last executing test programs: 9.105172145s ago: executing program 2 (id=3086): socket(0x11, 0x80003, 0x300) mmap$auto(0x0, 0x400008, 0x7, 0x9b72, 0x2, 0x8000) msgsnd$auto(0xfffffffc, 0x0, 0x1, 0x963) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r0, 0x8, 0x0) r1 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xfffffeff, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x2, 0x83, 0x101, 0x17f, 0x2}, {0xff, 0x1, 0x52, 0x5, 0x1, 0x40, 0x4, 0x8, 0x100000004}}) ioctl$auto_EVIOCGREP(r1, 0x80084503, &(0x7f0000000100)=[0x8, 0x6]) io_uring_setup$auto(0xd364, &(0x7f0000000000)={0x400, 0x10002, 0x7f, 0x7, 0x6, 0x5, r0, [], {0x2, 0x4, 0x6, 0x2, 0x40, 0x4, 0x7, 0x7, 0x80000000}, {0x7, 0x1ff, 0x80000001, 0x8, 0x6b, 0x9, 0x0, 0xfffffffa, 0xb1}}) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) write$auto(0xc8, 0x0, 0x40f6) unshare$auto(0x40000080) get_mempolicy$auto(0x0, 0x0, 0x7f, 0x4, 0x4800000000002) ioctl$auto(0xffffffffffffffff, 0x6f2d, 0xffffffffffffffff) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x1a6b75d63882a712, 0x0) openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/tracing/free_buffer\x00', 0x4c000, 0xebff) mmap$auto(0x200000000000, 0x2020009, 0x0, 0xeb1, 0xffffffffffffffff, 0x8000) openat$auto_tracing_thresh_fops_trace(0xffffffffffffff9c, 0x0, 0x46a041, 0x0) 7.889066878s ago: executing program 3 (id=3092): mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x1, 0x0) socket(0x1e, 0x4, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x154) userfaultfd$auto(0x1) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r0 = socket(0xa, 0x801, 0x84) socket(0xa, 0x3, 0x73) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1, 0x1, 0x1) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) io_uring_setup$auto(0x6, 0x0) r1 = socket(0xa, 0x2, 0x3a) io_uring_setup$auto(0x6, 0x0) r2 = socket(0xa, 0x2, 0x88) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r2, @new_prog_fd=r0, 0x4, @old_prog_fd=r1}, 0xa3) bpf$auto(0x3, &(0x7f0000000040)=@query={@target_ifindex, 0x4, 0x7, 0x9, 0x9, @prog_cnt=0x4, 0x0, 0x8, 0xc, 0xb, 0x5}, 0x7) 7.657789602s ago: executing program 3 (id=3094): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x2, 0x88) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socket(0xa, 0x3, 0x6) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) close_range$auto(0x2, r0, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0) r2 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x401f, 0x1, 0x8e051, r2, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0xffffffffffffffff, 0xae3d, 0xffffffffffffffff) ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x30, 0xff, 0x0, @raw=0xfffff030}}) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0) flistxattr$auto(0xffffffffffffffff, 0x0, 0x8) 7.556381629s ago: executing program 2 (id=3095): mmap$auto(0x2, 0x1, 0x6, 0x80000011, 0x2, 0x8000) read$auto(0x3, 0x0, 0x7) mmap$auto(0x0, 0x4020009, 0xdf, 0x40000eb1, 0x401, 0x8000) clone$auto(0x100000008, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x4000006) clone$auto(0x1, 0x1, 0x0, 0x0, 0x2) madvise$auto(0x0, 0x200007, 0x19) mmap$auto(0x4000000040000004, 0x8000000000000001, 0xdf, 0x20eb1, 0xffffffffffffffff, 0x108000) mmap$auto(0x0, 0x5, 0xfff, 0x44eb2, 0x10006, 0x300000000000) memfd_secret$auto(0xdfffffff) openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0) socket(0x29, 0x800, 0xffffffff) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x440000, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x1, 0x400005, 0xdf, 0x800000009b7e, 0x2, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0x15, 0xfffffffffffffffa, 0x8000) socket(0x10, 0x3, 0x6) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(r0, 0x0, 0x6a) write$auto(0x3, 0x0, 0xfdef) 7.182034066s ago: executing program 3 (id=3096): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0xc7f16bff2a10ba01, 0x0) r0 = open(0x0, 0x161342, 0x100) unshare$auto(0x40000080) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000007c0), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r1, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)={&(0x7f0000000f00)={0x14, r2, 0x705, 0x70bd25, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x880) openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000040), 0x2081, 0x0) sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(0xffffffffffffffff, &(0x7f0000003480)={0x0, 0x0, &(0x7f0000003440)={&(0x7f0000000180)={0x140, 0x0, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x128, 0x1, 0x0, 0x1, [@nested={0x124, 0x2f, 0x0, 0x1, [@generic, @nested={0x120, 0x126, 0x0, 0x1, [@typed={0x8, 0x123, 0x0, 0x0, @pid}, @generic, @typed={0x8, 0xdf, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x2e}}, @nested={0xf1, 0x8e, 0x0, 0x1, [@generic, @typed={0x8, 0x25, 0x0, 0x0, @fd}, @typed={0x4, 0x50}, @generic="f87b9416806f64201a21270c0a3ff7b336f58a7b0b9018d9560bfbec945affd5dac9331511c6a463d7751882550b5a973531d670d3b1fabd9be47f231020225ee5c38bbc151f79175b29ad35f552640060228b90ef7e72a5eb3b7cfe4e604e302772050613d65a1983c85d091fbfd199cd7ac46da186efa6a0664282478ee3a362fc98609d7df18cfd5580a36e94eaaff631d7edc5e37b304de9cc2fa44fa1e7c01884a61f368712fb1ccebda65ea228e863f2ce24305412cee7907118a7134d26f019072232c5778fa5ae86c2ffefe2d0fa0cc82a3e32a2fbdd8841b26f3a0f2c"]}, @typed={0xc, 0xec, 0x0, 0x0, @u64}, @nested={0x9, 0x56, 0x0, 0x1, [@generic="382fc93a8d"]}]}]}]}]}, 0x140}, 0x1, 0x0, 0x0, 0x40c4}, 0xc000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_UI_SET_EVBIT(r0, 0x40045564, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0xd5, 0x8, 0x4) madvise$auto(0x0, 0x2003f0, 0x15) ioperm$auto(0x7, 0x86, 0x9) r3 = openat$auto_set_tracer_fops_trace(0xffffffffffffff9c, 0x0, 0x40000, 0x0) dup2$auto(r3, r3) madvise$auto(0x0, 0x200007, 0x19) lseek$auto(0x3, 0x2, 0x4) socket(0x18, 0xa, 0x1) getsockname$auto(0x5, 0x0, 0x0) 6.942422098s ago: executing program 0 (id=3097): close_range$auto(0x2, 0x8, 0x0) socket(0x11, 0x3, 0x9) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0x6, 0x8000000008011, 0x3, 0x8000) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0xffffffffffffffff, 0x2) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101101, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x40000000000e983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, 0x0, 0x180, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x40000, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r0 = pipe$auto(0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22040, 0x75) socket(0x840000000002, 0x3, 0xff) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x14}, 0x3}, 0x55) ioctl$auto_XFS_IOC_ALLOCSP(r0, 0x4030580a, &(0x7f0000000040)={0x6, 0xa, 0x1, 0x78e0, 0x9, 0x0}) get_robust_list$auto(r1, 0x0, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x6c, 0x697f}, 0xed71390}, 0x9a6, 0xb04) 6.649292861s ago: executing program 1 (id=3098): socket(0xa, 0x3, 0x3a) r0 = socket(0x2c, 0x3, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x567) fcntl$auto_F_GETOWN(0xffffffffffffffff, 0x9, 0x5) sendmsg$auto_TIPC_NL_MON_SET(0xffffffffffffffff, 0x0, 0xc050) syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r0) sendmsg$auto_NL80211_CMD_NOTIFY_RADAR(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x2000091}, 0x28000011) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x1, 0x0) memfd_create$auto(0x0, 0x4) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000001800), 0x101101, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto(r1, 0x5459, 0x0) 6.119414193s ago: executing program 0 (id=3099): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r0, 0x4, 0x7ff) ptrace$auto_PTRACE_SET_THREAD_AREA(0x1a, r0, 0x3, 0x1) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000040)=ANY=[@ANYRES16=0x0, @ANYBLOB="04002bbd7000ffdbdf250500000008000500030000000c0001800800030008"], 0x28}, 0x1, 0x0, 0x0, 0x278e18a297a8387c}, 0x24000802) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) socket(0xa, 0x5, 0x0) socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000426bd7000fddbdf250300000004000800040003374b0008"], 0x20}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="db002cbd7000fbdbdf250a"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) openat$auto_rfcomm_sock_debugfs_fops_(0xffffffffffffff9c, 0x0, 0x40040, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) socket(0x11, 0x80003, 0x300) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_TIOCGPTPEER2(0xffffffffffffffff, 0x5441, 0x0) 5.629233626s ago: executing program 0 (id=3100): r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x80802, 0x0) ioctl$auto(r0, 0x800064be, 0x1e6) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) io_uring_setup$auto(0x6, 0x0) bpf$auto(0x5, &(0x7f00000001c0)=@bpf_attr_7={@prog_id=0xc, 0x92f1, 0x4}, 0xa) r1 = bpf$auto(0x1, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex, 0x1da12b45, 0x8, @netfilter={0xc28, 0x581, 0x0, 0x5}}, 0x6f3) ioctl$auto_SNDRV_RAWMIDI_IOCTL_STATUS64(r1, 0xc0385720, &(0x7f0000000000)={0x158, "c524043f", 0x670b, 0x4, 0x1005, 0x2, "a7ced312122721d9bdc8d527758ddc30"}) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/net/rpc/nfs\x00', 0x52ddc0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020011, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) r3 = open(0x0, 0xcd1e23e41b02d660, 0x154) execveat$auto(r3, &(0x7f0000000200)='\x00', 0x0, 0x0, 0x11000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/memory/memory3/online\x00', 0x2062, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000180)=""/132, 0x84) openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/dri/vkms/internal_clients\x00', 0x10000, 0x0) openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) acct$auto(&(0x7f0000002380)='/sys/kernel/debug/dri/vkms/crtc-0/crc/data\x00') 5.256140679s ago: executing program 3 (id=3101): r0 = open(&(0x7f0000000140)='./file0\x00', 0x161342, 0x100) write$auto(r0, &(0x7f0000000000)='}\x00', 0x5) unshare$auto(0x40000080) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000007c0), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r1, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)={&(0x7f0000000f00)={0x14, r2, 0x705, 0x70bd25, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x880) r3 = openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000e00)='/sys/kernel/debug/kvm/halt_attempted_poll\x00', 0xc42, 0x0) flistxattr$auto(r3, 0x0, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000080), 0xffffffffffffffff) r5 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000040), 0x2081, 0x0) ioctl$auto_USB_RAW_IOCTL_EP_WRITE(r5, 0x40085507, &(0x7f0000000080)={0x1, 0x0, 0x9}) semctl$auto_GETVAL(0x0, 0x1, 0xc, 0x10000) madvise$auto(0x0, 0x8, 0x6) ioctl$auto_XFS_IOC_PATH_TO_FSHANDLE(r0, 0xc0385868, &(0x7f0000000100)={r4, &(0x7f0000001400)="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", 0xfffff596, 0x0, 0x5, &(0x7f0000000240)="e98d4fdb7ddab4e567ef3519ef0a3819d29b44a27fdaf919278950455925e516a151d3d40301ba963cd5cb744a39f2f9029d5ad58d1736a6344ec5ba7bd8c2bafa4d1baeb19336ed4994be3649d8df129bbdfd74a14bba07cfdcd92ac00916b1b5d240000946cd793aba9ea2ce11bc53a7e4dbb10de9d4ca0b8879d480dfc68f9ec73eb55f2368b108a9a4ad4d29", &(0x7f00000000c0)=0x3}) sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(r4, &(0x7f0000003480)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40c4}, 0xc000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f0, 0x15) lseek$auto(0x3, 0x2, 0x4) 5.25334885s ago: executing program 2 (id=3109): socketcall$auto_SYS_BIND(0x2, &(0x7f0000000000)=0x1) setrlimit$auto(0x2, &(0x7f0000000040)={0x0, 0x20000000000006}) close_range$auto(0x2, 0xa, 0x0) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/keys\x00', 0x1c9802, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS3\x00', 0x22202, 0x0) write$auto_tty_fops_tty_io(r0, 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x22ac2, 0x5d745cb200ae4d7b) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x3a) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) r1 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) write$auto(r1, &(0x7f0000000000)='-\x00', 0xfdef) mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000) r2 = openat$auto_ctl_device_fops_user(0xffffffffffffff9c, &(0x7f0000000100), 0x20082, 0x0) write$auto_ctl_device_fops_user(r2, &(0x7f0000000340)="a504ff4c280e43904055ceb3bc98cf2af453126b06d1f8b678ad4700b35e33bf24e0c6269dd4", 0x26) 4.905155405s ago: executing program 0 (id=3102): mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyw5\x00', 0x28341, 0x0) ioctl$auto_TIOCMGET2(r1, 0x5415, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000400)='/dev/amidi2\x00', 0x201, 0x0) ioctl$auto_SNDRV_RAWMIDI_IOCTL_STATUS64(r2, 0xc0385720, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(0xffffffffffffffff, 0x0, 0x4000080) mknod$auto(&(0x7f0000000080)=':,\x00', 0xcb, 0xfffffffd) execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0) mknod$auto(&(0x7f0000000280)='X))\x00', 0x63c5, 0x7bf) mknod$auto(&(0x7f0000000340)='\xe1\x9eHU\x00', 0x63c1, 0x7fc) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/workqueue/nf_ft_offload_add/power/runtime_active_time\x00', 0x20042, 0x0) openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x66ab80, 0x0) r3 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x101000, 0x0) ioctl$auto_UI_SET_EVBIT(r3, 0x40045564, 0x0) unshare$auto(0x40000080) ioctl$auto_IOCTL_VMCI_DATAGRAM_SEND(r0, 0x7ab, 0x0) close_range$auto(0x2, 0x8, 0x0) 4.833230259s ago: executing program 1 (id=3103): socket$nl_generic(0x10, 0x3, 0x10) sysfs$auto(0x2, 0x100000000000027, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x2, 0x0) r0 = socket(0x848000000015, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0xfe}}, 0x6b) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0xff, 0x0}}, 0x55) sendmsg$auto_NL80211_CMD_GET_MPATH(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x20004000}, 0x100000) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) capget$auto(&(0x7f00000000c0)={0x20071026, 0xffffffffffffffff}, 0x0) epoll_ctl$auto(0xffffffffffffffff, 0x1, 0x8000000000000000, 0x0) io_uring_setup$auto(0x1, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS2\x00', 0x101f81, 0x0) openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000000), 0x490003, 0x0) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) ioctl$auto_TIOCVHANGUP2(r1, 0x5437, 0x0) 4.749390901s ago: executing program 2 (id=3104): r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x8000000000000000, 0x15) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL802154_CMD_ASSOCIATE(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000040)={0x0, 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0x24040000) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20942, 0x0) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r1, 0x40045010, &(0x7f0000000040)) gettid() write$auto_snd_pcm_oss_f_reg_pcm_oss(r1, &(0x7f0000000080)="c2", 0x1) ioctl$auto_SNDCTL_DSP_SYNC(r1, 0x5001, 0xfffffffffffffffc) madvise$auto(0x0, 0x2000000080000001, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) io_uring_setup$auto(0x1, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) semctl$auto_GETPID(0xb3fb, 0x1, 0xb, 0x400) 3.892013927s ago: executing program 3 (id=3105): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000080), r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) mknod$auto(&(0x7f00000003c0)='./file0\x00', 0x8f4d, 0x9) mount$auto(&(0x7f0000000000)='veth0_macvtap\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, 0x0) syz_genetlink_get_family_id$auto_ovs_meter(0x0, 0xffffffffffffffff) sendmsg$auto_OVS_METER_CMD_SET(r2, 0x0, 0x80) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), r3) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x14, r4, 0x1, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x41}, 0x4004040) sendmsg$auto_WG_CMD_GET_DEVICE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x14, r1, 0x703, 0x70bd27, 0x25dfd9fc}, 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x4) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_MON_PEER_GET(0xffffffffffffffff, 0x0, 0x4c848) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, 0x0) sendmsg$auto_NET_SHAPER_CMD_GROUP(r5, 0x0, 0x14) r6 = pipe$auto(0x0) write$auto(r6, 0x0, 0x109) unshare$auto(0x40000080) read$auto_tracing_iter_fops_trace(0xffffffffffffffff, 0x0, 0x0) ioctl$auto_USBDEVFS_SUBMITURB32(0xffffffffffffffff, 0x802c550a, 0x0) 3.89074008s ago: executing program 1 (id=3114): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r2 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x20001, 0x0) ppoll$auto(&(0x7f00000000c0)={r2, 0x0, 0x8}, 0xf7, &(0x7f0000000100)={0x80000000008000, 0x1}, 0x0, 0x8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x44, 0x0) r4 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) r5 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0) ioctl$auto_RNDADDTOENTCNT2(r5, 0x40045201, &(0x7f0000000280)=0x3) ioctl$auto_IOCTL_VMCI_VERSION2(r4, 0x7a7, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000980), r6) sendmsg$auto_TIPC_NL_MEDIA_SET(r6, &(0x7f000000a4c0)={0x0, 0x0, &(0x7f000000a480)={&(0x7f0000009800)={0x18, r7, 0x1, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000}, 0x20000048) syz_genetlink_get_family_id$auto_net_dm(&(0x7f0000000280), r1) sendmsg$auto_NET_DM_CMD_CONFIG_GET(r3, 0x0, 0x0) read$auto(r4, &(0x7f0000000000)='/sys/kernel/debug/sync/sw_sync\x00', 0x2) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r4, 0x7a0, 0x6) ioctl$auto_IOCTL_VMCI_SET_NOTIFY(r4, 0x7cb, 0x0) r8 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r8, &(0x7f0000000e00)="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", 0x5fc) 2.801443606s ago: executing program 1 (id=3106): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x8, 0x2020009, 0x3, 0x216, r0, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x5, 0x4000000000e2, 0xeb1, 0x401, 0x8000) ioctl$auto(0xffffffffffffffff, 0xc0045405, 0x3) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0xc02, 0x0) unshare$auto(0x20000) unshare$auto(0x20000) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) mkdir$auto(&(0x7f00000002c0)='./file0\x00', 0x3) mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x9) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1/file0\x00', 0x101040, 0x149) getxattrat$auto(r1, &(0x7f0000000300)='./file0\x00', 0xeb, &(0x7f0000000340)='/sys/kernel/debug/check_wx_pages\x00', 0x0, 0xffffffff) mmap$auto(0x200, 0x400008, 0x200, 0x9b72, 0xffffffffffffffff, 0x6) r2 = openat$auto_check_wx_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x400, 0x0) read$auto_check_wx_fops_(r2, &(0x7f0000000080)=""/228, 0xe4) 2.755822066s ago: executing program 2 (id=3107): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xffffffffffffffff, 0x2) socket$nl_generic(0x10, 0x3, 0x10) open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x2, 0x1) socket(0x10, 0x2, 0x0) socket(0x2c, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x100) socket(0xa, 0x801, 0x84) socket(0x10, 0x2, 0x0) socket(0x10, 0x2, 0x0) socket(0xa, 0x801, 0x84) socket(0xa, 0x2, 0x3a) io_uring_setup$auto(0x6, 0x0) r0 = socket(0xa, 0x2, 0x88) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r0, @new_prog_fd=0x4, 0x8, @old_prog_fd=r0}, 0xa3) bpf$auto(0x1, &(0x7f0000000040)=@query={@target_ifindex, 0xff, 0xffffff01, 0x9, 0x6, @count=0xfffffff1, 0x0, 0x80000000, 0xc, 0x0, 0x7}, 0x9) 2.359450855s ago: executing program 2 (id=3108): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) ioctl$auto(0xffffffffffffffff, 0x8912, 0x38) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x8000) ustat$auto(0x801, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x40}, 0x8) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0xff1, 0x8000) io_uring_setup$auto(0x1, 0x0) bpf$auto(0x5, 0x0, 0x102) getpid() r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/graphics/fbcon/cursor_blink\x00', 0xa001, 0x0) write$auto(r2, &(0x7f0000000140)='7\x81=\"\xad\xff\x8d\xf9P\x18\xa4\xb0\xb4\xd9\x82=\xe1P\x05\x00\xfb&\xe8\xbf\x901\a2\xa2X`\a\xf1y\xb3\"=', 0xd4d0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000164c0), 0xffffffffffffffff) read$auto(r1, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0xffd8) 2.118504112s ago: executing program 0 (id=3110): close_range$auto(0x2, 0x8, 0x0) open(&(0x7f0000000080)='./file1\x00', 0x54ddc2, 0x3c) socket(0xa, 0x1, 0x84) socket(0x2, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa02, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_CARD_INFO(r0, 0x81785501, &(0x7f0000000500)={0x0, 0x0, "a68a78cddb9af7ac4c80865002a0d2e3", "213ea76652ad28e8b96ec5ed5243aea3", "25222c3aac25ccff5de7b81eefde747e7674da7f6154e6bcf81ec7dadaa3b485", "12f251f2492bb43c598ef0237d522cb86954c0763131c2f67eaa6356799448a9576c948fc3fb995daec2f1fc9170a70b4b71b44f04809f3ca99cb9b4e9d3abb67d33f3d3fe57d0289938f4ce01d60bfd", "e9e7f824968ee78f73dc2749d12c7e05", "402beaf8e2dfaba5303a6efa74256963183267b80c0b5a1f17a2c919b4c43dc3817ea4719a3e48cdb8c3e9873ecfe260f627c94bc35f96d615979b05547405d7e633a060cdb0fc80f9562c947ed257fd", "5c84948d2c357792b0c4be9a3a15ecfee836d93ae475d2bc8193e8ac53c0494bf16e9a6d85fa65416177e39fac9de9d4869f6e9602c6f01a500ba2ba3d5fef158c908f502afdfe316cf3ac63f1f4842ec3c180d103084776592ff9e4a66125f8f285cabc67891f381c9bcc345f41ee4f2d7f4bffb05d58b0377a76a50de67bb8"}) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\x84q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa24X@\xadD\xf8\x9d\xf3 \xd2]\xc4\x13G\x1d\x04!\xc1\xeb.e$\xfb\xa3KU\xcf\xc1\x7fFD\x99\xf5v\v\x9dS\xc11P\xa3\xe9\xb0SqL\x85\xea\xb2\x9cY\x83.I\xca\x92\x1c\xc4\x13CV=\x92\x17c\x87iOt\x14On\x15=\v\xf0 \xc5\x8b~\xd6\xd4\xc7\xa3a\x1c\x06\x17\xb3\x88\x8c\xf1L\xba\x89a\xfd\xa5\xc6\x7fU\x00\xe5\x9b', 0x5) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x8f3b7a51b8162d21, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x2, 0x0) pwritev$auto(r2, &(0x7f0000000100)={&(0x7f00000001c0)="32a75f7ee8e53ba7d1b0a34ef90501baf29f55cea8394bd1b7a9b0c514e352fd26824e64cf9c995fc6cc459f4efac078b90620cc7a38bdad356788c9770a6708781d705101005281af3a", 0xe001}, 0x2000000003, 0xe, 0x3) fchdir$auto(r1) mount$auto(0x0, &(0x7f00000000c0)='.\x00', 0x0, 0xdef, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0xffffffffffffffff, 0x8000) r3 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) getdents64$auto(r3, 0x0, 0x40002) getdents64$auto(r3, 0x0, 0x400) 1.83504256s ago: executing program 3 (id=3111): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x1, 0x20009, 0x8, 0xeb1, 0x7f, 0x8000) rseq$auto(0x0, 0xfffffff5, 0x0, 0x5) mmap$auto(0x0, 0x40009, 0x7, 0x9b72, 0x7, 0x28000) r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) readv$auto(0x3, &(0x7f0000000600)={0x0, 0x4}, 0x1da) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x40401, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0x4010ae67, 0x38) ioctl$auto_XFS_IOC_FSCOUNTS(r0, 0x80205871, &(0x7f0000000040)={0x2, 0x0, 0x8001, 0x6}) openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) 1.712333286s ago: executing program 0 (id=3112): mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000) write$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x0) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/net/tcp\x00', 0x181800, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto_PR_SET_NAME(0xf, 0x3, 0x0, 0x7ff, 0x2) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) r1 = ioctl$auto_userfaultfd_dev_fops_userfaultfd(r0, 0xfffffffffffffff8, &(0x7f0000000340)) capset$auto(&(0x7f0000000180)={0x19980330}, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r2, 0x4b37, 0x1) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) pipe$auto(0x0) write$auto(0x3, 0x0, 0xffd8) pread64$auto(r1, &(0x7f0000000340)='/proc/thread-sel\b\x94!\ff/net/tcp6\x00\xd2)\x0e\x892\x82\x19\xfd\x03\xc3\x8du4\xdd\t\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\x01I3\x88;x\xe9\xdbk{F\x18G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90~Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\x97\fn\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\x00\x0f\xd6\x00\f57\x83\xdd\xaa\xf0\x9c\b\x00\xe1\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00t\xf5+\t\xf0^X\xf3y&\xc7]\xcb\xef\xd6\xe4\a|\x87\xe6\xb68//1@\a.t\xac\xc6\xf54\x90\x196\x9c#6\xf8\x06\xf9\x04\xc3\x13c\x12v\x9a_o\xfe\xf0\xca\xee\x90\xbb3\xa8\xc8\xad\xab\xe9\xc7v\xd57\xb1\x04QN\x15O;\xc4\x0e\x10\xd1\x1e\x80\t]/l\x1f\xca\xf5W5}\x12%\x86\x88 \x1a{\xce\x8c\x9e3\x8fa\xcf\a\x06\xff\x1e\xcb[\xf5]\xd8\xbf2\xc38\xbd', 0x458, 0x1) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), 0xffffffffffffffff) pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5\x85\x91p\xe6\x1eRN8\x90\x86\xdde\x1cJ\x99\x00\x11\x89\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfdef, 0x3) mq_notify$auto(0xffffffffffffffff, &(0x7f0000000180)={@sival_int=0xc7, @raw=0x8, 0x790, @_tid}) socket(0xa, 0x4, 0x84) clock_nanosleep$auto(0x5, 0x1ff, &(0x7f0000000000)={0x7, 0x8}, &(0x7f0000000040)={0x7, 0x7}) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) 1.666682835s ago: executing program 1 (id=3113): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) setfsuid$auto(0xee01) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) capset$auto(0x0, 0x0) readv$auto(0x3, 0x0, 0x10) r1 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0x154) fcntl$auto(r1, 0x400, 0x1) socket(0xa, 0x5, 0x2) fcntl$auto(0x3, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0) prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x1ff, 0x1000, 0x2beb80, 0x8001) fcntl$auto(0x3, 0x400, 0x9ec0000000000000) mmap$auto(0x0, 0x10000, 0xde, 0x11, 0xffffffffffffffff, 0x28000) mmap$auto(0x0, 0x890006, 0x3ff, 0x8000000008012, r0, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) 0s ago: executing program 1 (id=3115): mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd12/queue/nr_requests\x00', 0x129102, 0x0) read$auto(r0, 0x0, 0x18) bpf$auto(0x5, &(0x7f0000000300)=@bpf_attr_3={0x1c, 0x24, 0xf, 0x63, 0x400, 0x0, 0xffffffffffffffff, 0x80f0c8, 0x60, "38c1d5cbcb9f6b5e511f0cd8ed068f65", 0x0, 0x113e33f2, 0xffffffffffffffff, 0xe4, 0x6, 0x5, 0x6, 0x8, 0x0, 0x3, @attach_prog_fd, 0x6, 0xffff, 0x8, 0x4, 0xfffffffe}, 0x47) write$auto(r0, 0x0, 0xfdef) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), r4) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_GET_HARDIF(r3, &(0x7f0000000980)={0x0, 0xf000, &(0x7f0000000940)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="f38327b97000fedbdf250500000008000300", @ANYRES32=r6], 0x1c}}, 0x4008000) openat$auto_show_traces_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/available_tracers\x00', 0x80000, 0x0) sendmsg$auto_BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x20, r5, 0x400, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_NEIGH_ADDRESS={0xa}]}, 0x20}, 0x1, 0x0, 0x0, 0xc840}, 0x810) mmap$auto(0x0, 0x853, 0x2000000000000002, 0xeb1, 0xffffffffffffffff, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/advisor_target_scan_time\x00', 0x201, 0x0) r7 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/bridge0/rpl_seg_enabled\x00', 0x0, 0x0) read$auto(r7, 0x0, 0x1ff) write$auto(0x3, 0x0, 0xfdef) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)={0x198, r2, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@HWSIM_ATTR_FREQ={0x8, 0x13, 0x8001}, @HWSIM_ATTR_RADIO_ID={0x8, 0xa, 0x1}, @HWSIM_ATTR_PMSR_RESULT={0x174, 0x1c, 0x0, 0x1, [@NL80211_PMSR_ATTR_PEERS={0xa4, 0x5, 0x0, 0x1, [{0x98, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0x2b, 0x1, "5328e4e303face040befd2101c9902e885387a74c032fe19e533a9e018880e4967b029badea425"}, @NL80211_PMSR_PEER_ATTR_ADDR={0x66, 0x1, "6b074ccd6dcf3891b543b8004df8a752d9e2a1f0729e6681abe3905ce26957e840379d8c6fad9e9377379fd47c7f3467de1d0e6ae268b1947cc424e5e2702f05de674da3bd353a9b75b718ca14a40df6c9f813f017212cd32804fad90d3dc0c69c87"}]}, {0x4}, {0x4}]}, @NL80211_PMSR_ATTR_PEERS={0xcc, 0x5, 0x0, 0x1, [{0xc4, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_RESP={0x14, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x1}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x58}]}, @NL80211_PMSR_PEER_ATTR_RESP={0x20, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x3}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x4}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0x12, 0x1, "6322bf29ecfb51b1a73e64f32ae1"}, @NL80211_PMSR_PEER_ATTR_ADDR={0x77, 0x1, "e1dd4048295dc03b183afb62e622b74c5f147e58570f8393edb697aa593e398ed0e6b6b5365a684c95c837bd1a5e02a235a6e041a5f0aaf17cde10dc3b625bc5c66dfe60a308866a7ca23170224a3e96901aba5943143fea45a3afdc3de927402ff95401d8eeed7759743750802a752aee776b"}]}, {0x4}]}]}]}, 0x198}, 0x1, 0x0, 0x0, 0x24040000}, 0x8018880) getdents$auto(r1, &(0x7f0000000040)={0xa995, 0x4, 0x7, "b52c3f86d951df0ee5449475b123ae22c84749d59fe0ab9093c7a48a152c4b1e946223ea3b62882a882638af3a97517d78e9f1e75b1f57e255251bc5096ca5e20da49daa51ac2e6a77bb96c1906dd8eab55da95f8575455549b597091b5634a4ab77d1bfab2671ee61ca4539174ac5b7d34d9f530fa84063c6c69747f28b3b21e4e85f08e271748f663568e65c7816f1bde756c70cf683360dc71d9a7c11b9324556d9e579a6e60d7fbb1b4519add96d57dae655ec2cd253bc"}, 0x4) kernel console output (not intermixed with test programs): 0x10 [ 580.704287][T20997] __do_sys_clone+0xce/0x120 [ 580.704306][T20997] ? __pfx___do_sys_clone+0x10/0x10 [ 580.704335][T20997] ? xfd_validate_state+0x61/0x180 [ 580.704355][T20997] do_syscall_64+0xcd/0x4b0 [ 580.704374][T20997] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 580.704389][T20997] RIP: 0033:0x7faa2dd8eec9 [ 580.704402][T20997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 580.704416][T20997] RSP: 002b:00007faa2bff5fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 580.704431][T20997] RAX: ffffffffffffffda RBX: 00007faa2dfe6090 RCX: 00007faa2dd8eec9 [ 580.704441][T20997] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020a08200 [ 580.704450][T20997] RBP: 00007faa2de11f91 R08: 0000000000000000 R09: 0000000000000000 [ 580.704460][T20997] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 580.704470][T20997] R13: 00007faa2dfe6128 R14: 00007faa2dfe6090 R15: 00007fff66dbd5c8 [ 580.704491][T20997] [ 581.169083][ T1206] usb usb38-port5: attempt power cycle [ 581.319969][T21032] netlink: 'syz.2.2102': attribute type 1 has an invalid length. [ 581.803973][ T1206] usb usb38-port5: unable to enumerate USB device [ 581.820939][T20978] vhci_hcd: default hub control req: 1f00 v0000 i0000 l0 [ 584.496760][T21200] __vm_enough_memory: pid: 21200, comm: syz.1.2112, bytes: 4398046511104 not enough memory for the allocation [ 588.146097][T21312] Falling back ldisc for pty66. [ 590.011338][T21416] FAULT_INJECTION: forcing a failure. [ 590.011338][T21416] name failslab, interval 1, probability 0, space 0, times 0 [ 590.136614][T21416] CPU: 1 UID: 0 PID: 21416 Comm: syz.3.2127 Not tainted syzkaller #0 PREEMPT(full) [ 590.136637][T21416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 590.136647][T21416] Call Trace: [ 590.136652][T21416] [ 590.136659][T21416] dump_stack_lvl+0x16c/0x1f0 [ 590.136683][T21416] should_fail_ex+0x512/0x640 [ 590.136703][T21416] ? fs_reclaim_acquire+0xae/0x150 [ 590.136726][T21416] should_failslab+0xc2/0x120 [ 590.136746][T21416] kmem_cache_alloc_noprof+0x75/0x6e0 [ 590.136762][T21416] ? ima_inode_get+0x120/0x580 [ 590.136790][T21416] ? ima_inode_get+0x120/0x580 [ 590.136808][T21416] ima_inode_get+0x120/0x580 [ 590.136829][T21416] process_measurement+0x585/0x23e0 [ 590.136852][T21416] ? __lock_acquire+0x62e/0x1ce0 [ 590.136874][T21416] ? __pfx_process_measurement+0x10/0x10 [ 590.136894][T21416] ? __kasan_slab_alloc+0x89/0x90 [ 590.136912][T21416] ? security_file_alloc+0x34/0x2b0 [ 590.136927][T21416] ? alloc_empty_file+0x73/0x1e0 [ 590.136947][T21416] ? alloc_file_pseudo+0x13a/0x230 [ 590.136978][T21416] ? find_held_lock+0x2b/0x80 [ 590.137019][T21416] ima_file_mmap+0x1b1/0x1d0 [ 590.137039][T21416] ? __pfx_ima_file_mmap+0x10/0x10 [ 590.137064][T21416] security_mmap_file+0x88c/0x990 [ 590.137080][T21416] vm_mmap_pgoff+0xec/0x470 [ 590.137102][T21416] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 590.137120][T21416] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 590.137141][T21416] ? hugetlbfs_get_inode+0x31f/0x730 [ 590.137164][T21416] ksys_mmap_pgoff+0x1c8/0x5c0 [ 590.137186][T21416] __x64_sys_mmap+0x125/0x190 [ 590.137203][T21416] do_syscall_64+0xcd/0x4b0 [ 590.137222][T21416] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 590.137237][T21416] RIP: 0033:0x7ff0f298eec9 [ 590.137250][T21416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 590.137263][T21416] RSP: 002b:00007ff0f0bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 590.137277][T21416] RAX: ffffffffffffffda RBX: 00007ff0f2be5fa0 RCX: 00007ff0f298eec9 [ 590.137287][T21416] RDX: 0000000000009c0f RSI: 000000000000000c RDI: 0000000000000000 [ 590.137295][T21416] RBP: 00007ff0f2a11f91 R08: 0000000000010006 R09: 0000300000000000 [ 590.137304][T21416] R10: 0000000000044eb2 R11: 0000000000000246 R12: 0000000000000000 [ 590.137313][T21416] R13: 00007ff0f2be6038 R14: 00007ff0f2be5fa0 R15: 00007ffde38188a8 [ 590.137331][T21416] [ 592.044379][T21512] i2c i2c-0: new_device: Extra parameters [ 592.444010][T21524] loop6: detected capacity change from 8 to 0 [ 592.498164][T21517] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 592.580136][T21517] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 592.657666][ C1] sd 0:0:1:0: [sda] tag#2819 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 592.668105][ C1] sd 0:0:1:0: [sda] tag#2819 CDB: Write(6) 0a 00 00 00 0b 00 00 00 00 00 00 00 [ 592.702052][T21517] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 592.756342][T21517] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 592.858147][T21517] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 592.880573][T21517] CPU0 is offline. [ 594.563378][T15223] Bluetooth: hci0: command 0x0c1a tx timeout [ 594.610757][T21584] Process accounting resumed [ 594.724010][T15223] Bluetooth: hci1: command 0x0c1a tx timeout [ 594.885614][T15223] Bluetooth: hci3: command 0x0c1a tx timeout [ 595.242470][T21645] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2153'. [ 595.341127][T21654] netlink: 93 bytes leftover after parsing attributes in process `syz.1.2153'. [ 596.126766][T21682] can0: slcan on ttyS2. [ 596.461739][T21682] can0 (unregistered): slcan off ttyS2. [ 596.593823][T21698] can0: slcan on ttyS2. [ 596.643481][T15223] Bluetooth: hci0: command 0x0c1a tx timeout [ 596.804111][T15223] Bluetooth: hci1: command 0x0c1a tx timeout [ 597.852809][T21694] can0 (unregistered): slcan off ttyS2. [ 599.889279][T21776] EXT4-fs (sda1): Delayed block allocation failed for inode 2033 at logical offset 1380 with max blocks 23 with error 117 [ 600.067308][T21776] EXT4-fs (sda1): This should not happen!! Data will be lost [ 600.067308][T21776] [ 600.985040][T21834] Invalid ELF header magic: != ELF [ 601.425620][T21834] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2166'. [ 601.726227][T21864] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2173'. [ 601.816878][T21864] hsr_slave_0: left promiscuous mode [ 601.851296][T21864] hsr_slave_1: left promiscuous mode [ 601.919616][T21874] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input28 [ 601.989913][T21876] ima: policy update failed [ 602.035863][ T30] audit: type=1802 audit(4294967301.230:33): pid=21876 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.2176" res=0 errno=0 [ 602.057049][T21876] netlink: 25 bytes leftover after parsing attributes in process `syz.1.2176'. [ 602.256715][ T5925] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1417 with max blocks 4 with error 117 [ 602.308203][T21881] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2175'. [ 602.332645][T21896] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2178'. [ 602.355730][ T5925] EXT4-fs (sda1): This should not happen!! Data will be lost [ 602.355730][ T5925] [ 602.401733][ T5925] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:8: bg 2: bad block bitmap checksum [ 602.468845][T21879] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input29 [ 602.483848][ T5925] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 1350 with max blocks 38 with error 74 [ 602.530095][ T5925] EXT4-fs (sda1): This should not happen!! Data will be lost [ 602.530095][ T5925] [ 602.597498][ T5925] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1363 with max blocks 23 with error 117 [ 602.633921][T21901] Falling back ldisc for pty66. [ 602.667187][ T5925] EXT4-fs (sda1): This should not happen!! Data will be lost [ 602.667187][ T5925] [ 603.729324][T21963] i2c i2c-0: new_device: Extra parameters [ 604.519179][T21991] netlink: 'syz.3.2187': attribute type 1 has an invalid length. [ 605.391521][T22038] random: crng reseeded on system resumption [ 606.486330][T22058] EXT4-fs (sda1): Delayed block allocation failed for inode 2026 at logical offset 3 with max blocks 2 with error 117 [ 606.655079][T22058] EXT4-fs (sda1): This should not happen!! Data will be lost [ 606.655079][T22058] [ 607.001295][T22070] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input30 [ 607.395058][T22072] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(10) [ 607.782603][T22135] netlink: 'syz.1.2198': attribute type 1 has an invalid length. [ 608.959099][T22139] bond0: option all_slaves_active: invalid value () [ 609.184461][T22188] ICMPv6: process `syz.2.2205' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 612.672198][T22360] ima: policy update failed [ 612.696265][ T30] audit: type=1802 audit(4294967311.899:34): pid=22360 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.2218" res=0 errno=0 [ 612.720416][T22360] netlink: 25 bytes leftover after parsing attributes in process `syz.2.2218'. [ 612.880919][T22369] netlink: 25 bytes leftover after parsing attributes in process `syz.3.2219'. [ 614.724711][T22427] netlink: 306 bytes leftover after parsing attributes in process `syz.1.2228'. [ 614.774607][T22427] netlink: 350 bytes leftover after parsing attributes in process `syz.1.2228'. [ 614.810716][T22421] sp0: Synchronizing with TNC [ 614.851370][T22424] sp0: Found TNC [ 615.088450][T22438] Invalid ELF header magic: != ELF [ 615.145607][T22437] delete_channel: no stack [ 617.201762][T22537] can0: slcan on ptm0. [ 617.314479][T22536] can0 (unregistered): slcan off ptm0. [ 618.676886][T22587] netlink: 268 bytes leftover after parsing attributes in process `syz.3.2246'. [ 618.898228][T22587] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.2246: iget: checksum invalid [ 619.043610][T22587] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 619.122892][T22587] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.2246: iget: checksum invalid [ 619.249297][T22587] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 619.371918][T22587] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.2246: iget: checksum invalid [ 619.450153][T22587] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 619.515959][T22587] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.2246: iget: checksum invalid [ 619.556897][T22587] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 619.604754][T22587] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 619.654295][T22587] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 620.357391][T22651] i2c i2c-0: new_device: Extra parameters [ 622.845837][T22752] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2263'. [ 623.247177][T22760] bond0: option all_slaves_active: invalid value () [ 624.030724][T22744] kexec: Could not allocate control_code_buffer [ 624.492480][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.498874][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 624.938453][T22811] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2269'. [ 624.991932][T22813] netlink: 354 bytes leftover after parsing attributes in process `syz.0.2269'. [ 625.248979][T22796] Process accounting paused [ 625.436481][T22823] : Can't lookup blockdev [ 625.537478][ T30] audit: type=1800 audit(4294967324.739:35): pid=22827 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2271" name="features" dev="configfs" ino=58725 res=0 errno=0 [ 626.365540][T22840] i2c i2c-0: new_device: Extra parameters [ 627.327017][T22866] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(10) [ 629.129554][T22905] program syz.3.2283 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 629.702487][T22915] zswap: compressor not available [ 630.371093][T22977] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2288'. [ 630.422020][T22977] netlink: 'syz.0.2288': attribute type 1 has an invalid length. [ 630.453431][T22977] netlink: 'syz.0.2288': attribute type 6 has an invalid length. [ 632.817030][ T30] audit: type=1800 audit(4294967332.019:36): pid=23151 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2299" name="discovery_nqn" dev="configfs" ino=59423 res=0 errno=0 [ 632.929111][T23155] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2301'. [ 632.986402][T23159] netlink: 354 bytes leftover after parsing attributes in process `syz.3.2301'. [ 633.362982][ T51] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1417 with max blocks 4 with error 117 [ 633.406943][T23163] can0: slcan on pty233. [ 633.466547][ T51] EXT4-fs (sda1): This should not happen!! Data will be lost [ 633.466547][ T51] [ 633.539193][ T5909] usb usb38-port5: attempt power cycle [ 634.129979][T23152] can0 (unregistered): slcan off pty233. [ 634.165073][ T5909] usb usb38-port5: unable to enumerate USB device [ 634.934578][T23164] kexec: Could not allocate control_code_buffer [ 635.026420][T23191] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1382 with max blocks 35 with error 117 [ 635.429195][T23191] EXT4-fs (sda1): This should not happen!! Data will be lost [ 635.429195][T23191] [ 636.923001][T23216] kexec: Could not allocate control_code_buffer [ 637.641514][T15223] Bluetooth: hci0: unexpected subevent 0x12 length: 123 > 5 [ 638.406236][ T5909] usb usb38-port5: attempt power cycle [ 639.004575][ T5909] usb usb38-port5: unable to enumerate USB device [ 639.673566][T23312] FAULT_INJECTION: forcing a failure. [ 639.673566][T23312] name failslab, interval 1, probability 0, space 0, times 0 [ 639.737763][T23312] CPU: 1 UID: 0 PID: 23312 Comm: syz.2.2318 Not tainted syzkaller #0 PREEMPT(full) [ 639.737785][T23312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 639.737795][T23312] Call Trace: [ 639.737801][T23312] [ 639.737808][T23312] dump_stack_lvl+0x16c/0x1f0 [ 639.737838][T23312] should_fail_ex+0x512/0x640 [ 639.737860][T23312] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 639.737880][T23312] should_failslab+0xc2/0x120 [ 639.737902][T23312] kmem_cache_alloc_noprof+0x75/0x6e0 [ 639.737918][T23312] ? __proc_create+0x2ce/0x8e0 [ 639.737943][T23312] ? __proc_create+0x2ce/0x8e0 [ 639.737962][T23312] __proc_create+0x2ce/0x8e0 [ 639.737984][T23312] ? __pfx___proc_create+0x10/0x10 [ 639.738008][T23312] ? _raw_write_unlock+0x28/0x50 [ 639.738025][T23312] ? proc_register+0x559/0x8b0 [ 639.738048][T23312] proc_create_reg+0x7d/0x180 [ 639.738062][T23312] ? __pfx_can_rcvlist_proc_show+0x10/0x10 [ 639.738082][T23312] proc_create_net_single+0x86/0x180 [ 639.738104][T23312] ? __pfx_proc_create_net_single+0x10/0x10 [ 639.738132][T23312] can_init_proc+0x24a/0x4d0 [ 639.738151][T23312] can_pernet_init+0x1e4/0x370 [ 639.738170][T23312] ? __pfx_can_pernet_init+0x10/0x10 [ 639.738186][T23312] ops_init+0x1e2/0x5f0 [ 639.738211][T23312] setup_net+0x100/0x390 [ 639.738233][T23312] ? __pfx_setup_net+0x10/0x10 [ 639.738255][T23312] ? debug_mutex_init+0x37/0x70 [ 639.738274][T23312] copy_net_ns+0x2f8/0x690 [ 639.738291][T23312] create_new_namespaces+0x3ea/0xa90 [ 639.738314][T23312] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 639.738334][T23312] ksys_unshare+0x45b/0xa40 [ 639.738355][T23312] ? __pfx_ksys_unshare+0x10/0x10 [ 639.738376][T23312] ? xfd_validate_state+0x61/0x180 [ 639.738395][T23312] __x64_sys_unshare+0x31/0x40 [ 639.738415][T23312] do_syscall_64+0xcd/0x4b0 [ 639.738433][T23312] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 639.738448][T23312] RIP: 0033:0x7f330a78eec9 [ 639.738460][T23312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 639.738478][T23312] RSP: 002b:00007f330b6a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 639.738493][T23312] RAX: ffffffffffffffda RBX: 00007f330a9e6090 RCX: 00007f330a78eec9 [ 639.738503][T23312] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 639.738512][T23312] RBP: 00007f330a811f91 R08: 0000000000000000 R09: 0000000000000000 [ 639.738521][T23312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 639.738530][T23312] R13: 00007f330a9e6128 R14: 00007f330a9e6090 R15: 00007ffc9e97b618 [ 639.738549][T23312] [ 640.391431][T23342] ICMPv6: process `syz.2.2320' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 642.031306][T23372] bond0: option all_slaves_active: invalid value () [ 645.144635][T23445] netlink: 268 bytes leftover after parsing attributes in process `syz.0.2336'. [ 645.305228][T23445] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.2336: iget: checksum invalid [ 645.434708][T23445] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 645.524320][T23445] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.2336: iget: checksum invalid [ 645.606167][T23445] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 645.692684][T23445] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.2336: iget: checksum invalid [ 645.855336][T23445] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 645.871828][T23453] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input31 [ 645.915740][T23445] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.2336: iget: checksum invalid [ 646.013455][T23445] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 646.062272][T23445] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 646.115193][T23445] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 646.942119][T23503] FAULT_INJECTION: forcing a failure. [ 646.942119][T23503] name failslab, interval 1, probability 0, space 0, times 0 [ 647.103724][T23503] CPU: 1 UID: 0 PID: 23503 Comm: syz.2.2341 Not tainted syzkaller #0 PREEMPT(full) [ 647.103749][T23503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 647.103759][T23503] Call Trace: [ 647.103764][T23503] [ 647.103771][T23503] dump_stack_lvl+0x16c/0x1f0 [ 647.103796][T23503] should_fail_ex+0x512/0x640 [ 647.103816][T23503] ? __kmalloc_cache_noprof+0x5f/0x780 [ 647.103835][T23503] should_failslab+0xc2/0x120 [ 647.103858][T23503] __kmalloc_cache_noprof+0x72/0x780 [ 647.103872][T23503] ? net_alloc_generic+0x1e/0x70 [ 647.103894][T23503] ? copy_net_ns+0xe9/0x690 [ 647.103908][T23503] ? copy_net_ns+0x136/0x690 [ 647.103924][T23503] ? copy_net_ns+0x136/0x690 [ 647.103937][T23503] copy_net_ns+0x136/0x690 [ 647.103950][T23503] ? copy_cgroup_ns+0x71/0x6b0 [ 647.103970][T23503] create_new_namespaces+0x3ea/0xa90 [ 647.103993][T23503] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 647.104013][T23503] ksys_unshare+0x45b/0xa40 [ 647.104034][T23503] ? __pfx_ksys_unshare+0x10/0x10 [ 647.104056][T23503] ? syscall_user_dispatch+0x78/0x140 [ 647.104076][T23503] __x64_sys_unshare+0x31/0x40 [ 647.104096][T23503] do_syscall_64+0xcd/0x4b0 [ 647.104115][T23503] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 647.104130][T23503] RIP: 0033:0x7f330a78eec9 [ 647.104143][T23503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 647.104157][T23503] RSP: 002b:00007f330b687038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 647.104171][T23503] RAX: ffffffffffffffda RBX: 00007f330a9e6180 RCX: 00007f330a78eec9 [ 647.104181][T23503] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 647.104189][T23503] RBP: 00007f330a811f91 R08: 0000000000000000 R09: 0000000000000000 [ 647.104198][T23503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 647.104207][T23503] R13: 00007f330a9e6218 R14: 00007f330a9e6180 R15: 00007ffc9e97b618 [ 647.104235][T23503] [ 647.333465][T23508] FAULT_INJECTION: forcing a failure. [ 647.333465][T23508] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 647.346784][T23508] CPU: 1 UID: 0 PID: 23508 Comm: syz.1.2342 Not tainted syzkaller #0 PREEMPT(full) [ 647.346807][T23508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 647.346816][T23508] Call Trace: [ 647.346823][T23508] [ 647.346830][T23508] dump_stack_lvl+0x16c/0x1f0 [ 647.346853][T23508] should_fail_ex+0x512/0x640 [ 647.346878][T23508] should_fail_alloc_page+0xe7/0x130 [ 647.346901][T23508] prepare_alloc_pages+0x3c2/0x610 [ 647.346923][T23508] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 647.346944][T23508] ? stack_trace_save+0x8e/0xc0 [ 647.346962][T23508] ? __pfx_stack_trace_save+0x10/0x10 [ 647.346981][T23508] ? stack_depot_save_flags+0x29/0x9c0 [ 647.347005][T23508] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 647.347020][T23508] ? __lock_acquire+0x62e/0x1ce0 [ 647.347046][T23508] ? __lock_acquire+0x62e/0x1ce0 [ 647.347070][T23508] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 647.347087][T23508] ? policy_nodemask+0xea/0x4e0 [ 647.347108][T23508] alloc_pages_mpol+0x1fb/0x550 [ 647.347128][T23508] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 647.347150][T23508] ? __memcg_slab_post_alloc_hook+0x47c/0x940 [ 647.347172][T23508] alloc_pages_noprof+0x131/0x390 [ 647.347192][T23508] pgd_alloc+0x4b/0x600 [ 647.347213][T23508] mm_init+0x726/0x1380 [ 647.347234][T23508] copy_process+0x3eee/0x76a0 [ 647.347253][T23508] ? __pfx___futex_wait+0x10/0x10 [ 647.347274][T23508] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 647.347297][T23508] ? __pfx_copy_process+0x10/0x10 [ 647.347316][T23508] ? futex_private_hash_put+0x176/0x300 [ 647.347341][T23508] ? futex_private_hash_put+0x18a/0x300 [ 647.347364][T23508] kernel_clone+0xfc/0x930 [ 647.347386][T23508] ? __pfx_kernel_clone+0x10/0x10 [ 647.347416][T23508] __do_sys_clone+0xce/0x120 [ 647.347436][T23508] ? __pfx___do_sys_clone+0x10/0x10 [ 647.347464][T23508] ? xfd_validate_state+0x61/0x180 [ 647.347477][T23508] ? __pfx_do_writev+0x10/0x10 [ 647.347497][T23508] do_syscall_64+0xcd/0x4b0 [ 647.347516][T23508] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 647.347531][T23508] RIP: 0033:0x7f7e35f8eec9 [ 647.347543][T23508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 647.347558][T23508] RSP: 002b:00007f7e36d47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 647.347572][T23508] RAX: ffffffffffffffda RBX: 00007f7e361e5fa0 RCX: 00007f7e35f8eec9 [ 647.347582][T23508] RDX: 0000000000000000 RSI: 0000000100000000 RDI: 0000000000000007 [ 647.347591][T23508] RBP: 00007f7e36011f91 R08: 0000000000000006 R09: 0000000000000000 [ 647.347600][T23508] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000 [ 647.347609][T23508] R13: 00007f7e361e6038 R14: 00007f7e361e5fa0 R15: 00007ffcba5902e8 [ 647.347629][T23508] [ 648.526655][T23554] binder: 23553:23554 ioctl c0306201 200000000000 returned -11 [ 649.041210][T23598] netlink: 25 bytes leftover after parsing attributes in process `syz.1.2348'. [ 651.141446][ T30] audit: type=1400 audit(4294985694.341:37): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=23648 comm="syz.2.2355" [ 652.588093][T23693] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1419 with max blocks 2 with error 117 [ 652.764646][T23693] EXT4-fs (sda1): This should not happen!! Data will be lost [ 652.764646][T23693] [ 653.915049][T23714] nbd: socks must be embedded in a SOCK_ITEM attr [ 655.633594][T23770] sd 0:0:1:0: PR command failed: 1026 [ 655.639017][T23770] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 655.903331][T23770] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 657.121202][T23776] Process accounting resumed [ 658.946551][T23813] kexec: Could not allocate control_code_buffer [ 659.221823][T23803] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 660.153040][T23880] FAULT_INJECTION: forcing a failure. [ 660.153040][T23880] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 660.230903][T23880] CPU: 1 UID: 0 PID: 23880 Comm: syz.2.2390 Not tainted syzkaller #0 PREEMPT(full) [ 660.230926][T23880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 660.230936][T23880] Call Trace: [ 660.230942][T23880] [ 660.230949][T23880] dump_stack_lvl+0x16c/0x1f0 [ 660.230971][T23880] should_fail_ex+0x512/0x640 [ 660.230995][T23880] should_fail_alloc_page+0xe7/0x130 [ 660.231017][T23880] prepare_alloc_pages+0x3c2/0x610 [ 660.231040][T23880] ? __lock_acquire+0x62e/0x1ce0 [ 660.231063][T23880] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 660.231085][T23880] ? __lock_acquire+0x62e/0x1ce0 [ 660.231108][T23880] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 660.231124][T23880] ? __lock_acquire+0x62e/0x1ce0 [ 660.231157][T23880] ? __lock_acquire+0x62e/0x1ce0 [ 660.231181][T23880] ? local_lock_release+0x99/0x140 [ 660.231202][T23880] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 660.231219][T23880] ? policy_nodemask+0xea/0x4e0 [ 660.231240][T23880] alloc_pages_mpol+0x1fb/0x550 [ 660.231261][T23880] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 660.231282][T23880] ? __memcg_slab_post_alloc_hook+0x47c/0x940 [ 660.231304][T23880] alloc_pages_noprof+0x131/0x390 [ 660.231325][T23880] pgd_alloc+0x4b/0x600 [ 660.231346][T23880] mm_init+0x726/0x1380 [ 660.231366][T23880] mm_alloc+0x9f/0xc0 [ 660.231383][T23880] alloc_bprm+0x2af/0x710 [ 660.231400][T23880] do_execveat_common.isra.0+0x1ce/0x610 [ 660.231420][T23880] __x64_sys_execve+0x8e/0xb0 [ 660.231436][T23880] do_syscall_64+0xcd/0x4b0 [ 660.231456][T23880] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 660.231470][T23880] RIP: 0033:0x7f330a78eec9 [ 660.231483][T23880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 660.231497][T23880] RSP: 002b:00007f330b6c9038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 660.231512][T23880] RAX: ffffffffffffffda RBX: 00007f330a9e5fa0 RCX: 00007f330a78eec9 [ 660.231522][T23880] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000 [ 660.231531][T23880] RBP: 00007f330a811f91 R08: 0000000000000000 R09: 0000000000000000 [ 660.231539][T23880] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 660.231548][T23880] R13: 00007f330a9e6038 R14: 00007f330a9e5fa0 R15: 00007ffc9e97b618 [ 660.231566][T23880] [ 661.362878][ T5925] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 932 with max blocks 9 with error 117 [ 661.443310][ T5925] EXT4-fs (sda1): This should not happen!! Data will be lost [ 661.443310][ T5925] [ 662.032823][T23958] zswap: compressor not available [ 662.773847][T15223] Bluetooth: hci1: unexpected subevent 0x12 length: 123 > 5 [ 663.698559][T24021] binder: 24014:24021 ioctl 400c620e 0 returned -22 [ 665.307474][T24088] FAULT_INJECTION: forcing a failure. [ 665.307474][T24088] name failslab, interval 1, probability 0, space 0, times 0 [ 665.382085][T24088] CPU: 1 UID: 0 PID: 24088 Comm: syz.1.2411 Not tainted syzkaller #0 PREEMPT(full) [ 665.382109][T24088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 665.382119][T24088] Call Trace: [ 665.382125][T24088] [ 665.382132][T24088] dump_stack_lvl+0x16c/0x1f0 [ 665.382155][T24088] should_fail_ex+0x512/0x640 [ 665.382177][T24088] ? fs_reclaim_acquire+0xae/0x150 [ 665.382199][T24088] should_failslab+0xc2/0x120 [ 665.382220][T24088] __kmalloc_noprof+0xdd/0x880 [ 665.382234][T24088] ? lockdep_init_map_type+0x5c/0x280 [ 665.382256][T24088] ? tomoyo_open_control+0x51f/0xa30 [ 665.382278][T24088] ? tomoyo_open_control+0x51f/0xa30 [ 665.382295][T24088] tomoyo_open_control+0x51f/0xa30 [ 665.382316][T24088] do_dentry_open+0x982/0x1530 [ 665.382334][T24088] ? __pfx_tomoyo_open+0x10/0x10 [ 665.382353][T24088] vfs_open+0x82/0x3f0 [ 665.382376][T24088] path_openat+0x1de4/0x2cb0 [ 665.382399][T24088] ? __pfx_path_openat+0x10/0x10 [ 665.382420][T24088] do_filp_open+0x20b/0x470 [ 665.382437][T24088] ? __pfx_do_filp_open+0x10/0x10 [ 665.382467][T24088] ? alloc_fd+0x471/0x7d0 [ 665.382487][T24088] do_sys_openat2+0x11b/0x1d0 [ 665.382508][T24088] ? __pfx_do_sys_openat2+0x10/0x10 [ 665.382537][T24088] __x64_sys_openat+0x174/0x210 [ 665.382558][T24088] ? __pfx___x64_sys_openat+0x10/0x10 [ 665.382587][T24088] do_syscall_64+0xcd/0x4b0 [ 665.382606][T24088] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 665.382620][T24088] RIP: 0033:0x7f7e35f8eec9 [ 665.382633][T24088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 665.382647][T24088] RSP: 002b:00007f7e36d47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 665.382661][T24088] RAX: ffffffffffffffda RBX: 00007f7e361e5fa0 RCX: 00007f7e35f8eec9 [ 665.382671][T24088] RDX: 00000000000c0802 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 665.382680][T24088] RBP: 00007f7e36011f91 R08: 0000000000000000 R09: 0000000000000000 [ 665.382689][T24088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 665.382698][T24088] R13: 00007f7e361e6038 R14: 00007f7e361e5fa0 R15: 00007ffcba5902e8 [ 665.382724][T24088] [ 665.931821][T24096] vivid-007: ================= START STATUS ================= [ 665.955070][T24096] vivid-007: Generate PTS: true [ 665.959954][T24096] vivid-007: Generate SCR: true [ 665.973356][T24096] tpg source WxH: 320x240 (Y'CbCr) [ 665.988715][T24096] tpg field: 1 [ 665.992478][T24096] tpg crop: (0,0)/320x240 [ 666.003303][T24096] tpg compose: (0,0)/320x240 [ 666.014278][T24096] tpg colorspace: 8 [ 666.047932][T24096] tpg transfer function: 0/0 [ 666.081234][T24096] tpg Y'CbCr encoding: 0/0 [ 666.090829][T24096] tpg quantization: 0/0 [ 666.106738][T24096] tpg RGB range: 0/2 [ 666.110768][T24096] vivid-007: ================== END STATUS ================== [ 668.942988][ T30] audit: type=1804 audit(4294985712.141:38): pid=24151 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2420" name="/newroot/650/file0" dev="tmpfs" ino=3410 res=1 errno=0 [ 669.959736][T24198] sg_read: process 2152 (syz.1.2425) changed security contexts after opening file descriptor, this is not allowed. [ 673.387096][T24406] FAULT_INJECTION: forcing a failure. [ 673.387096][T24406] name failslab, interval 1, probability 0, space 0, times 0 [ 673.440685][T24415] FAULT_INJECTION: forcing a failure. [ 673.440685][T24415] name failslab, interval 1, probability 0, space 0, times 0 [ 673.457334][T24406] CPU: 1 UID: 0 PID: 24406 Comm: syz.1.2440 Not tainted syzkaller #0 PREEMPT(full) [ 673.457356][T24406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 673.457366][T24406] Call Trace: [ 673.457372][T24406] [ 673.457379][T24406] dump_stack_lvl+0x16c/0x1f0 [ 673.457402][T24406] should_fail_ex+0x512/0x640 [ 673.457422][T24406] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 673.457441][T24406] should_failslab+0xc2/0x120 [ 673.457461][T24406] kmem_cache_alloc_noprof+0x75/0x6e0 [ 673.457477][T24406] ? __proc_create+0x2ce/0x8e0 [ 673.457501][T24406] ? __proc_create+0x2ce/0x8e0 [ 673.457521][T24406] __proc_create+0x2ce/0x8e0 [ 673.457542][T24406] ? __pfx___proc_create+0x10/0x10 [ 673.457564][T24406] ? kfree+0x252/0x6d0 [ 673.457582][T24406] proc_create_reg+0x7d/0x180 [ 673.457597][T24406] proc_create_data+0x86/0x110 [ 673.457610][T24406] ? __pfx_proc_create_data+0x10/0x10 [ 673.457625][T24406] ? net_generic+0xf4/0x2a0 [ 673.457643][T24406] nfs_net_init+0x11a/0x340 [ 673.457663][T24406] ? __pfx_nfs_net_init+0x10/0x10 [ 673.457681][T24406] ops_init+0x1e2/0x5f0 [ 673.457705][T24406] setup_net+0x100/0x390 [ 673.457727][T24406] ? __pfx_setup_net+0x10/0x10 [ 673.457749][T24406] ? debug_mutex_init+0x37/0x70 [ 673.457768][T24406] copy_net_ns+0x2f8/0x690 [ 673.457784][T24406] create_new_namespaces+0x3ea/0xa90 [ 673.457808][T24406] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 673.457828][T24406] ksys_unshare+0x45b/0xa40 [ 673.457849][T24406] ? __pfx_ksys_unshare+0x10/0x10 [ 673.457870][T24406] ? xfd_validate_state+0x61/0x180 [ 673.457889][T24406] __x64_sys_unshare+0x31/0x40 [ 673.457909][T24406] do_syscall_64+0xcd/0x4b0 [ 673.457929][T24406] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 673.457943][T24406] RIP: 0033:0x7f7e35f8eec9 [ 673.457956][T24406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 673.457970][T24406] RSP: 002b:00007f7e36d47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 673.457985][T24406] RAX: ffffffffffffffda RBX: 00007f7e361e5fa0 RCX: 00007f7e35f8eec9 [ 673.457995][T24406] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 673.458004][T24406] RBP: 00007f7e36011f91 R08: 0000000000000000 R09: 0000000000000000 [ 673.458020][T24406] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 673.458029][T24406] R13: 00007f7e361e6038 R14: 00007f7e361e5fa0 R15: 00007ffcba5902e8 [ 673.458049][T24406] [ 673.746963][T24415] CPU: 1 UID: 0 PID: 24415 Comm: syz.3.2441 Not tainted syzkaller #0 PREEMPT(full) [ 673.746992][T24415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 673.747002][T24415] Call Trace: [ 673.747008][T24415] [ 673.747014][T24415] dump_stack_lvl+0x16c/0x1f0 [ 673.747038][T24415] should_fail_ex+0x512/0x640 [ 673.747058][T24415] ? __kmalloc_cache_noprof+0x5f/0x780 [ 673.747076][T24415] should_failslab+0xc2/0x120 [ 673.747097][T24415] __kmalloc_cache_noprof+0x72/0x780 [ 673.747111][T24415] ? net_alloc_generic+0x1e/0x70 [ 673.747131][T24415] ? copy_net_ns+0xe9/0x690 [ 673.747144][T24415] ? copy_net_ns+0x136/0x690 [ 673.747160][T24415] ? copy_net_ns+0x136/0x690 [ 673.747173][T24415] copy_net_ns+0x136/0x690 [ 673.747185][T24415] ? copy_cgroup_ns+0x71/0x6b0 [ 673.747205][T24415] create_new_namespaces+0x3ea/0xa90 [ 673.747228][T24415] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 673.747248][T24415] ksys_unshare+0x45b/0xa40 [ 673.747269][T24415] ? __pfx_ksys_unshare+0x10/0x10 [ 673.747291][T24415] ? syscall_user_dispatch+0x78/0x140 [ 673.747311][T24415] __x64_sys_unshare+0x31/0x40 [ 673.747331][T24415] do_syscall_64+0xcd/0x4b0 [ 673.747350][T24415] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 673.747365][T24415] RIP: 0033:0x7ff0f298eec9 [ 673.747377][T24415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 673.747391][T24415] RSP: 002b:00007ff0f0bb4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 673.747405][T24415] RAX: ffffffffffffffda RBX: 00007ff0f2be6180 RCX: 00007ff0f298eec9 [ 673.747415][T24415] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 673.747424][T24415] RBP: 00007ff0f2a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 673.747432][T24415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 673.747441][T24415] R13: 00007ff0f2be6218 R14: 00007ff0f2be6180 R15: 00007ffde38188a8 [ 673.747459][T24415] [ 674.537891][T24446] zswap: compressor 000 not available [ 674.603264][T24463] FAULT_INJECTION: forcing a failure. [ 674.603264][T24463] name failslab, interval 1, probability 0, space 0, times 0 [ 674.637575][T24463] CPU: 1 UID: 0 PID: 24463 Comm: syz.3.2447 Not tainted syzkaller #0 PREEMPT(full) [ 674.637600][T24463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 674.637610][T24463] Call Trace: [ 674.637616][T24463] [ 674.637623][T24463] dump_stack_lvl+0x16c/0x1f0 [ 674.637647][T24463] should_fail_ex+0x512/0x640 [ 674.637668][T24463] ? __kmalloc_cache_noprof+0x5f/0x780 [ 674.637686][T24463] should_failslab+0xc2/0x120 [ 674.637706][T24463] __kmalloc_cache_noprof+0x72/0x780 [ 674.637721][T24463] ? snd_card_file_add+0x52/0x340 [ 674.637738][T24463] ? snd_card_file_add+0x52/0x340 [ 674.637751][T24463] snd_card_file_add+0x52/0x340 [ 674.637768][T24463] snd_pcm_oss_open+0x1cf/0x1400 [ 674.637782][T24463] ? lockdep_hardirqs_on+0x7c/0x110 [ 674.637801][T24463] ? find_held_lock+0x2b/0x80 [ 674.637821][T24463] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 674.637835][T24463] ? __lock_acquire+0xb97/0x1ce0 [ 674.637858][T24463] ? __lock_acquire+0xb97/0x1ce0 [ 674.637883][T24463] ? do_raw_spin_lock+0x12c/0x2b0 [ 674.637907][T24463] ? soundcore_open+0x35a/0x580 [ 674.637928][T24463] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 674.637944][T24463] soundcore_open+0x409/0x580 [ 674.637965][T24463] ? __pfx_soundcore_open+0x10/0x10 [ 674.637985][T24463] chrdev_open+0x234/0x6a0 [ 674.638003][T24463] ? __pfx_apparmor_file_open+0x10/0x10 [ 674.638023][T24463] ? __pfx_chrdev_open+0x10/0x10 [ 674.638042][T24463] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 674.638063][T24463] do_dentry_open+0x982/0x1530 [ 674.638081][T24463] ? __pfx_chrdev_open+0x10/0x10 [ 674.638102][T24463] vfs_open+0x82/0x3f0 [ 674.638126][T24463] path_openat+0x1de4/0x2cb0 [ 674.638149][T24463] ? __pfx_path_openat+0x10/0x10 [ 674.638170][T24463] do_filp_open+0x20b/0x470 [ 674.638186][T24463] ? __pfx_do_filp_open+0x10/0x10 [ 674.638215][T24463] ? alloc_fd+0x471/0x7d0 [ 674.638235][T24463] do_sys_openat2+0x11b/0x1d0 [ 674.638256][T24463] ? __pfx_do_sys_openat2+0x10/0x10 [ 674.638284][T24463] __x64_sys_openat+0x174/0x210 [ 674.638306][T24463] ? __pfx___x64_sys_openat+0x10/0x10 [ 674.638334][T24463] do_syscall_64+0xcd/0x4b0 [ 674.638353][T24463] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 674.638368][T24463] RIP: 0033:0x7ff0f298eec9 [ 674.638380][T24463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 674.638394][T24463] RSP: 002b:00007ff0f0bd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 674.638408][T24463] RAX: ffffffffffffffda RBX: 00007ff0f2be6090 RCX: 00007ff0f298eec9 [ 674.638418][T24463] RDX: 0000000000000801 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 674.638427][T24463] RBP: 00007ff0f2a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 674.638435][T24463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 674.638444][T24463] R13: 00007ff0f2be6128 R14: 00007ff0f2be6090 R15: 00007ffde38188a8 [ 674.638464][T24463] [ 676.738920][T24492] bond0: Unable to set peer notification delay as MII monitoring is disabled [ 677.224255][T24505] sp0: Synchronizing with TNC [ 677.747820][T24527] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.2461: iget: checksum invalid [ 677.779735][T24529] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 677.804409][T24527] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 677.842391][T24527] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.2461: iget: checksum invalid [ 677.894250][T24527] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 677.941738][T24527] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.2461: iget: checksum invalid [ 678.007609][T24527] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 678.063492][T24527] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.2461: iget: checksum invalid [ 678.134075][T24527] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 678.189337][T24527] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 678.236774][T24527] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 678.283097][T24527] FAULT_INJECTION: forcing a failure. [ 678.283097][T24527] name failslab, interval 1, probability 0, space 0, times 0 [ 678.343589][T24527] CPU: 1 UID: 0 PID: 24527 Comm: syz.0.2461 Not tainted syzkaller #0 PREEMPT(full) [ 678.343613][T24527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 678.343623][T24527] Call Trace: [ 678.343629][T24527] [ 678.343635][T24527] dump_stack_lvl+0x16c/0x1f0 [ 678.343660][T24527] should_fail_ex+0x512/0x640 [ 678.343681][T24527] ? __kmalloc_cache_noprof+0x5f/0x780 [ 678.343706][T24527] should_failslab+0xc2/0x120 [ 678.343727][T24527] __kmalloc_cache_noprof+0x72/0x780 [ 678.343741][T24527] ? __pfx_usermodehelper_read_trylock+0x10/0x10 [ 678.343759][T24527] ? fw_create_instance+0x51/0x1b0 [ 678.343773][T24527] ? __pfx_autoremove_wake_function+0x10/0x10 [ 678.343795][T24527] ? fw_create_instance+0x51/0x1b0 [ 678.343808][T24527] fw_create_instance+0x51/0x1b0 [ 678.343823][T24527] firmware_fallback_sysfs+0x1f9/0xbe0 [ 678.343852][T24527] _request_firmware+0xfe9/0x1470 [ 678.343880][T24527] ? __pfx__request_firmware+0x10/0x10 [ 678.343901][T24527] ? __pfx_netdev_run_todo+0x10/0x10 [ 678.343922][T24527] ? __pfx___mutex_lock+0x10/0x10 [ 678.343946][T24527] request_firmware+0x35/0x50 [ 678.343967][T24527] reg_reload_regdb+0x85/0x460 [ 678.343989][T24527] ? __pfx_reg_reload_regdb+0x10/0x10 [ 678.344010][T24527] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 678.344025][T24527] ? nl80211_pre_doit+0x1b0/0xb10 [ 678.344044][T24527] genl_family_rcv_msg_doit+0x206/0x2f0 [ 678.344062][T24527] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 678.344076][T24527] ? rcu_is_watching+0x12/0xc0 [ 678.344100][T24527] ? bpf_lsm_capable+0x9/0x10 [ 678.344119][T24527] ? security_capable+0x7e/0x260 [ 678.344142][T24527] genl_rcv_msg+0x55c/0x800 [ 678.344160][T24527] ? __pfx_genl_rcv_msg+0x10/0x10 [ 678.344175][T24527] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 678.344190][T24527] ? __pfx_nl80211_reload_regdb+0x10/0x10 [ 678.344209][T24527] ? __pfx_nl80211_post_doit+0x10/0x10 [ 678.344237][T24527] netlink_rcv_skb+0x158/0x420 [ 678.344258][T24527] ? __pfx_genl_rcv_msg+0x10/0x10 [ 678.344275][T24527] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 678.344307][T24527] ? netlink_deliver_tap+0x1ae/0xd30 [ 678.344331][T24527] genl_rcv+0x28/0x40 [ 678.344344][T24527] netlink_unicast+0x5a7/0x870 [ 678.344369][T24527] ? __pfx_netlink_unicast+0x10/0x10 [ 678.344398][T24527] netlink_sendmsg+0x8c8/0xdd0 [ 678.344424][T24527] ? __pfx_netlink_sendmsg+0x10/0x10 [ 678.344448][T24527] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 678.344472][T24527] ____sys_sendmsg+0xa95/0xc70 [ 678.344488][T24527] ? copy_msghdr_from_user+0x10a/0x160 [ 678.344509][T24527] ? __pfx_____sys_sendmsg+0x10/0x10 [ 678.344529][T24527] ? __pfx_futex_wake_mark+0x10/0x10 [ 678.344547][T24527] ___sys_sendmsg+0x134/0x1d0 [ 678.344569][T24527] ? __pfx____sys_sendmsg+0x10/0x10 [ 678.344614][T24527] __sys_sendmsg+0x16d/0x220 [ 678.344634][T24527] ? __pfx___sys_sendmsg+0x10/0x10 [ 678.344654][T24527] ? __x64_sys_futex+0x1e0/0x4c0 [ 678.344687][T24527] do_syscall_64+0xcd/0x4b0 [ 678.344712][T24527] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 678.344727][T24527] RIP: 0033:0x7faa2dd8eec9 [ 678.344741][T24527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 678.344754][T24527] RSP: 002b:00007faa2eb5d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 678.344770][T24527] RAX: ffffffffffffffda RBX: 00007faa2dfe5fa0 RCX: 00007faa2dd8eec9 [ 678.344780][T24527] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000000a [ 678.344789][T24527] RBP: 00007faa2de11f91 R08: 0000000000000000 R09: 0000000000000000 [ 678.344798][T24527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 678.344807][T24527] R13: 00007faa2dfe6038 R14: 00007faa2dfe5fa0 R15: 00007fff66dbd5c8 [ 678.344827][T24527] [ 680.754763][T24571] Invalid ELF header magic: != ELF [ 684.427246][T24677] FAULT_INJECTION: forcing a failure. [ 684.427246][T24677] name failslab, interval 1, probability 0, space 0, times 0 [ 684.485125][T24677] CPU: 1 UID: 0 PID: 24677 Comm: syz.2.2480 Not tainted syzkaller #0 PREEMPT(full) [ 684.485156][T24677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 684.485166][T24677] Call Trace: [ 684.485172][T24677] [ 684.485178][T24677] dump_stack_lvl+0x16c/0x1f0 [ 684.485201][T24677] should_fail_ex+0x512/0x640 [ 684.485223][T24677] ? fs_reclaim_acquire+0xae/0x150 [ 684.485245][T24677] should_failslab+0xc2/0x120 [ 684.485266][T24677] __kmalloc_noprof+0xdd/0x880 [ 684.485279][T24677] ? lockdep_init_map_type+0x5c/0x280 [ 684.485301][T24677] ? tomoyo_open_control+0x51f/0xa30 [ 684.485323][T24677] ? tomoyo_open_control+0x51f/0xa30 [ 684.485340][T24677] tomoyo_open_control+0x51f/0xa30 [ 684.485361][T24677] do_dentry_open+0x982/0x1530 [ 684.485378][T24677] ? __pfx_tomoyo_open+0x10/0x10 [ 684.485398][T24677] vfs_open+0x82/0x3f0 [ 684.485421][T24677] path_openat+0x1de4/0x2cb0 [ 684.485443][T24677] ? __pfx_path_openat+0x10/0x10 [ 684.485464][T24677] do_filp_open+0x20b/0x470 [ 684.485481][T24677] ? __pfx_do_filp_open+0x10/0x10 [ 684.485511][T24677] ? alloc_fd+0x471/0x7d0 [ 684.485531][T24677] do_sys_openat2+0x11b/0x1d0 [ 684.485551][T24677] ? __pfx_do_sys_openat2+0x10/0x10 [ 684.485579][T24677] __x64_sys_openat+0x174/0x210 [ 684.485601][T24677] ? __pfx___x64_sys_openat+0x10/0x10 [ 684.485630][T24677] do_syscall_64+0xcd/0x4b0 [ 684.485649][T24677] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 684.485664][T24677] RIP: 0033:0x7f330a78eec9 [ 684.485676][T24677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 684.485690][T24677] RSP: 002b:00007f330b6c9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 684.485704][T24677] RAX: ffffffffffffffda RBX: 00007f330a9e5fa0 RCX: 00007f330a78eec9 [ 684.485714][T24677] RDX: 00000000000c0802 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 684.485723][T24677] RBP: 00007f330a811f91 R08: 0000000000000000 R09: 0000000000000000 [ 684.485732][T24677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 684.485741][T24677] R13: 00007f330a9e6038 R14: 00007f330a9e5fa0 R15: 00007ffc9e97b618 [ 684.485759][T24677] [ 685.452821][ T30] audit: type=1800 audit(4294985728.651:39): pid=24704 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2483" name="features" dev="configfs" ino=63179 res=0 errno=0 [ 685.929942][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 685.936714][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 686.624820][T24741] usb usb15: usbfs: process 24741 (syz.1.2495) did not claim interface 0 before use [ 686.814665][T24742] FAULT_INJECTION: forcing a failure. [ 686.814665][T24742] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 686.848499][T24742] CPU: 1 UID: 0 PID: 24742 Comm: syz.0.2487 Not tainted syzkaller #0 PREEMPT(full) [ 686.848523][T24742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 686.848532][T24742] Call Trace: [ 686.848538][T24742] [ 686.848545][T24742] dump_stack_lvl+0x16c/0x1f0 [ 686.848568][T24742] should_fail_ex+0x512/0x640 [ 686.848593][T24742] should_fail_alloc_page+0xe7/0x130 [ 686.848615][T24742] prepare_alloc_pages+0x3c2/0x610 [ 686.848635][T24742] ? __lock_acquire+0x62e/0x1ce0 [ 686.848659][T24742] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 686.848681][T24742] ? __lock_acquire+0x62e/0x1ce0 [ 686.848704][T24742] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 686.848720][T24742] ? __lock_acquire+0x62e/0x1ce0 [ 686.848745][T24742] ? __lock_acquire+0x62e/0x1ce0 [ 686.848767][T24742] ? local_lock_release+0x99/0x140 [ 686.848787][T24742] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 686.848804][T24742] ? policy_nodemask+0xea/0x4e0 [ 686.848825][T24742] alloc_pages_mpol+0x1fb/0x550 [ 686.848845][T24742] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 686.848867][T24742] ? __memcg_slab_post_alloc_hook+0x47c/0x940 [ 686.848889][T24742] alloc_pages_noprof+0x131/0x390 [ 686.848909][T24742] pgd_alloc+0x4b/0x600 [ 686.848940][T24742] mm_init+0x726/0x1380 [ 686.848962][T24742] copy_process+0x3eee/0x76a0 [ 686.848982][T24742] ? __pfx___futex_wait+0x10/0x10 [ 686.849004][T24742] ? __pfx_copy_process+0x10/0x10 [ 686.849024][T24742] ? futex_private_hash_put+0x176/0x300 [ 686.849045][T24742] ? futex_private_hash_put+0x18a/0x300 [ 686.849068][T24742] kernel_clone+0xfc/0x930 [ 686.849088][T24742] ? __pfx_kernel_clone+0x10/0x10 [ 686.849118][T24742] __do_sys_clone+0xce/0x120 [ 686.849137][T24742] ? __pfx___do_sys_clone+0x10/0x10 [ 686.849165][T24742] ? xfd_validate_state+0x61/0x180 [ 686.849178][T24742] ? __pfx_do_writev+0x10/0x10 [ 686.849198][T24742] do_syscall_64+0xcd/0x4b0 [ 686.849217][T24742] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 686.849232][T24742] RIP: 0033:0x7faa2dd8eec9 [ 686.849245][T24742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 686.849260][T24742] RSP: 002b:00007faa2eb5d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 686.849276][T24742] RAX: ffffffffffffffda RBX: 00007faa2dfe5fa0 RCX: 00007faa2dd8eec9 [ 686.849286][T24742] RDX: 0000000000000000 RSI: 0000000100000000 RDI: 0000000000000007 [ 686.849295][T24742] RBP: 00007faa2de11f91 R08: 0000000000000006 R09: 0000000000000000 [ 686.849303][T24742] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000 [ 686.849312][T24742] R13: 00007faa2dfe6038 R14: 00007faa2dfe5fa0 R15: 00007fff66dbd5c8 [ 686.849331][T24742] [ 687.282781][T24749] Process accounting paused [ 688.915732][T24880] sysfs_service_op_show: Client not running :-5: [ 689.191763][T24908] random: crng reseeded on system resumption [ 691.053663][T25013] random: crng reseeded on system resumption [ 691.545391][T25033] Unrecognized hibernate image header format! [ 691.615038][T25033] PM: hibernation: Image mismatch: architecture specific data [ 692.243083][ T51] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1392 with max blocks 29 with error 117 [ 692.366964][ T51] EXT4-fs (sda1): This should not happen!! Data will be lost [ 692.366964][ T51] [ 693.418496][T25142] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2517'. [ 696.873071][T25268] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2526'. [ 700.752312][T25377] FAULT_INJECTION: forcing a failure. [ 700.752312][T25377] name fail_futex, interval 1, probability 0, space 0, times 0 [ 700.833872][T25377] CPU: 1 UID: 0 PID: 25377 Comm: syz.3.2536 Not tainted syzkaller #0 PREEMPT(full) [ 700.833895][T25377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 700.833905][T25377] Call Trace: [ 700.833911][T25377] [ 700.833917][T25377] dump_stack_lvl+0x16c/0x1f0 [ 700.833940][T25377] should_fail_ex+0x512/0x640 [ 700.833963][T25377] get_futex_key+0x1d0/0x1560 [ 700.833988][T25377] ? __pfx_get_futex_key+0x10/0x10 [ 700.834007][T25377] ? stack_trace_save+0x8e/0xc0 [ 700.834025][T25377] ? __pfx_stack_trace_save+0x10/0x10 [ 700.834044][T25377] ? stack_depot_save_flags+0x29/0x9c0 [ 700.834067][T25377] futex_wait_setup+0x9d/0x550 [ 700.834087][T25377] __futex_wait+0x193/0x2f0 [ 700.834102][T25377] ? __pfx___futex_wait+0x10/0x10 [ 700.834119][T25377] ? __pfx_futex_wake_mark+0x10/0x10 [ 700.834140][T25377] ? futex_private_hash_put+0x176/0x300 [ 700.834162][T25377] ? futex_private_hash_put+0x18a/0x300 [ 700.834182][T25377] futex_wait+0xe8/0x380 [ 700.834196][T25377] ? __pfx_futex_wait+0x10/0x10 [ 700.834214][T25377] ? kmem_cache_free+0x2d4/0x6c0 [ 700.834230][T25377] ? putname+0x154/0x1a0 [ 700.834257][T25377] do_futex+0x229/0x350 [ 700.834280][T25377] ? __pfx_do_futex+0x10/0x10 [ 700.834305][T25377] __x64_sys_futex+0x1e0/0x4c0 [ 700.834326][T25377] ? __x64_sys_openat+0x174/0x210 [ 700.834348][T25377] ? __pfx___x64_sys_futex+0x10/0x10 [ 700.834375][T25377] do_syscall_64+0xcd/0x4b0 [ 700.834394][T25377] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 700.834409][T25377] RIP: 0033:0x7ff0f298eec9 [ 700.834421][T25377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 700.834436][T25377] RSP: 002b:00007ff0f0bd50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 700.834450][T25377] RAX: ffffffffffffffda RBX: 00007ff0f2be6098 RCX: 00007ff0f298eec9 [ 700.834461][T25377] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ff0f2be6098 [ 700.834469][T25377] RBP: 00007ff0f2be6090 R08: 0000000000000000 R09: 0000000000000000 [ 700.834478][T25377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 700.834486][T25377] R13: 00007ff0f2be6128 R14: 00007ffde38187c0 R15: 00007ffde38188a8 [ 700.834504][T25377] [ 703.544647][T25475] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.2546: iget: checksum invalid [ 703.588014][T25475] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 703.663468][T25475] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.2546: iget: checksum invalid [ 703.688716][T25475] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 703.725416][T25475] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.2546: iget: checksum invalid [ 703.763587][T25475] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 703.815040][T25475] FAULT_INJECTION: forcing a failure. [ 703.815040][T25475] name failslab, interval 1, probability 0, space 0, times 0 [ 703.883635][T25475] CPU: 1 UID: 0 PID: 25475 Comm: syz.1.2546 Not tainted syzkaller #0 PREEMPT(full) [ 703.883658][T25475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 703.883668][T25475] Call Trace: [ 703.883673][T25475] [ 703.883680][T25475] dump_stack_lvl+0x16c/0x1f0 [ 703.883703][T25475] should_fail_ex+0x512/0x640 [ 703.883723][T25475] ? fs_reclaim_acquire+0xae/0x150 [ 703.883746][T25475] should_failslab+0xc2/0x120 [ 703.883767][T25475] kmem_cache_alloc_noprof+0x75/0x6e0 [ 703.883783][T25475] ? __pfx_map_id_range_down+0x10/0x10 [ 703.883798][T25475] ? security_inode_alloc+0x3b/0x2b0 [ 703.883822][T25475] ? security_inode_alloc+0x3b/0x2b0 [ 703.883841][T25475] security_inode_alloc+0x3b/0x2b0 [ 703.883862][T25475] inode_init_always_gfp+0xce4/0x1030 [ 703.883882][T25475] alloc_inode+0x86/0x240 [ 703.883901][T25475] iget_locked+0x2fa/0x860 [ 703.883920][T25475] ? __ext4_check_dir_entry+0x3f8/0x7f0 [ 703.883941][T25475] ? __pfx_iget_locked+0x10/0x10 [ 703.883961][T25475] ? ext4_search_dir+0x157/0x1d0 [ 703.883983][T25475] ? ext4_search_dir+0x193/0x1d0 [ 703.884009][T25475] __ext4_iget+0x3ca/0x4670 [ 703.884035][T25475] ? __pfx___ext4_iget+0x10/0x10 [ 703.884053][T25475] ? rcu_is_watching+0x12/0xc0 [ 703.884080][T25475] ext4_lookup+0x37c/0x730 [ 703.884101][T25475] ? __pfx_ext4_lookup+0x10/0x10 [ 703.884123][T25475] ? __lock_acquire+0xb97/0x1ce0 [ 703.884150][T25475] ? lockdep_init_map_type+0x5c/0x280 [ 703.884175][T25475] __lookup_slow+0x251/0x460 [ 703.884197][T25475] ? __pfx___lookup_slow+0x10/0x10 [ 703.884230][T25475] ? lookup_fast+0x156/0x610 [ 703.884247][T25475] walk_component+0x353/0x5b0 [ 703.884263][T25475] link_path_walk+0x627/0xe20 [ 703.884285][T25475] path_openat+0x1b0/0x2cb0 [ 703.884304][T25475] ? trace_kmem_cache_alloc+0x28/0xc0 [ 703.884325][T25475] ? getname_kernel+0x52/0x370 [ 703.884344][T25475] ? __pfx_path_openat+0x10/0x10 [ 703.884361][T25475] ? __asan_memcpy+0x3c/0x60 [ 703.884379][T25475] do_file_open_root+0x322/0x610 [ 703.884398][T25475] ? __pfx_do_file_open_root+0x10/0x10 [ 703.884433][T25475] ? vsnprintf+0x318/0x1160 [ 703.884451][T25475] file_open_root+0x2a7/0x450 [ 703.884470][T25475] ? __pfx_file_open_root+0x10/0x10 [ 703.884486][T25475] ? find_held_lock+0x2b/0x80 [ 703.884504][T25475] ? kernel_read_file_from_path_initns+0x17a/0x260 [ 703.884531][T25475] kernel_read_file_from_path_initns+0x189/0x260 [ 703.884564][T25475] ? __pfx_kernel_read_file_from_path_initns+0x10/0x10 [ 703.884593][T25475] _request_firmware+0x744/0x1470 [ 703.884623][T25475] ? __pfx__request_firmware+0x10/0x10 [ 703.884644][T25475] ? __pfx_netdev_run_todo+0x10/0x10 [ 703.884669][T25475] ? __pfx___mutex_lock+0x10/0x10 [ 703.884692][T25475] request_firmware+0x35/0x50 [ 703.884713][T25475] reg_reload_regdb+0x85/0x460 [ 703.884736][T25475] ? __pfx_reg_reload_regdb+0x10/0x10 [ 703.884757][T25475] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 703.884773][T25475] ? nl80211_pre_doit+0x1b0/0xb10 [ 703.884791][T25475] genl_family_rcv_msg_doit+0x206/0x2f0 [ 703.884809][T25475] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 703.884823][T25475] ? rcu_is_watching+0x12/0xc0 [ 703.884847][T25475] ? bpf_lsm_capable+0x9/0x10 [ 703.884866][T25475] ? security_capable+0x7e/0x260 [ 703.884889][T25475] genl_rcv_msg+0x55c/0x800 [ 703.884906][T25475] ? __pfx_genl_rcv_msg+0x10/0x10 [ 703.884922][T25475] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 703.884937][T25475] ? __pfx_nl80211_reload_regdb+0x10/0x10 [ 703.884955][T25475] ? __pfx_nl80211_post_doit+0x10/0x10 [ 703.884983][T25475] netlink_rcv_skb+0x158/0x420 [ 703.885004][T25475] ? __pfx_genl_rcv_msg+0x10/0x10 [ 703.885020][T25475] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 703.885050][T25475] ? netlink_deliver_tap+0x1ae/0xd30 [ 703.885073][T25475] genl_rcv+0x28/0x40 [ 703.885086][T25475] netlink_unicast+0x5a7/0x870 [ 703.885111][T25475] ? __pfx_netlink_unicast+0x10/0x10 [ 703.885139][T25475] netlink_sendmsg+0x8c8/0xdd0 [ 703.885164][T25475] ? __pfx_netlink_sendmsg+0x10/0x10 [ 703.885188][T25475] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 703.885211][T25475] ____sys_sendmsg+0xa95/0xc70 [ 703.885228][T25475] ? copy_msghdr_from_user+0x10a/0x160 [ 703.885248][T25475] ? __pfx_____sys_sendmsg+0x10/0x10 [ 703.885269][T25475] ? __pfx_futex_wake_mark+0x10/0x10 [ 703.885287][T25475] ___sys_sendmsg+0x134/0x1d0 [ 703.885309][T25475] ? __pfx____sys_sendmsg+0x10/0x10 [ 703.885353][T25475] __sys_sendmsg+0x16d/0x220 [ 703.885375][T25475] ? __pfx___sys_sendmsg+0x10/0x10 [ 703.885394][T25475] ? __x64_sys_futex+0x1e0/0x4c0 [ 703.885427][T25475] do_syscall_64+0xcd/0x4b0 [ 703.885446][T25475] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 703.885461][T25475] RIP: 0033:0x7f7e35f8eec9 [ 703.885474][T25475] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 703.885488][T25475] RSP: 002b:00007f7e36d47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 703.885502][T25475] RAX: ffffffffffffffda RBX: 00007f7e361e5fa0 RCX: 00007f7e35f8eec9 [ 703.885513][T25475] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000000a [ 703.885523][T25475] RBP: 00007f7e36011f91 R08: 0000000000000000 R09: 0000000000000000 [ 703.885532][T25475] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 703.885540][T25475] R13: 00007f7e361e6038 R14: 00007f7e361e5fa0 R15: 00007ffcba5902e8 [ 703.885566][T25475] [ 704.424037][T25475] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12 [ 704.433892][T25475] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12 [ 704.443632][T25475] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 708.307147][T25641] Page cache invalidation failure on direct I/O. Possible data corruption due to collision with buffered I/O! [ 708.403310][T25641] File: /dev/ram7 PID: 25641 Comm: syz.1.2559 [ 708.663050][T25622] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1408 with max blocks 13 with error 117 [ 708.740641][T25622] EXT4-fs (sda1): This should not happen!! Data will be lost [ 708.740641][T25622] [ 709.572361][T25697] input: 00 [ 709.572361][T25697] as /devices/virtual/input/input32 [ 710.042386][T25708] random: crng reseeded on system resumption [ 710.538653][T25709] syz.3.2565: vmalloc error: size 16384, failed to allocate pages, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 710.600286][T25709] CPU: 1 UID: 0 PID: 25709 Comm: syz.3.2565 Not tainted syzkaller #0 PREEMPT(full) [ 710.600309][T25709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 710.600318][T25709] Call Trace: [ 710.600324][T25709] [ 710.600331][T25709] dump_stack_lvl+0x16c/0x1f0 [ 710.600353][T25709] warn_alloc+0x248/0x3a0 [ 710.600371][T25709] ? __pfx_warn_alloc+0x10/0x10 [ 710.600387][T25709] ? alloc_pages_mpol+0x25a/0x550 [ 710.600408][T25709] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 710.600427][T25709] ? __pfx_alloc_pages_bulk_mempolicy_noprof+0x10/0x10 [ 710.600452][T25709] ? __kmalloc_node_noprof+0x364/0x8a0 [ 710.600470][T25709] ? __get_vm_area_node+0x208/0x330 [ 710.600493][T25709] __vmalloc_node_range_noprof+0x119b/0x1480 [ 710.600521][T25709] ? kernel_clone+0xfc/0x930 [ 710.600545][T25709] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 710.600570][T25709] ? rcu_is_watching+0x12/0xc0 [ 710.600589][T25709] ? kernel_clone+0xfc/0x930 [ 710.600607][T25709] __vmalloc_node_noprof+0xad/0xf0 [ 710.600627][T25709] ? kernel_clone+0xfc/0x930 [ 710.600648][T25709] copy_process+0x2c77/0x76a0 [ 710.600667][T25709] ? __pfx___futex_wait+0x10/0x10 [ 710.600688][T25709] ? __pfx_copy_process+0x10/0x10 [ 710.600716][T25709] ? futex_private_hash_put+0x176/0x300 [ 710.600745][T25709] ? futex_private_hash_put+0x18a/0x300 [ 710.600770][T25709] kernel_clone+0xfc/0x930 [ 710.600790][T25709] ? __pfx_kernel_clone+0x10/0x10 [ 710.600822][T25709] __do_sys_clone+0xce/0x120 [ 710.600842][T25709] ? __pfx___do_sys_clone+0x10/0x10 [ 710.600869][T25709] ? xfd_validate_state+0x61/0x180 [ 710.600882][T25709] ? __pfx_do_writev+0x10/0x10 [ 710.600903][T25709] do_syscall_64+0xcd/0x4b0 [ 710.600929][T25709] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 710.600944][T25709] RIP: 0033:0x7ff0f298eec9 [ 710.600957][T25709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 710.600972][T25709] RSP: 002b:00007ff0f0bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 710.600986][T25709] RAX: ffffffffffffffda RBX: 00007ff0f2be5fa0 RCX: 00007ff0f298eec9 [ 710.600996][T25709] RDX: 0000000000000000 RSI: 0000000100000000 RDI: 0000000000000007 [ 710.601006][T25709] RBP: 00007ff0f2a11f91 R08: 0000000000000006 R09: 0000000000000000 [ 710.601015][T25709] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000 [ 710.601028][T25709] R13: 00007ff0f2be6038 R14: 00007ff0f2be5fa0 R15: 00007ffde38188a8 [ 710.601048][T25709] [ 710.601072][T25709] Mem-Info: [ 711.001958][T25721] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2576'. [ 711.043406][T25721] bridge_slave_1: left allmulticast mode [ 711.059321][T25721] bridge_slave_1: left promiscuous mode [ 711.076848][T25721] bridge0: port 2(bridge_slave_1) entered disabled state [ 711.112000][T25721] bridge_slave_0: left allmulticast mode [ 711.133716][T25721] bridge_slave_0: left promiscuous mode [ 711.143368][T25721] bridge0: port 1(bridge_slave_0) entered disabled state [ 711.180288][T25723] random: crng reseeded on system resumption [ 711.452682][T25709] active_anon:13135 inactive_anon:56 isolated_anon:0 [ 711.452682][T25709] active_file:28944 inactive_file:71261 isolated_file:0 [ 711.452682][T25709] unevictable:768 dirty:938 writeback:960 [ 711.452682][T25709] slab_reclaimable:12233 slab_unreclaimable:93863 [ 711.452682][T25709] mapped:26498 shmem:1391 pagetables:1261 [ 711.452682][T25709] sec_pagetables:0 bounce:0 [ 711.452682][T25709] kernel_misc_reclaimable:0 [ 711.452682][T25709] free:1271261 free_pcp:15456 free_cma:0 [ 711.613373][T25709] Node 0 active_anon:48796kB inactive_anon:224kB active_file:115720kB inactive_file:284904kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:110048kB dirty:3276kB writeback:1800kB shmem:4028kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11440kB pagetables:4892kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 711.703933][T25734] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 931 with max blocks 10 with error 117 [ 711.777528][T25709] Node 1 active_anon:0kB inactive_anon:0kB active_file:56kB inactive_file:140kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:152kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 711.843253][T25734] EXT4-fs (sda1): This should not happen!! Data will be lost [ 711.843253][T25734] [ 711.865661][T25709] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 711.946475][T25709] lowmem_reserve[]: 0 2488 2488 2488 2488 [ 711.958857][T25709] Node 0 DMA32 free:1164452kB boost:0kB min:34152kB low:42688kB high:51224kB reserved_highatomic:0KB free_highatomic:0KB active_anon:52540kB inactive_anon:224kB active_file:115720kB inactive_file:284904kB unevictable:1536kB writepending:2904kB zspages:1048kB present:3129332kB managed:2547976kB mlocked:0kB bounce:0kB free_pcp:57956kB local_pcp:57956kB free_cma:0kB [ 712.093624][T25709] lowmem_reserve[]: 0 0 0 0 0 [ 712.098364][T25709] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:108kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 712.200809][T25709] lowmem_reserve[]: 0 0 0 0 0 [ 712.230735][T25709] Node 1 Normal free:3907988kB boost:0kB min:55748kB low:69684kB high:83620kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:56kB inactive_file:140kB unevictable:1536kB writepending:4kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:3176kB local_pcp:3176kB free_cma:0kB [ 712.408475][T25709] lowmem_reserve[]: 0 0 0 0 0 [ 712.415278][T25760] XFS: Clearing xfsstats [ 712.432680][T25709] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 712.511195][T25709] Node 0 DMA32: 2987*4kB (UM) 1932*8kB (UM) 1215*16kB (UME) 1433*32kB (UME) 878*64kB (UME) 576*128kB (UME) 282*256kB (UM) 127*512kB (UME) 66*1024kB (ME) 1*2048kB (E) 184*4096kB (UM) = 1183132kB [ 712.639676][T25709] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 712.687755][T25709] Node 1 Normal: 147*4kB (UME) 29*8kB (UME) 40*16kB (UME) 241*32kB (UME) 101*64kB (UME) 37*128kB (UME) 16*256kB (UM) 7*512kB (UME) 1*1024kB (U) 4*2048kB (UME) 945*4096kB (M) = 3907988kB [ 712.760019][T25709] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 712.805909][T25709] Node 0 hugepages_total=1 hugepages_free=1 hugepages_surp=1 hugepages_size=2048kB [ 712.867612][T25709] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 712.919827][T25709] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 712.965249][T25709] 100314 total pagecache pages [ 712.978440][T25709] 44 pages in swap cache [ 712.996013][T25709] Free swap = 120040kB [ 713.009784][T25709] Total swap = 124996kB [ 713.027663][T25709] 2097051 pages RAM [ 713.042393][T25709] 0 pages HighMem/MovableOnly [ 713.063454][T25709] 428415 pages reserved [ 713.077424][T25709] 0 pages cma reserved [ 716.178950][ T30] audit: type=1800 audit(4294967325.900:40): pid=25862 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2586" name="features" dev="configfs" ino=65540 res=0 errno=0 [ 717.097287][T25864] FAULT_INJECTION: forcing a failure. [ 717.097287][T25864] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 717.145374][T25864] CPU: 1 UID: 0 PID: 25864 Comm: syz.1.2588 Not tainted syzkaller #0 PREEMPT(full) [ 717.145399][T25864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 717.145412][T25864] Call Trace: [ 717.145417][T25864] [ 717.145431][T25864] dump_stack_lvl+0x16c/0x1f0 [ 717.145455][T25864] should_fail_ex+0x512/0x640 [ 717.145480][T25864] should_fail_alloc_page+0xe7/0x130 [ 717.145502][T25864] prepare_alloc_pages+0x3c2/0x610 [ 717.145522][T25864] ? __lock_acquire+0x62e/0x1ce0 [ 717.145544][T25864] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 717.145567][T25864] ? __lock_acquire+0x62e/0x1ce0 [ 717.145589][T25864] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 717.145605][T25864] ? __lock_acquire+0x62e/0x1ce0 [ 717.145630][T25864] ? __lock_acquire+0x62e/0x1ce0 [ 717.145653][T25864] ? local_lock_release+0x99/0x140 [ 717.145672][T25864] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 717.145690][T25864] ? policy_nodemask+0xea/0x4e0 [ 717.145711][T25864] alloc_pages_mpol+0x1fb/0x550 [ 717.145731][T25864] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 717.145752][T25864] ? __memcg_slab_post_alloc_hook+0x47c/0x940 [ 717.145775][T25864] alloc_pages_noprof+0x131/0x390 [ 717.145794][T25864] pgd_alloc+0x4b/0x600 [ 717.145815][T25864] mm_init+0x726/0x1380 [ 717.145836][T25864] copy_process+0x3eee/0x76a0 [ 717.145855][T25864] ? __pfx___futex_wait+0x10/0x10 [ 717.145877][T25864] ? __pfx_copy_process+0x10/0x10 [ 717.145896][T25864] ? futex_private_hash_put+0x176/0x300 [ 717.145918][T25864] ? futex_private_hash_put+0x18a/0x300 [ 717.145940][T25864] kernel_clone+0xfc/0x930 [ 717.145960][T25864] ? __pfx_kernel_clone+0x10/0x10 [ 717.145990][T25864] __do_sys_clone+0xce/0x120 [ 717.146009][T25864] ? __pfx___do_sys_clone+0x10/0x10 [ 717.146037][T25864] ? xfd_validate_state+0x61/0x180 [ 717.146049][T25864] ? __pfx_do_writev+0x10/0x10 [ 717.146069][T25864] do_syscall_64+0xcd/0x4b0 [ 717.146088][T25864] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 717.146103][T25864] RIP: 0033:0x7f7e35f8eec9 [ 717.146116][T25864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 717.146130][T25864] RSP: 002b:00007f7e36d47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 717.146145][T25864] RAX: ffffffffffffffda RBX: 00007f7e361e5fa0 RCX: 00007f7e35f8eec9 [ 717.146155][T25864] RDX: 0000000000000000 RSI: 0000000100000000 RDI: 0000000000000007 [ 717.146164][T25864] RBP: 00007f7e36011f91 R08: 0000000000000006 R09: 0000000000000000 [ 717.146173][T25864] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000 [ 717.146183][T25864] R13: 00007f7e361e6038 R14: 00007f7e361e5fa0 R15: 00007ffcba5902e8 [ 717.146202][T25864] [ 717.415119][ C1] vkms_vblank_simulate: vblank timer overrun [ 718.221541][T25863] Process accounting resumed [ 719.014274][T25911] FAULT_INJECTION: forcing a failure. [ 719.014274][T25911] name failslab, interval 1, probability 0, space 0, times 0 [ 719.069711][T25911] CPU: 1 UID: 0 PID: 25911 Comm: syz.0.2597 Not tainted syzkaller #0 PREEMPT(full) [ 719.069734][T25911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 719.069744][T25911] Call Trace: [ 719.069750][T25911] [ 719.069757][T25911] dump_stack_lvl+0x16c/0x1f0 [ 719.069780][T25911] should_fail_ex+0x512/0x640 [ 719.069801][T25911] ? __kmalloc_cache_noprof+0x5f/0x780 [ 719.069819][T25911] should_failslab+0xc2/0x120 [ 719.069840][T25911] __kmalloc_cache_noprof+0x72/0x780 [ 719.069855][T25911] ? cgroup_file_open+0x93/0x330 [ 719.069875][T25911] ? cgroup_file_open+0x93/0x330 [ 719.069890][T25911] cgroup_file_open+0x93/0x330 [ 719.069904][T25911] ? __pfx_cgroup_file_open+0x10/0x10 [ 719.069921][T25911] kernfs_fop_open+0x8c9/0xda0 [ 719.069941][T25911] do_dentry_open+0x982/0x1530 [ 719.069959][T25911] ? __pfx_kernfs_fop_open+0x10/0x10 [ 719.069978][T25911] vfs_open+0x82/0x3f0 [ 719.070001][T25911] path_openat+0x1de4/0x2cb0 [ 719.070024][T25911] ? __pfx_path_openat+0x10/0x10 [ 719.070046][T25911] do_filp_open+0x20b/0x470 [ 719.070063][T25911] ? __pfx_do_filp_open+0x10/0x10 [ 719.070093][T25911] ? alloc_fd+0x471/0x7d0 [ 719.070114][T25911] do_sys_openat2+0x11b/0x1d0 [ 719.070135][T25911] ? __pfx_do_sys_openat2+0x10/0x10 [ 719.070163][T25911] __x64_sys_openat+0x174/0x210 [ 719.070185][T25911] ? __pfx___x64_sys_openat+0x10/0x10 [ 719.070215][T25911] do_syscall_64+0xcd/0x4b0 [ 719.070233][T25911] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 719.070248][T25911] RIP: 0033:0x7faa2dd8eec9 [ 719.070260][T25911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 719.070274][T25911] RSP: 002b:00007faa2eb5d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 719.070289][T25911] RAX: ffffffffffffffda RBX: 00007faa2dfe5fa0 RCX: 00007faa2dd8eec9 [ 719.070306][T25911] RDX: 0000000000004400 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 719.070315][T25911] RBP: 00007faa2de11f91 R08: 0000000000000000 R09: 0000000000000000 [ 719.070324][T25911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 719.070333][T25911] R13: 00007faa2dfe6038 R14: 00007faa2dfe5fa0 R15: 00007fff66dbd5c8 [ 719.070353][T25911] [ 719.290776][ C1] vkms_vblank_simulate: vblank timer overrun [ 719.840967][T25949] FAULT_INJECTION: forcing a failure. [ 719.840967][T25949] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 719.870364][T25949] CPU: 1 UID: 0 PID: 25949 Comm: syz.0.2600 Not tainted syzkaller #0 PREEMPT(full) [ 719.870388][T25949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 719.870398][T25949] Call Trace: [ 719.870403][T25949] [ 719.870410][T25949] dump_stack_lvl+0x16c/0x1f0 [ 719.870431][T25949] should_fail_ex+0x512/0x640 [ 719.870455][T25949] should_fail_alloc_page+0xe7/0x130 [ 719.870478][T25949] prepare_alloc_pages+0x3c2/0x610 [ 719.870497][T25949] ? arch_stack_walk+0xa6/0x100 [ 719.870516][T25949] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 719.870536][T25949] ? stack_trace_save+0x8e/0xc0 [ 719.870555][T25949] ? __pfx_stack_trace_save+0x10/0x10 [ 719.870573][T25949] ? stack_depot_save_flags+0x29/0x9c0 [ 719.870594][T25949] ? find_held_lock+0x2b/0x80 [ 719.870611][T25949] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 719.870631][T25949] ? kasan_save_stack+0x42/0x60 [ 719.870647][T25949] ? kasan_save_stack+0x33/0x60 [ 719.870663][T25949] ? kasan_save_track+0x14/0x30 [ 719.870680][T25949] ? __kasan_slab_alloc+0x89/0x90 [ 719.870697][T25949] ? kmem_cache_alloc_noprof+0x250/0x6e0 [ 719.870712][T25949] ? security_inode_alloc+0x3b/0x2b0 [ 719.870731][T25949] ? inode_init_always_gfp+0xce4/0x1030 [ 719.870748][T25949] ? do_syscall_64+0xcd/0x4b0 [ 719.870764][T25949] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 719.870783][T25949] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 719.870800][T25949] ? policy_nodemask+0xea/0x4e0 [ 719.870821][T25949] alloc_pages_mpol+0x1fb/0x550 [ 719.870842][T25949] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 719.870866][T25949] ___kmalloc_large_node+0xed/0x160 [ 719.870889][T25949] __kmalloc_large_node_noprof+0x1c/0x70 [ 719.870911][T25949] __kmalloc_noprof.cold+0xc/0x62 [ 719.870932][T25949] ? sk_prot_alloc+0x1a8/0x2a0 [ 719.870951][T25949] ? sk_prot_alloc+0x1a8/0x2a0 [ 719.870964][T25949] sk_prot_alloc+0x1a8/0x2a0 [ 719.870980][T25949] sk_alloc+0x36/0xc20 [ 719.870999][T25949] can_create+0x1e5/0x630 [ 719.871026][T25949] __sock_create+0x335/0x8d0 [ 719.871045][T25949] __sys_socket+0x14d/0x260 [ 719.871062][T25949] ? __pfx___sys_socket+0x10/0x10 [ 719.871079][T25949] ? xfd_validate_state+0x61/0x180 [ 719.871091][T25949] ? __pfx_ksys_write+0x10/0x10 [ 719.871112][T25949] __x64_sys_socket+0x72/0xb0 [ 719.871128][T25949] ? lockdep_hardirqs_on+0x7c/0x110 [ 719.871144][T25949] do_syscall_64+0xcd/0x4b0 [ 719.871162][T25949] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 719.871176][T25949] RIP: 0033:0x7faa2dd8eec9 [ 719.871195][T25949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 719.871210][T25949] RSP: 002b:00007faa2bff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 719.871225][T25949] RAX: ffffffffffffffda RBX: 00007faa2dfe6090 RCX: 00007faa2dd8eec9 [ 719.871235][T25949] RDX: 0000000000000006 RSI: 0000000000000002 RDI: 000000000000001d [ 719.871245][T25949] RBP: 00007faa2de11f91 R08: 0000000000000000 R09: 0000000000000000 [ 719.871254][T25949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 719.871264][T25949] R13: 00007faa2dfe6128 R14: 00007faa2dfe6090 R15: 00007fff66dbd5c8 [ 719.871283][T25949] [ 720.180288][ C1] vkms_vblank_simulate: vblank timer overrun [ 720.328418][T25957] bond0: Unable to set peer notification delay as MII monitoring is disabled [ 720.915908][T25975] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2604'. [ 721.295721][T25975] team0 (unregistering): Port device team_slave_0 removed [ 721.318235][T25975] team0 (unregistering): Port device team_slave_1 removed [ 722.663824][T26057] FAULT_INJECTION: forcing a failure. [ 722.663824][T26057] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 722.703772][T26064] ptrace attach of "./syz-executor exec"[5837] was attempted by ""[26064] [ 722.715931][T26057] CPU: 1 UID: 0 PID: 26057 Comm: syz.0.2613 Not tainted syzkaller #0 PREEMPT(full) [ 722.715954][T26057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 722.715965][T26057] Call Trace: [ 722.715971][T26057] [ 722.715978][T26057] dump_stack_lvl+0x16c/0x1f0 [ 722.716001][T26057] should_fail_ex+0x512/0x640 [ 722.716026][T26057] should_fail_alloc_page+0xe7/0x130 [ 722.716049][T26057] prepare_alloc_pages+0x3c2/0x610 [ 722.716069][T26057] ? __lock_acquire+0x62e/0x1ce0 [ 722.716093][T26057] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 722.716115][T26057] ? __lock_acquire+0x62e/0x1ce0 [ 722.716138][T26057] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 722.716154][T26057] ? __lock_acquire+0x62e/0x1ce0 [ 722.716179][T26057] ? __lock_acquire+0x62e/0x1ce0 [ 722.716203][T26057] ? local_lock_release+0x99/0x140 [ 722.716223][T26057] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 722.716239][T26057] ? policy_nodemask+0xea/0x4e0 [ 722.716261][T26057] alloc_pages_mpol+0x1fb/0x550 [ 722.716281][T26057] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 722.716302][T26057] ? __memcg_slab_post_alloc_hook+0x47c/0x940 [ 722.716325][T26057] alloc_pages_noprof+0x131/0x390 [ 722.716345][T26057] pgd_alloc+0x4b/0x600 [ 722.716366][T26057] mm_init+0x726/0x1380 [ 722.716387][T26057] copy_process+0x3eee/0x76a0 [ 722.716406][T26057] ? __pfx___futex_wait+0x10/0x10 [ 722.716428][T26057] ? __pfx_copy_process+0x10/0x10 [ 722.716447][T26057] ? futex_private_hash_put+0x176/0x300 [ 722.716469][T26057] ? futex_private_hash_put+0x18a/0x300 [ 722.716491][T26057] kernel_clone+0xfc/0x930 [ 722.716511][T26057] ? __pfx_kernel_clone+0x10/0x10 [ 722.716541][T26057] __do_sys_clone+0xce/0x120 [ 722.716560][T26057] ? __pfx___do_sys_clone+0x10/0x10 [ 722.716588][T26057] ? xfd_validate_state+0x61/0x180 [ 722.716600][T26057] ? __pfx_do_writev+0x10/0x10 [ 722.716621][T26057] do_syscall_64+0xcd/0x4b0 [ 722.716640][T26057] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 722.716655][T26057] RIP: 0033:0x7faa2dd8eec9 [ 722.716667][T26057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 722.716682][T26057] RSP: 002b:00007faa2eb5d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 722.716697][T26057] RAX: ffffffffffffffda RBX: 00007faa2dfe5fa0 RCX: 00007faa2dd8eec9 [ 722.716707][T26057] RDX: 0000000000000000 RSI: 0000000100000000 RDI: 0000000000000007 [ 722.716716][T26057] RBP: 00007faa2de11f91 R08: 0000000000000006 R09: 0000000000000000 [ 722.716725][T26057] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000 [ 722.716733][T26057] R13: 00007faa2dfe6038 R14: 00007faa2dfe5fa0 R15: 00007fff66dbd5c8 [ 722.716752][T26057] [ 723.392202][ T5925] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1403 with max blocks 18 with error 117 [ 723.453222][ T5925] EXT4-fs (sda1): This should not happen!! Data will be lost [ 723.453222][ T5925] [ 724.412560][T26085] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2617'. [ 726.134771][T26199] WARNING! power/level is deprecated; use power/control instead [ 726.928149][T26213] Invalid ELF header magic: != ELF [ 728.659911][T26219] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2627'. [ 731.015724][T26404] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1383 with max blocks 38 with error 117 [ 731.145934][T26404] EXT4-fs (sda1): This should not happen!! Data will be lost [ 731.145934][T26404] [ 731.610319][T26444] FAULT_INJECTION: forcing a failure. [ 731.610319][T26444] name fail_futex, interval 1, probability 0, space 0, times 0 [ 731.653657][T26444] CPU: 1 UID: 0 PID: 26444 Comm: syz.1.2639 Not tainted syzkaller #0 PREEMPT(full) [ 731.653679][T26444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 731.653688][T26444] Call Trace: [ 731.653693][T26444] [ 731.653699][T26444] dump_stack_lvl+0x16c/0x1f0 [ 731.653721][T26444] should_fail_ex+0x512/0x640 [ 731.653745][T26444] get_futex_key+0x1d0/0x1560 [ 731.653766][T26444] ? find_held_lock+0x2b/0x80 [ 731.653784][T26444] ? __pfx_get_futex_key+0x10/0x10 [ 731.653802][T26444] ? __mutex_trylock_common+0xe9/0x250 [ 731.653828][T26444] futex_wake+0xea/0x530 [ 731.653844][T26444] ? __pfx_futex_wake+0x10/0x10 [ 731.653866][T26444] do_futex+0x1e3/0x350 [ 731.653886][T26444] ? __pfx_do_futex+0x10/0x10 [ 731.653904][T26444] ? __might_fault+0xe3/0x190 [ 731.653924][T26444] mm_release+0x24e/0x300 [ 731.653943][T26444] do_exit+0x68e/0x2bf0 [ 731.653959][T26444] ? __pfx_do_exit+0x10/0x10 [ 731.653972][T26444] ? rcu_is_watching+0x12/0xc0 [ 731.653992][T26444] do_group_exit+0xd3/0x2a0 [ 731.654005][T26444] __x64_sys_exit_group+0x3e/0x50 [ 731.654018][T26444] x64_sys_call+0x150b/0x1730 [ 731.654037][T26444] do_syscall_64+0xcd/0x4b0 [ 731.654055][T26444] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 731.654069][T26444] RIP: 0033:0x7f7e35f8eec9 [ 731.654081][T26444] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 731.654095][T26444] RSP: 002b:00007ffcba590648 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 731.654110][T26444] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f7e35f8eec9 [ 731.654119][T26444] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000 [ 731.654128][T26444] RBP: 00007ffcba5906ac R08: 00000014ba59073f R09: 00000000000927c0 [ 731.654136][T26444] R10: 0000000000045744 R11: 0000000000000246 R12: 00000000000002c3 [ 731.654145][T26444] R13: 00000000000927c0 R14: 00000000000b280e R15: 00007ffcba590700 [ 731.654163][T26444] [ 733.905650][T26451] kexec: Could not allocate control_code_buffer [ 737.032523][T26606] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2657'. [ 738.083699][T26613] kexec: Could not allocate control_code_buffer [ 738.445651][T26716] input: jJǸ-9%vJ86 as /devices/virtual/input/input33 [ 738.671204][T26719] usb usb24: usbfs: process 26719 (syz.2.2662) did not claim interface 0 before use [ 740.487062][T26747] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2668'. [ 741.131719][T26806] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2673'. [ 741.256793][T26806] veth1_macvtap: left promiscuous mode [ 741.581810][T26826] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2675'. [ 741.716172][T26826] bridge_slave_1: left allmulticast mode [ 741.738042][T26826] bridge_slave_1: left promiscuous mode [ 741.762792][T26826] bridge0: port 2(bridge_slave_1) entered disabled state [ 741.829277][T26826] bridge_slave_0: left allmulticast mode [ 741.846909][T26826] bridge_slave_0: left promiscuous mode [ 741.893431][T26826] bridge0: port 1(bridge_slave_0) entered disabled state [ 745.337380][T26967] netlink: 25 bytes leftover after parsing attributes in process `syz.1.2685'. [ 747.366844][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.374767][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 749.448880][T27093] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma? [ 749.516412][T27019] Process accounting paused [ 749.541250][T27119] FAULT_INJECTION: forcing a failure. [ 749.541250][T27119] name failslab, interval 1, probability 0, space 0, times 0 [ 749.595306][T27119] CPU: 1 UID: 0 PID: 27119 Comm: syz.3.2700 Not tainted syzkaller #0 PREEMPT(full) [ 749.595329][T27119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 749.595338][T27119] Call Trace: [ 749.595344][T27119] [ 749.595351][T27119] dump_stack_lvl+0x16c/0x1f0 [ 749.595374][T27119] should_fail_ex+0x512/0x640 [ 749.595396][T27119] ? fs_reclaim_acquire+0xae/0x150 [ 749.595418][T27119] should_failslab+0xc2/0x120 [ 749.595438][T27119] __kmalloc_noprof+0xdd/0x880 [ 749.595453][T27119] ? mempool_init_node+0x2f4/0x6e0 [ 749.595475][T27119] ? __pfx_mempool_kmalloc+0x10/0x10 [ 749.595492][T27119] ? mempool_init_node+0x2f4/0x6e0 [ 749.595509][T27119] ? __pfx_mempool_kmalloc+0x10/0x10 [ 749.595525][T27119] mempool_init_node+0x2f4/0x6e0 [ 749.595547][T27119] ? __pfx_mempool_kmalloc+0x10/0x10 [ 749.595563][T27119] ? __pfx_mempool_kfree+0x10/0x10 [ 749.595580][T27119] mempool_init_noprof+0x3a/0x50 [ 749.595600][T27119] do_fanotify_mark+0x2e65/0x39d0 [ 749.595623][T27119] ? __pfx_do_fanotify_mark+0x10/0x10 [ 749.595639][T27119] ? __x64_sys_futex+0x1e9/0x4c0 [ 749.595663][T27119] ? xfd_validate_state+0x61/0x180 [ 749.595676][T27119] ? __pfx_ksys_write+0x10/0x10 [ 749.595695][T27119] __x64_sys_fanotify_mark+0xbd/0x160 [ 749.595708][T27119] ? do_syscall_64+0x91/0x4b0 [ 749.595725][T27119] ? lockdep_hardirqs_on+0x7c/0x110 [ 749.595741][T27119] do_syscall_64+0xcd/0x4b0 [ 749.595767][T27119] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 749.595783][T27119] RIP: 0033:0x7ff0f298eec9 [ 749.595795][T27119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 749.595811][T27119] RSP: 002b:00007ff0f0bd5038 EFLAGS: 00000246 ORIG_RAX: 000000000000012d [ 749.595826][T27119] RAX: ffffffffffffffda RBX: 00007ff0f2be6090 RCX: 00007ff0f298eec9 [ 749.595836][T27119] RDX: 0000000000008009 RSI: 0000000000000105 RDI: 0000000000000000 [ 749.595845][T27119] RBP: 00007ff0f2a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 749.595854][T27119] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 749.595862][T27119] R13: 00007ff0f2be6128 R14: 00007ff0f2be6090 R15: 00007ffde38188a8 [ 749.595881][T27119] [ 750.586815][T27133] dlm: plock device version mismatch: kernel (1.2.0), user (1489226698.240317300.1121487582) [ 751.737562][T27113] kexec: Could not allocate control_code_buffer [ 751.883963][T27168] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 752.550071][T27172] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2707'. [ 752.970842][T27245] netlink: 25 bytes leftover after parsing attributes in process `syz.3.2713'. [ 752.987239][T27226] ima: policy update failed [ 753.019136][ T30] audit: type=1802 audit(4294968389.743:41): pid=27226 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.2712" res=0 errno=0 [ 753.191223][T27248] 0x000200000001-0xa29656a63616329 : "" [ 753.221090][T27248] mtd: partition "" is out of reach -- disabled [ 753.294648][T27248] ftl_cs: FTL header not found. [ 753.331814][T27250] syz.0.2715 (27250): /proc/27249/oom_adj is deprecated, please use /proc/27249/oom_score_adj instead. [ 753.384135][T27254] blktrace: Concurrent blktraces are not allowed on loop2 [ 753.783498][ T3481] EXT4-fs (sda1): Delayed block allocation failed for inode 2033 at logical offset 1381 with max blocks 22 with error 117 [ 753.871890][ T3481] EXT4-fs (sda1): This should not happen!! Data will be lost [ 753.871890][ T3481] [ 753.992580][ T3481] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1410 with max blocks 11 with error 117 [ 754.090936][ T3481] EXT4-fs (sda1): This should not happen!! Data will be lost [ 754.090936][ T3481] [ 755.321301][T27376] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2721'. [ 755.412674][T27376] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 755.465504][T27381] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2722'. [ 755.487903][T27376] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 755.623698][T27376] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 755.640917][T27376] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 757.752051][T27547] FAULT_INJECTION: forcing a failure. [ 757.752051][T27547] name failslab, interval 1, probability 0, space 0, times 0 [ 757.813484][T27547] CPU: 1 UID: 0 PID: 27547 Comm: syz.0.2739 Not tainted syzkaller #0 PREEMPT(full) [ 757.813507][T27547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 757.813516][T27547] Call Trace: [ 757.813522][T27547] [ 757.813528][T27547] dump_stack_lvl+0x16c/0x1f0 [ 757.813551][T27547] should_fail_ex+0x512/0x640 [ 757.813572][T27547] ? __kmalloc_cache_noprof+0x5f/0x780 [ 757.813589][T27547] should_failslab+0xc2/0x120 [ 757.813610][T27547] __kmalloc_cache_noprof+0x72/0x780 [ 757.813623][T27547] ? lockdep_init_map_type+0x5c/0x280 [ 757.813646][T27547] ? mon_bin_open+0x1a8/0x4a0 [ 757.813667][T27547] ? lockdep_init_map_type+0x5c/0x280 [ 757.813690][T27547] ? mon_bin_open+0x1a8/0x4a0 [ 757.813710][T27547] mon_bin_open+0x1a8/0x4a0 [ 757.813730][T27547] ? __pfx_mon_bin_open+0x10/0x10 [ 757.813751][T27547] chrdev_open+0x234/0x6a0 [ 757.813770][T27547] ? __pfx_chrdev_open+0x10/0x10 [ 757.813788][T27547] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 757.813809][T27547] do_dentry_open+0x982/0x1530 [ 757.813827][T27547] ? __pfx_chrdev_open+0x10/0x10 [ 757.813848][T27547] vfs_open+0x82/0x3f0 [ 757.813871][T27547] path_openat+0x1de4/0x2cb0 [ 757.813895][T27547] ? __pfx_path_openat+0x10/0x10 [ 757.813916][T27547] do_filp_open+0x20b/0x470 [ 757.813933][T27547] ? __pfx_do_filp_open+0x10/0x10 [ 757.813963][T27547] ? alloc_fd+0x471/0x7d0 [ 757.813984][T27547] do_sys_openat2+0x11b/0x1d0 [ 757.814012][T27547] ? __pfx_do_sys_openat2+0x10/0x10 [ 757.814042][T27547] __x64_sys_openat+0x174/0x210 [ 757.814064][T27547] ? __pfx___x64_sys_openat+0x10/0x10 [ 757.814094][T27547] do_syscall_64+0xcd/0x4b0 [ 757.814114][T27547] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 757.814128][T27547] RIP: 0033:0x7faa2dd8eec9 [ 757.814141][T27547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 757.814154][T27547] RSP: 002b:00007faa2eb5d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 757.814168][T27547] RAX: ffffffffffffffda RBX: 00007faa2dfe5fa0 RCX: 00007faa2dd8eec9 [ 757.814178][T27547] RDX: 0000000000004000 RSI: 0000200000000740 RDI: ffffffffffffff9c [ 757.814187][T27547] RBP: 00007faa2de11f91 R08: 0000000000000000 R09: 0000000000000000 [ 757.814196][T27547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 757.814204][T27547] R13: 00007faa2dfe6038 R14: 00007faa2dfe5fa0 R15: 00007fff66dbd5c8 [ 757.814223][T27547] [ 768.932974][T27764] Console: switching to colour VGA+ 80x25 [ 769.172235][T27764] Console: switching to colour frame buffer device 4x6 [ 769.594697][T27788] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2761'. [ 775.539783][T27996] [U]  [ 775.542594][T27996] [U] [ 775.545266][T27996] [U] [ 775.547945][T27996] [U] [ 775.634682][T27996] [U] [ 775.637410][T27996] [U] [ 775.640089][T27996] [U] [ 775.642765][T27996] [U] [ 775.696842][T27996] [U] [ 775.699558][T27996] [U] [ 775.702233][T27996] [U] [ 775.704919][T27996] [U] [ 775.750593][T27996] [U] [ 775.753314][T27996] [U] [ 775.755988][T27996] [U] [ 775.758680][T27996] [U] [ 775.816677][T27996] [U] [ 779.649341][T28058] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma? [ 780.160359][T28028] Process accounting resumed [ 781.203474][T28104] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 781.271219][T28104] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 781.378823][T28104] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 781.429632][T28104] CPU0 is offline. [ 782.425470][T28149] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2797'. [ 783.284609][T15223] Bluetooth: hci1: command 0x0c1a tx timeout [ 783.290688][T15223] Bluetooth: hci0: command 0x0c1a tx timeout [ 783.443633][T28168] Bluetooth: hci3: command 0x0c1a tx timeout [ 786.666937][T28219] Console: switching to colour VGA+ 80x25 [ 786.762009][T28221] Console: switching to colour frame buffer device 4x6 [ 787.123395][T28246] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input34 [ 787.650475][T28269] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2812'. [ 787.700687][T28269] netlink: 354 bytes leftover after parsing attributes in process `syz.0.2812'. [ 787.845587][T28276] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2815'. [ 787.945096][T28276] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2815'. [ 788.019423][T28287] netlink: 290 bytes leftover after parsing attributes in process `syz.3.2815'. [ 788.073683][T28287] veth0_macvtap: left promiscuous mode [ 788.138593][T28276] netlink: 290 bytes leftover after parsing attributes in process `syz.3.2815'. [ 788.150330][T28276] veth0_macvtap: entered promiscuous mode [ 788.304983][T28315] Console: switching to colour VGA+ 80x25 [ 788.423860][T28323] Console: switching to colour frame buffer device 4x6 [ 788.921339][T28356] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2820'. [ 788.949169][T28354] netlink: 'syz.3.2821': attribute type 10 has an invalid length. [ 788.988710][T28354] netlink: 230 bytes leftover after parsing attributes in process `syz.3.2821'. [ 789.063060][T28354] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 791.687479][T28441] [U]  [ 791.690282][T28441] [U] [ 791.692961][T28441] [U] [ 791.695635][T28441] [U] [ 791.743948][T28441] [U] [ 791.746662][T28441] [U] [ 791.749338][T28441] [U] [ 791.752012][T28441] [U] [ 791.815080][T28441] [U] [ 791.817801][T28441] [U] [ 791.820477][T28441] [U] [ 791.823148][T28441] [U] [ 791.866242][T28441] [U] [ 795.691085][T28528] netlink: 'syz.2.2846': attribute type 10 has an invalid length. [ 795.747220][T28528] netlink: 230 bytes leftover after parsing attributes in process `syz.2.2846'. [ 796.008821][T28550] netlink: 268 bytes leftover after parsing attributes in process `syz.1.2847'. [ 796.093156][T28550] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.2847: iget: checksum invalid [ 796.154269][T28550] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 796.189847][T28550] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.2847: iget: checksum invalid [ 796.257620][T28550] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 796.327216][T28550] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.2847: iget: checksum invalid [ 796.403583][T28550] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 796.481473][T28550] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.2847: iget: checksum invalid [ 796.546249][T28550] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 796.588086][T28550] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 796.638527][T28550] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 797.071204][T28608] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2853'. [ 797.114416][T28611] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2854'. [ 798.948079][T28678] input: f as /devices/virtual/input/input35 [ 800.722953][T28744] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2867'. [ 802.417418][T28834] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2879'. [ 803.042076][T28858] Console: switching to colour VGA+ 80x25 [ 804.491636][T28904] netlink: zone id is out of range [ 804.541711][T28901] netlink: set zone limit has 8 unknown bytes [ 804.571679][T28904] netlink: del zone limit has 4 unknown bytes [ 804.609794][T28905] openvswitch: HfR: Dropping previously announced user features [ 805.354395][T28930] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 806.383476][T28936] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2889'. [ 807.761582][T28954] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2893'. [ 807.781849][T28954] bond0: entered allmulticast mode [ 807.792142][T28954] bond_slave_1: entered allmulticast mode [ 808.026285][T29004] netlink: 268 bytes leftover after parsing attributes in process `syz.0.2895'. [ 808.094618][T29004] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.2895: iget: checksum invalid [ 808.170927][T29004] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 808.255143][T29004] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.2895: iget: checksum invalid [ 808.344963][T29004] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 808.393791][T29004] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.2895: iget: checksum invalid [ 808.459402][T29004] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 808.514581][T29004] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.2895: iget: checksum invalid [ 808.585403][T29004] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 808.667337][T29004] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 808.741150][T29004] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 808.806462][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 808.812846][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 809.121230][T29083] netlink: 93 bytes leftover after parsing attributes in process `syz.0.2899'. [ 809.435683][T29086] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 809.921742][T29103] ubi0: attaching mtd0 [ 809.946810][T29094] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2910'. [ 809.967121][T29103] ubi0: scanning is finished [ 809.994331][T29103] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 810.050654][T29094] macsec0: entered allmulticast mode [ 810.072863][T29094] veth1_macvtap: entered allmulticast mode [ 810.317948][T29103] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 810.546503][T29101] Process accounting paused [ 814.495126][T29360] usb usb15: usbfs: process 29360 (syz.1.2925) did not claim interface 0 before use [ 814.576169][T29351] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2931'. [ 815.496629][T29398] random: crng reseeded on system resumption [ 816.031071][T29379] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2926'. [ 816.063946][T29379] bond0: entered allmulticast mode [ 816.081916][T29379] bond_slave_1: entered allmulticast mode [ 817.533884][T28168] Bluetooth: hci0: unexpected event 0x02 length: 726 > 260 [ 817.960225][T29517] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2946'. [ 818.675571][T29533] netlink: 'syz.3.2940': attribute type 4 has an invalid length. [ 818.703827][T29533] netlink: 'syz.3.2940': attribute type 5 has an invalid length. [ 818.752619][T29533] netlink: 10 bytes leftover after parsing attributes in process `syz.3.2940'. [ 819.295420][T29526] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2939'. [ 819.356873][T29526] bond0: entered allmulticast mode [ 819.378505][T29526] bond_slave_0: entered allmulticast mode [ 819.378524][T29526] bond_slave_1: entered allmulticast mode [ 819.982542][T29611] netlink: 29 bytes leftover after parsing attributes in process `syz.0.2944'. [ 820.904809][T29633] FAULT_INJECTION: forcing a failure. [ 820.904809][T29633] name failslab, interval 1, probability 0, space 0, times 0 [ 821.094138][T29633] CPU: 1 UID: 0 PID: 29633 Comm: syz.3.2948 Not tainted syzkaller #0 PREEMPT(full) [ 821.094161][T29633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 821.094171][T29633] Call Trace: [ 821.094177][T29633] [ 821.094183][T29633] dump_stack_lvl+0x16c/0x1f0 [ 821.094205][T29633] should_fail_ex+0x512/0x640 [ 821.094226][T29633] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 821.094247][T29633] should_failslab+0xc2/0x120 [ 821.094267][T29633] __kvmalloc_node_noprof+0x141/0x9c0 [ 821.094284][T29633] ? rcu_is_watching+0x12/0xc0 [ 821.094302][T29633] ? kfree+0x252/0x6d0 [ 821.094314][T29633] ? snd_pcm_plugin_alloc+0x5fd/0x7f0 [ 821.094334][T29633] ? snd_pcm_plugin_alloc+0x5fd/0x7f0 [ 821.094349][T29633] snd_pcm_plugin_alloc+0x5fd/0x7f0 [ 821.094368][T29633] snd_pcm_plug_alloc+0x146/0x330 [ 821.094385][T29633] snd_pcm_oss_change_params_locked+0x19b8/0x3a30 [ 821.094410][T29633] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 821.094442][T29633] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 821.094461][T29633] snd_pcm_oss_ioctl+0x2212/0x37c0 [ 821.094484][T29633] ? hook_file_ioctl_common+0x145/0x410 [ 821.094501][T29633] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 821.094519][T29633] ? __fget_files+0x20e/0x3c0 [ 821.094538][T29633] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 821.094554][T29633] __x64_sys_ioctl+0x18b/0x210 [ 821.094578][T29633] do_syscall_64+0xcd/0x4b0 [ 821.094597][T29633] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 821.094611][T29633] RIP: 0033:0x7ff0f298eec9 [ 821.094624][T29633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 821.094638][T29633] RSP: 002b:00007ff0f0bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 821.094652][T29633] RAX: ffffffffffffffda RBX: 00007ff0f2be5fa0 RCX: 00007ff0f298eec9 [ 821.094662][T29633] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000006 [ 821.094672][T29633] RBP: 00007ff0f2a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 821.094681][T29633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 821.094690][T29633] R13: 00007ff0f2be6038 R14: 00007ff0f2be5fa0 R15: 00007ffde38188a8 [ 821.094710][T29633] [ 821.318610][ C1] vkms_vblank_simulate: vblank timer overrun [ 821.441178][T29636] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2950'. [ 822.068094][T29634] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.2.2949: bg 1: bad block bitmap checksum [ 822.291830][T29634] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1 with max blocks 1 with error 74 [ 822.561312][T29634] EXT4-fs (sda1): This should not happen!! Data will be lost [ 822.561312][T29634] [ 823.463658][T29833] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.2954: iget: checksum invalid [ 823.503963][T29838] input: f as /devices/virtual/input/input37 [ 823.563629][T29833] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 823.614131][T29833] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.2954: iget: checksum invalid [ 823.699137][T29833] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 823.780284][T29833] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.2954: iget: checksum invalid [ 823.840091][T29833] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 823.888958][T29833] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.2954: iget: checksum invalid [ 823.941539][T29833] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 823.988125][T29833] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 824.038043][T29833] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 824.283168][T29846] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 824.325752][T29846] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 824.354392][T29846] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 824.398281][T29846] CPU0 is offline. [ 824.416084][T29880] FAULT_INJECTION: forcing a failure. [ 824.416084][T29880] name failslab, interval 1, probability 0, space 0, times 0 [ 824.496833][T29880] CPU: 1 UID: 0 PID: 29880 Comm: syz.3.2957 Not tainted syzkaller #0 PREEMPT(full) [ 824.496856][T29880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 824.496865][T29880] Call Trace: [ 824.496871][T29880] [ 824.496878][T29880] dump_stack_lvl+0x16c/0x1f0 [ 824.496901][T29880] should_fail_ex+0x512/0x640 [ 824.496922][T29880] ? __kmalloc_noprof+0xca/0x880 [ 824.496940][T29880] should_failslab+0xc2/0x120 [ 824.496960][T29880] __kmalloc_noprof+0xdd/0x880 [ 824.496974][T29880] ? snd_pcm_plugin_build+0x64/0x650 [ 824.496994][T29880] ? snd_pcm_plugin_build+0x64/0x650 [ 824.497009][T29880] snd_pcm_plugin_build+0x64/0x650 [ 824.497028][T29880] snd_pcm_plugin_build_io+0x207/0x5f0 [ 824.497046][T29880] ? __pfx_snd_pcm_plugin_build_io+0x10/0x10 [ 824.497064][T29880] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 824.497086][T29880] snd_pcm_oss_change_params_locked+0x2e67/0x3a30 [ 824.497111][T29880] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 824.497141][T29880] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 824.497160][T29880] snd_pcm_oss_ioctl+0x2212/0x37c0 [ 824.497176][T29880] ? hook_file_ioctl_common+0x145/0x410 [ 824.497191][T29880] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 824.497208][T29880] ? __fget_files+0x20e/0x3c0 [ 824.497227][T29880] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 824.497242][T29880] __x64_sys_ioctl+0x18b/0x210 [ 824.497266][T29880] do_syscall_64+0xcd/0x4b0 [ 824.497285][T29880] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 824.497300][T29880] RIP: 0033:0x7ff0f298eec9 [ 824.497312][T29880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 824.497326][T29880] RSP: 002b:00007ff0f0bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 824.497341][T29880] RAX: ffffffffffffffda RBX: 00007ff0f2be5fa0 RCX: 00007ff0f298eec9 [ 824.497350][T29880] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000009 [ 824.497359][T29880] RBP: 00007ff0f2a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 824.497368][T29880] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 824.497376][T29880] R13: 00007ff0f2be6038 R14: 00007ff0f2be5fa0 R15: 00007ffde38188a8 [ 824.497395][T29880] [ 825.310392][ T12] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:0: bg 7: bad block bitmap checksum [ 825.370087][ T12] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1 with max blocks 1 with error 74 [ 825.400480][T29961] Console: switching to colour frame buffer device 4x6 [ 825.440093][ T12] EXT4-fs (sda1): This should not happen!! Data will be lost [ 825.440093][ T12] [ 825.478808][ T12] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1417 with max blocks 4 with error 117 [ 825.478837][ T12] EXT4-fs (sda1): This should not happen!! Data will be lost [ 825.478837][ T12] [ 825.481769][ T12] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 921 with max blocks 14 with error 117 [ 825.481794][ T12] EXT4-fs (sda1): This should not happen!! Data will be lost [ 825.481794][ T12] [ 825.554660][ T12] EXT4-fs (sda1): Delayed block allocation failed for inode 2033 at logical offset 1401 with max blocks 2 with error 117 [ 825.554687][ T12] EXT4-fs (sda1): This should not happen!! Data will be lost [ 825.554687][ T12] [ 825.776606][T28168] Bluetooth: hci0: command 0x0c1a tx timeout [ 826.330203][T28168] Bluetooth: hci1: command 0x0c1a tx timeout [ 826.403264][T28168] Bluetooth: hci3: command 0x0c1a tx timeout [ 826.536032][T30020] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2963'. [ 826.698150][T30024] ptrace attach of "./syz-executor exec"[5851] was attempted by "./syz-executor exec"[30024] [ 826.786386][T30020] : renamed from bond0 (while UP) [ 827.061876][T30044] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2966'. [ 827.125871][T30044] netlink: 354 bytes leftover after parsing attributes in process `syz.2.2966'. [ 827.175785][T30053] ubi0: attaching mtd0 [ 827.181098][T30053] ubi0: scanning is finished [ 827.243426][T30053] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 827.351676][T30060] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2967'. [ 827.433715][T30060] netlink: 'syz.3.2967': attribute type 1 has an invalid length. [ 827.478338][T30060] netlink: 'syz.3.2967': attribute type 6 has an invalid length. [ 827.643946][T30053] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 828.196737][T30070] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2970'. [ 828.271767][T30070] macsec0: entered allmulticast mode [ 828.302547][T30070] veth1_macvtap: entered allmulticast mode [ 828.439048][T30103] EXT4-fs error (device sda1): ext4_discard_preallocations:5681: comm syz.0.2973: Error -117 reading block bitmap for 7 [ 828.702639][T30062] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2968'. [ 828.754167][T30062] bond0: entered allmulticast mode [ 828.838011][T30115] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 829.790437][ T30] audit: type=1400 audit(4294967323.720:42): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=30127 comm="syz.0.2980" [ 830.771807][T30171] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2984'. [ 831.224354][T30212] Unable to find swap-space signature [ 832.232151][T30252] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2989'. [ 832.438527][T30259] FAULT_INJECTION: forcing a failure. [ 832.438527][T30259] name failslab, interval 1, probability 0, space 0, times 0 [ 832.508689][T30259] CPU: 1 UID: 0 PID: 30259 Comm: syz.0.2990 Not tainted syzkaller #0 PREEMPT(full) [ 832.508712][T30259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 832.508722][T30259] Call Trace: [ 832.508728][T30259] [ 832.508735][T30259] dump_stack_lvl+0x16c/0x1f0 [ 832.508757][T30259] should_fail_ex+0x512/0x640 [ 832.508778][T30259] ? __kmalloc_noprof+0xca/0x880 [ 832.508795][T30259] should_failslab+0xc2/0x120 [ 832.508816][T30259] __kmalloc_noprof+0xdd/0x880 [ 832.508831][T30259] ? __register_sysctl_table+0xb3/0x1900 [ 832.508863][T30259] ? __register_sysctl_table+0xb3/0x1900 [ 832.508885][T30259] __register_sysctl_table+0xb3/0x1900 [ 832.508909][T30259] ? is_module_address+0x5f/0xf0 [ 832.508927][T30259] ? __pfx___register_sysctl_table+0x10/0x10 [ 832.508947][T30259] ? is_module_address+0x69/0xf0 [ 832.508960][T30259] ? register_net_sysctl_sz+0x228/0x3e0 [ 832.508982][T30259] ? __asan_memcpy+0x3c/0x60 [ 832.508999][T30259] xfrm6_net_init+0xf0/0x1c0 [ 832.509015][T30259] ? __pfx_xfrm6_net_init+0x10/0x10 [ 832.509028][T30259] ops_init+0x1e2/0x5f0 [ 832.509052][T30259] setup_net+0x100/0x390 [ 832.509073][T30259] ? __pfx_setup_net+0x10/0x10 [ 832.509095][T30259] ? debug_mutex_init+0x37/0x70 [ 832.509114][T30259] copy_net_ns+0x2f8/0x690 [ 832.509130][T30259] create_new_namespaces+0x3ea/0xa90 [ 832.509153][T30259] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 832.509174][T30259] ksys_unshare+0x45b/0xa40 [ 832.509195][T30259] ? __pfx_ksys_unshare+0x10/0x10 [ 832.509216][T30259] ? xfd_validate_state+0x61/0x180 [ 832.509235][T30259] __x64_sys_unshare+0x31/0x40 [ 832.509255][T30259] do_syscall_64+0xcd/0x4b0 [ 832.509274][T30259] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 832.509289][T30259] RIP: 0033:0x7faa2dd8eec9 [ 832.509301][T30259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 832.509315][T30259] RSP: 002b:00007faa2bff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 832.509329][T30259] RAX: ffffffffffffffda RBX: 00007faa2dfe6090 RCX: 00007faa2dd8eec9 [ 832.509339][T30259] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 832.509348][T30259] RBP: 00007faa2de11f91 R08: 0000000000000000 R09: 0000000000000000 [ 832.509356][T30259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 832.509364][T30259] R13: 00007faa2dfe6128 R14: 00007faa2dfe6090 R15: 00007fff66dbd5c8 [ 832.509383][T30259] [ 832.753024][ C1] vkms_vblank_simulate: vblank timer overrun [ 834.671700][T30284] FAULT_INJECTION: forcing a failure. [ 834.671700][T30284] name failslab, interval 1, probability 0, space 0, times 0 [ 834.929654][T30284] CPU: 1 UID: 0 PID: 30284 Comm: syz.1.2994 Not tainted syzkaller #0 PREEMPT(full) [ 834.929678][T30284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 834.929689][T30284] Call Trace: [ 834.929694][T30284] [ 834.929701][T30284] dump_stack_lvl+0x16c/0x1f0 [ 834.929724][T30284] should_fail_ex+0x512/0x640 [ 834.929744][T30284] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 834.929763][T30284] should_failslab+0xc2/0x120 [ 834.929784][T30284] kmem_cache_alloc_noprof+0x75/0x6e0 [ 834.929800][T30284] ? acpi_ut_create_generic_state+0x5c/0xb0 [ 834.929822][T30284] ? acpi_ut_create_generic_state+0x5c/0xb0 [ 834.929838][T30284] acpi_ut_create_generic_state+0x5c/0xb0 [ 834.929854][T30284] acpi_ps_init_scope+0x1a/0x1c0 [ 834.929874][T30284] acpi_ds_init_aml_walk+0x1d9/0x590 [ 834.929897][T30284] acpi_ds_call_control_method+0x2d8/0x5e0 [ 834.929917][T30284] acpi_ps_parse_aml+0x845/0xcb0 [ 834.929939][T30284] acpi_ps_execute_method+0x55a/0xb30 [ 834.929960][T30284] ? acpi_ut_acquire_mutex+0x125/0x1d0 [ 834.929976][T30284] acpi_ns_evaluate+0x76c/0xca0 [ 834.929998][T30284] ? kasan_save_track+0x14/0x30 [ 834.930017][T30284] acpi_evaluate_object+0x1fa/0xa90 [ 834.930039][T30284] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 834.930056][T30284] ? __mutex_trylock_common+0xe9/0x250 [ 834.930082][T30284] acpi_evaluate_integer+0xdd/0x200 [ 834.930098][T30284] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 834.930122][T30284] ? __pfx_status_show+0x10/0x10 [ 834.930139][T30284] status_show+0xa0/0x120 [ 834.930156][T30284] ? __pfx_status_show+0x10/0x10 [ 834.930179][T30284] dev_attr_show+0x53/0xe0 [ 834.930196][T30284] ? __pfx_dev_attr_show+0x10/0x10 [ 834.930211][T30284] sysfs_kf_seq_show+0x216/0x3e0 [ 834.930233][T30284] seq_read_iter+0x50b/0x12d0 [ 834.930257][T30284] kernfs_fop_read_iter+0x46c/0x610 [ 834.930272][T30284] ? rw_verify_area+0xcf/0x6c0 [ 834.930289][T30284] vfs_read+0x8bc/0xcf0 [ 834.930307][T30284] ? __pfx___mutex_lock+0x10/0x10 [ 834.930325][T30284] ? __pfx_vfs_read+0x10/0x10 [ 834.930354][T30284] ksys_read+0x12a/0x250 [ 834.930370][T30284] ? __pfx_ksys_read+0x10/0x10 [ 834.930392][T30284] do_syscall_64+0xcd/0x4b0 [ 834.930411][T30284] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 834.930425][T30284] RIP: 0033:0x7f7e35f8eec9 [ 834.930438][T30284] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 834.930452][T30284] RSP: 002b:00007f7e36d47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 834.930467][T30284] RAX: ffffffffffffffda RBX: 00007f7e361e5fa0 RCX: 00007f7e35f8eec9 [ 834.930477][T30284] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000005 [ 834.930486][T30284] RBP: 00007f7e36011f91 R08: 0000000000000000 R09: 0000000000000000 [ 834.930494][T30284] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 834.930503][T30284] R13: 00007f7e361e6038 R14: 00007f7e361e5fa0 R15: 00007ffcba5902e8 [ 834.930524][T30284] [ 834.930598][T30284] ACPI Error: [ 835.447683][T30325] Invalid ELF header magic: != ELF [ 835.989528][T30333] netlink: 186 bytes leftover after parsing attributes in process `syz.2.2999'. [ 836.399484][T30335] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 836.692516][T28168] Bluetooth: hci0: unexpected event 0x30 length: 47 > 3 [ 836.914324][T30345] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.3003: iget: checksum invalid [ 836.995189][T30345] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 837.047141][T30345] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.3003: iget: checksum invalid [ 837.099147][T30345] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 837.143524][T30345] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.3003: iget: checksum invalid [ 837.198300][T30345] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 837.246517][T30345] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.3003: iget: checksum invalid [ 837.294836][T30345] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 837.331753][T30345] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 837.376077][T30345] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 837.674260][T30375] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3004'. [ 837.723300][T30353] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 837.766065][T30353] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 837.804410][T30353] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 837.810385][T30353] CPU0 is offline. [ 837.837542][T30284] Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20250807/psparse-529) [ 839.175682][T30411] Invalid ELF header magic: != ELF [ 839.206003][T28168] Bluetooth: hci0: command 0x0c1a tx timeout [ 839.560590][T30423] futex_wake_op: syz.2.3015 tries to shift op by -2048; fix this program [ 839.596745][T30423] futex_wake_op: syz.2.3015 tries to shift op by -2048; fix this program [ 839.764719][T28168] Bluetooth: hci1: command 0x0c1a tx timeout [ 839.843301][T28168] Bluetooth: hci3: command 0x0c1a tx timeout [ 841.912194][T30456] Process accounting resumed [ 842.138322][ T36] EXT4-fs: 4 callbacks suppressed [ 842.138338][ T36] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1413 with max blocks 8 with error 117 [ 842.251545][ T36] EXT4-fs (sda1): This should not happen!! Data will be lost [ 842.251545][ T36] [ 845.181105][T30635] ima: policy update failed [ 845.207784][T30635] netlink: 25 bytes leftover after parsing attributes in process `syz.1.3033'. [ 845.216891][ T30] audit: type=1802 audit(4294967339.140:43): pid=30635 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.3033" res=0 errno=0 [ 847.780153][T30790] Invalid ELF header magic: != ELF [ 848.687206][T30855] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3051'. [ 848.784966][T30855] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3051'. [ 849.487942][T30915] netlink: 330 bytes leftover after parsing attributes in process `syz.0.3060'. [ 849.702774][T30934] FAULT_INJECTION: forcing a failure. [ 849.702774][T30934] name failslab, interval 1, probability 0, space 0, times 0 [ 849.740860][T30915] : renamed from bond0 (while UP) [ 849.775052][T30934] CPU: 1 UID: 0 PID: 30934 Comm: syz.1.3055 Not tainted syzkaller #0 PREEMPT(full) [ 849.775075][T30934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 849.775084][T30934] Call Trace: [ 849.775089][T30934] [ 849.775096][T30934] dump_stack_lvl+0x16c/0x1f0 [ 849.775118][T30934] should_fail_ex+0x512/0x640 [ 849.775140][T30934] ? __kmalloc_cache_noprof+0x5f/0x780 [ 849.775158][T30934] should_failslab+0xc2/0x120 [ 849.775178][T30934] __kmalloc_cache_noprof+0x72/0x780 [ 849.775193][T30934] ? resv_map_alloc+0x7e/0x400 [ 849.775216][T30934] ? resv_map_alloc+0x7e/0x400 [ 849.775236][T30934] resv_map_alloc+0x7e/0x400 [ 849.775257][T30934] hugetlbfs_get_inode+0x33f/0x730 [ 849.775278][T30934] hugetlb_file_setup+0x15b/0x620 [ 849.775296][T30934] ksys_mmap_pgoff+0x189/0x5c0 [ 849.775324][T30934] __x64_sys_mmap+0x125/0x190 [ 849.775344][T30934] do_syscall_64+0xcd/0x4b0 [ 849.775364][T30934] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 849.775379][T30934] RIP: 0033:0x7f7e35f8eec9 [ 849.775392][T30934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 849.775406][T30934] RSP: 002b:00007f7e36d47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 849.775421][T30934] RAX: ffffffffffffffda RBX: 00007f7e361e5fa0 RCX: 00007f7e35f8eec9 [ 849.775430][T30934] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000 [ 849.775439][T30934] RBP: 00007f7e36011f91 R08: 0000000000000401 R09: 0000300000000000 [ 849.775448][T30934] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 849.775457][T30934] R13: 00007f7e361e6038 R14: 00007f7e361e5fa0 R15: 00007ffcba5902e8 [ 849.775476][T30934] [ 850.150866][T30935] netlink: 338 bytes leftover after parsing attributes in process `syz.2.3054'. [ 850.170875][T30941] netlink: 338 bytes leftover after parsing attributes in process `syz.2.3054'. [ 850.294438][T30935] netlink: 290 bytes leftover after parsing attributes in process `syz.2.3054'. [ 850.318384][T30935] veth0_macvtap: left promiscuous mode [ 850.348708][T30941] netlink: 290 bytes leftover after parsing attributes in process `syz.2.3054'. [ 850.757625][ T1314] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1373 with max blocks 48 with error 117 [ 850.832392][ T1314] EXT4-fs (sda1): This should not happen!! Data will be lost [ 850.832392][ T1314] [ 851.318197][T31025] Invalid ELF header magic: != ELF [ 852.136033][ T12] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1380 with max blocks 6 with error 117 [ 852.208961][ T12] EXT4-fs (sda1): This should not happen!! Data will be lost [ 852.208961][ T12] [ 853.198206][T31146] random: crng reseeded on system resumption [ 854.108475][T31193] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3067'. [ 856.895233][T31344] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3078'. [ 857.072575][T31344] netlink: 'syz.3.3078': attribute type 1 has an invalid length. [ 857.113651][T31344] netlink: 'syz.3.3078': attribute type 2 has an invalid length. [ 857.141426][T31344] netlink: 'syz.3.3078': attribute type 7 has an invalid length. [ 857.192411][T31344] netlink: 274 bytes leftover after parsing attributes in process `syz.3.3078'. [ 857.322406][T31379] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3079'. [ 857.352321][T31379] netlink: 'syz.1.3079': attribute type 1 has an invalid length. [ 857.383191][T31379] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3079'. [ 858.378466][T31426] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3091'. [ 858.452280][T28168] Bluetooth: hci3: unexpected event 0x13 length: 440 > 260 [ 858.704324][T31431] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3085'. [ 861.998976][T31639] netlink: 266 bytes leftover after parsing attributes in process `syz.0.3099'. [ 862.059174][T31639] IPv6: NLM_F_CREATE should be specified when creating new route [ 863.435934][T31671] Invalid ELF header magic: != ELF [ 864.127160][ T30] audit: type=1804 audit(4294967358.060:44): pid=31716 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.3114" name="/newroot/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw" dev="tracefs" ino=182 res=1 errno=0 [ 866.041125][T31755] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 867.958349][T31576] ------------[ cut here ]------------ [ 867.963940][T31576] WARNING: CPU: 1 PID: 31576 at kernel/trace/trace.c:8604 tracing_buffers_mmap_close+0xdd/0x130 [ 867.974487][T31576] Modules linked in: [ 867.978703][T31576] CPU: 1 UID: 0 PID: 31576 Comm: syz.3.3094 Not tainted syzkaller #0 PREEMPT(full) [ 867.988419][T31576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 867.998842][T31576] RIP: 0010:tracing_buffers_mmap_close+0xdd/0x130 [ 868.005455][T31576] Code: 75 46 48 8b 7b 08 e8 d2 96 ff ff 31 ff 89 c3 89 c6 e8 37 4d fb ff 85 db 75 0a 48 83 c4 08 5b e9 e9 51 fb ff e8 e4 51 fb ff 90 <0f> 0b 90 48 83 c4 08 5b e9 d6 51 fb ff e8 71 d0 62 00 eb 87 e8 9a [ 868.025062][ C1] vkms_vblank_simulate: vblank timer overrun [ 868.031127][T31576] RSP: 0018:ffffc9001714f9c0 EFLAGS: 00010293 [ 868.037394][T31576] RAX: 0000000000000000 RBX: 00000000ffffffed RCX: ffffffff81bf40e9 [ 868.045463][T31576] RDX: ffff88807889bc80 RSI: ffffffff81bf40fc RDI: 0000000000000005 [ 868.053479][T31576] RBP: ffffffff81bf4020 R08: 0000000000000005 R09: 0000000000000000 [ 868.061449][T31576] R10: 00000000ffffffed R11: 0000000000000000 R12: ffff88805b5fecc8 [ 868.069589][T31576] R13: dffffc0000000000 R14: ffffc9001714fa48 R15: 0000000000000000 [ 868.077631][T31576] FS: 0000000000000000(0000) GS:ffff888124f6f000(0000) knlGS:0000000000000000 [ 868.087044][T31576] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 868.093939][T31576] CR2: 00007fc1138ec915 CR3: 00000000301f8000 CR4: 00000000003526f0 [ 868.101925][T31576] Call Trace: [ 868.105276][T31576] [ 868.108213][T31576] remove_vma+0x88/0x160 [ 868.112444][T31576] exit_mmap+0x50a/0xb90 [ 868.116828][T31576] ? __pfx_exit_mmap+0x10/0x10 [ 868.121588][T31576] ? __lock_acquire+0xb97/0x1ce0 [ 868.126582][T31576] ? arch_uprobe_clear_state+0x16/0x150 [ 868.132120][T31576] __mmput+0x12a/0x410 [ 868.136221][T31576] mmput+0x62/0x70 [ 868.139953][T31576] do_exit+0x7c7/0x2bf0 [ 868.144225][T31576] ? proc_coredump_connector+0x2d1/0x4f0 [ 868.149861][T31576] ? __pfx_do_exit+0x10/0x10 [ 868.154492][T31576] do_group_exit+0xd3/0x2a0 [ 868.159036][T31576] get_signal+0x2671/0x26d0 [ 868.163629][T31576] ? force_sig_fault+0xc4/0x100 [ 868.168487][T31576] ? __pfx_get_signal+0x10/0x10 [ 868.173435][T31576] arch_do_signal_or_restart+0x8f/0x790 [ 868.179035][T31576] ? trace_irq_disable.constprop.0+0xd4/0x120 [ 868.185334][T31576] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 868.191769][T31576] irqentry_exit_to_user_mode+0x141/0x2b0 [ 868.197647][T31576] asm_exc_page_fault+0x26/0x30 [ 868.202491][T31576] RIP: 0033:0x40fff [ 868.206333][T31576] Code: Unable to access opcode bytes at 0x40fd5. [ 868.212739][T31576] RSP: 002b:000000000000000a EFLAGS: 00010206 [ 868.218847][T31576] RAX: 0000000000000000 RBX: 00007ff0f2be5fa0 RCX: 00007ff0f298eec9 [ 868.226850][T31576] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46 [ 868.234847][T31576] RBP: 00007ff0f2a11f91 R08: 0000000000000002 R09: 0000000000000000 [ 868.242815][T31576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 868.250895][T31576] R13: 00007ff0f2be6038 R14: 00007ff0f2be5fa0 R15: 00007ffde38188a8 [ 868.258917][T31576] [ 868.261926][T31576] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 868.269211][T31576] CPU: 1 UID: 0 PID: 31576 Comm: syz.3.3094 Not tainted syzkaller #0 PREEMPT(full) [ 868.278570][T31576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 868.288694][T31576] Call Trace: [ 868.291960][T31576] [ 868.294872][T31576] dump_stack_lvl+0x3d/0x1f0 [ 868.299451][T31576] vpanic+0x640/0x6f0 [ 868.303417][T31576] ? tracing_buffers_mmap_close+0xdd/0x130 [ 868.309206][T31576] panic+0xca/0xd0 [ 868.312906][T31576] ? __pfx_panic+0x10/0x10 [ 868.317309][T31576] ? check_panic_on_warn+0x1f/0xb0 [ 868.322401][T31576] check_panic_on_warn+0xab/0xb0 [ 868.327322][T31576] __warn+0xf6/0x3c0 [ 868.331199][T31576] ? tracing_buffers_mmap_close+0xdd/0x130 [ 868.336992][T31576] report_bug+0x3c3/0x580 [ 868.341304][T31576] ? tracing_buffers_mmap_close+0xdd/0x130 [ 868.347112][T31576] handle_bug+0x184/0x210 [ 868.351443][T31576] exc_invalid_op+0x17/0x50 [ 868.355937][T31576] asm_exc_invalid_op+0x1a/0x20 [ 868.360766][T31576] RIP: 0010:tracing_buffers_mmap_close+0xdd/0x130 [ 868.367167][T31576] Code: 75 46 48 8b 7b 08 e8 d2 96 ff ff 31 ff 89 c3 89 c6 e8 37 4d fb ff 85 db 75 0a 48 83 c4 08 5b e9 e9 51 fb ff e8 e4 51 fb ff 90 <0f> 0b 90 48 83 c4 08 5b e9 d6 51 fb ff e8 71 d0 62 00 eb 87 e8 9a [ 868.386761][T31576] RSP: 0018:ffffc9001714f9c0 EFLAGS: 00010293 [ 868.392818][T31576] RAX: 0000000000000000 RBX: 00000000ffffffed RCX: ffffffff81bf40e9 [ 868.400768][T31576] RDX: ffff88807889bc80 RSI: ffffffff81bf40fc RDI: 0000000000000005 [ 868.408723][T31576] RBP: ffffffff81bf4020 R08: 0000000000000005 R09: 0000000000000000 [ 868.416692][T31576] R10: 00000000ffffffed R11: 0000000000000000 R12: ffff88805b5fecc8 [ 868.424651][T31576] R13: dffffc0000000000 R14: ffffc9001714fa48 R15: 0000000000000000 [ 868.432608][T31576] ? __pfx_tracing_buffers_mmap_close+0x10/0x10 [ 868.438839][T31576] ? tracing_buffers_mmap_close+0xc9/0x130 [ 868.444633][T31576] ? tracing_buffers_mmap_close+0xdc/0x130 [ 868.450431][T31576] remove_vma+0x88/0x160 [ 868.454655][T31576] exit_mmap+0x50a/0xb90 [ 868.458886][T31576] ? __pfx_exit_mmap+0x10/0x10 [ 868.463641][T31576] ? __lock_acquire+0xb97/0x1ce0 [ 868.468588][T31576] ? arch_uprobe_clear_state+0x16/0x150 [ 868.474130][T31576] __mmput+0x12a/0x410 [ 868.478190][T31576] mmput+0x62/0x70 [ 868.481903][T31576] do_exit+0x7c7/0x2bf0 [ 868.486055][T31576] ? proc_coredump_connector+0x2d1/0x4f0 [ 868.491695][T31576] ? __pfx_do_exit+0x10/0x10 [ 868.496274][T31576] do_group_exit+0xd3/0x2a0 [ 868.500763][T31576] get_signal+0x2671/0x26d0 [ 868.505256][T31576] ? force_sig_fault+0xc4/0x100 [ 868.510093][T31576] ? __pfx_get_signal+0x10/0x10 [ 868.514932][T31576] arch_do_signal_or_restart+0x8f/0x790 [ 868.520475][T31576] ? trace_irq_disable.constprop.0+0xd4/0x120 [ 868.526527][T31576] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 868.532688][T31576] irqentry_exit_to_user_mode+0x141/0x2b0 [ 868.538393][T31576] asm_exc_page_fault+0x26/0x30 [ 868.543246][T31576] RIP: 0033:0x40fff [ 868.547030][T31576] Code: Unable to access opcode bytes at 0x40fd5. [ 868.553415][T31576] RSP: 002b:000000000000000a EFLAGS: 00010206 [ 868.559462][T31576] RAX: 0000000000000000 RBX: 00007ff0f2be5fa0 RCX: 00007ff0f298eec9 [ 868.567418][T31576] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46 [ 868.575400][T31576] RBP: 00007ff0f2a11f91 R08: 0000000000000002 R09: 0000000000000000 [ 868.583354][T31576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 868.591314][T31576] R13: 00007ff0f2be6038 R14: 00007ff0f2be5fa0 R15: 00007ffde38188a8 [ 868.599280][T31576] [ 868.602335][T31576] Kernel Offset: disabled [ 868.606647][T31576] Rebooting in 86400 seconds..