last executing test programs: 8.929671756s ago: executing program 2 (id=1931): unshare$auto(0x40000080) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) fcntl$auto_F_GET_SEALS(r1, 0x40a, 0x2) connect$auto(0x3, 0x0, 0x55) setsockopt$auto(0xffffffffffffffff, 0x1, 0x9, 0x0, 0xeb66) connect$auto(0x3, 0x0, 0x51) write$auto(r0, 0x0, 0x800000006) ioctl$auto_SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000180)="dd06d1") r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r1) shmctl$auto(0xf07, 0x9, &(0x7f0000001280)={{0x9, 0xffffffffffffffff, 0xee01, 0x7, 0x4}, 0x1, 0x8000000000000000, 0x6, 0x1, @raw=0x5, @raw=0x1ff, 0x2, 0x0, &(0x7f00000001c0)="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", &(0x7f00000011c0)="1bf60d707aa419cf1cd18d14e27cdcae3d98c0a82d4626781affc3e3f8925efe818b26e83f0c4ff7aa9f9250608388e1e84c300d1e830a4c75a94693d3fee47cbfd089056d6e6bc47e66959680417f4724ab40dc675915e6ef8a40619029b76975b03592f8cb58e04ecf544cf5928670be4e6541c1ed7c53d7e20ff96b8b7fe3a624dd"}) r4 = ioctl$auto_NS_GET_TGID_IN_PIDNS(0xffffffffffffffff, 0x8004b709, &(0x7f0000001300)=0xda54) sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f00000029c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000002980)={&(0x7f0000001340)={0x1608, r2, 0x100, 0x70bd2c, 0x25dfdbfe, {}, [@ETHTOOL_A_DEBUG_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_DEBUG_MSGMASK={0x3ca, 0x2, 0x0, 0x1, [@nested={0xd0, 0x106, 0x0, 0x1, [@generic="815a1b93f10279b72d3011c5d52cc2495f3b301ba4c056d96abea3fb5213fe12e446555b90bebc15d791e14d4c445b14eaee50b0fbd19daf2b3e44fcaec2f09cce1863ba5b59341ba1314f8ece260c76bfb8f110eff4b3a4f4bbdcc8fb0cfd5a66dc853cc6bb570f648aa827c9a679d7d41c5d7ba79fca5ec8dcacdc83616364499d04f2eb0fd4fe30", @generic="3a12641d0f5cbcf24310070265e4fa0b639f26895a5fc87949aef208b311869ecd4e6238791b4d6bde6b40809a9403", @nested={0x4, 0x13d}, @nested={0x4, 0xf0}, @typed={0xc, 0x109, 0x0, 0x0, @u64=0x10000}]}, @generic="41f82872493a05ee88034a74c598382d1731eb50adbc8d13250c34542df8351a332e4eb551d3b2594ffbad7287b9859de1fba36e424a55c09456b16c6bee7861f38498c6acd25e7910f3e9c840a2e3df84aff7f954fd6535f6602cfedb75a8b5f32af642e7cb56bbd4f18979c2f2d54fe8fe00e12b3134bfc7abf4909404cf750e0c3e08259880cf95b1294629ed484ed2f784f6511860552a91f7ac4a847e861cafb5ee3f6fe44ad34fe4f7ffc6976f1c65f0a051edb6b5aed86790585577e3b5632039d397904bb8ff389404b0d0765a48607c21d2f4076e7a8fa88b4dee", @typed={0x14, 0x168, 0x0, 0x0, @ipv6=@remote}, @nested={0x133, 0x59, 0x0, 0x1, [@generic, @generic="c6211fb3cef5d6f0b0a9a1ca8991ed1c8b62fa70e8007edfb28e19b045d98f38c13a24994baa63222826e9d3cad240c9eb28e5ba86a13085f474f8e062ef0351e0feb0b0bbf3848a0d7fc765d3db64ecc7280b636d1733c5d803f9a79008265b1cbc3e5424c451275697b9", @nested={0x4, 0x118}, @typed={0xad, 0x53, 0x0, 0x0, @binary="0280f9c3d60dee7b93faf8c69850eadd3a34b107901b23aa6515eb0cb904e5031fdfb345d13bac2d4b447b42f37ee733aac560ac63b02f0cb262360a405133e139a16cf4bec65d63756e9fe857850cf96b9e912b1b46d1f1f7273e3bfe505bc03401036f2a239ba9c823cbf5364756acb69543a2b86e8a8a3ec7a399b024fe9e3e3914ce876abaaf18419da72257d16d2b051abf3294fc790b096944d33fe0253f74800eb54fe0182b"}, @typed={0x8, 0x137, 0x0, 0x0, @uid=r3}, @typed={0x8, 0x75, 0x0, 0x0, @fd=r1}]}, @generic="119e2d48e9702a15e132857cbb753dc8fdfab71a18ace94d25648547848c13c907ca37741d59b0ae741ff0ddcab932f0fca2e431e51b6e1aaac799c599dd3f6531fc94294bab8897f515b89afcb2f1532b56fd3b7e38d0006827332c657d342d8d0fb5b0bf801afa568206f79edf2d40fea9adf6be8dd4ad5b39e47f457b6977f4e3b26bf7c05e38bb285aaab1a1589b73eb236e8afc324b734cc74cb79ca481520d4b91e9bf5843f550590459c29204166016ea910fcb147161d654c5d98e25bad0daefbf7cf52ab450adb5ceaea3"]}, @ETHTOOL_A_DEBUG_HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x10000}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}]}, @ETHTOOL_A_DEBUG_MSGMASK={0x11de, 0x2, 0x0, 0x1, [@generic="049db11d49e9c013dcec6dab4ba7406f83c44ccdb019593d8d1f8b210dfc5a5a3506bdd8078748524744", @typed={0xf, 0x6c, 0x0, 0x0, @str='&}#$-&+\x90]+\x00'}, @nested={0x176, 0x27, 0x0, 0x1, [@typed={0xc, 0x3, 0x0, 0x0, @u64=0xf}, @generic="df188efb6bad1409f7c0523a", @generic="8c3f27f7927fbf0956d5946b8008b9a85cbf1ec8264392a5db8ce4f062a7702b493ae1b1881cdc47464add82b94be24f2bf005357696ad53841e0012784387889110cd809633c06ead05d984eb06f023e1ab1b399c4db69dfd14b6d3e196d42de8ae670092fe964d3c83a24142434aee66b6980986c8a74eb32dd6f577f4c90593e72684c167c56153eca08828986f623083de7f41555b3492578b84a8c998aa3b57f17aea66458801d1438f53268de70ca75cd33de4ceb43732191b0624781da923bca4d049655532db", @nested={0x4, 0xd3}, @nested={0x4, 0x13}, @typed={0x14, 0xbe, 0x0, 0x0, @ipv6=@empty}, @typed={0x8, 0x165, 0x0, 0x0, @pid=r4}, @generic="fd7d3bc9dbc364da7771805c0445a296e8c2f01b5c4f8f3d2e7381f9a9fda3221c9c6538aec39b151747b304b5e6b05f83597d15eb26562d6e7e74831970e266b5d20f762e8cf14e425a6013696a4c6b8d599fffec084577fc35d0df2d8c487685832152240188937f87f7ee"]}, @nested={0x1028, 0xac, 0x0, 0x1, [@typed={0xc, 0x47, 0x0, 0x0, @u64=0x7}, @nested={0x4}, @typed={0x8, 0xdb, 0x0, 0x0, @u32=0xe}, @typed={0x8, 0x156, 0x0, 0x0, @u32=0x6}, @nested={0x4, 0x20}, @generic="dd816bb59798c1e1107503e2a8a8241a6c84f02e68b7754f63ef791ceda9a283526fae6c77dc8d16ff050b33259444ba3656c6191b3fde2702a0cc783ba4ca38fc3f971695c5faee46683076e081fe2754ef9e0da75094e0d766f15df86f808c9597de54ff466c376cb7661f5b0792141925f8951e9ddf48a1bd3f9ce87980993a5f252fd1af57cc3b6ea5ddc9a1f6ed954824d7c5e01b2313a82aab21c5427eae2003e02632869db891b06735aa6e0048cfdd5c0ab03aeadd27d6991d7f3c026b3685a7099b6ad604e09b651994ba5b1aa6da05ed49084ea040f40c8fdafc10ce13ece190ed72068b80f4b559845c49855dbfa69b16bfd538495985ce53689afa63db3114037fa3c5d79e231fd38d4b17316e0c3dc031314341f8e261e9fd804ffedb7bb210810df99f476a96d70fe70b5341f2fcca021bfe0bad67076379126f6e89e03422645645acc4891c0bed308e2e1b06d4d82552a73f50c4be0e7fd7ccdb16e6ff3267b6a8daf95d715c35ce2d04b460ad0f87993a1894a81dd2c5042658fc00787bcf3f686f92267faee809a0ff17920f14c7f53838ece1a6a5655ac80db9a433ca26bdbafb6a1bc77e15d2bcdc9484d9d0302ac0d52e169fe46e0a1560169061c097ea4a618054ae08a5922fd9b4f92b230c4c3cbab2aadc4721aca95c013b1956b454ba2d99930b7be24188ca49bdc0be7abb7d110416077d85e4dc05e5b795a4a4babccb31622b236b1a01a15afe57637fce2e5d6f9caabb7f86204499cb0e9b3d8f7a33963691bc1a13587abbe757e46e185348f739c74910312310ad156d8714e4beebd07a07fa0e29c1c98d156b0fe2a80c4247d6aea2c1cbb1fae3b39e95ba36c8ab21f86ce329ec5bbd0a7e9e7481caa622f7e70613df883edc712c3d3b26879f454bb93c628cfb5aec71184056a2d2e034e7ceca4ae7e4493816ac570a020e5e69afcc62a5cdb949671a61f5c8abfd24ab59628a470aaa699b3193cb45079ce127f4891e32f8872f0ef6352e410838a789fd68cd2ea1e0f2550885a882ef47bbe1977b4cd234b7f4cd33c71c3479c7fce5d9ba594efa90628baa6fef475c324c2d793ac1757eceb4ba62ef67cf8f82e192644ee16825d65086496399c13984aecac388316416992dfb4a871516eadecf6e4025118ecce827455b4cd4c9ebfa9948fd51bd2492968ee3b6482c2c5d4d2d18709ecd6f95088d9cfaa218eab2a77fab6666a93bedd8fc1f062073d0c7fd77c18d83e26a6479ea3738bd8f1f817b69ee8c8dbe16faebdb7fce6ef63f5624924dac531db675fb69e3cda63aa5ade87ea4be04dab87a7513643eea857c5daa4dae2d6ddbe27c9a95604d19935c7f54d71e09cbbec01638af1efbdfa353df41b475cf125be3361fe02b0e6eb0fd8071a73ab07c17b63842e009e7179970782880a7c33e21b22cfdc4ae72679242f233c36700a1386e20b76df710843f20711c077a43191e2f80932ecb4ac4afffbad9e362e7135787fa55af04807487a50e753e61749fcf5210c0f62e3663ddc96ba40c69014ba0f3d054b370021b0b4e84680c9e5f04ce43086e9c749b4cecd0e719185e7b9cc2398996aae79b520598b9e105ee47102129c20e1d96eb14bbb16041310df71e3ffd7dbdf3a61e90a1fe38d5c3612754d7cf471efb89943bf60b24150f63c7b44e2bdf36c5f7f938b51c4dba2bc57a6da79b832c70f617dd803fb325556fa7995105ced8579fdeeb8e14272576cf050fde9e485414214a381acada7f87002f0c74e8de900c51434fc553d061a58f097ac6fe9b817af6b63f229c7fd6912f7326e3ee6c7664de0f682f3d3f16df1cc98be843198a529f8bdbca47bc5243fc04614b17b7afa125007905b8376263e0cab542f968edabb78a29f676edc957d6dcc1710409058e29f6539757906789e6235a999b8432e05ddff2636780d19685d8207a4c11bd28fe63031b7c53c9ac7dad5d05e80fda1df34a34133f1c67abc977797438c3f009671d012ba58f30af713209ad0ce6a5034ef3f2598df8d11ec0b3e5786966d602b2d1c0685358522e80029524e3346dd3bf99122367c4cd65912c24a99474804c76168bad473d2ae6e2f38903b67eb90f8f5c6d0a0f909113035cc326d98a24d4e28f417871ef6dcc34534cc2e9e44874d9f87df5723c4e056493e3334174aee5b8e13cbc7f46cd84bf9d4f09608802d7b2f8a2c5af921734e8e7884cff7bc8a94d7e2e2eaa8970c8120e6045813697dbb093b1778629de9d135de16b7a3b48f692cf24996e9f6d701b14fe749e02ceb3009188958a8b54ce8a875bc8ba52f22af1e21f12d483874cd99ef650fae0408873c31202d655372b939104e4ff3ebfdf9d67d1da22b55bc8206847cc85f8b91f40cafbca964a9c99b0bdd3fc7d619915056afe40def6046f7dc5812881d8024a9dfebe91506c71b1a91dc4cead7adf546e119faadc49cabcada14d4d6ba39216388bd23c0e886f37de003287817371602d1ffe6b42e553f33b5734936df885ad681e854c9d87ffd094e8a278a220a93f6d11ad9a432d671480d13a7fb66de4a5fd96617b6fa59b3c2b58ee54d838dfa1b59d86b7ecd409e639f8c627945490e9f38698f9092a1071f71f8248241142e91e00590547e7cf6ea68e24e007fbb53fadd2f2c01945319ce441f8ece01566acc268c1c6d5a16b719815709fe145a491b5ccad67cf27c783513be90e07aa826588edc8cb3938b917f649d3fe4cece97669c65e48c7eb0c31a5e2da4cd58a86e2159362525bfed382bc0b576e81b041f7f5f8ce65c1b08c89479e3fce3a3e0101ada01a3ae51918ef5f0622adde8898d29ea325dec744f49333261686105cacf93339b678cc3e37e16ae7ae3e6d2676c05420798c64140314a620cf9df943fb387f2987d9a5efb57fd2290c86ad0ff469d97f34155e1092f840a47acff436b95bbc8943a8b9998b7d2fb55ca5d291476ffe23a896477ee80c43fd1ea0b1b828737934fe0ae876f744c544e26c2d6c861ce19cf6cc4196ed330289c16554b6e16e20e98e7107e6c9f039334a5874e2ec19a4642d7058edd6535921616f1baaeef20fe4fb57f040f0d991b1816a449e8533f93a644ff418d5cc75d8b54d3995e37c468e60cce8345b2846a356784ea33d87749d29ecdeafcd5d0918d411c073da33d9150ba2e948fc65283eef3aaf7ac675c4c0a2f0901c44ac8063eb22eb9d673539707e4793230d15fb7bf29c7ec97bedc32e034dc268d7e89e3de42ba0063c7c2b52615882698481d928485176fb8d98363dbbd84517a15e9d97f8ba008c63637a782a115e28cc3f9a8ef2e673864df1e68fc5513128d16a7e623cde1944f2758ffc8feb7b9b71236477918b9836669192ff819b91e7468b2d67bc848dd6acf32d8f3739f9a8aa6d043d0878d2395bdf048265fe16a223f549288722915484a2b72b1b1a4562d4104b1f48f6c3ab94e178a8dd048200b1e8f914faa57c8788a333523fac37c4867b5b99b8bc49efd5904e384f79111ad13f693e90378eb550fff03564fe8d4921667279b8b557650490ff877cdacab0cc4da1114cf6e431e04f628d8bdc2849343af55461380fd414d1fc97b94533a054b3f7d6c7c82705ac908125815f4b95ea94f3f5ac65dbe2fd3175f9b822080ef3cb2019f6838f78fc3b395178a0f15e070065bf44d642985e0206a057f25653bb0066b1140342207f802a9d07919068093b522ca1aa058f0546960988f4007faf174334158acf936fe5bb1ad8278b466719b43aed6994813f857362a495498ba1eb127f0dfcaf8c941768482b1e98a22052aba5cd5ab4d9c382c65fc162982d6e170d6abff9afec1f0d1676b2c57b7945762cdb81271102a36940291f804324f789041dfe0d722a5df57addaa5660db0b0a73b49705197acef5641da5bceb639d7a87d4e9d36045571474fbde6c1aba8a5eff237c91956964d989c7dc80f4fd16a912aba29bcef3505a5f5d64a27a8fc89b574e4e166c648c202eaa115f0f19f3f4acc7076dd8b615d746819ba16b05741b0a0f54a5fd55edc1fbdc4109bd360b886451e22f73aace987385e8ea156369b77b584e93ccbd0d42af2eeacafa6751a879375841b0410c3099f7610b5d8400893f8c858c865c2ca62276f21d3f2ca504b1adf5eef6f8e4bafe9e7403be16cb3c7904658082fc7d7ba62d9a5c47690d9fb4e783e69fa64e527f564b3dfe0950d28f9ff65830157eb10c981244acc20472dee95f0efebef6d1f977631829ee92fcc60d96d047ce096278dfdbc0f983d15433fbd728599e1d85207f38ea1fc073e899cfcbad7ef427d0bc5100616ccca28373f9c8f9191e0d982cc87414447b797242cb67eb8aa3839f93aed776bc4bcf32d9e785ddccbc647c5693a99fa9307f666e647d5fd2dd46155ec25b65513753162d560638d7dea4504e87b86952f17001dcc689f104877bcb302dca1b8b6a16618e43217598794e8e68318d3660e5fb449e269c3323ae72822951196a19505021a3360f1404839866f79b17e37c462d0bc4f583378754fbeb5b5590ca577a1631ed8e07a7a0017da818aebf2ac551a55fcb55928976a4ede45c084a4bbcad219406a529c5eb9ffa39cbe4bf9d8a13dbb9adcc53f4903e446a349d0dada4cbd9a47bd309455cdce672aaa3fe746319d67cfa01568c011d21e4e5e2e2d0188dd7815359c87a999d013e476f167bdab243ce5ef521dafbbc874dc24b49b7393c047e8f40d8da16e899fe7d3d043752c75642e771ec9f589bb2c89afb50950246aa063a5738dda52af1ba103d2f7620db965239a9e89ca23cb82e182b07ad67699a83ac7e6157e455e2da2894cf45ab54056eafdc5a8dda249a7d397a919c4f53d9a80ca59375ea3886b903c5f285708d6b5a30f7db0d6af244934238a4d41987ce915ca625f7e255ec6e704440a62dc032928a3b21d465ad442dd60378ba9216f91f96249742ca83d486dbbe13a7cfbd3661208b31af2217451db0be02feca30188c66a2ba49ec74f94208a9a1cbc3700753a9e0538c42da578d9f44ff46dd70b88b647ee8f5335070a13a311fe0da6960672049b1f990174f0ed659b4c33ede2521b7be032098f28e81c5256473a5cb38cb8b251120a9204a11dd59fefeba231c8a3dbf99463d7521d248d2e66f55762f44d60604b6d2ccfaae0c119e9c43c25f094c01a201baafd4e4f78c3f4c29e1dbdd4e146aebfa68f47688ff0b8c917a86df5534ba264a3ea1f010e2193acdcfb9470d8a046653304de57c5f2b44bcc3a399b13730b3eb0f42921bfba2f7c68a88aa57e698297e5d201c9c3b60cb104421c0d6abb1b94eb33cac5e6439d89f8e5b97453358baf13d05fed7f5282df71fdeda9730a03632ba7d3db8c8a17e44f73bdc82eada419de75f55989973f846daa1f5e1b187f48dc082703c5f6ec49783cf84e0f6075f992034ccaa847cdb8efcfd660d4a0e9c988a511bf295f73fd71998d2ed0bb2935fdc5cc31ed2d3093e7f70b49e946b6dfc8f92f4b4dccd6117909f168b934b9a635f5906b42ba3fefc2df7829d9f809e54d40a411e238d794e8691bdfe6edb9ebe42fd9630404478882e5f6b1d27ee80d3936772b48d365d54e8bc6e5042d412c1fc073bec60771c8177d6f49f4568a99045eb5e23abd54b205315dc4299d4d2efa33d5abe23a90a60610d3428b83d7c7e613748b16c800b1f16b2d19d30398bdee9317527ef01882c7836683dd8a842f278f609c3ca7a98ba637a0fd1733d0a28774e"]}]}]}, 0x1608}, 0x1, 0x0, 0x0, 0x20000001}, 0x4004800) 8.70448064s ago: executing program 0 (id=1934): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) ioctl$auto(r0, 0x400454ca, 0x38) r1 = fcntl$getown(r0, 0x9) prctl$auto(0x79, 0x7, r1, 0x4d, 0x1) capget$auto(&(0x7f0000000000)={0x67, 0xffffffffffffffff}, &(0x7f0000000040)={0x0, 0x9, 0xfffffff9}) kcmp$auto_KCMP_EPOLL_TFD(0x0, r2, 0x7, 0xffffffffffffffff, 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) getsockopt$auto(0x3, 0x200000000001, 0x2e, 0x0, 0x0) socket(0x28, 0x5, 0x0) sendmsg$auto_SEG6_CMD_SET_TUNSRC(0xffffffffffffffff, 0x0, 0x20000040) read$auto(0x3, 0x0, 0x8080) unshare$auto(0x40000080) socket(0x26, 0x1, 0x0) mmap$auto(0xffffffffffffffff, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f00, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/036/001\x00', 0xa901, 0x0) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = socket(0x11, 0x3, 0x2) getsockopt$auto(r3, 0x0, 0x6, 0x0, 0x0) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/rxrpc/peers\x00', 0x0, 0x0) pread64$auto(r4, &(0x7f0000000540)='veth1\x00\xe0,\x17\xa0\xf7\x89Pl\x84K?\x01\x84\xa1i\xe00\x81p\xa0U \f\xdbP`:\xe2\'\xa7\xbf\xbd\x04\x18\xad\x90I^\x99M\xe0W\x14\x11\xf4\xeb\x90:\v\xc5\x13*\xfe\x90\xb1\xa9O\xa5\x05\xaa\x8fTi\xd6\x88Q\xda\xca', 0x200000000005, 0xa) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x4, 0x4000000000e3, 0x10000040eb2, 0x402, 0x300000000000) get_mempolicy$auto(0x0, 0x0, 0xfffffffffffffffe, 0x99d6, 0x3) 6.926711884s ago: executing program 0 (id=1936): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x10, 0x2, 0x0) bpf$auto_BPF_PROG_QUERY(0x10, &(0x7f0000000140)=@token_create={0x3a, r0}, 0x26712b46) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x2000000, &(0x7f0000000080)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) syz_genetlink_get_family_id$auto_mac802154_hwsim(&(0x7f0000000100), 0xffffffffffffffff) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x200, 0x0) mmap$auto(0x0, 0x600006, 0x2, 0x406b1, 0xffffffffffffffff, 0x300000000000) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2c, 0x3, 0x83) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_SNDRV_TIMER_IOCTL_STATUS64(0xffffffffffffffff, 0x80605414, 0x0) mmap$auto(0x98c, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x44801, 0x0) setsockopt$auto(r2, 0x9, 0x21, 0x0, 0x9) r3 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) mq_timedsend$auto(r3, &(0x7f0000000100)='\xcf\x8d\xb6\xaa\x80\xd5z\x8a\xa5y\x0f\x80H\x86\x1d', 0x7, 0x81, &(0x7f0000000240)={0x3a97f0a9, 0x101}) clone$auto(0x5, 0x9, 0x0, 0x0, 0xf) madvise$auto(0x0, 0x400053, 0x9) 6.926535751s ago: executing program 1 (id=1937): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) r0 = socket(0x2, 0x1, 0x106) syz_clone3(&(0x7f00000004c0)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = socket(0x2, 0x1, 0x106) bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(r1, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x51) mmap$auto(0x400000000, 0x3, 0x9, 0x9b72, 0x2, 0x8000) read$auto(0x3, 0x0, 0x400000000f34) socket(0x11, 0x3, 0x9) unshare$auto(0x40000080) unshare$auto(0x40000080) shutdown$auto(0x200000003, 0x2) bind$auto(r0, 0x0, 0x6a) connect$auto(0x3, 0x0, 0x54) pwrite64$auto(0xffffffffffffffff, &(0x7f0000000200)='/-\xc4-\'(])\x00', 0x8, 0x3) write$auto(0x3, 0x0, 0x1) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ram5\x00', 0x14fa02, 0x0) sendfile$auto(0x3, r2, 0x0, 0x400000000006) sysfs$auto(0x2, 0xd, 0x0) unshare$auto(0x40000080) mmap$auto(0x3dbcb68f, 0x7ff, 0xffb, 0x8000000008011, 0x3, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1, 0x1, 0x0, 0x402, 0xdd16) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa142, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) r3 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/cec10\x00', 0x101901, 0x0) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r3, 0xc05c6104, &(0x7f0000000100)={'\x00', 0x0, 0x6, 0x2, 0x9b3, 0x9, "0200000002000000997e763f222ce1", '\x00', "0001410c", '\x00', ["f5404de9641f0000000060c1", "70d9a9a3af9f39d000000001", "ef5ac4927ad89c5c00"]}) ioctl$auto_CEC_TRANSMIT(r3, 0xc0386105, 0x0) 5.987833582s ago: executing program 0 (id=1941): r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fb0\x00', 0x42, 0x0) ioctl$auto_FBIOPUTCMAP(r0, 0x4605, &(0x7f0000000080)="e7c3313675db62a5") r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/memory/memory3/online\x00', 0x2062, 0x0) r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x123801, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r2, 0xc1105517, 0x0) write$auto(r1, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x3) socket$nl_generic(0x10, 0x3, 0x10) shmctl$auto_SHM_UNLOCK(0xffff, 0xc, &(0x7f00000003c0)={{0x7, 0xee01, 0xffffffffffffffff, 0x6, 0x1, 0x1}, 0x2, 0x8, 0x8, 0x4, @inferred=0xffffffffffffffff, @inferred=0xffffffffffffffff, 0x2, 0x0, &(0x7f00000000c0)="e9463e723c549e5e0f26be0fcc54037e29a48411a1ce72dadb483c4d4a66c2bf0d3030", 0x0}) setreuid$auto(r3, r3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r5 = getpid() r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_clone3(0x0, 0xfe46) process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000040)="8c9700089d1b208365d5b5d112dbab029ed13881d2f2c7ba2eb01c3db79f77fdc2bb50c64a925009dff4cd1aca925c57100112d88f73348a54396800ed598a0e5500d7c0cbb6b1e91d", 0x40000000001243}, 0x4, 0x0) ioctl$auto(r4, 0x400454ca, 0x38) r7 = openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0) ioctl$auto(r7, 0xfffffffc, r6) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_smc_gen_netlink(0x0, 0xffffffffffffffff) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r8 = gettid() fanotify_init$auto(0x5, 0x0) read$auto(0x3, 0x0, 0x80) rt_sigqueueinfo$auto(r8, 0xb, &(0x7f00000001c0)={@siginfo_0_0={0x3, 0x401, 0xfffffffb, @_timer={r8, 0xd, @sival_ptr=0x0, 0x62}}}) setsockopt$auto(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x4) ioprio_set$auto_IOPRIO_WHO_PGRP(0x2, r9, 0xfd) 5.697999469s ago: executing program 2 (id=1942): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/pci0000:00/0000:00:01.3/enable\x00', 0x20f01, 0x0) write$auto(r0, &(0x7f0000000040)='0\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) 5.454765885s ago: executing program 2 (id=1943): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000100)={0x0, 0x1d, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6}, {0xe63c, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c2, 0x8000c, 0x100000000}}) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffbfffd}, 0xffff}, 0x4000, 0x20000043) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) mmap$auto(0x0, 0x2020008, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f00000002c0)={0x28, r2, 0x1, 0x74bd2a, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @ETHTOOL_A_COALESCE_USE_CQE_MODE_TX={0x5}]}, 0x28}, 0x1, 0x0, 0x0, 0x48d1}, 0x8000) connect$auto(r1, &(0x7f0000000080)=@can={0x1d, r3}, 0x6) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) capset$auto(0x0, &(0x7f0000000000)={0x2, 0x10000002, 0x6}) acct$auto(&(0x7f0000000100)='./cgroup/cgroup.subtree_control\x00') r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ram8\x00', 0x16fa02, 0x0) sendfile$auto(0x3, r4, 0x0, 0x400000000006) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/kernel/task_delayacct\x00', 0x80282, 0x0) select$auto(0x4, 0x0, 0x0, &(0x7f0000000080)={[0x1ff, 0x7, 0x3, 0x1, 0x7, 0x1000000000000004, 0x15f4da0a, 0x4000000400039, 0x3, 0x2bffffffffffffe, 0x80000002, 0x7a142c64, 0x6d3c, 0x5, 0x80, 0xfb]}, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_GET_TRANSTABLE_LOCAL(r5, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x1c, 0x0, 0x305, 0x70bd28, 0x25dfdbfb, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40008}, 0x0) shutdown$auto(0x200000003, 0x2) 4.545227841s ago: executing program 3 (id=1944): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/printk_devkmsg\x00', 0x202, 0x0) writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000340), 0x7111}, 0x8) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) futex_wait$auto(0x0, 0x0, 0x83, 0xa, 0x0, 0x1) rt_sigtimedwait$auto(0x0, 0x0, 0x0, 0x8) syz_clone3(&(0x7f000000dd80)={0x100000, 0x0, 0x0, 0x0, {0x13}, 0x0, 0x0, 0x0, 0x0}, 0x58) syz_clone3(&(0x7f000000dd80)={0xa04400, 0x0, 0x0, 0x0, {0x12}, 0x0, 0x0, 0x0, 0x0}, 0x58) mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) setresuid$auto(0x0, 0x7, 0x8080) 3.225466022s ago: executing program 3 (id=1945): ioctl$auto_NVRAM_INIT(0xffffffffffffffff, 0x7040, 0x0) 3.141087128s ago: executing program 2 (id=1946): mmap$auto(0x0, 0x20009, 0x386, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) eventfd$auto(0x4) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff001, 0x2) socket(0x29, 0x5, 0x0) socket(0x2, 0x1, 0x6) r1 = open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2) open_by_handle_at$auto(r1, &(0x7f0000001280)={0x8, 0x2, "0200000000000000"}, 0x6) sendfile$auto(r0, r0, 0x0, 0x2) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [0xe00], {0x6, 0x6, 0x1, 0x1ff, 0x100, 0x83, 0x101, 0x6, 0x6}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x876c5, 0x8, 0x100000000}}) 3.012275134s ago: executing program 3 (id=1947): socket(0xa, 0x3, 0x3a) prctl$auto(0x1d, 0xfffffffffffffffb, 0x8, 0x10000005, 0xfffffffffffffff9) r0 = socket(0x10, 0x2, 0x0) r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(r0, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000001700)={&(0x7f0000000000)={0x24, r1, 0x201, 0x70bd2b, 0x25dfdbff, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x10, 0x1, 0x0, 0x1, [@typed={0xa, 0xbd, 0x0, 0x0, @str='$-}#}\x00'}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x4000048) clock_nanosleep$auto(0x7, 0x7fff, &(0x7f0000000000)={0x5, 0x5}, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000540)='/proc/sys/kernel/watchdog_thresh\x00', 0x20402, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) getsockopt$auto(0x3, 0x0, 0xe, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) r3 = epoll_create$auto(0x3e) poll$auto(&(0x7f0000000040)={r2, 0x1, 0xa}, 0x5, 0x108) epoll_ctl$auto(r3, 0x1, r2, 0x0) mmap$auto(0x0, 0x200004, 0x4000000000e6, 0x40eb2, 0xffffffffffffffff, 0x300000000000) ioctl$auto(0xffffffffffffffff, 0x89f0, 0x24) socket(0xa, 0x3, 0x3a) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) setsockopt$auto(0x400000000000003, 0x29, 0xd0, 0x0, 0x4) close_range$auto(0x2, 0x8, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x20) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x1) 2.914926408s ago: executing program 0 (id=1948): sendmmsg$auto(0xffffffffffffffff, 0x0, 0x5, 0x20000000) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, 0x0, 0x100000a3d9) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, 0x0, 0x20a00, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r1 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000180), 0x40900, 0x0) ioctl$auto_UBI_IOCATT(r1, 0x40186f40, 0x0) ioctl$auto_UBI_IOCDET(r1, 0x40046f41, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mmap$auto(0x0, 0x4020009, 0xdf, 0x40000eb1, 0x401, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="1b0026bd7400fddbdf2503000000040008000c000380080006800400008012000100898771f1c19f1779048590000100000004000280"], 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) clone$auto(0x100000008, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x4000006) clone$auto(0x1, 0x1, 0x0, 0x0, 0x2) 2.89671709s ago: executing program 1 (id=1949): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptye9\x00', 0x101e81, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) fsconfig$auto_FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000080)='\x00', &(0x7f0000000840)="4060991a1c49955af2b4a0aa4e75d592886fa0722ab37183e244677889148c30203b32261336a318429b19b7f812ca29e369fad5cdeb8dbc19fdd741f5d1c9b32203e96661a7e220fda04d3e63930118b43e491009e2d72aa034559435956b2eb52e0f92f44a723d323ea50478cdca2006336fbd666cdc182f303ca8a8acaaf81cea85eaa8d7b6617dc7a23dc1472b2d7f0761d74387048c73fbcd4c65e69aee7ab5222acd68e1e8de46ba8c919f743c382fb05b55b99ab3d9828427d3e38f3caf447d8af0180f77a49c18328cf855affe52c1ff801009034636fe0b8379fe2878136d6de1fcfb683d2782eb86ca04702a88bd16b1567405f59f08ebe9c2ee8ef67808e68646660e2273faf4e21d37fd127cba0411253e2d9a79089e14691b05af2e214165366c83fbcf0d9cdcab66ac41787c210161f64c5c63e7af56bd8f090e32a7d75b7feb0158ead6937a8f488a2cf23ffb737f263f7494400e496c8a3f723f65a252c6b1c21da6c01bb9b7e32cece4cc924280fcc7869f52680ed6d6010e0930166f8d0f7292e161df99ad4c2a8926d9b02b6277caf9e69b9595f88087b292c9b20a9205cb03d975f082db2c8d74bf4b171d47b9238c8db0841f0c4f1f0a829434ff8888ebc3b0fcc702cbafd53b462bd6fe31912b4e0a5ce69667cba5895ca5e17bc056495540e7d63aafa95ad8cd7c371ff474e38d3b4638fb851351d219d4d57513b28df4cfed916d87f7343ac09711332f746e1d9837e9546aba39989d793e530d1ce12ccfa4ad191e5c74e833d2eac242ab8bb88a9420558de1f3d0e6c9e4dc13500f5e687f69afa5fc63198f945e5a59b971bfec311f8d61da88ebc60c5b4408d919f4153e8e841efe13af13b18f56c3499407851e493045e803671f0bdfc8e5983f629f564a7ad800ba6a09dffe01fd49296f6a2257b163606e2e728d3a570d83746b4624fe29961135c6fba2d294e1bca5ff596daa85ee0ae2bc84523f629085ec6232912852ea2c56527a3ffba0dba0b81bff59a574acc4ccc0c130d4adb4920ef3f0471e2dc1944aadea33e8697f4dca44238c4cbdd59e240ffbf8499f00dd522a47c8d8d770c14c8182752a8e10c78b0f79f6c075fcc4a779b74b882943a6190a36cbc3e2aa1ab98b5a9cfa4e5d1162172adb28271846d48755a1b3e7bdabe9b33a751bea59fd0b7c8dfc7a3a511945ae6753682b9e34f2dc21751ba5c167dce5bae1133dc45eed05a5ca1e8182367493fcb453f89f24ae42d15417c6c24745631521fbf596f1297ce4400c40bf32f4a34a4fad080ae20fec12e03a7dedfea21346fe9de6faed8d606d6e01ba7e4df808ab556e6bb3d684742b9ef49946a4da4bc0752662681af7c6881695bf5e570c8cb49a9fff29ec3b608390af89af4d33997ddff252c0d74ef299715b36257f8cf48e86dc17ae4847dc779d3e7b6e4a51a3b9140f28e96313e45a13159159246adfdacce8e4278fccce16b674b216fb8a3c0c41f88c24d2ffeda48d49b9ba6ff523671c612aad4fa315303c17baa5a667a2ff0115d7d1721fa2038cc0a75ca13825fa7271a0feabcf245162728eedde0d149cf8c1f022d26eb37332a94b1a3084741ca4357ef8fdf78a7ee31e2b9d64624337aacd7154130ce114bc1759714effcff8357688d68ac20f45c81c2091ce915d22b3fe53046efb9e80713b94375ebe8e45668bfec182d8536dc9b20a9497410d473ad98c6ac7859725bbf4b8e3daab606a0aa66c4b6c8216d168df7a589ebaace3ff1477ffe357443f8192acd2d8bd9dbcd49055b32f05c180d4c869ba99ead3198daf7228e30f437f4a311f38134aaa116499fd33cb2097369a75a61645869c71031fd3117de2460d12575053cf178a96b2b5a550f092c01d793bfd4cc962e56a854a23bff8fd8e4819a5970870ea8a2f4cbeeb75f5811b9a4d2cc184afcb7fedd24ae2624a2d52997bf0835579ee870b5c6dbdb4ca4b26fefc5cedf2333aba40e086df98b188522779327b3d007c8d1f60d1e5b8299b6183c7a4d5045b013a451420d085e207500cc0036e39d67df8b08bdf9c87f74a1c149c17fdfc1343796f59a34f5daf877e1e8b4b3440082a3dc19b3278b0180957ec3c81b7ff283ec18265ff3c5e74e96656dda99ead4c4104fb90071e5a0fd06a257aff7faa75ec049b59bb8b43408f732f818e47b6b2a2952887f86348ac573ae174e378c4135f0a2038c702182b91a9aecb5ad4fd22d13a36100249bf4ddd65d6bc9b069d866995698905767c9ee32b3179af607cd9bef06b479cf86c07d5742b869413e15913a49e3e74a74f89d9dc2eb0de85e5ee8ea64cd6b671722e1943090e2e077ee0b6fbc903e9918fb3b7f0b348b6165ce756a2d7a20b332e3bc6b98e3e34d821a4a27b8e3538a257d7cb9fed436f00763c80fbadb7b51f7c550658b37e4ef04c46eb19f0717c016ef6abbe4fbee7312d8188601da4d79b4d553906613cb7e898a24c62e78f0c868cbdfa1d130396f306fff837f6f9eed6c720842e2e73fe3a6d3eaa64b8fae30c8c55ad51db610f36dd6903326a27577d0d1c94fc3de18c22def8c0eacf0114622ace437df5d62cc6537073ca14c6a5126f9b4163118e46b273b8ceb43a4a88022c17921de769686edf5b242569fadfb8a582606400fae369fa67acd77e1ab9c4dc7b4a54be5ca6cc272c042509383ca8736f201077a356f4ca6b8affa96ca9c8ef54752656605e81d7966a4cad7fa939822274d569ee4602e0bfccc12722c5ca2c2cc90fd234d63c480c2fd2c74c20ae97d9f265ec1a04f4af42bc6dcdf79a176aa9a7a0d3a402a4693bcef6765d2f30cbba1ca9baababd965683cc840a383704cd6a7618094b8f4e8142f6bc3b875c5af281e7de5b7d89a4e07393e4b17c973b8ce7190ee32e13711ea375af097966a03d772c2edf35e0b4a21e2738c0d76b52c959ab2888816cc2a09358285027ac57b33252fb9778e2cef9131f5301403038758029841ba2df4ffb4bdc9444169e211fc81b898e6e813e3cc60c07e258522f935f58fe68e419a1c9dfcd45f777e027134b52cc8a2d56bdf8636245dd13b55d30518cfdcd17854169ca6c110abb56915cdba4be3f266fb08402bd4d5b3f526d8654ea54e194fc3db9eb03808c31b31d201a0f5966747b8955cb0ce113cf46f3771b62116ca9fe9e33ee8084484690c4683edb0ae02ab8184203697fa5fefbfe383aad0f270c208c0bc0a136a4bd7b2ab138f36a0b46cd9998b90bea0fb5bcd9d7bc70cc155b84fd7ce03e6f6003646c8be26240f3d222e7dfc0427cc6c990561ae96c180d4248b8cd281ff1763a8c40a669cfcef3f70af6f776c1d1192880682765139334f6a952be7c828ee1eeaca240b87310c3ff49a32a91975c4284ef638bf4d5d19a71dc67de7ffcae7d6a2933e8d31337072b12092dc87ccd573daa8d0b4b1ab03f56828db53514aea02e4aaf115682a5d2284eb0ce550e00b98aee180a7eaa1b54b6046572c6595cfb46b9aa838c94e9f3183492a88752e53c288f7ad1c555f523c336ee49981ba074ee568df57812dc46cbe6a556e3e9274ed4c5861bba943110c838317ef6ce416a39971e1575813bf3873a2c78d7d3135301603df7522626a76f0b5e5c95d580bc1a9f3a68fe1b426c5496892933cd1dd9018a1f0705ffac812e18c694cf37a85fc9c65c07e58506d2cad8af4c89bc2a39bd4f59ab2c71c91a73358c49fe22fd58657382ea1f337f10ceab89c6426143fb891a299959c7663ee7605856a04090c5a9352cdab813b5078b268e75f5a8bd85e8bcf29d93fb9bb863edc2ac75e0dce503955dcf6e46b22912157ba0c48815eed066b02f3aeaae48a1684a0caaf9522757bbfde025f82889d5f4413b7ece4ba54d765cf9ec7afdde0cc9fe6265cd4a5d1c4f92b62481e0127a813f51abedf8b42a4b86df8275dff3dc0d507fc2f4e3e295662251b078c3577088bc343c442970bca72d630fda62c0efb4f4078c586f55062e8047f6ab8c9b12e861196976f95ff31e0645db0f77ec6af2ca67b9c8055479c5e24dd210efc749366ac9fe3edda75bc80e86a4e4ac12f356e46fedc060e7a4e80082ae867d1fd80cde4545d832b3153f5b3f6adb48ca95cc287a04b1c1476ff5a61bfbaacb3851cf4028a91d176a560f401646d020f75043e3a695f72ef81229635c6d52ef92b35ae5396e4709f5756bccb2d2f17bb8d264c3f833537a048b82a778924bae9d925492db93f73bd706cb47f2b5f7929a563dc2b1282d4ba5de816f201d138218e015e7c6ef332487f7995aedc0e4b146a5083664765a8e270ec95ced62284808428cdbb57dc3be7ec0bd70a0fbdbcd896be60b828d893f703a672aaa07e9dd8b05725d7b6a618487d480f055adfbcf5fd20122093519ebd7a681038e58a75633d31059ae40d116ea29ffe1ace21321b80f7aa561983fa9173e69ed8407e0d8335d1fcfbc4301237247e2df52a8c52dec2b3669642ac6945d424fa8495aad47ad612ee55c47128ac2d18efcbc0ba82be95128640f50517ce130b207259b4da2ebdfff807d62b020dc376bd48fde366d62d84f94d36c6baf7f790855dbf652124a546c3b1659774f031eb51c014ff87a85fdfaab332c34cce50c23a5f0066b0f2db0d4b3c869d5a32462c12ef31bb8dbf606b2b26da7bc28282d5558b924731dd35c20a90afc8c496e9dbef887c80070f9708c9976aedffb063ace9da6a92455a38dad118a40c92e8ce68751172505b7ea54f3e4c348a4ce90d7774724d79e0e49d10162cde73dce06133d6095f438ab324133801ca334c3bc404c519215a57aa240bbaed1a5b1b065be5bdced6e7ab1b7e841175c14a2562990d83ad60e355040c48c5fd2eb1416876b58857358c299a2a03b86af244c770498b3ccceccfb7f751fcbf2624e3df8c8a93f38bc1a47609632c46f7e3dc397d5c437ee73165b46457fa694eabb9f1ec4bec447c0b74f1cb8067ce64fc82acebef8c4c117ac1b30dc554e13445033af22e45c39ecc037625f61a48b59bf88ddc55dd61d8c560b4b9f50ebec20a4b1b19d93ea083bbaa02be0482018dc5e6680d4f145378ad376ae034e03682d7deab6f1c182b153ae3bcebbd1506e39a79c7f0d0e55a77e3ab71ea7f03cbac3f67d3cc63a2255080998d4b3421765d9287554ccdf601ac2be4c30edbf2ce90de051b38469c0ed5d6de33ed6884c4e3c6ad521eacce905e4c73c05b73a45cc81bd993a3aba812de8c1dd952251f69584ecd6ebcd187ed6ee2abf066cc309e9d7804b2690f47a60aed1eea38eefc52d8aa1f745373296c3309ce27abda60270a27f5135efc8a39a97384437617bd91abfb14ffc6104571d927dfefc8dd6ebd92d5252fd903de580cccfd7f49204c94d7395cd14dfd4fb81d52a7323425ef211fe19e06505212255fbb2b36e13def5cf489c54212a95f9b60e9dccea805c83467243ad69af8a1d4687835dfcabfdf94684623acfc3256782b7bead598f909518c81f5ac0d1ce2d48c32706ad255aa29a62802ea55a1b92eb798b277c30d3eb12526561e3e28bc7f7e2d32f45a16a58a397dddb57fe4307679671c386bc83a9c69f05895218622e003aea8f165aab2f0915268c3a01a1f1b60576d0276633b4c48cb2badd0efa7904db16c5e157a043268d1c43f776ed461c86544c90e44a9ea6d33c525d03830f7421ab4eaa630ecd5e8554c58ad6b7f379a8dc98850bfddbbbf5c3d7d757b999da765507a1acb95d9b0d79d95786440aa44", 0x80000000) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0) read$auto(r2, 0x0, 0x20) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_0={0x9, 0xb5, 0x4, 0x48d0, 0x4, 0xffffffffffffffff, 0x74b, "2af051a940806ec05be276cfc83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x4, 0xe5, 0x3}, 0x10) close_range$auto(0x2, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0x2000040080000004, 0xe) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/tty/ttyv7/power/control\x00', 0x22902, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x109401, 0x0) close_range$auto(0x2, 0x8, 0x0) r4 = socketcall$auto(0x5, 0x0) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0xfd) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0xae41, r4) ioctl$auto_KVM_GET_MSRS(r3, 0x4400ae8f, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae80, 0x28) 1.768607037s ago: executing program 3 (id=1950): mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) open(0x0, 0x0, 0x154) pipe$auto(0x0) read$auto(0xffffffffffffffff, 0x0, 0x1f46) io_uring_setup$auto(0x2, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = socket(0xa, 0x5, 0x0) ioctl$auto(r0, 0x89a1, 0x8) write$auto(0xffffffffffffffff, &(0x7f0000000080)=',\xfe.-%#.\x00', 0x7) clock_adjtime$auto(0xfffffffffffffffb, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3) 1.707746494s ago: executing program 1 (id=1951): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/pci0000:00/0000:00:01.3/enable\x00', 0x20f01, 0x0) write$auto(r0, &(0x7f0000000040)='0\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) 1.305689495s ago: executing program 2 (id=1952): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x3000000, 0x0, 0x5, 0x0, 0x10000000000000, 0x2}, 0x885}, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(0x0, r0) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x40800) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) r3 = getpid() process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(r5, &(0x7f0000003140)={0x0, 0x68, &(0x7f0000003100)={&(0x7f0000000200)={0x14, r6, 0x1, 0x70bd26, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x48080) sendmsg$auto_NFSD_CMD_LISTENER_GET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, r6, 0x1, 0x70bd2b, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4000804}, 0x50) openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f0000000040), 0x100, 0x0) r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r7, 0x1, 0x94d1) ptrace$auto_PTRACE_GET_SYSCALL_USER_DISPATCH_CONFIG(0x4211, r7, 0x100, 0x100000001) lstat$auto(&(0x7f0000000080)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00'}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'team_slave_0\x00'}) r8 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000200)='/proc/slabinfo\x00', 0x0, 0x0) read$auto_proc_pid_maps_operations_internal(r8, &(0x7f00000020c0)=""/4093, 0xffd) socket(0x29, 0x5, 0x0) write$auto(0x3, 0x0, 0x100082) write$auto(0x3, 0x0, 0x1e) 1.303158905s ago: executing program 1 (id=1960): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/pci0000:00/0000:00:01.3/enable\x00', 0x20f01, 0x0) write$auto(r0, &(0x7f0000000040)='0\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) 1.29763636s ago: executing program 3 (id=1953): r0 = pidfd_open$auto(0x1, 0x0) r1 = pidfd_getfd$auto(r0, r0, 0x3) write$auto_ocfs2_control_fops_stack_user(r1, &(0x7f0000000000)="21c670273eaf2622de43783d5e40502eda35a0f9e5c71478a23678f17c58c47a4d", 0x21) 980.95563ms ago: executing program 3 (id=1954): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/printk_devkmsg\x00', 0x202, 0x0) writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000340), 0x7111}, 0x8) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) futex_wait$auto(0x0, 0x0, 0x83, 0xa, 0x0, 0x1) rt_sigtimedwait$auto(0x0, 0x0, 0x0, 0x8) syz_clone3(&(0x7f000000dd80)={0x100000, 0x0, 0x0, 0x0, {0x13}, 0x0, 0x0, 0x0, 0x0}, 0x58) syz_clone3(&(0x7f000000dd80)={0xa04400, 0x0, 0x0, 0x0, {0x12}, 0x0, 0x0, 0x0, 0x0}, 0x58) mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) setresuid$auto(0x0, 0x7, 0x8080) 867.810036ms ago: executing program 1 (id=1955): ioctl$auto_NVRAM_INIT(0xffffffffffffffff, 0x7040, 0x0) 502.505895ms ago: executing program 0 (id=1956): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002dbd7000f9dbdf2501000000060002000100000005000700570000000800090108000000050004000300000014001f00fe88000000000000000000000000000114002000ff010000000000000000000000000001"], 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x0) io_uring_register$auto_IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000100)="5c0c78c5891397", 0x9) write$auto(r0, &(0x7f0000000040)='\x8c\xd5 _<\x9eh\x06', 0xffffffffffff7fff) ioctl$auto_FIDEDUPERANGE(r0, 0xc0189436, 0x3) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nbd(&(0x7f00000001c0), 0xffffffffffffffff) shmctl$auto_IPC_INFO(0x5, 0x3, &(0x7f0000000300)={{0x8b1, 0xee01, 0xee00, 0x3, 0x0, 0x5, 0x6}, 0x6, 0x7, 0x5, 0x8, @raw=0x21, @raw=0x2f, 0x3, 0x0, &(0x7f0000000200)="15995d791e7bab8cfa92502328893c85ec43b365603b1fb24efc22a06844ea46889992c5d1cbcb0297baa26332a5c3d9880af0020d53c9065519062c980fc2742a63eaabdc9a18bbc4e8d882d062417e2d939a36217b9c723676be9ff031ba4e35d3f0d2a8df8a8274", &(0x7f0000000280)="5cd6f184097789433ef8ce608ae6d4d0451a19f6c85490126387444c563b4b95aad0e66a5c85cbdff71301b403ee3d5eb7b52488d3b37e212a877ff6324ac97f79f2ca6357a22e42778a7160eb694a00a808845afc82f9ca9e6d980bf966d2a3f07dcdf6f6c18ebd46cfedcfa77b4d79d9b1e61f"}) r4 = wait4$auto(0xffffffffffffffff, &(0x7f0000000380)=0xba0e, 0xe69, &(0x7f0000000440)={{0x5da, 0x70}, {0x5}, 0x101, 0x7f, 0x80000000, 0x4, 0x0, 0x8000000000000000, 0x0, 0x5, 0x8, 0x3, 0x1, 0x10, 0xffffffffffffffb8}) r5 = geteuid() sendmsg$auto_NBD_CMD_STATUS(r1, &(0x7f0000001d00)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001cc0)={&(0x7f0000000500)={0x1784, r2, 0x800, 0x70bd25, 0x25dfdbff, {}, [@NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x7fff}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc}, @NBD_ATTR_INDEX={0x8}, @NBD_ATTR_BACKEND_IDENTIFIER={0x10, 0xa, '^&&}}h^.&*-!'}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x4}, @NBD_ATTR_SOCKETS={0x29b, 0x7, 0x0, 0x1, [@nested={0x59, 0x95, 0x0, 0x1, [@nested={0x4, 0x145}, @typed={0xc, 0x156, 0x0, 0x0, @u64=0x8000}, @generic="51d9ac644f79c65405bff923eaa3c68e9922a9f1ddfc6270cfc1cfa69dab53a33ba1515de4dedbf17230357ce949a3f5a4c8aab32fcb7dd6080ee96adc", @nested={0x4, 0xe1}, @nested={0x4, 0x160}]}, @nested={0xd1, 0x10e, 0x0, 0x1, [@generic="9ec32a9f6999f43691b87be7cc5bc4a8fb9aac4a130eb374154efa01d2d2c32a718d65f34133f86acb962d58eb6e0fc1e8506aff3541abae266004b26eac64c5b26064b9fc9bf1afb7a4a3ccef8593c7df145b3fe605503130ee3b25e0febbd4f683b90fe1fdc46ca1531f58b68a034d071b85fa3cce1859687d134e8a3d15a623ab4adedccba4ee2984053088ca9bf5930318a38e5acb820b40b9dd0db7288a8be9062847512191e5b5125c4f830fa5f6ce2c8bb18845dec692a0183ead57c381db77f09e090e8ee801b908a8"]}, @typed={0xc, 0x56, 0x0, 0x0, @u64=0x8}, @typed={0x8, 0x85, 0x0, 0x0, @u32=0xe}, @generic="2573e8df4464ca9322885a68dc9ae1438c2e4dfe732fd44ebc501e5376168027e910a980e97bbc7d44988ead1df1777036bb5a1a435c3ca7bd9e834d816d5bee08de3393030b3bfb05886503aab7725c42b970373af71e6a9e332280429edd06dd4f16128a45d46d4966c0ecaa8c7c23534ec35889dd7d691fb454f7402613097627994d4ce537892dc95beba9cbc8b68c05f0de953d0e625d15fb", @nested={0xb6, 0x10e, 0x0, 0x1, [@generic='7', @typed={0x14, 0x53, 0x0, 0x0, @ipv6=@private1}, @nested={0x4, 0xf2}, @generic="59af3f484b2264cfd17137a3e03387786b38277dc2e687cf3cdf82cd05cdd1f2e9e3cb96d90c52817a1f10973ea1fa2c07bc29eba864c93c39c1947f73c4d2af37ef2a32e1032e079021bcab045ab99644b45bef1da411da27f1f8f170b15bf55b195c41defdd2c55f72e96138604cbdf5473eca43841f62ad881bd22a233748564b2c767dfbba1dae4fe396f7", @nested={0x4, 0xe1}, @nested={0x4, 0x74}, @nested={0x4, 0x8e}]}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xa000000000}, @NBD_ATTR_SOCKETS={0x1377, 0x7, 0x0, 0x1, [@typed={0xc, 0xbc, 0x0, 0x0, @u64=0x101}, @nested={0x18, 0xc0, 0x0, 0x1, [@typed={0x8, 0x123, 0x0, 0x0, @u32}, @typed={0xc, 0x47, 0x0, 0x0, @u64=0xffffffff}]}, @nested={0x1124, 0xcd, 0x0, 0x1, [@typed={0x8, 0x5d, 0x0, 0x0, @u32=0x9}, @generic="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", @generic="115c92b34365f1defb1771c74ca921d7e6ca91762e1a800f3938c498b3e255", @generic="80c117d6ca648c66f79efe21ee2cc03abddf3ef94cfa5d9ae5e8f153b5654ff7689627017738d78a6023e1372385bef6d6ff2bd59a211de26cf47202204039083cb91c5ae3ed65829b14caaf4cb9ad41aa79253ca521c438b451f184759c04399ea7713c8f255898845fbe737b13ba71843334e1b91bc1bbb46bd83ce8e6f200f761f458550682d5e22a0327ece49cc002f93ec31ebdeda13d5a67e1b44ecf3a1d3601b59ab1cc6b4d1977a85bd2a59029bbaee324e174", @generic="191390e033f12a8ead483f5b57206d9d9da0aef54627b4adcc513aadddf7cde152be7e168d5802e6e5675398ef025b7b4c77b2c51737520f343fc97ecaa678c42d31"]}, @generic="41aa6832d9998e28dabc191741e58d4932c6643a2f62cee547e84d7428e5962d3d0e84d800af13c5b9a071cebbbf2180876cc1072bd0daf050e998c784aa69c6e49d776f6173be73ac6d2b35c91603c5a32bddc7a4dacac5519b7ffbedea14871df74d7014c3a5e088162f940d6455ee1e392f8a0f2bf707d82b1f2ba9ceab4594ca7d3190c9366b076fcd6faa2fb25ba591e8", @nested={0x91, 0x11f, 0x0, 0x1, [@typed={0x14, 0x156, 0x0, 0x0, @ipv6=@empty}, @nested={0x4, 0x3d}, @typed={0x4, 0x13c}, @typed={0x8, 0x14e, 0x0, 0x0, @u32=0x2}, @generic="6a89266c8dd1398b950f976bb28900469cb81ec24468c47368e7bea6ba5db16d14e77cb3b7e28ec2a450b0f321c29abd9f147b82ecd64f03905959f582c0a7da604c2d1d955614716c7931f11a23eaf437e18b86f1f944225c0cab2be9a1a934bf822b4e73", @nested={0x4, 0x143}]}, @typed={0x8, 0xf9, 0x0, 0x0, @fd=r0}, @generic="49d81b9b6d90692d9c79c8e73fc83f35aaca52816af2aa0afaab97333d7b7f8c75fb7cf0967107156f4fd83efbb0dd227fced71b2eeb9b13fcbda86e28af0777e6e9ceb5897e4ebf773450c3b7777626989456afb18ba49e09be7169fdb76c76dce45e8a185406aebc015cebc4593ea784718a9bd59ccfd9566cbb967a01ace7bd1632ff9ba7afdb2d126fcab549064a2965cb95574983b0d5c61a6bb4946bf23bf9451e5f2435520cc032050c3fb978a56e65c6b2a319369c353ad62a9dd206a510991e8f5ee87ac793206056d0a673e2ca62a74e1f4a71ffd26de1680bc53a8e6dd76097bb4b0f06a63519", @typed={0x8, 0x72, 0x0, 0x0, @uid=r3}, @typed={0x8, 0xce, 0x0, 0x0, @pid=r4}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x100000001}, @NBD_ATTR_DEVICE_LIST={0x106, 0x9, 0x0, 0x1, [@typed={0x8, 0x86, 0x0, 0x0, @uid=r5}, @generic="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"]}]}, 0x1784}, 0x1, 0x0, 0x0, 0x4040000}, 0x0) futex_waitv$auto(&(0x7f0000000080)={0x4, 0x40, 0xb8}, 0x1, 0xffffff56, &(0x7f00000000c0)={0x7, 0x10}, 0x80000001) 444.969795ms ago: executing program 1 (id=1957): r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fb0\x00', 0x42, 0x0) ioctl$auto_FBIOPUTCMAP(r0, 0x4605, &(0x7f0000000080)="e7c3313675db62a5") r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/memory/memory3/online\x00', 0x2062, 0x0) r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x123801, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r2, 0xc1105517, 0x0) write$auto(r1, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x3) socket$nl_generic(0x10, 0x3, 0x10) shmctl$auto_SHM_UNLOCK(0xffff, 0xc, &(0x7f00000003c0)={{0x7, 0xee01, 0xffffffffffffffff, 0x6, 0x1, 0x1}, 0x2, 0x8, 0x8, 0x4, @inferred=0xffffffffffffffff, @inferred=0xffffffffffffffff, 0x2, 0x0, &(0x7f00000000c0)="e9463e723c549e5e0f26be0fcc54037e29a48411a1ce72dadb483c4d4a66c2bf0d3030", 0x0}) setreuid$auto(r3, r3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r5 = getpid() r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_clone3(0x0, 0xfe46) process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000040)="8c9700089d1b208365d5b5d112dbab029ed13881d2f2c7ba2eb01c3db79f77fdc2bb50c64a925009dff4cd1aca925c57100112d88f73348a54396800ed598a0e5500d7c0cbb6b1e91d", 0x40000000001243}, 0x4, 0x0) ioctl$auto(r4, 0x400454ca, 0x38) r7 = openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0) ioctl$auto(r7, 0xfffffffc, r6) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_smc_gen_netlink(0x0, 0xffffffffffffffff) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r8 = gettid() fanotify_init$auto(0x5, 0x0) read$auto(0x3, 0x0, 0x80) rt_sigqueueinfo$auto(r8, 0xb, &(0x7f00000001c0)={@siginfo_0_0={0x3, 0x401, 0xfffffffb, @_timer={r8, 0xd, @sival_ptr=0x0, 0x62}}}) setsockopt$auto(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x4) ioprio_set$auto_IOPRIO_WHO_PGRP(0x2, r9, 0xfd) 180.196433ms ago: executing program 0 (id=1958): mmap$auto(0x0, 0x20009, 0x386, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) eventfd$auto(0x4) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff001, 0x2) pivot_root$auto(0x0, &(0x7f00000004c0)='/\x00\xf5\xdf\xeb\xa1\xb1\xccYE\x92\x0e\xf1\xb6?S\xad\xdeiN\xc0\xb6\xa7>\x95\x1e\xdd\x03;t}\"\x01\xbf\an4>j<\xcb\xe0n\xa1\xae\xf7;\xf5\tJ\xb0\x95\xd5\x96\xae(\xd2\x06\xa7\xc2o\xe25\x8b\xe4\xac\x87\x98NAe\xf0\xf1\xd9\xd36\x98\x86\xca\xf6\xf8\xd0/\x1f\xb3\xe4N\xc0\x06\'\x11\x8a\xe108N/\xcc\x1f\xa9\xd0\xac\xf2\xf5\x90\xbbO\xcc\xa9qH\x00[\x86o\xf4\xaf\x93\x14\xbf|@\xb6E\xd5\xa7\xa9^\x84\x19\xca\x84\\\xb9u8\xa4\f\x7f\xa1Vh\xdc\'\x0e\xf6\xd9;\xcf@\xea\xde\xa0\xa8\xea\xef\xfcK5\x87Z\xc1\xccOx\x8bn\x1b\x93@o\xf7\xe30\x90\b\aQ_\xb9\x9dO\xab\xea \x88\xdc\xda>\xdc.O.\xc8\xe2\x04D\xc6\x14A\x7f\x000\xdd*\a\vX\xb0\x8bI\xd0K)u\x13{-\x02\xb2B\xabd[\xdd\xdc\x10M\x9c\x88a\xfd\xa1\x12\xeb\xe0O\xf8\xbf37e\x1e\xf1@\xe3\xae\xe4\xef\xbd|D\x1e;3\x99g\xd8\xf5\xf3\xe0\x96D\x93\x93\x86m\xa0Fn;\xff\xc3}\xb8\xcd\x0f0F\x96\x98\xd0\x19\xf5\xdf\xf1B\x17_t\xe4|i\xcd\x81|w\xfcNc\xdd\xb8\xdbQ\x0fb}c`=F\x91_\xbd+E\b\x14\x848\xe3\xee/\xe37\xcb\x00\xd7\xe0\x8f\xb2\xffU\xa3\n\xb3PW\x11\xe1\xdd\x05\x86\x9c\xcf\xfe\xfapL\xb2\x05\x82\xf4\xf2v\xe8\x83\xc9*M\x90\xa6P\x98\xb1\x94\x84\xb7\x00\xf2\xf0#\xd4\xe4\xe2\xaa~\x1d\xbc \xa2y\xae@\xab\x1d\xd8pBg\xbb\xa8|g\xc70.\x04\"\ff\xb0\xc6umooMT\xa8\xd3\x97 ?\xf1\x80\x01\x80\x10\xe9\x84Ff\xd4WU\xc41\xc3}\x03\xdc\'\xdd\xecJ\x97\xdb\xed\rr\xb6-$\x8b\xc5i\xe3\x113\x89M\xe4\xd7\x1dX\xc9\x15\x00\xd7j1t\\ \x88>s\xb5\x83\xf3\xef\x05\xb8+Y\x04{\x9a\x8e|\xfd\x92\xfb\xd1\"\x85\xb1\xf4*=\xee{\x7fS%;\xfd\xc0,\xa7\x973\xdc\x7f/B\xd8pe!\xd8sl\x15g\xd5\x05\x8eRQ\nm\xaa\xf2N\x1d\xda\xeb\xe3\x06\xd1at\xd9\xd5\xb2\xcb\xf5\x83\x84\x1eF\xab\x00\x8f\xa4\xb3\xd6\xaf\xcee3s\t\xf5\xcc*\xff\xf5\xf2\x98\x89T\x80\xa8\xae\x1e0\xe5\xa6\xc9.\v}\xa3\vi\x06e\xbd\xa1u\xc5_B\x8a\xe2@sF\xfd\xa9\x8f\x11\xdc\xbe\rjrb\x8a\xa6\x0f\xb3Zq\xf2\xce\xbc\xf3X\xcc\a\xe8v\xdb\xa0\x1cb0x0}) sendmsg$auto_NETDEV_CMD_BIND_RX(r2, &(0x7f00000001c0)={0x0, 0xfffffffffffffd45, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010027bd7000fedbdf250d00000008000100", @ANYRES32=r4, @ANYBLOB="08000300", @ANYRES32, @ANYBLOB="040002c2"], 0x28}, 0x1, 0x0, 0x0, 0x4040050}, 0x4) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000400), 0xffffffffffffffff) r8 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_CQM(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010026b29d4669aa39733d00000004005e8008000300", @ANYRES32=r9, @ANYRESDEC=r1], 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x40800) sendmsg$auto_NETDEV_CMD_BIND_RX(r0, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="020029bd7000fddbdf250d0000000c00028008000300ffffff3e08000300", @ANYRES32, @ANYBLOB="08000100", @ANYRES32=r9, @ANYBLOB="2c00028008000100040000000800010000740000080003004c2d00000800030000000000080003009a080000"], 0x5c}, 0x1, 0x0, 0x0, 0x24002040}, 0x8004) sendmsg$auto_HWSIM_CMD_REGISTER(r0, &(0x7f0000007540)={0x0, 0x0, &(0x7f0000007500)={&(0x7f0000000480)=ANY=[@ANYBLOB="02000501", @ANYRES16=r5, @ANYRES64=r8, @ANYRESHEX=r2, @ANYRES8=r10], 0x109c}, 0x1, 0x0, 0x0, 0x40010}, 0x20004010) r11 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/stack\x00', 0x2400, 0x0) r12 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/seq/oss\x00', 0x60c80, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001b80)='/dev/sequencer2\x00', 0x81083, 0x0) pread64$auto(r12, 0x0, 0x200004000046, 0xffff) read$auto_proc_single_file_operations_base(r11, &(0x7f0000000200)=""/225, 0xe1) sysinfo$auto(0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r13 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r13, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) read$auto(r13, &(0x7f0000000080)='MJC802154_HWSIM\x00\xcb\x0fX\xc7\xfdx!\xf7\xb5T\x04\xad\x96\xf4\xbc\xca\xa52UWT1\a\x00\x00\x00\x00\x00\x007\xc9\xa6\x8a', 0x1060) r14 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) ioctl$auto_UI_DEV_SETUP(r14, 0x405c5503, &(0x7f00000000c0)={{0x1009, 0xf2cf, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa}) ioctl$auto_UI_DEV_CREATE(r14, 0x5501, 0x0) writev$auto(r14, &(0x7f0000000340)={0x0, 0x18}, 0x8) ioctl$auto_UI_SET_FFBIT(r14, 0x4004556b, 0x0) swapoff$auto(&(0x7f00000000c0)='/dev/dri/card1\x00') kernel console output (not intermixed with test programs): +0x140/0x710 [ 473.348382][T13400] __alloc_skb+0x140/0x710 [ 473.348396][T13400] ? __alloc_skb+0x5b7/0x710 [ 473.348410][T13400] ? __pfx___alloc_skb+0x10/0x10 [ 473.348425][T13400] ? __mutex_lock+0x26d/0x1b10 [ 473.348449][T13400] netlink_dump+0x194/0xd00 [ 473.348471][T13400] ? __pfx_netlink_dump+0x10/0x10 [ 473.348487][T13400] ? __netlink_lookup+0x65c/0x900 [ 473.348517][T13400] __netlink_dump_start+0x6d6/0x990 [ 473.348538][T13400] ? __pfx_rtnl_fdb_dump+0x10/0x10 [ 473.348555][T13400] rtnetlink_rcv_msg+0xb3e/0xe90 [ 473.348572][T13400] ? __pfx_rtnl_fdb_dump+0x10/0x10 [ 473.348589][T13400] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 473.348606][T13400] ? __pfx_rtnl_dumpit+0x10/0x10 [ 473.348626][T13400] ? __pfx_rtnl_fdb_dump+0x10/0x10 [ 473.348652][T13400] ? ref_tracker_free+0x37e/0x6c0 [ 473.348673][T13400] netlink_rcv_skb+0x159/0x420 [ 473.348693][T13400] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 473.348710][T13400] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 473.348737][T13400] ? netlink_deliver_tap+0x1ae/0xcc0 [ 473.348759][T13400] netlink_unicast+0x585/0x850 [ 473.348781][T13400] ? __pfx_netlink_unicast+0x10/0x10 [ 473.348806][T13400] netlink_sendmsg+0x8b0/0xda0 [ 473.348829][T13400] ? __pfx_netlink_sendmsg+0x10/0x10 [ 473.348847][T13400] ? __import_iovec+0x1d2/0x640 [ 473.348870][T13400] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 473.348889][T13400] ____sys_sendmsg+0x9e1/0xb70 [ 473.348909][T13400] ? __pfx_netlink_sendmsg+0x10/0x10 [ 473.348930][T13400] ? __pfx_____sys_sendmsg+0x10/0x10 [ 473.348952][T13400] ? rcu_is_watching+0x12/0xc0 [ 473.348969][T13400] ? ___sys_sendmsg+0x19d/0x1e0 [ 473.348988][T13400] ? kfree+0x1dd/0x6c0 [ 473.349011][T13400] ___sys_sendmsg+0x190/0x1e0 [ 473.349033][T13400] ? __pfx____sys_sendmsg+0x10/0x10 [ 473.349070][T13400] ? __pfx___might_resched+0x10/0x10 [ 473.349090][T13400] __sys_sendmmsg+0x205/0x430 [ 473.349109][T13400] ? __pfx___sys_sendmmsg+0x10/0x10 [ 473.349130][T13400] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 473.349160][T13400] ? fput+0x79/0x100 [ 473.349180][T13400] ? ksys_write+0x1ac/0x250 [ 473.349197][T13400] ? __pfx_ksys_write+0x10/0x10 [ 473.349217][T13400] __x64_sys_sendmmsg+0x9c/0x100 [ 473.349233][T13400] ? lockdep_hardirqs_on+0x78/0x100 [ 473.349254][T13400] do_syscall_64+0x115/0x840 [ 473.349274][T13400] ? clear_bhb_loop+0x40/0x90 [ 473.349300][T13400] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 473.349315][T13400] RIP: 0033:0x7ffb0359ce59 [ 473.349328][T13400] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 473.349343][T13400] RSP: 002b:00007ffb04375028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 473.349359][T13400] RAX: ffffffffffffffda RBX: 00007ffb03815fa0 RCX: 00007ffb0359ce59 [ 473.349369][T13400] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 473.349378][T13400] RBP: 00007ffb04375090 R08: 0000000000000000 R09: 0000000000000000 [ 473.349387][T13400] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002 [ 473.349396][T13400] R13: 00007ffb03816038 R14: 00007ffb03815fa0 R15: 00007ffc78e4abe8 [ 473.349416][T13400] [ 474.146738][T13406] FAULT_INJECTION: forcing a failure. [ 474.146738][T13406] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 474.167131][T13406] CPU: 0 UID: 0 PID: 13406 Comm: syz.1.1503 Tainted: G L syzkaller #0 PREEMPT(full) [ 474.167173][T13406] Tainted: [L]=SOFTLOCKUP [ 474.167183][T13406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 474.167199][T13406] Call Trace: [ 474.167208][T13406] [ 474.167218][T13406] dump_stack_lvl+0x100/0x190 [ 474.167250][T13406] should_fail_ex.cold+0x5/0xa [ 474.167282][T13406] _copy_to_user+0x32/0xd0 [ 474.167319][T13406] simple_read_from_buffer+0xcb/0x170 [ 474.167355][T13406] proc_fail_nth_read+0x1af/0x230 [ 474.167399][T13406] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 474.167446][T13406] ? rw_verify_area+0xce/0x6d0 [ 474.167474][T13406] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 474.167517][T13406] vfs_read+0x1e4/0xb30 [ 474.167555][T13406] ? __pfx_vfs_read+0x10/0x10 [ 474.167594][T13406] ? __fget_files+0x215/0x3d0 [ 474.167636][T13406] ? __fget_files+0x21f/0x3d0 [ 474.167680][T13406] ksys_read+0x12a/0x250 [ 474.167712][T13406] ? __pfx_ksys_read+0x10/0x10 [ 474.167747][T13406] ? rcu_is_watching+0x12/0xc0 [ 474.167785][T13406] do_syscall_64+0x115/0x840 [ 474.167822][T13406] ? clear_bhb_loop+0x40/0x90 [ 474.167855][T13406] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 474.167882][T13406] RIP: 0033:0x7fc75eb5d68e [ 474.167904][T13406] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 474.167927][T13406] RSP: 002b:00007fc75fb1bfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 474.167952][T13406] RAX: ffffffffffffffda RBX: 00007fc75fb1c6c0 RCX: 00007fc75eb5d68e [ 474.167970][T13406] RDX: 000000000000000f RSI: 00007fc75fb1c0a0 RDI: 0000000000000008 [ 474.167984][T13406] RBP: 00007fc75fb1c090 R08: 0000000000000000 R09: 0000000000000000 [ 474.168000][T13406] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 474.168015][T13406] R13: 00007fc75ee16038 R14: 00007fc75ee15fa0 R15: 00007ffc1eaff858 [ 474.168048][T13406] [ 474.677043][T13414] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1506'. [ 475.105324][T13430] FAULT_INJECTION: forcing a failure. [ 475.105324][T13430] name failslab, interval 1, probability 0, space 0, times 0 [ 475.118717][T13430] CPU: 1 UID: 0 PID: 13430 Comm: syz.1.1512 Tainted: G L syzkaller #0 PREEMPT(full) [ 475.118766][T13430] Tainted: [L]=SOFTLOCKUP [ 475.118778][T13430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 475.118797][T13430] Call Trace: [ 475.118808][T13430] [ 475.118819][T13430] dump_stack_lvl+0x100/0x190 [ 475.118858][T13430] should_fail_ex.cold+0x5/0xa [ 475.118898][T13430] should_failslab+0xc2/0x120 [ 475.118935][T13430] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 475.118982][T13430] ? alloc_vmap_area+0x640/0x2b70 [ 475.119022][T13430] alloc_vmap_area+0x640/0x2b70 [ 475.119071][T13430] ? __pfx_alloc_vmap_area+0x10/0x10 [ 475.119116][T13430] __get_vm_area_node+0x1ca/0x330 [ 475.119160][T13430] __vmalloc_node_range_noprof+0x228/0x1630 [ 475.119201][T13430] ? __do_sys_listmount+0x289/0xee0 [ 475.119246][T13430] ? __do_sys_listmount+0x289/0xee0 [ 475.119281][T13430] ? alloc_pages_mpol+0x25a/0x540 [ 475.119319][T13430] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 475.119365][T13430] ? rcu_is_watching+0x12/0xc0 [ 475.119407][T13430] __kvmalloc_node_noprof+0x3de/0xa00 [ 475.119436][T13430] ? __do_sys_listmount+0x289/0xee0 [ 475.119467][T13430] ? __do_sys_listmount+0x289/0xee0 [ 475.119501][T13430] ? _copy_from_user+0x59/0xd0 [ 475.119549][T13430] ? copy_mnt_id_req+0x1b1/0x350 [ 475.119599][T13430] __do_sys_listmount+0x289/0xee0 [ 475.119632][T13430] ? __pfx_do_futex+0x10/0x10 [ 475.119668][T13430] ? fput+0x79/0x100 [ 475.119705][T13430] ? __pfx___do_sys_listmount+0x10/0x10 [ 475.119749][T13430] ? rcu_is_watching+0x12/0xc0 [ 475.119786][T13430] do_syscall_64+0x115/0x840 [ 475.119827][T13430] ? clear_bhb_loop+0x40/0x90 [ 475.119864][T13430] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 475.119896][T13430] RIP: 0033:0x7fc75eb9ce59 [ 475.119922][T13430] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 475.119952][T13430] RSP: 002b:00007fc75fb1c028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 475.119981][T13430] RAX: ffffffffffffffda RBX: 00007fc75ee15fa0 RCX: 00007fc75eb9ce59 [ 475.120001][T13430] RDX: 00000000000bc23c RSI: 0000000000000000 RDI: 0000200000000100 [ 475.120019][T13430] RBP: 00007fc75ec32d6f R08: 0000000000000000 R09: 0000000000000000 [ 475.120038][T13430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 475.120055][T13430] R13: 00007fc75ee16038 R14: 00007fc75ee15fa0 R15: 00007ffc1eaff858 [ 475.120092][T13430] [ 475.120168][T13430] syz.1.1512: vmalloc error: size 6164960, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 475.401453][T13430] CPU: 0 UID: 0 PID: 13430 Comm: syz.1.1512 Tainted: G L syzkaller #0 PREEMPT(full) [ 475.401500][T13430] Tainted: [L]=SOFTLOCKUP [ 475.401510][T13430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 475.401528][T13430] Call Trace: [ 475.401537][T13430] [ 475.401548][T13430] dump_stack_lvl+0x100/0x190 [ 475.401586][T13430] warn_alloc.cold+0x95/0x1c1 [ 475.401623][T13430] ? __pfx_warn_alloc+0x10/0x10 [ 475.401667][T13430] ? lockdep_hardirqs_on+0x78/0x100 [ 475.401709][T13430] ? __get_vm_area_node+0x2cd/0x330 [ 475.401750][T13430] ? __get_vm_area_node+0x208/0x330 [ 475.401794][T13430] __vmalloc_node_range_noprof+0xccd/0x1630 [ 475.401842][T13430] ? __do_sys_listmount+0x289/0xee0 [ 475.401878][T13430] ? alloc_pages_mpol+0x25a/0x540 [ 475.401917][T13430] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 475.401965][T13430] ? rcu_is_watching+0x12/0xc0 [ 475.402006][T13430] __kvmalloc_node_noprof+0x3de/0xa00 [ 475.402040][T13430] ? __do_sys_listmount+0x289/0xee0 [ 475.402071][T13430] ? __do_sys_listmount+0x289/0xee0 [ 475.402102][T13430] ? _copy_from_user+0x59/0xd0 [ 475.402143][T13430] ? copy_mnt_id_req+0x1b1/0x350 [ 475.402185][T13430] __do_sys_listmount+0x289/0xee0 [ 475.402212][T13430] ? __pfx_do_futex+0x10/0x10 [ 475.402245][T13430] ? fput+0x79/0x100 [ 475.402289][T13430] ? __pfx___do_sys_listmount+0x10/0x10 [ 475.402334][T13430] ? rcu_is_watching+0x12/0xc0 [ 475.402371][T13430] do_syscall_64+0x115/0x840 [ 475.402408][T13430] ? clear_bhb_loop+0x40/0x90 [ 475.402441][T13430] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 475.402469][T13430] RIP: 0033:0x7fc75eb9ce59 [ 475.402493][T13430] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 475.402519][T13430] RSP: 002b:00007fc75fb1c028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 475.402547][T13430] RAX: ffffffffffffffda RBX: 00007fc75ee15fa0 RCX: 00007fc75eb9ce59 [ 475.402566][T13430] RDX: 00000000000bc23c RSI: 0000000000000000 RDI: 0000200000000100 [ 475.402581][T13430] RBP: 00007fc75ec32d6f R08: 0000000000000000 R09: 0000000000000000 [ 475.402594][T13430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 475.402607][T13430] R13: 00007fc75ee16038 R14: 00007fc75ee15fa0 R15: 00007ffc1eaff858 [ 475.402636][T13430] [ 475.403579][T13430] Mem-Info: [ 475.689270][T13430] active_anon:28320 inactive_anon:48 isolated_anon:0 [ 475.689270][T13430] active_file:17133 inactive_file:40446 isolated_file:0 [ 475.689270][T13430] unevictable:768 dirty:675 writeback:0 [ 475.689270][T13430] slab_reclaimable:11272 slab_unreclaimable:91343 [ 475.689270][T13430] mapped:29259 shmem:1548 pagetables:1219 [ 475.689270][T13430] sec_pagetables:0 bounce:0 [ 475.689270][T13430] kernel_misc_reclaimable:0 [ 475.689270][T13430] free:1305348 free_pcp:8479 free_cma:0 [ 475.756806][T13430] Node 0 active_anon:113380kB inactive_anon:192kB active_file:68532kB inactive_file:161644kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:117036kB dirty:2700kB writeback:0kB shmem:4656kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11840kB pagetables:4644kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB [ 475.866754][T13430] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:132kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB [ 475.961658][T13430] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 476.033270][T13430] lowmem_reserve[]: 0 2478 2479 2479 2479 [ 476.049985][T13430] Node 0 DMA32 free:1283140kB boost:0kB min:34060kB low:42572kB high:51084kB reserved_highatomic:0KB free_highatomic:0KB active_anon:115580kB inactive_anon:192kB active_file:68532kB inactive_file:161644kB unevictable:1536kB writepending:2700kB zspages:0kB present:3129332kB managed:2537500kB mlocked:0kB bounce:0kB free_pcp:18284kB local_pcp:12328kB free_cma:0kB [ 476.093032][T13430] lowmem_reserve[]: 0 0 1 1 1 [ 476.103591][T13430] Node 0 Normal free:4kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1108kB mlocked:0kB bounce:0kB free_pcp:44kB local_pcp:28kB free_cma:0kB [ 476.144664][T13430] lowmem_reserve[]: 0 0 0 0 0 [ 476.177925][T13430] Node 1 Normal free:3922376kB boost:0kB min:55828kB low:69784kB high:83740kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:13496kB local_pcp:11644kB free_cma:0kB [ 476.219076][T13430] lowmem_reserve[]: 0 0 0 0 0 [ 476.224589][T13430] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 476.251621][T13430] Node 0 DMA32: 5548*4kB (UME) 3647*8kB (UM) 1916*16kB (UME) 1054*32kB (UME) 656*64kB (UM) 410*128kB (UME) 234*256kB (UME) 108*512kB (UME) 65*1024kB (UM) 3*2048kB (UME) 216*4096kB (UM) = 1282856kB [ 476.273061][T13430] Node 0 Normal: 1*4kB (U) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB [ 476.285381][T13430] Node 1 Normal: 46*4kB (UM) 32*8kB (UM) 31*16kB (UM) 27*32kB (UM) 15*64kB (UM) 12*128kB (UM) 9*256kB (UM) 8*512kB (UM) 8*1024kB (UM) 4*2048kB (UM) 951*4096kB (UM) = 3922376kB [ 476.304313][T13430] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 476.314419][T13430] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 476.325106][T13430] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 476.372240][T13430] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 476.383622][T13430] 59124 total pagecache pages [ 476.391768][T13430] 2 pages in swap cache [ 476.407504][T13430] Free swap = 124988kB [ 476.418370][T13430] Total swap = 124996kB [ 476.439330][T13430] 2097051 pages RAM [ 476.505355][T13430] 0 pages HighMem/MovableOnly [ 476.555973][T13430] 430784 pages reserved [ 476.564841][T13430] 0 pages cma reserved [ 477.535474][T13471] nfsd: Unknown parameter '' [ 477.636401][T13477] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1521'. [ 478.250951][T13488] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 478.347438][T13488] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 478.363972][T13488] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 478.397059][T13488] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 478.464565][T13488] page dumped because: unmovable page [ 478.479089][T13488] page_owner info is not present (never set?) [ 479.028502][T13500] FAULT_INJECTION: forcing a failure. [ 479.028502][T13500] name fail_futex, interval 1, probability 0, space 0, times 0 [ 479.042048][T13500] CPU: 1 UID: 0 PID: 13500 Comm: syz.2.1526 Tainted: G L syzkaller #0 PREEMPT(full) [ 479.042097][T13500] Tainted: [L]=SOFTLOCKUP [ 479.042108][T13500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 479.042125][T13500] Call Trace: [ 479.042134][T13500] [ 479.042145][T13500] dump_stack_lvl+0x100/0x190 [ 479.042182][T13500] should_fail_ex.cold+0x5/0xa [ 479.042215][T13500] get_futex_key+0x1d2/0x1510 [ 479.042264][T13500] ? __pfx_get_futex_key+0x10/0x10 [ 479.042319][T13500] futex_wait_setup+0x83/0x510 [ 479.042362][T13500] __futex_wait+0x19f/0x300 [ 479.042397][T13500] ? __pfx___futex_wait+0x10/0x10 [ 479.042429][T13500] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 479.042471][T13500] ? __pfx_futex_wake_mark+0x10/0x10 [ 479.042511][T13500] ? futex_hash+0x2ad/0x370 [ 479.042555][T13500] ? futex_hash+0x141/0x370 [ 479.042602][T13500] futex_wait+0xe6/0x370 [ 479.042634][T13500] ? __pfx_futex_wait+0x10/0x10 [ 479.042665][T13500] ? __pfx_kernel_waitid+0x10/0x10 [ 479.042713][T13500] ? __do_sys_listmount+0x1ce/0xee0 [ 479.042751][T13500] do_futex+0x1ef/0x350 [ 479.042781][T13500] ? __pfx_do_futex+0x10/0x10 [ 479.042808][T13500] ? __pfx___do_sys_waitid+0x10/0x10 [ 479.042859][T13500] __x64_sys_futex+0x34f/0x4d0 [ 479.042894][T13500] ? __pfx___x64_sys_futex+0x10/0x10 [ 479.042930][T13500] ? rcu_is_watching+0x12/0xc0 [ 479.042963][T13500] do_syscall_64+0x115/0x840 [ 479.042999][T13500] ? clear_bhb_loop+0x40/0x90 [ 479.043044][T13500] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 479.043072][T13500] RIP: 0033:0x7f1d4ed9ce59 [ 479.043087][T13500] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 479.043103][T13500] RSP: 002b:00007f1d4fbc40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 479.043119][T13500] RAX: ffffffffffffffda RBX: 00007f1d4f015fa8 RCX: 00007f1d4ed9ce59 [ 479.043130][T13500] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f1d4f015fa8 [ 479.043140][T13500] RBP: 00007f1d4f015fa0 R08: 0000000000000000 R09: 0000000000000000 [ 479.043150][T13500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 479.043160][T13500] R13: 00007f1d4f016038 R14: 00007fffe6591590 R15: 00007fffe6591678 [ 479.043180][T13500] [ 479.910814][T13513] nbd: socks must be embedded in a SOCK_ITEM attr [ 480.721068][T13534] FAULT_INJECTION: forcing a failure. [ 480.721068][T13534] name failslab, interval 1, probability 0, space 0, times 0 [ 480.768699][T13534] CPU: 0 UID: 0 PID: 13534 Comm: syz.2.1536 Tainted: G L syzkaller #0 PREEMPT(full) [ 480.768741][T13534] Tainted: [L]=SOFTLOCKUP [ 480.768751][T13534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 480.768767][T13534] Call Trace: [ 480.768774][T13534] [ 480.768785][T13534] dump_stack_lvl+0x100/0x190 [ 480.768817][T13534] should_fail_ex.cold+0x5/0xa [ 480.768851][T13534] should_failslab+0xc2/0x120 [ 480.768881][T13534] __kmalloc_cache_noprof+0x7a/0x6f0 [ 480.768928][T13534] ? sctp_add_bind_addr+0xae/0x3e0 [ 480.768966][T13534] ? __sctp_v6_cmp_addr+0x206/0x530 [ 480.769003][T13534] sctp_add_bind_addr+0xae/0x3e0 [ 480.769046][T13534] sctp_copy_local_addr_list+0x349/0x550 [ 480.769080][T13534] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 480.769115][T13534] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 480.769148][T13534] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 480.769191][T13534] sctp_bind_addr_copy+0xe0/0x530 [ 480.769242][T13534] sctp_connect_new_asoc+0x1c9/0x770 [ 480.769277][T13534] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 480.769310][T13534] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 480.769341][T13534] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 480.769383][T13534] __sctp_connect+0x3e7/0xc70 [ 480.769426][T13534] ? __pfx___sctp_connect+0x10/0x10 [ 480.769461][T13534] ? __pfx_sctp_inet_connect+0x10/0x10 [ 480.769499][T13534] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 480.769540][T13534] ? __pfx_sctp_inet_connect+0x10/0x10 [ 480.769572][T13534] sctp_inet_connect+0x15f/0x220 [ 480.769609][T13534] __sys_connect_file+0x141/0x1a0 [ 480.769656][T13534] __sys_connect+0x141/0x170 [ 480.769695][T13534] ? __pfx___sys_connect+0x10/0x10 [ 480.769731][T13534] ? __fget_files+0x21f/0x3d0 [ 480.769789][T13534] ? __pfx_ksys_write+0x10/0x10 [ 480.769827][T13534] __x64_sys_connect+0x72/0xb0 [ 480.769862][T13534] ? lockdep_hardirqs_on+0x78/0x100 [ 480.769899][T13534] do_syscall_64+0x115/0x840 [ 480.769941][T13534] ? clear_bhb_loop+0x40/0x90 [ 480.769973][T13534] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 480.770000][T13534] RIP: 0033:0x7f1d4ed9ce59 [ 480.770021][T13534] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 480.770045][T13534] RSP: 002b:00007f1d4fba3028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 480.770071][T13534] RAX: ffffffffffffffda RBX: 00007f1d4f016090 RCX: 00007f1d4ed9ce59 [ 480.770089][T13534] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 480.770104][T13534] RBP: 00007f1d4fba3090 R08: 0000000000000000 R09: 0000000000000000 [ 480.770121][T13534] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 480.770137][T13534] R13: 00007f1d4f016128 R14: 00007f1d4f016090 R15: 00007fffe6591678 [ 480.770171][T13534] [ 481.985861][T13557] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 482.006361][T13557] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 482.048450][T13557] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 482.086733][T13557] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 482.112338][T13557] page dumped because: unmovable page [ 482.130654][T13557] page_owner info is not present (never set?) [ 482.420445][T13541] kexec: Could not allocate control_code_buffer [ 482.841877][T13575] FAULT_INJECTION: forcing a failure. [ 482.841877][T13575] name failslab, interval 1, probability 0, space 0, times 0 [ 482.860305][T13575] CPU: 1 UID: 0 PID: 13575 Comm: syz.1.1545 Tainted: G L syzkaller #0 PREEMPT(full) [ 482.860351][T13575] Tainted: [L]=SOFTLOCKUP [ 482.860361][T13575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 482.860378][T13575] Call Trace: [ 482.860387][T13575] [ 482.860398][T13575] dump_stack_lvl+0x100/0x190 [ 482.860435][T13575] should_fail_ex.cold+0x5/0xa [ 482.860471][T13575] should_failslab+0xc2/0x120 [ 482.860504][T13575] __kmalloc_cache_noprof+0x7a/0x6f0 [ 482.860545][T13575] ? alloc_fdtable+0xbd/0x2d0 [ 482.860576][T13575] ? find_held_lock+0x2b/0x80 [ 482.860607][T13575] ? dup_fd+0x924/0xd10 [ 482.860643][T13575] alloc_fdtable+0xbd/0x2d0 [ 482.860675][T13575] dup_fd+0x995/0xd10 [ 482.860711][T13575] ? apparmor_task_alloc+0x2c1/0x3b0 [ 482.860745][T13575] copy_process+0x2965/0x7ed0 [ 482.860779][T13575] ? __futex_wait+0x256/0x300 [ 482.860842][T13575] ? __pfx_copy_process+0x10/0x10 [ 482.860888][T13575] ? futex_hash+0x141/0x370 [ 482.860941][T13575] kernel_clone+0x176/0x9e0 [ 482.860977][T13575] ? __pfx_futex_wait+0x10/0x10 [ 482.861013][T13575] ? __pfx_kernel_clone+0x10/0x10 [ 482.861066][T13575] __do_sys_clone+0xd9/0x120 [ 482.861105][T13575] ? __pfx___do_sys_clone+0x10/0x10 [ 482.861160][T13575] ? rcu_is_watching+0x12/0xc0 [ 482.861196][T13575] do_syscall_64+0x115/0x840 [ 482.861231][T13575] ? clear_bhb_loop+0x40/0x90 [ 482.861263][T13575] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 482.861288][T13575] RIP: 0033:0x7fc75eb9ce59 [ 482.861311][T13575] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 482.861337][T13575] RSP: 002b:00007fc75fb1bfd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 482.861364][T13575] RAX: ffffffffffffffda RBX: 00007fc75ee15fa0 RCX: 00007fc75eb9ce59 [ 482.861383][T13575] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000008000 [ 482.861401][T13575] RBP: 00007fc75ec32d6f R08: 0000000000000000 R09: 0000000000000000 [ 482.861416][T13575] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 482.861431][T13575] R13: 00007fc75ee16038 R14: 00007fc75ee15fa0 R15: 00007ffc1eaff858 [ 482.861464][T13575] [ 483.146234][ T29] audit: type=1800 audit(1780420288.386:14): pid=13581 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1547" name="discovery_nqn" dev="configfs" ino=45170 res=0 errno=0 [ 483.284361][T13583] FAULT_INJECTION: forcing a failure. [ 483.284361][T13583] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 483.370543][T13583] CPU: 1 UID: 0 PID: 13583 Comm: syz.0.1548 Tainted: G L syzkaller #0 PREEMPT(full) [ 483.370585][T13583] Tainted: [L]=SOFTLOCKUP [ 483.370595][T13583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 483.370612][T13583] Call Trace: [ 483.370622][T13583] [ 483.370632][T13583] dump_stack_lvl+0x100/0x190 [ 483.370667][T13583] should_fail_ex.cold+0x5/0xa [ 483.370703][T13583] _copy_from_user+0x2e/0xd0 [ 483.370741][T13583] copy_msghdr_from_user+0x9f/0x4f0 [ 483.370791][T13583] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 483.370836][T13583] ? rcu_is_watching+0x12/0xc0 [ 483.370868][T13583] ? ___sys_recvmsg+0x177/0x1a0 [ 483.370902][T13583] ? kfree+0x1dd/0x6c0 [ 483.370945][T13583] ___sys_recvmsg+0xdd/0x1a0 [ 483.370983][T13583] ? __pfx____sys_recvmsg+0x10/0x10 [ 483.371039][T13583] ? __pfx___might_resched+0x10/0x10 [ 483.371076][T13583] do_recvmmsg+0x301/0x760 [ 483.371118][T13583] ? __pfx_do_recvmmsg+0x10/0x10 [ 483.371153][T13583] ? ksys_write+0x190/0x250 [ 483.371190][T13583] ? __mutex_unlock_slowpath+0x15d/0x8a0 [ 483.371230][T13583] ? kernel_write+0x683/0x6c0 [ 483.371270][T13583] ? __fget_files+0x21f/0x3d0 [ 483.371311][T13583] __x64_sys_recvmmsg+0x22a/0x280 [ 483.371344][T13583] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 483.371379][T13583] ? rcu_is_watching+0x12/0xc0 [ 483.371414][T13583] do_syscall_64+0x115/0x840 [ 483.371451][T13583] ? clear_bhb_loop+0x40/0x90 [ 483.371484][T13583] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 483.371514][T13583] RIP: 0033:0x7f0a2579ce59 [ 483.371537][T13583] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 483.371564][T13583] RSP: 002b:00007f0a26708028 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 483.371590][T13583] RAX: ffffffffffffffda RBX: 00007f0a25a15fa0 RCX: 00007f0a2579ce59 [ 483.371609][T13583] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 483.371626][T13583] RBP: 00007f0a26708090 R08: 0000000000000000 R09: 0000000000000000 [ 483.371643][T13583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 483.371659][T13583] R13: 00007f0a25a16038 R14: 00007f0a25a15fa0 R15: 00007ffffce3fc78 [ 483.371696][T13583] [ 484.800287][T13621] FAULT_INJECTION: forcing a failure. [ 484.800287][T13621] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 484.886871][T13621] CPU: 1 UID: 0 PID: 13621 Comm: syz.3.1556 Tainted: G L syzkaller #0 PREEMPT(full) [ 484.886919][T13621] Tainted: [L]=SOFTLOCKUP [ 484.886929][T13621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 484.886946][T13621] Call Trace: [ 484.886956][T13621] [ 484.886968][T13621] dump_stack_lvl+0x100/0x190 [ 484.887004][T13621] should_fail_ex.cold+0x5/0xa [ 484.887039][T13621] _copy_to_user+0x32/0xd0 [ 484.887081][T13621] simple_read_from_buffer+0xcb/0x170 [ 484.887117][T13621] proc_fail_nth_read+0x1af/0x230 [ 484.887165][T13621] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 484.887212][T13621] ? rw_verify_area+0xce/0x6d0 [ 484.887240][T13621] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 484.887282][T13621] vfs_read+0x1e4/0xb30 [ 484.887309][T13621] ? __pfx_vfs_read+0x10/0x10 [ 484.887336][T13621] ? __fget_files+0x215/0x3d0 [ 484.887374][T13621] ? __fget_files+0x21f/0x3d0 [ 484.887416][T13621] ksys_read+0x12a/0x250 [ 484.887442][T13621] ? __pfx_ksys_read+0x10/0x10 [ 484.887476][T13621] ? rcu_is_watching+0x12/0xc0 [ 484.887513][T13621] do_syscall_64+0x115/0x840 [ 484.887551][T13621] ? clear_bhb_loop+0x40/0x90 [ 484.887583][T13621] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 484.887608][T13621] RIP: 0033:0x7ffb0355d68e [ 484.887629][T13621] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 484.887656][T13621] RSP: 002b:00007ffb017d4fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 484.887684][T13621] RAX: ffffffffffffffda RBX: 00007ffb017d56c0 RCX: 00007ffb0355d68e [ 484.887704][T13621] RDX: 000000000000000f RSI: 00007ffb017d50a0 RDI: 0000000000000005 [ 484.887729][T13621] RBP: 00007ffb017d5090 R08: 0000000000000000 R09: 0000000000000000 [ 484.887746][T13621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 484.887759][T13621] R13: 00007ffb03816218 R14: 00007ffb03816180 R15: 00007ffc78e4abe8 [ 484.887793][T13621] [ 485.642348][T13613] Process accounting paused [ 486.434435][T13660] sd 0:0:1:0: PR command failed: 1026 [ 486.446983][T13660] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 486.473309][T13660] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 489.061266][ T50] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 490.353891][T13751] netlink: ct family unspecified [ 490.851805][T13754] random: crng reseeded on system resumption [ 491.335721][T13764] FAULT_INJECTION: forcing a failure. [ 491.335721][T13764] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 491.349695][T13764] CPU: 1 UID: 0 PID: 13764 Comm: syz.1.1586 Tainted: G L syzkaller #0 PREEMPT(full) [ 491.349740][T13764] Tainted: [L]=SOFTLOCKUP [ 491.349750][T13764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 491.349767][T13764] Call Trace: [ 491.349776][T13764] [ 491.349787][T13764] dump_stack_lvl+0x100/0x190 [ 491.349822][T13764] should_fail_ex.cold+0x5/0xa [ 491.349858][T13764] _copy_from_user+0x2e/0xd0 [ 491.349898][T13764] snd_rawmidi_kernel_write1+0x390/0x7c0 [ 491.349955][T13764] snd_rawmidi_write+0x2dc/0xc60 [ 491.350005][T13764] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 491.350049][T13764] ? __pfx_default_wake_function+0x10/0x10 [ 491.350089][T13764] ? bpf_lsm_file_permission+0x9/0x10 [ 491.350116][T13764] ? security_file_permission+0x76/0x210 [ 491.350154][T13764] ? rw_verify_area+0xce/0x6d0 [ 491.350187][T13764] vfs_write+0x2aa/0x1070 [ 491.350220][T13764] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 491.350264][T13764] ? __pfx_vfs_write+0x10/0x10 [ 491.350293][T13764] ? find_held_lock+0x2b/0x80 [ 491.350326][T13764] ? __fget_files+0x215/0x3d0 [ 491.350358][T13764] ? __fget_files+0x215/0x3d0 [ 491.350396][T13764] ? __fget_files+0x21f/0x3d0 [ 491.350438][T13764] ksys_write+0x1f8/0x250 [ 491.350469][T13764] ? __pfx_ksys_write+0x10/0x10 [ 491.350510][T13764] ? rcu_is_watching+0x12/0xc0 [ 491.350551][T13764] do_syscall_64+0x115/0x840 [ 491.350588][T13764] ? clear_bhb_loop+0x40/0x90 [ 491.350623][T13764] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 491.350652][T13764] RIP: 0033:0x7fc75eb9ce59 [ 491.350675][T13764] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 491.350702][T13764] RSP: 002b:00007fc75fafb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 491.350729][T13764] RAX: ffffffffffffffda RBX: 00007fc75ee16090 RCX: 00007fc75eb9ce59 [ 491.350748][T13764] RDX: 000000100000a3d9 RSI: 0000200000000400 RDI: 0000000000000008 [ 491.350767][T13764] RBP: 00007fc75fafb090 R08: 0000000000000000 R09: 0000000000000000 [ 491.350784][T13764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 491.350801][T13764] R13: 00007fc75ee16128 R14: 00007fc75ee16090 R15: 00007ffc1eaff858 [ 491.350840][T13764] [ 492.064744][T13777] usb usb15: usbfs: process 13777 (syz.1.1590) did not claim interface 0 before use [ 493.257970][T13805] FAULT_INJECTION: forcing a failure. [ 493.257970][T13805] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 493.349107][T13805] CPU: 1 UID: 0 PID: 13805 Comm: syz.3.1597 Tainted: G L syzkaller #0 PREEMPT(full) [ 493.349150][T13805] Tainted: [L]=SOFTLOCKUP [ 493.349160][T13805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 493.349176][T13805] Call Trace: [ 493.349185][T13805] [ 493.349196][T13805] dump_stack_lvl+0x100/0x190 [ 493.349232][T13805] should_fail_ex.cold+0x5/0xa [ 493.349264][T13805] _copy_from_user+0x2e/0xd0 [ 493.349301][T13805] copy_msghdr_from_user+0x9f/0x4f0 [ 493.349346][T13805] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 493.349386][T13805] ? rcu_is_watching+0x12/0xc0 [ 493.349414][T13805] ? ___sys_recvmsg+0x177/0x1a0 [ 493.349448][T13805] ? kfree+0x1dd/0x6c0 [ 493.349490][T13805] ___sys_recvmsg+0xdd/0x1a0 [ 493.349525][T13805] ? __pfx____sys_recvmsg+0x10/0x10 [ 493.349581][T13805] ? __pfx___might_resched+0x10/0x10 [ 493.349615][T13805] do_recvmmsg+0x301/0x760 [ 493.349657][T13805] ? __pfx_do_recvmmsg+0x10/0x10 [ 493.349687][T13805] ? ksys_write+0x190/0x250 [ 493.349720][T13805] ? __mutex_unlock_slowpath+0x15d/0x8a0 [ 493.349757][T13805] ? kernel_write+0x683/0x6c0 [ 493.349797][T13805] ? __fget_files+0x21f/0x3d0 [ 493.349838][T13805] __x64_sys_recvmmsg+0x22a/0x280 [ 493.349872][T13805] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 493.349906][T13805] ? rcu_is_watching+0x12/0xc0 [ 493.349942][T13805] do_syscall_64+0x115/0x840 [ 493.349980][T13805] ? clear_bhb_loop+0x40/0x90 [ 493.350014][T13805] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 493.350043][T13805] RIP: 0033:0x7ffb0359ce59 [ 493.350066][T13805] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 493.350093][T13805] RSP: 002b:00007ffb04375028 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 493.350119][T13805] RAX: ffffffffffffffda RBX: 00007ffb03815fa0 RCX: 00007ffb0359ce59 [ 493.350137][T13805] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 493.350154][T13805] RBP: 00007ffb04375090 R08: 0000000000000000 R09: 0000000000000000 [ 493.350171][T13805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 493.350188][T13805] R13: 00007ffb03816038 R14: 00007ffb03815fa0 R15: 00007ffc78e4abe8 [ 493.350226][T13805] [ 495.923471][T13849] kexec: Could not allocate control_code_buffer [ 495.981881][T13877] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1611'. [ 496.212242][T13882] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1612'. [ 496.510905][T13890] FAULT_INJECTION: forcing a failure. [ 496.510905][T13890] name failslab, interval 1, probability 0, space 0, times 0 [ 496.550638][T13890] CPU: 0 UID: 0 PID: 13890 Comm: syz.0.1615 Tainted: G L syzkaller #0 PREEMPT(full) [ 496.550688][T13890] Tainted: [L]=SOFTLOCKUP [ 496.550700][T13890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 496.550719][T13890] Call Trace: [ 496.550730][T13890] [ 496.550742][T13890] dump_stack_lvl+0x100/0x190 [ 496.550779][T13890] should_fail_ex.cold+0x5/0xa [ 496.550818][T13890] should_failslab+0xc2/0x120 [ 496.550854][T13890] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 496.550887][T13890] ? snd_pcm_hw_rule_add+0x3b3/0x510 [ 496.550923][T13890] ? krealloc_node_align_noprof+0x27e/0x3e0 [ 496.550949][T13890] ? kfree+0x1dd/0x6c0 [ 496.550996][T13890] krealloc_node_align_noprof+0x1f9/0x3e0 [ 496.551035][T13890] snd_pcm_hw_rule_add+0x3b3/0x510 [ 496.551074][T13890] ? __pfx_snd_pcm_hw_rule_muldivk+0x10/0x10 [ 496.551114][T13890] ? __pfx_snd_pcm_hw_rule_add+0x10/0x10 [ 496.551150][T13890] ? __pfx_snd_pcm_hw_rule_add+0x10/0x10 [ 496.551199][T13890] ? mutex_init_lockdep+0xf1/0x120 [ 496.551231][T13890] ? snd_pcm_attach_substream+0x287/0xd20 [ 496.551271][T13890] snd_pcm_open_substream+0x942/0x1850 [ 496.551320][T13890] ? __pfx_snd_pcm_open_substream+0x10/0x10 [ 496.551365][T13890] ? rcu_is_watching+0x12/0xc0 [ 496.551406][T13890] snd_pcm_open+0x2a3/0x710 [ 496.551438][T13890] ? __pfx_snd_pcm_open+0x10/0x10 [ 496.551490][T13890] ? __pfx_default_wake_function+0x10/0x10 [ 496.551539][T13890] ? __pfx_snd_pcm_playback_open+0x10/0x10 [ 496.551569][T13890] snd_pcm_playback_open+0x86/0xe0 [ 496.551600][T13890] snd_open+0x201/0x450 [ 496.551638][T13890] ? __pfx_snd_open+0x10/0x10 [ 496.551676][T13890] chrdev_open+0x234/0x6a0 [ 496.551715][T13890] ? __pfx_chrdev_open+0x10/0x10 [ 496.551754][T13890] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 496.551799][T13890] do_dentry_open+0x6ab/0x14d0 [ 496.551832][T13890] ? __pfx_chrdev_open+0x10/0x10 [ 496.551877][T13890] vfs_open+0x82/0x3f0 [ 496.551923][T13890] path_openat+0x208c/0x31a0 [ 496.551974][T13890] ? __pfx_path_openat+0x10/0x10 [ 496.552025][T13890] do_file_open+0x20e/0x430 [ 496.552065][T13890] ? __pfx_do_file_open+0x10/0x10 [ 496.552131][T13890] ? alloc_fd+0x476/0x790 [ 496.552179][T13890] ? do_getname+0x191/0x390 [ 496.552227][T13890] do_sys_openat2+0x10d/0x1e0 [ 496.552274][T13890] ? __pfx_do_sys_openat2+0x10/0x10 [ 496.552323][T13890] ? __fget_files+0x21f/0x3d0 [ 496.552368][T13890] __x64_sys_openat+0x12d/0x210 [ 496.552414][T13890] ? __pfx___x64_sys_openat+0x10/0x10 [ 496.552467][T13890] ? rcu_is_watching+0x12/0xc0 [ 496.552507][T13890] do_syscall_64+0x115/0x840 [ 496.552547][T13890] ? clear_bhb_loop+0x40/0x90 [ 496.552586][T13890] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 496.552617][T13890] RIP: 0033:0x7f0a2579ce59 [ 496.552643][T13890] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 496.552672][T13890] RSP: 002b:00007f0a26708028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 496.552701][T13890] RAX: ffffffffffffffda RBX: 00007f0a25a15fa0 RCX: 00007f0a2579ce59 [ 496.552722][T13890] RDX: 0000000000002100 RSI: 0000200000004ec0 RDI: ffffffffffffff9c [ 496.552742][T13890] RBP: 00007f0a25832d6f R08: 0000000000000000 R09: 0000000000000000 [ 496.552761][T13890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 496.552779][T13890] R13: 00007f0a25a16038 R14: 00007f0a25a15fa0 R15: 00007ffffce3fc78 [ 496.552819][T13890] [ 497.774074][T13915] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 497.818358][T13915] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 497.860735][T13915] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 497.891532][T13915] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 497.921010][T13915] page dumped because: unmovable page [ 497.944797][T13915] page_owner info is not present (never set?) [ 498.752371][T13930] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1622'. [ 499.065531][ T29] audit: type=1800 audit(1780420304.296:15): pid=13940 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1623" name="dbroot" dev="configfs" ino=46222 res=0 errno=0 [ 500.466783][ T0] NOHZ tick-stop error: local softirq work is pending, handler #280!!! [ 501.055990][T13971] FAULT_INJECTION: forcing a failure. [ 501.055990][T13971] name failslab, interval 1, probability 0, space 0, times 0 [ 501.070444][T13971] CPU: 0 UID: 0 PID: 13971 Comm: syz.2.1628 Tainted: G L syzkaller #0 PREEMPT(full) [ 501.070484][T13971] Tainted: [L]=SOFTLOCKUP [ 501.070493][T13971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 501.070510][T13971] Call Trace: [ 501.070519][T13971] [ 501.070528][T13971] dump_stack_lvl+0x100/0x190 [ 501.070560][T13971] should_fail_ex.cold+0x5/0xa [ 501.070595][T13971] should_failslab+0xc2/0x120 [ 501.070625][T13971] __kmalloc_cache_noprof+0x7a/0x6f0 [ 501.070661][T13971] ? sctp_auth_shkey_create+0x9e/0x210 [ 501.070687][T13971] ? __genradix_ptr_alloc+0x347/0x610 [ 501.070731][T13971] sctp_auth_shkey_create+0x9e/0x210 [ 501.070763][T13971] sctp_auth_asoc_copy_shkeys+0x1f2/0x360 [ 501.070799][T13971] sctp_association_new+0x19ab/0x2990 [ 501.070839][T13971] sctp_connect_new_asoc+0x1a8/0x770 [ 501.070883][T13971] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 501.070916][T13971] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 501.070946][T13971] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 501.070987][T13971] __sctp_connect+0x3e7/0xc70 [ 501.071028][T13971] ? __pfx___sctp_connect+0x10/0x10 [ 501.071063][T13971] ? __pfx_sctp_inet_connect+0x10/0x10 [ 501.071097][T13971] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 501.071137][T13971] ? __pfx_sctp_inet_connect+0x10/0x10 [ 501.071169][T13971] sctp_inet_connect+0x15f/0x220 [ 501.071204][T13971] __sys_connect_file+0x141/0x1a0 [ 501.071247][T13971] __sys_connect+0x141/0x170 [ 501.071285][T13971] ? __pfx___sys_connect+0x10/0x10 [ 501.071321][T13971] ? __fget_files+0x21f/0x3d0 [ 501.071364][T13971] ? __pfx_ksys_write+0x10/0x10 [ 501.071401][T13971] __x64_sys_connect+0x72/0xb0 [ 501.071438][T13971] ? lockdep_hardirqs_on+0x78/0x100 [ 501.071474][T13971] do_syscall_64+0x115/0x840 [ 501.071509][T13971] ? clear_bhb_loop+0x40/0x90 [ 501.071542][T13971] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 501.071570][T13971] RIP: 0033:0x7f1d4ed9ce59 [ 501.071592][T13971] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 501.071616][T13971] RSP: 002b:00007f1d4cfd5028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 501.071642][T13971] RAX: ffffffffffffffda RBX: 00007f1d4f016360 RCX: 00007f1d4ed9ce59 [ 501.071660][T13971] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 501.071678][T13971] RBP: 00007f1d4cfd5090 R08: 0000000000000000 R09: 0000000000000000 [ 501.071694][T13971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 501.071710][T13971] R13: 00007f1d4f0163f8 R14: 00007f1d4f016360 R15: 00007fffe6591678 [ 501.071745][T13971] [ 501.672842][T13979] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 501.713731][T13979] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 501.756250][T13979] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 501.821100][T13979] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 501.902885][T13979] page dumped because: unmovable page [ 501.944373][ T1316] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.950873][ T1316] ieee802154 phy1 wpan1: encryption failed: -22 [ 501.963395][T13979] page_owner info is not present (never set?) [ 503.213969][T14014] FAULT_INJECTION: forcing a failure. [ 503.213969][T14014] name failslab, interval 1, probability 0, space 0, times 0 [ 503.252543][T14014] CPU: 1 UID: 0 PID: 14014 Comm: syz.2.1638 Tainted: G L syzkaller #0 PREEMPT(full) [ 503.252593][T14014] Tainted: [L]=SOFTLOCKUP [ 503.252604][T14014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 503.252623][T14014] Call Trace: [ 503.252634][T14014] [ 503.252646][T14014] dump_stack_lvl+0x100/0x190 [ 503.252692][T14014] should_fail_ex.cold+0x5/0xa [ 503.252732][T14014] should_failslab+0xc2/0x120 [ 503.252769][T14014] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 503.252816][T14014] ? sock_alloc_inode+0x26/0x290 [ 503.252857][T14014] ? __pfx_sock_alloc_inode+0x10/0x10 [ 503.252896][T14014] sock_alloc_inode+0x26/0x290 [ 503.252932][T14014] ? __pfx_sock_alloc_inode+0x10/0x10 [ 503.252966][T14014] alloc_inode+0x68/0x250 [ 503.253010][T14014] sock_alloc+0x44/0x280 [ 503.253040][T14014] ? security_socket_create+0x7f/0x250 [ 503.253074][T14014] __sock_create+0xc2/0x860 [ 503.253119][T14014] __sys_socketpair+0x1e4/0x5b0 [ 503.253163][T14014] ? __pfx___sys_socketpair+0x10/0x10 [ 503.253205][T14014] ? xfd_validate_state+0x129/0x190 [ 503.253245][T14014] __x64_sys_socketpair+0x96/0x100 [ 503.253287][T14014] ? lockdep_hardirqs_on+0x78/0x100 [ 503.253328][T14014] do_syscall_64+0x115/0x840 [ 503.253371][T14014] ? clear_bhb_loop+0x40/0x90 [ 503.253405][T14014] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 503.253435][T14014] RIP: 0033:0x7f1d4ed9ce59 [ 503.253458][T14014] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 503.253488][T14014] RSP: 002b:00007f1d4fbc4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 503.253516][T14014] RAX: ffffffffffffffda RBX: 00007f1d4f015fa0 RCX: 00007f1d4ed9ce59 [ 503.253535][T14014] RDX: 8000000000000000 RSI: 0000000000000002 RDI: 0000000000000001 [ 503.253551][T14014] RBP: 00007f1d4ee32d6f R08: 0000000000000000 R09: 0000000000000000 [ 503.253569][T14014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 503.253585][T14014] R13: 00007f1d4f016038 R14: 00007f1d4f015fa0 R15: 00007fffe6591678 [ 503.253620][T14014] [ 503.347277][T14014] socket: no more sockets [ 506.544863][ T50] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 506.989398][T14056] Process accounting resumed [ 507.179890][T14074] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1650'. [ 507.727505][T14094] NFSD: Failed to start, no listeners configured. [ 508.056746][ T29] audit: type=1800 audit(1780420313.286:16): pid=14099 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1656" name="dbroot" dev="configfs" ino=47468 res=0 errno=0 [ 508.235222][T14100] FAULT_INJECTION: forcing a failure. [ 508.235222][T14100] name failslab, interval 1, probability 0, space 0, times 0 [ 508.253062][T14100] CPU: 0 UID: 0 PID: 14100 Comm: syz.2.1655 Tainted: G L syzkaller #0 PREEMPT(full) [ 508.253121][T14100] Tainted: [L]=SOFTLOCKUP [ 508.253133][T14100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 508.253152][T14100] Call Trace: [ 508.253162][T14100] [ 508.253173][T14100] dump_stack_lvl+0x100/0x190 [ 508.253209][T14100] should_fail_ex.cold+0x5/0xa [ 508.253247][T14100] should_failslab+0xc2/0x120 [ 508.253284][T14100] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 508.253332][T14100] ? security_file_alloc+0x34/0x2c0 [ 508.253370][T14100] ? trace_kmem_cache_alloc+0xd5/0x100 [ 508.253413][T14100] security_file_alloc+0x34/0x2c0 [ 508.253453][T14100] init_file+0x95/0x480 [ 508.253495][T14100] alloc_empty_file+0x79/0x1c0 [ 508.253539][T14100] alloc_file_pseudo+0x13a/0x230 [ 508.253585][T14100] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 508.253630][T14100] ? alloc_fd+0x476/0x790 [ 508.253672][T14100] sock_alloc_file+0x50/0x210 [ 508.253707][T14100] __sys_socket+0x1c0/0x260 [ 508.253754][T14100] ? __pfx___sys_socket+0x10/0x10 [ 508.253807][T14100] __x64_sys_socket+0x72/0xb0 [ 508.253848][T14100] ? lockdep_hardirqs_on+0x78/0x100 [ 508.253896][T14100] do_syscall_64+0x115/0x840 [ 508.253945][T14100] ? clear_bhb_loop+0x40/0x90 [ 508.253985][T14100] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 508.254016][T14100] RIP: 0033:0x7f1d4ed9ce59 [ 508.254042][T14100] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 508.254070][T14100] RSP: 002b:00007f1d4fba3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 508.254104][T14100] RAX: ffffffffffffffda RBX: 00007f1d4f016090 RCX: 00007f1d4ed9ce59 [ 508.254127][T14100] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 508.254143][T14100] RBP: 00007f1d4ee32d6f R08: 0000000000000000 R09: 0000000000000000 [ 508.254159][T14100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 508.254174][T14100] R13: 00007f1d4f016128 R14: 00007f1d4f016090 R15: 00007fffe6591678 [ 508.254208][T14100] [ 509.005976][T14123] sctp: [Deprecated]: syz.0.1661 (pid 14123) Use of struct sctp_assoc_value in delayed_ack socket option. [ 509.005976][T14123] Use struct sctp_sack_info instead [ 509.181935][ T29] audit: type=1800 audit(1780420314.426:17): pid=14127 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1662" name="dbroot" dev="configfs" ino=46893 res=0 errno=0 [ 509.475473][T14117] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 509.643004][ T29] audit: type=1804 audit(1780420314.886:18): pid=14143 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1665" name="/newroot/sys/kernel/debug/tracing/set_event" dev="tracefs" ino=27 res=1 errno=0 [ 509.701259][T14143] FAULT_INJECTION: forcing a failure. [ 509.701259][T14143] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 509.774604][T14143] CPU: 0 UID: 0 PID: 14143 Comm: syz.0.1665 Tainted: G L syzkaller #0 PREEMPT(full) [ 509.774649][T14143] Tainted: [L]=SOFTLOCKUP [ 509.774660][T14143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 509.774677][T14143] Call Trace: [ 509.774687][T14143] [ 509.774698][T14143] dump_stack_lvl+0x100/0x190 [ 509.774735][T14143] should_fail_ex.cold+0x5/0xa [ 509.774771][T14143] _copy_from_user+0x2e/0xd0 [ 509.774813][T14143] kstrtouint_from_user+0xd6/0x1d0 [ 509.774843][T14143] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 509.774873][T14143] ? __lock_acquire+0x4a5/0x2630 [ 509.774918][T14143] ? eventfs_set_attrs+0x360/0x4d0 [ 509.774961][T14143] proc_fail_nth_write+0x83/0x220 [ 509.775012][T14143] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 509.775067][T14143] vfs_write+0x2aa/0x1070 [ 509.775101][T14143] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 509.775148][T14143] ? __pfx_vfs_write+0x10/0x10 [ 509.775182][T14143] ? __pfx_do_sys_openat2+0x10/0x10 [ 509.775241][T14143] ksys_write+0x12a/0x250 [ 509.775272][T14143] ? __pfx_ksys_write+0x10/0x10 [ 509.775307][T14143] ? rcu_is_watching+0x12/0xc0 [ 509.775345][T14143] do_syscall_64+0x115/0x840 [ 509.775383][T14143] ? clear_bhb_loop+0x40/0x90 [ 509.775418][T14143] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 509.775448][T14143] RIP: 0033:0x7f0a2575d68e [ 509.775472][T14143] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 509.775498][T14143] RSP: 002b:00007f0a26707fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 509.775525][T14143] RAX: ffffffffffffffda RBX: 00007f0a267086c0 RCX: 00007f0a2575d68e [ 509.775545][T14143] RDX: 0000000000000001 RSI: 00007f0a267080a0 RDI: 0000000000000002 [ 509.775563][T14143] RBP: 00007f0a26708090 R08: 0000000000000000 R09: 0000000000000000 [ 509.775585][T14143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 509.775602][T14143] R13: 00007f0a25a16038 R14: 00007f0a25a15fa0 R15: 00007ffffce3fc78 [ 509.775641][T14143] [ 510.081404][T14146] sctp: [Deprecated]: syz.3.1667 (pid 14146) Use of struct sctp_assoc_value in delayed_ack socket option. [ 510.081404][T14146] Use struct sctp_sack_info instead [ 512.746123][T14191] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1674'. [ 512.834495][T14194] FAULT_INJECTION: forcing a failure. [ 512.834495][T14194] name failslab, interval 1, probability 0, space 0, times 0 [ 512.878912][T14194] CPU: 0 UID: 0 PID: 14194 Comm: syz.0.1675 Tainted: G L syzkaller #0 PREEMPT(full) [ 512.878957][T14194] Tainted: [L]=SOFTLOCKUP [ 512.878967][T14194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 512.878982][T14194] Call Trace: [ 512.878991][T14194] [ 512.879001][T14194] dump_stack_lvl+0x100/0x190 [ 512.879047][T14194] should_fail_ex.cold+0x5/0xa [ 512.879081][T14194] should_failslab+0xc2/0x120 [ 512.879115][T14194] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 512.879157][T14194] ? __alloc_skb+0x140/0x710 [ 512.879182][T14194] ? __alloc_skb+0x5b7/0x710 [ 512.879213][T14194] __alloc_skb+0x140/0x710 [ 512.879237][T14194] ? __alloc_skb+0x5b7/0x710 [ 512.879261][T14194] ? __pfx___alloc_skb+0x10/0x10 [ 512.879297][T14194] netlink_alloc_large_skb+0x69/0x150 [ 512.879338][T14194] netlink_sendmsg+0x680/0xda0 [ 512.879380][T14194] ? __pfx_netlink_sendmsg+0x10/0x10 [ 512.879415][T14194] ? __import_iovec+0x1d2/0x640 [ 512.879457][T14194] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 512.879493][T14194] ____sys_sendmsg+0x9e1/0xb70 [ 512.879528][T14194] ? __pfx_netlink_sendmsg+0x10/0x10 [ 512.879567][T14194] ? __pfx_____sys_sendmsg+0x10/0x10 [ 512.879609][T14194] ? __pfx__kstrtoull+0x10/0x10 [ 512.879645][T14194] ___sys_sendmsg+0x190/0x1e0 [ 512.879685][T14194] ? __pfx____sys_sendmsg+0x10/0x10 [ 512.879740][T14194] ? find_held_lock+0x2b/0x80 [ 512.879795][T14194] __sys_sendmmsg+0x205/0x430 [ 512.879829][T14194] ? __pfx___sys_sendmmsg+0x10/0x10 [ 512.879871][T14194] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 512.879928][T14194] ? fput+0x79/0x100 [ 512.879965][T14194] ? ksys_write+0x1ac/0x250 [ 512.879997][T14194] ? __pfx_ksys_write+0x10/0x10 [ 512.880041][T14194] __x64_sys_sendmmsg+0x9c/0x100 [ 512.880071][T14194] ? lockdep_hardirqs_on+0x78/0x100 [ 512.880109][T14194] do_syscall_64+0x115/0x840 [ 512.880145][T14194] ? clear_bhb_loop+0x40/0x90 [ 512.880180][T14194] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 512.880209][T14194] RIP: 0033:0x7f0a2579ce59 [ 512.880234][T14194] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 512.880261][T14194] RSP: 002b:00007f0a26708028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 512.880288][T14194] RAX: ffffffffffffffda RBX: 00007f0a25a15fa0 RCX: 00007f0a2579ce59 [ 512.880307][T14194] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 512.880325][T14194] RBP: 00007f0a26708090 R08: 0000000000000000 R09: 0000000000000000 [ 512.880342][T14194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 512.880359][T14194] R13: 00007f0a25a16038 R14: 00007f0a25a15fa0 R15: 00007ffffce3fc78 [ 512.880396][T14194] [ 513.715860][T14203] FAULT_INJECTION: forcing a failure. [ 513.715860][T14203] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 513.757098][T14203] CPU: 0 UID: 0 PID: 14203 Comm: syz.1.1677 Tainted: G L syzkaller #0 PREEMPT(full) [ 513.757149][T14203] Tainted: [L]=SOFTLOCKUP [ 513.757161][T14203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 513.757180][T14203] Call Trace: [ 513.757192][T14203] [ 513.757204][T14203] dump_stack_lvl+0x100/0x190 [ 513.757241][T14203] should_fail_ex.cold+0x5/0xa [ 513.757281][T14203] _copy_from_user+0x2e/0xd0 [ 513.757325][T14203] copy_mnt_id_req+0x108/0x350 [ 513.757377][T14203] __do_sys_listmount+0x184/0xee0 [ 513.757410][T14203] ? __pfx_do_futex+0x10/0x10 [ 513.757446][T14203] ? fput+0x79/0x100 [ 513.757487][T14203] ? __pfx___do_sys_listmount+0x10/0x10 [ 513.757538][T14203] ? rcu_is_watching+0x12/0xc0 [ 513.757578][T14203] do_syscall_64+0x115/0x840 [ 513.757619][T14203] ? clear_bhb_loop+0x40/0x90 [ 513.757658][T14203] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 513.757701][T14203] RIP: 0033:0x7fc75eb9ce59 [ 513.757726][T14203] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 513.757756][T14203] RSP: 002b:00007fc75fb1c028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 513.757787][T14203] RAX: ffffffffffffffda RBX: 00007fc75ee15fa0 RCX: 00007fc75eb9ce59 [ 513.757808][T14203] RDX: 00000000000bc23c RSI: 0000000000000000 RDI: 0000200000000100 [ 513.757826][T14203] RBP: 00007fc75ec32d6f R08: 0000000000000000 R09: 0000000000000000 [ 513.757844][T14203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 513.757862][T14203] R13: 00007fc75ee16038 R14: 00007fc75ee15fa0 R15: 00007ffc1eaff858 [ 513.757901][T14203] [ 514.626176][T14223] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1681'. [ 515.165650][T14232] NFSD: Failed to start, no listeners configured. [ 515.661434][T14239] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 515.703079][T14239] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 515.772263][T14239] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 515.843182][T14239] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 515.876910][T14239] page dumped because: unmovable page [ 515.901797][T14239] page_owner info is not present (never set?) [ 516.262851][T14218] Process accounting resumed [ 516.340480][T14236] Process accounting resumed [ 517.438165][T14270] FAULT_INJECTION: forcing a failure. [ 517.438165][T14270] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 517.551357][T14270] CPU: 0 UID: 0 PID: 14270 Comm: syz.3.1690 Tainted: G L syzkaller #0 PREEMPT(full) [ 517.551403][T14270] Tainted: [L]=SOFTLOCKUP [ 517.551413][T14270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 517.551430][T14270] Call Trace: [ 517.551440][T14270] [ 517.551450][T14270] dump_stack_lvl+0x100/0x190 [ 517.551485][T14270] should_fail_ex.cold+0x5/0xa [ 517.551530][T14270] strncpy_from_user+0x3b/0x2d0 [ 517.551574][T14270] do_getname+0x78/0x390 [ 517.551616][T14270] user_path_at+0x26/0x60 [ 517.551648][T14270] __x64_sys_mount+0x1fb/0x310 [ 517.551689][T14270] ? __pfx___x64_sys_mount+0x10/0x10 [ 517.551730][T14270] ? rcu_is_watching+0x12/0xc0 [ 517.551766][T14270] do_syscall_64+0x115/0x840 [ 517.551803][T14270] ? clear_bhb_loop+0x40/0x90 [ 517.551837][T14270] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 517.551864][T14270] RIP: 0033:0x7ffb0359ce59 [ 517.551888][T14270] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 517.551914][T14270] RSP: 002b:00007ffb017b4028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 517.551941][T14270] RAX: ffffffffffffffda RBX: 00007ffb03816270 RCX: 00007ffb0359ce59 [ 517.551960][T14270] RDX: 0000200000000180 RSI: 00002000000000c0 RDI: 0000000000000000 [ 517.551977][T14270] RBP: 00007ffb017b4090 R08: 0000000000000000 R09: 0000000000000000 [ 517.551994][T14270] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001 [ 517.552011][T14270] R13: 00007ffb03816308 R14: 00007ffb03816270 R15: 00007ffc78e4abe8 [ 517.552049][T14270] [ 517.994370][T14282] NFSD: Failed to start, no listeners configured. [ 519.113262][T14307] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 519.125810][T14307] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 519.155291][T14304] ovs_: entered promiscuous mode [ 519.165034][T14307] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 519.224377][T14307] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 519.302946][T14307] page dumped because: unmovable page [ 519.336802][T14307] page_owner info is not present (never set?) [ 520.191525][T14289] Process accounting resumed [ 520.445616][T14323] FAULT_INJECTION: forcing a failure. [ 520.445616][T14323] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 520.480167][T14323] CPU: 0 UID: 0 PID: 14323 Comm: syz.1.1703 Tainted: G L syzkaller #0 PREEMPT(full) [ 520.480212][T14323] Tainted: [L]=SOFTLOCKUP [ 520.480222][T14323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 520.480248][T14323] Call Trace: [ 520.480258][T14323] [ 520.480268][T14323] dump_stack_lvl+0x100/0x190 [ 520.480303][T14323] should_fail_ex.cold+0x5/0xa [ 520.480332][T14323] ? prepare_alloc_pages+0x16d/0x5f0 [ 520.480368][T14323] should_fail_alloc_page+0xeb/0x140 [ 520.480402][T14323] prepare_alloc_pages+0x1f0/0x5f0 [ 520.480440][T14323] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 520.480492][T14323] ? reacquire_held_locks+0xce/0x1e0 [ 520.480530][T14323] ? folio_lock_anon_vma_read+0x348/0xe30 [ 520.480572][T14323] ? folio_lock_anon_vma_read+0x348/0xe30 [ 520.480612][T14323] ? __up_read+0x2c1/0x6e0 [ 520.480647][T14323] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 520.480689][T14323] ? __pfx___up_read+0x10/0x10 [ 520.480715][T14323] ? rmap_walk_anon+0x561/0x870 [ 520.480786][T14323] __folio_alloc_noprof+0x13/0x260 [ 520.480830][T14323] alloc_migration_target+0x1d7/0x6d0 [ 520.480868][T14323] migrate_pages_batch+0x5dc/0x45c0 [ 520.480908][T14323] ? __pfx_alloc_migration_target+0x10/0x10 [ 520.480953][T14323] ? walk_pgd_range+0x1133/0x1dd0 [ 520.480981][T14323] ? __pfx_migrate_pages_batch+0x10/0x10 [ 520.481044][T14323] migrate_pages_sync+0x12c/0x880 [ 520.481082][T14323] ? __pfx_alloc_migration_target+0x10/0x10 [ 520.481119][T14323] ? vma_migratable+0x380/0x450 [ 520.481155][T14323] ? __pfx_migrate_pages_sync+0x10/0x10 [ 520.481188][T14323] ? __pfx_queue_pages_test_walk+0x10/0x10 [ 520.481228][T14323] ? walk_page_range_mm_unsafe+0x32c/0xa10 [ 520.481262][T14323] migrate_pages+0x1aa5/0x2880 [ 520.481302][T14323] ? __pfx_alloc_migration_target+0x10/0x10 [ 520.481345][T14323] ? __pfx_migrate_pages+0x10/0x10 [ 520.481380][T14323] ? queue_pages_range+0x11e/0x180 [ 520.481407][T14323] ? __up_read+0x2c1/0x6e0 [ 520.481436][T14323] ? __pfx___up_read+0x10/0x10 [ 520.481463][T14323] ? do_migrate_pages+0x451/0x740 [ 520.481495][T14323] ? do_migrate_pages+0x451/0x740 [ 520.481537][T14323] do_migrate_pages+0x488/0x740 [ 520.481582][T14323] ? __pfx_do_migrate_pages+0x10/0x10 [ 520.481649][T14323] ? rcu_is_watching+0x12/0xc0 [ 520.481682][T14323] ? cap_capable+0x10b/0x440 [ 520.481709][T14323] ? get_task_mm+0xc2/0xf0 [ 520.481743][T14323] ? security_capable+0xbd/0x260 [ 520.481776][T14323] kernel_migrate_pages+0x560/0x700 [ 520.481811][T14323] ? __pfx_kernel_migrate_pages+0x10/0x10 [ 520.481848][T14323] ? __pfx_ksys_write+0x10/0x10 [ 520.481887][T14323] __x64_sys_migrate_pages+0x96/0x100 [ 520.481922][T14323] ? lockdep_hardirqs_on+0x78/0x100 [ 520.481961][T14323] do_syscall_64+0x115/0x840 [ 520.481998][T14323] ? clear_bhb_loop+0x40/0x90 [ 520.482034][T14323] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 520.482064][T14323] RIP: 0033:0x7fc75eb9ce59 [ 520.482088][T14323] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 520.482116][T14323] RSP: 002b:00007fc75fb1c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000100 [ 520.482144][T14323] RAX: ffffffffffffffda RBX: 00007fc75ee15fa0 RCX: 00007fc75eb9ce59 [ 520.482164][T14323] RDX: 0000200000000100 RSI: 000000000000000a RDI: 0000000000000000 [ 520.482183][T14323] RBP: 00007fc75fb1c090 R08: 0000000000000000 R09: 0000000000000000 [ 520.482201][T14323] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000001 [ 520.482218][T14323] R13: 00007fc75ee16038 R14: 00007fc75ee15fa0 R15: 00007ffc1eaff858 [ 520.482256][T14323] [ 521.620275][T14334] NFSD: Failed to start, no listeners configured. [ 522.040237][ T50] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 522.099504][T14350] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 522.169699][T14350] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 522.232402][T14350] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 522.262720][T14350] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 522.293166][T14350] page dumped because: unmovable page [ 522.316997][T14350] page_owner info is not present (never set?) [ 522.433850][T14356] ovs_: entered promiscuous mode [ 525.665489][T14369] Process accounting resumed [ 525.809110][T14399] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 525.833306][T14399] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 525.858269][T14399] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 525.887478][T14399] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 525.908452][T14399] page dumped because: unmovable page [ 525.957346][T14402] FAULT_INJECTION: forcing a failure. [ 525.957346][T14402] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 525.989614][T14399] page_owner info is not present (never set?) [ 526.033795][T14402] CPU: 1 UID: 0 PID: 14402 Comm: syz.0.1722 Tainted: G L syzkaller #0 PREEMPT(full) [ 526.033844][T14402] Tainted: [L]=SOFTLOCKUP [ 526.033855][T14402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 526.033872][T14402] Call Trace: [ 526.033881][T14402] [ 526.033893][T14402] dump_stack_lvl+0x100/0x190 [ 526.033937][T14402] should_fail_ex.cold+0x5/0xa [ 526.033970][T14402] ? prepare_alloc_pages+0x16d/0x5f0 [ 526.034011][T14402] should_fail_alloc_page+0xeb/0x140 [ 526.034046][T14402] prepare_alloc_pages+0x1f0/0x5f0 [ 526.034088][T14402] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 526.034138][T14402] ? __lock_acquire+0x4a5/0x2630 [ 526.034186][T14402] ? __update_page_owner_handle+0x3c7/0x550 [ 526.034233][T14402] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 526.034286][T14402] ? __page_table_check_zero+0x333/0x410 [ 526.034335][T14402] ? vma_is_special_huge+0x23f/0x2d0 [ 526.034369][T14402] ? __pfx_vma_is_special_huge+0x10/0x10 [ 526.034404][T14402] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 526.034443][T14402] ? policy_nodemask+0xed/0x4f0 [ 526.034479][T14402] alloc_pages_mpol+0x1fb/0x540 [ 526.034515][T14402] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 526.034551][T14402] ? __pfx___thp_vma_allowable_orders+0x10/0x10 [ 526.034593][T14402] alloc_pages_noprof+0x1a/0x160 [ 526.034631][T14402] __pmd_alloc+0x3b/0x950 [ 526.034669][T14402] __handle_mm_fault+0xa9c/0x2a00 [ 526.034718][T14402] ? mt_find+0x45e/0x8e0 [ 526.034762][T14402] ? __pfx___handle_mm_fault+0x10/0x10 [ 526.034804][T14402] ? __pfx_mt_find+0x10/0x10 [ 526.034864][T14402] ? find_vma+0xbf/0x140 [ 526.034893][T14402] ? __pfx_find_vma+0x10/0x10 [ 526.034930][T14402] handle_mm_fault+0x37b/0xa30 [ 526.034969][T14402] do_user_addr_fault+0x74c/0x12f0 [ 526.035005][T14402] ? trace_page_fault_kernel+0x7a/0x200 [ 526.035038][T14402] exc_page_fault+0x6f/0xd0 [ 526.035079][T14402] asm_exc_page_fault+0x26/0x30 [ 526.035106][T14402] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 526.035137][T14402] Code: 9c 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 526.035165][T14402] RSP: 0018:ffffc9000e477d78 EFLAGS: 00050206 [ 526.035188][T14402] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000001000 [ 526.035207][T14402] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffff888036a03000 [ 526.035227][T14402] RBP: 0000000000001000 R08: 0000000000000001 R09: ffffed1006d407ff [ 526.035246][T14402] R10: ffff888036a03fff R11: 0000000000000000 R12: 0000000000000000 [ 526.035262][T14402] R13: ffff888036a03000 R14: 000000004800c000 R15: ffff888073a5f000 [ 526.035300][T14402] _copy_from_user+0x98/0xd0 [ 526.035340][T14402] kimage_load_segment+0x64d/0xde0 [ 526.035392][T14402] do_kexec_load+0x58d/0x810 [ 526.035438][T14402] ? __pfx_do_kexec_load+0x10/0x10 [ 526.035482][T14402] ? _copy_from_user+0x59/0xd0 [ 526.035524][T14402] __x64_sys_kexec_load+0x1bf/0x230 [ 526.035572][T14402] do_syscall_64+0x115/0x840 [ 526.035610][T14402] ? clear_bhb_loop+0x40/0x90 [ 526.035643][T14402] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 526.035671][T14402] RIP: 0033:0x7f0a2579ce59 [ 526.035692][T14402] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 526.035719][T14402] RSP: 002b:00007f0a26708028 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6 [ 526.035745][T14402] RAX: ffffffffffffffda RBX: 00007f0a25a15fa0 RCX: 00007f0a2579ce59 [ 526.035762][T14402] RDX: 0000200000000040 RSI: 0000000000000002 RDI: 0000000000000005 [ 526.035779][T14402] RBP: 00007f0a25832d6f R08: 0000000000000000 R09: 0000000000000000 [ 526.035795][T14402] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 526.035812][T14402] R13: 00007f0a25a16038 R14: 00007f0a25a15fa0 R15: 00007ffffce3fc78 [ 526.035861][T14402] [ 526.942055][T14418] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 526.993916][T14418] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 527.035048][T14418] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 527.053165][T14418] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 527.079794][T14418] page dumped because: unmovable page [ 527.110322][T14418] page_owner info is not present (never set?) [ 527.432094][T14423] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 527.449065][T14423] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 527.486032][T14423] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 527.538698][T14423] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 527.578500][T14423] page dumped because: unmovable page [ 527.595410][T14429] ovs_: entered promiscuous mode [ 527.596246][T14423] page_owner info is not present (never set?) [ 528.658045][T14447] FAULT_INJECTION: forcing a failure. [ 528.658045][T14447] name failslab, interval 1, probability 0, space 0, times 0 [ 528.704826][T14447] CPU: 0 UID: 0 PID: 14447 Comm: syz.1.1731 Tainted: G L syzkaller #0 PREEMPT(full) [ 528.704869][T14447] Tainted: [L]=SOFTLOCKUP [ 528.704879][T14447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 528.704894][T14447] Call Trace: [ 528.704903][T14447] [ 528.704914][T14447] dump_stack_lvl+0x100/0x190 [ 528.704948][T14447] should_fail_ex.cold+0x5/0xa [ 528.704984][T14447] should_failslab+0xc2/0x120 [ 528.705016][T14447] __kvmalloc_node_noprof+0xfa/0xa00 [ 528.705043][T14447] ? traverse.part.0.constprop.0+0x397/0x650 [ 528.705086][T14447] traverse.part.0.constprop.0+0x397/0x650 [ 528.705118][T14447] ? aa_file_perm+0x7e4/0x14d0 [ 528.705165][T14447] ? aa_file_perm+0x7e4/0x14d0 [ 528.705211][T14447] seq_read_iter+0x93f/0x1270 [ 528.705242][T14447] ? __pfx__kstrtoull+0x10/0x10 [ 528.705281][T14447] seq_read+0x33b/0x4c0 [ 528.705316][T14447] ? __pfx_seq_read+0x10/0x10 [ 528.705344][T14447] ? __pfx___might_resched+0x10/0x10 [ 528.705377][T14447] ? iovec_from_user+0xda/0x140 [ 528.705432][T14447] ? rw_verify_area+0xce/0x6d0 [ 528.705463][T14447] ? __pfx_seq_read+0x10/0x10 [ 528.705492][T14447] vfs_readv+0x5d8/0x8d0 [ 528.705532][T14447] ? __pfx_vfs_readv+0x10/0x10 [ 528.705563][T14447] ? find_held_lock+0x2b/0x80 [ 528.705620][T14447] ? __fget_files+0x21f/0x3d0 [ 528.705663][T14447] ? do_preadv+0x1ac/0x270 [ 528.705688][T14447] do_preadv+0x1ac/0x270 [ 528.705717][T14447] ? __pfx_do_preadv+0x10/0x10 [ 528.705756][T14447] ? rcu_is_watching+0x12/0xc0 [ 528.705794][T14447] do_syscall_64+0x115/0x840 [ 528.705831][T14447] ? clear_bhb_loop+0x40/0x90 [ 528.705865][T14447] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 528.705894][T14447] RIP: 0033:0x7fc75eb9ce59 [ 528.705919][T14447] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 528.705946][T14447] RSP: 002b:00007fc75fb1c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 528.705973][T14447] RAX: ffffffffffffffda RBX: 00007fc75ee15fa0 RCX: 00007fc75eb9ce59 [ 528.705992][T14447] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000006 [ 528.706009][T14447] RBP: 00007fc75fb1c090 R08: 0000000000000006 R09: 0000000000000000 [ 528.706028][T14447] R10: 000000000000e637 R11: 0000000000000246 R12: 0000000000000001 [ 528.706045][T14447] R13: 00007fc75ee16038 R14: 00007fc75ee15fa0 R15: 00007ffc1eaff858 [ 528.706085][T14447] [ 529.812488][T14473] FAULT_INJECTION: forcing a failure. [ 529.812488][T14473] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 529.863888][T14473] CPU: 0 UID: 0 PID: 14473 Comm: syz.1.1734 Tainted: G L syzkaller #0 PREEMPT(full) [ 529.863943][T14473] Tainted: [L]=SOFTLOCKUP [ 529.863954][T14473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 529.863971][T14473] Call Trace: [ 529.863982][T14473] [ 529.863995][T14473] dump_stack_lvl+0x100/0x190 [ 529.864033][T14473] should_fail_ex.cold+0x5/0xa [ 529.864063][T14473] ? prepare_alloc_pages+0x16d/0x5f0 [ 529.864100][T14473] should_fail_alloc_page+0xeb/0x140 [ 529.864137][T14473] prepare_alloc_pages+0x1f0/0x5f0 [ 529.864177][T14473] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 529.864233][T14473] ? cpa_flush+0x38d/0x960 [ 529.864270][T14473] ? __pfx_cpa_flush+0x10/0x10 [ 529.864306][T14473] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 529.864353][T14473] ? pgprot2cachemode+0x9a/0x130 [ 529.864408][T14473] ? __pfx_change_page_attr_set_clr+0x10/0x10 [ 529.864448][T14473] ? do_raw_read_unlock+0x3f/0x70 [ 529.864479][T14473] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 529.864522][T14473] ? policy_nodemask+0xed/0x4f0 [ 529.864560][T14473] alloc_pages_mpol+0x1fb/0x540 [ 529.864596][T14473] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 529.864632][T14473] ? set_memory_rox+0xbd/0x110 [ 529.864669][T14473] alloc_pages_noprof+0x1a/0x160 [ 529.864708][T14473] kimage_alloc_pages+0x72/0x380 [ 529.864750][T14473] kimage_alloc_page+0x232/0x910 [ 529.864794][T14473] kimage_add_entry+0x148/0x2e0 [ 529.864827][T14473] ? __pfx_alloc_pgt_page+0x10/0x10 [ 529.864876][T14473] kimage_load_segment+0x409/0xde0 [ 529.864926][T14473] ? __pfx_kimage_crash_copy_vmcoreinfo+0x10/0x10 [ 529.864981][T14473] do_kexec_load+0x58d/0x810 [ 529.865025][T14473] ? __pfx_do_kexec_load+0x10/0x10 [ 529.865069][T14473] ? _copy_from_user+0x59/0xd0 [ 529.865112][T14473] __x64_sys_kexec_load+0x1bf/0x230 [ 529.865157][T14473] do_syscall_64+0x115/0x840 [ 529.865195][T14473] ? clear_bhb_loop+0x40/0x90 [ 529.865230][T14473] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 529.865259][T14473] RIP: 0033:0x7fc75eb9ce59 [ 529.865283][T14473] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 529.865311][T14473] RSP: 002b:00007fc75fb1c028 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6 [ 529.865341][T14473] RAX: ffffffffffffffda RBX: 00007fc75ee15fa0 RCX: 00007fc75eb9ce59 [ 529.865359][T14473] RDX: 0000200000000040 RSI: 0000000000000002 RDI: 0000000000000005 [ 529.865375][T14473] RBP: 00007fc75ec32d6f R08: 0000000000000000 R09: 0000000000000000 [ 529.865392][T14473] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 529.865409][T14473] R13: 00007fc75ee16038 R14: 00007fc75ee15fa0 R15: 00007ffc1eaff858 [ 529.865447][T14473] [ 530.526143][T14489] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 530.563974][T14489] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 530.622805][T14489] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 530.743203][T14489] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 530.854874][T14489] page dumped because: unmovable page [ 530.906241][T14489] page_owner info is not present (never set?) [ 530.990129][T14492] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 531.047120][T14492] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 531.109545][T14492] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 531.159813][T14492] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 531.195707][T14508] kafs: addr_prefs: Invalid Command [ 531.332641][T14492] page dumped because: unmovable page [ 531.390036][T14492] page_owner info is not present (never set?) [ 531.924312][T14508] usb usb21: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 532.231680][T14528] FAULT_INJECTION: forcing a failure. [ 532.231680][T14528] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 532.266771][T14528] CPU: 0 UID: 0 PID: 14528 Comm: syz.0.1743 Tainted: G L syzkaller #0 PREEMPT(full) [ 532.266827][T14528] Tainted: [L]=SOFTLOCKUP [ 532.266837][T14528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 532.266853][T14528] Call Trace: [ 532.266866][T14528] [ 532.266877][T14528] dump_stack_lvl+0x100/0x190 [ 532.266922][T14528] should_fail_ex.cold+0x5/0xa [ 532.266957][T14528] _copy_to_user+0x32/0xd0 [ 532.266983][T14528] simple_read_from_buffer+0xcb/0x170 [ 532.267003][T14528] proc_fail_nth_read+0x1af/0x230 [ 532.267031][T14528] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 532.267061][T14528] ? rw_verify_area+0xce/0x6d0 [ 532.267086][T14528] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 532.267129][T14528] vfs_read+0x1e4/0xb30 [ 532.267160][T14528] ? __pfx_vfs_read+0x10/0x10 [ 532.267177][T14528] ? __fget_files+0x215/0x3d0 [ 532.267199][T14528] ? __fget_files+0x21f/0x3d0 [ 532.267221][T14528] ksys_read+0x12a/0x250 [ 532.267237][T14528] ? __pfx_ksys_read+0x10/0x10 [ 532.267255][T14528] ? rcu_is_watching+0x12/0xc0 [ 532.267275][T14528] do_syscall_64+0x115/0x840 [ 532.267301][T14528] ? clear_bhb_loop+0x40/0x90 [ 532.267319][T14528] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 532.267335][T14528] RIP: 0033:0x7f0a2575d68e [ 532.267348][T14528] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 532.267363][T14528] RSP: 002b:00007f0a26707fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 532.267378][T14528] RAX: ffffffffffffffda RBX: 00007f0a267086c0 RCX: 00007f0a2575d68e [ 532.267389][T14528] RDX: 000000000000000f RSI: 00007f0a267080a0 RDI: 0000000000000005 [ 532.267398][T14528] RBP: 00007f0a26708090 R08: 0000000000000000 R09: 0000000000000000 [ 532.267406][T14528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 532.267415][T14528] R13: 00007f0a25a16038 R14: 00007f0a25a15fa0 R15: 00007ffffce3fc78 [ 532.267435][T14528] [ 535.914126][T14569] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[5638] was attempted by ""[14569] [ 535.963779][T14570] FAULT_INJECTION: forcing a failure. [ 535.963779][T14570] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 535.986796][T14570] CPU: 0 UID: 0 PID: 14570 Comm: syz.2.1750 Tainted: G L syzkaller #0 PREEMPT(full) [ 535.986842][T14570] Tainted: [L]=SOFTLOCKUP [ 535.986852][T14570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 535.986869][T14570] Call Trace: [ 535.986879][T14570] [ 535.986891][T14570] dump_stack_lvl+0x100/0x190 [ 535.986926][T14570] should_fail_ex.cold+0x5/0xa [ 535.986959][T14570] ? prepare_alloc_pages+0x16d/0x5f0 [ 535.987001][T14570] should_fail_alloc_page+0xeb/0x140 [ 535.987037][T14570] prepare_alloc_pages+0x1f0/0x5f0 [ 535.987079][T14570] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 535.987130][T14570] ? __lock_acquire+0x4a5/0x2630 [ 535.987172][T14570] ? arch_stack_walk+0xa6/0xf0 [ 535.987212][T14570] ? do_raw_spin_lock+0x128/0x260 [ 535.987248][T14570] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 535.987294][T14570] ? find_held_lock+0x2b/0x80 [ 535.987334][T14570] ? __lock_acquire+0x4a5/0x2630 [ 535.987395][T14570] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 535.987438][T14570] ? policy_nodemask+0xed/0x4f0 [ 535.987474][T14570] alloc_pages_mpol+0x1fb/0x540 [ 535.987518][T14570] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 535.987553][T14570] ? _raw_spin_unlock+0x28/0x50 [ 535.987589][T14570] ? __free_frozen_pages+0x5a5/0x10a0 [ 535.987635][T14570] alloc_pages_noprof+0x1a/0x160 [ 535.987673][T14570] kimage_alloc_pages+0x72/0x380 [ 535.987717][T14570] kimage_alloc_control_pages+0x157/0xa20 [ 535.987765][T14570] ? __pfx_kimage_alloc_control_pages+0x10/0x10 [ 535.987802][T14570] ? kimage_alloc_control_pages+0x3f7/0xa20 [ 535.987843][T14570] ? ident_pmd_init+0x12c/0x170 [ 535.987887][T14570] ? __pfx_alloc_pgt_page+0x10/0x10 [ 535.987930][T14570] alloc_pgt_page+0xc/0xa0 [ 535.987974][T14570] ident_pud_init+0x203/0x3d0 [ 535.988028][T14570] ident_p4d_init+0x247/0x330 [ 535.988080][T14570] kernel_ident_mapping_init+0x334/0x4c0 [ 535.988119][T14570] machine_kexec_prepare+0x463/0x12d0 [ 535.988174][T14570] ? __pfx_machine_kexec_prepare+0x10/0x10 [ 535.988244][T14570] ? __pfx_alloc_pgt_page+0x10/0x10 [ 535.988298][T14570] ? __pfx_kimage_alloc_control_pages+0x10/0x10 [ 535.988348][T14570] do_kexec_load+0x32c/0x810 [ 535.988398][T14570] ? __pfx_do_kexec_load+0x10/0x10 [ 535.988442][T14570] ? _copy_from_user+0x59/0xd0 [ 535.988482][T14570] __x64_sys_kexec_load+0x1bf/0x230 [ 535.988535][T14570] do_syscall_64+0x115/0x840 [ 535.988570][T14570] ? clear_bhb_loop+0x40/0x90 [ 535.988603][T14570] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 535.988632][T14570] RIP: 0033:0x7f1d4ed9ce59 [ 535.988656][T14570] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 535.988685][T14570] RSP: 002b:00007f1d4fbc4028 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6 [ 535.988724][T14570] RAX: ffffffffffffffda RBX: 00007f1d4f015fa0 RCX: 00007f1d4ed9ce59 [ 535.988744][T14570] RDX: 0000200000000040 RSI: 0000000000000002 RDI: 0000000000000005 [ 535.988763][T14570] RBP: 00007f1d4ee32d6f R08: 0000000000000000 R09: 0000000000000000 [ 535.988782][T14570] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 535.988799][T14570] R13: 00007f1d4f016038 R14: 00007f1d4f015fa0 R15: 00007fffe6591678 [ 535.988837][T14570] [ 537.033390][T14582] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 537.064253][T14582] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 537.130887][T14582] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 537.190398][T14582] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 537.227894][T14582] page dumped because: unmovable page [ 537.253734][T14582] page_owner info is not present (never set?) [ 537.578217][T14570] Process accounting paused [ 538.121346][T14602] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 538.207517][T14602] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 538.221611][T14602] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 538.253436][T14602] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 538.292784][T14602] page dumped because: unmovable page [ 538.309118][T14602] page_owner info is not present (never set?) [ 538.707339][T14611] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1761'. [ 539.167715][T14624] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1763'. [ 539.206087][T14624] netlink: 'syz.3.1763': attribute type 12 has an invalid length. [ 540.099776][T14643] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 540.114529][T14643] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 540.138286][T14643] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 540.161933][T14643] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 540.237686][T14643] page dumped because: unmovable page [ 540.289318][T14643] page_owner info is not present (never set?) [ 541.113423][T14668] FAULT_INJECTION: forcing a failure. [ 541.113423][T14668] name failslab, interval 1, probability 0, space 0, times 0 [ 541.145128][T14668] CPU: 0 UID: 0 PID: 14668 Comm: syz.1.1771 Tainted: G L syzkaller #0 PREEMPT(full) [ 541.145170][T14668] Tainted: [L]=SOFTLOCKUP [ 541.145181][T14668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 541.145207][T14668] Call Trace: [ 541.145216][T14668] [ 541.145226][T14668] dump_stack_lvl+0x100/0x190 [ 541.145261][T14668] should_fail_ex.cold+0x5/0xa [ 541.145297][T14668] should_failslab+0xc2/0x120 [ 541.145330][T14668] __kvmalloc_node_noprof+0xfa/0xa00 [ 541.145358][T14668] ? file_tty_write.isra.0+0x64e/0x890 [ 541.145405][T14668] file_tty_write.isra.0+0x64e/0x890 [ 541.145450][T14668] iter_file_splice_write+0x830/0x10a0 [ 541.145501][T14668] ? copy_splice_read+0x739/0xb90 [ 541.145532][T14668] ? __pfx_iter_file_splice_write+0x10/0x10 [ 541.145573][T14668] ? __pfx_copy_splice_read+0x10/0x10 [ 541.145611][T14668] ? look_up_lock_class+0x55/0x120 [ 541.145666][T14668] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 541.145699][T14668] ? __pfx_iter_file_splice_write+0x10/0x10 [ 541.145738][T14668] direct_splice_actor+0x192/0x6c0 [ 541.145793][T14668] splice_direct_to_actor+0x345/0xa30 [ 541.145832][T14668] ? __pfx_direct_splice_actor+0x10/0x10 [ 541.145875][T14668] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 541.145922][T14668] do_splice_direct+0x174/0x240 [ 541.145958][T14668] ? __pfx_do_splice_direct+0x10/0x10 [ 541.145994][T14668] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 541.146030][T14668] ? bpf_lsm_file_permission+0x9/0x10 [ 541.146057][T14668] ? security_file_permission+0x76/0x210 [ 541.146095][T14668] ? rw_verify_area+0xce/0x6d0 [ 541.146127][T14668] do_sendfile+0xadc/0xe20 [ 541.146166][T14668] ? __pfx_do_sendfile+0x10/0x10 [ 541.146196][T14668] ? _raw_spin_unlock_irq+0x23/0x50 [ 541.146251][T14668] __x64_sys_sendfile64+0x1d8/0x220 [ 541.146287][T14668] ? ksys_write+0x1ac/0x250 [ 541.146319][T14668] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 541.146361][T14668] ? rcu_is_watching+0x12/0xc0 [ 541.146397][T14668] do_syscall_64+0x115/0x840 [ 541.146434][T14668] ? clear_bhb_loop+0x40/0x90 [ 541.146468][T14668] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 541.146493][T14668] RIP: 0033:0x7fc75eb9ce59 [ 541.146516][T14668] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 541.146542][T14668] RSP: 002b:00007fc75fb1c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 541.146568][T14668] RAX: ffffffffffffffda RBX: 00007fc75ee15fa0 RCX: 00007fc75eb9ce59 [ 541.146586][T14668] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000006 [ 541.146601][T14668] RBP: 00007fc75fb1c090 R08: 0000000000000000 R09: 0000000000000000 [ 541.146617][T14668] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 541.146635][T14668] R13: 00007fc75ee16038 R14: 00007fc75ee15fa0 R15: 00007ffc1eaff858 [ 541.146672][T14668] [ 543.010238][T14700] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 543.024156][T14700] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 543.043028][T14700] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 543.060004][T14700] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 543.080453][T14700] page dumped because: unmovable page [ 543.093376][T14700] page_owner info is not present (never set?) [ 543.582214][T14709] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1783'. [ 543.675446][T14707] netlink: 'syz.2.1783': attribute type 1 has an invalid length. [ 543.718469][T14707] netlink: 33 bytes leftover after parsing attributes in process `syz.2.1783'. [ 543.883246][T14713] netlink: 208 bytes leftover after parsing attributes in process `syz.0.1785'. [ 543.905421][T14713] FAULT_INJECTION: forcing a failure. [ 543.905421][T14713] name failslab, interval 1, probability 0, space 0, times 0 [ 543.929112][T14713] CPU: 0 UID: 0 PID: 14713 Comm: syz.0.1785 Tainted: G L syzkaller #0 PREEMPT(full) [ 543.929162][T14713] Tainted: [L]=SOFTLOCKUP [ 543.929173][T14713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 543.929191][T14713] Call Trace: [ 543.929202][T14713] [ 543.929213][T14713] dump_stack_lvl+0x100/0x190 [ 543.929251][T14713] should_fail_ex.cold+0x5/0xa [ 543.929295][T14713] should_failslab+0xc2/0x120 [ 543.929333][T14713] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 543.929381][T14713] ? __alloc_skb+0x140/0x710 [ 543.929417][T14713] __alloc_skb+0x140/0x710 [ 543.929443][T14713] ? __alloc_skb+0x5b7/0x710 [ 543.929470][T14713] ? __pfx___alloc_skb+0x10/0x10 [ 543.929499][T14713] ? netlink_has_listeners+0x21b/0x430 [ 543.929535][T14713] ? netlink_has_listeners+0x21b/0x430 [ 543.929577][T14713] alloc_uevent_skb+0x7d/0x210 [ 543.929612][T14713] kobject_uevent_env+0xd2d/0x18b0 [ 543.929650][T14713] ? bus_to_subsys+0x114/0x150 [ 543.929692][T14713] device_add+0x116e/0x1950 [ 543.929727][T14713] ? __pfx_device_add+0x10/0x10 [ 543.929758][T14713] ? kfree_const+0x5a/0x70 [ 543.929785][T14713] ? kfree+0x1dd/0x6c0 [ 543.929829][T14713] device_create_groups_vargs+0x1f8/0x270 [ 543.929866][T14713] device_create+0xed/0x130 [ 543.929896][T14713] ? __pfx_device_create+0x10/0x10 [ 543.929924][T14713] ? lockdep_init_map_type+0x5c/0x250 [ 543.929964][T14713] ? timer_init_key+0x155/0x330 [ 543.930013][T14713] ? ieee80211_roc_setup+0x136/0x270 [ 543.930045][T14713] ? ieee80211_alloc_hw_nm+0x19f8/0x22e0 [ 543.930091][T14713] mac80211_hwsim_new_radio+0x379/0x5aa0 [ 543.930126][T14713] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 543.930173][T14713] ? rcu_is_watching+0x12/0xc0 [ 543.930203][T14713] ? do_trace_netlink_extack+0x74/0x1f0 [ 543.930231][T14713] ? __nla_validate_parse+0x1e7/0x28b0 [ 543.930264][T14713] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 543.930310][T14713] hwsim_new_radio_nl+0xc5f/0x1370 [ 543.930346][T14713] ? rcu_is_watching+0x12/0xc0 [ 543.930381][T14713] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 543.930427][T14713] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1e5/0x2f0 [ 543.930467][T14713] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0 [ 543.930515][T14713] genl_family_rcv_msg_doit+0x214/0x300 [ 543.930559][T14713] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 543.930601][T14713] ? genl_get_cmd+0x3e7/0x760 [ 543.930647][T14713] ? bpf_lsm_capable+0x9/0x10 [ 543.930679][T14713] ? security_capable+0x80/0x260 [ 543.930711][T14713] ? ns_capable+0xd2/0xf0 [ 543.930747][T14713] genl_rcv_msg+0x560/0x800 [ 543.930791][T14713] ? __pfx_genl_rcv_msg+0x10/0x10 [ 543.930834][T14713] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 543.930883][T14713] netlink_rcv_skb+0x159/0x420 [ 543.930921][T14713] ? __pfx_genl_rcv_msg+0x10/0x10 [ 543.930962][T14713] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 543.931023][T14713] ? netlink_deliver_tap+0x1ae/0xcc0 [ 543.931067][T14713] genl_rcv+0x28/0x40 [ 543.931104][T14713] netlink_unicast+0x585/0x850 [ 543.931146][T14713] ? __pfx_netlink_unicast+0x10/0x10 [ 543.931189][T14713] netlink_sendmsg+0x8b0/0xda0 [ 543.931233][T14713] ? __pfx_netlink_sendmsg+0x10/0x10 [ 543.931269][T14713] ? __import_iovec+0x1d2/0x640 [ 543.931313][T14713] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 543.931351][T14713] ____sys_sendmsg+0x9e1/0xb70 [ 543.931387][T14713] ? __pfx_netlink_sendmsg+0x10/0x10 [ 543.931428][T14713] ? __pfx_____sys_sendmsg+0x10/0x10 [ 543.931464][T14713] ? preempt_schedule_thunk+0x16/0x30 [ 543.931512][T14713] ? try_to_wake_up+0x5f6/0x1900 [ 543.931556][T14713] ___sys_sendmsg+0x190/0x1e0 [ 543.931600][T14713] ? __pfx____sys_sendmsg+0x10/0x10 [ 543.931640][T14713] ? futex_private_hash_put+0x107/0x1c0 [ 543.931727][T14713] __sys_sendmsg+0x170/0x220 [ 543.931760][T14713] ? __pfx___sys_sendmsg+0x10/0x10 [ 543.931791][T14713] ? __x64_sys_futex+0x34f/0x4d0 [ 543.931835][T14713] ? rcu_is_watching+0x12/0xc0 [ 543.931873][T14713] do_syscall_64+0x115/0x840 [ 543.931912][T14713] ? clear_bhb_loop+0x40/0x90 [ 543.931948][T14713] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 543.931978][T14713] RIP: 0033:0x7f0a2579ce59 [ 543.932011][T14713] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 543.932039][T14713] RSP: 002b:00007f0a26708028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 543.932065][T14713] RAX: ffffffffffffffda RBX: 00007f0a25a15fa0 RCX: 00007f0a2579ce59 [ 543.932085][T14713] RDX: 0000000004048000 RSI: 0000200000004240 RDI: 0000000000000005 [ 543.932102][T14713] RBP: 00007f0a25832d6f R08: 0000000000000000 R09: 0000000000000000 [ 543.932121][T14713] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 543.932138][T14713] R13: 00007f0a25a16038 R14: 00007f0a25a15fa0 R15: 00007ffffce3fc78 [ 543.932183][T14713] [ 545.219232][T14741] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 545.228459][T14741] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 545.237321][T14741] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 545.247388][T14741] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 545.258988][T14741] page dumped because: unmovable page [ 545.269739][T14741] page_owner info is not present (never set?) [ 546.671896][T14751] Process accounting paused [ 546.813509][T14766] FAULT_INJECTION: forcing a failure. [ 546.813509][T14766] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 546.845667][T14766] CPU: 1 UID: 0 PID: 14766 Comm: syz.3.1797 Tainted: G L syzkaller #0 PREEMPT(full) [ 546.845715][T14766] Tainted: [L]=SOFTLOCKUP [ 546.845724][T14766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 546.845737][T14766] Call Trace: [ 546.845742][T14766] [ 546.845749][T14766] dump_stack_lvl+0x100/0x190 [ 546.845770][T14766] should_fail_ex.cold+0x5/0xa [ 546.845789][T14766] ? prepare_alloc_pages+0x16d/0x5f0 [ 546.845809][T14766] should_fail_alloc_page+0xeb/0x140 [ 546.845828][T14766] prepare_alloc_pages+0x1f0/0x5f0 [ 546.845858][T14766] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 546.845883][T14766] ? bpf_address_lookup+0x301/0x320 [ 546.845903][T14766] ? is_bpf_text_address+0x8a/0x1a0 [ 546.845922][T14766] ? bpf_ksym_find+0x124/0x1c0 [ 546.845938][T14766] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 546.845959][T14766] ? is_bpf_text_address+0x94/0x1a0 [ 546.845978][T14766] ? kernel_text_address+0x8d/0x100 [ 546.845993][T14766] ? __kernel_text_address+0xd/0x30 [ 546.846007][T14766] ? unwind_get_return_address+0x59/0xa0 [ 546.846032][T14766] ? arch_stack_walk+0xa6/0xf0 [ 546.846051][T14766] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 546.846084][T14766] ? stack_depot_save_flags+0x27/0x9d0 [ 546.846107][T14766] ? __lock_acquire+0x4a5/0x2630 [ 546.846131][T14766] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 546.846154][T14766] ? policy_nodemask+0xed/0x4f0 [ 546.846173][T14766] alloc_pages_mpol+0x1fb/0x540 [ 546.846192][T14766] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 546.846214][T14766] alloc_pages_noprof+0x1a/0x160 [ 546.846234][T14766] kimage_alloc_pages+0x72/0x380 [ 546.846256][T14766] kimage_alloc_control_pages+0x157/0xa20 [ 546.846282][T14766] ? __pfx_kimage_alloc_control_pages+0x10/0x10 [ 546.846309][T14766] do_kexec_load+0x275/0x810 [ 546.846332][T14766] ? __pfx_do_kexec_load+0x10/0x10 [ 546.846352][T14766] ? rep_movs_alternative+0x4a/0x90 [ 546.846369][T14766] ? _copy_from_user+0x59/0xd0 [ 546.846391][T14766] __x64_sys_kexec_load+0x1bf/0x230 [ 546.846414][T14766] do_syscall_64+0x115/0x840 [ 546.846434][T14766] ? clear_bhb_loop+0x40/0x90 [ 546.846452][T14766] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 546.846467][T14766] RIP: 0033:0x7ffb0359ce59 [ 546.846482][T14766] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 546.846496][T14766] RSP: 002b:00007ffb04375028 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6 [ 546.846512][T14766] RAX: ffffffffffffffda RBX: 00007ffb03815fa0 RCX: 00007ffb0359ce59 [ 546.846523][T14766] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000005 [ 546.846533][T14766] RBP: 00007ffb03632d6f R08: 0000000000000000 R09: 0000000000000000 [ 546.846546][T14766] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 546.846562][T14766] R13: 00007ffb03816038 R14: 00007ffb03815fa0 R15: 00007ffc78e4abe8 [ 546.846597][T14766] [ 547.137110][T14766] kexec: Could not allocate control_code_buffer [ 548.185743][T14789] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 548.207994][T14789] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 548.239912][T14789] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 548.256786][T14789] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 548.292996][T14789] page dumped because: unmovable page [ 548.326935][T14789] page_owner info is not present (never set?) [ 548.354642][T14793] tc_dump_action: action bad kind [ 548.441998][ T50] block nbd0: Receive control failed (result -107) [ 548.484160][T14793] nbd0: detected capacity change from 0 to 4294967296 [ 548.518887][ T5634] block nbd0: Dead connection, failed to find a fallback [ 548.527411][ T5634] block nbd0: shutting down sockets [ 548.535336][ T5634] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 548.547271][ T5634] Buffer I/O error on dev nbd0, logical block 0, async page read [ 548.558192][ T5634] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 548.560591][T14792] [U] ^\ [ 548.576185][ T5634] Buffer I/O error on dev nbd0, logical block 0, async page read [ 548.584303][ T5634] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 548.595391][ T5634] Buffer I/O error on dev nbd0, logical block 0, async page read [ 548.603595][ T5634] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 548.612916][ T5634] Buffer I/O error on dev nbd0, logical block 0, async page read [ 548.621405][ T5634] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 548.630667][ T5634] Buffer I/O error on dev nbd0, logical block 0, async page read [ 548.638808][ T5634] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 548.648041][ T5634] Buffer I/O error on dev nbd0, logical block 0, async page read [ 548.656208][ T5634] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 548.666931][ T5634] Buffer I/O error on dev nbd0, logical block 0, async page read [ 548.675772][ T5634] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 548.685732][ T5634] Buffer I/O error on dev nbd0, logical block 0, async page read [ 548.709766][ T5634] ldm_validate_partition_table(): Disk read failed. [ 548.732310][ T5634] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 548.758392][ T5634] Buffer I/O error on dev nbd0, logical block 0, async page read [ 548.768502][ T5634] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 548.778181][ T5634] Buffer I/O error on dev nbd0, logical block 0, async page read [ 548.786470][ T5634] Dev nbd0: unable to read RDB block 0 [ 548.793144][ T5634] nbd0: unable to read partition table [ 548.813462][ T5634] ldm_validate_partition_table(): Disk read failed. [ 548.828390][ T5634] Dev nbd0: unable to read RDB block 0 [ 548.836363][ T5634] nbd0: unable to read partition table [ 548.852217][T14805] FAULT_INJECTION: forcing a failure. [ 548.852217][T14805] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 548.884806][T14805] CPU: 0 UID: 0 PID: 14805 Comm: syz.3.1806 Tainted: G L syzkaller #0 PREEMPT(full) [ 548.884852][T14805] Tainted: [L]=SOFTLOCKUP [ 548.884864][T14805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 548.884882][T14805] Call Trace: [ 548.884893][T14805] [ 548.884904][T14805] dump_stack_lvl+0x100/0x190 [ 548.884940][T14805] should_fail_ex.cold+0x5/0xa [ 548.884977][T14805] _copy_from_user+0x2e/0xd0 [ 548.885019][T14805] copy_mnt_id_req+0x108/0x350 [ 548.885073][T14805] __do_sys_listmount+0x184/0xee0 [ 548.885105][T14805] ? __pfx_do_futex+0x10/0x10 [ 548.885138][T14805] ? fput+0x79/0x100 [ 548.885175][T14805] ? __pfx___do_sys_listmount+0x10/0x10 [ 548.885219][T14805] ? rcu_is_watching+0x12/0xc0 [ 548.885276][T14805] do_syscall_64+0x115/0x840 [ 548.885316][T14805] ? clear_bhb_loop+0x40/0x90 [ 548.885353][T14805] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 548.885382][T14805] RIP: 0033:0x7ffb0359ce59 [ 548.885404][T14805] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 548.885433][T14805] RSP: 002b:00007ffb04375028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 548.885462][T14805] RAX: ffffffffffffffda RBX: 00007ffb03815fa0 RCX: 00007ffb0359ce59 [ 548.885490][T14805] RDX: 00000000000bc23c RSI: 0000000000000000 RDI: 0000200000000100 [ 548.885507][T14805] RBP: 00007ffb03632d6f R08: 0000000000000000 R09: 0000000000000000 [ 548.885523][T14805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 548.885539][T14805] R13: 00007ffb03816038 R14: 00007ffb03815fa0 R15: 00007ffc78e4abe8 [ 548.885577][T14805] [ 550.664399][T14810] Process accounting paused [ 551.375250][T14841] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 551.392820][T14841] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 551.419112][T14841] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 551.469726][T14841] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 551.487258][T14841] page dumped because: unmovable page [ 551.497986][T14841] page_owner info is not present (never set?) [ 552.214098][T14855] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 552.252140][T14855] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 552.271009][T14855] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 552.295163][T14855] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 552.319140][T14855] page dumped because: unmovable page [ 552.342345][T14855] page_owner info is not present (never set?) [ 552.852022][T14866] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1820'. [ 552.921782][T14868] netlink: 'syz.2.1820': attribute type 12 has an invalid length. [ 554.657393][T14891] FAULT_INJECTION: forcing a failure. [ 554.657393][T14891] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 554.673331][T14891] CPU: 0 UID: 0 PID: 14891 Comm: syz.1.1828 Tainted: G L syzkaller #0 PREEMPT(full) [ 554.673378][T14891] Tainted: [L]=SOFTLOCKUP [ 554.673389][T14891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 554.673405][T14891] Call Trace: [ 554.673415][T14891] [ 554.673426][T14891] dump_stack_lvl+0x100/0x190 [ 554.673462][T14891] should_fail_ex.cold+0x5/0xa [ 554.673493][T14891] ? prepare_alloc_pages+0x16d/0x5f0 [ 554.673534][T14891] should_fail_alloc_page+0xeb/0x140 [ 554.673571][T14891] prepare_alloc_pages+0x1f0/0x5f0 [ 554.673614][T14891] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 554.673661][T14891] ? bpf_address_lookup+0x301/0x320 [ 554.673699][T14891] ? is_bpf_text_address+0x8a/0x1a0 [ 554.673737][T14891] ? bpf_ksym_find+0x124/0x1c0 [ 554.673765][T14891] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 554.673806][T14891] ? is_bpf_text_address+0x94/0x1a0 [ 554.673844][T14891] ? kernel_text_address+0x8d/0x100 [ 554.673873][T14891] ? __kernel_text_address+0xd/0x30 [ 554.673901][T14891] ? unwind_get_return_address+0x59/0xa0 [ 554.673938][T14891] ? arch_stack_walk+0xa6/0xf0 [ 554.673970][T14891] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 554.674034][T14891] ? stack_depot_save_flags+0x27/0x9d0 [ 554.674086][T14891] ? __lock_acquire+0x4a5/0x2630 [ 554.674134][T14891] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 554.674175][T14891] ? policy_nodemask+0xed/0x4f0 [ 554.674212][T14891] alloc_pages_mpol+0x1fb/0x540 [ 554.674248][T14891] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 554.674292][T14891] alloc_pages_noprof+0x1a/0x160 [ 554.674330][T14891] kimage_alloc_pages+0x72/0x380 [ 554.674374][T14891] kimage_alloc_control_pages+0x157/0xa20 [ 554.674426][T14891] ? __pfx_kimage_alloc_control_pages+0x10/0x10 [ 554.674478][T14891] do_kexec_load+0x275/0x810 [ 554.674526][T14891] ? __pfx_do_kexec_load+0x10/0x10 [ 554.674567][T14891] ? rep_movs_alternative+0x4a/0x90 [ 554.674602][T14891] ? _copy_from_user+0x59/0xd0 [ 554.674647][T14891] __x64_sys_kexec_load+0x1bf/0x230 [ 554.674692][T14891] do_syscall_64+0x115/0x840 [ 554.674728][T14891] ? clear_bhb_loop+0x40/0x90 [ 554.674764][T14891] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 554.674794][T14891] RIP: 0033:0x7fc75eb9ce59 [ 554.674819][T14891] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 554.674847][T14891] RSP: 002b:00007fc75fb1c028 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6 [ 554.674875][T14891] RAX: ffffffffffffffda RBX: 00007fc75ee15fa0 RCX: 00007fc75eb9ce59 [ 554.674895][T14891] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000005 [ 554.674912][T14891] RBP: 00007fc75ec32d6f R08: 0000000000000000 R09: 0000000000000000 [ 554.674930][T14891] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 554.674947][T14891] R13: 00007fc75ee16038 R14: 00007fc75ee15fa0 R15: 00007ffc1eaff858 [ 554.674985][T14891] [ 554.972706][T14891] kexec: Could not allocate control_code_buffer [ 555.068494][T14894] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 555.078531][T14894] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 555.096721][T14894] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 555.116686][T14894] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 555.135652][T14894] page dumped because: unmovable page [ 555.141642][T14894] page_owner info is not present (never set?) [ 556.053683][T14908] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 557.461840][T14928] sd 0:0:1:0: PR command failed: 1026 [ 557.474105][T14928] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 557.489717][T14928] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 557.664726][T14911] Process accounting paused [ 557.969461][T14940] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 557.986701][T14940] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 558.020495][T14940] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 558.050895][T14940] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 558.061106][T14940] page dumped because: unmovable page [ 558.068158][T14940] page_owner info is not present (never set?) [ 559.396287][T14971] FAULT_INJECTION: forcing a failure. [ 559.396287][T14971] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 559.437022][T14971] CPU: 0 UID: 0 PID: 14971 Comm: syz.1.1853 Tainted: G L syzkaller #0 PREEMPT(full) [ 559.437071][T14971] Tainted: [L]=SOFTLOCKUP [ 559.437082][T14971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 559.437101][T14971] Call Trace: [ 559.437111][T14971] [ 559.437122][T14971] dump_stack_lvl+0x100/0x190 [ 559.437158][T14971] should_fail_ex.cold+0x5/0xa [ 559.437187][T14971] ? prepare_alloc_pages+0x16d/0x5f0 [ 559.437226][T14971] should_fail_alloc_page+0xeb/0x140 [ 559.437266][T14971] prepare_alloc_pages+0x1f0/0x5f0 [ 559.437310][T14971] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 559.437367][T14971] ? __lock_acquire+0x4a5/0x2630 [ 559.437418][T14971] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 559.437467][T14971] ? __lock_acquire+0x4a5/0x2630 [ 559.437531][T14971] ? find_held_lock+0x2b/0x80 [ 559.437566][T14971] ? is_bpf_text_address+0x8a/0x1a0 [ 559.437606][T14971] ? is_bpf_text_address+0x8a/0x1a0 [ 559.437643][T14971] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 559.437687][T14971] ? policy_nodemask+0xed/0x4f0 [ 559.437737][T14971] alloc_pages_mpol+0x1fb/0x540 [ 559.437776][T14971] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 559.437810][T14971] ? arch_stack_walk+0xa6/0xf0 [ 559.437857][T14971] folio_alloc_mpol_noprof+0x36/0x260 [ 559.437901][T14971] shmem_alloc_folio+0x135/0x160 [ 559.437945][T14971] shmem_alloc_and_add_folio+0x371/0xd40 [ 559.438001][T14971] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 559.438053][T14971] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 559.438093][T14971] shmem_get_folio_gfp+0x6ab/0x1900 [ 559.438131][T14971] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 559.438161][T14971] ? filemap_map_pages+0x9c1/0x2140 [ 559.438216][T14971] shmem_fault+0x1f9/0xa20 [ 559.438248][T14971] ? __pfx_shmem_fault+0x10/0x10 [ 559.438278][T14971] ? __mod_memcg_lruvec_state+0x18c/0x5b0 [ 559.438329][T14971] ? __pfx_filemap_map_pages+0x10/0x10 [ 559.438381][T14971] ? find_held_lock+0x2b/0x80 [ 559.438432][T14971] __do_fault+0x10b/0x440 [ 559.438465][T14971] do_fault+0xa99/0x1750 [ 559.438501][T14971] ? __pmd_alloc+0x3fb/0x950 [ 559.438542][T14971] __handle_mm_fault+0x187d/0x2a00 [ 559.438592][T14971] ? mt_find+0x45e/0x8e0 [ 559.438637][T14971] ? __pfx___handle_mm_fault+0x10/0x10 [ 559.438687][T14971] ? __pfx_mt_find+0x10/0x10 [ 559.438759][T14971] ? find_vma+0xbf/0x140 [ 559.438791][T14971] ? __pfx_find_vma+0x10/0x10 [ 559.438829][T14971] handle_mm_fault+0x37b/0xa30 [ 559.438880][T14971] do_user_addr_fault+0x74c/0x12f0 [ 559.438921][T14971] ? trace_page_fault_kernel+0x7a/0x200 [ 559.438965][T14971] exc_page_fault+0x6f/0xd0 [ 559.439008][T14971] asm_exc_page_fault+0x26/0x30 [ 559.439039][T14971] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 559.439073][T14971] Code: 9c 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 559.439101][T14971] RSP: 0018:ffffc90005357d78 EFLAGS: 00050206 [ 559.439125][T14971] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000001000 [ 559.439144][T14971] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffff888036dcd000 [ 559.439164][T14971] RBP: 0000000000001000 R08: 0000000000000001 R09: ffffed1006db9bff [ 559.439183][T14971] R10: ffff888036dcdfff R11: 0000000000000000 R12: 0000000000000000 [ 559.439202][T14971] R13: ffff888036dcd000 R14: 000000004800c000 R15: ffff888035fe0800 [ 559.439242][T14971] _copy_from_user+0x98/0xd0 [ 559.439284][T14971] kimage_load_segment+0x64d/0xde0 [ 559.439336][T14971] do_kexec_load+0x58d/0x810 [ 559.439383][T14971] ? __pfx_do_kexec_load+0x10/0x10 [ 559.439430][T14971] ? _copy_from_user+0x59/0xd0 [ 559.439474][T14971] __x64_sys_kexec_load+0x1bf/0x230 [ 559.439521][T14971] do_syscall_64+0x115/0x840 [ 559.439557][T14971] ? clear_bhb_loop+0x40/0x90 [ 559.439591][T14971] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 559.439622][T14971] RIP: 0033:0x7fc75eb9ce59 [ 559.439647][T14971] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 559.439675][T14971] RSP: 002b:00007fc75fb1c028 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6 [ 559.439710][T14971] RAX: ffffffffffffffda RBX: 00007fc75ee15fa0 RCX: 00007fc75eb9ce59 [ 559.439731][T14971] RDX: 0000200000000040 RSI: 0000000000000002 RDI: 0000000000000005 [ 559.439750][T14971] RBP: 00007fc75ec32d6f R08: 0000000000000000 R09: 0000000000000000 [ 559.439768][T14971] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 559.439787][T14971] R13: 00007fc75ee16038 R14: 00007fc75ee15fa0 R15: 00007ffc1eaff858 [ 559.439827][T14971] [ 560.442690][T14980] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 560.458188][T14980] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 560.502715][T14980] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 560.547884][T14980] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 560.584432][T14980] page dumped because: unmovable page [ 560.607801][T14980] page_owner info is not present (never set?) [ 561.963836][T15006] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 561.977948][T15006] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 562.000296][T15006] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 562.027005][T15006] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 562.080505][T15006] page dumped because: unmovable page [ 562.120729][T15006] page_owner info is not present (never set?) [ 563.377193][ T1316] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.383693][ T1316] ieee802154 phy1 wpan1: encryption failed: -22 [ 563.817886][T15024] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 563.843889][T15024] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 563.881768][T15024] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 563.897759][T15026] NFSD: Failed to start, no listeners configured. [ 563.925126][T15024] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 563.957597][T15024] page dumped because: unmovable page [ 563.971138][T15024] page_owner info is not present (never set?) [ 564.240037][T15028] NFSD: Failed to start, no listeners configured. [ 565.876006][T15059] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 565.899212][T15059] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 565.926874][T15059] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 565.955230][T15059] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 566.008452][T15059] page dumped because: unmovable page [ 566.035991][T15059] page_owner info is not present (never set?) [ 567.343832][T15074] binder: 15072:15074 ioctl 541b 0 returned -22 [ 567.386417][T15071] NFSD: Failed to start, no listeners configured. [ 568.345451][T15097] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 568.372253][T15097] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 568.409519][T15097] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 568.466665][T15097] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 568.546502][T15097] page dumped because: unmovable page [ 568.575162][T15097] page_owner info is not present (never set?) [ 568.650831][T15099] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 568.693616][T15099] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 568.728389][T15099] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 568.766650][T15099] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 568.783774][T15099] page dumped because: unmovable page [ 568.807669][T15099] page_owner info is not present (never set?) [ 569.229220][T15091] Process accounting resumed [ 570.398548][T15110] Process accounting resumed [ 570.960828][T15136] NFSD: Failed to start, no listeners configured. [ 571.641230][T15143] NFSD: Failed to start, no listeners configured. [ 572.338334][ T29] audit: type=1800 audit(1780420377.576:19): pid=15161 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1886" name="members" dev="configfs" ino=53244 res=0 errno=0 [ 572.559597][T15165] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 572.589808][T15165] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 572.689558][T15165] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 572.790581][T15165] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 572.936262][T15165] page dumped because: unmovable page [ 572.970096][T15165] page_owner info is not present (never set?) [ 573.653602][T15184] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1890'. [ 573.872933][T15187] [U] 0="/ [ 573.898205][T15187] [U] [ 573.914985][T15187] [U] EeQ@ [ 574.015672][T15184] kexec: Could not allocate control_code_buffer [ 574.141427][T15184] [U]  [ 575.857408][T15232] NFSD: Failed to start, no listeners configured. [ 576.289480][T15207] Process accounting resumed [ 576.474270][T15245] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1898'. [ 576.496924][T15245] ipvlan1: entered promiscuous mode [ 576.507333][T15245] ipvlan1: entered allmulticast mode [ 576.517593][T15245] veth0_vlan: entered allmulticast mode [ 576.892318][T15254] binder: 15251:15254 ioctl 541b 0 returned -22 [ 577.160808][T15255] netlink: 354 bytes leftover after parsing attributes in process `syz.1.1900'. [ 577.283573][T15259] [U] 0="/ [ 577.305643][T15259] [U] [ 577.320696][T15259] [U] EeQ@ [ 577.428198][T15255] kexec: Could not allocate control_code_buffer [ 577.475661][T15255] [U]  [ 577.645724][T15270] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 577.702027][T15270] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 577.716815][T15270] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 577.726244][T15270] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 577.747363][T15270] page dumped because: unmovable page [ 577.804098][T15270] page_owner info is not present (never set?) [ 578.714872][T15282] NFSD: Failed to start, no listeners configured. [ 579.205474][T15284] NFSD: Failed to start, no listeners configured. [ 579.360616][T15290] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1909'. [ 579.401410][T15290] ipvlan1: entered promiscuous mode [ 579.427575][T15290] ipvlan1: entered allmulticast mode [ 579.458542][T15290] veth0_vlan: entered allmulticast mode [ 580.251876][T15308] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 580.261346][T15308] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 580.269939][T15308] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 580.279228][T15308] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 580.289461][T15308] page dumped because: unmovable page [ 580.295253][T15308] page_owner info is not present (never set?) [ 580.939157][T15321] NFSD: Failed to start, no listeners configured. [ 581.103406][T15322] NFSD: Failed to start, no listeners configured. [ 581.201920][T15325] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 581.218112][T15325] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 581.218961][T15327] random: crng reseeded on system resumption [ 581.228594][T15325] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 581.242280][T15325] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 581.278963][T15325] page dumped because: unmovable page [ 581.285830][T15325] page_owner info is not present (never set?) [ 582.462027][T15345] FAULT_INJECTION: forcing a failure. [ 582.462027][T15345] name failslab, interval 1, probability 0, space 0, times 0 [ 582.479054][T15345] CPU: 1 UID: 0 PID: 15345 Comm: syz.2.1920 Tainted: G L syzkaller #0 PREEMPT(full) [ 582.479100][T15345] Tainted: [L]=SOFTLOCKUP [ 582.479111][T15345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 582.479128][T15345] Call Trace: [ 582.479138][T15345] [ 582.479148][T15345] dump_stack_lvl+0x100/0x190 [ 582.479186][T15345] should_fail_ex.cold+0x5/0xa [ 582.479231][T15345] should_failslab+0xc2/0x120 [ 582.479266][T15345] __kmalloc_cache_node_noprof+0x7d/0x770 [ 582.479297][T15345] ? __alloc_workqueue+0xf57/0x1980 [ 582.479334][T15345] ? lockdep_init_map_type+0x5c/0x250 [ 582.479390][T15345] __alloc_workqueue+0xf57/0x1980 [ 582.479443][T15345] alloc_workqueue_noprof+0xc7/0x130 [ 582.479478][T15345] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 582.479528][T15345] ? __pfx___debug_object_init+0x10/0x10 [ 582.479579][T15345] nci_register_device+0x511/0xb80 [ 582.479611][T15345] ? __pfx_nci_register_device+0x10/0x10 [ 582.479645][T15345] ? lockdep_init_map_type+0x5c/0x250 [ 582.479693][T15345] virtual_ncidev_open+0x141/0x220 [ 582.479724][T15345] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 582.479752][T15345] misc_open+0x26d/0x450 [ 582.479778][T15345] ? __pfx_misc_open+0x10/0x10 [ 582.479804][T15345] chrdev_open+0x234/0x6a0 [ 582.479836][T15345] ? __pfx_apparmor_file_open+0x10/0x10 [ 582.479864][T15345] ? __pfx_chrdev_open+0x10/0x10 [ 582.479899][T15345] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 582.479942][T15345] do_dentry_open+0x6ab/0x14d0 [ 582.479977][T15345] ? __pfx_chrdev_open+0x10/0x10 [ 582.480021][T15345] vfs_open+0x82/0x3f0 [ 582.480066][T15345] path_openat+0x208c/0x31a0 [ 582.480115][T15345] ? __pfx_path_openat+0x10/0x10 [ 582.480163][T15345] do_file_open+0x20e/0x430 [ 582.480285][T15345] ? __pfx_do_file_open+0x10/0x10 [ 582.480354][T15345] ? alloc_fd+0x476/0x790 [ 582.480394][T15345] ? do_getname+0x191/0x390 [ 582.480440][T15345] do_sys_openat2+0x10d/0x1e0 [ 582.480481][T15345] ? __pfx_do_sys_openat2+0x10/0x10 [ 582.480543][T15345] __x64_sys_openat+0x12d/0x210 [ 582.480590][T15345] ? __pfx___x64_sys_openat+0x10/0x10 [ 582.480643][T15345] ? rcu_is_watching+0x12/0xc0 [ 582.480681][T15345] do_syscall_64+0x115/0x840 [ 582.480722][T15345] ? clear_bhb_loop+0x40/0x90 [ 582.480760][T15345] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 582.480790][T15345] RIP: 0033:0x7f1d4ed9ce59 [ 582.480816][T15345] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 582.480845][T15345] RSP: 002b:00007f1d4fbc4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 582.480874][T15345] RAX: ffffffffffffffda RBX: 00007f1d4f015fa0 RCX: 00007f1d4ed9ce59 [ 582.480894][T15345] RDX: 0000000000000002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 582.480913][T15345] RBP: 00007f1d4ee32d6f R08: 0000000000000000 R09: 0000000000000000 [ 582.480932][T15345] R10: 000000000000003e R11: 0000000000000246 R12: 0000000000000000 [ 582.480951][T15345] R13: 00007f1d4f016038 R14: 00007f1d4f015fa0 R15: 00007fffe6591678 [ 582.480991][T15345] [ 584.754807][T15382] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 584.768332][T15382] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 584.799681][T15382] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 584.837925][T15382] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 584.879866][T15382] page dumped because: unmovable page [ 584.915706][T15382] page_owner info is not present (never set?) [ 584.973324][T15386] sd 0:0:1:0: PR command failed: 1026 [ 584.990263][T15386] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 585.028926][T15386] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 585.651538][T15404] random: crng reseeded on system resumption [ 588.503693][T15429] Process accounting resumed [ 588.697249][T15446] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 588.736683][T15446] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 588.802850][T15446] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 588.874061][T15446] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 588.965129][T15446] page dumped because: unmovable page [ 589.006919][T15446] page_owner info is not present (never set?) [ 591.325619][T15461] Process accounting resumed [ 591.701584][T15481] ubi0: attaching mtd0 [ 591.734913][T15481] ubi0 warning: ubi_attach: valid VID header but corrupted EC header at PEB 0 [ 591.750841][T15481] ubi0: scanning is finished [ 593.220343][T15481] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 593.251987][T15481] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 593.314075][T15481] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 593.328221][T15481] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 593.463702][T15481] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 593.507043][T15481] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 593.549945][T15481] ubi0: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 3844325707 [ 593.622819][T15481] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 593.683287][T15484] ubi0: detaching mtd0 [ 593.689556][T15500] ubi0: background thread "ubi_bgt0d" started, PID 15500 [ 593.728556][T15500] ubi0: scrubbed PEB 0 (LEB 2147479551:0), data moved to PEB 31 [ 593.823370][T15484] ubi0: mtd0 is detached [ 594.448293][T15522] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 594.491532][T15522] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 594.557210][T15522] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 594.625806][T15522] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 594.713426][T15522] page dumped because: unmovable page [ 594.722308][T15532] [ 594.724682][T15532] ====================================================== [ 594.731701][T15532] WARNING: possible circular locking dependency detected [ 594.738730][T15532] syzkaller #0 Tainted: G L [ 594.744713][T15532] ------------------------------------------------------ [ 594.751722][T15532] syz.2.1959/15532 is trying to acquire lock: [ 594.757777][T15532] ffff88801c6a5210 (&root->kernfs_iattr_rwsem){++++}-{4:4}, at: kernfs_link_sibling+0x555/0x850 [ 594.768244][T15532] [ 594.768244][T15532] but task is already holding lock: [ 594.775687][T15532] ffff88801c6a5180 (&root->kernfs_rwsem){++++}-{4:4}, at: kernfs_add_one+0x38/0x850 [ 594.785123][T15532] [ 594.785123][T15532] which lock already depends on the new lock. [ 594.785123][T15532] [ 594.795798][T15532] [ 594.795798][T15532] the existing dependency chain (in reverse order) is: [ 594.804972][T15532] [ 594.804972][T15532] -> #10 (&root->kernfs_rwsem){++++}-{4:4}: [ 594.813169][T15532] down_write+0x8b/0x1f0 [ 594.818043][T15532] kernfs_add_one+0x38/0x850 [ 594.823166][T15532] kernfs_create_dir_ns+0xfc/0x1a0 [ 594.828822][T15532] internal_create_group+0x36f/0xfb0 [ 594.834722][T15532] cpuhp_invoke_callback+0x3ab/0x9a0 [ 594.840629][T15532] cpuhp_issue_call+0x1b8/0x970 [ 594.846015][T15532] __cpuhp_setup_state_cpuslocked+0x431/0x880 [ 594.852614][T15532] __cpuhp_setup_state+0xf4/0x300 [ 594.858176][T15532] do_one_initcall+0x121/0x750 [ 594.863475][T15532] kernel_init_freeable+0x6ea/0x7b0 [ 594.869193][T15532] kernel_init+0x1f/0x1e0 [ 594.874056][T15532] ret_from_fork+0x72b/0xd50 [ 594.879208][T15532] ret_from_fork_asm+0x1a/0x30 [ 594.884529][T15532] [ 594.884529][T15532] -> #9 (cpuhp_state_mutex){+.+.}-{4:4}: [ 594.892371][T15532] [ 594.892371][T15532] -> #8 (cpu_hotplug_lock){++++}-{0:0}: [ 594.900300][T15532] cpus_read_lock+0x42/0x170 [ 594.905429][T15532] static_key_disable+0x12/0x20 [ 594.910927][T15532] __inet_hash_connect+0x143e/0x2000 [ 594.916800][T15532] tcp_v4_connect+0xeb3/0x1b40 [ 594.922210][T15532] __inet_stream_connect+0x208/0xfa0 [ 594.928066][T15532] inet_stream_connect+0x57/0xa0 [ 594.933559][T15532] __sys_connect_file+0x141/0x1a0 [ 594.939133][T15532] __sys_connect+0x141/0x170 [ 594.944267][T15532] __x64_sys_connect+0x72/0xb0 [ 594.949572][T15532] do_syscall_64+0x115/0x840 [ 594.954713][T15532] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 594.961236][T15532] [ 594.961236][T15532] -> #7 (sk_lock-AF_INET){+.+.}-{0:0}: [ 594.968895][T15532] lock_sock_nested+0x41/0xf0 [ 594.974110][T15532] inet_shutdown+0x67/0x410 [ 594.979144][T15532] nbd_mark_nsock_dead+0xae/0x5c0 [ 594.984711][T15532] recv_work+0x5fb/0x8c0 [ 594.989483][T15532] process_one_work+0xa0e/0x1980 [ 594.994947][T15532] worker_thread+0x5ef/0xe50 [ 595.000061][T15532] kthread+0x370/0x450 [ 595.004667][T15532] ret_from_fork+0x72b/0xd50 [ 595.009792][T15532] ret_from_fork_asm+0x1a/0x30 [ 595.015093][T15532] [ 595.015093][T15532] -> #6 (&nsock->tx_lock){+.+.}-{4:4}: [ 595.022751][T15532] __mutex_lock+0x1a4/0x1b10 [ 595.027879][T15532] nbd_queue_rq+0x428/0x1080 [ 595.032994][T15532] blk_mq_dispatch_rq_list+0x422/0x1e70 [ 595.039168][T15532] __blk_mq_sched_dispatch_requests+0xcea/0x1620 [ 595.046032][T15532] blk_mq_sched_dispatch_requests+0xd7/0x1c0 [ 595.052552][T15532] blk_mq_run_hw_queue+0x23c/0x670 [ 595.058285][T15532] blk_mq_dispatch_list+0x51d/0x1360 [ 595.064106][T15532] blk_mq_flush_plug_list+0x130/0x600 [ 595.069998][T15532] __blk_flush_plug+0x2c4/0x4b0 [ 595.075386][T15532] __submit_bio+0x584/0x6c0 [ 595.080472][T15532] submit_bio_noacct_nocheck+0x543/0xbf0 [ 595.086641][T15532] submit_bio_noacct+0xd18/0x2000 [ 595.092218][T15532] submit_bh_wbc+0x681/0x890 [ 595.097352][T15532] block_read_full_folio+0x4c8/0x8e0 [ 595.103165][T15532] filemap_read_folio+0xfc/0x3b0 [ 595.108746][T15532] do_read_cache_folio+0x2d7/0x6b0 [ 595.114423][T15532] read_part_sector+0xd1/0x370 [ 595.119731][T15532] adfspart_check_ICS+0x91/0x7d0 [ 595.125210][T15532] bdev_disk_changed+0x7a3/0x1250 [ 595.130768][T15532] blkdev_get_whole+0x187/0x290 [ 595.136155][T15532] bdev_open+0x2c7/0xe40 [ 595.140929][T15532] blkdev_open+0x34e/0x4f0 [ 595.145882][T15532] do_dentry_open+0x6ab/0x14d0 [ 595.151176][T15532] vfs_open+0x82/0x3f0 [ 595.155783][T15532] path_openat+0x208c/0x31a0 [ 595.160901][T15532] do_file_open+0x20e/0x430 [ 595.166116][T15532] do_sys_openat2+0x10d/0x1e0 [ 595.171331][T15532] __x64_sys_openat+0x12d/0x210 [ 595.176724][T15532] do_syscall_64+0x115/0x840 [ 595.181849][T15532] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 595.188271][T15532] [ 595.188271][T15532] -> #5 (&cmd->lock){+.+.}-{4:4}: [ 595.195590][T15532] __mutex_lock+0x1a4/0x1b10 [ 595.200733][T15532] nbd_queue_rq+0xba/0x1080 [ 595.205770][T15532] blk_mq_dispatch_rq_list+0x422/0x1e70 [ 595.211858][T15532] __blk_mq_sched_dispatch_requests+0xcea/0x1620 [ 595.218723][T15532] blk_mq_sched_dispatch_requests+0xd7/0x1c0 [ 595.225333][T15532] blk_mq_run_hw_queue+0x23c/0x670 [ 595.230992][T15532] blk_mq_dispatch_list+0x51d/0x1360 [ 595.236821][T15532] blk_mq_flush_plug_list+0x130/0x600 [ 595.242715][T15532] __blk_flush_plug+0x2c4/0x4b0 [ 595.248101][T15532] __submit_bio+0x584/0x6c0 [ 595.253146][T15532] submit_bio_noacct_nocheck+0x543/0xbf0 [ 595.259322][T15532] submit_bio_noacct+0xd18/0x2000 [ 595.264884][T15532] submit_bh_wbc+0x681/0x890 [ 595.270009][T15532] block_read_full_folio+0x4c8/0x8e0 [ 595.275820][T15532] filemap_read_folio+0xfc/0x3b0 [ 595.281317][T15532] do_read_cache_folio+0x2d7/0x6b0 [ 595.286956][T15532] read_part_sector+0xd1/0x370 [ 595.292257][T15532] adfspart_check_ICS+0x91/0x7d0 [ 595.297731][T15532] bdev_disk_changed+0x7a3/0x1250 [ 595.303302][T15532] blkdev_get_whole+0x187/0x290 [ 595.308689][T15532] bdev_open+0x2c7/0xe40 [ 595.313464][T15532] blkdev_open+0x34e/0x4f0 [ 595.318454][T15532] do_dentry_open+0x6ab/0x14d0 [ 595.323747][T15532] vfs_open+0x82/0x3f0 [ 595.328352][T15532] path_openat+0x208c/0x31a0 [ 595.333477][T15532] do_file_open+0x20e/0x430 [ 595.338519][T15532] do_sys_openat2+0x10d/0x1e0 [ 595.343749][T15532] __x64_sys_openat+0x12d/0x210 [ 595.349135][T15532] do_syscall_64+0x115/0x840 [ 595.354317][T15532] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 595.360739][T15532] [ 595.360739][T15532] -> #4 (set->srcu){.+.+}-{0:0}: [ 595.367876][T15532] __synchronize_srcu+0xa2/0x300 [ 595.373429][T15532] blk_mq_quiesce_queue+0x149/0x1c0 [ 595.379159][T15532] elevator_switch+0x17b/0x7e0 [ 595.384465][T15532] elevator_change+0x352/0x530 [ 595.389760][T15532] elevator_set_default+0x29e/0x360 [ 595.395503][T15532] blk_register_queue+0x48e/0x630 [ 595.401055][T15532] __add_disk+0x73f/0xe40 [ 595.405910][T15532] add_disk_fwnode+0x118/0x5c0 [ 595.411199][T15532] nbd_dev_add+0x77a/0xb10 [ 595.416246][T15532] nbd_init+0x291/0x2b0 [ 595.420939][T15532] do_one_initcall+0x121/0x750 [ 595.426235][T15532] kernel_init_freeable+0x6ea/0x7b0 [ 595.431955][T15532] kernel_init+0x1f/0x1e0 [ 595.436897][T15532] ret_from_fork+0x72b/0xd50 [ 595.442096][T15532] ret_from_fork_asm+0x1a/0x30 [ 595.447478][T15532] [ 595.447478][T15532] -> #3 (&q->elevator_lock){+.+.}-{4:4}: [ 595.455309][T15532] __mutex_lock+0x1a4/0x1b10 [ 595.460439][T15532] queue_requests_store+0x3a7/0x690 [ 595.466341][T15532] queue_attr_store+0x25f/0x2f0 [ 595.472245][T15532] sysfs_kf_write+0xf2/0x150 [ 595.477370][T15532] kernfs_fop_write_iter+0x3e0/0x5f0 [ 595.483197][T15532] vfs_write+0x6ac/0x1070 [ 595.488053][T15532] ksys_write+0x12a/0x250 [ 595.492906][T15532] do_syscall_64+0x115/0x840 [ 595.498037][T15532] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 595.504459][T15532] [ 595.504459][T15532] -> #2 (&q->q_usage_counter(io)#66){++++}-{0:0}: [ 595.513079][T15532] blk_alloc_queue+0x610/0x790 [ 595.518393][T15532] blk_mq_alloc_queue+0x174/0x290 [ 595.523966][T15532] __blk_mq_alloc_disk+0x29/0x120 [ 595.529535][T15532] null_add_dev+0xdf8/0x1df0 [ 595.534734][T15532] null_init+0x3a4/0x480 [ 595.539512][T15532] do_one_initcall+0x121/0x750 [ 595.544811][T15532] kernel_init_freeable+0x6ea/0x7b0 [ 595.550621][T15532] kernel_init+0x1f/0x1e0 [ 595.555480][T15532] ret_from_fork+0x72b/0xd50 [ 595.560606][T15532] ret_from_fork_asm+0x1a/0x30 [ 595.565902][T15532] [ 595.565902][T15532] -> #1 (fs_reclaim){+.+.}-{0:0}: [ 595.573123][T15532] fs_reclaim_acquire+0xc4/0x100 [ 595.578593][T15532] kmem_cache_alloc_noprof+0x4c/0x6e0 [ 595.584502][T15532] __kernfs_iattrs+0x124/0x3e0 [ 595.589793][T15532] __kernfs_setattr+0x4d/0x3c0 [ 595.595094][T15532] kernfs_iop_setattr+0xda/0x130 [ 595.600560][T15532] notify_change+0xb25/0x1330 [ 595.605772][T15532] do_truncate+0x1df/0x240 [ 595.610718][T15532] path_openat+0x2a55/0x31a0 [ 595.615842][T15532] do_file_open+0x20e/0x430 [ 595.620877][T15532] do_sys_openat2+0x10d/0x1e0 [ 595.626095][T15532] __x64_sys_openat+0x12d/0x210 [ 595.631494][T15532] do_syscall_64+0x115/0x840 [ 595.636654][T15532] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 595.643123][T15532] [ 595.643123][T15532] -> #0 (&root->kernfs_iattr_rwsem){++++}-{4:4}: [ 595.651656][T15532] __lock_acquire+0x14b8/0x2630 [ 595.657068][T15532] lock_acquire+0x1b1/0x370 [ 595.662118][T15532] down_write+0x8b/0x1f0 [ 595.667006][T15532] kernfs_link_sibling+0x555/0x850 [ 595.672661][T15532] kernfs_add_one+0x1e7/0x850 [ 595.677888][T15532] kernfs_create_dir_ns+0xfc/0x1a0 [ 595.683552][T15532] sysfs_create_dir_ns+0x13a/0x2b0 [ 595.689203][T15532] kobject_add_internal+0x2c8/0x930 [ 595.694943][T15532] kobject_add+0x16a/0x1e0 [ 595.699899][T15532] device_add+0x294/0x1950 [ 595.704853][T15532] input_register_device+0x7d2/0xe10 [ 595.710716][T15532] uinput_ioctl_handler.isra.0+0x8d8/0x1d20 [ 595.717159][T15532] __x64_sys_ioctl+0x18e/0x210 [ 595.722462][T15532] do_syscall_64+0x115/0x840 [ 595.727608][T15532] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 595.734222][T15532] [ 595.734222][T15532] other info that might help us debug this: [ 595.734222][T15532] [ 595.744467][T15532] Chain exists of: [ 595.744467][T15532] &root->kernfs_iattr_rwsem --> cpuhp_state_mutex --> &root->kernfs_rwsem [ 595.744467][T15532] [ 595.758929][T15532] Possible unsafe locking scenario: [ 595.758929][T15532] [ 595.766382][T15532] CPU0 CPU1 [ 595.771774][T15532] ---- ---- [ 595.777135][T15532] lock(&root->kernfs_rwsem); [ 595.781905][T15532] lock(cpuhp_state_mutex); [ 595.789111][T15532] lock(&root->kernfs_rwsem); [ 595.796397][T15532] lock(&root->kernfs_iattr_rwsem); [ 595.801696][T15532] [ 595.801696][T15532] *** DEADLOCK *** [ 595.801696][T15532] [ 595.809831][T15532] 2 locks held by syz.2.1959/15532: [ 595.815026][T15532] #0: ffff88801c701068 (&newdev->mutex){+.+.}-{4:4}, at: uinput_ioctl_handler.isra.0+0xcb/0x1d20 [ 595.825771][T15532] #1: ffff88801c6a5180 (&root->kernfs_rwsem){++++}-{4:4}, at: kernfs_add_one+0x38/0x850 [ 595.835724][T15532] [ 595.835724][T15532] stack backtrace: [ 595.841627][T15532] CPU: 0 UID: 0 PID: 15532 Comm: syz.2.1959 Tainted: G L syzkaller #0 PREEMPT(full) [ 595.841670][T15532] Tainted: [L]=SOFTLOCKUP [ 595.841681][T15532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 595.841699][T15532] Call Trace: [ 595.841708][T15532] [ 595.841719][T15532] dump_stack_lvl+0x100/0x190 [ 595.841749][T15532] print_circular_bug.cold+0x178/0x1c7 [ 595.841793][T15532] check_noncircular+0x146/0x160 [ 595.841837][T15532] __lock_acquire+0x14b8/0x2630 [ 595.841889][T15532] ? __lock_acquire+0x4a5/0x2630 [ 595.841931][T15532] lock_acquire+0x1b1/0x370 [ 595.841971][T15532] ? kernfs_link_sibling+0x555/0x850 [ 595.842004][T15532] ? __pfx___might_resched+0x10/0x10 [ 595.842037][T15532] down_write+0x8b/0x1f0 [ 595.842078][T15532] ? kernfs_link_sibling+0x555/0x850 [ 595.842110][T15532] ? __pfx_down_write+0x10/0x10 [ 595.842154][T15532] kernfs_link_sibling+0x555/0x850 [ 595.842204][T15532] kernfs_add_one+0x1e7/0x850 [ 595.842240][T15532] kernfs_create_dir_ns+0xfc/0x1a0 [ 595.842277][T15532] sysfs_create_dir_ns+0x13a/0x2b0 [ 595.842305][T15532] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 595.842334][T15532] ? find_held_lock+0x2b/0x80 [ 595.842366][T15532] ? kobject_add_internal+0x25f/0x930 [ 595.842393][T15532] ? kobject_add_internal+0x25f/0x930 [ 595.842421][T15532] ? class_dir_child_ns_type+0xd/0x60 [ 595.842452][T15532] kobject_add_internal+0x2c8/0x930 [ 595.842482][T15532] kobject_add+0x16a/0x1e0 [ 595.842508][T15532] ? __pfx_kobject_add+0x10/0x10 [ 595.842537][T15532] ? kobject_put+0xb9/0x640 [ 595.842581][T15532] device_add+0x294/0x1950 [ 595.842616][T15532] ? __pfx_device_add+0x10/0x10 [ 595.842644][T15532] ? trace_kmalloc+0xe3/0x110 [ 595.842675][T15532] ? __kasan_kmalloc+0xaa/0xb0 [ 595.842702][T15532] ? lockdep_init_map_type+0x5c/0x250 [ 595.842744][T15532] ? lockdep_init_map_type+0x5c/0x250 [ 595.842788][T15532] input_register_device+0x7d2/0xe10 [ 595.842832][T15532] uinput_ioctl_handler.isra.0+0x8d8/0x1d20 [ 595.842867][T15532] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 595.842894][T15532] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 595.842932][T15532] ? find_held_lock+0x2b/0x80 [ 595.842963][T15532] ? __fget_files+0x215/0x3d0 [ 595.843001][T15532] ? __pfx_uinput_ioctl+0x10/0x10 [ 595.843032][T15532] __x64_sys_ioctl+0x18e/0x210 [ 595.843060][T15532] do_syscall_64+0x115/0x840 [ 595.843096][T15532] ? clear_bhb_loop+0x40/0x90 [ 595.843128][T15532] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 595.843157][T15532] RIP: 0033:0x7f1d4ed9ce59 [ 595.843179][T15532] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 595.843206][T15532] RSP: 002b:00007f1d4fbc4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 595.843233][T15532] RAX: ffffffffffffffda RBX: 00007f1d4f015fa0 RCX: 00007f1d4ed9ce59 [ 595.843253][T15532] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 000000000000000b [ 595.843271][T15532] RBP: 00007f1d4ee32d6f R08: 0000000000000000 R09: 0000000000000000 [ 595.843289][T15532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 595.843306][T15532] R13: 00007f1d4f016038 R14: 00007f1d4f015fa0 R15: 00007fffe6591678 [ 595.843334][T15532] [ 596.275124][T15532] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input6 [ 596.526051][T15522] page_owner info is not present (never set?)