last executing test programs: 24.451592767s ago: executing program 3 (id=2187): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/net/rpc/nfs4.nametoid/channel\x00', 0x42000, 0x0) read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000002100)=""/15, 0xf) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000000), 0x280100, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) shmctl$auto_SHM_STAT(0x7, 0xd, &(0x7f00000003c0)={{0x6, 0x0, 0x0, 0x5, 0x3, 0x8, 0x40}, 0x9, 0x81, 0x2, 0x0, @raw, @raw=0x1, 0x5, 0x0, &(0x7f0000000380)="dcf410bc", &(0x7f00000016c0)="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"}) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/raw6\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000e80)=""/215, 0xd7) mmap$auto(0xaf, 0x400008, 0xffd4, 0x9b75, 0x2, 0x8000) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) madvise$auto(0x2, 0xffffffffffff0005, 0x19) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x1000, 0x2) clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) capget$auto(0x0, 0xfffffffffffffffe) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/net/rpc/nfs4.nametoid/channel\x00', 0x8f3b7a51b80ebd01, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x80302, 0x0) sendfile$auto(r3, r3, 0x0, 0x2001) ioctl$auto(r2, 0x4bfa, 0xffffffffffffffff) write$auto_drm_edid_fops_drm_debugfs(0xffffffffffffffff, &(0x7f0000000580)="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", 0x4e00) mmap$auto(0x0, 0x400008, 0xfffffffffffffff8, 0x17, 0x2, 0x6) madvise$auto(0x0, 0x2000040080000004, 0xe) r4 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) write$auto_proc_mem_operations_base(r4, &(0x7f0000001680)="a7", 0xfffffc96) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0xc642, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r5 = socket(0x2, 0x2, 0x1) cachestat$auto(0xffffffffffffffff, &(0x7f00000000c0)={0x401, 0x428a}, 0x0, 0x0) close_range$auto(r5, 0xffffffffffffffff, 0x2) bpf$auto(0x0, &(0x7f0000000000)=@bpf_attr_4={0x1b, r5, 0x10000}, 0x10) ppoll$auto(&(0x7f0000000080)={0xffffffffffffffff, 0xf7f, 0x81}, 0x10, 0x0, 0x0, 0x8) 23.052369374s ago: executing program 3 (id=2189): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x10, 0x2, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001380)='/sys/devices/system/clocksource/clocksource0/unbind_clocksource\x00', 0xa001, 0x0) write$auto(r0, &(0x7f0000000780)='7\x00\\\xa0\x04|\xfe\xca\x12\xfa\b\x1c\xc7k\xff\xfe\x8e\xaf\xeeu~\a\xc0/(d\n\x05\x13EE\xf0\xad\r\xcb\xd3\xa83\xda}v\xcc\xfb\xcdm\x8f\nd\xca+4i{G\x18\x81J\x92\xf7\xc5,H\x88\xf6KRg\xab\xf2<^\xc7\x8fG# \x06\xc8!\x177GA\x84n\x0e\xa3\xa1\xdb\x8au\xf1\xee\xb25\x04 \x16\xbd\x9d\xa1;>\x99\x8d\x1d\x83>\xf5cE\x06\xe8\xb8\xc1)\x15\xe8\x1a\xef{\xfd\x19\xa6\x84V\x7f\xf5\x9f\xf0\xa4\x1b\xf7\xa5\x91.q\xc21k\n\xca\x91L/{d\xf6#\xb5\xb4\x01\xc2/\xdf\xb4\x89y|\xc7^c,\xf3\x98\x9fo\xaa\xb1\xbf\x92\x9bX\xc8\x8f\x13\x10K+~\xde\x00gib\x8a\xebm\xc1\n\xf4\x8a\x9eQ\xea\xa4\xb4\x16?*$\x1a\b\xa7\x8e\xe7dd[\rWN\xc8<\x8a:\\\x98\xc3yX?\xfd3\x06\xaf\xb10\x11 \x836\xb7\xe1+\xe3|B\xe7\xc6H\fS\xe5Y@\xdfZ\xdf\x9e\xd0\xa6\r\x94\xf6\xe0\xe1\x98v\x8d\x06\xfa\x06$\xf9s\xdb\x9c\xfd\xf5\xa3\xa1\x1a\x96b]}\x86\xc1\x84\xe4\xfc\x17\xe4\xaa\x8dL\x11uO\xd8Y\x17\xc4FK\x8b\x05\xcd\xe2J\xf60oA\x91\xf0\xe6\xd9B7P\xbb\xb6\xf4s\x8cl\x03tJ\xfa;&\xa4\xce\xc0\x9b\xc4w)\x9f~\x8d\xc9S\x8e\xf0+\x14\xaf\xd9]*\xe5L\xc5\x0e\xf1\f j\x8c\n\\#\x8dY\f\xa4\x16\x80\xe1K\xacW\xa8\xcaf\xac\xc0\xd8\xc5S*\xe8\xfd\xc1FK\x878\xce\xea2\x11J\x8aMF\x13W\x9ePL\x91\x17fs}\xfb\xa9\xf3\xbdi\xd27\x9a\xd4\xd6\xb1qu\xf0`\xd5\xcd\x9e\xbb\x8f', 0x1) 22.83093728s ago: executing program 3 (id=2190): close_range$auto(0x0, 0xfffffffffffff000, 0x2) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, 0x0) openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x680, 0x0) openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = io_uring_setup$auto(0x1, 0x0) close_range$auto(0x2, r0, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0xc) socket(0x2, 0x1, 0x106) r1 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/schedstat\x00', 0x80000, 0x0) bind$auto(r1, &(0x7f0000000080)=@in={0x2, 0xffff, @remote}, 0x6d) listen$auto(0x3, 0x81) accept$auto(0x3, 0x0, 0x0) socket(0x2, 0x1, 0x0) io_uring_setup$auto(0x4bf15e08, 0x0) r2 = openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0) read$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(r2, 0x0, 0x17) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x80802, 0x0) close_range$auto(0x2, 0x8, 0xddffffff) openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f00000000c0), 0x1000000, 0x0) 21.457842002s ago: executing program 3 (id=2194): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x400000003) openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, 0x0, 0x80101, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000040)={0x1c, r3, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2f000000}, 0x4000) 18.699547294s ago: executing program 3 (id=2199): r0 = socket(0x10, 0x2, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001380)='/sys/devices/system/clocksource/clocksource0/unbind_clocksource\x00', 0xa001, 0x0) write$auto(r0, &(0x7f0000000780)='7\x00\\\xa0\x04|\xfe\xca\x12\xfa\b\x1c\xc7k\xff\xfe\x8e\xaf\xeeu~\a\xc0/(d\n\x05\x13EE\xf0\xad\r\xcb\xd3\xa83\xda}v\xcc\xfb\xcdm\x8f\nd\xca+4i{G\x18\x81J\x92\xf7\xc5,H\x88\xf6KRg\xab\xf2<^\xc7\x8fG# \x06\xc8!\x177GA\x84n\x0e\xa3\xa1\xdb\x8au\xf1\xee\xb25\x04 \x16\xbd\x9d\xa1;>\x99\x8d\x1d\x83>\xf5cE\x06\xe8\xb8\xc1)\x15\xe8\x1a\xef{\xfd\x19\xa6\x84V\x7f\xf5\x9f\xf0\xa4\x1b\xf7\xa5\x91.q\xc21k\n\xca\x91L/{d\xf6#\xb5\xb4\x01\xc2/\xdf\xb4\x89y|\xc7^c,\xf3\x98\x9fo\xaa\xb1\xbf\x92\x9bX\xc8\x8f\x13\x10K+~\xde\x00gib\x8a\xebm\xc1\n\xf4\x8a\x9eQ\xea\xa4\xb4\x16?*$\x1a\b\xa7\x8e\xe7dd[\rWN\xc8<\x8a:\\\x98\xc3yX?\xfd3\x06\xaf\xb10\x11 \x836\xb7\xe1+\xe3|B\xe7\xc6H\fS\xe5Y@\xdfZ\xdf\x9e\xd0\xa6\r\x94\xf6\xe0\xe1\x98v\x8d\x06\xfa\x06$\xf9s\xdb\x9c\xfd\xf5\xa3\xa1\x1a\x96b]}\x86\xc1\x84\xe4\xfc\x17\xe4\xaa\x8dL\x11uO\xd8Y\x17\xc4FK\x8b\x05\xcd\xe2J\xf60oA\x91\xf0\xe6\xd9B7P\xbb\xb6\xf4s\x8cl\x03tJ\xfa;&\xa4\xce\xc0\x9b\xc4w)\x9f~\x8d\xc9S\x8e\xf0+\x14\xaf\xd9]*\xe5L\xc5\x0e\xf1\f j\x8c\n\\#\x8dY\f\xa4\x16\x80\xe1K\xacW\xa8\xcaf\xac\xc0\xd8\xc5S*\xe8\xfd\xc1FK\x878\xce\xea2\x11J\x8aMF\x13W\x9ePL\x91\x17fs}\xfb\xa9\xf3\xbdi\xd27\x9a\xd4\xd6\xb1qu\xf0`\xd5\xcd\x9e\xbb\x8f', 0x1) 17.41231551s ago: executing program 3 (id=2201): openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x902, 0x0) ioctl$auto(0x3, 0x80004508, 0x10000000000402) socket(0x2, 0x3, 0x100) r0 = socket(0x18, 0x80002, 0x8000004) syz_genetlink_get_family_id$auto_nl80211(0x0, r0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, 0x0, 0x80) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0xc0400, 0x0) open(0x0, 0x0, 0x408) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2082, 0x0) write$auto(r2, 0x0, 0x5) fsync$auto(0xffffffffffffffff) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x400, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0xc4428) socket(0x29, 0x2, 0x0) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x15, 0x5, 0x6) recvmmsg$auto(r3, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x6}, 0xffffbff9, 0x10, 0x0) 8.12263672s ago: executing program 0 (id=2221): r0 = socket(0x10, 0x2, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001380)='/sys/devices/system/clocksource/clocksource0/unbind_clocksource\x00', 0xa001, 0x0) write$auto(r0, &(0x7f0000000780)='7\x00\\\xa0\x04|\xfe\xca\x12\xfa\b\x1c\xc7k\xff\xfe\x8e\xaf\xeeu~\a\xc0/(d\n\x05\x13EE\xf0\xad\r\xcb\xd3\xa83\xda}v\xcc\xfb\xcdm\x8f\nd\xca+4i{G\x18\x81J\x92\xf7\xc5,H\x88\xf6KRg\xab\xf2<^\xc7\x8fG# \x06\xc8!\x177GA\x84n\x0e\xa3\xa1\xdb\x8au\xf1\xee\xb25\x04 \x16\xbd\x9d\xa1;>\x99\x8d\x1d\x83>\xf5cE\x06\xe8\xb8\xc1)\x15\xe8\x1a\xef{\xfd\x19\xa6\x84V\x7f\xf5\x9f\xf0\xa4\x1b\xf7\xa5\x91.q\xc21k\n\xca\x91L/{d\xf6#\xb5\xb4\x01\xc2/\xdf\xb4\x89y|\xc7^c,\xf3\x98\x9fo\xaa\xb1\xbf\x92\x9bX\xc8\x8f\x13\x10K+~\xde\x00gib\x8a\xebm\xc1\n\xf4\x8a\x9eQ\xea\xa4\xb4\x16?*$\x1a\b\xa7\x8e\xe7dd[\rWN\xc8<\x8a:\\\x98\xc3yX?\xfd3\x06\xaf\xb10\x11 \x836\xb7\xe1+\xe3|B\xe7\xc6H\fS\xe5Y@\xdfZ\xdf\x9e\xd0\xa6\r\x94\xf6\xe0\xe1\x98v\x8d\x06\xfa\x06$\xf9s\xdb\x9c\xfd\xf5\xa3\xa1\x1a\x96b]}\x86\xc1\x84\xe4\xfc\x17\xe4\xaa\x8dL\x11uO\xd8Y\x17\xc4FK\x8b\x05\xcd\xe2J\xf60oA\x91\xf0\xe6\xd9B7P\xbb\xb6\xf4s\x8cl\x03tJ\xfa;&\xa4\xce\xc0\x9b\xc4w)\x9f~\x8d\xc9S\x8e\xf0+\x14\xaf\xd9]*\xe5L\xc5\x0e\xf1\f j\x8c\n\\#\x8dY\f\xa4\x16\x80\xe1K\xacW\xa8\xcaf\xac\xc0\xd8\xc5S*\xe8\xfd\xc1FK\x878\xce\xea2\x11J\x8aMF\x13W\x9ePL\x91\x17fs}\xfb\xa9\xf3\xbdi\xd27\x9a\xd4\xd6\xb1qu\xf0`\xd5\xcd\x9e\xbb\x8f', 0x1) 7.818741256s ago: executing program 0 (id=2223): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x400000003) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r3, &(0x7f0000000480)={0x0, 0x2f, &(0x7f0000000440)={&(0x7f0000000040)={0x30, r4, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_SCOPE={0x9, 0x4, 'nfsd\x00'}, @NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x85}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0x30}}, 0x4000) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x1c, r4, 0x2, 0x70bd26, 0x25dfdbfc, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40840}, 0x8000) 7.529138734s ago: executing program 2 (id=2225): close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r1 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400000000000400, 0x9}, 0x9, 0x0) landlock_restrict_self$auto(r0, 0x0) acct$auto(&(0x7f0000000100)='/dev/snd/controlC1\x00') ioctl$auto_OSS_ALSAEMULVER(r1, 0x80044df9, &(0x7f0000000140)="0b52d2ee41846786a3213b8252f175964243975cee1282f6e19809eff7fecf40f110d8843352ed3f01d3c723182a7c8b83fc237d7126ab32d12ca46a4ca765838516184bbefe659593ad3f0a6d35485f1e116864d6cbc2b23984b06be76c8721235882aa8feacd8b943025a8f703949e3d6cde91f52e2bbbeb20f0e48c53309827b0fb0bd91d55f779c0ecad4d4e20b90a9bde4b8d3a95fe4b4e5a8be723416c397f40c178c00cce31dc91c20e40b5ec6bebf34d383fdca11cb66b0347ce97a47d1fa2ebaea0") close_range$auto(0x0, 0xfffffffffffff000, 0x2) r2 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r3 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x0, 0x401, 0x7}, 0x9, 0x0) landlock_restrict_self$auto(r3, 0x0) landlock_restrict_self$auto(r2, 0x0) openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/lu_gp_id\x00', 0x2183, 0x0) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/net/rpc/nfs4.nametoid/channel\x00', 0x42000, 0x0) read$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f0000002100)=""/15, 0xf) 7.361517274s ago: executing program 2 (id=2226): mmap$auto(0x44ba, 0x4005, 0x9, 0x14, 0xffffffffffffffff, 0x8000) r0 = io_uring_setup$auto(0x5, 0x0) mmap$auto(0x0, 0x8d4, 0x6, 0x6f52, r0, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nbd8\x00', 0x62743, 0x0) r1 = getpid() process_vm_readv$auto(r1, 0x0, 0x1, 0x0, 0x6, 0x0) prctl$auto(0x3d, 0x1, r1, 0x3, 0x200020000000007) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) madvise$auto(0x0, 0x1010001, 0x100000003) madvise$auto(0x1000, 0x400050, 0x9) fcntl$getown(0xffffffffffffffff, 0x9) ioctl$auto_BCH_IOCTL_DEV_USAGE_V2(0xffffffffffffffff, 0xc020bc12, 0x0) socket(0x1e, 0x5, 0x0) bind$auto(0x3, 0x0, 0x6a) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) preadv$auto(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0xffffffffffffde21}, 0x6, 0xae49, 0x8001) r2 = socket(0x2b, 0x1, 0x1) r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000000), 0x92602, 0x0) ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0) mmap$auto(0x7fffffffc, 0x694, 0x5, 0xd494, 0xfffffffffffffffa, 0x8002) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001480)={'veth0_virt_wifi\x00'}) ioctl$auto_SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, &(0x7f0000000280)="b38fc65a6042f2dc99df8ce9af2a56fcfe744238519bf9aee05482385524a4add537aea3d486f547d561cf78650e2557d85b4fef9334d00ca26bb62320f66a8fbd621368dab83ece89df0a3fff73ab25f7a19ebd0fd7e22be2e5b5d30c521e17d7ffaeede2c627652f5ffeed252b30691a45a4dd9e5559fc8d75") munmap$auto(0x8000, 0xffffffff) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) bpf$auto(0x3, &(0x7f00000001c0)=@task_fd_query={0x19, r2, 0x4, 0x880b, 0x8, 0xd, 0x66b, 0x4, 0x7ff}, 0x6f4) ioctl$auto(0x4000000000000c8, 0x400454d9, 0x3) 4.83118394s ago: executing program 2 (id=2228): ioctl$auto_FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) write$auto(0xffffffffffffffff, 0x0, 0x5) setsockopt$auto_SO_WIFI_STATUS(0xffffffffffffffff, 0x8000, 0x29, &(0x7f0000000140)='/sys/devices/virtual/net/bond0/bonding/arp_validate\x00', 0x200) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) select$auto(0xe, 0x0, 0x0, &(0x7f0000000000)={[0x1ff, 0x9, 0x8, 0x1, 0x2, 0x4, 0x15f4da0e, 0x100, 0xd08, 0xc, 0x200000000000c, 0x0, 0x6d2f, 0xffffffffffffff00, 0x2, 0x4000000000000d]}, 0x0) socket(0x2c, 0x1, 0x4004) getsockopt$auto(0xffffffffffffffff, 0x84, 0xc, 0x0, 0x0) setresgid$auto(0x800, 0xee01, 0xffffffffffffffff) setregid$auto(0xee01, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/bond0/bonding/arp_validate\x00', 0x2002, 0x0) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x1b, 0x0) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto_JFFS2_COMPR_MODE_FORCELZO(r0, 0x4, &(0x7f0000000000)='bridge_slave_0\x00', &(0x7f0000000100), 0x4) fanotify_init$auto(0x5, 0x0) mmap$auto(0x0, 0x853, 0x2000000000000002, 0xeb1, 0xffffffffffffffff, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/advisor_target_scan_time\x00', 0x201, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/conf/ip6gretap0/accept_source_route\x00', 0x20140, 0x0) read$auto(r1, 0x0, 0x1ff) write$auto(0x3, 0x0, 0xfdef) mbind$auto(0x0, 0x0, 0x100000000, 0x0, 0x6, 0x2) userfaultfd$auto(0x5) 4.584150654s ago: executing program 0 (id=2229): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x2, 0x3, 0xa) recvfrom$auto(r0, &(0x7f0000000380)="9b793f91e6fb63a48d676e673f58f782afab28d57d2b671d148731672d6241d3c9ecfeff43ec80d3c98413284e1dc4c4f8d7f93f708db998e6013d49062467295e8901e2a656e37f70697026fd595faf41016bf6a9c49bb0ec034705285bf4a68f52f6c32913dc26b09309c963083f665f38a7fc8a7af1c86635d28b28793538826e1c21c413ce46c5109ee234a7069cca711623db1d68e2c3a7d71c637d5e0cefb0319d19bde5c3534f964730730822f283ed3cd26349badceb81e98ba318e1af190d1feb3d36da4278fcedaf42e954fff63392397c9afed947bbbd16f7af728d5ff90af9fa9b1ec1fba9641cf7b0", 0xffffffff, 0x6, &(0x7f00000000c0)=@nl=@unspec, &(0x7f0000000140)=0x7) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x0) r1 = openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/projid_map\x00', 0x2, 0x0) ioctl$auto(r1, 0x7f, 0xffffffffffffffff) writev$auto(r1, 0x0, 0x7) socket(0x15, 0x5, 0x0) socket(0xa, 0x2, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x15, 0x0, 0x56b) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0xa8200, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'vcan0\x00'}) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) r2 = socket(0x1d, 0x2, 0x7) r3 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000001900)=""/4085, 0xff5) bind$auto(r2, &(0x7f0000000000)=@can={0x1d, r4}, 0x6a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'vcan0\x00', 0x0}) connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r5}, 0x18) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x687ca0b, &(0x7f00000002c0)={0x0, 0xffcc}, 0x1, 0x0, 0x0, 0xb}, 0x7}, 0x3, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xe, 0x940, 0x801ffde, 0x1, 0x2000000000000006, 0x3, 0x8, 0x5, 0x6, 0x7, 0x1, 0x9, 0x2, 0x3, 0x5, 0xfffffffffffffff9, 0x0, 0x0, 0x0, 0x0, 0x3bc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0xffffffff00000000, 0x0, 0x200, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x5, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc]}, 0x5, 0x2) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00'], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r6 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0xffffff9e}, 0x40000) 3.004635486s ago: executing program 0 (id=2233): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) r2 = setfsuid$auto(0xee00) r3 = setfsuid$auto(0xee01) setresuid$auto(r2, r3, r2) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_handshake(&(0x7f00000004c0), 0xffffffffffffffff) sendmsg$auto_HANDSHAKE_CMD_ACCEPT(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000000c0)={0x14, r5, 0x1, 0x70bd27, 0x25dfdc00}, 0x14}, 0x1, 0x0, 0x0, 0x4002040}, 0x2004881c) r6 = openat$auto_trace_fops_debugfs(0xffffffffffffff9c, &(0x7f0000000080), 0x80000, 0x0) r7 = semctl$auto_GETPID(0x3, 0x5, 0xb, 0xf78) shmctl$auto_SHM_UNLOCK(0x1, 0xc, &(0x7f00000002c0)={{0x1, 0xee01, 0xee01, 0x4, 0xc25, 0x6, 0xfff4}, 0x8, 0x4, 0x5, 0xbf, @inferred=0xffffffffffffffff, @inferred=0xffffffffffffffff, 0xffef, 0x0, &(0x7f00000000c0)="ab554d71972f05681177efe353e2c1f12c40bea74e95cbb0ee8e5696224a1d3228f7c99d6f9267", &(0x7f0000000100)="6c72b0b319b8f8dd93da5428257016938493e25aa2fdba02c5f328b0d72b001c1d6a6d4ad691bbd1b15269ba1012e7e1db4d08b0f2d0d35373a1e07514336558f57883d4ee30f20f42af3873afabea984692c53cff5628bb553d9c1a5b6d2f80d7a313e2bf8698460b0ed9fbb3909bb2b924537a48900a82b4cbfaae72427f007c332a4d4c5ed484f6d71eb68a22f218f1278daeab65427684543aee3c8e5de5c73b65039d52"}) r9 = openat$auto_memtype_fops_memtype(0xffffffffffffff9c, &(0x7f0000000200), 0x401, 0x0) sendmsg$auto_NL802154_CMD_SET_ACKREQ_DEFAULT(r0, &(0x7f0000000ac0)={&(0x7f0000000000), 0xc, &(0x7f0000000a80)={&(0x7f0000000340)=ANY=[@ANYBLOB='0\a\x00\x00', @ANYRES16=r1, @ANYBLOB="324025bd7000fcdbdf25ff0f0000872030800800910000", @ANYRES32=r2, @ANYBLOB="18b7df72317a25dc0fe379031248fdc6e0225140f3126ca063cddfd29918b409ae4568ccc139f39bfaaeb4ac228efd8f73a0be347d68a0b918b26555b1f09c0b1422e983045ffff6638feda34e138c7ee89734af8a75aaa25fcb2a3fcda439fd65ca882ffcfb9f19e08671ad1807b2695788523a66dcf095a74daa00080001000500000084062d802c0099800800980000000000040035800400a18014002500ff02000000000000000000000000000104009080ef0119800800d800", @ANYRES32=r4, @ANYBLOB='\b\x00(\x00', @ANYRES32=r6, @ANYBLOB="8b1f4627f127a54d8c3927c65123773565d3e524ec7a1e78ce825b509225dc0b8cffcd22400fa9ac13c3bd7ef163912022b8d393ad2a42d8918088bdcba58b9a664cd1441517a1a8ced33514090311f205736a3a0bb9c4572090d2d5b4b0bef01ddcff8645935f9b429573fd4dc0cfb6edde044a548b62d904004b8069e49bf41520fad406fdca9a3323f3139b4f29015ebe386436148a694d575d020e3ac502fee963b2ba09606314b70ffcd31c8277a786949def8b96821f6e62f28121735a3d8f5479c795622c11b1ce389f67bef49c6944f4e81f9dd2fce235e1ec1c663551f9a299cb3acad9665c524adc4e3b683328b91d39f608257fff7c4218d13ad12969abf718c738d93d595f6fd1845c6610631778dbb0e6f3dff41cf50f8fcac4bdc689cd0963cb67eba951d925b6bd2483b833807dd9ea9f893bc6a3ed79146308887a68e86aa3a856cafa4704d72bd4189076d750286ba0398ed1b155c5aa157df35027d8a83a9dccb70ad95022d3342d89ee90524e62bd8acab5c4ae15dd08b128243737eec8c65a0a05488ec3cfcfdae37f8c0447e406e2d8ac81452621e6c3a0847b7bf2dedf7bf9120e20ffdb4950cd26b6537b544631fed37fd31dfc588bc5c81ebd26a1ab58e16e0a12bc4e04006d800400a280040000800008005800", @ANYRES32=r7, @ANYBLOB="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", @ANYRES32=r8, @ANYBLOB="003643e7af05aa797f656db0f9880c97de1d5a7f50c90ec30a3008b3ce8281763b8a52180dcdd08eb57b01498c861368643063cc20c9e816eeb4012d461fc1589b6f94813d4e6e24d441e3e626261dd79e6f6c812b271f3f8b7291e8f38b080df112e072c2c966f81979e94fc1e71e845c5e6b387aff61fe67866daa6d5b19d0343c72b54245c89f5f2b115b8e22452c7464a6dbdbaea159694f8faa6d78274de40f0d0362fc81a4e9a8a2b7d74921762f5408004c00ac14142808006000", @ANYRES32=r9, @ANYBLOB="2d307337171134f258e6575ba1aa8b5424b742644d3d20c53729642e0c56a91a8651067a5f5a4f78c66126031e8548a5579f668ba7fb141584d461aeb656adde165d8586865a65ffeac044d5b30941e6ae51a3dc261a64a2e78205a6653b3d2d4642f7693ef6cd24b3c67dd3b075afc3a91c1052002eba3ca692e49bfca6f86379de35"], 0x730}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r10 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup/io.pressure\x00', 0x80000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r10, &(0x7f0000000240)=""/127, 0x7f) 2.691392624s ago: executing program 0 (id=2234): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x400000003) openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, 0x0, 0x80101, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000040)={0x1c, r3, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0x1c}, 0x1, 0x3e}, 0x4000) 2.689804577s ago: executing program 2 (id=2235): mmap$auto(0x0, 0x20007, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/hugepages/hugepages-2048kB/surplus_hugepages\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000001100)=""/4105, 0x1009) getcwd$auto(0x0, 0xffffffffffffffff) r1 = openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f0000000240)={0x80040, 0x80, 0x14}, 0x18) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) shutdown$auto(r1, 0x0) fanotify_init$auto(0x6a1, 0x6) socket(0x26, 0x80805, 0x0) sysfs$auto(0x2, 0x10000000000002c, 0x0) socket(0x25, 0x1, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = eventfd2$auto(0xcd2, 0x6) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), r3) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="2f212dbd7000fcdbdf252100000008000300", @ANYRES32=r5, @ANYRESDEC=r3], 0x24}}, 0x4000000) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r7 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/trace_options\x00', 0x8000, 0x0) r8 = socket(0xa, 0x2, 0x73) mmap$auto(0xfffffffffffffff9, 0x400008, 0xe1, 0x9b72, 0xffffffffffffffff, 0x8000) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x103642, 0x0) socket(0x2, 0x80002, 0x73) r9 = socket$nl_generic(0x10, 0x3, 0x10) r10 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="01002dbd7000f9dbdf250100000008000a0008000000050007003b000000080009009c781e01060002000100000008001700", @ANYRES32=r8], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x48080) close_range$auto(0x2, 0x8, 0x0) pread64$auto(r7, &(0x7f0000000ec0)='/sys/kernel/debug/dri/vkms/Virtual-1/edid_override\x00', 0x80000002, 0x40) r11 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r11, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01002dbd7000fddbdf250800030008000300", @ANYRES32=r12], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097d751f33e}, 0x80) (fail_nth: 1) 2.609215595s ago: executing program 1 (id=2236): mmap$auto(0x0, 0x20007, 0xdf, 0xeb1, 0x40000000000a5, 0x80000008000) r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0) ioctl$auto(r0, 0x9210641e, r0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/orangefs/perf_counter_reset\x00', 0x305600, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000001100)=""/4105, 0x1009) getcwd$auto(0x0, 0xffffffffffffffff) r2 = openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f0000000240)={0x80040, 0x80, 0x14}, 0x18) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) shutdown$auto(r2, 0x0) fanotify_init$auto(0x6a1, 0x6) socket(0x26, 0x80805, 0x0) sysfs$auto(0x2, 0x10000000000002c, 0x0) socket(0x25, 0x80000, 0x8) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = eventfd2$auto(0xcd2, 0x6) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), r4) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="2f212dbd7000fcdbdf252100000008000300", @ANYRES32=r6, @ANYRESDEC=r4], 0x24}}, 0x4000000) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r7 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/trace_options\x00', 0x8000, 0x0) r8 = socket(0xa, 0x2, 0x73) mmap$auto(0xfffffffffffffff9, 0x400008, 0xe1, 0x9b72, 0xffffffffffffffff, 0x8000) socket(0x2, 0x80002, 0x73) r9 = socket$nl_generic(0x10, 0x3, 0x10) r10 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="01002dbd7000f9dbdf250100000008000a0008000000050007003b000000080009009c781e01060002000100000008001700", @ANYRES32=r8], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x48080) close_range$auto(0x2, 0x8, 0x0) pread64$auto(r7, &(0x7f0000000ec0)='/sys/kernel/debug/dri/vkms/Virtual-1/edid_override\x00', 0x80000002, 0x40) r11 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000000)={'wlan0\x00'}) 1.556586498s ago: executing program 1 (id=2237): r0 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000000), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', 0x0}) sendmsg$auto_MACSEC_CMD_UPD_RXSA(0xffffffffffffffff, &(0x7f0000006200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x2c, r0, 0x23, 0x70bd27, 0x25dfdbfe, {}, [@MACSEC_ATTR_SA_CONFIG={0xc, 0x3, 0x0, 0x1, [@nested={0x5, 0x1, 0x0, 0x1, [@generic="03"]}]}, @MACSEC_ATTR_RXSC_CONFIG={0x4}, @MACSEC_ATTR_IFINDEX={0x8, 0x1, r2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4008008}, 0x0) 1.431302171s ago: executing program 1 (id=2238): mmap$auto(0x44ba, 0x4005, 0x9, 0x14, 0xffffffffffffffff, 0x8000) r0 = io_uring_setup$auto(0x5, 0x0) mmap$auto(0x0, 0x8d4, 0x6, 0x6f52, r0, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nbd8\x00', 0x62743, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = getpid() process_vm_readv$auto(r1, 0x0, 0x1, 0x0, 0x6, 0x0) prctl$auto(0x3d, 0x1, r1, 0x3, 0x200020000000007) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) madvise$auto(0x0, 0x1010001, 0x100000003) madvise$auto(0x1000, 0x400050, 0x9) fcntl$getown(0xffffffffffffffff, 0x9) ioctl$auto_BCH_IOCTL_DEV_USAGE_V2(0xffffffffffffffff, 0xc020bc12, 0x0) socket(0x1e, 0x5, 0x0) bind$auto(0x3, 0x0, 0x6a) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x800000ef) preadv$auto(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0xffffffffffffde21}, 0x6, 0xae49, 0x8001) r2 = socket(0x2b, 0x1, 0x1) r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000000), 0x92602, 0x0) ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0) mmap$auto(0x7fffffffc, 0x694, 0x5, 0xd494, 0xfffffffffffffffa, 0x8002) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001480)={'veth0_virt_wifi\x00'}) ioctl$auto_SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, &(0x7f0000000280)="b38fc65a6042f2dc99df8ce9af2a56fcfe744238519bf9aee05482385524a4add537aea3d486f547d561cf78650e2557d85b4fef9334d00ca26bb62320f66a8fbd621368dab83ece89df0a3fff73ab25f7a19ebd0fd7e22be2e5b5d30c521e17d7ffaeede2c627652f5ffeed252b30691a45a4dd9e5559fc8d75") munmap$auto(0x8000, 0xffffffff) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) bpf$auto(0x3, &(0x7f00000001c0)=@task_fd_query={0x19, r2, 0x4, 0x880b, 0x8, 0xd, 0x66b, 0x4, 0x7ff}, 0x6f4) ioctl$auto(0x4000000000000c8, 0x400454d9, 0x3) 1.073662651s ago: executing program 1 (id=2239): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x400000003) openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, 0x0, 0x80101, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000040)={0x1c, r3, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0x1c}}, 0x402f) 978.689209ms ago: executing program 1 (id=2240): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x2, 0x3, 0xa) recvfrom$auto(r0, &(0x7f0000000380)="9b793f91e6fb63a48d676e673f58f782afab28d57d2b671d148731672d6241d3c9ecfeff43ec80d3c98413284e1dc4c4f8d7f93f708db998e6013d49062467295e8901e2a656e37f70697026fd595faf41016bf6a9c49bb0ec034705285bf4a68f52f6c32913dc26b09309c963083f665f38a7fc8a7af1c86635d28b28793538826e1c21c413ce46c5109ee234a7069cca711623db1d68e2c3a7d71c637d5e0cefb0319d19bde5c3534f964730730822f283ed3cd26349badceb81e98ba318e1af190d1feb3d36da4278fcedaf42e954fff63392397c9afed947bbbd16f7af728d5ff90af9fa9b1ec1fba9641cf7b0", 0xffffffff, 0x6, &(0x7f00000000c0)=@nl=@unspec, &(0x7f0000000140)=0x7) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x0) r1 = openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/projid_map\x00', 0x2, 0x0) ioctl$auto(r1, 0x7f, 0xffffffffffffffff) writev$auto(r1, 0x0, 0x7) socket(0x15, 0x5, 0x0) socket(0xa, 0x2, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x15, 0x0, 0x56b) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0xa8200, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'vcan0\x00'}) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) r2 = socket(0x1d, 0x2, 0x7) r3 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000001900)=""/4085, 0xff5) bind$auto(r2, &(0x7f0000000000)=@can={0x1d, r4}, 0x6a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'vcan0\x00', 0x0}) connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r5}, 0x18) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x687ca0b, &(0x7f00000002c0)={0x0, 0xffcc}, 0x1, 0x0, 0x0, 0xb}, 0x7}, 0x3, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xe, 0x940, 0x801ffde, 0x1, 0x2000000000000006, 0x3, 0x8, 0x5, 0x6, 0x7, 0x1, 0x9, 0x2, 0x3, 0x5, 0xfffffffffffffff9, 0x0, 0x0, 0x0, 0x0, 0x3bc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0xffffffff00000000, 0x0, 0x200, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x5, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc]}, 0x5, 0x2) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00'], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r6 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0xffffff9e}, 0x40000) 883.969939ms ago: executing program 2 (id=2241): r0 = socket(0x10, 0x2, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa001, 0x0) write$auto(r0, &(0x7f0000000780)='7\x00\\\xa0\x04|\xfe\xca\x12\xfa\b\x1c\xc7k\xff\xfe\x8e\xaf\xeeu~\a\xc0/(d\n\x05\x13EE\xf0\xad\r\xcb\xd3\xa83\xda}v\xcc\xfb\xcdm\x8f\nd\xca+4i{G\x18\x81J\x92\xf7\xc5,H\x88\xf6KRg\xab\xf2<^\xc7\x8fG# \x06\xc8!\x177GA\x84n\x0e\xa3\xa1\xdb\x8au\xf1\xee\xb25\x04 \x16\xbd\x9d\xa1;>\x99\x8d\x1d\x83>\xf5cE\x06\xe8\xb8\xc1)\x15\xe8\x1a\xef{\xfd\x19\xa6\x84V\x7f\xf5\x9f\xf0\xa4\x1b\xf7\xa5\x91.q\xc21k\n\xca\x91L/{d\xf6#\xb5\xb4\x01\xc2/\xdf\xb4\x89y|\xc7^c,\xf3\x98\x9fo\xaa\xb1\xbf\x92\x9bX\xc8\x8f\x13\x10K+~\xde\x00gib\x8a\xebm\xc1\n\xf4\x8a\x9eQ\xea\xa4\xb4\x16?*$\x1a\b\xa7\x8e\xe7dd[\rWN\xc8<\x8a:\\\x98\xc3yX?\xfd3\x06\xaf\xb10\x11 \x836\xb7\xe1+\xe3|B\xe7\xc6H\fS\xe5Y@\xdfZ\xdf\x9e\xd0\xa6\r\x94\xf6\xe0\xe1\x98v\x8d\x06\xfa\x06$\xf9s\xdb\x9c\xfd\xf5\xa3\xa1\x1a\x96b]}\x86\xc1\x84\xe4\xfc\x17\xe4\xaa\x8dL\x11uO\xd8Y\x17\xc4FK\x8b\x05\xcd\xe2J\xf60oA\x91\xf0\xe6\xd9B7P\xbb\xb6\xf4s\x8cl\x03tJ\xfa;&\xa4\xce\xc0\x9b\xc4w)\x9f~\x8d\xc9S\x8e\xf0+\x14\xaf\xd9]*\xe5L\xc5\x0e\xf1\f j\x8c\n\\#\x8dY\f\xa4\x16\x80\xe1K\xacW\xa8\xcaf\xac\xc0\xd8\xc5S*\xe8\xfd\xc1FK\x878\xce\xea2\x11J\x8aMF\x13W\x9ePL\x91\x17fs}\xfb\xa9\xf3\xbdi\xd27\x9a\xd4\xd6\xb1qu\xf0`\xd5\xcd\x9e\xbb\x8f', 0x1) 764.398561ms ago: executing program 0 (id=2242): socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2a, 0x2, 0x1) openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000080), 0x2140, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x10002}, 0x1) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) pipe$auto(0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0x4048aec9, r0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/kernel/task_delayacct\x00', 0x80282, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0xfffffffffffffffd, 0xb, 0xa, 0x40007fff, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x5e, 0x80000001, 0x7, 0x2, 0x93, 0x400000001, 0x2]}, 0x0) writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3) r2 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0) ioctl$auto_PROCMAP_QUERY(r2, 0xc0686611, &(0x7f0000000080)={0x68, 0x34, 0x7fff, 0x5, 0x80000000009, 0x1, 0x9, 0x5, 0x5, 0x7f93, 0xfffffffe, 0x7ffffffd, 0x7ff, 0x7, 0x9}) io_uring_setup$auto(0x59, &(0x7f00000001c0)={0x0, 0x1d, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [0x0, 0xfffffffd], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c2, 0x8, 0x100000000}}) io_uring_register$auto(0x2, 0x19, 0x0, 0x0) 574.154402ms ago: executing program 2 (id=2243): close_range$auto(0x0, 0xfffffffffffff000, 0x2) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, 0x0) openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x680, 0x0) openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = io_uring_setup$auto(0x1, 0x0) close_range$auto(0x2, r0, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0xc) socket(0x2, 0x1, 0x106) r1 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/schedstat\x00', 0x80000, 0x0) bind$auto(r1, &(0x7f0000000080)=@in={0x2, 0xffff, @remote}, 0x6d) listen$auto(0x3, 0x81) accept$auto(0x3, 0x0, 0x0) socket(0x2, 0x1, 0x0) io_uring_setup$auto(0x4bf15e08, 0x0) r2 = openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0) read$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(r2, 0x0, 0x17) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x80802, 0x0) close_range$auto(0x2, 0x8, 0xfffbff7f) openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f00000000c0), 0x1000000, 0x0) 0s ago: executing program 1 (id=2244): mmap$auto(0x44ba, 0x4005, 0x9, 0x14, 0xffffffffffffffff, 0x8000) r0 = io_uring_setup$auto(0x5, 0x0) mmap$auto(0x0, 0x8d4, 0x6, 0x6f52, r0, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nbd8\x00', 0x62743, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = getpid() process_vm_readv$auto(r1, 0x0, 0x1, 0x0, 0x6, 0x0) prctl$auto(0x3d, 0x1, r1, 0x3, 0x200020000000007) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) madvise$auto(0x0, 0x1010001, 0x100000003) madvise$auto(0x1000, 0x400050, 0x9) fcntl$getown(0xffffffffffffffff, 0x9) ioctl$auto_BCH_IOCTL_DEV_USAGE_V2(0xffffffffffffffff, 0xc020bc12, 0x0) socket(0x1e, 0x5, 0x0) bind$auto(0x3, 0x0, 0x6a) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) (fail_nth: 6) preadv$auto(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0xffffffffffffde21}, 0x6, 0xae49, 0x8001) r2 = socket(0x2b, 0x1, 0x1) r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000000), 0x92602, 0x0) ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0) mmap$auto(0x7fffffffc, 0x694, 0x5, 0xd494, 0xfffffffffffffffa, 0x8002) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001480)={'veth0_virt_wifi\x00'}) ioctl$auto_SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, &(0x7f0000000280)="b38fc65a6042f2dc99df8ce9af2a56fcfe744238519bf9aee05482385524a4add537aea3d486f547d561cf78650e2557d85b4fef9334d00ca26bb62320f66a8fbd621368dab83ece89df0a3fff73ab25f7a19ebd0fd7e22be2e5b5d30c521e17d7ffaeede2c627652f5ffeed252b30691a45a4dd9e5559fc8d75") munmap$auto(0x8000, 0xffffffff) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) bpf$auto(0x3, &(0x7f00000001c0)=@task_fd_query={0x19, r2, 0x4, 0x880b, 0x8, 0xd, 0x66b, 0x4, 0x7ff}, 0x6f4) ioctl$auto(0x4000000000000c8, 0x400454d9, 0x3) kernel console output (not intermixed with test programs): TASK> [ 624.577322][T15277] dump_stack_lvl+0x16c/0x1f0 [ 624.577355][T15277] should_fail_ex+0x512/0x640 [ 624.577375][T15277] ? fs_reclaim_acquire+0xae/0x150 [ 624.577409][T15277] should_failslab+0xc2/0x120 [ 624.577437][T15277] kmem_cache_alloc_lru_noprof+0x87/0x770 [ 624.577460][T15277] ? register_lock_class+0x41/0x4b0 [ 624.577478][T15277] ? clear_pending_if_disabled+0xa8/0x210 [ 624.577504][T15277] ? sock_alloc_inode+0x25/0x1c0 [ 624.577535][T15277] ? __pfx_sock_alloc_inode+0x10/0x10 [ 624.577561][T15277] ? sock_alloc_inode+0x25/0x1c0 [ 624.577587][T15277] sock_alloc_inode+0x25/0x1c0 [ 624.577621][T15277] alloc_inode+0x64/0x240 [ 624.577645][T15277] sock_alloc+0x40/0x280 [ 624.577679][T15277] __sock_create+0xc2/0x8a0 [ 624.577713][T15277] xs_local_connect+0x140/0xd60 [ 624.577742][T15277] ? __pfx_xs_local_connect+0x10/0x10 [ 624.577768][T15277] ? do_raw_spin_unlock+0x172/0x230 [ 624.577791][T15277] ? _raw_spin_unlock+0x28/0x50 [ 624.577819][T15277] xprt_connect+0x7b7/0x990 [ 624.577852][T15277] ? __pfx_call_connect+0x10/0x10 [ 624.577870][T15277] call_connect+0x1d9/0x2e0 [ 624.577887][T15277] __rpc_execute+0x382/0x1160 [ 624.577913][T15277] ? __pfx___rpc_execute+0x10/0x10 [ 624.577934][T15277] ? rpc_task_get_xprt+0xef/0x2c0 [ 624.577963][T15277] rpc_execute+0x2e8/0x3f0 [ 624.577984][T15277] rpc_run_task+0x4a4/0x660 [ 624.578008][T15277] rpc_call_null_helper+0x136/0x180 [ 624.578032][T15277] ? __pfx_rpc_call_null_helper+0x10/0x10 [ 624.578055][T15277] ? rpc_client_register+0x3e0/0x680 [ 624.578078][T15277] ? __pfx_rpc_client_register+0x10/0x10 [ 624.578103][T15277] ? rcu_is_watching+0x12/0xc0 [ 624.578130][T15277] ? rpc_new_client+0xb60/0x12d0 [ 624.578158][T15277] rpc_ping+0xb4/0x150 [ 624.578179][T15277] rpc_create_xprt+0x387/0x440 [ 624.578203][T15277] rpc_create+0x469/0x7f0 [ 624.578227][T15277] ? __pfx_rpc_create+0x10/0x10 [ 624.578257][T15277] ? __lock_acquire+0x436/0x2890 [ 624.578290][T15277] ? rcu_is_watching+0x12/0xc0 [ 624.578316][T15277] ? trace_contention_end+0xdd/0x110 [ 624.578341][T15277] rpcb_create_af_local+0x11b/0x310 [ 624.578371][T15277] ? __pfx_rpcb_create_af_local+0x10/0x10 [ 624.578412][T15277] ? find_held_lock+0x2b/0x80 [ 624.578436][T15277] ? rpcb_create_local+0x1da/0x270 [ 624.578458][T15277] rpcb_create_local+0x1ee/0x270 [ 624.578477][T15277] svc_bind+0x1e8/0x260 [ 624.578498][T15277] nfsd_create_serv+0x2d2/0x480 [ 624.578524][T15277] ? find_held_lock+0x2b/0x80 [ 624.578548][T15277] ? __pfx_nfsd_create_serv+0x10/0x10 [ 624.578581][T15277] nfsd_svc+0x15e/0x8d0 [ 624.578610][T15277] nfsd_nl_threads_set_doit+0x526/0xbc0 [ 624.578634][T15277] genl_family_rcv_msg_doit+0x209/0x2f0 [ 624.578673][T15277] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 624.578703][T15277] ? genl_get_cmd+0x194/0x580 [ 624.578737][T15277] ? bpf_lsm_capable+0x9/0x10 [ 624.578762][T15277] ? security_capable+0x7e/0x260 [ 624.578796][T15277] genl_rcv_msg+0x55c/0x800 [ 624.578817][T15277] ? __pfx_genl_rcv_msg+0x10/0x10 [ 624.578835][T15277] ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10 [ 624.578858][T15277] ? __lock_acquire+0x436/0x2890 [ 624.578879][T15277] netlink_rcv_skb+0x158/0x420 [ 624.578905][T15277] ? __pfx_genl_rcv_msg+0x10/0x10 [ 624.578924][T15277] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 624.578960][T15277] ? netlink_deliver_tap+0x1ae/0xd30 [ 624.578989][T15277] genl_rcv+0x28/0x40 [ 624.579016][T15277] netlink_unicast+0x5aa/0x870 [ 624.579046][T15277] ? __pfx_netlink_unicast+0x10/0x10 [ 624.579082][T15277] netlink_sendmsg+0x8c8/0xdd0 [ 624.579112][T15277] ? __pfx_netlink_sendmsg+0x10/0x10 [ 624.579142][T15277] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 624.579178][T15277] ____sys_sendmsg+0xa5d/0xc30 [ 624.579207][T15277] ? copy_msghdr_from_user+0x10a/0x160 [ 624.579232][T15277] ? __pfx_____sys_sendmsg+0x10/0x10 [ 624.579259][T15277] ? preempt_schedule_thunk+0x16/0x30 [ 624.579282][T15277] ? try_to_wake_up+0xa67/0x1860 [ 624.579312][T15277] ___sys_sendmsg+0x134/0x1d0 [ 624.579336][T15277] ? __pfx____sys_sendmsg+0x10/0x10 [ 624.579360][T15277] ? futex_private_hash_put+0x160/0x1b0 [ 624.579406][T15277] __sys_sendmsg+0x16d/0x220 [ 624.579430][T15277] ? __pfx___sys_sendmsg+0x10/0x10 [ 624.579453][T15277] ? __x64_sys_futex+0x1e0/0x4c0 [ 624.579489][T15277] do_syscall_64+0xcd/0xf80 [ 624.579519][T15277] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 624.579539][T15277] RIP: 0033:0x7f68e758f7c9 [ 624.579556][T15277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 624.579575][T15277] RSP: 002b:00007f68e8370038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 624.579595][T15277] RAX: ffffffffffffffda RBX: 00007f68e77e5fa0 RCX: 00007f68e758f7c9 [ 624.579607][T15277] RDX: 0000000000004000 RSI: 0000200000000480 RDI: 0000000000000006 [ 624.579619][T15277] RBP: 00007f68e7613f91 R08: 0000000000000000 R09: 0000000000000000 [ 624.579630][T15277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 624.579640][T15277] R13: 00007f68e77e6038 R14: 00007f68e77e5fa0 R15: 00007ffcd60c0708 [ 624.579672][T15277] [ 626.544572][T15284] nvme_fabrics: missing parameter 'transport=%s' [ 626.554555][T15284] nvme_fabrics: missing parameter 'nqn=%s' [ 627.730309][T15277] socket: no more sockets [ 627.794738][T15277] NFSD: Failed to start, no listeners configured. [ 628.892123][T15324] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2029'. [ 629.641740][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 629.649210][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 631.040508][T15337] FAULT_INJECTION: forcing a failure. [ 631.040508][T15337] name fail_futex, interval 1, probability 0, space 0, times 0 [ 631.258468][T15337] CPU: 0 UID: 0 PID: 15337 Comm: syz.3.2033 Tainted: G U L syzkaller #0 PREEMPT(full) [ 631.258502][T15337] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 631.258510][T15337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 631.258520][T15337] Call Trace: [ 631.258527][T15337] [ 631.258535][T15337] dump_stack_lvl+0x16c/0x1f0 [ 631.258566][T15337] should_fail_ex+0x512/0x640 [ 631.258590][T15337] get_futex_key+0x1d0/0x15f0 [ 631.258612][T15337] ? __lock_acquire+0x436/0x2890 [ 631.258630][T15337] ? __pfx_get_futex_key+0x10/0x10 [ 631.258651][T15337] ? trace_sched_set_need_resched_tp+0xf3/0x130 [ 631.258688][T15337] futex_wait_setup+0x9d/0x570 [ 631.258721][T15337] __futex_wait+0x193/0x2f0 [ 631.258748][T15337] ? __pfx___futex_wait+0x10/0x10 [ 631.258776][T15337] ? __pfx_futex_wake_mark+0x10/0x10 [ 631.258804][T15337] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 631.258827][T15337] ? __hrtimer_setup+0x176/0x280 [ 631.258851][T15337] ? ktime_add_safe+0x60/0x70 [ 631.258876][T15337] futex_wait+0xe8/0x380 [ 631.258900][T15337] ? __pfx_futex_wait+0x10/0x10 [ 631.258924][T15337] ? __lock_acquire+0x436/0x2890 [ 631.258943][T15337] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 631.258982][T15337] do_futex+0x229/0x350 [ 631.259003][T15337] ? __pfx_do_futex+0x10/0x10 [ 631.259022][T15337] ? rcu_is_watching+0x12/0xc0 [ 631.259048][T15337] ? ktime_get+0x200/0x310 [ 631.259064][T15337] ? lockdep_hardirqs_on+0x7c/0x110 [ 631.259091][T15337] ? read_tsc+0x9/0x20 [ 631.259124][T15337] __x64_sys_futex+0x1e0/0x4c0 [ 631.259148][T15337] ? __pfx___x64_sys_futex+0x10/0x10 [ 631.259170][T15337] ? xfd_validate_state+0x61/0x180 [ 631.259194][T15337] do_syscall_64+0xcd/0xf80 [ 631.259223][T15337] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 631.259242][T15337] RIP: 0033:0x7fa462f8f7c9 [ 631.259258][T15337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 631.259277][T15337] RSP: 002b:00007ffd761349c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 631.259296][T15337] RAX: ffffffffffffffda RBX: 000000000009a0d0 RCX: 00007fa462f8f7c9 [ 631.259308][T15337] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa4631e5fac [ 631.259319][T15337] RBP: 0000000000000032 R08: 00007fa463df3000 R09: 0000001176134cbf [ 631.259330][T15337] R10: 00007ffd76134ac0 R11: 0000000000000246 R12: 00007fa4631e5fac [ 631.259342][T15337] R13: 00007ffd76134ac0 R14: 000000000009a102 R15: 00007ffd76134ae0 [ 631.259365][T15337] [ 631.539106][ C0] bridge0: port 3(hsr0) entered learning state [ 632.188719][T15349] FAULT_INJECTION: forcing a failure. [ 632.188719][T15349] name failslab, interval 1, probability 0, space 0, times 0 [ 632.229546][T15349] CPU: 0 UID: 0 PID: 15349 Comm: syz.1.2037 Tainted: G U L syzkaller #0 PREEMPT(full) [ 632.229587][T15349] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 632.229595][T15349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 632.229606][T15349] Call Trace: [ 632.229613][T15349] [ 632.229621][T15349] dump_stack_lvl+0x16c/0x1f0 [ 632.229662][T15349] should_fail_ex+0x512/0x640 [ 632.229684][T15349] ? fs_reclaim_acquire+0xae/0x150 [ 632.229717][T15349] should_failslab+0xc2/0x120 [ 632.229746][T15349] kmem_cache_alloc_lru_noprof+0x87/0x770 [ 632.229769][T15349] ? register_lock_class+0x41/0x4b0 [ 632.229787][T15349] ? clear_pending_if_disabled+0xa8/0x210 [ 632.229813][T15349] ? sock_alloc_inode+0x25/0x1c0 [ 632.229844][T15349] ? __pfx_sock_alloc_inode+0x10/0x10 [ 632.229871][T15349] ? sock_alloc_inode+0x25/0x1c0 [ 632.229896][T15349] sock_alloc_inode+0x25/0x1c0 [ 632.229923][T15349] alloc_inode+0x64/0x240 [ 632.229944][T15349] sock_alloc+0x40/0x280 [ 632.229970][T15349] __sock_create+0xc2/0x8a0 [ 632.230004][T15349] xs_local_connect+0x140/0xd60 [ 632.230031][T15349] ? __pfx_xs_local_connect+0x10/0x10 [ 632.230056][T15349] ? do_raw_spin_unlock+0x172/0x230 [ 632.230078][T15349] ? _raw_spin_unlock+0x28/0x50 [ 632.230105][T15349] xprt_connect+0x7b7/0x990 [ 632.230136][T15349] ? __pfx_call_connect+0x10/0x10 [ 632.230153][T15349] call_connect+0x1d9/0x2e0 [ 632.230171][T15349] __rpc_execute+0x382/0x1160 [ 632.230198][T15349] ? __pfx___rpc_execute+0x10/0x10 [ 632.230218][T15349] ? rpc_task_get_xprt+0xef/0x2c0 [ 632.230247][T15349] rpc_execute+0x2e8/0x3f0 [ 632.230268][T15349] rpc_run_task+0x4a4/0x660 [ 632.230292][T15349] rpc_call_null_helper+0x136/0x180 [ 632.230316][T15349] ? __pfx_rpc_call_null_helper+0x10/0x10 [ 632.230339][T15349] ? rpc_client_register+0x3e0/0x680 [ 632.230362][T15349] ? __pfx_rpc_client_register+0x10/0x10 [ 632.230388][T15349] ? rcu_is_watching+0x12/0xc0 [ 632.230414][T15349] ? rpc_new_client+0xb60/0x12d0 [ 632.230437][T15349] rpc_ping+0xb4/0x150 [ 632.230458][T15349] rpc_create_xprt+0x387/0x440 [ 632.230505][T15349] rpc_create+0x469/0x7f0 [ 632.230530][T15349] ? __pfx_rpc_create+0x10/0x10 [ 632.230561][T15349] ? __lock_acquire+0x436/0x2890 [ 632.230595][T15349] ? rcu_is_watching+0x12/0xc0 [ 632.230621][T15349] ? trace_contention_end+0xdd/0x110 [ 632.230654][T15349] rpcb_create_af_local+0x11b/0x310 [ 632.230686][T15349] ? __pfx_rpcb_create_af_local+0x10/0x10 [ 632.230726][T15349] ? find_held_lock+0x2b/0x80 [ 632.230751][T15349] ? rpcb_create_local+0x1da/0x270 [ 632.230773][T15349] rpcb_create_local+0x1ee/0x270 [ 632.230792][T15349] svc_bind+0x1e8/0x260 [ 632.230813][T15349] nfsd_create_serv+0x2d2/0x480 [ 632.230839][T15349] ? find_held_lock+0x2b/0x80 [ 632.230863][T15349] ? __pfx_nfsd_create_serv+0x10/0x10 [ 632.230896][T15349] nfsd_svc+0x15e/0x8d0 [ 632.230925][T15349] nfsd_nl_threads_set_doit+0x526/0xbc0 [ 632.230949][T15349] genl_family_rcv_msg_doit+0x209/0x2f0 [ 632.230981][T15349] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 632.231012][T15349] ? genl_get_cmd+0x194/0x580 [ 632.231046][T15349] ? bpf_lsm_capable+0x9/0x10 [ 632.231071][T15349] ? security_capable+0x7e/0x260 [ 632.231105][T15349] genl_rcv_msg+0x55c/0x800 [ 632.231125][T15349] ? __pfx_genl_rcv_msg+0x10/0x10 [ 632.231143][T15349] ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10 [ 632.231165][T15349] ? __lock_acquire+0x436/0x2890 [ 632.231187][T15349] netlink_rcv_skb+0x158/0x420 [ 632.231213][T15349] ? __pfx_genl_rcv_msg+0x10/0x10 [ 632.231232][T15349] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 632.231268][T15349] ? netlink_deliver_tap+0x1ae/0xd30 [ 632.231297][T15349] genl_rcv+0x28/0x40 [ 632.231324][T15349] netlink_unicast+0x5aa/0x870 [ 632.231354][T15349] ? __pfx_netlink_unicast+0x10/0x10 [ 632.231390][T15349] netlink_sendmsg+0x8c8/0xdd0 [ 632.231420][T15349] ? __pfx_netlink_sendmsg+0x10/0x10 [ 632.231450][T15349] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 632.231485][T15349] ____sys_sendmsg+0xa5d/0xc30 [ 632.231515][T15349] ? copy_msghdr_from_user+0x10a/0x160 [ 632.231539][T15349] ? __pfx_____sys_sendmsg+0x10/0x10 [ 632.231566][T15349] ? preempt_schedule_thunk+0x16/0x30 [ 632.231589][T15349] ? try_to_wake_up+0xa67/0x1860 [ 632.231619][T15349] ___sys_sendmsg+0x134/0x1d0 [ 632.231650][T15349] ? __pfx____sys_sendmsg+0x10/0x10 [ 632.231674][T15349] ? futex_private_hash_put+0x160/0x1b0 [ 632.231721][T15349] __sys_sendmsg+0x16d/0x220 [ 632.231745][T15349] ? __pfx___sys_sendmsg+0x10/0x10 [ 632.231768][T15349] ? __x64_sys_futex+0x1e0/0x4c0 [ 632.231803][T15349] do_syscall_64+0xcd/0xf80 [ 632.231833][T15349] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 632.231853][T15349] RIP: 0033:0x7f68e758f7c9 [ 632.231870][T15349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 632.231889][T15349] RSP: 002b:00007f68e8370038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 632.231908][T15349] RAX: ffffffffffffffda RBX: 00007f68e77e5fa0 RCX: 00007f68e758f7c9 [ 632.231921][T15349] RDX: 0000000000004000 RSI: 0000200000000480 RDI: 0000000000000006 [ 632.231932][T15349] RBP: 00007f68e7613f91 R08: 0000000000000000 R09: 0000000000000000 [ 632.231944][T15349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 632.231955][T15349] R13: 00007f68e77e6038 R14: 00007f68e77e5fa0 R15: 00007ffcd60c0708 [ 632.231980][T15349] [ 633.339699][T15349] socket: no more sockets [ 633.702307][T15349] NFSD: Failed to start, no listeners configured. [ 633.927075][T15358] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2039'. [ 634.053339][T15358] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2039'. [ 636.071761][T15395] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 637.098450][T15411] random: crng reseeded on system resumption [ 637.108430][T15409] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2052'. [ 637.176194][T15412] FAULT_INJECTION: forcing a failure. [ 637.176194][T15412] name failslab, interval 1, probability 0, space 0, times 0 [ 637.322345][T15412] CPU: 0 UID: 0 PID: 15412 Comm: syz.1.2053 Tainted: G U L syzkaller #0 PREEMPT(full) [ 637.322379][T15412] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 637.322386][T15412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 637.322397][T15412] Call Trace: [ 637.322404][T15412] [ 637.322411][T15412] dump_stack_lvl+0x16c/0x1f0 [ 637.322444][T15412] should_fail_ex+0x512/0x640 [ 637.322464][T15412] ? __kvmalloc_node_noprof+0x129/0xa40 [ 637.322492][T15412] should_failslab+0xc2/0x120 [ 637.322521][T15412] __kvmalloc_node_noprof+0x14a/0xa40 [ 637.322548][T15412] ? io_alloc_cache_init+0x38/0x170 [ 637.322581][T15412] ? io_alloc_cache_init+0x38/0x170 [ 637.322608][T15412] ? __init_waitqueue_head+0xca/0x150 [ 637.322630][T15412] io_alloc_cache_init+0x38/0x170 [ 637.322660][T15412] io_uring_setup+0x578/0x1f60 [ 637.322687][T15412] ? __pfx_io_uring_setup+0x10/0x10 [ 637.322712][T15412] ? do_futex+0x122/0x350 [ 637.322734][T15412] ? __pfx_do_futex+0x10/0x10 [ 637.322763][T15412] ? fput+0x70/0xf0 [ 637.322782][T15412] ? xfd_validate_state+0x61/0x180 [ 637.322799][T15412] ? __pfx___do_sys_close_range+0x10/0x10 [ 637.322832][T15412] __x64_sys_io_uring_setup+0xc2/0x170 [ 637.322858][T15412] do_syscall_64+0xcd/0xf80 [ 637.322887][T15412] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 637.322915][T15412] RIP: 0033:0x7f68e758f7c9 [ 637.322930][T15412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 637.322949][T15412] RSP: 002b:00007f68e834f038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 637.322980][T15412] RAX: ffffffffffffffda RBX: 00007f68e77e6090 RCX: 00007f68e758f7c9 [ 637.322992][T15412] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000406 [ 637.323003][T15412] RBP: 00007f68e7613f91 R08: 0000000000000000 R09: 0000000000000000 [ 637.323015][T15412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 637.323025][T15412] R13: 00007f68e77e6128 R14: 00007f68e77e6090 R15: 00007ffcd60c0708 [ 637.323048][T15412] [ 637.323174][T15412] FAULT_INJECTION: forcing a failure. [ 637.323174][T15412] name fail_futex, interval 1, probability 0, space 0, times 0 [ 637.624145][T15423] FAULT_INJECTION: forcing a failure. [ 637.624145][T15423] name failslab, interval 1, probability 0, space 0, times 0 [ 637.673338][T15423] CPU: 0 UID: 0 PID: 15423 Comm: syz.0.2056 Tainted: G U L syzkaller #0 PREEMPT(full) [ 637.673375][T15423] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 637.673383][T15423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 637.673395][T15423] Call Trace: [ 637.673402][T15423] [ 637.673411][T15423] dump_stack_lvl+0x16c/0x1f0 [ 637.673446][T15423] should_fail_ex+0x512/0x640 [ 637.673468][T15423] ? kmem_cache_alloc_noprof+0x62/0x770 [ 637.673494][T15423] should_failslab+0xc2/0x120 [ 637.673528][T15423] kmem_cache_alloc_noprof+0x83/0x770 [ 637.673551][T15423] ? __kernfs_new_node+0xd2/0x990 [ 637.673579][T15423] ? __kernfs_new_node+0xd2/0x990 [ 637.673600][T15423] __kernfs_new_node+0xd2/0x990 [ 637.673629][T15423] ? __pfx_number+0x10/0x10 [ 637.673648][T15423] ? __pfx___kernfs_new_node+0x10/0x10 [ 637.673675][T15423] ? find_held_lock+0x2b/0x80 [ 637.673701][T15423] ? kernfs_root+0xee/0x2a0 [ 637.673726][T15423] kernfs_new_node+0x13c/0x1e0 [ 637.673755][T15423] kernfs_create_dir_ns+0x4c/0x1a0 [ 637.673784][T15423] sysfs_create_dir_ns+0x13a/0x2b0 [ 637.673806][T15423] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 637.673827][T15423] ? find_held_lock+0x2b/0x80 [ 637.673855][T15423] ? rpc_sysfs_client_namespace+0xd/0x40 [ 637.673892][T15423] kobject_add_internal+0x2c4/0x9d0 [ 637.673910][T15423] ? kmemdup_array+0x11/0x60 [ 637.673936][T15423] kobject_init_and_add+0x11b/0x190 [ 637.673956][T15423] ? __pfx_kobject_init_and_add+0x10/0x10 [ 637.673987][T15423] rpc_sysfs_client_setup+0x190/0x320 [ 637.674016][T15423] ? __pfx_rpc_sysfs_client_setup+0x10/0x10 [ 637.674045][T15423] ? rpc_net_ns+0xe8/0x2a0 [ 637.674069][T15423] rpc_new_client+0x948/0x12d0 [ 637.674096][T15423] rpc_create_xprt+0xd9/0x440 [ 637.674120][T15423] rpc_create+0x469/0x7f0 [ 637.674144][T15423] ? __pfx_rpc_create+0x10/0x10 [ 637.674173][T15423] ? __lock_acquire+0x436/0x2890 [ 637.674206][T15423] ? rcu_is_watching+0x12/0xc0 [ 637.674232][T15423] ? trace_contention_end+0xdd/0x110 [ 637.674256][T15423] rpcb_create_af_local+0x11b/0x310 [ 637.674287][T15423] ? __pfx_rpcb_create_af_local+0x10/0x10 [ 637.674327][T15423] ? find_held_lock+0x2b/0x80 [ 637.674352][T15423] ? rpcb_create_local+0x1da/0x270 [ 637.674379][T15423] rpcb_create_local+0x1ee/0x270 [ 637.674397][T15423] svc_bind+0x1e8/0x260 [ 637.674418][T15423] nfsd_create_serv+0x2d2/0x480 [ 637.674444][T15423] ? find_held_lock+0x2b/0x80 [ 637.674467][T15423] ? __pfx_nfsd_create_serv+0x10/0x10 [ 637.674500][T15423] nfsd_svc+0x15e/0x8d0 [ 637.674529][T15423] nfsd_nl_threads_set_doit+0x526/0xbc0 [ 637.674553][T15423] genl_family_rcv_msg_doit+0x209/0x2f0 [ 637.674586][T15423] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 637.674616][T15423] ? genl_get_cmd+0x194/0x580 [ 637.674656][T15423] ? bpf_lsm_capable+0x9/0x10 [ 637.674681][T15423] ? security_capable+0x7e/0x260 [ 637.674715][T15423] genl_rcv_msg+0x55c/0x800 [ 637.674735][T15423] ? __pfx_genl_rcv_msg+0x10/0x10 [ 637.674754][T15423] ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10 [ 637.674782][T15423] netlink_rcv_skb+0x158/0x420 [ 637.674808][T15423] ? __pfx_genl_rcv_msg+0x10/0x10 [ 637.674827][T15423] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 637.674863][T15423] ? netlink_deliver_tap+0x1ae/0xd30 [ 637.674892][T15423] genl_rcv+0x28/0x40 [ 637.674919][T15423] netlink_unicast+0x5aa/0x870 [ 637.674949][T15423] ? __pfx_netlink_unicast+0x10/0x10 [ 637.674985][T15423] netlink_sendmsg+0x8c8/0xdd0 [ 637.675015][T15423] ? __pfx_netlink_sendmsg+0x10/0x10 [ 637.675045][T15423] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 637.675080][T15423] ____sys_sendmsg+0xa5d/0xc30 [ 637.675110][T15423] ? copy_msghdr_from_user+0x10a/0x160 [ 637.675133][T15423] ? __pfx_____sys_sendmsg+0x10/0x10 [ 637.675161][T15423] ? preempt_schedule_thunk+0x16/0x30 [ 637.675184][T15423] ? try_to_wake_up+0xa67/0x1860 [ 637.675213][T15423] ___sys_sendmsg+0x134/0x1d0 [ 637.675238][T15423] ? __pfx____sys_sendmsg+0x10/0x10 [ 637.675261][T15423] ? futex_private_hash_put+0x160/0x1b0 [ 637.675308][T15423] __sys_sendmsg+0x16d/0x220 [ 637.675332][T15423] ? __pfx___sys_sendmsg+0x10/0x10 [ 637.675355][T15423] ? __x64_sys_futex+0x1e0/0x4c0 [ 637.675391][T15423] do_syscall_64+0xcd/0xf80 [ 637.675421][T15423] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 637.675441][T15423] RIP: 0033:0x7fd29ad8f7c9 [ 637.675457][T15423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 637.675476][T15423] RSP: 002b:00007fd29bc0b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 637.675496][T15423] RAX: ffffffffffffffda RBX: 00007fd29afe5fa0 RCX: 00007fd29ad8f7c9 [ 637.675508][T15423] RDX: 0000000000004000 RSI: 0000200000000480 RDI: 0000000000000006 [ 637.675520][T15423] RBP: 00007fd29ae13f91 R08: 0000000000000000 R09: 0000000000000000 [ 637.675531][T15423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 637.675542][T15423] R13: 00007fd29afe6038 R14: 00007fd29afe5fa0 R15: 00007fffc7b28e28 [ 637.675566][T15423] [ 638.170528][T15423] kobject: kobject_add_internal failed for clnt-0 (error: -12 parent: rpc-clients) [ 638.789590][T15423] NFSD: Failed to start, no listeners configured. [ 638.898776][T15427] FAULT_INJECTION: forcing a failure. [ 638.898776][T15427] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 638.948875][T15427] CPU: 0 UID: 0 PID: 15427 Comm: syz.3.2057 Tainted: G U L syzkaller #0 PREEMPT(full) [ 638.948909][T15427] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 638.948916][T15427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 638.948928][T15427] Call Trace: [ 638.948934][T15427] [ 638.948941][T15427] dump_stack_lvl+0x16c/0x1f0 [ 638.948975][T15427] should_fail_ex+0x512/0x640 [ 638.949000][T15427] _copy_to_user+0x32/0xd0 [ 638.949021][T15427] simple_read_from_buffer+0xcb/0x170 [ 638.949049][T15427] proc_fail_nth_read+0x197/0x240 [ 638.949081][T15427] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 638.949113][T15427] ? rw_verify_area+0xcf/0x6c0 [ 638.949136][T15427] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 638.949166][T15427] vfs_read+0x1e4/0xcf0 [ 638.949193][T15427] ? __pfx___mutex_lock+0x10/0x10 [ 638.949224][T15427] ? __pfx_vfs_read+0x10/0x10 [ 638.949255][T15427] ? __fget_files+0x20e/0x3c0 [ 638.949287][T15427] ksys_read+0x12a/0x250 [ 638.949313][T15427] ? __pfx_ksys_read+0x10/0x10 [ 638.949345][T15427] do_syscall_64+0xcd/0xf80 [ 638.949374][T15427] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 638.949393][T15427] RIP: 0033:0x7fa462f8e1dc [ 638.949409][T15427] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 638.949428][T15427] RSP: 002b:00007fa463df2030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 638.949446][T15427] RAX: ffffffffffffffda RBX: 00007fa4631e5fa0 RCX: 00007fa462f8e1dc [ 638.949458][T15427] RDX: 000000000000000f RSI: 00007fa463df20a0 RDI: 0000000000000003 [ 638.949470][T15427] RBP: 00007fa463df2090 R08: 0000000000000000 R09: 0000000000000000 [ 638.949481][T15427] R10: 0000000000000fff R11: 0000000000000246 R12: 0000000000000001 [ 638.949492][T15427] R13: 00007fa4631e6038 R14: 00007fa4631e5fa0 R15: 00007ffd76134868 [ 638.949516][T15427] [ 639.197076][T15412] CPU: 0 UID: 0 PID: 15412 Comm: syz.1.2053 Tainted: G U L syzkaller #0 PREEMPT(full) [ 639.197110][T15412] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 639.197118][T15412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 639.197129][T15412] Call Trace: [ 639.197135][T15412] [ 639.197142][T15412] dump_stack_lvl+0x16c/0x1f0 [ 639.197175][T15412] should_fail_ex+0x512/0x640 [ 639.197198][T15412] get_futex_key+0x1d0/0x15f0 [ 639.197221][T15412] ? __pfx_get_futex_key+0x10/0x10 [ 639.197244][T15412] ? rcu_is_watching+0x12/0xc0 [ 639.197272][T15412] futex_wake+0xea/0x530 [ 639.197298][T15412] ? io_alloc_cache_free+0x1eb/0x2e0 [ 639.197327][T15412] ? __pfx_futex_wake+0x10/0x10 [ 639.197354][T15412] ? io_uring_setup+0x1678/0x1f60 [ 639.197378][T15412] ? io_uring_setup+0x137/0x1f60 [ 639.197406][T15412] do_futex+0x1e3/0x350 [ 639.197427][T15412] ? __pfx_do_futex+0x10/0x10 [ 639.197454][T15412] __x64_sys_futex+0x1e0/0x4c0 [ 639.197477][T15412] ? fput+0x70/0xf0 [ 639.197494][T15412] ? __pfx___x64_sys_futex+0x10/0x10 [ 639.197516][T15412] ? xfd_validate_state+0x61/0x180 [ 639.197532][T15412] ? __pfx___do_sys_close_range+0x10/0x10 [ 639.197567][T15412] do_syscall_64+0xcd/0xf80 [ 639.197595][T15412] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 639.197615][T15412] RIP: 0033:0x7f68e758f7c9 [ 639.197630][T15412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 639.197649][T15412] RSP: 002b:00007f68e834f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 639.197667][T15412] RAX: ffffffffffffffda RBX: 00007f68e77e6098 RCX: 00007f68e758f7c9 [ 639.197679][T15412] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f68e77e609c [ 639.197691][T15412] RBP: 00007f68e77e6090 R08: 00007f68e8371000 R09: 0000000000000000 [ 639.197702][T15412] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 639.197713][T15412] R13: 00007f68e77e6128 R14: 00007ffcd60c0620 R15: 00007ffcd60c0708 [ 639.197735][T15412] [ 641.007724][T15442] netlink: zone id is out of range [ 641.096975][T15434] kexec: Could not allocate control_code_buffer [ 641.120923][T15441] netlink: set zone limit has 8 unknown bytes [ 641.779278][T15466] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2064'. [ 642.331758][T15475] FAULT_INJECTION: forcing a failure. [ 642.331758][T15475] name failslab, interval 1, probability 0, space 0, times 0 [ 642.350669][T14315] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1401 with max blocks 2 with error 117 [ 642.427158][T15475] CPU: 0 UID: 0 PID: 15475 Comm: syz.0.2069 Tainted: G U L syzkaller #0 PREEMPT(full) [ 642.427191][T15475] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 642.427199][T15475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 642.427209][T15475] Call Trace: [ 642.427216][T15475] [ 642.427224][T15475] dump_stack_lvl+0x16c/0x1f0 [ 642.427257][T15475] should_fail_ex+0x512/0x640 [ 642.427280][T15475] ? __kmalloc_noprof+0xca/0x910 [ 642.427303][T15475] should_failslab+0xc2/0x120 [ 642.427331][T15475] __kmalloc_noprof+0xeb/0x910 [ 642.427351][T15475] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 642.427389][T15475] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 642.427420][T15475] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 642.427457][T15475] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 642.427488][T15475] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 642.427519][T15475] ? genl_get_cmd+0x194/0x580 [ 642.427551][T15475] ? bpf_lsm_capable+0x9/0x10 [ 642.427576][T15475] ? security_capable+0x7e/0x260 [ 642.427609][T15475] genl_rcv_msg+0x55c/0x800 [ 642.427635][T15475] ? __pfx_genl_rcv_msg+0x10/0x10 [ 642.427653][T15475] ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10 [ 642.427681][T15475] netlink_rcv_skb+0x158/0x420 [ 642.427708][T15475] ? __pfx_genl_rcv_msg+0x10/0x10 [ 642.427726][T15475] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 642.427761][T15475] ? netlink_deliver_tap+0x1ae/0xd30 [ 642.427789][T15475] genl_rcv+0x28/0x40 [ 642.427815][T15475] netlink_unicast+0x5aa/0x870 [ 642.427844][T15475] ? __pfx_netlink_unicast+0x10/0x10 [ 642.427878][T15475] netlink_sendmsg+0x8c8/0xdd0 [ 642.427909][T15475] ? __pfx_netlink_sendmsg+0x10/0x10 [ 642.427938][T15475] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 642.427973][T15475] ____sys_sendmsg+0xa5d/0xc30 [ 642.428003][T15475] ? copy_msghdr_from_user+0x10a/0x160 [ 642.428029][T15475] ? __pfx_____sys_sendmsg+0x10/0x10 [ 642.428068][T15475] ___sys_sendmsg+0x134/0x1d0 [ 642.428092][T15475] ? __pfx____sys_sendmsg+0x10/0x10 [ 642.428141][T15475] __sys_sendmsg+0x16d/0x220 [ 642.428170][T15475] ? __pfx___sys_sendmsg+0x10/0x10 [ 642.428207][T15475] do_syscall_64+0xcd/0xf80 [ 642.428237][T15475] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 642.428256][T15475] RIP: 0033:0x7fd29ad8f7c9 [ 642.428272][T15475] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 642.428291][T15475] RSP: 002b:00007fd29bc0b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 642.428309][T15475] RAX: ffffffffffffffda RBX: 00007fd29afe5fa0 RCX: 00007fd29ad8f7c9 [ 642.428322][T15475] RDX: 0000000000004000 RSI: 0000200000000480 RDI: 0000000000000006 [ 642.428333][T15475] RBP: 00007fd29bc0b090 R08: 0000000000000000 R09: 0000000000000000 [ 642.428344][T15475] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 642.428355][T15475] R13: 00007fd29afe6038 R14: 00007fd29afe5fa0 R15: 00007fffc7b28e28 [ 642.428378][T15475] [ 642.735890][T14315] EXT4-fs (sda1): This should not happen!! Data will be lost [ 642.735890][T14315] [ 643.234402][T15476] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 643.255010][T15476] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 643.285113][T15476] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 643.398519][T15476] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 645.384153][T15480] Bluetooth: hci0: command 0x0c1a tx timeout [ 645.393633][ T5851] Bluetooth: hci1: command 0x0c1a tx timeout [ 645.458282][ T5851] Bluetooth: hci2: command 0x0c1a tx timeout [ 645.618975][ T5851] Bluetooth: hci3: command 0x0c1a tx timeout [ 646.099816][T15521] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2078'. [ 646.616960][T15529] FAULT_INJECTION: forcing a failure. [ 646.616960][T15529] name failslab, interval 1, probability 0, space 0, times 0 [ 646.759514][T15529] CPU: 0 UID: 0 PID: 15529 Comm: syz.2.2080 Tainted: G U L syzkaller #0 PREEMPT(full) [ 646.759549][T15529] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 646.759557][T15529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 646.759577][T15529] Call Trace: [ 646.759584][T15529] [ 646.759591][T15529] dump_stack_lvl+0x16c/0x1f0 [ 646.759626][T15529] should_fail_ex+0x512/0x640 [ 646.759647][T15529] ? kmem_cache_alloc_noprof+0x62/0x770 [ 646.759673][T15529] should_failslab+0xc2/0x120 [ 646.759702][T15529] kmem_cache_alloc_noprof+0x83/0x770 [ 646.759725][T15529] ? __kernfs_new_node+0xd2/0x990 [ 646.759751][T15529] ? __kernfs_new_node+0xd2/0x990 [ 646.759771][T15529] __kernfs_new_node+0xd2/0x990 [ 646.759794][T15529] ? __pfx_number+0x10/0x10 [ 646.759813][T15529] ? __pfx___kernfs_new_node+0x10/0x10 [ 646.759841][T15529] ? find_held_lock+0x2b/0x80 [ 646.759866][T15529] ? kernfs_root+0xee/0x2a0 [ 646.759892][T15529] kernfs_new_node+0x13c/0x1e0 [ 646.759920][T15529] kernfs_create_dir_ns+0x4c/0x1a0 [ 646.759948][T15529] sysfs_create_dir_ns+0x13a/0x2b0 [ 646.759970][T15529] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 646.760003][T15529] ? find_held_lock+0x2b/0x80 [ 646.760031][T15529] ? rpc_sysfs_client_namespace+0xd/0x40 [ 646.760059][T15529] kobject_add_internal+0x2c4/0x9d0 [ 646.760077][T15529] ? kmemdup_array+0x11/0x60 [ 646.760102][T15529] kobject_init_and_add+0x11b/0x190 [ 646.760123][T15529] ? __pfx_kobject_init_and_add+0x10/0x10 [ 646.760154][T15529] rpc_sysfs_client_setup+0x190/0x320 [ 646.760183][T15529] ? __pfx_rpc_sysfs_client_setup+0x10/0x10 [ 646.760211][T15529] ? rpc_net_ns+0xe8/0x2a0 [ 646.760233][T15529] rpc_new_client+0x948/0x12d0 [ 646.760259][T15529] rpc_create_xprt+0xd9/0x440 [ 646.760291][T15529] rpc_create+0x469/0x7f0 [ 646.760315][T15529] ? __pfx_rpc_create+0x10/0x10 [ 646.760345][T15529] ? __lock_acquire+0x436/0x2890 [ 646.760379][T15529] ? rcu_is_watching+0x12/0xc0 [ 646.760406][T15529] ? trace_contention_end+0xdd/0x110 [ 646.760431][T15529] rpcb_create_af_local+0x11b/0x310 [ 646.760463][T15529] ? __pfx_rpcb_create_af_local+0x10/0x10 [ 646.760504][T15529] ? find_held_lock+0x2b/0x80 [ 646.760529][T15529] ? rpcb_create_local+0x1da/0x270 [ 646.760562][T15529] rpcb_create_local+0x1ee/0x270 [ 646.760589][T15529] svc_bind+0x1e8/0x260 [ 646.760611][T15529] nfsd_create_serv+0x2d2/0x480 [ 646.760637][T15529] ? find_held_lock+0x2b/0x80 [ 646.760660][T15529] ? __pfx_nfsd_create_serv+0x10/0x10 [ 646.760694][T15529] nfsd_svc+0x15e/0x8d0 [ 646.760725][T15529] nfsd_nl_threads_set_doit+0x526/0xbc0 [ 646.760750][T15529] genl_family_rcv_msg_doit+0x209/0x2f0 [ 646.760785][T15529] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 646.760816][T15529] ? genl_get_cmd+0x194/0x580 [ 646.760849][T15529] ? bpf_lsm_capable+0x9/0x10 [ 646.760881][T15529] ? security_capable+0x7e/0x260 [ 646.760916][T15529] genl_rcv_msg+0x55c/0x800 [ 646.760937][T15529] ? __pfx_genl_rcv_msg+0x10/0x10 [ 646.760956][T15529] ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10 [ 646.760985][T15529] netlink_rcv_skb+0x158/0x420 [ 646.761012][T15529] ? __pfx_genl_rcv_msg+0x10/0x10 [ 646.761031][T15529] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 646.761075][T15529] genl_rcv+0x28/0x40 [ 646.761102][T15529] netlink_unicast+0x5aa/0x870 [ 646.761132][T15529] ? __pfx_netlink_unicast+0x10/0x10 [ 646.761168][T15529] netlink_sendmsg+0x8c8/0xdd0 [ 646.761200][T15529] ? __pfx_netlink_sendmsg+0x10/0x10 [ 646.761230][T15529] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 646.761265][T15529] ____sys_sendmsg+0xa5d/0xc30 [ 646.761295][T15529] ? copy_msghdr_from_user+0x10a/0x160 [ 646.761319][T15529] ? __pfx_____sys_sendmsg+0x10/0x10 [ 646.761346][T15529] ? preempt_schedule_thunk+0x16/0x30 [ 646.761369][T15529] ? try_to_wake_up+0xa67/0x1860 [ 646.761399][T15529] ___sys_sendmsg+0x134/0x1d0 [ 646.761424][T15529] ? __pfx____sys_sendmsg+0x10/0x10 [ 646.761447][T15529] ? futex_private_hash_put+0x160/0x1b0 [ 646.761494][T15529] __sys_sendmsg+0x16d/0x220 [ 646.761518][T15529] ? __pfx___sys_sendmsg+0x10/0x10 [ 646.761542][T15529] ? __x64_sys_futex+0x1e0/0x4c0 [ 646.761583][T15529] do_syscall_64+0xcd/0xf80 [ 646.761613][T15529] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 646.761633][T15529] RIP: 0033:0x7f458c98f7c9 [ 646.761650][T15529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 646.761670][T15529] RSP: 002b:00007f458d803038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 646.761690][T15529] RAX: ffffffffffffffda RBX: 00007f458cbe5fa0 RCX: 00007f458c98f7c9 [ 646.761703][T15529] RDX: 0000000000004000 RSI: 0000200000000480 RDI: 0000000000000006 [ 646.761715][T15529] RBP: 00007f458ca13f91 R08: 0000000000000000 R09: 0000000000000000 [ 646.761726][T15529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 646.761737][T15529] R13: 00007f458cbe6038 R14: 00007f458cbe5fa0 R15: 00007ffe2588c7f8 [ 646.761762][T15529] [ 647.259389][ C0] bridge0: port 3(hsr0) entered forwarding state [ 647.265817][ C0] bridge0: topology change detected, propagating [ 647.788411][T15529] kobject: kobject_add_internal failed for clnt-0 (error: -12 parent: rpc-clients) [ 648.114015][T15533] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2082'. [ 651.090555][T15529] NFSD: Failed to start, no listeners configured. [ 651.322959][T15529] Process accounting resumed [ 651.519670][T15570] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2093'. [ 651.582103][T15574] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2092'. [ 655.219161][T15612] NFSD: Failed to start, no listeners configured. [ 655.769818][T15625] FAULT_INJECTION: forcing a failure. [ 655.769818][T15625] name failslab, interval 1, probability 0, space 0, times 0 [ 655.868310][T15625] CPU: 0 UID: 0 PID: 15625 Comm: syz.3.2105 Tainted: G U L syzkaller #0 PREEMPT(full) [ 655.868348][T15625] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 655.868356][T15625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 655.868367][T15625] Call Trace: [ 655.868375][T15625] [ 655.868383][T15625] dump_stack_lvl+0x16c/0x1f0 [ 655.868417][T15625] should_fail_ex+0x512/0x640 [ 655.868438][T15625] ? kmem_cache_alloc_noprof+0x62/0x770 [ 655.868464][T15625] should_failslab+0xc2/0x120 [ 655.868493][T15625] kmem_cache_alloc_noprof+0x83/0x770 [ 655.868516][T15625] ? __kernfs_new_node+0xd2/0x990 [ 655.868541][T15625] ? __kernfs_new_node+0xd2/0x990 [ 655.868562][T15625] __kernfs_new_node+0xd2/0x990 [ 655.868592][T15625] ? __pfx_number+0x10/0x10 [ 655.868611][T15625] ? __pfx___kernfs_new_node+0x10/0x10 [ 655.868638][T15625] ? find_held_lock+0x2b/0x80 [ 655.868664][T15625] ? kernfs_root+0xee/0x2a0 [ 655.868693][T15625] kernfs_new_node+0x13c/0x1e0 [ 655.868724][T15625] kernfs_create_dir_ns+0x4c/0x1a0 [ 655.868752][T15625] sysfs_create_dir_ns+0x13a/0x2b0 [ 655.868773][T15625] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 655.868793][T15625] ? find_held_lock+0x2b/0x80 [ 655.868820][T15625] ? rpc_sysfs_client_namespace+0xd/0x40 [ 655.868847][T15625] kobject_add_internal+0x2c4/0x9d0 [ 655.868868][T15625] ? kmemdup_array+0x11/0x60 [ 655.868893][T15625] kobject_init_and_add+0x11b/0x190 [ 655.868913][T15625] ? __pfx_kobject_init_and_add+0x10/0x10 [ 655.868943][T15625] rpc_sysfs_client_setup+0x190/0x320 [ 655.868972][T15625] ? __pfx_rpc_sysfs_client_setup+0x10/0x10 [ 655.869000][T15625] ? rpc_net_ns+0xe8/0x2a0 [ 655.869023][T15625] rpc_new_client+0x948/0x12d0 [ 655.869049][T15625] rpc_create_xprt+0xd9/0x440 [ 655.869073][T15625] rpc_create+0x469/0x7f0 [ 655.869096][T15625] ? __pfx_rpc_create+0x10/0x10 [ 655.869126][T15625] ? __lock_acquire+0x436/0x2890 [ 655.869167][T15625] ? rcu_is_watching+0x12/0xc0 [ 655.869195][T15625] ? trace_contention_end+0xdd/0x110 [ 655.869221][T15625] rpcb_create_af_local+0x11b/0x310 [ 655.869253][T15625] ? __pfx_rpcb_create_af_local+0x10/0x10 [ 655.869294][T15625] ? find_held_lock+0x2b/0x80 [ 655.869319][T15625] ? rpcb_create_local+0x1da/0x270 [ 655.869341][T15625] rpcb_create_local+0x1ee/0x270 [ 655.869361][T15625] svc_bind+0x1e8/0x260 [ 655.869383][T15625] nfsd_create_serv+0x2d2/0x480 [ 655.869409][T15625] ? find_held_lock+0x2b/0x80 [ 655.869432][T15625] ? __pfx_nfsd_create_serv+0x10/0x10 [ 655.869486][T15625] nfsd_svc+0x15e/0x8d0 [ 655.869517][T15625] nfsd_nl_threads_set_doit+0x526/0xbc0 [ 655.869541][T15625] genl_family_rcv_msg_doit+0x209/0x2f0 [ 655.869581][T15625] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 655.869613][T15625] ? genl_get_cmd+0x194/0x580 [ 655.869646][T15625] ? bpf_lsm_capable+0x9/0x10 [ 655.869671][T15625] ? security_capable+0x7e/0x260 [ 655.869706][T15625] genl_rcv_msg+0x55c/0x800 [ 655.869726][T15625] ? __pfx_genl_rcv_msg+0x10/0x10 [ 655.869744][T15625] ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10 [ 655.869773][T15625] netlink_rcv_skb+0x158/0x420 [ 655.869800][T15625] ? __pfx_genl_rcv_msg+0x10/0x10 [ 655.869818][T15625] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 655.869853][T15625] ? netlink_deliver_tap+0x1ae/0xd30 [ 655.869881][T15625] genl_rcv+0x28/0x40 [ 655.869908][T15625] netlink_unicast+0x5aa/0x870 [ 655.869938][T15625] ? __pfx_netlink_unicast+0x10/0x10 [ 655.869973][T15625] netlink_sendmsg+0x8c8/0xdd0 [ 655.870003][T15625] ? __pfx_netlink_sendmsg+0x10/0x10 [ 655.870032][T15625] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 655.870067][T15625] ____sys_sendmsg+0xa5d/0xc30 [ 655.870097][T15625] ? copy_msghdr_from_user+0x10a/0x160 [ 655.870121][T15625] ? __pfx_____sys_sendmsg+0x10/0x10 [ 655.870155][T15625] ? __pfx_futex_wake_mark+0x10/0x10 [ 655.870184][T15625] ___sys_sendmsg+0x134/0x1d0 [ 655.870209][T15625] ? __pfx____sys_sendmsg+0x10/0x10 [ 655.870232][T15625] ? futex_private_hash_put+0x160/0x1b0 [ 655.870276][T15625] __sys_sendmsg+0x16d/0x220 [ 655.870300][T15625] ? __pfx___sys_sendmsg+0x10/0x10 [ 655.870323][T15625] ? __x64_sys_futex+0x1e0/0x4c0 [ 655.870357][T15625] do_syscall_64+0xcd/0xf80 [ 655.870403][T15625] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 655.870423][T15625] RIP: 0033:0x7fa462f8f7c9 [ 655.870445][T15625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 655.870467][T15625] RSP: 002b:00007fa463df2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 655.870487][T15625] RAX: ffffffffffffffda RBX: 00007fa4631e5fa0 RCX: 00007fa462f8f7c9 [ 655.870499][T15625] RDX: 0000000000004000 RSI: 0000200000000480 RDI: 0000000000000006 [ 655.870511][T15625] RBP: 00007fa463013f91 R08: 0000000000000000 R09: 0000000000000000 [ 655.870523][T15625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 655.870535][T15625] R13: 00007fa4631e6038 R14: 00007fa4631e5fa0 R15: 00007ffd76134868 [ 655.870563][T15625] [ 655.870692][T15625] kobject: kobject_add_internal failed for clnt-0 (error: -12 parent: rpc-clients) [ 656.449285][T15629] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2107'. [ 657.295805][T15653] random: crng reseeded on system resumption [ 658.779287][T15625] NFSD: Failed to start, no listeners configured. [ 658.952456][T15677] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 659.147243][T15682] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 659.558833][T15693] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2118'. [ 662.337542][T15751] FAULT_INJECTION: forcing a failure. [ 662.337542][T15751] name failslab, interval 1, probability 0, space 0, times 0 [ 662.438297][T15751] CPU: 0 UID: 0 PID: 15751 Comm: syz.3.2127 Tainted: G U L syzkaller #0 PREEMPT(full) [ 662.438333][T15751] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 662.438341][T15751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 662.438353][T15751] Call Trace: [ 662.438362][T15751] [ 662.438370][T15751] dump_stack_lvl+0x16c/0x1f0 [ 662.438403][T15751] should_fail_ex+0x512/0x640 [ 662.438424][T15751] ? __kmalloc_node_track_caller_noprof+0xcb/0x930 [ 662.438456][T15751] should_failslab+0xc2/0x120 [ 662.438484][T15751] __kmalloc_node_track_caller_noprof+0xec/0x930 [ 662.438519][T15751] ? kobject_init_and_add+0xe7/0x190 [ 662.438536][T15751] ? rpc_sysfs_xprt_setup+0x187/0x300 [ 662.438562][T15751] ? kstrdup_const+0x63/0x80 [ 662.438583][T15751] ? rpc_create_xprt+0x2dc/0x440 [ 662.438610][T15751] ? kstrdup+0x53/0x100 [ 662.438629][T15751] kstrdup+0x53/0x100 [ 662.438652][T15751] kstrdup_const+0x63/0x80 [ 662.438674][T15751] __kernfs_new_node+0x9b/0x990 [ 662.438699][T15751] ? __pfx___kernfs_new_node+0x10/0x10 [ 662.438726][T15751] ? find_held_lock+0x2b/0x80 [ 662.438752][T15751] ? kernfs_root+0xee/0x2a0 [ 662.438777][T15751] kernfs_new_node+0x13c/0x1e0 [ 662.438806][T15751] kernfs_create_dir_ns+0x4c/0x1a0 [ 662.438834][T15751] sysfs_create_dir_ns+0x13a/0x2b0 [ 662.438855][T15751] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 662.438875][T15751] ? find_held_lock+0x2b/0x80 [ 662.438902][T15751] ? do_raw_spin_unlock+0x172/0x230 [ 662.438926][T15751] kobject_add_internal+0x2c4/0x9d0 [ 662.438948][T15751] kobject_init_and_add+0x11b/0x190 [ 662.438967][T15751] ? __pfx_kobject_init_and_add+0x10/0x10 [ 662.438998][T15751] rpc_sysfs_xprt_setup+0x187/0x300 [ 662.439028][T15751] xprt_switch_alloc+0x2ce/0x3c0 [ 662.439050][T15751] rpc_create_xprt+0x2dc/0x440 [ 662.439074][T15751] rpc_create+0x469/0x7f0 [ 662.439098][T15751] ? __pfx_rpc_create+0x10/0x10 [ 662.439127][T15751] ? __lock_acquire+0x436/0x2890 [ 662.439166][T15751] ? rcu_is_watching+0x12/0xc0 [ 662.439192][T15751] ? trace_contention_end+0xdd/0x110 [ 662.439217][T15751] rpcb_create_af_local+0x11b/0x310 [ 662.439248][T15751] ? __pfx_rpcb_create_af_local+0x10/0x10 [ 662.439289][T15751] ? find_held_lock+0x2b/0x80 [ 662.439313][T15751] ? rpcb_create_local+0x1da/0x270 [ 662.439335][T15751] rpcb_create_local+0x1ee/0x270 [ 662.439354][T15751] svc_bind+0x1e8/0x260 [ 662.439375][T15751] nfsd_create_serv+0x2d2/0x480 [ 662.439401][T15751] ? find_held_lock+0x2b/0x80 [ 662.439424][T15751] ? __pfx_nfsd_create_serv+0x10/0x10 [ 662.439457][T15751] nfsd_svc+0x15e/0x8d0 [ 662.439486][T15751] nfsd_nl_threads_set_doit+0x526/0xbc0 [ 662.439516][T15751] genl_family_rcv_msg_doit+0x209/0x2f0 [ 662.439549][T15751] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 662.439580][T15751] ? genl_get_cmd+0x194/0x580 [ 662.439613][T15751] ? bpf_lsm_capable+0x9/0x10 [ 662.439638][T15751] ? security_capable+0x7e/0x260 [ 662.439673][T15751] genl_rcv_msg+0x55c/0x800 [ 662.439694][T15751] ? __pfx_genl_rcv_msg+0x10/0x10 [ 662.439712][T15751] ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10 [ 662.439741][T15751] netlink_rcv_skb+0x158/0x420 [ 662.439768][T15751] ? __pfx_genl_rcv_msg+0x10/0x10 [ 662.439786][T15751] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 662.439822][T15751] ? netlink_deliver_tap+0x1ae/0xd30 [ 662.439850][T15751] genl_rcv+0x28/0x40 [ 662.439877][T15751] netlink_unicast+0x5aa/0x870 [ 662.439907][T15751] ? __pfx_netlink_unicast+0x10/0x10 [ 662.439942][T15751] netlink_sendmsg+0x8c8/0xdd0 [ 662.439973][T15751] ? __pfx_netlink_sendmsg+0x10/0x10 [ 662.440002][T15751] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 662.440037][T15751] ____sys_sendmsg+0xa5d/0xc30 [ 662.440068][T15751] ? copy_msghdr_from_user+0x10a/0x160 [ 662.440092][T15751] ? __pfx_____sys_sendmsg+0x10/0x10 [ 662.440119][T15751] ? preempt_schedule_thunk+0x16/0x30 [ 662.440142][T15751] ? try_to_wake_up+0xa67/0x1860 [ 662.440171][T15751] ___sys_sendmsg+0x134/0x1d0 [ 662.440196][T15751] ? __pfx____sys_sendmsg+0x10/0x10 [ 662.440220][T15751] ? futex_private_hash_put+0x160/0x1b0 [ 662.440266][T15751] __sys_sendmsg+0x16d/0x220 [ 662.440291][T15751] ? __pfx___sys_sendmsg+0x10/0x10 [ 662.440314][T15751] ? __x64_sys_futex+0x1e0/0x4c0 [ 662.440349][T15751] do_syscall_64+0xcd/0xf80 [ 662.440379][T15751] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 662.440398][T15751] RIP: 0033:0x7fa462f8f7c9 [ 662.440415][T15751] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 662.440434][T15751] RSP: 002b:00007fa463df2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 662.440453][T15751] RAX: ffffffffffffffda RBX: 00007fa4631e5fa0 RCX: 00007fa462f8f7c9 [ 662.440465][T15751] RDX: 0000000000004000 RSI: 0000200000000480 RDI: 0000000000000006 [ 662.440476][T15751] RBP: 00007fa463013f91 R08: 0000000000000000 R09: 0000000000000000 [ 662.440487][T15751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 662.440505][T15751] R13: 00007fa4631e6038 R14: 00007fa4631e5fa0 R15: 00007ffd76134868 [ 662.440530][T15751] [ 662.942946][T15751] kobject: kobject_add_internal failed for xprt-0-local (error: -12 parent: switch-0) [ 664.079670][T15758] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2129'. [ 664.107203][T15751] NFSD: Failed to start, no listeners configured. [ 664.879990][T15766] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2131'. [ 664.999672][T15770] device-mapper: ioctl: Unable to rename non-existent device, to uuid •O4Ê•ƒì [ 664.999672][T15770] DŽûÎÑw:é/B#Æ¡ú-Œr’nM¡»äpd$× ‚dÒª !±}’‰ÍÇNîOOéü‘¡¨=R+·R +ÕHG=š±0nø  » [ 666.321803][ T12] EXT4-fs (sda1): Delayed block allocation failed for inode 2026 at logical offset 4 with max blocks 1 with error 117 [ 666.401218][ T12] EXT4-fs (sda1): This should not happen!! Data will be lost [ 666.401218][ T12] [ 666.463467][T15789] FAULT_INJECTION: forcing a failure. [ 666.463467][T15789] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 666.585467][T15789] CPU: 0 UID: 0 PID: 15789 Comm: syz.1.2135 Tainted: G U L syzkaller #0 PREEMPT(full) [ 666.585501][T15789] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 666.585508][T15789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 666.585520][T15789] Call Trace: [ 666.585526][T15789] [ 666.585534][T15789] dump_stack_lvl+0x16c/0x1f0 [ 666.585566][T15789] should_fail_ex+0x512/0x640 [ 666.585600][T15789] _copy_from_iter+0x2a4/0x16c0 [ 666.585623][T15789] ? find_held_lock+0x2b/0x80 [ 666.585649][T15789] ? __pfx__copy_from_iter+0x10/0x10 [ 666.585672][T15789] ? aa_file_perm+0x2ad/0x1560 [ 666.585703][T15789] copy_page_from_iter+0xde/0x180 [ 666.585727][T15789] anon_pipe_write+0xed5/0x1bd0 [ 666.585760][T15789] ? __print_lock_name+0x60/0xe0 [ 666.585788][T15789] ? __pfx_anon_pipe_write+0x10/0x10 [ 666.585815][T15789] ? common_file_perm+0x1b1/0x500 [ 666.585839][T15789] ? bpf_lsm_file_permission+0x9/0x10 [ 666.585861][T15789] ? security_file_permission+0x71/0x210 [ 666.585885][T15789] ? rw_verify_area+0xcf/0x6c0 [ 666.585911][T15789] vfs_write+0x7d3/0x11d0 [ 666.585938][T15789] ? __pfx_anon_pipe_write+0x10/0x10 [ 666.585967][T15789] ? __pfx_vfs_write+0x10/0x10 [ 666.585992][T15789] ? find_held_lock+0x2b/0x80 [ 666.586028][T15789] ksys_write+0x1f8/0x250 [ 666.586054][T15789] ? __pfx_ksys_write+0x10/0x10 [ 666.586086][T15789] do_syscall_64+0xcd/0xf80 [ 666.586115][T15789] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 666.586135][T15789] RIP: 0033:0x7f68e758f7c9 [ 666.586151][T15789] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 666.586168][T15789] RSP: 002b:00007f68e834f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 666.586187][T15789] RAX: ffffffffffffffda RBX: 00007f68e77e6090 RCX: 00007f68e758f7c9 [ 666.586199][T15789] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 666.586210][T15789] RBP: 00007f68e834f090 R08: 0000000000000000 R09: 0000000000000000 [ 666.586221][T15789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 666.586232][T15789] R13: 00007f68e77e6128 R14: 00007f68e77e6090 R15: 00007ffcd60c0708 [ 666.586255][T15789] [ 669.001009][T15818] NFSD: Failed to start, no listeners configured. [ 669.831387][T15841] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2147'. [ 669.949084][T15843] device-mapper: ioctl: Unable to rename non-existent device, to uuid •O4Ê•ƒì [ 669.949084][T15843] DŽûÎÑw:é/B#Æ¡ú-Œr’nM¡»äpd$× ‚dÒª !±}’‰ÍÇNîOOéü‘¡¨=R+·R +ÕHG=š±0nø  » [ 670.974408][T15857] FAULT_INJECTION: forcing a failure. [ 670.974408][T15857] name failslab, interval 1, probability 0, space 0, times 0 [ 671.061140][T15857] CPU: 0 UID: 0 PID: 15857 Comm: syz.1.2152 Tainted: G U L syzkaller #0 PREEMPT(full) [ 671.061176][T15857] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 671.061183][T15857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 671.061194][T15857] Call Trace: [ 671.061201][T15857] [ 671.061209][T15857] dump_stack_lvl+0x16c/0x1f0 [ 671.061242][T15857] should_fail_ex+0x512/0x640 [ 671.061263][T15857] ? __kmalloc_noprof+0xca/0x910 [ 671.061285][T15857] should_failslab+0xc2/0x120 [ 671.061315][T15857] __kmalloc_noprof+0xeb/0x910 [ 671.061335][T15857] ? kobject_get_path+0xd2/0x2d0 [ 671.061369][T15857] ? kobject_get_path+0xd2/0x2d0 [ 671.061397][T15857] kobject_get_path+0xd2/0x2d0 [ 671.061430][T15857] kobject_uevent_env+0x289/0x1920 [ 671.061459][T15857] rpc_sysfs_client_setup+0x233/0x320 [ 671.061489][T15857] ? __pfx_rpc_sysfs_client_setup+0x10/0x10 [ 671.061591][T15857] ? rpc_net_ns+0xe8/0x2a0 [ 671.061615][T15857] rpc_new_client+0x948/0x12d0 [ 671.061641][T15857] rpc_create_xprt+0xd9/0x440 [ 671.061666][T15857] rpc_create+0x469/0x7f0 [ 671.061690][T15857] ? __pfx_rpc_create+0x10/0x10 [ 671.061720][T15857] ? __lock_acquire+0x436/0x2890 [ 671.061755][T15857] ? rcu_is_watching+0x12/0xc0 [ 671.061782][T15857] ? trace_contention_end+0xdd/0x110 [ 671.061806][T15857] rpcb_create_af_local+0x11b/0x310 [ 671.061836][T15857] ? __pfx_rpcb_create_af_local+0x10/0x10 [ 671.061876][T15857] ? find_held_lock+0x2b/0x80 [ 671.061901][T15857] ? rpcb_create_local+0x1da/0x270 [ 671.061923][T15857] rpcb_create_local+0x1ee/0x270 [ 671.061942][T15857] svc_bind+0x1e8/0x260 [ 671.061962][T15857] nfsd_create_serv+0x2d2/0x480 [ 671.061988][T15857] ? find_held_lock+0x2b/0x80 [ 671.062011][T15857] ? __pfx_nfsd_create_serv+0x10/0x10 [ 671.062044][T15857] nfsd_svc+0x15e/0x8d0 [ 671.062074][T15857] nfsd_nl_threads_set_doit+0x526/0xbc0 [ 671.062097][T15857] genl_family_rcv_msg_doit+0x209/0x2f0 [ 671.062130][T15857] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 671.062165][T15857] ? genl_get_cmd+0x194/0x580 [ 671.062199][T15857] ? bpf_lsm_capable+0x9/0x10 [ 671.062224][T15857] ? security_capable+0x7e/0x260 [ 671.062258][T15857] genl_rcv_msg+0x55c/0x800 [ 671.062279][T15857] ? __pfx_genl_rcv_msg+0x10/0x10 [ 671.062297][T15857] ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10 [ 671.062328][T15857] ? __lock_acquire+0x436/0x2890 [ 671.062349][T15857] netlink_rcv_skb+0x158/0x420 [ 671.062376][T15857] ? __pfx_genl_rcv_msg+0x10/0x10 [ 671.062395][T15857] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 671.062433][T15857] ? netlink_deliver_tap+0x1ae/0xd30 [ 671.062462][T15857] genl_rcv+0x28/0x40 [ 671.062490][T15857] netlink_unicast+0x5aa/0x870 [ 671.062530][T15857] ? __pfx_netlink_unicast+0x10/0x10 [ 671.062566][T15857] netlink_sendmsg+0x8c8/0xdd0 [ 671.062597][T15857] ? __pfx_netlink_sendmsg+0x10/0x10 [ 671.062628][T15857] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 671.062664][T15857] ____sys_sendmsg+0xa5d/0xc30 [ 671.062695][T15857] ? copy_msghdr_from_user+0x10a/0x160 [ 671.062720][T15857] ? __pfx_____sys_sendmsg+0x10/0x10 [ 671.062747][T15857] ? preempt_schedule_thunk+0x16/0x30 [ 671.062776][T15857] ? try_to_wake_up+0xa67/0x1860 [ 671.062806][T15857] ___sys_sendmsg+0x134/0x1d0 [ 671.062831][T15857] ? __pfx____sys_sendmsg+0x10/0x10 [ 671.062854][T15857] ? futex_private_hash_put+0x160/0x1b0 [ 671.062901][T15857] __sys_sendmsg+0x16d/0x220 [ 671.062925][T15857] ? __pfx___sys_sendmsg+0x10/0x10 [ 671.062948][T15857] ? __x64_sys_futex+0x1e0/0x4c0 [ 671.062984][T15857] do_syscall_64+0xcd/0xf80 [ 671.063014][T15857] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 671.063033][T15857] RIP: 0033:0x7f68e758f7c9 [ 671.063050][T15857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 671.063069][T15857] RSP: 002b:00007f68e8370038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 671.063089][T15857] RAX: ffffffffffffffda RBX: 00007f68e77e5fa0 RCX: 00007f68e758f7c9 [ 671.063101][T15857] RDX: 0000000000004000 RSI: 0000200000000480 RDI: 0000000000000006 [ 671.063112][T15857] RBP: 00007f68e7613f91 R08: 0000000000000000 R09: 0000000000000000 [ 671.063124][T15857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 671.063135][T15857] R13: 00007f68e77e6038 R14: 00007f68e77e5fa0 R15: 00007ffcd60c0708 [ 671.063160][T15857] [ 672.122229][T15857] NFSD: Failed to start, no listeners configured. [ 672.669476][T15867] FAULT_INJECTION: forcing a failure. [ 672.669476][T15867] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 672.748307][T15867] CPU: 0 UID: 0 PID: 15867 Comm: syz.3.2155 Tainted: G U L syzkaller #0 PREEMPT(full) [ 672.748340][T15867] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 672.748347][T15867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 672.748358][T15867] Call Trace: [ 672.748365][T15867] [ 672.748374][T15867] dump_stack_lvl+0x16c/0x1f0 [ 672.748405][T15867] should_fail_ex+0x512/0x640 [ 672.748430][T15867] should_fail_alloc_page+0xe7/0x130 [ 672.748460][T15867] prepare_alloc_pages+0x401/0x670 [ 672.748500][T15867] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 672.748523][T15867] ? kernel_text_address+0x8d/0x100 [ 672.748545][T15867] ? __kernel_text_address+0xd/0x40 [ 672.748565][T15867] ? unwind_get_return_address+0x59/0xa0 [ 672.748592][T15867] ? arch_stack_walk+0xa6/0x100 [ 672.748621][T15867] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 672.748646][T15867] ? __pfx_stack_trace_save+0x10/0x10 [ 672.748676][T15867] ? stack_depot_save_flags+0x29/0x9b0 [ 672.748699][T15867] ? look_up_lock_class+0x59/0x130 [ 672.748728][T15867] ? register_lock_class+0x41/0x4b0 [ 672.748746][T15867] ? find_held_lock+0x2b/0x80 [ 672.748770][T15867] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 672.748799][T15867] ? policy_nodemask+0xea/0x4e0 [ 672.748834][T15867] alloc_pages_mpol+0x1fb/0x550 [ 672.748863][T15867] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 672.748891][T15867] ? __lock_acquire+0x436/0x2890 [ 672.748913][T15867] alloc_pages_noprof+0x131/0x390 [ 672.748941][T15867] pte_alloc_one+0x1e/0x3d0 [ 672.748968][T15867] do_fault+0x8b8/0x1ad0 [ 672.748994][T15867] ? __pfx_filemap_map_pages+0x10/0x10 [ 672.749015][T15867] ? find_held_lock+0x2b/0x80 [ 672.749041][T15867] __handle_mm_fault+0x1919/0x2bb0 [ 672.749067][T15867] ? __pfx___handle_mm_fault+0x10/0x10 [ 672.749099][T15867] ? find_vma+0xbf/0x140 [ 672.749123][T15867] ? __pfx_find_vma+0x10/0x10 [ 672.749151][T15867] handle_mm_fault+0x3fe/0xad0 [ 672.749174][T15867] do_user_addr_fault+0x7a6/0x1370 [ 672.749199][T15867] ? rcu_is_watching+0x12/0xc0 [ 672.749227][T15867] exc_page_fault+0x64/0xc0 [ 672.749262][T15867] asm_exc_page_fault+0x26/0x30 [ 672.749281][T15867] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 672.749303][T15867] Code: 81 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 672.749322][T15867] RSP: 0018:ffffc9000b6b7a38 EFLAGS: 00050206 [ 672.749337][T15867] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000 [ 672.749349][T15867] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88801e73b000 [ 672.749360][T15867] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed1003ce77ff [ 672.749371][T15867] R10: ffff88801e73bfff R11: 0000000000000000 R12: 0000000000000000 [ 672.749382][T15867] R13: ffffea000079cec0 R14: ffffc9000b6b7d90 R15: ffff88801e73b000 [ 672.749406][T15867] _copy_from_iter+0x355/0x16c0 [ 672.749430][T15867] ? find_held_lock+0x2b/0x80 [ 672.749454][T15867] ? __pfx__copy_from_iter+0x10/0x10 [ 672.749485][T15867] ? aa_file_perm+0x2ad/0x1560 [ 672.749517][T15867] copy_page_from_iter+0xde/0x180 [ 672.749541][T15867] anon_pipe_write+0xed5/0x1bd0 [ 672.749572][T15867] ? __print_lock_name+0x60/0xe0 [ 672.749600][T15867] ? __pfx_anon_pipe_write+0x10/0x10 [ 672.749628][T15867] ? common_file_perm+0x1b1/0x500 [ 672.749651][T15867] ? bpf_lsm_file_permission+0x9/0x10 [ 672.749673][T15867] ? security_file_permission+0x71/0x210 [ 672.749698][T15867] ? rw_verify_area+0xcf/0x6c0 [ 672.749723][T15867] vfs_write+0x7d3/0x11d0 [ 672.749750][T15867] ? __pfx_anon_pipe_write+0x10/0x10 [ 672.749780][T15867] ? __pfx_vfs_write+0x10/0x10 [ 672.749804][T15867] ? find_held_lock+0x2b/0x80 [ 672.749842][T15867] ksys_write+0x1f8/0x250 [ 672.749868][T15867] ? __pfx_ksys_write+0x10/0x10 [ 672.749900][T15867] do_syscall_64+0xcd/0xf80 [ 672.749934][T15867] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 672.749953][T15867] RIP: 0033:0x7fa462f8f7c9 [ 672.749968][T15867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 672.749986][T15867] RSP: 002b:00007fa463df2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 672.750002][T15867] RAX: ffffffffffffffda RBX: 00007fa4631e5fa0 RCX: 00007fa462f8f7c9 [ 672.750014][T15867] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 672.750025][T15867] RBP: 00007fa463df2090 R08: 0000000000000000 R09: 0000000000000000 [ 672.750036][T15867] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 672.750047][T15867] R13: 00007fa4631e6038 R14: 00007fa4631e5fa0 R15: 00007ffd76134868 [ 672.750070][T15867] [ 673.877890][T15875] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2157'. [ 674.293318][T15877] ima: policy update failed [ 674.301825][ T30] audit: type=1802 audit(8277292579.620:24): pid=15877 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2159" res=0 errno=0 [ 674.821879][ T5851] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 675.116559][ T5851] Bluetooth: hci2: Unable to find connection for big 0xd2 [ 677.434066][T15934] FAULT_INJECTION: forcing a failure. [ 677.434066][T15934] name failslab, interval 1, probability 0, space 0, times 0 [ 677.524022][T15934] CPU: 0 UID: 0 PID: 15934 Comm: syz.3.2169 Tainted: G U L syzkaller #0 PREEMPT(full) [ 677.524058][T15934] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 677.524066][T15934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 677.524078][T15934] Call Trace: [ 677.524085][T15934] [ 677.524093][T15934] dump_stack_lvl+0x16c/0x1f0 [ 677.524127][T15934] should_fail_ex+0x512/0x640 [ 677.524148][T15934] ? kmem_cache_alloc_noprof+0x62/0x770 [ 677.524174][T15934] should_failslab+0xc2/0x120 [ 677.524202][T15934] kmem_cache_alloc_noprof+0x83/0x770 [ 677.524225][T15934] ? __kernfs_new_node+0xd2/0x990 [ 677.524251][T15934] ? __kernfs_new_node+0xd2/0x990 [ 677.524272][T15934] __kernfs_new_node+0xd2/0x990 [ 677.524297][T15934] ? __pfx___kernfs_new_node+0x10/0x10 [ 677.524324][T15934] ? find_held_lock+0x2b/0x80 [ 677.524350][T15934] ? kernfs_root+0xee/0x2a0 [ 677.524375][T15934] kernfs_new_node+0x13c/0x1e0 [ 677.524404][T15934] __kernfs_create_file+0x53/0x350 [ 677.524436][T15934] sysfs_add_file_mode_ns+0x207/0x3c0 [ 677.524471][T15934] internal_create_group+0x597/0xf70 [ 677.524499][T15934] ? __pfx_internal_create_group+0x10/0x10 [ 677.524523][T15934] ? sysfs_create_dir_ns+0x14c/0x2b0 [ 677.524544][T15934] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 677.524563][T15934] ? find_held_lock+0x2b/0x80 [ 677.524590][T15934] internal_create_groups+0x9d/0x150 [ 677.524614][T15934] kobject_add_internal+0x311/0x9d0 [ 677.524632][T15934] ? kmemdup_array+0x11/0x60 [ 677.524657][T15934] kobject_init_and_add+0x11b/0x190 [ 677.524677][T15934] ? __pfx_kobject_init_and_add+0x10/0x10 [ 677.524708][T15934] rpc_sysfs_client_setup+0x190/0x320 [ 677.524738][T15934] ? __pfx_rpc_sysfs_client_setup+0x10/0x10 [ 677.524766][T15934] ? rpc_net_ns+0xe8/0x2a0 [ 677.524788][T15934] rpc_new_client+0x948/0x12d0 [ 677.524814][T15934] rpc_create_xprt+0xd9/0x440 [ 677.524838][T15934] rpc_create+0x469/0x7f0 [ 677.524862][T15934] ? __pfx_rpc_create+0x10/0x10 [ 677.524891][T15934] ? __lock_acquire+0x436/0x2890 [ 677.524924][T15934] ? rcu_is_watching+0x12/0xc0 [ 677.524950][T15934] ? trace_contention_end+0xdd/0x110 [ 677.524974][T15934] rpcb_create_af_local+0x11b/0x310 [ 677.525005][T15934] ? __pfx_rpcb_create_af_local+0x10/0x10 [ 677.525050][T15934] ? find_held_lock+0x2b/0x80 [ 677.525075][T15934] ? rpcb_create_local+0x1da/0x270 [ 677.525097][T15934] rpcb_create_local+0x1ee/0x270 [ 677.525116][T15934] svc_bind+0x1e8/0x260 [ 677.525137][T15934] nfsd_create_serv+0x2d2/0x480 [ 677.525163][T15934] ? find_held_lock+0x2b/0x80 [ 677.525186][T15934] ? __pfx_nfsd_create_serv+0x10/0x10 [ 677.525219][T15934] nfsd_svc+0x15e/0x8d0 [ 677.525249][T15934] nfsd_nl_threads_set_doit+0x526/0xbc0 [ 677.525273][T15934] genl_family_rcv_msg_doit+0x209/0x2f0 [ 677.525306][T15934] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 677.525337][T15934] ? genl_get_cmd+0x194/0x580 [ 677.525370][T15934] ? bpf_lsm_capable+0x9/0x10 [ 677.525395][T15934] ? security_capable+0x7e/0x260 [ 677.525442][T15934] genl_rcv_msg+0x55c/0x800 [ 677.525471][T15934] ? __pfx_genl_rcv_msg+0x10/0x10 [ 677.525490][T15934] ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10 [ 677.525519][T15934] netlink_rcv_skb+0x158/0x420 [ 677.525546][T15934] ? __pfx_genl_rcv_msg+0x10/0x10 [ 677.525565][T15934] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 677.525601][T15934] ? netlink_deliver_tap+0x1ae/0xd30 [ 677.525629][T15934] genl_rcv+0x28/0x40 [ 677.525657][T15934] netlink_unicast+0x5aa/0x870 [ 677.525688][T15934] ? __pfx_netlink_unicast+0x10/0x10 [ 677.525724][T15934] netlink_sendmsg+0x8c8/0xdd0 [ 677.525755][T15934] ? __pfx_netlink_sendmsg+0x10/0x10 [ 677.525785][T15934] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 677.525820][T15934] ____sys_sendmsg+0xa5d/0xc30 [ 677.525850][T15934] ? copy_msghdr_from_user+0x10a/0x160 [ 677.525874][T15934] ? __pfx_____sys_sendmsg+0x10/0x10 [ 677.525901][T15934] ? preempt_schedule_thunk+0x16/0x30 [ 677.525924][T15934] ? try_to_wake_up+0xa67/0x1860 [ 677.525961][T15934] ___sys_sendmsg+0x134/0x1d0 [ 677.525988][T15934] ? __pfx____sys_sendmsg+0x10/0x10 [ 677.526012][T15934] ? futex_private_hash_put+0x160/0x1b0 [ 677.526059][T15934] __sys_sendmsg+0x16d/0x220 [ 677.526084][T15934] ? __pfx___sys_sendmsg+0x10/0x10 [ 677.526109][T15934] ? __x64_sys_futex+0x1e0/0x4c0 [ 677.526145][T15934] do_syscall_64+0xcd/0xf80 [ 677.526176][T15934] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 677.526195][T15934] RIP: 0033:0x7fa462f8f7c9 [ 677.526212][T15934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 677.526231][T15934] RSP: 002b:00007fa463df2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 677.526250][T15934] RAX: ffffffffffffffda RBX: 00007fa4631e5fa0 RCX: 00007fa462f8f7c9 [ 677.526262][T15934] RDX: 0000000000004000 RSI: 0000200000000480 RDI: 0000000000000006 [ 677.526273][T15934] RBP: 00007fa463013f91 R08: 0000000000000000 R09: 0000000000000000 [ 677.526284][T15934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 677.526296][T15934] R13: 00007fa4631e6038 R14: 00007fa4631e5fa0 R15: 00007ffd76134868 [ 677.526320][T15934] [ 678.561689][T15934] kobject: kobject_add_internal failed for clnt-0 (error: -12 parent: rpc-clients) [ 679.058762][T15941] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2171'. [ 679.432987][T15934] NFSD: Failed to start, no listeners configured. [ 681.156511][T15947] FAULT_INJECTION: forcing a failure. [ 681.156511][T15947] name failslab, interval 1, probability 0, space 0, times 0 [ 681.230309][T15947] CPU: 0 UID: 0 PID: 15947 Comm: syz.1.2173 Tainted: G U L syzkaller #0 PREEMPT(full) [ 681.230342][T15947] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 681.230349][T15947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 681.230361][T15947] Call Trace: [ 681.230367][T15947] [ 681.230375][T15947] dump_stack_lvl+0x16c/0x1f0 [ 681.230406][T15947] should_fail_ex+0x512/0x640 [ 681.230427][T15947] ? kmem_cache_alloc_noprof+0x62/0x770 [ 681.230459][T15947] should_failslab+0xc2/0x120 [ 681.230488][T15947] kmem_cache_alloc_noprof+0x83/0x770 [ 681.230510][T15947] ? __lock_acquire+0x436/0x2890 [ 681.230527][T15947] ? ptlock_alloc+0x1f/0x70 [ 681.230549][T15947] ? ptlock_alloc+0x1f/0x70 [ 681.230566][T15947] ptlock_alloc+0x1f/0x70 [ 681.230585][T15947] pte_alloc_one+0x84/0x3d0 [ 681.230611][T15947] do_fault+0x8b8/0x1ad0 [ 681.230637][T15947] ? __pfx_filemap_map_pages+0x10/0x10 [ 681.230659][T15947] ? find_held_lock+0x2b/0x80 [ 681.230685][T15947] __handle_mm_fault+0x1919/0x2bb0 [ 681.230710][T15947] ? __pfx___handle_mm_fault+0x10/0x10 [ 681.230742][T15947] ? find_vma+0xbf/0x140 [ 681.230766][T15947] ? __pfx_find_vma+0x10/0x10 [ 681.230794][T15947] handle_mm_fault+0x3fe/0xad0 [ 681.230817][T15947] do_user_addr_fault+0x7a6/0x1370 [ 681.230842][T15947] ? rcu_is_watching+0x12/0xc0 [ 681.230871][T15947] exc_page_fault+0x64/0xc0 [ 681.230899][T15947] asm_exc_page_fault+0x26/0x30 [ 681.230917][T15947] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 681.230939][T15947] Code: 81 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 681.230958][T15947] RSP: 0018:ffffc9000c217a38 EFLAGS: 00050206 [ 681.230974][T15947] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000 [ 681.230986][T15947] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88803b1a0000 [ 681.230997][T15947] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed10076341ff [ 681.231009][T15947] R10: ffff88803b1a0fff R11: 0000000000000000 R12: 0000000000000000 [ 681.231020][T15947] R13: ffffea0000ec6800 R14: ffffc9000c217d90 R15: ffff88803b1a0000 [ 681.231043][T15947] _copy_from_iter+0x355/0x16c0 [ 681.231066][T15947] ? find_held_lock+0x2b/0x80 [ 681.231091][T15947] ? __pfx__copy_from_iter+0x10/0x10 [ 681.231114][T15947] ? aa_file_perm+0x2ad/0x1560 [ 681.231145][T15947] copy_page_from_iter+0xde/0x180 [ 681.231169][T15947] anon_pipe_write+0xed5/0x1bd0 [ 681.231199][T15947] ? __print_lock_name+0x60/0xe0 [ 681.231227][T15947] ? __pfx_anon_pipe_write+0x10/0x10 [ 681.231254][T15947] ? common_file_perm+0x1b1/0x500 [ 681.231278][T15947] ? bpf_lsm_file_permission+0x9/0x10 [ 681.231300][T15947] ? security_file_permission+0x71/0x210 [ 681.231324][T15947] ? rw_verify_area+0xcf/0x6c0 [ 681.231349][T15947] vfs_write+0x7d3/0x11d0 [ 681.231376][T15947] ? __pfx_anon_pipe_write+0x10/0x10 [ 681.231405][T15947] ? __pfx_vfs_write+0x10/0x10 [ 681.231429][T15947] ? find_held_lock+0x2b/0x80 [ 681.231477][T15947] ksys_write+0x1f8/0x250 [ 681.231503][T15947] ? __pfx_ksys_write+0x10/0x10 [ 681.231536][T15947] do_syscall_64+0xcd/0xf80 [ 681.231564][T15947] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 681.231582][T15947] RIP: 0033:0x7f68e758f7c9 [ 681.231597][T15947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 681.231615][T15947] RSP: 002b:00007f68e8370038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 681.231631][T15947] RAX: ffffffffffffffda RBX: 00007f68e77e5fa0 RCX: 00007f68e758f7c9 [ 681.231649][T15947] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 681.231660][T15947] RBP: 00007f68e8370090 R08: 0000000000000000 R09: 0000000000000000 [ 681.231671][T15947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 681.231682][T15947] R13: 00007f68e77e6038 R14: 00007f68e77e5fa0 R15: 00007ffcd60c0708 [ 681.231705][T15947] [ 681.649240][T15928] Process accounting paused [ 682.584449][T15955] NFSD: Failed to start, no listeners configured. [ 682.854267][T15963] FAULT_INJECTION: forcing a failure. [ 682.854267][T15963] name failslab, interval 1, probability 0, space 0, times 0 [ 682.898444][T15963] CPU: 0 UID: 0 PID: 15963 Comm: syz.1.2178 Tainted: G U L syzkaller #0 PREEMPT(full) [ 682.898480][T15963] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 682.898489][T15963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 682.898500][T15963] Call Trace: [ 682.898508][T15963] [ 682.898516][T15963] dump_stack_lvl+0x16c/0x1f0 [ 682.898549][T15963] should_fail_ex+0x512/0x640 [ 682.898569][T15963] ? fs_reclaim_acquire+0xae/0x150 [ 682.898601][T15963] should_failslab+0xc2/0x120 [ 682.898630][T15963] __kmalloc_noprof+0xeb/0x910 [ 682.898651][T15963] ? lsm_blob_alloc+0x68/0x90 [ 682.898683][T15963] ? lsm_blob_alloc+0x68/0x90 [ 682.898708][T15963] lsm_blob_alloc+0x68/0x90 [ 682.898737][T15963] security_sk_alloc+0x2f/0x270 [ 682.898757][T15963] sk_prot_alloc+0xfb/0x2a0 [ 682.898788][T15963] sk_alloc+0x36/0xe30 [ 682.898810][T15963] unix_create1+0xa6/0x700 [ 682.898830][T15963] unix_create+0x110/0x270 [ 682.898848][T15963] __sock_create+0x339/0x8a0 [ 682.898882][T15963] xs_local_connect+0x140/0xd60 [ 682.898909][T15963] ? __pfx_xs_local_connect+0x10/0x10 [ 682.898934][T15963] ? do_raw_spin_unlock+0x172/0x230 [ 682.898957][T15963] ? _raw_spin_unlock+0x28/0x50 [ 682.898984][T15963] xprt_connect+0x7b7/0x990 [ 682.899015][T15963] ? __pfx_call_connect+0x10/0x10 [ 682.899032][T15963] call_connect+0x1d9/0x2e0 [ 682.899050][T15963] __rpc_execute+0x382/0x1160 [ 682.899076][T15963] ? __pfx___rpc_execute+0x10/0x10 [ 682.899097][T15963] ? rpc_task_get_xprt+0xef/0x2c0 [ 682.899126][T15963] rpc_execute+0x2e8/0x3f0 [ 682.899148][T15963] rpc_run_task+0x4a4/0x660 [ 682.899172][T15963] rpc_call_null_helper+0x136/0x180 [ 682.899196][T15963] ? __pfx_rpc_call_null_helper+0x10/0x10 [ 682.899219][T15963] ? rpc_client_register+0x3e0/0x680 [ 682.899241][T15963] ? __pfx_rpc_client_register+0x10/0x10 [ 682.899268][T15963] ? rcu_is_watching+0x12/0xc0 [ 682.899294][T15963] ? rpc_new_client+0xb60/0x12d0 [ 682.899318][T15963] rpc_ping+0xb4/0x150 [ 682.899339][T15963] rpc_create_xprt+0x387/0x440 [ 682.899363][T15963] rpc_create+0x469/0x7f0 [ 682.899387][T15963] ? __pfx_rpc_create+0x10/0x10 [ 682.899424][T15963] ? __lock_acquire+0x436/0x2890 [ 682.899459][T15963] ? rcu_is_watching+0x12/0xc0 [ 682.899485][T15963] ? trace_contention_end+0xdd/0x110 [ 682.899509][T15963] rpcb_create_af_local+0x11b/0x310 [ 682.899540][T15963] ? __pfx_rpcb_create_af_local+0x10/0x10 [ 682.899581][T15963] ? find_held_lock+0x2b/0x80 [ 682.899606][T15963] ? rpcb_create_local+0x1da/0x270 [ 682.899629][T15963] rpcb_create_local+0x1ee/0x270 [ 682.899649][T15963] svc_bind+0x1e8/0x260 [ 682.899673][T15963] nfsd_create_serv+0x2d2/0x480 [ 682.899710][T15963] ? find_held_lock+0x2b/0x80 [ 682.899734][T15963] ? __pfx_nfsd_create_serv+0x10/0x10 [ 682.899768][T15963] nfsd_svc+0x15e/0x8d0 [ 682.899798][T15963] nfsd_nl_threads_set_doit+0x526/0xbc0 [ 682.899823][T15963] genl_family_rcv_msg_doit+0x209/0x2f0 [ 682.899865][T15963] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 682.899896][T15963] ? genl_get_cmd+0x194/0x580 [ 682.899931][T15963] ? bpf_lsm_capable+0x9/0x10 [ 682.899957][T15963] ? security_capable+0x7e/0x260 [ 682.899991][T15963] genl_rcv_msg+0x55c/0x800 [ 682.900012][T15963] ? __pfx_genl_rcv_msg+0x10/0x10 [ 682.900030][T15963] ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10 [ 682.900060][T15963] ? __lock_acquire+0x436/0x2890 [ 682.900083][T15963] netlink_rcv_skb+0x158/0x420 [ 682.900110][T15963] ? __pfx_genl_rcv_msg+0x10/0x10 [ 682.900129][T15963] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 682.900165][T15963] ? netlink_deliver_tap+0x1ae/0xd30 [ 682.900194][T15963] genl_rcv+0x28/0x40 [ 682.900221][T15963] netlink_unicast+0x5aa/0x870 [ 682.900252][T15963] ? __pfx_netlink_unicast+0x10/0x10 [ 682.900289][T15963] netlink_sendmsg+0x8c8/0xdd0 [ 682.900321][T15963] ? __pfx_netlink_sendmsg+0x10/0x10 [ 682.900351][T15963] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 682.900386][T15963] ____sys_sendmsg+0xa5d/0xc30 [ 682.900424][T15963] ? copy_msghdr_from_user+0x10a/0x160 [ 682.900448][T15963] ? __pfx_____sys_sendmsg+0x10/0x10 [ 682.900475][T15963] ? preempt_schedule_thunk+0x16/0x30 [ 682.900498][T15963] ? try_to_wake_up+0xa67/0x1860 [ 682.900527][T15963] ___sys_sendmsg+0x134/0x1d0 [ 682.900553][T15963] ? __pfx____sys_sendmsg+0x10/0x10 [ 682.900577][T15963] ? futex_private_hash_put+0x160/0x1b0 [ 682.900626][T15963] __sys_sendmsg+0x16d/0x220 [ 682.900650][T15963] ? __pfx___sys_sendmsg+0x10/0x10 [ 682.900673][T15963] ? __x64_sys_futex+0x1e0/0x4c0 [ 682.900709][T15963] do_syscall_64+0xcd/0xf80 [ 682.900739][T15963] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 682.900758][T15963] RIP: 0033:0x7f68e758f7c9 [ 682.900775][T15963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 682.900794][T15963] RSP: 002b:00007f68e8370038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 682.900813][T15963] RAX: ffffffffffffffda RBX: 00007f68e77e5fa0 RCX: 00007f68e758f7c9 [ 682.900826][T15963] RDX: 0000000000004000 RSI: 0000200000000480 RDI: 0000000000000006 [ 682.900837][T15963] RBP: 00007f68e7613f91 R08: 0000000000000000 R09: 0000000000000000 [ 682.900849][T15963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 682.900860][T15963] R13: 00007f68e77e6038 R14: 00007f68e77e5fa0 R15: 00007ffcd60c0708 [ 682.900884][T15963] [ 684.619377][T15963] NFSD: Failed to start, no listeners configured. [ 684.716867][T15978] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2182'. [ 685.730720][T15992] dyndbg: expected <4096 bytes into control [ 685.750428][T15992] dyndbg: bad flag-op /, at start of /%*^[ [ 685.789021][T15992] dyndbg: flags parse failed [ 686.597907][T16003] futex_wake_op: syz.1.2188 tries to shift op by -2048; fix this program [ 686.658538][T16003] futex_wake_op: syz.1.2188 tries to shift op by -2048; fix this program [ 686.699461][T16003] 0x000000000001-0x000000020000 : "" [ 686.742436][T16003] ftl_cs: FTL header corrupt! [ 688.236724][T16023] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2192'. [ 689.262281][T16030] FAULT_INJECTION: forcing a failure. [ 689.262281][T16030] name failslab, interval 1, probability 0, space 0, times 0 [ 689.358465][T16030] CPU: 0 UID: 0 PID: 16030 Comm: syz.3.2194 Tainted: G U L syzkaller #0 PREEMPT(full) [ 689.358508][T16030] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 689.358516][T16030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 689.358527][T16030] Call Trace: [ 689.358534][T16030] [ 689.358542][T16030] dump_stack_lvl+0x16c/0x1f0 [ 689.358580][T16030] should_fail_ex+0x512/0x640 [ 689.358602][T16030] ? kmem_cache_alloc_noprof+0x62/0x770 [ 689.358629][T16030] should_failslab+0xc2/0x120 [ 689.358657][T16030] kmem_cache_alloc_noprof+0x83/0x770 [ 689.358680][T16030] ? __kernfs_new_node+0xd2/0x990 [ 689.358707][T16030] ? __kernfs_new_node+0xd2/0x990 [ 689.358727][T16030] __kernfs_new_node+0xd2/0x990 [ 689.358750][T16030] ? __pfx_number+0x10/0x10 [ 689.358769][T16030] ? __pfx___kernfs_new_node+0x10/0x10 [ 689.358797][T16030] ? find_held_lock+0x2b/0x80 [ 689.358822][T16030] ? kernfs_root+0xee/0x2a0 [ 689.358848][T16030] kernfs_new_node+0x13c/0x1e0 [ 689.358877][T16030] kernfs_create_dir_ns+0x4c/0x1a0 [ 689.358905][T16030] sysfs_create_dir_ns+0x13a/0x2b0 [ 689.358927][T16030] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 689.358947][T16030] ? find_held_lock+0x2b/0x80 [ 689.358974][T16030] ? rpc_sysfs_client_namespace+0xd/0x40 [ 689.359002][T16030] kobject_add_internal+0x2c4/0x9d0 [ 689.359019][T16030] ? kmemdup_array+0x11/0x60 [ 689.359044][T16030] kobject_init_and_add+0x11b/0x190 [ 689.359064][T16030] ? __pfx_kobject_init_and_add+0x10/0x10 [ 689.359095][T16030] rpc_sysfs_client_setup+0x190/0x320 [ 689.359124][T16030] ? __pfx_rpc_sysfs_client_setup+0x10/0x10 [ 689.359152][T16030] ? rpc_net_ns+0xe8/0x2a0 [ 689.359175][T16030] rpc_new_client+0x948/0x12d0 [ 689.359209][T16030] rpc_create_xprt+0xd9/0x440 [ 689.359234][T16030] rpc_create+0x469/0x7f0 [ 689.359259][T16030] ? __pfx_rpc_create+0x10/0x10 [ 689.359291][T16030] ? __lock_acquire+0x436/0x2890 [ 689.359325][T16030] ? rcu_is_watching+0x12/0xc0 [ 689.359352][T16030] ? trace_contention_end+0xdd/0x110 [ 689.359378][T16030] rpcb_create_af_local+0x11b/0x310 [ 689.359410][T16030] ? __pfx_rpcb_create_af_local+0x10/0x10 [ 689.359453][T16030] ? find_held_lock+0x2b/0x80 [ 689.359478][T16030] ? rpcb_create_local+0x1da/0x270 [ 689.359515][T16030] rpcb_create_local+0x1ee/0x270 [ 689.359534][T16030] svc_bind+0x1e8/0x260 [ 689.359556][T16030] nfsd_create_serv+0x2d2/0x480 [ 689.359584][T16030] ? find_held_lock+0x2b/0x80 [ 689.359608][T16030] ? __pfx_nfsd_create_serv+0x10/0x10 [ 689.359642][T16030] nfsd_svc+0x15e/0x8d0 [ 689.359673][T16030] nfsd_nl_threads_set_doit+0x526/0xbc0 [ 689.359698][T16030] genl_family_rcv_msg_doit+0x209/0x2f0 [ 689.359732][T16030] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 689.359763][T16030] ? genl_get_cmd+0x194/0x580 [ 689.359797][T16030] ? bpf_lsm_capable+0x9/0x10 [ 689.359822][T16030] ? security_capable+0x7e/0x260 [ 689.359856][T16030] genl_rcv_msg+0x55c/0x800 [ 689.359877][T16030] ? __pfx_genl_rcv_msg+0x10/0x10 [ 689.359895][T16030] ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10 [ 689.359923][T16030] netlink_rcv_skb+0x158/0x420 [ 689.359949][T16030] ? __pfx_genl_rcv_msg+0x10/0x10 [ 689.359968][T16030] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 689.360005][T16030] ? netlink_deliver_tap+0x1ae/0xd30 [ 689.360033][T16030] genl_rcv+0x28/0x40 [ 689.360060][T16030] netlink_unicast+0x5aa/0x870 [ 689.360090][T16030] ? __pfx_netlink_unicast+0x10/0x10 [ 689.360125][T16030] netlink_sendmsg+0x8c8/0xdd0 [ 689.360157][T16030] ? __pfx_netlink_sendmsg+0x10/0x10 [ 689.360187][T16030] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 689.360223][T16030] ____sys_sendmsg+0xa5d/0xc30 [ 689.360253][T16030] ? copy_msghdr_from_user+0x10a/0x160 [ 689.360277][T16030] ? __pfx_____sys_sendmsg+0x10/0x10 [ 689.360304][T16030] ? preempt_schedule_thunk+0x16/0x30 [ 689.360327][T16030] ? try_to_wake_up+0xa67/0x1860 [ 689.360356][T16030] ___sys_sendmsg+0x134/0x1d0 [ 689.360381][T16030] ? __pfx____sys_sendmsg+0x10/0x10 [ 689.360405][T16030] ? futex_private_hash_put+0x160/0x1b0 [ 689.360452][T16030] __sys_sendmsg+0x16d/0x220 [ 689.360476][T16030] ? __pfx___sys_sendmsg+0x10/0x10 [ 689.360506][T16030] ? __x64_sys_futex+0x1e0/0x4c0 [ 689.360542][T16030] do_syscall_64+0xcd/0xf80 [ 689.360571][T16030] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 689.360591][T16030] RIP: 0033:0x7fa462f8f7c9 [ 689.360608][T16030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 689.360628][T16030] RSP: 002b:00007fa463df2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 689.360647][T16030] RAX: ffffffffffffffda RBX: 00007fa4631e5fa0 RCX: 00007fa462f8f7c9 [ 689.360660][T16030] RDX: 0000000000004000 RSI: 0000200000000480 RDI: 0000000000000006 [ 689.360671][T16030] RBP: 00007fa463013f91 R08: 0000000000000000 R09: 0000000000000000 [ 689.360682][T16030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 689.360693][T16030] R13: 00007fa4631e6038 R14: 00007fa4631e5fa0 R15: 00007ffd76134868 [ 689.360717][T16030] [ 689.941088][T16030] kobject: kobject_add_internal failed for clnt-0 (error: -12 parent: rpc-clients) [ 690.506343][T16030] NFSD: Failed to start, no listeners configured. [ 690.947357][T16036] FAULT_INJECTION: forcing a failure. [ 690.947357][T16036] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 691.009192][T16036] CPU: 0 UID: 0 PID: 16036 Comm: syz.2.2196 Tainted: G U L syzkaller #0 PREEMPT(full) [ 691.009225][T16036] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 691.009232][T16036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 691.009244][T16036] Call Trace: [ 691.009250][T16036] [ 691.009257][T16036] dump_stack_lvl+0x16c/0x1f0 [ 691.009290][T16036] should_fail_ex+0x512/0x640 [ 691.009314][T16036] _copy_from_iter+0x2a4/0x16c0 [ 691.009337][T16036] ? find_held_lock+0x2b/0x80 [ 691.009362][T16036] ? __pfx__copy_from_iter+0x10/0x10 [ 691.009385][T16036] ? aa_file_perm+0x2ad/0x1560 [ 691.009417][T16036] copy_page_from_iter+0xde/0x180 [ 691.009448][T16036] anon_pipe_write+0xed5/0x1bd0 [ 691.009479][T16036] ? __print_lock_name+0x60/0xe0 [ 691.009507][T16036] ? __pfx_anon_pipe_write+0x10/0x10 [ 691.009534][T16036] ? common_file_perm+0x1b1/0x500 [ 691.009558][T16036] ? bpf_lsm_file_permission+0x9/0x10 [ 691.009580][T16036] ? security_file_permission+0x71/0x210 [ 691.009608][T16036] ? rw_verify_area+0xcf/0x6c0 [ 691.009639][T16036] vfs_write+0x7d3/0x11d0 [ 691.009666][T16036] ? __pfx_anon_pipe_write+0x10/0x10 [ 691.009695][T16036] ? __pfx_vfs_write+0x10/0x10 [ 691.009719][T16036] ? find_held_lock+0x2b/0x80 [ 691.009755][T16036] ksys_write+0x1f8/0x250 [ 691.009780][T16036] ? __pfx_ksys_write+0x10/0x10 [ 691.009812][T16036] do_syscall_64+0xcd/0xf80 [ 691.009841][T16036] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 691.009859][T16036] RIP: 0033:0x7f458c98f7c9 [ 691.009875][T16036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 691.009894][T16036] RSP: 002b:00007f458d803038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 691.009913][T16036] RAX: ffffffffffffffda RBX: 00007f458cbe5fa0 RCX: 00007f458c98f7c9 [ 691.009925][T16036] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 691.009945][T16036] RBP: 00007f458d803090 R08: 0000000000000000 R09: 0000000000000000 [ 691.009957][T16036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 691.009968][T16036] R13: 00007f458cbe6038 R14: 00007f458cbe5fa0 R15: 00007ffe2588c7f8 [ 691.009991][T16036] [ 691.643180][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 691.654239][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 691.980643][T16060] FAULT_INJECTION: forcing a failure. [ 691.980643][T16060] name failslab, interval 1, probability 0, space 0, times 0 [ 692.030298][T16060] CPU: 0 UID: 0 PID: 16060 Comm: syz.0.2200 Tainted: G U L syzkaller #0 PREEMPT(full) [ 692.030334][T16060] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 692.030343][T16060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 692.030354][T16060] Call Trace: [ 692.030361][T16060] [ 692.030369][T16060] dump_stack_lvl+0x16c/0x1f0 [ 692.030401][T16060] should_fail_ex+0x512/0x640 [ 692.030422][T16060] ? fs_reclaim_acquire+0xae/0x150 [ 692.030454][T16060] should_failslab+0xc2/0x120 [ 692.030578][T16060] kmem_cache_alloc_lru_noprof+0x87/0x770 [ 692.030603][T16060] ? __d_alloc+0x35/0xa80 [ 692.030637][T16060] ? __d_alloc+0x35/0xa80 [ 692.030665][T16060] __d_alloc+0x35/0xa80 [ 692.030693][T16060] ? unix_create1+0x517/0x700 [ 692.030713][T16060] d_alloc_pseudo+0x1c/0xc0 [ 692.030737][T16060] alloc_file_pseudo+0xcf/0x230 [ 692.030759][T16060] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 692.030778][T16060] ? bpf_lsm_socket_post_create+0x9/0x10 [ 692.030799][T16060] ? lockdep_init_map_type+0x5c/0x270 [ 692.030824][T16060] sock_alloc_file+0x50/0x210 [ 692.030851][T16060] xs_local_connect+0x4c4/0xd60 [ 692.030879][T16060] ? __pfx_xs_local_connect+0x10/0x10 [ 692.030904][T16060] ? do_raw_spin_unlock+0x172/0x230 [ 692.030927][T16060] ? _raw_spin_unlock+0x28/0x50 [ 692.030954][T16060] xprt_connect+0x7b7/0x990 [ 692.030985][T16060] ? __pfx_call_connect+0x10/0x10 [ 692.031002][T16060] call_connect+0x1d9/0x2e0 [ 692.031020][T16060] __rpc_execute+0x382/0x1160 [ 692.031045][T16060] ? __pfx___rpc_execute+0x10/0x10 [ 692.031066][T16060] ? rpc_task_get_xprt+0xef/0x2c0 [ 692.031095][T16060] rpc_execute+0x2e8/0x3f0 [ 692.031116][T16060] rpc_run_task+0x4a4/0x660 [ 692.031141][T16060] rpc_call_null_helper+0x136/0x180 [ 692.031166][T16060] ? __pfx_rpc_call_null_helper+0x10/0x10 [ 692.031189][T16060] ? rpc_client_register+0x3e0/0x680 [ 692.031211][T16060] ? __pfx_rpc_client_register+0x10/0x10 [ 692.031237][T16060] ? rcu_is_watching+0x12/0xc0 [ 692.031263][T16060] ? rpc_new_client+0xb60/0x12d0 [ 692.031286][T16060] rpc_ping+0xb4/0x150 [ 692.031312][T16060] rpc_create_xprt+0x387/0x440 [ 692.031336][T16060] rpc_create+0x469/0x7f0 [ 692.031360][T16060] ? __pfx_rpc_create+0x10/0x10 [ 692.031390][T16060] ? __lock_acquire+0x436/0x2890 [ 692.031423][T16060] ? rcu_is_watching+0x12/0xc0 [ 692.031449][T16060] ? trace_contention_end+0xdd/0x110 [ 692.031474][T16060] rpcb_create_af_local+0x11b/0x310 [ 692.031511][T16060] ? __pfx_rpcb_create_af_local+0x10/0x10 [ 692.031552][T16060] ? find_held_lock+0x2b/0x80 [ 692.031576][T16060] ? rpcb_create_local+0x1da/0x270 [ 692.031598][T16060] rpcb_create_local+0x1ee/0x270 [ 692.031617][T16060] svc_bind+0x1e8/0x260 [ 692.031637][T16060] nfsd_create_serv+0x2d2/0x480 [ 692.031664][T16060] ? find_held_lock+0x2b/0x80 [ 692.031690][T16060] ? __pfx_nfsd_create_serv+0x10/0x10 [ 692.031729][T16060] nfsd_svc+0x15e/0x8d0 [ 692.031758][T16060] nfsd_nl_threads_set_doit+0x526/0xbc0 [ 692.031783][T16060] genl_family_rcv_msg_doit+0x209/0x2f0 [ 692.031815][T16060] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 692.031846][T16060] ? genl_get_cmd+0x194/0x580 [ 692.031880][T16060] ? bpf_lsm_capable+0x9/0x10 [ 692.031905][T16060] ? security_capable+0x7e/0x260 [ 692.031939][T16060] genl_rcv_msg+0x55c/0x800 [ 692.031960][T16060] ? __pfx_genl_rcv_msg+0x10/0x10 [ 692.031978][T16060] ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10 [ 692.032006][T16060] netlink_rcv_skb+0x158/0x420 [ 692.032033][T16060] ? __pfx_genl_rcv_msg+0x10/0x10 [ 692.032051][T16060] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 692.032087][T16060] ? netlink_deliver_tap+0x1ae/0xd30 [ 692.032116][T16060] genl_rcv+0x28/0x40 [ 692.032143][T16060] netlink_unicast+0x5aa/0x870 [ 692.032173][T16060] ? __pfx_netlink_unicast+0x10/0x10 [ 692.032208][T16060] netlink_sendmsg+0x8c8/0xdd0 [ 692.032248][T16060] ? __pfx_netlink_sendmsg+0x10/0x10 [ 692.032278][T16060] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 692.032313][T16060] ____sys_sendmsg+0xa5d/0xc30 [ 692.032344][T16060] ? copy_msghdr_from_user+0x10a/0x160 [ 692.032368][T16060] ? __pfx_____sys_sendmsg+0x10/0x10 [ 692.032396][T16060] ? preempt_schedule_thunk+0x16/0x30 [ 692.032420][T16060] ? try_to_wake_up+0xa67/0x1860 [ 692.032449][T16060] ___sys_sendmsg+0x134/0x1d0 [ 692.032480][T16060] ? __pfx____sys_sendmsg+0x10/0x10 [ 692.032504][T16060] ? futex_private_hash_put+0x160/0x1b0 [ 692.032550][T16060] __sys_sendmsg+0x16d/0x220 [ 692.032574][T16060] ? __pfx___sys_sendmsg+0x10/0x10 [ 692.032598][T16060] ? __x64_sys_futex+0x1e0/0x4c0 [ 692.032633][T16060] do_syscall_64+0xcd/0xf80 [ 692.032663][T16060] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 692.032684][T16060] RIP: 0033:0x7fd29ad8f7c9 [ 692.032701][T16060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 692.032719][T16060] RSP: 002b:00007fd29bc0b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 692.032738][T16060] RAX: ffffffffffffffda RBX: 00007fd29afe5fa0 RCX: 00007fd29ad8f7c9 [ 692.032751][T16060] RDX: 0000000000004000 RSI: 0000200000000480 RDI: 0000000000000006 [ 692.032762][T16060] RBP: 00007fd29ae13f91 R08: 0000000000000000 R09: 0000000000000000 [ 692.032773][T16060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 692.032785][T16060] R13: 00007fd29afe6038 R14: 00007fd29afe5fa0 R15: 00007fffc7b28e28 [ 692.032809][T16060] [ 693.300524][T16060] NFSD: Failed to start, no listeners configured. [ 693.366860][T16065] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2202'. [ 693.613848][T16066] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137 [ 693.730573][T16066] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138 [ 693.769861][T16066] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum [ 694.073871][T15480] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 694.111734][T15480] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 694.120327][T15480] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 694.128050][T15480] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 694.135942][T15480] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 694.936586][T16068] chnl_net:caif_netlink_parms(): no params data found [ 695.577301][T16068] bridge0: port 1(bridge_slave_0) entered blocking state [ 695.638306][T16068] bridge0: port 1(bridge_slave_0) entered disabled state [ 695.690062][T16068] bridge_slave_0: entered allmulticast mode [ 695.735218][T16068] bridge_slave_0: entered promiscuous mode [ 695.794145][T16068] bridge0: port 2(bridge_slave_1) entered blocking state [ 695.839732][T16068] bridge0: port 2(bridge_slave_1) entered disabled state [ 695.928455][T16068] bridge_slave_1: entered allmulticast mode [ 695.956790][T16068] bridge_slave_1: entered promiscuous mode [ 696.178870][ T5851] Bluetooth: hci4: command tx timeout [ 696.320507][ T149] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 696.376594][T16106] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2211'. [ 696.721463][ T149] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 696.800327][T16068] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 696.924669][ T149] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 697.012403][T16068] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 697.065687][T16121] FAULT_INJECTION: forcing a failure. [ 697.065687][T16121] name failslab, interval 1, probability 0, space 0, times 0 [ 697.152846][T16121] CPU: 0 UID: 0 PID: 16121 Comm: syz.0.2215 Tainted: G U L syzkaller #0 PREEMPT(full) [ 697.152881][T16121] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 697.152889][T16121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 697.152900][T16121] Call Trace: [ 697.152907][T16121] [ 697.152915][T16121] dump_stack_lvl+0x16c/0x1f0 [ 697.152948][T16121] should_fail_ex+0x512/0x640 [ 697.152969][T16121] ? __kmalloc_node_track_caller_noprof+0xcb/0x930 [ 697.153001][T16121] should_failslab+0xc2/0x120 [ 697.153030][T16121] __kmalloc_node_track_caller_noprof+0xec/0x930 [ 697.153057][T16121] ? kobject_init_and_add+0xe7/0x190 [ 697.153075][T16121] ? rpc_sysfs_client_setup+0x190/0x320 [ 697.153102][T16121] ? kstrdup_const+0x63/0x80 [ 697.153123][T16121] ? rpc_create_xprt+0xd9/0x440 [ 697.153151][T16121] ? kstrdup+0x53/0x100 [ 697.153170][T16121] kstrdup+0x53/0x100 [ 697.153193][T16121] kstrdup_const+0x63/0x80 [ 697.153214][T16121] __kernfs_new_node+0x9b/0x990 [ 697.153238][T16121] ? __pfx_number+0x10/0x10 [ 697.153256][T16121] ? __pfx___kernfs_new_node+0x10/0x10 [ 697.153284][T16121] ? find_held_lock+0x2b/0x80 [ 697.153309][T16121] ? kernfs_root+0xee/0x2a0 [ 697.153335][T16121] kernfs_new_node+0x13c/0x1e0 [ 697.153363][T16121] kernfs_create_dir_ns+0x4c/0x1a0 [ 697.153391][T16121] sysfs_create_dir_ns+0x13a/0x2b0 [ 697.153413][T16121] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 697.153432][T16121] ? find_held_lock+0x2b/0x80 [ 697.153466][T16121] ? rpc_sysfs_client_namespace+0xd/0x40 [ 697.153493][T16121] kobject_add_internal+0x2c4/0x9d0 [ 697.153510][T16121] ? kmemdup_array+0x11/0x60 [ 697.153534][T16121] kobject_init_and_add+0x11b/0x190 [ 697.153558][T16121] ? __pfx_kobject_init_and_add+0x10/0x10 [ 697.153594][T16121] rpc_sysfs_client_setup+0x190/0x320 [ 697.153622][T16121] ? __pfx_rpc_sysfs_client_setup+0x10/0x10 [ 697.153650][T16121] ? rpc_net_ns+0xe8/0x2a0 [ 697.153673][T16121] rpc_new_client+0x948/0x12d0 [ 697.153700][T16121] rpc_create_xprt+0xd9/0x440 [ 697.153724][T16121] rpc_create+0x469/0x7f0 [ 697.153747][T16121] ? __pfx_rpc_create+0x10/0x10 [ 697.153778][T16121] ? __lock_acquire+0x436/0x2890 [ 697.153811][T16121] ? rcu_is_watching+0x12/0xc0 [ 697.153837][T16121] ? trace_contention_end+0xdd/0x110 [ 697.153862][T16121] rpcb_create_af_local+0x11b/0x310 [ 697.153892][T16121] ? __pfx_rpcb_create_af_local+0x10/0x10 [ 697.153933][T16121] ? find_held_lock+0x2b/0x80 [ 697.153958][T16121] ? rpcb_create_local+0x1da/0x270 [ 697.153980][T16121] rpcb_create_local+0x1ee/0x270 [ 697.153999][T16121] svc_bind+0x1e8/0x260 [ 697.154020][T16121] nfsd_create_serv+0x2d2/0x480 [ 697.154045][T16121] ? find_held_lock+0x2b/0x80 [ 697.154068][T16121] ? __pfx_nfsd_create_serv+0x10/0x10 [ 697.154102][T16121] nfsd_svc+0x15e/0x8d0 [ 697.154132][T16121] nfsd_nl_threads_set_doit+0x526/0xbc0 [ 697.154156][T16121] genl_family_rcv_msg_doit+0x209/0x2f0 [ 697.154189][T16121] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 697.154220][T16121] ? genl_get_cmd+0x194/0x580 [ 697.154253][T16121] ? bpf_lsm_capable+0x9/0x10 [ 697.154278][T16121] ? security_capable+0x7e/0x260 [ 697.154313][T16121] genl_rcv_msg+0x55c/0x800 [ 697.154334][T16121] ? __pfx_genl_rcv_msg+0x10/0x10 [ 697.154354][T16121] ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10 [ 697.154382][T16121] netlink_rcv_skb+0x158/0x420 [ 697.154409][T16121] ? __pfx_genl_rcv_msg+0x10/0x10 [ 697.154428][T16121] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 697.154471][T16121] ? netlink_deliver_tap+0x1ae/0xd30 [ 697.154499][T16121] genl_rcv+0x28/0x40 [ 697.154526][T16121] netlink_unicast+0x5aa/0x870 [ 697.154556][T16121] ? __pfx_netlink_unicast+0x10/0x10 [ 697.154591][T16121] netlink_sendmsg+0x8c8/0xdd0 [ 697.154622][T16121] ? __pfx_netlink_sendmsg+0x10/0x10 [ 697.154652][T16121] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 697.154688][T16121] ____sys_sendmsg+0xa5d/0xc30 [ 697.154719][T16121] ? copy_msghdr_from_user+0x10a/0x160 [ 697.154743][T16121] ? __pfx_____sys_sendmsg+0x10/0x10 [ 697.154771][T16121] ? preempt_schedule_thunk+0x16/0x30 [ 697.154794][T16121] ? try_to_wake_up+0xa67/0x1860 [ 697.154823][T16121] ___sys_sendmsg+0x134/0x1d0 [ 697.154848][T16121] ? __pfx____sys_sendmsg+0x10/0x10 [ 697.154872][T16121] ? futex_private_hash_put+0x160/0x1b0 [ 697.154918][T16121] __sys_sendmsg+0x16d/0x220 [ 697.154942][T16121] ? __pfx___sys_sendmsg+0x10/0x10 [ 697.154966][T16121] ? __x64_sys_futex+0x1e0/0x4c0 [ 697.155001][T16121] do_syscall_64+0xcd/0xf80 [ 697.155030][T16121] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 697.155050][T16121] RIP: 0033:0x7fd29ad8f7c9 [ 697.155066][T16121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 697.155084][T16121] RSP: 002b:00007fd29bc0b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 697.155103][T16121] RAX: ffffffffffffffda RBX: 00007fd29afe5fa0 RCX: 00007fd29ad8f7c9 [ 697.155116][T16121] RDX: 0000000000004000 RSI: 0000200000000480 RDI: 0000000000000006 [ 697.155127][T16121] RBP: 00007fd29ae13f91 R08: 0000000000000000 R09: 0000000000000000 [ 697.155139][T16121] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 697.155150][T16121] R13: 00007fd29afe6038 R14: 00007fd29afe5fa0 R15: 00007fffc7b28e28 [ 697.155174][T16121] [ 698.210793][T16121] kobject: kobject_add_internal failed for clnt-0 (error: -12 parent: rpc-clients) [ 698.410968][ T149] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 698.428212][ T5851] Bluetooth: hci4: command tx timeout [ 698.710257][T16121] NFSD: Failed to start, no listeners configured. [ 698.828725][T16068] team0: Port device team_slave_0 added [ 698.836318][T16068] team0: Port device team_slave_1 added [ 698.881939][T16068] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 698.923032][T16068] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 699.003947][T16068] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 699.069021][T16068] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 699.076103][T16068] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 699.198202][T16068] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 699.342790][T16068] hsr_slave_0: entered promiscuous mode [ 699.359023][T16068] hsr_slave_1: entered promiscuous mode [ 699.377927][T16068] debugfs: 'hsr0' already exists in 'hsr' [ 699.410915][T16068] Cannot create hsr debugfs directory [ 699.450844][T16123] FAULT_INJECTION: forcing a failure. [ 699.450844][T16123] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 699.648408][T16123] CPU: 0 UID: 0 PID: 16123 Comm: syz.1.2216 Tainted: G U L syzkaller #0 PREEMPT(full) [ 699.648444][T16123] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 699.648457][T16123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 699.648469][T16123] Call Trace: [ 699.648475][T16123] [ 699.648483][T16123] dump_stack_lvl+0x16c/0x1f0 [ 699.648515][T16123] should_fail_ex+0x512/0x640 [ 699.648540][T16123] _copy_from_iter+0x2a4/0x16c0 [ 699.648563][T16123] ? find_held_lock+0x2b/0x80 [ 699.648589][T16123] ? __pfx__copy_from_iter+0x10/0x10 [ 699.648611][T16123] ? aa_file_perm+0x2ad/0x1560 [ 699.648643][T16123] copy_page_from_iter+0xde/0x180 [ 699.648666][T16123] anon_pipe_write+0xed5/0x1bd0 [ 699.648695][T16123] ? __print_lock_name+0x60/0xe0 [ 699.648724][T16123] ? __pfx_anon_pipe_write+0x10/0x10 [ 699.648751][T16123] ? common_file_perm+0x1b1/0x500 [ 699.648774][T16123] ? bpf_lsm_file_permission+0x9/0x10 [ 699.648796][T16123] ? security_file_permission+0x71/0x210 [ 699.648820][T16123] ? rw_verify_area+0xcf/0x6c0 [ 699.648845][T16123] vfs_write+0x7d3/0x11d0 [ 699.648872][T16123] ? __pfx_anon_pipe_write+0x10/0x10 [ 699.648901][T16123] ? __pfx_vfs_write+0x10/0x10 [ 699.648925][T16123] ? find_held_lock+0x2b/0x80 [ 699.648961][T16123] ksys_write+0x1f8/0x250 [ 699.648986][T16123] ? __pfx_ksys_write+0x10/0x10 [ 699.649018][T16123] do_syscall_64+0xcd/0xf80 [ 699.649047][T16123] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 699.649066][T16123] RIP: 0033:0x7f68e758f7c9 [ 699.649082][T16123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 699.649100][T16123] RSP: 002b:00007f68e8370038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 699.649118][T16123] RAX: ffffffffffffffda RBX: 00007f68e77e5fa0 RCX: 00007f68e758f7c9 [ 699.649131][T16123] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 699.649142][T16123] RBP: 00007f68e8370090 R08: 0000000000000000 R09: 0000000000000000 [ 699.649153][T16123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 699.649164][T16123] R13: 00007f68e77e6038 R14: 00007f68e77e5fa0 R15: 00007ffcd60c0708 [ 699.649187][T16123] [ 700.224795][T16129] FAULT_INJECTION: forcing a failure. [ 700.224795][T16129] name failslab, interval 1, probability 0, space 0, times 0 [ 700.285035][T16129] CPU: 0 UID: 0 PID: 16129 Comm: syz.0.2217 Tainted: G U L syzkaller #0 PREEMPT(full) [ 700.285075][T16129] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 700.285083][T16129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 700.285094][T16129] Call Trace: [ 700.285101][T16129] [ 700.285109][T16129] dump_stack_lvl+0x16c/0x1f0 [ 700.285144][T16129] should_fail_ex+0x512/0x640 [ 700.285165][T16129] ? kmem_cache_alloc_lru_noprof+0x66/0x770 [ 700.285192][T16129] should_failslab+0xc2/0x120 [ 700.285221][T16129] kmem_cache_alloc_lru_noprof+0x87/0x770 [ 700.285245][T16129] ? __d_alloc+0x35/0xa80 [ 700.285278][T16129] ? __d_alloc+0x35/0xa80 [ 700.285306][T16129] __d_alloc+0x35/0xa80 [ 700.285336][T16129] d_alloc_parallel+0x111/0x1510 [ 700.285360][T16129] ? kasan_save_track+0x14/0x30 [ 700.285384][T16129] ? kasan_save_free_info+0x3b/0x60 [ 700.285403][T16129] ? kfree+0x2f8/0x6e0 [ 700.285427][T16129] ? link_path_walk+0x160a/0x1c70 [ 700.285451][T16129] ? path_openat+0x1bd/0x3140 [ 700.285477][T16129] ? do_sys_openat2+0x121/0x290 [ 700.285497][T16129] ? do_syscall_64+0xcd/0xf80 [ 700.285523][T16129] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 700.285546][T16129] ? __pfx_d_alloc_parallel+0x10/0x10 [ 700.285575][T16129] ? lockdep_init_map_type+0x5c/0x270 [ 700.285596][T16129] ? lockdep_init_map_type+0x5c/0x270 [ 700.285619][T16129] __lookup_slow+0x193/0x460 [ 700.285640][T16129] ? __pfx___lookup_slow+0x10/0x10 [ 700.285680][T16129] lookup_slow+0x50/0x70 [ 700.285700][T16129] link_path_walk+0x12d8/0x1c70 [ 700.285733][T16129] path_openat+0x1bd/0x3140 [ 700.285759][T16129] ? do_syscall_64+0xcd/0xf80 [ 700.285784][T16129] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 700.285810][T16129] ? __pfx_path_openat+0x10/0x10 [ 700.285846][T16129] do_filp_open+0x20b/0x470 [ 700.285875][T16129] ? __pfx_do_filp_open+0x10/0x10 [ 700.285910][T16129] ? __pfx_kfree_link+0x10/0x10 [ 700.285939][T16129] ? alloc_fd+0x471/0x7d0 [ 700.285972][T16129] do_sys_openat2+0x121/0x290 [ 700.285993][T16129] ? __pfx_do_sys_openat2+0x10/0x10 [ 700.286022][T16129] __x64_sys_openat+0x174/0x210 [ 700.286044][T16129] ? __pfx___x64_sys_openat+0x10/0x10 [ 700.286074][T16129] do_syscall_64+0xcd/0xf80 [ 700.286103][T16129] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 700.286122][T16129] RIP: 0033:0x7fd29ad8f7c9 [ 700.286138][T16129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 700.286157][T16129] RSP: 002b:00007fd29bbea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 700.286176][T16129] RAX: ffffffffffffffda RBX: 00007fd29afe6090 RCX: 00007fd29ad8f7c9 [ 700.286189][T16129] RDX: 0000000000000002 RSI: 0000200000000200 RDI: ffffffffffffff9c [ 700.286201][T16129] RBP: 00007fd29ae13f91 R08: 0000000000000000 R09: 0000000000000000 [ 700.286212][T16129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 700.286223][T16129] R13: 00007fd29afe6128 R14: 00007fd29afe6090 R15: 00007fffc7b28e28 [ 700.286247][T16129] [ 700.963207][ T5851] Bluetooth: hci4: command tx timeout [ 701.171640][T16132] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2218'. [ 701.368059][T16138] FAULT_INJECTION: forcing a failure. [ 701.368059][T16138] name failslab, interval 1, probability 0, space 0, times 0 [ 701.394645][ T149] netdevsim netdevsim1335 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 701.406180][T16134] vhci_hcd vhci_hcd.3: invalid port number 16 [ 701.417046][T16138] CPU: 0 UID: 0 PID: 16138 Comm: syz.1.2220 Tainted: G U L syzkaller #0 PREEMPT(full) [ 701.417086][T16138] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 701.417093][T16138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 701.417105][T16138] Call Trace: [ 701.417112][T16138] [ 701.417120][T16138] dump_stack_lvl+0x16c/0x1f0 [ 701.417153][T16138] should_fail_ex+0x512/0x640 [ 701.417175][T16138] ? kmem_cache_alloc_noprof+0x62/0x770 [ 701.417201][T16138] should_failslab+0xc2/0x120 [ 701.417230][T16138] kmem_cache_alloc_noprof+0x83/0x770 [ 701.417253][T16138] ? __kernfs_new_node+0xd2/0x990 [ 701.417278][T16138] ? __kernfs_new_node+0xd2/0x990 [ 701.417299][T16138] __kernfs_new_node+0xd2/0x990 [ 701.417324][T16138] ? __pfx___kernfs_new_node+0x10/0x10 [ 701.417352][T16138] ? find_held_lock+0x2b/0x80 [ 701.417377][T16138] ? kernfs_root+0xee/0x2a0 [ 701.417475][T16138] kernfs_new_node+0x13c/0x1e0 [ 701.417505][T16138] kernfs_create_link+0xcc/0x240 [ 701.417537][T16138] sysfs_do_create_link_sd+0x90/0x140 [ 701.417560][T16138] sysfs_create_link_nowarn+0x5e/0xc0 [ 701.417584][T16138] rpc_sysfs_client_setup+0x246/0x320 [ 701.417615][T16138] ? __pfx_rpc_sysfs_client_setup+0x10/0x10 [ 701.417643][T16138] ? rpc_net_ns+0xe8/0x2a0 [ 701.417666][T16138] rpc_new_client+0x948/0x12d0 [ 701.417691][T16138] rpc_create_xprt+0xd9/0x440 [ 701.417715][T16138] rpc_create+0x469/0x7f0 [ 701.417739][T16138] ? __pfx_rpc_create+0x10/0x10 [ 701.417780][T16138] ? __lock_acquire+0x436/0x2890 [ 701.417816][T16138] ? rcu_is_watching+0x12/0xc0 [ 701.417843][T16138] ? trace_contention_end+0xdd/0x110 [ 701.417868][T16138] rpcb_create_af_local+0x11b/0x310 [ 701.417900][T16138] ? __pfx_rpcb_create_af_local+0x10/0x10 [ 701.417941][T16138] ? find_held_lock+0x2b/0x80 [ 701.417966][T16138] ? rpcb_create_local+0x1da/0x270 [ 701.417989][T16138] rpcb_create_local+0x1ee/0x270 [ 701.418008][T16138] svc_bind+0x1e8/0x260 [ 701.418030][T16138] nfsd_create_serv+0x2d2/0x480 [ 701.418057][T16138] ? find_held_lock+0x2b/0x80 [ 701.418080][T16138] ? __pfx_nfsd_create_serv+0x10/0x10 [ 701.418113][T16138] nfsd_svc+0x15e/0x8d0 [ 701.418143][T16138] nfsd_nl_threads_set_doit+0x526/0xbc0 [ 701.418166][T16138] genl_family_rcv_msg_doit+0x209/0x2f0 [ 701.418199][T16138] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 701.418230][T16138] ? genl_get_cmd+0x194/0x580 [ 701.418264][T16138] ? bpf_lsm_capable+0x9/0x10 [ 701.418288][T16138] ? security_capable+0x7e/0x260 [ 701.418323][T16138] genl_rcv_msg+0x55c/0x800 [ 701.418343][T16138] ? __pfx_genl_rcv_msg+0x10/0x10 [ 701.418362][T16138] ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10 [ 701.418384][T16138] ? __lock_acquire+0x436/0x2890 [ 701.418412][T16138] netlink_rcv_skb+0x158/0x420 [ 701.418440][T16138] ? __pfx_genl_rcv_msg+0x10/0x10 [ 701.418458][T16138] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 701.418495][T16138] ? netlink_deliver_tap+0x1ae/0xd30 [ 701.418523][T16138] genl_rcv+0x28/0x40 [ 701.418550][T16138] netlink_unicast+0x5aa/0x870 [ 701.418581][T16138] ? __pfx_netlink_unicast+0x10/0x10 [ 701.418618][T16138] netlink_sendmsg+0x8c8/0xdd0 [ 701.418650][T16138] ? __pfx_netlink_sendmsg+0x10/0x10 [ 701.418680][T16138] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 701.418716][T16138] ____sys_sendmsg+0xa5d/0xc30 [ 701.418746][T16138] ? copy_msghdr_from_user+0x10a/0x160 [ 701.418770][T16138] ? __pfx_____sys_sendmsg+0x10/0x10 [ 701.418797][T16138] ? preempt_schedule_thunk+0x16/0x30 [ 701.418821][T16138] ? try_to_wake_up+0xa67/0x1860 [ 701.418850][T16138] ___sys_sendmsg+0x134/0x1d0 [ 701.418875][T16138] ? __pfx____sys_sendmsg+0x10/0x10 [ 701.418899][T16138] ? futex_private_hash_put+0x160/0x1b0 [ 701.418945][T16138] __sys_sendmsg+0x16d/0x220 [ 701.418969][T16138] ? __pfx___sys_sendmsg+0x10/0x10 [ 701.418993][T16138] ? __x64_sys_futex+0x1e0/0x4c0 [ 701.419028][T16138] do_syscall_64+0xcd/0xf80 [ 701.419058][T16138] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 701.419077][T16138] RIP: 0033:0x7f68e758f7c9 [ 701.419094][T16138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 701.419112][T16138] RSP: 002b:00007f68e8370038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 701.419131][T16138] RAX: ffffffffffffffda RBX: 00007f68e77e5fa0 RCX: 00007f68e758f7c9 [ 701.419144][T16138] RDX: 0000000000004000 RSI: 0000200000000480 RDI: 0000000000000006 [ 701.419155][T16138] RBP: 00007f68e7613f91 R08: 0000000000000000 R09: 0000000000000000 [ 701.419166][T16138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 701.419177][T16138] R13: 00007f68e77e6038 R14: 00007f68e77e5fa0 R15: 00007ffcd60c0708 [ 701.419201][T16138] [ 703.072257][ T5851] Bluetooth: hci4: command tx timeout [ 703.097710][ T30] audit: type=1800 audit(8277292608.410:25): pid=16156 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2225" name="lu_gp_id" dev="configfs" ino=62357 res=0 errno=0 [ 703.134084][ T149] bridge_slave_1: left allmulticast mode [ 703.148248][ T149] bridge_slave_1: left promiscuous mode [ 703.154890][ T149] bridge0: port 2(bridge_slave_1) entered disabled state [ 703.245667][ T149] bridge_slave_0: left allmulticast mode [ 703.258592][ T149] bridge_slave_0: left promiscuous mode [ 703.278617][ T149] bridge0: port 1(bridge_slave_0) entered disabled state [ 703.670263][T16138] can't create link to switch in sysfs (-12) [ 703.732466][T16138] NFSD: Failed to start, no listeners configured. [ 703.863303][T16151] FAULT_INJECTION: forcing a failure. [ 703.863303][T16151] name failslab, interval 1, probability 0, space 0, times 0 [ 703.915756][T16151] CPU: 0 UID: 0 PID: 16151 Comm: syz.0.2223 Tainted: G U L syzkaller #0 PREEMPT(full) [ 703.915792][T16151] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 703.915799][T16151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 703.915811][T16151] Call Trace: [ 703.915818][T16151] [ 703.915826][T16151] dump_stack_lvl+0x16c/0x1f0 [ 703.915861][T16151] should_fail_ex+0x512/0x640 [ 703.915881][T16151] ? kmem_cache_alloc_noprof+0x62/0x770 [ 703.915907][T16151] should_failslab+0xc2/0x120 [ 703.915936][T16151] kmem_cache_alloc_noprof+0x83/0x770 [ 703.915959][T16151] ? rpc_new_task+0x709/0x990 [ 703.915985][T16151] ? rpc_new_task+0x709/0x990 [ 703.916006][T16151] rpc_new_task+0x709/0x990 [ 703.916031][T16151] ? __pfx_rpc_new_task+0x10/0x10 [ 703.916053][T16151] ? find_held_lock+0x2b/0x80 [ 703.916081][T16151] rpc_run_task+0x1e/0x660 [ 703.916106][T16151] rpc_call_null_helper+0x136/0x180 [ 703.916129][T16151] ? __pfx_rpc_call_null_helper+0x10/0x10 [ 703.916153][T16151] ? rpc_client_register+0x3e0/0x680 [ 703.916175][T16151] ? __pfx_rpc_client_register+0x10/0x10 [ 703.916201][T16151] ? rcu_is_watching+0x12/0xc0 [ 703.916227][T16151] ? rpc_new_client+0xb60/0x12d0 [ 703.916250][T16151] rpc_ping+0xb4/0x150 [ 703.916271][T16151] rpc_create_xprt+0x387/0x440 [ 703.916295][T16151] rpc_create+0x469/0x7f0 [ 703.916319][T16151] ? __pfx_rpc_create+0x10/0x10 [ 703.916348][T16151] ? __lock_acquire+0x436/0x2890 [ 703.916381][T16151] ? rcu_is_watching+0x12/0xc0 [ 703.916416][T16151] ? trace_contention_end+0xdd/0x110 [ 703.916442][T16151] rpcb_create_af_local+0x11b/0x310 [ 703.916474][T16151] ? __pfx_rpcb_create_af_local+0x10/0x10 [ 703.916514][T16151] ? find_held_lock+0x2b/0x80 [ 703.916539][T16151] ? rpcb_create_local+0x1da/0x270 [ 703.916561][T16151] rpcb_create_local+0x1ee/0x270 [ 703.916581][T16151] svc_bind+0x1e8/0x260 [ 703.916601][T16151] nfsd_create_serv+0x2d2/0x480 [ 703.916628][T16151] ? find_held_lock+0x2b/0x80 [ 703.916652][T16151] ? __pfx_nfsd_create_serv+0x10/0x10 [ 703.916685][T16151] nfsd_svc+0x15e/0x8d0 [ 703.916714][T16151] nfsd_nl_threads_set_doit+0x526/0xbc0 [ 703.916738][T16151] genl_family_rcv_msg_doit+0x209/0x2f0 [ 703.916771][T16151] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 703.916801][T16151] ? genl_get_cmd+0x194/0x580 [ 703.916834][T16151] ? bpf_lsm_capable+0x9/0x10 [ 703.916859][T16151] ? security_capable+0x7e/0x260 [ 703.916893][T16151] genl_rcv_msg+0x55c/0x800 [ 703.916912][T16151] ? __pfx_genl_rcv_msg+0x10/0x10 [ 703.916930][T16151] ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10 [ 703.916958][T16151] netlink_rcv_skb+0x158/0x420 [ 703.916984][T16151] ? __pfx_genl_rcv_msg+0x10/0x10 [ 703.917003][T16151] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 703.917038][T16151] ? netlink_deliver_tap+0x1ae/0xd30 [ 703.917067][T16151] genl_rcv+0x28/0x40 [ 703.917093][T16151] netlink_unicast+0x5aa/0x870 [ 703.917124][T16151] ? __pfx_netlink_unicast+0x10/0x10 [ 703.917158][T16151] netlink_sendmsg+0x8c8/0xdd0 [ 703.917188][T16151] ? __pfx_netlink_sendmsg+0x10/0x10 [ 703.917218][T16151] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 703.917253][T16151] ____sys_sendmsg+0xa5d/0xc30 [ 703.917283][T16151] ? copy_msghdr_from_user+0x10a/0x160 [ 703.917307][T16151] ? __pfx_____sys_sendmsg+0x10/0x10 [ 703.917341][T16151] ? __pfx_futex_wake_mark+0x10/0x10 [ 703.917370][T16151] ___sys_sendmsg+0x134/0x1d0 [ 703.917395][T16151] ? __pfx____sys_sendmsg+0x10/0x10 [ 703.917425][T16151] ? futex_private_hash_put+0x160/0x1b0 [ 703.917470][T16151] __sys_sendmsg+0x16d/0x220 [ 703.917494][T16151] ? __pfx___sys_sendmsg+0x10/0x10 [ 703.917518][T16151] ? __x64_sys_futex+0x1e0/0x4c0 [ 703.917554][T16151] do_syscall_64+0xcd/0xf80 [ 703.917584][T16151] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 703.917604][T16151] RIP: 0033:0x7fd29ad8f7c9 [ 703.917621][T16151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 703.917640][T16151] RSP: 002b:00007fd29bc0b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 703.917659][T16151] RAX: ffffffffffffffda RBX: 00007fd29afe5fa0 RCX: 00007fd29ad8f7c9 [ 703.917671][T16151] RDX: 0000000000004000 RSI: 0000200000000480 RDI: 0000000000000006 [ 703.917682][T16151] RBP: 00007fd29ae13f91 R08: 0000000000000000 R09: 0000000000000000 [ 703.917693][T16151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 703.917705][T16151] R13: 00007fd29afe6038 R14: 00007fd29afe5fa0 R15: 00007fffc7b28e28 [ 703.917729][T16151] [ 705.529249][ T149] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 705.553539][ T149] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 705.573887][ T149] bond0 (unregistering): Released all slaves [ 705.717260][T16151] NFSD: Failed to start, no listeners configured. [ 706.532941][T16177] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2230'. [ 706.579880][T16068] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 706.719120][T16179] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2230'. [ 706.759442][T16068] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 706.943262][T16068] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 707.253601][T16068] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 707.943980][T16202] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2235'. [ 707.979826][T16203] FAULT_INJECTION: forcing a failure. [ 707.979826][T16203] name failslab, interval 1, probability 0, space 0, times 0 [ 708.035278][T16202] FAULT_INJECTION: forcing a failure. [ 708.035278][T16202] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 708.078485][T16203] CPU: 0 UID: 0 PID: 16203 Comm: syz.0.2234 Tainted: G U L syzkaller #0 PREEMPT(full) [ 708.078521][T16203] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 708.078528][T16203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 708.078540][T16203] Call Trace: [ 708.078547][T16203] [ 708.078555][T16203] dump_stack_lvl+0x16c/0x1f0 [ 708.078588][T16203] should_fail_ex+0x512/0x640 [ 708.078610][T16203] ? __kmalloc_noprof+0xca/0x910 [ 708.078633][T16203] should_failslab+0xc2/0x120 [ 708.078662][T16203] __kmalloc_noprof+0xeb/0x910 [ 708.078683][T16203] ? kobject_get_path+0xd2/0x2d0 [ 708.078716][T16203] ? kobject_get_path+0xd2/0x2d0 [ 708.078744][T16203] kobject_get_path+0xd2/0x2d0 [ 708.078777][T16203] kobject_uevent_env+0x289/0x1920 [ 708.078807][T16203] rpc_sysfs_client_setup+0x233/0x320 [ 708.078836][T16203] ? __pfx_rpc_sysfs_client_setup+0x10/0x10 [ 708.078864][T16203] ? rpc_net_ns+0xe8/0x2a0 [ 708.078887][T16203] rpc_new_client+0x948/0x12d0 [ 708.078912][T16203] rpc_create_xprt+0xd9/0x440 [ 708.078937][T16203] rpc_create+0x469/0x7f0 [ 708.078961][T16203] ? __pfx_rpc_create+0x10/0x10 [ 708.078990][T16203] ? __lock_acquire+0x436/0x2890 [ 708.079023][T16203] ? rcu_is_watching+0x12/0xc0 [ 708.079049][T16203] ? trace_contention_end+0xdd/0x110 [ 708.079074][T16203] rpcb_create_af_local+0x11b/0x310 [ 708.079104][T16203] ? __pfx_rpcb_create_af_local+0x10/0x10 [ 708.079144][T16203] ? find_held_lock+0x2b/0x80 [ 708.079169][T16203] ? rpcb_create_local+0x1da/0x270 [ 708.079191][T16203] rpcb_create_local+0x1ee/0x270 [ 708.079215][T16203] svc_bind+0x1e8/0x260 [ 708.079235][T16203] nfsd_create_serv+0x2d2/0x480 [ 708.079261][T16203] ? find_held_lock+0x2b/0x80 [ 708.079285][T16203] ? __pfx_nfsd_create_serv+0x10/0x10 [ 708.079318][T16203] nfsd_svc+0x15e/0x8d0 [ 708.079361][T16203] nfsd_nl_threads_set_doit+0x526/0xbc0 [ 708.079385][T16203] genl_family_rcv_msg_doit+0x209/0x2f0 [ 708.079418][T16203] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 708.079457][T16203] ? genl_get_cmd+0x194/0x580 [ 708.079490][T16203] ? bpf_lsm_capable+0x9/0x10 [ 708.079521][T16203] ? security_capable+0x7e/0x260 [ 708.079555][T16203] genl_rcv_msg+0x55c/0x800 [ 708.079575][T16203] ? __pfx_genl_rcv_msg+0x10/0x10 [ 708.079593][T16203] ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10 [ 708.079621][T16203] netlink_rcv_skb+0x158/0x420 [ 708.079648][T16203] ? __pfx_genl_rcv_msg+0x10/0x10 [ 708.079667][T16203] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 708.079703][T16203] ? netlink_deliver_tap+0x1ae/0xd30 [ 708.079731][T16203] genl_rcv+0x28/0x40 [ 708.079758][T16203] netlink_unicast+0x5aa/0x870 [ 708.079787][T16203] ? __pfx_netlink_unicast+0x10/0x10 [ 708.079823][T16203] netlink_sendmsg+0x8c8/0xdd0 [ 708.079854][T16203] ? __pfx_netlink_sendmsg+0x10/0x10 [ 708.079884][T16203] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 708.079919][T16203] ____sys_sendmsg+0xa5d/0xc30 [ 708.079949][T16203] ? copy_msghdr_from_user+0x10a/0x160 [ 708.079973][T16203] ? __pfx_____sys_sendmsg+0x10/0x10 [ 708.080001][T16203] ? preempt_schedule_thunk+0x16/0x30 [ 708.080024][T16203] ? try_to_wake_up+0xa67/0x1860 [ 708.080053][T16203] ___sys_sendmsg+0x134/0x1d0 [ 708.080078][T16203] ? __pfx____sys_sendmsg+0x10/0x10 [ 708.080101][T16203] ? futex_private_hash_put+0x160/0x1b0 [ 708.080148][T16203] __sys_sendmsg+0x16d/0x220 [ 708.080172][T16203] ? __pfx___sys_sendmsg+0x10/0x10 [ 708.080195][T16203] ? __x64_sys_futex+0x1e0/0x4c0 [ 708.080231][T16203] do_syscall_64+0xcd/0xf80 [ 708.080261][T16203] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 708.080281][T16203] RIP: 0033:0x7fd29ad8f7c9 [ 708.080297][T16203] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 708.080316][T16203] RSP: 002b:00007fd29bc0b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 708.080342][T16203] RAX: ffffffffffffffda RBX: 00007fd29afe5fa0 RCX: 00007fd29ad8f7c9 [ 708.080355][T16203] RDX: 0000000000004000 RSI: 0000200000000480 RDI: 0000000000000006 [ 708.080366][T16203] RBP: 00007fd29ae13f91 R08: 0000000000000000 R09: 0000000000000000 [ 708.080378][T16203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 708.080390][T16203] R13: 00007fd29afe6038 R14: 00007fd29afe5fa0 R15: 00007fffc7b28e28 [ 708.080416][T16203] [ 708.519616][T16202] CPU: 0 UID: 0 PID: 16202 Comm: syz.2.2235 Tainted: G U L syzkaller #0 PREEMPT(full) [ 708.519651][T16202] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 708.519659][T16202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 708.519670][T16202] Call Trace: [ 708.519677][T16202] [ 708.519684][T16202] dump_stack_lvl+0x16c/0x1f0 [ 708.519717][T16202] should_fail_ex+0x512/0x640 [ 708.519741][T16202] _copy_from_user+0x2e/0xd0 [ 708.519762][T16202] copy_msghdr_from_user+0x98/0x160 [ 708.519787][T16202] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 708.519820][T16202] ___sys_sendmsg+0xfe/0x1d0 [ 708.519844][T16202] ? __pfx____sys_sendmsg+0x10/0x10 [ 708.519885][T16202] ? __pfx_vfs_write+0x10/0x10 [ 708.519917][T16202] ? do_sys_openat2+0x196/0x290 [ 708.519940][T16202] __sys_sendmsg+0x16d/0x220 [ 708.519965][T16202] ? __pfx___sys_sendmsg+0x10/0x10 [ 708.520001][T16202] do_syscall_64+0xcd/0xf80 [ 708.520030][T16202] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 708.520049][T16202] RIP: 0033:0x7f458c98f7c9 [ 708.520065][T16202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 708.520084][T16202] RSP: 002b:00007f458d803038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 708.520102][T16202] RAX: ffffffffffffffda RBX: 00007f458cbe5fa0 RCX: 00007f458c98f7c9 [ 708.520115][T16202] RDX: 0000000000000080 RSI: 0000200000000080 RDI: 0000000000000002 [ 708.520126][T16202] RBP: 00007f458d803090 R08: 0000000000000000 R09: 0000000000000000 [ 708.520137][T16202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 708.520148][T16202] R13: 00007f458cbe6038 R14: 00007f458cbe5fa0 R15: 00007ffe2588c7f8 [ 708.520170][T16202] [ 708.754089][T16068] 8021q: adding VLAN 0 to HW filter on device bond0 [ 708.769162][T16068] 8021q: adding VLAN 0 to HW filter on device team0 [ 708.798768][T16068] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 708.809589][T16068] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 708.860400][ T38] bridge0: port 1(bridge_slave_0) entered blocking state [ 708.867801][ T38] bridge0: port 1(bridge_slave_0) entered forwarding state [ 708.877165][ T38] bridge0: port 2(bridge_slave_1) entered blocking state [ 708.884408][ T38] bridge0: port 2(bridge_slave_1) entered forwarding state [ 709.163888][T16203] NFSD: Failed to start, no listeners configured. [ 709.403453][T16068] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 709.480501][T16068] veth0_vlan: entered promiscuous mode [ 709.513130][T16068] veth1_vlan: entered promiscuous mode [ 709.573343][T16068] veth0_macvtap: entered promiscuous mode [ 709.595553][T16068] veth1_macvtap: entered promiscuous mode [ 709.813459][ T149] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 709.851640][ T149] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 709.922994][ T149] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 709.991136][ T149] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 710.156579][ T149] veth0_macvtap: left promiscuous mode [ 710.185875][ T149] veth1_vlan: left promiscuous mode [ 710.205156][ T149] veth0_vlan: left promiscuous mode [ 710.655796][ T149] pim6reg (unregistering): left allmulticast mode [ 711.018944][T16244] FAULT_INJECTION: forcing a failure. [ 711.018944][T16244] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 711.070308][T16237] Oops: general protection fault, probably for non-canonical address 0xdffffc00000009c0: 0000 [#1] SMP KASAN PTI [ 711.082234][T16237] KASAN: probably user-memory-access in range [0x0000000000004e00-0x0000000000004e07] [ 711.091788][T16237] CPU: 0 UID: 0 PID: 16237 Comm: syz.0.2242 Tainted: G U L syzkaller #0 PREEMPT(full) [ 711.102831][T16237] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 711.108082][T16237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 711.118164][T16237] RIP: 0010:lru_gen_test_recent+0xee/0x320 [ 711.124009][T16237] Code: f8 6d b6 ff 48 85 db 0f 84 79 01 00 00 e8 ea 6d b6 ff 49 8d bd 00 4e 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e a3 01 00 00 4d 63 b5 00 4e 00 [ 711.143638][T16237] RSP: 0018:ffffc90004f4f828 EFLAGS: 00010206 [ 711.149812][T16237] RAX: dffffc0000000000 RBX: ffff88805ba08000 RCX: ffffc90004a82000 [ 711.158045][T16237] RDX: 00000000000009c0 RSI: ffffffff8207e8c6 RDI: 0000000000004e00 [ 711.166144][T16237] RBP: ffffc90004f4f8c0 R08: 0000000000000001 R09: 0000000000000000 [ 711.174201][T16237] R10: 0000000000000001 R11: ffff8880346de6b0 R12: ffffc90004f4f8e0 [ 711.182205][T16237] R13: 0000000000000000 R14: ffffc90004f4f8b0 R15: 0000000000000002 [ 711.190188][T16237] FS: 00007fd29bc0b6c0(0000) GS:ffff8881248fd000(0000) knlGS:0000000000000000 [ 711.199120][T16237] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 711.205702][T16237] CR2: 0000001b314eeff8 CR3: 000000007b3e2000 CR4: 00000000003526f0 [ 711.213682][T16237] Call Trace: [ 711.216965][T16237] [ 711.219905][T16237] workingset_refault+0x251/0xca0 [ 711.225112][T16237] ? __pfx_workingset_refault+0x10/0x10 [ 711.230671][T16237] ? delete_from_page_cache_batch+0x951/0x9b0 [ 711.236741][T16237] filemap_add_folio+0x23d/0x610 [ 711.241774][T16237] ? __pfx_filemap_add_folio+0x10/0x10 [ 711.247319][T16237] do_read_cache_folio+0x23c/0x5c0 [ 711.252433][T16237] freader_get_folio+0x33a/0x930 [ 711.257387][T16237] freader_fetch+0xbd/0x740 [ 711.261893][T16237] ? __asan_memset+0x23/0x50 [ 711.266484][T16237] __build_id_parse.isra.0+0xdd/0x6c0 [ 711.271872][T16237] ? query_matching_vma+0x48e/0x7d0 [ 711.277073][T16237] ? __pfx___build_id_parse.isra.0+0x10/0x10 [ 711.283066][T16237] do_procmap_query+0xb0e/0x1080 [ 711.288024][T16237] ? __pfx_do_procmap_query+0x10/0x10 [ 711.293422][T16237] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 711.299380][T16237] ? do_vfs_ioctl+0x128/0x14f0 [ 711.304247][T16237] ? __fget_files+0x20e/0x3c0 [ 711.309364][T16237] procfs_procmap_ioctl+0x9d/0xe0 [ 711.314488][T16237] ? __pfx_procfs_procmap_ioctl+0x10/0x10 [ 711.320224][T16237] __x64_sys_ioctl+0x18e/0x210 [ 711.325085][T16237] do_syscall_64+0xcd/0xf80 [ 711.329600][T16237] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 711.335593][T16237] RIP: 0033:0x7fd29ad8f7c9 [ 711.340228][T16237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 711.360102][T16237] RSP: 002b:00007fd29bc0b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 711.368977][T16237] RAX: ffffffffffffffda RBX: 00007fd29afe5fa0 RCX: 00007fd29ad8f7c9 [ 711.376964][T16237] RDX: 0000200000000080 RSI: 00000000c0686611 RDI: 0000000000000005 [ 711.384932][T16237] RBP: 00007fd29ae13f91 R08: 0000000000000000 R09: 0000000000000000 [ 711.392989][T16237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 711.400957][T16237] R13: 00007fd29afe6038 R14: 00007fd29afe5fa0 R15: 00007fffc7b28e28 [ 711.408934][T16237] [ 711.411971][T16237] Modules linked in: [ 711.416725][T16237] ---[ end trace 0000000000000000 ]--- [ 711.448411][T16244] CPU: 0 UID: 0 PID: 16244 Comm: syz.1.2244 Tainted: G UD L syzkaller #0 PREEMPT(full) [ 711.448446][T16244] Tainted: [U]=USER, [D]=DIE, [L]=SOFTLOCKUP [ 711.448455][T16244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 711.448465][T16244] Call Trace: [ 711.448472][T16244] [ 711.448478][T16244] dump_stack_lvl+0x16c/0x1f0 [ 711.448509][T16244] should_fail_ex+0x512/0x640 [ 711.448530][T16244] should_fail_alloc_page+0xe7/0x130 [ 711.448559][T16244] prepare_alloc_pages+0x401/0x670 [ 711.448589][T16244] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 711.448613][T16244] ? irqentry_exit+0x1dd/0x8c0 [ 711.448640][T16244] ? lockdep_hardirqs_on+0x7c/0x110 [ 711.448666][T16244] ? irqentry_exit+0x1dd/0x8c0 [ 711.448691][T16244] ? trace_irq_disable.constprop.0+0xd4/0x110 [ 711.448723][T16244] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 711.448756][T16244] ? rep_movs_alternative+0x4a/0x90 [ 711.448776][T16244] ? _copy_from_iter+0x161/0x16c0 [ 711.448796][T16244] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 711.448824][T16244] ? policy_nodemask+0xea/0x4e0 [ 711.448852][T16244] alloc_pages_mpol+0x1fb/0x550 [ 711.448879][T16244] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 711.448908][T16244] alloc_pages_noprof+0x131/0x390 [ 711.448936][T16244] anon_pipe_write+0xeb0/0x1bd0 [ 711.448964][T16244] ? __print_lock_name+0x60/0xe0 [ 711.448990][T16244] ? __pfx_anon_pipe_write+0x10/0x10 [ 711.449021][T16244] ? common_file_perm+0x1b1/0x500 [ 711.449044][T16244] ? bpf_lsm_file_permission+0x9/0x10 [ 711.449066][T16244] ? security_file_permission+0x71/0x210 [ 711.449089][T16244] ? rw_verify_area+0xcf/0x6c0 [ 711.449112][T16244] vfs_write+0x7d3/0x11d0 [ 711.449137][T16244] ? __pfx_anon_pipe_write+0x10/0x10 [ 711.449164][T16244] ? __pfx_vfs_write+0x10/0x10 [ 711.449188][T16244] ? find_held_lock+0x2b/0x80 [ 711.449215][T16244] ksys_write+0x1f8/0x250 [ 711.449240][T16244] ? __pfx_ksys_write+0x10/0x10 [ 711.449268][T16244] do_syscall_64+0xcd/0xf80 [ 711.449295][T16244] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 711.449314][T16244] RIP: 0033:0x7f68e758f7c9 [ 711.449335][T16244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 711.449354][T16244] RSP: 002b:00007f68e834f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 711.449373][T16244] RAX: ffffffffffffffda RBX: 00007f68e77e6090 RCX: 00007f68e758f7c9 [ 711.449388][T16244] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 711.449400][T16244] RBP: 00007f68e834f090 R08: 0000000000000000 R09: 0000000000000000 [ 711.449411][T16244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 711.449422][T16244] R13: 00007f68e77e6128 R14: 00007f68e77e6090 R15: 00007ffcd60c0708 [ 711.449438][T16244] [ 711.764841][T16238] Process accounting resumed SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 712.009579][ T5831] EXT4-fs error (device sda1): ext4_discard_preallocations:5703: comm syz-executor: Error -117 reading block bitmap for 3 [ 712.050663][ T5831] EXT4-fs error (device sda1) in ext4_free_inode:361: Corrupt filesystem [ 712.059537][ T5831] EXT4-fs error (device sda1): ext4_discard_preallocations:5703: comm syz-executor: Error -117 reading block bitmap for 3 [ 712.082611][ T5831] EXT4-fs error (device sda1) in ext4_free_inode:361: Corrupt filesystem [ 712.179684][T16237] RIP: 0010:lru_gen_test_recent+0xee/0x320 [ 712.199530][T16237] Code: f8 6d b6 ff 48 85 db 0f 84 79 01 00 00 e8 ea 6d b6 ff 49 8d bd 00 4e 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e a3 01 00 00 4d 63 b5 00 4e 00 [ 712.238898][T16237] RSP: 0018:ffffc90004f4f828 EFLAGS: 00010206 [ 712.245365][T16237] RAX: dffffc0000000000 RBX: ffff88805ba08000 RCX: ffffc90004a82000 [ 712.268177][T16237] RDX: 00000000000009c0 RSI: ffffffff8207e8c6 RDI: 0000000000004e00 [ 712.276209][T16237] RBP: ffffc90004f4f8c0 R08: 0000000000000001 R09: 0000000000000000 [ 712.298868][T16237] R10: 0000000000000001 R11: ffff8880346de6b0 R12: ffffc90004f4f8e0 [ 712.306891][T16237] R13: 0000000000000000 R14: ffffc90004f4f8b0 R15: 0000000000000002 [ 712.338570][T16237] FS: 00007fd29bc0b6c0(0000) GS:ffff8881248fd000(0000) knlGS:0000000000000000 [ 712.347625][T16237] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 712.368211][T16237] CR2: 000055f39ec47000 CR3: 000000007b3e2000 CR4: 00000000003526f0 [ 712.376336][T16237] Kernel panic - not syncing: Fatal exception [ 712.382558][T16237] Kernel Offset: disabled [ 712.386987][T16237] Rebooting in 86400 seconds..