last executing test programs: 16m36.55407809s ago: executing program 3 (id=2662): mmap$auto(0x0, 0x4005, 0x7, 0x40eb2, 0x401, 0x300000000000) io_setup$auto(0x2, 0x0) mlockall$auto(0x7) mbind$auto(0x8000000000010000, 0x8000000000000001, 0x100000000, 0x0, 0x6, 0x2) 16m36.174417606s ago: executing program 3 (id=2667): ioctl$auto_dvb_demux_fops_dmxdev(0xffffffffffffffff, 0x403c6f2b, 0x0) setreuid$auto(0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0x100, 0x19) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/rose4/dormant\x00', 0xa0880, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)=""/58, 0x3a) iopl$auto(0x2) pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x06\x11\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\x1b\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9', 0xfdef, 0x3) 16m34.850660445s ago: executing program 3 (id=2672): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x51) r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) statx$auto(r0, 0x0, 0x401006, 0x4015, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/sunrpc/parameters/tcp_max_slot_table_entries\x00', 0x88282, 0x0) sendfile$auto(r1, r1, 0x0, 0x71) mkdir$auto(&(0x7f0000000040)='./file0\x00', 0x2) mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x9) r2 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r2, r2, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x9, 0x0) write$auto(0x3, 0x0, 0xfdf3) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x10000ffff}, 0x1) 16m34.672353079s ago: executing program 3 (id=2674): openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x80802, 0x0) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0) write$auto(r0, &(0x7f0000000040)='@-[.\x00', 0x9) mremap$auto(0x6, 0xfffffffffffffff8, 0x4, 0xff, 0x8) r1 = openat$auto_objects_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0) read$auto_objects_fops_(r1, &(0x7f0000000040)=""/235, 0xeb) semtimedop$auto(0x4, &(0x7f0000000140)={0x0, 0x16b2, 0xfff8}, 0x1, &(0x7f0000000180)={0x1, 0xffff}) r2 = openat$auto_proc_mounts_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/mounts\x00', 0x240000, 0x0) read$auto_proc_mounts_operations_mnt_namespace(r2, &(0x7f0000000200)=""/255, 0xff) 16m34.483133285s ago: executing program 3 (id=2675): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x121900, 0x0) ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000080)) syz_clone(0xba238800, 0x0, 0x34, 0x0, 0x0, 0x0) read$auto(0xffffffffffffffff, 0x0, 0xea) read$auto(0xffffffffffffffff, 0x0, 0x0) writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x20000003) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, 0x0, 0x1, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x804, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x2, 0x9}}, 0x1ff, 0x1ffffff8) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x200007) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mlock$auto(0xffff, 0x1) semget$auto(0x0, 0x13c, 0x1ff) semtimedop$auto(0x0, &(0x7f00000000c0)={0xa, 0x81, 0x70}, 0x1f4, 0x0) semtimedop$auto(0x0, &(0x7f0000000000)={0x7, 0x8000, 0x36ec}, 0x1, 0x0) semctl$auto(0x0, 0x9, 0x0, 0x2) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x1f40) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f00000000c0)={0x0, 0xffffffff}, 0x6) setsockopt$auto(0xffffffffffffffff, 0x0, 0x2a, 0x0, 0x108) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000100), 0xffffffffffffffff) 16m29.26304494s ago: executing program 3 (id=2696): sendmmsg$auto(0x3, 0x0, 0x3, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, 0x0, 0x28018080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x60c) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) madvise$auto(0xe43e, 0x20499d, 0x9) unshare$auto(0x40000080) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x3fffffffffff, 0x0) write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x26, 0x1, 0x0) r2 = open_tree_attr$auto(r1, &(0x7f0000000240)='./file0\x00', 0xccc9, &(0x7f0000000280)={0x0, 0xe, 0x8001, @inferred=r0}, 0x732) listen$auto(0x3, 0x81) mmap$auto(0x4, 0x400000200006, 0x800008006, 0x40eb4, r2, 0x300000000000) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_SW_SYNC_IOC_INC(r1, 0x40045701, &(0x7f0000000080)=0x77) prctl$auto(0x5, 0x80000000, 0x0, 0x7fffffff, 0x8) mmap$auto(0x2, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) openat$auto_wakeup_sources_stats_fops_wakeup(0xffffffffffffff9c, 0x0, 0x40002, 0x0) mmap$auto(0x4, 0x2020009, 0x6, 0x12, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mremap$auto(0x0, 0x3, 0x7, 0x40, 0x7fffffffb000) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x10, 0x6, 0x63, 0x0, 0x0, 0x0, 0x0, 0x40000000000f, 0x1000, 0xfffffffffffffffd, 0x7ffffffb, 0x9, 0xffffffff7ffffffc, 0x9, 0x7, 0x9}) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) prctl$auto(0x5, 0x200000000000009, 0x7fffffffefff, 0x0, 0x0) r4 = openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/cmdline\x00', 0x408303, 0x0) read$auto_proc_pid_cmdline_ops_base(r4, &(0x7f0000000040)=""/159, 0x9f) 16m13.689422871s ago: executing program 32 (id=2696): sendmmsg$auto(0x3, 0x0, 0x3, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, 0x0, 0x28018080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x60c) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) madvise$auto(0xe43e, 0x20499d, 0x9) unshare$auto(0x40000080) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x3fffffffffff, 0x0) write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x26, 0x1, 0x0) r2 = open_tree_attr$auto(r1, &(0x7f0000000240)='./file0\x00', 0xccc9, &(0x7f0000000280)={0x0, 0xe, 0x8001, @inferred=r0}, 0x732) listen$auto(0x3, 0x81) mmap$auto(0x4, 0x400000200006, 0x800008006, 0x40eb4, r2, 0x300000000000) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_SW_SYNC_IOC_INC(r1, 0x40045701, &(0x7f0000000080)=0x77) prctl$auto(0x5, 0x80000000, 0x0, 0x7fffffff, 0x8) mmap$auto(0x2, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) openat$auto_wakeup_sources_stats_fops_wakeup(0xffffffffffffff9c, 0x0, 0x40002, 0x0) mmap$auto(0x4, 0x2020009, 0x6, 0x12, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mremap$auto(0x0, 0x3, 0x7, 0x40, 0x7fffffffb000) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x10, 0x6, 0x63, 0x0, 0x0, 0x0, 0x0, 0x40000000000f, 0x1000, 0xfffffffffffffffd, 0x7ffffffb, 0x9, 0xffffffff7ffffffc, 0x9, 0x7, 0x9}) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) prctl$auto(0x5, 0x200000000000009, 0x7fffffffefff, 0x0, 0x0) r4 = openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/cmdline\x00', 0x408303, 0x0) read$auto_proc_pid_cmdline_ops_base(r4, &(0x7f0000000040)=""/159, 0x9f) 5m12.007185965s ago: executing program 0 (id=5343): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) (async) preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x6, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x60000, 0x0) (async) mmap$auto(0x0, 0x202000a, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) mmap$auto(0x4, 0xffff800000000000, 0xffff, 0x100000000040eb1, 0x602, 0x300000000000) ioctl$auto_USBDEVFS_DISCSIGNAL(0xffffffffffffffff, 0x8010550e, 0x0) rseq$auto(0x0, 0x80000002, 0x8, 0xfd) (async) socket(0x15, 0x5, 0x0) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(0xca, 0x0, 0x2d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) semctl$auto_SETVAL(0x2, 0x5, 0x10, 0x81) rt_sigsuspend$auto(0x0, 0x8) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) ioctl$auto_EVIOCGMASK(r1, 0x80104592, &(0x7f0000000000)={0x2000, 0x800004, 0x101}) ioctl$auto(0x3, 0x80004509, 0x10000000000402) (async) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, 0x0, 0x50a81, 0x0) (async) io_uring_setup$auto(0x0, 0x0) 5m10.637597855s ago: executing program 0 (id=5350): r0 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/ieee80211/phy1/airtime_flags\x00', 0x82, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x1, &(0x7f0000000080)={0x86a7, 0x11, 0xfffffffe, 0x6, 0x30000000, 0x9, 0xffffffffffffffff, [0x0, 0x0, 0xffff], {0x206, 0xa8f, 0x20000b, 0x2e1, 0x504, 0x1, 0x6, 0xd, 0x1}, {0x6, 0x3, 0x52, 0x5, 0x10001, 0x440, 0x0, 0x8, 0x1}}) r1 = getpid() process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x800000002, &(0x7f0000000400)={&(0x7f0000000040), 0x1ffffffff}, 0x6, 0x0) r2 = socket(0xa, 0x3, 0x3a) ioctl$auto(r2, 0x890b, 0x1) write$auto_debugfs_full_proxy_file_operations_internal(r0, 0x0, 0x20) 5m10.275631334s ago: executing program 0 (id=5352): clone3$auto(0x0, 0x1) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9) (async) keyctl$auto(0x7, 0x7fffffffffffffff, 0x0, 0x4, 0x3) (async) keyctl$auto(0xb, 0xffffffffffffffff, 0x2, 0x2, 0xfffffffffffffff8) (async) mmap$auto(0x0, 0x81, 0x5, 0xebf, 0xfffffffffffffffa, 0x3) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) (async) madvise$auto(0xfffffffffffffffe, 0x240007, 0x17) (async) ioctl$auto_SNDCTL_DSP_PROFILE(0xffffffffffffffff, 0x40045017, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101900, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x19) shutdown$auto(r0, 0x3) (async) madvise$auto(0x0, 0x2003f2, 0x15) (async) fchown$auto(0xffffffffffffffff, 0x0, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) 5m8.630988736s ago: executing program 0 (id=5358): close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc3}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\a'], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000540)='/sys/kernel/debug/tracing/per_cpu/cpu1/trace_pipe\x00', 0x80a40, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ff) 5m7.95041525s ago: executing program 0 (id=5363): mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) fstatfs$auto(0xffffffffffffffff, &(0x7f0000000140)={0x8001, 0x100000000000, 0x1, 0x9, 0x5d, 0x2, 0x75, {[0x80000000]}, 0x0, 0x7ff, 0x68a6, [0x8, 0x8, 0x5, 0x4]}) statmount$auto(0x0, &(0x7f0000000380)={0x4, 0xfffffffd, 0x9, 0x3, 0x16, 0x4, 0x5, 0x3, 0x800000000000006, 0x2, 0x9, 0x5, 0x2, 0x7, 0xb0, 0x4, 0x2, 0x3, 0x3, 0xb414, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x7ffffffe, [0x0, 0x8000000000000, 0x0, 0x0, 0x1, 0x0, 0xfffffffffffffffc, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000000000, 0x0, 0x0, 0xfffffffffffffffd, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4], "c4cbb7ab40a4d6220aa6d6ea4305f533c9e9bee6fcfc61"}, 0x200, 0x81) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x69) connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x58) setsockopt$auto(0x3, 0x10000000084, 0x76, 0x0, 0x8) sysfs$auto(0x2, 0x5, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) write$auto(0x3, 0x0, 0x1) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x11f, 0x0, 0xfffffffffffffffd) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendfile$auto(0x3, r1, 0x0, 0x400000000006) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x250800, 0x0) r2 = socket(0x23, 0x80805, 0x0) listen$auto(r2, 0x4) poll$auto(&(0x7f0000000000)={r2, 0x1963, 0x81}, 0x5, 0x10001) setsockopt$auto(r3, 0x113, 0x3, 0x0, 0x79ad226b) pwrite64$auto(0xc8, &(0x7f0000000140)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x89\x02e\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/231, 0xfdf2, 0x3a) process_madvise$auto_MADV_NORMAL(r3, &(0x7f0000000100)={&(0x7f0000000240)="501f5088e04f30798f26109f2fffa42b45f6a6a0ba3b9255e1e87d114093fd98a84fff77daddf465882e817c44121342936b5e997e80d081cec1964e59fb3dd27a85ee8fcda13f83eb33f7473199a74f71e5f8958f07188ec191cb8c1615ae572a73ea44d4308e80fdb41980e7f007f2c1915a5ae0e57a91a9ee819147fb577ad6fb6f8e4a025ee32be8bb8828de025d44cadf3537c6a34aca518c0c92eef9ad4362f8715ceeddb838d58492f1eead", 0x8}, 0x7fffffffffffffff, 0x0, 0x7fffffff) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x202, 0x0) 5m6.768349185s ago: executing program 0 (id=5368): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) ioctl$auto(r0, 0x802c550a, 0x1) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/oom_adj\x00', 0x400, 0x0) read$auto(r1, 0x0, 0x1f40) setsockopt$auto(0x3, 0x10000000084, 0x76, 0x0, 0x8) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) write$auto(0x3, 0x0, 0x100082) r2 = socket(0x10, 0x1, 0x0) read$auto_dfs_cpu_ops_debugfs(0xffffffffffffffff, &(0x7f00000000c0)=""/4, 0x4) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000600), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_MODULE_FW_FLASH_ACT(r3, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000e80)={0x2c, r4, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@ETHTOOL_A_MODULE_FW_FLASH_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x2c}}, 0x400c080) getsockopt$auto(r2, 0x6, 0x23, 0x0, &(0x7f0000000100)=0x14) r5 = socketcall$auto_SYS_GETSOCKOPT(0xf, &(0x7f0000000000)=0x913) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r2) sendmsg$auto_NL80211_CMD_GET_COALESCE(r5, &(0x7f0000001300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000080}, 0xc, &(0x7f00000012c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000c803b7cc1d76b3b47f4b4d47bf6a021a34317a9a1c3c77398b4f25cdb095a3ab8dc8db38b58abeedf7dbc98944d886957acc271a911ba0025f70b68040281b70451041238b5399525706c50786be65b0e5aef53fbf52077d865d4c831c862ee4799d5fa971e76372522231a66c9ce49ee8435a7bf765e2", @ANYRES16=r6, @ANYBLOB="000129bd7000fbdbdf2564000000"], 0x14}, 0x1, 0x0, 0x0, 0xc000}, 0x40004) bpf$auto_BPF_ENABLE_STATS(0x20, &(0x7f0000000240)=@test={r1, 0x2, 0x5, 0x8, 0x3, 0x6, 0x4, 0x0, 0x8000, 0x4, 0x6, 0x100, 0xfffffffd, 0x4, 0x7}, 0x0) 4m51.609350856s ago: executing program 33 (id=5368): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) ioctl$auto(r0, 0x802c550a, 0x1) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/oom_adj\x00', 0x400, 0x0) read$auto(r1, 0x0, 0x1f40) setsockopt$auto(0x3, 0x10000000084, 0x76, 0x0, 0x8) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) write$auto(0x3, 0x0, 0x100082) r2 = socket(0x10, 0x1, 0x0) read$auto_dfs_cpu_ops_debugfs(0xffffffffffffffff, &(0x7f00000000c0)=""/4, 0x4) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000600), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_MODULE_FW_FLASH_ACT(r3, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000e80)={0x2c, r4, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@ETHTOOL_A_MODULE_FW_FLASH_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x2c}}, 0x400c080) getsockopt$auto(r2, 0x6, 0x23, 0x0, &(0x7f0000000100)=0x14) r5 = socketcall$auto_SYS_GETSOCKOPT(0xf, &(0x7f0000000000)=0x913) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r2) sendmsg$auto_NL80211_CMD_GET_COALESCE(r5, &(0x7f0000001300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000080}, 0xc, &(0x7f00000012c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000c803b7cc1d76b3b47f4b4d47bf6a021a34317a9a1c3c77398b4f25cdb095a3ab8dc8db38b58abeedf7dbc98944d886957acc271a911ba0025f70b68040281b70451041238b5399525706c50786be65b0e5aef53fbf52077d865d4c831c862ee4799d5fa971e76372522231a66c9ce49ee8435a7bf765e2", @ANYRES16=r6, @ANYBLOB="000129bd7000fbdbdf2564000000"], 0x14}, 0x1, 0x0, 0x0, 0xc000}, 0x40004) bpf$auto_BPF_ENABLE_STATS(0x20, &(0x7f0000000240)=@test={r1, 0x2, 0x5, 0x8, 0x3, 0x6, 0x4, 0x0, 0x8000, 0x4, 0x6, 0x100, 0xfffffffd, 0x4, 0x7}, 0x0) 24.754510328s ago: executing program 4 (id=6098): mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) r0 = io_uring_setup$auto(0x5, 0x0) close_range$auto(0x2, r0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2b, 0x1, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/lowpan0/mtu\x00', 0x183841, 0x0) write$auto(r1, &(0x7f0000000300)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xabxo\xd9\x90\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xa5\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x85R\x96\xe4\x86\\\x13\xa9\x1a&\x19\x8a9\x82\xf0\x83\f\xf7\xeb', 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6d) listen$auto(0x3, 0x81) accept$auto(0x3, 0x0, 0x0) r2 = socket(0x2, 0x1, 0x0) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x4, 0x0, 0x7fff, 0x1}, 0x80000b}, 0x5, 0x20000000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000540)='/sys/kernel/debug/tracing/per_cpu/cpu1/trace_pipe\x00', 0x80a40, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ff) 23.940604937s ago: executing program 4 (id=6103): unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r0 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/numa_maps\x00', 0x0, 0x0) unshare$auto(0x400) r1 = openat$auto_hpet_fops_hpet(0xffffffffffffff9c, &(0x7f0000000040), 0x210002, 0x0) setsockopt$auto(r1, 0x3ff1, 0x9, &(0x7f0000000280)=',\x00', 0x8) r2 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x600, 0x0) ioctl$auto_RTC_PARAM_SET(r2, 0x40187014, &(0x7f0000000080)={0x1, @uvalue=0x6}) bpf$auto_BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000140)=@link_update={r0, @new_prog_fd=r0, 0xff, @old_map_fd=r1}, 0xcf) r3 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/pcmC0D0p\x00', 0x80000, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_PVERSION(r3, 0x80044100, &(0x7f0000000240)) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) lseek$auto(r0, 0x7ff, 0x1) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/rpc/use-gss-proxy\x00', 0x48041, 0x0) write$auto(r4, 0x0, 0x6) clone$auto(0x1, 0xd8d6, &(0x7f0000000000)=0x9, &(0x7f0000000080)=0xc, 0x1000000000) 20.412072943s ago: executing program 4 (id=6113): openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/overlay/parameters/check_copy_up\x00', 0x129882, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x7) setresuid$auto(0x0, 0x0, 0x0) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x20802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003180), r2) sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r2, &(0x7f0000003400)={0x0, 0x0, &(0x7f00000033c0)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01032abd7000fcdbdf25010000000c000280080001800400ff80"], 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8001) syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000080), 0xffffffffffffffff) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x10102, 0x0) r4 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x9000, 0x0) r5 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto(r5, 0x4028af11, r4) bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@in={0x2, 0x4e22, @private=0xa010102}, 0x66) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/graphics/fbcon/rotate_all\x00', 0xa001, 0x0) write$auto(r6, &(0x7f0000000000)='3\xc7\xfe\xff\xff\xdd\x00\b(Ks\x0f\x87|P\x11\xd1li0\x89\x85\x90QM\xd6wfF\xf1x\xb3;c\tP\x03\x84\x97\x99\x83\x97\x81:\xf3\xa3o5\xc5\x86\xed\xa4\x18]\xa3\xc9\x0f\xff\xdak\xb0m\xe1U\xb3\xa2\xee\xdcTJQO\x98\xc8w\x8c\xe7\x00\x00\x00\x1dj\x1e\xebQT\xdd\x9b\x00'/101, 0x9) read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffffff, &(0x7f00000001c0)=""/200, 0xc8) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/conf/bridge0/forwarding\x00', 0x2242, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x800, 0x80) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) 18.383953558s ago: executing program 4 (id=6118): openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/overlay/parameters/check_copy_up\x00', 0x129882, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x7) setresuid$auto(0x0, 0x0, 0x0) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x20802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003180), r2) sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r2, &(0x7f0000003400)={0x0, 0x0, &(0x7f00000033c0)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01032abd7000fcdbdf25010000000c000280080001800400ff80"], 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8001) syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000080), 0xffffffffffffffff) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x10102, 0x0) r4 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x9000, 0x0) ioctl$auto_VHOST_SET_OWNER(0xffffffffffffffff, 0xaf01, 0x5) ioctl$auto(0xffffffffffffffff, 0x4028af11, r4) madvise$auto(0x3, 0x9, 0x77) bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@in={0x2, 0x4e22, @private=0xa010102}, 0x66) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/graphics/fbcon/rotate_all\x00', 0xa001, 0x0) write$auto(r5, &(0x7f0000000000)='3\xc7\xfe\xff\xff\xdd\x00\b(Ks\x0f\x87|P\x11\xd1li0\x89\x85\x90QM\xd6wfF\xf1x\xb3;c\tP\x03\x84\x97\x99\x83\x97\x81:\xf3\xa3o5\xc5\x86\xed\xa4\x18]\xa3\xc9\x0f\xff\xdak\xb0m\xe1U\xb3\xa2\xee\xdcTJQO\x98\xc8w\x8c\xe7\x00\x00\x00\x1dj\x1e\xebQT\xdd\x9b\x00'/101, 0x9) read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffffff, &(0x7f00000001c0)=""/200, 0xc8) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/conf/bridge0/forwarding\x00', 0x2242, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x0) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) 12.775894311s ago: executing program 4 (id=6129): mmap$auto(0x0, 0x400008, 0xdf, 0x110, 0x2, 0x8000) r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_MEM_TABLE(r0, 0x4001af84, 0x0) ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x0) r1 = socket(0x29, 0x5, 0x0) write$auto(r1, &(0x7f0000000080)='/de$-audio1\x00', 0x100000a3dc) ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/bus/usb/drivers/ch9200/new_id\x00', 0x181000, 0x0) read$auto(r2, &(0x7f0000000000)='/\v5s/kernel/debuw/lru\b\x00en\x00', 0xd) read$auto_tracing_saved_tgids_fops_trace(0xffffffffffffffff, &(0x7f0000000080)=""/64, 0x40) sendmsg$auto_TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4000084) r3 = socketcall$auto_SYS_SOCKET(0x1, &(0x7f00000001c0)=0x101) mmap$auto(0x0, 0x8020005, 0x4800000000df, 0xebb, r3, 0x7fff) socket(0x2, 0x1, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon35\x00', 0x42000, 0x0) mmap$auto(0x0, 0x400006, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20005, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) r4 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) ioctl$auto(0x3, 0x5385, 0x38) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) getcwd$auto(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x9, 0x0, 0xeb4, r4, 0x8000007ffc) r5 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0) pread64$auto(r5, 0x0, 0x101, 0x103) read$auto_mon_fops_text_t_mon_text(r5, 0x0, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) unshare$auto(0x40000080) 9.612892808s ago: executing program 4 (id=6139): openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/overlay/parameters/check_copy_up\x00', 0x129882, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x7) setresuid$auto(0x0, 0x0, 0x0) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x20802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003180), r2) sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r2, &(0x7f0000003400)={0x0, 0x0, &(0x7f00000033c0)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01032abd7000fcdbdf25010000000c000280080001800400ff80"], 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8001) syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000080), 0xffffffffffffffff) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x10102, 0x0) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x9000, 0x0) r4 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r4, 0xaf01, 0x5) bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@in={0x2, 0x4e22, @private=0xa010102}, 0x66) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/graphics/fbcon/rotate_all\x00', 0xa001, 0x0) write$auto(r5, &(0x7f0000000000)='3\xc7\xfe\xff\xff\xdd\x00\b(Ks\x0f\x87|P\x11\xd1li0\x89\x85\x90QM\xd6wfF\xf1x\xb3;c\tP\x03\x84\x97\x99\x83\x97\x81:\xf3\xa3o5\xc5\x86\xed\xa4\x18]\xa3\xc9\x0f\xff\xdak\xb0m\xe1U\xb3\xa2\xee\xdcTJQO\x98\xc8w\x8c\xe7\x00\x00\x00\x1dj\x1e\xebQT\xdd\x9b\x00'/101, 0x9) read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffffff, &(0x7f00000001c0)=""/200, 0xc8) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/conf/bridge0/forwarding\x00', 0x2242, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x800, 0x80) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) 7.634678509s ago: executing program 2 (id=6144): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_REQ_SET_REG(r0, &(0x7f000000a5c0)={0x0, 0x14, &(0x7f0000000380)={&(0x7f0000000340)={0x1c, r1, 0x1, 0x70bd2e, 0x25dfdbfd, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000040}, 0x24008880) 7.429111414s ago: executing program 2 (id=6145): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x800008000) (async) r0 = socketpair$auto(0xb, 0xd, 0x808e8, 0x0) close$auto(r0) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r0) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r1, @ANYBLOB="00042bbd70000600000019000000080001000004000008001606000000009c0028809500a6004ad6577f34f162c510cfce287cf2ea882491a402b987729996785e1a78375c0e723633982869027657da5601ee9f13242fa0808d5d6f16e91fe4a1814349bace109c6a5f36a5880659651bcd4d4d1e90adf10c0b2614c053d16e25731356c8a5befc30764f6b0a13f84828d93c1e070009daea78c9c3066ce9bfeaeba92676d952c9100e5e4d19b336c9f24e715d03cddcb9f3b84ec26b000000af5a02fc20c0"], 0xc0}, 0x1, 0x0, 0x0, 0x4000}, 0xc10) (async) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async) madvise$auto(0x0, 0x400053, 0x9) 7.081354502s ago: executing program 2 (id=6149): pidfd_open$auto(0x1, 0x0) fsopen$auto(0x0, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x100000009b72, 0x2, 0x8000) mincore$auto(0x9003, 0x8003, 0x0) 6.386333367s ago: executing program 2 (id=6153): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/irq/default_smp_affinity\x00', 0x80, 0x0) pread64$auto(r0, 0x0, 0x8202000, 0x2d) pidfd_open$auto(0x1, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x28, r2, 0x1, 0x70bd25, 0x25dfdc02, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x10, 0x1, 0x0, 0x1, [@nested={0xc, 0x10, 0x0, 0x1, [@typed={0x8, 0xb, 0x0, 0x0, @fd=r3}]}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800) fsopen$auto(0x0, 0x1) r4 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cpu/0/msr\x00', 0x400, 0x0) ioctl$auto_X86_IOC_WRMSR_REGS(r4, 0xc02063a1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x408008, 0x89d, 0x100000009b74, r1, 0x8000) mincore$auto(0x1000, 0x8003, 0x0) 5.930391114s ago: executing program 2 (id=6155): r0 = openat$auto_proc_setgroups_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/setgroups\x00', 0x149002, 0x0) unshare$auto(0x40000080) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x2b, 0x1, 0x0) listen$auto(r0, 0xfffffffd) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x1000040007, 0xffc4, 0x40018) madvise$auto(0x0, 0x2003f2, 0x15) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x501, 0x0) socket(0x2, 0x2, 0x0) bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_4={0x800000000012, 0xffffffffffffffff, 0xc0000001, 0x8}, 0x6f4) socket(0x11, 0x3, 0x80000001) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x9, 0x0, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xcb}) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyt2\x00', 0x101e81, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x0, 0x2, 0x1d2c, 0x3, 0x4, 0x15f4da0e, 0x6, 0x9, 0x100000000000000c, 0x8, 0x4, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x2, 0x3ff, 0x8001, 0x5) 4.760828082s ago: executing program 1 (id=6158): r0 = openat$auto_drm_crtc_crc_control_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000003500), 0x40002, 0x0) r1 = openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/tracing/free_buffer\x00', 0x1, 0x0) write$auto_tracing_free_buffer_fops_trace(r1, &(0x7f00000011c0)="ce", 0x1) write$auto_drm_crtc_crc_control_fops_drm_debugfs_crc(r0, &(0x7f0000003540), 0x0) mmap$auto(0x0, 0x1000101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/scsi/drivers_autoprobe\x00', 0x141000, 0x0) socket(0x15, 0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) r3 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000040), 0x8300, 0x0) ioctl$auto_RTC_PIE_ON(r3, 0x7005, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000500)=""/4096, 0x1000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000180), 0x88000, 0x0) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0xe0180, 0x0) r6 = ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r5) ioctl$auto_KVM_GET_DEVICE_ATTR(r4, 0x8080aea1, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000400), 0xffffffffffffffff) r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r6) sendmsg$auto_NL80211_CMD_REQ_SET_REG(r7, &(0x7f000000a5c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)={0x1c, r8, 0x200, 0x70bd2e, 0x25dfdbfd, {}, [@NL80211_ATTR_VIF_RADIO_MASK={0x8, 0x14d, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000040}, 0x24008880) 4.10472767s ago: executing program 1 (id=6159): r0 = openat$auto_proc_setgroups_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/setgroups\x00', 0x149002, 0x0) unshare$auto(0x40000080) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x2b, 0x1, 0x0) listen$auto(r0, 0xfffffffd) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x1000040007, 0xffc4, 0x40018) madvise$auto(0x0, 0x2003f2, 0x15) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x501, 0x0) socket(0x2, 0x2, 0x0) bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_4={0x800000000012, 0xffffffffffffffff, 0xc0000001, 0x8}, 0x6f4) socket(0x11, 0x3, 0x80000001) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) select$auto(0x9, 0x0, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xcb}) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyt2\x00', 0x101e81, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x0, 0x2, 0x1d2c, 0x3, 0x4, 0x15f4da0e, 0x6, 0x9, 0x100000000000000c, 0x8, 0x4, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0) ioctl$auto_FUSE_DEV_IOC_CLONE(r2, 0xe503, 0x0) 3.717803063s ago: executing program 5 (id=6160): mmap$auto(0x2, 0xc, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x800000000008000) close_range$auto(0x2, 0x8, 0x0) (async) openat$auto_nsim_dev_take_snapshot_fops_dev(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/netdevsim/netdevsim4/take_snapshot\x00', 0x110080, 0x0) r0 = io_uring_setup$auto(0x6, 0x0) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, 0x0, 0x4) socket(0xa, 0x3, 0x3b) (async) sysfs$auto(0x2, 0x24, 0x0) (async) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa}, 0x58) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x81, 0x3, 0x12, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) r1 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000040)='/dev/binderfs/binder1\x00', 0x189160, 0x0) ioctl$auto_BINDER_ENABLE_ONEWAY_SPAM_DETECTION(r1, 0x40046210, 0x0) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptya7\x00', 0x129041, 0x0) (async) epoll_create$auto(0x3e) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async) select$auto(0xe, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0xb, 0xd, 0x2007d48, 0x948b, 0x4, 0x0, 0x4b, 0x3, 0x0, 0x80000001, 0x7, 0x4, 0x5, 0x2, 0x1]}, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) (async) r2 = socket$nl_generic(0x10, 0x3, 0x10) (async) r3 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_IOAM6_CMD_DUMP_NAMESPACES(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000200)={0x14, r3, 0x70b, 0x70bd20, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4080041}, 0xc840) sendmsg$auto_NL802154_CMD_SET_TX_POWER(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x2c, 0x0, 0x400, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_PAN_ID={0x6}, @NL802154_ATTR_CCA_OPT={0x8, 0xd, 0x6}, @NL802154_ATTR_SUPPORTED_CHANNEL={0x8, 0x16, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40804}, 0x20004004) (async) io_uring_register$auto_IORING_REGISTER_ENABLE_RINGS(r0, 0xc, &(0x7f0000000040)="7c7a2eb9432cb8607843948db7280e2e7fe274f411de13530f58eabc", 0x101) (async) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) (async) syz_clone3(&(0x7f0000000380)={0x101045100, 0x0, 0x0, 0x0, {0x3a}, 0x0, 0x0, 0x0, 0x0}, 0x58) 3.330019491s ago: executing program 5 (id=6161): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCGPTPEER2(r0, 0x5441, 0x0) (fail_nth: 2) 2.991902833s ago: executing program 5 (id=6162): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001a40), r0) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r0, &(0x7f0000002f40)={0x0, 0x0, &(0x7f0000002f00)={&(0x7f0000000180)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002bbd7000fcdbdf251b000000200001801400020062617461647630000000000000000000080004000100010033cc755e72aa858fc7c471801e42c00d8d8f44514d5aa705cfb3608f14bc63d58bfada9e3126db2df74bbb541bfff331f99cf1172dd761422f5cd84bb5beba11fe7194af8efc71d4317fd293f52c12a75ea320"], 0x34}, 0x1, 0x0, 0x0, 0x24040000}, 0x700000000000000) 2.546812199s ago: executing program 2 (id=6164): openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/overlay/parameters/check_copy_up\x00', 0x129882, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x7) setresuid$auto(0x0, 0x0, 0x0) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x20802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003180), r2) sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r2, &(0x7f0000003400)={0x0, 0x0, &(0x7f00000033c0)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01032abd7000fcdbdf25010000000c000280080001800400ff80"], 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8001) syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000080), 0xffffffffffffffff) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x10102, 0x0) r4 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r4, 0xaf01, 0x5) ioctl$auto(r4, 0x4028af11, 0xffffffffffffffff) madvise$auto(0x3, 0x9, 0x77) bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@in={0x2, 0x4e22, @private=0xa010102}, 0x66) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/graphics/fbcon/rotate_all\x00', 0xa001, 0x0) write$auto(r5, &(0x7f0000000000)='3\xc7\xfe\xff\xff\xdd\x00\b(Ks\x0f\x87|P\x11\xd1li0\x89\x85\x90QM\xd6wfF\xf1x\xb3;c\tP\x03\x84\x97\x99\x83\x97\x81:\xf3\xa3o5\xc5\x86\xed\xa4\x18]\xa3\xc9\x0f\xff\xdak\xb0m\xe1U\xb3\xa2\xee\xdcTJQO\x98\xc8w\x8c\xe7\x00\x00\x00\x1dj\x1e\xebQT\xdd\x9b\x00'/101, 0x9) read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffffff, &(0x7f00000001c0)=""/200, 0xc8) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/conf/bridge0/forwarding\x00', 0x2242, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x0) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) 2.478009993s ago: executing program 5 (id=6165): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/workqueue/nvme-reset-wq/cpumask\x00', 0x9c0302, 0x0) set_mempolicy$auto(0x6, &(0x7f0000000080)=0x6, 0x21) r1 = prctl$auto(0x23, 0x80000000000a, 0x80000001, 0x0, 0x0) r2 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/environ\x00', 0x2000, 0x0) read$auto_proc_environ_operations_base(r2, &(0x7f0000000240)=""/80, 0x50) unshare$auto(0x40000080) close_range$auto(r0, r0, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x2, 0x802, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x3, 0x5, 0x7, 0x0) setsockopt$auto(0x3, 0x0, 0xf, 0x0, 0xb) bind$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x0, @rand_addr=0x2000000}, 0x68) socket(0x2b, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) process_madvise$auto_PIDFD_SELF_THREAD(0xffffffffffffd8f0, 0x0, 0x8000000000000000, 0x4, 0x7) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2506, &(0x7f00000002c0)={0x0, 0xae}, 0x5, 0x0, 0x3, 0x3a32182}, 0x4}, 0x3, 0x9) close_range$auto(0x2, r3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) unshare$auto(0x2) socket(0x28, 0x801, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51) recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0) recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0) mmap$auto(0x6d1f, 0x0, 0x233e, 0x2000000000009b7f, r1, 0x8) socket(0x15, 0xa, 0x3) 2.116920984s ago: executing program 1 (id=6166): ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00'}) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x8000, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) madvise$auto(0x0, 0xfffffffffffeffff, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0001, 0x15) settimeofday$auto(&(0x7f0000000080)={0x7fffffff, 0x5}, 0x0) 1.162255636s ago: executing program 1 (id=6167): r0 = pidfd_open$auto(0x1, 0x0) fsopen$auto(0x0, 0x1) r1 = openat$auto_trace_clock_fops_trace(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/tracing/trace_clock\x00', 0x4103, 0x0) mmap$auto(0x0, 0x400008, 0x8, 0x80000013, r1, 0x9e9) mmap$auto(0x0, 0x20009, 0x7, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x2020009, 0x4a, 0xeb1, r1, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r2 = dup$auto(0xffffffffffffffff) r3 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) ioctl$auto(r3, 0x81004523, r2) read$auto_mon_fops_stat_usb_mon(r2, &(0x7f00000002c0)=""/182, 0xb6) r4 = socket(0xa, 0x1, 0x84) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/pci/00/03.0\x00', 0x181000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r5 = socketpair$auto(0xfffffffd, 0x5, 0xffffffff, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000b00)='/sys/devices/virtual/mtd/mtd0/mtd0/type\x00', 0x101000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000b40)=""/99, 0x63) r7 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0) writev$auto(r7, &(0x7f0000001100)={0x0, 0xe5e7}, 0x1) write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa) r8 = getpid() process_vm_readv$auto(r8, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000040), 0xffffffff}, 0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b42, 0x0) ioctl$auto_BCH_IOCTL_FSCK_ONLINE(r4, 0x4010bc14, &(0x7f0000000200)={0xf}) r9 = socket(0x28, 0x3, 0x1) setsockopt$auto(r9, 0x65, 0x1, 0x0, 0x800) bind$auto(r5, &(0x7f0000000040)=@can={0x1d, 0x0, 0xfd}, 0x6a) mmap$auto(0x0, 0x6, 0x8000000000000001, 0x15, r0, 0xf9a) 626.455774ms ago: executing program 1 (id=6168): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCGPTPEER2(r0, 0x5441, 0x0) 364.763764ms ago: executing program 5 (id=6169): r0 = openat$auto_force_wakeup_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/bluetooth/hci2/force_wakeup\x00', 0x8742, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/sctp/auth_enable\x00', 0x100, 0x0) read$auto_proc_sys_file_operations_proc_sysctl(r1, 0x0, 0x0) write$auto_force_wakeup_fops_hci_vhci(r0, &(0x7f0000000080)='1', 0x1) 309.192392ms ago: executing program 1 (id=6170): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r0 = socket(0x2b, 0x1, 0x1) sendmmsg$auto(r0, 0x0, 0x7, 0x20020000) r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/input/event1\x00', 0x34d802, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000) openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000280)='/dev/etherd/discover\x00', 0x541, 0x0) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000000180)={0x2, 0x2, 0x4a47, 0x81, 0x9f, 0x8, 0x0}) fsconfig$auto_SHMEM_HUGE_ALWAYS(r1, 0x7, &(0x7f00000000c0)='\x00', &(0x7f0000000140)="3ee01d14d5", 0x1) r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r3, 0x0, 0x7) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r4, 0x0, 0x81) write$auto(0x3, 0x0, 0xfffffdef) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000180), 0x109802, 0x0) close_range$auto(0x2, r5, 0x0) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r6) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r7 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x848000000015, 0x805, 0x0) bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x6b) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @loopback}, 0x55) sendmsg$auto_OVS_DP_CMD_GET(r7, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0}, 0x1, 0x0, 0x0, 0x880}, 0x804) r8 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy0/netdev:wlan0/active_links\x00', 0x82, 0x0) write$auto_debugfs_full_proxy_file_operations_internal(r8, 0x0, 0x20) 0s ago: executing program 5 (id=6171): sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2048000}, 0x40014) fcntl$auto(0x3, 0x400, 0x9ec0000000000000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) io_uring_setup$auto(0x6, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) kexec_load$auto(0xffffffff, 0x2, &(0x7f0000000080)={@buf=0x0, 0x0, 0x8000, 0x403000}, 0x4) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000540), r0) sendmsg$auto_NET_SHAPER_CMD_DELETE(r0, &(0x7f0000000300)={0x0, 0xfffffd91, &(0x7f0000000280)={&(0x7f0000000140)={0x14, r1, 0x9, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x44000}, 0xc050) kernel console output (not intermixed with test programs): ilure. [ 1630.400472][ T2887] name failslab, interval 1, probability 0, space 0, times 0 [ 1630.414079][ T2887] CPU: 0 UID: 0 PID: 2887 Comm: syz.2.5992 Tainted: G L syzkaller #0 PREEMPT(full) [ 1630.414106][ T2887] Tainted: [L]=SOFTLOCKUP [ 1630.414112][ T2887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1630.414122][ T2887] Call Trace: [ 1630.414128][ T2887] [ 1630.414134][ T2887] dump_stack_lvl+0x100/0x190 [ 1630.414162][ T2887] should_fail_ex.cold+0x5/0xa [ 1630.414181][ T2887] ? tomoyo_realpath_from_path+0xb6/0x690 [ 1630.414203][ T2887] should_failslab+0xc2/0x120 [ 1630.414221][ T2887] __kmalloc_noprof+0xe0/0x850 [ 1630.414250][ T2887] tomoyo_realpath_from_path+0xb6/0x690 [ 1630.414282][ T2887] tomoyo_check_open_permission+0x2af/0x3c0 [ 1630.414302][ T2887] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 1630.414342][ T2887] ? do_raw_spin_lock+0x128/0x260 [ 1630.414367][ T2887] ? path_get+0x61/0x80 [ 1630.414387][ T2887] tomoyo_file_open+0x6b/0x90 [ 1630.414402][ T2887] security_file_open+0xb5/0x1e0 [ 1630.414423][ T2887] do_dentry_open+0x5aa/0x1660 [ 1630.414440][ T2887] ? security_inode_permission+0xbf/0x250 [ 1630.414462][ T2887] vfs_open+0x82/0x3f0 [ 1630.414483][ T2887] path_openat+0x208c/0x31a0 [ 1630.414506][ T2887] ? __pfx_path_openat+0x10/0x10 [ 1630.414530][ T2887] do_file_open+0x20e/0x430 [ 1630.414548][ T2887] ? __pfx_do_file_open+0x10/0x10 [ 1630.414578][ T2887] ? alloc_fd+0x476/0x790 [ 1630.414596][ T2887] ? do_getname+0x191/0x390 [ 1630.414617][ T2887] do_sys_openat2+0x10d/0x1e0 [ 1630.414637][ T2887] ? __pfx_do_sys_openat2+0x10/0x10 [ 1630.414664][ T2887] __x64_sys_openat+0x12d/0x210 [ 1630.414685][ T2887] ? __pfx___x64_sys_openat+0x10/0x10 [ 1630.414712][ T2887] do_syscall_64+0x106/0xf80 [ 1630.414727][ T2887] ? clear_bhb_loop+0x40/0x90 [ 1630.414746][ T2887] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1630.414761][ T2887] RIP: 0033:0x7fbd85f9c819 [ 1630.414776][ T2887] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1630.414791][ T2887] RSP: 002b:00007fbd841d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1630.414806][ T2887] RAX: ffffffffffffffda RBX: 00007fbd86216090 RCX: 00007fbd85f9c819 [ 1630.414817][ T2887] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1630.414828][ T2887] RBP: 00007fbd86032c91 R08: 0000000000000000 R09: 0000000000000000 [ 1630.414838][ T2887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1630.414847][ T2887] R13: 00007fbd86216128 R14: 00007fbd86216090 R15: 00007ffe8618a8e8 [ 1630.414868][ T2887] [ 1630.414876][ T2887] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1630.700433][ T2889] FAULT_INJECTION: forcing a failure. [ 1630.700433][ T2889] name failslab, interval 1, probability 0, space 0, times 0 [ 1630.750543][ T2889] CPU: 0 UID: 0 PID: 2889 Comm: syz.4.5993 Tainted: G L syzkaller #0 PREEMPT(full) [ 1630.750575][ T2889] Tainted: [L]=SOFTLOCKUP [ 1630.750581][ T2889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1630.750591][ T2889] Call Trace: [ 1630.750597][ T2889] [ 1630.750604][ T2889] dump_stack_lvl+0x100/0x190 [ 1630.750633][ T2889] should_fail_ex.cold+0x5/0xa [ 1630.750653][ T2889] ? tomoyo_encode2+0xfb/0x3c0 [ 1630.750674][ T2889] should_failslab+0xc2/0x120 [ 1630.750692][ T2889] __kmalloc_noprof+0xe0/0x850 [ 1630.750715][ T2889] ? d_absolute_path+0x136/0x1b0 [ 1630.750740][ T2889] tomoyo_encode2+0xfb/0x3c0 [ 1630.750764][ T2889] tomoyo_encode+0x29/0x50 [ 1630.750784][ T2889] tomoyo_realpath_from_path+0x18c/0x690 [ 1630.750809][ T2889] tomoyo_check_open_permission+0x2af/0x3c0 [ 1630.750829][ T2889] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 1630.750867][ T2889] ? do_raw_spin_lock+0x128/0x260 [ 1630.750891][ T2889] ? path_get+0x61/0x80 [ 1630.750911][ T2889] tomoyo_file_open+0x6b/0x90 [ 1630.750926][ T2889] security_file_open+0xb5/0x1e0 [ 1630.750948][ T2889] do_dentry_open+0x5aa/0x1660 [ 1630.750966][ T2889] ? security_inode_permission+0xbf/0x250 [ 1630.750988][ T2889] vfs_open+0x82/0x3f0 [ 1630.751010][ T2889] path_openat+0x208c/0x31a0 [ 1630.751033][ T2889] ? __pfx_path_openat+0x10/0x10 [ 1630.751056][ T2889] do_file_open+0x20e/0x430 [ 1630.751074][ T2889] ? __pfx_do_file_open+0x10/0x10 [ 1630.751104][ T2889] ? alloc_fd+0x476/0x790 [ 1630.751122][ T2889] ? do_getname+0x191/0x390 [ 1630.751143][ T2889] do_sys_openat2+0x10d/0x1e0 [ 1630.751164][ T2889] ? __pfx_do_sys_openat2+0x10/0x10 [ 1630.751191][ T2889] __x64_sys_openat+0x12d/0x210 [ 1630.751212][ T2889] ? __pfx___x64_sys_openat+0x10/0x10 [ 1630.751240][ T2889] do_syscall_64+0x106/0xf80 [ 1630.751255][ T2889] ? clear_bhb_loop+0x40/0x90 [ 1630.751273][ T2889] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1630.751296][ T2889] RIP: 0033:0x7fa3a259c819 [ 1630.751311][ T2889] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1630.751326][ T2889] RSP: 002b:00007fa3a07f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1630.751342][ T2889] RAX: ffffffffffffffda RBX: 00007fa3a2816090 RCX: 00007fa3a259c819 [ 1630.751352][ T2889] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1630.751362][ T2889] RBP: 00007fa3a2632c91 R08: 0000000000000000 R09: 0000000000000000 [ 1630.751371][ T2889] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1630.751381][ T2889] R13: 00007fa3a2816128 R14: 00007fa3a2816090 R15: 00007fffe006bfd8 [ 1630.751402][ T2889] [ 1631.727480][ T2889] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1632.738600][ T2912] futex_wake_op: syz.1.5998 tries to shift op by -2048; fix this program [ 1632.796659][ T2912] futex_wake_op: syz.1.5998 tries to shift op by -2048; fix this program [ 1632.844597][ T2912] 0x000000000001-0x000000020000 : "" [ 1632.931476][ T2912] ftl_cs: FTL header corrupt! [ 1633.149016][ T2918] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5999'. [ 1633.360418][ T2922] futex_wake_op: syz.2.6001 tries to shift op by -2048; fix this program [ 1633.416143][ T2922] futex_wake_op: syz.2.6001 tries to shift op by -2048; fix this program [ 1633.452357][ T2912] FAULT_INJECTION: forcing a failure. [ 1633.452357][ T2912] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1633.482945][ T2927] 0x000000000001-0x000000020000 : "" [ 1633.523909][ T2912] CPU: 0 UID: 0 PID: 2912 Comm: syz.1.5998 Tainted: G L syzkaller #0 PREEMPT(full) [ 1633.523938][ T2912] Tainted: [L]=SOFTLOCKUP [ 1633.523944][ T2912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1633.523955][ T2912] Call Trace: [ 1633.523960][ T2912] [ 1633.523966][ T2912] dump_stack_lvl+0x100/0x190 [ 1633.523995][ T2912] should_fail_ex.cold+0x5/0xa [ 1633.524015][ T2912] get_futex_key+0x1d2/0x1620 [ 1633.524037][ T2912] ? __pfx_get_futex_key+0x10/0x10 [ 1633.524063][ T2912] futex_wake+0xea/0x530 [ 1633.524097][ T2912] ? rcu_is_watching+0x12/0xc0 [ 1633.524123][ T2912] ? __pfx_futex_wake+0x10/0x10 [ 1633.524144][ T2912] ? __kasan_kmalloc+0xaa/0xb0 [ 1633.524163][ T2912] ? commit_creds+0x755/0x10e0 [ 1633.524194][ T2912] do_futex+0x32b/0x350 [ 1633.524215][ T2912] ? __pfx_do_futex+0x10/0x10 [ 1633.524239][ T2912] ? cap_task_prctl+0x104/0xa50 [ 1633.524259][ T2912] __x64_sys_futex+0x34f/0x4d0 [ 1633.524281][ T2912] ? __pfx___x64_sys_futex+0x10/0x10 [ 1633.524303][ T2912] ? __pfx___do_sys_prctl+0x10/0x10 [ 1633.524333][ T2912] do_syscall_64+0x106/0xf80 [ 1633.524348][ T2912] ? clear_bhb_loop+0x40/0x90 [ 1633.524367][ T2912] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1633.524382][ T2912] RIP: 0033:0x7f7f9919c819 [ 1633.524396][ T2912] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1633.524411][ T2912] RSP: 002b:00007f7f9a06c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1633.524426][ T2912] RAX: ffffffffffffffda RBX: 00007f7f99415fa8 RCX: 00007f7f9919c819 [ 1633.524437][ T2912] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7f99415fac [ 1633.524447][ T2912] RBP: 00007f7f99415fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1633.524456][ T2912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1633.524465][ T2912] R13: 00007f7f99416038 R14: 00007ffc8f81c3a0 R15: 00007ffc8f81c488 [ 1633.524484][ T2912] [ 1634.160945][ T2927] ftl_cs: FTL header corrupt! [ 1634.324015][ T2922] FAULT_INJECTION: forcing a failure. [ 1634.324015][ T2922] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1634.413073][ T2922] CPU: 0 UID: 0 PID: 2922 Comm: syz.2.6001 Tainted: G L syzkaller #0 PREEMPT(full) [ 1634.413102][ T2922] Tainted: [L]=SOFTLOCKUP [ 1634.413109][ T2922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1634.413119][ T2922] Call Trace: [ 1634.413125][ T2922] [ 1634.413131][ T2922] dump_stack_lvl+0x100/0x190 [ 1634.413160][ T2922] should_fail_ex.cold+0x5/0xa [ 1634.413179][ T2922] get_futex_key+0x1d2/0x1620 [ 1634.413201][ T2922] ? __pfx_get_futex_key+0x10/0x10 [ 1634.413227][ T2922] futex_wake+0xea/0x530 [ 1634.413251][ T2922] ? rcu_is_watching+0x12/0xc0 [ 1634.413275][ T2922] ? __pfx_futex_wake+0x10/0x10 [ 1634.413296][ T2922] ? __kasan_kmalloc+0xaa/0xb0 [ 1634.413314][ T2922] ? commit_creds+0x755/0x10e0 [ 1634.413339][ T2922] do_futex+0x32b/0x350 [ 1634.413359][ T2922] ? __pfx_do_futex+0x10/0x10 [ 1634.413378][ T2922] ? cap_task_prctl+0x104/0xa50 [ 1634.413398][ T2922] __x64_sys_futex+0x34f/0x4d0 [ 1634.413420][ T2922] ? __pfx___x64_sys_futex+0x10/0x10 [ 1634.413440][ T2922] ? __pfx___do_sys_prctl+0x10/0x10 [ 1634.413468][ T2922] do_syscall_64+0x106/0xf80 [ 1634.413484][ T2922] ? clear_bhb_loop+0x40/0x90 [ 1634.413502][ T2922] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1634.413518][ T2922] RIP: 0033:0x7fbd85f9c819 [ 1634.413531][ T2922] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1634.413547][ T2922] RSP: 002b:00007fbd841f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1634.413562][ T2922] RAX: ffffffffffffffda RBX: 00007fbd86215fa8 RCX: 00007fbd85f9c819 [ 1634.413572][ T2922] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbd86215fac [ 1634.413582][ T2922] RBP: 00007fbd86215fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1634.413591][ T2922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1634.413600][ T2922] R13: 00007fbd86216038 R14: 00007ffe8618a800 R15: 00007ffe8618a8e8 [ 1634.413619][ T2922] [ 1635.421138][ T2940] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6010'. [ 1635.500173][ T2943] FAULT_INJECTION: forcing a failure. [ 1635.500173][ T2943] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1635.570378][ T2944] FAULT_INJECTION: forcing a failure. [ 1635.570378][ T2944] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1635.588137][ T2943] CPU: 0 UID: 0 PID: 2943 Comm: syz.2.6004 Tainted: G L syzkaller #0 PREEMPT(full) [ 1635.588164][ T2943] Tainted: [L]=SOFTLOCKUP [ 1635.588170][ T2943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1635.588181][ T2943] Call Trace: [ 1635.588186][ T2943] [ 1635.588192][ T2943] dump_stack_lvl+0x100/0x190 [ 1635.588221][ T2943] should_fail_ex.cold+0x5/0xa [ 1635.588238][ T2943] ? __kernel_text_address+0xd/0x30 [ 1635.588262][ T2943] get_futex_key+0x1d2/0x1620 [ 1635.588289][ T2943] ? __pfx_get_futex_key+0x10/0x10 [ 1635.588311][ T2943] ? putname+0xb1/0x110 [ 1635.588328][ T2943] ? stack_trace_save+0x8e/0xc0 [ 1635.588344][ T2943] ? __pfx_stack_trace_save+0x10/0x10 [ 1635.588362][ T2943] futex_wait_setup+0x83/0x510 [ 1635.588390][ T2943] __futex_wait+0x19f/0x300 [ 1635.588423][ T2943] ? __pfx___futex_wait+0x10/0x10 [ 1635.588449][ T2943] ? __pfx_futex_wake_mark+0x10/0x10 [ 1635.588476][ T2943] ? futex_hash+0x2c5/0x380 [ 1635.588507][ T2943] futex_wait+0xed/0x380 [ 1635.588531][ T2943] ? __pfx_futex_wait+0x10/0x10 [ 1635.588559][ T2943] ? putname+0xb1/0x110 [ 1635.588574][ T2943] ? kmem_cache_free+0x124/0x6a0 [ 1635.588599][ T2943] do_futex+0x1ef/0x350 [ 1635.588619][ T2943] ? __pfx_do_futex+0x10/0x10 [ 1635.588638][ T2943] ? __pfx_do_sys_openat2+0x10/0x10 [ 1635.588663][ T2943] __x64_sys_futex+0x34f/0x4d0 [ 1635.588684][ T2943] ? __x64_sys_openat+0x12d/0x210 [ 1635.588705][ T2943] ? __pfx___x64_sys_futex+0x10/0x10 [ 1635.588732][ T2943] do_syscall_64+0x106/0xf80 [ 1635.588747][ T2943] ? clear_bhb_loop+0x40/0x90 [ 1635.588766][ T2943] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1635.588781][ T2943] RIP: 0033:0x7fbd85f9c819 [ 1635.588795][ T2943] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1635.588811][ T2943] RSP: 002b:00007fbd841d50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1635.588826][ T2943] RAX: ffffffffffffffda RBX: 00007fbd86216098 RCX: 00007fbd85f9c819 [ 1635.588837][ T2943] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbd86216098 [ 1635.588846][ T2943] RBP: 00007fbd86216090 R08: 0000000000000000 R09: 0000000000000000 [ 1635.588856][ T2943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1635.588865][ T2943] R13: 00007fbd86216128 R14: 00007ffe8618a800 R15: 00007ffe8618a8e8 [ 1635.588893][ T2943] [ 1635.612041][ T2944] CPU: 0 UID: 0 PID: 2944 Comm: syz.1.6003 Tainted: G L syzkaller #0 PREEMPT(full) [ 1635.612069][ T2944] Tainted: [L]=SOFTLOCKUP [ 1635.612075][ T2944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1635.612085][ T2944] Call Trace: [ 1635.612090][ T2944] [ 1635.612096][ T2944] dump_stack_lvl+0x100/0x190 [ 1635.612126][ T2944] should_fail_ex.cold+0x5/0xa [ 1635.612146][ T2944] get_futex_key+0x1d2/0x1620 [ 1635.612167][ T2944] ? __pfx_get_futex_key+0x10/0x10 [ 1635.612194][ T2944] futex_wake+0xea/0x530 [ 1635.612227][ T2944] ? __pfx_futex_wake+0x10/0x10 [ 1635.612256][ T2944] ? putname+0xb1/0x110 [ 1635.612272][ T2944] ? kmem_cache_free+0x124/0x6a0 [ 1635.612297][ T2944] do_futex+0x32b/0x350 [ 1635.612318][ T2944] ? __pfx_do_futex+0x10/0x10 [ 1635.612336][ T2944] ? __pfx_do_sys_openat2+0x10/0x10 [ 1635.612361][ T2944] __x64_sys_futex+0x34f/0x4d0 [ 1635.612382][ T2944] ? __x64_sys_openat+0x12d/0x210 [ 1635.612402][ T2944] ? __pfx___x64_sys_futex+0x10/0x10 [ 1635.612429][ T2944] do_syscall_64+0x106/0xf80 [ 1635.612443][ T2944] ? clear_bhb_loop+0x40/0x90 [ 1635.612461][ T2944] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1635.612477][ T2944] RIP: 0033:0x7f7f9919c819 [ 1635.612493][ T2944] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1635.612507][ T2944] RSP: 002b:00007f7f9a04b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1635.612522][ T2944] RAX: ffffffffffffffda RBX: 00007f7f99416098 RCX: 00007f7f9919c819 [ 1635.612532][ T2944] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7f9941609c [ 1635.612542][ T2944] RBP: 00007f7f99416090 R08: 0000000000000000 R09: 0000000000000000 [ 1635.612550][ T2944] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 1635.612559][ T2944] R13: 00007f7f99416128 R14: 00007ffc8f81c3a0 R15: 00007ffc8f81c488 [ 1635.612583][ T2944] [ 1636.655100][ T2962] FAULT_INJECTION: forcing a failure. [ 1636.655100][ T2962] name failslab, interval 1, probability 0, space 0, times 0 [ 1636.655130][ T2962] CPU: 0 UID: 0 PID: 2962 Comm: syz.5.6005 Tainted: G L syzkaller #0 PREEMPT(full) [ 1636.655154][ T2962] Tainted: [L]=SOFTLOCKUP [ 1636.655159][ T2962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1636.655169][ T2962] Call Trace: [ 1636.655175][ T2962] [ 1636.655182][ T2962] dump_stack_lvl+0x100/0x190 [ 1636.655210][ T2962] should_fail_ex.cold+0x5/0xa [ 1636.655233][ T2962] ? tomoyo_encode2+0xfb/0x3c0 [ 1636.655255][ T2962] should_failslab+0xc2/0x120 [ 1636.655273][ T2962] __kmalloc_noprof+0xe0/0x850 [ 1636.655296][ T2962] ? d_absolute_path+0x136/0x1b0 [ 1636.655321][ T2962] tomoyo_encode2+0xfb/0x3c0 [ 1636.655345][ T2962] tomoyo_encode+0x29/0x50 [ 1636.655366][ T2962] tomoyo_realpath_from_path+0x18c/0x690 [ 1636.655393][ T2962] tomoyo_check_open_permission+0x2af/0x3c0 [ 1636.655413][ T2962] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 1636.655451][ T2962] ? do_raw_spin_lock+0x128/0x260 [ 1636.655475][ T2962] ? path_get+0x61/0x80 [ 1636.655495][ T2962] tomoyo_file_open+0x6b/0x90 [ 1636.655510][ T2962] security_file_open+0xb5/0x1e0 [ 1636.655531][ T2962] do_dentry_open+0x5aa/0x1660 [ 1636.655548][ T2962] ? security_inode_permission+0xbf/0x250 [ 1636.655570][ T2962] vfs_open+0x82/0x3f0 [ 1636.655592][ T2962] path_openat+0x208c/0x31a0 [ 1636.655615][ T2962] ? __pfx_path_openat+0x10/0x10 [ 1636.655639][ T2962] do_file_open+0x20e/0x430 [ 1636.655657][ T2962] ? __pfx_do_file_open+0x10/0x10 [ 1636.655687][ T2962] ? alloc_fd+0x476/0x790 [ 1636.655705][ T2962] ? do_getname+0x191/0x390 [ 1636.655726][ T2962] do_sys_openat2+0x10d/0x1e0 [ 1636.655746][ T2962] ? __pfx_do_sys_openat2+0x10/0x10 [ 1636.655774][ T2962] __x64_sys_openat+0x12d/0x210 [ 1636.655795][ T2962] ? __pfx___x64_sys_openat+0x10/0x10 [ 1636.655833][ T2962] do_syscall_64+0x106/0xf80 [ 1636.655849][ T2962] ? clear_bhb_loop+0x40/0x90 [ 1636.655869][ T2962] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1636.655884][ T2962] RIP: 0033:0x7fc251f9c819 [ 1636.655899][ T2962] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1636.655913][ T2962] RSP: 002b:00007fc252e7d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1636.655928][ T2962] RAX: ffffffffffffffda RBX: 00007fc252216090 RCX: 00007fc251f9c819 [ 1636.655938][ T2962] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1636.655947][ T2962] RBP: 00007fc252032c91 R08: 0000000000000000 R09: 0000000000000000 [ 1636.655957][ T2962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1636.655966][ T2962] R13: 00007fc252216128 R14: 00007fc252216090 R15: 00007ffc0ce02418 [ 1636.655987][ T2962] [ 1636.656019][ T2962] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1637.560123][ T2975] FAULT_INJECTION: forcing a failure. [ 1637.560123][ T2975] name failslab, interval 1, probability 0, space 0, times 0 [ 1637.560158][ T2975] CPU: 0 UID: 0 PID: 2975 Comm: syz.4.6008 Tainted: G L syzkaller #0 PREEMPT(full) [ 1637.560193][ T2975] Tainted: [L]=SOFTLOCKUP [ 1637.560199][ T2975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1637.560209][ T2975] Call Trace: [ 1637.560214][ T2975] [ 1637.560220][ T2975] dump_stack_lvl+0x100/0x190 [ 1637.560249][ T2975] should_fail_ex.cold+0x5/0xa [ 1637.560268][ T2975] should_failslab+0xc2/0x120 [ 1637.560286][ T2975] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1637.560307][ T2975] ? vhost_net_open+0xb9/0x8b0 [ 1637.560335][ T2975] vhost_net_open+0xb9/0x8b0 [ 1637.560357][ T2975] ? __pfx_vhost_net_open+0x10/0x10 [ 1637.560381][ T2975] misc_open+0x26d/0x450 [ 1637.560401][ T2975] ? __pfx_misc_open+0x10/0x10 [ 1637.560419][ T2975] chrdev_open+0x234/0x6a0 [ 1637.560435][ T2975] ? __pfx_apparmor_file_open+0x10/0x10 [ 1637.560452][ T2975] ? __pfx_chrdev_open+0x10/0x10 [ 1637.560469][ T2975] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1637.560490][ T2975] do_dentry_open+0x6d8/0x1660 [ 1637.560506][ T2975] ? __pfx_chrdev_open+0x10/0x10 [ 1637.560527][ T2975] vfs_open+0x82/0x3f0 [ 1637.560550][ T2975] path_openat+0x208c/0x31a0 [ 1637.560580][ T2975] ? __pfx_path_openat+0x10/0x10 [ 1637.560604][ T2975] do_file_open+0x20e/0x430 [ 1637.560623][ T2975] ? __pfx_do_file_open+0x10/0x10 [ 1637.560654][ T2975] ? alloc_fd+0x476/0x790 [ 1637.560672][ T2975] ? do_getname+0x191/0x390 [ 1637.560695][ T2975] do_sys_openat2+0x10d/0x1e0 [ 1637.560715][ T2975] ? __pfx_do_sys_openat2+0x10/0x10 [ 1637.560744][ T2975] __x64_sys_openat+0x12d/0x210 [ 1637.560773][ T2975] ? __pfx___x64_sys_openat+0x10/0x10 [ 1637.560803][ T2975] do_syscall_64+0x106/0xf80 [ 1637.560818][ T2975] ? clear_bhb_loop+0x40/0x90 [ 1637.560836][ T2975] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1637.560851][ T2975] RIP: 0033:0x7fa3a259c819 [ 1637.560865][ T2975] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1637.560880][ T2975] RSP: 002b:00007fa3a07f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1637.560895][ T2975] RAX: ffffffffffffffda RBX: 00007fa3a2816090 RCX: 00007fa3a259c819 [ 1637.560906][ T2975] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1637.560916][ T2975] RBP: 00007fa3a2632c91 R08: 0000000000000000 R09: 0000000000000000 [ 1637.560925][ T2975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1637.560935][ T2975] R13: 00007fa3a2816128 R14: 00007fa3a2816090 R15: 00007fffe006bfd8 [ 1637.560955][ T2975] [ 1638.637172][ T2979] i2c i2c-0: new_device: Invalid device name [ 1638.866429][ T2979] FAULT_INJECTION: forcing a failure. [ 1638.866429][ T2979] name failslab, interval 1, probability 0, space 0, times 0 [ 1638.866460][ T2979] CPU: 0 UID: 0 PID: 2979 Comm: syz.5.6009 Tainted: G L syzkaller #0 PREEMPT(full) [ 1638.866483][ T2979] Tainted: [L]=SOFTLOCKUP [ 1638.866489][ T2979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1638.866498][ T2979] Call Trace: [ 1638.866504][ T2979] [ 1638.866510][ T2979] dump_stack_lvl+0x100/0x190 [ 1638.866537][ T2979] should_fail_ex.cold+0x5/0xa [ 1638.866556][ T2979] ? cache_create_net+0xa2/0x1f0 [ 1638.866571][ T2979] should_failslab+0xc2/0x120 [ 1638.866589][ T2979] __kmalloc_noprof+0xe0/0x850 [ 1638.866622][ T2979] cache_create_net+0xa2/0x1f0 [ 1638.866636][ T2979] ? __pfx_nfsd_net_init+0x10/0x10 [ 1638.866654][ T2979] nfsd_idmap_init+0x62/0x250 [ 1638.866676][ T2979] ? __pfx_nfsd_net_init+0x10/0x10 [ 1638.866693][ T2979] nfsd_net_init+0x69/0x3d0 [ 1638.866717][ T2979] ? __pfx_nfsd_net_init+0x10/0x10 [ 1638.866734][ T2979] ops_init+0x1e2/0x5f0 [ 1638.866758][ T2979] setup_net+0x118/0x3a0 [ 1638.866774][ T2979] ? __pfx_setup_net+0x10/0x10 [ 1638.866788][ T2979] ? lockdep_init_map_type+0x5c/0x250 [ 1638.866811][ T2979] ? mutex_init_lockep+0x110/0x150 [ 1638.866836][ T2979] copy_net_ns+0x46f/0x7c0 [ 1638.866855][ T2979] create_new_namespaces+0x3ea/0xac0 [ 1638.866877][ T2979] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1638.866896][ T2979] ksys_unshare+0x473/0xad0 [ 1638.866916][ T2979] ? __pfx_ksys_unshare+0x10/0x10 [ 1638.866943][ T2979] __x64_sys_unshare+0x31/0x40 [ 1638.866962][ T2979] do_syscall_64+0x106/0xf80 [ 1638.866976][ T2979] ? clear_bhb_loop+0x40/0x90 [ 1638.866994][ T2979] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1638.867010][ T2979] RIP: 0033:0x7fc251f9c819 [ 1638.867024][ T2979] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1638.867039][ T2979] RSP: 002b:00007fc252e9e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1638.867054][ T2979] RAX: ffffffffffffffda RBX: 00007fc252215fa0 RCX: 00007fc251f9c819 [ 1638.867064][ T2979] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1638.867073][ T2979] RBP: 00007fc252032c91 R08: 0000000000000000 R09: 0000000000000000 [ 1638.867083][ T2979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1638.867092][ T2979] R13: 00007fc252216038 R14: 00007fc252215fa0 R15: 00007ffc0ce02418 [ 1638.867113][ T2979] [ 1641.012906][ T2992] futex_wake_op: syz.2.6012 tries to shift op by -2048; fix this program [ 1641.060846][ T2992] futex_wake_op: syz.2.6012 tries to shift op by -2048; fix this program [ 1641.089437][ T2992] 0x000000000001-0x000000020000 : "" [ 1641.124185][ T2992] ftl_cs: FTL header corrupt! [ 1641.403183][ T2999] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6015'. [ 1641.604796][ T2992] FAULT_INJECTION: forcing a failure. [ 1641.604796][ T2992] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1641.685212][ T2992] CPU: 0 UID: 0 PID: 2992 Comm: syz.2.6012 Tainted: G L syzkaller #0 PREEMPT(full) [ 1641.685242][ T2992] Tainted: [L]=SOFTLOCKUP [ 1641.685248][ T2992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1641.685257][ T2992] Call Trace: [ 1641.685263][ T2992] [ 1641.685269][ T2992] dump_stack_lvl+0x100/0x190 [ 1641.685296][ T2992] should_fail_ex.cold+0x5/0xa [ 1641.685315][ T2992] get_futex_key+0x1d2/0x1620 [ 1641.685336][ T2992] ? __pfx_get_futex_key+0x10/0x10 [ 1641.685353][ T2992] ? lock_acquire+0x1cf/0x380 [ 1641.685379][ T2992] futex_wake+0xea/0x530 [ 1641.685404][ T2992] ? __pfx_futex_wake+0x10/0x10 [ 1641.685426][ T2992] ? exit_mm_release+0x19/0x30 [ 1641.685451][ T2992] do_futex+0x32b/0x350 [ 1641.685480][ T2992] ? __pfx_do_futex+0x10/0x10 [ 1641.685498][ T2992] ? __might_fault+0xc5/0x140 [ 1641.685525][ T2992] mm_release+0x24a/0x2f0 [ 1641.685541][ T2992] do_exit+0x704/0x2b60 [ 1641.685565][ T2992] ? __pfx_do_exit+0x10/0x10 [ 1641.685584][ T2992] ? do_raw_spin_lock+0x128/0x260 [ 1641.685606][ T2992] ? find_held_lock+0x2b/0x80 [ 1641.685620][ T2992] ? get_signal+0x7e0/0x21e0 [ 1641.685639][ T2992] do_group_exit+0xd5/0x2a0 [ 1641.685661][ T2992] get_signal+0x1ec7/0x21e0 [ 1641.685677][ T2992] ? __kasan_kmalloc+0xaa/0xb0 [ 1641.685697][ T2992] ? __pfx_get_signal+0x10/0x10 [ 1641.685714][ T2992] ? do_futex+0x192/0x350 [ 1641.685736][ T2992] arch_do_signal_or_restart+0x91/0x770 [ 1641.685757][ T2992] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1641.685787][ T2992] ? __pfx___x64_sys_futex+0x10/0x10 [ 1641.685811][ T2992] exit_to_user_mode_loop+0x86/0x4a0 [ 1641.685834][ T2992] do_syscall_64+0x668/0xf80 [ 1641.685849][ T2992] ? clear_bhb_loop+0x40/0x90 [ 1641.685868][ T2992] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1641.685883][ T2992] RIP: 0033:0x7fbd85f9c819 [ 1641.685897][ T2992] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1641.685911][ T2992] RSP: 002b:00007fbd841f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1641.685926][ T2992] RAX: 0000000000000001 RBX: 00007fbd86215fa8 RCX: 00007fbd85f9c819 [ 1641.685936][ T2992] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbd86215fac [ 1641.685945][ T2992] RBP: 00007fbd86215fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1641.685954][ T2992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1641.685963][ T2992] R13: 00007fbd86216038 R14: 00007ffe8618a800 R15: 00007ffe8618a8e8 [ 1641.685982][ T2992] [ 1642.380715][ T5833] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 1642.402609][ T3012] futex_wake_op: syz.2.6016 tries to shift op by -2048; fix this program [ 1642.440831][ T3012] futex_wake_op: syz.2.6016 tries to shift op by -2048; fix this program [ 1642.484944][ T3012] 0x000000000001-0x000000020000 : "" [ 1642.607638][ T3012] ftl_cs: FTL header corrupt! [ 1642.956296][ T3012] FAULT_INJECTION: forcing a failure. [ 1642.956296][ T3012] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1643.023363][ T3012] CPU: 0 UID: 0 PID: 3012 Comm: syz.2.6016 Tainted: G L syzkaller #0 PREEMPT(full) [ 1643.023392][ T3012] Tainted: [L]=SOFTLOCKUP [ 1643.023398][ T3012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1643.023407][ T3012] Call Trace: [ 1643.023413][ T3012] [ 1643.023419][ T3012] dump_stack_lvl+0x100/0x190 [ 1643.023448][ T3012] should_fail_ex.cold+0x5/0xa [ 1643.023468][ T3012] get_futex_key+0x1d2/0x1620 [ 1643.023489][ T3012] ? __pfx_get_futex_key+0x10/0x10 [ 1643.023514][ T3012] futex_wake+0xea/0x530 [ 1643.023537][ T3012] ? rcu_is_watching+0x12/0xc0 [ 1643.023563][ T3012] ? __pfx_futex_wake+0x10/0x10 [ 1643.023584][ T3012] ? __kasan_kmalloc+0xaa/0xb0 [ 1643.023602][ T3012] ? commit_creds+0x755/0x10e0 [ 1643.023637][ T3012] do_futex+0x32b/0x350 [ 1643.023659][ T3012] ? __pfx_do_futex+0x10/0x10 [ 1643.023680][ T3012] ? cap_task_prctl+0x104/0xa50 [ 1643.023701][ T3012] __x64_sys_futex+0x34f/0x4d0 [ 1643.023723][ T3012] ? __pfx___x64_sys_futex+0x10/0x10 [ 1643.023744][ T3012] ? __pfx___do_sys_prctl+0x10/0x10 [ 1643.023774][ T3012] do_syscall_64+0x106/0xf80 [ 1643.023796][ T3012] ? clear_bhb_loop+0x40/0x90 [ 1643.023815][ T3012] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1643.023831][ T3012] RIP: 0033:0x7fbd85f9c819 [ 1643.023845][ T3012] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1643.023860][ T3012] RSP: 002b:00007fbd841f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1643.023875][ T3012] RAX: ffffffffffffffda RBX: 00007fbd86215fa8 RCX: 00007fbd85f9c819 [ 1643.023885][ T3012] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbd86215fac [ 1643.023894][ T3012] RBP: 00007fbd86215fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1643.023903][ T3012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1643.023912][ T3012] R13: 00007fbd86216038 R14: 00007ffe8618a800 R15: 00007ffe8618a8e8 [ 1643.023937][ T3012] [ 1644.025534][ T3000] Process accounting paused [ 1644.249957][ T3020] futex_wake_op: syz.2.6017 tries to shift op by -2048; fix this program [ 1644.315323][ T3020] futex_wake_op: syz.2.6017 tries to shift op by -2048; fix this program [ 1644.346721][ T3021] futex_wake_op: syz.1.6026 tries to shift op by -2048; fix this program [ 1644.375639][ T3024] 0x000000000001-0x000000020000 : "" [ 1644.411220][ T3021] futex_wake_op: syz.1.6026 tries to shift op by -2048; fix this program [ 1644.480953][ T3024] ftl_cs: FTL header corrupt! [ 1644.839459][ T3021] FAULT_INJECTION: forcing a failure. [ 1644.839459][ T3021] name failslab, interval 1, probability 0, space 0, times 0 [ 1644.892935][ T3021] CPU: 0 UID: 0 PID: 3021 Comm: syz.1.6026 Tainted: G L syzkaller #0 PREEMPT(full) [ 1644.892964][ T3021] Tainted: [L]=SOFTLOCKUP [ 1644.892970][ T3021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1644.892980][ T3021] Call Trace: [ 1644.892986][ T3021] [ 1644.892992][ T3021] dump_stack_lvl+0x100/0x190 [ 1644.893021][ T3021] should_fail_ex.cold+0x5/0xa [ 1644.893040][ T3021] should_failslab+0xc2/0x120 [ 1644.893057][ T3021] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1644.893080][ T3021] ? prepare_creds+0x2c/0x950 [ 1644.893107][ T3021] prepare_creds+0x2c/0x950 [ 1644.893131][ T3021] cap_task_prctl+0x449/0xa50 [ 1644.893150][ T3021] security_task_prctl+0xc2/0x160 [ 1644.893176][ T3021] __do_sys_prctl+0x9b/0x2330 [ 1644.893199][ T3021] ? __pfx___do_sys_prctl+0x10/0x10 [ 1644.893227][ T3021] do_syscall_64+0x106/0xf80 [ 1644.893242][ T3021] ? clear_bhb_loop+0x40/0x90 [ 1644.893260][ T3021] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1644.893275][ T3021] RIP: 0033:0x7f7f9919c819 [ 1644.893289][ T3021] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1644.893304][ T3021] RSP: 002b:00007f7f9a06c028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 1644.893324][ T3021] RAX: ffffffffffffffda RBX: 00007f7f99415fa0 RCX: 00007f7f9919c819 [ 1644.893335][ T3021] RDX: 0000000000000004 RSI: 0000000000000001 RDI: 0000000000000008 [ 1644.893343][ T3021] RBP: 00007f7f99232c91 R08: 8000000000000001 R09: 0000000000000000 [ 1644.893353][ T3021] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 1644.893362][ T3021] R13: 00007f7f99416038 R14: 00007f7f99415fa0 R15: 00007ffc8f81c488 [ 1644.893381][ T3021] [ 1645.275593][ T3020] FAULT_INJECTION: forcing a failure. [ 1645.275593][ T3020] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1645.310803][ T3020] CPU: 0 UID: 0 PID: 3020 Comm: syz.2.6017 Tainted: G L syzkaller #0 PREEMPT(full) [ 1645.310831][ T3020] Tainted: [L]=SOFTLOCKUP [ 1645.310837][ T3020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1645.310846][ T3020] Call Trace: [ 1645.310852][ T3020] [ 1645.310858][ T3020] dump_stack_lvl+0x100/0x190 [ 1645.310886][ T3020] should_fail_ex.cold+0x5/0xa [ 1645.310901][ T3020] ? rcu_is_watching+0x12/0xc0 [ 1645.310927][ T3020] get_futex_key+0x1d2/0x1620 [ 1645.310949][ T3020] ? __pfx_get_futex_key+0x10/0x10 [ 1645.310966][ T3020] ? lock_acquire+0x1cf/0x380 [ 1645.310992][ T3020] futex_wake+0xea/0x530 [ 1645.311017][ T3020] ? __pfx_futex_wake+0x10/0x10 [ 1645.311040][ T3020] ? exit_mm_release+0x19/0x30 [ 1645.311064][ T3020] do_futex+0x32b/0x350 [ 1645.311084][ T3020] ? __pfx_do_futex+0x10/0x10 [ 1645.311103][ T3020] ? __might_fault+0xc5/0x140 [ 1645.311130][ T3020] mm_release+0x24a/0x2f0 [ 1645.311147][ T3020] do_exit+0x704/0x2b60 [ 1645.311169][ T3020] ? __pfx_do_exit+0x10/0x10 [ 1645.311190][ T3020] ? do_raw_spin_lock+0x128/0x260 [ 1645.311212][ T3020] ? find_held_lock+0x2b/0x80 [ 1645.311226][ T3020] ? get_signal+0x7e0/0x21e0 [ 1645.311244][ T3020] do_group_exit+0xd5/0x2a0 [ 1645.311266][ T3020] get_signal+0x1ec7/0x21e0 [ 1645.311290][ T3020] ? __pfx_get_signal+0x10/0x10 [ 1645.311307][ T3020] ? do_futex+0x192/0x350 [ 1645.311329][ T3020] arch_do_signal_or_restart+0x91/0x770 [ 1645.311349][ T3020] ? kfree+0x2ec/0x6b0 [ 1645.311368][ T3020] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1645.311393][ T3020] ? __pfx___x64_sys_futex+0x10/0x10 [ 1645.311418][ T3020] exit_to_user_mode_loop+0x86/0x4a0 [ 1645.311440][ T3020] do_syscall_64+0x668/0xf80 [ 1645.311455][ T3020] ? clear_bhb_loop+0x40/0x90 [ 1645.311473][ T3020] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1645.311488][ T3020] RIP: 0033:0x7fbd85f9c819 [ 1645.311502][ T3020] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1645.311516][ T3020] RSP: 002b:00007fbd841f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1645.311538][ T3020] RAX: fffffffffffffe00 RBX: 00007fbd86215fa8 RCX: 00007fbd85f9c819 [ 1645.311548][ T3020] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbd86215fa8 [ 1645.311557][ T3020] RBP: 00007fbd86215fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1645.311566][ T3020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1645.311575][ T3020] R13: 00007fbd86216038 R14: 00007ffe8618a800 R15: 00007ffe8618a8e8 [ 1645.311594][ T3020] [ 1646.111859][ T3031] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6029'. [ 1646.252198][ T3037] FAULT_INJECTION: forcing a failure. [ 1646.252198][ T3037] name failslab, interval 1, probability 0, space 0, times 0 [ 1646.376757][ T3037] CPU: 0 UID: 0 PID: 3037 Comm: syz.4.6021 Tainted: G L syzkaller #0 PREEMPT(full) [ 1646.376786][ T3037] Tainted: [L]=SOFTLOCKUP [ 1646.376792][ T3037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1646.376801][ T3037] Call Trace: [ 1646.376807][ T3037] [ 1646.376813][ T3037] dump_stack_lvl+0x100/0x190 [ 1646.376842][ T3037] should_fail_ex.cold+0x5/0xa [ 1646.376862][ T3037] ? tomoyo_encode2+0xfb/0x3c0 [ 1646.376882][ T3037] should_failslab+0xc2/0x120 [ 1646.376900][ T3037] __kmalloc_noprof+0xe0/0x850 [ 1646.376922][ T3037] ? d_absolute_path+0x136/0x1b0 [ 1646.376947][ T3037] tomoyo_encode2+0xfb/0x3c0 [ 1646.376970][ T3037] tomoyo_encode+0x29/0x50 [ 1646.376990][ T3037] tomoyo_realpath_from_path+0x18c/0x690 [ 1646.377016][ T3037] tomoyo_check_open_permission+0x2af/0x3c0 [ 1646.377036][ T3037] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 1646.377074][ T3037] ? do_raw_spin_lock+0x128/0x260 [ 1646.377098][ T3037] ? path_get+0x61/0x80 [ 1646.377118][ T3037] tomoyo_file_open+0x6b/0x90 [ 1646.377133][ T3037] security_file_open+0xb5/0x1e0 [ 1646.377154][ T3037] do_dentry_open+0x5aa/0x1660 [ 1646.377171][ T3037] ? security_inode_permission+0xbf/0x250 [ 1646.377244][ T3037] vfs_open+0x82/0x3f0 [ 1646.377267][ T3037] path_openat+0x208c/0x31a0 [ 1646.377291][ T3037] ? __pfx_path_openat+0x10/0x10 [ 1646.377316][ T3037] do_file_open+0x20e/0x430 [ 1646.377334][ T3037] ? __pfx_do_file_open+0x10/0x10 [ 1646.377364][ T3037] ? alloc_fd+0x476/0x790 [ 1646.377382][ T3037] ? do_getname+0x191/0x390 [ 1646.377403][ T3037] do_sys_openat2+0x10d/0x1e0 [ 1646.377424][ T3037] ? __pfx_do_sys_openat2+0x10/0x10 [ 1646.377451][ T3037] __x64_sys_openat+0x12d/0x210 [ 1646.377472][ T3037] ? __pfx___x64_sys_openat+0x10/0x10 [ 1646.377500][ T3037] do_syscall_64+0x106/0xf80 [ 1646.377515][ T3037] ? clear_bhb_loop+0x40/0x90 [ 1646.377534][ T3037] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1646.377550][ T3037] RIP: 0033:0x7fa3a259c819 [ 1646.377564][ T3037] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1646.377579][ T3037] RSP: 002b:00007fa3a07f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1646.377594][ T3037] RAX: ffffffffffffffda RBX: 00007fa3a2816090 RCX: 00007fa3a259c819 [ 1646.377605][ T3037] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1646.377615][ T3037] RBP: 00007fa3a2632c91 R08: 0000000000000000 R09: 0000000000000000 [ 1646.377625][ T3037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1646.377634][ T3037] R13: 00007fa3a2816128 R14: 00007fa3a2816090 R15: 00007fffe006bfd8 [ 1646.377655][ T3037] [ 1646.377676][ T3037] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1646.761360][ T3045] FAULT_INJECTION: forcing a failure. [ 1646.761360][ T3045] name failslab, interval 1, probability 0, space 0, times 0 [ 1646.761391][ T3045] CPU: 0 UID: 0 PID: 3045 Comm: syz.2.6022 Tainted: G L syzkaller #0 PREEMPT(full) [ 1646.761414][ T3045] Tainted: [L]=SOFTLOCKUP [ 1646.761420][ T3045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1646.761429][ T3045] Call Trace: [ 1646.761435][ T3045] [ 1646.761441][ T3045] dump_stack_lvl+0x100/0x190 [ 1646.761468][ T3045] should_fail_ex.cold+0x5/0xa [ 1646.761487][ T3045] ? tomoyo_encode2+0xfb/0x3c0 [ 1646.761508][ T3045] should_failslab+0xc2/0x120 [ 1646.761525][ T3045] __kmalloc_noprof+0xe0/0x850 [ 1646.761549][ T3045] ? d_absolute_path+0x136/0x1b0 [ 1646.761574][ T3045] tomoyo_encode2+0xfb/0x3c0 [ 1646.761598][ T3045] tomoyo_encode+0x29/0x50 [ 1646.761617][ T3045] tomoyo_realpath_from_path+0x18c/0x690 [ 1646.761643][ T3045] tomoyo_check_open_permission+0x2af/0x3c0 [ 1646.761663][ T3045] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 1646.761700][ T3045] ? do_raw_spin_lock+0x128/0x260 [ 1646.761725][ T3045] ? path_get+0x61/0x80 [ 1646.761744][ T3045] tomoyo_file_open+0x6b/0x90 [ 1646.761760][ T3045] security_file_open+0xb5/0x1e0 [ 1646.761781][ T3045] do_dentry_open+0x5aa/0x1660 [ 1646.761798][ T3045] ? security_inode_permission+0xbf/0x250 [ 1646.761820][ T3045] vfs_open+0x82/0x3f0 [ 1646.761842][ T3045] path_openat+0x208c/0x31a0 [ 1646.761865][ T3045] ? __pfx_path_openat+0x10/0x10 [ 1646.761888][ T3045] do_file_open+0x20e/0x430 [ 1646.761906][ T3045] ? __pfx_do_file_open+0x10/0x10 [ 1646.761937][ T3045] ? alloc_fd+0x476/0x790 [ 1646.761955][ T3045] ? do_getname+0x191/0x390 [ 1646.761976][ T3045] do_sys_openat2+0x10d/0x1e0 [ 1646.761996][ T3045] ? __pfx_do_sys_openat2+0x10/0x10 [ 1646.762024][ T3045] __x64_sys_openat+0x12d/0x210 [ 1646.762045][ T3045] ? __pfx___x64_sys_openat+0x10/0x10 [ 1646.762073][ T3045] do_syscall_64+0x106/0xf80 [ 1646.762088][ T3045] ? clear_bhb_loop+0x40/0x90 [ 1646.762107][ T3045] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1646.762123][ T3045] RIP: 0033:0x7fbd85f9c819 [ 1646.762137][ T3045] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1646.762152][ T3045] RSP: 002b:00007fbd841d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1646.762167][ T3045] RAX: ffffffffffffffda RBX: 00007fbd86216090 RCX: 00007fbd85f9c819 [ 1646.762178][ T3045] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1646.762188][ T3045] RBP: 00007fbd86032c91 R08: 0000000000000000 R09: 0000000000000000 [ 1646.762197][ T3045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1646.762215][ T3045] R13: 00007fbd86216128 R14: 00007fbd86216090 R15: 00007ffe8618a8e8 [ 1646.762237][ T3045] [ 1646.762253][ T3045] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1648.167383][ T3065] futex_wake_op: syz.1.6027 tries to shift op by -2048; fix this program [ 1648.167526][ T3065] futex_wake_op: syz.1.6027 tries to shift op by -2048; fix this program [ 1648.168123][ T3065] 0x000000000001-0x000000020000 : "" [ 1648.177761][ T3065] ftl_cs: FTL header corrupt! [ 1648.642630][ T3065] FAULT_INJECTION: forcing a failure. [ 1648.642630][ T3065] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1648.642662][ T3065] CPU: 0 UID: 0 PID: 3065 Comm: syz.1.6027 Tainted: G L syzkaller #0 PREEMPT(full) [ 1648.642684][ T3065] Tainted: [L]=SOFTLOCKUP [ 1648.642689][ T3065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1648.642699][ T3065] Call Trace: [ 1648.642705][ T3065] [ 1648.642711][ T3065] dump_stack_lvl+0x100/0x190 [ 1648.642743][ T3065] should_fail_ex.cold+0x5/0xa [ 1648.642762][ T3065] get_futex_key+0x1d2/0x1620 [ 1648.642784][ T3065] ? __pfx_get_futex_key+0x10/0x10 [ 1648.642809][ T3065] futex_wake+0xea/0x530 [ 1648.642831][ T3065] ? rcu_is_watching+0x12/0xc0 [ 1648.642856][ T3065] ? __pfx_futex_wake+0x10/0x10 [ 1648.642876][ T3065] ? __kasan_kmalloc+0xaa/0xb0 [ 1648.642894][ T3065] ? commit_creds+0x755/0x10e0 [ 1648.642920][ T3065] do_futex+0x32b/0x350 [ 1648.642940][ T3065] ? __pfx_do_futex+0x10/0x10 [ 1648.642960][ T3065] ? cap_task_prctl+0x104/0xa50 [ 1648.642986][ T3065] __x64_sys_futex+0x34f/0x4d0 [ 1648.643011][ T3065] ? __pfx___x64_sys_futex+0x10/0x10 [ 1648.643032][ T3065] ? __pfx___do_sys_prctl+0x10/0x10 [ 1648.643061][ T3065] do_syscall_64+0x106/0xf80 [ 1648.643076][ T3065] ? clear_bhb_loop+0x40/0x90 [ 1648.643094][ T3065] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1648.643110][ T3065] RIP: 0033:0x7f7f9919c819 [ 1648.643123][ T3065] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1648.643138][ T3065] RSP: 002b:00007f7f9a06c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1648.643154][ T3065] RAX: ffffffffffffffda RBX: 00007f7f99415fa8 RCX: 00007f7f9919c819 [ 1648.643164][ T3065] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7f99415fac [ 1648.643173][ T3065] RBP: 00007f7f99415fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1648.643182][ T3065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1648.643191][ T3065] R13: 00007f7f99416038 R14: 00007ffc8f81c3a0 R15: 00007ffc8f81c488 [ 1648.643210][ T3065] [ 1648.974477][ T3075] futex_wake_op: syz.1.6031 tries to shift op by -2048; fix this program [ 1648.974610][ T3075] futex_wake_op: syz.1.6031 tries to shift op by -2048; fix this program [ 1648.975268][ T3075] 0x000000000001-0x000000020000 : "" [ 1649.006433][ T3075] ftl_cs: FTL header corrupt! [ 1649.352154][ T3075] FAULT_INJECTION: forcing a failure. [ 1649.352154][ T3075] name failslab, interval 1, probability 0, space 0, times 0 [ 1649.352186][ T3075] CPU: 0 UID: 0 PID: 3075 Comm: syz.1.6031 Tainted: G L syzkaller #0 PREEMPT(full) [ 1649.352219][ T3075] Tainted: [L]=SOFTLOCKUP [ 1649.352225][ T3075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1649.352234][ T3075] Call Trace: [ 1649.352240][ T3075] [ 1649.352247][ T3075] dump_stack_lvl+0x100/0x190 [ 1649.352276][ T3075] should_fail_ex.cold+0x5/0xa [ 1649.352296][ T3075] should_failslab+0xc2/0x120 [ 1649.352314][ T3075] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1649.352337][ T3075] ? prepare_creds+0x2c/0x950 [ 1649.352366][ T3075] prepare_creds+0x2c/0x950 [ 1649.352389][ T3075] cap_task_prctl+0x449/0xa50 [ 1649.352408][ T3075] security_task_prctl+0xc2/0x160 [ 1649.352435][ T3075] __do_sys_prctl+0x9b/0x2330 [ 1649.352460][ T3075] ? __pfx___do_sys_prctl+0x10/0x10 [ 1649.352487][ T3075] do_syscall_64+0x106/0xf80 [ 1649.352502][ T3075] ? clear_bhb_loop+0x40/0x90 [ 1649.352520][ T3075] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1649.352535][ T3075] RIP: 0033:0x7f7f9919c819 [ 1649.352548][ T3075] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1649.352563][ T3075] RSP: 002b:00007f7f9a06c028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 1649.352578][ T3075] RAX: ffffffffffffffda RBX: 00007f7f99415fa0 RCX: 00007f7f9919c819 [ 1649.352589][ T3075] RDX: 0000000000000004 RSI: 0000000000000001 RDI: 0000000000000008 [ 1649.352597][ T3075] RBP: 00007f7f99232c91 R08: 8000000000000001 R09: 0000000000000000 [ 1649.352607][ T3075] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 1649.352616][ T3075] R13: 00007f7f99416038 R14: 00007f7f99415fa0 R15: 00007ffc8f81c488 [ 1649.352637][ T3075] [ 1649.536481][ T3085] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6034'. [ 1650.659637][ T3091] futex_wake_op: syz.5.6043 tries to shift op by -2048; fix this program [ 1650.659784][ T3091] futex_wake_op: syz.5.6043 tries to shift op by -2048; fix this program [ 1650.660508][ T3091] 0x000000000001-0x000000020000 : "" [ 1650.666096][ T3091] ftl_cs: FTL header corrupt! [ 1651.022881][ T3091] FAULT_INJECTION: forcing a failure. [ 1651.022881][ T3091] name failslab, interval 1, probability 0, space 0, times 0 [ 1651.022914][ T3091] CPU: 0 UID: 0 PID: 3091 Comm: syz.5.6043 Tainted: G L syzkaller #0 PREEMPT(full) [ 1651.022936][ T3091] Tainted: [L]=SOFTLOCKUP [ 1651.022941][ T3091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1651.022950][ T3091] Call Trace: [ 1651.022957][ T3091] [ 1651.022963][ T3091] dump_stack_lvl+0x100/0x190 [ 1651.022991][ T3091] should_fail_ex.cold+0x5/0xa [ 1651.023011][ T3091] should_failslab+0xc2/0x120 [ 1651.023028][ T3091] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1651.023051][ T3091] ? prepare_creds+0x2c/0x950 [ 1651.023078][ T3091] prepare_creds+0x2c/0x950 [ 1651.023102][ T3091] cap_task_prctl+0x449/0xa50 [ 1651.023121][ T3091] security_task_prctl+0xc2/0x160 [ 1651.023156][ T3091] __do_sys_prctl+0x9b/0x2330 [ 1651.023187][ T3091] ? __pfx___do_sys_prctl+0x10/0x10 [ 1651.023216][ T3091] do_syscall_64+0x106/0xf80 [ 1651.023232][ T3091] ? clear_bhb_loop+0x40/0x90 [ 1651.023251][ T3091] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1651.023266][ T3091] RIP: 0033:0x7fc251f9c819 [ 1651.023280][ T3091] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1651.023296][ T3091] RSP: 002b:00007fc252e9e028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 1651.023311][ T3091] RAX: ffffffffffffffda RBX: 00007fc252215fa0 RCX: 00007fc251f9c819 [ 1651.023322][ T3091] RDX: 0000000000000004 RSI: 0000000000000001 RDI: 0000000000000008 [ 1651.023331][ T3091] RBP: 00007fc252032c91 R08: 8000000000000001 R09: 0000000000000000 [ 1651.023340][ T3091] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 1651.023349][ T3091] R13: 00007fc252216038 R14: 00007fc252215fa0 R15: 00007ffc0ce02418 [ 1651.023369][ T3091] [ 1651.195549][ T3101] FAULT_INJECTION: forcing a failure. [ 1651.195549][ T3101] name failslab, interval 1, probability 0, space 0, times 0 [ 1651.195579][ T3101] CPU: 0 UID: 0 PID: 3101 Comm: syz.5.6036 Tainted: G L syzkaller #0 PREEMPT(full) [ 1651.195600][ T3101] Tainted: [L]=SOFTLOCKUP [ 1651.195605][ T3101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1651.195614][ T3101] Call Trace: [ 1651.195619][ T3101] [ 1651.195625][ T3101] dump_stack_lvl+0x100/0x190 [ 1651.195653][ T3101] should_fail_ex.cold+0x5/0xa [ 1651.195671][ T3101] ? tomoyo_realpath_from_path+0xb6/0x690 [ 1651.195693][ T3101] should_failslab+0xc2/0x120 [ 1651.195711][ T3101] __kmalloc_noprof+0xe0/0x850 [ 1651.195739][ T3101] tomoyo_realpath_from_path+0xb6/0x690 [ 1651.195765][ T3101] tomoyo_path_number_perm+0x23c/0x580 [ 1651.195783][ T3101] ? tomoyo_path_number_perm+0x22e/0x580 [ 1651.195803][ T3101] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1651.195840][ T3101] ? find_held_lock+0x2b/0x80 [ 1651.195855][ T3101] ? __fget_files+0x215/0x3d0 [ 1651.195869][ T3101] ? hook_file_ioctl_common+0x146/0x410 [ 1651.195900][ T3101] ? __fget_files+0x21f/0x3d0 [ 1651.195919][ T3101] security_file_ioctl+0xd3/0x230 [ 1651.195939][ T3101] __x64_sys_ioctl+0xb7/0x210 [ 1651.195964][ T3101] do_syscall_64+0x106/0xf80 [ 1651.195978][ T3101] ? clear_bhb_loop+0x40/0x90 [ 1651.195997][ T3101] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1651.196012][ T3101] RIP: 0033:0x7fc251f9c819 [ 1651.196025][ T3101] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1651.196040][ T3101] RSP: 002b:00007fc252e9e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1651.196055][ T3101] RAX: ffffffffffffffda RBX: 00007fc252215fa0 RCX: 00007fc251f9c819 [ 1651.196066][ T3101] RDX: 0000000000000003 RSI: 0000000041045508 RDI: 0000000000000003 [ 1651.196075][ T3101] RBP: 00007fc252e9e090 R08: 0000000000000000 R09: 0000000000000000 [ 1651.196084][ T3101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1651.196093][ T3101] R13: 00007fc252216038 R14: 00007fc252215fa0 R15: 00007ffc0ce02418 [ 1651.196112][ T3101] [ 1651.196293][ T3101] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1653.846764][ T3117] NFSD: Failed to start, no listeners configured. [ 1654.039531][ T3039] Process accounting paused [ 1654.540194][ T3131] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6044'. [ 1655.751381][ T3142] futex_wake_op: syz.1.6046 tries to shift op by -2048; fix this program [ 1655.797903][ T3142] futex_wake_op: syz.1.6046 tries to shift op by -2048; fix this program [ 1655.883936][ T3147] 0x000000000001-0x000000020000 : "" [ 1655.983208][ T3147] ftl_cs: FTL header corrupt! [ 1656.423122][ T3142] FAULT_INJECTION: forcing a failure. [ 1656.423122][ T3142] name failslab, interval 1, probability 0, space 0, times 0 [ 1656.500752][ T3142] CPU: 0 UID: 0 PID: 3142 Comm: syz.1.6046 Tainted: G L syzkaller #0 PREEMPT(full) [ 1656.500781][ T3142] Tainted: [L]=SOFTLOCKUP [ 1656.500787][ T3142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1656.500796][ T3142] Call Trace: [ 1656.500803][ T3142] [ 1656.500811][ T3142] dump_stack_lvl+0x100/0x190 [ 1656.500839][ T3142] should_fail_ex.cold+0x5/0xa [ 1656.500858][ T3142] should_failslab+0xc2/0x120 [ 1656.500876][ T3142] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1656.500898][ T3142] ? prepare_creds+0x2c/0x950 [ 1656.500926][ T3142] prepare_creds+0x2c/0x950 [ 1656.500950][ T3142] cap_task_prctl+0x449/0xa50 [ 1656.500969][ T3142] security_task_prctl+0xc2/0x160 [ 1656.500996][ T3142] __do_sys_prctl+0x9b/0x2330 [ 1656.501028][ T3142] ? __pfx___do_sys_prctl+0x10/0x10 [ 1656.501056][ T3142] do_syscall_64+0x106/0xf80 [ 1656.501071][ T3142] ? clear_bhb_loop+0x40/0x90 [ 1656.501090][ T3142] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1656.501106][ T3142] RIP: 0033:0x7f7f9919c819 [ 1656.501120][ T3142] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1656.501135][ T3142] RSP: 002b:00007f7f9a06c028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 1656.501150][ T3142] RAX: ffffffffffffffda RBX: 00007f7f99415fa0 RCX: 00007f7f9919c819 [ 1656.501160][ T3142] RDX: 0000000000000004 RSI: 0000000000000001 RDI: 0000000000000008 [ 1656.501169][ T3142] RBP: 00007f7f99232c91 R08: 8000000000000001 R09: 0000000000000000 [ 1656.501179][ T3142] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 1656.501188][ T3142] R13: 00007f7f99416038 R14: 00007f7f99415fa0 R15: 00007ffc8f81c488 [ 1656.501210][ T3142] [ 1657.011379][ T3158] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6056'. [ 1657.809855][ T3169] FAULT_INJECTION: forcing a failure. [ 1657.809855][ T3169] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1657.967329][ T3169] CPU: 0 UID: 0 PID: 3169 Comm: syz.5.6050 Tainted: G L syzkaller #0 PREEMPT(full) [ 1657.967358][ T3169] Tainted: [L]=SOFTLOCKUP [ 1657.967364][ T3169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1657.967382][ T3169] Call Trace: [ 1657.967388][ T3169] [ 1657.967395][ T3169] dump_stack_lvl+0x100/0x190 [ 1657.967424][ T3169] should_fail_ex.cold+0x5/0xa [ 1657.967444][ T3169] strncpy_from_user+0x3b/0x2d0 [ 1657.967466][ T3169] do_getname+0x78/0x390 [ 1657.967489][ T3169] do_sys_openat2+0xc5/0x1e0 [ 1657.967510][ T3169] ? __pfx_do_sys_openat2+0x10/0x10 [ 1657.967537][ T3169] __x64_sys_openat+0x12d/0x210 [ 1657.967569][ T3169] ? __pfx___x64_sys_openat+0x10/0x10 [ 1657.967598][ T3169] do_syscall_64+0x106/0xf80 [ 1657.967613][ T3169] ? clear_bhb_loop+0x40/0x90 [ 1657.967631][ T3169] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1657.967646][ T3169] RIP: 0033:0x7fc251f9c819 [ 1657.967665][ T3169] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1657.967681][ T3169] RSP: 002b:00007fc252e7d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1657.967699][ T3169] RAX: ffffffffffffffda RBX: 00007fc252216090 RCX: 00007fc251f9c819 [ 1657.967709][ T3169] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1657.967720][ T3169] RBP: 00007fc252032c91 R08: 0000000000000000 R09: 0000000000000000 [ 1657.967729][ T3169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1657.967738][ T3169] R13: 00007fc252216128 R14: 00007fc252216090 R15: 00007ffc0ce02418 [ 1657.967759][ T3169] [ 1658.234042][ T3178] FAULT_INJECTION: forcing a failure. [ 1658.234042][ T3178] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1658.234073][ T3178] CPU: 0 UID: 0 PID: 3178 Comm: syz.2.6051 Tainted: G L syzkaller #0 PREEMPT(full) [ 1658.234095][ T3178] Tainted: [L]=SOFTLOCKUP [ 1658.234101][ T3178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1658.234110][ T3178] Call Trace: [ 1658.234116][ T3178] [ 1658.234122][ T3178] dump_stack_lvl+0x100/0x190 [ 1658.234148][ T3178] should_fail_ex.cold+0x5/0xa [ 1658.234164][ T3178] ? __kernel_text_address+0xd/0x30 [ 1658.234188][ T3178] get_futex_key+0x1d2/0x1620 [ 1658.234209][ T3178] ? __pfx_get_futex_key+0x10/0x10 [ 1658.234229][ T3178] ? putname+0xb1/0x110 [ 1658.234246][ T3178] ? stack_trace_save+0x8e/0xc0 [ 1658.234261][ T3178] ? __pfx_stack_trace_save+0x10/0x10 [ 1658.234279][ T3178] futex_wait_setup+0x83/0x510 [ 1658.234306][ T3178] __futex_wait+0x19f/0x300 [ 1658.234330][ T3178] ? __pfx___futex_wait+0x10/0x10 [ 1658.234367][ T3178] ? __pfx_futex_wake_mark+0x10/0x10 [ 1658.234394][ T3178] ? futex_hash+0x2c5/0x380 [ 1658.234418][ T3178] futex_wait+0xed/0x380 [ 1658.234442][ T3178] ? __pfx_futex_wait+0x10/0x10 [ 1658.234471][ T3178] ? putname+0xb1/0x110 [ 1658.234487][ T3178] ? kmem_cache_free+0x124/0x6a0 [ 1658.234512][ T3178] do_futex+0x1ef/0x350 [ 1658.234532][ T3178] ? __pfx_do_futex+0x10/0x10 [ 1658.234550][ T3178] ? __pfx_do_sys_openat2+0x10/0x10 [ 1658.234575][ T3178] __x64_sys_futex+0x34f/0x4d0 [ 1658.234596][ T3178] ? __x64_sys_openat+0x12d/0x210 [ 1658.234617][ T3178] ? __pfx___x64_sys_futex+0x10/0x10 [ 1658.234644][ T3178] do_syscall_64+0x106/0xf80 [ 1658.234659][ T3178] ? clear_bhb_loop+0x40/0x90 [ 1658.234677][ T3178] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1658.234693][ T3178] RIP: 0033:0x7fbd85f9c819 [ 1658.234707][ T3178] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1658.234722][ T3178] RSP: 002b:00007fbd841d50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1658.234737][ T3178] RAX: ffffffffffffffda RBX: 00007fbd86216098 RCX: 00007fbd85f9c819 [ 1658.234747][ T3178] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbd86216098 [ 1658.234756][ T3178] RBP: 00007fbd86216090 R08: 0000000000000000 R09: 0000000000000000 [ 1658.234766][ T3178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1658.234775][ T3178] R13: 00007fbd86216128 R14: 00007ffe8618a800 R15: 00007ffe8618a8e8 [ 1658.234795][ T3178] [ 1658.834602][ T3192] netlink: 306 bytes leftover after parsing attributes in process `syz.4.6053'. [ 1659.466607][ T3199] NFSD: Failed to start, no listeners configured. [ 1660.218076][ T3203] futex_wake_op: syz.1.6064 tries to shift op by -2048; fix this program [ 1660.218196][ T3203] futex_wake_op: syz.1.6064 tries to shift op by -2048; fix this program [ 1660.218759][ T3203] 0x000000000001-0x000000020000 : "" [ 1660.233909][ T3203] ftl_cs: FTL header corrupt! [ 1661.037849][ T3220] futex_wake_op: syz.5.6059 tries to shift op by -2048; fix this program [ 1661.087635][ T3220] futex_wake_op: syz.5.6059 tries to shift op by -2048; fix this program [ 1661.149760][ T3223] 0x000000000001-0x000000020000 : "" [ 1661.251803][ T3223] ftl_cs: FTL header corrupt! [ 1661.359920][ T3217] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6058'. [ 1661.675812][ T3220] FAULT_INJECTION: forcing a failure. [ 1661.675812][ T3220] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1661.768478][ T3220] CPU: 0 UID: 0 PID: 3220 Comm: syz.5.6059 Tainted: G L syzkaller #0 PREEMPT(full) [ 1661.768507][ T3220] Tainted: [L]=SOFTLOCKUP [ 1661.768512][ T3220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1661.768522][ T3220] Call Trace: [ 1661.768527][ T3220] [ 1661.768533][ T3220] dump_stack_lvl+0x100/0x190 [ 1661.768564][ T3220] should_fail_ex.cold+0x5/0xa [ 1661.768583][ T3220] get_futex_key+0x1d2/0x1620 [ 1661.768605][ T3220] ? __pfx_get_futex_key+0x10/0x10 [ 1661.768623][ T3220] ? lock_acquire+0x1cf/0x380 [ 1661.768649][ T3220] futex_wake+0xea/0x530 [ 1661.768674][ T3220] ? __pfx_futex_wake+0x10/0x10 [ 1661.768696][ T3220] ? exit_mm_release+0x19/0x30 [ 1661.768721][ T3220] do_futex+0x32b/0x350 [ 1661.768741][ T3220] ? __pfx_do_futex+0x10/0x10 [ 1661.768760][ T3220] ? __might_fault+0xc5/0x140 [ 1661.768787][ T3220] mm_release+0x24a/0x2f0 [ 1661.768804][ T3220] do_exit+0x704/0x2b60 [ 1661.768827][ T3220] ? __pfx_do_exit+0x10/0x10 [ 1661.768847][ T3220] ? do_raw_spin_lock+0x128/0x260 [ 1661.768869][ T3220] ? find_held_lock+0x2b/0x80 [ 1661.768883][ T3220] ? get_signal+0x7e0/0x21e0 [ 1661.768902][ T3220] do_group_exit+0xd5/0x2a0 [ 1661.768924][ T3220] get_signal+0x1ec7/0x21e0 [ 1661.768940][ T3220] ? __kasan_kmalloc+0xaa/0xb0 [ 1661.768960][ T3220] ? __pfx_get_signal+0x10/0x10 [ 1661.768977][ T3220] ? do_futex+0x192/0x350 [ 1661.768999][ T3220] arch_do_signal_or_restart+0x91/0x770 [ 1661.769020][ T3220] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1661.769044][ T3220] ? __pfx___x64_sys_futex+0x10/0x10 [ 1661.769069][ T3220] exit_to_user_mode_loop+0x86/0x4a0 [ 1661.769091][ T3220] do_syscall_64+0x668/0xf80 [ 1661.769106][ T3220] ? clear_bhb_loop+0x40/0x90 [ 1661.769125][ T3220] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1661.769140][ T3220] RIP: 0033:0x7fc251f9c819 [ 1661.769153][ T3220] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1661.769174][ T3220] RSP: 002b:00007fc252e9e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1661.769190][ T3220] RAX: 0000000000000001 RBX: 00007fc252215fa8 RCX: 00007fc251f9c819 [ 1661.769199][ T3220] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc252215fac [ 1661.769208][ T3220] RBP: 00007fc252215fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1661.769222][ T3220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1661.769231][ T3220] R13: 00007fc252216038 R14: 00007ffc0ce02330 R15: 00007ffc0ce02418 [ 1661.769250][ T3220] [ 1662.243391][ T3235] i2c i2c-0: new_device: Invalid device name [ 1662.547409][ T3235] FAULT_INJECTION: forcing a failure. [ 1662.547409][ T3235] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1662.624230][ T3235] CPU: 0 UID: 0 PID: 3235 Comm: syz.4.6061 Tainted: G L syzkaller #0 PREEMPT(full) [ 1662.624259][ T3235] Tainted: [L]=SOFTLOCKUP [ 1662.624265][ T3235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1662.624275][ T3235] Call Trace: [ 1662.624281][ T3235] [ 1662.624287][ T3235] dump_stack_lvl+0x100/0x190 [ 1662.624316][ T3235] should_fail_ex.cold+0x5/0xa [ 1662.624333][ T3235] ? prepare_alloc_pages+0x16d/0x5f0 [ 1662.624353][ T3235] should_fail_alloc_page+0xeb/0x140 [ 1662.624372][ T3235] prepare_alloc_pages+0x1f0/0x5f0 [ 1662.624394][ T3235] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 1662.624420][ T3235] ? __pfx_css_rstat_updated+0x10/0x10 [ 1662.624439][ T3235] ? kasan_save_stack+0x3f/0x50 [ 1662.624453][ T3235] ? kasan_save_stack+0x30/0x50 [ 1662.624466][ T3235] ? kasan_save_track+0x14/0x30 [ 1662.624483][ T3235] ? rcu_is_watching+0x12/0xc0 [ 1662.624507][ T3235] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1662.624534][ T3235] ? lru_gen_add_folio+0x20f/0x13e0 [ 1662.624554][ T3235] ? lock_acquire+0x1cf/0x380 [ 1662.624573][ T3235] ? find_held_lock+0x2b/0x80 [ 1662.624587][ T3235] ? page_table_check_set+0x49a/0xa10 [ 1662.624603][ T3235] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1662.624620][ T3235] ? policy_nodemask+0xed/0x4f0 [ 1662.624639][ T3235] alloc_pages_mpol+0x1fb/0x550 [ 1662.624656][ T3235] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1662.624678][ T3235] folio_alloc_mpol_noprof+0x36/0x340 [ 1662.624699][ T3235] vma_alloc_folio_noprof+0xed/0x1d0 [ 1662.624718][ T3235] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 1662.624743][ T3235] do_anonymous_page+0xb3a/0x1fb0 [ 1662.624771][ T3235] __handle_mm_fault+0x1d48/0x2b60 [ 1662.624797][ T3235] ? __pfx___handle_mm_fault+0x10/0x10 [ 1662.624829][ T3235] ? pte_offset_map_lock+0x174/0x320 [ 1662.624846][ T3235] ? find_held_lock+0x2b/0x80 [ 1662.624867][ T3235] ? follow_page_pte+0x5b3/0x1400 [ 1662.624889][ T3235] handle_mm_fault+0x36d/0xa20 [ 1662.624915][ T3235] __get_user_pages+0xf9c/0x34d0 [ 1662.624942][ T3235] ? __pfx___get_user_pages+0x10/0x10 [ 1662.624965][ T3235] populate_vma_page_range+0x267/0x3f0 [ 1662.624986][ T3235] ? __pfx_populate_vma_page_range+0x10/0x10 [ 1662.625004][ T3235] ? __pfx_find_vma_intersection+0x10/0x10 [ 1662.625022][ T3235] ? do_mmap+0x93f/0x12f0 [ 1662.625041][ T3235] __mm_populate+0x107/0x3a0 [ 1662.625061][ T3235] ? __pfx___mm_populate+0x10/0x10 [ 1662.625081][ T3235] ? up_write+0x290/0x4f0 [ 1662.625110][ T3235] vm_mmap_pgoff+0x37f/0x470 [ 1662.625131][ T3235] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1662.625150][ T3235] ? do_futex+0x192/0x350 [ 1662.625172][ T3235] ? __pfx_do_futex+0x10/0x10 [ 1662.625196][ T3235] ksys_mmap_pgoff+0xe1/0x650 [ 1662.625213][ T3235] ? __x64_sys_futex+0x34f/0x4d0 [ 1662.625232][ T3235] ? __x64_sys_futex+0x358/0x4d0 [ 1662.625252][ T3235] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 1662.625269][ T3235] ? xfd_validate_state+0x129/0x190 [ 1662.625295][ T3235] __x64_sys_mmap+0x125/0x190 [ 1662.625325][ T3235] do_syscall_64+0x106/0xf80 [ 1662.625340][ T3235] ? clear_bhb_loop+0x40/0x90 [ 1662.625360][ T3235] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1662.625376][ T3235] RIP: 0033:0x7fa3a259c819 [ 1662.625392][ T3235] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1662.625408][ T3235] RSP: 002b:00007fa3a07f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1662.625424][ T3235] RAX: ffffffffffffffda RBX: 00007fa3a2816090 RCX: 00007fa3a259c819 [ 1662.625435][ T3235] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 1662.625444][ T3235] RBP: 00007fa3a2632c91 R08: 0000000000000002 R09: 0000000000008000 [ 1662.625454][ T3235] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 1662.625463][ T3235] R13: 00007fa3a2816128 R14: 00007fa3a2816090 R15: 00007fffe006bfd8 [ 1662.625485][ T3235] [ 1663.651143][ T3238] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6062'. [ 1665.117465][ T3252] futex_wake_op: syz.5.6067 tries to shift op by -2048; fix this program [ 1665.165644][ T3252] futex_wake_op: syz.5.6067 tries to shift op by -2048; fix this program [ 1665.238514][ T3255] 0x000000000001-0x000000020000 : "" [ 1665.274099][ T3256] FAULT_INJECTION: forcing a failure. [ 1665.274099][ T3256] name failslab, interval 1, probability 0, space 0, times 0 [ 1665.342086][ T3255] ftl_cs: FTL header corrupt! [ 1665.357243][ T3256] CPU: 0 UID: 0 PID: 3256 Comm: syz.2.6068 Tainted: G L syzkaller #0 PREEMPT(full) [ 1665.357272][ T3256] Tainted: [L]=SOFTLOCKUP [ 1665.357277][ T3256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1665.357288][ T3256] Call Trace: [ 1665.357294][ T3256] [ 1665.357300][ T3256] dump_stack_lvl+0x100/0x190 [ 1665.357328][ T3256] should_fail_ex.cold+0x5/0xa [ 1665.357348][ T3256] should_failslab+0xc2/0x120 [ 1665.357366][ T3256] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1665.357389][ T3256] ? alloc_empty_file+0x55/0x1c0 [ 1665.357409][ T3256] ? __pfx_stack_trace_save+0x10/0x10 [ 1665.357428][ T3256] alloc_empty_file+0x55/0x1c0 [ 1665.357448][ T3256] path_openat+0xe8/0x31a0 [ 1665.357464][ T3256] ? kasan_save_stack+0x3f/0x50 [ 1665.357477][ T3256] ? kasan_save_stack+0x30/0x50 [ 1665.357490][ T3256] ? kasan_save_track+0x14/0x30 [ 1665.357503][ T3256] ? __kasan_slab_alloc+0x89/0x90 [ 1665.357517][ T3256] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1665.357539][ T3256] ? do_getname+0x35/0x390 [ 1665.357557][ T3256] ? do_sys_openat2+0xc5/0x1e0 [ 1665.357577][ T3256] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1665.357596][ T3256] ? __pfx_path_openat+0x10/0x10 [ 1665.357619][ T3256] do_file_open+0x20e/0x430 [ 1665.357636][ T3256] ? __pfx_do_file_open+0x10/0x10 [ 1665.357666][ T3256] ? alloc_fd+0x476/0x790 [ 1665.357683][ T3256] ? do_getname+0x191/0x390 [ 1665.357704][ T3256] do_sys_openat2+0x10d/0x1e0 [ 1665.357724][ T3256] ? __pfx_do_sys_openat2+0x10/0x10 [ 1665.357751][ T3256] __x64_sys_openat+0x12d/0x210 [ 1665.357772][ T3256] ? __pfx___x64_sys_openat+0x10/0x10 [ 1665.357799][ T3256] do_syscall_64+0x106/0xf80 [ 1665.357814][ T3256] ? clear_bhb_loop+0x40/0x90 [ 1665.357832][ T3256] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1665.357848][ T3256] RIP: 0033:0x7fbd85f9c819 [ 1665.357862][ T3256] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1665.357885][ T3256] RSP: 002b:00007fbd841d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1665.357901][ T3256] RAX: ffffffffffffffda RBX: 00007fbd86216090 RCX: 00007fbd85f9c819 [ 1665.357912][ T3256] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1665.357922][ T3256] RBP: 00007fbd86032c91 R08: 0000000000000000 R09: 0000000000000000 [ 1665.357932][ T3256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1665.357941][ T3256] R13: 00007fbd86216128 R14: 00007fbd86216090 R15: 00007ffe8618a8e8 [ 1665.357962][ T3256] [ 1665.737449][ T5833] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 1665.960770][ T3268] futex_wake_op: syz.1.6071 tries to shift op by -2048; fix this program [ 1666.024728][ T3268] futex_wake_op: syz.1.6071 tries to shift op by -2048; fix this program [ 1666.091070][ T3271] 0x000000000001-0x000000020000 : "" [ 1666.130527][ T3271] ftl_cs: FTL header corrupt! [ 1666.477990][ T3268] FAULT_INJECTION: forcing a failure. [ 1666.477990][ T3268] name failslab, interval 1, probability 0, space 0, times 0 [ 1666.560144][ T3268] CPU: 0 UID: 0 PID: 3268 Comm: syz.1.6071 Tainted: G L syzkaller #0 PREEMPT(full) [ 1666.560171][ T3268] Tainted: [L]=SOFTLOCKUP [ 1666.560177][ T3268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1666.560187][ T3268] Call Trace: [ 1666.560193][ T3268] [ 1666.560199][ T3268] dump_stack_lvl+0x100/0x190 [ 1666.560228][ T3268] should_fail_ex.cold+0x5/0xa [ 1666.560247][ T3268] should_failslab+0xc2/0x120 [ 1666.560264][ T3268] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1666.560288][ T3268] ? prepare_creds+0x2c/0x950 [ 1666.560315][ T3268] prepare_creds+0x2c/0x950 [ 1666.560338][ T3268] cap_task_prctl+0x449/0xa50 [ 1666.560358][ T3268] security_task_prctl+0xc2/0x160 [ 1666.560384][ T3268] __do_sys_prctl+0x9b/0x2330 [ 1666.560409][ T3268] ? __pfx___do_sys_prctl+0x10/0x10 [ 1666.560438][ T3268] do_syscall_64+0x106/0xf80 [ 1666.560453][ T3268] ? clear_bhb_loop+0x40/0x90 [ 1666.560471][ T3268] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1666.560487][ T3268] RIP: 0033:0x7f7f9919c819 [ 1666.560501][ T3268] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1666.560516][ T3268] RSP: 002b:00007f7f9a06c028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 1666.560530][ T3268] RAX: ffffffffffffffda RBX: 00007f7f99415fa0 RCX: 00007f7f9919c819 [ 1666.560541][ T3268] RDX: 0000000000000004 RSI: 0000000000000001 RDI: 0000000000000008 [ 1666.560549][ T3268] RBP: 00007f7f99232c91 R08: 8000000000000001 R09: 0000000000000000 [ 1666.560559][ T3268] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 1666.560571][ T3268] R13: 00007f7f99416038 R14: 00007f7f99415fa0 R15: 00007ffc8f81c488 [ 1666.560591][ T3268] [ 1666.858998][ T3289] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6076'. [ 1667.353099][ T3296] futex_wake_op: syz.4.6078 tries to shift op by -2048; fix this program [ 1667.413214][ T3296] futex_wake_op: syz.4.6078 tries to shift op by -2048; fix this program [ 1667.505239][ T3299] 0x000000000001-0x000000020000 : "" [ 1667.548963][ T3299] ftl_cs: FTL header corrupt! [ 1668.443968][ T3317] FAULT_INJECTION: forcing a failure. [ 1668.443968][ T3317] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1668.489249][ T3314] FAULT_INJECTION: forcing a failure. [ 1668.489249][ T3314] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1668.613192][ T3314] CPU: 0 UID: 0 PID: 3314 Comm: syz.1.6083 Tainted: G L syzkaller #0 PREEMPT(full) [ 1668.613219][ T3314] Tainted: [L]=SOFTLOCKUP [ 1668.613225][ T3314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1668.613234][ T3314] Call Trace: [ 1668.613240][ T3314] [ 1668.613246][ T3314] dump_stack_lvl+0x100/0x190 [ 1668.613274][ T3314] should_fail_ex.cold+0x5/0xa [ 1668.613293][ T3314] _copy_to_user+0x32/0xd0 [ 1668.613314][ T3314] __do_sys_mincore+0x294/0x610 [ 1668.613340][ T3314] do_syscall_64+0x106/0xf80 [ 1668.613359][ T3314] ? clear_bhb_loop+0x40/0x90 [ 1668.613377][ T3314] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1668.613393][ T3314] RIP: 0033:0x7f7f9919c819 [ 1668.613406][ T3314] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1668.613422][ T3314] RSP: 002b:00007f7f9a06c028 EFLAGS: 00000246 ORIG_RAX: 000000000000001b [ 1668.613437][ T3314] RAX: ffffffffffffffda RBX: 00007f7f99415fa0 RCX: 00007f7f9919c819 [ 1668.613447][ T3314] RDX: 0000000000000000 RSI: 0000000000008003 RDI: 0000000000001000 [ 1668.613456][ T3314] RBP: 00007f7f9a06c090 R08: 0000000000000000 R09: 0000000000000000 [ 1668.613465][ T3314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1668.613475][ T3314] R13: 00007f7f99416038 R14: 00007f7f99415fa0 R15: 00007ffc8f81c488 [ 1668.613494][ T3314] [ 1668.628186][ T3317] CPU: 0 UID: 0 PID: 3317 Comm: syz.5.6085 Tainted: G L syzkaller #0 PREEMPT(full) [ 1668.628215][ T3317] Tainted: [L]=SOFTLOCKUP [ 1668.628221][ T3317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1668.628232][ T3317] Call Trace: [ 1668.628238][ T3317] [ 1668.628244][ T3317] dump_stack_lvl+0x100/0x190 [ 1668.628273][ T3317] should_fail_ex.cold+0x5/0xa [ 1668.628292][ T3317] strncpy_from_user+0x3b/0x2d0 [ 1668.628314][ T3317] do_getname+0x78/0x390 [ 1668.628337][ T3317] do_sys_openat2+0xc5/0x1e0 [ 1668.628358][ T3317] ? __pfx_do_sys_openat2+0x10/0x10 [ 1668.628386][ T3317] __x64_sys_openat+0x12d/0x210 [ 1668.628408][ T3317] ? __pfx___x64_sys_openat+0x10/0x10 [ 1668.628436][ T3317] do_syscall_64+0x106/0xf80 [ 1668.628451][ T3317] ? clear_bhb_loop+0x40/0x90 [ 1668.628469][ T3317] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1668.628484][ T3317] RIP: 0033:0x7fc251f9c819 [ 1668.628498][ T3317] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1668.628513][ T3317] RSP: 002b:00007fc252e7d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1668.628528][ T3317] RAX: ffffffffffffffda RBX: 00007fc252216090 RCX: 00007fc251f9c819 [ 1668.628539][ T3317] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1668.628548][ T3317] RBP: 00007fc252032c91 R08: 0000000000000000 R09: 0000000000000000 [ 1668.628558][ T3317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1668.628567][ T3317] R13: 00007fc252216128 R14: 00007fc252216090 R15: 00007ffc0ce02418 [ 1668.628587][ T3317] [ 1668.918370][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 1668.918413][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 1669.012706][ T30] audit: type=1800 audit(2147483648.410:39): pid=3326 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.6087" name="lu_gp_id" dev="configfs" ino=161105 res=0 errno=0 [ 1669.061210][ T3322] zram: Added device: zram3 [ 1671.826523][ T3360] futex_wake_op: syz.4.6093 tries to shift op by -2048; fix this program [ 1671.886008][ T3362] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6094'. [ 1671.897946][ T3360] futex_wake_op: syz.4.6093 tries to shift op by -2048; fix this program [ 1671.971294][ T3363] 0x000000000001-0x000000020000 : "" [ 1672.089800][ T3363] ftl_cs: FTL header corrupt! [ 1672.890374][ T3379] FAULT_INJECTION: forcing a failure. [ 1672.890374][ T3379] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1673.092847][ T3379] CPU: 0 UID: 0 PID: 3379 Comm: syz.2.6097 Tainted: G L syzkaller #0 PREEMPT(full) [ 1673.092874][ T3379] Tainted: [L]=SOFTLOCKUP [ 1673.092880][ T3379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1673.092891][ T3379] Call Trace: [ 1673.092897][ T3379] [ 1673.092902][ T3379] dump_stack_lvl+0x100/0x190 [ 1673.092931][ T3379] should_fail_ex.cold+0x5/0xa [ 1673.092951][ T3379] get_futex_key+0x1d2/0x1620 [ 1673.092977][ T3379] ? __pfx_get_futex_key+0x10/0x10 [ 1673.093009][ T3379] futex_wake+0xea/0x530 [ 1673.093035][ T3379] ? __pfx_futex_wake+0x10/0x10 [ 1673.093061][ T3379] ? putname+0xb1/0x110 [ 1673.093077][ T3379] ? kmem_cache_free+0x124/0x6a0 [ 1673.093102][ T3379] do_futex+0x32b/0x350 [ 1673.093123][ T3379] ? __pfx_do_futex+0x10/0x10 [ 1673.093141][ T3379] ? __pfx_do_sys_openat2+0x10/0x10 [ 1673.093166][ T3379] __x64_sys_futex+0x34f/0x4d0 [ 1673.093187][ T3379] ? __x64_sys_openat+0x12d/0x210 [ 1673.093208][ T3379] ? __pfx___x64_sys_futex+0x10/0x10 [ 1673.093235][ T3379] do_syscall_64+0x106/0xf80 [ 1673.093250][ T3379] ? clear_bhb_loop+0x40/0x90 [ 1673.093268][ T3379] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1673.093284][ T3379] RIP: 0033:0x7fbd85f9c819 [ 1673.093298][ T3379] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1673.093312][ T3379] RSP: 002b:00007fbd841d50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1673.093336][ T3379] RAX: ffffffffffffffda RBX: 00007fbd86216098 RCX: 00007fbd85f9c819 [ 1673.093347][ T3379] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbd8621609c [ 1673.093357][ T3379] RBP: 00007fbd86216090 R08: 0000000000000000 R09: 0000000000000000 [ 1673.093366][ T3379] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 1673.093376][ T3379] R13: 00007fbd86216128 R14: 00007ffe8618a800 R15: 00007ffe8618a8e8 [ 1673.093397][ T3379] [ 1673.669625][ T3398] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6101'. [ 1673.678893][ T3398] Zero length message leads to an empty skb [ 1674.090196][ T3411] futex_wake_op: syz.1.6104 tries to shift op by -2048; fix this program [ 1674.090350][ T3411] futex_wake_op: syz.1.6104 tries to shift op by -2048; fix this program [ 1674.091128][ T3411] 0x000000000001-0x000000020000 : "" [ 1674.109916][ T3411] ftl_cs: FTL header corrupt! [ 1674.708423][ T3409] Process accounting resumed [ 1674.930964][ T3422] FAULT_INJECTION: forcing a failure. [ 1674.930964][ T3422] name failslab, interval 1, probability 0, space 0, times 0 [ 1674.930994][ T3422] CPU: 0 UID: 0 PID: 3422 Comm: syz.1.6105 Tainted: G L syzkaller #0 PREEMPT(full) [ 1674.931017][ T3422] Tainted: [L]=SOFTLOCKUP [ 1674.931024][ T3422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1674.931034][ T3422] Call Trace: [ 1674.931039][ T3422] [ 1674.931046][ T3422] dump_stack_lvl+0x100/0x190 [ 1674.931073][ T3422] should_fail_ex.cold+0x5/0xa [ 1674.931092][ T3422] should_failslab+0xc2/0x120 [ 1674.931110][ T3422] __kvmalloc_node_noprof+0xfa/0xa00 [ 1674.931125][ T3422] ? sbitmap_init_node+0x1cc/0x720 [ 1674.931153][ T3422] sbitmap_init_node+0x1cc/0x720 [ 1674.931179][ T3422] sbitmap_queue_init_node+0x40/0x4a0 [ 1674.931214][ T3422] blk_mq_init_tags+0x184/0x300 [ 1674.931234][ T3422] blk_mq_alloc_map_and_rqs+0x218/0xeb0 [ 1674.931253][ T3422] ? blk_mq_update_queue_map+0x227/0x3a0 [ 1674.931275][ T3422] blk_mq_alloc_tag_set+0x848/0x1330 [ 1674.931299][ T3422] loop_add+0x3b7/0xb60 [ 1674.931321][ T3422] ? __pfx_loop_add+0x10/0x10 [ 1674.931353][ T3422] ? rcu_is_watching+0x12/0xc0 [ 1674.931376][ T3422] ? do_sock_setsockopt+0x101/0x1d0 [ 1674.931393][ T3422] ? kfree+0x2ec/0x6b0 [ 1674.931411][ T3422] ? ipv6_setsockopt+0xcb/0x170 [ 1674.931431][ T3422] loop_control_ioctl+0xae/0x620 [ 1674.931454][ T3422] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1674.931477][ T3422] ? xfd_validate_state+0x129/0x190 [ 1674.931501][ T3422] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1674.931527][ T3422] __x64_sys_ioctl+0x18e/0x210 [ 1674.931551][ T3422] do_syscall_64+0x106/0xf80 [ 1674.931565][ T3422] ? clear_bhb_loop+0x40/0x90 [ 1674.931584][ T3422] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1674.931599][ T3422] RIP: 0033:0x7f7f9919c819 [ 1674.931612][ T3422] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1674.931627][ T3422] RSP: 002b:00007f7f9a06c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1674.931643][ T3422] RAX: ffffffffffffffda RBX: 00007f7f99415fa0 RCX: 00007f7f9919c819 [ 1674.931653][ T3422] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000002 [ 1674.931663][ T3422] RBP: 00007f7f99232c91 R08: 0000000000000000 R09: 0000000000000000 [ 1674.931671][ T3422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1674.931680][ T3422] R13: 00007f7f99416038 R14: 00007f7f99415fa0 R15: 00007ffc8f81c488 [ 1674.931700][ T3422] [ 1674.931796][ T3422] blk-mq: reduced tag depth (128 -> 64) [ 1675.827935][ T3434] futex_wake_op: syz.1.6107 tries to shift op by -2048; fix this program [ 1675.828060][ T3434] futex_wake_op: syz.1.6107 tries to shift op by -2048; fix this program [ 1675.835970][ T3434] 0x000000000001-0x000000020000 : "" [ 1675.873143][ T3434] ftl_cs: FTL header corrupt! [ 1676.751604][ T3444] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6108'. [ 1676.751690][ T3444] Zero length message leads to an empty skb [ 1677.501098][ T3453] futex_wake_op: syz.2.6111 tries to shift op by -2048; fix this program [ 1677.510305][ T3453] futex_wake_op: syz.2.6111 tries to shift op by -2048; fix this program [ 1677.608413][ T3453] 0x000000000001-0x000000020000 : "" [ 1677.651740][ T3453] ftl_cs: FTL header corrupt! [ 1677.722367][ T3461] FAULT_INJECTION: forcing a failure. [ 1677.722367][ T3461] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1677.761782][ T3459] FAULT_INJECTION: forcing a failure. [ 1677.761782][ T3459] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1677.924831][ T3461] CPU: 0 UID: 0 PID: 3461 Comm: syz.2.6111 Tainted: G L syzkaller #0 PREEMPT(full) [ 1677.924859][ T3461] Tainted: [L]=SOFTLOCKUP [ 1677.924865][ T3461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1677.924874][ T3461] Call Trace: [ 1677.924880][ T3461] [ 1677.924886][ T3461] dump_stack_lvl+0x100/0x190 [ 1677.924915][ T3461] should_fail_ex.cold+0x5/0xa [ 1677.924935][ T3461] get_futex_key+0x1d2/0x1620 [ 1677.924956][ T3461] ? __pfx_get_futex_key+0x10/0x10 [ 1677.924982][ T3461] futex_wait_setup+0x83/0x510 [ 1677.925010][ T3461] __futex_wait+0x19f/0x300 [ 1677.925034][ T3461] ? __pfx___futex_wait+0x10/0x10 [ 1677.925072][ T3461] ? __pfx_futex_wake_mark+0x10/0x10 [ 1677.925099][ T3461] ? find_held_lock+0x2b/0x80 [ 1677.925114][ T3461] ? futex_wake+0x456/0x530 [ 1677.925148][ T3461] futex_wait+0xed/0x380 [ 1677.925176][ T3461] ? __pfx_futex_wait+0x10/0x10 [ 1677.925207][ T3461] ? commit_creds+0x755/0x10e0 [ 1677.925233][ T3461] do_futex+0x1ef/0x350 [ 1677.925253][ T3461] ? __pfx_do_futex+0x10/0x10 [ 1677.925273][ T3461] ? cap_task_prctl+0x104/0xa50 [ 1677.925293][ T3461] __x64_sys_futex+0x34f/0x4d0 [ 1677.925315][ T3461] ? __pfx___x64_sys_futex+0x10/0x10 [ 1677.925342][ T3461] do_syscall_64+0x106/0xf80 [ 1677.925358][ T3461] ? clear_bhb_loop+0x40/0x90 [ 1677.925377][ T3461] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1677.925392][ T3461] RIP: 0033:0x7fbd85f9c819 [ 1677.925405][ T3461] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1677.925420][ T3461] RSP: 002b:00007fbd841d50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1677.925436][ T3461] RAX: ffffffffffffffda RBX: 00007fbd86216098 RCX: 00007fbd85f9c819 [ 1677.925446][ T3461] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbd86216098 [ 1677.925455][ T3461] RBP: 00007fbd86216090 R08: 0000000000000000 R09: 0000000000000000 [ 1677.925468][ T3461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1677.925478][ T3461] R13: 00007fbd86216128 R14: 00007ffe8618a800 R15: 00007ffe8618a8e8 [ 1677.925498][ T3461] [ 1678.166885][ T3459] CPU: 0 UID: 0 PID: 3459 Comm: syz.4.6113 Tainted: G L syzkaller #0 PREEMPT(full) [ 1678.166914][ T3459] Tainted: [L]=SOFTLOCKUP [ 1678.166920][ T3459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1678.166930][ T3459] Call Trace: [ 1678.166936][ T3459] [ 1678.166943][ T3459] dump_stack_lvl+0x100/0x190 [ 1678.166971][ T3459] should_fail_ex.cold+0x5/0xa [ 1678.166991][ T3459] get_futex_key+0x1d2/0x1620 [ 1678.167013][ T3459] ? __pfx_get_futex_key+0x10/0x10 [ 1678.167039][ T3459] futex_wake+0xea/0x530 [ 1678.167066][ T3459] ? __pfx_futex_wake+0x10/0x10 [ 1678.167091][ T3459] ? putname+0xb1/0x110 [ 1678.167107][ T3459] ? kmem_cache_free+0x124/0x6a0 [ 1678.167132][ T3459] do_futex+0x32b/0x350 [ 1678.167152][ T3459] ? __pfx_do_futex+0x10/0x10 [ 1678.167170][ T3459] ? __pfx_do_sys_openat2+0x10/0x10 [ 1678.167195][ T3459] __x64_sys_futex+0x34f/0x4d0 [ 1678.167216][ T3459] ? __x64_sys_openat+0x12d/0x210 [ 1678.167237][ T3459] ? __pfx___x64_sys_futex+0x10/0x10 [ 1678.167264][ T3459] do_syscall_64+0x106/0xf80 [ 1678.167279][ T3459] ? clear_bhb_loop+0x40/0x90 [ 1678.167307][ T3459] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1678.167324][ T3459] RIP: 0033:0x7fa3a259c819 [ 1678.167337][ T3459] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1678.167353][ T3459] RSP: 002b:00007fa3a07f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1678.167369][ T3459] RAX: ffffffffffffffda RBX: 00007fa3a2816098 RCX: 00007fa3a259c819 [ 1678.167380][ T3459] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa3a281609c [ 1678.167389][ T3459] RBP: 00007fa3a2816090 R08: 0000000000000000 R09: 0000000000000000 [ 1678.167399][ T3459] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 1678.167409][ T3459] R13: 00007fa3a2816128 R14: 00007fffe006bef0 R15: 00007fffe006bfd8 [ 1678.167429][ T3459] [ 1679.489537][ T3485] futex_wake_op: syz.1.6116 tries to shift op by -2048; fix this program [ 1679.590908][ T3485] futex_wake_op: syz.1.6116 tries to shift op by -2048; fix this program [ 1679.602097][ T30] audit: type=1800 audit(2147483652.720:40): pid=3487 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.6117" name="lu_gp_id" dev="configfs" ino=162238 res=0 errno=0 [ 1679.692768][ T3490] 0x000000000001-0x000000020000 : "" [ 1679.759192][ T3492] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6119'. [ 1679.863057][ T3495] FAULT_INJECTION: forcing a failure. [ 1679.863057][ T3495] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1679.946140][ T3490] ftl_cs: FTL header corrupt! [ 1680.010793][ T3495] CPU: 0 UID: 0 PID: 3495 Comm: syz.4.6118 Tainted: G L syzkaller #0 PREEMPT(full) [ 1680.010822][ T3495] Tainted: [L]=SOFTLOCKUP [ 1680.010828][ T3495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1680.010839][ T3495] Call Trace: [ 1680.010844][ T3495] [ 1680.010851][ T3495] dump_stack_lvl+0x100/0x190 [ 1680.010879][ T3495] should_fail_ex.cold+0x5/0xa [ 1680.010899][ T3495] get_futex_key+0x1d2/0x1620 [ 1680.010921][ T3495] ? __pfx_get_futex_key+0x10/0x10 [ 1680.010939][ T3495] ? find_held_lock+0x2b/0x80 [ 1680.010954][ T3495] ? futex_wake+0x456/0x530 [ 1680.010981][ T3495] futex_wake+0xea/0x530 [ 1680.011005][ T3495] ? __pfx_futex_wake+0x10/0x10 [ 1680.011030][ T3495] ? __lock_acquire+0x4a5/0x2630 [ 1680.011053][ T3495] do_futex+0x32b/0x350 [ 1680.011074][ T3495] ? __pfx_do_futex+0x10/0x10 [ 1680.011095][ T3495] ? find_held_lock+0x2b/0x80 [ 1680.011119][ T3495] __x64_sys_futex+0x34f/0x4d0 [ 1680.011141][ T3495] ? __fget_files+0x21f/0x3d0 [ 1680.011157][ T3495] ? __pfx___x64_sys_futex+0x10/0x10 [ 1680.011186][ T3495] do_syscall_64+0x106/0xf80 [ 1680.011201][ T3495] ? clear_bhb_loop+0x40/0x90 [ 1680.011220][ T3495] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1680.011235][ T3495] RIP: 0033:0x7fa3a259c819 [ 1680.011249][ T3495] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1680.011263][ T3495] RSP: 002b:00007fa3a07f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1680.011279][ T3495] RAX: ffffffffffffffda RBX: 00007fa3a2816098 RCX: 00007fa3a259c819 [ 1680.011289][ T3495] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa3a281609c [ 1680.011299][ T3495] RBP: 00007fa3a2816090 R08: 0000000000000000 R09: 0000000000000000 [ 1680.011308][ T3495] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 1680.011317][ T3495] R13: 00007fa3a2816128 R14: 00007fffe006bef0 R15: 00007fffe006bfd8 [ 1680.011337][ T3495] [ 1680.526388][ T3485] FAULT_INJECTION: forcing a failure. [ 1680.526388][ T3485] name failslab, interval 1, probability 0, space 0, times 0 [ 1680.526419][ T3485] CPU: 0 UID: 0 PID: 3485 Comm: syz.1.6116 Tainted: G L syzkaller #0 PREEMPT(full) [ 1680.526441][ T3485] Tainted: [L]=SOFTLOCKUP [ 1680.526447][ T3485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1680.526457][ T3485] Call Trace: [ 1680.526462][ T3485] [ 1680.526469][ T3485] dump_stack_lvl+0x100/0x190 [ 1680.526497][ T3485] should_fail_ex.cold+0x5/0xa [ 1680.526517][ T3485] should_failslab+0xc2/0x120 [ 1680.526534][ T3485] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1680.526562][ T3485] ? prepare_creds+0x2c/0x950 [ 1680.526589][ T3485] prepare_creds+0x2c/0x950 [ 1680.526617][ T3485] cap_task_prctl+0x449/0xa50 [ 1680.526636][ T3485] security_task_prctl+0xc2/0x160 [ 1680.526662][ T3485] __do_sys_prctl+0x9b/0x2330 [ 1680.526687][ T3485] ? __pfx___do_sys_prctl+0x10/0x10 [ 1680.526714][ T3485] do_syscall_64+0x106/0xf80 [ 1680.526729][ T3485] ? clear_bhb_loop+0x40/0x90 [ 1680.526747][ T3485] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1680.526763][ T3485] RIP: 0033:0x7f7f9919c819 [ 1680.526777][ T3485] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1680.526792][ T3485] RSP: 002b:00007f7f9a06c028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 1680.526806][ T3485] RAX: ffffffffffffffda RBX: 00007f7f99415fa0 RCX: 00007f7f9919c819 [ 1680.526816][ T3485] RDX: 0000000000000004 RSI: 0000000000000001 RDI: 0000000000000008 [ 1680.526825][ T3485] RBP: 00007f7f99232c91 R08: 8000000000000001 R09: 0000000000000000 [ 1680.526834][ T3485] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 1680.526843][ T3485] R13: 00007f7f99416038 R14: 00007f7f99415fa0 R15: 00007ffc8f81c488 [ 1680.526863][ T3485] [ 1680.959323][ T3508] FAULT_INJECTION: forcing a failure. [ 1680.959323][ T3508] name failslab, interval 1, probability 0, space 0, times 0 [ 1680.959357][ T3508] CPU: 0 UID: 0 PID: 3508 Comm: syz.1.6120 Tainted: G L syzkaller #0 PREEMPT(full) [ 1680.959380][ T3508] Tainted: [L]=SOFTLOCKUP [ 1680.959386][ T3508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1680.959395][ T3508] Call Trace: [ 1680.959401][ T3508] [ 1680.959407][ T3508] dump_stack_lvl+0x100/0x190 [ 1680.959435][ T3508] should_fail_ex.cold+0x5/0xa [ 1680.959454][ T3508] ? tomoyo_encode2+0xfb/0x3c0 [ 1680.959475][ T3508] should_failslab+0xc2/0x120 [ 1680.959492][ T3508] __kmalloc_noprof+0xe0/0x850 [ 1680.959515][ T3508] ? rcu_is_watching+0x12/0xc0 [ 1680.959541][ T3508] tomoyo_encode2+0xfb/0x3c0 [ 1680.959565][ T3508] tomoyo_encode+0x29/0x50 [ 1680.959586][ T3508] tomoyo_realpath_from_path+0x18c/0x690 [ 1680.959614][ T3508] tomoyo_check_open_permission+0x2af/0x3c0 [ 1680.959633][ T3508] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 1680.959671][ T3508] ? do_raw_spin_lock+0x128/0x260 [ 1680.959695][ T3508] ? path_get+0x61/0x80 [ 1680.959715][ T3508] tomoyo_file_open+0x6b/0x90 [ 1680.959737][ T3508] security_file_open+0xb5/0x1e0 [ 1680.959762][ T3508] do_dentry_open+0x5aa/0x1660 [ 1680.959780][ T3508] ? security_inode_permission+0xbf/0x250 [ 1680.959802][ T3508] vfs_open+0x82/0x3f0 [ 1680.959824][ T3508] path_openat+0x208c/0x31a0 [ 1680.959860][ T3508] ? __pfx_path_openat+0x10/0x10 [ 1680.959886][ T3508] do_file_open+0x20e/0x430 [ 1680.959905][ T3508] ? __pfx_do_file_open+0x10/0x10 [ 1680.959937][ T3508] ? alloc_fd+0x476/0x790 [ 1680.959956][ T3508] ? do_getname+0x191/0x390 [ 1680.959978][ T3508] do_sys_openat2+0x10d/0x1e0 [ 1680.960000][ T3508] ? __pfx_do_sys_openat2+0x10/0x10 [ 1680.960032][ T3508] __x64_sys_openat+0x12d/0x210 [ 1680.960054][ T3508] ? __pfx___x64_sys_openat+0x10/0x10 [ 1680.960082][ T3508] do_syscall_64+0x106/0xf80 [ 1680.960097][ T3508] ? clear_bhb_loop+0x40/0x90 [ 1680.960115][ T3508] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1680.960131][ T3508] RIP: 0033:0x7f7f9919c819 [ 1680.960145][ T3508] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1680.960160][ T3508] RSP: 002b:00007f7f9a04b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1680.960175][ T3508] RAX: ffffffffffffffda RBX: 00007f7f99416090 RCX: 00007f7f9919c819 [ 1680.960186][ T3508] RDX: 0000000000009000 RSI: 0000200000000240 RDI: ffffffffffffff9c [ 1680.960196][ T3508] RBP: 00007f7f99232c91 R08: 0000000000000000 R09: 0000000000000000 [ 1680.960206][ T3508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1680.960215][ T3508] R13: 00007f7f99416128 R14: 00007f7f99416090 R15: 00007ffc8f81c488 [ 1680.960236][ T3508] [ 1680.960256][ T3508] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1681.078124][ T3511] futex_wake_op: syz.5.6121 tries to shift op by -2048; fix this program [ 1681.078660][ T3511] futex_wake_op: syz.5.6121 tries to shift op by -2048; fix this program [ 1681.079615][ T3511] 0x000000000001-0x000000020000 : "" [ 1681.087644][ T3511] ftl_cs: FTL header corrupt! [ 1682.106157][ T3524] FAULT_INJECTION: forcing a failure. [ 1682.106157][ T3524] name failslab, interval 1, probability 0, space 0, times 0 [ 1682.106190][ T3524] CPU: 0 UID: 0 PID: 3524 Comm: syz.5.6122 Tainted: G L syzkaller #0 PREEMPT(full) [ 1682.106213][ T3524] Tainted: [L]=SOFTLOCKUP [ 1682.106219][ T3524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1682.106236][ T3524] Call Trace: [ 1682.106241][ T3524] [ 1682.106247][ T3524] dump_stack_lvl+0x100/0x190 [ 1682.106275][ T3524] should_fail_ex.cold+0x5/0xa [ 1682.106295][ T3524] should_failslab+0xc2/0x120 [ 1682.106312][ T3524] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1682.106335][ T3524] ? security_file_alloc+0x34/0x2c0 [ 1682.106357][ T3524] ? trace_kmem_cache_alloc+0xf3/0x120 [ 1682.106377][ T3524] security_file_alloc+0x34/0x2c0 [ 1682.106397][ T3524] init_file+0x95/0x480 [ 1682.106416][ T3524] alloc_empty_file+0x73/0x1c0 [ 1682.106436][ T3524] path_openat+0xe8/0x31a0 [ 1682.106451][ T3524] ? kasan_save_stack+0x3f/0x50 [ 1682.106465][ T3524] ? kasan_save_stack+0x30/0x50 [ 1682.106478][ T3524] ? kasan_save_track+0x14/0x30 [ 1682.106491][ T3524] ? __kasan_slab_alloc+0x89/0x90 [ 1682.106506][ T3524] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1682.106528][ T3524] ? do_getname+0x35/0x390 [ 1682.106545][ T3524] ? do_sys_openat2+0xc5/0x1e0 [ 1682.106565][ T3524] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1682.106583][ T3524] ? __pfx_path_openat+0x10/0x10 [ 1682.106609][ T3524] do_file_open+0x20e/0x430 [ 1682.106627][ T3524] ? __pfx_do_file_open+0x10/0x10 [ 1682.106656][ T3524] ? alloc_fd+0x476/0x790 [ 1682.106674][ T3524] ? do_getname+0x191/0x390 [ 1682.106695][ T3524] do_sys_openat2+0x10d/0x1e0 [ 1682.106715][ T3524] ? __pfx_do_sys_openat2+0x10/0x10 [ 1682.106750][ T3524] __x64_sys_openat+0x12d/0x210 [ 1682.106773][ T3524] ? __pfx___x64_sys_openat+0x10/0x10 [ 1682.106802][ T3524] do_syscall_64+0x106/0xf80 [ 1682.106817][ T3524] ? clear_bhb_loop+0x40/0x90 [ 1682.106835][ T3524] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1682.106851][ T3524] RIP: 0033:0x7fc251f9c819 [ 1682.106864][ T3524] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1682.106879][ T3524] RSP: 002b:00007fc252e7d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1682.106894][ T3524] RAX: ffffffffffffffda RBX: 00007fc252216090 RCX: 00007fc251f9c819 [ 1682.106905][ T3524] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1682.106914][ T3524] RBP: 00007fc252032c91 R08: 0000000000000000 R09: 0000000000000000 [ 1682.106928][ T3524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1682.106937][ T3524] R13: 00007fc252216128 R14: 00007fc252216090 R15: 00007ffc0ce02418 [ 1682.106956][ T3524] [ 1682.129815][ T3526] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6125'. [ 1685.066916][ T3495] Process accounting resumed [ 1685.360746][ T3557] futex_wake_op: syz.1.6131 tries to shift op by -2048; fix this program [ 1685.412706][ T3557] futex_wake_op: syz.1.6131 tries to shift op by -2048; fix this program [ 1685.474231][ T3561] 0x000000000001-0x000000020000 : "" [ 1685.603252][ T3561] ftl_cs: FTL header corrupt! [ 1685.842679][ T30] audit: type=1800 audit(2147483658.960:41): pid=3567 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.6132" name="lu_gp_id" dev="configfs" ino=162750 res=0 errno=0 [ 1686.149604][ T3557] FAULT_INJECTION: forcing a failure. [ 1686.149604][ T3557] name failslab, interval 1, probability 0, space 0, times 0 [ 1686.267444][ T3557] CPU: 0 UID: 0 PID: 3557 Comm: syz.1.6131 Tainted: G L syzkaller #0 PREEMPT(full) [ 1686.267471][ T3557] Tainted: [L]=SOFTLOCKUP [ 1686.267476][ T3557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1686.267486][ T3557] Call Trace: [ 1686.267492][ T3557] [ 1686.267498][ T3557] dump_stack_lvl+0x100/0x190 [ 1686.267533][ T3557] should_fail_ex.cold+0x5/0xa [ 1686.267553][ T3557] should_failslab+0xc2/0x120 [ 1686.267570][ T3557] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1686.267595][ T3557] ? prepare_creds+0x2c/0x950 [ 1686.267622][ T3557] prepare_creds+0x2c/0x950 [ 1686.267646][ T3557] cap_task_prctl+0x449/0xa50 [ 1686.267665][ T3557] security_task_prctl+0xc2/0x160 [ 1686.267692][ T3557] __do_sys_prctl+0x9b/0x2330 [ 1686.267715][ T3557] ? __pfx___do_sys_prctl+0x10/0x10 [ 1686.267745][ T3557] do_syscall_64+0x106/0xf80 [ 1686.267759][ T3557] ? clear_bhb_loop+0x40/0x90 [ 1686.267778][ T3557] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1686.267793][ T3557] RIP: 0033:0x7f7f9919c819 [ 1686.267807][ T3557] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1686.267824][ T3557] RSP: 002b:00007f7f9a06c028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 1686.267841][ T3557] RAX: ffffffffffffffda RBX: 00007f7f99415fa0 RCX: 00007f7f9919c819 [ 1686.267851][ T3557] RDX: 0000000000000004 RSI: 0000000000000001 RDI: 0000000000000008 [ 1686.267860][ T3557] RBP: 00007f7f99232c91 R08: 8000000000000001 R09: 0000000000000000 [ 1686.267870][ T3557] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 1686.267879][ T3557] R13: 00007f7f99416038 R14: 00007f7f99415fa0 R15: 00007ffc8f81c488 [ 1686.267899][ T3557] [ 1687.085215][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.103455][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.113100][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.124329][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.132727][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.142243][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.149768][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.160407][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.168558][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.190330][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.198023][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.207912][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.215677][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.225393][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.233201][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.242766][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.251220][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.271058][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.279324][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.288697][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.299824][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.310137][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.318067][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.327978][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.335725][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.345063][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.353537][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.371208][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.380411][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.390158][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.397917][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.411307][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.418762][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.429367][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.437687][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.446968][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.454686][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.463747][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.472451][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.483623][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.491631][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.500778][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.508187][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.518054][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.528137][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.537750][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.545540][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.555257][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.563094][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.572917][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.580494][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.590827][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.598262][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.607496][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.615810][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.625252][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.633449][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.642707][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.650136][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.661360][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.668804][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.678790][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.690244][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1687.699820][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1687.707612][ T5833] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1688.327888][ T3609] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6138'. [ 1688.546822][ T3612] FAULT_INJECTION: forcing a failure. [ 1688.546822][ T3612] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1688.742302][ T3612] CPU: 0 UID: 0 PID: 3612 Comm: syz.4.6139 Tainted: G L syzkaller #0 PREEMPT(full) [ 1688.742331][ T3612] Tainted: [L]=SOFTLOCKUP [ 1688.742337][ T3612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1688.742346][ T3612] Call Trace: [ 1688.742352][ T3612] [ 1688.742359][ T3612] dump_stack_lvl+0x100/0x190 [ 1688.742387][ T3612] should_fail_ex.cold+0x5/0xa [ 1688.742407][ T3612] strncpy_from_user+0x3b/0x2d0 [ 1688.742429][ T3612] do_getname+0x78/0x390 [ 1688.742451][ T3612] do_sys_openat2+0xc5/0x1e0 [ 1688.742472][ T3612] ? __pfx_do_sys_openat2+0x10/0x10 [ 1688.742499][ T3612] __x64_sys_openat+0x12d/0x210 [ 1688.742521][ T3612] ? __pfx___x64_sys_openat+0x10/0x10 [ 1688.742549][ T3612] do_syscall_64+0x106/0xf80 [ 1688.742573][ T3612] ? clear_bhb_loop+0x40/0x90 [ 1688.742593][ T3612] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1688.742609][ T3612] RIP: 0033:0x7fa3a259c819 [ 1688.742623][ T3612] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1688.742638][ T3612] RSP: 002b:00007fa3a07f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1688.742654][ T3612] RAX: ffffffffffffffda RBX: 00007fa3a2816090 RCX: 00007fa3a259c819 [ 1688.742665][ T3612] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1688.742675][ T3612] RBP: 00007fa3a2632c91 R08: 0000000000000000 R09: 0000000000000000 [ 1688.742684][ T3612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1688.742693][ T3612] R13: 00007fa3a2816128 R14: 00007fa3a2816090 R15: 00007fffe006bfd8 [ 1688.742713][ T3612] [ 1689.392039][ T3623] futex_wake_op: syz.5.6141 tries to shift op by -2048; fix this program [ 1689.392170][ T3623] futex_wake_op: syz.5.6141 tries to shift op by -2048; fix this program [ 1689.395261][ T3623] 0x000000000001-0x000000020000 : "" [ 1689.406718][ T3623] ftl_cs: FTL header corrupt! [ 1689.510901][ T3621] FAULT_INJECTION: forcing a failure. [ 1689.510901][ T3621] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1689.510999][ T3621] CPU: 0 UID: 0 PID: 3621 Comm: syz.2.6140 Tainted: G L syzkaller #0 PREEMPT(full) [ 1689.511021][ T3621] Tainted: [L]=SOFTLOCKUP [ 1689.511026][ T3621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1689.511035][ T3621] Call Trace: [ 1689.511040][ T3621] [ 1689.511046][ T3621] dump_stack_lvl+0x100/0x190 [ 1689.511074][ T3621] should_fail_ex.cold+0x5/0xa [ 1689.511089][ T3621] ? prepare_alloc_pages+0x16d/0x5f0 [ 1689.511110][ T3621] should_fail_alloc_page+0xeb/0x140 [ 1689.511129][ T3621] prepare_alloc_pages+0x1f0/0x5f0 [ 1689.511150][ T3621] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 1689.511176][ T3621] ? __pfx_stack_trace_save+0x10/0x10 [ 1689.511193][ T3621] ? stack_depot_save_flags+0x27/0x9d0 [ 1689.511218][ T3621] ? rcu_is_watching+0x12/0xc0 [ 1689.511243][ T3621] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1689.511275][ T3621] ? __update_load_avg_se+0x5c7/0xe80 [ 1689.511295][ T3621] ? update_cfs_rq_load_avg+0x51/0x550 [ 1689.511326][ T3621] ? set_next_entity+0x11e/0x9c0 [ 1689.511347][ T3621] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1689.511365][ T3621] ? policy_nodemask+0xed/0x4f0 [ 1689.511384][ T3621] alloc_pages_mpol+0x1fb/0x550 [ 1689.511401][ T3621] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1689.511423][ T3621] alloc_pages_noprof+0x136/0x390 [ 1689.511441][ T3621] __pmd_alloc+0x3b/0x950 [ 1689.511462][ T3621] __handle_mm_fault+0xa9e/0x2b60 [ 1689.511487][ T3621] ? mt_find+0x45e/0x8e0 [ 1689.511505][ T3621] ? __pfx___handle_mm_fault+0x10/0x10 [ 1689.511525][ T3621] ? __pfx_mt_find+0x10/0x10 [ 1689.511551][ T3621] ? find_vma+0xbf/0x140 [ 1689.511566][ T3621] ? __pfx_find_vma+0x10/0x10 [ 1689.511584][ T3621] handle_mm_fault+0x36d/0xa20 [ 1689.511609][ T3621] do_user_addr_fault+0x74c/0x12f0 [ 1689.511630][ T3621] exc_page_fault+0x6f/0xd0 [ 1689.511645][ T3621] asm_exc_page_fault+0x26/0x30 [ 1689.511661][ T3621] RIP: 0010:rep_movs_alternative+0x33/0x90 [ 1689.511681][ T3621] Code: 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 fd 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb [ 1689.511695][ T3621] RSP: 0018:ffffc90003587e68 EFLAGS: 00050202 [ 1689.511707][ T3621] RAX: 0000000000000000 RBX: 0000000000000009 RCX: 0000000000000009 [ 1689.511716][ T3621] RDX: 0000000000000001 RSI: ffff888076667000 RDI: 0000000000000000 [ 1689.511726][ T3621] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffed100eccce01 [ 1689.511735][ T3621] R10: ffff888076667008 R11: 0000000000000000 R12: ffff888076667000 [ 1689.511744][ T3621] R13: 0000000000000009 R14: 00007ffffffff000 R15: 0000000000000000 [ 1689.511764][ T3621] _copy_to_user+0xa4/0xd0 [ 1689.511788][ T3621] __do_sys_mincore+0x294/0x610 [ 1689.511813][ T3621] do_syscall_64+0x106/0xf80 [ 1689.511828][ T3621] ? clear_bhb_loop+0x40/0x90 [ 1689.511846][ T3621] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1689.511861][ T3621] RIP: 0033:0x7fbd85f9c819 [ 1689.511874][ T3621] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1689.511888][ T3621] RSP: 002b:00007fbd841f6028 EFLAGS: 00000246 ORIG_RAX: 000000000000001b [ 1689.511901][ T3621] RAX: ffffffffffffffda RBX: 00007fbd86215fa0 RCX: 00007fbd85f9c819 [ 1689.511912][ T3621] RDX: 0000000000000000 RSI: 0000000000008003 RDI: 0000000000001000 [ 1689.511920][ T3621] RBP: 00007fbd841f6090 R08: 0000000000000000 R09: 0000000000000000 [ 1689.511929][ T3621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1689.511938][ T3621] R13: 00007fbd86216038 R14: 00007fbd86215fa0 R15: 00007ffe8618a8e8 [ 1689.511958][ T3621] [ 1689.578251][ T3626] FAULT_INJECTION: forcing a failure. [ 1689.578251][ T3626] name failslab, interval 1, probability 0, space 0, times 0 [ 1689.578285][ T3626] CPU: 0 UID: 0 PID: 3626 Comm: syz.5.6141 Tainted: G L syzkaller #0 PREEMPT(full) [ 1689.578307][ T3626] Tainted: [L]=SOFTLOCKUP [ 1689.578314][ T3626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1689.578324][ T3626] Call Trace: [ 1689.578329][ T3626] [ 1689.578336][ T3626] dump_stack_lvl+0x100/0x190 [ 1689.578363][ T3626] should_fail_ex.cold+0x5/0xa [ 1689.578383][ T3626] should_failslab+0xc2/0x120 [ 1689.578400][ T3626] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1689.578425][ T3626] ? prepare_creds+0x2c/0x950 [ 1689.578451][ T3626] prepare_creds+0x2c/0x950 [ 1689.578475][ T3626] cap_task_prctl+0x449/0xa50 [ 1689.578494][ T3626] security_task_prctl+0xc2/0x160 [ 1689.578521][ T3626] __do_sys_prctl+0x9b/0x2330 [ 1689.578546][ T3626] ? __pfx___do_sys_prctl+0x10/0x10 [ 1689.578573][ T3626] do_syscall_64+0x106/0xf80 [ 1689.578588][ T3626] ? clear_bhb_loop+0x40/0x90 [ 1689.578607][ T3626] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1689.578622][ T3626] RIP: 0033:0x7fc251f9c819 [ 1689.578635][ T3626] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1689.578650][ T3626] RSP: 002b:00007fc252e7d028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 1689.578665][ T3626] RAX: ffffffffffffffda RBX: 00007fc252216090 RCX: 00007fc251f9c819 [ 1689.578679][ T3626] RDX: 0000000000000004 RSI: 0000000000000001 RDI: 0000000000000008 [ 1689.578688][ T3626] RBP: 00007fc252032c91 R08: 8000000000000001 R09: 0000000000000000 [ 1689.578697][ T3626] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 1689.578706][ T3626] R13: 00007fc252216128 R14: 00007fc252216090 R15: 00007ffc0ce02418 [ 1689.578726][ T3626] [ 1689.955751][ T3628] futex_wake_op: syz.5.6142 tries to shift op by -2048; fix this program [ 1689.955915][ T3628] futex_wake_op: syz.5.6142 tries to shift op by -2048; fix this program [ 1689.956872][ T3628] 0x000000000001-0x000000020000 : "" [ 1689.965420][ T3628] ftl_cs: FTL header corrupt! [ 1690.489524][ T3628] FAULT_INJECTION: forcing a failure. [ 1690.489524][ T3628] name failslab, interval 1, probability 0, space 0, times 0 [ 1690.489555][ T3628] CPU: 0 UID: 0 PID: 3628 Comm: syz.5.6142 Tainted: G L syzkaller #0 PREEMPT(full) [ 1690.489577][ T3628] Tainted: [L]=SOFTLOCKUP [ 1690.489583][ T3628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1690.489593][ T3628] Call Trace: [ 1690.489598][ T3628] [ 1690.489605][ T3628] dump_stack_lvl+0x100/0x190 [ 1690.489633][ T3628] should_fail_ex.cold+0x5/0xa [ 1690.489652][ T3628] should_failslab+0xc2/0x120 [ 1690.489670][ T3628] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1690.489693][ T3628] ? prepare_creds+0x2c/0x950 [ 1690.489720][ T3628] prepare_creds+0x2c/0x950 [ 1690.489744][ T3628] cap_task_prctl+0x449/0xa50 [ 1690.489763][ T3628] security_task_prctl+0xc2/0x160 [ 1690.489790][ T3628] __do_sys_prctl+0x9b/0x2330 [ 1690.489814][ T3628] ? __pfx___do_sys_prctl+0x10/0x10 [ 1690.489842][ T3628] do_syscall_64+0x106/0xf80 [ 1690.489857][ T3628] ? clear_bhb_loop+0x40/0x90 [ 1690.489876][ T3628] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1690.489891][ T3628] RIP: 0033:0x7fc251f9c819 [ 1690.489904][ T3628] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1690.489919][ T3628] RSP: 002b:00007fc252e9e028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 1690.489935][ T3628] RAX: ffffffffffffffda RBX: 00007fc252215fa0 RCX: 00007fc251f9c819 [ 1690.489945][ T3628] RDX: 0000000000000004 RSI: 0000000000000001 RDI: 0000000000000008 [ 1690.489954][ T3628] RBP: 00007fc252032c91 R08: 8000000000000001 R09: 0000000000000000 [ 1690.489963][ T3628] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 1690.489972][ T3628] R13: 00007fc252216038 R14: 00007fc252215fa0 R15: 00007ffc0ce02418 [ 1690.489992][ T3628] [ 1690.926275][ T3646] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 1691.591789][ T3663] net_ratelimit: 5 callbacks suppressed [ 1691.591808][ T3663] openvswitch: netlink: VXLAN extension message has 4 unknown bytes. [ 1691.743978][ T3666] FAULT_INJECTION: forcing a failure. [ 1691.743978][ T3666] name failslab, interval 1, probability 0, space 0, times 0 [ 1691.744008][ T3666] CPU: 0 UID: 0 PID: 3666 Comm: syz.1.6154 Tainted: G L syzkaller #0 PREEMPT(full) [ 1691.744030][ T3666] Tainted: [L]=SOFTLOCKUP [ 1691.744036][ T3666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1691.744045][ T3666] Call Trace: [ 1691.744050][ T3666] [ 1691.744056][ T3666] dump_stack_lvl+0x100/0x190 [ 1691.744084][ T3666] should_fail_ex.cold+0x5/0xa [ 1691.744114][ T3666] should_failslab+0xc2/0x120 [ 1691.744132][ T3666] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1691.744155][ T3666] ? skb_clone+0x190/0x400 [ 1691.744173][ T3666] skb_clone+0x190/0x400 [ 1691.744187][ T3666] netlink_deliver_tap+0xaed/0xcc0 [ 1691.744217][ T3666] netlink_unicast+0x650/0x870 [ 1691.744235][ T3666] ? __pfx_netlink_unicast+0x10/0x10 [ 1691.744258][ T3666] netlink_sendmsg+0x8b0/0xda0 [ 1691.744277][ T3666] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1691.744291][ T3666] ? __import_iovec+0x1d2/0x640 [ 1691.744313][ T3666] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 1691.744333][ T3666] ____sys_sendmsg+0x9e1/0xb70 [ 1691.744350][ T3666] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1691.744367][ T3666] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1691.744394][ T3666] ___sys_sendmsg+0x190/0x1e0 [ 1691.744414][ T3666] ? __pfx____sys_sendmsg+0x10/0x10 [ 1691.744455][ T3666] __sys_sendmsg+0x170/0x220 [ 1691.744479][ T3666] ? __pfx___sys_sendmsg+0x10/0x10 [ 1691.744515][ T3666] do_syscall_64+0x106/0xf80 [ 1691.744530][ T3666] ? clear_bhb_loop+0x40/0x90 [ 1691.744548][ T3666] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1691.744563][ T3666] RIP: 0033:0x7f7f9919c819 [ 1691.744576][ T3666] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1691.744591][ T3666] RSP: 002b:00007f7f9a06c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1691.744606][ T3666] RAX: ffffffffffffffda RBX: 00007f7f99415fa0 RCX: 00007f7f9919c819 [ 1691.744616][ T3666] RDX: 0000000024008880 RSI: 000020000000a5c0 RDI: 0000000000000003 [ 1691.744625][ T3666] RBP: 00007f7f9a06c090 R08: 0000000000000000 R09: 0000000000000000 [ 1691.744634][ T3666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1691.744643][ T3666] R13: 00007f7f99416038 R14: 00007f7f99415fa0 R15: 00007ffc8f81c488 [ 1691.744662][ T3666] [ 1693.532578][ T3694] FAULT_INJECTION: forcing a failure. [ 1693.532578][ T3694] name failslab, interval 1, probability 0, space 0, times 0 [ 1693.532610][ T3694] CPU: 0 UID: 0 PID: 3694 Comm: syz.5.6157 Tainted: G L syzkaller #0 PREEMPT(full) [ 1693.532631][ T3694] Tainted: [L]=SOFTLOCKUP [ 1693.532636][ T3694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1693.532645][ T3694] Call Trace: [ 1693.532650][ T3694] [ 1693.532656][ T3694] dump_stack_lvl+0x100/0x190 [ 1693.532683][ T3694] should_fail_ex.cold+0x5/0xa [ 1693.532702][ T3694] should_failslab+0xc2/0x120 [ 1693.532719][ T3694] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1693.532743][ T3694] ? __pmd_alloc+0xbf/0x950 [ 1693.532765][ T3694] __pmd_alloc+0xbf/0x950 [ 1693.532784][ T3694] __handle_mm_fault+0xa9e/0x2b60 [ 1693.532809][ T3694] ? mt_find+0x45e/0x8e0 [ 1693.532826][ T3694] ? __pfx___handle_mm_fault+0x10/0x10 [ 1693.532846][ T3694] ? __pfx_mt_find+0x10/0x10 [ 1693.532873][ T3694] ? find_vma+0xbf/0x140 [ 1693.532888][ T3694] ? __pfx_find_vma+0x10/0x10 [ 1693.532905][ T3694] handle_mm_fault+0x36d/0xa20 [ 1693.532931][ T3694] do_user_addr_fault+0x74c/0x12f0 [ 1693.532952][ T3694] exc_page_fault+0x6f/0xd0 [ 1693.532967][ T3694] asm_exc_page_fault+0x26/0x30 [ 1693.532982][ T3694] RIP: 0010:rep_movs_alternative+0x33/0x90 [ 1693.533043][ T3694] Code: 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 fd 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb [ 1693.533058][ T3694] RSP: 0018:ffffc90003777e68 EFLAGS: 00050202 [ 1693.533071][ T3694] RAX: 0000000000000000 RBX: 0000000000000009 RCX: 0000000000000009 [ 1693.533080][ T3694] RDX: 0000000000000001 RSI: ffff888025eed000 RDI: 0000000000000000 [ 1693.533102][ T3694] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffed1004bdda01 [ 1693.533111][ T3694] R10: ffff888025eed008 R11: 0000000000000000 R12: ffff888025eed000 [ 1693.533121][ T3694] R13: 0000000000000009 R14: 00007ffffffff000 R15: 0000000000000000 [ 1693.533140][ T3694] _copy_to_user+0xa4/0xd0 [ 1693.533161][ T3694] __do_sys_mincore+0x294/0x610 [ 1693.533187][ T3694] do_syscall_64+0x106/0xf80 [ 1693.533201][ T3694] ? clear_bhb_loop+0x40/0x90 [ 1693.533220][ T3694] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1693.533235][ T3694] RIP: 0033:0x7fc251f9c819 [ 1693.533247][ T3694] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1693.533261][ T3694] RSP: 002b:00007fc252e5c028 EFLAGS: 00000246 ORIG_RAX: 000000000000001b [ 1693.533274][ T3694] RAX: ffffffffffffffda RBX: 00007fc252216180 RCX: 00007fc251f9c819 [ 1693.533284][ T3694] RDX: 0000000000000000 RSI: 0000000000008003 RDI: 0000000000001000 [ 1693.533292][ T3694] RBP: 00007fc252e5c090 R08: 0000000000000000 R09: 0000000000000000 [ 1693.533302][ T3694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1693.533310][ T3694] R13: 00007fc252216218 R14: 00007fc252216180 R15: 00007ffc0ce02418 [ 1693.533330][ T3694] [ 1694.717887][ T3709] FAULT_INJECTION: forcing a failure. [ 1694.717887][ T3709] name failslab, interval 1, probability 0, space 0, times 0 [ 1694.717917][ T3709] CPU: 0 UID: 0 PID: 3709 Comm: syz.5.6161 Tainted: G L syzkaller #0 PREEMPT(full) [ 1694.717940][ T3709] Tainted: [L]=SOFTLOCKUP [ 1694.717945][ T3709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1694.717954][ T3709] Call Trace: [ 1694.717959][ T3709] [ 1694.717965][ T3709] dump_stack_lvl+0x100/0x190 [ 1694.717992][ T3709] should_fail_ex.cold+0x5/0xa [ 1694.718011][ T3709] ? tomoyo_encode2+0xfb/0x3c0 [ 1694.718031][ T3709] should_failslab+0xc2/0x120 [ 1694.718048][ T3709] __kmalloc_noprof+0xe0/0x850 [ 1694.718072][ T3709] ? rcu_is_watching+0x12/0xc0 [ 1694.718099][ T3709] tomoyo_encode2+0xfb/0x3c0 [ 1694.718122][ T3709] tomoyo_encode+0x29/0x50 [ 1694.718142][ T3709] tomoyo_realpath_from_path+0x18c/0x690 [ 1694.718168][ T3709] tomoyo_path_number_perm+0x23c/0x580 [ 1694.718186][ T3709] ? tomoyo_path_number_perm+0x22e/0x580 [ 1694.718205][ T3709] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1694.718243][ T3709] ? find_held_lock+0x2b/0x80 [ 1694.718257][ T3709] ? __fget_files+0x215/0x3d0 [ 1694.718271][ T3709] ? hook_file_ioctl_common+0x146/0x410 [ 1694.718295][ T3709] ? __fget_files+0x21f/0x3d0 [ 1694.718318][ T3709] security_file_ioctl+0xd3/0x230 [ 1694.718338][ T3709] __x64_sys_ioctl+0xb7/0x210 [ 1694.718362][ T3709] do_syscall_64+0x106/0xf80 [ 1694.718377][ T3709] ? clear_bhb_loop+0x40/0x90 [ 1694.718396][ T3709] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1694.718411][ T3709] RIP: 0033:0x7fc251f9c819 [ 1694.718424][ T3709] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1694.718438][ T3709] RSP: 002b:00007fc252e9e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1694.718454][ T3709] RAX: ffffffffffffffda RBX: 00007fc252215fa0 RCX: 00007fc251f9c819 [ 1694.718464][ T3709] RDX: 0000000000000000 RSI: 0000000000005441 RDI: 0000000000000003 [ 1694.718474][ T3709] RBP: 00007fc252e9e090 R08: 0000000000000000 R09: 0000000000000000 [ 1694.718482][ T3709] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1694.718491][ T3709] R13: 00007fc252216038 R14: 00007fc252215fa0 R15: 00007ffc0ce02418 [ 1694.718511][ T3709] [ 1694.718527][ T3709] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1695.542580][ T3714] FAULT_INJECTION: forcing a failure. [ 1695.542580][ T3714] name failslab, interval 1, probability 0, space 0, times 0 [ 1695.542614][ T3714] CPU: 0 UID: 0 PID: 3714 Comm: syz.2.6164 Tainted: G L syzkaller #0 PREEMPT(full) [ 1695.542637][ T3714] Tainted: [L]=SOFTLOCKUP [ 1695.542643][ T3714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1695.542653][ T3714] Call Trace: [ 1695.542658][ T3714] [ 1695.542664][ T3714] dump_stack_lvl+0x100/0x190 [ 1695.542693][ T3714] should_fail_ex.cold+0x5/0xa [ 1695.542712][ T3714] should_failslab+0xc2/0x120 [ 1695.542730][ T3714] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1695.542752][ T3714] ? vhost_net_open+0x73/0x8b0 [ 1695.542777][ T3714] ? __pfx_vhost_net_open+0x10/0x10 [ 1695.542802][ T3714] vhost_net_open+0x73/0x8b0 [ 1695.542824][ T3714] ? __pfx_vhost_net_open+0x10/0x10 [ 1695.542847][ T3714] misc_open+0x26d/0x450 [ 1695.542866][ T3714] ? __pfx_misc_open+0x10/0x10 [ 1695.542885][ T3714] chrdev_open+0x234/0x6a0 [ 1695.542901][ T3714] ? __pfx_apparmor_file_open+0x10/0x10 [ 1695.542919][ T3714] ? __pfx_chrdev_open+0x10/0x10 [ 1695.542937][ T3714] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1695.542959][ T3714] do_dentry_open+0x6d8/0x1660 [ 1695.542974][ T3714] ? __pfx_chrdev_open+0x10/0x10 [ 1695.542995][ T3714] vfs_open+0x82/0x3f0 [ 1695.543017][ T3714] path_openat+0x208c/0x31a0 [ 1695.543040][ T3714] ? __pfx_path_openat+0x10/0x10 [ 1695.543064][ T3714] do_file_open+0x20e/0x430 [ 1695.543082][ T3714] ? __pfx_do_file_open+0x10/0x10 [ 1695.543122][ T3714] ? alloc_fd+0x476/0x790 [ 1695.543141][ T3714] ? do_getname+0x191/0x390 [ 1695.543163][ T3714] do_sys_openat2+0x10d/0x1e0 [ 1695.543184][ T3714] ? __pfx_do_sys_openat2+0x10/0x10 [ 1695.543212][ T3714] __x64_sys_openat+0x12d/0x210 [ 1695.543234][ T3714] ? __pfx___x64_sys_openat+0x10/0x10 [ 1695.543262][ T3714] do_syscall_64+0x106/0xf80 [ 1695.543277][ T3714] ? clear_bhb_loop+0x40/0x90 [ 1695.543295][ T3714] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1695.543311][ T3714] RIP: 0033:0x7fbd85f9c819 [ 1695.543325][ T3714] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1695.543340][ T3714] RSP: 002b:00007fbd841d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1695.543356][ T3714] RAX: ffffffffffffffda RBX: 00007fbd86216090 RCX: 00007fbd85f9c819 [ 1695.543366][ T3714] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1695.543376][ T3714] RBP: 00007fbd86032c91 R08: 0000000000000000 R09: 0000000000000000 [ 1695.543385][ T3714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1695.543395][ T3714] R13: 00007fbd86216128 R14: 00007fbd86216090 R15: 00007ffe8618a8e8 [ 1695.543416][ T3714] [ 1697.795080][ T3733] usb usb24: usbfs: process 3733 (syz.1.6170) did not claim interface 0 before use [ 1697.977769][T30989] ------------[ cut here ]------------ [ 1697.977784][T30989] wlan0: Failed check-sdata-in-driver check, flags: 0x0 [ 1697.977797][T30989] WARNING: net/mac80211/driver-ops.h:1723 at ieee80211_set_active_links+0x2d0/0x9d0, CPU#0: kworker/u8:51/30989 [ 1697.977837][T30989] Modules linked in: [ 1697.977944][T30989] CPU: 0 UID: 0 PID: 30989 Comm: kworker/u8:51 Tainted: G L syzkaller #0 PREEMPT(full) [ 1697.977983][T30989] Tainted: [L]=SOFTLOCKUP [ 1697.977990][T30989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1697.978004][T30989] Workqueue: events_unbound cfg80211_wiphy_work [ 1697.978027][T30989] RIP: 0010:ieee80211_set_active_links+0x2d7/0x9d0 [ 1697.978055][T30989] Code: 06 00 00 e8 cb 75 04 f7 48 8b 34 24 48 81 c6 20 01 00 00 48 89 34 24 e8 b7 75 04 f7 48 8d 3d b0 ec e6 05 48 8b 34 24 44 89 fa <67> 48 0f b9 3a e9 e0 fe ff ff e8 9a 75 04 f7 0f b7 c5 4c 8d bb 30 [ 1697.978072][T30989] RSP: 0018:ffffc900036d7af0 EFLAGS: 00010293 [ 1697.978086][T30989] RAX: 0000000000000000 RBX: ffff888144efead0 RCX: ffffffff8b03d2ee [ 1697.978097][T30989] RDX: 0000000000000000 RSI: ffff888144efc120 RDI: ffffffff90eac000 [ 1697.978108][T30989] RBP: 000000000000000f R08: 0000000000000005 R09: 0000000000000000 [ 1697.978118][T30989] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888144efd838 [ 1697.978128][T30989] R13: 0000000000000000 R14: ffff8880298f0ec0 R15: 0000000000000000 [ 1697.978139][T30989] FS: 0000000000000000(0000) GS:ffff888124343000(0000) knlGS:0000000000000000 [ 1697.978154][T30989] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1697.978166][T30989] CR2: 0000001b2eef1ff8 CR3: 000000005d1e2000 CR4: 00000000003526f0 [ 1697.978177][T30989] Call Trace: [ 1697.978185][T30989] [ 1697.978194][T30989] ? __lock_acquire+0x4a5/0x2630 [ 1697.978218][T30989] ieee80211_if_parse_active_links+0xbb/0x120 [ 1697.978245][T30989] ? __pfx_ieee80211_if_parse_active_links+0x10/0x10 [ 1697.978270][T30989] ? static_obj+0x8f/0x90 [ 1697.978287][T30989] ? ieee80211_if_write_sdata_handler+0x1a/0x90 [ 1697.978312][T30989] ? __pfx_ieee80211_if_write_sdata_handler+0x10/0x10 [ 1697.978337][T30989] wiphy_locked_debugfs_write_work+0xe6/0x1c0 [ 1697.978360][T30989] ? trace_wiphy_work_run+0x73/0x240 [ 1697.978377][T30989] cfg80211_wiphy_work+0x446/0x5c0 [ 1697.978398][T30989] process_one_work+0xa23/0x19a0 [ 1697.978430][T30989] ? __pfx_process_one_work+0x10/0x10 [ 1697.978459][T30989] ? __pfx_cfg80211_wiphy_work+0x10/0x10 [ 1697.978479][T30989] worker_thread+0x5ef/0xe50 [ 1697.978508][T30989] ? __pfx_worker_thread+0x10/0x10 [ 1697.978532][T30989] ? kthread+0x13a/0x450 [ 1697.978553][T30989] ? __pfx_worker_thread+0x10/0x10 [ 1697.978575][T30989] kthread+0x370/0x450 [ 1697.978597][T30989] ? __pfx_kthread+0x10/0x10 [ 1697.978620][T30989] ret_from_fork+0x754/0xd80 [ 1697.978646][T30989] ? __pfx_ret_from_fork+0x10/0x10 [ 1697.978671][T30989] ? __switch_to+0x7b4/0x1120 [ 1697.978690][T30989] ? __pfx_kthread+0x10/0x10 [ 1697.978715][T30989] ret_from_fork_asm+0x1a/0x30 [ 1697.978744][T30989] [ 1697.978753][T30989] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1697.978765][T30989] CPU: 0 UID: 0 PID: 30989 Comm: kworker/u8:51 Tainted: G L syzkaller #0 PREEMPT(full) [ 1697.978786][T30989] Tainted: [L]=SOFTLOCKUP [ 1697.978791][T30989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1697.978801][T30989] Workqueue: events_unbound cfg80211_wiphy_work [ 1697.978817][T30989] Call Trace: [ 1697.978823][T30989] [ 1697.978829][T30989] dump_stack_lvl+0x100/0x190 [ 1697.978853][T30989] vpanic+0x552/0x970 [ 1697.978869][T30989] ? __pfx_vpanic+0x10/0x10 [ 1697.978890][T30989] panic+0xd1/0xe0 [ 1697.978905][T30989] ? __pfx_panic+0x10/0x10 [ 1697.978925][T30989] ? check_panic_on_warn+0x1f/0x90 [ 1697.978950][T30989] check_panic_on_warn.cold+0x19/0x34 [ 1697.978973][T30989] ? ieee80211_set_active_links+0x2d0/0x9d0 [ 1697.978997][T30989] __warn.cold+0x191/0x348 [ 1697.979016][T30989] __report_bug+0x296/0x3d0 [ 1697.979040][T30989] ? ieee80211_set_active_links+0x2d0/0x9d0 [ 1697.979065][T30989] ? __pfx___report_bug+0x10/0x10 [ 1697.979089][T30989] ? __lock_acquire+0x4a5/0x2630 [ 1697.979109][T30989] ? ieee80211_set_active_links+0x26e/0x9d0 [ 1697.979135][T30989] ? update_cfs_rq_load_avg+0x51/0x550 [ 1697.979159][T30989] report_bug_entry+0xe1/0x290 [ 1697.979183][T30989] ? ieee80211_set_active_links+0x2d7/0x9d0 [ 1697.979208][T30989] handle_bug+0x1cd/0x2a0 [ 1697.979227][T30989] exc_invalid_op+0x17/0x50 [ 1697.979245][T30989] asm_exc_invalid_op+0x1a/0x20 [ 1697.979261][T30989] RIP: 0010:ieee80211_set_active_links+0x2d7/0x9d0 [ 1697.979286][T30989] Code: 06 00 00 e8 cb 75 04 f7 48 8b 34 24 48 81 c6 20 01 00 00 48 89 34 24 e8 b7 75 04 f7 48 8d 3d b0 ec e6 05 48 8b 34 24 44 89 fa <67> 48 0f b9 3a e9 e0 fe ff ff e8 9a 75 04 f7 0f b7 c5 4c 8d bb 30 [ 1697.979301][T30989] RSP: 0018:ffffc900036d7af0 EFLAGS: 00010293 [ 1697.979314][T30989] RAX: 0000000000000000 RBX: ffff888144efead0 RCX: ffffffff8b03d2ee [ 1697.979324][T30989] RDX: 0000000000000000 RSI: ffff888144efc120 RDI: ffffffff90eac000 [ 1697.979334][T30989] RBP: 000000000000000f R08: 0000000000000005 R09: 0000000000000000 [ 1697.979344][T30989] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888144efd838 [ 1697.979354][T30989] R13: 0000000000000000 R14: ffff8880298f0ec0 R15: 0000000000000000 [ 1697.979369][T30989] ? ieee80211_set_active_links+0x26e/0x9d0 [ 1697.979398][T30989] ? __lock_acquire+0x4a5/0x2630 [ 1697.979420][T30989] ieee80211_if_parse_active_links+0xbb/0x120 [ 1697.979444][T30989] ? __pfx_ieee80211_if_parse_active_links+0x10/0x10 [ 1697.979468][T30989] ? static_obj+0x8f/0x90 [ 1697.979484][T30989] ? ieee80211_if_write_sdata_handler+0x1a/0x90 [ 1697.979508][T30989] ? __pfx_ieee80211_if_write_sdata_handler+0x10/0x10 [ 1697.979532][T30989] wiphy_locked_debugfs_write_work+0xe6/0x1c0 [ 1697.979554][T30989] ? trace_wiphy_work_run+0x73/0x240 [ 1697.979571][T30989] cfg80211_wiphy_work+0x446/0x5c0 [ 1697.979591][T30989] process_one_work+0xa23/0x19a0 [ 1697.979622][T30989] ? __pfx_process_one_work+0x10/0x10 [ 1697.979651][T30989] ? __pfx_cfg80211_wiphy_work+0x10/0x10 [ 1697.979670][T30989] worker_thread+0x5ef/0xe50 [ 1697.979697][T30989] ? __pfx_worker_thread+0x10/0x10 [ 1697.979723][T30989] ? kthread+0x13a/0x450 [ 1697.979743][T30989] ? __pfx_worker_thread+0x10/0x10 [ 1697.979765][T30989] kthread+0x370/0x450 [ 1697.979785][T30989] ? __pfx_kthread+0x10/0x10 [ 1697.979807][T30989] ret_from_fork+0x754/0xd80 [ 1697.979831][T30989] ? __pfx_ret_from_fork+0x10/0x10 [ 1697.979856][T30989] ? __switch_to+0x7b4/0x1120 [ 1697.979873][T30989] ? __pfx_kthread+0x10/0x10 [ 1697.979895][T30989] ret_from_fork_asm+0x1a/0x30 [ 1697.979922][T30989] [ 1697.979986][T30989] Kernel Offset: disabled