.619398][ T7309] ? policy_nodemask+0xed/0x4f0 [ 170.619435][ T7309] alloc_pages_mpol+0x1fb/0x540 [ 170.619467][ T7309] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 170.619504][ T7309] alloc_pages_noprof+0x1a/0x160 [ 170.619545][ T7309] anon_pipe_write+0xacb/0x18c0 [ 170.619587][ T7309] ? __pfx_anon_pipe_write+0x10/0x10 [ 170.619617][ T7309] ? apparmor_file_permission+0x13f/0x1c0 [ 170.619664][ T7309] ? bpf_lsm_file_permission+0x9/0x10 [ 170.619691][ T7309] ? security_file_permission+0x76/0x210 [ 170.619719][ T7309] ? rw_verify_area+0xce/0x6d0 [ 170.619752][ T7309] vfs_write+0x6ac/0x1070 [ 170.619781][ T7309] ? __pfx_anon_pipe_write+0x10/0x10 [ 170.619817][ T7309] ? __pfx_vfs_write+0x10/0x10 [ 170.619848][ T7309] ? find_held_lock+0x2b/0x80 [ 170.619959][ T7309] ksys_write+0x1f8/0x250 [ 170.619988][ T7309] ? __pfx_ksys_write+0x10/0x10 [ 170.620016][ T7309] ? rcu_is_watching+0x12/0xc0 [ 170.620050][ T7309] do_syscall_64+0x10b/0xf80 [ 170.620080][ T7309] ? clear_bhb_loop+0x40/0x90 [ 170.620111][ T7309] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.620136][ T7309] RIP: 0033:0x7f1d4659cdd9 [ 170.620155][ T7309] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 170.620177][ T7309] RSP: 002b:00007f1d474c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 170.620199][ T7309] RAX: ffffffffffffffda RBX: 00007f1d46815fa0 RCX: 00007f1d4659cdd9 [ 170.620215][ T7309] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 170.620229][ T7309] RBP: 00007f1d474c6090 R08: 0000000000000000 R09: 0000000000000000 [ 170.620244][ T7309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 170.620257][ T7309] R13: 00007f1d46816038 R14: 00007f1d46815fa0 R15: 00007ffc71509258 [ 170.620288][ T7309] [ 171.571544][ T7317] FAULT_INJECTION: forcing a failure. [ 171.571544][ T7317] name failslab, interval 1, probability 0, space 0, times 0 [ 171.604163][ T7320] netlink: 12 bytes leftover after parsing attributes in process `syz.3.336'. [ 171.641465][ T7317] CPU: 1 UID: 0 PID: 7317 Comm: syz.1.334 Not tainted syzkaller #0 PREEMPT(full) [ 171.641489][ T7317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 171.641502][ T7317] Call Trace: [ 171.641507][ T7317] [ 171.641513][ T7317] dump_stack_lvl+0x100/0x190 [ 171.641552][ T7317] should_fail_ex.cold+0x5/0xa [ 171.641573][ T7317] should_failslab+0xc2/0x120 [ 171.641591][ T7317] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 171.641613][ T7317] ? prepare_creds+0x2c/0x950 [ 171.641634][ T7317] prepare_creds+0x2c/0x950 [ 171.641658][ T7317] __sys_setuid+0x9c/0x440 [ 171.641689][ T7317] do_syscall_64+0x10b/0xf80 [ 171.641709][ T7317] ? clear_bhb_loop+0x40/0x90 [ 171.641727][ T7317] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 171.641742][ T7317] RIP: 0033:0x7f1d4659cdd9 [ 171.641760][ T7317] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 171.641774][ T7317] RSP: 002b:00007f1d47484028 EFLAGS: 00000246 ORIG_RAX: 0000000000000069 [ 171.641789][ T7317] RAX: ffffffffffffffda RBX: 00007f1d46816180 RCX: 00007f1d4659cdd9 [ 171.641801][ T7317] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 171.641809][ T7317] RBP: 00007f1d46632d69 R08: 0000000000000000 R09: 0000000000000000 [ 171.641819][ T7317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 171.641827][ T7317] R13: 00007f1d46816218 R14: 00007f1d46816180 R15: 00007ffc71509258 [ 171.641845][ T7317] [ 171.801610][ T7320] i: entered promiscuous mode [ 171.979971][ T7320] HfR: entered promiscuous mode [ 172.796098][ T7337] ecryptfs_miscdev_write: Invalid packet size [0] [ 173.707129][ T7353] syz.1.346 (7353) used greatest stack depth: 20096 bytes left [ 174.036971][ T7368] netlink: 2468 bytes leftover after parsing attributes in process `syz.0.349'. [ 174.605924][ T7389] FAULT_INJECTION: forcing a failure. [ 174.605924][ T7389] name failslab, interval 1, probability 0, space 0, times 0 [ 174.646480][ T7389] CPU: 0 UID: 0 PID: 7389 Comm: syz.0.354 Not tainted syzkaller #0 PREEMPT(full) [ 174.646510][ T7389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 174.646519][ T7389] Call Trace: [ 174.646524][ T7389] [ 174.646530][ T7389] dump_stack_lvl+0x100/0x190 [ 174.646557][ T7389] should_fail_ex.cold+0x5/0xa [ 174.646577][ T7389] should_failslab+0xc2/0x120 [ 174.646594][ T7389] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 174.646617][ T7389] ? skb_clone+0x190/0x400 [ 174.646636][ T7389] skb_clone+0x190/0x400 [ 174.646651][ T7389] netlink_deliver_tap+0xaed/0xcc0 [ 174.646674][ T7389] netlink_dump+0x909/0xd00 [ 174.646693][ T7389] ? __pfx_netlink_dump+0x10/0x10 [ 174.646718][ T7389] ? __pfx_ioam6_genl_dumpns_start+0x10/0x10 [ 174.646734][ T7389] ? genl_start+0x67a/0x970 [ 174.646757][ T7389] __netlink_dump_start+0x6d6/0x990 [ 174.646777][ T7389] genl_family_rcv_msg_dumpit+0x1e2/0x2e0 [ 174.646800][ T7389] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 174.646826][ T7389] ? rcu_is_watching+0x12/0xc0 [ 174.646843][ T7389] ? __pfx_genl_start+0x10/0x10 [ 174.646862][ T7389] ? __pfx_genl_dumpit+0x10/0x10 [ 174.646880][ T7389] ? __pfx_genl_done+0x10/0x10 [ 174.646901][ T7389] ? bpf_lsm_capable+0x9/0x10 [ 174.646917][ T7389] ? security_capable+0x80/0x260 [ 174.646942][ T7389] genl_rcv_msg+0x471/0x800 [ 174.646965][ T7389] ? __pfx_genl_rcv_msg+0x10/0x10 [ 174.646985][ T7389] ? __pfx_ioam6_genl_dumpns_start+0x10/0x10 [ 174.647001][ T7389] ? __pfx_ioam6_genl_dumpns+0x10/0x10 [ 174.647016][ T7389] ? __pfx_ioam6_genl_dumpns_done+0x10/0x10 [ 174.647039][ T7389] netlink_rcv_skb+0x159/0x420 [ 174.647058][ T7389] ? __pfx_genl_rcv_msg+0x10/0x10 [ 174.647079][ T7389] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 174.647105][ T7389] ? netlink_deliver_tap+0x1ae/0xcc0 [ 174.647125][ T7389] genl_rcv+0x28/0x40 [ 174.647143][ T7389] netlink_unicast+0x585/0x850 [ 174.647165][ T7389] ? __pfx_netlink_unicast+0x10/0x10 [ 174.647188][ T7389] netlink_sendmsg+0x8b0/0xda0 [ 174.647210][ T7389] ? __pfx_netlink_sendmsg+0x10/0x10 [ 174.647228][ T7389] ? __import_iovec+0x1d2/0x640 [ 174.647244][ T7389] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 174.647269][ T7389] ____sys_sendmsg+0x9e1/0xb70 [ 174.647286][ T7389] ? __pfx_netlink_sendmsg+0x10/0x10 [ 174.647309][ T7389] ? __pfx_____sys_sendmsg+0x10/0x10 [ 174.647336][ T7389] ___sys_sendmsg+0x190/0x1e0 [ 174.647357][ T7389] ? __pfx____sys_sendmsg+0x10/0x10 [ 174.647400][ T7389] __sys_sendmsg+0x170/0x220 [ 174.647415][ T7389] ? __pfx___sys_sendmsg+0x10/0x10 [ 174.647438][ T7389] ? rcu_is_watching+0x12/0xc0 [ 174.647457][ T7389] do_syscall_64+0x10b/0xf80 [ 174.647475][ T7389] ? clear_bhb_loop+0x40/0x90 [ 174.647493][ T7389] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 174.647508][ T7389] RIP: 0033:0x7f111af9cdd9 [ 174.647521][ T7389] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 174.647534][ T7389] RSP: 002b:00007f111bea0028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 174.647553][ T7389] RAX: ffffffffffffffda RBX: 00007f111b215fa0 RCX: 00007f111af9cdd9 [ 174.647563][ T7389] RDX: 0000000024000010 RSI: 0000200000000140 RDI: 0000000000000003 [ 174.647572][ T7389] RBP: 00007f111bea0090 R08: 0000000000000000 R09: 0000000000000000 [ 174.647580][ T7389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 174.647589][ T7389] R13: 00007f111b216038 R14: 00007f111b215fa0 R15: 00007fffeb9191c8 [ 174.647608][ T7389] [ 175.193034][ T7393] netlink: 146 bytes leftover after parsing attributes in process `syz.3.355'. [ 175.920847][ T7418] netlink: 342 bytes leftover after parsing attributes in process `syz.2.362'. [ 177.353842][ T7431] TCP: TCP_TX_DELAY enabled [ 177.493967][ T7456] binder: 7455:7456 ioctl 80108907 38 returned -22 [ 177.866112][ T7459] FAULT_INJECTION: forcing a failure. [ 177.866112][ T7459] name failslab, interval 1, probability 0, space 0, times 0 [ 177.901469][ T7459] CPU: 1 UID: 0 PID: 7459 Comm: syz.0.373 Not tainted syzkaller #0 PREEMPT(full) [ 177.901506][ T7459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 177.901523][ T7459] Call Trace: [ 177.901532][ T7459] [ 177.901543][ T7459] dump_stack_lvl+0x100/0x190 [ 177.901582][ T7459] should_fail_ex.cold+0x5/0xa [ 177.901619][ T7459] should_failslab+0xc2/0x120 [ 177.901654][ T7459] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 177.901701][ T7459] ? __alloc_skb+0x140/0x710 [ 177.901751][ T7459] __alloc_skb+0x140/0x710 [ 177.901792][ T7459] ? __alloc_skb+0x5b7/0x710 [ 177.901842][ T7459] ? __pfx___alloc_skb+0x10/0x10 [ 177.901885][ T7459] ? genl_rcv_msg+0x4be/0x800 [ 177.901935][ T7459] netlink_ack+0x117/0xb80 [ 177.901986][ T7459] netlink_rcv_skb+0x333/0x420 [ 177.902029][ T7459] ? __pfx_genl_rcv_msg+0x10/0x10 [ 177.902073][ T7459] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 177.902125][ T7459] ? netlink_deliver_tap+0x1ae/0xcc0 [ 177.902166][ T7459] genl_rcv+0x28/0x40 [ 177.902208][ T7459] netlink_unicast+0x585/0x850 [ 177.902257][ T7459] ? __pfx_netlink_unicast+0x10/0x10 [ 177.902300][ T7459] netlink_sendmsg+0x8b0/0xda0 [ 177.902342][ T7459] ? __pfx_netlink_sendmsg+0x10/0x10 [ 177.902382][ T7459] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 177.902431][ T7459] __sys_sendto+0x468/0x4b0 [ 177.902472][ T7459] ? __pfx_netlink_sendmsg+0x10/0x10 [ 177.902509][ T7459] ? __pfx___sys_sendto+0x10/0x10 [ 177.902565][ T7459] ? fd_install+0x223/0x580 [ 177.902608][ T7459] ? __pfx___sys_socket+0x10/0x10 [ 177.902649][ T7459] __x64_sys_sendto+0xe0/0x1c0 [ 177.902688][ T7459] ? do_syscall_64+0x90/0xf80 [ 177.902721][ T7459] ? lockdep_hardirqs_on+0x78/0x100 [ 177.902749][ T7459] do_syscall_64+0x10b/0xf80 [ 177.902766][ T7459] ? clear_bhb_loop+0x40/0x90 [ 177.902784][ T7459] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 177.902799][ T7459] RIP: 0033:0x7f111af5d60e [ 177.902812][ T7459] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 177.902826][ T7459] RSP: 002b:00007f111be9ee88 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 177.902841][ T7459] RAX: ffffffffffffffda RBX: 00007f111bea06c0 RCX: 00007f111af5d60e [ 177.902851][ T7459] RDX: 0000000000000028 RSI: 00007f111be9f000 RDI: 0000000000000007 [ 177.902860][ T7459] RBP: 0000000000000000 R08: 00007f111be9ef04 R09: 000000000000000c [ 177.902869][ T7459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 177.902878][ T7459] R13: 00007f111be9ef58 R14: 00007f111be9f000 R15: 0000000000000000 [ 177.902896][ T7459] [ 178.413056][ T7432] kexec: Could not allocate control_code_buffer [ 179.418149][ T7468] FAULT_INJECTION: forcing a failure. [ 179.418149][ T7468] name failslab, interval 1, probability 0, space 0, times 0 [ 179.439984][ T7468] CPU: 0 UID: 0 PID: 7468 Comm: syz.0.376 Not tainted syzkaller #0 PREEMPT(full) [ 179.440020][ T7468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 179.440035][ T7468] Call Trace: [ 179.440043][ T7468] [ 179.440053][ T7468] dump_stack_lvl+0x100/0x190 [ 179.440088][ T7468] should_fail_ex.cold+0x5/0xa [ 179.440130][ T7468] should_failslab+0xc2/0x120 [ 179.440162][ T7468] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 179.440203][ T7468] ? skb_clone+0x190/0x400 [ 179.440237][ T7468] skb_clone+0x190/0x400 [ 179.440265][ T7468] netlink_deliver_tap+0xaed/0xcc0 [ 179.440306][ T7468] netlink_dump+0x909/0xd00 [ 179.440342][ T7468] ? __pfx_netlink_dump+0x10/0x10 [ 179.440388][ T7468] ? __pfx_ioam6_genl_dumpns_start+0x10/0x10 [ 179.440418][ T7468] ? genl_start+0x67a/0x970 [ 179.440459][ T7468] __netlink_dump_start+0x6d6/0x990 [ 179.440498][ T7468] genl_family_rcv_msg_dumpit+0x1e2/0x2e0 [ 179.440540][ T7468] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 179.440588][ T7468] ? rcu_is_watching+0x12/0xc0 [ 179.440620][ T7468] ? __pfx_genl_start+0x10/0x10 [ 179.440658][ T7468] ? __pfx_genl_dumpit+0x10/0x10 [ 179.440693][ T7468] ? __pfx_genl_done+0x10/0x10 [ 179.440730][ T7468] ? bpf_lsm_capable+0x9/0x10 [ 179.440757][ T7468] ? security_capable+0x80/0x260 [ 179.440802][ T7468] genl_rcv_msg+0x471/0x800 [ 179.440843][ T7468] ? __pfx_genl_rcv_msg+0x10/0x10 [ 179.440880][ T7468] ? __pfx_ioam6_genl_dumpns_start+0x10/0x10 [ 179.440908][ T7468] ? __pfx_ioam6_genl_dumpns+0x10/0x10 [ 179.440935][ T7468] ? __pfx_ioam6_genl_dumpns_done+0x10/0x10 [ 179.440978][ T7468] netlink_rcv_skb+0x159/0x420 [ 179.441012][ T7468] ? __pfx_genl_rcv_msg+0x10/0x10 [ 179.441052][ T7468] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 179.441102][ T7468] ? netlink_deliver_tap+0x1ae/0xcc0 [ 179.441144][ T7468] genl_rcv+0x28/0x40 [ 179.441178][ T7468] netlink_unicast+0x585/0x850 [ 179.441214][ T7468] ? __pfx_netlink_unicast+0x10/0x10 [ 179.441254][ T7468] netlink_sendmsg+0x8b0/0xda0 [ 179.441293][ T7468] ? __pfx_netlink_sendmsg+0x10/0x10 [ 179.441324][ T7468] ? __import_iovec+0x1d2/0x640 [ 179.441355][ T7468] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 179.441401][ T7468] ____sys_sendmsg+0x9e1/0xb70 [ 179.441434][ T7468] ? __pfx_netlink_sendmsg+0x10/0x10 [ 179.441470][ T7468] ? __pfx_____sys_sendmsg+0x10/0x10 [ 179.441523][ T7468] ___sys_sendmsg+0x190/0x1e0 [ 179.441556][ T7468] ? __pfx____sys_sendmsg+0x10/0x10 [ 179.441634][ T7468] __sys_sendmsg+0x170/0x220 [ 179.441662][ T7468] ? __pfx___sys_sendmsg+0x10/0x10 [ 179.441705][ T7468] ? rcu_is_watching+0x12/0xc0 [ 179.441742][ T7468] do_syscall_64+0x10b/0xf80 [ 179.441774][ T7468] ? clear_bhb_loop+0x40/0x90 [ 179.441809][ T7468] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.441836][ T7468] RIP: 0033:0x7f111af9cdd9 [ 179.441859][ T7468] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 179.441884][ T7468] RSP: 002b:00007f111bea0028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 179.441909][ T7468] RAX: ffffffffffffffda RBX: 00007f111b215fa0 RCX: 00007f111af9cdd9 [ 179.441927][ T7468] RDX: 0000000024000010 RSI: 0000200000000140 RDI: 0000000000000003 [ 179.441941][ T7468] RBP: 00007f111bea0090 R08: 0000000000000000 R09: 0000000000000000 [ 179.441957][ T7468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 179.441973][ T7468] R13: 00007f111b216038 R14: 00007f111b215fa0 R15: 00007fffeb9191c8 [ 179.442011][ T7468] [ 180.359738][ T7477] netlink: 8 bytes leftover after parsing attributes in process `syz.1.378'. [ 182.120647][ T7523] ubi0: attaching mtd0 [ 182.145455][ T7523] ubi0: scanning is finished [ 182.153067][ T7523] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 182.748225][ T7538] FAULT_INJECTION: forcing a failure. [ 182.748225][ T7538] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 182.762350][ T7538] CPU: 1 UID: 0 PID: 7538 Comm: syz.2.389 Not tainted syzkaller #0 PREEMPT(full) [ 182.762386][ T7538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 182.762401][ T7538] Call Trace: [ 182.762409][ T7538] [ 182.762419][ T7538] dump_stack_lvl+0x100/0x190 [ 182.762454][ T7538] should_fail_ex.cold+0x5/0xa [ 182.762488][ T7538] _copy_to_user+0x32/0xd0 [ 182.762534][ T7538] simple_read_from_buffer+0xcb/0x170 [ 182.762568][ T7538] proc_fail_nth_read+0x1af/0x230 [ 182.762618][ T7538] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 182.762662][ T7538] ? rw_verify_area+0xce/0x6d0 [ 182.762697][ T7538] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 182.762736][ T7538] vfs_read+0x1e4/0xb30 [ 182.762770][ T7538] ? __pfx_vfs_read+0x10/0x10 [ 182.762800][ T7538] ? __fget_files+0x215/0x3d0 [ 182.762833][ T7538] ? __fget_files+0x21f/0x3d0 [ 182.762869][ T7538] ksys_read+0x12a/0x250 [ 182.762894][ T7538] ? __pfx_ksys_read+0x10/0x10 [ 182.762924][ T7538] ? rcu_is_watching+0x12/0xc0 [ 182.762960][ T7538] do_syscall_64+0x10b/0xf80 [ 182.762990][ T7538] ? clear_bhb_loop+0x40/0x90 [ 182.763023][ T7538] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 182.763047][ T7538] RIP: 0033:0x7fc19b15d60e [ 182.763068][ T7538] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 182.763093][ T7538] RSP: 002b:00007fc19bfa5fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 182.763116][ T7538] RAX: ffffffffffffffda RBX: 00007fc19bfa66c0 RCX: 00007fc19b15d60e [ 182.763133][ T7538] RDX: 000000000000000f RSI: 00007fc19bfa60a0 RDI: 0000000000000004 [ 182.763149][ T7538] RBP: 00007fc19bfa6090 R08: 0000000000000000 R09: 0000000000000000 [ 182.763165][ T7538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 182.763179][ T7538] R13: 00007fc19b416038 R14: 00007fc19b415fa0 R15: 00007ffe7333a158 [ 182.763212][ T7538] [ 182.812893][ T7523] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 184.659445][ T7565] FAULT_INJECTION: forcing a failure. [ 184.659445][ T7565] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 184.710861][ T7565] CPU: 0 UID: 0 PID: 7565 Comm: syz.0.397 Not tainted syzkaller #0 PREEMPT(full) [ 184.710898][ T7565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 184.710913][ T7565] Call Trace: [ 184.710921][ T7565] [ 184.710931][ T7565] dump_stack_lvl+0x100/0x190 [ 184.710966][ T7565] should_fail_ex.cold+0x5/0xa [ 184.711001][ T7565] _copy_from_iter+0x1f4/0x1690 [ 184.711031][ T7565] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 184.711073][ T7565] ? __pfx__copy_from_iter+0x10/0x10 [ 184.711118][ T7565] ? alloc_pages_mpol+0x25a/0x540 [ 184.711152][ T7565] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 184.711188][ T7565] copy_page_from_iter+0x238/0x300 [ 184.711219][ T7565] anon_pipe_write+0xaf0/0x18c0 [ 184.711266][ T7565] ? __pfx_anon_pipe_write+0x10/0x10 [ 184.711301][ T7565] ? apparmor_file_permission+0x13f/0x1c0 [ 184.711348][ T7565] ? bpf_lsm_file_permission+0x9/0x10 [ 184.711377][ T7565] ? security_file_permission+0x76/0x210 [ 184.711409][ T7565] ? rw_verify_area+0xce/0x6d0 [ 184.711439][ T7565] vfs_write+0x6ac/0x1070 [ 184.711470][ T7565] ? __pfx_anon_pipe_write+0x10/0x10 [ 184.711513][ T7565] ? __pfx_vfs_write+0x10/0x10 [ 184.711539][ T7565] ? find_held_lock+0x2b/0x80 [ 184.711597][ T7565] ksys_write+0x1f8/0x250 [ 184.711627][ T7565] ? __pfx_ksys_write+0x10/0x10 [ 184.711660][ T7565] ? rcu_is_watching+0x12/0xc0 [ 184.711698][ T7565] do_syscall_64+0x10b/0xf80 [ 184.711730][ T7565] ? clear_bhb_loop+0x40/0x90 [ 184.711763][ T7565] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.711790][ T7565] RIP: 0033:0x7f111af9cdd9 [ 184.711813][ T7565] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 184.711838][ T7565] RSP: 002b:00007f111bea0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 184.711863][ T7565] RAX: ffffffffffffffda RBX: 00007f111b215fa0 RCX: 00007f111af9cdd9 [ 184.711882][ T7565] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 184.711898][ T7565] RBP: 00007f111bea0090 R08: 0000000000000000 R09: 0000000000000000 [ 184.711913][ T7565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 184.711927][ T7565] R13: 00007f111b216038 R14: 00007f111b215fa0 R15: 00007fffeb9191c8 [ 184.711964][ T7565] [ 184.759712][ T7567] syz.2.396 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 185.803837][ T7580] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 186.404426][ T7578] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 186.424154][ T7578] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 186.447342][ T7578] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 186.485427][ T7578] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 187.320875][ T7606] FAULT_INJECTION: forcing a failure. [ 187.320875][ T7606] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 187.379677][ T7606] CPU: 0 UID: 0 PID: 7606 Comm: syz.0.408 Not tainted syzkaller #0 PREEMPT(full) [ 187.379712][ T7606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 187.379725][ T7606] Call Trace: [ 187.379733][ T7606] [ 187.379743][ T7606] dump_stack_lvl+0x100/0x190 [ 187.379777][ T7606] should_fail_ex.cold+0x5/0xa [ 187.379805][ T7606] ? prepare_alloc_pages+0x16d/0x5f0 [ 187.379842][ T7606] should_fail_alloc_page+0xeb/0x140 [ 187.379876][ T7606] prepare_alloc_pages+0x1f0/0x5f0 [ 187.379910][ T7606] ? __up_read+0x2c1/0x6e0 [ 187.379943][ T7606] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 187.380002][ T7606] ? irqentry_exit+0x246/0x790 [ 187.380034][ T7606] ? lockdep_hardirqs_on+0x78/0x100 [ 187.380068][ T7606] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 187.380127][ T7606] ? rep_movs_alternative+0x4a/0x90 [ 187.380179][ T7606] ? _copy_from_iter+0x270/0x1690 [ 187.380208][ T7606] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 187.380249][ T7606] ? policy_nodemask+0xed/0x4f0 [ 187.380283][ T7606] alloc_pages_mpol+0x1fb/0x540 [ 187.380316][ T7606] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 187.380358][ T7606] alloc_pages_noprof+0x1a/0x160 [ 187.380394][ T7606] anon_pipe_write+0xacb/0x18c0 [ 187.380440][ T7606] ? __pfx_anon_pipe_write+0x10/0x10 [ 187.380474][ T7606] ? apparmor_file_permission+0x13f/0x1c0 [ 187.380520][ T7606] ? bpf_lsm_file_permission+0x9/0x10 [ 187.380545][ T7606] ? security_file_permission+0x76/0x210 [ 187.380576][ T7606] ? rw_verify_area+0xce/0x6d0 [ 187.380606][ T7606] vfs_write+0x6ac/0x1070 [ 187.380637][ T7606] ? __pfx_anon_pipe_write+0x10/0x10 [ 187.380670][ T7606] ? __pfx_vfs_write+0x10/0x10 [ 187.380699][ T7606] ? find_held_lock+0x2b/0x80 [ 187.380754][ T7606] ksys_write+0x1f8/0x250 [ 187.380783][ T7606] ? __pfx_ksys_write+0x10/0x10 [ 187.380816][ T7606] ? rcu_is_watching+0x12/0xc0 [ 187.380854][ T7606] do_syscall_64+0x10b/0xf80 [ 187.380884][ T7606] ? clear_bhb_loop+0x40/0x90 [ 187.380916][ T7606] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.380944][ T7606] RIP: 0033:0x7f111af9cdd9 [ 187.380966][ T7606] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 187.380990][ T7606] RSP: 002b:00007f111bea0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 187.381015][ T7606] RAX: ffffffffffffffda RBX: 00007f111b215fa0 RCX: 00007f111af9cdd9 [ 187.381033][ T7606] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 187.381048][ T7606] RBP: 00007f111bea0090 R08: 0000000000000000 R09: 0000000000000000 [ 187.381063][ T7606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 187.381078][ T7606] R13: 00007f111b216038 R14: 00007f111b215fa0 R15: 00007fffeb9191c8 [ 187.381112][ T7606] [ 188.003124][ T30] audit: type=1800 audit(1777600415.195:3): pid=7612 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.407" name="dbroot" dev="configfs" ino=16935 res=0 errno=0 [ 188.122106][ T5628] Bluetooth: hci0: command 0x0c1a tx timeout [ 188.439667][ T5628] Bluetooth: hci1: command 0x0c1a tx timeout [ 188.520935][ T5628] Bluetooth: hci3: command 0x0c1a tx timeout [ 188.520942][ T5624] Bluetooth: hci2: command 0x0c1a tx timeout [ 190.456405][ T7657] block2mtd: error: cannot open device /sys/module/block2mtd/parameters/block2mtd [ 191.335859][ T7677] netlink: 32 bytes leftover after parsing attributes in process `syz.2.422'. [ 191.502913][ T7677] netlink: 13 bytes leftover after parsing attributes in process `syz.2.422'. [ 191.973440][ T7679] kexec: Could not allocate control_code_buffer [ 192.351886][ T7689] EXT4-fs error (device sda1): trigger_test_error:130: comm syz.1.424: 7 [ 194.189806][ T7719] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input8 [ 194.289174][ T1313] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.296643][ T1313] ieee802154 phy1 wpan1: encryption failed: -22 [ 196.303571][ T7764] netlink: 8 bytes leftover after parsing attributes in process `syz.0.443'. [ 200.922539][ T7837] FAULT_INJECTION: forcing a failure. [ 200.922539][ T7837] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 200.959749][ T7837] CPU: 1 UID: 0 PID: 7837 Comm: syz.3.459 Tainted: G L syzkaller #0 PREEMPT(full) [ 200.959793][ T7837] Tainted: [L]=SOFTLOCKUP [ 200.959802][ T7837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 200.959820][ T7837] Call Trace: [ 200.959829][ T7837] [ 200.959839][ T7837] dump_stack_lvl+0x100/0x190 [ 200.959874][ T7837] should_fail_ex.cold+0x5/0xa [ 200.959904][ T7837] ? prepare_alloc_pages+0x16d/0x5f0 [ 200.959941][ T7837] should_fail_alloc_page+0xeb/0x140 [ 200.959973][ T7837] prepare_alloc_pages+0x1f0/0x5f0 [ 200.960004][ T7837] ? __up_read+0x2c1/0x6e0 [ 200.960042][ T7837] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 200.960099][ T7837] ? irqentry_exit+0x246/0x790 [ 200.960129][ T7837] ? lockdep_hardirqs_on+0x78/0x100 [ 200.960157][ T7837] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 200.960206][ T7837] ? rep_movs_alternative+0x4a/0x90 [ 200.960243][ T7837] ? _copy_from_iter+0x270/0x1690 [ 200.960267][ T7837] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 200.960302][ T7837] ? policy_nodemask+0xed/0x4f0 [ 200.960331][ T7837] alloc_pages_mpol+0x1fb/0x540 [ 200.960358][ T7837] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 200.960393][ T7837] alloc_pages_noprof+0x1a/0x160 [ 200.960424][ T7837] anon_pipe_write+0xacb/0x18c0 [ 200.960464][ T7837] ? __pfx_anon_pipe_write+0x10/0x10 [ 200.960493][ T7837] ? apparmor_file_permission+0x13f/0x1c0 [ 200.960531][ T7837] ? bpf_lsm_file_permission+0x9/0x10 [ 200.960553][ T7837] ? security_file_permission+0x76/0x210 [ 200.960580][ T7837] ? rw_verify_area+0xce/0x6d0 [ 200.960605][ T7837] vfs_write+0x6ac/0x1070 [ 200.960631][ T7837] ? __pfx_anon_pipe_write+0x10/0x10 [ 200.960661][ T7837] ? __pfx_vfs_write+0x10/0x10 [ 200.960684][ T7837] ? find_held_lock+0x2b/0x80 [ 200.960736][ T7837] ksys_write+0x1f8/0x250 [ 200.960761][ T7837] ? __pfx_ksys_write+0x10/0x10 [ 200.960793][ T7837] ? rcu_is_watching+0x12/0xc0 [ 200.960824][ T7837] do_syscall_64+0x10b/0xf80 [ 200.960854][ T7837] ? clear_bhb_loop+0x40/0x90 [ 200.960883][ T7837] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 200.960906][ T7837] RIP: 0033:0x7f4c7879cdd9 [ 200.960925][ T7837] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 200.960950][ T7837] RSP: 002b:00007f4c795af028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 200.960972][ T7837] RAX: ffffffffffffffda RBX: 00007f4c78a15fa0 RCX: 00007f4c7879cdd9 [ 200.960987][ T7837] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 200.961001][ T7837] RBP: 00007f4c795af090 R08: 0000000000000000 R09: 0000000000000000 [ 200.961015][ T7837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 200.961036][ T7837] R13: 00007f4c78a16038 R14: 00007f4c78a15fa0 R15: 00007fffa8525088 [ 200.961067][ T7837] [ 201.793865][ T7849] random: crng reseeded on system resumption [ 203.522200][ T7877] random: crng reseeded on system resumption [ 203.550629][ T7874] can: request_module (can-proto-5) failed. [ 203.597731][ T7877] Restarting kernel threads ... [ 203.614756][ T7877] Done restarting kernel threads. [ 203.752958][ T7883] FAULT_INJECTION: forcing a failure. [ 203.752958][ T7883] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 203.795897][ T7883] CPU: 1 UID: 0 PID: 7883 Comm: syz.2.471 Tainted: G L syzkaller #0 PREEMPT(full) [ 203.795939][ T7883] Tainted: [L]=SOFTLOCKUP [ 203.795948][ T7883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 203.795973][ T7883] Call Trace: [ 203.795982][ T7883] [ 203.795996][ T7883] dump_stack_lvl+0x100/0x190 [ 203.796027][ T7883] should_fail_ex.cold+0x5/0xa [ 203.796057][ T7883] _copy_from_iter+0x1f4/0x1690 [ 203.796082][ T7883] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 203.796119][ T7883] ? __pfx__copy_from_iter+0x10/0x10 [ 203.796159][ T7883] ? alloc_pages_mpol+0x25a/0x540 [ 203.796188][ T7883] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 203.796220][ T7883] copy_page_from_iter+0x238/0x300 [ 203.796246][ T7883] anon_pipe_write+0xaf0/0x18c0 [ 203.796286][ T7883] ? __pfx_anon_pipe_write+0x10/0x10 [ 203.796318][ T7883] ? apparmor_file_permission+0x13f/0x1c0 [ 203.796361][ T7883] ? bpf_lsm_file_permission+0x9/0x10 [ 203.796384][ T7883] ? security_file_permission+0x76/0x210 [ 203.796411][ T7883] ? rw_verify_area+0xce/0x6d0 [ 203.796436][ T7883] vfs_write+0x6ac/0x1070 [ 203.796463][ T7883] ? __pfx_anon_pipe_write+0x10/0x10 [ 203.796493][ T7883] ? __pfx_vfs_write+0x10/0x10 [ 203.796517][ T7883] ? find_held_lock+0x2b/0x80 [ 203.796566][ T7883] ksys_write+0x1f8/0x250 [ 203.796592][ T7883] ? __pfx_ksys_write+0x10/0x10 [ 203.796620][ T7883] ? rcu_is_watching+0x12/0xc0 [ 203.796652][ T7883] do_syscall_64+0x10b/0xf80 [ 203.796680][ T7883] ? clear_bhb_loop+0x40/0x90 [ 203.796708][ T7883] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.796733][ T7883] RIP: 0033:0x7fc19b19cdd9 [ 203.796753][ T7883] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 203.796777][ T7883] RSP: 002b:00007fc19bfa6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 203.796799][ T7883] RAX: ffffffffffffffda RBX: 00007fc19b415fa0 RCX: 00007fc19b19cdd9 [ 203.796815][ T7883] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 203.796829][ T7883] RBP: 00007fc19bfa6090 R08: 0000000000000000 R09: 0000000000000000 [ 203.796844][ T7883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 203.796858][ T7883] R13: 00007fc19b416038 R14: 00007fc19b415fa0 R15: 00007ffe7333a158 [ 203.796890][ T7883] [ 204.550976][ T7893] tc_dump_action: action bad kind [ 205.564793][ T7912] FAULT_INJECTION: forcing a failure. [ 205.564793][ T7912] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 205.609739][ T7912] CPU: 0 UID: 0 PID: 7912 Comm: syz.2.481 Tainted: G L syzkaller #0 PREEMPT(full) [ 205.609782][ T7912] Tainted: [L]=SOFTLOCKUP [ 205.609791][ T7912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 205.609806][ T7912] Call Trace: [ 205.609814][ T7912] [ 205.609824][ T7912] dump_stack_lvl+0x100/0x190 [ 205.609858][ T7912] should_fail_ex.cold+0x5/0xa [ 205.609887][ T7912] ? prepare_alloc_pages+0x16d/0x5f0 [ 205.609922][ T7912] should_fail_alloc_page+0xeb/0x140 [ 205.609956][ T7912] prepare_alloc_pages+0x1f0/0x5f0 [ 205.609990][ T7912] ? __up_read+0x2c1/0x6e0 [ 205.610024][ T7912] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 205.610082][ T7912] ? irqentry_exit+0x246/0x790 [ 205.610113][ T7912] ? lockdep_hardirqs_on+0x78/0x100 [ 205.610146][ T7912] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 205.610211][ T7912] ? rep_movs_alternative+0x4a/0x90 [ 205.610258][ T7912] ? _copy_from_iter+0x270/0x1690 [ 205.610287][ T7912] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 205.610351][ T7912] ? policy_nodemask+0xed/0x4f0 [ 205.610386][ T7912] alloc_pages_mpol+0x1fb/0x540 [ 205.610442][ T7912] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 205.610484][ T7912] alloc_pages_noprof+0x1a/0x160 [ 205.610525][ T7912] anon_pipe_write+0xacb/0x18c0 [ 205.610572][ T7912] ? __pfx_anon_pipe_write+0x10/0x10 [ 205.610611][ T7912] ? apparmor_file_permission+0x13f/0x1c0 [ 205.610668][ T7912] ? bpf_lsm_file_permission+0x9/0x10 [ 205.610696][ T7912] ? security_file_permission+0x76/0x210 [ 205.610727][ T7912] ? rw_verify_area+0xce/0x6d0 [ 205.610762][ T7912] vfs_write+0x6ac/0x1070 [ 205.610793][ T7912] ? __pfx_anon_pipe_write+0x10/0x10 [ 205.610828][ T7912] ? __pfx_vfs_write+0x10/0x10 [ 205.610856][ T7912] ? find_held_lock+0x2b/0x80 [ 205.610913][ T7912] ksys_write+0x1f8/0x250 [ 205.610943][ T7912] ? __pfx_ksys_write+0x10/0x10 [ 205.610975][ T7912] ? rcu_is_watching+0x12/0xc0 [ 205.611011][ T7912] do_syscall_64+0x10b/0xf80 [ 205.611042][ T7912] ? clear_bhb_loop+0x40/0x90 [ 205.611075][ T7912] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 205.611104][ T7912] RIP: 0033:0x7fc19b19cdd9 [ 205.611126][ T7912] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 205.611152][ T7912] RSP: 002b:00007fc19bfa6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 205.611178][ T7912] RAX: ffffffffffffffda RBX: 00007fc19b415fa0 RCX: 00007fc19b19cdd9 [ 205.611197][ T7912] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 205.611213][ T7912] RBP: 00007fc19bfa6090 R08: 0000000000000000 R09: 0000000000000000 [ 205.611229][ T7912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 205.611245][ T7912] R13: 00007fc19b416038 R14: 00007fc19b415fa0 R15: 00007ffe7333a158 [ 205.611283][ T7912] [ 206.503830][ T7916] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000 [ 206.561404][ T7916] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 206.611645][ T7916] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 206.643000][ T7916] page_type: f5(slab) [ 206.675629][ T7916] raw: 00fff00000000040 ffff88801ce96a00 dead000000000100 dead000000000122 [ 206.716055][ T7916] raw: 0000000000000000 0000000800150015 00000000f5000000 0000000000000000 [ 206.780158][ T7916] head: 00fff00000000040 ffff88801ce96a00 dead000000000100 dead000000000122 [ 206.809696][ T7916] head: 0000000000000000 0000000800150015 00000000f5000000 0000000000000000 [ 206.846094][ T7916] head: 00fff00000000003 fffffffffffffe01 00000000ffffffff 00000000ffffffff [ 206.902666][ T7916] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 206.992882][ T7916] page dumped because: unmovable page [ 207.045159][ T7916] page_owner tracks the page as allocated [ 207.094283][ T7916] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5006, tgid 5006 (udevd), ts 49369365964, free_ts 49362030087 [ 207.203422][ T7916] post_alloc_hook+0x153/0x170 [ 207.209847][ T7916] get_page_from_freelist+0x11a6/0x33b0 [ 207.216203][ T7916] __alloc_frozen_pages_noprof+0x27c/0x2bc0 [ 207.223462][ T7916] new_slab+0xa6/0x6c0 [ 207.228423][ T7916] refill_objects+0x277/0x420 [ 207.236792][ T7916] __pcs_replace_empty_main+0x375/0x650 [ 207.242871][ T7916] kmem_cache_alloc_lru_noprof+0x485/0x6e0 [ 207.248883][ T7916] shmem_alloc_inode+0x25/0x50 [ 207.254021][ T7916] alloc_inode+0x68/0x250 [ 207.258439][ T7916] new_inode+0x22/0x1c0 [ 207.262961][ T7916] shmem_get_inode+0x1e3/0xfb0 [ 207.267934][ T7916] shmem_symlink+0x11f/0xa00 [ 207.272722][ T7916] vfs_symlink+0x178/0x4d0 [ 207.277337][ T7916] filename_symlinkat+0x2a6/0x560 [ 207.282638][ T7916] __x64_sys_symlink+0x79/0xb0 [ 207.288877][ T7916] do_syscall_64+0x10b/0xf80 [ 207.293828][ T7916] page last free pid 5002 tgid 5002 stack trace: [ 207.300693][ T7916] __free_frozen_pages+0x747/0x1040 [ 207.307634][ T7916] qlist_free_all+0x47/0xf0 [ 207.313803][ T7916] kasan_quarantine_reduce+0x1a0/0x1f0 [ 207.320070][ T7916] __kasan_slab_alloc+0x69/0x90 [ 207.328843][ T7916] __kmalloc_noprof+0x2b9/0x850 [ 207.344302][ T7916] tomoyo_realpath_from_path+0xb6/0x690 [ 207.381609][ T7916] tomoyo_check_open_permission+0x2af/0x3c0 [ 207.400309][ T7916] tomoyo_file_open+0x6b/0x90 [ 207.437611][ T7916] security_file_open+0xb5/0x1e0 [ 207.470914][ T7916] do_dentry_open+0x5aa/0x1660 [ 207.490927][ T7916] vfs_open+0x82/0x3f0 [ 207.502925][ T7916] path_openat+0x208c/0x31a0 [ 207.544005][ T7916] do_file_open+0x20e/0x430 [ 207.559476][ T7916] do_sys_openat2+0x10d/0x1e0 [ 207.586668][ T7916] __x64_sys_openat+0x12d/0x210 [ 207.623096][ T7916] do_syscall_64+0x10b/0xf80 [ 208.398377][ T7959] FAULT_INJECTION: forcing a failure. [ 208.398377][ T7959] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 208.446870][ T7959] CPU: 0 UID: 0 PID: 7959 Comm: syz.2.490 Tainted: G L syzkaller #0 PREEMPT(full) [ 208.446913][ T7959] Tainted: [L]=SOFTLOCKUP [ 208.446922][ T7959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 208.446938][ T7959] Call Trace: [ 208.446946][ T7959] [ 208.446957][ T7959] dump_stack_lvl+0x100/0x190 [ 208.446993][ T7959] should_fail_ex.cold+0x5/0xa [ 208.447030][ T7959] _copy_from_iter+0x1f4/0x1690 [ 208.447059][ T7959] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 208.447104][ T7959] ? __pfx__copy_from_iter+0x10/0x10 [ 208.447151][ T7959] ? alloc_pages_mpol+0x25a/0x540 [ 208.447184][ T7959] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 208.447221][ T7959] copy_page_from_iter+0x238/0x300 [ 208.447252][ T7959] anon_pipe_write+0xaf0/0x18c0 [ 208.447299][ T7959] ? __pfx_anon_pipe_write+0x10/0x10 [ 208.447333][ T7959] ? apparmor_file_permission+0x13f/0x1c0 [ 208.447377][ T7959] ? bpf_lsm_file_permission+0x9/0x10 [ 208.447403][ T7959] ? security_file_permission+0x76/0x210 [ 208.447431][ T7959] ? rw_verify_area+0xce/0x6d0 [ 208.447459][ T7959] vfs_write+0x6ac/0x1070 [ 208.447489][ T7959] ? __pfx_anon_pipe_write+0x10/0x10 [ 208.447522][ T7959] ? __pfx_vfs_write+0x10/0x10 [ 208.447549][ T7959] ? find_held_lock+0x2b/0x80 [ 208.447611][ T7959] ksys_write+0x1f8/0x250 [ 208.447644][ T7959] ? __pfx_ksys_write+0x10/0x10 [ 208.447676][ T7959] ? rcu_is_watching+0x12/0xc0 [ 208.447713][ T7959] do_syscall_64+0x10b/0xf80 [ 208.447743][ T7959] ? clear_bhb_loop+0x40/0x90 [ 208.447778][ T7959] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 208.447805][ T7959] RIP: 0033:0x7fc19b19cdd9 [ 208.447827][ T7959] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 208.447851][ T7959] RSP: 002b:00007fc19bfa6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 208.447875][ T7959] RAX: ffffffffffffffda RBX: 00007fc19b415fa0 RCX: 00007fc19b19cdd9 [ 208.447892][ T7959] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 208.447907][ T7959] RBP: 00007fc19bfa6090 R08: 0000000000000000 R09: 0000000000000000 [ 208.447923][ T7959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 208.447939][ T7959] R13: 00007fc19b416038 R14: 00007fc19b415fa0 R15: 00007ffe7333a158 [ 208.447976][ T7959] [ 211.263291][ T8017] netlink: 28 bytes leftover after parsing attributes in process `syz.2.500'. [ 211.729683][ T8008] syz.2.500 (8008) used greatest stack depth: 18864 bytes left [ 212.178534][ T8029] tipc: Started in network mode [ 212.196701][ T8029] tipc: Node identity ffffffff, cluster identity 4711 [ 212.224476][ T8029] tipc: Node number set to 4294967295 [ 213.347346][ T8058] FAULT_INJECTION: forcing a failure. [ 213.347346][ T8058] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 213.405723][ T8058] CPU: 0 UID: 0 PID: 8058 Comm: syz.1.511 Tainted: G L syzkaller #0 PREEMPT(full) [ 213.405763][ T8058] Tainted: [L]=SOFTLOCKUP [ 213.405772][ T8058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 213.405787][ T8058] Call Trace: [ 213.405795][ T8058] [ 213.405802][ T8058] dump_stack_lvl+0x100/0x190 [ 213.405824][ T8058] should_fail_ex.cold+0x5/0xa [ 213.405844][ T8058] _copy_from_iter+0x1f4/0x1690 [ 213.405860][ T8058] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 213.405884][ T8058] ? __pfx__copy_from_iter+0x10/0x10 [ 213.405912][ T8058] ? alloc_pages_mpol+0x25a/0x540 [ 213.405934][ T8058] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 213.405954][ T8058] copy_page_from_iter+0x238/0x300 [ 213.405971][ T8058] anon_pipe_write+0xaf0/0x18c0 [ 213.405996][ T8058] ? __pfx_anon_pipe_write+0x10/0x10 [ 213.406015][ T8058] ? apparmor_file_permission+0x13f/0x1c0 [ 213.406040][ T8058] ? bpf_lsm_file_permission+0x9/0x10 [ 213.406055][ T8058] ? security_file_permission+0x76/0x210 [ 213.406072][ T8058] ? rw_verify_area+0xce/0x6d0 [ 213.406087][ T8058] vfs_write+0x6ac/0x1070 [ 213.406104][ T8058] ? __pfx_anon_pipe_write+0x10/0x10 [ 213.406123][ T8058] ? __pfx_vfs_write+0x10/0x10 [ 213.406138][ T8058] ? find_held_lock+0x2b/0x80 [ 213.406175][ T8058] ksys_write+0x1f8/0x250 [ 213.406192][ T8058] ? __pfx_ksys_write+0x10/0x10 [ 213.406210][ T8058] ? rcu_is_watching+0x12/0xc0 [ 213.406230][ T8058] do_syscall_64+0x10b/0xf80 [ 213.406248][ T8058] ? clear_bhb_loop+0x40/0x90 [ 213.406267][ T8058] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 213.406282][ T8058] RIP: 0033:0x7f1d4659cdd9 [ 213.406295][ T8058] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 213.406309][ T8058] RSP: 002b:00007f1d474c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 213.406323][ T8058] RAX: ffffffffffffffda RBX: 00007f1d46815fa0 RCX: 00007f1d4659cdd9 [ 213.406333][ T8058] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 213.406342][ T8058] RBP: 00007f1d474c6090 R08: 0000000000000000 R09: 0000000000000000 [ 213.406351][ T8058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 213.406359][ T8058] R13: 00007f1d46816038 R14: 00007f1d46815fa0 R15: 00007ffc71509258 [ 213.406378][ T8058] [ 216.677912][ T8107] FAULT_INJECTION: forcing a failure. [ 216.677912][ T8107] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 216.741799][ T8107] CPU: 0 UID: 0 PID: 8107 Comm: syz.1.521 Tainted: G L syzkaller #0 PREEMPT(full) [ 216.741841][ T8107] Tainted: [L]=SOFTLOCKUP [ 216.741850][ T8107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 216.741867][ T8107] Call Trace: [ 216.741876][ T8107] [ 216.741886][ T8107] dump_stack_lvl+0x100/0x190 [ 216.741920][ T8107] should_fail_ex.cold+0x5/0xa [ 216.741951][ T8107] _copy_from_iter+0x1f4/0x1690 [ 216.741980][ T8107] ? __pfx__copy_from_iter+0x10/0x10 [ 216.742031][ T8107] copy_page_from_iter+0x238/0x300 [ 216.742058][ T8107] anon_pipe_write+0xaf0/0x18c0 [ 216.742098][ T8107] ? __pfx_anon_pipe_write+0x10/0x10 [ 216.742127][ T8107] ? __pfx_autoremove_wake_function+0x10/0x10 [ 216.742165][ T8107] ? bpf_lsm_file_permission+0x9/0x10 [ 216.742187][ T8107] ? security_file_permission+0x76/0x210 [ 216.742215][ T8107] ? rw_verify_area+0xce/0x6d0 [ 216.742240][ T8107] vfs_write+0x6ac/0x1070 [ 216.742266][ T8107] ? __pfx_anon_pipe_write+0x10/0x10 [ 216.742296][ T8107] ? __pfx_vfs_write+0x10/0x10 [ 216.742320][ T8107] ? find_held_lock+0x2b/0x80 [ 216.742369][ T8107] ksys_write+0x1f8/0x250 [ 216.742394][ T8107] ? __pfx_ksys_write+0x10/0x10 [ 216.742431][ T8107] ? rcu_is_watching+0x12/0xc0 [ 216.742463][ T8107] do_syscall_64+0x10b/0xf80 [ 216.742492][ T8107] ? clear_bhb_loop+0x40/0x90 [ 216.742521][ T8107] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 216.742545][ T8107] RIP: 0033:0x7f1d4659cdd9 [ 216.742569][ T8107] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 216.742591][ T8107] RSP: 002b:00007f1d474c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 216.742614][ T8107] RAX: ffffffffffffffda RBX: 00007f1d46815fa0 RCX: 00007f1d4659cdd9 [ 216.742630][ T8107] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 216.742685][ T8107] RBP: 00007f1d474c6090 R08: 0000000000000000 R09: 0000000000000000 [ 216.742700][ T8107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 216.742714][ T8107] R13: 00007f1d46816038 R14: 00007f1d46815fa0 R15: 00007ffc71509258 [ 216.742745][ T8107] [ 219.270591][ T8186] FAULT_INJECTION: forcing a failure. [ 219.270591][ T8186] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 219.299777][ T8186] CPU: 0 UID: 0 PID: 8186 Comm: syz.3.534 Tainted: G L syzkaller #0 PREEMPT(full) [ 219.299815][ T8186] Tainted: [L]=SOFTLOCKUP [ 219.299823][ T8186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 219.299836][ T8186] Call Trace: [ 219.299844][ T8186] [ 219.299854][ T8186] dump_stack_lvl+0x100/0x190 [ 219.299889][ T8186] should_fail_ex.cold+0x5/0xa [ 219.299921][ T8186] _copy_from_iter+0x1f4/0x1690 [ 219.299955][ T8186] ? __pfx__copy_from_iter+0x10/0x10 [ 219.300009][ T8186] copy_page_from_iter+0x238/0x300 [ 219.300038][ T8186] anon_pipe_write+0xaf0/0x18c0 [ 219.300083][ T8186] ? __pfx_anon_pipe_write+0x10/0x10 [ 219.300114][ T8186] ? apparmor_file_permission+0x13f/0x1c0 [ 219.300159][ T8186] ? bpf_lsm_file_permission+0x9/0x10 [ 219.300184][ T8186] ? security_file_permission+0x76/0x210 [ 219.300215][ T8186] ? rw_verify_area+0xce/0x6d0 [ 219.300244][ T8186] vfs_write+0x6ac/0x1070 [ 219.300274][ T8186] ? __pfx_anon_pipe_write+0x10/0x10 [ 219.300309][ T8186] ? __pfx_vfs_write+0x10/0x10 [ 219.300336][ T8186] ? find_held_lock+0x2b/0x80 [ 219.300392][ T8186] ksys_write+0x1f8/0x250 [ 219.300420][ T8186] ? __pfx_ksys_write+0x10/0x10 [ 219.300453][ T8186] ? rcu_is_watching+0x12/0xc0 [ 219.300488][ T8186] do_syscall_64+0x10b/0xf80 [ 219.300520][ T8186] ? clear_bhb_loop+0x40/0x90 [ 219.300553][ T8186] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 219.300580][ T8186] RIP: 0033:0x7f4c7879cdd9 [ 219.300601][ T8186] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 219.300627][ T8186] RSP: 002b:00007f4c795af028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 219.300653][ T8186] RAX: ffffffffffffffda RBX: 00007f4c78a15fa0 RCX: 00007f4c7879cdd9 [ 219.300671][ T8186] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 219.300687][ T8186] RBP: 00007f4c795af090 R08: 0000000000000000 R09: 0000000000000000 [ 219.300703][ T8186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 219.300719][ T8186] R13: 00007f4c78a16038 R14: 00007f4c78a15fa0 R15: 00007fffa8525088 [ 219.300761][ T8186] [ 220.206128][ T8202] can: request_module (can-proto-3) failed. [ 220.728319][ T5624] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5 [ 220.977405][ T5624] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 220.984748][ T5624] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 221.001311][ T5624] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 221.001412][ T5624] Bluetooth: hci0: Malformed LE Event: 0x0d [ 222.789315][ T8246] FAULT_INJECTION: forcing a failure. [ 222.789315][ T8246] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 222.815580][ T8246] CPU: 1 UID: 0 PID: 8246 Comm: syz.0.546 Tainted: G L syzkaller #0 PREEMPT(full) [ 222.815621][ T8246] Tainted: [L]=SOFTLOCKUP [ 222.815629][ T8246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 222.815638][ T8246] Call Trace: [ 222.815643][ T8246] [ 222.815650][ T8246] dump_stack_lvl+0x100/0x190 [ 222.815670][ T8246] should_fail_ex.cold+0x5/0xa [ 222.815687][ T8246] ? prepare_alloc_pages+0x16d/0x5f0 [ 222.815708][ T8246] should_fail_alloc_page+0xeb/0x140 [ 222.815727][ T8246] prepare_alloc_pages+0x1f0/0x5f0 [ 222.815746][ T8246] ? __up_read+0x2c1/0x6e0 [ 222.815764][ T8246] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 222.815796][ T8246] ? irqentry_exit+0x246/0x790 [ 222.815814][ T8246] ? lockdep_hardirqs_on+0x78/0x100 [ 222.815832][ T8246] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 222.815863][ T8246] ? rep_movs_alternative+0x4a/0x90 [ 222.815890][ T8246] ? _copy_from_iter+0x270/0x1690 [ 222.815906][ T8246] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 222.815928][ T8246] ? policy_nodemask+0xed/0x4f0 [ 222.815947][ T8246] alloc_pages_mpol+0x1fb/0x540 [ 222.815964][ T8246] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 222.815996][ T8246] alloc_pages_noprof+0x1a/0x160 [ 222.816023][ T8246] anon_pipe_write+0xacb/0x18c0 [ 222.816048][ T8246] ? __pfx_anon_pipe_write+0x10/0x10 [ 222.816067][ T8246] ? apparmor_file_permission+0x13f/0x1c0 [ 222.816092][ T8246] ? bpf_lsm_file_permission+0x9/0x10 [ 222.816106][ T8246] ? security_file_permission+0x76/0x210 [ 222.816123][ T8246] ? rw_verify_area+0xce/0x6d0 [ 222.816140][ T8246] vfs_write+0x6ac/0x1070 [ 222.816156][ T8246] ? __pfx_anon_pipe_write+0x10/0x10 [ 222.816176][ T8246] ? __pfx_vfs_write+0x10/0x10 [ 222.816191][ T8246] ? find_held_lock+0x2b/0x80 [ 222.816223][ T8246] ksys_write+0x1f8/0x250 [ 222.816240][ T8246] ? __pfx_ksys_write+0x10/0x10 [ 222.816258][ T8246] ? rcu_is_watching+0x12/0xc0 [ 222.816278][ T8246] do_syscall_64+0x10b/0xf80 [ 222.816295][ T8246] ? clear_bhb_loop+0x40/0x90 [ 222.816313][ T8246] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 222.816328][ T8246] RIP: 0033:0x7f111af9cdd9 [ 222.816342][ T8246] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 222.816356][ T8246] RSP: 002b:00007f111bea0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 222.816370][ T8246] RAX: ffffffffffffffda RBX: 00007f111b215fa0 RCX: 00007f111af9cdd9 [ 222.816380][ T8246] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 222.816389][ T8246] RBP: 00007f111bea0090 R08: 0000000000000000 R09: 0000000000000000 [ 222.816398][ T8246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 222.816406][ T8246] R13: 00007f111b216038 R14: 00007f111b215fa0 R15: 00007fffeb9191c8 [ 222.816425][ T8246] [ 223.657801][ T8260] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 224.455281][ T8280] FAULT_INJECTION: forcing a failure. [ 224.455281][ T8280] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 224.494587][ T8280] CPU: 1 UID: 0 PID: 8280 Comm: syz.0.556 Tainted: G L syzkaller #0 PREEMPT(full) [ 224.494612][ T8280] Tainted: [L]=SOFTLOCKUP [ 224.494618][ T8280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 224.494626][ T8280] Call Trace: [ 224.494632][ T8280] [ 224.494638][ T8280] dump_stack_lvl+0x100/0x190 [ 224.494659][ T8280] should_fail_ex.cold+0x5/0xa [ 224.494679][ T8280] _copy_from_iter+0x1f4/0x1690 [ 224.494696][ T8280] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 224.494720][ T8280] ? __pfx__copy_from_iter+0x10/0x10 [ 224.494745][ T8280] ? alloc_pages_mpol+0x25a/0x540 [ 224.494764][ T8280] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 224.494784][ T8280] copy_page_from_iter+0x238/0x300 [ 224.494801][ T8280] anon_pipe_write+0xaf0/0x18c0 [ 224.494826][ T8280] ? __pfx_anon_pipe_write+0x10/0x10 [ 224.494845][ T8280] ? __pfx_autoremove_wake_function+0x10/0x10 [ 224.494869][ T8280] ? bpf_lsm_file_permission+0x9/0x10 [ 224.494883][ T8280] ? security_file_permission+0x76/0x210 [ 224.494901][ T8280] ? rw_verify_area+0xce/0x6d0 [ 224.494917][ T8280] vfs_write+0x6ac/0x1070 [ 224.494934][ T8280] ? __pfx_anon_pipe_write+0x10/0x10 [ 224.494961][ T8280] ? __pfx_vfs_write+0x10/0x10 [ 224.494976][ T8280] ? find_held_lock+0x2b/0x80 [ 224.495007][ T8280] ksys_write+0x1f8/0x250 [ 224.495023][ T8280] ? __pfx_ksys_write+0x10/0x10 [ 224.495041][ T8280] ? rcu_is_watching+0x12/0xc0 [ 224.495061][ T8280] do_syscall_64+0x10b/0xf80 [ 224.495079][ T8280] ? clear_bhb_loop+0x40/0x90 [ 224.495098][ T8280] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 224.495113][ T8280] RIP: 0033:0x7f111af9cdd9 [ 224.495126][ T8280] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 224.495140][ T8280] RSP: 002b:00007f111bea0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 224.495155][ T8280] RAX: ffffffffffffffda RBX: 00007f111b215fa0 RCX: 00007f111af9cdd9 [ 224.495165][ T8280] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 224.495174][ T8280] RBP: 00007f111bea0090 R08: 0000000000000000 R09: 0000000000000000 [ 224.495183][ T8280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 224.495191][ T8280] R13: 00007f111b216038 R14: 00007f111b215fa0 R15: 00007fffeb9191c8 [ 224.495210][ T8280] [ 225.577252][ T8295] smpboot: CPU 1 is now offline [ 227.263772][ T8323] FAULT_INJECTION: forcing a failure. [ 227.263772][ T8323] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 227.325427][ T8323] CPU: 0 UID: 0 PID: 8323 Comm: syz.2.565 Tainted: G L syzkaller #0 PREEMPT(full) [ 227.325452][ T8323] Tainted: [L]=SOFTLOCKUP [ 227.325457][ T8323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 227.325466][ T8323] Call Trace: [ 227.325472][ T8323] [ 227.325478][ T8323] dump_stack_lvl+0x100/0x190 [ 227.325502][ T8323] should_fail_ex.cold+0x5/0xa [ 227.325519][ T8323] ? prepare_alloc_pages+0x16d/0x5f0 [ 227.325540][ T8323] should_fail_alloc_page+0xeb/0x140 [ 227.325559][ T8323] prepare_alloc_pages+0x1f0/0x5f0 [ 227.325577][ T8323] ? __up_read+0x2c1/0x6e0 [ 227.325596][ T8323] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 227.325628][ T8323] ? irqentry_exit+0x246/0x790 [ 227.325647][ T8323] ? lockdep_hardirqs_on+0x78/0x100 [ 227.325665][ T8323] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 227.325696][ T8323] ? rep_movs_alternative+0x4a/0x90 [ 227.325725][ T8323] ? _copy_from_iter+0x270/0x1690 [ 227.325741][ T8323] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 227.325764][ T8323] ? policy_nodemask+0xed/0x4f0 [ 227.325782][ T8323] alloc_pages_mpol+0x1fb/0x540 [ 227.325800][ T8323] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 227.325822][ T8323] alloc_pages_noprof+0x1a/0x160 [ 227.325842][ T8323] anon_pipe_write+0xacb/0x18c0 [ 227.325867][ T8323] ? __pfx_anon_pipe_write+0x10/0x10 [ 227.325886][ T8323] ? apparmor_file_permission+0x13f/0x1c0 [ 227.325911][ T8323] ? bpf_lsm_file_permission+0x9/0x10 [ 227.325926][ T8323] ? security_file_permission+0x76/0x210 [ 227.325942][ T8323] ? rw_verify_area+0xce/0x6d0 [ 227.325959][ T8323] vfs_write+0x6ac/0x1070 [ 227.325975][ T8323] ? __pfx_anon_pipe_write+0x10/0x10 [ 227.325995][ T8323] ? __pfx_vfs_write+0x10/0x10 [ 227.326009][ T8323] ? find_held_lock+0x2b/0x80 [ 227.326040][ T8323] ksys_write+0x1f8/0x250 [ 227.326056][ T8323] ? __pfx_ksys_write+0x10/0x10 [ 227.326074][ T8323] ? rcu_is_watching+0x12/0xc0 [ 227.326094][ T8323] do_syscall_64+0x10b/0xf80 [ 227.326111][ T8323] ? clear_bhb_loop+0x40/0x90 [ 227.326129][ T8323] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 227.326144][ T8323] RIP: 0033:0x7fc19b19cdd9 [ 227.326158][ T8323] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 227.326172][ T8323] RSP: 002b:00007fc19bfa6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 227.326187][ T8323] RAX: ffffffffffffffda RBX: 00007fc19b415fa0 RCX: 00007fc19b19cdd9 [ 227.326196][ T8323] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 227.326205][ T8323] RBP: 00007fc19bfa6090 R08: 0000000000000000 R09: 0000000000000000 [ 227.326214][ T8323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 227.326222][ T8323] R13: 00007fc19b416038 R14: 00007fc19b415fa0 R15: 00007ffe7333a158 [ 227.326241][ T8323] [ 228.029633][ T8333] netlink: 4 bytes leftover after parsing attributes in process `syz.1.567'. [ 228.561208][ T8318] FAULT_INJECTION: forcing a failure. [ 228.561208][ T8318] name failslab, interval 1, probability 0, space 0, times 0 [ 228.606221][ T8318] CPU: 0 UID: 0 PID: 8318 Comm: syz.0.563 Tainted: G L syzkaller #0 PREEMPT(full) [ 228.606248][ T8318] Tainted: [L]=SOFTLOCKUP [ 228.606254][ T8318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 228.606264][ T8318] Call Trace: [ 228.606270][ T8318] [ 228.606277][ T8318] dump_stack_lvl+0x100/0x190 [ 228.606298][ T8318] should_fail_ex.cold+0x5/0xa [ 228.606318][ T8318] should_failslab+0xc2/0x120 [ 228.606337][ T8318] __kmalloc_cache_noprof+0x7a/0x6f0 [ 228.606358][ T8318] ? sctp_auth_shkey_create+0x9e/0x210 [ 228.606385][ T8318] sctp_auth_shkey_create+0x9e/0x210 [ 228.606409][ T8318] sctp_endpoint_new+0x589/0xb20 [ 228.606434][ T8318] ? __pfx_sctp_endpoint_new+0x10/0x10 [ 228.606459][ T8318] ? lockdep_init_map_type+0x5c/0x250 [ 228.606477][ T8318] sctp_init_sock+0xe2b/0x1300 [ 228.606505][ T8318] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 228.606528][ T8318] sctp_v6_init_sock+0x16/0x70 [ 228.606550][ T8318] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 228.606572][ T8318] inet6_create+0xb21/0x12b0 [ 228.606599][ T8318] ? inet6_create+0x7f/0x12b0 [ 228.606617][ T8318] __sock_create+0x339/0x860 [ 228.606642][ T8318] inet_ctl_sock_create+0x94/0x230 [ 228.606664][ T8318] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 228.606684][ T8318] ? timer_init_key+0x155/0x330 [ 228.606710][ T8318] ? __pfx_sctp_ctrlsock_init+0x10/0x10 [ 228.606731][ T8318] sctp_ctrlsock_init+0x40/0xd0 [ 228.606751][ T8318] ops_init+0x1e2/0x5f0 [ 228.606769][ T8318] setup_net+0x118/0x3a0 [ 228.606785][ T8318] ? __pfx_setup_net+0x10/0x10 [ 228.606801][ T8318] ? mutex_init_lockdep+0xf1/0x120 [ 228.606820][ T8318] copy_net_ns+0x46f/0x7c0 [ 228.606839][ T8318] create_new_namespaces+0x3ea/0xac0 [ 228.606862][ T8318] unshare_nsproxy_namespaces+0xf2/0x220 [ 228.606883][ T8318] ksys_unshare+0x438/0xab0 [ 228.606906][ T8318] ? __pfx_ksys_unshare+0x10/0x10 [ 228.606926][ T8318] ? xfd_validate_state+0x129/0x190 [ 228.606948][ T8318] __x64_sys_unshare+0x31/0x40 [ 228.606969][ T8318] do_syscall_64+0x10b/0xf80 [ 228.606986][ T8318] ? clear_bhb_loop+0x40/0x90 [ 228.607004][ T8318] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 228.607019][ T8318] RIP: 0033:0x7f111af9cdd9 [ 228.607033][ T8318] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 228.607047][ T8318] RSP: 002b:00007f111bea0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 228.607063][ T8318] RAX: ffffffffffffffda RBX: 00007f111b215fa0 RCX: 00007f111af9cdd9 [ 228.607073][ T8318] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 228.607082][ T8318] RBP: 00007f111b032d69 R08: 0000000000000000 R09: 0000000000000000 [ 228.607091][ T8318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 228.607099][ T8318] R13: 00007f111b216038 R14: 00007f111b215fa0 R15: 00007fffeb9191c8 [ 228.607119][ T8318] [ 230.740957][ T5624] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 230.740982][ T5624] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 230.756630][ T5624] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 230.756682][ T5624] Bluetooth: hci1: Malformed LE Event: 0x0d [ 230.788661][ T5624] Bluetooth: hci1: unexpected event 0x1d length: 6 > 5 [ 231.290145][ T8401] netlink: 28 bytes leftover after parsing attributes in process `syz.2.583'. [ 231.876513][ T8411] FAULT_INJECTION: forcing a failure. [ 231.876513][ T8411] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 231.947625][ T8411] CPU: 0 UID: 0 PID: 8411 Comm: syz.1.585 Tainted: G L syzkaller #0 PREEMPT(full) [ 231.947652][ T8411] Tainted: [L]=SOFTLOCKUP [ 231.947657][ T8411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 231.947666][ T8411] Call Trace: [ 231.947672][ T8411] [ 231.947678][ T8411] dump_stack_lvl+0x100/0x190 [ 231.947700][ T8411] should_fail_ex.cold+0x5/0xa [ 231.947721][ T8411] _copy_from_user+0x2e/0xd0 [ 231.947745][ T8411] move_addr_to_kernel+0x65/0x170 [ 231.947772][ T8411] __sys_connect+0xb5/0x170 [ 231.947795][ T8411] ? __pfx___sys_connect+0x10/0x10 [ 231.947829][ T8411] __x64_sys_connect+0x72/0xb0 [ 231.947849][ T8411] ? lockdep_hardirqs_on+0x78/0x100 [ 231.947867][ T8411] do_syscall_64+0x10b/0xf80 [ 231.947884][ T8411] ? clear_bhb_loop+0x40/0x90 [ 231.947902][ T8411] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 231.947918][ T8411] RIP: 0033:0x7f1d4659cdd9 [ 231.947931][ T8411] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 231.947946][ T8411] RSP: 002b:00007f1d474c6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 231.947961][ T8411] RAX: ffffffffffffffda RBX: 00007f1d46815fa0 RCX: 00007f1d4659cdd9 [ 231.947971][ T8411] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 231.947980][ T8411] RBP: 00007f1d46632d69 R08: 0000000000000000 R09: 0000000000000000 [ 231.947989][ T8411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 231.947997][ T8411] R13: 00007f1d46816038 R14: 00007f1d46815fa0 R15: 00007ffc71509258 [ 231.948016][ T8411] [ 232.271024][ T8420] program syz.1.586 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 232.296051][ T8422] program syz.1.586 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 234.081405][ T8473] block2mtd: illegal erase size [ 234.172743][ T8460] kexec: Could not allocate control_code_buffer [ 234.315874][ T8473] can: request_module (can-proto-3) failed. [ 237.690838][ T8537] dyndbg: bad flag-op , at start of  [ 237.768739][ T8537] dyndbg: flags parse failed [ 238.107038][ T8554] FAULT_INJECTION: forcing a failure. [ 238.107038][ T8554] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 238.107085][ T8554] CPU: 0 UID: 0 PID: 8554 Comm: syz.1.612 Tainted: G L syzkaller #0 PREEMPT(full) [ 238.107106][ T8554] Tainted: [L]=SOFTLOCKUP [ 238.107112][ T8554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 238.107131][ T8554] Call Trace: [ 238.107136][ T8554] [ 238.107142][ T8554] dump_stack_lvl+0x100/0x190 [ 238.107163][ T8554] should_fail_ex.cold+0x5/0xa [ 238.107183][ T8554] _copy_from_iter+0x1f4/0x1690 [ 238.107199][ T8554] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 238.107223][ T8554] ? __pfx__copy_from_iter+0x10/0x10 [ 238.107249][ T8554] ? alloc_pages_mpol+0x25a/0x540 [ 238.107267][ T8554] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 238.107287][ T8554] copy_page_from_iter+0x238/0x300 [ 238.107304][ T8554] anon_pipe_write+0xaf0/0x18c0 [ 238.107329][ T8554] ? __pfx_anon_pipe_write+0x10/0x10 [ 238.107348][ T8554] ? __pfx_autoremove_wake_function+0x10/0x10 [ 238.107372][ T8554] ? bpf_lsm_file_permission+0x9/0x10 [ 238.107387][ T8554] ? security_file_permission+0x76/0x210 [ 238.107404][ T8554] ? rw_verify_area+0xce/0x6d0 [ 238.107420][ T8554] vfs_write+0x6ac/0x1070 [ 238.107437][ T8554] ? __pfx_anon_pipe_write+0x10/0x10 [ 238.107456][ T8554] ? __pfx_vfs_write+0x10/0x10 [ 238.107471][ T8554] ? find_held_lock+0x2b/0x80 [ 238.107502][ T8554] ksys_write+0x1f8/0x250 [ 238.107518][ T8554] ? __pfx_ksys_write+0x10/0x10 [ 238.107536][ T8554] ? rcu_is_watching+0x12/0xc0 [ 238.107556][ T8554] do_syscall_64+0x10b/0xf80 [ 238.107573][ T8554] ? clear_bhb_loop+0x40/0x90 [ 238.107592][ T8554] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.107607][ T8554] RIP: 0033:0x7f1d4659cdd9 [ 238.107620][ T8554] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 238.107635][ T8554] RSP: 002b:00007f1d474c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 238.107652][ T8554] RAX: ffffffffffffffda RBX: 00007f1d46815fa0 RCX: 00007f1d4659cdd9 [ 238.107662][ T8554] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 238.107670][ T8554] RBP: 00007f1d474c6090 R08: 0000000000000000 R09: 0000000000000000 [ 238.107679][ T8554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 238.107688][ T8554] R13: 00007f1d46816038 R14: 00007f1d46815fa0 R15: 00007ffc71509258 [ 238.107707][ T8554] [ 238.196959][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.205828][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.213272][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.231694][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.231995][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.239063][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.239355][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.242998][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.243282][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.245026][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.245273][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.245516][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.247151][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.252298][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.279291][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.282040][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.282772][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.286749][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.288592][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.301597][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.309522][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.323587][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.332463][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.332728][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.334942][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.335219][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.335709][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.343785][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.346043][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.368012][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.376944][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.377917][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 238.379851][ T8555] program syz.2.611 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 241.860982][ T8605] FAULT_INJECTION: forcing a failure. [ 241.860982][ T8605] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 241.948606][ T8605] CPU: 0 UID: 0 PID: 8605 Comm: syz.2.623 Tainted: G L syzkaller #0 PREEMPT(full) [ 241.948641][ T8605] Tainted: [L]=SOFTLOCKUP [ 241.948647][ T8605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 241.948656][ T8605] Call Trace: [ 241.948661][ T8605] [ 241.948667][ T8605] dump_stack_lvl+0x100/0x190 [ 241.948688][ T8605] should_fail_ex.cold+0x5/0xa [ 241.948705][ T8605] ? prepare_alloc_pages+0x16d/0x5f0 [ 241.948726][ T8605] should_fail_alloc_page+0xeb/0x140 [ 241.948744][ T8605] prepare_alloc_pages+0x1f0/0x5f0 [ 241.948763][ T8605] ? __up_read+0x2c1/0x6e0 [ 241.948781][ T8605] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 241.948813][ T8605] ? irqentry_exit+0x246/0x790 [ 241.948831][ T8605] ? lockdep_hardirqs_on+0x78/0x100 [ 241.948850][ T8605] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 241.948882][ T8605] ? rep_movs_alternative+0x4a/0x90 [ 241.948905][ T8605] ? _copy_from_iter+0x270/0x1690 [ 241.948921][ T8605] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 241.948943][ T8605] ? policy_nodemask+0xed/0x4f0 [ 241.948962][ T8605] alloc_pages_mpol+0x1fb/0x540 [ 241.948980][ T8605] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 241.949002][ T8605] alloc_pages_noprof+0x1a/0x160 [ 241.949021][ T8605] anon_pipe_write+0xacb/0x18c0 [ 241.949047][ T8605] ? __pfx_anon_pipe_write+0x10/0x10 [ 241.949069][ T8605] ? apparmor_file_permission+0x13f/0x1c0 [ 241.949094][ T8605] ? bpf_lsm_file_permission+0x9/0x10 [ 241.949108][ T8605] ? security_file_permission+0x76/0x210 [ 241.949125][ T8605] ? rw_verify_area+0xce/0x6d0 [ 241.949141][ T8605] vfs_write+0x6ac/0x1070 [ 241.949158][ T8605] ? __pfx_anon_pipe_write+0x10/0x10 [ 241.949177][ T8605] ? __pfx_vfs_write+0x10/0x10 [ 241.949192][ T8605] ? find_held_lock+0x2b/0x80 [ 241.949222][ T8605] ksys_write+0x1f8/0x250 [ 241.949239][ T8605] ? __pfx_ksys_write+0x10/0x10 [ 241.949257][ T8605] ? rcu_is_watching+0x12/0xc0 [ 241.949277][ T8605] do_syscall_64+0x10b/0xf80 [ 241.949295][ T8605] ? clear_bhb_loop+0x40/0x90 [ 241.949313][ T8605] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 241.949329][ T8605] RIP: 0033:0x7fc19b19cdd9 [ 241.949342][ T8605] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 241.949356][ T8605] RSP: 002b:00007fc19bfa6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 241.949371][ T8605] RAX: ffffffffffffffda RBX: 00007fc19b415fa0 RCX: 00007fc19b19cdd9 [ 241.949381][ T8605] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 241.949389][ T8605] RBP: 00007fc19bfa6090 R08: 0000000000000000 R09: 0000000000000000 [ 241.949398][ T8605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 241.949407][ T8605] R13: 00007fc19b416038 R14: 00007fc19b415fa0 R15: 00007ffe7333a158 [ 241.949426][ T8605] [ 245.113625][ T8664] netlink: 330 bytes leftover after parsing attributes in process `syz.3.629'. [ 245.835216][ T8684] FAULT_INJECTION: forcing a failure. [ 245.835216][ T8684] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 245.911923][ T8684] CPU: 0 UID: 0 PID: 8684 Comm: syz.1.632 Tainted: G L syzkaller #0 PREEMPT(full) [ 245.911948][ T8684] Tainted: [L]=SOFTLOCKUP [ 245.911954][ T8684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 245.911963][ T8684] Call Trace: [ 245.911968][ T8684] [ 245.911974][ T8684] dump_stack_lvl+0x100/0x190 [ 245.911995][ T8684] should_fail_ex.cold+0x5/0xa [ 245.912015][ T8684] _copy_from_iter+0x1f4/0x1690 [ 245.912031][ T8684] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 245.912055][ T8684] ? __pfx__copy_from_iter+0x10/0x10 [ 245.912080][ T8684] ? alloc_pages_mpol+0x25a/0x540 [ 245.912099][ T8684] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 245.912118][ T8684] copy_page_from_iter+0x238/0x300 [ 245.912135][ T8684] anon_pipe_write+0xaf0/0x18c0 [ 245.912216][ T8684] ? __pfx_anon_pipe_write+0x10/0x10 [ 245.912246][ T8684] ? apparmor_file_permission+0x13f/0x1c0 [ 245.912273][ T8684] ? bpf_lsm_file_permission+0x9/0x10 [ 245.912287][ T8684] ? security_file_permission+0x76/0x210 [ 245.912305][ T8684] ? rw_verify_area+0xce/0x6d0 [ 245.912321][ T8684] vfs_write+0x6ac/0x1070 [ 245.912341][ T8684] ? __pfx_anon_pipe_write+0x10/0x10 [ 245.912362][ T8684] ? __pfx_vfs_write+0x10/0x10 [ 245.912377][ T8684] ? find_held_lock+0x2b/0x80 [ 245.912409][ T8684] ksys_write+0x1f8/0x250 [ 245.912425][ T8684] ? __pfx_ksys_write+0x10/0x10 [ 245.912443][ T8684] ? rcu_is_watching+0x12/0xc0 [ 245.912463][ T8684] do_syscall_64+0x10b/0xf80 [ 245.912481][ T8684] ? clear_bhb_loop+0x40/0x90 [ 245.912500][ T8684] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 245.912519][ T8684] RIP: 0033:0x7f1d4659cdd9 [ 245.912533][ T8684] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 245.912547][ T8684] RSP: 002b:00007f1d474c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 245.912562][ T8684] RAX: ffffffffffffffda RBX: 00007f1d46815fa0 RCX: 00007f1d4659cdd9 [ 245.912572][ T8684] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 245.912580][ T8684] RBP: 00007f1d474c6090 R08: 0000000000000000 R09: 0000000000000000 [ 245.912589][ T8684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 245.912598][ T8684] R13: 00007f1d46816038 R14: 00007f1d46815fa0 R15: 00007ffc71509258 [ 245.912617][ T8684] [ 248.309822][ T8742] netlink: 28 bytes leftover after parsing attributes in process `syz.3.637'. [ 252.564028][ T8817] netlink: 4 bytes leftover after parsing attributes in process `syz.2.646'. [ 253.745151][ T8823] FAULT_INJECTION: forcing a failure. [ 253.745151][ T8823] name failslab, interval 1, probability 0, space 0, times 0 [ 253.794729][ T8823] CPU: 0 UID: 0 PID: 8823 Comm: syz.1.648 Tainted: G L syzkaller #0 PREEMPT(full) [ 253.794756][ T8823] Tainted: [L]=SOFTLOCKUP [ 253.794761][ T8823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 253.794771][ T8823] Call Trace: [ 253.794776][ T8823] [ 253.794782][ T8823] dump_stack_lvl+0x100/0x190 [ 253.794804][ T8823] should_fail_ex.cold+0x5/0xa [ 253.794824][ T8823] ? ops_init+0x77/0x5f0 [ 253.794839][ T8823] should_failslab+0xc2/0x120 [ 253.794857][ T8823] __kmalloc_noprof+0xe0/0x850 [ 253.794881][ T8823] ? __raw_spin_lock_init+0x3a/0x110 [ 253.794900][ T8823] ops_init+0x77/0x5f0 [ 253.794918][ T8823] setup_net+0x118/0x3a0 [ 253.794933][ T8823] ? __pfx_setup_net+0x10/0x10 [ 253.794949][ T8823] ? mutex_init_lockdep+0xf1/0x120 [ 253.794968][ T8823] copy_net_ns+0x46f/0x7c0 [ 253.794987][ T8823] create_new_namespaces+0x3ea/0xac0 [ 253.795010][ T8823] unshare_nsproxy_namespaces+0xf2/0x220 [ 253.795032][ T8823] ksys_unshare+0x438/0xab0 [ 253.795054][ T8823] ? __pfx_ksys_unshare+0x10/0x10 [ 253.795074][ T8823] ? xfd_validate_state+0x129/0x190 [ 253.795097][ T8823] __x64_sys_unshare+0x31/0x40 [ 253.795117][ T8823] do_syscall_64+0x10b/0xf80 [ 253.795136][ T8823] ? clear_bhb_loop+0x40/0x90 [ 253.795154][ T8823] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 253.795169][ T8823] RIP: 0033:0x7f1d4659cdd9 [ 253.795182][ T8823] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 253.795201][ T8823] RSP: 002b:00007f1d474c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 253.795216][ T8823] RAX: ffffffffffffffda RBX: 00007f1d46815fa0 RCX: 00007f1d4659cdd9 [ 253.795227][ T8823] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 253.795242][ T8823] RBP: 00007f1d46632d69 R08: 0000000000000000 R09: 0000000000000000 [ 253.795252][ T8823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 253.795266][ T8823] R13: 00007f1d46816038 R14: 00007f1d46815fa0 R15: 00007ffc71509258 [ 253.795287][ T8823] [ 255.723351][ T1313] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.733825][ T1313] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.745387][ T8851] FAULT_INJECTION: forcing a failure. [ 255.745387][ T8851] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 255.811005][ T8851] CPU: 0 UID: 0 PID: 8851 Comm: syz.3.655 Tainted: G L syzkaller #0 PREEMPT(full) [ 255.811031][ T8851] Tainted: [L]=SOFTLOCKUP [ 255.811037][ T8851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 255.811045][ T8851] Call Trace: [ 255.811050][ T8851] [ 255.811056][ T8851] dump_stack_lvl+0x100/0x190 [ 255.811078][ T8851] should_fail_ex.cold+0x5/0xa [ 255.811098][ T8851] _copy_from_iter+0x1f4/0x1690 [ 255.811114][ T8851] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 255.811138][ T8851] ? __pfx__copy_from_iter+0x10/0x10 [ 255.811163][ T8851] ? alloc_pages_mpol+0x25a/0x540 [ 255.811182][ T8851] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 255.811202][ T8851] copy_page_from_iter+0x238/0x300 [ 255.811218][ T8851] anon_pipe_write+0xaf0/0x18c0 [ 255.811244][ T8851] ? __pfx_anon_pipe_write+0x10/0x10 [ 255.811263][ T8851] ? apparmor_file_permission+0x13f/0x1c0 [ 255.811288][ T8851] ? bpf_lsm_file_permission+0x9/0x10 [ 255.811311][ T8851] ? security_file_permission+0x76/0x210 [ 255.811328][ T8851] ? rw_verify_area+0xce/0x6d0 [ 255.811344][ T8851] vfs_write+0x6ac/0x1070 [ 255.811361][ T8851] ? __pfx_anon_pipe_write+0x10/0x10 [ 255.811380][ T8851] ? __pfx_vfs_write+0x10/0x10 [ 255.811395][ T8851] ? find_held_lock+0x2b/0x80 [ 255.811426][ T8851] ksys_write+0x1f8/0x250 [ 255.811442][ T8851] ? __pfx_ksys_write+0x10/0x10 [ 255.811463][ T8851] ? rcu_is_watching+0x12/0xc0 [ 255.811483][ T8851] do_syscall_64+0x10b/0xf80 [ 255.811501][ T8851] ? clear_bhb_loop+0x40/0x90 [ 255.811519][ T8851] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 255.811535][ T8851] RIP: 0033:0x7f4c7879cdd9 [ 255.811547][ T8851] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 255.811562][ T8851] RSP: 002b:00007f4c795af028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 255.811581][ T8851] RAX: ffffffffffffffda RBX: 00007f4c78a15fa0 RCX: 00007f4c7879cdd9 [ 255.811591][ T8851] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 255.811600][ T8851] RBP: 00007f4c795af090 R08: 0000000000000000 R09: 0000000000000000 [ 255.811608][ T8851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 255.811617][ T8851] R13: 00007f4c78a16038 R14: 00007f4c78a15fa0 R15: 00007fffa8525088 [ 255.811636][ T8851] [ 256.568755][ T8855] netlink: 28 bytes leftover after parsing attributes in process `syz.1.657'. [ 261.106010][ T8906] i2c i2c-0: delete_device: Can't find device in list [ 263.777133][ T8952] netlink: 342 bytes leftover after parsing attributes in process `syz.0.681'. [ 264.050947][ T5624] Bluetooth: hci0: unexpected subevent 0x01 length: 3 < 18 [ 264.653031][ T8971] FAULT_INJECTION: forcing a failure. [ 264.653031][ T8971] name failslab, interval 1, probability 0, space 0, times 0 [ 264.758098][ T8972] FAULT_INJECTION: forcing a failure. [ 264.758098][ T8972] name failslab, interval 1, probability 0, space 0, times 0 [ 264.867917][ T8971] CPU: 0 UID: 0 PID: 8971 Comm: syz.3.683 Tainted: G L syzkaller #0 PREEMPT(full) [ 264.867945][ T8971] Tainted: [L]=SOFTLOCKUP [ 264.867950][ T8971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 264.867959][ T8971] Call Trace: [ 264.867965][ T8971] [ 264.867971][ T8971] dump_stack_lvl+0x100/0x190 [ 264.867993][ T8971] should_fail_ex.cold+0x5/0xa [ 264.868013][ T8971] should_failslab+0xc2/0x120 [ 264.868031][ T8971] __kvmalloc_node_noprof+0xfa/0xa00 [ 264.868046][ T8971] ? bucket_table_alloc.isra.0+0x88/0x460 [ 264.868072][ T8971] bucket_table_alloc.isra.0+0x88/0x460 [ 264.868094][ T8971] rhashtable_init_noprof+0x43b/0x890 [ 264.868115][ T8971] ? kasan_save_track+0x14/0x30 [ 264.868130][ T8971] ? __pfx_seg6_net_init+0x10/0x10 [ 264.868145][ T8971] seg6_net_init+0x109/0x1c0 [ 264.868160][ T8971] ops_init+0x1e2/0x5f0 [ 264.868178][ T8971] setup_net+0x118/0x3a0 [ 264.868194][ T8971] ? __pfx_setup_net+0x10/0x10 [ 264.868210][ T8971] ? mutex_init_lockdep+0xf1/0x120 [ 264.868229][ T8971] copy_net_ns+0x46f/0x7c0 [ 264.868247][ T8971] create_new_namespaces+0x3ea/0xac0 [ 264.868271][ T8971] unshare_nsproxy_namespaces+0xf2/0x220 [ 264.868292][ T8971] ksys_unshare+0x438/0xab0 [ 264.868315][ T8971] ? __pfx_ksys_unshare+0x10/0x10 [ 264.868335][ T8971] ? xfd_validate_state+0x129/0x190 [ 264.868350][ T8971] ? ksys_write+0x1ac/0x250 [ 264.868372][ T8971] __x64_sys_unshare+0x31/0x40 [ 264.868393][ T8971] do_syscall_64+0x10b/0xf80 [ 264.868410][ T8971] ? clear_bhb_loop+0x40/0x90 [ 264.868428][ T8971] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 264.868443][ T8971] RIP: 0033:0x7f4c7879cdd9 [ 264.868457][ T8971] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 264.868477][ T8971] RSP: 002b:00007f4c795af028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 264.868493][ T8971] RAX: ffffffffffffffda RBX: 00007f4c78a15fa0 RCX: 00007f4c7879cdd9 [ 264.868504][ T8971] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 264.868513][ T8971] RBP: 00007f4c78832d69 R08: 0000000000000000 R09: 0000000000000000 [ 264.868522][ T8971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 264.868532][ T8971] R13: 00007f4c78a16038 R14: 00007f4c78a15fa0 R15: 00007fffa8525088 [ 264.868551][ T8971] [ 265.405255][ T8972] CPU: 0 UID: 8 PID: 8972 Comm: syz.3.683 Tainted: G L syzkaller #0 PREEMPT(full) [ 265.405283][ T8972] Tainted: [L]=SOFTLOCKUP [ 265.405288][ T8972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 265.405297][ T8972] Call Trace: [ 265.405303][ T8972] [ 265.405309][ T8972] dump_stack_lvl+0x100/0x190 [ 265.405331][ T8972] should_fail_ex.cold+0x5/0xa [ 265.405351][ T8972] should_failslab+0xc2/0x120 [ 265.405368][ T8972] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 265.405384][ T8972] ? key_alloc+0x423/0x1310 [ 265.405400][ T8972] ? kmem_cache_alloc_noprof+0x292/0x6e0 [ 265.405433][ T8972] kmemdup_noprof+0x29/0x60 [ 265.405450][ T8972] key_alloc+0x423/0x1310 [ 265.405472][ T8972] ? __pfx_key_alloc+0x10/0x10 [ 265.405488][ T8972] ? __pfx_key_default_cmp+0x10/0x10 [ 265.405507][ T8972] ? __pfx_keyring_search_iterator+0x10/0x10 [ 265.405527][ T8972] keyring_alloc+0x44/0xc0 [ 265.405547][ T8972] look_up_user_keyrings+0x465/0x790 [ 265.405573][ T8972] ? __pfx_look_up_user_keyrings+0x10/0x10 [ 265.405603][ T8972] lookup_user_key+0xbb1/0x1300 [ 265.405619][ T8972] ? __pfx_lookup_user_key+0x10/0x10 [ 265.405634][ T8972] ? __pfx_do_futex+0x10/0x10 [ 265.405653][ T8972] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 265.405681][ T8972] ? xfd_validate_state+0x129/0x190 [ 265.405695][ T8972] ? ksys_write+0x1ac/0x250 [ 265.405716][ T8972] keyctl_keyring_unlink+0x1f/0x1b0 [ 265.405738][ T8972] __do_sys_keyctl+0x3dd/0x5a0 [ 265.405771][ T8972] do_syscall_64+0x10b/0xf80 [ 265.405790][ T8972] ? clear_bhb_loop+0x40/0x90 [ 265.405809][ T8972] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 265.405824][ T8972] RIP: 0033:0x7f4c7879cdd9 [ 265.405838][ T8972] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 265.405853][ T8972] RSP: 002b:00007f4c7958e028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 265.405868][ T8972] RAX: ffffffffffffffda RBX: 00007f4c78a16090 RCX: 00007f4c7879cdd9 [ 265.405879][ T8972] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 0000000000000009 [ 265.405889][ T8972] RBP: 00007f4c78832d69 R08: 0000000000000008 R09: 0000000000000000 [ 265.405898][ T8972] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000 [ 265.405907][ T8972] R13: 00007f4c78a16128 R14: 00007f4c78a16090 R15: 00007fffa8525088 [ 265.405927][ T8972] [ 266.070679][ T8974] zswap: compressor not available [ 266.393432][ T8981] random: crng reseeded on system resumption [ 266.936326][ T8987] NFSD: Failed to start, no listeners configured. [ 268.779873][ T5624] Bluetooth: hci3: unexpected event 0x3e length: 508 > 260 [ 268.779897][ T5624] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260 [ 268.797198][ T5624] Bluetooth: hci3: Dropping invalid advertising data [ 268.805351][ T5624] Bluetooth: hci3: unknown advertising packet type: 0xe9 [ 268.845041][ T30] audit: type=1800 audit(1777600496.035:4): pid=9030 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.696" name="features" dev="configfs" ino=24934 res=0 errno=0 [ 270.212063][ T9064] capability: warning: `syz.0.700' uses 32-bit capabilities (legacy support in use) [ 270.684803][ T9076] ubi0: attaching mtd0 [ 270.736913][ T9076] ubi0: scanning is finished [ 270.753464][ T9076] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 270.982920][ T9076] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 271.028079][ T9085] ubi0: attaching mtd0 [ 271.049154][ T9085] ubi0: scanning is finished [ 271.074264][ T9085] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 271.098854][ T9092] FAULT_INJECTION: forcing a failure. [ 271.098854][ T9092] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 271.167052][ T9092] CPU: 0 UID: 0 PID: 9092 Comm: syz.0.703 Tainted: G L syzkaller #0 PREEMPT(full) [ 271.167078][ T9092] Tainted: [L]=SOFTLOCKUP [ 271.167083][ T9092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 271.167092][ T9092] Call Trace: [ 271.167097][ T9092] [ 271.167103][ T9092] dump_stack_lvl+0x100/0x190 [ 271.167124][ T9092] should_fail_ex.cold+0x5/0xa [ 271.167144][ T9092] _copy_from_iter+0x1f4/0x1690 [ 271.167160][ T9092] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 271.167184][ T9092] ? __pfx__copy_from_iter+0x10/0x10 [ 271.167209][ T9092] ? alloc_pages_mpol+0x25a/0x540 [ 271.167228][ T9092] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 271.167247][ T9092] copy_page_from_iter+0x238/0x300 [ 271.167264][ T9092] anon_pipe_write+0xaf0/0x18c0 [ 271.167289][ T9092] ? __pfx_anon_pipe_write+0x10/0x10 [ 271.167308][ T9092] ? __pfx_autoremove_wake_function+0x10/0x10 [ 271.167331][ T9092] ? bpf_lsm_file_permission+0x9/0x10 [ 271.167346][ T9092] ? security_file_permission+0x76/0x210 [ 271.167363][ T9092] ? rw_verify_area+0xce/0x6d0 [ 271.167379][ T9092] vfs_write+0x6ac/0x1070 [ 271.167396][ T9092] ? __pfx_anon_pipe_write+0x10/0x10 [ 271.167415][ T9092] ? __pfx_vfs_write+0x10/0x10 [ 271.167430][ T9092] ? find_held_lock+0x2b/0x80 [ 271.167461][ T9092] ksys_write+0x1f8/0x250 [ 271.167476][ T9092] ? __pfx_ksys_write+0x10/0x10 [ 271.167494][ T9092] ? rcu_is_watching+0x12/0xc0 [ 271.167515][ T9092] do_syscall_64+0x10b/0xf80 [ 271.167532][ T9092] ? clear_bhb_loop+0x40/0x90 [ 271.167551][ T9092] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 271.167566][ T9092] RIP: 0033:0x7f111af9cdd9 [ 271.167578][ T9092] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 271.167593][ T9092] RSP: 002b:00007f111bea0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 271.167607][ T9092] RAX: ffffffffffffffda RBX: 00007f111b215fa0 RCX: 00007f111af9cdd9 [ 271.167617][ T9092] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 271.167629][ T9092] RBP: 00007f111bea0090 R08: 0000000000000000 R09: 0000000000000000 [ 271.167637][ T9092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 271.167646][ T9092] R13: 00007f111b216038 R14: 00007f111b215fa0 R15: 00007fffeb9191c8 [ 271.167665][ T9092] [ 271.856103][ T9101] netlink: 16 bytes leftover after parsing attributes in process `syz.0.706'. [ 271.939290][ T9097] futex_wake_op: syz.3.705 tries to shift op by -2048; fix this program [ 271.982856][ T9097] 0x000000000001-0x000000020000 : "" [ 272.042540][ T9097] ftl_cs: FTL header corrupt! [ 272.320972][ T9085] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 274.005970][ T9134] FAULT_INJECTION: forcing a failure. [ 274.005970][ T9134] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 274.066728][ T9134] CPU: 0 UID: 0 PID: 9134 Comm: syz.0.714 Tainted: G L syzkaller #0 PREEMPT(full) [ 274.066753][ T9134] Tainted: [L]=SOFTLOCKUP [ 274.066759][ T9134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 274.066768][ T9134] Call Trace: [ 274.066773][ T9134] [ 274.066779][ T9134] dump_stack_lvl+0x100/0x190 [ 274.066800][ T9134] should_fail_ex.cold+0x5/0xa [ 274.066818][ T9134] ? prepare_alloc_pages+0x16d/0x5f0 [ 274.066839][ T9134] should_fail_alloc_page+0xeb/0x140 [ 274.066857][ T9134] prepare_alloc_pages+0x1f0/0x5f0 [ 274.066876][ T9134] ? __up_read+0x2c1/0x6e0 [ 274.066895][ T9134] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 274.066927][ T9134] ? irqentry_exit+0x246/0x790 [ 274.066945][ T9134] ? lockdep_hardirqs_on+0x78/0x100 [ 274.066963][ T9134] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 274.066995][ T9134] ? rep_movs_alternative+0x4a/0x90 [ 274.067019][ T9134] ? _copy_from_iter+0x270/0x1690 [ 274.067035][ T9134] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 274.067057][ T9134] ? policy_nodemask+0xed/0x4f0 [ 274.067076][ T9134] alloc_pages_mpol+0x1fb/0x540 [ 274.067094][ T9134] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 274.067116][ T9134] alloc_pages_noprof+0x1a/0x160 [ 274.067136][ T9134] anon_pipe_write+0xacb/0x18c0 [ 274.067161][ T9134] ? __pfx_anon_pipe_write+0x10/0x10 [ 274.067179][ T9134] ? apparmor_file_permission+0x13f/0x1c0 [ 274.067205][ T9134] ? bpf_lsm_file_permission+0x9/0x10 [ 274.067219][ T9134] ? security_file_permission+0x76/0x210 [ 274.067238][ T9134] ? rw_verify_area+0xce/0x6d0 [ 274.067255][ T9134] vfs_write+0x6ac/0x1070 [ 274.067272][ T9134] ? __pfx_anon_pipe_write+0x10/0x10 [ 274.067291][ T9134] ? __pfx_vfs_write+0x10/0x10 [ 274.067305][ T9134] ? find_held_lock+0x2b/0x80 [ 274.067336][ T9134] ksys_write+0x1f8/0x250 [ 274.067352][ T9134] ? __pfx_ksys_write+0x10/0x10 [ 274.067370][ T9134] ? rcu_is_watching+0x12/0xc0 [ 274.067390][ T9134] do_syscall_64+0x10b/0xf80 [ 274.067407][ T9134] ? clear_bhb_loop+0x40/0x90 [ 274.067425][ T9134] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 274.067440][ T9134] RIP: 0033:0x7f111af9cdd9 [ 274.067453][ T9134] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 274.067467][ T9134] RSP: 002b:00007f111bea0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 274.067482][ T9134] RAX: ffffffffffffffda RBX: 00007f111b215fa0 RCX: 00007f111af9cdd9 [ 274.067492][ T9134] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 274.067501][ T9134] RBP: 00007f111bea0090 R08: 0000000000000000 R09: 0000000000000000 [ 274.067510][ T9134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 274.067518][ T9134] R13: 00007f111b216038 R14: 00007f111b215fa0 R15: 00007fffeb9191c8 [ 274.067537][ T9134] [ 276.258215][ T9200] FAULT_INJECTION: forcing a failure. [ 276.258215][ T9200] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 276.344677][ T9200] CPU: 0 UID: 0 PID: 9200 Comm: syz.1.726 Tainted: G L syzkaller #0 PREEMPT(full) [ 276.344703][ T9200] Tainted: [L]=SOFTLOCKUP [ 276.344708][ T9200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 276.344717][ T9200] Call Trace: [ 276.344722][ T9200] [ 276.344728][ T9200] dump_stack_lvl+0x100/0x190 [ 276.344750][ T9200] should_fail_ex.cold+0x5/0xa [ 276.344770][ T9200] _copy_from_iter+0x1f4/0x1690 [ 276.344786][ T9200] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 276.344810][ T9200] ? __pfx__copy_from_iter+0x10/0x10 [ 276.344835][ T9200] ? alloc_pages_mpol+0x25a/0x540 [ 276.344854][ T9200] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 276.344873][ T9200] copy_page_from_iter+0x238/0x300 [ 276.344890][ T9200] anon_pipe_write+0xaf0/0x18c0 [ 276.344915][ T9200] ? __pfx_anon_pipe_write+0x10/0x10 [ 276.344934][ T9200] ? apparmor_file_permission+0x13f/0x1c0 [ 276.344959][ T9200] ? bpf_lsm_file_permission+0x9/0x10 [ 276.344973][ T9200] ? security_file_permission+0x76/0x210 [ 276.344991][ T9200] ? rw_verify_area+0xce/0x6d0 [ 276.345007][ T9200] vfs_write+0x6ac/0x1070 [ 276.345024][ T9200] ? __pfx_anon_pipe_write+0x10/0x10 [ 276.345046][ T9200] ? __pfx_vfs_write+0x10/0x10 [ 276.345061][ T9200] ? find_held_lock+0x2b/0x80 [ 276.345092][ T9200] ksys_write+0x1f8/0x250 [ 276.345108][ T9200] ? __pfx_ksys_write+0x10/0x10 [ 276.345126][ T9200] ? rcu_is_watching+0x12/0xc0 [ 276.345146][ T9200] do_syscall_64+0x10b/0xf80 [ 276.345164][ T9200] ? clear_bhb_loop+0x40/0x90 [ 276.345182][ T9200] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 276.345197][ T9200] RIP: 0033:0x7f1d4659cdd9 [ 276.345210][ T9200] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 276.345224][ T9200] RSP: 002b:00007f1d474c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 276.345239][ T9200] RAX: ffffffffffffffda RBX: 00007f1d46815fa0 RCX: 00007f1d4659cdd9 [ 276.345248][ T9200] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 276.345257][ T9200] RBP: 00007f1d474c6090 R08: 0000000000000000 R09: 0000000000000000 [ 276.345266][ T9200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 276.345274][ T9200] R13: 00007f1d46816038 R14: 00007f1d46815fa0 R15: 00007ffc71509258 [ 276.345293][ T9200] [ 276.841873][ T9204] QAT: failed to copy from user cfg_data. [ 276.857545][ T9202] QAT: Invalid ioctl 44672 [ 276.923553][ T9197] can: request_module (can-proto-4) failed. [ 277.125933][ T5624] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 278.033221][ T5624] Bluetooth: hci3: Malformed LE Event: 0x0b [ 280.385635][ T9292] FAULT_INJECTION: forcing a failure. [ 280.385635][ T9292] name failslab, interval 1, probability 0, space 0, times 0 [ 280.450921][ T9292] CPU: 0 UID: 0 PID: 9292 Comm: syz.1.745 Tainted: G L syzkaller #0 PREEMPT(full) [ 280.450946][ T9292] Tainted: [L]=SOFTLOCKUP [ 280.450951][ T9292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 280.450960][ T9292] Call Trace: [ 280.450965][ T9292] [ 280.450971][ T9292] dump_stack_lvl+0x100/0x190 [ 280.450993][ T9292] should_fail_ex.cold+0x5/0xa [ 280.451012][ T9292] should_failslab+0xc2/0x120 [ 280.451030][ T9292] __kmalloc_cache_noprof+0x7a/0x6f0 [ 280.451051][ T9292] ? landlock_init_hierarchy_log+0xa9/0x820 [ 280.451074][ T9292] landlock_init_hierarchy_log+0xa9/0x820 [ 280.451097][ T9292] landlock_merge_ruleset+0x676/0x830 [ 280.451122][ T9292] ? prepare_creds+0x5ee/0x950 [ 280.451140][ T9292] __do_sys_landlock_restrict_self+0x2af/0x9e0 [ 280.451162][ T9292] ? rcu_is_watching+0x12/0xc0 [ 280.451182][ T9292] do_syscall_64+0x10b/0xf80 [ 280.451207][ T9292] ? clear_bhb_loop+0x40/0x90 [ 280.451225][ T9292] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 280.451241][ T9292] RIP: 0033:0x7f1d4659cdd9 [ 280.451253][ T9292] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 280.451268][ T9292] RSP: 002b:00007f1d47463028 EFLAGS: 00000246 ORIG_RAX: 00000000000001be [ 280.451282][ T9292] RAX: ffffffffffffffda RBX: 00007f1d46816270 RCX: 00007f1d4659cdd9 [ 280.451292][ T9292] RDX: 0000000000000000 RSI: 000000000000000b RDI: 000000000000000a [ 280.451301][ T9292] RBP: 00007f1d46632d69 R08: 0000000000000000 R09: 0000000000000000 [ 280.451309][ T9292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 280.451318][ T9292] R13: 00007f1d46816308 R14: 00007f1d46816270 R15: 00007ffc71509258 [ 280.451336][ T9292] [ 280.763663][ T9310] block2mtd: illegal erase size [ 280.776598][ T9313] wlan1: mtu less than device minimum [ 280.782606][ T9299] wlan1: mtu less than device minimum [ 280.813220][ T9299] sd 0:0:1:0: PR command failed: 1026 [ 280.818650][ T9299] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 280.839383][ T9299] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 282.039857][ T9336] netlink: 24 bytes leftover after parsing attributes in process `syz.1.754'. [ 282.819218][ T9343] block2mtd: error: cannot open device  [ 284.685628][ T9384] FAULT_INJECTION: forcing a failure. [ 284.685628][ T9384] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 284.755135][ T9384] CPU: 0 UID: 0 PID: 9384 Comm: syz.2.763 Tainted: G L syzkaller #0 PREEMPT(full) [ 284.755161][ T9384] Tainted: [L]=SOFTLOCKUP [ 284.755166][ T9384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 284.755176][ T9384] Call Trace: [ 284.755181][ T9384] [ 284.755188][ T9384] dump_stack_lvl+0x100/0x190 [ 284.755210][ T9384] should_fail_ex.cold+0x5/0xa [ 284.755230][ T9384] _copy_from_user+0x2e/0xd0 [ 284.755254][ T9384] __do_sys_capset+0x1ec/0x460 [ 284.755275][ T9384] ? __pfx___do_sys_capset+0x10/0x10 [ 284.755294][ T9384] ? __x64_sys_futex+0x358/0x4d0 [ 284.755317][ T9384] ? rcu_is_watching+0x12/0xc0 [ 284.755337][ T9384] do_syscall_64+0x10b/0xf80 [ 284.755354][ T9384] ? clear_bhb_loop+0x40/0x90 [ 284.755373][ T9384] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 284.755388][ T9384] RIP: 0033:0x7fc19b19cdd9 [ 284.755401][ T9384] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 284.755416][ T9384] RSP: 002b:00007fc19bfa6028 EFLAGS: 00000246 ORIG_RAX: 000000000000007e [ 284.755431][ T9384] RAX: ffffffffffffffda RBX: 00007fc19b415fa0 RCX: 00007fc19b19cdd9 [ 284.755441][ T9384] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000100 [ 284.755450][ T9384] RBP: 00007fc19b232d69 R08: 0000000000000000 R09: 0000000000000000 [ 284.755458][ T9384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 284.755467][ T9384] R13: 00007fc19b416038 R14: 00007fc19b415fa0 R15: 00007ffe7333a158 [ 284.755486][ T9384] [ 285.225667][ T9389] futex_wake_op: syz.0.764 tries to shift op by -2048; fix this program [ 285.269318][ T9389] futex_wake_op: syz.0.764 tries to shift op by -2048; fix this program [ 285.295741][ T9389] 0x000000000001-0x000000020000 : "" [ 285.337791][ T9389] ftl_cs: FTL header corrupt! [ 285.675830][ T5624] Bluetooth: hci1: Malformed Event: 0x02 [ 285.688333][ T9406] netlink: 4 bytes leftover after parsing attributes in process `syz.3.767'. [ 285.762045][ T9408] netlink: 354 bytes leftover after parsing attributes in process `syz.3.767'. [ 286.453864][ T9412] FAULT_INJECTION: forcing a failure. [ 286.453864][ T9412] name failslab, interval 1, probability 0, space 0, times 0 [ 286.516563][ T9412] CPU: 0 UID: 0 PID: 9412 Comm: syz.0.769 Tainted: G L syzkaller #0 PREEMPT(full) [ 286.516591][ T9412] Tainted: [L]=SOFTLOCKUP [ 286.516597][ T9412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 286.516612][ T9412] Call Trace: [ 286.516618][ T9412] [ 286.516623][ T9412] dump_stack_lvl+0x100/0x190 [ 286.516645][ T9412] should_fail_ex.cold+0x5/0xa [ 286.516666][ T9412] ? ima_alloc_init_template+0x19d/0x6d0 [ 286.516690][ T9412] should_failslab+0xc2/0x120 [ 286.516707][ T9412] __kmalloc_noprof+0xe0/0x850 [ 286.516731][ T9412] ? take_dentry_name_snapshot+0x30b/0x7c0 [ 286.516757][ T9412] ima_alloc_init_template+0x19d/0x6d0 [ 286.516780][ T9412] ? take_dentry_name_snapshot+0x310/0x7c0 [ 286.516806][ T9412] ima_store_measurement+0x1e3/0x5b0 [ 286.516830][ T9412] ? __pfx_ima_store_measurement+0x10/0x10 [ 286.516860][ T9412] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 286.516883][ T9412] process_measurement+0x19cc/0x2350 [ 286.516910][ T9412] ? stack_trace_save+0x8e/0xc0 [ 286.516930][ T9412] ? __pfx_process_measurement+0x10/0x10 [ 286.516951][ T9412] ? __lock_acquire+0x4a5/0x2630 [ 286.516965][ T9412] ? __kasan_slab_alloc+0x89/0x90 [ 286.516980][ T9412] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 286.517002][ T9412] ? init_file+0x95/0x480 [ 286.517020][ T9412] ? alloc_empty_file+0x79/0x1c0 [ 286.517039][ T9412] ? alloc_file_pseudo+0x13a/0x230 [ 286.517058][ T9412] ? ksys_mmap_pgoff+0x242/0x610 [ 286.517075][ T9412] ? __x64_sys_mmap+0x125/0x190 [ 286.517090][ T9412] ? do_syscall_64+0x10b/0xf80 [ 286.517126][ T9412] ? __pfx_aa_file_perm+0x10/0x10 [ 286.517149][ T9412] ima_file_mmap+0x1c4/0x1f0 [ 286.517171][ T9412] ? __pfx_ima_file_mmap+0x10/0x10 [ 286.517197][ T9412] security_mmap_file+0x278/0x9b0 [ 286.517215][ T9412] vm_mmap_pgoff+0xec/0x470 [ 286.517235][ T9412] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 286.517252][ T9412] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 286.517274][ T9412] ? hugetlbfs_get_inode+0x3f5/0x700 [ 286.517300][ T9412] ksys_mmap_pgoff+0x285/0x610 [ 286.517319][ T9412] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 286.517336][ T9412] ? xfd_validate_state+0x129/0x190 [ 286.517355][ T9412] __x64_sys_mmap+0x125/0x190 [ 286.517373][ T9412] do_syscall_64+0x10b/0xf80 [ 286.517390][ T9412] ? clear_bhb_loop+0x40/0x90 [ 286.517408][ T9412] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.517423][ T9412] RIP: 0033:0x7f111af9cdd9 [ 286.517437][ T9412] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 286.517452][ T9412] RSP: 002b:00007f111bea0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 286.517467][ T9412] RAX: ffffffffffffffda RBX: 00007f111b215fa0 RCX: 00007f111af9cdd9 [ 286.517477][ T9412] RDX: ffffffffffffffff RSI: 0000000000200004 RDI: 0000000000000000 [ 286.517486][ T9412] RBP: 00007f111b032d69 R08: 000000000000000d R09: 0000300000000000 [ 286.517495][ T9412] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000 [ 286.517505][ T9412] R13: 00007f111b216038 R14: 00007f111b215fa0 R15: 00007fffeb9191c8 [ 286.517525][ T9412] [ 287.062759][ T30] audit: type=1804 audit(1777600511.172:5): pid=9412 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.0.769" name="anon_hugepage" dev="hugetlbfs" ino=26593 res=0 errno=0 [ 288.298977][ T9441] zswap: compressor not available [ 290.267505][ T5624] Bluetooth: hci2: unexpected event 0x32 length: 727 > 9 [ 291.739249][ T9524] netlink: 25 bytes leftover after parsing attributes in process `syz.2.792'. [ 291.938361][ T9524] NFSD: Failed to start, no listeners configured. [ 292.261580][ T9530] nvme_fcloop: unknown parameter or missing value '' [ 292.669455][ T9534] zswap: compressor 000 not available [ 293.839961][ T9558] program syz.0.801 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 293.910795][ T9558] lo: entered allmulticast mode [ 293.931070][ T9558] lo: left allmulticast mode [ 295.199371][ T9582] sctp: [Deprecated]: syz.0.808 (pid 9582) Use of struct sctp_assoc_value in delayed_ack socket option. [ 295.199371][ T9582] Use struct sctp_sack_info instead [ 295.953719][ T9598] FAULT_INJECTION: forcing a failure. [ 295.953719][ T9598] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 296.035220][ T9598] CPU: 0 UID: 0 PID: 9598 Comm: syz.1.811 Tainted: G L syzkaller #0 PREEMPT(full) [ 296.035248][ T9598] Tainted: [L]=SOFTLOCKUP [ 296.035254][ T9598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 296.035264][ T9598] Call Trace: [ 296.035269][ T9598] [ 296.035275][ T9598] dump_stack_lvl+0x100/0x190 [ 296.035297][ T9598] should_fail_ex.cold+0x5/0xa [ 296.035314][ T9598] ? prepare_alloc_pages+0x16d/0x5f0 [ 296.035336][ T9598] should_fail_alloc_page+0xeb/0x140 [ 296.035354][ T9598] prepare_alloc_pages+0x1f0/0x5f0 [ 296.035375][ T9598] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 296.035404][ T9598] ? stack_trace_save+0x8e/0xc0 [ 296.035424][ T9598] ? __pfx_stack_trace_save+0x10/0x10 [ 296.035444][ T9598] ? stack_depot_save_flags+0x27/0x9d0 [ 296.035463][ T9598] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 296.035487][ T9598] ? kasan_save_stack+0x3f/0x50 [ 296.035501][ T9598] ? kasan_save_track+0x14/0x30 [ 296.035515][ T9598] ? snd_pcm_attach_substream+0x436/0xd20 [ 296.035533][ T9598] ? snd_pcm_open_substream+0x90/0x1850 [ 296.035559][ T9598] ? snd_pcm_open+0x2a3/0x710 [ 296.035579][ T9598] ? snd_pcm_playback_open+0x86/0xe0 [ 296.035601][ T9598] ? snd_open+0x201/0x450 [ 296.035617][ T9598] ? chrdev_open+0x234/0x6a0 [ 296.035634][ T9598] ? do_dentry_open+0x6d8/0x1660 [ 296.035651][ T9598] ? vfs_open+0x82/0x3f0 [ 296.035669][ T9598] ? path_openat+0x208c/0x31a0 [ 296.035694][ T9598] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 296.035716][ T9598] ? policy_nodemask+0xed/0x4f0 [ 296.035735][ T9598] alloc_pages_mpol+0x1fb/0x540 [ 296.035752][ T9598] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 296.035774][ T9598] alloc_pages_noprof+0x1a/0x160 [ 296.035794][ T9598] alloc_pages_exact_noprof+0x32/0xf0 [ 296.035821][ T9598] snd_pcm_attach_substream+0x45d/0xd20 [ 296.035841][ T9598] snd_pcm_open_substream+0x90/0x1850 [ 296.035867][ T9598] ? __pfx_snd_pcm_open_substream+0x10/0x10 [ 296.035892][ T9598] ? rcu_is_watching+0x12/0xc0 [ 296.035914][ T9598] snd_pcm_open+0x2a3/0x710 [ 296.035939][ T9598] ? __pfx_snd_pcm_open+0x10/0x10 [ 296.035964][ T9598] ? __pfx_default_wake_function+0x10/0x10 [ 296.035990][ T9598] ? __pfx_snd_pcm_playback_open+0x10/0x10 [ 296.036013][ T9598] snd_pcm_playback_open+0x86/0xe0 [ 296.036036][ T9598] snd_open+0x201/0x450 [ 296.036054][ T9598] ? __pfx_snd_open+0x10/0x10 [ 296.036072][ T9598] chrdev_open+0x234/0x6a0 [ 296.036091][ T9598] ? __pfx_chrdev_open+0x10/0x10 [ 296.036110][ T9598] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 296.036133][ T9598] do_dentry_open+0x6d8/0x1660 [ 296.036150][ T9598] ? __pfx_chrdev_open+0x10/0x10 [ 296.036172][ T9598] vfs_open+0x82/0x3f0 [ 296.036195][ T9598] path_openat+0x208c/0x31a0 [ 296.036219][ T9598] ? __pfx_path_openat+0x10/0x10 [ 296.036244][ T9598] do_file_open+0x20e/0x430 [ 296.036263][ T9598] ? __pfx_do_file_open+0x10/0x10 [ 296.036294][ T9598] ? alloc_fd+0x476/0x790 [ 296.036313][ T9598] ? do_getname+0x191/0x390 [ 296.036335][ T9598] do_sys_openat2+0x10d/0x1e0 [ 296.036357][ T9598] ? __pfx_do_sys_openat2+0x10/0x10 [ 296.036380][ T9598] ? __fget_files+0x21f/0x3d0 [ 296.036400][ T9598] __x64_sys_openat+0x12d/0x210 [ 296.036422][ T9598] ? __pfx___x64_sys_openat+0x10/0x10 [ 296.036448][ T9598] ? rcu_is_watching+0x12/0xc0 [ 296.036468][ T9598] do_syscall_64+0x10b/0xf80 [ 296.036485][ T9598] ? clear_bhb_loop+0x40/0x90 [ 296.036505][ T9598] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 296.036521][ T9598] RIP: 0033:0x7f1d4659cdd9 [ 296.036535][ T9598] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 296.036549][ T9598] RSP: 002b:00007f1d47484028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 296.036564][ T9598] RAX: ffffffffffffffda RBX: 00007f1d46816180 RCX: 00007f1d4659cdd9 [ 296.036575][ T9598] RDX: 0000000000002100 RSI: 0000200000004ec0 RDI: ffffffffffffff9c [ 296.036585][ T9598] RBP: 00007f1d46632d69 R08: 0000000000000000 R09: 0000000000000000 [ 296.036594][ T9598] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 296.036603][ T9598] R13: 00007f1d46816218 R14: 00007f1d46816180 R15: 00007ffc71509258 [ 296.036623][ T9598] [ 297.729350][ T9621] FAULT_INJECTION: forcing a failure. [ 297.729350][ T9621] name failslab, interval 1, probability 0, space 0, times 0 [ 297.785298][ T9621] CPU: 0 UID: 0 PID: 9621 Comm: syz.0.817 Tainted: G L syzkaller #0 PREEMPT(full) [ 297.785326][ T9621] Tainted: [L]=SOFTLOCKUP [ 297.785332][ T9621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 297.785341][ T9621] Call Trace: [ 297.785347][ T9621] [ 297.785353][ T9621] dump_stack_lvl+0x100/0x190 [ 297.785375][ T9621] should_fail_ex.cold+0x5/0xa [ 297.785395][ T9621] ? ima_alloc_init_template+0xb6/0x6d0 [ 297.785420][ T9621] should_failslab+0xc2/0x120 [ 297.785437][ T9621] __kmalloc_noprof+0xe0/0x850 [ 297.785459][ T9621] ? find_held_lock+0x2b/0x80 [ 297.785478][ T9621] ? take_dentry_name_snapshot+0x30b/0x7c0 [ 297.785504][ T9621] ima_alloc_init_template+0xb6/0x6d0 [ 297.785527][ T9621] ? take_dentry_name_snapshot+0x310/0x7c0 [ 297.785555][ T9621] ima_store_measurement+0x1e3/0x5b0 [ 297.785580][ T9621] ? __pfx_ima_store_measurement+0x10/0x10 [ 297.785610][ T9621] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 297.785633][ T9621] process_measurement+0x19cc/0x2350 [ 297.785660][ T9621] ? stack_trace_save+0x8e/0xc0 [ 297.785680][ T9621] ? __pfx_process_measurement+0x10/0x10 [ 297.785701][ T9621] ? __lock_acquire+0x4a5/0x2630 [ 297.785722][ T9621] ? __kasan_slab_alloc+0x89/0x90 [ 297.785737][ T9621] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 297.785760][ T9621] ? init_file+0x95/0x480 [ 297.785779][ T9621] ? alloc_empty_file+0x79/0x1c0 [ 297.785799][ T9621] ? alloc_file_pseudo+0x13a/0x230 [ 297.785819][ T9621] ? ksys_mmap_pgoff+0x242/0x610 [ 297.785836][ T9621] ? __x64_sys_mmap+0x125/0x190 [ 297.785851][ T9621] ? do_syscall_64+0x10b/0xf80 [ 297.785886][ T9621] ? __pfx_aa_file_perm+0x10/0x10 [ 297.785910][ T9621] ima_file_mmap+0x1c4/0x1f0 [ 297.785932][ T9621] ? __pfx_ima_file_mmap+0x10/0x10 [ 297.785959][ T9621] security_mmap_file+0x278/0x9b0 [ 297.785976][ T9621] vm_mmap_pgoff+0xec/0x470 [ 297.785997][ T9621] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 297.786014][ T9621] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 297.786036][ T9621] ? hugetlbfs_get_inode+0x3f5/0x700 [ 297.786062][ T9621] ksys_mmap_pgoff+0x285/0x610 [ 297.786081][ T9621] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 297.786098][ T9621] ? xfd_validate_state+0x129/0x190 [ 297.786118][ T9621] __x64_sys_mmap+0x125/0x190 [ 297.786137][ T9621] do_syscall_64+0x10b/0xf80 [ 297.786154][ T9621] ? clear_bhb_loop+0x40/0x90 [ 297.786172][ T9621] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 297.786188][ T9621] RIP: 0033:0x7f111af9cdd9 [ 297.786202][ T9621] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 297.786217][ T9621] RSP: 002b:00007f111bea0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 297.786232][ T9621] RAX: ffffffffffffffda RBX: 00007f111b215fa0 RCX: 00007f111af9cdd9 [ 297.786242][ T9621] RDX: 00004000000000df RSI: 0000000000000003 RDI: 0000000000000000 [ 297.786252][ T9621] RBP: 00007f111b032d69 R08: 0000000000000401 R09: 0000300000000000 [ 297.786262][ T9621] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 297.786271][ T9621] R13: 00007f111b216038 R14: 00007f111b215fa0 R15: 00007fffeb9191c8 [ 297.786291][ T9621] [ 297.786426][ T30] audit: type=1804 audit(1777600521.972:6): pid=9621 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.0.817" name="anon_hugepage" dev="hugetlbfs" ino=27572 res=0 errno=0 [ 299.800623][ T9658] ================================================================== [ 299.800638][ T9658] BUG: KASAN: vmalloc-out-of-bounds in sys_fillrect+0x174a/0x1910 [ 299.800666][ T9658] Write of size 8 at addr ffffc900047a9000 by task syz.0.828/9658 [ 299.800679][ T9658] [ 299.800689][ T9658] CPU: 0 UID: 0 PID: 9658 Comm: syz.0.828 Tainted: G L syzkaller #0 PREEMPT(full) [ 299.800710][ T9658] Tainted: [L]=SOFTLOCKUP [ 299.800715][ T9658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 299.800724][ T9658] Call Trace: [ 299.800729][ T9658] [ 299.800735][ T9658] dump_stack_lvl+0x100/0x190 [ 299.800752][ T9658] print_report+0x13d/0x4b0 [ 299.800772][ T9658] ? _raw_spin_lock_irqsave+0x52/0x60 [ 299.800790][ T9658] ? sys_fillrect+0x174a/0x1910 [ 299.800809][ T9658] kasan_report+0xdf/0x1d0 [ 299.800826][ T9658] ? sys_fillrect+0x174a/0x1910 [ 299.800849][ T9658] sys_fillrect+0x174a/0x1910 [ 299.800872][ T9658] drm_fbdev_shmem_defio_fillrect+0x22/0x140 [ 299.800889][ T9658] bit_clear+0x17d/0x220 [ 299.800906][ T9658] ? __pfx_bit_clear+0x10/0x10 [ 299.800922][ T9658] ? fb_get_color_depth+0x120/0x250 [ 299.800937][ T9658] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 299.800960][ T9658] __fbcon_clear+0x633/0x760 [ 299.800975][ T9658] ? __pfx_bit_clear+0x10/0x10 [ 299.800993][ T9658] fbcon_scroll+0x314/0x650 [ 299.801008][ T9658] con_scroll+0x464/0x690 [ 299.801029][ T9658] csi_ECMA.constprop.0+0xc57/0x3b60 [ 299.801050][ T9658] ? find_held_lock+0x2b/0x80 [ 299.801069][ T9658] ? __pfx_csi_ECMA.constprop.0+0x10/0x10 [ 299.801092][ T9658] do_con_write+0x3946/0x4a10 [ 299.801112][ T9658] ? trace_contention_end+0x122/0x170 [ 299.801132][ T9658] ? __pfx_do_con_write+0x10/0x10 [ 299.801156][ T9658] con_write+0x23/0xb0 [ 299.801176][ T9658] n_tty_write+0x431/0x11c0 [ 299.801195][ T9658] ? __pfx_n_tty_write+0x10/0x10 [ 299.801209][ T9658] ? trace_kmalloc+0xe3/0x110 [ 299.801225][ T9658] ? __pfx_woken_wake_function+0x10/0x10 [ 299.801243][ T9658] ? rcu_is_watching+0x12/0xc0 [ 299.801260][ T9658] ? file_tty_write.isra.0+0x694/0x890 [ 299.801280][ T9658] ? kfree+0x1dd/0x6c0 [ 299.801298][ T9658] ? __pfx_n_tty_write+0x10/0x10 [ 299.801313][ T9658] file_tty_write.isra.0+0x4d2/0x890 [ 299.801335][ T9658] redirected_tty_write+0xd4/0x120 [ 299.801355][ T9658] vfs_write+0x6ac/0x1070 [ 299.801372][ T9658] ? __pfx_redirected_tty_write+0x10/0x10 [ 299.801393][ T9658] ? __pfx_vfs_write+0x10/0x10 [ 299.801408][ T9658] ? find_held_lock+0x2b/0x80 [ 299.801430][ T9658] ksys_write+0x12a/0x250 [ 299.801446][ T9658] ? __pfx_ksys_write+0x10/0x10 [ 299.801462][ T9658] ? rcu_is_watching+0x12/0xc0 [ 299.801487][ T9658] do_syscall_64+0x10b/0xf80 [ 299.801505][ T9658] ? clear_bhb_loop+0x40/0x90 [ 299.801523][ T9658] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 299.801539][ T9658] RIP: 0033:0x7f111af9cdd9 [ 299.801551][ T9658] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 299.801566][ T9658] RSP: 002b:00007f111bea0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 299.801580][ T9658] RAX: ffffffffffffffda RBX: 00007f111b215fa0 RCX: 00007f111af9cdd9 [ 299.801590][ T9658] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000003 [ 299.801600][ T9658] RBP: 00007f111b032d69 R08: 0000000000000000 R09: 0000000000000000 [ 299.801609][ T9658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 299.801619][ T9658] R13: 00007f111b216038 R14: 00007f111b215fa0 R15: 00007fffeb9191c8 [ 299.801633][ T9658] [ 299.801639][ T9658] [ 299.801648][ T9658] The buggy address belongs to a 0-page vmalloc region starting at 0xffffc900044a9000 allocated at drm_gem_shmem_vmap_locked+0x553/0x860 [ 299.801675][ T9658] Memory state around the buggy address: [ 299.801683][ T9658] ffffc900047a8f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 299.801697][ T9658] ffffc900047a8f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 299.801707][ T9658] >ffffc900047a9000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 299.801719][ T9658] ^ [ 299.801726][ T9658] ffffc900047a9080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 299.801737][ T9658] ffffc900047a9100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 299.801745][ T9658] ================================================================== [ 299.801766][ T9658] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 299.801778][ T9658] CPU: 0 UID: 0 PID: 9658 Comm: syz.0.828 Tainted: G L syzkaller #0 PREEMPT(full) [ 299.801800][ T9658] Tainted: [L]=SOFTLOCKUP [ 299.801806][ T9658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 299.801815][ T9658] Call Trace: [ 299.801821][ T9658] [ 299.801826][ T9658] dump_stack_lvl+0x100/0x190 [ 299.801842][ T9658] vpanic+0x552/0x970 [ 299.801856][ T9658] ? __pfx_vpanic+0x10/0x10 [ 299.801870][ T9658] ? mark_held_locks+0x40/0x70 [ 299.801888][ T9658] ? sys_fillrect+0x174a/0x1910 [ 299.801908][ T9658] panic+0xd1/0xe0 [ 299.801921][ T9658] ? __pfx_panic+0x10/0x10 [ 299.801938][ T9658] check_panic_on_warn.cold+0x19/0x34 [ 299.801954][ T9658] end_report.part.0+0x3a/0x90 [ 299.801974][ T9658] kasan_report.cold+0xe/0x18 [ 299.801994][ T9658] ? sys_fillrect+0x174a/0x1910 [ 299.802016][ T9658] sys_fillrect+0x174a/0x1910 [ 299.802039][ T9658] drm_fbdev_shmem_defio_fillrect+0x22/0x140 [ 299.802056][ T9658] bit_clear+0x17d/0x220 [ 299.802072][ T9658] ? __pfx_bit_clear+0x10/0x10 [ 299.802089][ T9658] ? fb_get_color_depth+0x120/0x250 [ 299.802104][ T9658] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 299.802126][ T9658] __fbcon_clear+0x633/0x760 [ 299.802141][ T9658] ? __pfx_bit_clear+0x10/0x10 [ 299.802159][ T9658] fbcon_scroll+0x314/0x650 [ 299.802175][ T9658] con_scroll+0x464/0x690 [ 299.802195][ T9658] csi_ECMA.constprop.0+0xc57/0x3b60 [ 299.802217][ T9658] ? find_held_lock+0x2b/0x80 [ 299.802236][ T9658] ? __pfx_csi_ECMA.constprop.0+0x10/0x10 [ 299.802260][ T9658] do_con_write+0x3946/0x4a10 [ 299.802280][ T9658] ? trace_contention_end+0x122/0x170 [ 299.802299][ T9658] ? __pfx_do_con_write+0x10/0x10 [ 299.802324][ T9658] con_write+0x23/0xb0 [ 299.802344][ T9658] n_tty_write+0x431/0x11c0 [ 299.802363][ T9658] ? __pfx_n_tty_write+0x10/0x10 [ 299.802377][ T9658] ? trace_kmalloc+0xe3/0x110 [ 299.802394][ T9658] ? __pfx_woken_wake_function+0x10/0x10 [ 299.802411][ T9658] ? rcu_is_watching+0x12/0xc0 [ 299.802428][ T9658] ? file_tty_write.isra.0+0x694/0x890 [ 299.802447][ T9658] ? kfree+0x1dd/0x6c0 [ 299.802466][ T9658] ? __pfx_n_tty_write+0x10/0x10 [ 299.802488][ T9658] file_tty_write.isra.0+0x4d2/0x890 [ 299.802511][ T9658] redirected_tty_write+0xd4/0x120 [ 299.802533][ T9658] vfs_write+0x6ac/0x1070 [ 299.802550][ T9658] ? __pfx_redirected_tty_write+0x10/0x10 [ 299.802572][ T9658] ? __pfx_vfs_write+0x10/0x10 [ 299.802587][ T9658] ? find_held_lock+0x2b/0x80 [ 299.802610][ T9658] ksys_write+0x12a/0x250 [ 299.802626][ T9658] ? __pfx_ksys_write+0x10/0x10 [ 299.802643][ T9658] ? rcu_is_watching+0x12/0xc0 [ 299.802661][ T9658] do_syscall_64+0x10b/0xf80 [ 299.802679][ T9658] ? clear_bhb_loop+0x40/0x90 [ 299.802695][ T9658] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 299.802711][ T9658] RIP: 0033:0x7f111af9cdd9 [ 299.802724][ T9658] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 299.802738][ T9658] RSP: 002b:00007f111bea0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 299.802752][ T9658] RAX: ffffffffffffffda RBX: 00007f111b215fa0 RCX: 00007f111af9cdd9 [ 299.802763][ T9658] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000003 [ 299.802773][ T9658] RBP: 00007f111b032d69 R08: 0000000000000000 R09: 0000000000000000 [ 299.802782][ T9658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 299.802792][ T9658] R13: 00007f111b216038 R14: 00007f111b215fa0 R15: 00007fffeb9191c8 [ 299.802807][ T9658] [ 299.802864][ T9658] Kernel Offset: disabled