last executing test programs: 40.281317941s ago: executing program 1 (id=1017): ioctl$auto(0xffffffffffffffff, 0x5523, 0xffffffffffffffff) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x2a6300, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x47, 0x8000) clone$auto(0x20003b46, 0x10000008, 0x0, 0x0, 0x5) mincore$auto(0x1000, 0x8001, 0x0) fcntl$auto(0x8000000000000001, 0x7, 0x8) fcntl$auto(0x8000000000000001, 0x26, 0x8) r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r0, 0x1, 0x7ff) ptrace$auto(0xc, r0, 0x9, 0xfffffffffffff6de) unshare$auto(0x40000080) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto_TIOCSTI2(r1, 0x5412, &(0x7f0000000040)="158f4a2b") r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0) read$auto(r2, 0x0, 0x9) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) unshare$auto(0x40000080) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="10002cbd7000fddbdf251c"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000) bpf$auto(0x0, 0x0, 0x10) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') getcwd$auto(0x0, 0xffffffffffffffff) 38.375381556s ago: executing program 1 (id=1023): write$auto(0x3, 0x0, 0xffd8) 38.166603338s ago: executing program 1 (id=1024): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x2020009, 0xfffffffffffffff7, 0x16, r0, 0x2) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2, 0x9, 0x40eb1, r0, 0x7) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@ethernet={0x1, @remote}, 0x58) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/fib_triestat\x00', 0x8000, 0x0) read$auto(0xffffffffffffffff, &(0x7f0000000000)='veth1\x00', 0x20000000000) madvise$auto(0x0, 0xffffffffffff0005, 0x1b) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000003) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) unshare$auto(0x40000080) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000002f80), r1) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth1_vlan\x00', 0x0}) sendmsg$auto_NETDEV_CMD_QUEUE_GET(r1, &(0x7f0000003040)={0x0, 0x3b, &(0x7f0000003000)={&(0x7f0000000040)={0x2c, r2, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@NETDEV_A_QUEUE_TYPE={0x8}, @NETDEV_A_QUEUE_ID={0x8}, @NETDEV_A_QUEUE_IFINDEX={0x8, 0x2, r3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) r4 = open(&(0x7f0000000100)='.\x00', 0x595002, 0xae2d76cac5edfe15) write$auto(r4, 0x0, 0xfffffdf1) linkat$auto(r4, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) mount$auto(0x0, &(0x7f00000001c0)='&&\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xf6\x04W\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xed\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\x9bg\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x7, 0x0) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0) mknod$auto(&(0x7f0000000040)='&&\x00', 0xcb, 0x6862) mprotect$auto(0x0, 0x8000000000000001, 0x8) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r5 = fanotify_init$auto(0x1f53, 0x2000000000002) ioctl$auto_XFS_IOC_GETBMAPA(r5, 0xc020582c, &(0x7f00000003c0)={0xf, 0x9, 0x4, 0x5, 0x1e}) 37.254738439s ago: executing program 1 (id=1029): ioctl$auto_XFS_IOC_COMMIT_RANGE(0xffffffffffffffff, 0x40585883, 0x0) (async) ioctl$auto_XFS_IOC_EXCHANGE_RANGE(0xffffffffffffffff, 0x40285881, &(0x7f0000000300)={0xffffffffffffffff, 0x0, 0x4, 0x5, 0x9, 0x8}) (async) r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) (async) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYRES64=r0], 0x24}}, 0xc0) mmap$auto(0xfffffffffffffffc, 0x2020009, 0x3, 0x800eb1, 0xffffffffffffffff, 0x8002) r1 = socket(0x10, 0x2, 0x14) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec2\x00', 0x40, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000580)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x80) (async) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) (async) read$auto_ep0_operations_inode(r3, &(0x7f0000000700)=""/117, 0x75) (async) close_range$auto(0x2, 0x8, 0x0) (async) write$auto_seq_oss_f_ops_seq_oss(0xffffffffffffffff, 0x0, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101f81, 0x0) (async) mmap$auto(0x5, 0x2, 0x2, 0x40eb2, 0x401, 0x300000000000) (async) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0) (async) socket(0x2, 0x2, 0x6) (async) socket(0x1f, 0x3, 0x2) r4 = socket(0xa, 0x2, 0x73) (async) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) (async) memfd_create$auto(0x0, 0x6) r5 = socket(0x10, 0xa, 0x80000001) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r5, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20008082}, 0x20004005) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYRESOCT, @ANYRES64=r4, @ANYBLOB="d93fe42b442862e8e6ff91a7effaea826abd80e842e27946df12702cdc9f69d1716cf8f8cbc06f34917e707e3e831a6afb408a5b4344deb9a82e3153c428ca100fdb80cde8a3155c751464a91f1896e48d8df3ea840136fd73809b8d92b80cf11101dad3cd3086102790ec19a297401420c2f87e8b61d3a9d7c1e3357528c15e0b02149077b1421e04361f42ca1116d0e999913be4086c1894e4bc3942e42e38e1f2961a5144062a4e05bcf98770513cd2369c8f46219c26da3b9f4895c9f56ab62c799e83f477f7a2adf9a58229e75a5ccc1f0242a12276157abcdc216fdd6bfce052dd93", @ANYRESDEC=r1], 0x1ac}, 0x1, 0x0, 0x0, 0xfde3f54692675eb}, 0x51) (async) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000180)={0x0, 0xc4}, 0x1, 0x0, 0x80000, 0x9}, 0x2}, 0x3, 0x0) 36.196808072s ago: executing program 1 (id=1030): ioctl$auto(0xffffffffffffffff, 0x5523, 0xffffffffffffffff) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x2a6300, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x47, 0x8000) clone$auto(0x20003b46, 0x10000008, 0x0, 0x0, 0x5) mincore$auto(0x1000, 0x8001, 0x0) fcntl$auto(0x8000000000000001, 0x7, 0x8) fcntl$auto(0x8000000000000001, 0x26, 0x8) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x1a, 0x8000) ptrace$auto(0x10, 0x0, 0x1, 0x7ff) ptrace$auto(0xc, 0x0, 0x9, 0xfffffffffffff6de) unshare$auto(0x40000080) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000040)="158f4a2b") r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0) read$auto(r1, 0x0, 0x9) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) unshare$auto(0x40000080) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="10002cbd7000fddbdf251c"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000) bpf$auto(0x0, 0x0, 0x10) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') getcwd$auto(0x0, 0xffffffffffffffff) 34.940321159s ago: executing program 1 (id=1038): socket(0xa, 0x3, 0x3b) mmap$auto(0x0, 0x1, 0xfffffffffffffffb, 0x17, 0xffffffffffffffff, 0x8768da0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x11, 0x3, 0x2) getsockopt$auto(r0, 0x107, 0xf, 0x0, 0x0) r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) keyctl$auto_KEYCTL_MOVE(0x1e, 0x5, 0x5, 0x80000000, 0x9) r3 = getpgid(0xffffffffffffffff) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r2, 0xc1105517, &(0x7f00000002c0)={{@inferred=0xffffffffffffffff, 0x4, 0x1, 0x0, "bfc956f7b829ea9bc64a831c54b927c5c84cdfcb6d840bf6034bbe162b339fcc0b9ad62f05f5e47256dc5c36", @raw=0x4}, 0x0, 0x5, 0xd77e, @inferred=r3, @integer={0x5, 0x2, 0x5}, "ff0931dc5a3fb879791acf380abcfd7f9f393a68114cc9d69244416e96525a166b971aae562cbc70472d48eb5f54d36edf407701d0d1c4e40409e86cafa60765"}) move_pages$auto(r3, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) read$auto(r1, 0x0, 0x1d) close_range$auto(0x2, 0xa, 0x0) socket(0x11, 0x80003, 0x200300) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = getpid() process_vm_readv$auto(r5, &(0x7f0000000080)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) move_pages$auto(r5, 0x100000001, &(0x7f0000000180)=&(0x7f0000000080)="c533d89edb752a00cfdd638f68eeafc57c73158528b6eb7a678f3016723f0da075507875178a429f7ab2c18cb8567fefc86378ec5de6b6ed6c12e8cf020dbb259995b5e14e68018b0a3bf8ccc76c517ffcc5e41ef42bd259e94aa36d0581646a9d5ca87c1d53f691efd7d821482b8279c8e82b92835252ba74683f19d441fa2c502a2f416249f40a65a8d3ce73319b61c6fdfca683a6bf6436a80227886d7cea6c31fd8b98ba68a4e58d8e0766898a5bf48b1f523ebb415921cec07d30673062839ed92bd4587ee5b75da3969045302c2c482408d5137ef5e53886b0c2", &(0x7f00000001c0)=0x7fff, &(0x7f0000000200)=0x3, 0x9) ioctl$auto_BTRFS_IOC_SCAN_DEV(0xffffffffffffffff, 0x50009404, &(0x7f0000000280)={@raw=0x1, "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"}) r6 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x14, r6, 0x1b, 0x70bd25, 0x25dfdbf9}, 0x14}, 0x1, 0x0, 0x0, 0x50}, 0x400c880) 19.666093759s ago: executing program 32 (id=1038): socket(0xa, 0x3, 0x3b) mmap$auto(0x0, 0x1, 0xfffffffffffffffb, 0x17, 0xffffffffffffffff, 0x8768da0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x11, 0x3, 0x2) getsockopt$auto(r0, 0x107, 0xf, 0x0, 0x0) r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) keyctl$auto_KEYCTL_MOVE(0x1e, 0x5, 0x5, 0x80000000, 0x9) r3 = getpgid(0xffffffffffffffff) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r2, 0xc1105517, &(0x7f00000002c0)={{@inferred=0xffffffffffffffff, 0x4, 0x1, 0x0, "bfc956f7b829ea9bc64a831c54b927c5c84cdfcb6d840bf6034bbe162b339fcc0b9ad62f05f5e47256dc5c36", @raw=0x4}, 0x0, 0x5, 0xd77e, @inferred=r3, @integer={0x5, 0x2, 0x5}, "ff0931dc5a3fb879791acf380abcfd7f9f393a68114cc9d69244416e96525a166b971aae562cbc70472d48eb5f54d36edf407701d0d1c4e40409e86cafa60765"}) move_pages$auto(r3, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) read$auto(r1, 0x0, 0x1d) close_range$auto(0x2, 0xa, 0x0) socket(0x11, 0x80003, 0x200300) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = getpid() process_vm_readv$auto(r5, &(0x7f0000000080)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) move_pages$auto(r5, 0x100000001, &(0x7f0000000180)=&(0x7f0000000080)="c533d89edb752a00cfdd638f68eeafc57c73158528b6eb7a678f3016723f0da075507875178a429f7ab2c18cb8567fefc86378ec5de6b6ed6c12e8cf020dbb259995b5e14e68018b0a3bf8ccc76c517ffcc5e41ef42bd259e94aa36d0581646a9d5ca87c1d53f691efd7d821482b8279c8e82b92835252ba74683f19d441fa2c502a2f416249f40a65a8d3ce73319b61c6fdfca683a6bf6436a80227886d7cea6c31fd8b98ba68a4e58d8e0766898a5bf48b1f523ebb415921cec07d30673062839ed92bd4587ee5b75da3969045302c2c482408d5137ef5e53886b0c2", &(0x7f00000001c0)=0x7fff, &(0x7f0000000200)=0x3, 0x9) ioctl$auto_BTRFS_IOC_SCAN_DEV(0xffffffffffffffff, 0x50009404, &(0x7f0000000280)={@raw=0x1, "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"}) r6 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x14, r6, 0x1b, 0x70bd25, 0x25dfdbf9}, 0x14}, 0x1, 0x0, 0x0, 0x50}, 0x400c880) 10.943905955s ago: executing program 0 (id=1083): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1) socket(0x80000000000000a, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r1 = socket(0x10, 0x2, 0x4) bind$auto(r1, &(0x7f0000000040)=@nl=@proc={0x10, 0x0, 0x25dfdbff, 0x2}, 0xe) getsockname$auto(0x3, &(0x7f0000000d00), &(0x7f0000000d40)=0x4) socket(0xa, 0x2, 0x0) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f0000000140), 0x55) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) rseq$auto(0x0, 0x20, 0x0, 0x8000006) r2 = socket(0x3, 0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyqd\x00', 0x80000, 0x0) setsockopt$auto_SO_TIMESTAMPING_OLD(r2, 0x6, 0x25, 0x0, 0x7) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x6, 0x9, 0x14) madvise$auto(0x4, 0x200007, 0x7) mprotect$auto(0x0, 0x806121, 0x6) r3 = io_uring_setup$auto(0x406, 0x0) getrandom$auto(0x0, 0x6000000, 0x3) io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46) io_uring_enter$auto(r3, 0x7, 0x7ffffffb, 0x3, 0x0, 0xeab) 8.79679894s ago: executing program 0 (id=1089): openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x80802, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001140), 0xffffffffffffffff) r0 = socket(0x23, 0x80805, 0x0) poll$auto(&(0x7f0000000000)={r0, 0x1963, 0x81}, 0x5, 0x10001) setsockopt$auto(r1, 0x113, 0x3, 0x0, 0x79ad226b) mmap$auto(0x0, 0x2000a, 0x4000000000df, 0x11, 0x405, 0x4) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/sequencer2\x00', 0x100, 0x0) mmap$auto(0x0, 0xa36, 0xdf, 0x9b72, 0x7, 0x28000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/radio2\x00', 0x0, 0x0) read$auto_v4l2_fops_v4l2_dev(r3, &(0x7f0000000100)=""/4096, 0x1000) r4 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x8) set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21) kexec_load$auto(0x0, 0x2, 0x0, 0x1000000000004) ioctl$auto_SNDCTL_MIDI_PRETIME(r2, 0xc0046d00, 0x0) r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop13\x00', 0x8202, 0x0) ioctl$auto_SG_GET_RESERVED_SIZE(r5, 0x4c07, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram12/queue/io_poll_delay\x00', 0x0, 0x0) unshare$auto(0x40000080) unshare$auto(0xd1) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bus/usb/008/001\x00', 0x402, 0x0) mmap$auto(0x0, 0x2020009, 0x2, 0x1ff, 0xfffffffffffffffa, 0x8000) r6 = epoll_create$auto(0x1) capset$auto(0x0, 0x0) epoll_ctl$auto(r6, 0x1, 0x8000000000000000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count\x00', 0xc0082, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r4, 0x0, 0x4044001) socket(0x2, 0x1, 0x0) socketpair$auto(0x7ff, 0x3, 0x101, 0x0) 8.386680309s ago: executing program 2 (id=1090): unshare$auto(0x40000080) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) close_range$auto(0x2, 0xa, 0x0) r0 = socket(0x2, 0x1, 0x106) setsockopt$auto(r0, 0x6, 0xd, 0x0, 0x4) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x8000, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram10\x00', 0x14fe02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008012, r1, 0x8000) mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000) ppoll$auto(&(0x7f0000000080)={0xffffffffffffffff, 0x7980, 0x6}, 0x2, 0x0, 0x0, 0x8) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, 0x0, 0x880, 0x0) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r3, &(0x7f00000001c0)=""/70, 0x46) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x100, 0x0) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000080), r2) sendmsg$auto_OVS_DP_CMD_NEW(r2, 0x0, 0x80) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x200007, 0x8) sendmsg$auto_NL802154_CMD_SET_WPAN_PHY_NETNS(0xffffffffffffffff, 0x0, 0x0) process_madvise$auto_PIDFD_SELF_THREAD(0xffffffffffffd8f0, &(0x7f0000000140)={0x0, 0x55}, 0x6, 0x2, 0x0) unshare$auto(0x40000080) r4 = socket$nl_generic(0x10, 0x3, 0x10) mount$auto(0x0, 0xfffffffffffffffe, 0x0, 0x80, 0xfffffffffffffffe) r5 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002a40), r4) sendmsg$auto_NFSD_CMD_LISTENER_SET(r4, &(0x7f00000050c0)={0x0, 0x0, &(0x7f0000005080)={&(0x7f0000000000)=ANY=[@ANYRESOCT=r4, @ANYBLOB="750c1acf7653356049994a847a30c19b83077a43199cfaa44fd75ba74dab05794b5cac9759fcd636c07aeb94ba5108b042ac1b9a75092b05d8d8c16f0d427fe3a272679e9091efc81377835bc013fab60bc76ab9dc672659d43743536ce23a5b898c7d9d4981bf6a45f049c7f51c6ef2d1b216b85ac94d55a5ee0d717613538c3a8f14277a60a0cc", @ANYRESOCT=r5], 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0xc0) 7.928969982s ago: executing program 3 (id=1091): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB="40000000ba8e99616152092d41003cb41ff4410d8a50d0950ec984f8fed236e3c4d3f719666adb557048f010f32ab3", @ANYRES8=r0, @ANYBLOB="1b0026bd7000fddbdf250300000004000800100003800c000c80060009800100000012000100898771f1c19f17790485908286dd000004000280"], 0x40}, 0x1, 0x0, 0x0, 0x50}, 0x400c880) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000002740), 0xffffffffffffffff) process_vm_readv$auto(0x0, 0x0, 0x1, 0x0, 0x6, 0x0) madvise$auto(0x0, 0x2003f2, 0x15) openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f00000002c0), 0x40, 0x0) ioctl$auto_BLKALIGNOFF(0xffffffffffffffff, 0x127a, 0x0) madvise$auto(0x0, 0x1010001, 0x100000003) madvise$auto(0x1000, 0x400050, 0x9) r1 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r1, 0x29, 0x4c, 0x0, 0x5) sendmsg$auto_NL802154_CMD_TRIGGER_SCAN(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x20000094) openat$auto_tracing_err_log_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/error_log\x00', 0x43ab01, 0x0) write$auto(0x1, 0x0, 0x80000000) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x4000804) lstat$auto(0x0, &(0x7f00000000c0)={0x4, 0x2, 0x7, 0x63, 0x0, 0x0, 0x0, 0x0, 0x40000000000f, 0x1000, 0x80000, 0x7ffffffd, 0x8004000000000009, 0xffffffff7ffffffc, 0x9, 0x7, 0x200000100103}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x1, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x163340, 0x119) socket(0x2, 0x80802, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f0000000080)=@nfc={0x27, 0x0, 0x0, 0x1}, 0x54) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) ioctl$sock_SIOCGIFINDEX(r2, 0x89fc, &(0x7f0000000000)={'ip_vti0\x00'}) socket$nl_generic(0x10, 0x3, 0x10) 7.601185788s ago: executing program 3 (id=1092): r0 = socket(0x10, 0x2, 0x0) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) mmap$auto(0x0, 0x400004, 0xdb, 0x9b72, r0, 0x800008000) (async) mmap$auto(0x0, 0x400004, 0xdb, 0x9b72, r0, 0x800008000) socket(0xa, 0x1, 0x84) (async) r1 = socket(0xa, 0x1, 0x84) io_uring_setup$auto(0x401, 0x0) syz_clone3(&(0x7f000000dd80)={0xa00400, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) getsockopt$auto(r1, 0x84, 0x0, 0x0, 0x0) 6.432890182s ago: executing program 3 (id=1093): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8004) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2000, 0x0) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/mpls/platform_labels\x00', 0x95242, 0x0) pwrite64$auto(r0, &(0x7f0000000040)='/proc/sys/user/m\x82\x11\x90M\xfe\xab\xfc\xb5ify_g\b\x00\x00\x00s@', 0x7, 0x7) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0x1, 0x8000000008012, r1, 0x8000) unshare$auto(0x6) mbind$auto(0x2, 0x3, 0x4, 0x0, 0x6, 0x3) mlock$auto(0x7c88, 0x7fff) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[], 0x14}}, 0x20044000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x0) setresuid$auto(0x0, 0x7, 0x8080) mmap$auto(0x0, 0x7, 0x3, 0x1000eb1, 0xffffffffffffffff, 0x80000008000) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0x2, 0x0) socket(0x2, 0x5, 0x84) getsockopt$auto(r0, 0x84, 0x3, 0x0, &(0x7f0000000100)=0x1000bf) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioctl$auto_CEC_S_MODE(0xffffffffffffffff, 0x40046109, 0x0) setfsuid$auto(0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/ifb1/statistics/rx_nohandler\x00', 0xc0002, 0x0) write$auto_ocfs2_control_fops_stack_user(r2, &(0x7f0000003900)='\t', 0x1) socket(0x80000000000000a, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) 6.099178104s ago: executing program 0 (id=1094): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000) io_uring_setup$auto(0x3, 0x0) rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8) r0 = getpid() r1 = gettid() rt_tgsigqueueinfo$auto(r0, r1, 0x1f, 0x0) ppoll$auto(&(0x7f0000000100)={0xffffffffffffffff, 0x690, 0xffa1}, 0x5, 0x0, &(0x7f0000000140)={0x4}, 0x8) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x787806, 0x0) close_range$auto(0x2, 0x8, 0x0) prctl$auto_PR_SET_MM_ARG_START(0xd0e, 0x8, r1, 0xb, 0x8) 6.020790794s ago: executing program 2 (id=1095): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x84) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0) mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) ioctl$auto_XFS_IOC_FREESP(0xffffffffffffffff, 0x4030580b, &(0x7f0000000080)={0x3a4, 0x8, 0x3ff, 0x0, 0x3d, 0xffffffffffffffff}) prctl$auto(0x1, 0x1, r1, 0x1, 0x0) socket(0x21, 0x2, 0xa) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0) write$auto(r2, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(0x3, 0x0, 0x100082) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0) ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x20401, 0x0) ioctl$auto_KVM_GET_MSRS(0xffffffffffffffff, 0x4068aea3, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0x20100, 0x0) preadv2$auto(r3, &(0x7f0000000200)={0x0, 0x80000000009}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) open(0x0, 0x0, 0x408) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) preadv2$auto(r0, 0x0, 0x6, 0xffffffffffffffff, 0x4, 0x2e) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) madvise$auto(0x100000000000000, 0x400053, 0x9) ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000040)=0xc) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) 5.914111351s ago: executing program 3 (id=1096): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) r1 = openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/kvm/max_mmu_rmap_size\x00', 0xa2500, 0x0) read$auto_stat_fops_per_vm_kvm_main(r1, 0x0, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2a) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/mtdblock0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x68d2, r2, 0x8000) mprotect$auto(0x1000, 0x401000, 0x5) mmap$auto(0x0, 0x202000a, 0x5, 0xfffffffffffffffb, 0xfffffffffffffffa, 0x2) r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r3, 0x1, 0x7ff) ptrace$auto(0x4, r3, 0x1, 0x4) mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, 0x602, 0x300000000000) ioctl$auto_USBDEVFS_DISCSIGNAL(0xffffffffffffffff, 0x8010550e, 0x0) r4 = prctl$auto_SECCOMP_MODE_FILTER(0xfe000000, 0x2, 0x0, 0xf307, 0x101) getrandom$auto(&(0x7f0000000100)='!#..:+@\x00', 0x1, 0x4) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), r4) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x800, 0xeb1, r2, 0x8000) socket(0x15, 0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r5 = socket(0x1d, 0x2, 0x2) socket(0x22, 0x1, 0x84) prctl$auto(0x23, 0x0, 0x2008, 0x0, 0x0) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), r5) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0) setsockopt$auto(r0, 0x3, 0x1000, &(0x7f0000000140)='\x00\xadz%A\n[\x91\x9en\xe0\r\x85VN[\xf0\xad\x1d\x1d\x18\x19\xb2\x9a\x1c\xb6.8k\xa3=\x05v\xe4\xaa', 0xffffffff) 5.724052401s ago: executing program 0 (id=1097): mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 32) socket(0xa, 0x1, 0x84) (async, rerun: 32) io_uring_setup$auto(0x6, 0x0) (async) mmap$auto(0x200000000, 0x5, 0x8, 0x40009b72, 0x2, 0x8000) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) (async) write$auto(0x1, 0x0, 0x80000000) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) socket(0xa, 0x1, 0x84) (async, rerun: 32) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000580)='/sys/devices/virtual/mac80211_hwsim/hwsim1/net/wlan1/phys_port_id\x00', 0x100b02, 0x0) (rerun: 32) sendfile$auto(r0, r0, 0x0, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) r2 = fcntl$auto_F_DUPFD_CLOEXEC(r1, 0x406, r1) ioctl$auto_EVIOCGMASK(r2, 0x80104592, &(0x7f0000000040)={0xff800000, 0x144, 0x8}) (async, rerun: 64) r3 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000640), r3) mmap$auto(0x42, 0x88000008000000a, 0xdf, 0x9b70, 0xffffffffffffffff, 0x207fff) (async) read$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffffff, 0x0, 0x0) (async) r4 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x0, 0x0) r5 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f00000000c0), 0x302, 0x0) ioctl$auto_VHOST_SET_OWNER(r5, 0xaf01, 0x5) (async, rerun: 64) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x3, 0x24, 0x1001, 0x1, 0x717e, 0x0, 0x7, 0xf6b, 0xd, 0x2, 0x4080001, 0x4, 0x1ffffffffff9, 0x224a, 0x2, 0x7, 0x5, 0x7f, 0x3ff, 0x2, 0xa, 0x4, 0x200, 0x6, 0x84, 0x3, 0x0, 0x0, 0x4, 0xfffffffc, [0x2, 0x0, 0x10000000000000, 0x4002401, 0x0, 0x7, 0x8, 0xffffffff80000000, 0x10000000000000, 0x42, 0xfffffffffffffffe, 0x3, 0x0, 0x80000000000000, 0x8, 0x4, 0x400, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x668, 0x0, 0xfffffffffffffffd, 0x0, 0x5, 0x14, 0x0, 0x4, 0x0, 0x0, 0xfffffffffffffff9, 0x83, 0x400, 0x6, 0x0, 0x0, 0x7, 0x6, 0xffffffffffffffff, 0x2]}, 0x200000001fe, 0xd) (async, rerun: 64) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/ati_remote2/parameters/mode_mask\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000140)=""/33, 0x21) (async) r7 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000003c0), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r7, 0xfffffffffffffd01, &(0x7f00000001c0)) ioctl$auto(r5, 0x4008af23, r4) (async) r8 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0) ioctl$auto_PROCMAP_QUERY(r8, 0xc0686611, &(0x7f0000000080)={0x17, 0x36, 0x7fff, 0x5, 0x80000000009, 0x1, 0x800, 0x101, 0x5, 0x2, 0xfffffffe, 0x7ffffffd, 0x3, 0x7, 0x9}) r9 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/pid_for_children\x00') ioctl$auto(r9, 0x8004b706, 0x1) 5.016795315s ago: executing program 0 (id=1098): r0 = socket(0x26, 0x3, 0x6) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r0) sendmsg$auto_NL80211_CMD_REMOVE_LINK(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000380)={&(0x7f0000000080)={0x2e8, r1, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_FRAME_TYPE={0x6}, @NL80211_ATTR_TXQ_LIMIT={0x8, 0x10a, 0x6}, @NL80211_ATTR_COLOR_CHANGE_COLOR={0x5, 0x130, 0x3}, @NL80211_ATTR_CQM={0x1cc, 0x5e, 0x0, 0x1, [@nested={0x1c6, 0x49, 0x0, 0x1, [@nested={0x4, 0xfe}, @nested={0x4, 0x15}, @generic="18ddb92e441920f4797fcf21ceaf381b72ee972b2484e7e25aa2b0393826547217521cec54e35e0b95a8b2cedf8e70aa55ae03af9edd2d7d073a318c65d3368de3b58221ee259796e52c2e0c1372b7171714a3e16d298bd46c097f2b76493447b03620b269a7f6fc7f380ecf36a67258cf5c399b8504f702819841dc51a80e227a87bc1ad775808a9e1e7e9b5f901eeb30c0b7f3701545e80b6c7b1f7e8ab24ee9a4c709bec25db993c2bbf1a375fbca3460a9501552c5b52d1fc4a20a44", @generic="a5dcd4cc84aa49bf8514484ccce2320703273cdf3a4600e48cb7c6692629d55a1bfef2c758c89335a846286e3958f07170c78af04a237709281b1e7ac247ef05c75f814da476be6522b8af2c7257e60c95b3bde9bda1dae7497aab2c1ca49d25b85a3cee02a9efcbcc54f10ab54226de41c24e82701e679f5a598d0aa9c662252d5bb4a9c222dba19a1f0f36b00ca710ddc2cda76f1c3251916fb49432689993db5f272f7177745e16918636fd1bcf24e8760f86da164afec7e23a6c077503ccb5c3dceb0177650f", @generic="91c3bab50282ab", @generic="6622ead61a6f4621547e13f537a646433f8359b88336c6287d23e266e0d4d6764285d677114de0ed363b37433c"]}]}, @NL80211_ATTR_BSSID={0xf0, 0xf5, "613a9d942afe48a44f2cb8a9677fee0e16159fbe29ce0bd7bc51e375324cc85a567ba663dec7fdb3ab1001732e9bbf6373fa6edfe47c939113b6b0fc316316c44f7b03a9a55d4b496404d016c7aa1d6d2a45fed023a0897ee08c2b6c982a245ef0a6f055eddea757190fc81b227cdc411f5ebca9339b8e2ec7ae3e406d4d45174786102e876e26aa5ddb9770f721ceaf843c6e2484c90c07e6c86395b120b23e63cd4eda872a0783ab1753d1170e50c9ad8a6f322140d4caf3e4e5abf3b195c2c8ddb1cbb2cf6461ba197e7e9f412a04dbc7509d6b85a4996abfc34b4e18e22de1fe386c92b6d7a4cfd118ac"}]}, 0x2e8}, 0x1, 0x0, 0x0, 0x40}, 0xc0d1) mlockall$auto(0x8) msync$auto(0x8, 0x2, 0x0) mlockall$auto(0xffffff1b) openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000400), 0x2000, 0x0) madvise$auto(0x9cb0, 0x6, 0x4) msync$auto(0x3, 0x0, 0x9) msync$auto(0x2, 0xdec, 0x8000) r2 = clone$auto(0x3, 0xffffffff, &(0x7f0000000440)=0x6, &(0x7f0000000480)=0x2, 0x9) r3 = prctl$auto_PR_SET_MM_START_CODE(0xdfa, 0x1, r2, 0x9, 0x200) msgctl$auto_MSG_INFO(0x9, 0xc, &(0x7f0000000540)={{0x9bb, 0xee01, 0x0, 0x5, 0xffffff0f, 0x8, 0x6}, &(0x7f00000004c0)=0x7, &(0x7f0000000500)=0xc1, 0x5, 0x2, 0x0, 0x4, 0x8, 0x2, 0x8001, 0x1, @inferred=r2, @raw=0x5}) newfstatat$auto(r3, &(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)={0x3, 0x3, 0x7, 0xff, 0xee01, 0xee00, 0x0, 0x10, 0x3, 0x3, 0x8000000000000001, 0xbc3b, 0x3, 0x6, 0x80, 0x2, 0x5}, 0x2) keyctl$auto(0x7, r4, 0xffffffffffffffff, r6, 0x2) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r3, 0xc1105517, &(0x7f00000006c0)={{@raw=0x5, 0x2400000, 0x800, 0x7, "523a3a81054e70299c7bad1fb93b9ae4ea031356067a51b9d24b6486267bbdc7461fb8e1e8bb4dec40e76ed4", @raw=0x3}, 0x0, 0x80000000, 0xd5e5, @inferred=r5, @integer64={0x5, 0x4, 0x6}, "3508e11ebd09e3428d1ab79bbdace36eec91e53f61960211cb41b90f0f375ea76044cb9d5b57d9d8d9136c8b5e642de09086b00e31f673a5794b8653902cbf94"}) msync$auto(0x6, 0x0, 0x8) msync$auto(0x401, 0x5fd7, 0x0) r7 = fsmount$auto(r3, 0xb, 0x3) madvise$auto(0x40, 0x7, 0x1000) r8 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000800)='/dev/input/mice\x00', 0xe000, 0x0) ioctl$auto_EXT4_IOC_MOVE_EXT(r7, 0xc028660f, &(0x7f0000000840)={0x7, 0xffffffffffffffff, 0xffff, 0x1, 0x8, 0x3}) setsockopt$auto_SO_ATTACH_REUSEPORT_CBPF(r9, 0x7f, 0x33, &(0x7f0000000880)='}#\\-\xb0\\^\x00', 0x40) sendmmsg$auto(r8, &(0x7f0000000b80)={{&(0x7f00000008c0)="c9856f67fe57b543d06342d617d08f445662becd76d1d82e16652ce1e6d762a6d907fc739452cf68bf398a6b1df426a80086866f81f674a936a9a4729e204e9c31cca55600f774a756c3ad56888a1702eba507df9616a6cf9ebc8e03c77cea782c8e309dc4fe1a5a97b82604bf449d0963f189477ef1956f000b9c1a3d218732e152fb79f17d7fb06d7a895dce13eb52d4f49234b532087314e46265a66d9693292f1afbfd8d5e741dc4289e841e7cbd1028a49a32d35a", 0x3, &(0x7f0000000a80)={&(0x7f0000000980)="5db034b0993a545da83ce5a0299bb87ae7b65f5b0d12ee3c12616c4bb8b627856e3890f8481c4db905f6df8b0c259fe36092b90c23b05d07bb0be31a00ecb8f12e005ac0f5a3960874f23cdf4a494f4d263277a528a2983b9f46e3b949516889628fbbe8e54934991f4dcf47159c33c3a38d48dc9a97a146f9f0f5739fd83a985d38fdb7cc1ea6156bf8ab34c2dcb77ed3af1ada4bbccee34992f1c9315fc69439214d8c98e1cb1f88ed5bc671465496a213ea3b140bb18f0099f94f28158b8656187328e8efdf35600d5b6276f2", 0x8000000000000001}, 0x0, &(0x7f0000000ac0)="70fc03485f71a6642052c9c9747637539d63d9ade154a8a9a5f3b5bc5dea58d5047a9a609f17e6e9b2e31bdc1dde8eb9c42e5a97a63c26b9c3016cf4d95d8a67fc2573e144370c9b05e3199f86ff89b9dd5f5abe2bd221d8e7d200c6d457ab50ddf0d3d32620fbad1113dbd5dd99b4b752a80feca67c96916a97f839644d989c2642f39783df67f9a03c310a4c1bb0c970f9761322cca09cf9fe82dbe948", 0x0, 0x1}, 0x100}, 0x2, 0x10) openat$nci(0xffffffffffffff9c, &(0x7f0000000bc0), 0x2, 0x0) openat$auto_usbfs_devices_fops_usb(0xffffffffffffff9c, &(0x7f0000000c00), 0x180c42, 0x0) r10 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000c80), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000cc0)={'netpci0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000d00)={'syzkaller1\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_RSS_GET(r3, &(0x7f0000000dc0)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000d80)={&(0x7f0000000d40)={0x40, r10, 0x8, 0x70bd2d, 0x25dfdbfd, {}, [@ETHTOOL_A_RSS_START_CONTEXT={0x8, 0x7, 0x1}, @ETHTOOL_A_RSS_HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x40800}, 0x40050) 4.946819409s ago: executing program 2 (id=1099): r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000200), 0x14000, 0x0) ioctl$auto_VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000280)=0x8) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x8040, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x3f, 0x0) fsopen$auto(0x0, 0x1) write$auto_seq_oss_f_ops_seq_oss(r3, &(0x7f0000000040)="f6e6812018deadf7e88f819e30236ce79400d01532f2ed0d", 0x18) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="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", @ANYRES16=r2, @ANYBLOB="1b0026bd7400fcdbdf250300000004000800100003800c000880080001800400338012000100898771f1c19f1779048590828035000004000280"], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) 4.651552633s ago: executing program 2 (id=1100): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x1eba02, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/usb/drivers/ax88179_178a/remove_id\x00', 0x488081, 0x0) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x82001, 0x0) write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f0000000040)="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", 0x14a) ioctl$auto_SNDCTL_SEQ_SYNC(r0, 0x5101, 0x0) unshare$auto(0x40000080) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x147) move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000) select$auto(0xfffffffb, 0x0, &(0x7f0000000100)={[0x20000000000d, 0x203, 0x0, 0xc, 0x400000000000005, 0x5, 0x6, 0x1f2, 0x9, 0xe8, 0x400000000fb, 0xa, 0x4, 0xaab, 0x5, 0x7]}, 0x0, 0x0) execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_GET_SERVICE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x2000001c}, 0x20000800) execve$auto(&(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000600)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\x00\x00\x00/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a(\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8L\x84j\x8c\xec\xdf\x1a\xbd\xc5\x94\xb9\xb7\xd5\xa4\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12\x16\xb8*\xa9\xc9\xe81\x9d\x06\xbbC\x17\xbb\xe6|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x874\xab?\xc8\x82\xe5\x8f\xb7\x91\xc2\xbe\xb2\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5') mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) waitid$auto_P_ALL(0x0, 0xffffffffffffffff, 0x0, 0x5, 0x0) read$auto(0x3, 0x0, 0x8080) 3.832949549s ago: executing program 3 (id=1101): mmap$auto(0x0, 0x8, 0x9, 0x9b72, 0x2, 0x8000) openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f00000008c0)='/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) unshare$auto(0x40000080) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0) io_uring_setup$auto(0x1, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) openat$auto_rfkill_fops_core(0xffffffffffffff9c, 0x0, 0x200080, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x4) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS2\x00', 0x101e81, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) socket(0x11, 0x3, 0x9) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000540)='\x95R\xfa\\\x10\xa1\xe4@\x04\x88J\x1cYL\x93R\xee\x87\xe5\xbc\xf4Q\x961\xa7c\xbb*~@\x00\xfe\xc1l\xc2\xdc$T\x15\f\x840\xa9\xb6\x1aP\x9d\xcd\xe3\xd8\x0f:\xa2\x06\x1a;\x05\xb1\x8c3\x06\x93\x82\x84?\x85\x11\x03\xc7>M\x04Qg\xf5\"\\\xebT\x00\xb8_\x10N\xee\xd4\x196\xb3N\x9e?J{g\xbd\x1eN\x1ddv\x1b\xa7x\x99\xcb\x10\x95\xcc6\x8e\xa9 }U\xec\x84\xb3\x01\xbdm\xb8H3\xa2e\x8aQ\xfb\xf7\xef\xb8\xd3\x8b-\xca\x10J:\x04/2\xcaX\x12\xb5\xc9-~H\tG\xa5\n9}\xb5\xa1J\x14\xbf\xf4\x9c\x92\x8a\n\x1b\xc3C\xab\x1a\xeb\xbeQ=L\xf2\xea#\xa0\x1f\xfe\xb1\x83%:\x88ob\xc5e6\xb5\b\xe9g%\"\xf5\x91\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00a\x12@t\xce>\xbd\xb0_\xf3\xb0\xca}\xc9\bV`\xf3O\x04\xa6R\xaf\xa5\x046\x1c_l\xc51\x8b\x95\x8ao\x03F\x14\x84\a5WD\xaefs\x9f\xa8\xe9R\xe1SYb', 0x100000a3d9) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x0, 0x1, 0x948b, 0x9, 0x15f4da07, 0x6, 0x10, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0xd8]}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x4, 0x1000000000000bc3, 0x800, 0x3, 0xff, 0x10001, 0x400000000003, 0x3, 0xfffffffffffffffc, 0xfffffffffffffffe, 0x80000000, 0x9, 0xffffdfffffffff81, 0x4]}, 0x0) io_uring_setup$auto(0x6, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/wlan1/forwarding\x00', 0x202, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/rcutree/parameters/rcu_resched_ns\x00', 0x1a1302, 0x0) sendfile$auto(r3, r3, 0x0, 0x43) 3.455802224s ago: executing program 0 (id=1102): madvise$auto(0x110c230000, 0x8031ca, 0x9) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) ioctl$auto(0xc8, 0x801054db, 0xffffffffffffffff) unshare$auto(0x40000080) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) fsconfig$auto_FSCONFIG_SET_FLAG(r0, 0x0, &(0x7f0000000040)='\x00', &(0x7f0000000080)="ce77f786083213e18ea38e6f261adebf66d9993597757aa17bc7e4924e72a9c7ac2504b540b5b57fc62d63ede4ee44", 0x2) preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) madvise$auto(0x0, 0x2003f2, 0x15) close_range$auto(0x2, 0x8, 0x0) socket(0x2a, 0x2, 0x1) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/tty/ldiscs\x00', 0x202480, 0x0) io_uring_setup$auto(0x6, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video3\x00', 0x2aa01, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0x948b, 0x9, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0xd8]}, 0x0) getsockopt$auto_SO_BPF_EXTENSIONS(0xffffffffffffffff, 0x70000, 0x30, 0x0, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f0000000000)) ioctl$auto_SNDCTL_DSP_STEREO(r1, 0xc0045003, 0x0) close_range$auto(0x2, 0x8000, 0x0) unshare$auto(0x40000080) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) unshare$auto(0x40000080) 2.312679878s ago: executing program 2 (id=1103): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) listen$auto(0xffffffffffffffff, 0x0) dup$auto(0xffffffffffffffff) pread64$auto(0xffffffffffffffff, 0x0, 0x6000000000, 0x100000004) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000001080)=""/4076, 0xfec) futex$auto(0x0, 0x85, 0x38, 0x0, 0x0, 0x80800005) r0 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0) ioctl$auto_BLKPG2(r0, 0x1269, 0x0) ioctl$auto_MEMGETINFO(r0, 0x80204d01, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0) read$auto(r1, 0x0, 0x4) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/fail-nth\x00', 0x109802, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x0, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) socket(0xa, 0x801, 0x106) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0xfffc, 0x0, 0x0, 0x5bd, r2, 0x8000) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), 0xffffffffffffffff) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) open(0x0, 0x22240, 0x55) mmap$auto(0x0, 0x4020008, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x21, 0x0) r3 = fsopen$auto(0x0, 0x1) fsconfig$auto(r3, 0x8, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff) io_uring_setup$auto(0x6, 0x0) unshare$auto(0x40000080) socket(0x10, 0x2, 0x0) 28.503324ms ago: executing program 2 (id=1104): unshare$auto(0x40000080) r0 = socket(0xa, 0x3, 0x3) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x3d, 0x0) fsopen$auto(0x0, 0x1) mmap$auto(0x0, 0x3fffff, 0x7, 0x11, 0xdd, 0x0) ioctl$auto(r0, 0x8982, 0x1) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB='-\x00\v'], 0x1ac}}, 0x40000) openat$auto_userfaultfd_dev_fops_userfaultfd(0xffffffffffffff9c, &(0x7f0000000040), 0x228a80, 0x0) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x803}, 0x2004, 0x8) unshare$auto(0x103) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x315, 0x1, 0x401bf, 0x7352, 0x3c, 0x65f, 0x1ffde, 0x7ff, 0x3, 0x2, 0x9, 0xfffffffe, 0x4000006, 0x4, 0xb6, 0x80000000009, 0x6, 0x10003, 0xb, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x10000000000, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x1]}, 0x1fe, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060007000100000008000200", @ANYRES32=0x0, @ANYBLOB="0c001a"], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/bus/usb/029/001\x00', 0xa82, 0x0) r3 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x14, r3, 0x10, 0x70bd2d, 0x25dfdbf6}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x48080) sendmsg$auto_L2TP_CMD_TUNNEL_GET(r1, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x28, r3, 0x8, 0x70bd2d, 0x25dfdbfb, {}, [@L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x49}, @L2TP_ATTR_COOKIE={0xc, 0xf, 0xa1}]}, 0x28}, 0x1, 0x0, 0x0, 0x84}, 0x1001) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/pagemap\x00', 0x0, 0x0) 0s ago: executing program 3 (id=1105): ioctl$auto(0xffffffffffffffff, 0x5523, 0xffffffffffffffff) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x2a6300, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x47, 0x8000) clone$auto(0x20003b46, 0x10000008, 0x0, 0x0, 0x5) fcntl$auto(0x8000000000000001, 0x7, 0x8) fcntl$auto(0x8000000000000001, 0x26, 0x8) mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x1a, 0x8000) r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r0, 0x1, 0x7ff) ptrace$auto(0xc, r0, 0x9, 0xfffffffffffff6de) unshare$auto(0x40000080) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto_TIOCSTI2(r1, 0x5412, &(0x7f0000000040)="158f4a2b") r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0) read$auto(r2, 0x0, 0x9) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) unshare$auto(0x40000080) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="10002cbd7000fddbdf251c"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000) bpf$auto(0x0, 0x0, 0x10) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') getcwd$auto(0x0, 0xffffffffffffffff) kernel console output (not intermixed with test programs): x10 [ 349.326164][ T9041] ? __pfx_down_write_killable+0x10/0x10 [ 349.326277][ T9041] vm_mmap_pgoff+0x29e/0x470 [ 349.326319][ T9041] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 349.326353][ T9041] ? do_futex+0x192/0x350 [ 349.326383][ T9041] ? __pfx_do_futex+0x10/0x10 [ 349.326414][ T9041] ksys_mmap_pgoff+0xe4/0x610 [ 349.326445][ T9041] ? __x64_sys_futex+0x358/0x4d0 [ 349.326471][ T9041] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 349.326501][ T9041] ? xfd_validate_state+0x129/0x190 [ 349.326541][ T9041] __x64_sys_mmap+0x125/0x190 [ 349.326570][ T9041] do_syscall_64+0x115/0x840 [ 349.326622][ T9041] ? clear_bhb_loop+0x40/0x90 [ 349.326660][ T9041] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 349.326686][ T9041] RIP: 0033:0x7f1de259ce59 [ 349.326706][ T9041] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 349.326731][ T9041] RSP: 002b:00007f1de3433028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 349.326760][ T9041] RAX: ffffffffffffffda RBX: 00007f1de2815fa0 RCX: 00007f1de259ce59 [ 349.326776][ T9041] RDX: 00004000000000df RSI: 0000000000020009 RDI: 0000000000000000 [ 349.326792][ T9041] RBP: 00007f1de2632d6f R08: 0000000000000401 R09: 0000000000008000 [ 349.326807][ T9041] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 349.326822][ T9041] R13: 00007f1de2816038 R14: 00007f1de2815fa0 R15: 00007ffcc69ded88 [ 349.326860][ T9041] [ 350.257907][ T9049] Invalid ELF header magic: != ELF [ 350.964259][ T9066] FAULT_INJECTION: forcing a failure. [ 350.964259][ T9066] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 351.075617][ T9066] CPU: 0 UID: 0 PID: 9066 Comm: syz.0.592 Tainted: G L syzkaller #0 PREEMPT(full) [ 351.075657][ T9066] Tainted: [L]=SOFTLOCKUP [ 351.075666][ T9066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 351.075682][ T9066] Call Trace: [ 351.075689][ T9066] [ 351.075699][ T9066] dump_stack_lvl+0x100/0x190 [ 351.075747][ T9066] should_fail_ex.cold+0x5/0xa [ 351.075779][ T9066] strncpy_from_user+0x3b/0x2d0 [ 351.075882][ T9066] do_getname+0x78/0x390 [ 351.075936][ T9066] do_sys_openat2+0xc5/0x1e0 [ 351.075976][ T9066] ? __pfx_do_sys_openat2+0x10/0x10 [ 351.076026][ T9066] __x64_sys_openat+0x12d/0x210 [ 351.076066][ T9066] ? __pfx___x64_sys_openat+0x10/0x10 [ 351.076106][ T9066] ? exit_to_user_mode_loop+0xf3/0x670 [ 351.076151][ T9066] ? rcu_is_watching+0x12/0xc0 [ 351.076184][ T9066] do_syscall_64+0x115/0x840 [ 351.076219][ T9066] ? clear_bhb_loop+0x40/0x90 [ 351.076249][ T9066] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 351.076274][ T9066] RIP: 0033:0x7f6df779ce59 [ 351.076295][ T9066] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 351.076319][ T9066] RSP: 002b:00007f6df8584028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 351.076343][ T9066] RAX: ffffffffffffffda RBX: 00007f6df7a15fa0 RCX: 00007f6df779ce59 [ 351.076360][ T9066] RDX: 0000000000022902 RSI: 00002000000001c0 RDI: ffffffffffffff9c [ 351.076376][ T9066] RBP: 00007f6df7832d6f R08: 0000000000000000 R09: 0000000000000000 [ 351.076391][ T9066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 351.076406][ T9066] R13: 00007f6df7a16038 R14: 00007f6df7a15fa0 R15: 00007ffff93918d8 [ 351.076438][ T9066] [ 352.422161][ T9083] FAULT_INJECTION: forcing a failure. [ 352.422161][ T9083] name fail_futex, interval 1, probability 0, space 0, times 0 [ 352.485444][ T9083] CPU: 0 UID: 0 PID: 9083 Comm: syz.0.597 Tainted: G L syzkaller #0 PREEMPT(full) [ 352.485484][ T9083] Tainted: [L]=SOFTLOCKUP [ 352.485493][ T9083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 352.485509][ T9083] Call Trace: [ 352.485517][ T9083] [ 352.485526][ T9083] dump_stack_lvl+0x100/0x190 [ 352.485574][ T9083] should_fail_ex.cold+0x5/0xa [ 352.485605][ T9083] get_futex_key+0x1d2/0x1510 [ 352.485650][ T9083] ? __pfx_get_futex_key+0x10/0x10 [ 352.485688][ T9083] ? pick_eevdf+0x4d3/0x860 [ 352.485724][ T9083] ? update_se+0x94/0x770 [ 352.485767][ T9083] futex_wait_setup+0x83/0x510 [ 352.485806][ T9083] __futex_wait+0x19f/0x300 [ 352.485840][ T9083] ? __pfx___futex_wait+0x10/0x10 [ 352.485870][ T9083] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 352.485973][ T9083] ? __pfx_futex_wake_mark+0x10/0x10 [ 352.486017][ T9083] ? find_held_lock+0x2b/0x80 [ 352.486048][ T9083] ? futex_wake+0x456/0x530 [ 352.486085][ T9083] futex_wait+0xe6/0x370 [ 352.486116][ T9083] ? __pfx_futex_wait+0x10/0x10 [ 352.486155][ T9083] ? vfs_write+0x15d/0x1070 [ 352.486184][ T9083] ? __pfx_blkdev_write_iter+0x10/0x10 [ 352.486281][ T9083] do_futex+0x1ef/0x350 [ 352.486307][ T9083] ? __pfx_do_futex+0x10/0x10 [ 352.486334][ T9083] ? cap_task_prctl+0x104/0xa50 [ 352.486359][ T9083] ? __pfx_sched_core_share_pid+0x10/0x10 [ 352.486404][ T9083] __x64_sys_futex+0x34f/0x4d0 [ 352.486434][ T9083] ? __pfx___x64_sys_futex+0x10/0x10 [ 352.486461][ T9083] ? __pfx___do_sys_prctl+0x10/0x10 [ 352.486495][ T9083] ? rcu_is_watching+0x12/0xc0 [ 352.486527][ T9083] do_syscall_64+0x115/0x840 [ 352.486561][ T9083] ? clear_bhb_loop+0x40/0x90 [ 352.486592][ T9083] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 352.486618][ T9083] RIP: 0033:0x7f6df779ce59 [ 352.486638][ T9083] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 352.486663][ T9083] RSP: 002b:00007f6df59f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 352.486686][ T9083] RAX: ffffffffffffffda RBX: 00007f6df7a16098 RCX: 00007f6df779ce59 [ 352.486703][ T9083] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6df7a16098 [ 352.486719][ T9083] RBP: 00007f6df7a16090 R08: 0000000000000000 R09: 0000000000000000 [ 352.486734][ T9083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 352.486749][ T9083] R13: 00007f6df7a16128 R14: 00007ffff93917f0 R15: 00007ffff93918d8 [ 352.486780][ T9083] [ 353.533010][ T9074] Process accounting paused [ 353.568545][ T9089] netlink: 342 bytes leftover after parsing attributes in process `syz.2.596'. [ 358.029747][ T9145] zswap: compressor not available [ 359.783938][ T29] audit: type=1804 audit(1780723023.931:14): pid=9164 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.610" name="/newroot/153/file0" dev="tmpfs" ino=838 res=1 errno=0 [ 359.859723][ T29] audit: type=1804 audit(1780723024.041:15): pid=9172 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.610" name="/newroot/153/file0" dev="tmpfs" ino=838 res=1 errno=0 [ 361.174497][ T9211] netlink: 'syz.1.614': attribute type 11 has an invalid length. [ 362.281547][ T9224] input: jJǸ-¶š9ã%vø“ûJ86Ö‘ as /devices/virtual/input/input12 [ 365.619262][ T9264] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 365.674120][ T9264] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 365.725022][ T9264] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 365.773436][ T9264] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 366.433590][ T9288] netlink: 8 bytes leftover after parsing attributes in process `syz.3.630'. [ 367.127437][ T5632] Bluetooth: hci0: command 0x0c1a tx timeout [ 367.687609][ T5632] Bluetooth: hci1: command 0x0c1a tx timeout [ 367.767886][ T5632] Bluetooth: hci2: command 0x0c1a tx timeout [ 367.847520][ T5632] Bluetooth: hci3: command 0x0c1a tx timeout [ 369.112314][ T9291] Process accounting paused [ 369.430219][ T9315] FAULT_INJECTION: forcing a failure. [ 369.430219][ T9315] name failslab, interval 1, probability 0, space 0, times 0 [ 369.596632][ T9315] CPU: 0 UID: 0 PID: 9315 Comm: syz.2.634 Tainted: G L syzkaller #0 PREEMPT(full) [ 369.596672][ T9315] Tainted: [L]=SOFTLOCKUP [ 369.596681][ T9315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 369.596696][ T9315] Call Trace: [ 369.596705][ T9315] [ 369.596714][ T9315] dump_stack_lvl+0x100/0x190 [ 369.596763][ T9315] should_fail_ex.cold+0x5/0xa [ 369.596795][ T9315] ? lsm_blob_alloc+0x68/0x90 [ 369.596837][ T9315] should_failslab+0xc2/0x120 [ 369.596867][ T9315] __kmalloc_noprof+0xe0/0x850 [ 369.596907][ T9315] ? trace_kmem_cache_alloc+0xd5/0x100 [ 369.596942][ T9315] lsm_blob_alloc+0x68/0x90 [ 369.596981][ T9315] security_sk_alloc+0x2d/0x290 [ 369.597067][ T9315] sk_prot_alloc+0x1d1/0x2a0 [ 369.597167][ T9315] sk_alloc+0x36/0xe80 [ 369.597209][ T9315] inet6_create+0x385/0x12b0 [ 369.597281][ T9315] ? inet6_create+0x7f/0x12b0 [ 369.597315][ T9315] __sock_create+0x339/0x860 [ 369.597355][ T9315] udp_sock_create6+0xc7/0x6a0 [ 369.597407][ T9315] ? __pfx_udp_sock_create6+0x10/0x10 [ 369.597440][ T9315] ? crng_make_state+0x477/0x6c0 [ 369.597537][ T9315] ? lockdep_hardirqs_on+0x78/0x100 [ 369.597575][ T9315] ? crng_make_state+0x2b0/0x6c0 [ 369.597619][ T9315] rxrpc_open_socket+0x206/0x6b0 [ 369.597699][ T9315] ? __pfx_rxrpc_open_socket+0x10/0x10 [ 369.597742][ T9315] ? rcu_is_watching+0x12/0xc0 [ 369.597771][ T9315] ? trace_rxrpc_local+0x80/0x250 [ 369.597800][ T9315] rxrpc_lookup_local+0xac7/0x1220 [ 369.597840][ T9315] ? __pfx_rxrpc_lookup_local+0x10/0x10 [ 369.597872][ T9315] ? __local_bh_enable_ip+0x9e/0x120 [ 369.597908][ T9315] rxrpc_sendmsg+0x34a/0x680 [ 369.597973][ T9315] sock_write_iter+0x524/0x5a0 [ 369.598005][ T9315] ? __pfx_rxrpc_sendmsg+0x10/0x10 [ 369.598037][ T9315] ? __pfx_sock_write_iter+0x10/0x10 [ 369.598084][ T9315] ? bpf_lsm_file_permission+0x9/0x10 [ 369.598107][ T9315] ? security_file_permission+0x76/0x210 [ 369.598142][ T9315] ? rw_verify_area+0xce/0x6d0 [ 369.598170][ T9315] vfs_write+0x6ac/0x1070 [ 369.598199][ T9315] ? __pfx_sock_write_iter+0x10/0x10 [ 369.598235][ T9315] ? __pfx_vfs_write+0x10/0x10 [ 369.598260][ T9315] ? find_held_lock+0x2b/0x80 [ 369.598310][ T9315] ksys_write+0x1f8/0x250 [ 369.598338][ T9315] ? __pfx_ksys_write+0x10/0x10 [ 369.598369][ T9315] ? rcu_is_watching+0x12/0xc0 [ 369.598401][ T9315] do_syscall_64+0x115/0x840 [ 369.598435][ T9315] ? clear_bhb_loop+0x40/0x90 [ 369.598466][ T9315] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 369.598492][ T9315] RIP: 0033:0x7fa6d099ce59 [ 369.598513][ T9315] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 369.598537][ T9315] RSP: 002b:00007fa6d1775028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 369.598560][ T9315] RAX: ffffffffffffffda RBX: 00007fa6d0c15fa0 RCX: 00007fa6d099ce59 [ 369.598577][ T9315] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 369.598592][ T9315] RBP: 00007fa6d0a32d6f R08: 0000000000000000 R09: 0000000000000000 [ 369.598608][ T9315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 369.598623][ T9315] R13: 00007fa6d0c16038 R14: 00007fa6d0c15fa0 R15: 00007ffc9e8c5ad8 [ 369.598654][ T9315] [ 371.181668][ T9334] netlink: 342 bytes leftover after parsing attributes in process `syz.0.637'. [ 373.053209][ T9356] FAULT_INJECTION: forcing a failure. [ 373.053209][ T9356] name failslab, interval 1, probability 0, space 0, times 0 [ 373.255214][ T9356] CPU: 0 UID: 0 PID: 9356 Comm: syz.3.642 Tainted: G L syzkaller #0 PREEMPT(full) [ 373.255255][ T9356] Tainted: [L]=SOFTLOCKUP [ 373.255263][ T9356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 373.255279][ T9356] Call Trace: [ 373.255287][ T9356] [ 373.255296][ T9356] dump_stack_lvl+0x100/0x190 [ 373.255345][ T9356] should_fail_ex.cold+0x5/0xa [ 373.255377][ T9356] should_failslab+0xc2/0x120 [ 373.255407][ T9356] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 373.255447][ T9356] ? mpol_new+0x11b/0x2d0 [ 373.255495][ T9356] ? find_held_lock+0x2b/0x80 [ 373.255527][ T9356] ? futex_wake+0x456/0x530 [ 373.255560][ T9356] mpol_new+0x11b/0x2d0 [ 373.255587][ T9356] do_mbind+0x210/0xfd0 [ 373.255629][ T9356] ? __pfx_do_mbind+0x10/0x10 [ 373.255681][ T9356] ? __pfx_get_nodes+0x10/0x10 [ 373.255704][ T9356] ? find_held_lock+0x2b/0x80 [ 373.255743][ T9356] kernel_mbind+0x1b7/0x200 [ 373.255780][ T9356] ? __pfx_kernel_mbind+0x10/0x10 [ 373.255818][ T9356] ? rcu_is_watching+0x12/0xc0 [ 373.255850][ T9356] do_syscall_64+0x115/0x840 [ 373.255885][ T9356] ? clear_bhb_loop+0x40/0x90 [ 373.255916][ T9356] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 373.255948][ T9356] RIP: 0033:0x7f1de259ce59 [ 373.255976][ T9356] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 373.256001][ T9356] RSP: 002b:00007f1de3433028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 373.256025][ T9356] RAX: ffffffffffffffda RBX: 00007f1de2815fa0 RCX: 00007f1de259ce59 [ 373.256042][ T9356] RDX: 0000000000000004 RSI: 00000000002091d2 RDI: 0000000000002000 [ 373.256057][ T9356] RBP: 00007f1de2632d6f R08: 0000000000000006 R09: 0000000000000002 [ 373.256073][ T9356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 373.256087][ T9356] R13: 00007f1de2816038 R14: 00007f1de2815fa0 R15: 00007ffcc69ded88 [ 373.256119][ T9356] [ 376.070787][ T5632] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 376.078434][ T5632] Bluetooth: hci2: Invalid handle: 0x3a4a > 0x0eff [ 376.203319][ T9385] zswap: compressor not available [ 377.698654][ T9408] netlink: 342 bytes leftover after parsing attributes in process `syz.0.650'. [ 378.730530][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.737798][ T1318] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.139253][ T5632] Bluetooth: hci1: unexpected event 0x10 length: 124 > 1 [ 379.140900][ T50] Bluetooth: hci1: hardware error 0x00 [ 379.578497][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.591908][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.602841][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.609890][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.616895][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.629374][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.637215][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.644668][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.652114][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.660688][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.667667][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.675790][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.684482][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.691547][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.700518][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.707683][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.721698][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.728734][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.738275][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.745551][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.755020][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.762082][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.770867][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.778373][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.785457][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.792577][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.802300][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.810938][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.818231][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.825594][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.833909][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.842489][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.851373][ T5632] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 379.894895][ T9391] Process accounting resumed [ 381.207522][ T50] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 383.193331][ T9455] kexec: Could not allocate control_code_buffer [ 383.942571][ T9489] netlink: 74 bytes leftover after parsing attributes in process `syz.3.667'. [ 384.544756][ T9502] Process accounting resumed [ 386.533339][ T9551] FAULT_INJECTION: forcing a failure. [ 386.533339][ T9551] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 386.594188][ T9551] CPU: 0 UID: 0 PID: 9551 Comm: syz.1.679 Tainted: G L syzkaller #0 PREEMPT(full) [ 386.594226][ T9551] Tainted: [L]=SOFTLOCKUP [ 386.594234][ T9551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 386.594248][ T9551] Call Trace: [ 386.594256][ T9551] [ 386.594264][ T9551] dump_stack_lvl+0x100/0x190 [ 386.594311][ T9551] should_fail_ex.cold+0x5/0xa [ 386.594336][ T9551] ? prepare_alloc_pages+0x16d/0x5f0 [ 386.594368][ T9551] should_fail_alloc_page+0xeb/0x140 [ 386.594399][ T9551] prepare_alloc_pages+0x1f0/0x5f0 [ 386.594433][ T9551] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 386.594478][ T9551] ? lock_acquire+0x1b1/0x370 [ 386.594571][ T9551] ? find_held_lock+0x2b/0x80 [ 386.594599][ T9551] ? page_table_check_set+0x477/0x920 [ 386.594625][ T9551] ? page_table_check_set+0x477/0x920 [ 386.594654][ T9551] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 386.594693][ T9551] ? page_table_check_set+0x486/0x920 [ 386.594726][ T9551] ? __page_table_check_ptes_set+0x1b5/0x4e0 [ 386.594752][ T9551] ? xas_move_index+0xae/0x110 [ 386.594854][ T9551] ? find_held_lock+0x2b/0x80 [ 386.594882][ T9551] ? find_held_lock+0x2b/0x80 [ 386.594909][ T9551] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 386.594944][ T9551] ? policy_nodemask+0xed/0x4f0 [ 386.594974][ T9551] alloc_pages_mpol+0x1fb/0x540 [ 386.595003][ T9551] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 386.595033][ T9551] ? __lock_acquire+0x4a5/0x2630 [ 386.595073][ T9551] folio_alloc_mpol_noprof+0x36/0x260 [ 386.595107][ T9551] vma_alloc_folio_noprof+0xed/0x1d0 [ 386.595140][ T9551] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 386.595181][ T9551] do_anonymous_page+0xb46/0x2050 [ 386.595217][ T9551] ? rcu_read_unlock+0x2d/0xb0 [ 386.595260][ T9551] __handle_mm_fault+0x1d2c/0x2a00 [ 386.595301][ T9551] ? reacquire_held_locks+0xce/0x1e0 [ 386.595339][ T9551] ? __pfx___handle_mm_fault+0x10/0x10 [ 386.595379][ T9551] ? lock_vma_under_rcu+0x17c/0x590 [ 386.595430][ T9551] handle_mm_fault+0x37b/0xa30 [ 386.595470][ T9551] do_user_addr_fault+0x5a3/0x12f0 [ 386.595520][ T9551] exc_page_fault+0x6f/0xd0 [ 386.595555][ T9551] asm_exc_page_fault+0x26/0x30 [ 386.595578][ T9551] RIP: 0033:0x7f79e825e60b [ 386.595596][ T9551] Code: 00 00 00 48 8d 3d 8d a0 1a 00 48 89 c1 31 c0 e8 cb 2e ff ff eb d2 66 0f 1f 84 00 00 00 00 00 55 31 c0 53 48 81 ec 68 10 00 00 <48> 89 7c 24 08 48 8d 3d c1 a0 1a 00 48 89 34 24 48 8b 14 24 48 8b [ 386.595619][ T9551] RSP: 002b:00007f79e929afa0 EFLAGS: 00010206 [ 386.595638][ T9551] RAX: 0000000000000000 RBX: 00007f79e8615fa0 RCX: 0000000000000000 [ 386.595652][ T9551] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000200000000080 [ 386.595667][ T9551] RBP: 00007f79e8432d6f R08: 0000000000000000 R09: 0000000000000000 [ 386.595681][ T9551] R10: 0000200000000080 R11: 0000000000000000 R12: 0000000000000000 [ 386.595695][ T9551] R13: 00007f79e8616038 R14: 00007f79e8615fa0 R15: 00007ffd66c4a128 [ 386.595725][ T9551] [ 387.177805][ T9551] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 391.215185][ T9614] FAULT_INJECTION: forcing a failure. [ 391.215185][ T9614] name failslab, interval 1, probability 0, space 0, times 0 [ 391.293096][ T9614] CPU: 0 UID: 0 PID: 9614 Comm: syz.2.690 Tainted: G L syzkaller #0 PREEMPT(full) [ 391.293136][ T9614] Tainted: [L]=SOFTLOCKUP [ 391.293145][ T9614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 391.293160][ T9614] Call Trace: [ 391.293168][ T9614] [ 391.293177][ T9614] dump_stack_lvl+0x100/0x190 [ 391.293226][ T9614] should_fail_ex.cold+0x5/0xa [ 391.293257][ T9614] should_failslab+0xc2/0x120 [ 391.293287][ T9614] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 391.293327][ T9614] ? ptlock_alloc+0x1f/0x70 [ 391.293364][ T9614] ? do_raw_spin_lock+0x128/0x260 [ 391.293396][ T9614] ptlock_alloc+0x1f/0x70 [ 391.293438][ T9614] pte_alloc_one+0x82/0x3d0 [ 391.293473][ T9614] do_fault+0x86c/0x1750 [ 391.293503][ T9614] ? __pmd_alloc+0x3fb/0x950 [ 391.293538][ T9614] __handle_mm_fault+0x187d/0x2a00 [ 391.293581][ T9614] ? mt_find+0x45e/0x8e0 [ 391.293689][ T9614] ? __pfx___handle_mm_fault+0x10/0x10 [ 391.293726][ T9614] ? __pfx_mt_find+0x10/0x10 [ 391.293782][ T9614] ? find_vma+0xbf/0x140 [ 391.293809][ T9614] ? __pfx_find_vma+0x10/0x10 [ 391.293839][ T9614] handle_mm_fault+0x37b/0xa30 [ 391.293883][ T9614] do_user_addr_fault+0x74c/0x12f0 [ 391.293916][ T9614] ? trace_page_fault_kernel+0x7a/0x200 [ 391.293947][ T9614] exc_page_fault+0x6f/0xd0 [ 391.293983][ T9614] asm_exc_page_fault+0x26/0x30 [ 391.294008][ T9614] RIP: 0010:rep_movs_alternative+0x30/0x90 [ 391.294042][ T9614] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 cd 9c 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 [ 391.294067][ T9614] RSP: 0018:ffffc900055f7b78 EFLAGS: 00050212 [ 391.294087][ T9614] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000022 [ 391.294103][ T9614] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc900055f7bd8 [ 391.294117][ T9614] RBP: 0000000000000022 R08: 0000000000000001 R09: fffff52000abef7f [ 391.294133][ T9614] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000 [ 391.294148][ T9614] R13: ffffc900055f7bd8 R14: ffffc900055f7ca0 R15: ffffc900055f7bd8 [ 391.294180][ T9614] _copy_from_user+0x98/0xd0 [ 391.294261][ T9614] kstrtouint_from_user+0xd6/0x1d0 [ 391.294288][ T9614] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 391.294313][ T9614] ? __lock_acquire+0x4a5/0x2630 [ 391.294358][ T9614] ? lock_acquire+0x1b1/0x370 [ 391.294403][ T9614] proc_fail_nth_write+0x83/0x220 [ 391.294451][ T9614] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 391.294501][ T9614] vfs_write+0x2aa/0x1070 [ 391.294531][ T9614] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 391.294574][ T9614] ? __pfx_vfs_write+0x10/0x10 [ 391.294607][ T9614] ? __fget_files+0x215/0x3d0 [ 391.294648][ T9614] ? __fget_files+0x21f/0x3d0 [ 391.294686][ T9614] ksys_write+0x12a/0x250 [ 391.294714][ T9614] ? __pfx_ksys_write+0x10/0x10 [ 391.294746][ T9614] ? rcu_is_watching+0x12/0xc0 [ 391.294777][ T9614] do_syscall_64+0x115/0x840 [ 391.294812][ T9614] ? clear_bhb_loop+0x40/0x90 [ 391.294842][ T9614] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 391.294867][ T9614] RIP: 0033:0x7fa6d099ce59 [ 391.294888][ T9614] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 391.294911][ T9614] RSP: 002b:00007fa6cebf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 391.294934][ T9614] RAX: ffffffffffffffda RBX: 00007fa6d0c16090 RCX: 00007fa6d099ce59 [ 391.294950][ T9614] RDX: 000000000000b6bd RSI: 0000000000000000 RDI: 0000000000000003 [ 391.294965][ T9614] RBP: 00007fa6d0a32d6f R08: 0000000000000000 R09: 0000000000000000 [ 391.294980][ T9614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 391.294994][ T9614] R13: 00007fa6d0c16128 R14: 00007fa6d0c16090 R15: 00007ffc9e8c5ad8 [ 391.295033][ T9614] [ 394.189414][ T9638] warning: `syz.1.695' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 394.379415][ T9641] FAULT_INJECTION: forcing a failure. [ 394.379415][ T9641] name failslab, interval 1, probability 0, space 0, times 0 [ 394.525544][ T9641] CPU: 0 UID: 0 PID: 9641 Comm: syz.1.695 Tainted: G L syzkaller #0 PREEMPT(full) [ 394.525586][ T9641] Tainted: [L]=SOFTLOCKUP [ 394.525594][ T9641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 394.525610][ T9641] Call Trace: [ 394.525618][ T9641] [ 394.525627][ T9641] dump_stack_lvl+0x100/0x190 [ 394.525677][ T9641] should_fail_ex.cold+0x5/0xa [ 394.525709][ T9641] should_failslab+0xc2/0x120 [ 394.525739][ T9641] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 394.525784][ T9641] ? alloc_inode+0x68/0x250 [ 394.525830][ T9641] ? simple_start_creating+0xb0/0x110 [ 394.525882][ T9641] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 394.526003][ T9641] alloc_inode+0x68/0x250 [ 394.526044][ T9641] new_inode+0x22/0x1c0 [ 394.526086][ T9641] __debugfs_create_file+0x105/0x4f0 [ 394.526116][ T9641] debugfs_create_file_full+0x41/0x60 [ 394.526145][ T9641] ref_tracker_dir_debugfs+0x19e/0x2e0 [ 394.526171][ T9641] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 394.526194][ T9641] ? ida_alloc_range+0x70d/0x830 [ 394.526281][ T9641] ? lockdep_init_map_type+0x5c/0x250 [ 394.526331][ T9641] preinit_net.part.0+0x252/0x920 [ 394.526387][ T9641] copy_net_ns+0x339/0x7c0 [ 394.526420][ T9641] create_new_namespaces+0x3ea/0xac0 [ 394.526458][ T9641] unshare_nsproxy_namespaces+0xf2/0x220 [ 394.526493][ T9641] ksys_unshare+0x438/0xab0 [ 394.526531][ T9641] ? __pfx_ksys_unshare+0x10/0x10 [ 394.526566][ T9641] ? xfd_validate_state+0x129/0x190 [ 394.526589][ T9641] ? ksys_write+0x1ac/0x250 [ 394.526627][ T9641] __x64_sys_unshare+0x31/0x40 [ 394.526663][ T9641] do_syscall_64+0x115/0x840 [ 394.526697][ T9641] ? clear_bhb_loop+0x40/0x90 [ 394.526728][ T9641] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 394.526753][ T9641] RIP: 0033:0x7f79e839ce59 [ 394.526774][ T9641] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 394.526798][ T9641] RSP: 002b:00007f79e927b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 394.526829][ T9641] RAX: ffffffffffffffda RBX: 00007f79e8616090 RCX: 00007f79e839ce59 [ 394.526846][ T9641] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 394.526861][ T9641] RBP: 00007f79e8432d6f R08: 0000000000000000 R09: 0000000000000000 [ 394.526876][ T9641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 394.526892][ T9641] R13: 00007f79e8616128 R14: 00007f79e8616090 R15: 00007ffd66c4a128 [ 394.526924][ T9641] [ 395.056438][ T9641] debugfs: out of free dentries, can not create file 'net_refcnt@ffff88802b9d5000' [ 398.205623][ T9669] FAULT_INJECTION: forcing a failure. [ 398.205623][ T9669] name failslab, interval 1, probability 0, space 0, times 0 [ 398.253818][ T9672] zswap: compressor not available [ 398.292653][ T9669] CPU: 0 UID: 0 PID: 9669 Comm: syz.1.699 Tainted: G L syzkaller #0 PREEMPT(full) [ 398.292692][ T9669] Tainted: [L]=SOFTLOCKUP [ 398.292700][ T9669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 398.292716][ T9669] Call Trace: [ 398.292724][ T9669] [ 398.292733][ T9669] dump_stack_lvl+0x100/0x190 [ 398.292781][ T9669] should_fail_ex.cold+0x5/0xa [ 398.292813][ T9669] should_failslab+0xc2/0x120 [ 398.292843][ T9669] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 398.292884][ T9669] ? dup_fd+0x4d/0xd10 [ 398.292913][ T9669] ? do_futex+0x192/0x350 [ 398.292941][ T9669] dup_fd+0x4d/0xd10 [ 398.292969][ T9669] ? blkcg_maybe_throttle_current+0x5e8/0xeb0 [ 398.293088][ T9669] ? _raw_spin_unlock_irq+0x23/0x50 [ 398.293129][ T9669] __x64_sys_close_range+0x405/0x5d0 [ 398.293165][ T9669] ? __pfx___x64_sys_close_range+0x10/0x10 [ 398.293202][ T9669] ? rcu_is_watching+0x12/0xc0 [ 398.293234][ T9669] do_syscall_64+0x115/0x840 [ 398.293269][ T9669] ? clear_bhb_loop+0x40/0x90 [ 398.293299][ T9669] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 398.293325][ T9669] RIP: 0033:0x7f79e839ce59 [ 398.293345][ T9669] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 398.293369][ T9669] RSP: 002b:00007f79e929c028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 398.293393][ T9669] RAX: ffffffffffffffda RBX: 00007f79e8615fa0 RCX: 00007f79e839ce59 [ 398.293410][ T9669] RDX: 0000000000000002 RSI: fffffffffffff000 RDI: 0000000000000000 [ 398.293428][ T9669] RBP: 00007f79e8432d6f R08: 0000000000000000 R09: 0000000000000000 [ 398.293444][ T9669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 398.293459][ T9669] R13: 00007f79e8616038 R14: 00007f79e8615fa0 R15: 00007ffd66c4a128 [ 398.293490][ T9669] [ 400.031351][ T9697] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 400.430202][ T9697] netlink: 342 bytes leftover after parsing attributes in process `syz.1.703'. [ 401.370226][ T9720] bond0: option slaves: interface -Âô]àæ©=,Dçon?ïI|›a CB does not exist! [ 401.429344][ T9721] FAULT_INJECTION: forcing a failure. [ 401.429344][ T9721] name fail_futex, interval 1, probability 0, space 0, times 0 [ 401.472620][ T9721] CPU: 1 UID: 0 PID: 9721 Comm: syz.0.707 Tainted: G L syzkaller #0 PREEMPT(full) [ 401.472671][ T9721] Tainted: [L]=SOFTLOCKUP [ 401.472683][ T9721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 401.472703][ T9721] Call Trace: [ 401.472713][ T9721] [ 401.472725][ T9721] dump_stack_lvl+0x100/0x190 [ 401.472789][ T9721] should_fail_ex.cold+0x5/0xa [ 401.472832][ T9721] get_futex_key+0x1d2/0x1510 [ 401.472895][ T9721] ? __pfx_get_futex_key+0x10/0x10 [ 401.472944][ T9721] ? pick_eevdf+0x4d3/0x860 [ 401.472992][ T9721] ? update_se+0x94/0x770 [ 401.473051][ T9721] futex_wait_setup+0x83/0x510 [ 401.473104][ T9721] __futex_wait+0x19f/0x300 [ 401.473150][ T9721] ? __pfx___futex_wait+0x10/0x10 [ 401.473191][ T9721] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 401.473259][ T9721] ? __pfx_futex_wake_mark+0x10/0x10 [ 401.473310][ T9721] ? find_held_lock+0x2b/0x80 [ 401.473352][ T9721] ? futex_wake+0x456/0x530 [ 401.473404][ T9721] futex_wait+0xe6/0x370 [ 401.473448][ T9721] ? __pfx_futex_wait+0x10/0x10 [ 401.473500][ T9721] ? preempt_schedule_common+0x42/0xc0 [ 401.473549][ T9721] ? preempt_schedule_thunk+0x16/0x30 [ 401.473604][ T9721] do_futex+0x1ef/0x350 [ 401.473640][ T9721] ? __pfx_do_futex+0x10/0x10 [ 401.473675][ T9721] ? cap_task_prctl+0x104/0xa50 [ 401.473710][ T9721] ? __pfx_sched_core_share_pid+0x10/0x10 [ 401.473765][ T9721] __x64_sys_futex+0x34f/0x4d0 [ 401.473807][ T9721] ? __pfx___x64_sys_futex+0x10/0x10 [ 401.473851][ T9721] ? rcu_is_watching+0x12/0xc0 [ 401.473896][ T9721] do_syscall_64+0x115/0x840 [ 401.473943][ T9721] ? clear_bhb_loop+0x40/0x90 [ 401.473984][ T9721] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 401.474020][ T9721] RIP: 0033:0x7f6df779ce59 [ 401.474047][ T9721] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 401.474081][ T9721] RSP: 002b:00007f6df59f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 401.474113][ T9721] RAX: ffffffffffffffda RBX: 00007f6df7a16098 RCX: 00007f6df779ce59 [ 401.474135][ T9721] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6df7a16098 [ 401.474157][ T9721] RBP: 00007f6df7a16090 R08: 0000000000000000 R09: 0000000000000000 [ 401.474177][ T9721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 401.474197][ T9721] R13: 00007f6df7a16128 R14: 00007ffff93917f0 R15: 00007ffff93918d8 [ 401.474239][ T9721] [ 401.832193][ T9713] block nbd2: not configured, cannot reconfigure [ 403.622189][ T9751] EXT4-fs error (device sda1): trigger_test_error:130: comm syz.3.713: 7 [ 405.854877][ T9785] FAULT_INJECTION: forcing a failure. [ 405.854877][ T9785] name fail_futex, interval 1, probability 0, space 0, times 0 [ 405.913211][ T9785] CPU: 1 UID: 0 PID: 9785 Comm: syz.3.719 Tainted: G L syzkaller #0 PREEMPT(full) [ 405.913265][ T9785] Tainted: [L]=SOFTLOCKUP [ 405.913277][ T9785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 405.913296][ T9785] Call Trace: [ 405.913307][ T9785] [ 405.913320][ T9785] dump_stack_lvl+0x100/0x190 [ 405.913384][ T9785] should_fail_ex.cold+0x5/0xa [ 405.913424][ T9785] get_futex_key+0x1d2/0x1510 [ 405.913485][ T9785] ? __pfx_get_futex_key+0x10/0x10 [ 405.913563][ T9785] futex_wake+0xea/0x530 [ 405.913611][ T9785] ? __pfx_futex_wake+0x10/0x10 [ 405.913652][ T9785] ? preempt_schedule_thunk+0x16/0x30 [ 405.913706][ T9785] ? preempt_schedule_common+0x42/0xc0 [ 405.913754][ T9785] ? preempt_schedule_thunk+0x16/0x30 [ 405.913810][ T9785] do_futex+0x32b/0x350 [ 405.913844][ T9785] ? __pfx_do_futex+0x10/0x10 [ 405.913881][ T9785] ? cap_task_prctl+0x104/0xa50 [ 405.913915][ T9785] ? __pfx_sched_core_share_pid+0x10/0x10 [ 405.913980][ T9785] __x64_sys_futex+0x34f/0x4d0 [ 405.914020][ T9785] ? __pfx___x64_sys_futex+0x10/0x10 [ 405.914063][ T9785] ? rcu_is_watching+0x12/0xc0 [ 405.914104][ T9785] do_syscall_64+0x115/0x840 [ 405.914150][ T9785] ? clear_bhb_loop+0x40/0x90 [ 405.914190][ T9785] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 405.914225][ T9785] RIP: 0033:0x7f1de259ce59 [ 405.914253][ T9785] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 405.914288][ T9785] RSP: 002b:00007f1de34330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 405.914320][ T9785] RAX: ffffffffffffffda RBX: 00007f1de2815fa8 RCX: 00007f1de259ce59 [ 405.914342][ T9785] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1de2815fac [ 405.914363][ T9785] RBP: 00007f1de2815fa0 R08: 0000000000000001 R09: 0000000000000000 [ 405.914385][ T9785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 405.914405][ T9785] R13: 00007f1de2816038 R14: 00007ffcc69deca0 R15: 00007ffcc69ded88 [ 405.914449][ T9785] [ 406.616181][ T9794] netlink: 342 bytes leftover after parsing attributes in process `syz.2.718'. [ 408.545313][ T9829] netlink: 178 bytes leftover after parsing attributes in process `syz.3.725'. [ 408.564364][ T9829] netlink: 178 bytes leftover after parsing attributes in process `syz.3.725'. [ 409.173367][ T9835] FAULT_INJECTION: forcing a failure. [ 409.173367][ T9835] name fail_futex, interval 1, probability 0, space 0, times 0 [ 409.244540][ T9835] CPU: 1 UID: 0 PID: 9835 Comm: syz.1.727 Tainted: G L syzkaller #0 PREEMPT(full) [ 409.244593][ T9835] Tainted: [L]=SOFTLOCKUP [ 409.244603][ T9835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 409.244618][ T9835] Call Trace: [ 409.244626][ T9835] [ 409.244636][ T9835] dump_stack_lvl+0x100/0x190 [ 409.244692][ T9835] should_fail_ex.cold+0x5/0xa [ 409.244720][ T9835] ? __css_rstat_updated+0x1ce/0x5a0 [ 409.244761][ T9835] get_futex_key+0x1d2/0x1510 [ 409.244805][ T9835] ? __pfx_get_futex_key+0x10/0x10 [ 409.244850][ T9835] ? pick_eevdf+0x4d3/0x860 [ 409.244889][ T9835] futex_wait_setup+0x83/0x510 [ 409.244928][ T9835] __futex_wait+0x19f/0x300 [ 409.244966][ T9835] ? __pfx___futex_wait+0x10/0x10 [ 409.244996][ T9835] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 409.245036][ T9835] ? __pfx_futex_wake_mark+0x10/0x10 [ 409.245073][ T9835] ? find_held_lock+0x2b/0x80 [ 409.245103][ T9835] ? futex_wake+0x456/0x530 [ 409.245140][ T9835] futex_wait+0xe6/0x370 [ 409.245174][ T9835] ? __pfx_futex_wait+0x10/0x10 [ 409.245211][ T9835] ? preempt_schedule_common+0x42/0xc0 [ 409.245246][ T9835] ? preempt_schedule_thunk+0x16/0x30 [ 409.245288][ T9835] do_futex+0x1ef/0x350 [ 409.245313][ T9835] ? __pfx_do_futex+0x10/0x10 [ 409.245339][ T9835] ? cap_task_prctl+0x104/0xa50 [ 409.245363][ T9835] ? __pfx_sched_core_share_pid+0x10/0x10 [ 409.245402][ T9835] __x64_sys_futex+0x34f/0x4d0 [ 409.245432][ T9835] ? __pfx___x64_sys_futex+0x10/0x10 [ 409.245459][ T9835] ? __pfx___do_sys_prctl+0x10/0x10 [ 409.245485][ T9835] ? rcu_is_watching+0x12/0xc0 [ 409.245517][ T9835] do_syscall_64+0x115/0x840 [ 409.245551][ T9835] ? clear_bhb_loop+0x40/0x90 [ 409.245581][ T9835] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 409.245606][ T9835] RIP: 0033:0x7f79e839ce59 [ 409.245626][ T9835] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 409.245651][ T9835] RSP: 002b:00007f79e929c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 409.245680][ T9835] RAX: ffffffffffffffda RBX: 00007f79e8615fa8 RCX: 00007f79e839ce59 [ 409.245697][ T9835] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f79e8615fa8 [ 409.245712][ T9835] RBP: 00007f79e8615fa0 R08: 0000000000000000 R09: 0000000000000000 [ 409.245728][ T9835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 409.245743][ T9835] R13: 00007f79e8616038 R14: 00007ffd66c4a040 R15: 00007ffd66c4a128 [ 409.245774][ T9835] [ 411.240682][ T9823] Process accounting paused [ 411.245855][ T9856] netlink: 8 bytes leftover after parsing attributes in process `syz.3.731'. [ 412.388620][ T9868] netlink: 342 bytes leftover after parsing attributes in process `syz.3.732'. [ 415.252090][ T9894] Process accounting paused [ 416.559213][ T9946] netlink: 342 bytes leftover after parsing attributes in process `syz.0.747'. [ 417.384203][ T9955] netlink: 146 bytes leftover after parsing attributes in process `syz.1.749'. [ 419.292708][ T9981] FAULT_INJECTION: forcing a failure. [ 419.292708][ T9981] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 419.346129][ T9981] CPU: 0 UID: 0 PID: 9981 Comm: syz.2.754 Tainted: G L syzkaller #0 PREEMPT(full) [ 419.346166][ T9981] Tainted: [L]=SOFTLOCKUP [ 419.346175][ T9981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 419.346189][ T9981] Call Trace: [ 419.346196][ T9981] [ 419.346205][ T9981] dump_stack_lvl+0x100/0x190 [ 419.346257][ T9981] should_fail_ex.cold+0x5/0xa [ 419.346288][ T9981] _copy_from_user+0x2e/0xd0 [ 419.346324][ T9981] kstrtouint_from_user+0xd6/0x1d0 [ 419.346349][ T9981] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 419.346372][ T9981] ? __lock_acquire+0x4a5/0x2630 [ 419.346462][ T9981] ? lock_acquire+0x1b1/0x370 [ 419.346652][ T9981] proc_fail_nth_write+0x83/0x220 [ 419.346765][ T9981] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 419.346810][ T9981] vfs_write+0x2aa/0x1070 [ 419.346839][ T9981] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 419.346882][ T9981] ? __pfx_vfs_write+0x10/0x10 [ 419.346908][ T9981] ? __fget_files+0x215/0x3d0 [ 419.346944][ T9981] ? __fget_files+0x21f/0x3d0 [ 419.346979][ T9981] ksys_write+0x12a/0x250 [ 419.347006][ T9981] ? __pfx_ksys_write+0x10/0x10 [ 419.347035][ T9981] ? rcu_is_watching+0x12/0xc0 [ 419.347065][ T9981] do_syscall_64+0x115/0x840 [ 419.347098][ T9981] ? clear_bhb_loop+0x40/0x90 [ 419.347126][ T9981] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 419.347151][ T9981] RIP: 0033:0x7fa6d095d68e [ 419.347169][ T9981] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 419.347192][ T9981] RSP: 002b:00007fa6d1774fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 419.347214][ T9981] RAX: ffffffffffffffda RBX: 00007fa6d17756c0 RCX: 00007fa6d095d68e [ 419.347229][ T9981] RDX: 0000000000000001 RSI: 00007fa6d17750a0 RDI: 0000000000000004 [ 419.347243][ T9981] RBP: 00007fa6d1775090 R08: 0000000000000000 R09: 0000000000000000 [ 419.347257][ T9981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 419.347271][ T9981] R13: 00007fa6d0c16038 R14: 00007fa6d0c15fa0 R15: 00007ffc9e8c5ad8 [ 419.347301][ T9981] [ 420.083618][ T9987] FAULT_INJECTION: forcing a failure. [ 420.083618][ T9987] name failslab, interval 1, probability 0, space 0, times 0 [ 420.103831][ T9987] CPU: 0 UID: 0 PID: 9987 Comm: syz.0.755 Tainted: G L syzkaller #0 PREEMPT(full) [ 420.103889][ T9987] Tainted: [L]=SOFTLOCKUP [ 420.103909][ T9987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 420.103931][ T9987] Call Trace: [ 420.103942][ T9987] [ 420.103956][ T9987] dump_stack_lvl+0x100/0x190 [ 420.104021][ T9987] should_fail_ex.cold+0x5/0xa [ 420.104065][ T9987] should_failslab+0xc2/0x120 [ 420.104106][ T9987] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 420.104160][ T9987] ? __d_alloc+0x34/0xa40 [ 420.104203][ T9987] ? security_inode_alloc+0xcf/0x2c0 [ 420.104242][ T9987] __d_alloc+0x34/0xa40 [ 420.104284][ T9987] ? __ns_ref_active_get+0x9f/0x1b0 [ 420.104330][ T9987] path_from_stashed+0x427/0x750 [ 420.104379][ T9987] ns_get_path+0x60/0x80 [ 420.104417][ T9987] proc_ns_get_link+0x121/0x230 [ 420.104448][ T9987] ? __pfx_proc_ns_get_link+0x10/0x10 [ 420.104483][ T9987] ? atime_needs_update+0x8b/0x6b0 [ 420.104512][ T9987] pick_link+0xd17/0x13c0 [ 420.104539][ T9987] ? __pfx_proc_ns_get_link+0x10/0x10 [ 420.104574][ T9987] step_into_slowpath+0x9ba/0xf90 [ 420.104610][ T9987] ? __pfx_step_into_slowpath+0x10/0x10 [ 420.104639][ T9987] ? find_held_lock+0x2b/0x80 [ 420.104689][ T9987] path_openat+0xf95/0x31a0 [ 420.104736][ T9987] ? __pfx_path_openat+0x10/0x10 [ 420.104784][ T9987] do_file_open+0x20e/0x430 [ 420.104823][ T9987] ? __pfx_do_file_open+0x10/0x10 [ 420.104880][ T9987] ? alloc_fd+0x476/0x790 [ 420.104925][ T9987] ? do_getname+0x191/0x390 [ 420.104970][ T9987] do_sys_openat2+0x10d/0x1e0 [ 420.105016][ T9987] ? __pfx_do_sys_openat2+0x10/0x10 [ 420.105063][ T9987] ? __fget_files+0x21f/0x3d0 [ 420.105108][ T9987] __x64_sys_openat+0x12d/0x210 [ 420.105154][ T9987] ? __pfx___x64_sys_openat+0x10/0x10 [ 420.105205][ T9987] ? rcu_is_watching+0x12/0xc0 [ 420.105243][ T9987] do_syscall_64+0x115/0x840 [ 420.105284][ T9987] ? clear_bhb_loop+0x40/0x90 [ 420.105319][ T9987] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 420.105348][ T9987] RIP: 0033:0x7f6df775d68e [ 420.105372][ T9987] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 420.105402][ T9987] RSP: 002b:00007f6df8583ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 420.105430][ T9987] RAX: ffffffffffffffda RBX: 00007f6df85846c0 RCX: 00007f6df775d68e [ 420.105448][ T9987] RDX: 0000000000000002 RSI: 00007f6df8583f90 RDI: ffffffffffffff9c [ 420.105467][ T9987] RBP: 00007f6df7832d6f R08: 0000000000000000 R09: 0000000000000000 [ 420.105484][ T9987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 420.105502][ T9987] R13: 00007f6df7a16038 R14: 00007f6df7a15fa0 R15: 00007ffff93918d8 [ 420.105538][ T9987] [ 420.974343][ T9996] netlink: 28 bytes leftover after parsing attributes in process `syz.2.758'. [ 421.004200][ T9996] ipvlan1: entered promiscuous mode [ 421.021179][ T9996] ipvlan1: entered allmulticast mode [ 421.043206][ T9996] veth0_vlan: entered allmulticast mode [ 421.496381][T10005] FAULT_INJECTION: forcing a failure. [ 421.496381][T10005] name fail_futex, interval 1, probability 0, space 0, times 0 [ 421.528921][T10005] CPU: 1 UID: 0 PID: 10005 Comm: syz.1.761 Tainted: G L syzkaller #0 PREEMPT(full) [ 421.528975][T10005] Tainted: [L]=SOFTLOCKUP [ 421.528987][T10005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 421.529009][T10005] Call Trace: [ 421.529021][T10005] [ 421.529033][T10005] dump_stack_lvl+0x100/0x190 [ 421.529095][T10005] should_fail_ex.cold+0x5/0xa [ 421.529136][T10005] get_futex_key+0x1d2/0x1510 [ 421.529197][T10005] ? __pfx_get_futex_key+0x10/0x10 [ 421.529266][T10005] futex_wake+0xea/0x530 [ 421.529313][T10005] ? __pfx_futex_wake+0x10/0x10 [ 421.529353][T10005] ? preempt_schedule_thunk+0x16/0x30 [ 421.529405][T10005] ? preempt_schedule_common+0x42/0xc0 [ 421.529455][T10005] ? preempt_schedule_thunk+0x16/0x30 [ 421.529513][T10005] do_futex+0x32b/0x350 [ 421.529547][T10005] ? __pfx_do_futex+0x10/0x10 [ 421.529582][T10005] ? cap_task_prctl+0x104/0xa50 [ 421.529615][T10005] ? __pfx_sched_core_share_pid+0x10/0x10 [ 421.529669][T10005] __x64_sys_futex+0x34f/0x4d0 [ 421.529710][T10005] ? __pfx___x64_sys_futex+0x10/0x10 [ 421.529748][T10005] ? __pfx___do_sys_prctl+0x10/0x10 [ 421.529797][T10005] ? rcu_is_watching+0x12/0xc0 [ 421.529842][T10005] do_syscall_64+0x115/0x840 [ 421.529890][T10005] ? clear_bhb_loop+0x40/0x90 [ 421.529932][T10005] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 421.529967][T10005] RIP: 0033:0x7f79e839ce59 [ 421.529995][T10005] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 421.530030][T10005] RSP: 002b:00007f79e927b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 421.530063][T10005] RAX: ffffffffffffffda RBX: 00007f79e8616098 RCX: 00007f79e839ce59 [ 421.530085][T10005] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f79e861609c [ 421.530106][T10005] RBP: 00007f79e8616090 R08: 0000000000000001 R09: 0000000000000000 [ 421.530127][T10005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 421.530148][T10005] R13: 00007f79e8616128 R14: 00007ffd66c4a040 R15: 00007ffd66c4a128 [ 421.530192][T10005] [ 426.750903][T10074] FAULT_INJECTION: forcing a failure. [ 426.750903][T10074] name failslab, interval 1, probability 0, space 0, times 0 [ 426.781421][T10074] CPU: 1 UID: 0 PID: 10074 Comm: syz.2.773 Tainted: G L syzkaller #0 PREEMPT(full) [ 426.781476][T10074] Tainted: [L]=SOFTLOCKUP [ 426.781488][T10074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 426.781509][T10074] Call Trace: [ 426.781520][T10074] [ 426.781532][T10074] dump_stack_lvl+0x100/0x190 [ 426.781599][T10074] should_fail_ex.cold+0x5/0xa [ 426.781642][T10074] ? udpv6_init_sock+0x24e/0x450 [ 426.781746][T10074] should_failslab+0xc2/0x120 [ 426.781788][T10074] __kmalloc_noprof+0xe0/0x850 [ 426.781843][T10074] ? lockdep_init_map_type+0x5c/0x250 [ 426.781905][T10074] udpv6_init_sock+0x24e/0x450 [ 426.781937][T10074] ? __pfx_udpv6_init_sock+0x10/0x10 [ 426.781981][T10074] inet6_create+0xb21/0x12b0 [ 426.782027][T10074] ? inet6_create+0x7f/0x12b0 [ 426.782075][T10074] __sock_create+0x339/0x860 [ 426.782129][T10074] udp_sock_create6+0xc7/0x6a0 [ 426.782169][T10074] ? __pfx_udp_sock_create6+0x10/0x10 [ 426.782213][T10074] ? crng_make_state+0x477/0x6c0 [ 426.782267][T10074] ? lockdep_hardirqs_on+0x78/0x100 [ 426.782316][T10074] ? crng_make_state+0x2b0/0x6c0 [ 426.782377][T10074] rxrpc_open_socket+0x206/0x6b0 [ 426.782419][T10074] ? __pfx_rxrpc_open_socket+0x10/0x10 [ 426.782478][T10074] ? rcu_is_watching+0x12/0xc0 [ 426.782517][T10074] ? trace_rxrpc_local+0x80/0x250 [ 426.782557][T10074] rxrpc_lookup_local+0xac7/0x1220 [ 426.782604][T10074] ? __pfx_rxrpc_lookup_local+0x10/0x10 [ 426.782649][T10074] ? __local_bh_enable_ip+0x9e/0x120 [ 426.782694][T10074] rxrpc_sendmsg+0x34a/0x680 [ 426.782740][T10074] sock_write_iter+0x524/0x5a0 [ 426.782784][T10074] ? __pfx_rxrpc_sendmsg+0x10/0x10 [ 426.782826][T10074] ? __pfx_sock_write_iter+0x10/0x10 [ 426.782885][T10074] ? bpf_lsm_file_permission+0x9/0x10 [ 426.782916][T10074] ? security_file_permission+0x76/0x210 [ 426.782974][T10074] ? rw_verify_area+0xce/0x6d0 [ 426.783013][T10074] vfs_write+0x6ac/0x1070 [ 426.783051][T10074] ? __pfx_sock_write_iter+0x10/0x10 [ 426.783099][T10074] ? __pfx_vfs_write+0x10/0x10 [ 426.783135][T10074] ? find_held_lock+0x2b/0x80 [ 426.783200][T10074] ksys_write+0x1f8/0x250 [ 426.783239][T10074] ? __pfx_ksys_write+0x10/0x10 [ 426.783283][T10074] ? rcu_is_watching+0x12/0xc0 [ 426.783328][T10074] do_syscall_64+0x115/0x840 [ 426.783376][T10074] ? clear_bhb_loop+0x40/0x90 [ 426.783419][T10074] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 426.783455][T10074] RIP: 0033:0x7fa6d099ce59 [ 426.783483][T10074] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 426.783517][T10074] RSP: 002b:00007fa6d1775028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 426.783549][T10074] RAX: ffffffffffffffda RBX: 00007fa6d0c15fa0 RCX: 00007fa6d099ce59 [ 426.783573][T10074] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 426.783593][T10074] RBP: 00007fa6d0a32d6f R08: 0000000000000000 R09: 0000000000000000 [ 426.783614][T10074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 426.783635][T10074] R13: 00007fa6d0c16038 R14: 00007fa6d0c15fa0 R15: 00007ffc9e8c5ad8 [ 426.783681][T10074] [ 428.300761][T10078] zram: Removed device: zram0 [ 430.609645][T10106] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 430.662456][T10106] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 430.690078][T10106] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 431.695207][T10124] FAULT_INJECTION: forcing a failure. [ 431.695207][T10124] name fail_futex, interval 1, probability 0, space 0, times 0 [ 431.730883][T10124] CPU: 0 UID: 0 PID: 10124 Comm: syz.0.783 Tainted: G L syzkaller #0 PREEMPT(full) [ 431.730938][T10124] Tainted: [L]=SOFTLOCKUP [ 431.730951][T10124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 431.730972][T10124] Call Trace: [ 431.730982][T10124] [ 431.730994][T10124] dump_stack_lvl+0x100/0x190 [ 431.731060][T10124] should_fail_ex.cold+0x5/0xa [ 431.731102][T10124] get_futex_key+0x1d2/0x1510 [ 431.731165][T10124] ? __pfx_get_futex_key+0x10/0x10 [ 431.731237][T10124] futex_wake+0xea/0x530 [ 431.731284][T10124] ? __pfx_futex_wake+0x10/0x10 [ 431.731328][T10124] ? preempt_schedule_thunk+0x16/0x30 [ 431.731382][T10124] ? preempt_schedule_common+0x42/0xc0 [ 431.731433][T10124] ? preempt_schedule_thunk+0x16/0x30 [ 431.731501][T10124] do_futex+0x32b/0x350 [ 431.731533][T10124] ? __pfx_do_futex+0x10/0x10 [ 431.731566][T10124] ? cap_task_prctl+0x104/0xa50 [ 431.731596][T10124] ? __pfx_sched_core_share_pid+0x10/0x10 [ 431.731649][T10124] __x64_sys_futex+0x34f/0x4d0 [ 431.731686][T10124] ? __pfx___x64_sys_futex+0x10/0x10 [ 431.731725][T10124] ? rcu_is_watching+0x12/0xc0 [ 431.731763][T10124] do_syscall_64+0x115/0x840 [ 431.731805][T10124] ? clear_bhb_loop+0x40/0x90 [ 431.731848][T10124] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 431.731883][T10124] RIP: 0033:0x7f6df779ce59 [ 431.731910][T10124] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 431.731944][T10124] RSP: 002b:00007f6df59f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 431.731976][T10124] RAX: ffffffffffffffda RBX: 00007f6df7a16098 RCX: 00007f6df779ce59 [ 431.731999][T10124] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6df7a1609c [ 431.732021][T10124] RBP: 00007f6df7a16090 R08: 0000000000000001 R09: 0000000000000000 [ 431.732042][T10124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 431.732062][T10124] R13: 00007f6df7a16128 R14: 00007ffff93917f0 R15: 00007ffff93918d8 [ 431.732107][T10124] [ 431.947487][T10127] netlink: 8 bytes leftover after parsing attributes in process `syz.1.786'. [ 432.640652][ T9499] Bluetooth: hci0: command 0x0c1a tx timeout [ 432.720921][ T9499] Bluetooth: hci3: command 0x0c1a tx timeout [ 432.727303][ T9499] Bluetooth: hci2: command 0x0c1a tx timeout [ 435.003390][T10181] FAULT_INJECTION: forcing a failure. [ 435.003390][T10181] name failslab, interval 1, probability 0, space 0, times 0 [ 435.052774][T10181] CPU: 1 UID: 0 PID: 10181 Comm: syz.2.796 Tainted: G L syzkaller #0 PREEMPT(full) [ 435.052832][T10181] Tainted: [L]=SOFTLOCKUP [ 435.052846][T10181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 435.052869][T10181] Call Trace: [ 435.052881][T10181] [ 435.052894][T10181] dump_stack_lvl+0x100/0x190 [ 435.052961][T10181] should_fail_ex.cold+0x5/0xa [ 435.053005][T10181] ? lsm_blob_alloc+0x68/0x90 [ 435.053057][T10181] should_failslab+0xc2/0x120 [ 435.053100][T10181] __kmalloc_noprof+0xe0/0x850 [ 435.053155][T10181] ? trace_kmem_cache_alloc+0xd5/0x100 [ 435.053207][T10181] lsm_blob_alloc+0x68/0x90 [ 435.053261][T10181] security_sk_alloc+0x2d/0x290 [ 435.053302][T10181] sk_prot_alloc+0x1d1/0x2a0 [ 435.053360][T10181] sk_alloc+0x36/0xe80 [ 435.053419][T10181] inet6_create+0x385/0x12b0 [ 435.053467][T10181] ? inet6_create+0x7f/0x12b0 [ 435.053515][T10181] __sock_create+0x339/0x860 [ 435.053572][T10181] udp_sock_create6+0xc7/0x6a0 [ 435.053613][T10181] ? __pfx_udp_sock_create6+0x10/0x10 [ 435.053659][T10181] ? crng_make_state+0x477/0x6c0 [ 435.053712][T10181] ? lockdep_hardirqs_on+0x78/0x100 [ 435.053763][T10181] ? crng_make_state+0x2b0/0x6c0 [ 435.053824][T10181] rxrpc_open_socket+0x206/0x6b0 [ 435.053865][T10181] ? __pfx_rxrpc_open_socket+0x10/0x10 [ 435.053926][T10181] ? rcu_is_watching+0x12/0xc0 [ 435.053968][T10181] ? trace_rxrpc_local+0x80/0x250 [ 435.054015][T10181] rxrpc_lookup_local+0xac7/0x1220 [ 435.054063][T10181] ? __pfx_rxrpc_lookup_local+0x10/0x10 [ 435.054108][T10181] ? __local_bh_enable_ip+0x9e/0x120 [ 435.054157][T10181] rxrpc_sendmsg+0x34a/0x680 [ 435.054208][T10181] sock_write_iter+0x524/0x5a0 [ 435.054252][T10181] ? __pfx_rxrpc_sendmsg+0x10/0x10 [ 435.054294][T10181] ? __pfx_sock_write_iter+0x10/0x10 [ 435.054344][T10181] ? futex_hash+0x141/0x370 [ 435.054413][T10181] ? bpf_lsm_file_permission+0x9/0x10 [ 435.054445][T10181] ? security_file_permission+0x76/0x210 [ 435.054494][T10181] ? rw_verify_area+0xce/0x6d0 [ 435.054532][T10181] vfs_write+0x6ac/0x1070 [ 435.054573][T10181] ? __pfx_sock_write_iter+0x10/0x10 [ 435.054623][T10181] ? __pfx_vfs_write+0x10/0x10 [ 435.054659][T10181] ? find_held_lock+0x2b/0x80 [ 435.054729][T10181] ksys_write+0x1f8/0x250 [ 435.054768][T10181] ? __pfx_ksys_write+0x10/0x10 [ 435.054811][T10181] ? rcu_is_watching+0x12/0xc0 [ 435.054857][T10181] do_syscall_64+0x115/0x840 [ 435.054905][T10181] ? clear_bhb_loop+0x40/0x90 [ 435.054948][T10181] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 435.054984][T10181] RIP: 0033:0x7fa6d099ce59 [ 435.055013][T10181] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 435.055049][T10181] RSP: 002b:00007fa6d1775028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 435.055083][T10181] RAX: ffffffffffffffda RBX: 00007fa6d0c15fa0 RCX: 00007fa6d099ce59 [ 435.055106][T10181] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 435.055126][T10181] RBP: 00007fa6d0a32d6f R08: 0000000000000000 R09: 0000000000000000 [ 435.055147][T10181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 435.055168][T10181] R13: 00007fa6d0c16038 R14: 00007fa6d0c15fa0 R15: 00007ffc9e8c5ad8 [ 435.055214][T10181] [ 435.962729][T10188] FAULT_INJECTION: forcing a failure. [ 435.962729][T10188] name failslab, interval 1, probability 0, space 0, times 0 [ 436.010930][T10188] CPU: 1 UID: 0 PID: 10188 Comm: syz.2.798 Tainted: G L syzkaller #0 PREEMPT(full) [ 436.010984][T10188] Tainted: [L]=SOFTLOCKUP [ 436.010997][T10188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 436.011018][T10188] Call Trace: [ 436.011029][T10188] [ 436.011041][T10188] dump_stack_lvl+0x100/0x190 [ 436.011105][T10188] should_fail_ex.cold+0x5/0xa [ 436.011150][T10188] should_failslab+0xc2/0x120 [ 436.011192][T10188] __kmalloc_cache_noprof+0x7a/0x6f0 [ 436.011245][T10188] ? trace_pid_list_alloc+0x2fe/0x480 [ 436.011300][T10188] trace_pid_list_alloc+0x2fe/0x480 [ 436.011353][T10188] trace_pid_write+0x110/0x460 [ 436.011410][T10188] ? __pfx_trace_pid_write+0x10/0x10 [ 436.011484][T10188] event_pid_write.isra.0+0x1e4/0x7d0 [ 436.011539][T10188] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 436.011603][T10188] vfs_write+0x2aa/0x1070 [ 436.011644][T10188] ? __pfx_ftrace_event_npid_write+0x10/0x10 [ 436.011699][T10188] ? __pfx_vfs_write+0x10/0x10 [ 436.011736][T10188] ? __fget_files+0x215/0x3d0 [ 436.011787][T10188] ? __fget_files+0x21f/0x3d0 [ 436.011840][T10188] ksys_write+0x12a/0x250 [ 436.011880][T10188] ? __pfx_ksys_write+0x10/0x10 [ 436.011928][T10188] ? rcu_is_watching+0x12/0xc0 [ 436.011973][T10188] do_syscall_64+0x115/0x840 [ 436.012022][T10188] ? clear_bhb_loop+0x40/0x90 [ 436.012064][T10188] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 436.012099][T10188] RIP: 0033:0x7fa6d099ce59 [ 436.012128][T10188] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 436.012163][T10188] RSP: 002b:00007fa6d1775028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 436.012196][T10188] RAX: ffffffffffffffda RBX: 00007fa6d0c15fa0 RCX: 00007fa6d099ce59 [ 436.012218][T10188] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 436.012240][T10188] RBP: 00007fa6d0a32d6f R08: 0000000000000000 R09: 0000000000000000 [ 436.012261][T10188] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 436.012281][T10188] R13: 00007fa6d0c16038 R14: 00007fa6d0c15fa0 R15: 00007ffc9e8c5ad8 [ 436.012326][T10188] [ 436.851924][T10210] netlink: 342 bytes leftover after parsing attributes in process `syz.3.800'. [ 437.284581][T10222] netlink: 342 bytes leftover after parsing attributes in process `syz.2.802'. [ 439.753147][T10250] FAULT_INJECTION: forcing a failure. [ 439.753147][T10250] name failslab, interval 1, probability 0, space 0, times 0 [ 439.766543][T10250] CPU: 0 UID: 0 PID: 10250 Comm: syz.0.809 Tainted: G L syzkaller #0 PREEMPT(full) [ 439.766596][T10250] Tainted: [L]=SOFTLOCKUP [ 439.766608][T10250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 439.766628][T10250] Call Trace: [ 439.766638][T10250] [ 439.766650][T10250] dump_stack_lvl+0x100/0x190 [ 439.766714][T10250] should_fail_ex.cold+0x5/0xa [ 439.766753][T10250] should_failslab+0xc2/0x120 [ 439.766792][T10250] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 439.766845][T10250] ? do_getname+0x35/0x390 [ 439.766901][T10250] do_getname+0x35/0x390 [ 439.766968][T10250] do_sys_openat2+0xc5/0x1e0 [ 439.767028][T10250] ? __pfx_do_sys_openat2+0x10/0x10 [ 439.767084][T10250] ? find_held_lock+0x2b/0x80 [ 439.767137][T10250] __x64_sys_openat+0x12d/0x210 [ 439.767192][T10250] ? __pfx___x64_sys_openat+0x10/0x10 [ 439.767257][T10250] ? rcu_is_watching+0x12/0xc0 [ 439.767302][T10250] do_syscall_64+0x115/0x840 [ 439.767349][T10250] ? clear_bhb_loop+0x40/0x90 [ 439.767393][T10250] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 439.767428][T10250] RIP: 0033:0x7f6df779ce59 [ 439.767457][T10250] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 439.767490][T10250] RSP: 002b:00007f6df59f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 439.767522][T10250] RAX: ffffffffffffffda RBX: 00007f6df7a16090 RCX: 00007f6df779ce59 [ 439.767545][T10250] RDX: 000000000014f602 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 439.767566][T10250] RBP: 00007f6df7832d6f R08: 0000000000000000 R09: 0000000000000000 [ 439.767588][T10250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 439.767608][T10250] R13: 00007f6df7a16128 R14: 00007f6df7a16090 R15: 00007ffff93918d8 [ 439.767652][T10250] [ 440.046947][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.053443][ T1318] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.961828][T10270] netlink: 342 bytes leftover after parsing attributes in process `syz.0.811'. [ 441.361191][T10281] input: jJǸ-¶š9ã%vø“ûJ86Ö‘ as /devices/virtual/input/input13 [ 441.466891][T10286] netlink: 342 bytes leftover after parsing attributes in process `syz.2.813'. [ 441.991791][T10296] netlink: 342 bytes leftover after parsing attributes in process `syz.1.812'. [ 442.611153][T10298] FAULT_INJECTION: forcing a failure. [ 442.611153][T10298] name fail_futex, interval 1, probability 0, space 0, times 0 [ 442.635065][T10298] CPU: 0 UID: 0 PID: 10298 Comm: syz.3.816 Tainted: G L syzkaller #0 PREEMPT(full) [ 442.635116][T10298] Tainted: [L]=SOFTLOCKUP [ 442.635125][T10298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 442.635140][T10298] Call Trace: [ 442.635149][T10298] [ 442.635157][T10298] dump_stack_lvl+0x100/0x190 [ 442.635206][T10298] should_fail_ex.cold+0x5/0xa [ 442.635237][T10298] get_futex_key+0x1d2/0x1510 [ 442.635281][T10298] ? __pfx_get_futex_key+0x10/0x10 [ 442.635332][T10298] futex_wake+0xea/0x530 [ 442.635365][T10298] ? __pfx_futex_wake+0x10/0x10 [ 442.635398][T10298] ? preempt_schedule_thunk+0x16/0x30 [ 442.635437][T10298] ? preempt_schedule_common+0x42/0xc0 [ 442.635473][T10298] ? preempt_schedule_thunk+0x16/0x30 [ 442.635514][T10298] do_futex+0x32b/0x350 [ 442.635540][T10298] ? __pfx_do_futex+0x10/0x10 [ 442.635565][T10298] ? cap_task_prctl+0x104/0xa50 [ 442.635591][T10298] ? __pfx_sched_core_share_pid+0x10/0x10 [ 442.635630][T10298] __x64_sys_futex+0x34f/0x4d0 [ 442.635659][T10298] ? __pfx___x64_sys_futex+0x10/0x10 [ 442.635690][T10298] ? rcu_is_watching+0x12/0xc0 [ 442.635723][T10298] do_syscall_64+0x115/0x840 [ 442.635757][T10298] ? clear_bhb_loop+0x40/0x90 [ 442.635787][T10298] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 442.635813][T10298] RIP: 0033:0x7f1de259ce59 [ 442.635833][T10298] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 442.635857][T10298] RSP: 002b:00007f1de34330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 442.635888][T10298] RAX: ffffffffffffffda RBX: 00007f1de2815fa8 RCX: 00007f1de259ce59 [ 442.635904][T10298] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1de2815fac [ 442.635920][T10298] RBP: 00007f1de2815fa0 R08: 0000000000000001 R09: 0000000000000000 [ 442.635936][T10298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 442.635952][T10298] R13: 00007f1de2816038 R14: 00007ffcc69deca0 R15: 00007ffcc69ded88 [ 442.635983][T10298] [ 443.161475][T10282] Process accounting resumed [ 444.039824][T10317] FAULT_INJECTION: forcing a failure. [ 444.039824][T10317] name failslab, interval 1, probability 0, space 0, times 0 [ 444.105455][T10317] CPU: 1 UID: 0 PID: 10317 Comm: syz.2.821 Tainted: G L syzkaller #0 PREEMPT(full) [ 444.105513][T10317] Tainted: [L]=SOFTLOCKUP [ 444.105524][T10317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 444.105546][T10317] Call Trace: [ 444.105557][T10317] [ 444.105570][T10317] dump_stack_lvl+0x100/0x190 [ 444.105635][T10317] should_fail_ex.cold+0x5/0xa [ 444.105676][T10317] ? lsm_blob_alloc+0x68/0x90 [ 444.105724][T10317] should_failslab+0xc2/0x120 [ 444.105766][T10317] __kmalloc_noprof+0xe0/0x850 [ 444.105829][T10317] ? trace_kmem_cache_alloc+0xd5/0x100 [ 444.105880][T10317] lsm_blob_alloc+0x68/0x90 [ 444.105932][T10317] security_sk_alloc+0x2d/0x290 [ 444.105971][T10317] sk_prot_alloc+0x1d1/0x2a0 [ 444.106020][T10317] sk_alloc+0x36/0xe80 [ 444.106086][T10317] inet6_create+0x385/0x12b0 [ 444.106131][T10317] ? inet6_create+0x7f/0x12b0 [ 444.106179][T10317] __sock_create+0x339/0x860 [ 444.106234][T10317] udp_sock_create6+0xc7/0x6a0 [ 444.106274][T10317] ? __pfx_udp_sock_create6+0x10/0x10 [ 444.106319][T10317] ? crng_make_state+0x477/0x6c0 [ 444.106373][T10317] ? lockdep_hardirqs_on+0x78/0x100 [ 444.106432][T10317] ? crng_make_state+0x2b0/0x6c0 [ 444.106489][T10317] rxrpc_open_socket+0x206/0x6b0 [ 444.106530][T10317] ? __pfx_rxrpc_open_socket+0x10/0x10 [ 444.106587][T10317] ? rcu_is_watching+0x12/0xc0 [ 444.106625][T10317] ? trace_rxrpc_local+0x80/0x250 [ 444.106666][T10317] rxrpc_lookup_local+0xac7/0x1220 [ 444.106713][T10317] ? __pfx_rxrpc_lookup_local+0x10/0x10 [ 444.106751][T10317] ? __local_bh_enable_ip+0x9e/0x120 [ 444.106792][T10317] rxrpc_sendmsg+0x34a/0x680 [ 444.106833][T10317] sock_write_iter+0x524/0x5a0 [ 444.106870][T10317] ? __pfx_rxrpc_sendmsg+0x10/0x10 [ 444.106915][T10317] ? __pfx_sock_write_iter+0x10/0x10 [ 444.106967][T10317] ? bpf_lsm_file_permission+0x9/0x10 [ 444.106994][T10317] ? security_file_permission+0x76/0x210 [ 444.107034][T10317] ? rw_verify_area+0xce/0x6d0 [ 444.107074][T10317] vfs_write+0x6ac/0x1070 [ 444.107114][T10317] ? __pfx_sock_write_iter+0x10/0x10 [ 444.107162][T10317] ? __pfx_vfs_write+0x10/0x10 [ 444.107197][T10317] ? find_held_lock+0x2b/0x80 [ 444.107264][T10317] ksys_write+0x1f8/0x250 [ 444.107303][T10317] ? __pfx_ksys_write+0x10/0x10 [ 444.107347][T10317] ? rcu_is_watching+0x12/0xc0 [ 444.107391][T10317] do_syscall_64+0x115/0x840 [ 444.107438][T10317] ? clear_bhb_loop+0x40/0x90 [ 444.107478][T10317] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 444.107511][T10317] RIP: 0033:0x7fa6d099ce59 [ 444.107539][T10317] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 444.107572][T10317] RSP: 002b:00007fa6d1775028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 444.107605][T10317] RAX: ffffffffffffffda RBX: 00007fa6d0c15fa0 RCX: 00007fa6d099ce59 [ 444.107627][T10317] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 444.107648][T10317] RBP: 00007fa6d0a32d6f R08: 0000000000000000 R09: 0000000000000000 [ 444.107669][T10317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 444.107690][T10317] R13: 00007fa6d0c16038 R14: 00007fa6d0c15fa0 R15: 00007ffc9e8c5ad8 [ 444.107735][T10317] [ 445.273634][T10328] Process accounting resumed [ 446.357526][T10347] netlink: 8 bytes leftover after parsing attributes in process `syz.2.825'. [ 446.783647][T10357] netlink: 342 bytes leftover after parsing attributes in process `syz.1.826'. [ 448.208606][T10364] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(1025.0.4294967293), cmd(3) [ 448.885522][T10381] FAULT_INJECTION: forcing a failure. [ 448.885522][T10381] name fail_futex, interval 1, probability 0, space 0, times 0 [ 448.916717][T10381] CPU: 0 UID: 0 PID: 10381 Comm: syz.1.831 Tainted: G L syzkaller #0 PREEMPT(full) [ 448.916772][T10381] Tainted: [L]=SOFTLOCKUP [ 448.916784][T10381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 448.916805][T10381] Call Trace: [ 448.916817][T10381] [ 448.916831][T10381] dump_stack_lvl+0x100/0x190 [ 448.916898][T10381] should_fail_ex.cold+0x5/0xa [ 448.916952][T10381] get_futex_key+0x1d2/0x1510 [ 448.917020][T10381] ? __pfx_get_futex_key+0x10/0x10 [ 448.917089][T10381] futex_wait_setup+0x83/0x510 [ 448.917148][T10381] __futex_wait+0x19f/0x300 [ 448.917195][T10381] ? __pfx___futex_wait+0x10/0x10 [ 448.917258][T10381] ? __pfx___fsnotify_parent+0x10/0x10 [ 448.917339][T10381] ? __pfx_futex_wake_mark+0x10/0x10 [ 448.917389][T10381] ? futex_hash+0x2ad/0x370 [ 448.917446][T10381] ? futex_hash+0x141/0x370 [ 448.917506][T10381] futex_wait+0xe6/0x370 [ 448.917550][T10381] ? __pfx_futex_wait+0x10/0x10 [ 448.917615][T10381] do_futex+0x1ef/0x350 [ 448.917652][T10381] ? __pfx_do_futex+0x10/0x10 [ 448.917683][T10381] ? __fget_files+0x21f/0x3d0 [ 448.917734][T10381] __x64_sys_futex+0x34f/0x4d0 [ 448.917773][T10381] ? __pfx_do_readv+0x10/0x10 [ 448.917808][T10381] ? __pfx___x64_sys_futex+0x10/0x10 [ 448.917853][T10381] ? rcu_is_watching+0x12/0xc0 [ 448.917897][T10381] do_syscall_64+0x115/0x840 [ 448.917945][T10381] ? clear_bhb_loop+0x40/0x90 [ 448.917989][T10381] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 448.918025][T10381] RIP: 0033:0x7f79e839ce59 [ 448.918055][T10381] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 448.918091][T10381] RSP: 002b:00007f79e927b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 448.918126][T10381] RAX: ffffffffffffffda RBX: 00007f79e8616098 RCX: 00007f79e839ce59 [ 448.918148][T10381] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f79e8616098 [ 448.918170][T10381] RBP: 00007f79e8616090 R08: 0000000000000000 R09: 0000000000000000 [ 448.918190][T10381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 448.918219][T10381] R13: 00007f79e8616128 R14: 00007ffd66c4a040 R15: 00007ffd66c4a128 [ 448.918264][T10381] [ 449.526226][T10390] FAULT_INJECTION: forcing a failure. [ 449.526226][T10390] name failslab, interval 1, probability 0, space 0, times 0 [ 449.557476][T10390] CPU: 0 UID: 0 PID: 10390 Comm: syz.0.832 Tainted: G L syzkaller #0 PREEMPT(full) [ 449.557534][T10390] Tainted: [L]=SOFTLOCKUP [ 449.557547][T10390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 449.557568][T10390] Call Trace: [ 449.557580][T10390] [ 449.557592][T10390] dump_stack_lvl+0x100/0x190 [ 449.557660][T10390] should_fail_ex.cold+0x5/0xa [ 449.557704][T10390] should_failslab+0xc2/0x120 [ 449.557755][T10390] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 449.557811][T10390] ? __pmd_alloc+0xbf/0x950 [ 449.557864][T10390] __pmd_alloc+0xbf/0x950 [ 449.557910][T10390] ? __pud_alloc+0x4fb/0x690 [ 449.557958][T10390] copy_page_range+0x41a8/0x5b20 [ 449.558023][T10390] ? __lock_acquire+0x4a5/0x2630 [ 449.558085][T10390] ? find_held_lock+0x2b/0x80 [ 449.558153][T10390] ? mas_wr_store_entry+0xa1/0x1e80 [ 449.558209][T10390] ? __pfx_copy_page_range+0x10/0x10 [ 449.558270][T10390] ? mas_store+0x666/0xac0 [ 449.558328][T10390] ? __pfx_mas_store+0x10/0x10 [ 449.558392][T10390] ? __pfx___vma_start_write+0x10/0x10 [ 449.558455][T10390] dup_mmap+0xd44/0x21b0 [ 449.558518][T10390] ? __pfx_dup_mmap+0x10/0x10 [ 449.558563][T10390] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 449.558618][T10390] ? __lock_acquire+0x4a5/0x2630 [ 449.558674][T10390] ? find_held_lock+0x2b/0x80 [ 449.558714][T10390] ? __percpu_counter_init_many+0x2bc/0x3b0 [ 449.558870][T10390] copy_process+0x6c78/0x7ed0 [ 449.558915][T10390] ? __futex_wait+0x256/0x300 [ 449.558981][T10390] ? __pfx_copy_process+0x10/0x10 [ 449.559027][T10390] ? find_held_lock+0x2b/0x80 [ 449.559087][T10390] kernel_clone+0x176/0x9e0 [ 449.559131][T10390] ? __pfx_futex_wait+0x10/0x10 [ 449.559176][T10390] ? __pfx_kernel_clone+0x10/0x10 [ 449.559248][T10390] __do_sys_clone+0xd9/0x120 [ 449.559294][T10390] ? __pfx___do_sys_clone+0x10/0x10 [ 449.559340][T10390] ? fd_install+0x24f/0x580 [ 449.559403][T10390] ? rcu_is_watching+0x12/0xc0 [ 449.559449][T10390] do_syscall_64+0x115/0x840 [ 449.559497][T10390] ? clear_bhb_loop+0x40/0x90 [ 449.559540][T10390] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 449.559576][T10390] RIP: 0033:0x7f6df779ce59 [ 449.559604][T10390] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 449.559638][T10390] RSP: 002b:00007f6df59d4fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 449.559670][T10390] RAX: ffffffffffffffda RBX: 00007f6df7a16180 RCX: 00007f6df779ce59 [ 449.559693][T10390] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011 [ 449.559713][T10390] RBP: 00007f6df7832d6f R08: 0000000000000000 R09: 0000000000000000 [ 449.559734][T10390] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 449.559765][T10390] R13: 00007f6df7a16218 R14: 00007f6df7a16180 R15: 00007ffff93918d8 [ 449.559824][T10390] [ 450.530984][T10404] FAULT_INJECTION: forcing a failure. [ 450.530984][T10404] name failslab, interval 1, probability 0, space 0, times 0 [ 450.588989][T10404] CPU: 0 UID: 0 PID: 10404 Comm: syz.3.836 Tainted: G L syzkaller #0 PREEMPT(full) [ 450.589045][T10404] Tainted: [L]=SOFTLOCKUP [ 450.589058][T10404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 450.589079][T10404] Call Trace: [ 450.589091][T10404] [ 450.589104][T10404] dump_stack_lvl+0x100/0x190 [ 450.589170][T10404] should_fail_ex.cold+0x5/0xa [ 450.589213][T10404] ? security_inode_init_security+0x113/0x370 [ 450.589268][T10404] should_failslab+0xc2/0x120 [ 450.589309][T10404] __kmalloc_noprof+0xe0/0x850 [ 450.589363][T10404] ? lockdep_init_map_type+0x5c/0x250 [ 450.589430][T10404] security_inode_init_security+0x113/0x370 [ 450.589488][T10404] ? __pfx_shmem_initxattrs+0x10/0x10 [ 450.589536][T10404] ? __pfx_security_inode_init_security+0x10/0x10 [ 450.589604][T10404] ? __pfx_make_vfsuid+0x10/0x10 [ 450.589644][T10404] shmem_symlink+0x163/0xa00 [ 450.589679][T10404] ? generic_permission+0xae/0x800 [ 450.589733][T10404] ? __pfx_shmem_symlink+0x10/0x10 [ 450.589765][T10404] ? security_inode_permission+0xbf/0x250 [ 450.589808][T10404] ? inode_permission+0x374/0x620 [ 450.589861][T10404] ? tomoyo_path_symlink+0x97/0xe0 [ 450.590022][T10404] vfs_symlink+0x178/0x4d0 [ 450.590080][T10404] filename_symlinkat+0x2a6/0x560 [ 450.590133][T10404] ? __pfx_filename_symlinkat+0x10/0x10 [ 450.590179][T10404] ? strncpy_from_user+0x19d/0x2d0 [ 450.590234][T10404] ? do_getname+0x191/0x390 [ 450.590289][T10404] __x64_sys_symlink+0x79/0xb0 [ 450.590337][T10404] do_syscall_64+0x115/0x840 [ 450.590384][T10404] ? clear_bhb_loop+0x40/0x90 [ 450.590428][T10404] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 450.590454][T10404] RIP: 0033:0x7f1de259ce59 [ 450.590475][T10404] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 450.590499][T10404] RSP: 002b:00007f1de3433028 EFLAGS: 00000246 ORIG_RAX: 0000000000000058 [ 450.590523][T10404] RAX: ffffffffffffffda RBX: 00007f1de2815fa0 RCX: 00007f1de259ce59 [ 450.590540][T10404] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000140 [ 450.590555][T10404] RBP: 00007f1de2632d6f R08: 0000000000000000 R09: 0000000000000000 [ 450.590570][T10404] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 450.590591][T10404] R13: 00007f1de2816038 R14: 00007f1de2815fa0 R15: 00007ffcc69ded88 [ 450.590623][T10404] [ 451.366642][T10409] misc userio: No port type given on /dev/userio [ 454.361574][T10436] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 455.276439][T10471] nbd: couldn't find device at index 738197513 [ 455.561022][T10469] sg_write: data in/out 4060/87 bytes for SCSI command 0x0-- guessing data in; [ 455.561022][T10469] program syz.3.849 not setting count and/or reply_len properly [ 459.205145][T10530] usbip-vudc usbip-vudc.0: gadget not bound [ 460.256535][T10548] FAULT_INJECTION: forcing a failure. [ 460.256535][T10548] name fail_futex, interval 1, probability 0, space 0, times 0 [ 460.280222][T10548] CPU: 1 UID: 0 PID: 10548 Comm: syz.3.866 Tainted: G L syzkaller #0 PREEMPT(full) [ 460.280280][T10548] Tainted: [L]=SOFTLOCKUP [ 460.280297][T10548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 460.280312][T10548] Call Trace: [ 460.280321][T10548] [ 460.280331][T10548] dump_stack_lvl+0x100/0x190 [ 460.280386][T10548] should_fail_ex.cold+0x5/0xa [ 460.280412][T10548] ? __css_rstat_updated+0x1ce/0x5a0 [ 460.280455][T10548] get_futex_key+0x1d2/0x1510 [ 460.280500][T10548] ? __pfx_get_futex_key+0x10/0x10 [ 460.280541][T10548] ? trace_ignore_this_task+0xbc/0x100 [ 460.280572][T10548] ? trace_ignore_this_task+0xbc/0x100 [ 460.280613][T10548] futex_wait_setup+0x83/0x510 [ 460.280652][T10548] __futex_wait+0x19f/0x300 [ 460.280685][T10548] ? __pfx___futex_wait+0x10/0x10 [ 460.280716][T10548] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 460.280755][T10548] ? __pfx_futex_wake_mark+0x10/0x10 [ 460.280791][T10548] ? find_held_lock+0x2b/0x80 [ 460.280822][T10548] ? futex_wake+0x456/0x530 [ 460.280858][T10548] futex_wait+0xe6/0x370 [ 460.280891][T10548] ? __pfx_futex_wait+0x10/0x10 [ 460.280929][T10548] ? preempt_schedule_common+0x42/0xc0 [ 460.280963][T10548] ? preempt_schedule_thunk+0x16/0x30 [ 460.281005][T10548] do_futex+0x1ef/0x350 [ 460.281031][T10548] ? __pfx_do_futex+0x10/0x10 [ 460.281056][T10548] ? cap_task_prctl+0x104/0xa50 [ 460.281082][T10548] ? __pfx_sched_core_share_pid+0x10/0x10 [ 460.281121][T10548] __x64_sys_futex+0x34f/0x4d0 [ 460.281153][T10548] ? __pfx___x64_sys_futex+0x10/0x10 [ 460.281185][T10548] ? rcu_is_watching+0x12/0xc0 [ 460.281217][T10548] do_syscall_64+0x115/0x840 [ 460.281252][T10548] ? clear_bhb_loop+0x40/0x90 [ 460.281298][T10548] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 460.281324][T10548] RIP: 0033:0x7f1de259ce59 [ 460.281344][T10548] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 460.281369][T10548] RSP: 002b:00007f1de34330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 460.281398][T10548] RAX: ffffffffffffffda RBX: 00007f1de2815fa8 RCX: 00007f1de259ce59 [ 460.281416][T10548] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f1de2815fa8 [ 460.281434][T10548] RBP: 00007f1de2815fa0 R08: 0000000000000000 R09: 0000000000000000 [ 460.281449][T10548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 460.281463][T10548] R13: 00007f1de2816038 R14: 00007ffcc69deca0 R15: 00007ffcc69ded88 [ 460.281494][T10548] [ 461.268732][T10562] netlink: 342 bytes leftover after parsing attributes in process `syz.1.867'. [ 462.821923][T10601] netlink: 330 bytes leftover after parsing attributes in process `syz.2.876'. [ 462.913691][T10139] block nbd0: Receive control failed (result -107) [ 463.001534][T10604] vivid-007: ================= START STATUS ================= [ 463.016115][T10604] vivid-007: Generate PTS: true [ 463.027722][T10604] vivid-007: Generate SCR: true [ 463.036584][T10604] tpg source WxH: 320x240 (Y'CbCr) [ 463.046378][T10604] tpg field: 1 [ 463.050028][T10604] tpg crop: (0,0)/320x240 [ 463.054910][T10604] tpg compose: (0,0)/320x240 [ 463.059862][T10604] tpg colorspace: 8 [ 463.063973][T10604] tpg transfer function: 0/0 [ 463.071306][T10604] tpg Y'CbCr encoding: 0/0 [ 463.076188][T10604] tpg quantization: 0/0 [ 463.080434][T10604] tpg RGB range: 0/2 [ 463.085752][T10604] vivid-007: ================== END STATUS ================== [ 463.148741][T10607] FAULT_INJECTION: forcing a failure. [ 463.148741][T10607] name fail_futex, interval 1, probability 0, space 0, times 0 [ 463.177021][T10607] CPU: 1 UID: 0 PID: 10607 Comm: syz.0.878 Tainted: G L syzkaller #0 PREEMPT(full) [ 463.177074][T10607] Tainted: [L]=SOFTLOCKUP [ 463.177085][T10607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 463.177104][T10607] Call Trace: [ 463.177115][T10607] [ 463.177127][T10607] dump_stack_lvl+0x100/0x190 [ 463.177193][T10607] should_fail_ex.cold+0x5/0xa [ 463.177236][T10607] get_futex_key+0x1d2/0x1510 [ 463.177298][T10607] ? __pfx_get_futex_key+0x10/0x10 [ 463.177359][T10607] ? trace_pid_list_is_set+0x22c/0x390 [ 463.177415][T10607] futex_wait_setup+0x83/0x510 [ 463.177471][T10607] __futex_wait+0x19f/0x300 [ 463.177520][T10607] ? __pfx___futex_wait+0x10/0x10 [ 463.177557][T10607] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 463.177604][T10607] ? __pfx_futex_wake_mark+0x10/0x10 [ 463.177649][T10607] ? find_held_lock+0x2b/0x80 [ 463.177686][T10607] ? futex_wake+0x456/0x530 [ 463.177739][T10607] futex_wait+0xe6/0x370 [ 463.177778][T10607] ? __pfx_futex_wait+0x10/0x10 [ 463.177824][T10607] ? preempt_schedule_common+0x42/0xc0 [ 463.177867][T10607] ? preempt_schedule_thunk+0x16/0x30 [ 463.177924][T10607] do_futex+0x1ef/0x350 [ 463.177963][T10607] ? __pfx_do_futex+0x10/0x10 [ 463.177989][T10607] ? cap_task_prctl+0x104/0xa50 [ 463.178014][T10607] ? __pfx_sched_core_share_pid+0x10/0x10 [ 463.178053][T10607] __x64_sys_futex+0x34f/0x4d0 [ 463.178083][T10607] ? __pfx___x64_sys_futex+0x10/0x10 [ 463.178118][T10607] ? rcu_is_watching+0x12/0xc0 [ 463.178150][T10607] do_syscall_64+0x115/0x840 [ 463.178184][T10607] ? clear_bhb_loop+0x40/0x90 [ 463.178216][T10607] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 463.178243][T10607] RIP: 0033:0x7f6df779ce59 [ 463.178262][T10607] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 463.178287][T10607] RSP: 002b:00007f6df85840e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 463.178311][T10607] RAX: ffffffffffffffda RBX: 00007f6df7a15fa8 RCX: 00007f6df779ce59 [ 463.178327][T10607] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6df7a15fa8 [ 463.178342][T10607] RBP: 00007f6df7a15fa0 R08: 0000000000000000 R09: 0000000000000000 [ 463.178358][T10607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 463.178373][T10607] R13: 00007f6df7a16038 R14: 00007ffff93917f0 R15: 00007ffff93918d8 [ 463.178404][T10607] [ 464.024032][T10621] netlink: 25 bytes leftover after parsing attributes in process `syz.1.881'. [ 465.297217][ T29] audit: type=1804 audit(8277292073.197:16): pid=10619 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.880" name="/newroot/224/file0" dev="tmpfs" ino=1192 res=1 errno=0 [ 465.373020][ T29] audit: type=1804 audit(8277292073.248:17): pid=10641 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.880" name="/newroot/224/file0" dev="tmpfs" ino=1192 res=1 errno=0 [ 466.725438][T10674] forcing mempool usage for bio_alloc_bioset+0x8e7/0x1070 [ 468.500421][T10712] netlink: 342 bytes leftover after parsing attributes in process `syz.1.896'. [ 470.243146][T10749] FAULT_INJECTION: forcing a failure. [ 470.243146][T10749] name fail_futex, interval 1, probability 0, space 0, times 0 [ 470.264295][T10749] CPU: 0 UID: 0 PID: 10749 Comm: syz.0.905 Tainted: G L syzkaller #0 PREEMPT(full) [ 470.264346][T10749] Tainted: [L]=SOFTLOCKUP [ 470.264357][T10749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 470.264376][T10749] Call Trace: [ 470.264387][T10749] [ 470.264399][T10749] dump_stack_lvl+0x100/0x190 [ 470.264464][T10749] should_fail_ex.cold+0x5/0xa [ 470.264507][T10749] get_futex_key+0x1d2/0x1510 [ 470.264568][T10749] ? __pfx_get_futex_key+0x10/0x10 [ 470.264634][T10749] futex_wait_setup+0x83/0x510 [ 470.264690][T10749] __futex_wait+0x19f/0x300 [ 470.264746][T10749] ? __pfx___futex_wait+0x10/0x10 [ 470.264795][T10749] ? __pfx_futex_wake_mark+0x10/0x10 [ 470.264843][T10749] ? futex_hash+0x2ad/0x370 [ 470.264898][T10749] ? futex_hash+0x141/0x370 [ 470.264957][T10749] futex_wait+0xe6/0x370 [ 470.265000][T10749] ? __pfx_futex_wait+0x10/0x10 [ 470.265049][T10749] ? __pfx_do_recvmmsg+0x10/0x10 [ 470.265093][T10749] ? preempt_schedule_common+0x42/0xc0 [ 470.265150][T10749] do_futex+0x1ef/0x350 [ 470.265185][T10749] ? __pfx_do_futex+0x10/0x10 [ 470.265231][T10749] __x64_sys_futex+0x34f/0x4d0 [ 470.265272][T10749] ? __pfx___x64_sys_futex+0x10/0x10 [ 470.265309][T10749] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 470.265351][T10749] ? rcu_is_watching+0x12/0xc0 [ 470.265396][T10749] do_syscall_64+0x115/0x840 [ 470.265442][T10749] ? clear_bhb_loop+0x40/0x90 [ 470.265484][T10749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 470.265518][T10749] RIP: 0033:0x7f6df779ce59 [ 470.265545][T10749] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 470.265578][T10749] RSP: 002b:00007f6df59f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 470.265610][T10749] RAX: ffffffffffffffda RBX: 00007f6df7a16098 RCX: 00007f6df779ce59 [ 470.265632][T10749] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6df7a16098 [ 470.265654][T10749] RBP: 00007f6df7a16090 R08: 0000000000000000 R09: 0000000000000000 [ 470.265675][T10749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 470.265695][T10749] R13: 00007f6df7a16128 R14: 00007ffff93917f0 R15: 00007ffff93918d8 [ 470.265749][T10749] [ 471.400959][T10763] random: crng reseeded on system resumption [ 471.510275][T10763] can0: slcan on ttyS2. [ 472.469845][T10760] can0 (unregistered): slcan off ttyS2. [ 475.238307][T10804] Process accounting paused [ 476.319965][T10862] can0: slcan on ttyS2. [ 476.328444][T10856] ACPI: EC: Assuming SCI_EVT clearing on QR_EC writes [ 476.516174][T10863] can0 (unregistered): slcan off ttyS2. [ 477.421696][T10845] Process accounting paused [ 477.691976][T10899] netlink: 342 bytes leftover after parsing attributes in process `syz.2.924'. [ 477.762142][T10896] FAULT_INJECTION: forcing a failure. [ 477.762142][T10896] name fail_futex, interval 1, probability 0, space 0, times 0 [ 477.813485][T10896] CPU: 1 UID: 0 PID: 10896 Comm: syz.3.927 Tainted: G L syzkaller #0 PREEMPT(full) [ 477.813541][T10896] Tainted: [L]=SOFTLOCKUP [ 477.813552][T10896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 477.813573][T10896] Call Trace: [ 477.813584][T10896] [ 477.813596][T10896] dump_stack_lvl+0x100/0x190 [ 477.813658][T10896] should_fail_ex.cold+0x5/0xa [ 477.813700][T10896] get_futex_key+0x1d2/0x1510 [ 477.813761][T10896] ? __pfx_get_futex_key+0x10/0x10 [ 477.813836][T10896] futex_wait_setup+0x83/0x510 [ 477.813889][T10896] __futex_wait+0x19f/0x300 [ 477.813935][T10896] ? __pfx___futex_wait+0x10/0x10 [ 477.813976][T10896] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 477.814029][T10896] ? __pfx_futex_wake_mark+0x10/0x10 [ 477.814078][T10896] ? futex_hash+0x2ad/0x370 [ 477.814134][T10896] ? futex_hash+0x141/0x370 [ 477.814215][T10896] futex_wait+0xe6/0x370 [ 477.814259][T10896] ? __pfx_futex_wait+0x10/0x10 [ 477.814312][T10896] ? __pfx_do_recvmmsg+0x10/0x10 [ 477.814359][T10896] ? preempt_schedule_common+0x42/0xc0 [ 477.814415][T10896] do_futex+0x1ef/0x350 [ 477.814451][T10896] ? __pfx_do_futex+0x10/0x10 [ 477.814496][T10896] __x64_sys_futex+0x34f/0x4d0 [ 477.814537][T10896] ? __pfx___x64_sys_futex+0x10/0x10 [ 477.814597][T10896] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 477.814639][T10896] ? rcu_is_watching+0x12/0xc0 [ 477.814683][T10896] do_syscall_64+0x115/0x840 [ 477.814731][T10896] ? clear_bhb_loop+0x40/0x90 [ 477.814773][T10896] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 477.814807][T10896] RIP: 0033:0x7f1de259ce59 [ 477.814834][T10896] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 477.814867][T10896] RSP: 002b:00007f1de34330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 477.814899][T10896] RAX: ffffffffffffffda RBX: 00007f1de2815fa8 RCX: 00007f1de259ce59 [ 477.814920][T10896] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f1de2815fa8 [ 477.814939][T10896] RBP: 00007f1de2815fa0 R08: 0000000000000000 R09: 0000000000000000 [ 477.814960][T10896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 477.814980][T10896] R13: 00007f1de2816038 R14: 00007ffcc69deca0 R15: 00007ffcc69ded88 [ 477.815024][T10896] [ 480.200091][T10951] netlink: 342 bytes leftover after parsing attributes in process `syz.2.930'. [ 480.949814][T10956] zswap: compressor not available [ 481.969049][T10969] zswap: compressor not available [ 483.766610][T11011] FAULT_INJECTION: forcing a failure. [ 483.766610][T11011] name failslab, interval 1, probability 0, space 0, times 0 [ 483.803923][T11011] CPU: 1 UID: 0 PID: 11011 Comm: syz.1.946 Tainted: G L syzkaller #0 PREEMPT(full) [ 483.803977][T11011] Tainted: [L]=SOFTLOCKUP [ 483.803989][T11011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 483.804009][T11011] Call Trace: [ 483.804021][T11011] [ 483.804035][T11011] dump_stack_lvl+0x100/0x190 [ 483.804101][T11011] should_fail_ex.cold+0x5/0xa [ 483.804155][T11011] should_failslab+0xc2/0x120 [ 483.804196][T11011] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 483.804252][T11011] ? mas_preallocate+0x1105/0x14a0 [ 483.804296][T11011] mas_preallocate+0x1105/0x14a0 [ 483.804335][T11011] ? __pfx_mas_preallocate+0x10/0x10 [ 483.804389][T11011] vma_link+0x14a/0x8d0 [ 483.804444][T11011] ? __pfx_vma_link+0x10/0x10 [ 483.804508][T11011] ? anon_vma_clone+0x675/0xcd0 [ 483.804565][T11011] copy_vma+0x7e6/0xac0 [ 483.804626][T11011] ? __pfx_copy_vma+0x10/0x10 [ 483.804696][T11011] ? __lock_acquire+0x4a5/0x2630 [ 483.804781][T11011] copy_vma_and_data+0x1cf/0x7c0 [ 483.804842][T11011] ? __pfx_copy_vma_and_data+0x10/0x10 [ 483.804915][T11011] ? __vma_start_write+0x17f/0x280 [ 483.804965][T11011] ? __pfx___vma_start_write+0x10/0x10 [ 483.805023][T11011] move_vma+0x574/0x1920 [ 483.805086][T11011] ? __pfx_move_vma+0x10/0x10 [ 483.805151][T11011] ? mm_get_unmapped_area_vmflags+0xd7/0x130 [ 483.805196][T11011] ? cap_mmap_addr+0x4b/0x120 [ 483.805229][T11011] ? bpf_lsm_mmap_addr+0x9/0x30 [ 483.805257][T11011] ? security_mmap_addr+0x71/0x1e0 [ 483.805304][T11011] ? __get_unmapped_area+0x255/0x3e0 [ 483.805351][T11011] ? vrm_set_new_addr+0x204/0x290 [ 483.805408][T11011] mremap_to+0x234/0x4c0 [ 483.805461][T11011] ? mas_walk+0x6ef/0x9b0 [ 483.805504][T11011] ? __pfx_mremap_to+0x10/0x10 [ 483.805557][T11011] ? check_prep_vma+0x912/0xe60 [ 483.805618][T11011] __do_sys_mremap+0x88c/0x1850 [ 483.805686][T11011] ? __pfx___do_sys_mremap+0x10/0x10 [ 483.805747][T11011] ? do_futex+0x192/0x350 [ 483.805783][T11011] ? __pfx_do_futex+0x10/0x10 [ 483.805829][T11011] ? __x64_sys_futex+0x34f/0x4d0 [ 483.805880][T11011] ? rcu_is_watching+0x12/0xc0 [ 483.805925][T11011] do_syscall_64+0x115/0x840 [ 483.805972][T11011] ? clear_bhb_loop+0x40/0x90 [ 483.806015][T11011] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 483.806052][T11011] RIP: 0033:0x7f79e839ce59 [ 483.806080][T11011] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 483.806184][T11011] RSP: 002b:00007f79e929c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 483.806220][T11011] RAX: ffffffffffffffda RBX: 00007f79e8615fa0 RCX: 00007f79e839ce59 [ 483.806242][T11011] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200001000000 [ 483.806263][T11011] RBP: 00007f79e8432d6f R08: 0000000100000000 R09: 0000000000000000 [ 483.806284][T11011] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 483.806305][T11011] R13: 00007f79e8616038 R14: 00007f79e8615fa0 R15: 00007ffd66c4a128 [ 483.806351][T11011] [ 484.139578][T11004] zswap: compressor not available [ 484.823629][T11022] FAULT_INJECTION: forcing a failure. [ 484.823629][T11022] name failslab, interval 1, probability 0, space 0, times 0 [ 484.853971][T11022] CPU: 1 UID: 0 PID: 11022 Comm: syz.0.948 Tainted: G L syzkaller #0 PREEMPT(full) [ 484.854038][T11022] Tainted: [L]=SOFTLOCKUP [ 484.854049][T11022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 484.854068][T11022] Call Trace: [ 484.854079][T11022] [ 484.854090][T11022] dump_stack_lvl+0x100/0x190 [ 484.854226][T11022] should_fail_ex.cold+0x5/0xa [ 484.854266][T11022] should_failslab+0xc2/0x120 [ 484.854306][T11022] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 484.854359][T11022] ? __d_alloc+0x34/0xa40 [ 484.854411][T11022] __d_alloc+0x34/0xa40 [ 484.854451][T11022] ? security_inode_alloc+0xcf/0x2c0 [ 484.854491][T11022] d_alloc_pseudo+0x1c/0xc0 [ 484.854522][T11022] alloc_file_pseudo+0xcf/0x230 [ 484.854575][T11022] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 484.854625][T11022] ? security_inode_init_security_anon+0x7b/0x230 [ 484.854671][T11022] __anon_inode_getfile+0xe8/0x280 [ 484.854723][T11022] new_userfaultfd+0x255/0x400 [ 484.854761][T11022] __x64_sys_userfaultfd+0x4b/0xb0 [ 484.854802][T11022] do_syscall_64+0x115/0x840 [ 484.854847][T11022] ? clear_bhb_loop+0x40/0x90 [ 484.854886][T11022] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 484.854919][T11022] RIP: 0033:0x7f6df779ce59 [ 484.854946][T11022] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 484.854978][T11022] RSP: 002b:00007f6df59f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000143 [ 484.855009][T11022] RAX: ffffffffffffffda RBX: 00007f6df7a16090 RCX: 00007f6df779ce59 [ 484.855030][T11022] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 484.855050][T11022] RBP: 00007f6df7832d6f R08: 0000000000000000 R09: 0000000000000000 [ 484.855069][T11022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 484.855088][T11022] R13: 00007f6df7a16128 R14: 00007f6df7a16090 R15: 00007ffff93918d8 [ 484.855133][T11022] [ 485.410755][T11033] netlink: 342 bytes leftover after parsing attributes in process `syz.2.947'. [ 486.203877][T11038] device-mapper: ioctl: Invalid data size in the ioctl structure: 0 [ 487.020659][T11045] zswap: compressor not available [ 487.170660][T11051] FAULT_INJECTION: forcing a failure. [ 487.170660][T11051] name failslab, interval 1, probability 0, space 0, times 0 [ 487.275318][T11051] CPU: 0 UID: 0 PID: 11051 Comm: syz.2.952 Tainted: G L syzkaller #0 PREEMPT(full) [ 487.275375][T11051] Tainted: [L]=SOFTLOCKUP [ 487.275386][T11051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 487.275405][T11051] Call Trace: [ 487.275436][T11051] [ 487.275455][T11051] dump_stack_lvl+0x100/0x190 [ 487.275511][T11051] should_fail_ex.cold+0x5/0xa [ 487.275546][T11051] should_failslab+0xc2/0x120 [ 487.275582][T11051] __kmalloc_cache_noprof+0x7a/0x6f0 [ 487.275624][T11051] ? io_uring_alloc_task_context+0xa7/0x51f [ 487.275677][T11051] ? __lock_acquire+0x4a5/0x2630 [ 487.275732][T11051] io_uring_alloc_task_context+0xa7/0x51f [ 487.275788][T11051] ? __pfx_io_uring_alloc_task_context+0x10/0x10 [ 487.275853][T11051] __io_uring_add_tctx_node.cold+0x15/0x201 [ 487.275911][T11051] ? __pfx___io_uring_add_tctx_node+0x10/0x10 [ 487.276045][T11051] ? __fget_files+0x21f/0x3d0 [ 487.276091][T11051] __io_uring_add_tctx_node_from_submit+0x89/0x130 [ 487.276137][T11051] __do_sys_io_uring_enter+0x1656/0x1b50 [ 487.276224][T11051] ? __fget_files+0x21f/0x3d0 [ 487.276259][T11051] ? __pfx___do_sys_io_uring_enter+0x10/0x10 [ 487.276314][T11051] ? fput+0x79/0x100 [ 487.276357][T11051] ? ksys_write+0x1ac/0x250 [ 487.276394][T11051] ? __pfx_ksys_write+0x10/0x10 [ 487.276435][T11051] ? rcu_is_watching+0x12/0xc0 [ 487.276512][T11051] do_syscall_64+0x115/0x840 [ 487.276556][T11051] ? clear_bhb_loop+0x40/0x90 [ 487.276595][T11051] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 487.276628][T11051] RIP: 0033:0x7fa6d099ce59 [ 487.276655][T11051] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 487.276687][T11051] RSP: 002b:00007fa6cebd5028 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 487.276718][T11051] RAX: ffffffffffffffda RBX: 00007fa6d0c16180 RCX: 00007fa6d099ce59 [ 487.276739][T11051] RDX: 0000000080000001 RSI: 0000000000000a84 RDI: 0000000000000003 [ 487.276759][T11051] RBP: 00007fa6cebd5090 R08: 0000000000000000 R09: 0000000000000046 [ 487.276779][T11051] R10: 000000000000000a R11: 0000000000000246 R12: 0000000000000001 [ 487.276803][T11051] R13: 00007fa6d0c16218 R14: 00007fa6d0c16180 R15: 00007ffc9e8c5ad8 [ 487.276847][T11051] [ 487.898845][T11059] netlink: 342 bytes leftover after parsing attributes in process `syz.0.953'. [ 488.554577][T11079] bond0: invalid ARP target specified [ 488.627503][T11076] block nbd1: Unsupported socket: should be TCP or UNIX. [ 488.694028][T11076] netlink: 28 bytes leftover after parsing attributes in process `syz.2.958'. [ 489.321222][T11087] zswap: compressor not available [ 490.955302][T11114] FAULT_INJECTION: forcing a failure. [ 490.955302][T11114] name failslab, interval 1, probability 0, space 0, times 0 [ 490.978231][T11114] CPU: 1 UID: 0 PID: 11114 Comm: syz.0.966 Tainted: G L syzkaller #0 PREEMPT(full) [ 490.978289][T11114] Tainted: [L]=SOFTLOCKUP [ 490.978302][T11114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 490.978322][T11114] Call Trace: [ 490.978334][T11114] [ 490.978347][T11114] dump_stack_lvl+0x100/0x190 [ 490.978414][T11114] should_fail_ex.cold+0x5/0xa [ 490.978457][T11114] should_failslab+0xc2/0x120 [ 490.978497][T11114] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 490.978552][T11114] ? do_getname+0x35/0x390 [ 490.978612][T11114] do_getname+0x35/0x390 [ 490.978669][T11114] do_sys_openat2+0xc5/0x1e0 [ 490.978723][T11114] ? __pfx_do_sys_openat2+0x10/0x10 [ 490.978800][T11114] __x64_sys_openat+0x12d/0x210 [ 490.978854][T11114] ? __pfx___x64_sys_openat+0x10/0x10 [ 490.978916][T11114] ? rcu_is_watching+0x12/0xc0 [ 490.978961][T11114] do_syscall_64+0x115/0x840 [ 490.979009][T11114] ? clear_bhb_loop+0x40/0x90 [ 490.979049][T11114] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 490.979083][T11114] RIP: 0033:0x7f6df779ce59 [ 490.979112][T11114] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 490.979146][T11114] RSP: 002b:00007f6df8584028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 490.979178][T11114] RAX: ffffffffffffffda RBX: 00007f6df7a15fa0 RCX: 00007f6df779ce59 [ 490.979202][T11114] RDX: 0000000000000100 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 490.979224][T11114] RBP: 00007f6df7832d6f R08: 0000000000000000 R09: 0000000000000000 [ 490.979245][T11114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 490.979263][T11114] R13: 00007f6df7a16038 R14: 00007f6df7a15fa0 R15: 00007ffff93918d8 [ 490.979302][T11114] [ 491.818438][T11128] zswap: compressor not available [ 492.058618][T11144] netlink: 8 bytes leftover after parsing attributes in process `syz.3.971'. [ 493.105189][T11151] block nbd2: not configured, cannot reconfigure [ 494.997231][T10139] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 496.945431][T11223] zswap: compressor not available [ 498.404871][T11265] __vm_enough_memory: pid: 11265, comm: syz.1.992, bytes: 4398046457856 not enough memory for the allocation [ 498.798320][T11272] netlink: 8 bytes leftover after parsing attributes in process `syz.3.994'. [ 499.023404][T11274] FAULT_INJECTION: forcing a failure. [ 499.023404][T11274] name failslab, interval 1, probability 0, space 0, times 0 [ 499.055636][T11274] CPU: 1 UID: 0 PID: 11274 Comm: syz.1.995 Tainted: G L syzkaller #0 PREEMPT(full) [ 499.055675][T11274] Tainted: [L]=SOFTLOCKUP [ 499.055684][T11274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 499.055699][T11274] Call Trace: [ 499.055708][T11274] [ 499.055717][T11274] dump_stack_lvl+0x100/0x190 [ 499.055766][T11274] should_fail_ex.cold+0x5/0xa [ 499.055796][T11274] ? __register_sysctl_table+0xbe4/0x1650 [ 499.055830][T11274] should_failslab+0xc2/0x120 [ 499.055859][T11274] __kmalloc_noprof+0xe0/0x850 [ 499.055907][T11274] __register_sysctl_table+0xbe4/0x1650 [ 499.055947][T11274] ? __pfx___register_sysctl_table+0x10/0x10 [ 499.055980][T11274] ? is_module_address+0x69/0xf0 [ 499.056002][T11274] ? register_net_sysctl_sz+0x222/0x430 [ 499.056239][T11274] ? __asan_memcpy+0x3c/0x60 [ 499.056295][T11274] xfrm6_net_init+0xf0/0x1c0 [ 499.056345][T11274] ? __pfx_xfrm6_net_init+0x10/0x10 [ 499.056368][T11274] ops_init+0x1e2/0x5f0 [ 499.056399][T11274] setup_net+0x118/0x3a0 [ 499.056426][T11274] ? __pfx_setup_net+0x10/0x10 [ 499.056454][T11274] ? mutex_init_lockdep+0xf1/0x120 [ 499.056483][T11274] copy_net_ns+0x46f/0x7c0 [ 499.056516][T11274] create_new_namespaces+0x3ea/0xac0 [ 499.056554][T11274] unshare_nsproxy_namespaces+0xf2/0x220 [ 499.056593][T11274] ksys_unshare+0x438/0xab0 [ 499.056633][T11274] ? __pfx_ksys_unshare+0x10/0x10 [ 499.056670][T11274] ? xfd_validate_state+0x129/0x190 [ 499.056705][T11274] __x64_sys_unshare+0x31/0x40 [ 499.056740][T11274] do_syscall_64+0x115/0x840 [ 499.056775][T11274] ? clear_bhb_loop+0x40/0x90 [ 499.056806][T11274] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 499.056831][T11274] RIP: 0033:0x7f79e839ce59 [ 499.056851][T11274] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 499.056875][T11274] RSP: 002b:00007f79e929c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 499.056899][T11274] RAX: ffffffffffffffda RBX: 00007f79e8615fa0 RCX: 00007f79e839ce59 [ 499.056916][T11274] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 499.056931][T11274] RBP: 00007f79e8432d6f R08: 0000000000000000 R09: 0000000000000000 [ 499.056947][T11274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 499.056962][T11274] R13: 00007f79e8616038 R14: 00007f79e8615fa0 R15: 00007ffd66c4a128 [ 499.056993][T11274] [ 499.059011][T11274] sysctl could not get directory: /net/ipv6 -12 [ 500.173184][T11299] FAULT_INJECTION: forcing a failure. [ 500.173184][T11299] name failslab, interval 1, probability 0, space 0, times 0 [ 500.244879][T11299] CPU: 1 UID: 0 PID: 11299 Comm: syz.2.999 Tainted: G L syzkaller #0 PREEMPT(full) [ 500.244929][T11299] Tainted: [L]=SOFTLOCKUP [ 500.244938][T11299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 500.244953][T11299] Call Trace: [ 500.244961][T11299] [ 500.244970][T11299] dump_stack_lvl+0x100/0x190 [ 500.245018][T11299] should_fail_ex.cold+0x5/0xa [ 500.245051][T11299] should_failslab+0xc2/0x120 [ 500.245081][T11299] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 500.245122][T11299] ? __d_alloc+0x34/0xa40 [ 500.245156][T11299] ? lockdep_init_map_type+0x5c/0x250 [ 500.245202][T11299] __d_alloc+0x34/0xa40 [ 500.245238][T11299] d_alloc_pseudo+0x1c/0xc0 [ 500.245262][T11299] alloc_file_pseudo+0xcf/0x230 [ 500.245301][T11299] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 500.245340][T11299] ? alloc_fd+0x476/0x790 [ 500.245375][T11299] sock_alloc_file+0x50/0x210 [ 500.245434][T11299] __sys_socket+0x1c0/0x260 [ 500.245476][T11299] ? exc_page_fault+0x6f/0xd0 [ 500.245511][T11299] ? __pfx___sys_socket+0x10/0x10 [ 500.245560][T11299] __x64_sys_socket+0x72/0xb0 [ 500.245599][T11299] ? lockdep_hardirqs_on+0x78/0x100 [ 500.245634][T11299] do_syscall_64+0x115/0x840 [ 500.245669][T11299] ? clear_bhb_loop+0x40/0x90 [ 500.245700][T11299] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 500.245726][T11299] RIP: 0033:0x7fa6d099e6c7 [ 500.245746][T11299] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 500.245770][T11299] RSP: 002b:00007fa6d1773f98 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 500.245793][T11299] RAX: ffffffffffffffda RBX: 00007fa6d0c15fa0 RCX: 00007fa6d099e6c7 [ 500.245810][T11299] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 500.245825][T11299] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 500.245840][T11299] R10: 0000200000000180 R11: 0000000000000286 R12: 0000000000000000 [ 500.245856][T11299] R13: 00007fa6d0c16038 R14: 00007fa6d0c15fa0 R15: 00007ffc9e8c5ad8 [ 500.245888][T11299] [ 501.166811][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.174515][ T1318] ieee802154 phy1 wpan1: encryption failed: -22 [ 503.688550][T11346] kexec: Could not allocate control_code_buffer [ 504.231002][T11368] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1011'. [ 505.141028][T11383] FAULT_INJECTION: forcing a failure. [ 505.141028][T11383] name fail_futex, interval 1, probability 0, space 0, times 0 [ 505.183339][T11383] CPU: 0 UID: 0 PID: 11383 Comm: syz.3.1014 Tainted: G L syzkaller #0 PREEMPT(full) [ 505.183389][T11383] Tainted: [L]=SOFTLOCKUP [ 505.183400][T11383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 505.183419][T11383] Call Trace: [ 505.183442][T11383] [ 505.183455][T11383] dump_stack_lvl+0x100/0x190 [ 505.183520][T11383] should_fail_ex.cold+0x5/0xa [ 505.183560][T11383] get_futex_key+0x1d2/0x1510 [ 505.183620][T11383] ? __pfx_get_futex_key+0x10/0x10 [ 505.183690][T11383] futex_wake+0xea/0x530 [ 505.183736][T11383] ? __pfx_futex_wake+0x10/0x10 [ 505.183778][T11383] ? preempt_schedule_thunk+0x16/0x30 [ 505.183831][T11383] ? preempt_schedule_common+0x42/0xc0 [ 505.183881][T11383] ? preempt_schedule_thunk+0x16/0x30 [ 505.183937][T11383] do_futex+0x32b/0x350 [ 505.183971][T11383] ? __pfx_do_futex+0x10/0x10 [ 505.184006][T11383] ? cap_task_prctl+0x104/0xa50 [ 505.184061][T11383] ? __pfx_sched_core_share_pid+0x10/0x10 [ 505.184119][T11383] __x64_sys_futex+0x34f/0x4d0 [ 505.184161][T11383] ? __pfx___x64_sys_futex+0x10/0x10 [ 505.184207][T11383] ? rcu_is_watching+0x12/0xc0 [ 505.184253][T11383] do_syscall_64+0x115/0x840 [ 505.184302][T11383] ? clear_bhb_loop+0x40/0x90 [ 505.184344][T11383] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 505.184380][T11383] RIP: 0033:0x7f1de259ce59 [ 505.184409][T11383] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 505.184444][T11383] RSP: 002b:00007f1de34120e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 505.184479][T11383] RAX: ffffffffffffffda RBX: 00007f1de2816098 RCX: 00007f1de259ce59 [ 505.184502][T11383] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1de281609c [ 505.184523][T11383] RBP: 00007f1de2816090 R08: 0000000000000001 R09: 0000000000000000 [ 505.184545][T11383] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 505.184566][T11383] R13: 00007f1de2816128 R14: 00007ffcc69deca0 R15: 00007ffcc69ded88 [ 505.184611][T11383] [ 505.696456][T11380] Process accounting resumed [ 506.614979][T11416] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1017'. [ 506.801935][T11410] zswap: compressor not available [ 507.596086][T11410] Process accounting resumed [ 507.792400][T11426] kAFS: Invalid Command on /proc/fs/afs/cells file [ 507.944655][T11424] zswap: compressor not available [ 508.965634][T11468] FAULT_INJECTION: forcing a failure. [ 508.965634][T11468] name fail_futex, interval 1, probability 0, space 0, times 0 [ 508.992809][T11468] CPU: 1 UID: 0 PID: 11468 Comm: syz.3.1028 Tainted: G L syzkaller #0 PREEMPT(full) [ 508.992849][T11468] Tainted: [L]=SOFTLOCKUP [ 508.992858][T11468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 508.992873][T11468] Call Trace: [ 508.992881][T11468] [ 508.992890][T11468] dump_stack_lvl+0x100/0x190 [ 508.992938][T11468] should_fail_ex.cold+0x5/0xa [ 508.992969][T11468] get_futex_key+0x1d2/0x1510 [ 508.993014][T11468] ? __pfx_get_futex_key+0x10/0x10 [ 508.993060][T11468] ? trace_pid_list_is_set+0x22c/0x390 [ 508.993098][T11468] futex_wait_setup+0x83/0x510 [ 508.993138][T11468] __futex_wait+0x19f/0x300 [ 508.993171][T11468] ? __pfx___futex_wait+0x10/0x10 [ 508.993202][T11468] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 508.993243][T11468] ? __pfx_futex_wake_mark+0x10/0x10 [ 508.993307][T11468] ? find_held_lock+0x2b/0x80 [ 508.993348][T11468] ? futex_wake+0x456/0x530 [ 508.993395][T11468] futex_wait+0xe6/0x370 [ 508.993437][T11468] ? __pfx_futex_wait+0x10/0x10 [ 508.993488][T11468] ? preempt_schedule_common+0x42/0xc0 [ 508.993535][T11468] ? preempt_schedule_thunk+0x16/0x30 [ 508.993592][T11468] do_futex+0x1ef/0x350 [ 508.993627][T11468] ? __pfx_do_futex+0x10/0x10 [ 508.993662][T11468] ? cap_task_prctl+0x104/0xa50 [ 508.993697][T11468] ? __pfx_sched_core_share_pid+0x10/0x10 [ 508.993759][T11468] __x64_sys_futex+0x34f/0x4d0 [ 508.993800][T11468] ? __pfx___x64_sys_futex+0x10/0x10 [ 508.993838][T11468] ? __pfx___do_sys_prctl+0x10/0x10 [ 508.993875][T11468] ? rcu_is_watching+0x12/0xc0 [ 508.993918][T11468] do_syscall_64+0x115/0x840 [ 508.993965][T11468] ? clear_bhb_loop+0x40/0x90 [ 508.994006][T11468] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 508.994041][T11468] RIP: 0033:0x7f1de259ce59 [ 508.994067][T11468] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 508.994102][T11468] RSP: 002b:00007f1de34330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 508.994134][T11468] RAX: ffffffffffffffda RBX: 00007f1de2815fa8 RCX: 00007f1de259ce59 [ 508.994157][T11468] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f1de2815fa8 [ 508.994179][T11468] RBP: 00007f1de2815fa0 R08: 0000000000000000 R09: 0000000000000000 [ 508.994200][T11468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 508.994220][T11468] R13: 00007f1de2816038 R14: 00007ffcc69deca0 R15: 00007ffcc69ded88 [ 508.994264][T11468] [ 510.615313][T11520] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1030'. [ 511.291657][T11528] zswap: compressor not available [ 512.809465][T11562] FAULT_INJECTION: forcing a failure. [ 512.809465][T11562] name failslab, interval 1, probability 0, space 0, times 0 [ 512.809518][T11562] CPU: 1 UID: 0 PID: 11562 Comm: syz.3.1042 Tainted: G L syzkaller #0 PREEMPT(full) [ 512.809562][T11562] Tainted: [L]=SOFTLOCKUP [ 512.809573][T11562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 512.809591][T11562] Call Trace: [ 512.809602][T11562] [ 512.809614][T11562] dump_stack_lvl+0x100/0x190 [ 512.809672][T11562] should_fail_ex.cold+0x5/0xa [ 512.809701][T11562] should_failslab+0xc2/0x120 [ 512.809730][T11562] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 512.809768][T11562] ? security_inode_alloc+0x3b/0x2c0 [ 512.809795][T11562] ? lockdep_init_map_type+0x5c/0x250 [ 512.809869][T11562] security_inode_alloc+0x3b/0x2c0 [ 512.809896][T11562] inode_init_always_gfp+0xc77/0xfb0 [ 512.809929][T11562] alloc_inode+0x8e/0x250 [ 512.809972][T11562] sock_alloc+0x44/0x280 [ 512.809996][T11562] ? security_socket_create+0x7f/0x250 [ 512.810021][T11562] __sock_create+0xc2/0x860 [ 512.810087][T11562] ? iput+0x3a/0x40 [ 512.810123][T11562] __sys_socket+0x14d/0x260 [ 512.810155][T11562] ? __pfx___sys_socket+0x10/0x10 [ 512.810197][T11562] __x64_sys_socket+0x72/0xb0 [ 512.810230][T11562] ? lockdep_hardirqs_on+0x78/0x100 [ 512.810265][T11562] do_syscall_64+0x115/0x840 [ 512.810296][T11562] ? clear_bhb_loop+0x40/0x90 [ 512.810325][T11562] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 512.810349][T11562] RIP: 0033:0x7f1de259ce59 [ 512.810367][T11562] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 512.810389][T11562] RSP: 002b:00007f1de33f1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 512.810412][T11562] RAX: ffffffffffffffda RBX: 00007f1de2816180 RCX: 00007f1de259ce59 [ 512.810428][T11562] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001 [ 512.810442][T11562] RBP: 00007f1de2632d6f R08: 0000000000000000 R09: 0000000000000000 [ 512.810457][T11562] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 512.810471][T11562] R13: 00007f1de2816218 R14: 00007f1de2816180 R15: 00007ffcc69ded88 [ 512.810501][T11562] [ 512.837480][T11562] socket: no more sockets [ 519.485709][T11640] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1055'. [ 522.130455][T11659] smc: net device dummy0 applied user defined pnetid DUMMY0 [ 524.664338][T11679] netlink: 'syz.0.1065': attribute type 1 has an invalid length. [ 525.080053][T11663] syz.2.1062 (11663) used greatest stack depth: 19528 bytes left [ 527.124513][ T9486] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 527.146859][ T9486] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 527.159122][ T9486] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 527.171361][ T9486] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 527.179615][ T9486] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 529.338898][ T9486] Bluetooth: hci4: command tx timeout [ 529.489958][T11726] forcing mempool usage for bio_alloc_bioset+0x8e7/0x1070 [ 529.551699][T11723] HfR: entered promiscuous mode [ 530.338973][ T9486] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 531.178711][T11703] bridge0: port 1(bridge_slave_0) entered blocking state [ 531.188206][T11703] bridge0: port 1(bridge_slave_0) entered disabled state [ 531.209916][T11703] bridge_slave_0: entered allmulticast mode [ 531.227122][T11703] bridge_slave_0: entered promiscuous mode [ 531.287773][T11703] bridge0: port 2(bridge_slave_1) entered blocking state [ 531.308899][T11703] bridge0: port 2(bridge_slave_1) entered disabled state [ 531.339299][T11703] bridge_slave_1: entered allmulticast mode [ 531.359125][T11703] bridge_slave_1: entered promiscuous mode [ 531.407124][ T9486] Bluetooth: hci4: command tx timeout [ 532.007348][T11703] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 532.439244][T11703] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 532.947050][T11703] team0: Port device team_slave_0 added [ 532.984506][T11703] team0: Port device team_slave_1 added [ 533.134048][T11703] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 533.160826][T11703] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 533.256209][T11703] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 533.313622][T11703] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 533.344710][T11703] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 533.432966][T11703] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 533.476190][ T9486] Bluetooth: hci4: command tx timeout [ 533.825765][T11761] smpboot: CPU 1 is now offline [ 533.961990][T11703] hsr_slave_0: entered promiscuous mode [ 534.016726][T11703] hsr_slave_1: entered promiscuous mode [ 534.057437][T11703] debugfs: 'hsr0' already exists in 'hsr' [ 534.100689][T11703] Cannot create hsr debugfs directory [ 535.546611][ T9486] Bluetooth: hci4: command tx timeout [ 535.673702][T11761] Process accounting paused [ 535.813602][T11771] zswap: compressor not available [ 535.934282][ T9486] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 536.829882][T11788] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1087'. [ 536.908027][T11788] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 536.951094][T11790] FAULT_INJECTION: forcing a failure. [ 536.951094][T11790] name failslab, interval 1, probability 0, space 0, times 0 [ 537.060907][T11790] CPU: 0 UID: 0 PID: 11790 Comm: syz.3.1087 Tainted: G L syzkaller #0 PREEMPT(full) [ 537.060948][T11790] Tainted: [L]=SOFTLOCKUP [ 537.060957][T11790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 537.060972][T11790] Call Trace: [ 537.060980][T11790] [ 537.060990][T11790] dump_stack_lvl+0x100/0x190 [ 537.061040][T11790] should_fail_ex.cold+0x5/0xa [ 537.061073][T11790] should_failslab+0xc2/0x120 [ 537.061105][T11790] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 537.061148][T11790] ? __d_alloc+0x34/0xa40 [ 537.061181][T11790] ? lockdep_init_map_type+0x5c/0x250 [ 537.061229][T11790] __d_alloc+0x34/0xa40 [ 537.061272][T11790] d_alloc_pseudo+0x1c/0xc0 [ 537.061295][T11790] alloc_file_pseudo+0xcf/0x230 [ 537.061336][T11790] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 537.061375][T11790] ? alloc_fd+0x476/0x790 [ 537.061410][T11790] sock_alloc_file+0x50/0x210 [ 537.061441][T11790] __sys_socket+0x1c0/0x260 [ 537.061477][T11790] ? __pfx___sys_socket+0x10/0x10 [ 537.061511][T11790] ? exit_to_user_mode_loop+0xf3/0x670 [ 537.061561][T11790] __x64_sys_socket+0x72/0xb0 [ 537.061595][T11790] ? lockdep_hardirqs_on+0x78/0x100 [ 537.061632][T11790] do_syscall_64+0x115/0x840 [ 537.061667][T11790] ? clear_bhb_loop+0x40/0x90 [ 537.061697][T11790] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 537.061723][T11790] RIP: 0033:0x7f1de259e6c7 [ 537.061742][T11790] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 537.061767][T11790] RSP: 002b:00007f1de3410f98 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 537.061791][T11790] RAX: ffffffffffffffda RBX: 00007f1de2816090 RCX: 00007f1de259e6c7 [ 537.061807][T11790] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 537.061822][T11790] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 537.061838][T11790] R10: 00002000000000c0 R11: 0000000000000286 R12: 0000000000000000 [ 537.061854][T11790] R13: 00007f1de2816128 R14: 00007f1de2816090 R15: 00007ffcc69ded88 [ 537.061911][T11790] [ 537.722614][T11788] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 538.149811][T11791] Process accounting paused [ 538.363060][T11703] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 538.594148][T11703] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 538.652991][T11703] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 538.733949][T11703] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 538.898296][T11703] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 538.943328][T11703] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 538.981828][T11703] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 539.046301][T11703] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 539.742453][T11795] kexec: Could not allocate control_code_buffer [ 540.233991][T11703] 8021q: adding VLAN 0 to HW filter on device bond0 [ 540.324784][T11825] FAULT_INJECTION: forcing a failure. [ 540.324784][T11825] name failslab, interval 1, probability 0, space 0, times 0 [ 540.375633][T11703] 8021q: adding VLAN 0 to HW filter on device team0 [ 540.427994][T11825] CPU: 0 UID: 0 PID: 11825 Comm: syz.2.1095 Tainted: G L syzkaller #0 PREEMPT(full) [ 540.428033][T11825] Tainted: [L]=SOFTLOCKUP [ 540.428042][T11825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 540.428058][T11825] Call Trace: [ 540.428066][T11825] [ 540.428075][T11825] dump_stack_lvl+0x100/0x190 [ 540.428129][T11825] should_fail_ex.cold+0x5/0xa [ 540.428160][T11825] ? udpv6_init_sock+0x24e/0x450 [ 540.428185][T11825] should_failslab+0xc2/0x120 [ 540.428215][T11825] __kmalloc_noprof+0xe0/0x850 [ 540.428256][T11825] ? lockdep_init_map_type+0x5c/0x250 [ 540.428303][T11825] udpv6_init_sock+0x24e/0x450 [ 540.428327][T11825] ? __pfx_udpv6_init_sock+0x10/0x10 [ 540.428354][T11825] inet6_create+0xb21/0x12b0 [ 540.428387][T11825] ? inet6_create+0x7f/0x12b0 [ 540.428421][T11825] __sock_create+0x339/0x860 [ 540.428463][T11825] udp_sock_create6+0xc7/0x6a0 [ 540.428494][T11825] ? __pfx_udp_sock_create6+0x10/0x10 [ 540.428526][T11825] ? crng_make_state+0x477/0x6c0 [ 540.428570][T11825] ? lockdep_hardirqs_on+0x78/0x100 [ 540.428607][T11825] ? crng_make_state+0x2b0/0x6c0 [ 540.428649][T11825] rxrpc_open_socket+0x206/0x6b0 [ 540.428680][T11825] ? __pfx_rxrpc_open_socket+0x10/0x10 [ 540.428722][T11825] ? rcu_is_watching+0x12/0xc0 [ 540.428750][T11825] ? trace_rxrpc_local+0x80/0x250 [ 540.428778][T11825] rxrpc_lookup_local+0xac7/0x1220 [ 540.428812][T11825] ? __pfx_rxrpc_lookup_local+0x10/0x10 [ 540.428844][T11825] ? __local_bh_enable_ip+0x9e/0x120 [ 540.428880][T11825] rxrpc_sendmsg+0x34a/0x680 [ 540.428916][T11825] sock_write_iter+0x524/0x5a0 [ 540.428948][T11825] ? __pfx_rxrpc_sendmsg+0x10/0x10 [ 540.428986][T11825] ? __pfx_sock_write_iter+0x10/0x10 [ 540.429030][T11825] ? bpf_lsm_file_permission+0x9/0x10 [ 540.429054][T11825] ? security_file_permission+0x76/0x210 [ 540.429091][T11825] ? rw_verify_area+0xce/0x6d0 [ 540.429119][T11825] vfs_write+0x6ac/0x1070 [ 540.429149][T11825] ? __pfx_sock_write_iter+0x10/0x10 [ 540.429184][T11825] ? __pfx_vfs_write+0x10/0x10 [ 540.429210][T11825] ? find_held_lock+0x2b/0x80 [ 540.429260][T11825] ksys_write+0x1f8/0x250 [ 540.429288][T11825] ? __pfx_ksys_write+0x10/0x10 [ 540.429319][T11825] ? rcu_is_watching+0x12/0xc0 [ 540.429351][T11825] do_syscall_64+0x115/0x840 [ 540.429386][T11825] ? clear_bhb_loop+0x40/0x90 [ 540.429416][T11825] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 540.429442][T11825] RIP: 0033:0x7fa6d099ce59 [ 540.429463][T11825] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 540.429489][T11825] RSP: 002b:00007fa6d1775028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 540.429513][T11825] RAX: ffffffffffffffda RBX: 00007fa6d0c15fa0 RCX: 00007fa6d099ce59 [ 540.429529][T11825] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 540.429544][T11825] RBP: 00007fa6d0a32d6f R08: 0000000000000000 R09: 0000000000000000 [ 540.429560][T11825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 540.429575][T11825] R13: 00007fa6d0c16038 R14: 00007fa6d0c15fa0 R15: 00007ffc9e8c5ad8 [ 540.429606][T11825] [ 540.762186][T11703] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 540.774106][T11703] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 541.049230][T11475] bridge0: port 1(bridge_slave_0) entered blocking state [ 541.056484][T11475] bridge0: port 1(bridge_slave_0) entered forwarding state [ 541.127906][T11475] bridge0: port 2(bridge_slave_1) entered blocking state [ 541.135076][T11475] bridge0: port 2(bridge_slave_1) entered forwarding state [ 543.647108][T11703] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 543.947894][T11881] futex_wake_op: syz.2.1103 tries to shift op by -2048; fix this program [ 543.996291][T11881] futex_wake_op: syz.2.1103 tries to shift op by -2048; fix this program [ 544.251931][T11881] FAULT_INJECTION: forcing a failure. [ 544.251931][T11881] name failslab, interval 1, probability 0, space 0, times 0 [ 544.322527][T11881] CPU: 0 UID: 0 PID: 11881 Comm: syz.2.1103 Tainted: G L syzkaller #0 PREEMPT(full) [ 544.322569][T11881] Tainted: [L]=SOFTLOCKUP [ 544.322578][T11881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 544.322594][T11881] Call Trace: [ 544.322602][T11881] [ 544.322611][T11881] dump_stack_lvl+0x100/0x190 [ 544.322660][T11881] should_fail_ex.cold+0x5/0xa [ 544.322701][T11881] should_failslab+0xc2/0x120 [ 544.322732][T11881] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 544.322773][T11881] ? __proc_create+0x2cb/0x8c0 [ 544.322812][T11881] __proc_create+0x2cb/0x8c0 [ 544.322854][T11881] ? __pfx___proc_create+0x10/0x10 [ 544.322898][T11881] proc_create_reg+0x75/0x170 [ 544.322935][T11881] proc_create_net_data+0x8e/0x1c0 [ 544.322970][T11881] ? __pfx_proc_create_net_data+0x10/0x10 [ 544.323013][T11881] udp6_proc_init+0x57/0x80 [ 544.323041][T11881] inet6_net_init+0x6b4/0xa20 [ 544.323073][T11881] ? __pfx_inet6_net_init+0x10/0x10 [ 544.323104][T11881] ops_init+0x1e2/0x5f0 [ 544.323134][T11881] setup_net+0x118/0x3a0 [ 544.323161][T11881] ? __pfx_setup_net+0x10/0x10 [ 544.323189][T11881] ? mutex_init_lockdep+0xf1/0x120 [ 544.323219][T11881] copy_net_ns+0x46f/0x7c0 [ 544.323252][T11881] create_new_namespaces+0x3ea/0xac0 [ 544.323290][T11881] unshare_nsproxy_namespaces+0xf2/0x220 [ 544.323324][T11881] ksys_unshare+0x438/0xab0 [ 544.323363][T11881] ? __pfx_ksys_unshare+0x10/0x10 [ 544.323398][T11881] ? xfd_validate_state+0x129/0x190 [ 544.323433][T11881] __x64_sys_unshare+0x31/0x40 [ 544.323468][T11881] do_syscall_64+0x115/0x840 [ 544.323504][T11881] ? clear_bhb_loop+0x40/0x90 [ 544.323535][T11881] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 544.323560][T11881] RIP: 0033:0x7fa6d099ce59 [ 544.323580][T11881] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 544.323606][T11881] RSP: 002b:00007fa6d1775028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 544.323629][T11881] RAX: ffffffffffffffda RBX: 00007fa6d0c15fa0 RCX: 00007fa6d099ce59 [ 544.323647][T11881] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 544.323662][T11881] RBP: 00007fa6d0a32d6f R08: 0000000000000000 R09: 0000000000000000 [ 544.323678][T11881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 544.323702][T11881] R13: 00007fa6d0c16038 R14: 00007fa6d0c15fa0 R15: 00007ffc9e8c5ad8 [ 544.323734][T11881] [ 546.605573][T11898] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1104'. [ 546.908402][T11899] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 546.996187][T11537] ------------[ cut here ]------------ [ 546.997156][T11537] [ 546.997167][T11537] ====================================================== [ 546.997178][T11537] WARNING: possible circular locking dependency detected [ 546.997195][T11537] syzkaller #0 Tainted: G L [ 546.997212][T11537] ------------------------------------------------------ [ 546.997222][T11537] syz.1.1038/11537 is trying to acquire lock: [ 546.997237][T11537] ffffffff8e6f14a0 (console_owner){-...}-{0:0}, at: console_lock_spinning_enable+0x61/0x80 [ 546.997316][T11537] [ 546.997316][T11537] but task is already holding lock: [ 546.997325][T11537] ffff8880b843b620 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x88/0x140 [ 546.997396][T11537] [ 546.997396][T11537] which lock already depends on the new lock. [ 546.997396][T11537] [ 546.997405][T11537] [ 546.997405][T11537] the existing dependency chain (in reverse order) is: [ 546.997415][T11537] [ 546.997415][T11537] -> #4 (&rq->__lock){-.-.}-{2:2}: [ 546.997505][T11537] _raw_spin_lock_nested+0x31/0x40 [ 546.997543][T11537] raw_spin_rq_lock_nested+0x2c/0x140 [ 546.997580][T11537] _task_rq_lock+0xcf/0x510 [ 546.997615][T11537] cgroup_move_task+0x81/0x320 [ 546.997656][T11537] css_set_move_task+0x285/0x600 [ 546.997702][T11537] cgroup_post_fork+0x202/0x9b0 [ 546.997741][T11537] copy_process+0x5b9a/0x7ed0 [ 546.997778][T11537] kernel_clone+0x176/0x9e0 [ 546.997815][T11537] user_mode_thread+0xcc/0x110 [ 546.997853][T11537] rest_init+0x21/0x260 [ 546.997879][T11537] start_kernel+0x484/0x490 [ 546.997940][T11537] x86_64_start_reservations+0x24/0x30 [ 546.998022][T11537] x86_64_start_kernel+0x12b/0x130 [ 546.998048][T11537] common_startup_64+0x13e/0x148 [ 546.998092][T11537] [ 546.998092][T11537] -> #3 (&p->pi_lock){-.-.}-{2:2}: [ 546.998134][T11537] _raw_spin_lock_irqsave+0x3a/0x60 [ 546.998170][T11537] try_to_wake_up+0xb5/0x1900 [ 546.998205][T11537] __wake_up_common+0x135/0x1f0 [ 546.998251][T11537] __wake_up+0x31/0x60 [ 546.998289][T11537] tty_port_default_wakeup+0x52/0x70 [ 546.998357][T11537] serial8250_tx_chars+0x68f/0x860 [ 546.998437][T11537] serial8250_handle_irq_locked+0x5e6/0x7e0 [ 546.998486][T11537] serial8250_handle_irq.part.0+0xb4/0x530 [ 546.998530][T11537] serial8250_default_handle_irq+0xc2/0x290 [ 546.998573][T11537] serial8250_interrupt+0xf8/0x1c0 [ 546.998622][T11537] __handle_irq_event_percpu+0x235/0x8c0 [ 546.998656][T11537] handle_irq_event+0xab/0x1e0 [ 546.998689][T11537] handle_edge_irq+0x35e/0x960 [ 546.998719][T11537] __common_interrupt+0xd8/0x2f0 [ 546.998764][T11537] common_interrupt+0xb9/0xe0 [ 546.998791][T11537] asm_common_interrupt+0x26/0x40 [ 546.998820][T11537] pv_native_safe_halt+0xf/0x20 [ 546.998858][T11537] default_idle+0x9/0x10 [ 546.998902][T11537] default_idle_call+0x6c/0xb0 [ 546.998926][T11537] do_idle+0x464/0x590 [ 546.998958][T11537] cpu_startup_entry+0x4f/0x60 [ 546.998993][T11537] rest_init+0x251/0x260 [ 546.999018][T11537] start_kernel+0x484/0x490 [ 546.999063][T11537] x86_64_start_reservations+0x24/0x30 [ 546.999091][T11537] x86_64_start_kernel+0x12b/0x130 [ 546.999117][T11537] common_startup_64+0x13e/0x148 [ 546.999152][T11537] [ 546.999152][T11537] -> #2 (&tty->write_wait){-.-.}-{3:3}: [ 546.999190][T11537] _raw_spin_lock_irqsave+0x3a/0x60 [ 546.999226][T11537] __wake_up+0x1c/0x60 [ 546.999263][T11537] tty_port_default_wakeup+0x52/0x70 [ 546.999303][T11537] serial8250_tx_chars+0x68f/0x860 [ 546.999343][T11537] serial8250_handle_irq_locked+0x5e6/0x7e0 [ 546.999385][T11537] serial8250_handle_irq.part.0+0xb4/0x530 [ 546.999427][T11537] serial8250_default_handle_irq+0xc2/0x290 [ 546.999478][T11537] serial8250_interrupt+0xf8/0x1c0 [ 546.999525][T11537] __handle_irq_event_percpu+0x235/0x8c0 [ 546.999559][T11537] handle_irq_event+0xab/0x1e0 [ 546.999592][T11537] handle_edge_irq+0x35e/0x960 [ 546.999623][T11537] __common_interrupt+0xd8/0x2f0 [ 546.999667][T11537] common_interrupt+0xb9/0xe0 [ 546.999694][T11537] asm_common_interrupt+0x26/0x40 [ 546.999723][T11537] pv_native_safe_halt+0xf/0x20 [ 546.999760][T11537] default_idle+0x9/0x10 [ 546.999804][T11537] default_idle_call+0x6c/0xb0 [ 546.999828][T11537] do_idle+0x464/0x590 [ 546.999860][T11537] cpu_startup_entry+0x4f/0x60 [ 546.999895][T11537] rest_init+0x251/0x260 [ 546.999920][T11537] start_kernel+0x484/0x490 [ 546.999964][T11537] x86_64_start_reservations+0x24/0x30 [ 546.999992][T11537] x86_64_start_kernel+0x12b/0x130 [ 547.000019][T11537] common_startup_64+0x13e/0x148 [ 547.000054][T11537] [ 547.000054][T11537] -> #1 (&port_lock_key){-.-.}-{3:3}: [ 547.000091][T11537] _raw_spin_lock_irqsave+0x3a/0x60 [ 547.000126][T11537] serial8250_console_write+0x17e/0x1900 [ 547.000173][T11537] console_flush_one_record+0x790/0xe50 [ 547.000207][T11537] console_unlock+0x103/0x260 [ 547.000239][T11537] vprintk_emit+0x407/0x6b0 [ 547.000273][T11537] _printk+0xcf/0x110 [ 547.000298][T11537] register_console.cold+0xc0/0x248 [ 547.000328][T11537] univ8250_console_init+0x6f/0x80 [ 547.000393][T11537] console_init+0x3f7/0x5e0 [ 547.000427][T11537] start_kernel+0x30a/0x490 [ 547.000478][T11537] x86_64_start_reservations+0x24/0x30 [ 547.000505][T11537] x86_64_start_kernel+0x12b/0x130 [ 547.000532][T11537] common_startup_64+0x13e/0x148 [ 547.000567][T11537] [ 547.000567][T11537] -> #0 (console_owner){-...}-{0:0}: [ 547.000604][T11537] __lock_acquire+0x14b8/0x2630 [ 547.000648][T11537] lock_acquire+0x1b1/0x370 [ 547.000692][T11537] console_lock_spinning_enable+0x72/0x80 [ 547.000725][T11537] console_flush_one_record+0x739/0xe50 [ 547.000759][T11537] console_unlock+0x103/0x260 [ 547.000791][T11537] vprintk_emit+0x407/0x6b0 [ 547.000824][T11537] _printk+0xcf/0x110 [ 547.000849][T11537] __report_bug.cold+0x15/0x137 [ 547.000894][T11537] report_bug+0xb2/0x220 [ 547.000960][T11537] handle_bug+0x16a/0x2a0 [ 547.001004][T11537] exc_invalid_op+0x17/0x50 [ 547.001028][T11537] asm_exc_invalid_op+0x1a/0x20 [ 547.001054][T11537] update_rq_clock+0x40a/0xd20 [ 547.001091][T11537] __schedule+0x1e84/0x67a0 [ 547.001126][T11537] preempt_schedule_irq+0x50/0x90 [ 547.001165][T11537] irqentry_exit+0x205/0x970 [ 547.001203][T11537] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 547.001235][T11537] mtree_load+0x3b0/0xa90 [ 547.001274][T11537] do_pages_stat+0x3d1/0x7f0 [ 547.001306][T11537] kernel_move_pages+0xecf/0x13f0 [ 547.001345][T11537] __x64_sys_move_pages+0xe0/0x1c0 [ 547.001383][T11537] do_syscall_64+0x115/0x840 [ 547.001422][T11537] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 547.001457][T11537] [ 547.001457][T11537] other info that might help us debug this: [ 547.001457][T11537] [ 547.001466][T11537] Chain exists of: [ 547.001466][T11537] console_owner --> &p->pi_lock --> &rq->__lock [ 547.001466][T11537] [ 547.001508][T11537] Possible unsafe locking scenario: [ 547.001508][T11537] [ 547.001517][T11537] CPU0 CPU1 [ 547.001524][T11537] ---- ---- [ 547.001533][T11537] lock(&rq->__lock); [ 547.001550][T11537] lock(&p->pi_lock); [ 547.001569][T11537] lock(&rq->__lock); [ 547.001589][T11537] lock(console_owner); [ 547.001607][T11537] [ 547.001607][T11537] *** DEADLOCK *** [ 547.001607][T11537] [ 547.001614][T11537] 5 locks held by syz.1.1038/11537: [ 547.001631][T11537] #0: ffff88803762ccb8 (&mm->mmap_lock){++++}-{4:4}, at: do_pages_stat+0x1de/0x7f0 [ 547.001703][T11537] #1: ffffffff8e7e5360 (rcu_read_lock){....}-{1:3}, at: mtree_load+0xdc/0xa90 [ 547.001782][T11537] #2: ffff8880b843b620 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x88/0x140 [ 547.001857][T11537] #3: ffffffff8e7d18e0 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x110 [ 547.001921][T11537] #4: ffffffff8e7d1958 (console_srcu){....}-{0:0}, at: console_flush_one_record+0xfd/0xe50 [ 547.001996][T11537] [ 547.001996][T11537] stack backtrace: [ 547.002013][T11537] CPU: 0 UID: 0 PID: 11537 Comm: syz.1.1038 Tainted: G L syzkaller #0 PREEMPT(full) [ 547.002055][T11537] Tainted: [L]=SOFTLOCKUP [ 547.002065][T11537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 547.002084][T11537] Call Trace: [ 547.002094][T11537] [ 547.002105][T11537] dump_stack_lvl+0x100/0x190 [ 547.002155][T11537] print_circular_bug.cold+0x178/0x1c7 [ 547.002204][T11537] check_noncircular+0x146/0x160 [ 547.002252][T11537] __lock_acquire+0x14b8/0x2630 [ 547.002306][T11537] lock_acquire+0x1b1/0x370 [ 547.002349][T11537] ? console_lock_spinning_enable+0x61/0x80 [ 547.002385][T11537] ? console_lock_spinning_enable+0x4a/0x80 [ 547.002423][T11537] console_lock_spinning_enable+0x72/0x80 [ 547.002462][T11537] ? console_lock_spinning_enable+0x61/0x80 [ 547.002497][T11537] console_flush_one_record+0x739/0xe50 [ 547.002536][T11537] ? __pfx_console_flush_one_record+0x10/0x10 [ 547.002578][T11537] ? is_printk_cpu_sync_owner+0x32/0x40 [ 547.002622][T11537] console_unlock+0x103/0x260 [ 547.002656][T11537] ? __pfx_console_unlock+0x10/0x10 [ 547.002693][T11537] ? do_raw_spin_unlock+0x145/0x1e0 [ 547.002726][T11537] ? _printk+0xcf/0x110 [ 547.002756][T11537] vprintk_emit+0x407/0x6b0 [ 547.002791][T11537] ? __pfx_vprintk_emit+0x10/0x10 [ 547.002827][T11537] ? __lock_acquire+0x4a5/0x2630 [ 547.002876][T11537] _printk+0xcf/0x110 [ 547.002903][T11537] ? __pfx__printk+0x10/0x10 [ 547.002933][T11537] ? find_held_lock+0x2b/0x80 [ 547.002971][T11537] ? __report_bug.cold+0x5/0x137 [ 547.003021][T11537] __report_bug.cold+0x15/0x137 [ 547.003067][T11537] ? update_rq_clock+0x40a/0xd20 [ 547.003107][T11537] ? __pfx___report_bug+0x10/0x10 [ 547.003144][T11537] ? do_raw_spin_unlock+0x145/0x1e0 [ 547.003177][T11537] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 547.003216][T11537] ? debug_object_activate+0x331/0x490 [ 547.003258][T11537] ? __pfx_debug_object_activate+0x10/0x10 [ 547.003299][T11537] ? update_rq_clock+0x40a/0xd20 [ 547.003337][T11537] report_bug+0xb2/0x220 [ 547.003375][T11537] ? update_rq_clock+0x40a/0xd20 [ 547.003414][T11537] handle_bug+0x16a/0x2a0 [ 547.003468][T11537] exc_invalid_op+0x17/0x50 [ 547.003494][T11537] asm_exc_invalid_op+0x1a/0x20 [ 547.003523][T11537] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 547.003564][T11537] Code: ab 88 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 18 f5 b4 09 a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 80 0b 00 00 48 b8 00 00 00 00 00 [ 547.003594][T11537] RSP: 0018:ffffc90006bc76f8 EFLAGS: 00010046 [ 547.003616][T11537] RAX: 0000000000000000 RBX: ffff8880b853b5c0 RCX: 0000000000000001 [ 547.003636][T11537] RDX: 0000000000000046 RSI: ffffffff8def590b RDI: ffffffff8c1c4580 [ 547.003655][T11537] RBP: ffffc90006bc78a8 R08: 0000000000000001 R09: 0000000000000001 [ 547.003674][T11537] R10: ffffffff90d74757 R11: 0000000000000000 R12: ffffffff90d77ac4 [ 547.003694][T11537] R13: ffff8880b853c460 R14: ffff88801e2f9f00 R15: ffff8880b853b5c0 [ 547.003722][T11537] ? update_rq_clock+0x9c/0xd20 [ 547.003762][T11537] __schedule+0x1e84/0x67a0 [ 547.003809][T11537] ? __pfx___schedule+0x10/0x10 [ 547.003848][T11537] ? mark_held_locks+0x40/0x70 [ 547.003896][T11537] preempt_schedule_irq+0x50/0x90 [ 547.003936][T11537] irqentry_exit+0x205/0x970 [ 547.003982][T11537] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 547.004014][T11537] RIP: 0010:mtree_load+0x3b0/0xa90 [ 547.004057][T11537] Code: 10 00 00 e8 02 2d 89 f6 48 81 fb 00 10 00 00 0f 86 80 05 00 00 e8 10 32 89 f6 48 89 d8 30 db c7 84 24 98 00 00 00 00 00 00 00 <48> 83 e0 fd 48 89 44 24 68 31 c0 66 89 84 24 9c 00 00 00 48 b8 00 [ 547.004085][T11537] RSP: 0018:ffffc90006bc79c0 EFLAGS: 00000246 [ 547.004107][T11537] RAX: ffff888025d2be1e RBX: ffff888025d2be00 RCX: ffffc90004111000 [ 547.004126][T11537] RDX: 0000000000080000 RSI: ffffffff8b7ec990 RDI: ffff888031e4be00 [ 547.004146][T11537] RBP: 0000000000000002 R08: 0000000000000007 R09: 0000000000001000 [ 547.004164][T11537] R10: ffff888025d2be1e R11: 0000000000000000 R12: dffffc0000000000 [ 547.004183][T11537] R13: 0000000000000300 R14: 0000000000000000 R15: 00000000fffffff2 [ 547.004206][T11537] ? mtree_load+0x3a0/0xa90 [ 547.004253][T11537] ? __pfx_mtree_load+0x10/0x10 [ 547.004299][T11537] ? find_held_lock+0x2b/0x80 [ 547.004335][T11537] ? do_pages_stat+0x31d/0x7f0 [ 547.004370][T11537] ? do_pages_stat+0x31d/0x7f0 [ 547.004406][T11537] do_pages_stat+0x3d1/0x7f0 [ 547.004453][T11537] ? __pfx_do_pages_stat+0x10/0x10 [ 547.004492][T11537] ? find_held_lock+0x2b/0x80 [ 547.004538][T11537] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 547.004576][T11537] ? lockdep_hardirqs_on+0x78/0x100 [ 547.004618][T11537] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 547.004659][T11537] kernel_move_pages+0xecf/0x13f0 [ 547.004700][T11537] ? do_futex+0x192/0x350 [ 547.004729][T11537] ? __pfx_do_futex+0x10/0x10 [ 547.004759][T11537] ? __pfx_kernel_move_pages+0x10/0x10 [ 547.004799][T11537] ? find_held_lock+0x2b/0x80 [ 547.004836][T11537] ? __x64_sys_futex+0x34f/0x4d0 [ 547.004866][T11537] ? __x64_sys_futex+0x358/0x4d0 [ 547.004895][T11537] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 547.004937][T11537] ? __pfx___x64_sys_futex+0x10/0x10 [ 547.004970][T11537] ? pipe_ioctl+0x226/0x2c0 [ 547.005004][T11537] __x64_sys_move_pages+0xe0/0x1c0 [ 547.005046][T11537] ? do_syscall_64+0x90/0x840 [ 547.005087][T11537] ? lockdep_hardirqs_on+0x78/0x100 [ 547.005128][T11537] do_syscall_64+0x115/0x840 [ 547.005168][T11537] ? clear_bhb_loop+0x40/0x90 [ 547.005202][T11537] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 547.005231][T11537] RIP: 0033:0x7f79e839ce59 [ 547.005254][T11537] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 547.005285][T11537] RSP: 002b:00007f79e929c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000117 [ 547.005312][T11537] RAX: ffffffffffffffda RBX: 00007f79e8615fa0 RCX: 00007f79e839ce59 [ 547.005331][T11537] RDX: 0000000000000000 RSI: 0002000000000003 RDI: 0000000000000000 [ 547.005350][T11537] RBP: 00007f79e8432d6f R08: 0000000000000000 R09: 8000400000000000 [ 547.005369][T11537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 547.005387][T11537] R13: 00007f79e8616038 R14: 00007f79e8615fa0 R15: 00007ffd66c4a128 [ 547.005416][T11537] [ 548.405207][T11537] debug_locks && !(lock_is_held(&(__rq_lockp(rq))->dep_map) != 0) [ 548.405232][T11537] WARNING: kernel/sched/sched.h:1612 at update_rq_clock+0x40a/0xd20, CPU#0: syz.1.1038/11537 [ 548.423328][T11537] Modules linked in: [ 548.427276][T11537] CPU: 0 UID: 0 PID: 11537 Comm: syz.1.1038 Tainted: G L syzkaller #0 PREEMPT(full) [ 548.438279][T11537] Tainted: [L]=SOFTLOCKUP [ 548.442638][T11537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 548.452737][T11537] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 548.458361][T11537] Code: ab 88 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 18 f5 b4 09 a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 80 0b 00 00 48 b8 00 00 00 00 00 [ 548.478020][T11537] RSP: 0018:ffffc90006bc76f8 EFLAGS: 00010046 [ 548.484132][T11537] RAX: 0000000000000000 RBX: ffff8880b853b5c0 RCX: 0000000000000001 [ 548.492140][T11537] RDX: 0000000000000046 RSI: ffffffff8def590b RDI: ffffffff8c1c4580 [ 548.500147][T11537] RBP: ffffc90006bc78a8 R08: 0000000000000001 R09: 0000000000000001 [ 548.508157][T11537] R10: ffffffff90d74757 R11: 0000000000000000 R12: ffffffff90d77ac4 [ 548.516167][T11537] R13: ffff8880b853c460 R14: ffff88801e2f9f00 R15: ffff8880b853b5c0 [ 548.524192][T11537] FS: 00007f79e929c6c0(0000) GS:ffff88812438e000(0000) knlGS:0000000000000000 [ 548.533172][T11537] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 548.539803][T11537] CR2: 0000000001448000 CR3: 000000003c13c000 CR4: 00000000003526f0 [ 548.547814][T11537] Call Trace: [ 548.551133][T11537] [ 548.554102][T11537] __schedule+0x1e84/0x67a0 [ 548.558679][T11537] ? __pfx___schedule+0x10/0x10 [ 548.563594][T11537] ? mark_held_locks+0x40/0x70 [ 548.568433][T11537] preempt_schedule_irq+0x50/0x90 [ 548.573527][T11537] irqentry_exit+0x205/0x970 [ 548.578180][T11537] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 548.584208][T11537] RIP: 0010:mtree_load+0x3b0/0xa90 [ 548.589420][T11537] Code: 10 00 00 e8 02 2d 89 f6 48 81 fb 00 10 00 00 0f 86 80 05 00 00 e8 10 32 89 f6 48 89 d8 30 db c7 84 24 98 00 00 00 00 00 00 00 <48> 83 e0 fd 48 89 44 24 68 31 c0 66 89 84 24 9c 00 00 00 48 b8 00 [ 548.609168][T11537] RSP: 0018:ffffc90006bc79c0 EFLAGS: 00000246 [ 548.615558][T11537] RAX: ffff888025d2be1e RBX: ffff888025d2be00 RCX: ffffc90004111000 [ 548.623573][T11537] RDX: 0000000000080000 RSI: ffffffff8b7ec990 RDI: ffff888031e4be00 [ 548.631581][T11537] RBP: 0000000000000002 R08: 0000000000000007 R09: 0000000000001000 [ 548.639586][T11537] R10: ffff888025d2be1e R11: 0000000000000000 R12: dffffc0000000000 [ 548.647597][T11537] R13: 0000000000000300 R14: 0000000000000000 R15: 00000000fffffff2 [ 548.655630][T11537] ? mtree_load+0x3a0/0xa90 [ 548.660206][T11537] ? __pfx_mtree_load+0x10/0x10 [ 548.665212][T11537] ? find_held_lock+0x2b/0x80 [ 548.669947][T11537] ? do_pages_stat+0x31d/0x7f0 [ 548.674848][T11537] ? do_pages_stat+0x31d/0x7f0 [ 548.679669][T11537] do_pages_stat+0x3d1/0x7f0 [ 548.684321][T11537] ? __pfx_do_pages_stat+0x10/0x10 [ 548.689491][T11537] ? find_held_lock+0x2b/0x80 [ 548.694241][T11537] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 548.700110][T11537] ? lockdep_hardirqs_on+0x78/0x100 [ 548.705375][T11537] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 548.711330][T11537] kernel_move_pages+0xecf/0x13f0 [ 548.716426][T11537] ? do_futex+0x192/0x350 [ 548.720807][T11537] ? __pfx_do_futex+0x10/0x10 [ 548.725538][T11537] ? __pfx_kernel_move_pages+0x10/0x10 [ 548.731067][T11537] ? find_held_lock+0x2b/0x80 [ 548.735808][T11537] ? __x64_sys_futex+0x34f/0x4d0 [ 548.740795][T11537] ? __x64_sys_futex+0x358/0x4d0 [ 548.745786][T11537] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 548.751830][T11537] ? __pfx___x64_sys_futex+0x10/0x10 [ 548.757171][T11537] ? pipe_ioctl+0x226/0x2c0 [ 548.761724][T11537] __x64_sys_move_pages+0xe0/0x1c0 [ 548.766902][T11537] ? do_syscall_64+0x90/0x840 [ 548.771647][T11537] ? lockdep_hardirqs_on+0x78/0x100 [ 548.776916][T11537] do_syscall_64+0x115/0x840 [ 548.781567][T11537] ? clear_bhb_loop+0x40/0x90 [ 548.786294][T11537] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 548.792236][T11537] RIP: 0033:0x7f79e839ce59 [ 548.796692][T11537] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 548.816438][T11537] RSP: 002b:00007f79e929c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000117 [ 548.824905][T11537] RAX: ffffffffffffffda RBX: 00007f79e8615fa0 RCX: 00007f79e839ce59 [ 548.832914][T11537] RDX: 0000000000000000 RSI: 0002000000000003 RDI: 0000000000000000 [ 548.840935][T11537] RBP: 00007f79e8432d6f R08: 0000000000000000 R09: 8000400000000000 [ 548.848946][T11537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 548.856952][T11537] R13: 00007f79e8616038 R14: 00007f79e8615fa0 R15: 00007ffd66c4a128 [ 548.865160][T11537] [ 548.868257][T11537] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 548.875581][T11537] CPU: 0 UID: 0 PID: 11537 Comm: syz.1.1038 Tainted: G L syzkaller #0 PREEMPT(full) [ 548.886568][T11537] Tainted: [L]=SOFTLOCKUP [ 548.890920][T11537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 548.901204][T11537] Call Trace: [ 548.904539][T11537] [ 548.907529][T11537] dump_stack_lvl+0x100/0x190 [ 548.912289][T11537] vpanic+0x552/0x970 [ 548.916591][T11537] ? __pfx_vpanic+0x10/0x10 [ 548.921146][T11537] ? lock_release+0x245/0x310 [ 548.925898][T11537] panic+0xd1/0xe0 [ 548.929673][T11537] ? __pfx_panic+0x10/0x10 [ 548.934153][T11537] check_panic_on_warn.cold+0x19/0x34 [ 548.939581][T11537] ? update_rq_clock+0x40a/0xd20 [ 548.944577][T11537] __warn.cold+0x191/0x328 [ 548.949047][T11537] __report_bug+0x296/0x3d0 [ 548.953633][T11537] ? update_rq_clock+0x40a/0xd20 [ 548.958630][T11537] ? __pfx___report_bug+0x10/0x10 [ 548.963809][T11537] ? do_raw_spin_unlock+0x145/0x1e0 [ 548.969064][T11537] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 548.974936][T11537] ? debug_object_activate+0x331/0x490 [ 548.980458][T11537] ? __pfx_debug_object_activate+0x10/0x10 [ 548.986326][T11537] ? update_rq_clock+0x40a/0xd20 [ 548.991415][T11537] report_bug+0xb2/0x220 [ 548.995716][T11537] ? update_rq_clock+0x40a/0xd20 [ 549.000735][T11537] handle_bug+0x16a/0x2a0 [ 549.005140][T11537] exc_invalid_op+0x17/0x50 [ 549.009688][T11537] asm_exc_invalid_op+0x1a/0x20 [ 549.014591][T11537] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 549.020205][T11537] Code: ab 88 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 18 f5 b4 09 a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 80 0b 00 00 48 b8 00 00 00 00 00 [ 549.039862][T11537] RSP: 0018:ffffc90006bc76f8 EFLAGS: 00010046 [ 549.045985][T11537] RAX: 0000000000000000 RBX: ffff8880b853b5c0 RCX: 0000000000000001 [ 549.054102][T11537] RDX: 0000000000000046 RSI: ffffffff8def590b RDI: ffffffff8c1c4580 [ 549.062120][T11537] RBP: ffffc90006bc78a8 R08: 0000000000000001 R09: 0000000000000001 [ 549.070144][T11537] R10: ffffffff90d74757 R11: 0000000000000000 R12: ffffffff90d77ac4 [ 549.078160][T11537] R13: ffff8880b853c460 R14: ffff88801e2f9f00 R15: ffff8880b853b5c0 [ 549.086184][T11537] ? update_rq_clock+0x9c/0xd20 [ 549.091099][T11537] __schedule+0x1e84/0x67a0 [ 549.095662][T11537] ? __pfx___schedule+0x10/0x10 [ 549.100559][T11537] ? mark_held_locks+0x40/0x70 [ 549.105383][T11537] preempt_schedule_irq+0x50/0x90 [ 549.110459][T11537] irqentry_exit+0x205/0x970 [ 549.115101][T11537] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 549.121302][T11537] RIP: 0010:mtree_load+0x3b0/0xa90 [ 549.126563][T11537] Code: 10 00 00 e8 02 2d 89 f6 48 81 fb 00 10 00 00 0f 86 80 05 00 00 e8 10 32 89 f6 48 89 d8 30 db c7 84 24 98 00 00 00 00 00 00 00 <48> 83 e0 fd 48 89 44 24 68 31 c0 66 89 84 24 9c 00 00 00 48 b8 00 [ 549.146246][T11537] RSP: 0018:ffffc90006bc79c0 EFLAGS: 00000246 [ 549.152357][T11537] RAX: ffff888025d2be1e RBX: ffff888025d2be00 RCX: ffffc90004111000 [ 549.160368][T11537] RDX: 0000000000080000 RSI: ffffffff8b7ec990 RDI: ffff888031e4be00 [ 549.168368][T11537] RBP: 0000000000000002 R08: 0000000000000007 R09: 0000000000001000 [ 549.176373][T11537] R10: ffff888025d2be1e R11: 0000000000000000 R12: dffffc0000000000 [ 549.184389][T11537] R13: 0000000000000300 R14: 0000000000000000 R15: 00000000fffffff2 [ 549.192424][T11537] ? mtree_load+0x3a0/0xa90 [ 549.197004][T11537] ? __pfx_mtree_load+0x10/0x10 [ 549.201913][T11537] ? find_held_lock+0x2b/0x80 [ 549.206637][T11537] ? do_pages_stat+0x31d/0x7f0 [ 549.211441][T11537] ? do_pages_stat+0x31d/0x7f0 [ 549.216289][T11537] do_pages_stat+0x3d1/0x7f0 [ 549.220936][T11537] ? __pfx_do_pages_stat+0x10/0x10 [ 549.226099][T11537] ? find_held_lock+0x2b/0x80 [ 549.230835][T11537] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 549.236686][T11537] ? lockdep_hardirqs_on+0x78/0x100 [ 549.241930][T11537] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 549.247784][T11537] kernel_move_pages+0xecf/0x13f0 [ 549.252860][T11537] ? do_futex+0x192/0x350 [ 549.257228][T11537] ? __pfx_do_futex+0x10/0x10 [ 549.261947][T11537] ? __pfx_kernel_move_pages+0x10/0x10 [ 549.267453][T11537] ? find_held_lock+0x2b/0x80 [ 549.272186][T11537] ? __x64_sys_futex+0x34f/0x4d0 [ 549.277167][T11537] ? __x64_sys_futex+0x358/0x4d0 [ 549.282148][T11537] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 549.288088][T11537] ? __pfx___x64_sys_futex+0x10/0x10 [ 549.293419][T11537] ? pipe_ioctl+0x226/0x2c0 [ 549.297966][T11537] __x64_sys_move_pages+0xe0/0x1c0 [ 549.303123][T11537] ? do_syscall_64+0x90/0x840 [ 549.307853][T11537] ? lockdep_hardirqs_on+0x78/0x100 [ 549.313102][T11537] do_syscall_64+0x115/0x840 [ 549.317748][T11537] ? clear_bhb_loop+0x40/0x90 [ 549.322469][T11537] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 549.328405][T11537] RIP: 0033:0x7f79e839ce59 [ 549.332850][T11537] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 549.352494][T11537] RSP: 002b:00007f79e929c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000117 [ 549.360953][T11537] RAX: ffffffffffffffda RBX: 00007f79e8615fa0 RCX: 00007f79e839ce59 [ 549.368960][T11537] RDX: 0000000000000000 RSI: 0002000000000003 RDI: 0000000000000000 [ 549.376980][T11537] RBP: 00007f79e8432d6f R08: 0000000000000000 R09: 8000400000000000 [ 549.385008][T11537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 549.393027][T11537] R13: 00007f79e8616038 R14: 00007f79e8615fa0 R15: 00007ffd66c4a128 [ 549.401049][T11537] [ 549.404634][T11537] Kernel Offset: disabled [ 549.409004][T11537] Rebooting in 86400 seconds..