last executing test programs: 10.058662376s ago: executing program 3 (id=1946): msgctl$auto_IPC_SET(0x0, 0x1, &(0x7f0000006180)={{0x2, 0xffffffffffffffff, 0x0, 0x10, 0x1, 0x2, 0xfb3a}, 0x0, 0x0, 0xfffffffffffff3d5, 0x2, 0x8, 0x8, 0x4, 0x4, 0x40, 0x8, @raw=0x75d7, @raw=0xe9b}) 9.911206715s ago: executing program 3 (id=1948): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/kernel/mm/transparent_hugepage/hugepages-512kB/stats/split_deferred\x00', 0x80404, 0x0) read$auto(r0, &(0x7f0000000000)='/sys/devices/platform/vhci_hcd.8/usb26/descriptors\x00', 0x9) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) writev$auto(r1, &(0x7f0000000080)={&(0x7f0000000000), 0x2}, 0x2) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x40000008000) r2 = socket(0x1d, 0x2, 0x6) r3 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(r2, &(0x7f0000000040)=@can={0x1d, r4, 0xfd}, 0x6a) sendmsg$auto_MACSEC_CMD_UPD_RXSA(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000010c0)={0x14, 0x0, 0x300, 0x70bd2c, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x14}, 0x800) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_GET_MSRS(r5, 0x4068aea3, &(0x7f0000000080)={0xc0}) kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/fail_over_mac\x00', 0x103b02, 0x0) sendfile$auto(r6, r6, 0x0, 0x8080000001) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xfdef) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) 8.703333035s ago: executing program 3 (id=1949): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1a9402, 0x0) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x800) timer_create$auto(0x9, 0x0, 0x0) read$auto(0x3, 0x0, 0x8080) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) shmctl$auto_IPC_SET(0x4, 0x1, &(0x7f0000000280)={{0x80, 0xee00, 0xee00, 0xca6d, 0x8, 0x4bd6, 0x5}, 0xd21, 0x5, 0x8000000000000000, 0x1, @inferred=0xffffffffffffffff, @inferred=0xffffffffffffffff, 0x9, 0x0, &(0x7f0000000140)="4f0d6995e943b6bc1919e836e1a6e889b4881e233d3b51e066bb0a054c9e474be535fd29da", &(0x7f0000000200)="e3ac9b01ee8d985b677531eeeee5cb5bf774d2df4d9ae6dccbc98def20b72c7c2826a585ba3a8d67815abade214708a4ade77c6faa2f2889ca3e7989f32645dd597a3ae1b46e8d8c7e03ae6b8aaa49f6bf64cc5fa98e25"}) fsconfig$auto(r0, 0x800, &(0x7f0000000040)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/power/wakeup_abort_count\x00', 0x0, r1) process_mrelease$auto(0xffffffffffffffff, 0xa) mmap$auto(0x0, 0x40000b, 0xde, 0x9b72, 0xffffffffffffffff, 0x8000) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mount$auto(0x0, 0xfffffffffffffffe, 0x0, 0x80, 0xfffffffffffffffe) write$auto(r2, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0) mkdir$auto(&(0x7f0000000100)='./file0\x00', 0xff) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x802, 0x0) socket(0x2, 0x1, 0x106) mmap$auto(0x1000000000, 0x100000400008, 0x1000000000000df, 0x4000009b73, r3, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x40080, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x7, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x3c2a19d5, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x6, 0xa, 0xfffffffffffffffe]}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfffffffffffffffb, 0x1, 0x4, 0x3, 0x3, 0x3, 0xffffffffffffffff, 0x3, 0x8000000000400000, 0x2, 0x6d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 7.75166478s ago: executing program 0 (id=1951): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1a9402, 0x0) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x800) timer_create$auto(0x9, 0x0, 0x0) read$auto(0x3, 0x0, 0x8080) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) shmctl$auto_IPC_SET(0x4, 0x1, &(0x7f0000000280)={{0x80, 0xee00, 0xee00, 0xca6d, 0x8, 0x4bd6, 0x5}, 0xd21, 0x5, 0x8000000000000000, 0x1, @inferred=0xffffffffffffffff, @inferred=0xffffffffffffffff, 0x9, 0x0, &(0x7f0000000140)="4f0d6995e943b6bc1919e836e1a6e889b4881e233d3b51e066bb0a054c9e474be535fd29da", &(0x7f0000000200)="e3ac9b01ee8d985b677531eeeee5cb5bf774d2df4d9ae6dccbc98def20b72c7c2826a585ba3a8d67815abade214708a4ade77c6faa2f2889ca3e7989f32645dd597a3ae1b46e8d8c7e03ae6b8aaa49f6bf64cc5fa98e25"}) fsconfig$auto(r0, 0x800, &(0x7f0000000040)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/power/wakeup_abort_count\x00', 0x0, r1) process_mrelease$auto(0xffffffffffffffff, 0xa) mmap$auto(0x0, 0x40000b, 0xde, 0x9b72, 0xffffffffffffffff, 0x8000) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mount$auto(0x0, 0xfffffffffffffffe, 0x0, 0x80, 0xfffffffffffffffe) write$auto(r2, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0) mkdir$auto(&(0x7f0000000100)='./file0\x00', 0xff) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x802, 0x0) socket(0x2, 0x1, 0x106) mmap$auto(0x1000000000, 0x100000400008, 0x1000000000000df, 0x4000009b73, r3, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x40080, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x7, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x3c2a19d5, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x6, 0xa, 0xfffffffffffffffe]}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfffffffffffffffb, 0x1, 0x4, 0x3, 0x3, 0x3, 0xffffffffffffffff, 0x3, 0x8000000000400000, 0x2, 0x6d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 6.250848197s ago: executing program 3 (id=1953): mount$auto(0xffffffffffffffff, 0x0, 0x0, 0xa, 0x0) openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/cpu/cpuidle/current_governor\x00', 0xa42, 0x0) sendfile$auto(r0, r0, 0x0, 0x4000000000001) r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x151924, 0x0) readv$auto(r1, 0x0, 0x2) ioctl$auto_SNDRV_TIMER_IOCTL_INFO(r1, 0x80e85411, 0x0) socket(0x11, 0x80003, 0x300) pidfd_open$auto(0x1, 0x0) r2 = socket(0x80000000000000a, 0x2, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/vhci_hcd.12/usb33/33-0:1.0/usb33-port4/connect_type\x00', 0x2020, 0x0) sendto$auto(r3, 0x0, 0x402, 0x101, &(0x7f0000000000)=@generic={0xa, "01e983638bffff4993021400"}, 0x7) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r5 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg1\x00', 0x40843, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x7, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x95f4da0a, 0x6, 0x6, 0x62, 0x5, 0x7, 0x6d3f, 0x9, 0x6, 0xfffffffffffffffe]}, 0x0) write$auto_full_fops_mem(0xffffffffffffffff, 0x0, 0x0) mmap$auto(0x0, 0x80, 0x6, 0x3c, r2, 0x28000) mincore$auto(0x1000, 0x8001, 0x0) fcntl$auto(0x8000000000000001, 0x7, 0x8) fcntl$auto(0x8000000000000001, 0x25, 0x8) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x3, 0x6, 0x3, 0x3, 0x3, 0x8003, 0x6, 0x2, 0x6d3c, 0x1, 0x2, 0x44a03baf]}, 0x0) clock_gettime$auto(0x80000020, 0x0) unshare$auto(0x40000080) bpf$auto_BPF_TASK_FD_QUERY(0x14, &(0x7f0000000200)=@bpf_attr_1={r4, 0x4, @next_key=0x100, 0xf}, 0x8000) unshare$auto(0x40000080) pread64$auto(r5, &(0x7f0000000340)='t\xa7\x81\xce2)\x8c>A\x8e\x1f\xdc\x96F=Pp\x04\xa6<\xd6\xe3\xf4\xa8\x91\xb8\x8f>\xc9\xe4\a\xcacg\x10\xa0\xd6\xad1\x17{c\x14=\xc1\x10\xa1\x19\xe6\x80\xa8b[\x83E]>\xea\'~\xd4b\xb7\xd2c\xb3\xcf\x16g(-\x89\x9b\xe9W\v\xec\x1f\xc2\xda/\xc5\x89w;.%\b\x05\x9b\xd1\x01\xe0\xdb\x06&\xc5\x8elFJ\x178m\xb9\xceQ\x8f\xa4K.RK5:;T\xad\xa9m\x02#?\xe9\xd6\xc9\xbc\xfd\x98\x86\xa9\x85K\xb9\xddF\x00\xe1\xa5\x96\xda\xfd\xab\xfcq\xcb\x81\x02EuR-\r\xab\x8c\x91D\xd7$\x9d\xc4\xeb\xa8A[\x01\x04\xcb\xd0\x1f\xeb\xc5\xb0\xa4\xc2=\x9f\x9d\xa9\'+\xc3\x92', 0x1, 0x40000000002) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:13/path\x00', 0x0, 0x0) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) 5.834772776s ago: executing program 0 (id=1954): openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x2102, 0x0) mkdir$auto(&(0x7f0000004440)='./file0\x00', 0x1) mount$auto(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='xfs\x00', 0x5, 0x0) mmap$auto(0x0, 0x3, 0x40000000009f, 0x10000000040eb1, 0x401, 0x300000000000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/ptyu1\x00', 0x201, 0x0) write$auto(0x3, 0x0, 0xfdef) socket(0x28, 0x0, 0x300) syz_clone(0x2280cd00, 0x0, 0xffffffffffffffd8, 0x0, 0x0, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_HW_FREE2(0xffffffffffffffff, 0x4112, 0x0) migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2) mmap$auto(0x0, 0xfd6, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/bond0/bonding/ad_actor_system\x00', 0x0, 0x0) io_uring_setup$auto(0x59, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/fs/lockd/nlm_end_grace\x00', 0x8282, 0x0) write$auto(0x3, 0x0, 0x7) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.net/net_prio.ifpriomap\x00', 0x10b142, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/resend_igmp\x00', 0x1e2142, 0x0) sendfile$auto(r0, r0, 0x0, 0x7fff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) socket(0xa, 0x1, 0x100) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) read$auto_rng_chrdev_ops_core(r1, &(0x7f0000000040)=""/4096, 0xfffffe82) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0) statfs$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)={0x7, 0x9, 0x12, 0x0, 0x8, 0x1, 0xffffffff, {[0x16c2, 0xfffffff9]}, 0x9, 0x5, 0x739, [0x5, 0x3ff, 0xfffffffffffffff8, 0x5cd]}) 4.798944823s ago: executing program 1 (id=1956): r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/cec4\x00', 0x183e02, 0x0) ioctl$auto_CEC_TRANSMIT(r0, 0xc0386105, &(0x7f0000000040)={0x40000000005, 0x6, 0x1, 0xf00, 0x201, 0x80000000, "00f0ffffff00", 0x0, 0x2, 0x82, 0x5, 0x4, 0x2, 0x3}) 4.000834463s ago: executing program 3 (id=1957): unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x2000040080000004, 0xe) openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000180), 0x241, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/vidtv.0/i2c-0/delete_device\x00', 0x1, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000000)="35b918", 0x3) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/loop4/queue/wbt_lat_usec\x00', 0x10b142, 0x0) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/veth0_macvtap/ndisc_notify\x00', 0x800, 0x0) sendfile$auto(r2, r3, 0x0, 0x2ee) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/loop4/queue/wbt_lat_usec\x00', 0x10b142, 0x0) r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/ipv4/fib_multipath_hash_policy\x00', 0x2602, 0x0) sendfile$auto(r4, r5, 0x0, 0x2ee) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) ioctl$auto(r6, 0x4b52, 0x1) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) madvise$auto(0x0, 0x200007, 0x19) socket(0x10, 0x3, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x5, 0x80000001, 0x0, 0x100, 0xee01, 0x0, 0x0, 0xffffffffffffff91, 0xfd3, 0x2, 0xec, 0x4, 0x80000000081, 0x8, 0x2, 0xfffffffffffffff8}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000) r7 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f000001f300), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES32=r7], 0x1ac}}, 0x40000) 3.999902989s ago: executing program 0 (id=1965): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/kernel/mm/transparent_hugepage/hugepages-512kB/stats/split_deferred\x00', 0x80404, 0x0) read$auto(r0, &(0x7f0000000000)='/sys/devices/platform/vhci_hcd.8/usb26/descriptors\x00', 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x40000008000) r1 = socket(0x1d, 0x2, 0x6) r2 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(r1, &(0x7f0000000040)=@can={0x1d, r3, 0xfd}, 0x6a) sendmsg$auto_MACSEC_CMD_UPD_RXSA(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000010c0)={0x14, 0x0, 0x300, 0x70bd2c, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x14}, 0x800) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_GET_MSRS(r4, 0x4068aea3, &(0x7f0000000080)={0xc0}) kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/fail_over_mac\x00', 0x103b02, 0x0) sendfile$auto(r5, r5, 0x0, 0x8080000001) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xfdef) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) 3.999182943s ago: executing program 1 (id=1958): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/net/ipv6/conf/gretap0/forwarding\x00', 0x141002, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r0, &(0x7f0000000140)="4c243eb9", 0x4) 3.99902094s ago: executing program 2 (id=1959): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_trace_fops_debugfs(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) keyctl$auto_KEYCTL_SETPERM(0x5, 0xfffffffffffffffb, 0x200, 0x1, 0x100) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, 0x0, 0x4800) mbind$auto(0x7f, 0x4, 0x4, 0x0, 0x6, 0x2) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/swradio12\x00', 0x0, 0x0) poll$auto(&(0x7f0000000480)={r0, 0xffff, 0x29}, 0x3, 0x8) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x8000) openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) keyctl$auto_KEYCTL_SETPERM(0x5, 0x4, 0x7, 0x2, 0xcc90) keyctl$auto_KEYCTL_SETPERM(0x5, 0xfffffffffffffffc, 0x7, 0x93e, 0x9) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) madvise$auto(0x0, 0x2003f0, 0x15) io_uring_setup$auto(0x1, 0x0) close_range$auto(r0, r0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_BEARER_DISABLE(r2, 0x0, 0x8000) socketcall$auto_SYS_SOCKETPAIR(0x8, &(0x7f0000000040)=0xfffffffffffff001) madvise$auto(0x0, 0x2003f2, 0x15) r3 = getsid$auto(0x0) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rpc/auth.unix.ip/flush\x00', 0x40d81, 0x0) write$auto_proc_reg_file_ops_compat_inode(r4, 0x0, 0x0) process_vm_readv$auto(r3, &(0x7f00000000c0)={&(0x7f00000001c0)="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", 0x10000004}, 0x5, &(0x7f0000000180)={&(0x7f0000000100)="5a7d13da84ebb930fc87d68075d057582cc3aaecf34446e49f0ad8331b89fb6e74172ed800e9505530df2605", 0x3}, 0x7ffffffffffffffe, 0x5) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40001, 0x0) ioctl$auto(r5, 0x40045431, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) 3.867202684s ago: executing program 1 (id=1960): r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0) write$auto(r0, &(0x7f0000000340)='%]{\fZ', 0xffffffff) close_range$auto(r0, r0, 0x0) r1 = openat$auto_ima_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f00000002c0), 0x480, 0x0) mmap$auto(0x0, 0x400008, 0x4, 0x40009b72, 0x2, 0x8000) io_uring_setup$auto(0x89, 0x0) mmap$auto(0x1, 0x2020008, 0x4, 0xeb1, r1, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, 0x0, 0x81) write$auto(0x1, 0x0, 0x80000000) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffff9}, 0x6, 0x27, 0x8) socket(0x2b, 0x1, 0x1) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) mmap$auto(0x0, 0x2020009, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0xfffffffffffffffe, 0x2020009, 0x3, 0x15, 0xfffffffffffffffa, 0x8200) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = open(0x0, 0x261c2, 0x84) bpf$auto(0x7, &(0x7f0000000180)=@info={0xffffffffffffffff, 0x2, 0x2}, 0xfffff868) r4 = userfaultfd$auto(0x1) statx$auto(r4, 0x0, 0x1000, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = socket(0xa, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'team0\x00', 0x0}) bpf$auto(0x0, &(0x7f0000000280)=@bpf_attr_5={@target_ifindex=r7, 0xffffffffffffffff, 0x8, 0x1, 0xffffffffffffffff, @relative_fd=r5, 0xe600}, 0xf) bpf$auto(0x2, &(0x7f0000000340)=@raw_tracepoint={0x5, r3, 0x0, 0x2}, 0xc) mmap$auto(0x400000000, 0x20009, 0x6, 0xeb1, 0x7f, 0x108000) 2.891592094s ago: executing program 0 (id=1961): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1a9402, 0x0) timer_create$auto(0x9, 0x0, 0x0) read$auto(0x3, 0x0, 0x8080) socket(0xa, 0x1, 0x100) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) shmctl$auto_IPC_SET(0x4, 0x1, &(0x7f0000000280)={{0x80, 0xee00, 0xee00, 0xca6d, 0x8, 0x4bd6, 0x5}, 0xd21, 0x5, 0x8000000000000000, 0x1, @inferred=0xffffffffffffffff, @inferred=0xffffffffffffffff, 0x9, 0x0, &(0x7f0000000140)="4f0d6995e943b6bc1919e836e1a6e889b4881e233d3b51e066bb0a054c9e474be535fd29da", &(0x7f0000000200)="e3ac9b01ee8d985b677531eeeee5cb5bf774d2df4d9ae6dccbc98def20b72c7c2826a585ba3a8d67815abade214708a4ade77c6faa2f2889ca3e7989f32645dd597a3ae1b46e8d8c7e03ae6b8aaa49f6bf64cc5fa98e25"}) fsconfig$auto(r0, 0x800, &(0x7f0000000040)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/power/wakeup_abort_count\x00', 0x0, r1) process_mrelease$auto(0xffffffffffffffff, 0xa) mmap$auto(0x0, 0x40000b, 0xde, 0x9b72, 0xffffffffffffffff, 0x8000) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mount$auto(0x0, 0xfffffffffffffffe, 0x0, 0x80, 0xfffffffffffffffe) write$auto(r2, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0) mkdir$auto(&(0x7f0000000100)='./file0\x00', 0xff) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x802, 0x0) socket(0x2, 0x1, 0x106) mmap$auto(0x1000000000, 0x100000400008, 0x1000000000000df, 0x4000009b73, r3, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x40080, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x7, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x3c2a19d5, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x6, 0xa, 0xfffffffffffffffe]}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfffffffffffffffb, 0x1, 0x4, 0x3, 0x3, 0x3, 0xffffffffffffffff, 0x3, 0x8000000000400000, 0x2, 0x6d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 2.548657219s ago: executing program 2 (id=1962): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1a9402, 0x0) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x800) timer_create$auto(0x9, 0x0, 0x0) read$auto(0x3, 0x0, 0x8080) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) shmctl$auto_IPC_SET(0x4, 0x1, &(0x7f0000000280)={{0x80, 0xee00, 0xee00, 0xca6d, 0x8, 0x4bd6, 0x5}, 0xd21, 0x5, 0x8000000000000000, 0x1, @inferred=0xffffffffffffffff, @inferred=0xffffffffffffffff, 0x9, 0x0, &(0x7f0000000140)="4f0d6995e943b6bc1919e836e1a6e889b4881e233d3b51e066bb0a054c9e474be535fd29da", &(0x7f0000000200)="e3ac9b01ee8d985b677531eeeee5cb5bf774d2df4d9ae6dccbc98def20b72c7c2826a585ba3a8d67815abade214708a4ade77c6faa2f2889ca3e7989f32645dd597a3ae1b46e8d8c7e03ae6b8aaa49f6bf64cc5fa98e25"}) fsconfig$auto(r0, 0x800, &(0x7f0000000040)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/power/wakeup_abort_count\x00', 0x0, r1) process_mrelease$auto(0xffffffffffffffff, 0xa) mmap$auto(0x0, 0x40000b, 0xde, 0x9b72, 0xffffffffffffffff, 0x8000) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mount$auto(0x0, 0xfffffffffffffffe, 0x0, 0x80, 0xfffffffffffffffe) write$auto(r2, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0) mkdir$auto(&(0x7f0000000100)='./file0\x00', 0xff) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x802, 0x0) socket(0x2, 0x1, 0x106) mmap$auto(0x1000000000, 0x100000400008, 0x1000000000000df, 0x4000009b73, r3, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x40080, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x7, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x3c2a19d5, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x6, 0xa, 0xfffffffffffffffe]}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfffffffffffffffb, 0x1, 0x4, 0x3, 0x3, 0x3, 0xffffffffffffffff, 0x3, 0x8000000000400000, 0x2, 0x6d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 2.43634181s ago: executing program 1 (id=1963): socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x700, 0x8a4d, 0x24, 0x1, 0xffffffffffffffff, 0x0, 0x8005}, 0x4f4) 2.318696269s ago: executing program 3 (id=1964): mmap$auto(0x0, 0x2020009, 0x100003, 0xeb1, 0xfffffffffffffffa, 0x7) socket$nl_generic(0x10, 0x3, 0x10) landlock_restrict_self$auto(0xffffffffffffffff, 0x7) openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/lu_gp_id\x00', 0x410100, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x67a8c3, 0x0) statx$auto(r1, 0x0, 0x6d7, 0x80000008, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mlock$auto(0x112, 0x80006) mlockall$auto(0x800000000000005) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14be02, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x3, 0x3c) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r3) ioctl$auto_KVM_GET_MSRS(r2, 0xaeb7, 0x0) r4 = prctl$auto(0x6, 0x1, 0x4, 0x5, 0x9) madvise$auto(0x0, 0xffffffffffff0005, 0x19) listxattrat$auto(r4, 0x0, 0x4, 0x0, 0x10000000000000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/027/001\x00', 0x4a901, 0x0) 1.789845211s ago: executing program 1 (id=1966): close_range$auto(0x2, 0x8, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vbi19\x00', 0x8654092f478cae21, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x8ec40, 0x0) mmap$auto(0xffffffffffffffff, 0x400004, 0x7f, 0x9b72, 0x2, 0xc51) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x8000009b72, 0x0, 0x100000000008000) write$auto(r0, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6) r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sched_rr_get_interval$auto(0x0, &(0x7f00000000c0)={0x277, 0x81}) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SYNC(r2, 0x5001, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bus/usb/017/001\x00', 0x802, 0x0) r3 = socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto_sg_fops_sg(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x1) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x7, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x95f4da0a, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x9, 0x6, 0xfffffffffffffffe]}, 0x0) sendmsg$auto_L2TP_CMD_TUNNEL_MODIFY(r3, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0e002dbd7000fcdbdf250300000006001b004e230000080011230500000006001c000500000005000400400000ed"], 0x34}}, 0x810) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfffffffffffffffb, 0x1, 0x4, 0x3, 0x3, 0x3, 0xffffffffffffffff, 0x3, 0x8000000000400000, 0x2, 0x6d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0) ioctl$auto_FS_IOC_GETFSUUID(r3, 0x80111500, 0x8) fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x0) ioctl$auto_FS_IOC_GETFLAGS(0xffffffffffffffff, 0x80086601, 0x3) getsockopt$auto(0x3, 0x200000000001, 0x24, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r4 = fanotify_init$auto(0x5, 0x0) fanotify_mark$auto(0xffffffffffffffff, 0x225, 0xa, r4, 0x0) socket(0x22, 0x2, 0x1) 621.204063ms ago: executing program 2 (id=1967): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/workqueue/parameters/default_affinity_scope\x00', 0x1a9242, 0x0) sendfile$auto(r0, r0, 0x0, 0x2) 516.005028ms ago: executing program 0 (id=1968): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x102, 0x0) sendfile$auto(r0, r0, 0x0, 0x7) 387.377672ms ago: executing program 2 (id=1969): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/fs/orangefs/ccache/reclaim_percentage\x00', 0x8a401, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000000)='\n', 0x1) 296.965979ms ago: executing program 1 (id=1970): openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x40000000c07) mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0xffffffff) mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000) r0 = socket(0x2, 0xa, 0x106) sendmsg$auto_NETDEV_CMD_QUEUE_GET(r0, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810) syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000200), r0) r1 = openat$auto_fops_atomic_t_ro_(0xffffffffffffff9c, &(0x7f00000003c0), 0x28000, 0x0) read$auto_fops_atomic_t_ro_(r1, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/cmdline\x00', 0x60502, 0x0) read$auto_proc_pid_cmdline_ops_base(r2, &(0x7f0000000040)=""/159, 0x9f) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r3) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="2f212dbd7000fcdbdf25210000000800", @ANYRES32=r5, @ANYBLOB], 0x24}}, 0x4000000) bpf$auto(0x100, &(0x7f0000000100)=@bpf_attr_4={0x7, r2, 0x3, r3}, 0x93) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity_list\x00', 0x129542, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) set_mempolicy$auto(0x3, &(0x7f0000000000)=0x7, 0x9) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x40000008000) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800) kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4) ioctl$auto_TIOCSWINSZ2(0xffffffffffffffff, 0x5414, 0x0) 289.29875ms ago: executing program 0 (id=1971): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/kernel/mm/transparent_hugepage/hugepages-512kB/stats/split_deferred\x00', 0x80404, 0x0) read$auto(r0, &(0x7f0000000000)='/sys/devices/platform/vhci_hcd.8/usb26/descriptors\x00', 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x40000008000) r1 = socket(0x1d, 0x2, 0x6) r2 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(r1, &(0x7f0000000040)=@can={0x1d, r3, 0xfd}, 0x6a) sendmsg$auto_MACSEC_CMD_UPD_RXSA(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000010c0)={0x14, 0x0, 0x300, 0x70bd2c, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x14}, 0x800) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_GET_MSRS(r4, 0x4068aea3, &(0x7f0000000080)={0xc0}) kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/fail_over_mac\x00', 0x103b02, 0x0) sendfile$auto(r5, r5, 0x0, 0x8080000001) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xfdef) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) 192.280251ms ago: executing program 2 (id=1972): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS2\x00', 0x101540, 0x0) ioctl$auto(r0, 0x540a, r0) 0s ago: executing program 2 (id=1973): r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d399b4d", 0xfdef) kernel console output (not intermixed with test programs): ardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 347.553807][ T9116] Call Trace: [ 347.553815][ T9116] [ 347.553823][ T9116] dump_stack_lvl+0x16c/0x1f0 [ 347.553865][ T9116] should_fail_ex+0x512/0x640 [ 347.553901][ T9116] ? __kmalloc_node_track_caller_noprof+0xcb/0x930 [ 347.553940][ T9116] should_failslab+0xc2/0x120 [ 347.553977][ T9116] __kmalloc_node_track_caller_noprof+0xec/0x930 [ 347.554020][ T9116] ? key_alloc+0xc4d/0x1330 [ 347.554049][ T9116] ? kmem_cache_alloc_noprof+0x2af/0x770 [ 347.554082][ T9116] ? kmemdup_noprof+0x29/0x60 [ 347.554109][ T9116] kmemdup_noprof+0x29/0x60 [ 347.554136][ T9116] key_alloc+0xc4d/0x1330 [ 347.554177][ T9116] ? __pfx_key_alloc+0x10/0x10 [ 347.554205][ T9116] ? __asan_memcpy+0x3c/0x60 [ 347.554240][ T9116] keyring_alloc+0x44/0xc0 [ 347.554276][ T9116] keyctl_get_persistent+0x750/0x8c0 [ 347.554313][ T9116] ? __pfx_keyctl_get_persistent+0x10/0x10 [ 347.554351][ T9116] ? __x64_sys_futex+0x1e0/0x4c0 [ 347.554377][ T9116] ? __x64_sys_futex+0x1e9/0x4c0 [ 347.554408][ T9116] ? xfd_validate_state+0x61/0x180 [ 347.554428][ T9116] ? __pfx_ksys_write+0x10/0x10 [ 347.554467][ T9116] __do_sys_keyctl+0x1a9/0x590 [ 347.554494][ T9116] do_syscall_64+0xcd/0xf80 [ 347.554517][ T9116] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 347.554541][ T9116] RIP: 0033:0x7fe811d8f7c9 [ 347.554560][ T9116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 347.554582][ T9116] RSP: 002b:00007fe812bb2038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 347.554603][ T9116] RAX: ffffffffffffffda RBX: 00007fe811fe5fa0 RCX: 00007fe811d8f7c9 [ 347.554619][ T9116] RDX: 7fffffffffffffff RSI: 000000000000ee00 RDI: 0000000000000016 [ 347.554633][ T9116] RBP: 00007fe811e13f91 R08: 000000000000000c R09: 0000000000000000 [ 347.554647][ T9116] R10: 00000000000099a7 R11: 0000000000000246 R12: 0000000000000000 [ 347.554661][ T9116] R13: 00007fe811fe6038 R14: 00007fe811fe5fa0 R15: 00007ffe755cd318 [ 347.554692][ T9116] [ 348.471308][ T9125] usb usb3: usbfs: interface 0 claimed by hub while 'syz.0.610' sets config #-1 [ 348.532518][ T9125] FAULT_INJECTION: forcing a failure. [ 348.532518][ T9125] name failslab, interval 1, probability 0, space 0, times 0 [ 348.554721][ T9125] CPU: 1 UID: 0 PID: 9125 Comm: syz.0.610 Tainted: G L syzkaller #0 PREEMPT(full) [ 348.554772][ T9125] Tainted: [L]=SOFTLOCKUP [ 348.554783][ T9125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 348.554813][ T9125] Call Trace: [ 348.554824][ T9125] [ 348.554837][ T9125] dump_stack_lvl+0x16c/0x1f0 [ 348.554894][ T9125] should_fail_ex+0x512/0x640 [ 348.554933][ T9125] ? __kmalloc_node_track_caller_noprof+0xcb/0x930 [ 348.554985][ T9125] should_failslab+0xc2/0x120 [ 348.555036][ T9125] __kmalloc_node_track_caller_noprof+0xec/0x930 [ 348.555083][ T9125] ? key_alloc+0xc4d/0x1330 [ 348.555125][ T9125] ? kmem_cache_alloc_noprof+0x2af/0x770 [ 348.555170][ T9125] ? kmemdup_noprof+0x29/0x60 [ 348.555206][ T9125] kmemdup_noprof+0x29/0x60 [ 348.555245][ T9125] key_alloc+0xc4d/0x1330 [ 348.555301][ T9125] ? __pfx_key_alloc+0x10/0x10 [ 348.555341][ T9125] ? __asan_memcpy+0x3c/0x60 [ 348.555390][ T9125] keyring_alloc+0x44/0xc0 [ 348.555438][ T9125] keyctl_get_persistent+0x750/0x8c0 [ 348.555490][ T9125] ? __pfx_keyctl_get_persistent+0x10/0x10 [ 348.555542][ T9125] ? __x64_sys_futex+0x1e0/0x4c0 [ 348.555579][ T9125] ? __x64_sys_futex+0x1e9/0x4c0 [ 348.555624][ T9125] ? xfd_validate_state+0x61/0x180 [ 348.555654][ T9125] ? __pfx_ksys_write+0x10/0x10 [ 348.555706][ T9125] __do_sys_keyctl+0x1a9/0x590 [ 348.555743][ T9125] do_syscall_64+0xcd/0xf80 [ 348.555776][ T9125] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 348.555823][ T9125] RIP: 0033:0x7fe811d8f7c9 [ 348.555851][ T9125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 348.555883][ T9125] RSP: 002b:00007fe812bb2038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 348.555919][ T9125] RAX: ffffffffffffffda RBX: 00007fe811fe5fa0 RCX: 00007fe811d8f7c9 [ 348.555940][ T9125] RDX: 7fffffffffffffff RSI: 000000000000ee00 RDI: 0000000000000016 [ 348.555959][ T9125] RBP: 00007fe811e13f91 R08: 000000000000000c R09: 0000000000000000 [ 348.555978][ T9125] R10: 00000000000099a7 R11: 0000000000000246 R12: 0000000000000000 [ 348.555995][ T9125] R13: 00007fe811fe6038 R14: 00007fe811fe5fa0 R15: 00007ffe755cd318 [ 348.556038][ T9125] [ 354.302698][ T9205] usb usb3: usbfs: interface 0 claimed by hub while 'syz.0.626' sets config #-1 [ 354.358217][ T9205] FAULT_INJECTION: forcing a failure. [ 354.358217][ T9205] name failslab, interval 1, probability 0, space 0, times 0 [ 354.429313][ T9205] CPU: 1 UID: 0 PID: 9205 Comm: syz.0.626 Tainted: G L syzkaller #0 PREEMPT(full) [ 354.429351][ T9205] Tainted: [L]=SOFTLOCKUP [ 354.429359][ T9205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 354.429373][ T9205] Call Trace: [ 354.429382][ T9205] [ 354.429392][ T9205] dump_stack_lvl+0x16c/0x1f0 [ 354.429435][ T9205] should_fail_ex+0x512/0x640 [ 354.429462][ T9205] ? __kmalloc_node_track_caller_noprof+0xcb/0x930 [ 354.429501][ T9205] should_failslab+0xc2/0x120 [ 354.429543][ T9205] __kmalloc_node_track_caller_noprof+0xec/0x930 [ 354.429582][ T9205] ? key_alloc+0xc4d/0x1330 [ 354.429611][ T9205] ? kmem_cache_alloc_noprof+0x2af/0x770 [ 354.429643][ T9205] ? kmemdup_noprof+0x29/0x60 [ 354.429669][ T9205] kmemdup_noprof+0x29/0x60 [ 354.429697][ T9205] key_alloc+0xc4d/0x1330 [ 354.429737][ T9205] ? __pfx_key_alloc+0x10/0x10 [ 354.429765][ T9205] ? __asan_memcpy+0x3c/0x60 [ 354.429800][ T9205] keyring_alloc+0x44/0xc0 [ 354.429836][ T9205] keyctl_get_persistent+0x750/0x8c0 [ 354.429873][ T9205] ? __pfx_keyctl_get_persistent+0x10/0x10 [ 354.429911][ T9205] ? __x64_sys_futex+0x1e0/0x4c0 [ 354.429937][ T9205] ? __x64_sys_futex+0x1e9/0x4c0 [ 354.429968][ T9205] ? xfd_validate_state+0x61/0x180 [ 354.429988][ T9205] ? __pfx_ksys_write+0x10/0x10 [ 354.430034][ T9205] __do_sys_keyctl+0x1a9/0x590 [ 354.430062][ T9205] do_syscall_64+0xcd/0xf80 [ 354.430086][ T9205] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 354.430109][ T9205] RIP: 0033:0x7fe811d8f7c9 [ 354.430127][ T9205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 354.430150][ T9205] RSP: 002b:00007fe812bb2038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 354.430171][ T9205] RAX: ffffffffffffffda RBX: 00007fe811fe5fa0 RCX: 00007fe811d8f7c9 [ 354.430186][ T9205] RDX: 7fffffffffffffff RSI: 000000000000ee00 RDI: 0000000000000016 [ 354.430201][ T9205] RBP: 00007fe811e13f91 R08: 000000000000000c R09: 0000000000000000 [ 354.430214][ T9205] R10: 00000000000099a7 R11: 0000000000000246 R12: 0000000000000000 [ 354.430228][ T9205] R13: 00007fe811fe6038 R14: 00007fe811fe5fa0 R15: 00007ffe755cd318 [ 354.430258][ T9205] [ 356.053435][ T9226] usb usb3: usbfs: interface 0 claimed by hub while 'syz.1.631' sets config #-1 [ 356.081491][ T9228] random: crng reseeded on system resumption [ 356.115976][ T9226] FAULT_INJECTION: forcing a failure. [ 356.115976][ T9226] name failslab, interval 1, probability 0, space 0, times 0 [ 356.145593][ T9226] CPU: 0 UID: 0 PID: 9226 Comm: syz.1.631 Tainted: G L syzkaller #0 PREEMPT(full) [ 356.145649][ T9226] Tainted: [L]=SOFTLOCKUP [ 356.145661][ T9226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 356.145680][ T9226] Call Trace: [ 356.145691][ T9226] [ 356.145703][ T9226] dump_stack_lvl+0x16c/0x1f0 [ 356.145764][ T9226] should_fail_ex+0x512/0x640 [ 356.145801][ T9226] ? __kmalloc_node_track_caller_noprof+0xcb/0x930 [ 356.145853][ T9226] should_failslab+0xc2/0x120 [ 356.145901][ T9226] __kmalloc_node_track_caller_noprof+0xec/0x930 [ 356.145948][ T9226] ? key_alloc+0xc4d/0x1330 [ 356.145988][ T9226] ? kmem_cache_alloc_noprof+0x2af/0x770 [ 356.146034][ T9226] ? kmemdup_noprof+0x29/0x60 [ 356.146072][ T9226] kmemdup_noprof+0x29/0x60 [ 356.146111][ T9226] key_alloc+0xc4d/0x1330 [ 356.146169][ T9226] ? __pfx_key_alloc+0x10/0x10 [ 356.146221][ T9226] ? __asan_memcpy+0x3c/0x60 [ 356.146272][ T9226] keyring_alloc+0x44/0xc0 [ 356.146324][ T9226] keyctl_get_persistent+0x750/0x8c0 [ 356.146377][ T9226] ? __pfx_keyctl_get_persistent+0x10/0x10 [ 356.146431][ T9226] ? __x64_sys_futex+0x1e0/0x4c0 [ 356.146468][ T9226] ? __x64_sys_futex+0x1e9/0x4c0 [ 356.146513][ T9226] ? xfd_validate_state+0x61/0x180 [ 356.146541][ T9226] ? __pfx_ksys_write+0x10/0x10 [ 356.146597][ T9226] __do_sys_keyctl+0x1a9/0x590 [ 356.146636][ T9226] do_syscall_64+0xcd/0xf80 [ 356.146670][ T9226] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 356.146703][ T9226] RIP: 0033:0x7f103bb8f7c9 [ 356.146729][ T9226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 356.146761][ T9226] RSP: 002b:00007f103ca9f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 356.146792][ T9226] RAX: ffffffffffffffda RBX: 00007f103bde5fa0 RCX: 00007f103bb8f7c9 [ 356.146813][ T9226] RDX: 7fffffffffffffff RSI: 000000000000ee00 RDI: 0000000000000016 [ 356.146834][ T9226] RBP: 00007f103bc13f91 R08: 000000000000000c R09: 0000000000000000 [ 356.146853][ T9226] R10: 00000000000099a7 R11: 0000000000000246 R12: 0000000000000000 [ 356.146873][ T9226] R13: 00007f103bde6038 R14: 00007f103bde5fa0 R15: 00007ffc45b42ff8 [ 356.146915][ T9226] [ 358.919089][ T9268] usb usb3: usbfs: interface 0 claimed by hub while 'syz.1.638' sets config #-1 [ 358.961494][ T9268] FAULT_INJECTION: forcing a failure. [ 358.961494][ T9268] name failslab, interval 1, probability 0, space 0, times 0 [ 358.981787][ T9268] CPU: 0 UID: 0 PID: 9268 Comm: syz.1.638 Tainted: G L syzkaller #0 PREEMPT(full) [ 358.981839][ T9268] Tainted: [L]=SOFTLOCKUP [ 358.981851][ T9268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 358.981870][ T9268] Call Trace: [ 358.981880][ T9268] [ 358.981893][ T9268] dump_stack_lvl+0x16c/0x1f0 [ 358.981951][ T9268] should_fail_ex+0x512/0x640 [ 358.981990][ T9268] ? __kmalloc_node_track_caller_noprof+0xcb/0x930 [ 358.982031][ T9268] should_failslab+0xc2/0x120 [ 358.982067][ T9268] __kmalloc_node_track_caller_noprof+0xec/0x930 [ 358.982103][ T9268] ? key_alloc+0xc4d/0x1330 [ 358.982131][ T9268] ? kmem_cache_alloc_noprof+0x2af/0x770 [ 358.982163][ T9268] ? kmemdup_noprof+0x29/0x60 [ 358.982190][ T9268] kmemdup_noprof+0x29/0x60 [ 358.982217][ T9268] key_alloc+0xc4d/0x1330 [ 358.982265][ T9268] ? __pfx_key_alloc+0x10/0x10 [ 358.982293][ T9268] ? __asan_memcpy+0x3c/0x60 [ 358.982329][ T9268] keyring_alloc+0x44/0xc0 [ 358.982365][ T9268] keyctl_get_persistent+0x750/0x8c0 [ 358.982403][ T9268] ? __pfx_keyctl_get_persistent+0x10/0x10 [ 358.982441][ T9268] ? __x64_sys_futex+0x1e0/0x4c0 [ 358.982472][ T9268] ? __x64_sys_futex+0x1e9/0x4c0 [ 358.982503][ T9268] ? xfd_validate_state+0x61/0x180 [ 358.982524][ T9268] ? __pfx_ksys_write+0x10/0x10 [ 358.982562][ T9268] __do_sys_keyctl+0x1a9/0x590 [ 358.982589][ T9268] do_syscall_64+0xcd/0xf80 [ 358.982612][ T9268] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 358.982636][ T9268] RIP: 0033:0x7f103bb8f7c9 [ 358.982654][ T9268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 358.982678][ T9268] RSP: 002b:00007f103ca9f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 358.982700][ T9268] RAX: ffffffffffffffda RBX: 00007f103bde5fa0 RCX: 00007f103bb8f7c9 [ 358.982715][ T9268] RDX: 7fffffffffffffff RSI: 000000000000ee00 RDI: 0000000000000016 [ 358.982730][ T9268] RBP: 00007f103bc13f91 R08: 000000000000000c R09: 0000000000000000 [ 358.982744][ T9268] R10: 00000000000099a7 R11: 0000000000000246 R12: 0000000000000000 [ 358.982757][ T9268] R13: 00007f103bde6038 R14: 00007f103bde5fa0 R15: 00007ffc45b42ff8 [ 358.982788][ T9268] [ 362.463140][ T9296] zswap: compressor not available [ 363.329852][ T9320] usb usb3: usbfs: interface 0 claimed by hub while 'syz.1.649' sets config #-1 [ 367.425049][ T9382] usb usb3: usbfs: interface 0 claimed by hub while 'syz.3.660' sets config #-1 [ 369.337366][ T9413] ptrace attach of "./syz-executor exec"[9414] was attempted by "./syz-executor exec"[9413] [ 369.553790][ T9419] FAULT_INJECTION: forcing a failure. [ 369.553790][ T9419] name failslab, interval 1, probability 0, space 0, times 0 [ 369.595749][ T9419] CPU: 1 UID: 0 PID: 9419 Comm: syz.0.667 Tainted: G L syzkaller #0 PREEMPT(full) [ 369.595804][ T9419] Tainted: [L]=SOFTLOCKUP [ 369.595816][ T9419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 369.595836][ T9419] Call Trace: [ 369.595847][ T9419] [ 369.595860][ T9419] dump_stack_lvl+0x16c/0x1f0 [ 369.595920][ T9419] should_fail_ex+0x512/0x640 [ 369.595957][ T9419] ? __kvmalloc_node_noprof+0x129/0xa40 [ 369.596007][ T9419] should_failslab+0xc2/0x120 [ 369.596057][ T9419] __kvmalloc_node_noprof+0x14a/0xa40 [ 369.596102][ T9419] ? do_raw_spin_lock+0x12c/0x2b0 [ 369.596140][ T9419] ? bucket_table_alloc.isra.0+0x88/0x460 [ 369.596170][ T9419] ? find_held_lock+0x2b/0x80 [ 369.596218][ T9419] ? bucket_table_alloc.isra.0+0x88/0x460 [ 369.596248][ T9419] bucket_table_alloc.isra.0+0x88/0x460 [ 369.596283][ T9419] rhashtable_init_noprof+0x41a/0x7e0 [ 369.596321][ T9419] ipc_init_ids+0x92/0x280 [ 369.596372][ T9419] msg_init_ns+0x13d/0x190 [ 369.596405][ T9419] copy_ipcs+0x592/0x7d0 [ 369.596447][ T9419] create_new_namespaces+0x20a/0xab0 [ 369.596491][ T9419] ? security_capable+0x7e/0x260 [ 369.596528][ T9419] copy_namespaces+0x468/0x570 [ 369.596574][ T9419] copy_process+0x2a70/0x7430 [ 369.596642][ T9419] ? __pfx_copy_process+0x10/0x10 [ 369.596701][ T9419] ? _copy_from_user+0x59/0xd0 [ 369.596744][ T9419] kernel_clone+0xfc/0x910 [ 369.596794][ T9419] ? __pfx_kernel_clone+0x10/0x10 [ 369.596841][ T9419] ? futex_private_hash_put+0x160/0x1b0 [ 369.596882][ T9419] ? __pfx_futex_wait+0x10/0x10 [ 369.596936][ T9419] __do_sys_clone3+0x212/0x290 [ 369.596985][ T9419] ? __pfx___do_sys_clone3+0x10/0x10 [ 369.597052][ T9419] ? find_held_lock+0x2b/0x80 [ 369.597126][ T9419] do_syscall_64+0xcd/0xf80 [ 369.597160][ T9419] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 369.597192][ T9419] RIP: 0033:0x7fe811d8f7c9 [ 369.597219][ T9419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 369.597252][ T9419] RSP: 002b:00007fe812b90f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 369.597284][ T9419] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fe811d8f7c9 [ 369.597304][ T9419] RDX: 00007fe812b90f20 RSI: 0000000000000058 RDI: 00007fe812b90f20 [ 369.597325][ T9419] RBP: 00007fe811e13f91 R08: 0000000000000000 R09: 0000000000000058 [ 369.597352][ T9419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 369.597371][ T9419] R13: 00007fe811fe6128 R14: 00007fe811fe6090 R15: 00007ffe755cd318 [ 369.597414][ T9419] [ 370.594711][ T9427] usb usb3: usbfs: interface 0 claimed by hub while 'syz.0.670' sets config #-1 [ 370.698662][ T9430] usb usb3: usbfs: interface 0 claimed by hub while 'syz.3.671' sets config #-1 [ 370.783847][ T9427] FAULT_INJECTION: forcing a failure. [ 370.783847][ T9427] name failslab, interval 1, probability 0, space 0, times 0 [ 370.900366][ T9427] CPU: 1 UID: 0 PID: 9427 Comm: syz.0.670 Tainted: G L syzkaller #0 PREEMPT(full) [ 370.900404][ T9427] Tainted: [L]=SOFTLOCKUP [ 370.900412][ T9427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 370.900426][ T9427] Call Trace: [ 370.900433][ T9427] [ 370.900442][ T9427] dump_stack_lvl+0x16c/0x1f0 [ 370.900485][ T9427] should_fail_ex+0x512/0x640 [ 370.900522][ T9427] ? __kmalloc_cache_noprof+0x5f/0x800 [ 370.900552][ T9427] should_failslab+0xc2/0x120 [ 370.900590][ T9427] __kmalloc_cache_noprof+0x80/0x800 [ 370.900617][ T9427] ? assoc_array_insert+0x10c/0x3970 [ 370.900665][ T9427] ? assoc_array_insert+0x10c/0x3970 [ 370.900699][ T9427] assoc_array_insert+0x10c/0x3970 [ 370.900735][ T9427] ? __mutex_lock+0x27b/0x1ca0 [ 370.900760][ T9427] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 370.900796][ T9427] ? key_link+0x28a/0x310 [ 370.900839][ T9427] ? __pfx_assoc_array_insert+0x10/0x10 [ 370.900872][ T9427] ? __pfx___might_resched+0x10/0x10 [ 370.900911][ T9427] ? down_write+0x14d/0x200 [ 370.900936][ T9427] ? __pfx_down_write+0x10/0x10 [ 370.900986][ T9427] __key_link_begin+0xf5/0x260 [ 370.901048][ T9427] key_link+0x103/0x310 [ 370.901100][ T9427] ? __pfx_key_link+0x10/0x10 [ 370.901135][ T9427] ? bpf_lsm_key_permission+0x9/0x10 [ 370.901167][ T9427] ? key_task_permission+0x2e5/0x400 [ 370.901197][ T9427] keyctl_get_persistent+0x5c3/0x8c0 [ 370.901233][ T9427] ? __pfx_keyctl_get_persistent+0x10/0x10 [ 370.901273][ T9427] ? __x64_sys_futex+0x1e0/0x4c0 [ 370.901298][ T9427] ? __x64_sys_futex+0x1e9/0x4c0 [ 370.901330][ T9427] ? xfd_validate_state+0x61/0x180 [ 370.901350][ T9427] ? __pfx_ksys_write+0x10/0x10 [ 370.901388][ T9427] __do_sys_keyctl+0x1a9/0x590 [ 370.901416][ T9427] do_syscall_64+0xcd/0xf80 [ 370.901439][ T9427] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 370.901462][ T9427] RIP: 0033:0x7fe811d8f7c9 [ 370.901481][ T9427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 370.901503][ T9427] RSP: 002b:00007fe812bb2038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 370.901525][ T9427] RAX: ffffffffffffffda RBX: 00007fe811fe5fa0 RCX: 00007fe811d8f7c9 [ 370.901540][ T9427] RDX: 7fffffffffffffff RSI: 000000000000ee00 RDI: 0000000000000016 [ 370.901576][ T9427] RBP: 00007fe811e13f91 R08: 000000000000000c R09: 0000000000000000 [ 370.901593][ T9427] R10: 00000000000099a7 R11: 0000000000000246 R12: 0000000000000000 [ 370.901612][ T9427] R13: 00007fe811fe6038 R14: 00007fe811fe5fa0 R15: 00007ffe755cd318 [ 370.901653][ T9427] [ 376.414533][ T9501] netlink: 8 bytes leftover after parsing attributes in process `syz.0.686'. [ 377.705536][ T9513] futex_wake_op: syz.3.689 tries to shift op by -2048; fix this program [ 377.752171][ T9513] futex_wake_op: syz.3.689 tries to shift op by -2048; fix this program [ 377.836094][ T9513] 0x000000000001-0x000000020000 : "" [ 377.895926][ T9513] ftl_cs: FTL header corrupt! [ 379.176799][ T9532] usb usb3: usbfs: interface 0 claimed by hub while 'syz.2.693' sets config #-1 [ 381.690588][ T9569] usb usb3: usbfs: interface 0 claimed by hub while 'syz.1.702' sets config #-1 [ 381.794991][ T9569] FAULT_INJECTION: forcing a failure. [ 381.794991][ T9569] name failslab, interval 1, probability 0, space 0, times 0 [ 381.864340][ T9569] CPU: 1 UID: 0 PID: 9569 Comm: syz.1.702 Tainted: G L syzkaller #0 PREEMPT(full) [ 381.864376][ T9569] Tainted: [L]=SOFTLOCKUP [ 381.864384][ T9569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 381.864398][ T9569] Call Trace: [ 381.864406][ T9569] [ 381.864415][ T9569] dump_stack_lvl+0x16c/0x1f0 [ 381.864458][ T9569] should_fail_ex+0x512/0x640 [ 381.864486][ T9569] ? __kmalloc_cache_noprof+0x5f/0x800 [ 381.864515][ T9569] should_failslab+0xc2/0x120 [ 381.864552][ T9569] __kmalloc_cache_noprof+0x80/0x800 [ 381.864579][ T9569] ? assoc_array_insert+0x2fa/0x3970 [ 381.864619][ T9569] ? assoc_array_insert+0x2fa/0x3970 [ 381.864651][ T9569] assoc_array_insert+0x2fa/0x3970 [ 381.864686][ T9569] ? __mutex_lock+0x27b/0x1ca0 [ 381.864709][ T9569] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 381.864744][ T9569] ? key_link+0x28a/0x310 [ 381.864789][ T9569] ? __pfx_assoc_array_insert+0x10/0x10 [ 381.864823][ T9569] ? __pfx___might_resched+0x10/0x10 [ 381.864861][ T9569] ? down_write+0x14d/0x200 [ 381.864885][ T9569] ? __pfx_down_write+0x10/0x10 [ 381.864914][ T9569] __key_link_begin+0xf5/0x260 [ 381.864951][ T9569] key_link+0x103/0x310 [ 381.864987][ T9569] ? __pfx_key_link+0x10/0x10 [ 381.865021][ T9569] ? bpf_lsm_key_permission+0x9/0x10 [ 381.865056][ T9569] ? key_task_permission+0x2e5/0x400 [ 381.865086][ T9569] keyctl_get_persistent+0x5c3/0x8c0 [ 381.865122][ T9569] ? __pfx_keyctl_get_persistent+0x10/0x10 [ 381.865160][ T9569] ? __x64_sys_futex+0x1e0/0x4c0 [ 381.865185][ T9569] ? __x64_sys_futex+0x1e9/0x4c0 [ 381.865217][ T9569] ? xfd_validate_state+0x61/0x180 [ 381.865238][ T9569] ? __pfx_ksys_write+0x10/0x10 [ 381.865276][ T9569] __do_sys_keyctl+0x1a9/0x590 [ 381.865314][ T9569] do_syscall_64+0xcd/0xf80 [ 381.865337][ T9569] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 381.865364][ T9569] RIP: 0033:0x7f103bb8f7c9 [ 381.865382][ T9569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 381.865405][ T9569] RSP: 002b:00007f103ca9f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 381.865426][ T9569] RAX: ffffffffffffffda RBX: 00007f103bde5fa0 RCX: 00007f103bb8f7c9 [ 381.865441][ T9569] RDX: 7fffffffffffffff RSI: 000000000000ee00 RDI: 0000000000000016 [ 381.865456][ T9569] RBP: 00007f103bc13f91 R08: 000000000000000c R09: 0000000000000000 [ 381.865470][ T9569] R10: 00000000000099a7 R11: 0000000000000246 R12: 0000000000000000 [ 381.865483][ T9569] R13: 00007f103bde6038 R14: 00007f103bde5fa0 R15: 00007ffc45b42ff8 [ 381.865514][ T9569] [ 382.471114][ T9579] usb usb3: usbfs: interface 0 claimed by hub while 'syz.3.704' sets config #-1 [ 382.716820][ T9582] futex_wake_op: syz.1.705 tries to shift op by -2048; fix this program [ 382.803829][ T9582] futex_wake_op: syz.1.705 tries to shift op by -2048; fix this program [ 382.915410][ T9582] 0x000000000001-0x000000020000 : "" [ 382.982709][ T9582] ftl_cs: FTL header corrupt! [ 386.668351][ T9633] zswap: compressor not available [ 388.033385][ T9657] usb usb3: usbfs: interface 0 claimed by hub while 'syz.2.720' sets config #-1 [ 388.148974][ T9657] FAULT_INJECTION: forcing a failure. [ 388.148974][ T9657] name failslab, interval 1, probability 0, space 0, times 0 [ 388.229353][ T9657] CPU: 1 UID: 0 PID: 9657 Comm: syz.2.720 Tainted: G L syzkaller #0 PREEMPT(full) [ 388.229404][ T9657] Tainted: [L]=SOFTLOCKUP [ 388.229416][ T9657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 388.229437][ T9657] Call Trace: [ 388.229448][ T9657] [ 388.229460][ T9657] dump_stack_lvl+0x16c/0x1f0 [ 388.229520][ T9657] should_fail_ex+0x512/0x640 [ 388.229558][ T9657] ? __kmalloc_cache_noprof+0x5f/0x800 [ 388.229602][ T9657] should_failslab+0xc2/0x120 [ 388.229664][ T9657] __kmalloc_cache_noprof+0x80/0x800 [ 388.229705][ T9657] ? assoc_array_insert+0x2fa/0x3970 [ 388.229762][ T9657] ? assoc_array_insert+0x2fa/0x3970 [ 388.229810][ T9657] assoc_array_insert+0x2fa/0x3970 [ 388.229861][ T9657] ? __mutex_lock+0x27b/0x1ca0 [ 388.229895][ T9657] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 388.229946][ T9657] ? key_link+0x28a/0x310 [ 388.230008][ T9657] ? __pfx_assoc_array_insert+0x10/0x10 [ 388.230055][ T9657] ? __pfx___might_resched+0x10/0x10 [ 388.230115][ T9657] ? down_write+0x14d/0x200 [ 388.230150][ T9657] ? __pfx_down_write+0x10/0x10 [ 388.230193][ T9657] __key_link_begin+0xf5/0x260 [ 388.230246][ T9657] key_link+0x103/0x310 [ 388.230299][ T9657] ? __pfx_key_link+0x10/0x10 [ 388.230348][ T9657] ? bpf_lsm_key_permission+0x9/0x10 [ 388.230403][ T9657] ? key_task_permission+0x2e5/0x400 [ 388.230448][ T9657] keyctl_get_persistent+0x5c3/0x8c0 [ 388.230500][ T9657] ? __pfx_keyctl_get_persistent+0x10/0x10 [ 388.230556][ T9657] ? __x64_sys_futex+0x1e0/0x4c0 [ 388.230593][ T9657] ? __x64_sys_futex+0x1e9/0x4c0 [ 388.230649][ T9657] ? xfd_validate_state+0x61/0x180 [ 388.230679][ T9657] ? __pfx_ksys_write+0x10/0x10 [ 388.230735][ T9657] __do_sys_keyctl+0x1a9/0x590 [ 388.230775][ T9657] do_syscall_64+0xcd/0xf80 [ 388.230809][ T9657] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 388.230843][ T9657] RIP: 0033:0x7f75f738f7c9 [ 388.230869][ T9657] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 388.230902][ T9657] RSP: 002b:00007f75f815c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 388.230934][ T9657] RAX: ffffffffffffffda RBX: 00007f75f75e5fa0 RCX: 00007f75f738f7c9 [ 388.230955][ T9657] RDX: 7fffffffffffffff RSI: 000000000000ee00 RDI: 0000000000000016 [ 388.230977][ T9657] RBP: 00007f75f7413f91 R08: 000000000000000c R09: 0000000000000000 [ 388.230998][ T9657] R10: 00000000000099a7 R11: 0000000000000246 R12: 0000000000000000 [ 388.231018][ T9657] R13: 00007f75f75e6038 R14: 00007f75f75e5fa0 R15: 00007fff025b99c8 [ 388.231064][ T9657] [ 388.860915][ T9665] FAULT_INJECTION: forcing a failure. [ 388.860915][ T9665] name failslab, interval 1, probability 0, space 0, times 0 [ 388.875903][ T9665] CPU: 0 UID: 0 PID: 9665 Comm: syz.3.721 Tainted: G L syzkaller #0 PREEMPT(full) [ 388.875955][ T9665] Tainted: [L]=SOFTLOCKUP [ 388.875966][ T9665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 388.875985][ T9665] Call Trace: [ 388.875996][ T9665] [ 388.876008][ T9665] dump_stack_lvl+0x16c/0x1f0 [ 388.876066][ T9665] should_fail_ex+0x512/0x640 [ 388.876106][ T9665] ? kmem_cache_alloc_noprof+0x62/0x770 [ 388.876150][ T9665] should_failslab+0xc2/0x120 [ 388.876200][ T9665] kmem_cache_alloc_noprof+0x83/0x770 [ 388.876239][ T9665] ? sk_prot_alloc+0x60/0x2a0 [ 388.876276][ T9665] ? sk_prot_alloc+0x60/0x2a0 [ 388.876302][ T9665] ? find_held_lock+0x2b/0x80 [ 388.876341][ T9665] sk_prot_alloc+0x60/0x2a0 [ 388.876375][ T9665] sk_alloc+0x36/0xe30 [ 388.876417][ T9665] inet6_create+0x381/0x12b0 [ 388.876450][ T9665] ? inet6_create+0x7f/0x12b0 [ 388.876505][ T9665] __sock_create+0x339/0x8a0 [ 388.876547][ T9665] __sys_socket+0x14d/0x260 [ 388.876582][ T9665] ? __pfx___sys_socket+0x10/0x10 [ 388.876614][ T9665] ? xfd_validate_state+0x61/0x180 [ 388.876643][ T9665] ? __task_pid_nr_ns+0x1f5/0x500 [ 388.876682][ T9665] __x64_sys_socket+0x72/0xb0 [ 388.876714][ T9665] ? lockdep_hardirqs_on+0x7c/0x110 [ 388.876744][ T9665] do_syscall_64+0xcd/0xf80 [ 388.876777][ T9665] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 388.876809][ T9665] RIP: 0033:0x7f334458f7c9 [ 388.876836][ T9665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 388.876868][ T9665] RSP: 002b:00007f33453fc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 388.876900][ T9665] RAX: ffffffffffffffda RBX: 00007f33447e5fa0 RCX: 00007f334458f7c9 [ 388.876922][ T9665] RDX: 0000000000000084 RSI: 0000000000000001 RDI: 000000000000000a [ 388.876942][ T9665] RBP: 00007f3344613f91 R08: 0000000000000000 R09: 0000000000000000 [ 388.876961][ T9665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 388.876981][ T9665] R13: 00007f33447e6038 R14: 00007f33447e5fa0 R15: 00007fff9b342168 [ 388.877025][ T9665] [ 389.199177][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 389.206744][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 391.051997][ T9689] zswap: compressor not available [ 392.337432][ T9723] random: crng reseeded on system resumption [ 392.547444][ T9724] ptrace attach of "./syz-executor exec"[5826] was attempted by ""[9724] [ 397.057843][ T9784] futex_wake_op: syz.0.743 tries to shift op by -2048; fix this program [ 397.079961][ T9784] futex_wake_op: syz.0.743 tries to shift op by -2048; fix this program [ 397.147070][ T9784] 0x000000000001-0x000000020000 : "" [ 397.212077][ T9784] ftl_cs: FTL header corrupt! [ 398.399996][ T9805] netlink: 346 bytes leftover after parsing attributes in process `syz.0.748'. [ 400.176164][ T9818] zswap: compressor not available [ 403.037362][ T9866] netlink: 28 bytes leftover after parsing attributes in process `syz.2.760'. [ 404.449338][ T9886] usb usb3: usbfs: interface 0 claimed by hub while 'syz.3.765' sets config #-1 [ 404.503561][ T9886] FAULT_INJECTION: forcing a failure. [ 404.503561][ T9886] name failslab, interval 1, probability 0, space 0, times 0 [ 404.557484][ T9886] CPU: 1 UID: 0 PID: 9886 Comm: syz.3.765 Tainted: G L syzkaller #0 PREEMPT(full) [ 404.557536][ T9886] Tainted: [L]=SOFTLOCKUP [ 404.557547][ T9886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 404.557566][ T9886] Call Trace: [ 404.557577][ T9886] [ 404.557589][ T9886] dump_stack_lvl+0x16c/0x1f0 [ 404.557649][ T9886] should_fail_ex+0x512/0x640 [ 404.557688][ T9886] ? __kmalloc_cache_noprof+0x5f/0x800 [ 404.557730][ T9886] should_failslab+0xc2/0x120 [ 404.557781][ T9886] __kmalloc_cache_noprof+0x80/0x800 [ 404.557818][ T9886] ? assoc_array_insert+0x2fa/0x3970 [ 404.557874][ T9886] ? assoc_array_insert+0x2fa/0x3970 [ 404.557920][ T9886] assoc_array_insert+0x2fa/0x3970 [ 404.557970][ T9886] ? __mutex_lock+0x27b/0x1ca0 [ 404.558005][ T9886] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 404.558063][ T9886] ? key_link+0x28a/0x310 [ 404.558124][ T9886] ? __pfx_assoc_array_insert+0x10/0x10 [ 404.558171][ T9886] ? __pfx___might_resched+0x10/0x10 [ 404.558234][ T9886] ? down_write+0x14d/0x200 [ 404.558270][ T9886] ? __pfx_down_write+0x10/0x10 [ 404.558310][ T9886] __key_link_begin+0xf5/0x260 [ 404.558369][ T9886] key_link+0x103/0x310 [ 404.558421][ T9886] ? __pfx_key_link+0x10/0x10 [ 404.558470][ T9886] ? bpf_lsm_key_permission+0x9/0x10 [ 404.558516][ T9886] ? key_task_permission+0x2e5/0x400 [ 404.558559][ T9886] keyctl_get_persistent+0x5c3/0x8c0 [ 404.558609][ T9886] ? __pfx_keyctl_get_persistent+0x10/0x10 [ 404.558664][ T9886] ? __x64_sys_futex+0x1e0/0x4c0 [ 404.558700][ T9886] ? __x64_sys_futex+0x1e9/0x4c0 [ 404.558742][ T9886] ? xfd_validate_state+0x61/0x180 [ 404.558768][ T9886] ? __pfx_ksys_write+0x10/0x10 [ 404.558820][ T9886] __do_sys_keyctl+0x1a9/0x590 [ 404.558858][ T9886] do_syscall_64+0xcd/0xf80 [ 404.558890][ T9886] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 404.558922][ T9886] RIP: 0033:0x7f334458f7c9 [ 404.558948][ T9886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 404.558980][ T9886] RSP: 002b:00007f33453fc038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 404.559011][ T9886] RAX: ffffffffffffffda RBX: 00007f33447e5fa0 RCX: 00007f334458f7c9 [ 404.559027][ T9886] RDX: 7fffffffffffffff RSI: 000000000000ee00 RDI: 0000000000000016 [ 404.559041][ T9886] RBP: 00007f3344613f91 R08: 000000000000000c R09: 0000000000000000 [ 404.559055][ T9886] R10: 00000000000099a7 R11: 0000000000000246 R12: 0000000000000000 [ 404.559068][ T9886] R13: 00007f33447e6038 R14: 00007f33447e5fa0 R15: 00007fff9b342168 [ 404.559100][ T9886] [ 406.066412][ T9899] FAULT_INJECTION: forcing a failure. [ 406.066412][ T9899] name failslab, interval 1, probability 0, space 0, times 0 [ 406.090276][ T9899] CPU: 0 UID: 0 PID: 9899 Comm: syz.1.769 Tainted: G L syzkaller #0 PREEMPT(full) [ 406.090314][ T9899] Tainted: [L]=SOFTLOCKUP [ 406.090322][ T9899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 406.090336][ T9899] Call Trace: [ 406.090343][ T9899] [ 406.090352][ T9899] dump_stack_lvl+0x16c/0x1f0 [ 406.090401][ T9899] should_fail_ex+0x512/0x640 [ 406.090429][ T9899] ? __kmalloc_noprof+0xca/0x910 [ 406.090458][ T9899] should_failslab+0xc2/0x120 [ 406.090494][ T9899] __kmalloc_noprof+0xeb/0x910 [ 406.090520][ T9899] ? __register_sysctl_table+0xb3/0x1900 [ 406.090557][ T9899] ? __register_sysctl_table+0xb3/0x1900 [ 406.090587][ T9899] __register_sysctl_table+0xb3/0x1900 [ 406.090621][ T9899] ? rcu_is_watching+0x12/0xc0 [ 406.090654][ T9899] ? __kmalloc_node_track_caller_noprof+0x370/0x930 [ 406.090689][ T9899] ? __pfx___register_sysctl_table+0x10/0x10 [ 406.090720][ T9899] ? kfree+0x221/0x6e0 [ 406.090745][ T9899] ? __asan_memcpy+0x3c/0x60 [ 406.090776][ T9899] setup_ipc_sysctls+0x1aa/0x300 [ 406.090817][ T9899] copy_ipcs+0x570/0x7d0 [ 406.090845][ T9899] create_new_namespaces+0x20a/0xab0 [ 406.090877][ T9899] ? security_capable+0x7e/0x260 [ 406.090903][ T9899] copy_namespaces+0x468/0x570 [ 406.090936][ T9899] copy_process+0x2a70/0x7430 [ 406.090984][ T9899] ? __pfx_copy_process+0x10/0x10 [ 406.091026][ T9899] ? _copy_from_user+0x59/0xd0 [ 406.091056][ T9899] kernel_clone+0xfc/0x910 [ 406.091092][ T9899] ? __pfx_kernel_clone+0x10/0x10 [ 406.091125][ T9899] ? futex_private_hash_put+0x160/0x1b0 [ 406.091157][ T9899] ? __pfx_futex_wait+0x10/0x10 [ 406.091198][ T9899] __do_sys_clone3+0x212/0x290 [ 406.091234][ T9899] ? __pfx___do_sys_clone3+0x10/0x10 [ 406.091283][ T9899] ? find_held_lock+0x2b/0x80 [ 406.091337][ T9899] do_syscall_64+0xcd/0xf80 [ 406.091361][ T9899] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 406.091390][ T9899] RIP: 0033:0x7f103bb8f7c9 [ 406.091409][ T9899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 406.091432][ T9899] RSP: 002b:00007f103ca9ef08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 406.091455][ T9899] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f103bb8f7c9 [ 406.091470][ T9899] RDX: 00007f103ca9ef20 RSI: 0000000000000058 RDI: 00007f103ca9ef20 [ 406.091484][ T9899] RBP: 00007f103bc13f91 R08: 0000000000000000 R09: 0000000000000058 [ 406.091499][ T9899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 406.091512][ T9899] R13: 00007f103bde6038 R14: 00007f103bde5fa0 R15: 00007ffc45b42ff8 [ 406.091592][ T9899] [ 407.812559][ T9933] usb usb3: usbfs: interface 0 claimed by hub while 'syz.2.775' sets config #-1 [ 407.894822][ T9933] FAULT_INJECTION: forcing a failure. [ 407.894822][ T9933] name failslab, interval 1, probability 0, space 0, times 0 [ 407.969746][ T9933] CPU: 1 UID: 0 PID: 9933 Comm: syz.2.775 Tainted: G L syzkaller #0 PREEMPT(full) [ 407.969784][ T9933] Tainted: [L]=SOFTLOCKUP [ 407.969792][ T9933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 407.969806][ T9933] Call Trace: [ 407.969814][ T9933] [ 407.969822][ T9933] dump_stack_lvl+0x16c/0x1f0 [ 407.969865][ T9933] should_fail_ex+0x512/0x640 [ 407.969892][ T9933] ? __kmalloc_cache_noprof+0x5f/0x800 [ 407.969923][ T9933] should_failslab+0xc2/0x120 [ 407.969959][ T9933] __kmalloc_cache_noprof+0x80/0x800 [ 407.969995][ T9933] ? assoc_array_insert+0x10c/0x3970 [ 407.970034][ T9933] ? assoc_array_insert+0x10c/0x3970 [ 407.970067][ T9933] assoc_array_insert+0x10c/0x3970 [ 407.970102][ T9933] ? __mutex_lock+0x27b/0x1ca0 [ 407.970127][ T9933] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 407.970161][ T9933] ? key_link+0x28a/0x310 [ 407.970204][ T9933] ? __pfx_assoc_array_insert+0x10/0x10 [ 407.970243][ T9933] ? __pfx___might_resched+0x10/0x10 [ 407.970282][ T9933] ? down_write+0x14d/0x200 [ 407.970306][ T9933] ? __pfx_down_write+0x10/0x10 [ 407.970334][ T9933] __key_link_begin+0xf5/0x260 [ 407.970372][ T9933] key_link+0x103/0x310 [ 407.970408][ T9933] ? __pfx_key_link+0x10/0x10 [ 407.970441][ T9933] ? bpf_lsm_key_permission+0x9/0x10 [ 407.970473][ T9933] ? key_task_permission+0x2e5/0x400 [ 407.970504][ T9933] keyctl_get_persistent+0x5c3/0x8c0 [ 407.970539][ T9933] ? __pfx_keyctl_get_persistent+0x10/0x10 [ 407.970577][ T9933] ? __x64_sys_futex+0x1e0/0x4c0 [ 407.970603][ T9933] ? __x64_sys_futex+0x1e9/0x4c0 [ 407.970634][ T9933] ? xfd_validate_state+0x61/0x180 [ 407.970655][ T9933] ? __pfx_ksys_write+0x10/0x10 [ 407.970693][ T9933] __do_sys_keyctl+0x1a9/0x590 [ 407.970720][ T9933] do_syscall_64+0xcd/0xf80 [ 407.970743][ T9933] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 407.970766][ T9933] RIP: 0033:0x7f75f738f7c9 [ 407.970785][ T9933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 407.970808][ T9933] RSP: 002b:00007f75f815c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 407.970831][ T9933] RAX: ffffffffffffffda RBX: 00007f75f75e5fa0 RCX: 00007f75f738f7c9 [ 407.970846][ T9933] RDX: 7fffffffffffffff RSI: 000000000000ee00 RDI: 0000000000000016 [ 407.970860][ T9933] RBP: 00007f75f7413f91 R08: 000000000000000c R09: 0000000000000000 [ 407.970874][ T9933] R10: 00000000000099a7 R11: 0000000000000246 R12: 0000000000000000 [ 407.970888][ T9933] R13: 00007f75f75e6038 R14: 00007f75f75e5fa0 R15: 00007fff025b99c8 [ 407.970919][ T9933] [ 408.478894][ T9942] usb usb3: usbfs: interface 0 claimed by hub while 'syz.0.777' sets config #-1 [ 408.540702][ T9942] FAULT_INJECTION: forcing a failure. [ 408.540702][ T9942] name failslab, interval 1, probability 0, space 0, times 0 [ 408.622644][ T9942] CPU: 0 UID: 0 PID: 9942 Comm: syz.0.777 Tainted: G L syzkaller #0 PREEMPT(full) [ 408.622695][ T9942] Tainted: [L]=SOFTLOCKUP [ 408.622706][ T9942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 408.622724][ T9942] Call Trace: [ 408.622733][ T9942] [ 408.622746][ T9942] dump_stack_lvl+0x16c/0x1f0 [ 408.622804][ T9942] should_fail_ex+0x512/0x640 [ 408.622843][ T9942] ? __kmalloc_cache_noprof+0x5f/0x800 [ 408.622895][ T9942] should_failslab+0xc2/0x120 [ 408.622945][ T9942] __kmalloc_cache_noprof+0x80/0x800 [ 408.622984][ T9942] ? assoc_array_insert+0x10c/0x3970 [ 408.623039][ T9942] ? assoc_array_insert+0x10c/0x3970 [ 408.623087][ T9942] assoc_array_insert+0x10c/0x3970 [ 408.623139][ T9942] ? __mutex_lock+0x27b/0x1ca0 [ 408.623173][ T9942] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 408.623221][ T9942] ? key_link+0x28a/0x310 [ 408.623279][ T9942] ? __pfx_assoc_array_insert+0x10/0x10 [ 408.623324][ T9942] ? __pfx___might_resched+0x10/0x10 [ 408.623379][ T9942] ? down_write+0x14d/0x200 [ 408.623421][ T9942] ? __pfx_down_write+0x10/0x10 [ 408.623460][ T9942] __key_link_begin+0xf5/0x260 [ 408.623513][ T9942] key_link+0x103/0x310 [ 408.623565][ T9942] ? __pfx_key_link+0x10/0x10 [ 408.623612][ T9942] ? bpf_lsm_key_permission+0x9/0x10 [ 408.623656][ T9942] ? key_task_permission+0x2e5/0x400 [ 408.623696][ T9942] keyctl_get_persistent+0x5c3/0x8c0 [ 408.623746][ T9942] ? __pfx_keyctl_get_persistent+0x10/0x10 [ 408.623798][ T9942] ? __x64_sys_futex+0x1e0/0x4c0 [ 408.623832][ T9942] ? __x64_sys_futex+0x1e9/0x4c0 [ 408.623883][ T9942] ? xfd_validate_state+0x61/0x180 [ 408.623913][ T9942] ? __pfx_ksys_write+0x10/0x10 [ 408.623967][ T9942] __do_sys_keyctl+0x1a9/0x590 [ 408.624007][ T9942] do_syscall_64+0xcd/0xf80 [ 408.624038][ T9942] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 408.624069][ T9942] RIP: 0033:0x7fe811d8f7c9 [ 408.624094][ T9942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 408.624127][ T9942] RSP: 002b:00007fe812bb2038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 408.624159][ T9942] RAX: ffffffffffffffda RBX: 00007fe811fe5fa0 RCX: 00007fe811d8f7c9 [ 408.624180][ T9942] RDX: 7fffffffffffffff RSI: 000000000000ee00 RDI: 0000000000000016 [ 408.624200][ T9942] RBP: 00007fe811e13f91 R08: 000000000000000c R09: 0000000000000000 [ 408.624218][ T9942] R10: 00000000000099a7 R11: 0000000000000246 R12: 0000000000000000 [ 408.624236][ T9942] R13: 00007fe811fe6038 R14: 00007fe811fe5fa0 R15: 00007ffe755cd318 [ 408.624277][ T9942] [ 415.862305][T10044] futex_wake_op: syz.3.796 tries to shift op by -2048; fix this program [ 415.873718][T10044] futex_wake_op: syz.3.796 tries to shift op by -2048; fix this program [ 415.915322][T10044] 0x000000000001-0x000000020000 : "" [ 416.014080][T10044] ftl_cs: FTL header corrupt! [ 421.339662][T10101] FAULT_INJECTION: forcing a failure. [ 421.339662][T10101] name failslab, interval 1, probability 0, space 0, times 0 [ 421.408147][T10101] CPU: 0 UID: 0 PID: 10101 Comm: syz.3.806 Tainted: G L syzkaller #0 PREEMPT(full) [ 421.408201][T10101] Tainted: [L]=SOFTLOCKUP [ 421.408213][T10101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 421.408232][T10101] Call Trace: [ 421.408242][T10101] [ 421.408256][T10101] dump_stack_lvl+0x16c/0x1f0 [ 421.408304][T10101] should_fail_ex+0x512/0x640 [ 421.408332][T10101] ? __kmalloc_noprof+0xca/0x910 [ 421.408359][T10101] should_failslab+0xc2/0x120 [ 421.408396][T10101] __kmalloc_noprof+0xeb/0x910 [ 421.408420][T10101] ? __register_sysctl_table+0xe8e/0x1900 [ 421.408452][T10101] ? __register_sysctl_table+0xea2/0x1900 [ 421.408488][T10101] ? __register_sysctl_table+0xea2/0x1900 [ 421.408519][T10101] __register_sysctl_table+0xea2/0x1900 [ 421.408557][T10101] ? __pfx___register_sysctl_table+0x10/0x10 [ 421.408588][T10101] ? kfree+0x221/0x6e0 [ 421.408613][T10101] ? __asan_memcpy+0x3c/0x60 [ 421.408643][T10101] setup_ipc_sysctls+0x1aa/0x300 [ 421.408684][T10101] copy_ipcs+0x570/0x7d0 [ 421.408712][T10101] create_new_namespaces+0x20a/0xab0 [ 421.408744][T10101] ? security_capable+0x7e/0x260 [ 421.408770][T10101] copy_namespaces+0x468/0x570 [ 421.408803][T10101] copy_process+0x2a70/0x7430 [ 421.408858][T10101] ? __pfx_copy_process+0x10/0x10 [ 421.408901][T10101] ? _copy_from_user+0x59/0xd0 [ 421.408932][T10101] kernel_clone+0xfc/0x910 [ 421.408968][T10101] ? __pfx_kernel_clone+0x10/0x10 [ 421.409002][T10101] ? futex_private_hash_put+0x160/0x1b0 [ 421.409031][T10101] ? __pfx_futex_wait+0x10/0x10 [ 421.409070][T10101] __do_sys_clone3+0x212/0x290 [ 421.409105][T10101] ? __pfx___do_sys_clone3+0x10/0x10 [ 421.409152][T10101] ? find_held_lock+0x2b/0x80 [ 421.409204][T10101] do_syscall_64+0xcd/0xf80 [ 421.409227][T10101] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 421.409251][T10101] RIP: 0033:0x7f334458f7c9 [ 421.409270][T10101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 421.409293][T10101] RSP: 002b:00007f33453daf08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 421.409314][T10101] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f334458f7c9 [ 421.409330][T10101] RDX: 00007f33453daf20 RSI: 0000000000000058 RDI: 00007f33453daf20 [ 421.409344][T10101] RBP: 00007f3344613f91 R08: 0000000000000000 R09: 0000000000000058 [ 421.409358][T10101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 421.409371][T10101] R13: 00007f33447e6128 R14: 00007f33447e6090 R15: 00007fff9b342168 [ 421.409401][T10101] [ 421.776348][T10101] sysctl could not get directory: /kernel -12 [ 425.222018][T10176] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input48 [ 425.463303][T10179] block nbd7: not configured, cannot reconfigure [ 427.007149][T10188] ptrace attach of ""[10190] was attempted by "./syz-executor exec"[10188] [ 427.187665][T10188] FAULT_INJECTION: forcing a failure. [ 427.187665][T10188] name failslab, interval 1, probability 0, space 0, times 0 [ 427.244195][T10188] CPU: 0 UID: 0 PID: 10188 Comm: syz.2.822 Tainted: G L syzkaller #0 PREEMPT(full) [ 427.244242][T10188] Tainted: [L]=SOFTLOCKUP [ 427.244251][T10188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 427.244275][T10188] Call Trace: [ 427.244283][T10188] [ 427.244292][T10188] dump_stack_lvl+0x16c/0x1f0 [ 427.244335][T10188] should_fail_ex+0x512/0x640 [ 427.244370][T10188] ? __kvmalloc_node_noprof+0x129/0xa40 [ 427.244407][T10188] should_failslab+0xc2/0x120 [ 427.244444][T10188] __kvmalloc_node_noprof+0x14a/0xa40 [ 427.244478][T10188] ? bucket_table_alloc.isra.0+0x88/0x460 [ 427.244507][T10188] ? bucket_table_alloc.isra.0+0x88/0x460 [ 427.244528][T10188] bucket_table_alloc.isra.0+0x88/0x460 [ 427.244553][T10188] rhashtable_init_noprof+0x41a/0x7e0 [ 427.244580][T10188] ipc_init_ids+0x92/0x280 [ 427.244611][T10188] copy_ipcs+0x5b6/0x7d0 [ 427.244641][T10188] create_new_namespaces+0x20a/0xab0 [ 427.244672][T10188] ? security_capable+0x7e/0x260 [ 427.244698][T10188] copy_namespaces+0x468/0x570 [ 427.244731][T10188] copy_process+0x2a70/0x7430 [ 427.244764][T10188] ? __pfx___schedule+0x10/0x10 [ 427.244813][T10188] ? __pfx_copy_process+0x10/0x10 [ 427.244855][T10188] ? _copy_from_user+0x59/0xd0 [ 427.244885][T10188] kernel_clone+0xfc/0x910 [ 427.244921][T10188] ? __pfx_kernel_clone+0x10/0x10 [ 427.244954][T10188] ? futex_private_hash_put+0x160/0x1b0 [ 427.244986][T10188] ? __pfx_futex_wake+0x10/0x10 [ 427.245021][T10188] __do_sys_clone3+0x212/0x290 [ 427.245056][T10188] ? __pfx___do_sys_clone3+0x10/0x10 [ 427.245106][T10188] ? find_held_lock+0x2b/0x80 [ 427.245176][T10188] do_syscall_64+0xcd/0xf80 [ 427.245200][T10188] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 427.245229][T10188] RIP: 0033:0x7f75f738f7c9 [ 427.245247][T10188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 427.245270][T10188] RSP: 002b:00007f75f815bf08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 427.245292][T10188] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f75f738f7c9 [ 427.245307][T10188] RDX: 00007f75f815bf20 RSI: 0000000000000058 RDI: 00007f75f815bf20 [ 427.245322][T10188] RBP: 00007f75f7413f91 R08: 0000000000000000 R09: 0000000000000058 [ 427.245336][T10188] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 427.245350][T10188] R13: 00007f75f75e6038 R14: 00007f75f75e5fa0 R15: 00007fff025b99c8 [ 427.245385][T10188] [ 428.052415][T10196] random: crng reseeded on system resumption [ 428.152270][T10214] netlink: 342 bytes leftover after parsing attributes in process `syz.1.827'. [ 428.210823][T10214] IPv6: NLM_F_CREATE should be specified when creating new route [ 428.263012][T10214] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 428.271086][T10214] IPv6: NLM_F_CREATE should be set when creating new route [ 428.278637][T10214] IPv6: NLM_F_CREATE should be set when creating new route [ 428.375216][T10216] netlink: 342 bytes leftover after parsing attributes in process `syz.1.827'. [ 429.935679][T10234] netlink: 8 bytes leftover after parsing attributes in process `syz.2.833'. [ 431.577060][T10247] ptrace attach of "./syz-executor exec"[10251] was attempted by "./syz-executor exec"[10247] [ 431.722377][T10247] FAULT_INJECTION: forcing a failure. [ 431.722377][T10247] name failslab, interval 1, probability 0, space 0, times 0 [ 431.786525][T10247] CPU: 0 UID: 0 PID: 10247 Comm: syz.1.836 Tainted: G L syzkaller #0 PREEMPT(full) [ 431.786586][T10247] Tainted: [L]=SOFTLOCKUP [ 431.786597][T10247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 431.786616][T10247] Call Trace: [ 431.786626][T10247] [ 431.786645][T10247] dump_stack_lvl+0x16c/0x1f0 [ 431.786705][T10247] should_fail_ex+0x512/0x640 [ 431.786744][T10247] ? __kmalloc_node_track_caller_noprof+0xcb/0x930 [ 431.786798][T10247] should_failslab+0xc2/0x120 [ 431.786849][T10247] __kmalloc_node_track_caller_noprof+0xec/0x930 [ 431.786899][T10247] ? setup_ipc_sysctls+0x5e/0x300 [ 431.786947][T10247] ? kfree+0x221/0x6e0 [ 431.786995][T10247] ? kmemdup_noprof+0x29/0x60 [ 431.787032][T10247] kmemdup_noprof+0x29/0x60 [ 431.787071][T10247] setup_ipc_sysctls+0x5e/0x300 [ 431.787128][T10247] copy_ipcs+0x570/0x7d0 [ 431.787168][T10247] create_new_namespaces+0x20a/0xab0 [ 431.787213][T10247] ? security_capable+0x7e/0x260 [ 431.787251][T10247] copy_namespaces+0x468/0x570 [ 431.787297][T10247] copy_process+0x2a70/0x7430 [ 431.787367][T10247] ? __pfx_copy_process+0x10/0x10 [ 431.787428][T10247] ? _copy_from_user+0x59/0xd0 [ 431.787471][T10247] kernel_clone+0xfc/0x910 [ 431.787524][T10247] ? __pfx_kernel_clone+0x10/0x10 [ 431.787582][T10247] ? futex_private_hash_put+0x160/0x1b0 [ 431.787629][T10247] ? __pfx_futex_wait+0x10/0x10 [ 431.787686][T10247] __do_sys_clone3+0x212/0x290 [ 431.787735][T10247] ? __pfx___do_sys_clone3+0x10/0x10 [ 431.787801][T10247] ? find_held_lock+0x2b/0x80 [ 431.787875][T10247] do_syscall_64+0xcd/0xf80 [ 431.787910][T10247] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 431.787943][T10247] RIP: 0033:0x7f103bb8f7c9 [ 431.787969][T10247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 431.788010][T10247] RSP: 002b:00007f103ca9ef08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 431.788041][T10247] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f103bb8f7c9 [ 431.788062][T10247] RDX: 00007f103ca9ef20 RSI: 0000000000000058 RDI: 00007f103ca9ef20 [ 431.788083][T10247] RBP: 00007f103bc13f91 R08: 0000000000000000 R09: 0000000000000058 [ 431.788104][T10247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 431.788122][T10247] R13: 00007f103bde6038 R14: 00007f103bde5fa0 R15: 00007ffc45b42ff8 [ 431.788166][T10247] [ 433.692540][T10277] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input49 [ 434.080683][T10283] block nbd7: not configured, cannot reconfigure [ 434.442894][T10278] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input50 [ 435.806094][T10310] syz.1.847 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 437.132937][T10328] netlink: 10 bytes leftover after parsing attributes in process `syz.3.850'. [ 437.739176][T10336] syz.1.852(10336): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 439.743999][ T52] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 440.418419][T10360] FAULT_INJECTION: forcing a failure. [ 440.418419][T10360] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 440.451465][T10360] CPU: 0 UID: 0 PID: 10360 Comm: syz.3.859 Tainted: G L syzkaller #0 PREEMPT(full) [ 440.451516][T10360] Tainted: [L]=SOFTLOCKUP [ 440.451527][T10360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 440.451545][T10360] Call Trace: [ 440.451554][T10360] [ 440.451565][T10360] dump_stack_lvl+0x16c/0x1f0 [ 440.451621][T10360] should_fail_ex+0x512/0x640 [ 440.451664][T10360] should_fail_alloc_page+0xe7/0x130 [ 440.451719][T10360] prepare_alloc_pages+0x401/0x670 [ 440.451770][T10360] ? rcu_is_watching+0x12/0xc0 [ 440.451817][T10360] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 440.451860][T10360] ? __pfx_stack_trace_save+0x10/0x10 [ 440.451913][T10360] ? __lock_acquire+0x436/0x2890 [ 440.451945][T10360] ? __lock_acquire+0x436/0x2890 [ 440.451975][T10360] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 440.452011][T10360] ? relay_open+0x653/0xad0 [ 440.452063][T10360] ? rcu_read_unlock+0x17/0x60 [ 440.452091][T10360] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 440.452141][T10360] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 440.452193][T10360] ? policy_nodemask+0xea/0x4e0 [ 440.452245][T10360] alloc_pages_mpol+0x1fb/0x550 [ 440.452307][T10360] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 440.452355][T10360] ? trace_kmalloc+0x2b/0xb0 [ 440.452403][T10360] ? trace_kmalloc+0x2b/0xb0 [ 440.452445][T10360] ? __kmalloc_noprof.cold+0x5d/0x62 [ 440.452490][T10360] ? relay_open_buf.part.0+0x194/0xc40 [ 440.452537][T10360] alloc_pages_noprof+0x131/0x390 [ 440.452589][T10360] relay_open_buf.part.0+0x262/0xc40 [ 440.452645][T10360] relay_open+0x653/0xad0 [ 440.452688][T10360] ? debugfs_create_file_full+0x41/0x60 [ 440.452727][T10360] blk_trace_setup_prepare+0x38e/0x700 [ 440.452770][T10360] blk_trace_setup+0x1c5/0x3b0 [ 440.452812][T10360] ? __pfx_blk_trace_setup+0x10/0x10 [ 440.452848][T10360] ? vsnprintf+0x331/0x11e0 [ 440.452901][T10360] ? __pfx_vsnprintf+0x10/0x10 [ 440.452968][T10360] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 440.453016][T10360] ? do_vfs_ioctl+0x128/0x14f0 [ 440.453064][T10360] blk_trace_ioctl+0x2ce/0x300 [ 440.453094][T10360] ? __pfx_blk_trace_ioctl+0x10/0x10 [ 440.453128][T10360] ? find_held_lock+0x2b/0x80 [ 440.453178][T10360] ? hook_file_ioctl_common+0x144/0x410 [ 440.453212][T10360] blkdev_ioctl+0x1fa/0x6e0 [ 440.453242][T10360] ? __pfx_blkdev_ioctl+0x10/0x10 [ 440.453280][T10360] ? __pfx_blkdev_ioctl+0x10/0x10 [ 440.453311][T10360] __x64_sys_ioctl+0x18e/0x210 [ 440.453342][T10360] do_syscall_64+0xcd/0xf80 [ 440.453366][T10360] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 440.453388][T10360] RIP: 0033:0x7f334458f7c9 [ 440.453407][T10360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 440.453430][T10360] RSP: 002b:00007f33453fc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 440.453451][T10360] RAX: ffffffffffffffda RBX: 00007f33447e5fa0 RCX: 00007f334458f7c9 [ 440.453466][T10360] RDX: 0000200000000240 RSI: 00000000c0481273 RDI: 000000000000000d [ 440.453480][T10360] RBP: 00007f3344613f91 R08: 0000000000000000 R09: 0000000000000000 [ 440.453494][T10360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 440.453508][T10360] R13: 00007f33447e6038 R14: 00007f33447e5fa0 R15: 00007fff9b342168 [ 440.453539][T10360] [ 441.453236][T10366] ptrace attach of ""[10372] was attempted by "./syz-executor exec"[10366] [ 441.606488][T10366] FAULT_INJECTION: forcing a failure. [ 441.606488][T10366] name failslab, interval 1, probability 0, space 0, times 0 [ 441.670176][T10366] CPU: 1 UID: 0 PID: 10366 Comm: syz.2.861 Tainted: G L syzkaller #0 PREEMPT(full) [ 441.670216][T10366] Tainted: [L]=SOFTLOCKUP [ 441.670224][T10366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 441.670238][T10366] Call Trace: [ 441.670245][T10366] [ 441.670254][T10366] dump_stack_lvl+0x16c/0x1f0 [ 441.670296][T10366] should_fail_ex+0x512/0x640 [ 441.670325][T10366] ? __kmalloc_cache_node_noprof+0x62/0x830 [ 441.670365][T10366] should_failslab+0xc2/0x120 [ 441.670402][T10366] __kmalloc_cache_node_noprof+0x83/0x830 [ 441.670442][T10366] ? shrinker_alloc+0x78a/0xbf0 [ 441.670510][T10366] ? shrinker_alloc+0x78a/0xbf0 [ 441.670563][T10366] shrinker_alloc+0x78a/0xbf0 [ 441.670620][T10366] ? __pfx_shrinker_alloc+0x10/0x10 [ 441.670653][T10366] ? lockdep_init_map_type+0x5c/0x270 [ 441.670678][T10366] ? __raw_spin_lock_init+0x3a/0x110 [ 441.670704][T10366] ? __init_rwsem+0x12d/0x1b0 [ 441.670732][T10366] alloc_super+0x7d7/0xd00 [ 441.670770][T10366] sget_fc+0x116/0xc20 [ 441.670801][T10366] ? __pfx_set_anon_super_fc+0x10/0x10 [ 441.670832][T10366] ? __pfx_mqueue_fill_super+0x10/0x10 [ 441.670869][T10366] get_tree_nodev+0x28/0x190 [ 441.670902][T10366] mqueue_get_tree+0xf1/0x130 [ 441.670940][T10366] vfs_get_tree+0x8e/0x330 [ 441.670967][T10366] fc_mount_longterm+0x1a/0x270 [ 441.670997][T10366] mq_init_ns+0x482/0x810 [ 441.671025][T10366] copy_ipcs+0x3db/0x7d0 [ 441.671053][T10366] create_new_namespaces+0x20a/0xab0 [ 441.671085][T10366] ? security_capable+0x7e/0x260 [ 441.671111][T10366] copy_namespaces+0x468/0x570 [ 441.671144][T10366] copy_process+0x2a70/0x7430 [ 441.671194][T10366] ? __pfx_copy_process+0x10/0x10 [ 441.671237][T10366] ? _copy_from_user+0x59/0xd0 [ 441.671271][T10366] kernel_clone+0xfc/0x910 [ 441.671309][T10366] ? __pfx_kernel_clone+0x10/0x10 [ 441.671343][T10366] ? futex_private_hash_put+0x160/0x1b0 [ 441.671374][T10366] ? __pfx_futex_wait+0x10/0x10 [ 441.671415][T10366] __do_sys_clone3+0x212/0x290 [ 441.671457][T10366] ? __pfx___do_sys_clone3+0x10/0x10 [ 441.671493][T10366] ? __schedule+0x114c/0x6150 [ 441.671601][T10366] do_syscall_64+0xcd/0xf80 [ 441.671636][T10366] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 441.671671][T10366] RIP: 0033:0x7f75f738f7c9 [ 441.671695][T10366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 441.671718][T10366] RSP: 002b:00007f75f815bf08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 441.671739][T10366] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f75f738f7c9 [ 441.671754][T10366] RDX: 00007f75f815bf20 RSI: 0000000000000058 RDI: 00007f75f815bf20 [ 441.671768][T10366] RBP: 00007f75f7413f91 R08: 0000000000000000 R09: 0000000000000058 [ 441.671782][T10366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 441.671796][T10366] R13: 00007f75f75e6038 R14: 00007f75f75e5fa0 R15: 00007fff025b99c8 [ 441.671827][T10366] [ 443.771009][T10409] netlink: 8 bytes leftover after parsing attributes in process `syz.0.869'. [ 445.180768][T10423] ptrace attach of ""[10424] was attempted by "./syz-executor exec"[10423] [ 445.386283][T10431] FAULT_INJECTION: forcing a failure. [ 445.386283][T10431] name failslab, interval 1, probability 0, space 0, times 0 [ 445.540549][T10431] CPU: 0 UID: 0 PID: 10431 Comm: syz.2.874 Tainted: G L syzkaller #0 PREEMPT(full) [ 445.540586][T10431] Tainted: [L]=SOFTLOCKUP [ 445.540594][T10431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 445.540608][T10431] Call Trace: [ 445.540615][T10431] [ 445.540625][T10431] dump_stack_lvl+0x16c/0x1f0 [ 445.540668][T10431] should_fail_ex+0x512/0x640 [ 445.540695][T10431] ? __kvmalloc_node_noprof+0x129/0xa40 [ 445.540731][T10431] should_failslab+0xc2/0x120 [ 445.540768][T10431] __kvmalloc_node_noprof+0x14a/0xa40 [ 445.540802][T10431] ? shrinker_alloc+0x5e8/0xbf0 [ 445.540836][T10431] ? shrinker_alloc+0x5e8/0xbf0 [ 445.540872][T10431] shrinker_alloc+0x5e8/0xbf0 [ 445.540912][T10431] ? __pfx_shrinker_alloc+0x10/0x10 [ 445.540945][T10431] ? lockdep_init_map_type+0x5c/0x270 [ 445.540970][T10431] ? __raw_spin_lock_init+0x3a/0x110 [ 445.540996][T10431] ? __init_rwsem+0x12d/0x1b0 [ 445.541023][T10431] alloc_super+0x7d7/0xd00 [ 445.541060][T10431] sget_fc+0x116/0xc20 [ 445.541091][T10431] ? __pfx_set_anon_super_fc+0x10/0x10 [ 445.541121][T10431] ? __pfx_mqueue_fill_super+0x10/0x10 [ 445.541159][T10431] get_tree_nodev+0x28/0x190 [ 445.541192][T10431] mqueue_get_tree+0xf1/0x130 [ 445.541229][T10431] vfs_get_tree+0x8e/0x330 [ 445.541256][T10431] fc_mount_longterm+0x1a/0x270 [ 445.541286][T10431] mq_init_ns+0x482/0x810 [ 445.541314][T10431] copy_ipcs+0x3db/0x7d0 [ 445.541342][T10431] create_new_namespaces+0x20a/0xab0 [ 445.541374][T10431] ? security_capable+0x7e/0x260 [ 445.541400][T10431] copy_namespaces+0x468/0x570 [ 445.541433][T10431] copy_process+0x2a70/0x7430 [ 445.541481][T10431] ? __pfx_copy_process+0x10/0x10 [ 445.541566][T10431] ? _copy_from_user+0x59/0xd0 [ 445.541608][T10431] kernel_clone+0xfc/0x910 [ 445.541659][T10431] ? __pfx_kernel_clone+0x10/0x10 [ 445.541692][T10431] ? futex_private_hash_put+0x160/0x1b0 [ 445.541722][T10431] ? __pfx_futex_wait+0x10/0x10 [ 445.541762][T10431] __do_sys_clone3+0x212/0x290 [ 445.541796][T10431] ? __pfx___do_sys_clone3+0x10/0x10 [ 445.541844][T10431] ? find_held_lock+0x2b/0x80 [ 445.541903][T10431] do_syscall_64+0xcd/0xf80 [ 445.541927][T10431] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 445.541951][T10431] RIP: 0033:0x7f75f738f7c9 [ 445.541970][T10431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 445.541993][T10431] RSP: 002b:00007f75f55f5f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 445.542014][T10431] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f75f738f7c9 [ 445.542028][T10431] RDX: 00007f75f55f5f20 RSI: 0000000000000058 RDI: 00007f75f55f5f20 [ 445.542043][T10431] RBP: 00007f75f7413f91 R08: 0000000000000000 R09: 0000000000000058 [ 445.542057][T10431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 445.542070][T10431] R13: 00007f75f75e6128 R14: 00007f75f75e6090 R15: 00007fff025b99c8 [ 445.542101][T10431] [ 449.566904][ T30] audit: type=1800 audit(1768711955.601:9): pid=10489 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.892" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 450.637391][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 450.651447][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 459.218542][T10610] kexec: Could not allocate control_code_buffer [ 461.049098][T10674] netlink: 8 bytes leftover after parsing attributes in process `syz.1.927'. [ 462.619501][T10697] netlink: 28 bytes leftover after parsing attributes in process `syz.0.931'. [ 463.727771][T10688] kexec: Could not allocate control_code_buffer [ 465.271678][ T52] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 465.696495][T10735] netlink: 8 bytes leftover after parsing attributes in process `syz.3.939'. [ 469.653446][T10787] FAULT_INJECTION: forcing a failure. [ 469.653446][T10787] name failslab, interval 1, probability 0, space 0, times 0 [ 469.784257][T10787] CPU: 1 UID: 0 PID: 10787 Comm: syz.1.949 Tainted: G L syzkaller #0 PREEMPT(full) [ 469.784307][T10787] Tainted: [L]=SOFTLOCKUP [ 469.784322][T10787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 469.784340][T10787] Call Trace: [ 469.784351][T10787] [ 469.784363][T10787] dump_stack_lvl+0x16c/0x1f0 [ 469.784419][T10787] should_fail_ex+0x512/0x640 [ 469.784460][T10787] ? __kmalloc_noprof+0xca/0x910 [ 469.784500][T10787] should_failslab+0xc2/0x120 [ 469.784551][T10787] __kmalloc_noprof+0xeb/0x910 [ 469.784586][T10787] ? acpi_ns_get_normalized_pathname+0x95/0x250 [ 469.784647][T10787] ? acpi_ns_get_normalized_pathname+0x95/0x250 [ 469.784694][T10787] acpi_ns_get_normalized_pathname+0x95/0x250 [ 469.784747][T10787] acpi_ds_call_control_method+0x5d4/0xab0 [ 469.784790][T10787] acpi_ps_parse_aml+0xab3/0x1170 [ 469.784844][T10787] acpi_ps_execute_method+0x5c4/0xe90 [ 469.784900][T10787] acpi_ns_evaluate+0x98c/0x16d0 [ 469.784957][T10787] acpi_evaluate_object+0x4ca/0xdf0 [ 469.784996][T10787] ? ksys_read+0x12a/0x250 [ 469.785049][T10787] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 469.785091][T10787] ? __pfx___might_resched+0x10/0x10 [ 469.785139][T10787] acpi_evaluate_integer+0xdd/0x230 [ 469.785195][T10787] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 469.785262][T10787] ? __pfx_status_show+0x10/0x10 [ 469.785295][T10787] status_show+0xa0/0x120 [ 469.785329][T10787] ? __pfx_status_show+0x10/0x10 [ 469.785375][T10787] dev_attr_show+0x56/0xe0 [ 469.785425][T10787] ? __pfx_dev_attr_show+0x10/0x10 [ 469.785469][T10787] sysfs_kf_seq_show+0x216/0x3e0 [ 469.785510][T10787] seq_read_iter+0x50e/0x12d0 [ 469.785572][T10787] kernfs_fop_read_iter+0x46c/0x610 [ 469.785622][T10787] ? rw_verify_area+0xcf/0x6c0 [ 469.785666][T10787] vfs_read+0x8bf/0xcf0 [ 469.785720][T10787] ? __pfx_vfs_read+0x10/0x10 [ 469.785793][T10787] ksys_read+0x12a/0x250 [ 469.785840][T10787] ? __pfx_ksys_read+0x10/0x10 [ 469.785900][T10787] do_syscall_64+0xcd/0xf80 [ 469.785936][T10787] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 469.785968][T10787] RIP: 0033:0x7f103bb8f7c9 [ 469.785993][T10787] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 469.786025][T10787] RSP: 002b:00007f103ca5d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 469.786056][T10787] RAX: ffffffffffffffda RBX: 00007f103bde6180 RCX: 00007f103bb8f7c9 [ 469.786076][T10787] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000007 [ 469.786095][T10787] RBP: 00007f103bc13f91 R08: 0000000000000000 R09: 0000000000000000 [ 469.786114][T10787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 469.786132][T10787] R13: 00007f103bde6218 R14: 00007f103bde6180 R15: 00007ffc45b42ff8 [ 469.786188][T10787] [ 470.052134][T10787] ACPI Error: Could not allocate 10 bytes (20250807/nsnames-308) [ 471.034050][T10801] binder: 10800:10801 ioctl 4018620d ffffffffffffffff returned -22 [ 472.087946][T10811] zswap: compressor not available [ 475.741051][T10877] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„ [ 478.333125][T10909] Format for unlinking a device is "netnsfd:ifidx" (int uint). [ 478.656101][T10912] ptp ptp0: new virtual clock ptp1 [ 478.745214][T10912] ptp ptp0: new virtual clock ptp2 [ 478.808232][T10912] ptp ptp0: new virtual clock ptp3 [ 478.870957][T10912] ptp ptp0: guarantee physical clock free running [ 482.055886][T10968] Format for unlinking a device is "netnsfd:ifidx" (int uint). [ 482.154029][T10968] ptp ptp0: guarantee physical clock free running [ 483.654572][T10991] FAULT_INJECTION: forcing a failure. [ 483.654572][T10991] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 483.668413][T10991] CPU: 0 UID: 0 PID: 10991 Comm: syz.0.992 Tainted: G L syzkaller #0 PREEMPT(full) [ 483.668463][T10991] Tainted: [L]=SOFTLOCKUP [ 483.668471][T10991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 483.668485][T10991] Call Trace: [ 483.668492][T10991] [ 483.668500][T10991] dump_stack_lvl+0x16c/0x1f0 [ 483.668542][T10991] should_fail_ex+0x512/0x640 [ 483.668575][T10991] should_fail_alloc_page+0xe7/0x130 [ 483.668614][T10991] prepare_alloc_pages+0x401/0x670 [ 483.668650][T10991] ? rcu_is_watching+0x12/0xc0 [ 483.668685][T10991] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 483.668717][T10991] ? __pfx_stack_trace_save+0x10/0x10 [ 483.668758][T10991] ? __lock_acquire+0x436/0x2890 [ 483.668780][T10991] ? __lock_acquire+0x436/0x2890 [ 483.668802][T10991] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 483.668830][T10991] ? relay_open+0x653/0xad0 [ 483.668871][T10991] ? rcu_read_unlock+0x17/0x60 [ 483.668893][T10991] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 483.668931][T10991] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 483.668968][T10991] ? policy_nodemask+0xea/0x4e0 [ 483.669005][T10991] alloc_pages_mpol+0x1fb/0x550 [ 483.669041][T10991] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 483.669075][T10991] ? trace_kmalloc+0x2b/0xb0 [ 483.669115][T10991] ? trace_kmalloc+0x2b/0xb0 [ 483.669148][T10991] ? __kmalloc_noprof.cold+0x5d/0x62 [ 483.669182][T10991] ? relay_open_buf.part.0+0x194/0xc40 [ 483.669215][T10991] alloc_pages_noprof+0x131/0x390 [ 483.669251][T10991] relay_open_buf.part.0+0x262/0xc40 [ 483.669291][T10991] relay_open+0x653/0xad0 [ 483.669321][T10991] ? debugfs_create_file_full+0x41/0x60 [ 483.669348][T10991] blk_trace_setup_prepare+0x38e/0x700 [ 483.669379][T10991] blk_trace_setup+0x1c5/0x3b0 [ 483.669409][T10991] ? __pfx_blk_trace_setup+0x10/0x10 [ 483.669436][T10991] ? vsnprintf+0x331/0x11e0 [ 483.669476][T10991] ? __pfx_vsnprintf+0x10/0x10 [ 483.669525][T10991] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 483.669561][T10991] ? do_vfs_ioctl+0x128/0x14f0 [ 483.669623][T10991] blk_trace_ioctl+0x2ce/0x300 [ 483.669686][T10991] ? __pfx_blk_trace_ioctl+0x10/0x10 [ 483.669720][T10991] ? find_held_lock+0x2b/0x80 [ 483.669749][T10991] ? hook_file_ioctl_common+0x144/0x410 [ 483.669782][T10991] blkdev_ioctl+0x1fa/0x6e0 [ 483.669812][T10991] ? __pfx_blkdev_ioctl+0x10/0x10 [ 483.669844][T10991] ? __pfx_blkdev_ioctl+0x10/0x10 [ 483.669877][T10991] __x64_sys_ioctl+0x18e/0x210 [ 483.669908][T10991] do_syscall_64+0xcd/0xf80 [ 483.669931][T10991] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 483.669954][T10991] RIP: 0033:0x7fe811d8f7c9 [ 483.669973][T10991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 483.669996][T10991] RSP: 002b:00007fe812bb2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 483.670017][T10991] RAX: ffffffffffffffda RBX: 00007fe811fe5fa0 RCX: 00007fe811d8f7c9 [ 483.670032][T10991] RDX: 0000200000000240 RSI: 00000000c0481273 RDI: 000000000000000d [ 483.670046][T10991] RBP: 00007fe811e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 483.670060][T10991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 483.670073][T10991] R13: 00007fe811fe6038 R14: 00007fe811fe5fa0 R15: 00007ffe755cd318 [ 483.670105][T10991] [ 489.560957][T11087] futex_wake_op: syz.0.1013 tries to shift op by -2048; fix this program [ 489.569911][T11087] futex_wake_op: syz.0.1013 tries to shift op by -2048; fix this program [ 489.599178][T11087] 0x000000000001-0x000000020000 : "" [ 489.687730][T11087] ftl_cs: FTL header corrupt! [ 497.616137][T11220] binder: 11219:11220 ioctl 4018620d ffffffffffffffff returned -22 [ 499.211803][T11226] zswap: compressor not available [ 499.553825][T11253] debugfs: '!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' already exists in 'ieee80211' [ 512.066820][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 512.073500][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 514.966660][T11489] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888078801dc0 pfn:0x78801 [ 514.981711][T11489] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 514.991215][T11489] page_type: f2(table) [ 514.996859][T11489] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 515.006213][T11489] raw: ffff888078801dc0 ffff8880554cd8a0 00000001f2000000 0000000000000000 [ 515.037569][T11489] page dumped because: unmovable page [ 515.094587][T11489] page_owner tracks the page as allocated [ 515.135708][T11489] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x440dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO|__GFP_COMP), pid 5814, tgid 5814 (syz-executor), ts 186297290606, free_ts 186212809685 [ 515.186527][T11489] post_alloc_hook+0x1af/0x220 [ 515.191389][T11489] get_page_from_freelist+0xd0b/0x31a0 [ 515.201355][T11489] __alloc_frozen_pages_noprof+0x25f/0x2430 [ 515.201868][T11489] alloc_pages_mpol+0x1fb/0x550 [ 515.202303][T11489] alloc_pages_noprof+0x131/0x390 [ 515.202354][T11489] pte_alloc_one+0x1e/0x3d0 [ 515.202392][T11489] __do_fault+0x320/0x490 [ 515.202425][T11489] do_fault+0x302/0x1ad0 [ 515.202470][T11489] __handle_mm_fault+0x1919/0x2bb0 [ 515.202510][T11489] handle_mm_fault+0x3fe/0xad0 [ 515.202542][T11489] do_user_addr_fault+0x60c/0x1370 [ 515.202579][T11489] exc_page_fault+0x64/0xc0 [ 515.202631][T11489] asm_exc_page_fault+0x26/0x30 [ 515.208715][T11489] page last free pid 15 tgid 15 stack trace: [ 515.208738][T11489] __free_frozen_pages+0x7df/0x1170 [ 515.208858][T11489] tlb_remove_table_rcu+0x2b2/0x390 [ 515.214665][T11489] rcu_core+0x79c/0x15f0 [ 515.214701][T11489] handle_softirqs+0x219/0x950 [ 515.214734][T11489] run_ksoftirqd+0x3a/0x60 [ 515.214765][T11489] smpboot_thread_fn+0x3f7/0xae0 [ 515.214801][T11489] kthread+0x3c5/0x780 [ 515.214822][T11489] ret_from_fork+0x983/0xb10 [ 515.214849][T11489] ret_from_fork_asm+0x1a/0x30 [ 519.608561][T11571] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1104'. [ 524.475116][T11661] random: crng reseeded on system resumption [ 528.517243][T11712] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1131'. [ 531.622511][T11759] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1142'. [ 531.649607][T11758] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888078801dc0 pfn:0x78801 [ 531.675152][T11758] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 531.693302][T11758] page_type: f2(table) [ 531.713879][T11759] veth1_macvtap: left promiscuous mode [ 531.721217][T11758] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 531.773708][T11758] raw: ffff888078801dc0 ffff8880554cd8a0 00000001f2000000 0000000000000000 [ 531.810238][T11758] page dumped because: unmovable page [ 531.828037][T11758] page_owner tracks the page as allocated [ 531.850342][T11758] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x440dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO|__GFP_COMP), pid 5814, tgid 5814 (syz-executor), ts 186297290606, free_ts 186212809685 [ 531.915107][T11758] post_alloc_hook+0x1af/0x220 [ 531.936548][T11758] get_page_from_freelist+0xd0b/0x31a0 [ 531.964453][T11758] __alloc_frozen_pages_noprof+0x25f/0x2430 [ 532.018433][T11758] alloc_pages_mpol+0x1fb/0x550 [ 532.091678][T11758] alloc_pages_noprof+0x131/0x390 [ 532.152319][T11758] pte_alloc_one+0x1e/0x3d0 [ 532.202368][T11758] __do_fault+0x320/0x490 [ 532.242577][T11758] do_fault+0x302/0x1ad0 [ 532.395919][T11758] __handle_mm_fault+0x1919/0x2bb0 [ 532.452711][T11758] handle_mm_fault+0x3fe/0xad0 [ 532.511785][T11758] do_user_addr_fault+0x60c/0x1370 [ 532.565324][T11758] exc_page_fault+0x64/0xc0 [ 532.592610][T11758] asm_exc_page_fault+0x26/0x30 [ 532.677190][T11758] page last free pid 15 tgid 15 stack trace: [ 532.717068][T11758] __free_frozen_pages+0x7df/0x1170 [ 532.821760][T11758] tlb_remove_table_rcu+0x2b2/0x390 [ 532.837191][T11758] rcu_core+0x79c/0x15f0 [ 532.846361][T11758] handle_softirqs+0x219/0x950 [ 532.904545][T11758] run_ksoftirqd+0x3a/0x60 [ 532.911609][T11758] smpboot_thread_fn+0x3f7/0xae0 [ 532.916641][T11758] kthread+0x3c5/0x780 [ 532.920793][T11758] ret_from_fork+0x983/0xb10 [ 532.937338][T11758] ret_from_fork_asm+0x1a/0x30 [ 536.233516][T11837] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888078801dc0 pfn:0x78801 [ 536.253220][T11837] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 536.298592][T11837] page_type: f2(table) [ 536.373997][T11837] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 536.404348][T11837] raw: ffff888078801dc0 ffff8880554cd8a0 00000001f2000000 0000000000000000 [ 536.558775][T11837] page dumped because: unmovable page [ 536.594737][T11837] page_owner tracks the page as allocated [ 536.638738][T11837] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x440dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO|__GFP_COMP), pid 5814, tgid 5814 (syz-executor), ts 186297290606, free_ts 186212809685 [ 536.701641][T11837] post_alloc_hook+0x1af/0x220 [ 536.707042][T11837] get_page_from_freelist+0xd0b/0x31a0 [ 536.716571][T11837] __alloc_frozen_pages_noprof+0x25f/0x2430 [ 536.726080][T11837] alloc_pages_mpol+0x1fb/0x550 [ 536.732443][T11837] alloc_pages_noprof+0x131/0x390 [ 536.745800][T11837] pte_alloc_one+0x1e/0x3d0 [ 536.761397][T11837] __do_fault+0x320/0x490 [ 536.773623][T11837] do_fault+0x302/0x1ad0 [ 536.785056][T11837] __handle_mm_fault+0x1919/0x2bb0 [ 536.798820][T11837] handle_mm_fault+0x3fe/0xad0 [ 536.811101][T11837] do_user_addr_fault+0x60c/0x1370 [ 536.825926][T11837] exc_page_fault+0x64/0xc0 [ 536.835595][T11837] asm_exc_page_fault+0x26/0x30 [ 536.851236][T11837] page last free pid 15 tgid 15 stack trace: [ 536.874533][T11837] __free_frozen_pages+0x7df/0x1170 [ 536.898716][T11837] tlb_remove_table_rcu+0x2b2/0x390 [ 536.924585][T11837] rcu_core+0x79c/0x15f0 [ 536.950944][T11837] handle_softirqs+0x219/0x950 [ 536.983016][T11837] run_ksoftirqd+0x3a/0x60 [ 537.001651][T11837] smpboot_thread_fn+0x3f7/0xae0 [ 537.037501][T11837] kthread+0x3c5/0x780 [ 537.048713][T11837] ret_from_fork+0x983/0xb10 [ 537.057856][T11837] ret_from_fork_asm+0x1a/0x30 [ 538.571363][T11877] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1163'. [ 538.875274][T11877] : Can't lookup blockdev [ 547.993274][T12026] FAULT_INJECTION: forcing a failure. [ 547.993274][T12026] name failslab, interval 1, probability 0, space 0, times 0 [ 548.007641][T12026] CPU: 1 UID: 0 PID: 12026 Comm: syz.3.1189 Tainted: G L syzkaller #0 PREEMPT(full) [ 548.007701][T12026] Tainted: [L]=SOFTLOCKUP [ 548.007712][T12026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 548.007731][T12026] Call Trace: [ 548.007742][T12026] [ 548.007753][T12026] dump_stack_lvl+0x16c/0x1f0 [ 548.007809][T12026] should_fail_ex+0x512/0x640 [ 548.007846][T12026] ? __kmalloc_cache_noprof+0x5f/0x800 [ 548.007885][T12026] should_failslab+0xc2/0x120 [ 548.007935][T12026] __kmalloc_cache_noprof+0x80/0x800 [ 548.007973][T12026] ? snd_timer_instance_new+0x47/0x2e0 [ 548.008015][T12026] ? snd_timer_instance_new+0x47/0x2e0 [ 548.008048][T12026] snd_timer_instance_new+0x47/0x2e0 [ 548.008083][T12026] snd_seq_timer_open+0x1cc/0x600 [ 548.008131][T12026] ? __pfx_snd_seq_timer_open+0x10/0x10 [ 548.008189][T12026] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 548.008238][T12026] ? lockdep_hardirqs_on+0x7c/0x110 [ 548.008267][T12026] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 548.008321][T12026] queue_use+0xe3/0x250 [ 548.008355][T12026] snd_seq_queue_alloc+0x2e5/0x5a0 [ 548.008400][T12026] snd_seq_ioctl_create_queue+0xa9/0x390 [ 548.008450][T12026] call_seq_client_ctl+0xa3/0x130 [ 548.008502][T12026] snd_seq_kernel_client_ctl+0x7a/0xc0 [ 548.008566][T12026] alloc_seq_queue+0xda/0x180 [ 548.008596][T12026] ? __pfx_alloc_seq_queue+0x10/0x10 [ 548.008650][T12026] ? mark_held_locks+0x49/0x80 [ 548.008679][T12026] ? _raw_spin_unlock_irq+0x23/0x50 [ 548.008724][T12026] ? lockdep_hardirqs_on+0x7c/0x110 [ 548.008758][T12026] snd_seq_oss_open+0x38c/0xa40 [ 548.008798][T12026] odev_open+0x79/0xc0 [ 548.008846][T12026] ? __pfx_odev_open+0x10/0x10 [ 548.008895][T12026] soundcore_open+0x40c/0x580 [ 548.008951][T12026] ? __pfx_soundcore_open+0x10/0x10 [ 548.009001][T12026] chrdev_open+0x234/0x6a0 [ 548.009050][T12026] ? __pfx_apparmor_file_open+0x10/0x10 [ 548.009084][T12026] ? __pfx_chrdev_open+0x10/0x10 [ 548.009135][T12026] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 548.009194][T12026] do_dentry_open+0x748/0x1590 [ 548.009240][T12026] ? __pfx_chrdev_open+0x10/0x10 [ 548.009301][T12026] vfs_open+0x82/0x3f0 [ 548.009341][T12026] path_openat+0x2078/0x3140 [ 548.009403][T12026] ? __pfx_path_openat+0x10/0x10 [ 548.009468][T12026] do_filp_open+0x20b/0x470 [ 548.009518][T12026] ? __pfx_do_filp_open+0x10/0x10 [ 548.009608][T12026] ? alloc_fd+0x471/0x7d0 [ 548.009669][T12026] do_sys_openat2+0x121/0x290 [ 548.009706][T12026] ? __pfx_do_sys_openat2+0x10/0x10 [ 548.009760][T12026] __x64_sys_openat+0x174/0x210 [ 548.009798][T12026] ? __pfx___x64_sys_openat+0x10/0x10 [ 548.009854][T12026] do_syscall_64+0xcd/0xf80 [ 548.009889][T12026] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 548.009922][T12026] RIP: 0033:0x7f334458f7c9 [ 548.009949][T12026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 548.009982][T12026] RSP: 002b:00007f33453fc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 548.010014][T12026] RAX: ffffffffffffffda RBX: 00007f33447e5fa0 RCX: 00007f334458f7c9 [ 548.010035][T12026] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 548.010057][T12026] RBP: 00007f3344613f91 R08: 0000000000000000 R09: 0000000000000000 [ 548.010077][T12026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 548.010097][T12026] R13: 00007f33447e6038 R14: 00007f33447e5fa0 R15: 00007fff9b342168 [ 548.010142][T12026] [ 551.126192][T12080] netlink: 74 bytes leftover after parsing attributes in process `syz.3.1200'. [ 552.618051][T12108] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1205'. [ 555.966907][T12168] Invalid ELF header magic: != ELF [ 556.175449][T12163] zswap: compressor not available [ 559.415680][T12232] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1224'. [ 560.201420][T12236] Unable to find swap-space signature [ 560.388316][T12244] FAULT_INJECTION: forcing a failure. [ 560.388316][T12244] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 560.406520][T12244] CPU: 1 UID: 0 PID: 12244 Comm: syz.1.1226 Tainted: G L syzkaller #0 PREEMPT(full) [ 560.406565][T12244] Tainted: [L]=SOFTLOCKUP [ 560.406572][T12244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 560.406586][T12244] Call Trace: [ 560.406594][T12244] [ 560.406603][T12244] dump_stack_lvl+0x16c/0x1f0 [ 560.406646][T12244] should_fail_ex+0x512/0x640 [ 560.406678][T12244] _copy_from_user+0x2e/0xd0 [ 560.406705][T12244] do_semtimedop+0x182/0x2e0 [ 560.406735][T12244] ? __pfx_do_semtimedop+0x10/0x10 [ 560.406801][T12244] ? __x64_sys_futex+0x1e0/0x4c0 [ 560.406828][T12244] ? __x64_sys_futex+0x1e9/0x4c0 [ 560.406857][T12244] __x64_sys_semtimedop+0x1b4/0x1f0 [ 560.406886][T12244] ? __pfx___x64_sys_semtimedop+0x10/0x10 [ 560.406923][T12244] do_syscall_64+0xcd/0xf80 [ 560.406946][T12244] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 560.406969][T12244] RIP: 0033:0x7f103bb8f7c9 [ 560.406986][T12244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 560.407009][T12244] RSP: 002b:00007f103ca5d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000dc [ 560.407031][T12244] RAX: ffffffffffffffda RBX: 00007f103bde6180 RCX: 00007f103bb8f7c9 [ 560.407046][T12244] RDX: 00000000000001f4 RSI: 0000000000000000 RDI: 0000000000000000 [ 560.407060][T12244] RBP: 00007f103bc13f91 R08: 0000000000000000 R09: 0000000000000000 [ 560.407073][T12244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 560.407087][T12244] R13: 00007f103bde6218 R14: 00007f103bde6180 R15: 00007ffc45b42ff8 [ 560.407117][T12244] [ 566.437206][T12339] FAULT_INJECTION: forcing a failure. [ 566.437206][T12339] name failslab, interval 1, probability 0, space 0, times 0 [ 566.452385][T12339] CPU: 0 UID: 0 PID: 12339 Comm: syz.3.1241 Tainted: G L syzkaller #0 PREEMPT(full) [ 566.452439][T12339] Tainted: [L]=SOFTLOCKUP [ 566.452451][T12339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 566.452470][T12339] Call Trace: [ 566.452480][T12339] [ 566.452492][T12339] dump_stack_lvl+0x16c/0x1f0 [ 566.452552][T12339] should_fail_ex+0x512/0x640 [ 566.452590][T12339] ? kmem_cache_alloc_lru_noprof+0x66/0x770 [ 566.452636][T12339] should_failslab+0xc2/0x120 [ 566.452693][T12339] kmem_cache_alloc_lru_noprof+0x87/0x770 [ 566.452733][T12339] ? ksys_unshare+0x45b/0xa40 [ 566.452761][T12339] ? __x64_sys_unshare+0x31/0x40 [ 566.452789][T12339] ? do_syscall_64+0xcd/0xf80 [ 566.452818][T12339] ? sock_alloc_inode+0x25/0x1c0 [ 566.452875][T12339] ? __pfx_sock_alloc_inode+0x10/0x10 [ 566.452925][T12339] ? sock_alloc_inode+0x25/0x1c0 [ 566.452973][T12339] sock_alloc_inode+0x25/0x1c0 [ 566.453022][T12339] alloc_inode+0x64/0x240 [ 566.453059][T12339] sock_alloc+0x40/0x280 [ 566.453106][T12339] sock_create_lite+0x82/0x120 [ 566.453169][T12339] __netlink_kernel_create+0xbd/0x750 [ 566.453215][T12339] ? __lock_acquire+0x436/0x2890 [ 566.453237][T12339] ? __pfx___netlink_kernel_create+0x10/0x10 [ 566.453283][T12339] rtnetlink_net_init+0xb9/0x140 [ 566.453312][T12339] ? __pfx_rtnetlink_net_init+0x10/0x10 [ 566.453342][T12339] ? lockdep_init_map_type+0x5c/0x270 [ 566.453364][T12339] ? __pfx_rtnetlink_rcv+0x10/0x10 [ 566.453392][T12339] ? __pfx_rtnetlink_bind+0x10/0x10 [ 566.453425][T12339] ? mutex_init_lockep+0x110/0x150 [ 566.453451][T12339] ? __pfx_rtnetlink_net_init+0x10/0x10 [ 566.453479][T12339] ops_init+0x1e2/0x5f0 [ 566.453516][T12339] setup_net+0x11d/0x3a0 [ 566.453550][T12339] ? __pfx_setup_net+0x10/0x10 [ 566.453582][T12339] ? lockdep_init_map_type+0x5c/0x270 [ 566.453605][T12339] ? mutex_init_lockep+0x110/0x150 [ 566.453632][T12339] copy_net_ns+0x351/0x7c0 [ 566.453656][T12339] create_new_namespaces+0x3ea/0xab0 [ 566.453695][T12339] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 566.453730][T12339] ksys_unshare+0x45b/0xa40 [ 566.453750][T12339] ? __pfx_ksys_unshare+0x10/0x10 [ 566.453788][T12339] ? xfd_validate_state+0x61/0x180 [ 566.453824][T12339] __x64_sys_unshare+0x31/0x40 [ 566.453844][T12339] do_syscall_64+0xcd/0xf80 [ 566.453868][T12339] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 566.453892][T12339] RIP: 0033:0x7f334458f7c9 [ 566.453911][T12339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 566.453934][T12339] RSP: 002b:00007f33453db038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 566.453956][T12339] RAX: ffffffffffffffda RBX: 00007f33447e6090 RCX: 00007f334458f7c9 [ 566.453971][T12339] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 566.453985][T12339] RBP: 00007f3344613f91 R08: 0000000000000000 R09: 0000000000000000 [ 566.453999][T12339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 566.454012][T12339] R13: 00007f33447e6128 R14: 00007f33447e6090 R15: 00007fff9b342168 [ 566.454043][T12339] [ 566.861623][ T52] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 570.238341][T12398] random: crng reseeded on system resumption [ 573.506894][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 573.521791][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 578.451821][T12537] random: crng reseeded on system resumption [ 597.498681][T12852] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1336'. [ 597.901744][ T52] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 601.186940][T12899] sd 0:0:1:0: PR command failed: 1026 [ 601.229504][T12899] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 601.309049][T12899] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 601.918720][T12912] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1347'. [ 608.498621][T13015] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1366'. [ 611.085536][T13053] Invalid ELF header magic: != ELF [ 611.211938][T13050] zswap: compressor not available [ 612.446178][T13081] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1379'. [ 613.909831][T13097] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 616.825688][T13153] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input51 [ 617.206961][T13156] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input52 [ 619.796105][T13210] No such timeout policy "" [ 619.848135][T13210] netlink: Failed to associated timeout policy '' [ 621.212257][T13229] block2mtd: illegal erase size [ 632.257467][T13403] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 634.949346][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 634.956548][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 636.011994][T13477] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 638.556874][T13524] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 642.333643][T13600] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 647.782834][T13700] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1489'. [ 649.081216][T13713] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 649.789745][T13731] Invalid ELF header magic: != ELF [ 649.919233][T13724] zswap: compressor not available [ 652.323477][T13765] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1501'. [ 654.201859][T13790] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 654.450506][T13806] Invalid ELF header magic: != ELF [ 654.758997][T13802] zswap: compressor not available [ 655.340397][T13823] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 658.743403][T13886] Invalid ELF header magic: != ELF [ 658.832135][T13878] zswap: compressor not available [ 659.064529][T13885] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 665.326046][T13980] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 668.657212][T14044] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 676.888479][T14194] can0: slcan on ttyS2. [ 677.082205][T14195] can0 (unregistered): slcan off ttyS2. [ 680.692431][T14254] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 680.692431][T14254] The task syz.3.1590 (14254) triggered the difference, watch for misbehavior. [ 684.980748][T14300] kexec: Could not allocate control_code_buffer [ 685.307248][T14321] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1604'. [ 686.887198][T14328] kexec: Could not allocate control_code_buffer [ 690.186074][T14397] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1616'. [ 690.618174][T14376] kexec: Could not allocate control_code_buffer [ 692.151289][T14430] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1623'. [ 696.398496][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 696.408573][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 696.519083][T14502] Invalid ELF header magic: != ELF [ 696.727107][T14488] kexec: Could not allocate control_code_buffer [ 697.389652][T14514] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1636'. [ 697.450830][T14514] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 697.468737][T14514] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 697.497072][T14514] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 697.565193][T14514] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 699.239309][T14524] kexec: Could not allocate control_code_buffer [ 703.476957][T14611] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 703.624157][T14614] vhci_hcd vhci_hcd.2: invalid port number 252 [ 703.630424][T14614] vhci_hcd vhci_hcd.2: default hub control req: 040f v0772 i00fc l2 [ 703.996622][T14597] kexec: Could not allocate control_code_buffer [ 704.496959][T14630] HfR: entered promiscuous mode [ 704.519699][T14630] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1658'. [ 704.542208][T14630] HfR: left promiscuous mode [ 708.212020][T14669] kexec: Could not allocate control_code_buffer [ 712.141595][ T52] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 713.386112][T14772] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1682'. [ 714.876533][T14802] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1686'. [ 714.922802][T14802] veth0_macvtap: left promiscuous mode [ 714.955293][T14797] cifs: Unknown parameter '‰ƒ´ÕéŒ)¬ Up†µÌ¢{´¼V ]7ž62']ßΨÉú!²gÉÊ®Ë7ú9½ófM¸<*y¢sEéhîé”' [ 715.001355][T14802] macvtap0: entered promiscuous mode [ 715.017289][T14802] macvtap0: entered allmulticast mode [ 715.042002][T14797] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 715.121495][T14797] CIFS mount error: No usable UNC path provided in device string! [ 715.121495][T14797] [ 715.137968][T14797] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 722.902338][T14948] vivid-009: ================= START STATUS ================= [ 722.912196][T14948] vivid-009: Radio HW Seek Mode: Bounded [ 722.967986][T14948] vivid-009: Radio Programmable HW Seek: false [ 723.029667][T14948] vivid-009: RDS Rx I/O Mode: Block I/O [ 723.056596][T14948] vivid-009: Generate RBDS Instead of RDS: false [ 723.075789][T14948] vivid-009: RDS Reception: true [ 723.080815][T14948] vivid-009: RDS Program Type: 0 inactive [ 723.157471][T14948] vivid-009: RDS PS Name: inactive [ 723.164536][T14948] vivid-009: RDS Radio Text: inactive [ 723.170440][T14948] vivid-009: RDS Traffic Announcement: false inactive [ 723.183731][T14948] vivid-009: RDS Traffic Program: false inactive [ 723.190674][T14948] vivid-009: RDS Music: false inactive [ 723.249410][T14948] vivid-009: ================== END STATUS ================== [ 724.391662][T14979] nvme_fcloop: unknown parameter or missing value '0' [ 724.570794][T14981] Invalid ELF header magic: != ELF [ 725.536388][T14994] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1717'. [ 730.158747][T15064] Invalid ELF header magic: != ELF [ 734.624671][T15138] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1742'. [ 735.095070][T15148] __vm_enough_memory: pid: 15148, comm: syz.2.1744, bytes: 4398046511104 not enough memory for the allocation [ 735.138519][T15149] ubi0: attaching mtd0 [ 735.160351][T15149] ubi0: scanning is finished [ 735.184511][T15149] ubi0: empty MTD device detected [ 735.801713][T15149] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 735.840663][T15149] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 735.921339][T15162] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 735.943116][T15149] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 736.010413][T15149] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 736.153259][T15149] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 736.165686][T15149] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 736.176557][T15149] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2415631544 [ 736.192191][T15149] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 736.204400][T15169] vhci_hcd vhci_hcd.2: invalid port number 252 [ 736.223377][T15161] ubi0: background thread "ubi_bgt0d" started, PID 15161 [ 736.241186][T15169] vhci_hcd vhci_hcd.2: default hub control req: 040f v0772 i00fc l2 [ 736.258475][T15150] ubi0: detaching mtd0 [ 736.324018][T15150] ubi0: mtd0 is detached [ 736.817167][T15176] Invalid ELF header magic: != ELF [ 740.710646][T15224] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 740.718342][T15224] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 740.865215][T15224] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 740.874976][T15224] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 740.962140][T15224] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 740.979153][T15224] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 741.030828][T15224] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 741.054495][T15224] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 742.542069][T15247] __vm_enough_memory: pid: 15247, comm: syz.3.1760, bytes: 4398046511104 not enough memory for the allocation [ 742.786881][T12314] Bluetooth: hci1: command 0x0406 tx timeout [ 742.856132][T15252] Invalid ELF header magic: != ELF [ 742.953400][ T5838] Bluetooth: hci0: command 0x0406 tx timeout [ 743.021553][ T5838] Bluetooth: hci2: command 0x0406 tx timeout [ 743.104658][ T5838] Bluetooth: hci3: command 0x0406 tx timeout [ 744.162123][T15273] vivid-009: ================= START STATUS ================= [ 744.169879][T15273] vivid-009: Radio HW Seek Mode: Bounded [ 744.180968][T15273] vivid-009: Radio Programmable HW Seek: false [ 744.190876][T15273] vivid-009: RDS Rx I/O Mode: Block I/O [ 744.196921][T15273] vivid-009: Generate RBDS Instead of RDS: false [ 744.203833][T15273] vivid-009: RDS Reception: true [ 744.213105][T15273] vivid-009: RDS Program Type: 0 inactive [ 744.221158][T15273] vivid-009: RDS PS Name: inactive [ 744.228402][T15273] vivid-009: RDS Radio Text: inactive [ 744.238293][T15273] vivid-009: RDS Traffic Announcement: false inactive [ 744.249203][T15273] vivid-009: RDS Traffic Program: false inactive [ 744.256252][T15273] vivid-009: RDS Music: false inactive [ 744.263038][T15273] vivid-009: ================== END STATUS ================== [ 744.541773][ T52] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 744.861547][ T52] Bluetooth: hci1: command 0x0406 tx timeout [ 745.028711][ T52] Bluetooth: hci0: command 0x0406 tx timeout [ 745.101493][ T52] Bluetooth: hci2: command 0x0406 tx timeout [ 745.193405][ T52] Bluetooth: hci3: command 0x0406 tx timeout [ 746.959722][T15326] nvme_fcloop: unknown parameter or missing value '0' [ 748.032708][T15343] vivid-009: ================= START STATUS ================= [ 748.080452][T15343] vivid-009: Radio HW Seek Mode: Bounded [ 748.095816][T15343] vivid-009: Radio Programmable HW Seek: false [ 748.135282][T15343] vivid-009: RDS Rx I/O Mode: Block I/O [ 748.169390][T15343] vivid-009: Generate RBDS Instead of RDS: false [ 748.219923][T15343] vivid-009: RDS Reception: true [ 748.282785][T15343] vivid-009: RDS Program Type: 0 inactive [ 748.303391][T15343] vivid-009: RDS PS Name: inactive [ 748.347943][T15343] vivid-009: RDS Radio Text: inactive [ 748.428323][T15343] vivid-009: RDS Traffic Announcement: false inactive [ 748.549033][T15343] vivid-009: RDS Traffic Program: false inactive [ 748.583202][T15343] vivid-009: RDS Music: false inactive [ 748.588822][T15343] vivid-009: ================== END STATUS ================== [ 748.704143][T15350] Invalid ELF header magic: != ELF [ 748.861610][T15361] FAULT_INJECTION: forcing a failure. [ 748.861610][T15361] name failslab, interval 1, probability 0, space 0, times 0 [ 748.887058][T15361] CPU: 1 UID: 0 PID: 15361 Comm: syz.2.1780 Tainted: G L syzkaller #0 PREEMPT(full) [ 748.887109][T15361] Tainted: [L]=SOFTLOCKUP [ 748.887120][T15361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 748.887140][T15361] Call Trace: [ 748.887150][T15361] [ 748.887166][T15361] dump_stack_lvl+0x16c/0x1f0 [ 748.887231][T15361] should_fail_ex+0x512/0x640 [ 748.887270][T15361] ? __kmalloc_noprof+0xca/0x910 [ 748.887314][T15361] should_failslab+0xc2/0x120 [ 748.887357][T15361] __kmalloc_noprof+0xeb/0x910 [ 748.887387][T15361] ? sk_prot_alloc+0x1a8/0x2a0 [ 748.887418][T15361] ? sk_prot_alloc+0x1a8/0x2a0 [ 748.887440][T15361] sk_prot_alloc+0x1a8/0x2a0 [ 748.887467][T15361] sk_alloc+0x36/0xe30 [ 748.887502][T15361] __netlink_create+0x5e/0x2c0 [ 748.887541][T15361] __netlink_kernel_create+0xed/0x750 [ 748.887586][T15361] ? __pfx___netlink_kernel_create+0x10/0x10 [ 748.887627][T15361] ? find_held_lock+0x2b/0x80 [ 748.887663][T15361] ? audit_net_init+0x190/0x440 [ 748.887699][T15361] audit_net_init+0x1ae/0x440 [ 748.887729][T15361] ? __pfx_audit_net_init+0x10/0x10 [ 748.887760][T15361] ? rcu_is_watching+0x12/0xc0 [ 748.887796][T15361] ? __pfx_audit_receive+0x10/0x10 [ 748.887831][T15361] ? __pfx_audit_multicast_bind+0x10/0x10 [ 748.887867][T15361] ? __pfx_audit_multicast_unbind+0x10/0x10 [ 748.887904][T15361] ? __pfx_genl_unbind+0x10/0x10 [ 748.887928][T15361] ? ops_init+0x77/0x5f0 [ 748.887970][T15361] ? __pfx_audit_net_init+0x10/0x10 [ 748.888010][T15361] ops_init+0x1e2/0x5f0 [ 748.888053][T15361] setup_net+0x11d/0x3a0 [ 748.888114][T15361] ? __pfx_setup_net+0x10/0x10 [ 748.888157][T15361] ? lockdep_init_map_type+0x5c/0x270 [ 748.888185][T15361] ? mutex_init_lockep+0x110/0x150 [ 748.888217][T15361] copy_net_ns+0x351/0x7c0 [ 748.888245][T15361] create_new_namespaces+0x3ea/0xab0 [ 748.888292][T15361] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 748.888340][T15361] ksys_unshare+0x45b/0xa40 [ 748.888365][T15361] ? __pfx_ksys_unshare+0x10/0x10 [ 748.888411][T15361] ? xfd_validate_state+0x61/0x180 [ 748.888445][T15361] __x64_sys_unshare+0x31/0x40 [ 748.888469][T15361] do_syscall_64+0xcd/0xf80 [ 748.888496][T15361] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 748.888524][T15361] RIP: 0033:0x7f75f738f7c9 [ 748.888546][T15361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 748.888575][T15361] RSP: 002b:00007f75f55f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 748.888601][T15361] RAX: ffffffffffffffda RBX: 00007f75f75e6090 RCX: 00007f75f738f7c9 [ 748.888619][T15361] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 748.888637][T15361] RBP: 00007f75f7413f91 R08: 0000000000000000 R09: 0000000000000000 [ 748.888653][T15361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 748.888670][T15361] R13: 00007f75f75e6128 R14: 00007f75f75e6090 R15: 00007fff025b99c8 [ 748.888706][T15361] [ 749.233591][T15361] audit: cannot initialize netlink socket in namespace [ 752.165591][T15409] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1788'. [ 757.826564][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 757.833002][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 758.585115][ T52] Bluetooth: hci1: unexpected event 0x20 length: 123 > 7 [ 758.745017][T15472] vivid-009: ================= START STATUS ================= [ 758.799176][T15472] vivid-009: Radio HW Seek Mode: Bounded [ 758.831147][T15472] vivid-009: Radio Programmable HW Seek: false [ 758.847085][T15472] vivid-009: RDS Rx I/O Mode: Block I/O [ 758.865721][T15472] vivid-009: Generate RBDS Instead of RDS: false [ 758.985053][T15472] vivid-009: RDS Reception: true [ 759.031091][T15472] vivid-009: RDS Program Type: 0 inactive [ 759.109489][T15472] vivid-009: RDS PS Name: inactive [ 759.154864][T15472] vivid-009: RDS Radio Text: inactive [ 759.201227][T15472] vivid-009: RDS Traffic Announcement: false inactive [ 759.211365][T15472] vivid-009: RDS Traffic Program: false inactive [ 759.281234][T15472] vivid-009: RDS Music: false inactive [ 759.334547][T15472] vivid-009: ================== END STATUS ================== [ 760.999134][T15496] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1801'. [ 764.455680][T15513] zswap: compressor not available [ 764.560183][T15520] rtc_cmos 00:00: Alarms can be up to one day in the future [ 764.829354][ T5927] rtc_cmos 00:00: Alarms can be up to one day in the future [ 764.900107][ T5927] rtc_cmos 00:00: Alarms can be up to one day in the future [ 765.051621][ T5927] rtc_cmos 00:00: Alarms can be up to one day in the future [ 765.059533][ T5927] rtc_cmos 00:00: Alarms can be up to one day in the future [ 765.068459][ T5927] rtc rtc0: __rtc_set_alarm: err=-22 [ 768.479609][T15540] __vm_enough_memory: pid: 15540, comm: syz.1.1808, bytes: 4398046511104 not enough memory for the allocation [ 771.617753][T15576] FAULT_INJECTION: forcing a failure. [ 771.617753][T15576] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 771.722849][T15576] CPU: 0 UID: 0 PID: 15576 Comm: syz.2.1816 Tainted: G L syzkaller #0 PREEMPT(full) [ 771.722904][T15576] Tainted: [L]=SOFTLOCKUP [ 771.722916][T15576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 771.722936][T15576] Call Trace: [ 771.722947][T15576] [ 771.722959][T15576] dump_stack_lvl+0x16c/0x1f0 [ 771.723018][T15576] should_fail_ex+0x512/0x640 [ 771.723064][T15576] _copy_from_user+0x2e/0xd0 [ 771.723104][T15576] memdup_user+0x6b/0xe0 [ 771.723146][T15576] msr_io+0xea/0x480 [ 771.723184][T15576] ? __pfx_do_get_feature_msr+0x10/0x10 [ 771.723243][T15576] ? __pfx_msr_io+0x10/0x10 [ 771.723285][T15576] ? tomoyo_path_number_perm+0x18d/0x580 [ 771.723333][T15576] kvm_arch_dev_ioctl+0x39b/0x760 [ 771.723375][T15576] ? __pfx_kvm_arch_dev_ioctl+0x10/0x10 [ 771.723436][T15576] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 771.723489][T15576] ? do_vfs_ioctl+0x128/0x14f0 [ 771.723531][T15576] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 771.723568][T15576] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 771.723619][T15576] kvm_dev_ioctl+0x72d/0x1a80 [ 771.723670][T15576] ? find_held_lock+0x2b/0x80 [ 771.723711][T15576] ? hook_file_ioctl_common+0x144/0x410 [ 771.723754][T15576] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 771.723803][T15576] ? __fget_files+0x20e/0x3c0 [ 771.723857][T15576] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 771.723903][T15576] __x64_sys_ioctl+0x18e/0x210 [ 771.723946][T15576] do_syscall_64+0xcd/0xf80 [ 771.723980][T15576] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 771.724013][T15576] RIP: 0033:0x7f75f738f7c9 [ 771.724039][T15576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 771.724072][T15576] RSP: 002b:00007f75f815c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 771.724104][T15576] RAX: ffffffffffffffda RBX: 00007f75f75e5fa0 RCX: 00007f75f738f7c9 [ 771.724125][T15576] RDX: 0000200000000040 RSI: 00000000c008ae88 RDI: 0000000000000009 [ 771.724146][T15576] RBP: 00007f75f7413f91 R08: 0000000000000000 R09: 0000000000000000 [ 771.724167][T15576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 771.724186][T15576] R13: 00007f75f75e6038 R14: 00007f75f75e5fa0 R15: 00007fff025b99c8 [ 771.724231][T15576] [ 774.082352][T15601] zswap: compressor not available [ 775.947796][T15634] warning: `syz.3.1826' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 778.205912][ T30] audit: type=1800 audit(4294967340.550:10): pid=15664 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1831" name="dbroot" dev="configfs" ino=68332 res=0 errno=0 [ 781.237975][T15703] No such timeout policy "" [ 781.251485][T15703] netlink: Failed to associated timeout policy '' [ 781.442644][T15710] i2c i2c-0: delete_device: Extra parameters [ 785.460256][T15767] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 785.578867][T15767] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 786.509621][T15784] No such timeout policy "" [ 786.521782][T15784] netlink: Failed to associated timeout policy '' [ 787.559133][T15797] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input56 [ 787.667966][T15798] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input57 [ 788.424667][T15805] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input58 [ 788.995591][T15809] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input59 [ 792.221114][T15878] FAULT_INJECTION: forcing a failure. [ 792.221114][T15878] name failslab, interval 1, probability 0, space 0, times 0 [ 792.281655][T15878] CPU: 1 UID: 0 PID: 15878 Comm: syz.3.1871 Tainted: G L syzkaller #0 PREEMPT(full) [ 792.281706][T15878] Tainted: [L]=SOFTLOCKUP [ 792.281717][T15878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 792.281747][T15878] Call Trace: [ 792.281758][T15878] [ 792.281770][T15878] dump_stack_lvl+0x16c/0x1f0 [ 792.281828][T15878] should_fail_ex+0x512/0x640 [ 792.281874][T15878] should_failslab+0xc2/0x120 [ 792.281927][T15878] __kmalloc_cache_noprof+0x80/0x800 [ 792.281964][T15878] ? __task_pid_nr_ns+0x1f5/0x500 [ 792.281993][T15878] ? proc_thread_self_get_link+0x1c6/0x240 [ 792.282043][T15878] ? proc_thread_self_get_link+0x1c6/0x240 [ 792.282091][T15878] proc_thread_self_get_link+0x1c6/0x240 [ 792.282134][T15878] pick_link+0xb09/0x13b0 [ 792.282174][T15878] ? __pfx_proc_thread_self_get_link+0x10/0x10 [ 792.282222][T15878] step_into_slowpath+0x6c6/0xf50 [ 792.282273][T15878] ? __pfx_step_into_slowpath+0x10/0x10 [ 792.282324][T15878] ? lookup_fast+0x156/0x610 [ 792.282361][T15878] ? inode_permission+0x37b/0x640 [ 792.282403][T15878] link_path_walk+0xd26/0x1c70 [ 792.282463][T15878] path_openat+0x1bd/0x3140 [ 792.282509][T15878] ? do_syscall_64+0xcd/0xf80 [ 792.282535][T15878] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 792.282582][T15878] ? __pfx_path_openat+0x10/0x10 [ 792.282647][T15878] do_filp_open+0x20b/0x470 [ 792.282698][T15878] ? __pfx_do_filp_open+0x10/0x10 [ 792.282788][T15878] ? alloc_fd+0x471/0x7d0 [ 792.282847][T15878] do_sys_openat2+0x121/0x290 [ 792.282885][T15878] ? __pfx_do_sys_openat2+0x10/0x10 [ 792.282939][T15878] __x64_sys_openat+0x174/0x210 [ 792.282975][T15878] ? __pfx___x64_sys_openat+0x10/0x10 [ 792.283030][T15878] do_syscall_64+0xcd/0xf80 [ 792.283063][T15878] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 792.283095][T15878] RIP: 0033:0x7f334458f7c9 [ 792.283122][T15878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 792.283154][T15878] RSP: 002b:00007f33453fc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 792.283185][T15878] RAX: ffffffffffffffda RBX: 00007f33447e5fa0 RCX: 00007f334458f7c9 [ 792.283207][T15878] RDX: 0000000000008800 RSI: 00002000000001c0 RDI: ffffffffffffff9c [ 792.283226][T15878] RBP: 00007f3344613f91 R08: 0000000000000000 R09: 0000000000000000 [ 792.283246][T15878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 792.283265][T15878] R13: 00007f33447e6038 R14: 00007f33447e5fa0 R15: 00007fff9b342168 [ 792.283309][T15878] [ 793.891244][T15898] No such timeout policy "" [ 793.901007][T15898] netlink: Failed to associated timeout policy '' [ 793.948690][T15900] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input60 [ 794.702466][T15906] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input61 [ 795.760787][T15942] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input62 [ 796.505516][T15944] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input63 [ 796.941841][T15966] random: crng reseeded on system resumption [ 797.197680][T15971] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1875'. [ 799.765724][T16010] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 799.789736][T16010] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 799.818112][T16010] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 799.877468][T16013] FAULT_INJECTION: forcing a failure. [ 799.877468][T16013] name failslab, interval 1, probability 0, space 0, times 0 [ 799.941857][T16010] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 799.970224][T16010] page dumped because: unmovable page [ 799.998886][T16013] CPU: 0 UID: 0 PID: 16013 Comm: syz.1.1881 Tainted: G L syzkaller #0 PREEMPT(full) [ 799.998938][T16013] Tainted: [L]=SOFTLOCKUP [ 799.998946][T16013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 799.998961][T16013] Call Trace: [ 799.998968][T16013] [ 799.998977][T16013] dump_stack_lvl+0x16c/0x1f0 [ 799.999021][T16013] should_fail_ex+0x512/0x640 [ 799.999048][T16013] ? __kmalloc_cache_noprof+0x5f/0x800 [ 799.999078][T16013] should_failslab+0xc2/0x120 [ 799.999115][T16013] __kmalloc_cache_noprof+0x80/0x800 [ 799.999142][T16013] ? acpi_ds_create_walk_state+0x95/0x300 [ 799.999180][T16013] ? acpi_ds_create_walk_state+0x95/0x300 [ 799.999209][T16013] acpi_ds_create_walk_state+0x95/0x300 [ 799.999242][T16013] acpi_ps_execute_method+0x2c1/0xe90 [ 799.999281][T16013] acpi_ns_evaluate+0x98c/0x16d0 [ 799.999323][T16013] acpi_evaluate_object+0x4ca/0xdf0 [ 799.999349][T16013] ? ksys_read+0x12a/0x250 [ 799.999385][T16013] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 799.999421][T16013] ? __pfx___might_resched+0x10/0x10 [ 799.999459][T16013] acpi_evaluate_integer+0xdd/0x230 [ 799.999496][T16013] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 799.999547][T16013] ? __pfx_status_show+0x10/0x10 [ 799.999571][T16013] status_show+0xa0/0x120 [ 799.999596][T16013] ? __pfx_status_show+0x10/0x10 [ 799.999637][T16013] dev_attr_show+0x56/0xe0 [ 799.999674][T16013] ? __pfx_dev_attr_show+0x10/0x10 [ 799.999707][T16013] sysfs_kf_seq_show+0x216/0x3e0 [ 799.999738][T16013] seq_read_iter+0x50e/0x12d0 [ 799.999784][T16013] kernfs_fop_read_iter+0x46c/0x610 [ 799.999822][T16013] ? rw_verify_area+0xcf/0x6c0 [ 799.999856][T16013] vfs_read+0x8bf/0xcf0 [ 799.999895][T16013] ? __pfx_vfs_read+0x10/0x10 [ 799.999948][T16013] ksys_read+0x12a/0x250 [ 799.999988][T16013] ? __pfx_ksys_read+0x10/0x10 [ 800.000037][T16013] do_syscall_64+0xcd/0xf80 [ 800.000061][T16013] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 800.000085][T16013] RIP: 0033:0x7f103bb8f7c9 [ 800.000103][T16013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 800.000127][T16013] RSP: 002b:00007f103ca7e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 800.000153][T16013] RAX: ffffffffffffffda RBX: 00007f103bde6090 RCX: 00007f103bb8f7c9 [ 800.000170][T16013] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000006 [ 800.000185][T16013] RBP: 00007f103bc13f91 R08: 0000000000000000 R09: 0000000000000000 [ 800.000204][T16013] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 800.000217][T16013] R13: 00007f103bde6128 R14: 00007f103bde6090 R15: 00007ffc45b42ff8 [ 800.000250][T16013] [ 800.273865][T16010] page_owner info is not present (never set?) [ 800.622081][ T52] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 803.822907][T16073] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1893'. [ 804.465208][ T52] Bluetooth: hci0: unexpected event 0x20 length: 123 > 7 [ 805.835106][ T30] audit: type=1800 audit(4294967368.160:11): pid=16110 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1899" name="dbroot" dev="configfs" ino=71332 res=0 errno=0 [ 806.465701][T16121] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888078801dc0 pfn:0x78801 [ 806.562957][T16121] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 806.580124][T16121] page_type: f2(table) [ 806.610910][T16121] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 806.636928][T16121] raw: ffff888078801dc0 ffff8880554cd8a0 00000001f2000000 0000000000000000 [ 806.708595][T16121] page dumped because: unmovable page [ 806.732924][T16121] page_owner tracks the page as allocated [ 806.742357][T16121] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x440dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO|__GFP_COMP), pid 5814, tgid 5814 (syz-executor), ts 186297290606, free_ts 186212809685 [ 806.772804][T16121] post_alloc_hook+0x1af/0x220 [ 806.777720][T16121] get_page_from_freelist+0xd0b/0x31a0 [ 806.796170][T16121] __alloc_frozen_pages_noprof+0x25f/0x2430 [ 806.822633][T16121] alloc_pages_mpol+0x1fb/0x550 [ 806.845799][T16121] alloc_pages_noprof+0x131/0x390 [ 806.853161][T16121] pte_alloc_one+0x1e/0x3d0 [ 806.857978][T16121] __do_fault+0x320/0x490 [ 806.863589][T16121] do_fault+0x302/0x1ad0 [ 806.868289][T16121] __handle_mm_fault+0x1919/0x2bb0 [ 806.875028][T16121] handle_mm_fault+0x3fe/0xad0 [ 806.880400][T16121] do_user_addr_fault+0x60c/0x1370 [ 806.889366][T16121] exc_page_fault+0x64/0xc0 [ 806.895058][T16121] asm_exc_page_fault+0x26/0x30 [ 806.900876][T16121] page last free pid 15 tgid 15 stack trace: [ 806.909341][T16121] __free_frozen_pages+0x7df/0x1170 [ 806.917185][T16121] tlb_remove_table_rcu+0x2b2/0x390 [ 806.926183][T16121] rcu_core+0x79c/0x15f0 [ 806.931187][T16121] handle_softirqs+0x219/0x950 [ 806.937262][T16121] run_ksoftirqd+0x3a/0x60 [ 806.943434][T16121] smpboot_thread_fn+0x3f7/0xae0 [ 806.948770][T16121] kthread+0x3c5/0x780 [ 806.954078][T16121] ret_from_fork+0x983/0xb10 [ 806.963534][T16121] ret_from_fork_asm+0x1a/0x30 [ 808.072820][T16129] bridge0: port 3(gretap0) entered blocking state [ 808.106034][T16129] bridge0: port 3(gretap0) entered disabled state [ 808.140283][T16129] gretap0: entered allmulticast mode [ 808.223639][T16129] gretap0: entered promiscuous mode [ 808.248178][T16129] FAULT_INJECTION: forcing a failure. [ 808.248178][T16129] name failslab, interval 1, probability 0, space 0, times 0 [ 808.262406][T16129] CPU: 0 UID: 0 PID: 16129 Comm: syz.2.1904 Tainted: G L syzkaller #0 PREEMPT(full) [ 808.262556][T16129] Tainted: [L]=SOFTLOCKUP [ 808.262570][T16129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 808.262589][T16129] Call Trace: [ 808.262601][T16129] [ 808.262614][T16129] dump_stack_lvl+0x16c/0x1f0 [ 808.262674][T16129] should_fail_ex+0x512/0x640 [ 808.262717][T16129] should_failslab+0xc2/0x120 [ 808.262768][T16129] kmem_cache_alloc_node_noprof+0x86/0x800 [ 808.262811][T16129] ? __alloc_skb+0x156/0x410 [ 808.262859][T16129] ? __alloc_skb+0x156/0x410 [ 808.262896][T16129] __alloc_skb+0x156/0x410 [ 808.262932][T16129] ? __alloc_skb+0x35d/0x410 [ 808.262970][T16129] ? __pfx___alloc_skb+0x10/0x10 [ 808.263012][T16129] ? find_held_lock+0x2b/0x80 [ 808.263054][T16129] ? __pfx_fdb_create+0x10/0x10 [ 808.263091][T16129] ? br_fdb_find+0xe4/0x240 [ 808.263132][T16129] fdb_notify+0xa4/0x1a0 [ 808.263173][T16129] fdb_add_local+0x221/0x270 [ 808.263218][T16129] br_fdb_add_local+0x39/0x60 [ 808.263264][T16129] __vlan_add+0x1a58/0x2df0 [ 808.263350][T16129] ? __pfx___vlan_add+0x10/0x10 [ 808.263409][T16129] nbp_vlan_add+0x261/0x3f0 [ 808.263477][T16129] nbp_vlan_init+0x373/0x500 [ 808.263526][T16129] ? __pfx_nbp_vlan_init+0x10/0x10 [ 808.263581][T16129] ? __local_bh_enable_ip+0xa4/0x120 [ 808.263629][T16129] ? lockdep_hardirqs_on+0x7c/0x110 [ 808.263659][T16129] ? br_fdb_add_local+0x43/0x60 [ 808.263698][T16129] ? __local_bh_enable_ip+0xa4/0x120 [ 808.263751][T16129] br_add_if+0xfa6/0x1b70 [ 808.263799][T16129] ? __pfx_veth_set_rx_headroom+0x10/0x10 [ 808.263862][T16129] add_del_if+0x114/0x160 [ 808.263914][T16129] br_dev_siocdevprivate+0x908/0x1650 [ 808.263968][T16129] ? __lock_acquire+0x436/0x2890 [ 808.263999][T16129] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 808.264065][T16129] ? do_raw_spin_lock+0x12c/0x2b0 [ 808.264111][T16129] ? mark_held_locks+0x49/0x80 [ 808.264148][T16129] ? netdev_name_node_lookup+0x127/0x180 [ 808.264189][T16129] ? __mutex_lock+0x27b/0x1ca0 [ 808.264226][T16129] dev_ifsioc+0x8ee/0x1ee0 [ 808.264275][T16129] ? __pfx_dev_ifsioc+0x10/0x10 [ 808.264317][T16129] ? __pfx___mutex_lock+0x10/0x10 [ 808.264367][T16129] ? dev_load+0x8e/0x240 [ 808.264417][T16129] dev_ioctl+0x1b2/0x1060 [ 808.264471][T16129] sock_ioctl+0x5b3/0x6b0 [ 808.264506][T16129] ? __pfx_sock_ioctl+0x10/0x10 [ 808.264538][T16129] ? hook_file_ioctl_common+0x144/0x410 [ 808.264584][T16129] ? __fget_files+0x20e/0x3c0 [ 808.264638][T16129] ? __pfx_sock_ioctl+0x10/0x10 [ 808.264675][T16129] __x64_sys_ioctl+0x18e/0x210 [ 808.264719][T16129] do_syscall_64+0xcd/0xf80 [ 808.264753][T16129] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 808.264786][T16129] RIP: 0033:0x7f75f738f7c9 [ 808.264813][T16129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 808.264846][T16129] RSP: 002b:00007f75f815c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 808.264876][T16129] RAX: ffffffffffffffda RBX: 00007f75f75e5fa0 RCX: 00007f75f738f7c9 [ 808.264898][T16129] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000008 [ 808.264918][T16129] RBP: 00007f75f7413f91 R08: 0000000000000000 R09: 0000000000000000 [ 808.264938][T16129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 808.264958][T16129] R13: 00007f75f75e6038 R14: 00007f75f75e5fa0 R15: 00007fff025b99c8 [ 808.265002][T16129] [ 808.634802][T16129] bridge0: port 3(gretap0) entered blocking state [ 808.642064][T16129] bridge0: port 3(gretap0) entered forwarding state [ 809.987996][T16163] futex_wake_op: syz.1.1908 tries to shift op by -2048; fix this program [ 810.051770][T16163] futex_wake_op: syz.1.1908 tries to shift op by -2048; fix this program [ 810.131839][T16163] ubi1: attaching mtd0 [ 810.148532][T16163] ubi1: scanning is finished [ 810.536735][T16163] ubi1: attached mtd0 (name "mtdram test device", size 0 MiB) [ 810.544804][T16163] ubi1: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 810.561677][T16163] ubi1: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 810.568864][T16163] ubi1: VID header offset: 64 (aligned 64), data offset: 128 [ 810.579070][T16163] ubi1: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 810.594881][T16163] ubi1: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 810.609826][T16163] ubi1: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 2415631544 [ 810.656683][T16163] ubi1: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 810.756098][T16175] ubi1: background thread "ubi_bgt1d" started, PID 16175 [ 810.842404][T16165] zswap: compressor 000 not available [ 812.179537][T16205] FAULT_INJECTION: forcing a failure. [ 812.179537][T16205] name failslab, interval 1, probability 0, space 0, times 0 [ 812.225210][T16206] i2c i2c-0: delete_device: Extra parameters [ 812.263750][T16205] CPU: 1 UID: 0 PID: 16205 Comm: syz.2.1915 Tainted: G L syzkaller #0 PREEMPT(full) [ 812.263801][T16205] Tainted: [L]=SOFTLOCKUP [ 812.263813][T16205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 812.263832][T16205] Call Trace: [ 812.263842][T16205] [ 812.263854][T16205] dump_stack_lvl+0x16c/0x1f0 [ 812.263914][T16205] should_fail_ex+0x512/0x640 [ 812.263953][T16205] ? kmem_cache_alloc_lru_noprof+0x66/0x770 [ 812.264002][T16205] should_failslab+0xc2/0x120 [ 812.264053][T16205] kmem_cache_alloc_lru_noprof+0x87/0x770 [ 812.264098][T16205] ? shmem_alloc_inode+0x25/0x50 [ 812.264162][T16205] ? __pfx_shmem_alloc_inode+0x10/0x10 [ 812.264208][T16205] ? shmem_alloc_inode+0x25/0x50 [ 812.264248][T16205] shmem_alloc_inode+0x25/0x50 [ 812.264291][T16205] alloc_inode+0x64/0x240 [ 812.264328][T16205] new_inode+0x22/0x1c0 [ 812.264365][T16205] shmem_get_inode+0x19a/0xfb0 [ 812.264426][T16205] shmem_mknod+0x1a2/0x3b0 [ 812.264482][T16205] vfs_mknod+0x6f3/0xac0 [ 812.264531][T16205] do_mknodat+0x36a/0x6f0 [ 812.264580][T16205] ? __pfx_do_mknodat+0x10/0x10 [ 812.264627][T16205] ? getname_flags.part.0+0x1c5/0x550 [ 812.264673][T16205] __x64_sys_mknod+0x87/0xb0 [ 812.264724][T16205] do_syscall_64+0xcd/0xf80 [ 812.264760][T16205] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 812.264793][T16205] RIP: 0033:0x7f75f738f7c9 [ 812.264820][T16205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 812.264850][T16205] RSP: 002b:00007f75f815c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 812.264880][T16205] RAX: ffffffffffffffda RBX: 00007f75f75e5fa0 RCX: 00007f75f738f7c9 [ 812.264901][T16205] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 812.264922][T16205] RBP: 00007f75f7413f91 R08: 0000000000000000 R09: 0000000000000000 [ 812.264942][T16205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 812.264962][T16205] R13: 00007f75f75e6038 R14: 00007f75f75e5fa0 R15: 00007fff025b99c8 [ 812.265007][T16205] [ 813.182054][T16222] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1919'. [ 814.789440][T16253] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1926'. [ 815.163417][T16259] netlink: 186 bytes leftover after parsing attributes in process `syz.2.1928'. [ 815.510483][ T52] Bluetooth: hci0: unexpected event 0x01 length: 124 > 1 [ 815.668780][T16272] i2c i2c-0: delete_device: Extra parameters [ 819.271706][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 819.281429][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 821.862432][T16374] FAULT_INJECTION: forcing a failure. [ 821.862432][T16374] name failslab, interval 1, probability 0, space 0, times 0 [ 821.980932][T16374] CPU: 0 UID: 0 PID: 16374 Comm: syz.2.1952 Tainted: G L syzkaller #0 PREEMPT(full) [ 821.980987][T16374] Tainted: [L]=SOFTLOCKUP [ 821.980998][T16374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 821.981017][T16374] Call Trace: [ 821.981027][T16374] [ 821.981040][T16374] dump_stack_lvl+0x16c/0x1f0 [ 821.981103][T16374] should_fail_ex+0x512/0x640 [ 821.981132][T16374] ? __kmalloc_cache_noprof+0x5f/0x800 [ 821.981161][T16374] should_failslab+0xc2/0x120 [ 821.981198][T16374] __kmalloc_cache_noprof+0x80/0x800 [ 821.981223][T16374] ? __pfx_get_mtd_device+0x10/0x10 [ 821.981257][T16374] ? kobject_get_unless_zero+0x156/0x1e0 [ 821.981279][T16374] ? mtdchar_open+0x1e5/0x340 [ 821.981310][T16374] ? mtdchar_open+0x1e5/0x340 [ 821.981336][T16374] mtdchar_open+0x1e5/0x340 [ 821.981396][T16374] ? __pfx_mtdchar_open+0x10/0x10 [ 821.981434][T16374] chrdev_open+0x234/0x6a0 [ 821.981478][T16374] ? __pfx_apparmor_file_open+0x10/0x10 [ 821.981503][T16374] ? __pfx_chrdev_open+0x10/0x10 [ 821.981540][T16374] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 821.981584][T16374] do_dentry_open+0x748/0x1590 [ 821.981617][T16374] ? __pfx_chrdev_open+0x10/0x10 [ 821.981662][T16374] vfs_open+0x82/0x3f0 [ 821.981690][T16374] path_openat+0x2078/0x3140 [ 821.981735][T16374] ? __pfx_path_openat+0x10/0x10 [ 821.981780][T16374] do_filp_open+0x20b/0x470 [ 821.981816][T16374] ? __pfx_do_filp_open+0x10/0x10 [ 821.981871][T16374] ? alloc_fd+0x471/0x7d0 [ 821.981912][T16374] do_sys_openat2+0x121/0x290 [ 821.981938][T16374] ? __pfx_do_sys_openat2+0x10/0x10 [ 821.981974][T16374] __x64_sys_openat+0x174/0x210 [ 821.982001][T16374] ? __pfx___x64_sys_openat+0x10/0x10 [ 821.982039][T16374] do_syscall_64+0xcd/0xf80 [ 821.982063][T16374] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 821.982092][T16374] RIP: 0033:0x7f75f738f7c9 [ 821.982110][T16374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 821.982134][T16374] RSP: 002b:00007f75f815c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 821.982173][T16374] RAX: ffffffffffffffda RBX: 00007f75f75e5fa0 RCX: 00007f75f738f7c9 [ 821.982189][T16374] RDX: 0000000000048000 RSI: 0000200000000200 RDI: ffffffffffffff9c [ 821.982204][T16374] RBP: 00007f75f7413f91 R08: 0000000000000000 R09: 0000000000000000 [ 821.982218][T16374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 821.982231][T16374] R13: 00007f75f75e6038 R14: 00007f75f75e5fa0 R15: 00007fff025b99c8 [ 821.982261][T16374] [ 823.594667][T16396] : Can't lookup blockdev [ 825.426381][T16422] i2c i2c-0: delete_device: Extra parameters [ 828.849794][T16465] sysfs_service_op_store: Client not running :-5: [ 829.046140][T16473] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1970'. [ 829.337436][T16476] ================================================================== [ 829.337458][T16476] BUG: KASAN: vmalloc-out-of-bounds in sys_fillrect+0x15d4/0x17b0 [ 829.337504][T16476] Write of size 8 at addr ffffc90004099000 by task syz.2.1973/16476 [ 829.337523][T16476] [ 829.337536][T16476] CPU: 0 UID: 0 PID: 16476 Comm: syz.2.1973 Tainted: G L syzkaller #0 PREEMPT(full) [ 829.337568][T16476] Tainted: [L]=SOFTLOCKUP [ 829.337576][T16476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 829.337590][T16476] Call Trace: [ 829.337599][T16476] [ 829.337609][T16476] dump_stack_lvl+0x116/0x1f0 [ 829.337648][T16476] print_report+0xcd/0x630 [ 829.337682][T16476] ? __virt_addr_valid+0x81/0x610 [ 829.337721][T16476] ? sys_fillrect+0x15d4/0x17b0 [ 829.337754][T16476] kasan_report+0xe0/0x110 [ 829.337789][T16476] ? sys_fillrect+0x15d4/0x17b0 [ 829.337828][T16476] sys_fillrect+0x15d4/0x17b0 [ 829.337865][T16476] ? __pfx_sys_fillrect+0x10/0x10 [ 829.337902][T16476] ? __pfx_bit_putcs+0x10/0x10 [ 829.337932][T16476] drm_fbdev_shmem_defio_fillrect+0x22/0x140 [ 829.337971][T16476] bit_clear+0x17d/0x220 [ 829.337999][T16476] ? __pfx_bit_clear+0x10/0x10 [ 829.338191][T16476] ? fb_get_color_depth+0x120/0x250 [ 829.338218][T16476] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 829.338256][T16476] ? __pfx_bit_clear+0x10/0x10 [ 829.338292][T16476] __fbcon_clear+0x679/0x7d0 [ 829.338322][T16476] fbcon_scroll+0x48b/0x640 [ 829.338351][T16476] con_scroll+0x45f/0x690 [ 829.338385][T16476] do_con_write+0x5565/0x8280 [ 829.338430][T16476] ? irqentry_exit+0x1dd/0x8c0 [ 829.338451][T16476] ? __pfx_do_con_write+0x10/0x10 [ 829.338493][T16476] con_write+0x23/0xb0 [ 829.338528][T16476] n_tty_write+0x434/0x1280 [ 829.338559][T16476] ? __pfx_n_tty_write+0x10/0x10 [ 829.338584][T16476] ? __pfx_woken_wake_function+0x10/0x10 [ 829.338614][T16476] ? file_tty_write.constprop.0+0x6f3/0x9b0 [ 829.338652][T16476] ? __pfx_n_tty_write+0x10/0x10 [ 829.338683][T16476] file_tty_write.constprop.0+0x503/0x9b0 [ 829.338724][T16476] redirected_tty_write+0xd4/0x120 [ 829.338759][T16476] vfs_write+0x7d3/0x11d0 [ 829.338795][T16476] ? __pfx_redirected_tty_write+0x10/0x10 [ 829.338841][T16476] ? __pfx_vfs_write+0x10/0x10 [ 829.338873][T16476] ? find_held_lock+0x2b/0x80 [ 829.338913][T16476] ksys_write+0x12a/0x250 [ 829.338946][T16476] ? __pfx_ksys_write+0x10/0x10 [ 829.338996][T16476] do_syscall_64+0xcd/0xf80 [ 829.339142][T16476] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 829.339166][T16476] RIP: 0033:0x7f75f738f7c9 [ 829.339186][T16476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 829.339210][T16476] RSP: 002b:00007f75f815c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 829.339232][T16476] RAX: ffffffffffffffda RBX: 00007f75f75e5fa0 RCX: 00007f75f738f7c9 [ 829.339257][T16476] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000003 [ 829.339283][T16476] RBP: 00007f75f7413f91 R08: 0000000000000000 R09: 0000000000000000 [ 829.339299][T16476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 829.339314][T16476] R13: 00007f75f75e6038 R14: 00007f75f75e5fa0 R15: 00007fff025b99c8 [ 829.339339][T16476] [ 829.339347][T16476] [ 829.339355][T16476] The buggy address belongs to a vmalloc virtual mapping [ 829.339373][T16476] Memory state around the buggy address: [ 829.339385][T16476] ffffc90004098f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 829.339403][T16476] ffffc90004098f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 829.339427][T16476] >ffffc90004099000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 829.339440][T16476] ^ [ 829.339452][T16476] ffffc90004099080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 829.339469][T16476] ffffc90004099100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 829.339482][T16476] ================================================================== [ 829.357365][T16476] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 829.357388][T16476] CPU: 0 UID: 0 PID: 16476 Comm: syz.2.1973 Tainted: G L syzkaller #0 PREEMPT(full) [ 829.357422][T16476] Tainted: [L]=SOFTLOCKUP [ 829.357431][T16476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 829.357446][T16476] Call Trace: [ 829.357453][T16476] [ 829.357463][T16476] dump_stack_lvl+0x3d/0x1f0 [ 829.357508][T16476] vpanic+0x640/0x6f0 [ 829.357532][T16476] panic+0xca/0xd0 [ 829.357553][T16476] ? __pfx_panic+0x10/0x10 [ 829.357576][T16476] ? sys_fillrect+0x15d4/0x17b0 [ 829.357611][T16476] ? preempt_schedule_common+0x44/0xc0 [ 829.357649][T16476] ? preempt_schedule_thunk+0x16/0x30 [ 829.357674][T16476] check_panic_on_warn+0xab/0xb0 [ 829.357698][T16476] end_report+0x107/0x160 [ 829.357733][T16476] kasan_report+0xee/0x110 [ 829.357769][T16476] ? sys_fillrect+0x15d4/0x17b0 [ 829.357816][T16476] sys_fillrect+0x15d4/0x17b0 [ 829.357854][T16476] ? __pfx_sys_fillrect+0x10/0x10 [ 829.357892][T16476] ? __pfx_bit_putcs+0x10/0x10 [ 829.357923][T16476] drm_fbdev_shmem_defio_fillrect+0x22/0x140 [ 829.357962][T16476] bit_clear+0x17d/0x220 [ 829.357991][T16476] ? __pfx_bit_clear+0x10/0x10 [ 829.358019][T16476] ? fb_get_color_depth+0x120/0x250 [ 829.358045][T16476] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 829.358083][T16476] ? __pfx_bit_clear+0x10/0x10 [ 829.358110][T16476] __fbcon_clear+0x679/0x7d0 [ 829.358140][T16476] fbcon_scroll+0x48b/0x640 [ 829.358167][T16476] con_scroll+0x45f/0x690 [ 829.358203][T16476] do_con_write+0x5565/0x8280 [ 829.358246][T16476] ? irqentry_exit+0x1dd/0x8c0 [ 829.358267][T16476] ? __pfx_do_con_write+0x10/0x10 [ 829.358310][T16476] con_write+0x23/0xb0 [ 829.358344][T16476] n_tty_write+0x434/0x1280 [ 829.358375][T16476] ? __pfx_n_tty_write+0x10/0x10 [ 829.358399][T16476] ? __pfx_woken_wake_function+0x10/0x10 [ 829.358428][T16476] ? file_tty_write.constprop.0+0x6f3/0x9b0 [ 829.358466][T16476] ? __pfx_n_tty_write+0x10/0x10 [ 829.358491][T16476] file_tty_write.constprop.0+0x503/0x9b0 [ 829.358531][T16476] redirected_tty_write+0xd4/0x120 [ 829.358566][T16476] vfs_write+0x7d3/0x11d0 [ 829.358600][T16476] ? __pfx_redirected_tty_write+0x10/0x10 [ 829.358637][T16476] ? __pfx_vfs_write+0x10/0x10 [ 829.358668][T16476] ? find_held_lock+0x2b/0x80 [ 829.358707][T16476] ksys_write+0x12a/0x250 [ 829.358740][T16476] ? __pfx_ksys_write+0x10/0x10 [ 829.358777][T16476] do_syscall_64+0xcd/0xf80 [ 829.358805][T16476] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 829.358829][T16476] RIP: 0033:0x7f75f738f7c9 [ 829.358848][T16476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 829.358871][T16476] RSP: 002b:00007f75f815c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 829.358893][T16476] RAX: ffffffffffffffda RBX: 00007f75f75e5fa0 RCX: 00007f75f738f7c9 [ 829.358909][T16476] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000003 [ 829.358924][T16476] RBP: 00007f75f7413f91 R08: 0000000000000000 R09: 0000000000000000 [ 829.358938][T16476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 829.358952][T16476] R13: 00007f75f75e6038 R14: 00007f75f75e5fa0 R15: 00007fff025b99c8 [ 829.358975][T16476] [ 829.359219][T16476] Kernel Offset: disabled