last executing test programs: 6.330801892s ago: executing program 1 (id=927): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setsockopt$auto(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x14) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event2\x00', 0x20881, 0x0) sendmsg$auto_ETHTOOL_MSG_MODULE_FW_FLASH_ACT(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="010029bd7000fcdbdf25300e00001800018014000200776c616e31"], 0x2c}, 0x1, 0x1000000}, 0x8094) sendmsg$auto_NFSD_CMD_VERSION_GET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x14, 0x0, 0x200, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4040080}, 0x4000000) write$auto(r0, &(0x7f0000000040)='/dev/input/event1\x00', 0x10001) 6.174365181s ago: executing program 1 (id=929): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, &(0x7f0000002640), 0x241, 0x0) pwritev$auto(r1, &(0x7f0000002980)={&(0x7f0000002900)="dcf510a2ee", 0x4}, 0x9, 0x6, 0xfffffffffffffffd) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000480)='/dev/sda1\x00', 0x8800, 0x0) cachestat$auto(r2, 0x0, 0x0, 0x0) r3 = socket(0xa, 0x2, 0x0) setns(0xffffffffffffffff, 0x2000000) ioctl$auto_VHOST_SET_VRING_CALL2(0xffffffffffffffff, 0x4008af21, &(0x7f0000000040)={0x6, r3}) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) fcntl$auto(r5, 0xb, 0xa79e) fsconfig$auto_JFFS2_COMPR_MODE_FORCELZO(r5, 0xcb88, &(0x7f0000000180)='\xe1\x00', &(0x7f00000001c0)="d83a2a03929d56a06b79b0a07e9ba3bc8ccc2ae02e836c3fba72c9d18092280d620a7d1b530fc3e95c00cee8b12269864645948ac9655b78aa585cc1bc5f2281c97679cedbda4e738d01c74084b9d86adf4f66896efafc7946736c8c94f284b9eff15e1d", 0x4) write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0) writev$auto(r6, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3) r7 = socket(0x1d, 0x5, 0x0) syz_genetlink_get_family_id$auto_smbd_genl(0x0, 0xffffffffffffffff) sendmsg$auto_KSMBD_EVENT_LOGIN_RESPONSE(r7, 0x0, 0x30004850) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) 5.738540249s ago: executing program 0 (id=933): mmap$auto(0x9, 0x2, 0xde, 0xebe, 0x401, 0x5) (async, rerun: 32) close_range$auto(0x2, 0xffffffffffffffff, 0x0) (async, rerun: 32) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty58\x00', 0x800, 0x0) openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000001d40)='/sys/kernel/debug/stackdepot/stats\x00', 0x600, 0x0) (async) getsockopt$auto_SO_SNDLOWAT(r0, 0x6, 0x13, &(0x7f0000000040)='/proc/mtrr\x00', &(0x7f0000000080)=0x3) (async) r1 = bpf$auto_BPF_ITER_CREATE(0x21, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex, r0, 0x51343d2a, 0x0, r0, @relative_fd=r0, 0xff}, 0x80) r4 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x900, 0x0) ioctl$auto_RTC_WKALM_SET(r4, 0x4028700f, 0x0) socket(0xa, 0x801, 0x84) (async) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) r5 = io_uring_setup$auto(0x1, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0x8) (async) ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f00000003c0)) sendto$auto(0x3, 0x0, 0x20011, 0x3, &(0x7f0000000540)=@qipcrtr={0x2a, 0x0, 0x3fff}, 0x1c) (async) r6 = waitid$auto(0x7, 0xffffffffffffffff, &(0x7f0000000280)={@siginfo_0_0={0xfffffffe, 0x6, 0x2, @_sigfault={&(0x7f00000001c0)="b26e3077793a205e6b32c670378d9433c71adf04c153a83b1cfc66e6652211a4df9af5533dcd6312f06fe2ac44c2766825e77ac47e73f62f3c55daef756c2f299f5ef2f7d729baed9e5d23a1cb8fca080f987f39ce97783d981d43601279b0b40fcbe79e4d2fff5fabb18596c9ba99ef14e4b5712e12c841f5329e45169c133ad66e", @_perf={0x4, 0x200, 0xffff4a56}}}}, 0x8, &(0x7f0000000480)={{0x8, 0xeb3}, {0x401, 0x7d4}, 0xda5d, 0x8, 0x5, 0x0, 0x8000000000000001, 0x4, 0x7f, 0x800000000000000, 0x3, 0x9, 0x100000001, 0x4, 0x99, 0x3}) sendmsg$auto_NL80211_CMD_SET_COALESCE(r1, &(0x7f0000000440)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000400)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00082dbd7000ffdbdf256500000014007a801000cd8008002500", @ANYRES32=r6, @ANYBLOB="161a10d2de0b556fa159dcd9d25ae3bfc36a956483afe2d13306ab8ebf2b8041b7849e9e10a9ecd7c261ec88bd8ffd01ac807b3eea53d60229d89a2b6988450a6d039a3748d3e33479cdd665af257bcc5584f0fa2004ac1891137300909056e1901679f0943b6669dbe4e9b2f5a2f1c54af82cffa02ca58050ac67d7b1dfb20320549e1b341aa9c5d34cee68bd000000"], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x800) (async) mmap$auto(0x0, 0x20009, 0x3, 0xeb1, 0x401, 0x8000) select$auto(0x9, 0x0, 0x0, &(0x7f0000000040)={[0xc, 0x5, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x9, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0x1]}, 0x0) (async) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000680)=""/50, 0x32) r7 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video67\x00', 0x81400, 0x0) readv$auto(r7, &(0x7f0000000040)={&(0x7f0000000100)}, 0x8) r8 = socket(0xa, 0x5, 0x84) setsockopt$auto(r8, 0x10000000084, 0x22, 0x0, 0x10) r9 = socket(0x2, 0x1, 0x106) bind$auto(r9, 0x0, 0x6a) r10 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000000), r9) sendmsg$auto_NL80211_CMD_GET_KEY(r9, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)={0x14, r10, 0x400, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x2010}, 0x800) (async) r11 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x101001, 0x0) write$auto(r11, 0x0, 0x0) sendmsg$auto_NL80211_CMD_SET_STATION(r3, &(0x7f0000000640)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000600)={&(0x7f00000006c0)=ANY=[@ANYBLOB="2c000000a4ffbb24d27d6298a1fc8b2a6995e80cc3c94710feb4bdc7febbdd54da2a507892f84069511790d8cf2aa2b60af8707f5bac58971044445864d9fd9bdb142cd4a68a9019be0985c5200c3519ebb9dff5c9ccc8af1253c15d7c020000000000000081ebe91e1a41bb550af8127f5530e8d8a5e0b74072a479edba649a8dbee36a7c87adbe49f9ab2210b31f4250ac27d9b4b0309d255e73f887f821b90a43fcca6720914897ae3c", @ANYRES16=r10, @ANYBLOB="00022bbd7000fbdbdf25120000000800a100c9000000060010001f0b00000500130110000000"], 0x2c}, 0x1, 0x0, 0x0, 0x4054}, 0x20040000) 5.459607336s ago: executing program 0 (id=935): statmount$auto(0x0, &(0x7f0000000180)={0x9, 0xfffffffe, 0x44f, 0x9, 0x10, 0x1007181, 0x0, 0x62, 0x7, 0x800, 0x0, 0x26, 0x4, 0x200003fffffe, 0xfffffffffffffff5, 0x1, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x81, 0xf, 0x22002, 0x200, 0x0, 0x62f, 0x6, 0x3, 0x0, 0x0, 0xb626, [0xfc7, 0x7f, 0x8000, 0x7, 0x0, 0xffff, 0x0, 0x100, 0xa62, 0x9e, 0x0, 0xf, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd, 0x40, 0x81, 0x8a0, 0xb, 0x6, 0x0, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x1000, 0x80, 0x0, 0x0, 0x0, 0x2, 0x0, 0x100002, 0x0, 0x3ff, 0xfece, 0x0, 0x0, 0x0, 0x0, 0x4000000000000]}, 0x0, 0xbc) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000009c0), 0x20000, 0x0) r0 = open(0x0, 0xa09c2, 0xa5) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x9000, 0x0) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) open(0x0, 0x0, 0x110) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x40009, 0x7, 0x9a72, 0x7, 0x27ffe) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop0\x00', 0x1ca00, 0x0) close_range$auto(0x2, r0, 0x3) openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/uprobe_events\x00', 0x113100, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000480)='/dev/dmmidi2\x00', 0x4, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = io_uring_setup$auto(0x6, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xfffffffe, 0x0, 0x1, 0x0, 0x0, 0x4c080}, 0x4000000) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) syz_clone3(&(0x7f0000000380)={0x108805580, 0x0, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0}, 0x58) madvise$auto(0x0, 0x200007, 0x8) madvise$auto(0x0, 0x200204, 0x15) 5.103591417s ago: executing program 3 (id=940): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/ram15/queue/nomerges\x00', 0x14d603, 0x0) read$auto(r0, 0x0, 0x22) r1 = openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, 0x0, 0x2, 0x0) writev$auto(r1, &(0x7f0000001900)={0x0, 0x100000000}, 0x8) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0xd, 0x4, 0x8000000000000000, 0x0) r2 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0) write$auto(r2, 0x0, 0xc3) 4.887636866s ago: executing program 0 (id=942): socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x82002, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)="fb", 0x1) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/apparmor/parameters/path_max\x00', 0x40, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, 0x0, 0x0) 4.421448888s ago: executing program 3 (id=943): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x121681, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x6) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)={0x24, r4, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000) write$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffffff, &(0x7f0000000140)="d18073", 0x3) r5 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r5, 0xffffffffffdffe00, &(0x7f0000000140)) 4.091527566s ago: executing program 0 (id=945): write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0x26, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) io_uring_setup$auto(0xf0, &(0x7f0000000180)={0x6, 0x18, 0xd64, 0xc852, 0x6, 0x6, r0, [0x1, 0x401, 0x1000], {0x7, 0x5, 0x0, 0x4, 0x95, 0xf4c, 0x4, 0xfffffffb, 0x65f09f6d}, {0x9, 0xadc, 0x10000, 0x5, 0x5, 0xffffffff, 0x1000, 0x54f, 0x5}}) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0xa, 0x0) socket(0x11, 0x5, 0x0) r1 = socket(0xa, 0x3, 0xff) connect$auto(r1, &(0x7f00000018c0)=@generic={0xa}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) write$auto_proc_mem_operations_base(0xffffffffffffffff, 0x0, 0x0) syz_clone3(0x0, 0x0) madvise$auto(0x1ffff000, 0x81, 0x100000000) mmap$auto(0x0, 0x400008, 0xb, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c00", @ANYBLOB="01032cb57000fbdbdf250a004b4900000600010017000000"], 0x1c}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0) r3 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r2) sendmsg$auto_MACSEC_CMD_ADD_RXSC(0xffffffffffffffff, &(0x7f0000004100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="141548356809c3993f7ba638ead564655b000000", @ANYRES16=r3, @ANYBLOB="010026bd7000fcdbdf2501000000"], 0x14}, 0x1, 0x0, 0x0, 0x20040801}, 0x4000040) unshare$auto(0x40000080) socket(0xa, 0x5, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/fs/cifs/mount_params\x00', 0x802, 0x0) mmap$auto(0x0, 0x20008, 0x4000000000df, 0xf1f, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r4 = socket(0xa, 0x1, 0x84) getsockopt$auto(r4, 0x84, 0xd, 0x0, &(0x7f0000000000)=0x1000095) 3.657576268s ago: executing program 2 (id=948): r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), r0) write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00', 0xfffffffffffffffa) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa001, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) write$auto_seq_oss_f_ops_seq_oss(0xffffffffffffffff, &(0x7f0000000040)="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", 0x13e) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000003b40)={'xfrm0\x00'}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40001) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4000054}, 0x40000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x60, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mbind$auto(0x2000, 0x100000008, 0x2100000000, 0x0, 0x6, 0x2) sysfs$auto(0x2, 0x17, 0x0) fsconfig$auto_SHMEM_HUGE_NEVER(0xffffffffffffffff, 0x1, &(0x7f0000000000)='-\x00', 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x40004) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x7ffd) socket(0xa, 0x3, 0x3a) ioctl$auto(0x3, 0x8936, r1) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, &(0x7f0000000000)) ioctl$auto_SNDCTL_DSP_SUBDIVIDE(0xffffffffffffffff, 0xc0045009, &(0x7f0000000140)="d7dbbdcb7fc6f4c177697a02b99b30c60df4051360f2603ea5c9f30c9dc2bbaccc9583e5957d09004ed20c3323c2421640834a2751fcc06fdefbe4814e7beda1fb3098096ef0de40aa8912422b4e8fc9a954889b8969932ef7da46db552a747bbf4ee5a4ccfb57bc6f18719bac15596cc4629c47bea2ab888ddf08b1a355acfc00ca3d6499c8620f7c911905830966bd57e34c5ba01b70821b507e8938f8a87cdd7a34fd6f586f63c9b3fd6aa3370e4a92a183ab6d6f20a3d5f12b6b01dfc7df35a3455fe7b848df6c73159ea138ae52afb71e101cbfcd8074d5cd67257b7ed569723b9e1979034e7a9cbd1326cc093e6f44b7eab1de695a") mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) syz_clone3(0x0, 0x6680acb693233011) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/mac80211_hwsim/hwsim14/power/autosuspend_delay_ms\x00', 0x167b02, 0x0) setsockopt$auto(r0, 0x110, 0x4, 0x0, 0x4) 3.192271843s ago: executing program 3 (id=949): r0 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mtd0\x00', 0x601, 0x0) ioctl$auto_MEMSETBADBLOCK(r0, 0x40084d0c, &(0x7f0000000100)=0x40) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a00010000000000000000000600070001"], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x7, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4008810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1d"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x804) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x89}, 0x7}, 0x3, 0x0) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/vmallocinfo\x00', 0x0, 0x0) read$auto_proc_iter_file_ops_compat_inode(r1, &(0x7f0000000180)=""/250, 0xfa) 2.882855284s ago: executing program 1 (id=950): madvise$auto(0x0, 0xffffffffffff0005, 0x17) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(r0, 0x400, 0x0) r1 = open(&(0x7f0000000800)='./file0\x00', 0x80000, 0x54) r2 = fcntl$auto(r1, 0x401, 0x1) madvise$auto(0x0, 0xffffffffffff0005, 0x17) r3 = pidfd_open$auto(0x1, 0x0) setns(r3, 0x60020000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r4 = openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000001580)='/sys/kernel/debug/tracing/events/vmalloc/enable\x00', 0x204, 0x1a00) read$auto(r4, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) shutdown$auto(0x200000003, 0x400002) r5 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) setresuid$auto(0x8, 0x8, 0x0) landlock_restrict_self$auto(0xffffffffffffffff, 0x0) landlock_create_ruleset$auto(&(0x7f0000000000)={0x0, 0x401, 0x7}, 0x6, 0xfffffffe) landlock_restrict_self$auto(r5, 0x6) landlock_restrict_self$auto(r0, 0x0) msgctl$auto(0x1, 0xff, &(0x7f0000000140)={{0x2, 0xee00, 0xee01, 0x1dc, 0x9, 0xffff, 0x101}, &(0x7f0000000040)=0xfe, &(0x7f0000000100)=0x4, 0x1f880000000000, 0x5, 0x80000000, 0x5, 0x7fffffff, 0x8, 0x1000, 0x2, @raw=0x8, @raw}) ioctl$auto_KVM_HAS_DEVICE_ATTR(r2, 0x4018aee3, &(0x7f00000001c0)={0x1, 0xee01, 0x1, 0x13}) keyctl$auto(0x2, 0x0, r6, r7, 0x7) madvise$auto(0x9, 0x1000000000, 0x5) umount2$auto(&(0x7f0000000080)='.\x00\x17\xe7\xcbK\x17\xa2\xa0\x9a\xf6\x81\xee\xbfB\x9d\x8cL\xc9 \f\xd5\x1f\xf5\xd0\xe2\xfb\x1bG[\x0e\v\xbcq\xa1(Gz\xd7\x02Viw@\x8c9 \xee\x8a\x04\xe7\xd6\xc5\xc6_\xb2\ndUsI\xd8o\x00\x00\x00\xff\xe4\xed^0\xed\xc5\tg\x91\x87\xb5\xa9\xcd\xde\xf2L\x10VL$\xb3\xd4\x89\x01Y@%v\xa2\a\x98G\xf1\x0eMg\xe1p5u\xb3E\xfc\x1c\xd2-\xe4\\;nQJ', 0x8) mbind$auto(0x8000, 0xfaa0, 0x2, &(0x7f0000000280)=0x6, 0x3, 0x1) 2.632104189s ago: executing program 0 (id=951): mmap$auto(0x0, 0x2020005, 0x203, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS1\x00', 0x101e81, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/firmware/acpi/interrupts/ff_pmtimer\x00', 0x0, 0x0) r1 = epoll_create$auto(0x8800001) epoll_ctl$auto(r1, 0x1, r0, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x18, 0xa, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/self/attr/apparmor/prev\x00', 0x541000, 0x0) recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000380)={{&(0x7f00000001c0)="a36d3fa58cc14c483eaeefbda25ed11e6584b0e06b6f7d2a0920bb3dac705aa384572b6a4be4e53907a7b258", 0x7fff, 0x0, 0x9, 0x0, 0x2, 0x9}, 0x2}, 0xfffffffd, 0x3, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) ppoll$auto(0x0, 0x7f, 0x0, &(0x7f00000001c0)={0x3}, 0x8) mount$auto(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)='nfs\x00', 0x1, &(0x7f00000001c0)) r2 = socket(0xa, 0x3, 0x2f) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40811}, 0x4000013) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="5e0027b4839f3015398d3b61", @ANYRES32, @ANYRES32=r2], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) r3 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000f80), 0xffffffffffffffff) sendmsg$auto_ILA_CMD_DEL(0xffffffffffffffff, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000001000)={&(0x7f0000000fc0)={0x14, r3, 0x1, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x44884) openat$auto_kernel_debug_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f0000000040), 0x242780, 0x0) r4 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event\x00', 0x121000, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r5, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01002bbd7000fcdbdf2504000000040010"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800) socket$nl_generic(0x10, 0x3, 0x10) madvise$auto(0x0, 0xff7fffffffff0001, 0x15) close_range$auto(r4, 0x8, 0x0) 2.328159343s ago: executing program 3 (id=952): getcwd$auto(&(0x7f0000000000)='-&!#),\x00', 0x1) ioctl$auto_XFS_IOC_OPEN_BY_HANDLE(0xffffffffffffffff, 0xc038586b, &(0x7f0000000380)={0xffffffffffffffff, &(0x7f0000000100)="55ec96ba5d5f608745c1e22a884c6d0164be62ccb0e183b63165270590db8ec1ced021b1052546096f17bcf881ffc3adceb388bf26db8319278491258ed4ac455c742d1a9ba377dfcaa2521cb3e0032c0c20a817aca5122a8600a36a7ef3790ec0d927dd1ddd62d9ed2744a2750c85d27824e2c111e2f20db40631059a681856cb53003293094d19e866dcfd9299f7cebc33046a48391d8ad2812586919f022a279ac38e2c91c96e5c6fbfcdd787f2076af2e77c5af94a1e257bca3373e338", 0xfff, &(0x7f00000001c0)="7991e1df51d3021366b4a4f68060792e21818bae59e95a284340a026230bd026d52179dd0f96a3ac89db1db04595f8867ea68dfbdb27b0ef5391f88618f02c025557211d5c6dc3bd84205c3a222078e766e31d84f552c97540abbaa0159b05d438f6cfc1ea3d2dcd085b468c50f0bc46682b1275e0501564706e1c62b9f66302c511ca1c5daaedd25e78602ed97cdccc7c5f40b84cb9a3a7fdf37ac4a82e882f58cd5963e12099afd742802e45b3efc3a9912295d833c171ff8a4e84975327fd62c5c548bfa4654ae1415d1462a41abc428c8d181cbe2ebfeaf7b7c4dfa9", 0x6, &(0x7f00000002c0)="0310db1a7a96e91061aa94647626ee82fbcfb48e802847596c5020780b1aa09ad5303457d332dcf0357492e9af065fbef7e7102a096ae00b6065bdb0671891fee3ef8736e973300a73a9540dd0c3e78d7681c8526850d7a3c8c7f033ba69df77919c5a", &(0x7f0000000340)=0x2f75}) r0 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/fuse\x00', 0x480281, 0x0) write$auto_fuse_dev_operations_fuse_i(r0, &(0x7f0000000040)="133c01dc078d20dd6784d3c57ec1fb7a1e0bfdc174198db03bbcca7a49d08dcddedd17953d27f6032b6769e45d3739f70f8e8847c5a9bfd94d694c85483ca9edc613987132afbcc6fc8f18825b3b33eb39e995c03259ec76f814558b38dd64123d416a419827a50cbb5546e5243756e4d4e10c734815fb37a8bba75e2b96969036d2c51ae90e25734269047d08851306e814732514fb89275b1d21f25028d4ff8fd76bb7a1e52e6a7d", 0xa9) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x1, 0x0) sendto$auto(0x3, 0x0, 0x13, 0x7, &(0x7f0000000440)=@tipc=@name={0x1e, 0x2, 0x3, {{0x1, 0x1}}}, 0x20) setsockopt$auto(0x3, 0x10f, 0x8a, 0x0, 0x14) pread64$auto(0xffffffffffffffff, &(0x7f00000012c0)='/d~v\apts/ptmx\x00', 0x10000000005, 0x8) 2.128334128s ago: executing program 3 (id=953): mmap$auto(0x0, 0x2020005, 0x203, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS1\x00', 0x101e81, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/firmware/acpi/interrupts/ff_pmtimer\x00', 0x0, 0x0) r1 = epoll_create$auto(0x8800001) epoll_ctl$auto(r1, 0x1, r0, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x18, 0xa, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/self/attr/apparmor/prev\x00', 0x541000, 0x0) recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000380)={{&(0x7f00000001c0)="a36d3fa58cc14c483eaeefbda25ed11e6584b0e06b6f7d2a0920bb3dac705aa384572b6a4be4e53907a7b258", 0x7fff, 0x0, 0x9, 0x0, 0x2, 0x9}, 0x2}, 0xfffffffd, 0x3, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) ppoll$auto(0x0, 0x7f, 0x0, &(0x7f00000001c0)={0x3}, 0x8) mount$auto(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)='nfs\x00', 0x1, &(0x7f00000001c0)) r2 = socket(0xa, 0x3, 0x2f) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40811}, 0x4000013) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="5e0027b4839f3015398d3b61", @ANYRES32, @ANYRES32=r2], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) r3 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000f80), 0xffffffffffffffff) sendmsg$auto_ILA_CMD_DEL(0xffffffffffffffff, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000001000)={&(0x7f0000000fc0)={0x14, r3, 0x1, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x44884) openat$auto_kernel_debug_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f0000000040), 0x242780, 0x0) r4 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event\x00', 0x121000, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r5, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01002bbd7000fcdbdf2504000000040010"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800) socket$nl_generic(0x10, 0x3, 0x10) madvise$auto(0x0, 0xff7fffffffff0001, 0x15) close_range$auto(r4, 0x8, 0x0) 1.543023678s ago: executing program 2 (id=954): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x23, 0x0) socket(0x1e, 0x4, 0x0) socket(0x1e, 0x4, 0x0) socket(0x1e, 0x4, 0x0) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event2\x00', 0x20881, 0x0) sendmsg$auto_NFSD_CMD_VERSION_GET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x14, 0x0, 0x200, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4040080}, 0x4000000) write$auto(r0, &(0x7f0000000040)='/dev/input/event1\x00', 0x10001) 1.480076044s ago: executing program 1 (id=955): mmap$auto(0xfff7fffffffffffd, 0x1, 0xdf, 0x14, 0x401, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0) io_uring_setup$auto(0x2000001, 0x0) mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x0, 0x0) mmap$auto(0x0, 0x83, 0xe2, 0xeb1, 0x405, 0x8000) openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event_pid\x00', 0xa0000, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sda\x00', 0x84100, 0x0) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) semctl$auto(0x7, 0x2, 0x13, 0x1) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r0, 0x560a, r0) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x22, &(0x7f0000000000), 0x1) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x400008000) r1 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) getsockopt$auto_SO_MAX_PACING_RATE(r1, 0x4, 0x2f, &(0x7f00000005c0)='$\x00', &(0x7f0000000600)=0x80) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000580)='/sys/power/disk\x00', 0xc0082, 0x0) write$auto(r2, &(0x7f0000000340)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,D\xbf&\x9eb|\n\xee\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbb\xbb\xf9\xcdz\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x1d\x88mr\xfd\xf1\x1b;\xabt\xd1a}\x10\xab\xeb_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL\x15/\xf9\'\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\aA\xe9(\x00\x00\x00\x00\x00N\xb5J\xc8A\xc7m\xbf\x19\xae\x9d\xcaR\x0f\xa8\xdf\xe4M\xe1>k\x93\x01\xe5\xba(\x96K\xc1=d3\xe00u\"`]\xb3\x11a\x1cSn\xe7\x87\x84\x93\xe4\x90]\x86\x10\xe5\xacK\x99\xc1$\x91\x05\x00\x00\x00O\x01xc\xa8\x9a\x1bK\x00\x00\xf6\xa2\x8a\x7f4\f[BLH$6\xfb,\xd8\xd3\xd0\xa1v\x14\xcd\x1a\xbdx\xaed\x9d\\\xd0\xff\xd2Y\xc4\x9fT\xb2\xd5\r\xf1#\xd5\xf2\x9cU\xd1:+\xb63\xae\xc1\xf7\xe1\xd4\x879?\xdd\xd6\xd4\xa3\xc7\xd8 S\xfc:\xe1{\x16\\h\x9d\xbc#KEC\x1a\xf9KH`\x82e:_\x9b\xf1\xc1\x8e\xf0\xc46\x98\xd6u\x90\x18\x8f\xe8\xc3%\x8e9\xab\x7f\x0e\n\xb2\xa4\xef\x90\xb16\x04\xbc\xc9\xdc\xad,\xcc\xad}DY\x1d\x1fv\x90\x97u\xa1\xfb\x13\xa93\xb6XJ\x84\xe3\xc1)\x98\xae5q\xa5L\x87\x1aq\x1d0\xf1\xcb\xe5\xf4F!*\xf9\xb3,w\"\xf2\xd0\xd1Vj\xd0\x06\xcc\xbc\xee0\x98.\xd9dC\x8e9\xfdM\\\xc5&\\\x9b\x81\x88t\xa4\x9f\xd1P\xd2e\x9c\xf9\xd2\xaf\x00'/478, 0xb) 1.358492684s ago: executing program 0 (id=956): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0) io_uring_setup$auto(0x401, 0x0) r1 = getsockopt$auto(0xffffffffffffffff, 0x4, 0x8, 0x0, 0x0) mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000) r2 = io_uring_setup$auto(0x6, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x2082, 0x0) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) r3 = socket(0x25, 0x5, 0x3) setsockopt$auto(r3, 0x2000000000000116, 0x80, 0xfffffffffffffffd, 0x10004) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) r4 = socket(0xa, 0x5, 0x0) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) getsockopt$auto_SO_MARK(r1, 0x4, 0x24, &(0x7f00000000c0)='/dev/nullb0\x00', &(0x7f0000000100)=0xe6) ioctl$auto(r5, 0x4b4e, 0xffffffffffffffff) close_range$auto(r2, r4, 0x80000c) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpu0/cache/index2/level\x00', 0x121600, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000200)=""/197, 0xc5) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x81, 0x8000000000001, 0xa}, 0x4000000000000b, 0x6e) landlock_restrict_self$auto(0xffffffffffffffff, 0x7) mmap$auto(0xfffffffffffffffe, 0x2020007, 0x403, 0xeb1, r5, 0x8000) socket(0xa, 0x801, 0x84) r7 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0) read$auto(r7, 0x0, 0x80000000) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0x100, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8001) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0) 1.297439103s ago: executing program 2 (id=957): statmount$auto(0x0, &(0x7f0000000180)={0x9, 0xfffffffe, 0x44f, 0x9, 0x10, 0x1007181, 0x0, 0x62, 0x7, 0x800, 0x0, 0x26, 0x4, 0x200003fffffe, 0xfffffffffffffff5, 0x1, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x81, 0xf, 0x22002, 0x200, 0x0, 0x62f, 0x6, 0x3, 0x0, 0x0, 0xb626, [0xfc7, 0x7f, 0x8000, 0x7, 0x0, 0xffff, 0x0, 0x100, 0xa62, 0x9e, 0x0, 0xf, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd, 0x40, 0x81, 0x8a0, 0xb, 0x6, 0x0, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x1000, 0x80, 0x0, 0x0, 0x0, 0x2, 0x0, 0x100002, 0x0, 0x3ff, 0xfece, 0x0, 0x0, 0x0, 0x0, 0x4000000000000]}, 0x0, 0xbc) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000009c0), 0x20000, 0x0) open(0x0, 0xa09c2, 0xa5) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x9000, 0x0) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) open(0x0, 0x0, 0x110) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x40009, 0x7, 0x9a72, 0x7, 0x27ffe) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop0\x00', 0x1ca00, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = io_uring_setup$auto(0x6, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xfffffffe, 0x0, 0x1, 0x0, 0x0, 0x4c080}, 0x4000000) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) madvise$auto(0x0, 0x200007, 0x8) madvise$auto(0x0, 0x200204, 0x15) 1.261117151s ago: executing program 1 (id=958): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x121681, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x6) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)={0x24, r4, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000) write$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffffff, &(0x7f0000000140)="d18073", 0x3) r5 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r5, 0xffffffffffdffe00, &(0x7f0000000140)) 800.795948ms ago: executing program 2 (id=959): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/ram15/queue/nomerges\x00', 0x14d603, 0x0) read$auto(r0, 0x0, 0x22) r1 = openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f00000008c0)='/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x2, 0x0) writev$auto(r1, 0x0, 0x8) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0xd, 0x4, 0x8000000000000000, 0x0) r2 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0) write$auto(r2, 0x0, 0xc3) 396.951357ms ago: executing program 1 (id=960): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/dummy0/flags\x00', 0x2c62, 0x0) r1 = openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, 0x0, 0x20a01, 0x0) r2 = io_uring_setup$auto(0xffff7fff, &(0x7f0000000340)={0x2, 0x7, 0x2, 0xb, 0x7, 0x10000, r1, [0x4, 0x8, 0x9], {0x5, 0x8, 0x6, 0x8e, 0x8, 0x6a, 0xa3, 0xfffff50c, 0x6}, {0x1c7589b6, 0x7ff, 0x207, 0x3, 0x1000006, 0x0, 0x6, 0x207, 0xfffffffffffffff8}}) r3 = ioctl$auto_TUNGETVNETLE2(r2, 0x800454dd, &(0x7f00000003c0)) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(r1, &(0x7f0000000240)='/dev/vhost-net\x00', 0x4) r4 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x42842, 0x95) sendmsg$auto_NL80211_CMD_PROBE_CLIENT(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x6}, 0x20000000) read$auto(r4, 0x0, 0x1) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) mmap$auto(0x0, 0x2020009, 0x3, 0x1000000000000eb1, r3, 0x8001) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0) socket(0x3, 0x6, 0x4) io_uring_setup$auto(0x2, 0x0) r5 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0) getsockopt$auto_SO_TXREHASH(r5, 0xffffff00, 0x4a, &(0x7f00000001c0)='\x00', &(0x7f0000000200)=0x4) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r6, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0x10, 0x0, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) madvise$auto(0x2000, 0x20499d, 0x9) write$auto(r0, &(0x7f0000000580)='0\x00\xa6\xcc\r\x91QU\x9d\x15\x84\xab`\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04\x7f\x00\x00\x00\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18K\xb0D\x91OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfdFq\xe7\x03\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10)kcsZ^3H\xf1\xdf\x96\xfd)\xf3\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xaeO\x03\x91p6\xa0\xb9g.\xde\xd4`\xfa\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\x88\xd8\'\xe4\xf8\xe9f{\xf7gl\r\xdf\xc8n)J\xa2\xfa\x03\xbe%\xf6\xd1\xfb\xbcg\"\a\x03\xdef\x10K\xa1\x80z\xd1Z{\xb0\x91\ft\xf5\xaf:\xc9\x02~`\x11\x15\xa3\xd9y\xb3)~\xb6\xaaB\x16O\x1c\xdeY2\x8f*R\xf6\xb5m\xc6\x91+\x14\x04\xf7*9\x9e\x04\xe3\x03\b\x02kud\xf8j\x95I.\x04\\\x80S\xa5\n\x14\x05\x12\n^\xc9|\xf8.>\x8b\xb1y\xe7\x96\x9asW\x10}(\x9c\xc9\x84\xec\xf68\xb7\xd7\xec\xc9F\xe1v\x9aD\t\xc6f\ay\xafX\x96\xcc\xa8\xae\xcb\xac\xd5\xd4\xee1\"L\xacC\t\x81\x8b3\xc6\x1e\xbbwlK\xd2\x9e\xc8\xde\xed\xb6\xbeX\xe4`s\xec\xec]\xb3\xfa\xd8\x86\x1bP\xa3\xc4\xb4\x84\xd2\x94Z\xbeA\x1f,a\a\xf7\x7f\x12\xa9E\xfb\xcd\xa2@\x83<\xe0\xaf\xc5\'\xcf\xa3\xf2KD\x80\x8c\xac\xb1\xd6\r\xf4+\x9cSx\xa3\xf3mE\xbbD\xd3\x1bK\xdc\xc7\x9c\xa6M3\x1f\xac{\xc1\x036\xd16\b\x00\xa7\xc9&\x92\x0e~\x05LM \xb8\xf6.,\xf8\xa8\a\xa5)\x91\xc4\xe9P\xa6\xda\xef\xe1\xbdu\xa2\xb7\xa3\x0eZ\xdf\xaf\x87\xa10\xa0\xc8\xa4\xa0O\x96\xeb\xb9\x10\xf3]\\8\v\xcc\x16\xca\xadm\xd3\xcc\xa4\\\x192\xc6\xb1i/\x90$\x05Y>soi)\x12\x05@\a\xe9c\x17\x818\x1e\x8fn\\)\x1a\x96\xc0\xf6\xa4\xf1]\xfe\xa7\x1e\x02\xd3\x1f\x97MT\xd5g\x1e\x04sD\x92+', 0x9) 389.288338ms ago: executing program 3 (id=961): mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x3000000, 0x0, 0x1, 0x0, 0x10000000000000, 0x2}, 0x895}, 0x3, 0x0) r0 = getpid() sendmsg$auto_NL80211_CMD_SET_HW_TIMESTAMP(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYRESOCT=r0, @ANYBLOB="ec972a543373198f253596cfb2ea4fb06a2af7052d8b889343b3a6c451af34f0168f97c0fc25f1d40ba0781b457780e2c859feef63b59730996a6d2791643a9d32967dcd5e4858af9dbc11c78c4d22a980f9d3eb3a02a404accd15003698df5e2c44875ee6b1ad429bb0c7bf66e5a795d211f4010e825b1724cccb295ab12f5f4ce4431218484bfd1c39f9196467f2d23fd44bded987d6a8543fa734e06e5af2", @ANYRES32=r0, @ANYRESOCT=r0, @ANYRES16=r0, @ANYRESOCT=r0], 0x14}, 0x1, 0x0, 0x0, 0x20000804}, 0x4080) process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) bpf$auto(0x5, &(0x7f0000000000)=@iter_create={0x15, 0x8}, 0x7) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) write$auto(r1, &(0x7f00000007c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xd8\x9c\xf7?:\x1a\xc62\x911e\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xff\x7f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\x87N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057\x1c&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\x7f\x00\x00\x00AN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81.f\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00\x00\x00\xec\xbd_r\xf16\xec\xf3\xbb[.\xf3\xef\xf8\x16x\x9e\xb3*:/L\xa0Kg\xf0\xa2\x84\xa3o\xcc\x9e\xd3\xeb\xd3(\xaa\x93g~\x01\x81\x1eV\xf1L\xfc\xad\xa9#O\xe4\x12\xd3\xbda\xbc\x9a\x9f+9\'\xc4\x13\xf0\xc88\x1d80?\xc2\a\af\xdc?-&\xedAd\x9c\xe5&\xb9\x14\xe1\x85 \xbf\x18\xfc:#\xcf\x7ffT\xefPb\xe1\xfa]\xcc\x8a\xe3\x99\x98u\x9bj>\x9d\xc2\x1fk\x87\x92\xfb(U\xa8\xcd4+\xf6e5],\xec\x84 \x1b\x10d\x1b@\x84X\xa1\xa8\xd7\xccO\xb0Qq\x1a\xa4<\\\x0e\xa4\x7f^\x1a|\xfd\xe6#\x00\x9e\x1d\x00k\x84\x1b\xa3\xb1O\xe0IzJRO\xf4,\xe5\xdb\x03CA\x13Q\x84\xbb\x88\xb4\xe3\xba\xf0/\xd0\x04\ny\a\x8d\x12h\xe22\xcb\"\xce\x00\x00', 0x5) ioctl$auto_USBDEVFS_CLAIMINTERFACE(0xffffffffffffffff, 0x8004550f, 0x0) r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000340)='/dev/mtd0\x00', 0x2, 0x0) ioctl$auto_MEMWRITEOOB64(r2, 0xc0184d15, &(0x7f0000000380)={0x5, 0x0, 0x9, 0x9}) r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0) read$auto(r3, 0x0, 0x1f40) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) 245.723765ms ago: executing program 2 (id=962): sendmsg$auto_VDPA_CMD_DEV_VSTATS_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20004045}, 0x48084) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x30, 0x0, 0x200, 0x70bd2c, 0x25dfdbfe, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x7}, @NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0x401}, @NL80211_ATTR_ASSOC_SPP_AMSDU={0x4}, @NL80211_ATTR_BSS_BASIC_RATES={0x6, 0x24, "34a4"}]}, 0x30}, 0x1, 0x0, 0x0, 0x810}, 0x1) pipe$auto(&(0x7f0000001480)=0xffffffffffffffff) vmsplice$auto(r0, &(0x7f0000000000)={0x0, 0x7}, 0x5, 0x1) write$auto(0x3, 0x0, 0xffd8) sendmsg$auto_VDPA_CMD_DEV_VSTATS_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20004045}, 0x48084) (async) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) (async) sendmsg$auto_NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x30, 0x0, 0x200, 0x70bd2c, 0x25dfdbfe, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x7}, @NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0x401}, @NL80211_ATTR_ASSOC_SPP_AMSDU={0x4}, @NL80211_ATTR_BSS_BASIC_RATES={0x6, 0x24, "34a4"}]}, 0x30}, 0x1, 0x0, 0x0, 0x810}, 0x1) (async) pipe$auto(&(0x7f0000001480)) (async) vmsplice$auto(r0, &(0x7f0000000000)={0x0, 0x7}, 0x5, 0x1) (async) write$auto(0x3, 0x0, 0xffd8) (async) 0s ago: executing program 2 (id=963): r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), r0) write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00', 0xfffffffffffffffa) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa001, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) write$auto_seq_oss_f_ops_seq_oss(0xffffffffffffffff, &(0x7f0000000040)="5f74ab2fc43781e047140a5cbc3ac5229b90633d9cddda9efb1f2c3d5d1e63f3fb5acf079b9336319d009cb514679a42eaca52b81c166d19625d173c26ece6542f2fb29712f4fb9072fc432b4cf3e6f5a7f3c9f91ee88ba5fa11d48fd3658e8f44f8423b4cd02bbec912ed34f9f4b19b03d4c62b24ede44c0c76c34edf7bde061903c2ee4c64110ac668239fa53ba42933ae74c3d173663248ff0945dd2e405e0d378b5a8e4643a7bc3b35a7248431450ca8901467ea6dc5d86de1e90f869f6a04ac10043676f3b2c7f1339b2d7468133fb8447d17846b6b78079ecc31d7d0f74caa4a3db1ac4d312bfdb34bd331f1f771a2396108561a52153d63a7b2a3a077a7e4c1a22bcb23e1f3e511fee310baa67904d2aad4d6671e8b77c7720e37e84e0efecb60a35f188cbe8b8b2fb3967b78aa482aabb103f23083baa9b2ae65", 0x13e) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000003b40)={'xfrm0\x00'}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40001) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4000054}, 0x40000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x60, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mbind$auto(0x2000, 0x100000008, 0x2100000000, 0x0, 0x6, 0x2) sysfs$auto(0x2, 0x17, 0x0) fsconfig$auto_SHMEM_HUGE_NEVER(0xffffffffffffffff, 0x1, &(0x7f0000000000)='-\x00', 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x40004) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x7ffd) socket(0xa, 0x3, 0x3a) ioctl$auto(0x3, 0x8936, r1) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, &(0x7f0000000000)) ioctl$auto_SNDCTL_DSP_SUBDIVIDE(0xffffffffffffffff, 0xc0045009, &(0x7f0000000140)="d7dbbdcb7fc6f4c177697a02b99b30c60df4051360f2603ea5c9f30c9dc2bbaccc9583e5957d09004ed20c3323c2421640834a2751fcc06fdefbe4814e7beda1fb3098096ef0de40aa8912422b4e8fc9a954889b8969932ef7da46db552a747bbf4ee5a4ccfb57bc6f18719bac15596cc4629c47bea2ab888ddf08b1a355acfc00ca3d6499c8620f7c911905830966bd57e34c5ba01b70821b507e8938f8a87cdd7a34fd6f586f63c9b3fd6aa3370e4a92a183ab6d6f20a3d5f12b6b01dfc7df35a3455fe7b848df6c73159ea138ae52afb71e101cbfcd8074d5cd67257b7ed569723b9e1979034e7a9cbd1326cc093e6f44b7eab1de695a") mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) syz_clone3(0x0, 0x6680acb693233011) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/mac80211_hwsim/hwsim14/power/autosuspend_delay_ms\x00', 0x167b02, 0x0) setsockopt$auto(r0, 0x110, 0x4, 0x0, 0x4) kernel console output (not intermixed with test programs): 1429][ T7267] __x64_sys_mmap+0x125/0x190 [ 165.711474][ T7267] do_syscall_64+0x106/0xf80 [ 165.711506][ T7267] ? clear_bhb_loop+0x40/0x90 [ 165.711542][ T7267] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.711569][ T7267] RIP: 0033:0x7fc9d339c799 [ 165.711594][ T7267] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 165.711620][ T7267] RSP: 002b:00007fc9d4333028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 165.711647][ T7267] RAX: ffffffffffffffda RBX: 00007fc9d3615fa0 RCX: 00007fc9d339c799 [ 165.711666][ T7267] RDX: 00000000000000e3 RSI: 0000000000400008 RDI: 0000000000000000 [ 165.711682][ T7267] RBP: 00007fc9d3432bd9 R08: 0000000000000002 R09: 0000000000008000 [ 165.711699][ T7267] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 165.711724][ T7267] R13: 00007fc9d3616038 R14: 00007fc9d3615fa0 R15: 00007ffc686fd678 [ 165.711770][ T7267] [ 166.424649][ T7277] binder: 7275:7277 ioctl c0306201 0 returned -14 [ 167.317880][ T7292] netlink: 4 bytes leftover after parsing attributes in process `syz.0.327'. [ 168.146134][ T7287] can: request_module (can-proto-0) failed. [ 170.780806][ T7339] netlink: 4 bytes leftover after parsing attributes in process `syz.3.337'. [ 170.837647][ T7344] netlink: 'syz.3.337': attribute type 3 has an invalid length. [ 170.867818][ T7345] FAULT_INJECTION: forcing a failure. [ 170.867818][ T7345] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 170.880087][ T7344] netlink: 306 bytes leftover after parsing attributes in process `syz.3.337'. [ 170.950126][ T7345] CPU: 1 UID: 0 PID: 7345 Comm: syz.2.339 Tainted: G U L syzkaller #0 PREEMPT(full) [ 170.950176][ T7345] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 170.950229][ T7345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 170.950245][ T7345] Call Trace: [ 170.950254][ T7345] [ 170.950264][ T7345] dump_stack_lvl+0x100/0x190 [ 170.950322][ T7345] should_fail_ex.cold+0x5/0xa [ 170.950358][ T7345] _copy_to_user+0x32/0xd0 [ 170.950388][ T7345] simple_read_from_buffer+0xcb/0x170 [ 170.950436][ T7345] proc_fail_nth_read+0x1af/0x230 [ 170.950474][ T7345] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 170.950512][ T7345] ? rw_verify_area+0xce/0x6d0 [ 170.950552][ T7345] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 170.950584][ T7345] vfs_read+0x1e4/0xb30 [ 170.950630][ T7345] ? __pfx_vfs_read+0x10/0x10 [ 170.950672][ T7345] ? __fget_files+0x215/0x3d0 [ 170.950708][ T7345] ? __fget_files+0x21f/0x3d0 [ 170.950746][ T7345] ksys_read+0x12a/0x250 [ 170.950791][ T7345] ? __pfx_ksys_read+0x10/0x10 [ 170.950848][ T7345] do_syscall_64+0x106/0xf80 [ 170.950882][ T7345] ? clear_bhb_loop+0x40/0x90 [ 170.950919][ T7345] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.950949][ T7345] RIP: 0033:0x7ffbc555cfce [ 170.950974][ T7345] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 170.951000][ T7345] RSP: 002b:00007ffbc6398fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 170.951029][ T7345] RAX: ffffffffffffffda RBX: 00007ffbc63996c0 RCX: 00007ffbc555cfce [ 170.951048][ T7345] RDX: 000000000000000f RSI: 00007ffbc63990a0 RDI: 0000000000000003 [ 170.951065][ T7345] RBP: 00007ffbc6399090 R08: 0000000000000000 R09: 0000000000000000 [ 170.951082][ T7345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 170.951099][ T7345] R13: 00007ffbc5816128 R14: 00007ffbc5816090 R15: 00007ffd0f84fe48 [ 170.951140][ T7345] [ 171.511253][ T7351] netlink: 8 bytes leftover after parsing attributes in process `syz.2.342'. [ 172.755815][ T7381] netlink: 4 bytes leftover after parsing attributes in process `syz.3.349'. [ 172.765667][ T7380] vivid-007: ================= START STATUS ================= [ 172.774078][ T7380] vivid-007: Generate PTS: true [ 172.782142][ T7381] netlink: 'syz.3.349': attribute type 3 has an invalid length. [ 172.790287][ T7380] vivid-007: Generate SCR: true [ 172.795384][ T7381] netlink: 306 bytes leftover after parsing attributes in process `syz.3.349'. [ 172.807945][ T7380] tpg source WxH: 320x240 (Y'CbCr) [ 172.828410][ T7380] tpg field: 1 [ 172.838281][ T7380] tpg crop: (0,0)/320x240 [ 172.916249][ T7367] zswap: compressor not available [ 172.926103][ T7380] tpg compose: (0,0)/320x240 [ 172.949977][ T7380] tpg colorspace: 8 [ 172.953942][ T7380] tpg transfer function: 0/0 [ 172.958561][ T7380] tpg Y'CbCr encoding: 0/0 [ 172.993036][ T7380] tpg quantization: 0/0 [ 173.007842][ T7380] tpg RGB range: 0/2 [ 173.043301][ T7380] vivid-007: ================== END STATUS ================== [ 174.809764][ T7442] netlink: 4 bytes leftover after parsing attributes in process `syz.0.359'. [ 174.872800][ T7444] netlink: 'syz.0.359': attribute type 3 has an invalid length. [ 174.936395][ T7444] netlink: 306 bytes leftover after parsing attributes in process `syz.0.359'. [ 175.790532][ T7459] dyndbg: expected <4096 bytes into control [ 176.679748][ T7482] netlink: 'syz.3.368': attribute type 1 has an invalid length. [ 176.776590][ T7484] netlink: 4 bytes leftover after parsing attributes in process `syz.0.369'. [ 176.931866][ T7486] bridge0: port 3(gretap0) entered blocking state [ 176.942871][ T7486] bridge0: port 3(gretap0) entered disabled state [ 176.980276][ T7486] gretap0: entered allmulticast mode [ 177.000169][ T7492] __vm_enough_memory: pid: 7492, comm: syz.3.371, bytes: 4398046511104 not enough memory for the allocation [ 177.011190][ T7486] gretap0: entered promiscuous mode [ 177.031836][ T7486] FAULT_INJECTION: forcing a failure. [ 177.031836][ T7486] name failslab, interval 1, probability 0, space 0, times 0 [ 177.070295][ T7486] CPU: 1 UID: 0 PID: 7486 Comm: syz.2.370 Tainted: G U L syzkaller #0 PREEMPT(full) [ 177.070347][ T7486] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 177.070358][ T7486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 177.070375][ T7486] Call Trace: [ 177.070385][ T7486] [ 177.070396][ T7486] dump_stack_lvl+0x100/0x190 [ 177.070447][ T7486] should_fail_ex.cold+0x5/0xa [ 177.070483][ T7486] should_failslab+0xc2/0x120 [ 177.070520][ T7486] __kmalloc_cache_noprof+0x7a/0x6f0 [ 177.070554][ T7486] ? vlan_vid_add+0x514/0x730 [ 177.070597][ T7486] vlan_vid_add+0x514/0x730 [ 177.070639][ T7486] __vlan_add+0x266f/0x2dd0 [ 177.070684][ T7486] ? __pfx___vlan_add+0x10/0x10 [ 177.070726][ T7486] nbp_vlan_add+0x258/0x3e0 [ 177.070759][ T7486] nbp_vlan_init+0x373/0x500 [ 177.070790][ T7486] ? __pfx_nbp_vlan_init+0x10/0x10 [ 177.070828][ T7486] ? __local_bh_enable_ip+0x9e/0x120 [ 177.070859][ T7486] ? lockdep_hardirqs_on+0x78/0x100 [ 177.070894][ T7486] ? br_fdb_add_local+0x43/0x60 [ 177.070937][ T7486] ? __local_bh_enable_ip+0x9e/0x120 [ 177.070974][ T7486] br_add_if+0xf79/0x1b40 [ 177.071005][ T7486] ? veth_get_iflink+0x1f3/0x2c0 [ 177.071049][ T7486] add_del_if+0x114/0x160 [ 177.071082][ T7486] br_dev_siocdevprivate+0x8ac/0x1650 [ 177.071122][ T7486] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 177.071175][ T7486] ? lock_acquire+0x1cf/0x380 [ 177.071226][ T7486] ? netdev_name_node_lookup+0x107/0x150 [ 177.071267][ T7486] ? __mutex_lock+0x26a/0x1b90 [ 177.071309][ T7486] dev_ifsioc+0xc1e/0x1e90 [ 177.071346][ T7486] ? __pfx_dev_ifsioc+0x10/0x10 [ 177.071377][ T7486] ? __pfx___mutex_lock+0x10/0x10 [ 177.071429][ T7486] ? dev_load+0x8e/0x240 [ 177.071456][ T7486] ? dev_load+0x8e/0x240 [ 177.071496][ T7486] dev_ioctl+0x70e/0x1070 [ 177.071531][ T7486] sock_ioctl+0x494/0x6b0 [ 177.071577][ T7486] ? __pfx_sock_ioctl+0x10/0x10 [ 177.071621][ T7486] ? hook_file_ioctl_common+0x146/0x410 [ 177.071681][ T7486] ? __fget_files+0x21f/0x3d0 [ 177.071716][ T7486] ? __pfx_sock_ioctl+0x10/0x10 [ 177.071765][ T7486] __x64_sys_ioctl+0x18e/0x210 [ 177.071813][ T7486] do_syscall_64+0x106/0xf80 [ 177.071848][ T7486] ? clear_bhb_loop+0x40/0x90 [ 177.071887][ T7486] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 177.071918][ T7486] RIP: 0033:0x7ffbc559c799 [ 177.071945][ T7486] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 177.071974][ T7486] RSP: 002b:00007ffbc63ba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 177.072005][ T7486] RAX: ffffffffffffffda RBX: 00007ffbc5815fa0 RCX: 00007ffbc559c799 [ 177.072025][ T7486] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000009 [ 177.072042][ T7486] RBP: 00007ffbc5632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 177.072060][ T7486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 177.072077][ T7486] R13: 00007ffbc5816038 R14: 00007ffbc5815fa0 R15: 00007ffd0f84fe48 [ 177.072117][ T7486] [ 177.480375][ T7486] gretap0: failed to initialize vlan filtering on this port [ 177.501732][ T7486] gretap0: left allmulticast mode [ 177.641942][ T7497] netlink: 28 bytes leftover after parsing attributes in process `syz.1.373'. [ 177.790414][ T7497] bond0: (slave bond_slave_0): Releasing backup interface [ 178.138775][ T7501] zswap: compressor  not available [ 178.174422][ T7514] binder: 7512:7514 ioctl c00c620f 200000000040 returned -22 [ 178.272252][ T7511] zswap: compressor not available [ 178.364443][ T7519] FAULT_INJECTION: forcing a failure. [ 178.364443][ T7519] name failslab, interval 1, probability 0, space 0, times 0 [ 178.391794][ T7519] CPU: 1 UID: 0 PID: 7519 Comm: syz.2.378 Tainted: G U L syzkaller #0 PREEMPT(full) [ 178.391843][ T7519] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 178.391853][ T7519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 178.391869][ T7519] Call Trace: [ 178.391879][ T7519] [ 178.391890][ T7519] dump_stack_lvl+0x100/0x190 [ 178.391938][ T7519] should_fail_ex.cold+0x5/0xa [ 178.391970][ T7519] ? tomoyo_realpath_from_path+0xb6/0x690 [ 178.392001][ T7519] should_failslab+0xc2/0x120 [ 178.392030][ T7519] __kmalloc_noprof+0xe0/0x850 [ 178.392083][ T7519] tomoyo_realpath_from_path+0xb6/0x690 [ 178.392126][ T7519] tomoyo_path_number_perm+0x23c/0x580 [ 178.392171][ T7519] ? tomoyo_path_number_perm+0x22e/0x580 [ 178.392218][ T7519] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 178.392313][ T7519] ? find_held_lock+0x2b/0x80 [ 178.392341][ T7519] ? __fget_files+0x215/0x3d0 [ 178.392366][ T7519] ? hook_file_ioctl_common+0x146/0x410 [ 178.392421][ T7519] ? __fget_files+0x21f/0x3d0 [ 178.392455][ T7519] security_file_ioctl+0xd3/0x230 [ 178.392503][ T7519] __x64_sys_ioctl+0xb7/0x210 [ 178.392548][ T7519] do_syscall_64+0x106/0xf80 [ 178.392582][ T7519] ? clear_bhb_loop+0x40/0x90 [ 178.392617][ T7519] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 178.392645][ T7519] RIP: 0033:0x7ffbc559c799 [ 178.392669][ T7519] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 178.392696][ T7519] RSP: 002b:00007ffbc63ba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 178.392723][ T7519] RAX: ffffffffffffffda RBX: 00007ffbc5815fa0 RCX: 00007ffbc559c799 [ 178.392742][ T7519] RDX: 0000200000000040 RSI: 00000000c00c620f RDI: 0000000000000003 [ 178.392759][ T7519] RBP: 00007ffbc63ba090 R08: 0000000000000000 R09: 0000000000000000 [ 178.392776][ T7519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 178.392793][ T7519] R13: 00007ffbc5816038 R14: 00007ffbc5815fa0 R15: 00007ffd0f84fe48 [ 178.392833][ T7519] [ 178.392845][ T7519] ERROR: Out of memory at tomoyo_realpath_from_path. [ 178.608951][ T7519] binder: 7518:7519 ioctl c00c620f 200000000040 returned -22 [ 178.812598][ T7525] FAULT_INJECTION: forcing a failure. [ 178.812598][ T7525] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 178.841186][ T7525] CPU: 1 UID: 0 PID: 7525 Comm: syz.2.380 Tainted: G U L syzkaller #0 PREEMPT(full) [ 178.841241][ T7525] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 178.841252][ T7525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 178.841270][ T7525] Call Trace: [ 178.841280][ T7525] [ 178.841292][ T7525] dump_stack_lvl+0x100/0x190 [ 178.841344][ T7525] should_fail_ex.cold+0x5/0xa [ 178.841373][ T7525] ? prepare_alloc_pages+0x16d/0x5f0 [ 178.841411][ T7525] should_fail_alloc_page+0xeb/0x140 [ 178.841448][ T7525] prepare_alloc_pages+0x1f0/0x5f0 [ 178.841502][ T7525] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 178.841554][ T7525] ? __pfx_stack_trace_save+0x10/0x10 [ 178.841587][ T7525] ? stack_depot_save_flags+0x27/0x9d0 [ 178.841619][ T7525] ? kasan_save_stack+0x3f/0x50 [ 178.841664][ T7525] ? kasan_save_stack+0x30/0x50 [ 178.841709][ T7525] ? kasan_save_track+0x14/0x30 [ 178.841753][ T7525] ? __kasan_slab_alloc+0x89/0x90 [ 178.841783][ T7525] ? kasan_save_stack+0x3f/0x50 [ 178.841829][ T7525] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 178.841875][ T7525] ? register_lock_class+0x40/0x560 [ 178.841900][ T7525] ? __lock_acquire+0x4a5/0x2630 [ 178.841921][ T7525] ? look_up_lock_class+0x55/0x120 [ 178.841948][ T7525] ? lock_acquire+0x1cf/0x380 [ 178.841971][ T7525] ? find_held_lock+0x2b/0x80 [ 178.841987][ T7525] ? page_table_check_set+0x49a/0xa10 [ 178.842015][ T7525] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 178.842046][ T7525] ? policy_nodemask+0xed/0x4f0 [ 178.842066][ T7525] alloc_pages_mpol+0x1fb/0x550 [ 178.842086][ T7525] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 178.842112][ T7525] folio_alloc_mpol_noprof+0x36/0x340 [ 178.842137][ T7525] vma_alloc_folio_noprof+0xed/0x1d0 [ 178.842159][ T7525] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 178.842187][ T7525] do_anonymous_page+0xb3a/0x1fb0 [ 178.842219][ T7525] __handle_mm_fault+0x1d42/0x2b60 [ 178.842253][ T7525] ? __pfx___handle_mm_fault+0x10/0x10 [ 178.842278][ T7525] ? pte_offset_map_lock+0x174/0x320 [ 178.842297][ T7525] ? find_held_lock+0x2b/0x80 [ 178.842320][ T7525] ? follow_page_pte+0x5b3/0x1400 [ 178.842344][ T7525] handle_mm_fault+0x36d/0xa20 [ 178.842372][ T7525] __get_user_pages+0xf9c/0x34d0 [ 178.842400][ T7525] ? __pfx___get_user_pages+0x10/0x10 [ 178.842426][ T7525] populate_vma_page_range+0x267/0x3f0 [ 178.842449][ T7525] ? __pfx_populate_vma_page_range+0x10/0x10 [ 178.842469][ T7525] ? __pfx_find_vma_intersection+0x10/0x10 [ 178.842489][ T7525] ? do_mmap+0x93f/0x12f0 [ 178.842521][ T7525] __mm_populate+0x107/0x3a0 [ 178.842543][ T7525] ? __pfx___mm_populate+0x10/0x10 [ 178.842565][ T7525] ? up_write+0x290/0x4f0 [ 178.842592][ T7525] vm_mmap_pgoff+0x37f/0x470 [ 178.842615][ T7525] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 178.842637][ T7525] ? do_futex+0x192/0x350 [ 178.842660][ T7525] ? __pfx_do_futex+0x10/0x10 [ 178.842683][ T7525] ? fput+0x79/0x100 [ 178.842705][ T7525] ksys_mmap_pgoff+0xe1/0x650 [ 178.842724][ T7525] ? __x64_sys_futex+0x34f/0x4d0 [ 178.842745][ T7525] ? __x64_sys_futex+0x358/0x4d0 [ 178.842768][ T7525] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 178.842786][ T7525] ? xfd_validate_state+0x129/0x190 [ 178.842816][ T7525] __x64_sys_mmap+0x125/0x190 [ 178.842844][ T7525] do_syscall_64+0x106/0xf80 [ 178.842865][ T7525] ? clear_bhb_loop+0x40/0x90 [ 178.842887][ T7525] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 178.842905][ T7525] RIP: 0033:0x7ffbc559c799 [ 178.842922][ T7525] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 178.842939][ T7525] RSP: 002b:00007ffbc63ba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 178.842957][ T7525] RAX: ffffffffffffffda RBX: 00007ffbc5815fa0 RCX: 00007ffbc559c799 [ 178.842968][ T7525] RDX: 00000000000000e3 RSI: 0000000000400008 RDI: 0000000000000000 [ 178.842978][ T7525] RBP: 00007ffbc5632bd9 R08: 0000000000000002 R09: 0000000000008000 [ 178.842988][ T7525] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 178.842998][ T7525] R13: 00007ffbc5816038 R14: 00007ffbc5815fa0 R15: 00007ffd0f84fe48 [ 178.843022][ T7525] [ 181.155532][ T7546] netlink: 8 bytes leftover after parsing attributes in process `syz.3.385'. [ 183.043972][ T7589] Invalid ELF header magic: != ELF [ 183.241266][ T7582] FAULT_INJECTION: forcing a failure. [ 183.241266][ T7582] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 183.320064][ T7582] CPU: 0 UID: 0 PID: 7582 Comm: syz.1.393 Tainted: G U L syzkaller #0 PREEMPT(full) [ 183.320102][ T7582] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 183.320109][ T7582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 183.320119][ T7582] Call Trace: [ 183.320125][ T7582] [ 183.320132][ T7582] dump_stack_lvl+0x100/0x190 [ 183.320165][ T7582] should_fail_ex.cold+0x5/0xa [ 183.320195][ T7582] _copy_from_iter+0x1f4/0x1690 [ 183.320219][ T7582] ? __pfx__copy_from_iter+0x10/0x10 [ 183.320241][ T7582] ? __pfx___might_resched+0x10/0x10 [ 183.320272][ T7582] file_tty_write.isra.0+0x45b/0x890 [ 183.320302][ T7582] vfs_write+0x6ac/0x1070 [ 183.320340][ T7582] ? __pfx_tty_write+0x10/0x10 [ 183.320365][ T7582] ? __pfx_vfs_write+0x10/0x10 [ 183.320390][ T7582] ? find_held_lock+0x2b/0x80 [ 183.320422][ T7582] ksys_write+0x12a/0x250 [ 183.320438][ T7582] ? __pfx_ksys_write+0x10/0x10 [ 183.320462][ T7582] do_syscall_64+0x106/0xf80 [ 183.320483][ T7582] ? clear_bhb_loop+0x40/0x90 [ 183.320505][ T7582] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.320524][ T7582] RIP: 0033:0x7f82e0f9c799 [ 183.320540][ T7582] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 183.320556][ T7582] RSP: 002b:00007f82e1da3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 183.320573][ T7582] RAX: ffffffffffffffda RBX: 00007f82e1215fa0 RCX: 00007f82e0f9c799 [ 183.320585][ T7582] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 183.320595][ T7582] RBP: 00007f82e1032bd9 R08: 0000000000000000 R09: 0000000000000000 [ 183.320604][ T7582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 183.320614][ T7582] R13: 00007f82e1216038 R14: 00007f82e1215fa0 R15: 00007ffc08fb0ad8 [ 183.320637][ T7582] [ 184.288501][ T7606] FAULT_INJECTION: forcing a failure. [ 184.288501][ T7606] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 184.350183][ T7606] CPU: 0 UID: 0 PID: 7606 Comm: syz.3.396 Tainted: G U L syzkaller #0 PREEMPT(full) [ 184.350242][ T7606] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 184.350252][ T7606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 184.350269][ T7606] Call Trace: [ 184.350278][ T7606] [ 184.350289][ T7606] dump_stack_lvl+0x100/0x190 [ 184.350338][ T7606] should_fail_ex.cold+0x5/0xa [ 184.350366][ T7606] ? prepare_alloc_pages+0x16d/0x5f0 [ 184.350403][ T7606] should_fail_alloc_page+0xeb/0x140 [ 184.350435][ T7606] prepare_alloc_pages+0x1f0/0x5f0 [ 184.350473][ T7606] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 184.350525][ T7606] ? ma_free_rcu+0x45/0x60 [ 184.350554][ T7606] ? mas_topiary_replace+0x1c0f/0x2800 [ 184.350602][ T7606] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 184.350657][ T7606] ? __pfx_mas_topiary_replace+0x10/0x10 [ 184.350714][ T7606] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 184.350763][ T7606] ? policy_nodemask+0xed/0x4f0 [ 184.350798][ T7606] alloc_pages_mpol+0x1fb/0x550 [ 184.350831][ T7606] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 184.350873][ T7606] folio_alloc_mpol_noprof+0x36/0x340 [ 184.350907][ T7606] shmem_alloc_folio+0x135/0x160 [ 184.350941][ T7606] shmem_alloc_and_add_folio+0x371/0xd40 [ 184.350991][ T7606] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 184.351035][ T7606] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 184.351084][ T7606] shmem_get_folio_gfp+0x6ab/0x1900 [ 184.351133][ T7606] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 184.351176][ T7606] ? filemap_map_pages+0xe69/0x2020 [ 184.351231][ T7606] shmem_fault+0x1f9/0xa20 [ 184.351272][ T7606] ? __lock_acquire+0x4a5/0x2630 [ 184.351306][ T7606] ? __pfx_shmem_fault+0x10/0x10 [ 184.351357][ T7606] ? __pfx_filemap_map_pages+0x10/0x10 [ 184.351412][ T7606] __do_fault+0x10d/0x550 [ 184.351444][ T7606] do_fault+0xaf9/0x1950 [ 184.351485][ T7606] __handle_mm_fault+0x180f/0x2b60 [ 184.351530][ T7606] ? mt_find+0x45e/0x8e0 [ 184.351567][ T7606] ? __pfx___handle_mm_fault+0x10/0x10 [ 184.351603][ T7606] ? __pfx_mt_find+0x10/0x10 [ 184.351660][ T7606] ? find_vma+0xbf/0x140 [ 184.351687][ T7606] ? __pfx_find_vma+0x10/0x10 [ 184.351718][ T7606] handle_mm_fault+0x36d/0xa20 [ 184.351764][ T7606] do_user_addr_fault+0x74c/0x12f0 [ 184.351822][ T7606] exc_page_fault+0x6f/0xd0 [ 184.351855][ T7606] asm_exc_page_fault+0x26/0x30 [ 184.351881][ T7606] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 184.351925][ T7606] Code: 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 e9 cf 93 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 184.351951][ T7606] RSP: 0018:ffffc900046af440 EFLAGS: 00050206 [ 184.351974][ T7606] RAX: 0000000000000001 RBX: 0000000000000b90 RCX: 0000000000000158 [ 184.351991][ T7606] RDX: 0000000000000001 RSI: 0000000000001000 RDI: ffff88806e819494 [ 184.352008][ T7606] RBP: 00000000000005c8 R08: 0000000000000001 R09: ffffed100dd032bd [ 184.352024][ T7606] R10: ffff88806e8195eb R11: 0000000000000000 R12: 0000000000000000 [ 184.352041][ T7606] R13: ffff88806e819024 R14: 0000000000000b90 R15: 00000000000005c8 [ 184.352078][ T7606] _copy_from_user+0x98/0xd0 [ 184.352108][ T7606] csum_and_copy_from_iter_full+0x21a/0x1fd0 [ 184.352165][ T7606] ? __pfx_csum_and_copy_from_iter_full+0x10/0x10 [ 184.352216][ T7606] ? rcu_is_watching+0x12/0xc0 [ 184.352254][ T7606] ? trace_kmalloc+0x101/0x130 [ 184.352281][ T7606] ? __kasan_kmalloc+0xaa/0xb0 [ 184.352323][ T7606] ? __kmalloc_node_track_caller_noprof+0x321/0x850 [ 184.352366][ T7606] ? __alloc_skb+0x185/0x710 [ 184.352403][ T7606] ip_generic_getfrag+0x172/0x270 [ 184.352439][ T7606] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 184.352472][ T7606] ? __asan_memset+0x23/0x50 [ 184.352506][ T7606] ? __alloc_skb+0x4e9/0x710 [ 184.352533][ T7606] ? __alloc_skb+0x5b7/0x710 [ 184.352564][ T7606] raw_getfrag+0x235/0x2a0 [ 184.352609][ T7606] __ip_append_data+0x3b10/0x4690 [ 184.352649][ T7606] ? __pfx_raw_getfrag+0x10/0x10 [ 184.352684][ T7606] ? find_held_lock+0x2b/0x80 [ 184.352706][ T7606] ? ip_dst_mtu_maybe_forward.constprop.0+0x3df/0x750 [ 184.352755][ T7606] ? ip_dst_mtu_maybe_forward.constprop.0+0x3e9/0x750 [ 184.352804][ T7606] ? __pfx___ip_append_data+0x10/0x10 [ 184.352849][ T7606] ip_append_data+0x10f/0x1a0 [ 184.352886][ T7606] ? __pfx_raw_getfrag+0x10/0x10 [ 184.352931][ T7606] raw_sendmsg+0xcb6/0x35f0 [ 184.352974][ T7606] ? bpf_ksym_find+0xf0/0x1c0 [ 184.353018][ T7606] ? __pfx_raw_sendmsg+0x10/0x10 [ 184.353056][ T7606] ? unwind_get_return_address+0x59/0xa0 [ 184.353086][ T7606] ? arch_stack_walk+0xa6/0xf0 [ 184.353120][ T7606] ? __lock_acquire+0x4a5/0x2630 [ 184.353220][ T7606] ? __pfx_raw_sendmsg+0x10/0x10 [ 184.353267][ T7606] inet_sendmsg+0x11c/0x140 [ 184.353313][ T7606] sock_write_iter+0x4ea/0x5a0 [ 184.353355][ T7606] ? __pfx_inet_sendmsg+0x10/0x10 [ 184.353397][ T7606] ? __pfx_sock_write_iter+0x10/0x10 [ 184.353452][ T7606] ? bpf_lsm_file_permission+0x9/0x10 [ 184.353495][ T7606] ? security_file_permission+0x76/0x210 [ 184.353526][ T7606] ? rw_verify_area+0xce/0x6d0 [ 184.353569][ T7606] vfs_write+0x6ac/0x1070 [ 184.353614][ T7606] ? __pfx_sock_write_iter+0x10/0x10 [ 184.353660][ T7606] ? __pfx_vfs_write+0x10/0x10 [ 184.353701][ T7606] ? find_held_lock+0x2b/0x80 [ 184.353755][ T7606] ksys_write+0x1f8/0x250 [ 184.353781][ T7606] ? __pfx_ksys_write+0x10/0x10 [ 184.353819][ T7606] do_syscall_64+0x106/0xf80 [ 184.353852][ T7606] ? clear_bhb_loop+0x40/0x90 [ 184.353889][ T7606] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.353919][ T7606] RIP: 0033:0x7fc9d339c799 [ 184.353943][ T7606] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 184.353969][ T7606] RSP: 002b:00007fc9d4333028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 184.353995][ T7606] RAX: ffffffffffffffda RBX: 00007fc9d3615fa0 RCX: 00007fc9d339c799 [ 184.354013][ T7606] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003 [ 184.354029][ T7606] RBP: 00007fc9d4333090 R08: 0000000000000000 R09: 0000000000000000 [ 184.354045][ T7606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 184.354060][ T7606] R13: 00007fc9d3616038 R14: 00007fc9d3615fa0 R15: 00007ffc686fd678 [ 184.354100][ T7606] [ 193.018709][ T7725] syz.0.421 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 193.114581][ T7725] FAULT_INJECTION: forcing a failure. [ 193.114581][ T7725] name fail_futex, interval 1, probability 0, space 0, times 0 [ 193.233528][ T7725] CPU: 1 UID: 0 PID: 7725 Comm: syz.0.421 Tainted: G U L syzkaller #0 PREEMPT(full) [ 193.233584][ T7725] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 193.233595][ T7725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 193.233613][ T7725] Call Trace: [ 193.233622][ T7725] [ 193.233634][ T7725] dump_stack_lvl+0x100/0x190 [ 193.233686][ T7725] should_fail_ex.cold+0x5/0xa [ 193.233723][ T7725] get_futex_key+0x1d2/0x1620 [ 193.233766][ T7725] ? __pfx_get_futex_key+0x10/0x10 [ 193.233803][ T7725] ? find_held_lock+0x2b/0x80 [ 193.233833][ T7725] ? futex_wake+0x456/0x530 [ 193.233887][ T7725] futex_wake+0xea/0x530 [ 193.233937][ T7725] ? __pfx_futex_wake+0x10/0x10 [ 193.233988][ T7725] ? __lock_acquire+0x4a5/0x2630 [ 193.234035][ T7725] do_futex+0x32b/0x350 [ 193.234075][ T7725] ? __pfx_do_futex+0x10/0x10 [ 193.234117][ T7725] ? find_held_lock+0x2b/0x80 [ 193.234150][ T7725] __x64_sys_futex+0x34f/0x4d0 [ 193.234202][ T7725] ? __fget_files+0x21f/0x3d0 [ 193.234230][ T7725] ? __pfx___x64_sys_futex+0x10/0x10 [ 193.234286][ T7725] do_syscall_64+0x106/0xf80 [ 193.234321][ T7725] ? clear_bhb_loop+0x40/0x90 [ 193.234359][ T7725] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.234389][ T7725] RIP: 0033:0x7fbe46b9c799 [ 193.234414][ T7725] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 193.234443][ T7725] RSP: 002b:00007fbe44df60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 193.234474][ T7725] RAX: ffffffffffffffda RBX: 00007fbe46e15fa8 RCX: 00007fbe46b9c799 [ 193.234493][ T7725] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbe46e15fac [ 193.234512][ T7725] RBP: 00007fbe46e15fa0 R08: 0000000000000000 R09: 0000000000000000 [ 193.234531][ T7725] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 193.234550][ T7725] R13: 00007fbe46e16038 R14: 00007ffdc85ef5c0 R15: 00007ffdc85ef6a8 [ 193.234591][ T7725] [ 193.870230][ T7737] FAULT_INJECTION: forcing a failure. [ 193.870230][ T7737] name failslab, interval 1, probability 0, space 0, times 0 [ 193.883437][ T7737] CPU: 1 UID: 0 PID: 7737 Comm: syz.1.426 Tainted: G U L syzkaller #0 PREEMPT(full) [ 193.883489][ T7737] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 193.883500][ T7737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 193.883517][ T7737] Call Trace: [ 193.883526][ T7737] [ 193.883537][ T7737] dump_stack_lvl+0x100/0x190 [ 193.883589][ T7737] should_fail_ex.cold+0x5/0xa [ 193.883626][ T7737] ? snd_pcm_plugin_build+0x434/0x650 [ 193.883659][ T7737] should_failslab+0xc2/0x120 [ 193.883692][ T7737] __kmalloc_noprof+0xe0/0x850 [ 193.883740][ T7737] ? snd_pcm_hw_params+0x262/0x1cb0 [ 193.883784][ T7737] snd_pcm_plugin_build+0x434/0x650 [ 193.883823][ T7737] snd_pcm_plugin_build_io+0x207/0x5f0 [ 193.883860][ T7737] ? __pfx_snd_pcm_plugin_build_io+0x10/0x10 [ 193.883898][ T7737] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 193.883980][ T7737] snd_pcm_oss_change_params_locked+0x2eb3/0x39f0 [ 193.884052][ T7737] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 193.884136][ T7737] snd_pcm_oss_get_active_substream+0x175/0x1d0 [ 193.884196][ T7737] snd_pcm_oss_ioctl+0x1c08/0x3720 [ 193.884229][ T7737] ? __fget_files+0x215/0x3d0 [ 193.884257][ T7737] ? hook_file_ioctl_common+0x146/0x410 [ 193.884309][ T7737] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 193.884353][ T7737] ? __fget_files+0x21f/0x3d0 [ 193.884388][ T7737] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 193.884418][ T7737] __x64_sys_ioctl+0x18e/0x210 [ 193.884461][ T7737] do_syscall_64+0x106/0xf80 [ 193.884496][ T7737] ? clear_bhb_loop+0x40/0x90 [ 193.884536][ T7737] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.884569][ T7737] RIP: 0033:0x7f82e0f9c799 [ 193.884597][ T7737] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 193.884627][ T7737] RSP: 002b:00007f82e1da3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 193.884658][ T7737] RAX: ffffffffffffffda RBX: 00007f82e1215fa0 RCX: 00007f82e0f9c799 [ 193.884678][ T7737] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000006 [ 193.884696][ T7737] RBP: 00007f82e1032bd9 R08: 0000000000000000 R09: 0000000000000000 [ 193.884714][ T7737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 193.884731][ T7737] R13: 00007f82e1216038 R14: 00007f82e1215fa0 R15: 00007ffc08fb0ad8 [ 193.884772][ T7737] [ 193.888047][ T7737] program syz.1.426 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 194.770547][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.776914][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 196.671011][ T7783] FAULT_INJECTION: forcing a failure. [ 196.671011][ T7783] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 196.730540][ T7783] CPU: 1 UID: 0 PID: 7783 Comm: syz.1.437 Tainted: G U L syzkaller #0 PREEMPT(full) [ 196.730593][ T7783] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 196.730603][ T7783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 196.730620][ T7783] Call Trace: [ 196.730629][ T7783] [ 196.730639][ T7783] dump_stack_lvl+0x100/0x190 [ 196.730685][ T7783] should_fail_ex.cold+0x5/0xa [ 196.730713][ T7783] ? prepare_alloc_pages+0x16d/0x5f0 [ 196.730760][ T7783] should_fail_alloc_page+0xeb/0x140 [ 196.730791][ T7783] prepare_alloc_pages+0x1f0/0x5f0 [ 196.730829][ T7783] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 196.730872][ T7783] ? __pfx_css_rstat_updated+0x10/0x10 [ 196.730907][ T7783] ? kasan_save_stack+0x3f/0x50 [ 196.730946][ T7783] ? kasan_save_stack+0x30/0x50 [ 196.730983][ T7783] ? kasan_save_track+0x14/0x30 [ 196.731019][ T7783] ? __kasan_slab_alloc+0x89/0x90 [ 196.731052][ T7783] ? rcu_is_watching+0x12/0xc0 [ 196.731101][ T7783] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 196.731151][ T7783] ? lru_gen_add_folio+0x20f/0x13e0 [ 196.731200][ T7783] ? lock_acquire+0x1cf/0x380 [ 196.731235][ T7783] ? find_held_lock+0x2b/0x80 [ 196.731259][ T7783] ? page_table_check_set+0x49a/0xa10 [ 196.731300][ T7783] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 196.731344][ T7783] ? policy_nodemask+0xed/0x4f0 [ 196.731374][ T7783] alloc_pages_mpol+0x1fb/0x550 [ 196.731403][ T7783] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 196.731441][ T7783] folio_alloc_mpol_noprof+0x36/0x340 [ 196.731474][ T7783] vma_alloc_folio_noprof+0xed/0x1d0 [ 196.731506][ T7783] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 196.731547][ T7783] do_anonymous_page+0xb3a/0x1fb0 [ 196.731595][ T7783] __handle_mm_fault+0x1d42/0x2b60 [ 196.731640][ T7783] ? __pfx___handle_mm_fault+0x10/0x10 [ 196.731676][ T7783] ? pte_offset_map_lock+0x174/0x320 [ 196.731702][ T7783] ? find_held_lock+0x2b/0x80 [ 196.731738][ T7783] ? follow_page_pte+0x5b3/0x1400 [ 196.731775][ T7783] handle_mm_fault+0x36d/0xa20 [ 196.731816][ T7783] __get_user_pages+0xf9c/0x34d0 [ 196.731859][ T7783] ? __pfx___get_user_pages+0x10/0x10 [ 196.731899][ T7783] populate_vma_page_range+0x267/0x3f0 [ 196.731932][ T7783] ? __pfx_populate_vma_page_range+0x10/0x10 [ 196.731972][ T7783] ? __pfx_find_vma_intersection+0x10/0x10 [ 196.732002][ T7783] ? do_mmap+0x93f/0x12f0 [ 196.732036][ T7783] __mm_populate+0x107/0x3a0 [ 196.732067][ T7783] ? __pfx___mm_populate+0x10/0x10 [ 196.732108][ T7783] ? up_write+0x290/0x4f0 [ 196.732148][ T7783] vm_mmap_pgoff+0x37f/0x470 [ 196.732182][ T7783] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 196.732214][ T7783] ? do_futex+0x192/0x350 [ 196.732247][ T7783] ? __pfx_do_futex+0x10/0x10 [ 196.732279][ T7783] ? fput+0x79/0x100 [ 196.732311][ T7783] ksys_mmap_pgoff+0xe1/0x650 [ 196.732338][ T7783] ? __x64_sys_futex+0x34f/0x4d0 [ 196.732369][ T7783] ? __x64_sys_futex+0x358/0x4d0 [ 196.732403][ T7783] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 196.732431][ T7783] ? xfd_validate_state+0x129/0x190 [ 196.732477][ T7783] __x64_sys_mmap+0x125/0x190 [ 196.732519][ T7783] do_syscall_64+0x106/0xf80 [ 196.732550][ T7783] ? clear_bhb_loop+0x40/0x90 [ 196.732586][ T7783] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.732615][ T7783] RIP: 0033:0x7f82e0f9c799 [ 196.732639][ T7783] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 196.732666][ T7783] RSP: 002b:00007f82e1da3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 196.732694][ T7783] RAX: ffffffffffffffda RBX: 00007f82e1215fa0 RCX: 00007f82e0f9c799 [ 196.732712][ T7783] RDX: 00000000000000e3 RSI: 0000000000400008 RDI: 0000000000000000 [ 196.732729][ T7783] RBP: 00007f82e1032bd9 R08: 0000000000000002 R09: 0000000000008000 [ 196.732745][ T7783] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 196.732761][ T7783] R13: 00007f82e1216038 R14: 00007f82e1215fa0 R15: 00007ffc08fb0ad8 [ 196.732799][ T7783] [ 197.885249][ T7794] FAULT_INJECTION: forcing a failure. [ 197.885249][ T7794] name failslab, interval 1, probability 0, space 0, times 0 [ 198.046973][ T7794] CPU: 1 UID: 0 PID: 7794 Comm: syz.2.439 Tainted: G U L syzkaller #0 PREEMPT(full) [ 198.047022][ T7794] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 198.047030][ T7794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 198.047040][ T7794] Call Trace: [ 198.047047][ T7794] [ 198.047056][ T7794] dump_stack_lvl+0x100/0x190 [ 198.047088][ T7794] should_fail_ex.cold+0x5/0xa [ 198.047109][ T7794] should_failslab+0xc2/0x120 [ 198.047133][ T7794] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 198.047160][ T7794] ? __anon_vma_prepare+0x344/0x5e0 [ 198.047188][ T7794] __anon_vma_prepare+0x344/0x5e0 [ 198.047211][ T7794] ? __pfx___pte_alloc+0x10/0x10 [ 198.047232][ T7794] __vmf_anon_prepare+0x11f/0x250 [ 198.047254][ T7794] do_anonymous_page+0x552/0x1fb0 [ 198.047279][ T7794] ? do_raw_spin_unlock+0x145/0x1e0 [ 198.047307][ T7794] ? __pmd_alloc+0x6aa/0x9c0 [ 198.047329][ T7794] __handle_mm_fault+0x1d42/0x2b60 [ 198.047357][ T7794] ? mt_find+0x45e/0x8e0 [ 198.047392][ T7794] ? __pfx___handle_mm_fault+0x10/0x10 [ 198.047415][ T7794] ? __pfx_mt_find+0x10/0x10 [ 198.047455][ T7794] handle_mm_fault+0x36d/0xa20 [ 198.047483][ T7794] __get_user_pages+0xf9c/0x34d0 [ 198.047512][ T7794] ? __pfx___get_user_pages+0x10/0x10 [ 198.047539][ T7794] populate_vma_page_range+0x267/0x3f0 [ 198.047563][ T7794] ? __pfx_populate_vma_page_range+0x10/0x10 [ 198.047584][ T7794] ? __pfx_find_vma_intersection+0x10/0x10 [ 198.047604][ T7794] ? do_mmap+0x93f/0x12f0 [ 198.047626][ T7794] __mm_populate+0x107/0x3a0 [ 198.047649][ T7794] ? __pfx___mm_populate+0x10/0x10 [ 198.047672][ T7794] ? up_write+0x290/0x4f0 [ 198.047700][ T7794] vm_mmap_pgoff+0x37f/0x470 [ 198.047722][ T7794] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 198.047743][ T7794] ? do_futex+0x192/0x350 [ 198.047766][ T7794] ? __pfx_do_futex+0x10/0x10 [ 198.047787][ T7794] ? __pfx_do_sys_openat2+0x10/0x10 [ 198.047813][ T7794] ksys_mmap_pgoff+0xe1/0x650 [ 198.047832][ T7794] ? __x64_sys_futex+0x34f/0x4d0 [ 198.047854][ T7794] ? __x64_sys_futex+0x358/0x4d0 [ 198.047877][ T7794] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 198.047895][ T7794] ? xfd_validate_state+0x129/0x190 [ 198.047924][ T7794] __x64_sys_mmap+0x125/0x190 [ 198.047952][ T7794] do_syscall_64+0x106/0xf80 [ 198.047973][ T7794] ? clear_bhb_loop+0x40/0x90 [ 198.047995][ T7794] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 198.048014][ T7794] RIP: 0033:0x7ffbc559c799 [ 198.048030][ T7794] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 198.048047][ T7794] RSP: 002b:00007ffbc63ba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 198.048065][ T7794] RAX: ffffffffffffffda RBX: 00007ffbc5815fa0 RCX: 00007ffbc559c799 [ 198.048076][ T7794] RDX: 00000000000000e3 RSI: 0000000000400008 RDI: 0000000000000000 [ 198.048086][ T7794] RBP: 00007ffbc5632bd9 R08: 0000000000000002 R09: 0000000000008000 [ 198.048096][ T7794] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 198.048106][ T7794] R13: 00007ffbc5816038 R14: 00007ffbc5815fa0 R15: 00007ffd0f84fe48 [ 198.048132][ T7794] [ 198.981383][ T7809] ubi0: attaching mtd0 [ 198.994252][ T7809] ubi0: scanning is finished [ 199.007694][ T7809] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 199.212399][ T7809] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 200.149475][ T7829] sd 0:0:1:0: PR command failed: 1026 [ 200.161913][ T7829] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 200.177514][ T7829] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 200.216668][ T7828] netlink: 'syz.3.447': attribute type 19 has an invalid length. [ 200.229947][ T7828] netlink: 334 bytes leftover after parsing attributes in process `syz.3.447'. [ 201.031638][ T7850] sd 0:0:1:0: PR command failed: 1026 [ 201.037166][ T7850] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 201.072656][ T7850] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 201.187283][ T7852] bond0: no command found in slaves file - use +ifname or -ifname [ 201.317544][ T7849] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE r҄y*"l-y– [ 201.451719][ T7847] zswap: compressor not available [ 202.280758][ T7879] netlink: 4 bytes leftover after parsing attributes in process `syz.1.458'. [ 204.679433][ T7916] FAULT_INJECTION: forcing a failure. [ 204.679433][ T7916] name failslab, interval 1, probability 0, space 0, times 0 [ 204.730218][ T7916] CPU: 1 UID: 0 PID: 7916 Comm: syz.0.468 Tainted: G U L syzkaller #0 PREEMPT(full) [ 204.730252][ T7916] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 204.730259][ T7916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 204.730276][ T7916] Call Trace: [ 204.730283][ T7916] [ 204.730290][ T7916] dump_stack_lvl+0x100/0x190 [ 204.730322][ T7916] should_fail_ex.cold+0x5/0xa [ 204.730344][ T7916] should_failslab+0xc2/0x120 [ 204.730363][ T7916] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 204.730390][ T7916] ? __anon_vma_prepare+0x344/0x5e0 [ 204.730418][ T7916] __anon_vma_prepare+0x344/0x5e0 [ 204.730441][ T7916] ? __pfx___pte_alloc+0x10/0x10 [ 204.730462][ T7916] __vmf_anon_prepare+0x11f/0x250 [ 204.730483][ T7916] do_anonymous_page+0x552/0x1fb0 [ 204.730508][ T7916] ? do_raw_spin_unlock+0x145/0x1e0 [ 204.730537][ T7916] ? __pmd_alloc+0x6aa/0x9c0 [ 204.730558][ T7916] __handle_mm_fault+0x1d42/0x2b60 [ 204.730586][ T7916] ? mt_find+0x45e/0x8e0 [ 204.730609][ T7916] ? __pfx___handle_mm_fault+0x10/0x10 [ 204.730632][ T7916] ? __pfx_mt_find+0x10/0x10 [ 204.730672][ T7916] handle_mm_fault+0x36d/0xa20 [ 204.730700][ T7916] __get_user_pages+0xf9c/0x34d0 [ 204.730728][ T7916] ? __pfx___get_user_pages+0x10/0x10 [ 204.730754][ T7916] populate_vma_page_range+0x267/0x3f0 [ 204.730777][ T7916] ? __pfx_populate_vma_page_range+0x10/0x10 [ 204.730798][ T7916] ? __pfx_find_vma_intersection+0x10/0x10 [ 204.730817][ T7916] ? do_mmap+0x93f/0x12f0 [ 204.730839][ T7916] __mm_populate+0x107/0x3a0 [ 204.730860][ T7916] ? __pfx___mm_populate+0x10/0x10 [ 204.730883][ T7916] ? up_write+0x290/0x4f0 [ 204.730911][ T7916] vm_mmap_pgoff+0x37f/0x470 [ 204.730934][ T7916] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 204.730955][ T7916] ? do_futex+0x192/0x350 [ 204.730978][ T7916] ? __pfx_do_futex+0x10/0x10 [ 204.730999][ T7916] ? __pfx_do_sys_openat2+0x10/0x10 [ 204.731032][ T7916] ksys_mmap_pgoff+0xe1/0x650 [ 204.731058][ T7916] ? __x64_sys_futex+0x34f/0x4d0 [ 204.731087][ T7916] ? __x64_sys_futex+0x358/0x4d0 [ 204.731118][ T7916] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 204.731143][ T7916] ? xfd_validate_state+0x129/0x190 [ 204.731173][ T7916] __x64_sys_mmap+0x125/0x190 [ 204.731201][ T7916] do_syscall_64+0x106/0xf80 [ 204.731222][ T7916] ? clear_bhb_loop+0x40/0x90 [ 204.731244][ T7916] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 204.731271][ T7916] RIP: 0033:0x7fbe46b9c799 [ 204.731287][ T7916] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 204.731305][ T7916] RSP: 002b:00007fbe44df6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 204.731323][ T7916] RAX: ffffffffffffffda RBX: 00007fbe46e15fa0 RCX: 00007fbe46b9c799 [ 204.731334][ T7916] RDX: 00000000000000e3 RSI: 0000000000400008 RDI: 0000000000000000 [ 204.731345][ T7916] RBP: 00007fbe46c32bd9 R08: 0000000000000002 R09: 0000000000008000 [ 204.731355][ T7916] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 204.731365][ T7916] R13: 00007fbe46e16038 R14: 00007fbe46e15fa0 R15: 00007ffdc85ef6a8 [ 204.731388][ T7916] [ 205.444100][ T7923] netlink: 2468 bytes leftover after parsing attributes in process `syz.2.470'. [ 206.656997][ T7952] Setting dangerous option i915.mitigations - tainting kernel [ 207.571207][ T7974] Format for adding new device is "id port_count num_queues" (uint uint unit). [ 208.092069][ T7986] netlink: 8 bytes leftover after parsing attributes in process `syz.3.485'. [ 208.169181][ T7987] can: request_module (can-proto-0) failed. [ 209.864645][ T7999] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input9 [ 210.700510][ T8001] FAULT_INJECTION: forcing a failure. [ 210.700510][ T8001] name failslab, interval 1, probability 0, space 0, times 0 [ 210.728882][ T8001] CPU: 0 UID: 0 PID: 8001 Comm: syz.0.487 Tainted: G U L syzkaller #0 PREEMPT(full) [ 210.728939][ T8001] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 210.728952][ T8001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 210.728969][ T8001] Call Trace: [ 210.728979][ T8001] [ 210.728991][ T8001] dump_stack_lvl+0x100/0x190 [ 210.729037][ T8001] should_fail_ex.cold+0x5/0xa [ 210.729068][ T8001] should_failslab+0xc2/0x120 [ 210.729100][ T8001] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 210.729147][ T8001] ? security_inode_alloc+0x3b/0x2c0 [ 210.729193][ T8001] ? lockdep_init_map_type+0x5c/0x250 [ 210.729238][ T8001] security_inode_alloc+0x3b/0x2c0 [ 210.729310][ T8001] inode_init_always_gfp+0xced/0x1040 [ 210.729363][ T8001] alloc_inode+0x8e/0x250 [ 210.729406][ T8001] new_inode+0x22/0x1c0 [ 210.729450][ T8001] hugetlbfs_get_inode+0x313/0x750 [ 210.729491][ T8001] hugetlb_file_setup+0x15b/0x5b0 [ 210.729531][ T8001] ksys_mmap_pgoff+0x232/0x650 [ 210.729566][ T8001] ? __x64_sys_futex+0x358/0x4d0 [ 210.729607][ T8001] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 210.729641][ T8001] ? xfd_validate_state+0x129/0x190 [ 210.729693][ T8001] __x64_sys_mmap+0x125/0x190 [ 210.729744][ T8001] do_syscall_64+0x106/0xf80 [ 210.729780][ T8001] ? clear_bhb_loop+0x40/0x90 [ 210.729823][ T8001] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 210.729851][ T8001] RIP: 0033:0x7fbe46b9c799 [ 210.729876][ T8001] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 210.729903][ T8001] RSP: 002b:00007fbe44df6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 210.729933][ T8001] RAX: ffffffffffffffda RBX: 00007fbe46e15fa0 RCX: 00007fbe46b9c799 [ 210.729953][ T8001] RDX: 0000000000000002 RSI: 0000000000000006 RDI: 0000000000000000 [ 210.729970][ T8001] RBP: 00007fbe46c32bd9 R08: ffffffffffffffff R09: 0000308000000000 [ 210.729989][ T8001] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000 [ 210.730006][ T8001] R13: 00007fbe46e16038 R14: 00007fbe46e15fa0 R15: 00007ffdc85ef6a8 [ 210.730047][ T8001] [ 212.518180][ T8026] openvswitch: netlink: Multiple metadata blocks provided [ 212.889768][ T8047] binder: 8046:8047 ioctl 400c620e 2000000008c0 returned -22 [ 213.153975][ T8052] netlink: 4 bytes leftover after parsing attributes in process `syz.3.499'. [ 213.212816][ T8054] netlink: 'syz.3.499': attribute type 3 has an invalid length. [ 213.262446][ T8054] netlink: 306 bytes leftover after parsing attributes in process `syz.3.499'. [ 214.021588][ T8070] FAULT_INJECTION: forcing a failure. [ 214.021588][ T8070] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 214.092085][ T8070] CPU: 1 UID: 0 PID: 8070 Comm: syz.2.504 Tainted: G U L syzkaller #0 PREEMPT(full) [ 214.092117][ T8070] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 214.092124][ T8070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 214.092133][ T8070] Call Trace: [ 214.092139][ T8070] [ 214.092146][ T8070] dump_stack_lvl+0x100/0x190 [ 214.092177][ T8070] should_fail_ex.cold+0x5/0xa [ 214.092198][ T8070] _copy_from_user+0x2e/0xd0 [ 214.092217][ T8070] kstrtouint_from_user+0xd6/0x1d0 [ 214.092247][ T8070] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 214.092268][ T8070] ? __lock_acquire+0x4a5/0x2630 [ 214.092293][ T8070] ? lock_acquire+0x1cf/0x380 [ 214.092320][ T8070] proc_fail_nth_write+0x83/0x220 [ 214.092342][ T8070] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 214.092370][ T8070] vfs_write+0x2aa/0x1070 [ 214.092398][ T8070] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 214.092421][ T8070] ? __pfx_vfs_write+0x10/0x10 [ 214.092448][ T8070] ? __fget_files+0x215/0x3d0 [ 214.092470][ T8070] ? __fget_files+0x21f/0x3d0 [ 214.092492][ T8070] ksys_write+0x12a/0x250 [ 214.092507][ T8070] ? __pfx_ksys_write+0x10/0x10 [ 214.092529][ T8070] do_syscall_64+0x106/0xf80 [ 214.092550][ T8070] ? clear_bhb_loop+0x40/0x90 [ 214.092571][ T8070] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 214.092589][ T8070] RIP: 0033:0x7ffbc555cfce [ 214.092604][ T8070] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 214.092620][ T8070] RSP: 002b:00007ffbc63b9fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 214.092646][ T8070] RAX: ffffffffffffffda RBX: 00007ffbc63ba6c0 RCX: 00007ffbc555cfce [ 214.092657][ T8070] RDX: 0000000000000001 RSI: 00007ffbc63ba0a0 RDI: 0000000000000006 [ 214.092670][ T8070] RBP: 00007ffbc63ba090 R08: 0000000000000000 R09: 0000000000000000 [ 214.092680][ T8070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 214.092690][ T8070] R13: 00007ffbc5816038 R14: 00007ffbc5815fa0 R15: 00007ffd0f84fe48 [ 214.092712][ T8070] [ 214.400313][ T8075] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 215.304070][ T8091] blktrace: Concurrent blktraces are not allowed on loop2 [ 217.619252][ T8126] netlink: 4 bytes leftover after parsing attributes in process `syz.0.519'. [ 217.668269][ T8126] netlink: 'syz.0.519': attribute type 3 has an invalid length. [ 217.696782][ T8126] netlink: 306 bytes leftover after parsing attributes in process `syz.0.519'. [ 218.152889][ T8138] netlink: NAT attribute has 4 unknown bytes [ 219.920362][ T8161] delete_channel: no stack [ 219.925266][ T7797] Bluetooth: hci3: Unable to find connection for big 0xd2 [ 220.432963][ T8170] netlink: 28 bytes leftover after parsing attributes in process `syz.3.530'. [ 220.532276][ T8170] bridge_slave_1: left allmulticast mode [ 220.548864][ T8170] bridge_slave_1: left promiscuous mode [ 220.582444][ T8170] bridge0: port 2(bridge_slave_1) entered disabled state [ 220.610497][ T8170] bridge_slave_0: left allmulticast mode [ 220.629712][ T8170] bridge_slave_0: left promiscuous mode [ 220.664228][ T8170] bridge0: port 1(bridge_slave_0) entered disabled state [ 221.402437][ T8189] netlink: 8 bytes leftover after parsing attributes in process `syz.2.536'. [ 221.857721][ T8197] netlink: 'syz.3.537': attribute type 1 has an invalid length. [ 222.615488][ T8218] binder: 8217:8218 ioctl c00c620f 200000000040 returned -22 [ 223.413969][ T30] audit: type=1326 audit(1772863843.734:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8229 comm="syz.2.547" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ffbc559c799 code=0x0 [ 223.465309][ T7797] Bluetooth: hci1: unexpected subevent 0x04 length: 122 > 11 [ 223.520210][ T7797] Bluetooth: hci1: unexpected subevent 0x01 length: 5 < 18 [ 225.130665][ T8259] netlink: 40 bytes leftover after parsing attributes in process `syz.2.554'. [ 225.738239][ T8269] can: request_module (can-proto-0) failed. [ 226.333975][ T8279] netlink: 8 bytes leftover after parsing attributes in process `syz.1.557'. [ 226.811169][ T8289] FAULT_INJECTION: forcing a failure. [ 226.811169][ T8289] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 226.893316][ T8289] CPU: 1 UID: 0 PID: 8289 Comm: syz.0.562 Tainted: G U L syzkaller #0 PREEMPT(full) [ 226.893370][ T8289] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 226.893382][ T8289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 226.893399][ T8289] Call Trace: [ 226.893410][ T8289] [ 226.893421][ T8289] dump_stack_lvl+0x100/0x190 [ 226.893481][ T8289] should_fail_ex.cold+0x5/0xa [ 226.893511][ T8289] ? prepare_alloc_pages+0x16d/0x5f0 [ 226.893550][ T8289] should_fail_alloc_page+0xeb/0x140 [ 226.893586][ T8289] prepare_alloc_pages+0x1f0/0x5f0 [ 226.893628][ T8289] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 226.893685][ T8289] ? lock_acquire+0x1cf/0x380 [ 226.893723][ T8289] ? find_held_lock+0x2b/0x80 [ 226.893764][ T8289] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 226.893817][ T8289] ? irqentry_exit+0x180/0x670 [ 226.893870][ T8289] ? lock_acquire+0x1cf/0x380 [ 226.893920][ T8289] ? find_held_lock+0x2b/0x80 [ 226.893948][ T8289] ? page_table_check_set+0x49a/0xa10 [ 226.894000][ T8289] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 226.894055][ T8289] ? policy_nodemask+0xed/0x4f0 [ 226.894102][ T8289] alloc_pages_mpol+0x1fb/0x550 [ 226.894136][ T8289] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 226.894182][ T8289] folio_alloc_mpol_noprof+0x36/0x340 [ 226.894225][ T8289] vma_alloc_folio_noprof+0xed/0x1d0 [ 226.894264][ T8289] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 226.894317][ T8289] do_anonymous_page+0xb3a/0x1fb0 [ 226.894381][ T8289] __handle_mm_fault+0x1d42/0x2b60 [ 226.894435][ T8289] ? __pfx___handle_mm_fault+0x10/0x10 [ 226.894479][ T8289] ? pte_offset_map_lock+0x174/0x320 [ 226.894512][ T8289] ? find_held_lock+0x2b/0x80 [ 226.894555][ T8289] ? follow_page_pte+0x5b3/0x1400 [ 226.894597][ T8289] handle_mm_fault+0x36d/0xa20 [ 226.894648][ T8289] __get_user_pages+0xf9c/0x34d0 [ 226.894697][ T8289] ? __pfx___get_user_pages+0x10/0x10 [ 226.894745][ T8289] populate_vma_page_range+0x267/0x3f0 [ 226.894787][ T8289] ? __pfx_populate_vma_page_range+0x10/0x10 [ 226.894824][ T8289] ? __pfx_find_vma_intersection+0x10/0x10 [ 226.894859][ T8289] ? do_mmap+0x93f/0x12f0 [ 226.894907][ T8289] __mm_populate+0x107/0x3a0 [ 226.894946][ T8289] ? __pfx___mm_populate+0x10/0x10 [ 226.894987][ T8289] ? up_write+0x290/0x4f0 [ 226.895033][ T8289] vm_mmap_pgoff+0x37f/0x470 [ 226.895075][ T8289] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 226.895114][ T8289] ? do_futex+0x192/0x350 [ 226.895154][ T8289] ? __pfx_do_futex+0x10/0x10 [ 226.895190][ T8289] ? __pfx_do_sys_openat2+0x10/0x10 [ 226.895238][ T8289] ksys_mmap_pgoff+0xe1/0x650 [ 226.895272][ T8289] ? __x64_sys_futex+0x34f/0x4d0 [ 226.895310][ T8289] ? __x64_sys_futex+0x358/0x4d0 [ 226.895351][ T8289] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 226.895385][ T8289] ? xfd_validate_state+0x129/0x190 [ 226.895437][ T8289] __x64_sys_mmap+0x125/0x190 [ 226.895488][ T8289] do_syscall_64+0x106/0xf80 [ 226.895524][ T8289] ? clear_bhb_loop+0x40/0x90 [ 226.895564][ T8289] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 226.895597][ T8289] RIP: 0033:0x7fbe46b9c799 [ 226.895623][ T8289] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 226.895655][ T8289] RSP: 002b:00007fbe44df6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 226.895686][ T8289] RAX: ffffffffffffffda RBX: 00007fbe46e15fa0 RCX: 00007fbe46b9c799 [ 226.895708][ T8289] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 226.895727][ T8289] RBP: 00007fbe46c32bd9 R08: ffffffffffffffff R09: 0000000800008000 [ 226.895747][ T8289] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 226.895766][ T8289] R13: 00007fbe46e16038 R14: 00007fbe46e15fa0 R15: 00007ffdc85ef6a8 [ 226.895809][ T8289] [ 227.815793][ T8297] blktrace: Concurrent blktraces are not allowed on loop2 [ 228.117343][ T8289] overlayfs: missing 'lowerdir' [ 228.278557][ T8301] netlink: 876 bytes leftover after parsing attributes in process `syz.2.565'. [ 231.220689][ T8347] can: request_module (can-proto-0) failed. [ 231.261560][ T8349] vivid-007: ================= START STATUS ================= [ 231.261627][ T8349] vivid-007: Generate PTS: true [ 231.261674][ T8349] vivid-007: Generate SCR: true [ 231.261743][ T8349] tpg source WxH: 320x240 (Y'CbCr) [ 231.261805][ T8349] tpg field: 1 [ 231.261819][ T8349] tpg crop: (0,0)/320x240 [ 231.261840][ T8349] tpg compose: (0,0)/320x240 [ 231.261861][ T8349] tpg colorspace: 8 [ 231.261874][ T8349] tpg transfer function: 0/0 [ 231.261890][ T8349] tpg Y'CbCr encoding: 0/0 [ 231.261917][ T8349] tpg quantization: 0/0 [ 231.261932][ T8349] tpg RGB range: 0/2 [ 231.261948][ T8349] vivid-007: ================== END STATUS ================== [ 232.603016][ T8367] netlink: 876 bytes leftover after parsing attributes in process `syz.0.578'. [ 233.938692][ T8389] syz.3.587(8389): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 236.238038][ T8424] batman_adv: batadv0: adding TT local entry 00:00:03:00:00:00 to non-existent VLAN 16 [ 238.236782][ T8456] ubi0: attaching mtd0 [ 238.258455][ T8456] ubi0: scanning is finished [ 238.304242][ T8456] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 238.482799][ T8452] FAULT_INJECTION: forcing a failure. [ 238.482799][ T8452] name failslab, interval 1, probability 0, space 0, times 0 [ 238.510350][ T8452] CPU: 0 UID: 0 PID: 8452 Comm: syz.1.606 Tainted: G U L syzkaller #0 PREEMPT(full) [ 238.510406][ T8452] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 238.510418][ T8452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 238.510436][ T8452] Call Trace: [ 238.510447][ T8452] [ 238.510459][ T8452] dump_stack_lvl+0x100/0x190 [ 238.510510][ T8452] should_fail_ex.cold+0x5/0xa [ 238.510547][ T8452] should_failslab+0xc2/0x120 [ 238.510582][ T8452] __kmalloc_cache_noprof+0x7a/0x6f0 [ 238.510622][ T8452] ? snd_seq_timer_new+0x44/0x1b0 [ 238.510671][ T8452] snd_seq_timer_new+0x44/0x1b0 [ 238.510713][ T8452] snd_seq_queue_alloc+0x177/0x590 [ 238.510753][ T8452] snd_seq_ioctl_create_queue+0xa9/0x370 [ 238.510800][ T8452] call_seq_client_ctl+0xa3/0x130 [ 238.510854][ T8452] snd_seq_kernel_client_ctl+0x77/0xd0 [ 238.510902][ T8452] alloc_seq_queue+0xdb/0x180 [ 238.510946][ T8452] ? __pfx_alloc_seq_queue+0x10/0x10 [ 238.511014][ T8452] ? mark_held_locks+0x40/0x70 [ 238.511050][ T8452] ? _raw_spin_unlock_irq+0x23/0x50 [ 238.511080][ T8452] ? lockdep_hardirqs_on+0x78/0x100 [ 238.511116][ T8452] snd_seq_oss_open+0x2b2/0xa10 [ 238.511164][ T8452] odev_open+0x79/0xc0 [ 238.511199][ T8452] ? __pfx_odev_open+0x10/0x10 [ 238.511233][ T8452] soundcore_open+0x2e3/0x5a0 [ 238.511276][ T8452] ? __pfx_soundcore_open+0x10/0x10 [ 238.511314][ T8452] chrdev_open+0x234/0x6a0 [ 238.511341][ T8452] ? __pfx_apparmor_file_open+0x10/0x10 [ 238.511381][ T8452] ? __pfx_chrdev_open+0x10/0x10 [ 238.511412][ T8452] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 238.511450][ T8452] do_dentry_open+0x6d8/0x1660 [ 238.511477][ T8452] ? __pfx_chrdev_open+0x10/0x10 [ 238.511515][ T8452] vfs_open+0x82/0x3f0 [ 238.511553][ T8452] path_openat+0x208c/0x31a0 [ 238.511597][ T8452] ? __pfx_path_openat+0x10/0x10 [ 238.511641][ T8452] do_file_open+0x20e/0x430 [ 238.511673][ T8452] ? __pfx_do_file_open+0x10/0x10 [ 238.511732][ T8452] ? alloc_fd+0x476/0x790 [ 238.511764][ T8452] ? do_getname+0x191/0x390 [ 238.511801][ T8452] do_sys_openat2+0x10d/0x1e0 [ 238.511845][ T8452] ? __pfx_do_sys_openat2+0x10/0x10 [ 238.511884][ T8452] ? __fget_files+0x21f/0x3d0 [ 238.511918][ T8452] __x64_sys_openat+0x12d/0x210 [ 238.511955][ T8452] ? __pfx___x64_sys_openat+0x10/0x10 [ 238.512006][ T8452] do_syscall_64+0x106/0xf80 [ 238.512038][ T8452] ? clear_bhb_loop+0x40/0x90 [ 238.512074][ T8452] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.512103][ T8452] RIP: 0033:0x7f82e0f9c799 [ 238.512129][ T8452] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 238.512157][ T8452] RSP: 002b:00007f82e1da3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 238.512187][ T8452] RAX: ffffffffffffffda RBX: 00007f82e1215fa0 RCX: 00007f82e0f9c799 [ 238.512207][ T8452] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 238.512226][ T8452] RBP: 00007f82e1032bd9 R08: 0000000000000000 R09: 0000000000000000 [ 238.512244][ T8452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 238.512262][ T8452] R13: 00007f82e1216038 R14: 00007f82e1215fa0 R15: 00007ffc08fb0ad8 [ 238.512305][ T8452] [ 239.101850][ T8456] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 239.431686][ T8463] blktrace: Concurrent blktraces are not allowed on loop2 [ 240.442640][ T8476] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 240.661456][ T8480] openvswitch: netlink: Duplicate or invalid key (type 0). [ 241.893805][ T8502] netlink: 876 bytes leftover after parsing attributes in process `syz.3.620'. [ 242.437201][ T8505] zswap: compressor not available [ 242.714026][ T8519] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 244.423230][ T8547] can: request_module (can-proto-0) failed. [ 244.720060][ T8545] netlink: 876 bytes leftover after parsing attributes in process `syz.1.632'. [ 246.216259][ T8573] FAULT_INJECTION: forcing a failure. [ 246.216259][ T8573] name failslab, interval 1, probability 0, space 0, times 0 [ 246.259727][ T8573] CPU: 1 UID: 0 PID: 8573 Comm: syz.0.639 Tainted: G U L syzkaller #0 PREEMPT(full) [ 246.259794][ T8573] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 246.259811][ T8573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 246.259827][ T8573] Call Trace: [ 246.259837][ T8573] [ 246.259848][ T8573] dump_stack_lvl+0x100/0x190 [ 246.259901][ T8573] should_fail_ex.cold+0x5/0xa [ 246.259935][ T8573] should_failslab+0xc2/0x120 [ 246.259966][ T8573] __kmalloc_cache_noprof+0x7a/0x6f0 [ 246.260003][ T8573] ? vidtv_mux_create_pid_ctx_once.part.0+0x49/0x200 [ 246.260067][ T8573] vidtv_mux_create_pid_ctx_once.part.0+0x49/0x200 [ 246.260124][ T8573] vidtv_mux_create_pid_ctx_once+0xe6/0x140 [ 246.260172][ T8573] vidtv_mux_init+0x760/0xbf0 [ 246.260218][ T8573] vidtv_start_feed+0x33e/0x4c0 [ 246.260267][ T8573] ? __pfx_vidtv_start_feed+0x10/0x10 [ 246.260316][ T8573] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 246.260373][ T8573] ? mark_held_locks+0x40/0x70 [ 246.260420][ T8573] ? __pfx_vidtv_start_feed+0x10/0x10 [ 246.260469][ T8573] dmx_ts_feed_start_filtering+0xf6/0x220 [ 246.260507][ T8573] dvb_dmxdev_start_feed+0x273/0x3f0 [ 246.260559][ T8573] dvb_dmxdev_filter_start+0x1b6/0xdd0 [ 246.260611][ T8573] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 246.260663][ T8573] dvb_demux_do_ioctl+0xe64/0x1200 [ 246.260724][ T8573] dvb_usercopy+0x167/0x340 [ 246.260774][ T8573] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 246.260825][ T8573] ? __pfx_dvb_usercopy+0x10/0x10 [ 246.260885][ T8573] ? __fget_files+0x21f/0x3d0 [ 246.260925][ T8573] dvb_demux_ioctl+0x29/0x40 [ 246.260967][ T8573] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 246.261009][ T8573] __x64_sys_ioctl+0x18e/0x210 [ 246.261058][ T8573] do_syscall_64+0x106/0xf80 [ 246.261091][ T8573] ? clear_bhb_loop+0x40/0x90 [ 246.261128][ T8573] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 246.261158][ T8573] RIP: 0033:0x7fbe46b9c799 [ 246.261192][ T8573] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 246.261216][ T8573] RSP: 002b:00007fbe44df6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 246.261242][ T8573] RAX: ffffffffffffffda RBX: 00007fbe46e15fa0 RCX: 00007fbe46b9c799 [ 246.261258][ T8573] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000002 [ 246.261273][ T8573] RBP: 00007fbe46c32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 246.261288][ T8573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 246.261302][ T8573] R13: 00007fbe46e16038 R14: 00007fbe46e15fa0 R15: 00007ffdc85ef6a8 [ 246.261336][ T8573] [ 246.810124][ T8579] blktrace: Concurrent blktraces are not allowed on loop2 [ 247.731820][ T8569] zswap: compressor not available [ 250.141174][ T8639] random: crng reseeded on system resumption [ 250.707957][ T8650] blktrace: Concurrent blktraces are not allowed on loop2 [ 252.473303][ T8676] netlink: 876 bytes leftover after parsing attributes in process `syz.2.668'. [ 252.863770][ T8674] zswap: compressor not available [ 254.727792][ T8704] can: request_module (can-proto-0) failed. [ 256.210454][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.217005][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 258.077954][ T8748] device-mapper: ioctl: Invalid ioctl structure: name , dev 3ff [ 258.386063][ T8752] FAULT_INJECTION: forcing a failure. [ 258.386063][ T8752] name failslab, interval 1, probability 0, space 0, times 0 [ 258.399070][ T8752] CPU: 0 UID: 0 PID: 8752 Comm: syz.3.685 Tainted: G U L syzkaller #0 PREEMPT(full) [ 258.399107][ T8752] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 258.399115][ T8752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 258.399127][ T8752] Call Trace: [ 258.399136][ T8752] [ 258.399143][ T8752] dump_stack_lvl+0x100/0x190 [ 258.399181][ T8752] should_fail_ex.cold+0x5/0xa [ 258.399208][ T8752] should_failslab+0xc2/0x120 [ 258.399230][ T8752] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 258.399263][ T8752] ? __send_signal_locked+0x155/0x12d0 [ 258.399301][ T8752] __send_signal_locked+0x155/0x12d0 [ 258.399340][ T8752] do_notify_parent+0xd73/0xf90 [ 258.399374][ T8752] ? __pfx_do_notify_parent+0x10/0x10 [ 258.399406][ T8752] ? do_raw_spin_lock+0x128/0x260 [ 258.399441][ T8752] ? __wake_up+0x3f/0x60 [ 258.399468][ T8752] ? release_task+0xc29/0x1ab0 [ 258.399502][ T8752] release_task+0x1560/0x1ab0 [ 258.399540][ T8752] ? __pfx_release_task+0x10/0x10 [ 258.399566][ T8752] ? do_raw_spin_lock+0x128/0x260 [ 258.399598][ T8752] ? find_held_lock+0x2b/0x80 [ 258.399618][ T8752] ? __wake_up+0x3f/0x60 [ 258.399639][ T8752] ? __wake_up+0x3f/0x60 [ 258.399665][ T8752] ? rcu_is_watching+0x12/0xc0 [ 258.399710][ T8752] do_exit+0x1338/0x2b60 [ 258.399741][ T8752] ? __pfx_do_exit+0x10/0x10 [ 258.399769][ T8752] ? do_raw_spin_lock+0x128/0x260 [ 258.399799][ T8752] ? find_held_lock+0x2b/0x80 [ 258.399824][ T8752] ? get_signal+0x7e0/0x21e0 [ 258.399856][ T8752] do_group_exit+0xd5/0x2a0 [ 258.399887][ T8752] get_signal+0x1ec7/0x21e0 [ 258.399920][ T8752] ? __pfx_get_signal+0x10/0x10 [ 258.399945][ T8752] ? do_futex+0x192/0x350 [ 258.399977][ T8752] arch_do_signal_or_restart+0x91/0x770 [ 258.400006][ T8752] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 258.400041][ T8752] ? __pfx___x64_sys_futex+0x10/0x10 [ 258.400076][ T8752] exit_to_user_mode_loop+0x86/0x4a0 [ 258.400107][ T8752] do_syscall_64+0x668/0xf80 [ 258.400133][ T8752] ? clear_bhb_loop+0x40/0x90 [ 258.400161][ T8752] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 258.400183][ T8752] RIP: 0033:0x7fc9d339c799 [ 258.400201][ T8752] Code: Unable to access opcode bytes at 0x7fc9d339c76f. [ 258.400211][ T8752] RSP: 002b:00007fc9d43330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 258.400232][ T8752] RAX: fffffffffffffe00 RBX: 00007fc9d3615fa8 RCX: 00007fc9d339c799 [ 258.400247][ T8752] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fc9d3615fa8 [ 258.400260][ T8752] RBP: 00007fc9d3615fa0 R08: 0000000000000000 R09: 0000000000000000 [ 258.400273][ T8752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 258.400285][ T8752] R13: 00007fc9d3616038 R14: 00007ffc686fd590 R15: 00007ffc686fd678 [ 258.400314][ T8752] [ 258.862881][ T8742] can: request_module (can-proto-0) failed. [ 260.256635][ T7853] netdevsim netdevsim1335 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 260.618522][ T8789] netlink: 342 bytes leftover after parsing attributes in process `syz.3.694'. [ 262.394503][ T8830] netlink: 8 bytes leftover after parsing attributes in process `syz.3.705'. [ 264.555974][ T8865] can: request_module (can-proto-0) failed. [ 265.980955][ T8886] FAULT_INJECTION: forcing a failure. [ 265.980955][ T8886] name failslab, interval 1, probability 0, space 0, times 0 [ 266.021830][ T8886] CPU: 1 UID: 0 PID: 8886 Comm: syz.1.719 Tainted: G U L syzkaller #0 PREEMPT(full) [ 266.021882][ T8886] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 266.021892][ T8886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 266.021908][ T8886] Call Trace: [ 266.021916][ T8886] [ 266.021925][ T8886] dump_stack_lvl+0x100/0x190 [ 266.021969][ T8886] should_fail_ex.cold+0x5/0xa [ 266.021999][ T8886] should_failslab+0xc2/0x120 [ 266.022026][ T8886] __kvmalloc_node_noprof+0xfa/0xa00 [ 266.022065][ T8886] ? evdev_open+0x11a/0x690 [ 266.022108][ T8886] evdev_open+0x11a/0x690 [ 266.022145][ T8886] ? __pfx_evdev_open+0x10/0x10 [ 266.022180][ T8886] chrdev_open+0x234/0x6a0 [ 266.022203][ T8886] ? __pfx_apparmor_file_open+0x10/0x10 [ 266.022242][ T8886] ? __pfx_chrdev_open+0x10/0x10 [ 266.022270][ T8886] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 266.022305][ T8886] do_dentry_open+0x6d8/0x1660 [ 266.022329][ T8886] ? __pfx_chrdev_open+0x10/0x10 [ 266.022364][ T8886] vfs_open+0x82/0x3f0 [ 266.022402][ T8886] path_openat+0x208c/0x31a0 [ 266.022443][ T8886] ? __pfx_path_openat+0x10/0x10 [ 266.022487][ T8886] do_file_open+0x20e/0x430 [ 266.022517][ T8886] ? __pfx_do_file_open+0x10/0x10 [ 266.022573][ T8886] ? alloc_fd+0x476/0x790 [ 266.022605][ T8886] ? do_getname+0x191/0x390 [ 266.022646][ T8886] do_sys_openat2+0x10d/0x1e0 [ 266.022683][ T8886] ? __pfx_do_sys_openat2+0x10/0x10 [ 266.022724][ T8886] ? __pfx_sched_core_share_pid+0x10/0x10 [ 266.022776][ T8886] __x64_sys_openat+0x12d/0x210 [ 266.022815][ T8886] ? __pfx___x64_sys_openat+0x10/0x10 [ 266.022869][ T8886] do_syscall_64+0x106/0xf80 [ 266.022903][ T8886] ? clear_bhb_loop+0x40/0x90 [ 266.022940][ T8886] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 266.022970][ T8886] RIP: 0033:0x7f82e0f9c799 [ 266.022995][ T8886] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 266.023023][ T8886] RSP: 002b:00007f82df1f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 266.023052][ T8886] RAX: ffffffffffffffda RBX: 00007f82e1216180 RCX: 00007f82e0f9c799 [ 266.023070][ T8886] RDX: 0000000000060240 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 266.023087][ T8886] RBP: 00007f82e1032bd9 R08: 0000000000000000 R09: 0000000000000000 [ 266.023104][ T8886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 266.023120][ T8886] R13: 00007f82e1216218 R14: 00007f82e1216180 R15: 00007ffc08fb0ad8 [ 266.023157][ T8886] [ 268.526510][ T8913] blktrace: Concurrent blktraces are not allowed on loop2 [ 268.628148][ T8914] blktrace: Concurrent blktraces are not allowed on loop2 [ 268.718306][ T8910] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 268.832889][ T8918] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR [ 268.910844][ T8910] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 269.729120][ T8944] blktrace: Concurrent blktraces are not allowed on loop2 [ 270.796297][ T8941] can: request_module (can-proto-0) failed. [ 271.457763][ T8969] netlink: 'syz.3.745': attribute type 1 has an invalid length. [ 271.520861][ T8971] blktrace: Concurrent blktraces are not allowed on loop2 [ 271.717591][ T8973] usb usb26: usbfs: interface 0 claimed by hub while 'syz.3.747' resets device [ 273.091734][ T8995] openvswitch: netlink: Flow actions attr not present in new flow. [ 273.292501][ T9002] random: crng reseeded on system resumption [ 273.327501][ T9002] Restarting kernel threads ... [ 273.334446][ T9002] Done restarting kernel threads. [ 273.373249][ T9002] sp0: Synchronizing with TNC [ 273.684994][ T9013] block2mtd: error: cannot open device i [ 274.135740][ T9020] netlink: 40 bytes leftover after parsing attributes in process `syz.1.761'. [ 274.351712][ T9024] blktrace: Concurrent blktraces are not allowed on loop2 [ 274.414166][ T9027] openvswitch: netlink: Flow actions attr not present in new flow. [ 274.873974][ T9036] netlink: 326 bytes leftover after parsing attributes in process `syz.2.766'. [ 276.116262][ T9067] openvswitch: netlink: Flow actions attr not present in new flow. [ 276.208247][ T9071] Invalid ELF header magic: != ELF [ 276.315844][ T9075] FAULT_INJECTION: forcing a failure. [ 276.315844][ T9075] name failslab, interval 1, probability 0, space 0, times 0 [ 276.331178][ T9075] CPU: 1 UID: 0 PID: 9075 Comm: syz.1.778 Tainted: G U L syzkaller #0 PREEMPT(full) [ 276.331231][ T9075] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 276.331243][ T9075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 276.331262][ T9075] Call Trace: [ 276.331272][ T9075] [ 276.331285][ T9075] dump_stack_lvl+0x100/0x190 [ 276.331337][ T9075] should_fail_ex.cold+0x5/0xa [ 276.331375][ T9075] should_failslab+0xc2/0x120 [ 276.331407][ T9075] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 276.331453][ T9075] ? __anon_vma_prepare+0x344/0x5e0 [ 276.331504][ T9075] __anon_vma_prepare+0x344/0x5e0 [ 276.331541][ T9075] ? __pfx___pte_alloc+0x10/0x10 [ 276.331577][ T9075] __vmf_anon_prepare+0x11f/0x250 [ 276.331615][ T9075] do_anonymous_page+0x552/0x1fb0 [ 276.331656][ T9075] ? do_raw_spin_unlock+0x145/0x1e0 [ 276.331703][ T9075] ? __pmd_alloc+0x6aa/0x9c0 [ 276.331742][ T9075] __handle_mm_fault+0x1d42/0x2b60 [ 276.331788][ T9075] ? mt_find+0x45e/0x8e0 [ 276.331829][ T9075] ? __pfx___handle_mm_fault+0x10/0x10 [ 276.331868][ T9075] ? __pfx_mt_find+0x10/0x10 [ 276.331954][ T9075] handle_mm_fault+0x36d/0xa20 [ 276.332005][ T9075] __get_user_pages+0xf9c/0x34d0 [ 276.332057][ T9075] ? __pfx___get_user_pages+0x10/0x10 [ 276.332101][ T9075] populate_vma_page_range+0x267/0x3f0 [ 276.332135][ T9075] ? __pfx_populate_vma_page_range+0x10/0x10 [ 276.332162][ T9075] ? __pfx_find_vma_intersection+0x10/0x10 [ 276.332191][ T9075] ? do_mmap+0x93f/0x12f0 [ 276.332221][ T9075] __mm_populate+0x107/0x3a0 [ 276.332252][ T9075] ? __pfx___mm_populate+0x10/0x10 [ 276.332282][ T9075] ? up_write+0x290/0x4f0 [ 276.332320][ T9075] vm_mmap_pgoff+0x37f/0x470 [ 276.332351][ T9075] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 276.332380][ T9075] ? do_futex+0x192/0x350 [ 276.332418][ T9075] ? __pfx_do_futex+0x10/0x10 [ 276.332453][ T9075] ? __pfx_do_sys_openat2+0x10/0x10 [ 276.332499][ T9075] ksys_mmap_pgoff+0xe1/0x650 [ 276.332530][ T9075] ? __x64_sys_futex+0x34f/0x4d0 [ 276.332565][ T9075] ? __x64_sys_futex+0x358/0x4d0 [ 276.332603][ T9075] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 276.332633][ T9075] ? xfd_validate_state+0x129/0x190 [ 276.332682][ T9075] __x64_sys_mmap+0x125/0x190 [ 276.332729][ T9075] do_syscall_64+0x106/0xf80 [ 276.332765][ T9075] ? clear_bhb_loop+0x40/0x90 [ 276.332805][ T9075] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 276.332838][ T9075] RIP: 0033:0x7f82e0f9c799 [ 276.332867][ T9075] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 276.332897][ T9075] RSP: 002b:00007f82e1da3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 276.332937][ T9075] RAX: ffffffffffffffda RBX: 00007f82e1215fa0 RCX: 00007f82e0f9c799 [ 276.332958][ T9075] RDX: 00000000000000e3 RSI: 0000000000400008 RDI: 0000000000000000 [ 276.332976][ T9075] RBP: 00007f82e1032bd9 R08: 0000000000000002 R09: 0000000000008000 [ 276.332996][ T9075] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 276.333015][ T9075] R13: 00007f82e1216038 R14: 00007f82e1215fa0 R15: 00007ffc08fb0ad8 [ 276.333058][ T9075] [ 276.976982][ T9085] netlink: 8 bytes leftover after parsing attributes in process `syz.2.780'. [ 277.162837][ T9092] blktrace: Concurrent blktraces are not allowed on loop2 [ 278.225697][ T9109] FAULT_INJECTION: forcing a failure. [ 278.225697][ T9109] name failslab, interval 1, probability 0, space 0, times 0 [ 278.279956][ T9109] CPU: 0 UID: 0 PID: 9109 Comm: syz.0.787 Tainted: G U L syzkaller #0 PREEMPT(full) [ 278.280020][ T9109] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 278.280033][ T9109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 278.280051][ T9109] Call Trace: [ 278.280061][ T9109] [ 278.280074][ T9109] dump_stack_lvl+0x100/0x190 [ 278.280135][ T9109] should_fail_ex.cold+0x5/0xa [ 278.280175][ T9109] should_failslab+0xc2/0x120 [ 278.280210][ T9109] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 278.280256][ T9109] ? ptlock_alloc+0x1f/0x70 [ 278.280306][ T9109] ptlock_alloc+0x1f/0x70 [ 278.280357][ T9109] pte_alloc_one+0x84/0x3e0 [ 278.280394][ T9109] __pte_alloc+0x6d/0x3f0 [ 278.280427][ T9109] ? __pfx___pte_alloc+0x10/0x10 [ 278.280462][ T9109] ? do_raw_spin_lock+0x128/0x260 [ 278.280509][ T9109] ? find_held_lock+0x2b/0x80 [ 278.280541][ T9109] do_anonymous_page+0x13cc/0x1fb0 [ 278.280585][ T9109] ? do_raw_spin_unlock+0x145/0x1e0 [ 278.280630][ T9109] ? _raw_spin_unlock+0x28/0x50 [ 278.280672][ T9109] ? __pmd_alloc+0x6aa/0x9c0 [ 278.280713][ T9109] __handle_mm_fault+0x1d42/0x2b60 [ 278.280762][ T9109] ? mt_find+0x45e/0x8e0 [ 278.280806][ T9109] ? __pfx___handle_mm_fault+0x10/0x10 [ 278.280857][ T9109] ? __pfx_mt_find+0x10/0x10 [ 278.280943][ T9109] handle_mm_fault+0x36d/0xa20 [ 278.280995][ T9109] __get_user_pages+0xf9c/0x34d0 [ 278.281048][ T9109] ? __pfx___get_user_pages+0x10/0x10 [ 278.281114][ T9109] populate_vma_page_range+0x267/0x3f0 [ 278.281157][ T9109] ? __pfx_populate_vma_page_range+0x10/0x10 [ 278.281194][ T9109] ? __pfx_find_vma_intersection+0x10/0x10 [ 278.281231][ T9109] ? do_mmap+0x93f/0x12f0 [ 278.281270][ T9109] __mm_populate+0x107/0x3a0 [ 278.281309][ T9109] ? __pfx___mm_populate+0x10/0x10 [ 278.281349][ T9109] ? up_write+0x290/0x4f0 [ 278.281406][ T9109] vm_mmap_pgoff+0x37f/0x470 [ 278.281447][ T9109] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 278.281486][ T9109] ? do_futex+0x192/0x350 [ 278.281528][ T9109] ? __pfx_do_futex+0x10/0x10 [ 278.281566][ T9109] ? __pfx_do_sys_openat2+0x10/0x10 [ 278.281615][ T9109] ksys_mmap_pgoff+0xe1/0x650 [ 278.281648][ T9109] ? __x64_sys_futex+0x34f/0x4d0 [ 278.281686][ T9109] ? __x64_sys_futex+0x358/0x4d0 [ 278.281725][ T9109] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 278.281759][ T9109] ? xfd_validate_state+0x129/0x190 [ 278.281813][ T9109] __x64_sys_mmap+0x125/0x190 [ 278.281887][ T9109] do_syscall_64+0x106/0xf80 [ 278.281934][ T9109] ? clear_bhb_loop+0x40/0x90 [ 278.281974][ T9109] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 278.282008][ T9109] RIP: 0033:0x7fbe46b9c799 [ 278.282037][ T9109] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 278.282067][ T9109] RSP: 002b:00007fbe44df6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 278.282100][ T9109] RAX: ffffffffffffffda RBX: 00007fbe46e15fa0 RCX: 00007fbe46b9c799 [ 278.282120][ T9109] RDX: 00000000000000e3 RSI: 0000000000400008 RDI: 0000000000000000 [ 278.282139][ T9109] RBP: 00007fbe46c32bd9 R08: 0000000000000002 R09: 0000000000008000 [ 278.282157][ T9109] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 278.282176][ T9109] R13: 00007fbe46e16038 R14: 00007fbe46e15fa0 R15: 00007ffdc85ef6a8 [ 278.282219][ T9109] [ 278.687655][ T9112] netlink: 876 bytes leftover after parsing attributes in process `syz.3.788'. [ 279.328106][ T9130] netlink: 8 bytes leftover after parsing attributes in process `syz.2.793'. [ 279.426708][ T9126] netlink: 8 bytes leftover after parsing attributes in process `syz.0.792'. [ 279.975075][ T9142] blktrace: Concurrent blktraces are not allowed on loop2 [ 281.196179][ T9154] netlink: 4 bytes leftover after parsing attributes in process `syz.0.798'. [ 281.243281][ T9154] netlink: 'syz.0.798': attribute type 1 has an invalid length. [ 281.290040][ T9154] netlink: 51505 bytes leftover after parsing attributes in process `syz.0.798'. [ 282.613211][ T9185] openvswitch: netlink: Flow key attr not present in new flow. [ 282.728991][ T9182] netlink: 8 bytes leftover after parsing attributes in process `syz.1.805'. [ 282.890112][ T9190] FAULT_INJECTION: forcing a failure. [ 282.890112][ T9190] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 282.930187][ T9190] CPU: 1 UID: 0 PID: 9190 Comm: syz.0.809 Tainted: G U L syzkaller #0 PREEMPT(full) [ 282.930242][ T9190] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 282.930255][ T9190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 282.930273][ T9190] Call Trace: [ 282.930284][ T9190] [ 282.930297][ T9190] dump_stack_lvl+0x100/0x190 [ 282.930347][ T9190] should_fail_ex.cold+0x5/0xa [ 282.930378][ T9190] ? prepare_alloc_pages+0x16d/0x5f0 [ 282.930435][ T9190] should_fail_alloc_page+0xeb/0x140 [ 282.930471][ T9190] prepare_alloc_pages+0x1f0/0x5f0 [ 282.930512][ T9190] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 282.930564][ T9190] ? rcu_is_watching+0x12/0xc0 [ 282.930611][ T9190] ? trace_mm_page_alloc+0x17a/0x1d0 [ 282.930649][ T9190] ? __alloc_frozen_pages_noprof+0x2b1/0x2ba0 [ 282.930703][ T9190] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 282.930756][ T9190] ? find_held_lock+0x2b/0x80 [ 282.930784][ T9190] ? is_bpf_text_address+0x8a/0x1a0 [ 282.930841][ T9190] ? is_bpf_text_address+0x8a/0x1a0 [ 282.930892][ T9190] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 282.930927][ T9190] ? is_bpf_text_address+0x94/0x1a0 [ 282.930972][ T9190] ? kernel_text_address+0x8d/0x100 [ 282.931019][ T9190] ? __kernel_text_address+0xd/0x30 [ 282.931063][ T9190] ? unwind_get_return_address+0x59/0xa0 [ 282.931107][ T9190] alloc_pages_bulk_noprof+0x782/0x1490 [ 282.931170][ T9190] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 282.931221][ T9190] ? kasan_save_stack+0x30/0x50 [ 282.931277][ T9190] ? alloc_pages_noprof+0x233/0x390 [ 282.931314][ T9190] __kasan_populate_vmalloc+0xf0/0x210 [ 282.931370][ T9190] alloc_vmap_area+0x95d/0x2bd0 [ 282.931420][ T9190] ? __pfx_alloc_vmap_area+0x10/0x10 [ 282.931464][ T9190] __get_vm_area_node+0x1ca/0x330 [ 282.931507][ T9190] __vmalloc_node_range_noprof+0x213/0x1530 [ 282.931548][ T9190] ? kernel_clone+0xfc/0x9a0 [ 282.931618][ T9190] ? kernel_clone+0xfc/0x9a0 [ 282.931666][ T9190] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 282.931718][ T9190] ? rcu_is_watching+0x12/0xc0 [ 282.931765][ T9190] ? trace_kmem_cache_alloc+0xf3/0x120 [ 282.931804][ T9190] ? kernel_clone+0xfc/0x9a0 [ 282.931850][ T9190] __vmalloc_node_noprof+0xad/0xf0 [ 282.931890][ T9190] ? kernel_clone+0xfc/0x9a0 [ 282.931940][ T9190] copy_process+0x5ec/0x7a10 [ 282.931974][ T9190] ? futex_unqueue+0x133/0x2c0 [ 282.932031][ T9190] ? __pfx_copy_process+0x10/0x10 [ 282.932078][ T9190] ? _copy_from_user+0x59/0xd0 [ 282.932113][ T9190] kernel_clone+0xfc/0x9a0 [ 282.932151][ T9190] ? __pfx_kernel_clone+0x10/0x10 [ 282.932196][ T9190] ? __pfx_futex_wait+0x10/0x10 [ 282.932253][ T9190] __do_sys_clone3+0x214/0x290 [ 282.932289][ T9190] ? __pfx___do_sys_clone3+0x10/0x10 [ 282.932377][ T9190] do_syscall_64+0x106/0xf80 [ 282.932413][ T9190] ? clear_bhb_loop+0x40/0x90 [ 282.932452][ T9190] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 282.932483][ T9190] RIP: 0033:0x7fbe46b9c799 [ 282.932510][ T9190] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 282.932535][ T9190] RSP: 002b:00007fbe44df5ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 282.932563][ T9190] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fbe46b9c799 [ 282.932581][ T9190] RDX: 00007fbe44df5f10 RSI: 0000000000000058 RDI: 00007fbe44df5f10 [ 282.932601][ T9190] RBP: 00007fbe46c32bd9 R08: 0000000000000000 R09: 0000000000000058 [ 282.932620][ T9190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 282.932639][ T9190] R13: 00007fbe46e16038 R14: 00007fbe46e15fa0 R15: 00007ffdc85ef6a8 [ 282.932682][ T9190] [ 282.932932][ T9190] syz.0.809: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 283.330705][ T9190] CPU: 1 UID: 0 PID: 9190 Comm: syz.0.809 Tainted: G U L syzkaller #0 PREEMPT(full) [ 283.330757][ T9190] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 283.330768][ T9190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 283.330784][ T9190] Call Trace: [ 283.330794][ T9190] [ 283.330806][ T9190] dump_stack_lvl+0x100/0x190 [ 283.330858][ T9190] warn_alloc.cold+0x95/0x1c1 [ 283.330911][ T9190] ? __pfx_warn_alloc+0x10/0x10 [ 283.330953][ T9190] ? lockdep_hardirqs_on+0x78/0x100 [ 283.330995][ T9190] ? __get_vm_area_node+0x2c5/0x330 [ 283.331036][ T9190] ? __get_vm_area_node+0x208/0x330 [ 283.331078][ T9190] __vmalloc_node_range_noprof+0xbf4/0x1530 [ 283.331128][ T9190] ? kernel_clone+0xfc/0x9a0 [ 283.331173][ T9190] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 283.331222][ T9190] ? rcu_is_watching+0x12/0xc0 [ 283.331264][ T9190] ? trace_kmem_cache_alloc+0xf3/0x120 [ 283.331300][ T9190] ? kernel_clone+0xfc/0x9a0 [ 283.331333][ T9190] __vmalloc_node_noprof+0xad/0xf0 [ 283.331371][ T9190] ? kernel_clone+0xfc/0x9a0 [ 283.331409][ T9190] copy_process+0x5ec/0x7a10 [ 283.331442][ T9190] ? futex_unqueue+0x133/0x2c0 [ 283.331499][ T9190] ? __pfx_copy_process+0x10/0x10 [ 283.331554][ T9190] ? _copy_from_user+0x59/0xd0 [ 283.331589][ T9190] kernel_clone+0xfc/0x9a0 [ 283.331628][ T9190] ? __pfx_kernel_clone+0x10/0x10 [ 283.331672][ T9190] ? __pfx_futex_wait+0x10/0x10 [ 283.331729][ T9190] __do_sys_clone3+0x214/0x290 [ 283.331765][ T9190] ? __pfx___do_sys_clone3+0x10/0x10 [ 283.331850][ T9190] do_syscall_64+0x106/0xf80 [ 283.331886][ T9190] ? clear_bhb_loop+0x40/0x90 [ 283.331925][ T9190] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 283.331956][ T9190] RIP: 0033:0x7fbe46b9c799 [ 283.331982][ T9190] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 283.332011][ T9190] RSP: 002b:00007fbe44df5ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 283.332041][ T9190] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fbe46b9c799 [ 283.332061][ T9190] RDX: 00007fbe44df5f10 RSI: 0000000000000058 RDI: 00007fbe44df5f10 [ 283.332079][ T9190] RBP: 00007fbe46c32bd9 R08: 0000000000000000 R09: 0000000000000058 [ 283.332096][ T9190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 283.332113][ T9190] R13: 00007fbe46e16038 R14: 00007fbe46e15fa0 R15: 00007ffdc85ef6a8 [ 283.332154][ T9190] [ 283.332165][ T9190] Mem-Info: [ 283.346041][ T9192] netlink: 876 bytes leftover after parsing attributes in process `syz.3.810'. [ 283.353425][ T9190] active_anon:22524 inactive_anon:8100 isolated_anon:0 [ 283.353425][ T9190] active_file:18759 inactive_file:40344 isolated_file:0 [ 283.353425][ T9190] unevictable:768 dirty:717 writeback:0 [ 283.353425][ T9190] slab_reclaimable:11674 slab_unreclaimable:92814 [ 283.353425][ T9190] mapped:35613 shmem:20487 pagetables:1216 [ 283.353425][ T9190] sec_pagetables:0 bounce:0 [ 283.353425][ T9190] kernel_misc_reclaimable:0 [ 283.353425][ T9190] free:1293531 free_pcp:14735 free_cma:0 [ 283.729888][ T9190] Node 0 active_anon:78824kB inactive_anon:31352kB active_file:75080kB inactive_file:161196kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:142964kB dirty:2864kB writeback:0kB shmem:72164kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11396kB pagetables:4792kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 283.829926][ T9190] Node 1 active_anon:0kB inactive_anon:0kB active_file:20kB inactive_file:136kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:20kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:64kB pagetables:168kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 283.950912][ T9190] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 284.040466][ T9190] lowmem_reserve[]: 0 2477 2478 2478 2478 [ 284.046419][ T9190] Node 0 DMA32 free:1236976kB boost:0kB min:34056kB low:42568kB high:51080kB reserved_highatomic:0KB free_highatomic:0KB active_anon:72924kB inactive_anon:33052kB active_file:75080kB inactive_file:161196kB unevictable:1536kB writepending:2864kB zspages:624kB present:3129332kB managed:2537428kB mlocked:0kB bounce:0kB free_pcp:61744kB local_pcp:24820kB free_cma:0kB [ 284.130202][ T9190] lowmem_reserve[]: 0 0 1 1 1 [ 284.135117][ T9190] Node 0 Normal free:4kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1060kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 284.226534][ T9203] syz.2.812 (9203): /proc/9202/oom_adj is deprecated, please use /proc/9202/oom_score_adj instead. [ 284.242049][ T9190] lowmem_reserve[]: 0 0 0 0 0 [ 284.246958][ T9190] Node 1 Normal free:3931512kB boost:0kB min:55828kB low:69784kB high:83740kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:20kB inactive_file:136kB unevictable:1536kB writepending:4kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:5112kB local_pcp:0kB free_cma:0kB [ 284.299856][ T9190] lowmem_reserve[]: 0 0 0 0 0 [ 284.304675][ T9190] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 284.337272][ T9190] Node 0 DMA32: 2874*4kB (UME) 1776*8kB (UM) 1069*16kB (UM) 68*32kB (UME) 160*64kB (ME) 375*128kB (ME) 166*256kB (UM) 71*512kB (UM) 34*1024kB (UM) 14*2048kB (UM) 242*4096kB (UM) = 1236792kB [ 284.386481][ T9190] Node 0 Normal: 1*4kB (U) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB [ 284.414150][ T9190] Node 1 Normal: 11*4kB (UM) 10*8kB (UM) 9*16kB (UM) 13*32kB (UM) 4*64kB (UM) 4*128kB (M) 2*256kB (UM) 1*512kB (U) 1*1024kB (M) 2*2048kB (U) 958*4096kB (UM) = 3931564kB [ 284.469948][ T9190] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 284.482631][ T9190] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 284.532944][ T9190] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 284.575786][ T9190] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 284.621274][ T9190] 79604 total pagecache pages [ 284.644221][ T9190] 90 pages in swap cache [ 284.668924][ T9190] Free swap = 124444kB [ 284.680059][ T9190] Total swap = 124996kB [ 284.710021][ T9190] 2097051 pages RAM [ 284.713990][ T9190] 0 pages HighMem/MovableOnly [ 284.718883][ T9190] 430814 pages reserved [ 284.750260][ T9190] 0 pages cma reserved [ 285.252598][ T9229] openvswitch: netlink: Flow key attr not present in new flow. [ 285.772894][ T9234] blktrace: Concurrent blktraces are not allowed on loop2 [ 286.527988][ T9242] FAULT_INJECTION: forcing a failure. [ 286.527988][ T9242] name failslab, interval 1, probability 0, space 0, times 0 [ 286.560295][ T9242] CPU: 1 UID: 0 PID: 9242 Comm: syz.0.822 Tainted: G U L syzkaller #0 PREEMPT(full) [ 286.560353][ T9242] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 286.560366][ T9242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 286.560384][ T9242] Call Trace: [ 286.560396][ T9242] [ 286.560408][ T9242] dump_stack_lvl+0x100/0x190 [ 286.560460][ T9242] should_fail_ex.cold+0x5/0xa [ 286.560499][ T9242] should_failslab+0xc2/0x120 [ 286.560533][ T9242] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 286.560582][ T9242] ? __d_alloc+0x34/0xa80 [ 286.560626][ T9242] ? __pfx_inode_set_ctime_to_ts+0x10/0x10 [ 286.560660][ T9242] ? lockdep_hardirqs_on+0x78/0x100 [ 286.560707][ T9242] __d_alloc+0x34/0xa80 [ 286.560747][ T9242] d_alloc+0x4a/0x1e0 [ 286.560787][ T9242] d_alloc_name+0x83/0xb0 [ 286.560822][ T9242] ? __pfx_d_alloc_name+0x10/0x10 [ 286.560860][ T9242] ? dput.part.0+0xdd/0x570 [ 286.560904][ T9242] simple_fill_super+0x4c3/0x680 [ 286.560943][ T9242] ? __pfx_nfsd_fill_super+0x10/0x10 [ 286.560975][ T9242] nfsd_fill_super+0x98/0x560 [ 286.561005][ T9242] ? __pfx_set_anon_super_fc+0x10/0x10 [ 286.561052][ T9242] ? __pfx_nfsd_fill_super+0x10/0x10 [ 286.561082][ T9242] get_tree_keyed+0x10e/0x1d0 [ 286.561133][ T9242] vfs_get_tree+0x92/0x320 [ 286.561179][ T9242] path_mount+0x7d0/0x23d0 [ 286.561223][ T9242] ? __pfx_path_mount+0x10/0x10 [ 286.561257][ T9242] ? lockdep_hardirqs_on+0x78/0x100 [ 286.561300][ T9242] ? putname+0xb1/0x110 [ 286.561330][ T9242] ? kmem_cache_free+0x124/0x6a0 [ 286.561387][ T9242] ? __x64_sys_mount+0x293/0x310 [ 286.561422][ T9242] __x64_sys_mount+0x293/0x310 [ 286.561460][ T9242] ? __pfx___x64_sys_mount+0x10/0x10 [ 286.561511][ T9242] do_syscall_64+0x106/0xf80 [ 286.561547][ T9242] ? clear_bhb_loop+0x40/0x90 [ 286.561587][ T9242] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.561630][ T9242] RIP: 0033:0x7fbe46b9c799 [ 286.561658][ T9242] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 286.561689][ T9242] RSP: 002b:00007fbe44df6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 286.561722][ T9242] RAX: ffffffffffffffda RBX: 00007fbe46e15fa0 RCX: 00007fbe46b9c799 [ 286.561743][ T9242] RDX: 0000200000000140 RSI: 0000200000000440 RDI: 0000000000000000 [ 286.561762][ T9242] RBP: 00007fbe46c32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 286.561781][ T9242] R10: 0000000001010000 R11: 0000000000000246 R12: 0000000000000000 [ 286.561800][ T9242] R13: 00007fbe46e16038 R14: 00007fbe46e15fa0 R15: 00007ffdc85ef6a8 [ 286.561844][ T9242] [ 287.663596][ T9253] uvcvideo: [Deprecated]: nodrop parameter will be eventually removed. [ 287.855168][ T9246] netlink: 8 bytes leftover after parsing attributes in process `syz.2.824'. [ 288.241164][ T9266] blktrace: Concurrent blktraces are not allowed on loop2 [ 288.278671][ T9258] FAULT_INJECTION: forcing a failure. [ 288.278671][ T9258] name failslab, interval 1, probability 0, space 0, times 0 [ 288.337505][ T9258] CPU: 0 UID: 0 PID: 9258 Comm: syz.1.828 Tainted: G U L syzkaller #0 PREEMPT(full) [ 288.337559][ T9258] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 288.337571][ T9258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 288.337588][ T9258] Call Trace: [ 288.337597][ T9258] [ 288.337606][ T9258] dump_stack_lvl+0x100/0x190 [ 288.337653][ T9258] should_fail_ex.cold+0x5/0xa [ 288.337690][ T9258] should_failslab+0xc2/0x120 [ 288.337726][ T9258] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 288.337770][ T9258] ? security_inode_alloc+0x3b/0x2c0 [ 288.337818][ T9258] ? lockdep_init_map_type+0x5c/0x250 [ 288.337876][ T9258] security_inode_alloc+0x3b/0x2c0 [ 288.337925][ T9258] inode_init_always_gfp+0xced/0x1040 [ 288.337965][ T9258] alloc_inode+0x8e/0x250 [ 288.338008][ T9258] alloc_anon_inode+0x2a/0x3e0 [ 288.338041][ T9258] dma_buf_export+0x267/0xcb0 [ 288.338085][ T9258] ? sg_alloc_table+0x4c/0x1c0 [ 288.338131][ T9258] system_heap_allocate+0xb5e/0x1170 [ 288.338186][ T9258] ? __pfx_system_heap_allocate+0x10/0x10 [ 288.338245][ T9258] ? rep_movs_alternative+0x4a/0x90 [ 288.338300][ T9258] dma_heap_ioctl+0x37f/0x5e0 [ 288.338347][ T9258] ? __pfx_dma_heap_ioctl+0x10/0x10 [ 288.338386][ T9258] ? find_held_lock+0x2b/0x80 [ 288.338436][ T9258] ? __pfx_dma_heap_ioctl+0x10/0x10 [ 288.338480][ T9258] __x64_sys_ioctl+0x18e/0x210 [ 288.338528][ T9258] do_syscall_64+0x106/0xf80 [ 288.338564][ T9258] ? clear_bhb_loop+0x40/0x90 [ 288.338602][ T9258] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 288.338633][ T9258] RIP: 0033:0x7f82e0f9c799 [ 288.338660][ T9258] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 288.338690][ T9258] RSP: 002b:00007f82e1da3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 288.338721][ T9258] RAX: ffffffffffffffda RBX: 00007f82e1215fa0 RCX: 00007f82e0f9c799 [ 288.338742][ T9258] RDX: 0000200000000140 RSI: ffffffffffdffe00 RDI: 0000000000000006 [ 288.338761][ T9258] RBP: 00007f82e1032bd9 R08: 0000000000000000 R09: 0000000000000000 [ 288.338779][ T9258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 288.338798][ T9258] R13: 00007f82e1216038 R14: 00007f82e1215fa0 R15: 00007ffc08fb0ad8 [ 288.338848][ T9258] [ 290.061742][ T9292] FAULT_INJECTION: forcing a failure. [ 290.061742][ T9292] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 290.079922][ T9292] CPU: 1 UID: 0 PID: 9292 Comm: syz.1.838 Tainted: G U L syzkaller #0 PREEMPT(full) [ 290.079970][ T9292] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 290.079981][ T9292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 290.079996][ T9292] Call Trace: [ 290.080006][ T9292] [ 290.080015][ T9292] dump_stack_lvl+0x100/0x190 [ 290.080055][ T9292] should_fail_ex.cold+0x5/0xa [ 290.080083][ T9292] _copy_to_user+0x32/0xd0 [ 290.080108][ T9292] simple_read_from_buffer+0xcb/0x170 [ 290.080152][ T9292] proc_fail_nth_read+0x1af/0x230 [ 290.080182][ T9292] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 290.080212][ T9292] ? rw_verify_area+0xce/0x6d0 [ 290.080243][ T9292] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 290.080270][ T9292] vfs_read+0x1e4/0xb30 [ 290.080309][ T9292] ? __pfx_vfs_read+0x10/0x10 [ 290.080342][ T9292] ? __fget_files+0x215/0x3d0 [ 290.080370][ T9292] ? __fget_files+0x21f/0x3d0 [ 290.080400][ T9292] ksys_read+0x12a/0x250 [ 290.080434][ T9292] ? __pfx_ksys_read+0x10/0x10 [ 290.080477][ T9292] do_syscall_64+0x106/0xf80 [ 290.080504][ T9292] ? clear_bhb_loop+0x40/0x90 [ 290.080534][ T9292] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 290.080557][ T9292] RIP: 0033:0x7f82e0f5cfce [ 290.080577][ T9292] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 290.080598][ T9292] RSP: 002b:00007f82e1da2fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 290.080621][ T9292] RAX: ffffffffffffffda RBX: 00007f82e1da36c0 RCX: 00007f82e0f5cfce [ 290.080635][ T9292] RDX: 000000000000000f RSI: 00007f82e1da30a0 RDI: 0000000000000002 [ 290.080649][ T9292] RBP: 00007f82e1da3090 R08: 0000000000000000 R09: 0000000000000000 [ 290.080662][ T9292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 290.080675][ T9292] R13: 00007f82e1216038 R14: 00007f82e1215fa0 R15: 00007ffc08fb0ad8 [ 290.080706][ T9292] [ 290.389585][ T9297] FAULT_INJECTION: forcing a failure. [ 290.389585][ T9297] name failslab, interval 1, probability 0, space 0, times 0 [ 290.455757][ T9297] CPU: 0 UID: 0 PID: 9297 Comm: syz.0.839 Tainted: G U L syzkaller #0 PREEMPT(full) [ 290.455809][ T9297] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 290.455820][ T9297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 290.455837][ T9297] Call Trace: [ 290.455846][ T9297] [ 290.455857][ T9297] dump_stack_lvl+0x100/0x190 [ 290.455907][ T9297] should_fail_ex.cold+0x5/0xa [ 290.455941][ T9297] ? tomoyo_encode2+0xfb/0x3c0 [ 290.455972][ T9297] should_failslab+0xc2/0x120 [ 290.456003][ T9297] __kmalloc_noprof+0xe0/0x850 [ 290.456044][ T9297] ? d_absolute_path+0x136/0x1b0 [ 290.456091][ T9297] tomoyo_encode2+0xfb/0x3c0 [ 290.456129][ T9297] tomoyo_encode+0x29/0x50 [ 290.456160][ T9297] tomoyo_realpath_from_path+0x18c/0x690 [ 290.456202][ T9297] tomoyo_path_number_perm+0x23c/0x580 [ 290.456247][ T9297] ? tomoyo_path_number_perm+0x22e/0x580 [ 290.456296][ T9297] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 290.456382][ T9297] ? find_held_lock+0x2b/0x80 [ 290.456409][ T9297] ? __fget_files+0x215/0x3d0 [ 290.456434][ T9297] ? hook_file_ioctl_common+0x146/0x410 [ 290.456502][ T9297] ? __fget_files+0x21f/0x3d0 [ 290.456536][ T9297] security_file_ioctl+0xd3/0x230 [ 290.456585][ T9297] __x64_sys_ioctl+0xb7/0x210 [ 290.456630][ T9297] do_syscall_64+0x106/0xf80 [ 290.456664][ T9297] ? clear_bhb_loop+0x40/0x90 [ 290.456702][ T9297] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 290.456731][ T9297] RIP: 0033:0x7fbe46b9c799 [ 290.456751][ T9297] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 290.456775][ T9297] RSP: 002b:00007fbe44df6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 290.456803][ T9297] RAX: ffffffffffffffda RBX: 00007fbe46e15fa0 RCX: 00007fbe46b9c799 [ 290.456835][ T9297] RDX: 0000200000000000 RSI: 00000000c018620b RDI: 0000000000000003 [ 290.456854][ T9297] RBP: 00007fbe44df6090 R08: 0000000000000000 R09: 0000000000000000 [ 290.456871][ T9297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 290.456887][ T9297] R13: 00007fbe46e16038 R14: 00007fbe46e15fa0 R15: 00007ffdc85ef6a8 [ 290.456928][ T9297] [ 290.456997][ T9297] ERROR: Out of memory at tomoyo_realpath_from_path. [ 290.798780][ T9303] FAULT_INJECTION: forcing a failure. [ 290.798780][ T9303] name failslab, interval 1, probability 0, space 0, times 0 [ 290.816049][ T9303] CPU: 0 UID: 0 PID: 9303 Comm: syz.0.842 Tainted: G U L syzkaller #0 PREEMPT(full) [ 290.816106][ T9303] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 290.816117][ T9303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 290.816136][ T9303] Call Trace: [ 290.816146][ T9303] [ 290.816159][ T9303] dump_stack_lvl+0x100/0x190 [ 290.816209][ T9303] should_fail_ex.cold+0x5/0xa [ 290.816247][ T9303] should_failslab+0xc2/0x120 [ 290.816280][ T9303] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 290.816327][ T9303] ? dup_fd+0x4d/0xd10 [ 290.816357][ T9303] ? trace_kmalloc+0x101/0x130 [ 290.816396][ T9303] dup_fd+0x4d/0xd10 [ 290.816432][ T9303] ? apparmor_task_alloc+0x2c1/0x3b0 [ 290.816483][ T9303] copy_process+0x2631/0x7a10 [ 290.816531][ T9303] ? preempt_schedule_thunk+0x16/0x30 [ 290.816588][ T9303] ? __pfx_copy_process+0x10/0x10 [ 290.816626][ T9303] ? find_held_lock+0x2b/0x80 [ 290.816665][ T9303] ? futex_private_hash_put+0x107/0x1c0 [ 290.816711][ T9303] kernel_clone+0xfc/0x9a0 [ 290.816753][ T9303] ? __pfx_kernel_clone+0x10/0x10 [ 290.816812][ T9303] __do_sys_clone+0xd9/0x120 [ 290.816851][ T9303] ? __pfx___do_sys_clone+0x10/0x10 [ 290.816889][ T9303] ? __fget_files+0x21f/0x3d0 [ 290.816950][ T9303] do_syscall_64+0x106/0xf80 [ 290.816989][ T9303] ? clear_bhb_loop+0x40/0x90 [ 290.817029][ T9303] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 290.817062][ T9303] RIP: 0033:0x7fbe46b9c799 [ 290.817089][ T9303] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 290.817121][ T9303] RSP: 002b:00007fbe44df5fd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 290.817151][ T9303] RAX: ffffffffffffffda RBX: 00007fbe46e15fa0 RCX: 00007fbe46b9c799 [ 290.817172][ T9303] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 290.817191][ T9303] RBP: 00007fbe46c32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 290.817209][ T9303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 290.817229][ T9303] R13: 00007fbe46e16038 R14: 00007fbe46e15fa0 R15: 00007ffdc85ef6a8 [ 290.817271][ T9303] [ 291.014362][ T9305] netlink: 8 bytes leftover after parsing attributes in process `syz.1.841'. [ 291.990011][ T9323] vivid-007: ================= START STATUS ================= [ 292.024875][ T9323] vivid-007: Generate PTS: true [ 292.050374][ T9323] vivid-007: Generate SCR: true [ 292.079553][ T9323] tpg source WxH: 320x240 (Y'CbCr) [ 292.129869][ T9323] tpg field: 1 [ 292.134905][ T9323] tpg crop: (0,0)/320x240 [ 292.172434][ T9323] tpg compose: (0,0)/320x240 [ 292.177098][ T9323] tpg colorspace: 8 [ 292.220611][ T9323] tpg transfer function: 0/0 [ 292.225674][ T9323] tpg Y'CbCr encoding: 0/0 [ 292.260263][ T9323] tpg quantization: 0/0 [ 292.264628][ T9323] tpg RGB range: 0/2 [ 292.278977][ T9323] vivid-007: ================== END STATUS ================== [ 292.457356][ T9330] openvswitch: netlink: Duplicate or invalid key (type 0). [ 293.806918][ T9346] netlink: 8 bytes leftover after parsing attributes in process `syz.3.854'. [ 294.255326][ T9360] netlink: 4 bytes leftover after parsing attributes in process `syz.0.858'. [ 294.290393][ T9360] netlink: 4 bytes leftover after parsing attributes in process `syz.0.858'. [ 295.106758][ T9343] can: request_module (can-proto-0) failed. [ 295.892951][ T9388] blktrace: Concurrent blktraces are not allowed on loop2 [ 296.961467][ T9396] FAULT_INJECTION: forcing a failure. [ 296.961467][ T9396] name failslab, interval 1, probability 0, space 0, times 0 [ 296.996309][ T9396] CPU: 1 UID: 0 PID: 9396 Comm: syz.0.868 Tainted: G U L syzkaller #0 PREEMPT(full) [ 296.996357][ T9396] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 296.996366][ T9396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 296.996381][ T9396] Call Trace: [ 296.996390][ T9396] [ 296.996399][ T9396] dump_stack_lvl+0x100/0x190 [ 296.996444][ T9396] should_fail_ex.cold+0x5/0xa [ 296.996475][ T9396] ? tomoyo_realpath_from_path+0xb6/0x690 [ 296.996504][ T9396] should_failslab+0xc2/0x120 [ 296.996530][ T9396] __kmalloc_noprof+0xe0/0x850 [ 296.996579][ T9396] tomoyo_realpath_from_path+0xb6/0x690 [ 296.996620][ T9396] tomoyo_path_number_perm+0x23c/0x580 [ 296.996659][ T9396] ? tomoyo_path_number_perm+0x22e/0x580 [ 296.996702][ T9396] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 296.996787][ T9396] ? find_held_lock+0x2b/0x80 [ 296.996812][ T9396] ? __fget_files+0x215/0x3d0 [ 296.996835][ T9396] ? hook_file_ioctl_common+0x146/0x410 [ 296.996890][ T9396] ? __fget_files+0x21f/0x3d0 [ 296.996922][ T9396] security_file_ioctl+0xd3/0x230 [ 296.996968][ T9396] __x64_sys_ioctl+0xb7/0x210 [ 296.997008][ T9396] do_syscall_64+0x106/0xf80 [ 296.997041][ T9396] ? clear_bhb_loop+0x40/0x90 [ 296.997075][ T9396] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 296.997102][ T9396] RIP: 0033:0x7fbe46b9c799 [ 296.997125][ T9396] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 296.997152][ T9396] RSP: 002b:00007fbe44dd5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 296.997179][ T9396] RAX: ffffffffffffffda RBX: 00007fbe46e16090 RCX: 00007fbe46b9c799 [ 296.997196][ T9396] RDX: 0000000000000000 RSI: 0000000000005425 RDI: 0000000000000003 [ 296.997212][ T9396] RBP: 00007fbe44dd5090 R08: 0000000000000000 R09: 0000000000000000 [ 296.997227][ T9396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 296.997241][ T9396] R13: 00007fbe46e16128 R14: 00007fbe46e16090 R15: 00007ffdc85ef6a8 [ 296.997277][ T9396] [ 296.997383][ T9396] ERROR: Out of memory at tomoyo_realpath_from_path. [ 297.309255][ T30] audit: type=1800 audit(1772863917.634:4): pid=9404 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.870" name="lu_gp_id" dev="configfs" ino=24102 res=0 errno=0 [ 298.095324][ T9404] ALUA LU Group already has a valid ID, ignoring request [ 298.142942][ T30] audit: type=1804 audit(1772863918.474:5): pid=9415 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.873" name="/newroot/sys/kernel/tracing/events/vmalloc/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 298.855326][ T9424] netlink: 24 bytes leftover after parsing attributes in process `syz.1.876'. [ 299.124276][ T9431] netlink: 146 bytes leftover after parsing attributes in process `syz.2.878'. [ 299.454003][ T9438] FAULT_INJECTION: forcing a failure. [ 299.454003][ T9438] name failslab, interval 1, probability 0, space 0, times 0 [ 299.480021][ T9438] CPU: 1 UID: 0 PID: 9438 Comm: syz.3.880 Tainted: G U L syzkaller #0 PREEMPT(full) [ 299.480071][ T9438] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 299.480081][ T9438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 299.480097][ T9438] Call Trace: [ 299.480107][ T9438] [ 299.480118][ T9438] dump_stack_lvl+0x100/0x190 [ 299.480176][ T9438] should_fail_ex.cold+0x5/0xa [ 299.480211][ T9438] should_failslab+0xc2/0x120 [ 299.480243][ T9438] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 299.480288][ T9438] ? __alloc_skb+0x140/0x710 [ 299.480328][ T9438] __alloc_skb+0x140/0x710 [ 299.480359][ T9438] ? __alloc_skb+0x5b7/0x710 [ 299.480391][ T9438] ? __pfx___alloc_skb+0x10/0x10 [ 299.480435][ T9438] netlink_alloc_large_skb+0x69/0x150 [ 299.480487][ T9438] netlink_sendmsg+0x680/0xda0 [ 299.480533][ T9438] ? __pfx_netlink_sendmsg+0x10/0x10 [ 299.480570][ T9438] ? __import_iovec+0x1d2/0x640 [ 299.480604][ T9438] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 299.480652][ T9438] ____sys_sendmsg+0x9e1/0xb70 [ 299.480694][ T9438] ? __pfx_netlink_sendmsg+0x10/0x10 [ 299.480734][ T9438] ? __pfx_____sys_sendmsg+0x10/0x10 [ 299.480785][ T9438] ? __pfx__kstrtoull+0x10/0x10 [ 299.480829][ T9438] ___sys_sendmsg+0x190/0x1e0 [ 299.480878][ T9438] ? __pfx____sys_sendmsg+0x10/0x10 [ 299.480943][ T9438] ? find_held_lock+0x2b/0x80 [ 299.480996][ T9438] __sys_sendmmsg+0x205/0x430 [ 299.481049][ T9438] ? __pfx___sys_sendmmsg+0x10/0x10 [ 299.481098][ T9438] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 299.481153][ T9438] ? fput+0x79/0x100 [ 299.481186][ T9438] ? ksys_write+0x1ac/0x250 [ 299.481213][ T9438] ? __pfx_ksys_write+0x10/0x10 [ 299.481247][ T9438] __x64_sys_sendmmsg+0x9c/0x100 [ 299.481283][ T9438] ? lockdep_hardirqs_on+0x78/0x100 [ 299.481318][ T9438] do_syscall_64+0x106/0xf80 [ 299.481352][ T9438] ? clear_bhb_loop+0x40/0x90 [ 299.481388][ T9438] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 299.481417][ T9438] RIP: 0033:0x7fc9d339c799 [ 299.481441][ T9438] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 299.481476][ T9438] RSP: 002b:00007fc9d4333028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 299.481505][ T9438] RAX: ffffffffffffffda RBX: 00007fc9d3615fa0 RCX: 00007fc9d339c799 [ 299.481524][ T9438] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 299.481542][ T9438] RBP: 00007fc9d4333090 R08: 0000000000000000 R09: 0000000000000000 [ 299.481559][ T9438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 299.481576][ T9438] R13: 00007fc9d3616038 R14: 00007fc9d3615fa0 R15: 00007ffc686fd678 [ 299.481616][ T9438] [ 300.138215][ T9447] FAULT_INJECTION: forcing a failure. [ 300.138215][ T9447] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 300.171242][ T9447] CPU: 1 UID: 0 PID: 9447 Comm: syz.2.882 Tainted: G U L syzkaller #0 PREEMPT(full) [ 300.171291][ T9447] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 300.171303][ T9447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 300.171319][ T9447] Call Trace: [ 300.171327][ T9447] [ 300.171338][ T9447] dump_stack_lvl+0x100/0x190 [ 300.171384][ T9447] should_fail_ex.cold+0x5/0xa [ 300.171416][ T9447] _copy_from_user+0x2e/0xd0 [ 300.171456][ T9447] vhost_net_ioctl+0x61e/0x1910 [ 300.171490][ T9447] ? do_vfs_ioctl+0x226/0x13e0 [ 300.171531][ T9447] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 300.171571][ T9447] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 300.171619][ T9447] ? hook_file_ioctl_common+0x146/0x410 [ 300.171683][ T9447] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 300.171719][ T9447] __x64_sys_ioctl+0x18e/0x210 [ 300.171764][ T9447] do_syscall_64+0x106/0xf80 [ 300.171798][ T9447] ? clear_bhb_loop+0x40/0x90 [ 300.171835][ T9447] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 300.171866][ T9447] RIP: 0033:0x7ffbc559c799 [ 300.171891][ T9447] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 300.171919][ T9447] RSP: 002b:00007ffbc63ba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 300.171948][ T9447] RAX: ffffffffffffffda RBX: 00007ffbc5815fa0 RCX: 00007ffbc559c799 [ 300.171967][ T9447] RDX: 0000000000000000 RSI: 000000004008af30 RDI: 0000000000000001 [ 300.171984][ T9447] RBP: 00007ffbc63ba090 R08: 0000000000000000 R09: 0000000000000000 [ 300.172002][ T9447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 300.172020][ T9447] R13: 00007ffbc5816038 R14: 00007ffbc5815fa0 R15: 00007ffd0f84fe48 [ 300.172059][ T9447] [ 300.403287][ T9454] netlink: 4 bytes leftover after parsing attributes in process `syz.3.883'. [ 300.610784][ T9454] netlink: 4 bytes leftover after parsing attributes in process `syz.3.883'. [ 300.821578][ T9456] zswap: compressor not available [ 300.869681][ T9463] FAULT_INJECTION: forcing a failure. [ 300.869681][ T9463] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 300.942372][ T9463] CPU: 0 UID: 0 PID: 9463 Comm: syz.1.885 Tainted: G U L syzkaller #0 PREEMPT(full) [ 300.942421][ T9463] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 300.942432][ T9463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 300.942455][ T9463] Call Trace: [ 300.942466][ T9463] [ 300.942476][ T9463] dump_stack_lvl+0x100/0x190 [ 300.942522][ T9463] should_fail_ex.cold+0x5/0xa [ 300.942557][ T9463] _copy_from_user+0x2e/0xd0 [ 300.942587][ T9463] fbcon_set_con2fb_map_ioctl+0x79/0x220 [ 300.942617][ T9463] ? __pfx_fbcon_set_con2fb_map_ioctl+0x10/0x10 [ 300.942644][ T9463] ? find_held_lock+0x2b/0x80 [ 300.942671][ T9463] ? tomoyo_path_number_perm+0x28f/0x580 [ 300.942715][ T9463] ? tomoyo_path_number_perm+0x28f/0x580 [ 300.942759][ T9463] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 300.942810][ T9463] do_fb_ioctl+0x25b/0x7e0 [ 300.942842][ T9463] ? __pfx_do_fb_ioctl+0x10/0x10 [ 300.942891][ T9463] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 300.942968][ T9463] ? __fget_files+0x21f/0x3d0 [ 300.943001][ T9463] fb_ioctl+0xe5/0x150 [ 300.943030][ T9463] ? __pfx_fb_ioctl+0x10/0x10 [ 300.943060][ T9463] __x64_sys_ioctl+0x18e/0x210 [ 300.943102][ T9463] do_syscall_64+0x106/0xf80 [ 300.943133][ T9463] ? clear_bhb_loop+0x40/0x90 [ 300.943165][ T9463] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 300.943193][ T9463] RIP: 0033:0x7f82e0f9c799 [ 300.943217][ T9463] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 300.943243][ T9463] RSP: 002b:00007f82e1d82028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 300.943269][ T9463] RAX: ffffffffffffffda RBX: 00007f82e1216090 RCX: 00007f82e0f9c799 [ 300.943281][ T9463] RDX: 0000000000000000 RSI: 0000000000004610 RDI: 0000000000000007 [ 300.943292][ T9463] RBP: 00007f82e1d82090 R08: 0000000000000000 R09: 0000000000000000 [ 300.943302][ T9463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 300.943312][ T9463] R13: 00007f82e1216128 R14: 00007f82e1216090 R15: 00007ffc08fb0ad8 [ 300.943335][ T9463] [ 301.172153][ T9470] blktrace: Concurrent blktraces are not allowed on loop2 [ 302.600226][ T9495] netlink: 4 bytes leftover after parsing attributes in process `syz.0.895'. [ 302.657124][ T9496] netlink: 4 bytes leftover after parsing attributes in process `syz.0.895'. [ 302.915945][ T9505] FAULT_INJECTION: forcing a failure. [ 302.915945][ T9505] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 302.951369][ T9505] CPU: 1 UID: 0 PID: 9505 Comm: syz.0.898 Tainted: G U L syzkaller #0 PREEMPT(full) [ 302.951419][ T9505] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 302.951439][ T9505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 302.951456][ T9505] Call Trace: [ 302.951465][ T9505] [ 302.951475][ T9505] dump_stack_lvl+0x100/0x190 [ 302.951536][ T9505] should_fail_ex.cold+0x5/0xa [ 302.951572][ T9505] _copy_to_user+0x32/0xd0 [ 302.951605][ T9505] rng_dev_read+0x223/0x910 [ 302.951647][ T9505] ? __pfx_virtio_read+0x10/0x10 [ 302.951690][ T9505] ? __pfx_rng_dev_read+0x10/0x10 [ 302.951738][ T9505] ? bpf_lsm_file_permission+0x9/0x10 [ 302.951784][ T9505] ? security_file_permission+0x76/0x210 [ 302.951816][ T9505] ? rw_verify_area+0xce/0x6d0 [ 302.951857][ T9505] ? __pfx_rng_dev_read+0x10/0x10 [ 302.951897][ T9505] vfs_read+0x1e4/0xb30 [ 302.951948][ T9505] ? __pfx_vfs_read+0x10/0x10 [ 302.951989][ T9505] ? find_held_lock+0x2b/0x80 [ 302.952015][ T9505] ? __fget_files+0x215/0x3d0 [ 302.952042][ T9505] ? __fget_files+0x215/0x3d0 [ 302.952075][ T9505] ? __fget_files+0x21f/0x3d0 [ 302.952113][ T9505] ksys_read+0x12a/0x250 [ 302.952157][ T9505] ? __pfx_ksys_read+0x10/0x10 [ 302.952214][ T9505] do_syscall_64+0x106/0xf80 [ 302.952248][ T9505] ? clear_bhb_loop+0x40/0x90 [ 302.952285][ T9505] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 302.952316][ T9505] RIP: 0033:0x7fbe46b9c799 [ 302.952340][ T9505] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 302.952368][ T9505] RSP: 002b:00007fbe44df6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 302.952395][ T9505] RAX: ffffffffffffffda RBX: 00007fbe46e15fa0 RCX: 00007fbe46b9c799 [ 302.952414][ T9505] RDX: 00000000fffffe82 RSI: 0000200000000040 RDI: 0000000000000003 [ 302.952446][ T9505] RBP: 00007fbe44df6090 R08: 0000000000000000 R09: 0000000000000000 [ 302.952464][ T9505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 302.952481][ T9505] R13: 00007fbe46e16038 R14: 00007fbe46e15fa0 R15: 00007ffdc85ef6a8 [ 302.952522][ T9505] [ 303.177418][ T9505] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input10 [ 303.500851][ T9498] zswap: compressor not available [ 303.654500][ T9513] bond0: invalid ARP target specified [ 304.194398][ T9527] blktrace: Concurrent blktraces are not allowed on loop2 [ 304.565662][ T9535] netlink: 8 bytes leftover after parsing attributes in process `syz.0.905'. [ 305.676048][ T9553] zswap: compressor not available [ 306.319721][ T9586] blktrace: Concurrent blktraces are not allowed on loop2 [ 306.624701][ T9589] netlink: 338 bytes leftover after parsing attributes in process `syz.0.915'. [ 306.635780][ T9591] netlink: 338 bytes leftover after parsing attributes in process `syz.0.915'. [ 306.658328][ T9585] netlink: 4 bytes leftover after parsing attributes in process `syz.0.915'. [ 307.552213][ T9598] zswap: compressor not available [ 307.807579][ T9616] vhci_hcd vhci_hcd.2: invalid port number 16 [ 307.826238][ T9615] vhci_hcd vhci_hcd.2: invalid port number 16 [ 307.843095][ T9616] vhci_hcd vhci_hcd.2: invalid port number 16 [ 307.870861][ T9615] vhci_hcd vhci_hcd.2: invalid port number 16 [ 308.767120][ T9636] zswap: compressor not available [ 309.355249][ T9664] can: request_module (can-proto-0) failed. [ 309.613322][ T9674] FAULT_INJECTION: forcing a failure. [ 309.613322][ T9674] name failslab, interval 1, probability 0, space 0, times 0 [ 309.626402][ T9674] CPU: 1 UID: 0 PID: 9674 Comm: syz.2.941 Tainted: G U L syzkaller #0 PREEMPT(full) [ 309.626454][ T9674] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 309.626466][ T9674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 309.626483][ T9674] Call Trace: [ 309.626494][ T9674] [ 309.626505][ T9674] dump_stack_lvl+0x100/0x190 [ 309.626557][ T9674] should_fail_ex.cold+0x5/0xa [ 309.626593][ T9674] should_failslab+0xc2/0x120 [ 309.626626][ T9674] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 309.626680][ T9674] ? prepare_creds+0x2c/0x950 [ 309.626724][ T9674] ? __x64_sys_futex+0x34f/0x4d0 [ 309.626762][ T9674] ? __x64_sys_futex+0x358/0x4d0 [ 309.626809][ T9674] prepare_creds+0x2c/0x950 [ 309.626858][ T9674] __sys_setreuid+0x109/0xb00 [ 309.626896][ T9674] do_syscall_64+0x106/0xf80 [ 309.626931][ T9674] ? clear_bhb_loop+0x40/0x90 [ 309.626971][ T9674] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 309.627002][ T9674] RIP: 0033:0x7ffbc559c799 [ 309.627028][ T9674] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 309.627057][ T9674] RSP: 002b:00007ffbc63ba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000071 [ 309.627089][ T9674] RAX: ffffffffffffffda RBX: 00007ffbc5815fa0 RCX: 00007ffbc559c799 [ 309.627110][ T9674] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 309.627129][ T9674] RBP: 00007ffbc5632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 309.627147][ T9674] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 309.627163][ T9674] R13: 00007ffbc5816038 R14: 00007ffbc5815fa0 R15: 00007ffd0f84fe48 [ 309.627203][ T9674] [ 310.160214][ T9676] zswap: compressor not available [ 310.726194][ T9683] FAULT_INJECTION: forcing a failure. [ 310.726194][ T9683] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 310.772611][ T9683] CPU: 0 UID: 0 PID: 9683 Comm: syz.3.943 Tainted: G U L syzkaller #0 PREEMPT(full) [ 310.772646][ T9683] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 310.772653][ T9683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 310.772663][ T9683] Call Trace: [ 310.772670][ T9683] [ 310.772679][ T9683] dump_stack_lvl+0x100/0x190 [ 310.772710][ T9683] should_fail_ex.cold+0x5/0xa [ 310.772728][ T9683] ? prepare_alloc_pages+0x16d/0x5f0 [ 310.772752][ T9683] should_fail_alloc_page+0xeb/0x140 [ 310.772773][ T9683] prepare_alloc_pages+0x1f0/0x5f0 [ 310.772816][ T9683] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 310.772869][ T9683] ? stack_trace_save+0x8e/0xc0 [ 310.772898][ T9683] ? __pfx_stack_trace_save+0x10/0x10 [ 310.772925][ T9683] ? stack_depot_save_flags+0x27/0x9d0 [ 310.772963][ T9683] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 310.772996][ T9683] ? kasan_save_stack+0x3f/0x50 [ 310.773022][ T9683] ? kasan_save_stack+0x30/0x50 [ 310.773049][ T9683] ? kasan_save_track+0x14/0x30 [ 310.773076][ T9683] ? system_heap_allocate+0xeb/0x1170 [ 310.773102][ T9683] ? __x64_sys_ioctl+0x18e/0x210 [ 310.773126][ T9683] ? do_syscall_64+0x106/0xf80 [ 310.773147][ T9683] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 310.773178][ T9683] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 310.773208][ T9683] ? policy_nodemask+0xed/0x4f0 [ 310.773229][ T9683] alloc_pages_mpol+0x1fb/0x550 [ 310.773249][ T9683] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 310.773270][ T9683] ? lockdep_init_map_type+0x5c/0x250 [ 310.773296][ T9683] alloc_pages_noprof+0x131/0x390 [ 310.773316][ T9683] system_heap_allocate+0x2d2/0x1170 [ 310.773362][ T9683] ? __pfx_system_heap_allocate+0x10/0x10 [ 310.773401][ T9683] ? rep_movs_alternative+0x4a/0x90 [ 310.773433][ T9683] dma_heap_ioctl+0x37f/0x5e0 [ 310.773459][ T9683] ? __pfx_dma_heap_ioctl+0x10/0x10 [ 310.773481][ T9683] ? find_held_lock+0x2b/0x80 [ 310.773509][ T9683] ? __pfx_dma_heap_ioctl+0x10/0x10 [ 310.773535][ T9683] __x64_sys_ioctl+0x18e/0x210 [ 310.773562][ T9683] do_syscall_64+0x106/0xf80 [ 310.773583][ T9683] ? clear_bhb_loop+0x40/0x90 [ 310.773608][ T9683] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 310.773627][ T9683] RIP: 0033:0x7fc9d339c799 [ 310.773643][ T9683] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 310.773661][ T9683] RSP: 002b:00007fc9d4333028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 310.773679][ T9683] RAX: ffffffffffffffda RBX: 00007fc9d3615fa0 RCX: 00007fc9d339c799 [ 310.773690][ T9683] RDX: 0000200000000140 RSI: ffffffffffdffe00 RDI: 0000000000000006 [ 310.773701][ T9683] RBP: 00007fc9d3432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 310.773712][ T9683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 310.773722][ T9683] R13: 00007fc9d3616038 R14: 00007fc9d3615fa0 R15: 00007ffc686fd678 [ 310.773745][ T9683] [ 312.310064][ T9711] netlink: 8 bytes leftover after parsing attributes in process `syz.0.951'. [ 312.765756][ T9717] netlink: 8 bytes leftover after parsing attributes in process `syz.3.953'. [ 313.558639][ T9727] FAULT_INJECTION: forcing a failure. [ 313.558639][ T9727] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 313.610207][ T9727] CPU: 0 UID: 0 PID: 9727 Comm: syz.1.958 Tainted: G U L syzkaller #0 PREEMPT(full) [ 313.610268][ T9727] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 313.610281][ T9727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 313.610301][ T9727] Call Trace: [ 313.610312][ T9727] [ 313.610325][ T9727] dump_stack_lvl+0x100/0x190 [ 313.610377][ T9727] should_fail_ex.cold+0x5/0xa [ 313.610457][ T9727] ? prepare_alloc_pages+0x16d/0x5f0 [ 313.610498][ T9727] should_fail_alloc_page+0xeb/0x140 [ 313.610535][ T9727] prepare_alloc_pages+0x1f0/0x5f0 [ 313.610575][ T9727] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 313.610632][ T9727] ? stack_trace_save+0x8e/0xc0 [ 313.610660][ T9727] ? __pfx_stack_trace_save+0x10/0x10 [ 313.610684][ T9727] ? stack_depot_save_flags+0x27/0x9d0 [ 313.610719][ T9727] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 313.610766][ T9727] ? kasan_save_stack+0x3f/0x50 [ 313.610813][ T9727] ? kasan_save_stack+0x30/0x50 [ 313.610858][ T9727] ? kasan_save_track+0x14/0x30 [ 313.610905][ T9727] ? system_heap_allocate+0xeb/0x1170 [ 313.610948][ T9727] ? __x64_sys_ioctl+0x18e/0x210 [ 313.610990][ T9727] ? do_syscall_64+0x106/0xf80 [ 313.611026][ T9727] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 313.611081][ T9727] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 313.611136][ T9727] ? policy_nodemask+0xed/0x4f0 [ 313.611172][ T9727] alloc_pages_mpol+0x1fb/0x550 [ 313.611207][ T9727] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 313.611251][ T9727] ? lockdep_init_map_type+0x5c/0x250 [ 313.611298][ T9727] alloc_pages_noprof+0x131/0x390 [ 313.611333][ T9727] system_heap_allocate+0x2d2/0x1170 [ 313.611388][ T9727] ? __pfx_system_heap_allocate+0x10/0x10 [ 313.611456][ T9727] ? rep_movs_alternative+0x4a/0x90 [ 313.611504][ T9727] dma_heap_ioctl+0x37f/0x5e0 [ 313.611546][ T9727] ? __pfx_dma_heap_ioctl+0x10/0x10 [ 313.611585][ T9727] ? find_held_lock+0x2b/0x80 [ 313.611634][ T9727] ? __pfx_dma_heap_ioctl+0x10/0x10 [ 313.611676][ T9727] __x64_sys_ioctl+0x18e/0x210 [ 313.611724][ T9727] do_syscall_64+0x106/0xf80 [ 313.611760][ T9727] ? clear_bhb_loop+0x40/0x90 [ 313.611798][ T9727] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 313.611830][ T9727] RIP: 0033:0x7f82e0f9c799 [ 313.611858][ T9727] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 313.611889][ T9727] RSP: 002b:00007f82e1da3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 313.611920][ T9727] RAX: ffffffffffffffda RBX: 00007f82e1215fa0 RCX: 00007f82e0f9c799 [ 313.611940][ T9727] RDX: 0000200000000140 RSI: ffffffffffdffe00 RDI: 0000000000000006 [ 313.611960][ T9727] RBP: 00007f82e1032bd9 R08: 0000000000000000 R09: 0000000000000000 [ 313.611978][ T9727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 313.611997][ T9727] R13: 00007f82e1216038 R14: 00007f82e1215fa0 R15: 00007ffc08fb0ad8 [ 313.612039][ T9727] [ 314.322024][ T9740] smpboot: CPU 1 is now offline [ 314.525389][ T9736] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 314.560325][ T9749] ------------[ cut here ]------------ [ 314.560971][ T9749] [ 314.560979][ T9749] ====================================================== [ 314.560989][ T9749] WARNING: possible circular locking dependency detected [ 314.561002][ T9749] syzkaller #0 Tainted: G U L [ 314.561016][ T9749] ------------------------------------------------------ [ 314.561023][ T9749] syz.1.960/9749 is trying to acquire lock: [ 314.561037][ T9749] ffffffff8e6f53c0 (console_owner){-.-.}-{0:0}, at: console_lock_spinning_enable+0x61/0x80 [ 314.561112][ T9749] [ 314.561112][ T9749] but task is already holding lock: [ 314.561119][ T9749] ffff8880b843b2e0 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x88/0x140 [ 314.561168][ T9749] [ 314.561168][ T9749] which lock already depends on the new lock. [ 314.561168][ T9749] [ 314.561176][ T9749] [ 314.561176][ T9749] the existing dependency chain (in reverse order) is: [ 314.561184][ T9749] [ 314.561184][ T9749] -> #4 (&rq->__lock){-.-.}-{2:2}: [ 314.561224][ T9749] _raw_spin_lock_nested+0x31/0x40 [ 314.561250][ T9749] raw_spin_rq_lock_nested+0x2c/0x140 [ 314.561272][ T9749] _task_rq_lock+0xcf/0x490 [ 314.561294][ T9749] cgroup_move_task+0x81/0x2b0 [ 314.561319][ T9749] css_set_move_task+0x285/0x600 [ 314.561342][ T9749] cgroup_post_fork+0x202/0x9b0 [ 314.561372][ T9749] copy_process+0x5f26/0x7a10 [ 314.561398][ T9749] kernel_clone+0xfc/0x9a0 [ 314.561422][ T9749] user_mode_thread+0xcc/0x110 [ 314.561448][ T9749] rest_init+0x21/0x260 [ 314.561482][ T9749] start_kernel+0x47f/0x480 [ 314.561513][ T9749] x86_64_start_reservations+0x24/0x30 [ 314.561547][ T9749] x86_64_start_kernel+0x12b/0x130 [ 314.561587][ T9749] common_startup_64+0x13e/0x148 [ 314.561613][ T9749] [ 314.561613][ T9749] -> #3 (&p->pi_lock){-.-.}-{2:2}: [ 314.561644][ T9749] _raw_spin_lock_irqsave+0x3a/0x60 [ 314.561668][ T9749] try_to_wake_up+0xb2/0x1a80 [ 314.561689][ T9749] __wake_up_common+0x135/0x1f0 [ 314.561718][ T9749] __wake_up+0x31/0x60 [ 314.561741][ T9749] tty_port_default_wakeup+0x47/0x60 [ 314.561774][ T9749] serial8250_tx_chars+0x68f/0x860 [ 314.561804][ T9749] serial8250_handle_irq+0x73e/0xcb0 [ 314.561836][ T9749] serial8250_default_handle_irq+0x9e/0x270 [ 314.561870][ T9749] serial8250_interrupt+0xf8/0x1d0 [ 314.561905][ T9749] __handle_irq_event_percpu+0x232/0x8e0 [ 314.561942][ T9749] handle_irq_event+0xab/0x1e0 [ 314.561978][ T9749] handle_edge_irq+0x375/0x970 [ 314.562010][ T9749] __common_interrupt+0xd8/0x2f0 [ 314.562040][ T9749] common_interrupt+0xb9/0xe0 [ 314.562073][ T9749] asm_common_interrupt+0x26/0x40 [ 314.562097][ T9749] lock_acquire+0x5e/0x380 [ 314.562123][ T9749] unwind_next_frame+0xd1/0x1ea0 [ 314.562145][ T9749] arch_stack_walk+0x94/0xf0 [ 314.562165][ T9749] stack_trace_save+0x8e/0xc0 [ 314.562184][ T9749] kasan_save_stack+0x30/0x50 [ 314.562219][ T9749] kasan_record_aux_stack+0xa7/0xc0 [ 314.562248][ T9749] kmem_cache_free+0x434/0x6a0 [ 314.562278][ T9749] __put_anon_vma+0x114/0x3a0 [ 314.562306][ T9749] unlink_anon_vmas+0x5f3/0x8e0 [ 314.562335][ T9749] free_pgtables+0x2e7/0xd80 [ 314.562356][ T9749] exit_mmap+0x44c/0xa30 [ 314.562389][ T9749] __mmput+0x12a/0x410 [ 314.562410][ T9749] mmput+0x67/0x80 [ 314.562430][ T9749] do_exit+0x819/0x2b60 [ 314.562457][ T9749] do_group_exit+0xd5/0x2a0 [ 314.562486][ T9749] __x64_sys_exit_group+0x3e/0x50 [ 314.562515][ T9749] x64_sys_call+0x102c/0x1530 [ 314.562539][ T9749] do_syscall_64+0x106/0xf80 [ 314.562565][ T9749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 314.562589][ T9749] [ 314.562589][ T9749] -> #2 (&tty->write_wait){-.-.}-{3:3}: [ 314.562621][ T9749] _raw_spin_lock_irqsave+0x3a/0x60 [ 314.562643][ T9749] __wake_up+0x1c/0x60 [ 314.562665][ T9749] tty_port_default_wakeup+0x47/0x60 [ 314.562696][ T9749] serial8250_tx_chars+0x68f/0x860 [ 314.562726][ T9749] serial8250_handle_irq+0x73e/0xcb0 [ 314.562758][ T9749] serial8250_default_handle_irq+0x9e/0x270 [ 314.562792][ T9749] serial8250_interrupt+0xf8/0x1d0 [ 314.562828][ T9749] __handle_irq_event_percpu+0x232/0x8e0 [ 314.562864][ T9749] handle_irq_event+0xab/0x1e0 [ 314.562899][ T9749] handle_edge_irq+0x375/0x970 [ 314.562931][ T9749] __common_interrupt+0xd8/0x2f0 [ 314.562960][ T9749] common_interrupt+0xb9/0xe0 [ 314.562994][ T9749] asm_common_interrupt+0x26/0x40 [ 314.563016][ T9749] _raw_spin_unlock_irqrestore+0x31/0x80 [ 314.563040][ T9749] uart_write+0x29d/0xb20 [ 314.563067][ T9749] n_tty_write+0x44f/0x12d0 [ 314.563100][ T9749] file_tty_write.isra.0+0x4d2/0x890 [ 314.563129][ T9749] redirected_tty_write+0xd4/0x120 [ 314.563156][ T9749] vfs_write+0x6ac/0x1070 [ 314.563190][ T9749] ksys_write+0x12a/0x250 [ 314.563209][ T9749] do_syscall_64+0x106/0xf80 [ 314.563234][ T9749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 314.563257][ T9749] [ 314.563257][ T9749] -> #1 (&port_lock_key){-.-.}-{3:3}: [ 314.563286][ T9749] _raw_spin_lock_irqsave+0x3a/0x60 [ 314.563308][ T9749] serial8250_console_write+0x17e/0x1900 [ 314.563342][ T9749] console_flush_one_record+0x790/0xe50 [ 314.563386][ T9749] console_unlock+0x103/0x260 [ 314.563420][ T9749] vprintk_emit+0x407/0x6b0 [ 314.563439][ T9749] _printk+0xcf/0x110 [ 314.563458][ T9749] register_console.cold+0xc0/0x248 [ 314.563481][ T9749] univ8250_console_init+0x6f/0x80 [ 314.563506][ T9749] console_init+0x423/0x620 [ 314.563528][ T9749] start_kernel+0x305/0x480 [ 314.563559][ T9749] x86_64_start_reservations+0x24/0x30 [ 314.563593][ T9749] x86_64_start_kernel+0x12b/0x130 [ 314.563626][ T9749] common_startup_64+0x13e/0x148 [ 314.563649][ T9749] [ 314.563649][ T9749] -> #0 (console_owner){-.-.}-{0:0}: [ 314.563678][ T9749] __lock_acquire+0x14b8/0x2630 [ 314.563705][ T9749] lock_acquire+0x1cf/0x380 [ 314.563732][ T9749] console_lock_spinning_enable+0x72/0x80 [ 314.563767][ T9749] console_flush_one_record+0x739/0xe50 [ 314.563803][ T9749] console_unlock+0x103/0x260 [ 314.563838][ T9749] vprintk_emit+0x407/0x6b0 [ 314.563857][ T9749] _printk+0xcf/0x110 [ 314.563876][ T9749] __report_bug.cold+0x15/0x137 [ 314.563906][ T9749] report_bug+0xb2/0x220 [ 314.563929][ T9749] handle_bug+0x16a/0x2a0 [ 314.563958][ T9749] exc_invalid_op+0x17/0x50 [ 314.563988][ T9749] asm_exc_invalid_op+0x1a/0x20 [ 314.564009][ T9749] update_rq_clock+0x40a/0xd20 [ 314.564032][ T9749] __schedule+0x1b7d/0x6120 [ 314.564054][ T9749] preempt_schedule_common+0x42/0xc0 [ 314.564079][ T9749] preempt_schedule_thunk+0x16/0x30 [ 314.564107][ T9749] __local_bh_enable_ip+0xff/0x120 [ 314.564130][ T9749] kernel_fpu_end+0x64/0x80 [ 314.564150][ T9749] sha256_blocks_avx2+0x4e/0x90 [ 314.564175][ T9749] __sha256_update+0x188/0x1c0 [ 314.564194][ T9749] crypto_sha256_update+0x23/0x30 [ 314.564219][ T9749] crypto_shash_finup+0x34b/0x6b0 [ 314.564241][ T9749] ima_calc_file_hash_tfm+0x299/0x350 [ 314.564274][ T9749] ima_calc_file_hash+0x18c/0x480 [ 314.564307][ T9749] ima_collect_measurement+0x887/0xa40 [ 314.564342][ T9749] process_measurement+0xdfe/0x2350 [ 314.564380][ T9749] ima_file_mmap+0x1c4/0x1f0 [ 314.564409][ T9749] security_mmap_file+0x278/0x9b0 [ 314.564432][ T9749] vm_mmap_pgoff+0xec/0x470 [ 314.564454][ T9749] ksys_mmap_pgoff+0x273/0x650 [ 314.564477][ T9749] __x64_sys_mmap+0x125/0x190 [ 314.564510][ T9749] do_syscall_64+0x106/0xf80 [ 314.564538][ T9749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 314.564562][ T9749] [ 314.564562][ T9749] other info that might help us debug this: [ 314.564562][ T9749] [ 314.564569][ T9749] Chain exists of: [ 314.564569][ T9749] console_owner --> &p->pi_lock --> &rq->__lock [ 314.564569][ T9749] [ 314.564606][ T9749] Possible unsafe locking scenario: [ 314.564606][ T9749] [ 314.564613][ T9749] CPU0 CPU1 [ 314.564619][ T9749] ---- ---- [ 314.564626][ T9749] lock(&rq->__lock); [ 314.564639][ T9749] lock(&p->pi_lock); [ 314.564656][ T9749] lock(&rq->__lock); [ 314.564672][ T9749] lock(console_owner); [ 314.564686][ T9749] [ 314.564686][ T9749] *** DEADLOCK *** [ 314.564686][ T9749] [ 314.564691][ T9749] 4 locks held by syz.1.960/9749: [ 314.564705][ T9749] #0: ffff888043de0068 (&ima_iint_mutex_key[depth]#2){+.+.}-{4:4}, at: process_measurement+0x5ab/0x2350 [ 314.564774][ T9749] #1: ffff8880b843b2e0 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x88/0x140 [ 314.564827][ T9749] #2: ffffffff8e7d5800 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x110 [ 314.564877][ T9749] #3: ffffffff8e7d5878 (console_srcu){....}-{0:0}, at: console_flush_one_record+0xfd/0xe50 [ 314.564946][ T9749] [ 314.564946][ T9749] stack backtrace: [ 314.564960][ T9749] CPU: 0 UID: 0 PID: 9749 Comm: syz.1.960 Tainted: G U L syzkaller #0 PREEMPT(full) [ 314.564996][ T9749] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 314.565006][ T9749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 314.565021][ T9749] Call Trace: [ 314.565029][ T9749] [ 314.565038][ T9749] dump_stack_lvl+0x100/0x190 [ 314.565073][ T9749] print_circular_bug.cold+0x178/0x1c7 [ 314.565114][ T9749] check_noncircular+0x146/0x160 [ 314.565145][ T9749] __lock_acquire+0x14b8/0x2630 [ 314.565180][ T9749] lock_acquire+0x1cf/0x380 [ 314.565207][ T9749] ? console_lock_spinning_enable+0x61/0x80 [ 314.565245][ T9749] ? console_lock_spinning_enable+0x4a/0x80 [ 314.565285][ T9749] console_lock_spinning_enable+0x72/0x80 [ 314.565323][ T9749] ? console_lock_spinning_enable+0x61/0x80 [ 314.565361][ T9749] console_flush_one_record+0x739/0xe50 [ 314.565409][ T9749] ? __pfx_console_flush_one_record+0x10/0x10 [ 314.565451][ T9749] ? is_printk_cpu_sync_owner+0x32/0x40 [ 314.565478][ T9749] console_unlock+0x103/0x260 [ 314.565514][ T9749] ? __pfx_console_unlock+0x10/0x10 [ 314.565553][ T9749] ? do_raw_spin_unlock+0x145/0x1e0 [ 314.565589][ T9749] ? _printk+0xcf/0x110 [ 314.565612][ T9749] vprintk_emit+0x407/0x6b0 [ 314.565634][ T9749] ? __pfx_vprintk_emit+0x10/0x10 [ 314.565672][ T9749] ? do_raw_spin_lock+0x128/0x260 [ 314.565706][ T9749] ? find_held_lock+0x2b/0x80 [ 314.565729][ T9749] _printk+0xcf/0x110 [ 314.565750][ T9749] ? __pfx__printk+0x10/0x10 [ 314.565773][ T9749] ? debug_object_activate+0x331/0x490 [ 314.565810][ T9749] ? __pfx_debug_object_activate+0x10/0x10 [ 314.565843][ T9749] ? __report_bug.cold+0x5/0x137 [ 314.565877][ T9749] __report_bug.cold+0x15/0x137 [ 314.565908][ T9749] ? update_rq_clock+0x40a/0xd20 [ 314.565933][ T9749] ? __pfx___report_bug+0x10/0x10 [ 314.565959][ T9749] ? __lock_acquire+0x4a5/0x2630 [ 314.565992][ T9749] ? update_rq_clock+0x40a/0xd20 [ 314.566016][ T9749] report_bug+0xb2/0x220 [ 314.566040][ T9749] ? update_rq_clock+0x40a/0xd20 [ 314.566064][ T9749] handle_bug+0x16a/0x2a0 [ 314.566097][ T9749] exc_invalid_op+0x17/0x50 [ 314.566129][ T9749] asm_exc_invalid_op+0x1a/0x20 [ 314.566153][ T9749] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 314.566179][ T9749] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 40 0b 00 00 48 b8 00 00 00 00 00 [ 314.566204][ T9749] RSP: 0018:ffffc9001913f0a0 EFLAGS: 00010046 [ 314.566223][ T9749] RAX: 0000000000000000 RBX: ffff8880b853b280 RCX: 0000000000000001 [ 314.566240][ T9749] RDX: 0000000000000046 RSI: ffffffff8de57572 RDI: ffffffff8c1af7a0 [ 314.566256][ T9749] RBP: ffffc9001913f248 R08: 0000000000000001 R09: 0000000000000001 [ 314.566286][ T9749] R10: ffffffff90d9cb17 R11: 0000000000000000 R12: ffffffff90d9fee4 [ 314.566304][ T9749] R13: ffff8880b853c0c0 R14: ffff88801e6c9e80 R15: ffff8880b853b280 [ 314.566332][ T9749] __schedule+0x1b7d/0x6120 [ 314.566374][ T9749] ? __pfx___schedule+0x10/0x10 [ 314.566402][ T9749] ? preempt_schedule_thunk+0x16/0x30 [ 314.566435][ T9749] preempt_schedule_common+0x42/0xc0 [ 314.566464][ T9749] preempt_schedule_thunk+0x16/0x30 [ 314.566495][ T9749] ? kernel_fpu_end+0x5f/0x80 [ 314.566516][ T9749] __local_bh_enable_ip+0xff/0x120 [ 314.566544][ T9749] kernel_fpu_end+0x64/0x80 [ 314.566565][ T9749] sha256_blocks_avx2+0x4e/0x90 [ 314.566592][ T9749] __sha256_update+0x188/0x1c0 [ 314.566614][ T9749] crypto_sha256_update+0x23/0x30 [ 314.566643][ T9749] crypto_shash_finup+0x34b/0x6b0 [ 314.566668][ T9749] ? kasan_save_track+0x14/0x30 [ 314.566706][ T9749] ima_calc_file_hash_tfm+0x299/0x350 [ 314.566742][ T9749] ? __pfx_ima_calc_file_hash_tfm+0x10/0x10 [ 314.566793][ T9749] ? stack_trace_save+0x8e/0xc0 [ 314.566816][ T9749] ? look_up_lock_class+0x64/0x120 [ 314.566844][ T9749] ? ima_alloc_tfm+0x21a/0x2e0 [ 314.566876][ T9749] ? generic_fillattr+0x6c9/0x940 [ 314.566903][ T9749] ima_calc_file_hash+0x18c/0x480 [ 314.566939][ T9749] ima_collect_measurement+0x887/0xa40 [ 314.566976][ T9749] ? ima_file_mmap+0x1c4/0x1f0 [ 314.567010][ T9749] ? __pfx_ima_collect_measurement+0x10/0x10 [ 314.567048][ T9749] ? lock_acquire+0x1cf/0x380 [ 314.567084][ T9749] ? process_measurement+0x5ab/0x2350 [ 314.567116][ T9749] ? is_bad_inode+0xd/0x40 [ 314.567151][ T9749] ? xattr_resolve_name+0x27d/0x3f0 [ 314.567191][ T9749] ? vfs_getxattr_alloc+0xec/0x350 [ 314.567217][ T9749] ? ima_get_hash_algo+0x22d/0x400 [ 314.567247][ T9749] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 314.567280][ T9749] ? process_measurement+0xdfe/0x2350 [ 314.567311][ T9749] process_measurement+0xdfe/0x2350 [ 314.567347][ T9749] ? stack_trace_save+0x8e/0xc0 [ 314.567377][ T9749] ? __pfx_process_measurement+0x10/0x10 [ 314.567410][ T9749] ? __lock_acquire+0x4a5/0x2630 [ 314.567439][ T9749] ? __kasan_slab_alloc+0x89/0x90 [ 314.567459][ T9749] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 314.567495][ T9749] ? init_file+0x95/0x480 [ 314.567520][ T9749] ? alloc_empty_file+0x73/0x1c0 [ 314.567547][ T9749] ? alloc_file_pseudo+0x13a/0x230 [ 314.567576][ T9749] ? ksys_mmap_pgoff+0x232/0x650 [ 314.567598][ T9749] ? __x64_sys_mmap+0x125/0x190 [ 314.567634][ T9749] ? do_syscall_64+0x106/0xf80 [ 314.567675][ T9749] ? __pfx_aa_file_perm+0x10/0x10 [ 314.567707][ T9749] ima_file_mmap+0x1c4/0x1f0 [ 314.567739][ T9749] ? __pfx_ima_file_mmap+0x10/0x10 [ 314.567774][ T9749] security_mmap_file+0x278/0x9b0 [ 314.567799][ T9749] vm_mmap_pgoff+0xec/0x470 [ 314.567827][ T9749] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 314.567850][ T9749] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 314.567880][ T9749] ? hugetlbfs_get_inode+0x36e/0x750 [ 314.567908][ T9749] ksys_mmap_pgoff+0x273/0x650 [ 314.567931][ T9749] ? __x64_sys_futex+0x358/0x4d0 [ 314.567962][ T9749] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 314.567986][ T9749] ? xfd_validate_state+0x129/0x190 [ 314.568021][ T9749] __x64_sys_mmap+0x125/0x190 [ 314.568056][ T9749] do_syscall_64+0x106/0xf80 [ 314.568083][ T9749] ? clear_bhb_loop+0x40/0x90 [ 314.568110][ T9749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 314.568134][ T9749] RIP: 0033:0x7f82e0f9c799 [ 314.568154][ T9749] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 314.568177][ T9749] RSP: 002b:00007f82df1f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 314.568199][ T9749] RAX: ffffffffffffffda RBX: 00007f82e1216180 RCX: 00007f82e0f9c799 [ 314.568215][ T9749] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000 [ 314.568229][ T9749] RBP: 00007f82e1032bd9 R08: 0000000000000401 R09: 0000300000000000 [ 314.568245][ T9749] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 314.568259][ T9749] R13: 00007f82e1216218 R14: 00007f82e1216180 R15: 00007ffc08fb0ad8 [ 314.568282][ T9749] [ 316.121865][ T9749] debug_locks && !(lock_is_held(&(__rq_lockp(rq))->dep_map) != 0) [ 316.121883][ T9749] WARNING: kernel/sched/sched.h:1600 at update_rq_clock+0x40a/0xd20, CPU#0: syz.1.960/9749 [ 316.140308][ T9749] Modules linked in: [ 316.144418][ T9749] CPU: 0 UID: 0 PID: 9749 Comm: syz.1.960 Tainted: G U L syzkaller #0 PREEMPT(full) [ 316.155415][ T9749] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 316.160634][ T9749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 316.170724][ T9749] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 316.176321][ T9749] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 40 0b 00 00 48 b8 00 00 00 00 00 [ 316.196209][ T9749] RSP: 0018:ffffc9001913f0a0 EFLAGS: 00010046 [ 316.202433][ T9749] RAX: 0000000000000000 RBX: ffff8880b853b280 RCX: 0000000000000001 [ 316.210454][ T9749] RDX: 0000000000000046 RSI: ffffffff8de57572 RDI: ffffffff8c1af7a0 [ 316.218622][ T9749] RBP: ffffc9001913f248 R08: 0000000000000001 R09: 0000000000000001 [ 316.226690][ T9749] R10: ffffffff90d9cb17 R11: 0000000000000000 R12: ffffffff90d9fee4 [ 316.234677][ T9749] R13: ffff8880b853c0c0 R14: ffff88801e6c9e80 R15: ffff8880b853b280 [ 316.242762][ T9749] FS: 00007f82df1f66c0(0000) GS:ffff88812434d000(0000) knlGS:0000000000000000 [ 316.251793][ T9749] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 316.258452][ T9749] CR2: 00007ffbc6398ff8 CR3: 0000000048c62000 CR4: 00000000003526f0 [ 316.266529][ T9749] Call Trace: [ 316.269926][ T9749] [ 316.272955][ T9749] __schedule+0x1b7d/0x6120 [ 316.277493][ T9749] ? __pfx___schedule+0x10/0x10 [ 316.282367][ T9749] ? preempt_schedule_thunk+0x16/0x30 [ 316.287934][ T9749] preempt_schedule_common+0x42/0xc0 [ 316.293287][ T9749] preempt_schedule_thunk+0x16/0x30 [ 316.298650][ T9749] ? kernel_fpu_end+0x5f/0x80 [ 316.303343][ T9749] __local_bh_enable_ip+0xff/0x120 [ 316.308645][ T9749] kernel_fpu_end+0x64/0x80 [ 316.313163][ T9749] sha256_blocks_avx2+0x4e/0x90 [ 316.318034][ T9749] __sha256_update+0x188/0x1c0 [ 316.322900][ T9749] crypto_sha256_update+0x23/0x30 [ 316.328029][ T9749] crypto_shash_finup+0x34b/0x6b0 [ 316.333157][ T9749] ? kasan_save_track+0x14/0x30 [ 316.338052][ T9749] ima_calc_file_hash_tfm+0x299/0x350 [ 316.343450][ T9749] ? __pfx_ima_calc_file_hash_tfm+0x10/0x10 [ 316.349562][ T9749] ? stack_trace_save+0x8e/0xc0 [ 316.354523][ T9749] ? look_up_lock_class+0x64/0x120 [ 316.359661][ T9749] ? ima_alloc_tfm+0x21a/0x2e0 [ 316.364548][ T9749] ? generic_fillattr+0x6c9/0x940 [ 316.369605][ T9749] ima_calc_file_hash+0x18c/0x480 [ 316.374670][ T9749] ima_collect_measurement+0x887/0xa40 [ 316.380163][ T9749] ? ima_file_mmap+0x1c4/0x1f0 [ 316.385062][ T9749] ? __pfx_ima_collect_measurement+0x10/0x10 [ 316.391177][ T9749] ? lock_acquire+0x1cf/0x380 [ 316.395896][ T9749] ? process_measurement+0x5ab/0x2350 [ 316.401404][ T9749] ? is_bad_inode+0xd/0x40 [ 316.405845][ T9749] ? xattr_resolve_name+0x27d/0x3f0 [ 316.411082][ T9749] ? vfs_getxattr_alloc+0xec/0x350 [ 316.416391][ T9749] ? ima_get_hash_algo+0x22d/0x400 [ 316.421522][ T9749] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 316.427009][ T9749] ? process_measurement+0xdfe/0x2350 [ 316.432412][ T9749] process_measurement+0xdfe/0x2350 [ 316.437644][ T9749] ? stack_trace_save+0x8e/0xc0 [ 316.442606][ T9749] ? __pfx_process_measurement+0x10/0x10 [ 316.448355][ T9749] ? __lock_acquire+0x4a5/0x2630 [ 316.453360][ T9749] ? __kasan_slab_alloc+0x89/0x90 [ 316.458415][ T9749] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 316.464161][ T9749] ? init_file+0x95/0x480 [ 316.468620][ T9749] ? alloc_empty_file+0x73/0x1c0 [ 316.473599][ T9749] ? alloc_file_pseudo+0x13a/0x230 [ 316.478751][ T9749] ? ksys_mmap_pgoff+0x232/0x650 [ 316.483726][ T9749] ? __x64_sys_mmap+0x125/0x190 [ 316.488637][ T9749] ? do_syscall_64+0x106/0xf80 [ 316.493705][ T9749] ? __pfx_aa_file_perm+0x10/0x10 [ 316.498870][ T9749] ima_file_mmap+0x1c4/0x1f0 [ 316.503488][ T9749] ? __pfx_ima_file_mmap+0x10/0x10 [ 316.508628][ T9749] security_mmap_file+0x278/0x9b0 [ 316.513672][ T9749] vm_mmap_pgoff+0xec/0x470 [ 316.518198][ T9749] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 316.523330][ T9749] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 316.528895][ T9749] ? hugetlbfs_get_inode+0x36e/0x750 [ 316.534199][ T9749] ksys_mmap_pgoff+0x273/0x650 [ 316.538988][ T9749] ? __x64_sys_futex+0x358/0x4d0 [ 316.544129][ T9749] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 316.549445][ T9749] ? xfd_validate_state+0x129/0x190 [ 316.554845][ T9749] __x64_sys_mmap+0x125/0x190 [ 316.559547][ T9749] do_syscall_64+0x106/0xf80 [ 316.564246][ T9749] ? clear_bhb_loop+0x40/0x90 [ 316.568958][ T9749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 316.574977][ T9749] RIP: 0033:0x7f82e0f9c799 [ 316.579597][ T9749] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 316.599752][ T9749] RSP: 002b:00007f82df1f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 316.608203][ T9749] RAX: ffffffffffffffda RBX: 00007f82e1216180 RCX: 00007f82e0f9c799 [ 316.616469][ T9749] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000 [ 316.624668][ T9749] RBP: 00007f82e1032bd9 R08: 0000000000000401 R09: 0000300000000000 [ 316.632738][ T9749] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 316.640983][ T9749] R13: 00007f82e1216218 R14: 00007f82e1216180 R15: 00007ffc08fb0ad8 [ 316.649061][ T9749] [ 316.652104][ T9749] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 316.659604][ T9749] CPU: 0 UID: 0 PID: 9749 Comm: syz.1.960 Tainted: G U L syzkaller #0 PREEMPT(full) [ 316.670398][ T9749] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 316.675607][ T9749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 316.685766][ T9749] Call Trace: [ 316.689161][ T9749] [ 316.692105][ T9749] dump_stack_lvl+0x100/0x190 [ 316.696900][ T9749] vpanic+0x552/0x970 [ 316.700895][ T9749] ? __pfx_vpanic+0x10/0x10 [ 316.705444][ T9749] ? lock_release+0x263/0x320 [ 316.710152][ T9749] panic+0xd1/0xe0 [ 316.713908][ T9749] ? __pfx_panic+0x10/0x10 [ 316.718497][ T9749] check_panic_on_warn.cold+0x19/0x34 [ 316.724270][ T9749] ? update_rq_clock+0x40a/0xd20 [ 316.729270][ T9749] __warn.cold+0x191/0x348 [ 316.733823][ T9749] __report_bug+0x296/0x3d0 [ 316.738377][ T9749] ? update_rq_clock+0x40a/0xd20 [ 316.743616][ T9749] ? __pfx___report_bug+0x10/0x10 [ 316.748669][ T9749] ? __lock_acquire+0x4a5/0x2630 [ 316.753646][ T9749] ? update_rq_clock+0x40a/0xd20 [ 316.758601][ T9749] report_bug+0xb2/0x220 [ 316.763128][ T9749] ? update_rq_clock+0x40a/0xd20 [ 316.768193][ T9749] handle_bug+0x16a/0x2a0 [ 316.772579][ T9749] exc_invalid_op+0x17/0x50 [ 316.777150][ T9749] asm_exc_invalid_op+0x1a/0x20 [ 316.782064][ T9749] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 316.787641][ T9749] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 40 0b 00 00 48 b8 00 00 00 00 00 [ 316.807449][ T9749] RSP: 0018:ffffc9001913f0a0 EFLAGS: 00010046 [ 316.813545][ T9749] RAX: 0000000000000000 RBX: ffff8880b853b280 RCX: 0000000000000001 [ 316.821617][ T9749] RDX: 0000000000000046 RSI: ffffffff8de57572 RDI: ffffffff8c1af7a0 [ 316.829600][ T9749] RBP: ffffc9001913f248 R08: 0000000000000001 R09: 0000000000000001 [ 316.837593][ T9749] R10: ffffffff90d9cb17 R11: 0000000000000000 R12: ffffffff90d9fee4 [ 316.845724][ T9749] R13: ffff8880b853c0c0 R14: ffff88801e6c9e80 R15: ffff8880b853b280 [ 316.853924][ T9749] __schedule+0x1b7d/0x6120 [ 316.858691][ T9749] ? __pfx___schedule+0x10/0x10 [ 316.863574][ T9749] ? preempt_schedule_thunk+0x16/0x30 [ 316.869065][ T9749] preempt_schedule_common+0x42/0xc0 [ 316.874460][ T9749] preempt_schedule_thunk+0x16/0x30 [ 316.879703][ T9749] ? kernel_fpu_end+0x5f/0x80 [ 316.884486][ T9749] __local_bh_enable_ip+0xff/0x120 [ 316.889619][ T9749] kernel_fpu_end+0x64/0x80 [ 316.894665][ T9749] sha256_blocks_avx2+0x4e/0x90 [ 316.899539][ T9749] __sha256_update+0x188/0x1c0 [ 316.904331][ T9749] crypto_sha256_update+0x23/0x30 [ 316.909451][ T9749] crypto_shash_finup+0x34b/0x6b0 [ 316.914548][ T9749] ? kasan_save_track+0x14/0x30 [ 316.919451][ T9749] ima_calc_file_hash_tfm+0x299/0x350 [ 316.925031][ T9749] ? __pfx_ima_calc_file_hash_tfm+0x10/0x10 [ 316.930979][ T9749] ? stack_trace_save+0x8e/0xc0 [ 316.935867][ T9749] ? look_up_lock_class+0x64/0x120 [ 316.941017][ T9749] ? ima_alloc_tfm+0x21a/0x2e0 [ 316.945824][ T9749] ? generic_fillattr+0x6c9/0x940 [ 316.950979][ T9749] ima_calc_file_hash+0x18c/0x480 [ 316.956056][ T9749] ima_collect_measurement+0x887/0xa40 [ 316.961594][ T9749] ? ima_file_mmap+0x1c4/0x1f0 [ 316.966475][ T9749] ? __pfx_ima_collect_measurement+0x10/0x10 [ 316.972671][ T9749] ? lock_acquire+0x1cf/0x380 [ 316.977681][ T9749] ? process_measurement+0x5ab/0x2350 [ 316.983174][ T9749] ? is_bad_inode+0xd/0x40 [ 316.987728][ T9749] ? xattr_resolve_name+0x27d/0x3f0 [ 316.993305][ T9749] ? vfs_getxattr_alloc+0xec/0x350 [ 316.998433][ T9749] ? ima_get_hash_algo+0x22d/0x400 [ 317.003577][ T9749] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 317.009244][ T9749] ? process_measurement+0xdfe/0x2350 [ 317.014643][ T9749] process_measurement+0xdfe/0x2350 [ 317.019871][ T9749] ? stack_trace_save+0x8e/0xc0 [ 317.024824][ T9749] ? __pfx_process_measurement+0x10/0x10 [ 317.030495][ T9749] ? __lock_acquire+0x4a5/0x2630 [ 317.035454][ T9749] ? __kasan_slab_alloc+0x89/0x90 [ 317.040501][ T9749] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 317.046368][ T9749] ? init_file+0x95/0x480 [ 317.050891][ T9749] ? alloc_empty_file+0x73/0x1c0 [ 317.056022][ T9749] ? alloc_file_pseudo+0x13a/0x230 [ 317.061415][ T9749] ? ksys_mmap_pgoff+0x232/0x650 [ 317.066458][ T9749] ? __x64_sys_mmap+0x125/0x190 [ 317.071509][ T9749] ? do_syscall_64+0x106/0xf80 [ 317.076392][ T9749] ? __pfx_aa_file_perm+0x10/0x10 [ 317.081621][ T9749] ima_file_mmap+0x1c4/0x1f0 [ 317.086233][ T9749] ? __pfx_ima_file_mmap+0x10/0x10 [ 317.091462][ T9749] security_mmap_file+0x278/0x9b0 [ 317.096605][ T9749] vm_mmap_pgoff+0xec/0x470 [ 317.101130][ T9749] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 317.106430][ T9749] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 317.111913][ T9749] ? hugetlbfs_get_inode+0x36e/0x750 [ 317.117301][ T9749] ksys_mmap_pgoff+0x273/0x650 [ 317.122114][ T9749] ? __x64_sys_futex+0x358/0x4d0 [ 317.127098][ T9749] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 317.132410][ T9749] ? xfd_validate_state+0x129/0x190 [ 317.137730][ T9749] __x64_sys_mmap+0x125/0x190 [ 317.142567][ T9749] do_syscall_64+0x106/0xf80 [ 317.147189][ T9749] ? clear_bhb_loop+0x40/0x90 [ 317.151890][ T9749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 317.157801][ T9749] RIP: 0033:0x7f82e0f9c799 [ 317.162317][ T9749] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 317.182116][ T9749] RSP: 002b:00007f82df1f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 317.190807][ T9749] RAX: ffffffffffffffda RBX: 00007f82e1216180 RCX: 00007f82e0f9c799 [ 317.199236][ T9749] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000 [ 317.207411][ T9749] RBP: 00007f82e1032bd9 R08: 0000000000000401 R09: 0000300000000000 [ 317.215433][ T9749] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 317.223424][ T9749] R13: 00007f82e1216218 R14: 00007f82e1216180 R15: 00007ffc08fb0ad8 [ 317.231682][ T9749] [ 317.235167][ T9749] Kernel Offset: disabled [ 317.239504][ T9749] Rebooting in 86400 seconds..