last executing test programs: 13.881910122s ago: executing program 3 (id=1055): bpf$auto(0x1, &(0x7f0000000100)=@bpf_attr_4={0x800000000012, 0xffffffffffffffff, 0x80000001}, 0x350) mmap$auto(0x0, 0xa00006, 0x3, 0x40eb1, r0, 0x300000000000) mmap$auto(0x1, 0x40000c, 0xdf, 0x11, 0x2, 0x8002) clock_adjtime$auto(0x1, &(0x7f0000000280)={0xfff, 0x0, 0x6fe, 0x40004, 0x7, 0x4, 0x8227, 0x0, 0x1000000000000002, 0x4, 0x8, {0x7, 0x800}, 0x101, 0xf8, 0xa, 0xd94, 0x0, 0x1, 0xfffffffffffffffd, 0xa, 0xa9, 0x3, 0xfffffffe}) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x80002, 0x0) writev$auto(r1, &(0x7f0000000240)={0x0, 0x9}, 0xb) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket(0x2, 0x1, 0x106) bind$auto(r2, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) userfaultfd$auto(0x1) ioctl$auto(0x3, 0xc018aa3f, 0xf0b) openat2$auto(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x4, 0x2}, 0x80000001) fanotify_init$auto(0x65, 0x3) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/pcmC1D1c\x00', 0x6042, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x15, 0x2, 0x7) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) write$auto(0x3, 0x0, 0xfffffdef) r4 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/032/001\x00', 0x24a901, 0x0) ioctl$auto_USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f00000001c0)={0x0, 0x5517, 0x0}) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.1/usb2/2-0:1.0/usb2-port1/disable\x00', 0x102, 0x0) landlock_create_ruleset$auto(&(0x7f00000001c0)={0x8, 0xfffffffffffffff9, 0x2}, 0x8, 0x34) 12.734600631s ago: executing program 3 (id=1059): unshare$auto(0x40000080) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/i8042/serio0/id/id\x00', 0xa000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000001100)=""/4088, 0xff8) mmap$auto(0x0, 0x2000d, 0x3, 0xeb1, 0x404, 0x100010008000) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x580, 0x0) write$auto_proc_fail_nth_operations_base(r1, &(0x7f0000000280)="9aac3ca103c89389e240c32ed9183e228d120ebe1883268c97cee75949d818c90aa5d5961abac626f4b7e3030376fac4cf8274218e96180a4fe3a941aa39ef22d3ae27ab38a1e8839defcf4a735e00df2d5690dc53f305f77c3f271fa3e825501042d586599be0cc4cca6556cf282d42f2b29e8a437b5805e09a789d96eb9438b3b725679ccf923446f6731758b73ac63347f121d005e62b06bd2c2a5d04454b", 0xa0) write$auto(0xffffffffffffffff, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="00082dbd7000fedbdf250300000008000400b70a0000060007000080007489000200f5f5f0d60cbfdc11458ee19ee660f3e77f7d9090f6339aab9338c894c4ce18ceacbaf94dd7c1f09e90fef86d4d001435ec21a34d559c31396a921fec9b9431a851eae26f138dd309856146dda395c9afca2ee98ba46da0f844fd99c88b90340ee832efcdb77700eb34cafc4b764af350901fb0051dd263903340754de724283f2d19d1e70cda39fa64d15c0cb78042fb5051a39abc44860d", @ANYRES32, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100aaaaaaaaaa35000008000200", @ANYRES32=r0], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="f2000000", @ANYBLOB='.'], 0x1ac}, 0x1, 0x0, 0x0, 0x24040840}, 0x0) pread64$auto(0xffffffffffffffff, 0x0, 0x1080000001fc, 0x8800000000) pwrite64$auto(0xc8, 0x0, 0xfdf3, 0x6) close_range$auto(0x2, 0x8, 0x0) setresuid$auto(0x8, 0x8, 0x0) r2 = setfsuid$auto(0xee00) setreuid$auto(r2, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000540)='/dev/snd/midiC2D0\x00', 0x40041, 0x0) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) fsconfig$auto(0xffffffffffffffff, 0x9, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) close_range$auto(0x0, 0xfffffffffffff000, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x9, 0x6, 0x10, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0xf) ioctl$auto_X86_IOC_WRMSR_REGS(r4, 0xc02063a1, &(0x7f0000000000)=[0x2, 0x2, 0x4, 0x0, 0x2, 0x200, 0x3, 0x7]) bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex=r5, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) 11.326435517s ago: executing program 3 (id=1063): openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/bluetooth/hci4/power\x00', 0x180, 0x0) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 32) clone$auto(0x1, 0x40000000003e, 0x0, 0x0, 0x40000009) (async, rerun: 32) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x2) getdents64$auto(r0, &(0x7f0000000f40)={0x309, 0x7, 0xffff, 0x7}, 0x200c8) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/net/netfilter/nf_conntrack_buckets\x00', 0x101400, 0x0) (async) socket(0x2, 0x80002, 0x73) (async) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x26d1c3, 0x0) (async) socket(0x80000000000000a, 0x2, 0x0) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) (async) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\x84q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa24X@\xadD\xf8\x9d\xf3 \xd2]\xc4\x13G\x1d\x04!\xc1\xeb.e$\xfb\xa3KU\xcf\xc1\x7fFD\x99\xf5v\v\x9dS\xc11P\xa3\xe9\xb0SqL\x85\xea\xb2\x9cY\x83.I\xca\x92\x1c\xc4\x13CV=\x92\x17c\x87iOt\x14On\x15=\v\xf0 \xc5\x8b~\xd6\xd4\xc7\xe3a\x1c\x06\x17\xb3\x88\x8c\xf1L\xba\x89a\xfd\xa5\xc6\x7fU\x00\xe5\x9b', 0x5) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)) fchdir$auto(r1) (async) mount$auto(0x0, &(0x7f00000000c0)='.\x00', 0x0, 0xdef, 0x0) 9.447136363s ago: executing program 0 (id=1067): r0 = socket(0x2, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @local}, 0x406a) (async) msgctl$auto_MSG_INFO(0x9, 0xc, &(0x7f0000000180)={{0x3, 0xffffffffffffffff, 0xee01, 0x6, 0x200, 0xfffffffe}, &(0x7f0000000000)=0xf9, &(0x7f0000000080)=0xbe, 0x80c2, 0x8, 0x4, 0x80000000, 0x5fb, 0xd, 0x47a, 0x2, @raw=0x4}) ioprio_set$auto(0x7, r1, 0x9) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) io_setup$auto(0x1, 0x0) (async) setsockopt$auto(0x3, 0x10000000084, 0xb, 0x0, 0x8) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) 8.776835908s ago: executing program 3 (id=1069): r0 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) r1 = timerfd_create$auto(0x9, 0x9) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) fallocate$auto(r0, 0x1, 0x820, 0x7fff) ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f0000000180)="fc5ea5f1401a03cd7d362456adda0cf384c0e2d7bd3d31e409957ab6bd240c4af9373f9691253b947acf08619b") mmap$auto(0x0, 0xb9f, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) prctl$auto(0x3f, 0x1, 0x4, 0x8000000000000000, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_page_owner_stack_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x5054c2, 0x0) bpf$auto(0x5, 0x0, 0x1) unshare$auto(0x40000080) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) r3 = socket(0x1e, 0x4, 0x0) setsockopt$auto(r3, 0x10f, 0x87, 0x0, 0x3) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) preadv2$auto(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) 8.155336419s ago: executing program 0 (id=1071): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) setsockopt$auto(0x3, 0x1, 0x8, 0x0, 0x89) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000480)={0x14, r1, 0xd0d58b333228212f, 0x70bd2c, 0x25dfdbfd}, 0x14}}, 0x20000040) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) pwrite64$auto(0xffffffffffffffff, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00/\x00\x00\x00\xfd\xfdX\xd3\x1d\xf8\xbebZ\xddL\x01H\x01\x00\x00\x0fo\x84\xfc\x89\v\xea\b\x00\x00\x00\x00\x00\x00\x00\x01\x88\v\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dG\x9f`\xb8Q\xf0BFWI\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00\\0 \xa2\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\b\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xeeI\x00'/232, 0xfdea, 0x23) read$auto(r2, 0x0, 0x20) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/lo/mtu\x00', 0x2062, 0x0) read$auto(0xffffffffffffffff, &(0x7f0000003040)='veth1_to_team\x00', 0x9) openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/input/mice\x00', 0x400, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r3 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x80000001, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020003) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) capset$auto(0x0, 0x0) write$auto(0x3, 0x0, 0xfdef) write$auto(0x3, 0x0, 0x7fffffff) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0x4, 0x6, 0xebe, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r4 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) pread64$auto(r4, 0x0, 0xf42c, 0x1000000000400) prctl$auto(0x13b, 0x1, 0x4, 0x5, 0x2) madvise$auto(0x0, 0xffffffffffff0005, 0x19) 8.026404531s ago: executing program 2 (id=1072): open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) openat$auto_drm_crtc_crc_control_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000040), 0x303c42, 0x0) mknod$auto(&(0x7f0000000000)='./file0\x00', 0x7f, 0x6) move_mount$auto(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x6) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x4000000000000) select$auto(0x9, 0x0, 0x0, &(0x7f0000000040)={[0xfffffffffffffffd, 0x0, 0xa, 0x40007fff, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x20000000000003, 0x8000400, 0x7, 0x7, 0x2, 0x93, 0x400000001, 0x2]}, 0x0) r0 = getpid() process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x80011, 0x0) write$auto_seq_oss_f_ops_seq_oss(r1, &(0x7f0000000840)="fda203ba", 0x4) open(&(0x7f0000000040)='.\x00', 0x100, 0x161) socket(0xa, 0x3, 0x3a) getdents64$auto(0x0, 0x0, 0x18) ioctl$auto(0x1, 0x8941, 0x8) mmap$auto(0x0, 0xc, 0xbc5, 0x13, 0x3, 0x8000) 8.022087001s ago: executing program 1 (id=1073): mmap$auto(0x0, 0x400008, 0xdf, 0x9b7f, 0xffffffffffffffff, 0x7) r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/pagemap\x00', 0x201, 0x0) ioctl$auto(r0, 0x401, r0) setsockopt$auto_SO_PRIORITY(r0, 0x1, 0xc, &(0x7f0000000000)='/proc/thread-self/pagemap\x00', 0x5) ioctl$auto_PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x7, 0xbfb, 0x79, 0x30, 0x3, 0x2}) socket(0xa, 0x1, 0x84) listen$auto(0x3, 0x81) accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff) shutdown$auto(0x200000003, 0x1) connect$auto(r0, &(0x7f0000000080)=@generic={0x18, "1dfae04aadc7b4280c33e2b56ecb"}, 0x80) 7.635633486s ago: executing program 2 (id=1074): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) r0 = socket(0x29, 0x2, 0x0) select$auto(0x8, &(0x7f0000000340)={[0x7, 0x6, 0xfffc000000000000, 0x6, 0x1, 0x5, 0x8, 0x1ff, 0x9, 0x1, 0x5, 0x81, 0x5, 0x7fff, 0x5]}, 0x0, &(0x7f00000004c0)={[0xe3c6, 0x8, 0x2, 0x8, 0x7, 0x3ff, 0x3, 0xa, 0x0, 0x9, 0x6, 0x1, 0x7a, 0x8, 0x66960ada, 0xffff]}, &(0x7f00000000c0)={0xffffffffffffffff, 0x7}) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'ip6tnl0\x00'}) socket(0x2, 0x1, 0x0) select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x0, 0xd, 0x2, 0x948b, 0x3, 0x15f4da0a, 0x1, 0x3, 0x62, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffa]}, 0x0) write$auto(r1, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9) r3 = getpid() process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x100, 0x0) select$auto(0xa, 0x0, 0x0, &(0x7f0000000200)={[0x8001ff, 0x4, 0xd, 0x8fd6, 0x948d, 0x3, 0x80, 0x3, 0x6, 0x7ffffffffffffffb, 0x7, 0x2, 0xd, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) mmap$auto(0x0, 0x400008, 0x7, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000ac0)='/proc/irq/default_smp_affinity\x00', 0x2, 0x0) read$auto(0x3, 0x0, 0x8080) select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x4303, 0x1, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) ioctl$auto_TIOCNXCL2(r2, 0x540d, &(0x7f00000001c0)="dbc7503dfed0f5a2223b64aa77912c33ea7df916acf8cf57e2915fe0160b3b7f57d501f7dc8b6ae2b3fabb7a1d745cd7b0cfbceed8a9e754") socket(0x2, 0x80802, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/vhci_hcd.0/status\x00', 0x101600, 0x0) read$auto(r4, &(0x7f0000000040)='\x04\x00\x86\xd2\x0f\x84\xe7\x05}\x88\x04\xc2&\x14^\v\x802\x89Y\xf2;\xe8\xf4a\xab\x01\xf5\x1f\xd5\xf5\x89lg\x0f+S\xbf\xa7\xc3\xd0\x1e\x18\xc2\xe8\x87\xa9\x9a4I;\xf6wP\'go\xf2\xf13\x91I\x819nz65-\x84\x11\x7f^\xed^\xbc\x17\x17\x82r\xa4\xf6\x86m\x81YI\xa7\xe7\x97%\x9d\bs\xc92\x1b\t\xf9q\a*\xf1\r\xc1\x18\xa7\x05m\xb1\xda\apU\xb8)b\x7f\xe9rQ\xc5N~,,\xad\xf0\x011\x8b`\xb8\x06\x01$\'\xb4\x03g\xe6\xf8\x18liR-\x97\xadX\x7f\v\xa4\xb5\xfa\xe0k\xa1\xc3\x89\x01\xb1J\xdcy!\x99\xf65\x9e\xcd\xe2[\xd78\x0e\xde-!u\x9bh\a\xbbHC\x91\xde\xd2\x9a}S\xf0\x85\x7f\x86/\xd7||\xf4\xca\xc9A\xac\xfb\x1f\xcb\xed\xbaF\xe5\xb2\xdc/Z\x1b\xc9\xb8\xc9\x83O2F\x91\a\x8c\xcd\xe57\xaa\x12\x03\xe4=\x85\xb3\xa7L', 0xc) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/snd/pcmC0D0p\x00', 0x40, 0x0) 6.950764897s ago: executing program 1 (id=1075): mmap$auto(0x0, 0x8020009, 0xe2, 0xcb1, 0x401, 0x8040001008000) unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r1 = socket(0x2b, 0x1, 0x0) listen$auto(0x3, 0x81) ioctl$auto(0x3, 0x8905, 0x38) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) madvise$auto(0x0, 0x240007, 0x19) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x5, 0x15) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)=ANY=[@ANYRES16=0x0, @ANYRES64=r2, @ANYBLOB="010031bd5000fddbdf250c0000000c0003800800038004000580"], 0x20}}, 0x24048084) madvise$auto(0x0, 0x200007, 0x19) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x102, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0) bpf$auto(0x2, 0x0, 0x1) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) r4 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x151001, 0x0) pread64$auto(r4, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001) r5 = socket(0xa, 0x1, 0x84) fcntl$auto_F_SETLKW(r3, 0x7, 0x101) getsockopt$auto(r5, 0x84, 0xe, 0x0, &(0x7f0000000040)=0xb0) 6.678685705s ago: executing program 0 (id=1076): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) mkdir$auto(&(0x7f0000000080)='./file0\x00', 0x1) socket(0x1d, 0x3, 0x1) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, 0x0, 0xfd}, 0x6a) r0 = open(&(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x80400, 0xb5d1af1605322df4) r1 = open_by_handle_at$auto(r0, &(0x7f0000001280)={0x8, 0x2, "0200000000000000"}, 0x6) sendfile$auto(r1, r0, 0x0, 0x2) r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x804, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000180), 0x109802, 0x0) close_range$auto(0x2, r3, 0x0) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r4) ioctl$auto_KVM_GET_MSRS(r3, 0xc008ae88, &(0x7f0000000040)={0x7, 0x0, [{0x40000006, 0x2, 0x6}]}) ioctl$auto_UI_END_FF_ERASE(r2, 0x400c55cb, &(0x7f0000000080)={0x80, 0x80000000, 0x9}) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) unshare$auto(0x40000080) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/vhci_hcd.11/usb31/31-0:1.0/ep_81/bEndpointAddress\x00', 0x100, 0x0) write$auto(r5, 0x0, 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000300), 0x2200, 0x0) r6 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x7, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x2000019) madvise$auto(0x0, 0x2003f2, 0x15) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000180), r6) 6.003406407s ago: executing program 2 (id=1077): r0 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000004680), 0xffffffffffffffff) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f00000049c0)={0x0, 0x0, &(0x7f0000004980)={&(0x7f0000000040)={0x20, r0, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@OVS_VPORT_ATTR_OPTIONS={0xc, 0x4, 0x0, 0x1, [@nested={0x8, 0x8, 0x0, 0x1, [@generic="8592a023"]}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40040801}, 0x44000) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) r1 = socket(0x29, 0x2, 0x0) select$auto(0x8, &(0x7f0000000340)={[0x7, 0x6, 0xfffc000000000000, 0x6, 0x1, 0x5, 0x8, 0x1ff, 0x9, 0x1, 0x5, 0x81, 0x5, 0x7fff, 0x5]}, 0x0, &(0x7f00000004c0)={[0xe3c6, 0x8, 0x2, 0x8, 0x7, 0x3ff, 0x3, 0xa, 0x0, 0x9, 0x6, 0x1, 0x7a, 0x8, 0x66960ada, 0xffff]}, &(0x7f00000000c0)={0xffffffffffffffff, 0x7}) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'ip6tnl0\x00'}) socket(0x2, 0x1, 0x0) select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x0, 0xd, 0x2, 0x948b, 0x3, 0x15f4da0a, 0x1, 0x3, 0x62, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffa]}, 0x0) write$auto(r2, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9) r3 = getpid() process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x100, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) select$auto(0xa, 0x0, 0x0, &(0x7f0000000200)={[0x8001ff, 0x4, 0xd, 0x8fd6, 0x948d, 0x3, 0x80, 0x3, 0x6, 0x7ffffffffffffffb, 0x7, 0x2, 0xd, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto_lockdown_ops_lockdown(0xffffffffffffffff, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0x7, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) pread64$auto(r4, 0x0, 0x200000000006, 0x8) r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r5, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x85) bpf$auto(0x5, &(0x7f0000000080)=@bpf_attr_7={@prog_id=0x9, 0x92f1, 0x4000004}, 0xd) madvise$auto(0x0, 0x2003f0, 0x15) 2.746787346s ago: executing program 1 (id=1078): mmap$auto(0x0, 0x2, 0xdf, 0xeb1, 0x401, 0x8000) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x147) mmap$auto(0xffffffffffffffff, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0x4}, 0x1000000000029, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x2201, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(0xca, &(0x7f0000000000)='\x04#\x01\n2\x7f\x88\x83\xa9\xd7\xbea\xcd\x00\x00\x00\xef\xabJY\xee,\xf6\x80\xecP\x9f\x00\x00\x00\x00\x00\x00\x00\x80\xe0Z\x1bsZ\xac\xff\x92+\xc9\x9fs\xbf\xd8\f\xf5\xa7jUA\x11\xf9\xb4U\xc5\x92\xf1', 0x82) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) r1 = open(&(0x7f00000000c0)='./file0\x00', 0x22240, 0x154) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x216641, 0x0) execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x100000a, 0x3e, 0xfffffffffffffffa, 0x1ffde, 0x7, 0x6, 0x4005, 0x9, 0x3, 0x6, 0x4, 0xb4, 0x9, 0x3, 0x10000, 0x80, 0x7, 0x8001, 0x8000007, 0x2000, 0x200, 0x0, 0x40084, 0x3, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x4000000000000000, 0x0, 0x0, 0x0, 0x0, 0xb8a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x40000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0x1fe, 0x200c) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}, 0x1, 0x0, 0x0, 0x10}, 0x0) socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x80802, 0x0) pipe$auto(0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000100)={{0x0, 0x4, 0x0, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) 2.471184714s ago: executing program 3 (id=1079): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x300, 0x0) read$auto(r0, 0x0, 0x1f40) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0) r2 = prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_GET(0x7, 0x2, 0xffffffffffffffff, 0x401, 0x81) r3 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000100), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'macvlan0\x00', 0x0}) r5 = getsid$auto(0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_UPD_RXSC(r2, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)={&(0x7f0000000340)={0x1c4, r3, 0x800, 0x70bd2a, 0x25dfdbfd, {}, [@MACSEC_ATTR_IFINDEX={0x8, 0x1, r4}, @MACSEC_ATTR_SA_CONFIG={0x1a5, 0x3, 0x0, 0x1, [@generic="e625d78c36ba9399fd1a72884c4f154521eedd3ac4ae0df0b0914320cf7738502d6d3d9ed0769c0a1a5544a6963a7adbd3dca3b375e93136e4c5b1e9cabf10b47c6e9894d453b7d5440354e2d8045743d6d6f2e22ab218474ac352811bd615216ca6682bc28271e8a7a5a8ed8f6b2fba967172d318632b6d0fcc7564c136d2aec9767bb7f4eedf8d742bb0fd4bc2025c84a716ad5e506a002e861ba34e0ad4eae520571e8f0de8001d8c29b482cdc6bca2412eb1380124955338d96fa942c10335b98ae61f813a4cb9532ec491e21af802f032c63fa54f979078d20126f844b0357b69ad584b86", @nested={0x8, 0x63, 0x0, 0x1, [@nested={0x4, 0x3}]}, @generic="0f85442b90ca30e53b5a9c7a1d6b2dcc032b7465e15ac7310866db20167894f3dbc0aabe7f72f5b3ea2adaf7ec76daed307625ba9829ace71f5110874f1cb711fa2eacadf548ce551cabff9f9912d0ee8ee8ce1f534999ffd251b9d911d9d4dc687546fb72c96f7a638171319a626e9d840e06db408350e184f5cabd0a5dee486ba3c05178b23e4d94334de5c1a7adcf30f10ebaca17122d6ef93d2e08363edcf759ea28e0d5780348b7", @typed={0x8, 0x111, 0x0, 0x0, @pid=r5}]}]}, 0x1c4}, 0x1, 0x0, 0x0, 0x240048c0}, 0x20008005) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/pcmC1D1p\x00', 0x2000c0, 0x0) writev$auto(r1, &(0x7f00000000c0)={0x0, 0x7}, 0x3) prctl$auto_PR_GET_TIMERSLACK(0x1e, 0x7ffeffffffffffff, 0x6, 0x4007fff, 0xa41) pipe2$auto(0x0, 0x1) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) 2.355167385s ago: executing program 2 (id=1080): r0 = open(&(0x7f0000000800)='./file1\x00', 0x22240, 0x154) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x3050c1, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0xffffffffffffffff, 0x8, 0x2) r1 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000007380)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x109041, 0x0) write$auto(r1, &(0x7f0000008d40)='($}-)#@\x00', 0x3) r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$auto_UI_DEV_SETUP(r2, 0x405c5503, &(0x7f0000000240)={{0xd, 0x8, 0x5, 0x6}, "a04bf46f39edd51588b59731202c07eda4afcffbc3e6cb015bc8b8f22bca543f654b8eb037d0126e2466e0907b97df6faa48fda0355afcdc1e1e856969a4c312fb9b3661a01cd927c147dcb6d14c8015", 0xc96}) ioctl$auto_UI_DEV_SETUP(r2, 0x405c5503, &(0x7f0000004bc0)={{0x9, 0x9, 0x3, 0x80}, "477e73797f937be5687680ddec1c45cf8a758fb87cc9fa9b3733fb3092ce744b2c65926cd378e62ea00a888d429187a459c01b4745fe9ce1c02246996a5d875e736477c7708d06000000000000005d51", 0x8}) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x10cc3, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) ioctl$auto(0x3, 0x80000541b, 0x38) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000) mmap$auto(0x8, 0x3a02, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x9, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008) r3 = socket(0xf, 0xa, 0xf) setsockopt$auto(r3, 0x1, 0xc, 0x0, 0x7fffffff) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/tty1\x00', 0x1, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) open(&(0x7f0000000140)='./file0\x00', 0x206481, 0x71) execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) open(&(0x7f00000000c0)='./file0\x00', 0x22240, 0x154) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/asound/card1/pcm0c/sub4/sw_params\x00', 0x16240, 0x0) read$auto_proc_reg_file_ops_compat_inode(r5, &(0x7f0000000200)=""/53, 0x35) execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000440)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\x00\xf20/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a0\x02\x7f\xbb\xbd\x906\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5\x94\xd0\xf5\xe7\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00\xe8\xd3\xab_\xff\xe1K\xe0\xb8\x13\x9f\x00X\xfb\x95&A\xd4\xd2\xda\xe2Mz\x1a|\x8cD\n5\xcc\xdc\xf8\xa7&\x03W\xc1\xcc4q\x19\xcc\x8c\x90p(\xf8<\v\x90?\x85\xdd\xd5\xcd\xdb\x04\xbd\x91\xf0!\xc2\x03\xea\x87\x00,\'U}\xd8\x8e\xdau/\xd5\xa5\x95\xdd\xb4\xf0\f\f9\xff\x00\x83F\v,E\xd9N\xe5.\xa3\xffd\\\xc1\xfd\xf2\xd2J\x11\x7f\xe2ZP#s\xe8\xd7\x91a\x0fe\x96\xe8\x1b\xb29\x97s\b!\x18EHF\xb9\xc8\xb7\x05\x8aSB\xf0$\x9a}\xcb\xdc\v\x92\xaa\xb81\x8d\xf2O\x9b\x0e\x88\xcbT\xb8\xc7x\x04\xac\xc9\xd2\x9f\xd3@\x05\xd0\x97,\xb2\x9d\xbc\x1a\xba') execveat$auto(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) rename$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000340)='./file0\x00') 2.209790089s ago: executing program 0 (id=1081): r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x400042, 0x4) ioctl$auto(r0, 0x6, r1) prctl$auto(0x9, 0x2000000001, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdc, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0x8, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0) pwrite64$auto(r0, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88\xa8s\x1c\b\x06\x8a>)\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3) r2 = socket(0x1d, 0x2, 0xfff) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'veth1_to_bond\x00'}) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) preadv$auto(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x8}, 0x3, 0xf8, 0xffffffdfffffffff) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) prctl$auto(0x39, 0x1, 0x0, 0x0, 0x0) socket(0x27, 0x1, 0x6) socket(0xa, 0x3, 0x73) set_mempolicy$auto(0x8003, &(0x7f0000000280)=0x7b, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0xffffffff, 0x0, 0x0) futex$auto(0x0, 0x10d, 0x2, 0x0, 0x0, 0x8) r4 = socket(0xb, 0x3, 0x36) getsockopt$auto(r4, 0x3a, 0x1, 0x0, 0x0) 1.578406892s ago: executing program 0 (id=1082): r0 = openat$auto_usbfs_devices_fops_usb(0xffffffffffffff9c, &(0x7f0000000180), 0x48402, 0x0) r1 = socket(0x2, 0x5, 0x0) getsockname$auto(r1, &(0x7f0000000000)=@ethernet={0x1, @broadcast}, &(0x7f00000000c0)=0x5) semtimedop$auto(0xfffffffa, &(0x7f0000001000)={0x8000, 0x2, 0x1}, 0x4, &(0x7f0000001080)={0xd, 0x6}) read$auto(r0, 0x0, 0x0) sendfile$auto(r1, r0, &(0x7f0000000040)=0xd, 0x9) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/pci/drivers/pata_sch/new_id\x00', 0x2, 0x0) r2 = socket(0x2, 0x80002, 0x73) io_uring_setup$auto(0x406, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x404c081}, 0x80) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000001040), 0x80, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r3 = socket(0x2, 0xa, 0x1) r4 = bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1b, r3, 0x10000}, 0x10) mmap$auto(0x0, 0x2009, 0xfffffffffffffff9, 0x8000200008011, r4, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/amidi2\x00', 0x241, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r5, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) r6 = socket(0x2b, 0x1, 0x1) getsockopt$auto(r6, 0x0, 0x80, 0x0, 0x0) setsockopt$auto(0x3, 0x6, 0xc, 0x0, 0xfb3) 1.562377713s ago: executing program 1 (id=1083): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x10, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0) mmap$auto(0x0, 0x104, 0x8, 0x16, 0x3, 0x80000000008000) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0) setresuid$auto(0x0, 0x0, 0x0) sendmsg$auto_NL80211_CMD_GET_STATION(0xffffffffffffffff, 0x0, 0x8000) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x448200, 0x0) mmap$auto(0x0, 0x2020005, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) write$auto(0x3, 0x0, 0xfdef) ioctl$auto(0x3, 0x80000541b, 0x38) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x181500, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x1b54}, 0x1, 0x0, 0x0, 0x4000004}, 0x5) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) recvmmsg$auto(r1, &(0x7f0000000180)={{0x0, 0x8, 0x0, 0x1, 0x0, 0x1000002, 0x8}, 0x800}, 0x4000005, 0x8, 0x0) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) write$auto_drm_edid_fops_drm_debugfs(0xffffffffffffffff, 0x0, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) 1.166497974s ago: executing program 2 (id=1084): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64) close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64) r1 = socketcall$auto(0x8000, 0x0) (async, rerun: 64) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x60980, 0x0) (rerun: 64) r3 = ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) (async) r4 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/input/event2\x00', 0x200, 0x0) ioctl$auto_EVIOCSKEYCODE_V2(r4, 0x40284504, &(0x7f00000001c0)={0xd, 0x9, 0xffff, 0x5, "5985defc324a4de75c928e8e44ea648f58059b692f5651c7d7cbf7d23ed8df40"}) (async) ioctl$auto(0x3, 0xae60, 0x10000000000402) (async) ioctl$auto(0x3, 0xae41, r1) (async) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) (async) write$auto_ocfs2_control_fops_stack_user(r3, &(0x7f0000001200)="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", 0x1000) ioctl$auto(0x3, 0xae41, r5) (async) close_range$auto(0x2, 0x8, 0x0) (async) getsockopt$auto(r0, 0x10e, 0xb, 0x0, 0x0) 725.13355ms ago: executing program 1 (id=1085): openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000001180)='/dev/input/mice\x00', 0x1a1382, 0x0) writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000140), 0x7113}, 0x8) 565.767348ms ago: executing program 0 (id=1086): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2, 0x1, 0x0) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) ioctl$auto(0x3, 0x894b, 0x38) msgctl$auto_IPC_INFO(0x8000, 0x3, &(0x7f0000000100)={{0x4, 0xee00, 0xee00, 0x400, 0x0, 0x2, 0x8}, &(0x7f0000000040)=0xff, &(0x7f00000000c0)=0x2, 0x6, 0x100000001, 0x4, 0x7, 0xfffffffffffffffe, 0x7, 0xfcb, 0x3, @raw=0xd846, @raw=0x7}) msgctl$auto_IPC_INFO(0xfffffff8, 0x3, &(0x7f0000000200)={{0x3, 0xee00, 0xee01, 0x1, 0x6e, 0x1000, 0x1c}, &(0x7f0000000180)=0x4, &(0x7f00000001c0)=0x7, 0x5, 0x396, 0x3ff, 0x95, 0x8, 0x6945, 0xf800, 0x3, @raw=0x4, @inferred=0xffffffffffffffff}) sendmsg$auto_NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000600)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000280)={0x30c, 0x0, 0x800, 0x70bd27, 0x25dfdbfc, {}, [@NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0x5}, @NL802154_ATTR_SEC_LEVEL={0x2c7, 0x2d, 0x0, 0x1, [@generic="eabfdb44829d98fe0ff7addb019826f1798aa14876f899a313bd44a092e413bc1c89adf79b3868f98ede01a980fe8b25846e23a68a2630ef8e8ecdc554e546f185eb4643617362192a723a3d39537b5364591ac9ad16f7aba1c86a505238d30ecc4120a87946967bd98311ed58cc5e45384a0cd57b7735955a4a01d4420bfb5be91882158b018af71f41e64eb6b369eb2a1cf22efd4aeaab544a6022b11e5cf284cb508b3eeb86c173ad054a9c3877c1260f3f84f5663758159735008e8c4d9c72a1e3b2d0b465322afb1770", @typed={0x8, 0xba, 0x0, 0x0, @uid=r1}, @nested={0x142, 0x64, 0x0, 0x1, [@nested={0x4, 0x83}, @nested={0x4, 0xb}, @generic="6b2b2fdbaec8f06632258d55356a1f3d5e342499a5233272918ab5740f51fb5452f7bb6828875bfa5b7bd649eaa7315dccd83520ef46a88012c71391e490583bf13f642e9c59fa7f5e916940d2c8ff95559edd3b1b70bcd2150df732f8f625f57f951d25d3d590630b81efa06621bb7065ac88da703d6517bcebd287be90863911c0bd8033e5b348d0cb74fb73e4ab632be423bddb89cd9bb033", @generic="1bfca2c2517d63acbc09abbb809a5c1717dda69e51174f4939de62c57089757422b8cbf2148381e2bb006a83d147473ce65570b020f275a9ffe6e169163548985a716079a0ce", @generic="5dbd583dce4223803a0cd3a3a26d86822822793f81d13bba596ba0eabea8b5b3b711eda81cc552f1ee635688b4ddd349015960c0048ffeb668ab62e3a24840304962", @nested={0x4, 0x6}, @nested={0x4, 0x54}, @typed={0x8, 0x12a, 0x0, 0x0, @ipv4=@broadcast}, @nested={0x4, 0x10f}]}, @nested={0x24, 0x11, 0x0, 0x1, [@typed={0x8, 0x83, 0x0, 0x0, @ipv4=@multicast1}, @nested={0x4, 0x42}, @typed={0x8, 0x2f, 0x0, 0x0, @ipv4=@multicast1}, @typed={0x8, 0xf9, 0x0, 0x0, @uid=r2}, @nested={0x4, 0x17}]}, @generic="f81e6b4652", @generic="3ba7349e58c4e4722ddd83a3591d72b9fe94e9a0c6a168bcc98c086aef25d71ae28d36052a4837e6a7d2ccd36de1b89d700e61e7f1ffad64ee8832d1345779992f4dc87bd2b7878e4ae54d68f291fe278e0d4309787b1de5664a018f54180cd1d628975931973174ac7d207aa1fe91b0b7c2b1ed9917d7a21ac402aba02290c42868"]}, @NL802154_ATTR_SEC_FRAME_COUNTER={0x8, 0x2c, 0x6}, @NL802154_ATTR_MAX_BE={0x5, 0x10, 0x2}, @NL802154_ATTR_SEC_FRAME_COUNTER={0x8, 0x2c, 0x1}, @NL802154_ATTR_BEACON_INTERVAL={0x5}, @NL802154_ATTR_SUPPORTED_CHANNEL={0x8, 0x16, 0x5}]}, 0x30c}, 0x1, 0x0, 0x0, 0x800}, 0x8084) 95.598308ms ago: executing program 2 (id=1087): r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) mmap$auto(0x0, 0x9, 0xdf, 0x1000000eb1, 0x401, 0x8000) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0) mmap$auto(0x0, 0x8, 0x8004000080000df, 0x40eb2, 0x401, 0x300000000000) move_pages$auto(0x0, 0x5, 0x0, &(0x7f00000003c0)=0x1, 0x0, 0x2) r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x1eb082, 0x0) ioctl$auto_BLKPG2(r2, 0x1269, 0x0) read$auto(r1, 0x0, 0x7) r3 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/ieee80211/phy0/netdev:wlan0/tdls_wider_bw\x00', 0x402480, 0x0) openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x14100, 0x0) r4 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0xb213, 0x2c, 0x800}) sendmmsg$auto(r4, &(0x7f0000000400)={{&(0x7f0000000000), 0x5aa, &(0x7f00000000c0)={&(0x7f0000000040)="661b", 0x49}, 0x1, &(0x7f0000000200), 0x5, 0x3}, 0x4}, 0x2, 0x100) pwrite64$auto(r3, 0x0, 0x3, 0x4200000000000005) write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) setfsuid$auto(0xee00) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x0, 0x60, 0x0, 0x10001) r5 = open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0x538, 0x80, 0x10000, 0x0, r5, 0x1000, "72fea04183dce563f03f2a25077b3383", 0x0, r5, 0x4, 0x6, 0x101, 0x1, r5}, 0x6f3) syz_genetlink_get_family_id$auto_nfc(&(0x7f00000000c0), r5) setfsuid$auto(0xee01) 94.341003ms ago: executing program 1 (id=1088): unshare$auto(0x40000082) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) (async) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) (async) preadv$auto(0x40000000000003, 0x0, 0x6, 0x5ff4, 0x1) (async) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'wg0\x00'}) (async) sendmsg$auto_WG_CMD_SET_DEVICE(r1, 0x0, 0x810) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty36\x00', 0x400201, 0x0) (async, rerun: 64) fcntl$getown(r1, 0x9) (rerun: 64) write$auto(0x3, 0x0, 0x7fffffff) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/node/node0/cpulist\x00', 0x28000, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000240), r0) (async) sendmsg$auto_MACSEC_CMD_ADD_RXSC(r2, 0x0, 0x4000040) (async, rerun: 32) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async, rerun: 32) write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async) r3 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r3, 0xaf01, 0x5) ioctl$auto(r3, 0x4008af13, r3) sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB='\x00\x00\x00', @ANYRES32=r3, @ANYBLOB], 0x38}, 0x1, 0x0, 0x0, 0x24000000}, 0x400c080) (async, rerun: 32) syslog$auto(0x4, 0x0, 0x0) (async, rerun: 32) write$auto(0x3, 0x0, 0xfffffdef) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x3, 0x4, 0x63, 0x0, 0xee01, 0x0, 0x50, 0x4, 0x800000080400008, 0x400003ff, 0x40000000000007, 0xa, 0xffffffff80000004, 0x800000000000b, 0x5, 0x240000100105}) (async, rerun: 32) close_range$auto(0x2, 0x8, 0x0) (rerun: 32) socket$nl_generic(0x10, 0x3, 0x10) 0s ago: executing program 3 (id=1089): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r0 = socket(0x29, 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) ioctl$auto_VHOST_SET_VRING_KICK(0xffffffffffffffff, 0x4008af20, &(0x7f0000000140)={0x22000, r1}) ioctl$auto_TUNSETTXFILTER(r2, 0x400454d1, &(0x7f00000001c0)=0x9) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rxrpc/peers\x00', 0x8000, 0x0) read$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000300)=""/250, 0xfa) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) setfsuid$auto(0x0) r4 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb0\x00', 0x2, 0x0) ioctl$auto_FBIOPAN_DISPLAY(r4, 0x4606, &(0x7f0000000000)) r5 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x20401, 0x0) write$auto_fb_fops_fb_chrdev(r5, 0x0, 0x0) ioctl$auto(r0, 0x89f0, 0x24) kernel console output (not intermixed with test programs): 9 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 219.536876][ T7655] RSP: 002b:00007f015a6050e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 219.536906][ T7655] RAX: ffffffffffffffda RBX: 00007f01599e5fa8 RCX: 00007f015978f7c9 [ 219.536926][ T7655] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f01599e5fa8 [ 219.536945][ T7655] RBP: 00007f01599e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 219.536964][ T7655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 219.536982][ T7655] R13: 00007f01599e6038 R14: 00007ffd46b1ff50 R15: 00007ffd46b20038 [ 219.537025][ T7655] [ 219.795922][ T7656] hub 1-0:1.0: USB hub found [ 219.841117][ T7656] hub 1-0:1.0: 1 port detected [ 219.894192][ T7658] hub 1-0:1.0: USB hub found [ 219.899645][ T7658] hub 1-0:1.0: 1 port detected [ 220.016664][ T7663] FAULT_INJECTION: forcing a failure. [ 220.016664][ T7663] name failslab, interval 1, probability 0, space 0, times 0 [ 220.029466][ T7663] CPU: 0 UID: 0 PID: 7663 Comm: syz.3.381 Tainted: G L syzkaller #0 PREEMPT(full) [ 220.029515][ T7663] Tainted: [L]=SOFTLOCKUP [ 220.029526][ T7663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 220.029545][ T7663] Call Trace: [ 220.029555][ T7663] [ 220.029567][ T7663] dump_stack_lvl+0x16c/0x1f0 [ 220.029643][ T7663] should_fail_ex+0x512/0x640 [ 220.029679][ T7663] ? __kmalloc_cache_noprof+0x5f/0x800 [ 220.029721][ T7663] should_failslab+0xc2/0x120 [ 220.029771][ T7663] __kmalloc_cache_noprof+0x80/0x800 [ 220.029808][ T7663] ? rcu_is_watching+0x12/0xc0 [ 220.029852][ T7663] ? call_usermodehelper_setup+0xaf/0x360 [ 220.029894][ T7663] ? __pfx_free_modprobe_argv+0x10/0x10 [ 220.029938][ T7663] ? call_usermodehelper_setup+0xaf/0x360 [ 220.029975][ T7663] call_usermodehelper_setup+0xaf/0x360 [ 220.030019][ T7663] __request_module+0x3bd/0x660 [ 220.030063][ T7663] ? __pfx___request_module+0x10/0x10 [ 220.030125][ T7663] ? find_held_lock+0x2b/0x80 [ 220.030177][ T7663] inet6_create+0xd78/0x12b0 [ 220.030228][ T7663] ? inet6_create+0x7f/0x12b0 [ 220.030280][ T7663] __sock_create+0x339/0x8a0 [ 220.030339][ T7663] __sys_socket+0x14d/0x260 [ 220.030367][ T7663] ? fput+0x70/0xf0 [ 220.030397][ T7663] ? __pfx___sys_socket+0x10/0x10 [ 220.030427][ T7663] ? xfd_validate_state+0x61/0x180 [ 220.030455][ T7663] ? __pfx_ksys_write+0x10/0x10 [ 220.030510][ T7663] __x64_sys_socket+0x72/0xb0 [ 220.030538][ T7663] ? lockdep_hardirqs_on+0x7c/0x110 [ 220.030586][ T7663] do_syscall_64+0xcd/0xf80 [ 220.030646][ T7663] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.030679][ T7663] RIP: 0033:0x7fbbd1b8f7c9 [ 220.030706][ T7663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 220.030737][ T7663] RSP: 002b:00007fbbd29d8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 220.030768][ T7663] RAX: ffffffffffffffda RBX: 00007fbbd1de5fa0 RCX: 00007fbbd1b8f7c9 [ 220.030794][ T7663] RDX: 0000000000000088 RSI: 0000000000000000 RDI: 000000000000000a [ 220.030813][ T7663] RBP: 00007fbbd1c13f91 R08: 0000000000000000 R09: 0000000000000000 [ 220.030832][ T7663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 220.030850][ T7663] R13: 00007fbbd1de6038 R14: 00007fbbd1de5fa0 R15: 00007ffd0e87c348 [ 220.030893][ T7663] [ 222.042426][ T7697] futex_wake_op: syz.2.388 tries to shift op by -2048; fix this program [ 222.160633][ T7697] futex_wake_op: syz.2.388 tries to shift op by -2048; fix this program [ 222.178988][ T7698] netlink: 12 bytes leftover after parsing attributes in process `syz.2.388'. [ 222.466076][ T5845] Bluetooth: hci2: command 0x2016 tx timeout [ 222.468127][ T5844] Bluetooth: hci3: command 0x0406 tx timeout [ 222.473156][ T7697] futex_wake_op: syz.2.388 tries to shift op by -2048; fix this program [ 222.488548][ T5150] Bluetooth: hci0: command 0x0406 tx timeout [ 222.494690][ T5838] Bluetooth: hci1: command 0x0406 tx timeout [ 225.056961][ T7756] futex_wake_op: syz.1.400 tries to shift op by -2048; fix this program [ 225.103803][ T7752] zram0: detected capacity change from 8 to 0 [ 225.126550][ T7756] futex_wake_op: syz.1.400 tries to shift op by -2048; fix this program [ 225.153614][ T7759] netlink: 12 bytes leftover after parsing attributes in process `syz.1.400'. [ 226.680969][ T7784] netlink: 8 bytes leftover after parsing attributes in process `syz.1.403'. [ 227.250538][ T31] audit: type=1804 audit(1767028113.198:8): pid=7796 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.404" name="/newroot/sys/kernel/tracing/set_event" dev="tracefs" ino=24 res=1 errno=0 [ 229.092339][ T7823] futex_wake_op: syz.3.411 tries to shift op by -2048; fix this program [ 229.101275][ T7823] futex_wake_op: syz.3.411 tries to shift op by -2048; fix this program [ 229.123149][ T7823] netlink: 12 bytes leftover after parsing attributes in process `syz.3.411'. [ 229.532791][ T7829] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11 [ 230.388749][ T7831] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12 [ 230.475297][ T7836] mmap: syz.1.414 (7836) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 230.502714][ T7839] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 231.377640][ T7855] netlink: 8 bytes leftover after parsing attributes in process `syz.0.420'. [ 232.802474][ T7878] FAULT_INJECTION: forcing a failure. [ 232.802474][ T7878] name failslab, interval 1, probability 0, space 0, times 0 [ 232.895208][ T7878] CPU: 0 UID: 0 PID: 7878 Comm: syz.0.423 Tainted: G L syzkaller #0 PREEMPT(full) [ 232.895254][ T7878] Tainted: [L]=SOFTLOCKUP [ 232.895264][ T7878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 232.895281][ T7878] Call Trace: [ 232.895291][ T7878] [ 232.895302][ T7878] dump_stack_lvl+0x16c/0x1f0 [ 232.895362][ T7878] should_fail_ex+0x512/0x640 [ 232.895392][ T7878] ? kmem_cache_alloc_noprof+0x62/0x770 [ 232.895428][ T7878] should_failslab+0xc2/0x120 [ 232.895472][ T7878] kmem_cache_alloc_noprof+0x83/0x770 [ 232.895508][ T7878] ? security_file_alloc+0x34/0x2b0 [ 232.895552][ T7878] ? security_file_alloc+0x34/0x2b0 [ 232.895588][ T7878] security_file_alloc+0x34/0x2b0 [ 232.895627][ T7878] init_file+0x93/0x4c0 [ 232.895658][ T7878] alloc_empty_file+0x73/0x1e0 [ 232.895692][ T7878] alloc_file_pseudo+0x13a/0x230 [ 232.895728][ T7878] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 232.895763][ T7878] ? alloc_fd+0x471/0x7d0 [ 232.895817][ T7878] sock_alloc_file+0x50/0x210 [ 232.895858][ T7878] __sys_socket+0x1c0/0x260 [ 232.895887][ T7878] ? __pfx___sys_socket+0x10/0x10 [ 232.895916][ T7878] ? xfd_validate_state+0x61/0x180 [ 232.895942][ T7878] ? __pfx___do_sys_close_range+0x10/0x10 [ 232.895998][ T7878] __x64_sys_socket+0x72/0xb0 [ 232.896024][ T7878] ? lockdep_hardirqs_on+0x7c/0x110 [ 232.896069][ T7878] do_syscall_64+0xcd/0xf80 [ 232.896119][ T7878] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 232.896149][ T7878] RIP: 0033:0x7f959258f7c9 [ 232.896173][ T7878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 232.896202][ T7878] RSP: 002b:00007f95934e0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 232.896231][ T7878] RAX: ffffffffffffffda RBX: 00007f95927e6090 RCX: 00007f959258f7c9 [ 232.896250][ T7878] RDX: 00000000000000ff RSI: 0000000000000003 RDI: 0000000000000002 [ 232.896268][ T7878] RBP: 00007f9592613f91 R08: 0000000000000000 R09: 0000000000000000 [ 232.896286][ T7878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 232.896303][ T7878] R13: 00007f95927e6128 R14: 00007f95927e6090 R15: 00007ffcad97ce38 [ 232.896352][ T7878] [ 233.735246][ T7885] futex_wake_op: syz.0.424 tries to shift op by -2048; fix this program [ 233.767276][ T7885] futex_wake_op: syz.0.424 tries to shift op by -2048; fix this program [ 233.805046][ T7885] netlink: 12 bytes leftover after parsing attributes in process `syz.0.424'. [ 234.682070][ T31] audit: type=1804 audit(1767028120.648:9): pid=7898 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.427" name="/newroot/110/file0" dev="tmpfs" ino=585 res=1 errno=0 [ 234.797543][ T31] audit: type=1804 audit(1767028120.678:10): pid=7899 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.427" name="/newroot/110/file0" dev="tmpfs" ino=585 res=1 errno=0 [ 236.221893][ T7914] FAULT_INJECTION: forcing a failure. [ 236.221893][ T7914] name failslab, interval 1, probability 0, space 0, times 0 [ 236.281266][ T7914] CPU: 1 UID: 0 PID: 7914 Comm: syz.3.431 Tainted: G L syzkaller #0 PREEMPT(full) [ 236.281311][ T7914] Tainted: [L]=SOFTLOCKUP [ 236.281319][ T7914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 236.281332][ T7914] Call Trace: [ 236.281340][ T7914] [ 236.281349][ T7914] dump_stack_lvl+0x16c/0x1f0 [ 236.281389][ T7914] should_fail_ex+0x512/0x640 [ 236.281415][ T7914] ? kmem_cache_alloc_lru_noprof+0x66/0x770 [ 236.281447][ T7914] should_failslab+0xc2/0x120 [ 236.281484][ T7914] kmem_cache_alloc_lru_noprof+0x87/0x770 [ 236.281512][ T7914] ? __lock_acquire+0x436/0x2890 [ 236.281535][ T7914] ? __d_alloc+0x35/0xa80 [ 236.281559][ T7914] ? __d_alloc+0x35/0xa80 [ 236.281578][ T7914] __d_alloc+0x35/0xa80 [ 236.281601][ T7914] d_alloc_pseudo+0x1c/0xc0 [ 236.281629][ T7914] alloc_file_pseudo+0xcf/0x230 [ 236.281656][ T7914] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 236.281683][ T7914] ? _raw_spin_unlock+0x28/0x50 [ 236.281714][ T7914] ? alloc_fd+0x471/0x7d0 [ 236.281750][ T7914] __anon_inode_getfile+0xe8/0x280 [ 236.281778][ T7914] __anon_inode_getfd+0x5c/0x160 [ 236.281804][ T7914] __do_sys_landlock_create_ruleset+0x294/0x4e0 [ 236.281847][ T7914] ? __pfx___do_sys_landlock_create_ruleset+0x10/0x10 [ 236.281899][ T7914] do_syscall_64+0xcd/0xf80 [ 236.281936][ T7914] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 236.281960][ T7914] RIP: 0033:0x7fbbd1b8f7c9 [ 236.281977][ T7914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 236.282000][ T7914] RSP: 002b:00007fbbd29d8038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bc [ 236.282022][ T7914] RAX: ffffffffffffffda RBX: 00007fbbd1de5fa0 RCX: 00007fbbd1b8f7c9 [ 236.282037][ T7914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 0000200000000140 [ 236.282053][ T7914] RBP: 00007fbbd1c13f91 R08: 0000000000000000 R09: 0000000000000000 [ 236.282067][ T7914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 236.282081][ T7914] R13: 00007fbbd1de6038 R14: 00007fbbd1de5fa0 R15: 00007ffd0e87c348 [ 236.282111][ T7914] [ 237.551866][ T7923] netlink: 8 bytes leftover after parsing attributes in process `syz.3.434'. [ 239.294186][ T7932] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 239.294402][ T7932] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 239.384413][ T7932] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 239.384548][ T7932] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 239.388729][ T7932] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 239.388893][ T7932] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 239.395802][ T7932] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 239.395936][ T7932] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 241.026559][ T5834] Bluetooth: hci1: command 0x0406 tx timeout [ 241.435222][ T5834] Bluetooth: hci3: command 0x0406 tx timeout [ 241.435263][ T5842] Bluetooth: hci0: command 0x0406 tx timeout [ 241.448001][ T52] Bluetooth: hci2: command 0x2016 tx timeout [ 242.019248][ T8000] [U] [ 242.022231][ T8000] [U] [ 242.024950][ T8000] [U] [ 242.027663][ T8000] [U] [ 242.095457][ T8000] [U] [ 242.098240][ T8000] [U] [ 242.100961][ T8000] [U] [ 242.103680][ T8000] [U] [ 242.126324][ T8000] [U] [ 242.129095][ T8000] [U] [ 242.131810][ T8000] [U] [ 242.134532][ T8000] [U] [ 242.141561][ T8000] [U] [ 242.144359][ T8000] [U] [ 242.147078][ T8000] [U] [ 242.149794][ T8000] [U] [ 242.160726][ T8000] [U] [ 242.163594][ T8000] [U] [ 242.166333][ T8000] [U] [ 242.169150][ T8000] [U] [ 242.182317][ T8000] [U] [ 242.185099][ T8000] [U] [ 242.187854][ T8000] [U] [ 242.190597][ T8000] [U] [ 242.257711][ T7991] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0) [ 242.305982][ T8000] [U] [ 242.308742][ T8000] [U] [ 242.311490][ T8000] [U] [ 242.314199][ T8000] [U] [ 242.382432][ T8000] [U] [ 242.385193][ T8000] [U] [ 242.387947][ T8000] [U] [ 242.390667][ T8000] [U] [ 242.415845][ T8000] [U] [ 242.418644][ T8000] [U] [ 242.421361][ T8000] [U] [ 242.424074][ T8000] [U] [ 242.446976][ T8000] [U] [ 242.709497][ T5924] Process accounting resumed [ 243.105217][ T5842] Bluetooth: hci1: command 0x0406 tx timeout [ 243.328243][ T8021] openvswitch: netlink: IP tunnel dst address not specified [ 243.516204][ T52] Bluetooth: hci2: command 0x2016 tx timeout [ 243.516930][ T5834] Bluetooth: hci3: command 0x0406 tx timeout [ 243.522333][ T5842] Bluetooth: hci0: command 0x0406 tx timeout [ 248.574124][ T8155] FAULT_INJECTION: forcing a failure. [ 248.574124][ T8155] name failslab, interval 1, probability 0, space 0, times 0 [ 248.615350][ T8155] CPU: 1 UID: 0 PID: 8155 Comm: syz.2.485 Tainted: G L syzkaller #0 PREEMPT(full) [ 248.615401][ T8155] Tainted: [L]=SOFTLOCKUP [ 248.615412][ T8155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 248.615441][ T8155] Call Trace: [ 248.615451][ T8155] [ 248.615462][ T8155] dump_stack_lvl+0x16c/0x1f0 [ 248.615516][ T8155] should_fail_ex+0x512/0x640 [ 248.615552][ T8155] ? __kmalloc_cache_noprof+0x5f/0x800 [ 248.615594][ T8155] should_failslab+0xc2/0x120 [ 248.615648][ T8155] __kmalloc_cache_noprof+0x80/0x800 [ 248.615683][ T8155] ? lockdep_init_map_type+0x5c/0x270 [ 248.615716][ T8155] ? do_inotify_init+0xa2/0x5f0 [ 248.615758][ T8155] ? do_inotify_init+0xa2/0x5f0 [ 248.615793][ T8155] do_inotify_init+0xa2/0x5f0 [ 248.615827][ T8155] ? rcu_is_watching+0x12/0xc0 [ 248.615873][ T8155] __x64_sys_inotify_init1+0x30/0x40 [ 248.615911][ T8155] do_syscall_64+0xcd/0xf80 [ 248.615961][ T8155] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.615993][ T8155] RIP: 0033:0x7f5d1c58f7c9 [ 248.616026][ T8155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 248.616058][ T8155] RSP: 002b:00007f5d1d42c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000126 [ 248.616088][ T8155] RAX: ffffffffffffffda RBX: 00007f5d1c7e5fa0 RCX: 00007f5d1c58f7c9 [ 248.616110][ T8155] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 248.616129][ T8155] RBP: 00007f5d1c613f91 R08: 0000000000000000 R09: 0000000000000000 [ 248.616146][ T8155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 248.616164][ T8155] R13: 00007f5d1c7e6038 R14: 00007f5d1c7e5fa0 R15: 00007fff08988b18 [ 248.616205][ T8155] [ 248.858024][ T8158] HfR: entered promiscuous mode [ 249.268488][ T8168] EXT4-fs error (device sda1): trigger_test_error:129: comm syz.0.487: 7 [ 249.836907][ T8181] vhci_hcd vhci_hcd.1: invalid port number 9 [ 250.156571][ T8175] input: jJǸ-9%vJ86 as /devices/virtual/input/input14 [ 252.285639][ T5834] Bluetooth: hci0: unexpected event 0x32 length: 727 > 9 [ 253.608714][ T8251] futex_wake_op: syz.3.507 tries to shift op by -2048; fix this program [ 253.687674][ T8251] futex_wake_op: syz.3.507 tries to shift op by -2048; fix this program [ 253.776653][ T8251] netlink: 12 bytes leftover after parsing attributes in process `syz.3.507'. [ 254.220501][ T8263] netlink: 346 bytes leftover after parsing attributes in process `syz.2.509'. [ 254.237805][ T8263] capability: warning: `syz.2.509' uses 32-bit capabilities (legacy support in use) [ 254.728144][ T8245] netlink: 'syz.1.505': attribute type 1 has an invalid length. [ 255.663136][ T8273] ima: policy update failed [ 255.695551][ T31] audit: type=1802 audit(1767028141.668:11): pid=8273 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.513" res=0 errno=0 [ 256.343685][ T8297] zswap: compressor not available [ 256.390214][ T8305] netlink: 4 bytes leftover after parsing attributes in process `syz.1.519'. [ 256.447333][ T8297] FAULT_INJECTION: forcing a failure. [ 256.447333][ T8297] name failslab, interval 1, probability 0, space 0, times 0 [ 256.472457][ T8297] CPU: 1 UID: 0 PID: 8297 Comm: syz.2.520 Tainted: G L syzkaller #0 PREEMPT(full) [ 256.472508][ T8297] Tainted: [L]=SOFTLOCKUP [ 256.472519][ T8297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 256.472536][ T8297] Call Trace: [ 256.472547][ T8297] [ 256.472559][ T8297] dump_stack_lvl+0x16c/0x1f0 [ 256.472612][ T8297] should_fail_ex+0x512/0x640 [ 256.472647][ T8297] ? __kmalloc_noprof+0xca/0x910 [ 256.472686][ T8297] should_failslab+0xc2/0x120 [ 256.472737][ T8297] __kmalloc_noprof+0xeb/0x910 [ 256.472773][ T8297] ? lsm_blob_alloc+0x68/0x90 [ 256.472826][ T8297] ? lsm_blob_alloc+0x68/0x90 [ 256.472870][ T8297] lsm_blob_alloc+0x68/0x90 [ 256.472918][ T8297] security_sk_alloc+0x2f/0x270 [ 256.472953][ T8297] sk_prot_alloc+0x1c7/0x2a0 [ 256.473005][ T8297] sk_alloc+0x36/0xe30 [ 256.473043][ T8297] __netlink_create+0x5e/0x2c0 [ 256.473085][ T8297] __netlink_kernel_create+0xed/0x750 [ 256.473134][ T8297] ? __pfx___netlink_kernel_create+0x10/0x10 [ 256.473191][ T8297] ? __pfx_genl_pernet_init+0x10/0x10 [ 256.473250][ T8297] genl_pernet_init+0xbd/0x170 [ 256.473301][ T8297] ? __pfx_genl_pernet_init+0x10/0x10 [ 256.473348][ T8297] ? lockdep_init_map_type+0x5c/0x270 [ 256.473380][ T8297] ? __pfx_genl_rcv+0x10/0x10 [ 256.473426][ T8297] ? __pfx_genl_bind+0x10/0x10 [ 256.473471][ T8297] ? __pfx_genl_unbind+0x10/0x10 [ 256.473518][ T8297] ? __pfx_genl_release+0x10/0x10 [ 256.473568][ T8297] ? mutex_init_lockep+0x110/0x150 [ 256.473606][ T8297] ops_init+0x1e2/0x5f0 [ 256.473652][ T8297] setup_net+0x11d/0x3a0 [ 256.473695][ T8297] ? __pfx_setup_net+0x10/0x10 [ 256.473735][ T8297] ? lockdep_init_map_type+0x5c/0x270 [ 256.473768][ T8297] ? mutex_init_lockep+0x110/0x150 [ 256.473807][ T8297] copy_net_ns+0x351/0x7c0 [ 256.473859][ T8297] create_new_namespaces+0x3ea/0xab0 [ 256.473913][ T8297] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 256.473962][ T8297] ksys_unshare+0x45b/0xa40 [ 256.474014][ T8297] ? __pfx_ksys_unshare+0x10/0x10 [ 256.474066][ T8297] ? xfd_validate_state+0x61/0x180 [ 256.474108][ T8297] __x64_sys_unshare+0x31/0x40 [ 256.474136][ T8297] do_syscall_64+0xcd/0xf80 [ 256.474187][ T8297] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 256.474228][ T8297] RIP: 0033:0x7f5d1c58f7c9 [ 256.474253][ T8297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 256.474285][ T8297] RSP: 002b:00007f5d1d42c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 256.474314][ T8297] RAX: ffffffffffffffda RBX: 00007f5d1c7e5fa0 RCX: 00007f5d1c58f7c9 [ 256.474335][ T8297] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 256.474355][ T8297] RBP: 00007f5d1c613f91 R08: 0000000000000000 R09: 0000000000000000 [ 256.474375][ T8297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 256.474393][ T8297] R13: 00007f5d1c7e6038 R14: 00007f5d1c7e5fa0 R15: 00007fff08988b18 [ 256.474436][ T8297] [ 256.883355][ T8302] netlink: 354 bytes leftover after parsing attributes in process `syz.1.519'. [ 258.340708][ T8333] futex_wake_op: syz.2.525 tries to shift op by -2048; fix this program [ 258.355429][ T8333] futex_wake_op: syz.2.525 tries to shift op by -2048; fix this program [ 258.427568][ T8333] netlink: 12 bytes leftover after parsing attributes in process `syz.2.525'. [ 259.065406][ T5834] Bluetooth: hci1: unexpected event 0x23 length: 127 > 13 [ 259.168570][ T8347] netlink: 342 bytes leftover after parsing attributes in process `syz.2.529'. [ 259.256014][ T8349] netlink: 342 bytes leftover after parsing attributes in process `syz.2.529'. [ 259.590352][ T8351] FAULT_INJECTION: forcing a failure. [ 259.590352][ T8351] name failslab, interval 1, probability 0, space 0, times 0 [ 259.641335][ T8351] CPU: 1 UID: 0 PID: 8351 Comm: syz.0.531 Tainted: G L syzkaller #0 PREEMPT(full) [ 259.641391][ T8351] Tainted: [L]=SOFTLOCKUP [ 259.641399][ T8351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 259.641413][ T8351] Call Trace: [ 259.641421][ T8351] [ 259.641430][ T8351] dump_stack_lvl+0x16c/0x1f0 [ 259.641470][ T8351] should_fail_ex+0x512/0x640 [ 259.641497][ T8351] ? kmem_cache_alloc_noprof+0x62/0x770 [ 259.641529][ T8351] should_failslab+0xc2/0x120 [ 259.641566][ T8351] kmem_cache_alloc_noprof+0x83/0x770 [ 259.641594][ T8351] ? dup_fd+0x52/0xc70 [ 259.641633][ T8351] ? dup_fd+0x52/0xc70 [ 259.641665][ T8351] dup_fd+0x52/0xc70 [ 259.641702][ T8351] ? apparmor_task_alloc+0x2c1/0x3b0 [ 259.641729][ T8351] copy_process+0x255d/0x7430 [ 259.641764][ T8351] ? preempt_schedule_thunk+0x16/0x30 [ 259.641799][ T8351] ? __pfx_copy_process+0x10/0x10 [ 259.641835][ T8351] ? find_held_lock+0x2b/0x80 [ 259.641869][ T8351] ? futex_private_hash_put+0x160/0x1b0 [ 259.641899][ T8351] kernel_clone+0xfc/0x910 [ 259.641935][ T8351] ? __pfx_futex_wake+0x10/0x10 [ 259.641967][ T8351] ? __pfx_kernel_clone+0x10/0x10 [ 259.642007][ T8351] ? __pfx_vfs_writev+0x10/0x10 [ 259.642055][ T8351] __do_sys_clone+0xce/0x120 [ 259.642091][ T8351] ? __pfx___do_sys_clone+0x10/0x10 [ 259.642140][ T8351] ? xfd_validate_state+0x61/0x180 [ 259.642171][ T8351] do_syscall_64+0xcd/0xf80 [ 259.642209][ T8351] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 259.642233][ T8351] RIP: 0033:0x7f959258f7c9 [ 259.642254][ T8351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 259.642276][ T8351] RSP: 002b:00007f9593501038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 259.642298][ T8351] RAX: ffffffffffffffda RBX: 00007f95927e5fa0 RCX: 00007f959258f7c9 [ 259.642313][ T8351] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001 [ 259.642326][ T8351] RBP: 00007f9592613f91 R08: 0000000000000000 R09: 0000000000000000 [ 259.642340][ T8351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 259.642354][ T8351] R13: 00007f95927e6038 R14: 00007f95927e5fa0 R15: 00007ffcad97ce38 [ 259.642384][ T8351] [ 260.409037][ T8359] batman_adv: Routing algorithm '' is not supported [ 265.912825][ T5834] Bluetooth: hci1: unexpected event 0x20 length: 123 > 7 [ 266.155798][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 266.175249][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 266.876005][ T8491] random: crng reseeded on system resumption [ 267.640505][ T8510] program syz.0.556 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 267.843223][ T8505] NFSD: Failed to start, no listeners configured. [ 268.121130][ T8501] FAULT_INJECTION: forcing a failure. [ 268.121130][ T8501] name failslab, interval 1, probability 0, space 0, times 0 [ 268.205889][ T8501] CPU: 1 UID: 0 PID: 8501 Comm: syz.1.560 Tainted: G L syzkaller #0 PREEMPT(full) [ 268.205941][ T8501] Tainted: [L]=SOFTLOCKUP [ 268.205952][ T8501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 268.205972][ T8501] Call Trace: [ 268.205983][ T8501] [ 268.205995][ T8501] dump_stack_lvl+0x16c/0x1f0 [ 268.206062][ T8501] should_fail_ex+0x512/0x640 [ 268.206098][ T8501] ? __kmalloc_cache_node_noprof+0x62/0x830 [ 268.206147][ T8501] should_failslab+0xc2/0x120 [ 268.206198][ T8501] __kmalloc_cache_node_noprof+0x83/0x830 [ 268.206241][ T8501] ? lockdep_init_map_type+0x5c/0x270 [ 268.206272][ T8501] ? __alloc_workqueue+0x670/0x1810 [ 268.206329][ T8501] ? __alloc_workqueue+0x670/0x1810 [ 268.206374][ T8501] __alloc_workqueue+0x670/0x1810 [ 268.206436][ T8501] alloc_workqueue_noprof+0xd2/0x200 [ 268.206497][ T8501] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 268.206554][ T8501] ? rcu_is_watching+0x12/0xc0 [ 268.206599][ T8501] ? trace_kmalloc+0x2b/0xb0 [ 268.206644][ T8501] ? __kmalloc_noprof+0x35d/0x910 [ 268.206679][ T8501] ? ieee80211_register_hw+0x15c9/0x4160 [ 268.206718][ T8501] ieee80211_register_hw+0x1f1a/0x4160 [ 268.206755][ T8501] ? lockdep_hardirqs_on+0x11/0x110 [ 268.206804][ T8501] ? _raw_spin_unlock+0x41/0x50 [ 268.206852][ T8501] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 268.206884][ T8501] ? __pfx___debug_object_init+0x10/0x10 [ 268.206953][ T8501] ? find_held_lock+0x2b/0x80 [ 268.206997][ T8501] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 268.207049][ T8501] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 268.207097][ T8501] ? __hrtimer_setup+0x176/0x280 [ 268.207141][ T8501] mac80211_hwsim_new_radio+0x3323/0x5150 [ 268.207210][ T8501] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 268.207261][ T8501] hwsim_new_radio_nl+0xba2/0x1330 [ 268.207302][ T8501] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 268.207352][ T8501] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 268.207410][ T8501] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 268.207474][ T8501] genl_family_rcv_msg_doit+0x209/0x2f0 [ 268.207540][ T8501] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 268.207594][ T8501] ? genl_get_cmd+0x194/0x580 [ 268.207654][ T8501] ? bpf_lsm_capable+0x9/0x10 [ 268.207696][ T8501] ? security_capable+0x7e/0x260 [ 268.207750][ T8501] ? ns_capable+0xd7/0x110 [ 268.207794][ T8501] genl_rcv_msg+0x55c/0x800 [ 268.207828][ T8501] ? __pfx_genl_rcv_msg+0x10/0x10 [ 268.207860][ T8501] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 268.207912][ T8501] netlink_rcv_skb+0x158/0x420 [ 268.207956][ T8501] ? __pfx_genl_rcv_msg+0x10/0x10 [ 268.207986][ T8501] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 268.208050][ T8501] ? netlink_deliver_tap+0x1ae/0xd30 [ 268.208112][ T8501] genl_rcv+0x28/0x40 [ 268.208159][ T8501] netlink_unicast+0x5aa/0x870 [ 268.208212][ T8501] ? __pfx_netlink_unicast+0x10/0x10 [ 268.208275][ T8501] netlink_sendmsg+0x8c8/0xdd0 [ 268.208326][ T8501] ? __pfx_netlink_sendmsg+0x10/0x10 [ 268.208375][ T8501] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 268.208435][ T8501] ____sys_sendmsg+0xa5d/0xc30 [ 268.208508][ T8501] ? copy_msghdr_from_user+0x10a/0x160 [ 268.208549][ T8501] ? __pfx_____sys_sendmsg+0x10/0x10 [ 268.208610][ T8501] ? __pfx_futex_wake_mark+0x10/0x10 [ 268.208659][ T8501] ___sys_sendmsg+0x134/0x1d0 [ 268.208702][ T8501] ? __pfx____sys_sendmsg+0x10/0x10 [ 268.208741][ T8501] ? futex_private_hash_put+0x160/0x1b0 [ 268.208820][ T8501] __sys_sendmsg+0x16d/0x220 [ 268.208861][ T8501] ? __pfx___sys_sendmsg+0x10/0x10 [ 268.208899][ T8501] ? __x64_sys_futex+0x1e0/0x4c0 [ 268.208960][ T8501] do_syscall_64+0xcd/0xf80 [ 268.209010][ T8501] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 268.209041][ T8501] RIP: 0033:0x7f015978f7c9 [ 268.209066][ T8501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 268.209095][ T8501] RSP: 002b:00007f015a605038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 268.209125][ T8501] RAX: ffffffffffffffda RBX: 00007f01599e5fa0 RCX: 00007f015978f7c9 [ 268.209145][ T8501] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000009 [ 268.209164][ T8501] RBP: 00007f0159813f91 R08: 0000000000000000 R09: 0000000000000000 [ 268.209182][ T8501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 268.209200][ T8501] R13: 00007f01599e6038 R14: 00007f01599e5fa0 R15: 00007ffd46b20038 [ 268.209242][ T8501] [ 272.314377][ T8580] netlink: 8 bytes leftover after parsing attributes in process `syz.1.574'. [ 272.390714][ T8581] netlink: 28 bytes leftover after parsing attributes in process `syz.1.574'. [ 272.548804][ T8581] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 272.634088][ T8581] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 272.686094][ T8581] bond0 (unregistering): Released all slaves [ 273.995146][ T8629] netlink: 40 bytes leftover after parsing attributes in process `syz.3.580'. [ 275.143192][ T8638] FAULT_INJECTION: forcing a failure. [ 275.143192][ T8638] name failslab, interval 1, probability 0, space 0, times 0 [ 275.245317][ T8638] CPU: 0 UID: 0 PID: 8638 Comm: syz.2.582 Tainted: G L syzkaller #0 PREEMPT(full) [ 275.245365][ T8638] Tainted: [L]=SOFTLOCKUP [ 275.245376][ T8638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 275.245392][ T8638] Call Trace: [ 275.245402][ T8638] [ 275.245413][ T8638] dump_stack_lvl+0x16c/0x1f0 [ 275.245466][ T8638] should_fail_ex+0x512/0x640 [ 275.245500][ T8638] ? kmem_cache_alloc_noprof+0x62/0x770 [ 275.245548][ T8638] should_failslab+0xc2/0x120 [ 275.245596][ T8638] kmem_cache_alloc_noprof+0x83/0x770 [ 275.245633][ T8638] ? getname_flags.part.0+0x4c/0x550 [ 275.245675][ T8638] ? getname_flags.part.0+0x4c/0x550 [ 275.245707][ T8638] getname_flags.part.0+0x4c/0x550 [ 275.245744][ T8638] getname_flags+0x93/0xf0 [ 275.245786][ T8638] do_sys_openat2+0xb9/0x290 [ 275.245821][ T8638] ? __pfx_do_sys_openat2+0x10/0x10 [ 275.245859][ T8638] ? do_raw_spin_unlock+0x172/0x230 [ 275.245906][ T8638] __x64_sys_openat+0x174/0x210 [ 275.245942][ T8638] ? __pfx___x64_sys_openat+0x10/0x10 [ 275.245995][ T8638] do_syscall_64+0xcd/0xf80 [ 275.246045][ T8638] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.246076][ T8638] RIP: 0033:0x7f5d1c58f7c9 [ 275.246101][ T8638] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 275.246129][ T8638] RSP: 002b:00007f5d1d42c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 275.246157][ T8638] RAX: ffffffffffffffda RBX: 00007f5d1c7e5fa0 RCX: 00007f5d1c58f7c9 [ 275.246177][ T8638] RDX: 0000000000202000 RSI: 0000200000001c80 RDI: ffffffffffffff9c [ 275.246196][ T8638] RBP: 00007f5d1c613f91 R08: 0000000000000000 R09: 0000000000000000 [ 275.246214][ T8638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 275.246232][ T8638] R13: 00007f5d1c7e6038 R14: 00007f5d1c7e5fa0 R15: 00007fff08988b18 [ 275.246274][ T8638] [ 276.359257][ T8665] netlink: 28 bytes leftover after parsing attributes in process `syz.1.588'. [ 277.836497][ T8691] netlink: 334 bytes leftover after parsing attributes in process `syz.2.593'. [ 277.859717][ T31] audit: type=1800 audit(1767028163.828:12): pid=8707 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.594" name="lu_gp_id" dev="configfs" ino=22351 res=0 errno=0 [ 279.824053][ T8719] kexec: Could not allocate control_code_buffer [ 280.458192][ T8742] FAULT_INJECTION: forcing a failure. [ 280.458192][ T8742] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 280.522600][ T8742] CPU: 0 UID: 0 PID: 8742 Comm: syz.3.601 Tainted: G L syzkaller #0 PREEMPT(full) [ 280.522639][ T8742] Tainted: [L]=SOFTLOCKUP [ 280.522646][ T8742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 280.522660][ T8742] Call Trace: [ 280.522668][ T8742] [ 280.522676][ T8742] dump_stack_lvl+0x16c/0x1f0 [ 280.522717][ T8742] should_fail_ex+0x512/0x640 [ 280.522743][ T8742] ? page_copy_sane+0xcd/0x2d0 [ 280.522767][ T8742] copy_folio_from_iter_atomic+0x3ba/0x1a10 [ 280.522816][ T8742] ? __pfx_copy_folio_from_iter_atomic+0x10/0x10 [ 280.522843][ T8742] ? fault_in_readable+0x179/0x1d0 [ 280.522877][ T8742] ? __pfx_fault_in_readable+0x10/0x10 [ 280.522908][ T8742] ? I_BDEV+0xd/0x20 [ 280.522943][ T8742] ? inode_to_bdi+0x9e/0x160 [ 280.522980][ T8742] iomap_file_buffered_write+0x530/0xab0 [ 280.523025][ T8742] ? __pfx_iomap_file_buffered_write+0x10/0x10 [ 280.523062][ T8742] ? inode_set_ctime_current+0x29a/0x7f0 [ 280.523123][ T8742] ? __pfx_down_read+0x10/0x10 [ 280.523146][ T8742] ? mnt_put_write_access_file+0xc1/0xf0 [ 280.523181][ T8742] ? file_update_time_flags+0x35c/0x520 [ 280.523210][ T8742] blkdev_write_iter+0x575/0xe00 [ 280.523245][ T8742] vfs_write+0x7d3/0x11d0 [ 280.523279][ T8742] ? __pfx_blkdev_write_iter+0x10/0x10 [ 280.523319][ T8742] ? __pfx_vfs_write+0x10/0x10 [ 280.523350][ T8742] ? find_held_lock+0x2b/0x80 [ 280.523400][ T8742] ksys_write+0x12a/0x250 [ 280.523434][ T8742] ? __pfx_ksys_write+0x10/0x10 [ 280.523469][ T8742] ? __do_sys_memfd_create+0x3fc/0xba0 [ 280.523501][ T8742] do_syscall_64+0xcd/0xf80 [ 280.523538][ T8742] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 280.523562][ T8742] RIP: 0033:0x7fbbd1b8f7c9 [ 280.523580][ T8742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 280.523602][ T8742] RSP: 002b:00007fbbd29d8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 280.523623][ T8742] RAX: ffffffffffffffda RBX: 00007fbbd1de5fa0 RCX: 00007fbbd1b8f7c9 [ 280.523638][ T8742] RDX: 0000000080000000 RSI: 0000200000000000 RDI: 0000000000000003 [ 280.523653][ T8742] RBP: 00007fbbd1c13f91 R08: 0000000000000000 R09: 0000000000000000 [ 280.523666][ T8742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 280.523680][ T8742] R13: 00007fbbd1de6038 R14: 00007fbbd1de5fa0 R15: 00007ffd0e87c348 [ 280.523710][ T8742] [ 283.012626][ T8778] __vm_enough_memory: pid: 8778, comm: syz.0.604, bytes: 4398046511104 not enough memory for the allocation [ 283.738787][ T8804] batman_adv: Routing algorithm '7' is not supported [ 283.853054][ T50] netdevsim netdevsim511 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 284.740278][ T8829] FAULT_INJECTION: forcing a failure. [ 284.740278][ T8829] name failslab, interval 1, probability 0, space 0, times 0 [ 284.820232][ T8829] CPU: 1 UID: 0 PID: 8829 Comm: syz.0.615 Tainted: G L syzkaller #0 PREEMPT(full) [ 284.820285][ T8829] Tainted: [L]=SOFTLOCKUP [ 284.820296][ T8829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 284.820317][ T8829] Call Trace: [ 284.820327][ T8829] [ 284.820340][ T8829] dump_stack_lvl+0x16c/0x1f0 [ 284.820396][ T8829] should_fail_ex+0x512/0x640 [ 284.820433][ T8829] ? fs_reclaim_acquire+0xae/0x150 [ 284.820489][ T8829] should_failslab+0xc2/0x120 [ 284.820540][ T8829] kmem_cache_alloc_noprof+0x83/0x770 [ 284.820577][ T8829] ? __pfx_map_id_range_down+0x10/0x10 [ 284.820625][ T8829] ? security_inode_alloc+0x3b/0x2b0 [ 284.820666][ T8829] ? security_inode_alloc+0x3b/0x2b0 [ 284.820698][ T8829] security_inode_alloc+0x3b/0x2b0 [ 284.820733][ T8829] inode_init_always_gfp+0xced/0x1040 [ 284.820788][ T8829] alloc_inode+0x86/0x240 [ 284.820826][ T8829] sock_alloc+0x40/0x280 [ 284.820872][ T8829] sock_create_lite+0x82/0x120 [ 284.820922][ T8829] __netlink_kernel_create+0xbd/0x750 [ 284.820973][ T8829] ? __pfx___netlink_kernel_create+0x10/0x10 [ 284.821042][ T8829] uevent_net_init+0xf8/0x350 [ 284.821077][ T8829] ? __pfx_uevent_net_init+0x10/0x10 [ 284.821110][ T8829] ? rcu_is_watching+0x12/0xc0 [ 284.821156][ T8829] ? __pfx_uevent_net_rcv+0x10/0x10 [ 284.821192][ T8829] ? ops_init+0x77/0x5f0 [ 284.821241][ T8829] ? __pfx_uevent_net_init+0x10/0x10 [ 284.821273][ T8829] ops_init+0x1e2/0x5f0 [ 284.821321][ T8829] setup_net+0x11d/0x3a0 [ 284.821364][ T8829] ? __pfx_setup_net+0x10/0x10 [ 284.821404][ T8829] ? lockdep_init_map_type+0x5c/0x270 [ 284.821439][ T8829] ? mutex_init_lockep+0x110/0x150 [ 284.821478][ T8829] copy_net_ns+0x351/0x7c0 [ 284.821530][ T8829] create_new_namespaces+0x3ea/0xab0 [ 284.821584][ T8829] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 284.821632][ T8829] ksys_unshare+0x45b/0xa40 [ 284.821685][ T8829] ? __pfx_ksys_unshare+0x10/0x10 [ 284.821738][ T8829] ? xfd_validate_state+0x61/0x180 [ 284.821781][ T8829] __x64_sys_unshare+0x31/0x40 [ 284.821810][ T8829] do_syscall_64+0xcd/0xf80 [ 284.821860][ T8829] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 284.821893][ T8829] RIP: 0033:0x7f959258f7c9 [ 284.821919][ T8829] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 284.821952][ T8829] RSP: 002b:00007f9593501038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 284.821991][ T8829] RAX: ffffffffffffffda RBX: 00007f95927e5fa0 RCX: 00007f959258f7c9 [ 284.822012][ T8829] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 284.822032][ T8829] RBP: 00007f9592613f91 R08: 0000000000000000 R09: 0000000000000000 [ 284.822052][ T8829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 284.822071][ T8829] R13: 00007f95927e6038 R14: 00007f95927e5fa0 R15: 00007ffcad97ce38 [ 284.822116][ T8829] [ 285.167035][ T8833] FAULT_INJECTION: forcing a failure. [ 285.167035][ T8833] name fail_futex, interval 1, probability 0, space 0, times 0 [ 285.255245][ T8829] kobject_uevent: unable to create netlink socket! [ 285.475310][ T8833] CPU: 1 UID: 0 PID: 8833 Comm: syz.0.615 Tainted: G L syzkaller #0 PREEMPT(full) [ 285.475349][ T8833] Tainted: [L]=SOFTLOCKUP [ 285.475357][ T8833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 285.475372][ T8833] Call Trace: [ 285.475379][ T8833] [ 285.475388][ T8833] dump_stack_lvl+0x16c/0x1f0 [ 285.475430][ T8833] should_fail_ex+0x512/0x640 [ 285.475456][ T8833] ? kasan_save_track+0x14/0x30 [ 285.475530][ T8833] get_futex_key+0x1d0/0x15f0 [ 285.475567][ T8833] ? __pfx_get_futex_key+0x10/0x10 [ 285.475623][ T8833] futex_wait_setup+0x9d/0x570 [ 285.475666][ T8833] __futex_wait+0x193/0x2f0 [ 285.475700][ T8833] ? __pfx___futex_wait+0x10/0x10 [ 285.475738][ T8833] ? __pfx_futex_wake_mark+0x10/0x10 [ 285.475775][ T8833] ? futex_hash+0x2c5/0x380 [ 285.475802][ T8833] ? futex_private_hash_put+0x160/0x1b0 [ 285.475830][ T8833] futex_wait+0xe8/0x380 [ 285.475862][ T8833] ? __pfx_futex_wait+0x10/0x10 [ 285.475904][ T8833] ? do_vfs_ioctl+0x128/0x14f0 [ 285.475937][ T8833] do_futex+0x229/0x350 [ 285.475964][ T8833] ? __pfx_do_futex+0x10/0x10 [ 285.475993][ T8833] ? find_held_lock+0x2b/0x80 [ 285.476028][ T8833] __x64_sys_futex+0x1e0/0x4c0 [ 285.476057][ T8833] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 285.476093][ T8833] ? __pfx___x64_sys_futex+0x10/0x10 [ 285.476122][ T8833] ? syscall_user_dispatch+0x78/0x140 [ 285.476153][ T8833] ? fput+0x70/0xf0 [ 285.476179][ T8833] do_syscall_64+0xcd/0xf80 [ 285.476218][ T8833] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 285.476242][ T8833] RIP: 0033:0x7f959258f7c9 [ 285.476261][ T8833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 285.476284][ T8833] RSP: 002b:00007f95934e00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 285.476306][ T8833] RAX: ffffffffffffffda RBX: 00007f95927e6098 RCX: 00007f959258f7c9 [ 285.476321][ T8833] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f95927e6098 [ 285.476336][ T8833] RBP: 00007f95927e6090 R08: 0000000000000000 R09: 0000000000000000 [ 285.476350][ T8833] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 285.476365][ T8833] R13: 00007f95927e6128 R14: 00007ffcad97cd50 R15: 00007ffcad97ce38 [ 285.476395][ T8833] [ 286.404597][ T8838] zswap: compressor not available [ 288.154332][ T8861] futex_wake_op: syz.2.619 tries to shift op by -2048; fix this program [ 288.310735][ T8872] netlink: 178 bytes leftover after parsing attributes in process `syz.3.623'. [ 288.365190][ T8861] futex_wake_op: syz.2.619 tries to shift op by -2048; fix this program [ 288.413889][ T8875] zram0: detected capacity change from 0 to 8 [ 289.376560][ T8888] __vm_enough_memory: pid: 8888, comm: syz.3.626, bytes: 4398046511104 not enough memory for the allocation [ 292.513709][ T8942] __vm_enough_memory: pid: 8942, comm: syz.3.639, bytes: 8589938688 not enough memory for the allocation [ 294.570532][ T8963] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 295.975537][ T8985] netlink: 4 bytes leftover after parsing attributes in process `syz.0.651'. [ 296.324616][ T8995] netlink: 28 bytes leftover after parsing attributes in process `syz.2.652'. [ 296.468707][ T8997] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17 [ 297.647009][ T9009] input: jJǸ-9%vJ86 as /devices/virtual/input/input18 [ 299.061365][ T9023] sp0: Synchronizing with TNC [ 299.451828][ T9029] netlink: 4 bytes leftover after parsing attributes in process `syz.2.659'. [ 299.478732][ T9029] netlink: 13 bytes leftover after parsing attributes in process `syz.2.659'. [ 300.839882][ T9032] kexec: Could not allocate control_code_buffer [ 301.287059][ T5834] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 301.287100][ T5834] Bluetooth: hci2: unexpected subevent 0x0e length: 725 > 15 [ 301.318165][ T5834] Bluetooth: hci2: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 301.401076][ T9072] FAULT_INJECTION: forcing a failure. [ 301.401076][ T9072] name failslab, interval 1, probability 0, space 0, times 0 [ 301.476717][ T9072] CPU: 1 UID: 0 PID: 9072 Comm: syz.3.669 Tainted: G L syzkaller #0 PREEMPT(full) [ 301.476766][ T9072] Tainted: [L]=SOFTLOCKUP [ 301.476775][ T9072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 301.476788][ T9072] Call Trace: [ 301.476796][ T9072] [ 301.476804][ T9072] dump_stack_lvl+0x16c/0x1f0 [ 301.476843][ T9072] should_fail_ex+0x512/0x640 [ 301.476869][ T9072] ? __kmalloc_cache_noprof+0x5f/0x800 [ 301.476898][ T9072] should_failslab+0xc2/0x120 [ 301.476934][ T9072] __kmalloc_cache_noprof+0x80/0x800 [ 301.476960][ T9072] ? __trace_eprobe_create+0x1e9/0x1da0 [ 301.476991][ T9072] ? __trace_eprobe_create+0x1e9/0x1da0 [ 301.477016][ T9072] ? __pfx___trace_eprobe_create+0x10/0x10 [ 301.477040][ T9072] __trace_eprobe_create+0x1e9/0x1da0 [ 301.477074][ T9072] ? __pfx___trace_eprobe_create+0x10/0x10 [ 301.477099][ T9072] ? rcu_is_watching+0x12/0xc0 [ 301.477132][ T9072] ? __kmalloc_noprof+0x35d/0x910 [ 301.477157][ T9072] ? argv_split+0x188/0x440 [ 301.477195][ T9072] ? argv_split+0x188/0x440 [ 301.477227][ T9072] ? argv_split+0x36e/0x440 [ 301.477258][ T9072] ? __pfx___trace_eprobe_create+0x10/0x10 [ 301.477285][ T9072] trace_probe_create+0xef/0x100 [ 301.477318][ T9072] ? __pfx_trace_probe_create+0x10/0x10 [ 301.477358][ T9072] create_dyn_event+0xee/0x1d0 [ 301.477385][ T9072] trace_parse_run_command+0x1a9/0x400 [ 301.477420][ T9072] ? __pfx_create_dyn_event+0x10/0x10 [ 301.477449][ T9072] ? __pfx_dyn_event_write+0x10/0x10 [ 301.477473][ T9072] vfs_write+0x2a0/0x11d0 [ 301.477509][ T9072] ? __pfx___mutex_lock+0x10/0x10 [ 301.477549][ T9072] ? __pfx_vfs_write+0x10/0x10 [ 301.477591][ T9072] ? __fget_files+0x20e/0x3c0 [ 301.477633][ T9072] ksys_write+0x12a/0x250 [ 301.477666][ T9072] ? __pfx_ksys_write+0x10/0x10 [ 301.477708][ T9072] do_syscall_64+0xcd/0xf80 [ 301.477766][ T9072] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 301.477798][ T9072] RIP: 0033:0x7fbbd1b8f7c9 [ 301.477823][ T9072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 301.477859][ T9072] RSP: 002b:00007fbbd29d8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 301.477881][ T9072] RAX: ffffffffffffffda RBX: 00007fbbd1de5fa0 RCX: 00007fbbd1b8f7c9 [ 301.477897][ T9072] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 0000000000000008 [ 301.477911][ T9072] RBP: 00007fbbd1c13f91 R08: 0000000000000000 R09: 0000000000000000 [ 301.477925][ T9072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 301.477939][ T9072] R13: 00007fbbd1de6038 R14: 00007fbbd1de5fa0 R15: 00007ffd0e87c348 [ 301.477970][ T9072] [ 303.254927][ T6995] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 304.002618][ T6995] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 304.057289][ T5842] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 304.079023][ T5842] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 304.089529][ T5842] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 304.097844][ T5842] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 304.108379][ T5842] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 304.275177][ T6995] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 304.973024][ T6995] bridge_slave_1: left allmulticast mode [ 304.978911][ T6995] bridge_slave_1: left promiscuous mode [ 305.013883][ T6995] bridge0: port 2(bridge_slave_1) entered disabled state [ 305.044876][ T6995] bridge_slave_0: left allmulticast mode [ 305.050678][ T6995] bridge_slave_0: left promiscuous mode [ 305.065199][ T6995] bridge0: port 1(bridge_slave_0) entered disabled state [ 305.760901][ T6995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 305.776735][ T9149] Invalid ELF header magic: != ELF [ 305.794953][ T6995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 305.813246][ T6995] bond0 (unregistering): Released all slaves [ 306.017861][ T9129] chnl_net:caif_netlink_parms(): no params data found [ 306.151894][ T5834] Bluetooth: hci3: command tx timeout [ 306.665952][ T9129] bridge0: port 1(bridge_slave_0) entered blocking state [ 306.694937][ T9129] bridge0: port 1(bridge_slave_0) entered disabled state [ 306.736127][ T9129] bridge_slave_0: entered allmulticast mode [ 306.763407][ T9129] bridge_slave_0: entered promiscuous mode [ 306.830536][ T9129] bridge0: port 2(bridge_slave_1) entered blocking state [ 306.855518][ T9129] bridge0: port 2(bridge_slave_1) entered disabled state [ 306.890435][ T9129] bridge_slave_1: entered allmulticast mode [ 306.935115][ T9129] bridge_slave_1: entered promiscuous mode [ 307.158354][ T9129] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 307.213174][ T9129] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 307.510305][ T6995] hsr_slave_0: left promiscuous mode [ 307.522992][ T6995] hsr_slave_1: left promiscuous mode [ 307.554124][ T6995] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 307.571626][ T6995] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 307.593713][ T6995] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 307.603509][ T6995] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 307.882746][ T6995] veth1_macvtap: left promiscuous mode [ 307.902689][ T6995] veth0_macvtap: left promiscuous mode [ 307.908384][ T6995] veth1_vlan: left promiscuous mode [ 307.951799][ T6995] veth0_vlan: left promiscuous mode [ 308.232511][ T5834] Bluetooth: hci3: command tx timeout [ 309.713301][ T6995] team0 (unregistering): Port device team_slave_1 removed [ 309.885199][ T6995] team0 (unregistering): Port device team_slave_0 removed [ 310.316358][ T5834] Bluetooth: hci3: command tx timeout [ 310.765960][ T9129] team0: Port device team_slave_0 added [ 310.853878][ T9129] team0: Port device team_slave_1 added [ 310.997433][ T9129] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 311.004954][ T9129] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 311.033215][ T9129] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 311.074517][ T9129] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 311.092920][ T9129] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 311.142055][ T9129] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 311.504082][ T9129] hsr_slave_0: entered promiscuous mode [ 311.534174][ T9129] hsr_slave_1: entered promiscuous mode [ 311.540701][ T9129] debugfs: 'hsr0' already exists in 'hsr' [ 311.566852][ T9129] Cannot create hsr debugfs directory [ 311.903350][ T31] audit: type=1800 audit(1767029220.857:13): pid=9234 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.696" name="dbroot" dev="configfs" ino=25857 res=0 errno=0 [ 312.394019][ T5834] Bluetooth: hci3: command tx timeout [ 312.511540][ T9244] netlink: 146 bytes leftover after parsing attributes in process `syz.3.698'. [ 314.107458][ T9129] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 314.197483][ T9129] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 314.465886][ T9129] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 314.499453][ T9129] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 315.303712][ T9129] 8021q: adding VLAN 0 to HW filter on device bond0 [ 315.335868][ T9281] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 315.364638][ T9281] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 315.406509][ T9281] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 315.416859][ T9129] 8021q: adding VLAN 0 to HW filter on device team0 [ 315.454085][ T30] bridge0: port 1(bridge_slave_0) entered blocking state [ 315.460249][ T9281] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 315.461647][ T30] bridge0: port 1(bridge_slave_0) entered forwarding state [ 315.513915][ T6995] bridge0: port 2(bridge_slave_1) entered blocking state [ 315.521240][ T6995] bridge0: port 2(bridge_slave_1) entered forwarding state [ 315.531477][ T9281] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 315.569231][ T9281] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 316.033031][ T9306] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 316.555771][ T5834] Bluetooth: hci1: command 0x0406 tx timeout [ 316.836098][ T9337] can: request_module (can-proto-3) failed. [ 316.994354][ T9129] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 317.441612][ T52] Bluetooth: hci0: command 0x0406 tx timeout [ 317.448054][ T5842] Bluetooth: hci2: command 0x2016 tx timeout [ 317.454821][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout [ 317.503478][ T9129] veth0_vlan: entered promiscuous mode [ 317.661893][ T9129] veth1_vlan: entered promiscuous mode [ 318.096130][ T9129] veth0_macvtap: entered promiscuous mode [ 318.128103][ T9129] veth1_macvtap: entered promiscuous mode [ 318.191178][ T9129] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 318.222110][ T9129] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 318.320876][ T6986] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 318.340180][ T6986] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 318.363936][ T6986] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 318.427405][ T6986] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 318.771104][ T6998] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 318.793583][ T6998] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 318.860416][ T6998] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 318.870570][ T6998] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 319.517336][ T52] Bluetooth: hci3: command 0x0c1a tx timeout [ 320.662463][ T9412] netlink: 28 bytes leftover after parsing attributes in process `syz.3.722'. [ 321.598229][ T52] Bluetooth: hci3: command 0x0c1a tx timeout [ 322.018580][ T52] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5 [ 322.790722][ T9437] queue_state_write: unsupported operation '2' [ 322.858959][ T9437] queue_state_write: use 'run', 'start' or 'kick' [ 323.814611][ T9456] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 323.814611][ T9456] The task syz.2.729 (9456) triggered the difference, watch for misbehavior. [ 325.348443][ T9471] random: crng reseeded on system resumption [ 325.915553][ T9478] netlink: 1 bytes leftover after parsing attributes in process `syz.3.734'. [ 325.924766][ T9478] tc_dump_action: action bad kind [ 326.159421][ T9481] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 327.606479][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 327.615113][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 328.154316][ T52] Bluetooth: hci0: unexpected event 0x31 length: 19 > 6 [ 328.831210][ T9532] KVM: debugfs: duplicate directory 9532-3 [ 329.833583][ T9546] zram0: detected capacity change from 8 to 0 [ 330.981980][ T9560] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 331.024442][ T9560] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 331.051531][ T9560] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 331.075461][ T9560] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 332.191953][ T9585] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 332.198506][ T9585] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 332.248231][ T9585] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 332.267918][ T9585] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 333.684890][ T52] Bluetooth: hci1: command 0x0406 tx timeout [ 334.250280][ T52] Bluetooth: hci0: command 0x0406 tx timeout [ 334.335404][ T52] Bluetooth: hci3: command 0x0c1a tx timeout [ 334.335415][ T5834] Bluetooth: hci2: command 0x2016 tx timeout [ 340.154325][ T9678] bond0: invalid ARP target specified [ 340.206481][ T9677] netlink: 342 bytes leftover after parsing attributes in process `syz.3.777'. [ 344.751759][ T9730] FAULT_INJECTION: forcing a failure. [ 344.751759][ T9730] name failslab, interval 1, probability 0, space 0, times 0 [ 344.785320][ T9728] sctp: [Deprecated]: syz.1.787 (pid 9728) Use of struct sctp_assoc_value in delayed_ack socket option. [ 344.785320][ T9728] Use struct sctp_sack_info instead [ 344.819939][ T9730] CPU: 0 UID: 0 PID: 9730 Comm: syz.2.788 Tainted: G L syzkaller #0 PREEMPT(full) [ 344.819989][ T9730] Tainted: [L]=SOFTLOCKUP [ 344.820001][ T9730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 344.820020][ T9730] Call Trace: [ 344.820031][ T9730] [ 344.820043][ T9730] dump_stack_lvl+0x16c/0x1f0 [ 344.820096][ T9730] should_fail_ex+0x512/0x640 [ 344.820131][ T9730] ? __kmalloc_noprof+0xca/0x910 [ 344.820168][ T9730] should_failslab+0xc2/0x120 [ 344.820215][ T9730] __kmalloc_noprof+0xeb/0x910 [ 344.820250][ T9730] ? slhc_init+0x3dd/0x570 [ 344.820284][ T9730] ? slhc_init+0x3dd/0x570 [ 344.820319][ T9730] slhc_init+0x3dd/0x570 [ 344.820341][ T9730] ? kasan_save_track+0x14/0x30 [ 344.820384][ T9730] slip_open+0x8ee/0x1150 [ 344.820434][ T9730] ? __pfx_slip_open+0x10/0x10 [ 344.820477][ T9730] ? down_write+0x14d/0x200 [ 344.820509][ T9730] ? __pfx_slip_open+0x10/0x10 [ 344.820555][ T9730] tty_ldisc_open+0x9f/0x120 [ 344.820594][ T9730] tty_set_ldisc+0x32b/0x780 [ 344.820638][ T9730] tty_ioctl+0xc2d/0x1650 [ 344.820681][ T9730] ? __pfx_tty_ioctl+0x10/0x10 [ 344.820735][ T9730] ? find_held_lock+0x2b/0x80 [ 344.820773][ T9730] ? hook_file_ioctl_common+0x144/0x410 [ 344.820818][ T9730] ? __fget_files+0x20e/0x3c0 [ 344.820874][ T9730] ? __pfx_tty_ioctl+0x10/0x10 [ 344.820918][ T9730] __x64_sys_ioctl+0x18e/0x210 [ 344.820959][ T9730] do_syscall_64+0xcd/0xf80 [ 344.821007][ T9730] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 344.821037][ T9730] RIP: 0033:0x7f5d1c58f7c9 [ 344.821061][ T9730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 344.821089][ T9730] RSP: 002b:00007f5d1d42c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 344.821117][ T9730] RAX: ffffffffffffffda RBX: 00007f5d1c7e5fa0 RCX: 00007f5d1c58f7c9 [ 344.821137][ T9730] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 0000000000000008 [ 344.821154][ T9730] RBP: 00007f5d1c613f91 R08: 0000000000000000 R09: 0000000000000000 [ 344.821172][ T9730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 344.821189][ T9730] R13: 00007f5d1c7e6038 R14: 00007f5d1c7e5fa0 R15: 00007fff08988b18 [ 344.821232][ T9730] [ 345.673265][ T9738] futex_wake_op: syz.2.790 tries to shift op by -2048; fix this program [ 345.721379][ T9738] futex_wake_op: syz.2.790 tries to shift op by -2048; fix this program [ 345.741102][ T9738] 0x000000000001-0x000000020000 : "" [ 345.785949][ T9738] ftl_cs: FTL header corrupt! [ 348.197030][ T9766] nvme_fcloop: unknown parameter or missing value '7' [ 348.749117][ T52] Bluetooth: hci3: unexpected event 0x12 length: 440 > 8 [ 348.845331][ T31] audit: type=1800 audit(1767047601.789:14): pid=9787 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="" name="lu_gp_id" dev="configfs" ino=28864 res=0 errno=0 [ 350.960429][ T9817] FAULT_INJECTION: forcing a failure. [ 350.960429][ T9817] name failslab, interval 1, probability 0, space 0, times 0 [ 350.973674][ T9817] CPU: 1 UID: 0 PID: 9817 Comm: syz.2.804 Tainted: G L syzkaller #0 PREEMPT(full) [ 350.973725][ T9817] Tainted: [L]=SOFTLOCKUP [ 350.973736][ T9817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 350.973756][ T9817] Call Trace: [ 350.973766][ T9817] [ 350.973779][ T9817] dump_stack_lvl+0x16c/0x1f0 [ 350.973834][ T9817] should_fail_ex+0x512/0x640 [ 350.973876][ T9817] should_failslab+0xc2/0x120 [ 350.973925][ T9817] __kmalloc_cache_noprof+0x80/0x800 [ 350.973958][ T9817] ? __task_pid_nr_ns+0x1f5/0x500 [ 350.973984][ T9817] ? proc_self_get_link+0x1a9/0x230 [ 350.974029][ T9817] ? proc_self_get_link+0x1a9/0x230 [ 350.974075][ T9817] proc_self_get_link+0x1a9/0x230 [ 350.974114][ T9817] pick_link+0xb09/0x13b0 [ 350.974153][ T9817] ? __pfx_proc_self_get_link+0x10/0x10 [ 350.974195][ T9817] step_into_slowpath+0x6c6/0xf50 [ 350.974244][ T9817] ? __pfx_step_into_slowpath+0x10/0x10 [ 350.974292][ T9817] ? lookup_fast+0x156/0x610 [ 350.974329][ T9817] ? inode_permission+0x37b/0x640 [ 350.974370][ T9817] link_path_walk+0xd26/0x1c70 [ 350.974428][ T9817] path_openat+0x1bd/0x3140 [ 350.974473][ T9817] ? do_syscall_64+0xcd/0xf80 [ 350.974520][ T9817] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 350.974566][ T9817] ? __pfx_path_openat+0x10/0x10 [ 350.974632][ T9817] do_filp_open+0x20b/0x470 [ 350.974682][ T9817] ? __pfx_do_filp_open+0x10/0x10 [ 350.974763][ T9817] ? alloc_fd+0x471/0x7d0 [ 350.974822][ T9817] do_sys_openat2+0x121/0x290 [ 350.974858][ T9817] ? __pfx_do_sys_openat2+0x10/0x10 [ 350.974910][ T9817] __x64_sys_openat+0x174/0x210 [ 350.974948][ T9817] ? __pfx___x64_sys_openat+0x10/0x10 [ 350.975003][ T9817] do_syscall_64+0xcd/0xf80 [ 350.975067][ T9817] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 350.975101][ T9817] RIP: 0033:0x7f5d1c58f7c9 [ 350.975128][ T9817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 350.975160][ T9817] RSP: 002b:00007f5d1d42c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 350.975191][ T9817] RAX: ffffffffffffffda RBX: 00007f5d1c7e5fa0 RCX: 00007f5d1c58f7c9 [ 350.975213][ T9817] RDX: 000000000004a141 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 350.975233][ T9817] RBP: 00007f5d1c613f91 R08: 0000000000000000 R09: 0000000000000000 [ 350.975253][ T9817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 350.975272][ T9817] R13: 00007f5d1c7e6038 R14: 00007f5d1c7e5fa0 R15: 00007fff08988b18 [ 350.975316][ T9817] [ 351.692241][ T9838] zswap: compressor 000 not available [ 351.970386][ T9841] unchecked MSR access error: WRMSR to 0x418 (tried to write 0x0000000000000322) at rIP: 0xffffffff81659fda (__mcheck_cpu_init_prepare_banks+0x18a/0x380) [ 351.986601][ T9841] Call Trace: [ 351.989933][ T9841] [ 351.992913][ T9841] ? __pfx___mcheck_cpu_init_prepare_banks+0x10/0x10 [ 351.999736][ T9841] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 352.005884][ T9841] ? __pfx_call_function_single_prep_ipi+0x10/0x10 [ 352.012451][ T9841] mce_cpu_restart+0xd9/0x1f0 [ 352.017190][ T9841] ? __pfx_mce_cpu_restart+0x10/0x10 [ 352.022537][ T9841] smp_call_function_many_cond+0x1200/0x15e0 [ 352.028600][ T9841] ? __pfx_mce_cpu_restart+0x10/0x10 [ 352.033958][ T9841] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 352.039826][ T9841] ? __pfx_smp_call_function_many_cond+0x10/0x10 [ 352.046212][ T9841] ? __pfx___try_to_del_timer_sync+0x10/0x10 [ 352.052259][ T9841] ? __pfx_mce_cpu_restart+0x10/0x10 [ 352.057624][ T9841] on_each_cpu_cond_mask+0x40/0x90 [ 352.062805][ T9841] set_bank+0x240/0x3a0 [ 352.066997][ T9841] ? __pfx_set_bank+0x10/0x10 [ 352.071707][ T9841] ? find_held_lock+0x2b/0x80 [ 352.076434][ T9841] ? __pfx_set_bank+0x10/0x10 [ 352.081147][ T9841] dev_attr_store+0x58/0x80 [ 352.085694][ T9841] ? __pfx_dev_attr_store+0x10/0x10 [ 352.090945][ T9841] sysfs_kf_write+0xf2/0x150 [ 352.095572][ T9841] kernfs_fop_write_iter+0x3af/0x570 [ 352.100928][ T9841] ? __pfx_sysfs_kf_write+0x10/0x10 [ 352.106341][ T9841] vfs_write+0x7d3/0x11d0 [ 352.110726][ T9841] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 352.116582][ T9841] ? __pfx_vfs_write+0x10/0x10 [ 352.121424][ T9841] ksys_write+0x12a/0x250 [ 352.125815][ T9841] ? __pfx_ksys_write+0x10/0x10 [ 352.130755][ T9841] do_syscall_64+0xcd/0xf80 [ 352.135310][ T9841] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 352.141231][ T9841] RIP: 0033:0x7f015978f7c9 [ 352.145677][ T9841] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 352.165526][ T9841] RSP: 002b:00007f015a5c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 352.173976][ T9841] RAX: ffffffffffffffda RBX: 00007f01599e6180 RCX: 00007f015978f7c9 [ 352.181975][ T9841] RDX: 0000000000000003 RSI: 0000200000000240 RDI: 0000000000000082 [ 352.190069][ T9841] RBP: 00007f0159813f91 R08: 0000000000000000 R09: 0000000000000000 [ 352.198074][ T9841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 352.206095][ T9841] R13: 00007f01599e6218 R14: 00007f01599e6180 R15: 00007ffd46b20038 [ 352.214115][ T9841] [ 352.715836][ T9867] netlink: 62 bytes leftover after parsing attributes in process `syz.0.813'. [ 353.289190][ T9885] netlink: Setting conntrack mark requires 'commit' flag. [ 354.889550][ T9923] netlink: 28 bytes leftover after parsing attributes in process `syz.2.825'. [ 354.942645][ T9923] veth0_macvtap: entered allmulticast mode [ 355.521946][ T9933] Invalid ELF header magic: != ELF [ 355.529997][ T9934] FAULT_INJECTION: forcing a failure. [ 355.529997][ T9934] name failslab, interval 1, probability 0, space 0, times 0 [ 355.547946][ T9934] CPU: 0 UID: 0 PID: 9934 Comm: syz.3.829 Tainted: G L syzkaller #0 PREEMPT(full) [ 355.547995][ T9934] Tainted: [L]=SOFTLOCKUP [ 355.548006][ T9934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 355.548025][ T9934] Call Trace: [ 355.548035][ T9934] [ 355.548048][ T9934] dump_stack_lvl+0x16c/0x1f0 [ 355.548102][ T9934] should_fail_ex+0x512/0x640 [ 355.548161][ T9934] ? fs_reclaim_acquire+0xae/0x150 [ 355.548217][ T9934] should_failslab+0xc2/0x120 [ 355.548276][ T9934] __kmalloc_noprof+0xeb/0x910 [ 355.548313][ T9934] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 355.548363][ T9934] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 355.548408][ T9934] tomoyo_realpath_from_path+0xc2/0x6e0 [ 355.548466][ T9934] tomoyo_check_open_permission+0x2ab/0x3c0 [ 355.548507][ T9934] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 355.548589][ T9934] ? do_raw_spin_lock+0x12c/0x2b0 [ 355.548638][ T9934] tomoyo_file_open+0x6b/0x90 [ 355.548691][ T9934] security_file_open+0x84/0x1e0 [ 355.548733][ T9934] do_dentry_open+0x597/0x1590 [ 355.548786][ T9934] ? security_inode_permission+0xbf/0x260 [ 355.548831][ T9934] vfs_open+0x82/0x3f0 [ 355.548870][ T9934] path_openat+0x2078/0x3140 [ 355.548932][ T9934] ? __pfx_path_openat+0x10/0x10 [ 355.548997][ T9934] do_filp_open+0x20b/0x470 [ 355.549048][ T9934] ? __pfx_do_filp_open+0x10/0x10 [ 355.549127][ T9934] ? alloc_fd+0x471/0x7d0 [ 355.549187][ T9934] do_sys_openat2+0x121/0x290 [ 355.549222][ T9934] ? __pfx_do_sys_openat2+0x10/0x10 [ 355.549282][ T9934] __x64_sys_openat+0x174/0x210 [ 355.549320][ T9934] ? __pfx___x64_sys_openat+0x10/0x10 [ 355.549375][ T9934] do_syscall_64+0xcd/0xf80 [ 355.549427][ T9934] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 355.549459][ T9934] RIP: 0033:0x7fbbd1b8f7c9 [ 355.549486][ T9934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 355.549517][ T9934] RSP: 002b:00007fbbd29d8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 355.549547][ T9934] RAX: ffffffffffffffda RBX: 00007fbbd1de5fa0 RCX: 00007fbbd1b8f7c9 [ 355.549568][ T9934] RDX: 000000000014fa02 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 355.549589][ T9934] RBP: 00007fbbd1c13f91 R08: 0000000000000000 R09: 0000000000000000 [ 355.549609][ T9934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 355.549629][ T9934] R13: 00007fbbd1de6038 R14: 00007fbbd1de5fa0 R15: 00007ffd0e87c348 [ 355.549674][ T9934] [ 355.549687][ T9934] ERROR: Out of memory at tomoyo_realpath_from_path. [ 357.386902][ T9965] netlink: 342 bytes leftover after parsing attributes in process `syz.1.835'. [ 357.640582][ T31] audit: type=1800 audit(1767047610.575:15): pid=9974 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.837" name="members" dev="configfs" ino=30183 res=0 errno=0 [ 358.579346][ T9995] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 358.944087][ T31] audit: type=1800 audit(1767047611.884:16): pid=9999 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.840" name="lu_gp_id" dev="configfs" ino=30220 res=0 errno=0 [ 362.735619][T10040] openvswitch: HfR: Dropping previously announced user features [ 363.078073][T10040] zswap: compressor not available [ 363.237647][T10049] FAULT_INJECTION: forcing a failure. [ 363.237647][T10049] name failslab, interval 1, probability 0, space 0, times 0 [ 363.324695][T10050] MTRR 1 not used [ 363.364703][T10049] CPU: 1 UID: 0 PID: 10049 Comm: syz.3.851 Tainted: G L syzkaller #0 PREEMPT(full) [ 363.364759][T10049] Tainted: [L]=SOFTLOCKUP [ 363.364772][T10049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 363.364792][T10049] Call Trace: [ 363.364803][T10049] [ 363.364816][T10049] dump_stack_lvl+0x16c/0x1f0 [ 363.364872][T10049] should_fail_ex+0x512/0x640 [ 363.364921][T10049] should_failslab+0xc2/0x120 [ 363.364973][T10049] kmem_cache_alloc_node_noprof+0x86/0x800 [ 363.365014][T10049] ? __alloc_skb+0x156/0x410 [ 363.365047][T10049] ? __alloc_skb+0x35d/0x410 [ 363.365088][T10049] ? __alloc_skb+0x156/0x410 [ 363.365120][T10049] __alloc_skb+0x156/0x410 [ 363.365153][T10049] ? __alloc_skb+0x35d/0x410 [ 363.365187][T10049] ? __pfx___alloc_skb+0x10/0x10 [ 363.365229][T10049] ? __pfx_aa_file_perm+0x10/0x10 [ 363.365279][T10049] new_skb+0x21/0x230 [ 363.365323][T10049] aoecmd_cfg+0x21c/0x7d0 [ 363.365380][T10049] ? __pfx_aoecmd_cfg+0x10/0x10 [ 363.365439][T10049] ? common_file_perm+0x1b1/0x500 [ 363.365485][T10049] ? __pfx_aoechr_write+0x10/0x10 [ 363.365528][T10049] ? aoechr_write+0x120/0x160 [ 363.365570][T10049] aoechr_write+0x120/0x160 [ 363.365612][T10049] vfs_writev+0x5df/0xde0 [ 363.365668][T10049] ? __pfx_vfs_writev+0x10/0x10 [ 363.365713][T10049] ? putname+0xf5/0x1a0 [ 363.365763][T10049] ? __fget_files+0x20e/0x3c0 [ 363.365818][T10049] ? do_writev+0x132/0x340 [ 363.365854][T10049] do_writev+0x132/0x340 [ 363.365901][T10049] ? __pfx_do_writev+0x10/0x10 [ 363.365962][T10049] do_syscall_64+0xcd/0xf80 [ 363.366011][T10049] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 363.366044][T10049] RIP: 0033:0x7fbbd1b8f7c9 [ 363.366069][T10049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 363.366101][T10049] RSP: 002b:00007fbbd29d8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 363.366132][T10049] RAX: ffffffffffffffda RBX: 00007fbbd1de5fa0 RCX: 00007fbbd1b8f7c9 [ 363.366153][T10049] RDX: 0000000000000004 RSI: 0000200000000140 RDI: 0000000000000009 [ 363.366171][T10049] RBP: 00007fbbd1c13f91 R08: 0000000000000000 R09: 0000000000000000 [ 363.366189][T10049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 363.366207][T10049] R13: 00007fbbd1de6038 R14: 00007fbbd1de5fa0 R15: 00007ffd0e87c348 [ 363.366250][T10049] [ 363.743667][T10049] aoe: skb alloc failure [ 363.768306][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 363.807130][ T31] audit: type=1800 audit(1767047616.742:17): pid=10059 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.849" name="features" dev="configfs" ino=30335 res=0 errno=0 [ 363.867086][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 365.834768][T10100] zswap: compressor not available [ 367.176698][T10119] can: request_module (can-proto-0) failed. [ 367.775281][T10125] netlink: 28 bytes leftover after parsing attributes in process `syz.0.867'. [ 368.712320][T10129] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 368.721815][T10129] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 369.458011][T10140] netlink: 16 bytes leftover after parsing attributes in process `syz.1.873'. [ 369.781883][T10150] NFSD: Failed to start, no listeners configured. [ 370.443853][T10167] netlink: 74 bytes leftover after parsing attributes in process `syz.1.876'. [ 370.524525][T10167] netlink: 74 bytes leftover after parsing attributes in process `syz.1.876'. [ 370.558384][T10167] netlink: 74 bytes leftover after parsing attributes in process `syz.1.876'. [ 370.611005][T10167] netlink: 74 bytes leftover after parsing attributes in process `syz.1.876'. [ 370.708171][T10167] netlink: 74 bytes leftover after parsing attributes in process `syz.1.876'. [ 370.748088][T10167] netlink: 74 bytes leftover after parsing attributes in process `syz.1.876'. [ 370.771824][T10167] netlink: 74 bytes leftover after parsing attributes in process `syz.1.876'. [ 370.800248][T10167] netlink: 74 bytes leftover after parsing attributes in process `syz.1.876'. [ 372.341940][T10180] kexec: Could not allocate control_code_buffer [ 373.518730][T10209] FAULT_INJECTION: forcing a failure. [ 373.518730][T10209] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 373.554437][T10209] CPU: 0 UID: 0 PID: 10209 Comm: syz.0.886 Tainted: G L syzkaller #0 PREEMPT(full) [ 373.554489][T10209] Tainted: [L]=SOFTLOCKUP [ 373.554501][T10209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 373.554519][T10209] Call Trace: [ 373.554530][T10209] [ 373.554543][T10209] dump_stack_lvl+0x16c/0x1f0 [ 373.554599][T10209] should_fail_ex+0x512/0x640 [ 373.554649][T10209] _copy_from_user+0x2e/0xd0 [ 373.554689][T10209] copy_msghdr_from_user+0x98/0x160 [ 373.554733][T10209] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 373.554785][T10209] ? __lock_acquire+0x436/0x2890 [ 373.554824][T10209] ___sys_recvmsg+0xdb/0x1a0 [ 373.554866][T10209] ? __pfx____sys_recvmsg+0x10/0x10 [ 373.554930][T10209] ? __pfx___might_resched+0x10/0x10 [ 373.554985][T10209] do_recvmmsg+0x2fe/0x750 [ 373.555032][T10209] ? __pfx_do_recvmmsg+0x10/0x10 [ 373.555070][T10209] ? snd_ctl_ioctl+0xf69/0x13e0 [ 373.555127][T10209] ? do_futex+0x122/0x350 [ 373.555177][T10209] ? __x64_sys_futex+0x1e0/0x4c0 [ 373.555219][T10209] __x64_sys_recvmmsg+0x22a/0x280 [ 373.555265][T10209] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 373.555320][T10209] do_syscall_64+0xcd/0xf80 [ 373.555372][T10209] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 373.555405][T10209] RIP: 0033:0x7f2ba738f7c9 [ 373.555430][T10209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 373.555463][T10209] RSP: 002b:00007f2ba81bb038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 373.555493][T10209] RAX: ffffffffffffffda RBX: 00007f2ba75e5fa0 RCX: 00007f2ba738f7c9 [ 373.555515][T10209] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 373.555534][T10209] RBP: 00007f2ba7413f91 R08: 0000000000000000 R09: 0000000000000000 [ 373.555553][T10209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 373.555572][T10209] R13: 00007f2ba75e6038 R14: 00007f2ba75e5fa0 R15: 00007fff97770738 [ 373.555616][T10209] [ 374.320503][T10235] __nla_validate_parse: 57 callbacks suppressed [ 374.320530][T10235] netlink: 342 bytes leftover after parsing attributes in process `syz.2.891'. [ 374.641215][T10239] FAULT_INJECTION: forcing a failure. [ 374.641215][T10239] name fail_futex, interval 1, probability 0, space 0, times 0 [ 374.754275][T10239] CPU: 1 UID: 0 PID: 10239 Comm: syz.0.892 Tainted: G L syzkaller #0 PREEMPT(full) [ 374.754323][T10239] Tainted: [L]=SOFTLOCKUP [ 374.754334][T10239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 374.754351][T10239] Call Trace: [ 374.754361][T10239] [ 374.754372][T10239] dump_stack_lvl+0x16c/0x1f0 [ 374.754421][T10239] should_fail_ex+0x512/0x640 [ 374.754461][T10239] get_futex_key+0x1d0/0x15f0 [ 374.754496][T10239] ? __lock_acquire+0x436/0x2890 [ 374.754525][T10239] ? __pfx_get_futex_key+0x10/0x10 [ 374.754560][T10239] ? trace_sched_set_need_resched_tp+0xf3/0x130 [ 374.754617][T10239] futex_wait_setup+0x9d/0x570 [ 374.754673][T10239] __futex_wait+0x193/0x2f0 [ 374.754716][T10239] ? __pfx___futex_wait+0x10/0x10 [ 374.754762][T10239] ? __pfx_futex_wake_mark+0x10/0x10 [ 374.754816][T10239] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 374.754852][T10239] ? __hrtimer_setup+0x176/0x280 [ 374.754892][T10239] ? ktime_add_safe+0x60/0x70 [ 374.754933][T10239] futex_wait+0xe8/0x380 [ 374.754974][T10239] ? __pfx_futex_wait+0x10/0x10 [ 374.755013][T10239] ? __lock_acquire+0x436/0x2890 [ 374.755045][T10239] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 374.755096][T10239] do_futex+0x229/0x350 [ 374.755130][T10239] ? __pfx_do_futex+0x10/0x10 [ 374.755161][T10239] ? rcu_is_watching+0x12/0xc0 [ 374.755200][T10239] ? ktime_get+0x200/0x310 [ 374.755225][T10239] ? lockdep_hardirqs_on+0x7c/0x110 [ 374.755265][T10239] ? read_tsc+0x9/0x20 [ 374.755309][T10239] __x64_sys_futex+0x1e0/0x4c0 [ 374.755343][T10239] ? __pfx___x64_sys_futex+0x10/0x10 [ 374.755373][T10239] ? xfd_validate_state+0x61/0x180 [ 374.755406][T10239] do_syscall_64+0xcd/0xf80 [ 374.755448][T10239] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 374.755474][T10239] RIP: 0033:0x7f2ba738f7c9 [ 374.755493][T10239] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 374.755525][T10239] RSP: 002b:00007fff97770898 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 374.755550][T10239] RAX: ffffffffffffffda RBX: 000000000005b726 RCX: 00007f2ba738f7c9 [ 374.755567][T10239] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2ba75e609c [ 374.755583][T10239] RBP: 0000000000000032 R08: 00007f2ba81bc000 R09: 0000001b97770b8f [ 374.755599][T10239] R10: 00007fff97770990 R11: 0000000000000246 R12: 00007f2ba75e609c [ 374.755614][T10239] R13: 00007fff97770990 R14: 000000000005b758 R15: 00007fff977709b0 [ 374.755647][T10239] [ 375.879360][T10248] netlink: 322 bytes leftover after parsing attributes in process `syz.1.893'. [ 376.196937][T10253] random: crng reseeded on system resumption [ 376.260540][T10253] hub 1-0:1.0: USB hub found [ 376.279895][T10253] hub 1-0:1.0: 1 port detected [ 379.039230][T10307] FAULT_INJECTION: forcing a failure. [ 379.039230][T10307] name failslab, interval 1, probability 0, space 0, times 0 [ 379.167173][T10307] CPU: 1 UID: 0 PID: 10307 Comm: syz.3.904 Tainted: G L syzkaller #0 PREEMPT(full) [ 379.167230][T10307] Tainted: [L]=SOFTLOCKUP [ 379.167242][T10307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 379.167270][T10307] Call Trace: [ 379.167281][T10307] [ 379.167293][T10307] dump_stack_lvl+0x16c/0x1f0 [ 379.167347][T10307] should_fail_ex+0x512/0x640 [ 379.167380][T10307] ? __kmalloc_cache_noprof+0x5f/0x800 [ 379.167413][T10307] should_failslab+0xc2/0x120 [ 379.167455][T10307] __kmalloc_cache_noprof+0x80/0x800 [ 379.167484][T10307] ? binder_get_thread+0x225/0x8c0 [ 379.167529][T10307] ? binder_get_thread+0x225/0x8c0 [ 379.167560][T10307] ? __pfx_binder_poll+0x10/0x10 [ 379.167592][T10307] binder_get_thread+0x225/0x8c0 [ 379.167629][T10307] ? __pfx_binder_poll+0x10/0x10 [ 379.167662][T10307] binder_poll+0x3f/0x400 [ 379.167695][T10307] ? __pfx_binder_poll+0x10/0x10 [ 379.167726][T10307] do_select+0xd3d/0x17e0 [ 379.167788][T10307] ? __pfx_do_select+0x10/0x10 [ 379.167828][T10307] ? __pfx___pollwait+0x10/0x10 [ 379.167917][T10307] ? find_held_lock+0x2b/0x80 [ 379.167951][T10307] ? __might_fault+0xe3/0x190 [ 379.167979][T10307] ? __might_fault+0xe3/0x190 [ 379.168008][T10307] ? __might_fault+0x13b/0x190 [ 379.168049][T10307] ? core_sys_select+0x453/0xc20 [ 379.168083][T10307] core_sys_select+0x453/0xc20 [ 379.168130][T10307] ? __pfx_core_sys_select+0x10/0x10 [ 379.168177][T10307] ? futex_wait+0x120/0x380 [ 379.168257][T10307] ? __pfx_do_futex+0x10/0x10 [ 379.168293][T10307] ? __sys_connect+0xe0/0x160 [ 379.168325][T10307] kern_select+0x15d/0x1e0 [ 379.168362][T10307] ? __pfx_kern_select+0x10/0x10 [ 379.168407][T10307] ? __pfx_ksys_write+0x10/0x10 [ 379.168454][T10307] __x64_sys_select+0xbd/0x160 [ 379.168497][T10307] ? do_syscall_64+0x91/0xf80 [ 379.168545][T10307] ? lockdep_hardirqs_on+0x7c/0x110 [ 379.168600][T10307] do_syscall_64+0xcd/0xf80 [ 379.168656][T10307] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 379.168689][T10307] RIP: 0033:0x7fbbd1b8f7c9 [ 379.168714][T10307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 379.168746][T10307] RSP: 002b:00007fbbd29b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 379.168776][T10307] RAX: ffffffffffffffda RBX: 00007fbbd1de6090 RCX: 00007fbbd1b8f7c9 [ 379.168798][T10307] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000008 [ 379.168816][T10307] RBP: 00007fbbd1c13f91 R08: 0000000000000000 R09: 0000000000000000 [ 379.168835][T10307] R10: 0000200000000200 R11: 0000000000000246 R12: 0000000000000000 [ 379.168855][T10307] R13: 00007fbbd1de6128 R14: 00007fbbd1de6090 R15: 00007ffd0e87c348 [ 379.168897][T10307] [ 379.745759][T10312] netlink: zone id is out of range [ 379.853354][T10312] netlink: set zone limit has 8 unknown bytes [ 380.973822][T10324] zswap: compressor not available [ 381.051051][ T52] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 381.051095][ T52] Bluetooth: hci3: unexpected subevent 0x0e length: 725 > 15 [ 381.066066][ T52] Bluetooth: hci3: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 381.481591][T10358] random: crng reseeded on system resumption [ 381.652063][T10360] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input20 [ 381.937485][T10362] netlink: 330 bytes leftover after parsing attributes in process `syz.3.918'. [ 382.588544][T10375] netlink: 776 bytes leftover after parsing attributes in process `syz.3.920'. [ 382.759067][T10383] ima: policy update failed [ 382.796668][ T31] audit: type=1802 audit(1767047635.722:18): pid=10383 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.922" res=0 errno=0 [ 382.822295][T10383] netlink: 25 bytes leftover after parsing attributes in process `syz.1.922'. [ 383.147651][T10393] FAULT_INJECTION: forcing a failure. [ 383.147651][T10393] name failslab, interval 1, probability 0, space 0, times 0 [ 383.269147][T10393] CPU: 1 UID: 0 PID: 10393 Comm: syz.2.923 Tainted: G L syzkaller #0 PREEMPT(full) [ 383.269185][T10393] Tainted: [L]=SOFTLOCKUP [ 383.269193][T10393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 383.269207][T10393] Call Trace: [ 383.269214][T10393] [ 383.269224][T10393] dump_stack_lvl+0x16c/0x1f0 [ 383.269296][T10393] should_fail_ex+0x512/0x640 [ 383.269343][T10393] should_failslab+0xc2/0x120 [ 383.269382][T10393] __kmalloc_cache_noprof+0x80/0x800 [ 383.269410][T10393] ? bdi_split_work_to_wbs+0x1c1/0xfc0 [ 383.269456][T10393] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 383.269495][T10393] ? bdi_split_work_to_wbs+0x1c1/0xfc0 [ 383.269532][T10393] bdi_split_work_to_wbs+0x1c1/0xfc0 [ 383.269577][T10393] ? __pfx_bdi_split_work_to_wbs+0x10/0x10 [ 383.269616][T10393] ? __pfx_down_write+0x10/0x10 [ 383.269646][T10393] sync_inodes_sb+0x1df/0xc10 [ 383.269680][T10393] ? __pfx_sync_inodes_sb+0x10/0x10 [ 383.269722][T10393] ? get_nr_dirty_inodes+0x170/0x1e0 [ 383.269755][T10393] sync_filesystem+0x177/0x290 [ 383.269778][T10393] ? __pfx_fs_bdev_sync+0x10/0x10 [ 383.269814][T10393] fs_bdev_sync+0x2c/0x40 [ 383.269844][T10393] blkdev_common_ioctl+0x2250/0x2b80 [ 383.269880][T10393] ? __pfx_blkdev_common_ioctl+0x10/0x10 [ 383.269916][T10393] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 383.269954][T10393] ? do_vfs_ioctl+0x128/0x14f0 [ 383.269983][T10393] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 383.270020][T10393] ? find_held_lock+0x2b/0x80 [ 383.270056][T10393] blkdev_ioctl+0x2b5/0x6e0 [ 383.270085][T10393] ? __pfx_blkdev_ioctl+0x10/0x10 [ 383.270118][T10393] ? __pfx_blkdev_ioctl+0x10/0x10 [ 383.270147][T10393] __x64_sys_ioctl+0x18e/0x210 [ 383.270179][T10393] do_syscall_64+0xcd/0xf80 [ 383.270216][T10393] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 383.270240][T10393] RIP: 0033:0x7f5d1c58f7c9 [ 383.270259][T10393] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 383.270282][T10393] RSP: 002b:00007f5d1d3c9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 383.270304][T10393] RAX: ffffffffffffffda RBX: 00007f5d1c7e6270 RCX: 00007f5d1c58f7c9 [ 383.270320][T10393] RDX: 0000000000000000 RSI: 0000000000001261 RDI: 0000000000000009 [ 383.270334][T10393] RBP: 00007f5d1c613f91 R08: 0000000000000000 R09: 0000000000000000 [ 383.270349][T10393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 383.270363][T10393] R13: 00007f5d1c7e6308 R14: 00007f5d1c7e6270 R15: 00007fff08988b18 [ 383.270394][T10393] [ 384.143501][T10410] netlink: zone id is out of range [ 384.184316][T10410] netlink: zone id is out of range [ 384.207834][T10410] netlink: zone id is out of range [ 384.230582][T10410] netlink: zone id is out of range [ 384.277316][T10410] netlink: zone id is out of range [ 384.339911][T10410] netlink: zone id is out of range [ 384.345082][T10410] netlink: zone id is out of range [ 384.400114][T10410] netlink: zone id is out of range [ 384.487900][T10415] futex_wake_op: syz.1.928 tries to shift op by -2048; fix this program [ 384.548885][T10416] futex_wake_op: syz.1.928 tries to shift op by -2048; fix this program [ 384.558404][T10415] futex_wake_op: syz.1.928 tries to shift op by -2048; fix this program [ 384.609159][T10416] futex_wake_op: syz.1.928 tries to shift op by -2048; fix this program [ 384.619009][T10415] 0x000000000001-0x000000020000 : "" [ 384.694949][T10415] ftl_cs: FTL header corrupt! [ 385.762393][T10433] [U] [ 385.765284][T10433] [U] [ 385.768036][T10433] [U] [ 385.770791][T10433] [U] [ 385.774038][T10433] [U] [ 385.776818][T10433] [U] [ 385.779583][T10433] [U] [ 385.782349][T10433] [U] [ 385.787264][T10433] [U] [ 385.790040][T10433] [U] [ 385.792795][T10433] [U] [ 385.795562][T10433] [U] [ 385.800052][T10433] [U] [ 385.802814][T10433] [U] [ 385.805565][T10433] [U] [ 385.808302][T10433] [U] [ 385.811894][T10433] [U] [ 385.814760][T10433] [U] [ 385.817515][T10433] [U] [ 385.820261][T10433] [U] [ 385.824481][T10433] [U] [ 385.827245][T10433] [U] [ 385.829994][T10433] [U] [ 385.832731][T10433] [U] [ 385.836308][T10433] [U] [ 385.839088][T10433] [U] [ 385.841854][T10433] [U] [ 385.844638][T10433] [U] [ 385.848682][T10433] [U] [ 385.851449][T10433] [U] [ 385.854205][T10433] [U] [ 385.856954][T10433] [U] [ 386.651391][T10441] bond0: option all_slaves_active: invalid value () [ 389.077679][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 389.084165][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 389.880732][T10491] netlink: 'syz.3.941': attribute type 4 has an invalid length. [ 389.902391][T10491] netlink: 314 bytes leftover after parsing attributes in process `syz.3.941'. [ 390.993039][ T52] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 391.699411][T10439] [U] [ 392.875137][T10529] syz.3.948 (10529): /proc/10522/oom_adj is deprecated, please use /proc/10522/oom_score_adj instead. [ 394.488648][T10541] FAULT_INJECTION: forcing a failure. [ 394.488648][T10541] name failslab, interval 1, probability 0, space 0, times 0 [ 394.548276][T10541] CPU: 0 UID: 0 PID: 10541 Comm: syz.3.953 Tainted: G L syzkaller #0 PREEMPT(full) [ 394.548324][T10541] Tainted: [L]=SOFTLOCKUP [ 394.548332][T10541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 394.548346][T10541] Call Trace: [ 394.548354][T10541] [ 394.548364][T10541] dump_stack_lvl+0x16c/0x1f0 [ 394.548405][T10541] should_fail_ex+0x512/0x640 [ 394.548432][T10541] ? kmem_cache_alloc_noprof+0x62/0x770 [ 394.548465][T10541] should_failslab+0xc2/0x120 [ 394.548502][T10541] kmem_cache_alloc_noprof+0x83/0x770 [ 394.548531][T10541] ? __proc_create+0x2c8/0x8d0 [ 394.548568][T10541] ? __proc_create+0x2c8/0x8d0 [ 394.548601][T10541] __proc_create+0x2c8/0x8d0 [ 394.548634][T10541] ? __pfx___proc_create+0x10/0x10 [ 394.548669][T10541] ? _raw_write_unlock+0x28/0x50 [ 394.548703][T10541] ? proc_register+0x559/0x8b0 [ 394.548752][T10541] proc_create_reg+0x7d/0x180 [ 394.548784][T10541] ? __pfx_sctp_snmp_seq_show+0x10/0x10 [ 394.548818][T10541] proc_create_net_single+0x86/0x180 [ 394.548856][T10541] ? __pfx_proc_create_net_single+0x10/0x10 [ 394.548898][T10541] sctp_proc_init+0xaa/0x270 [ 394.548932][T10541] ? __pfx_sctp_defaults_init+0x10/0x10 [ 394.548967][T10541] sctp_defaults_init+0x758/0xd90 [ 394.549002][T10541] ? __pfx_sctp_defaults_init+0x10/0x10 [ 394.549037][T10541] ops_init+0x1e2/0x5f0 [ 394.549071][T10541] setup_net+0x11d/0x3a0 [ 394.549102][T10541] ? __pfx_setup_net+0x10/0x10 [ 394.549131][T10541] ? lockdep_init_map_type+0x5c/0x270 [ 394.549156][T10541] ? mutex_init_lockep+0x110/0x150 [ 394.549183][T10541] copy_net_ns+0x351/0x7c0 [ 394.549220][T10541] create_new_namespaces+0x3ea/0xab0 [ 394.549258][T10541] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 394.549293][T10541] ksys_unshare+0x45b/0xa40 [ 394.549369][T10541] ? __pfx_ksys_unshare+0x10/0x10 [ 394.549426][T10541] ? xfd_validate_state+0x61/0x180 [ 394.549456][T10541] __x64_sys_unshare+0x31/0x40 [ 394.549476][T10541] do_syscall_64+0xcd/0xf80 [ 394.549514][T10541] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 394.549538][T10541] RIP: 0033:0x7fbbd1b8f7c9 [ 394.549556][T10541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 394.549579][T10541] RSP: 002b:00007fbbd29d8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 394.549600][T10541] RAX: ffffffffffffffda RBX: 00007fbbd1de5fa0 RCX: 00007fbbd1b8f7c9 [ 394.549616][T10541] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 394.549631][T10541] RBP: 00007fbbd1c13f91 R08: 0000000000000000 R09: 0000000000000000 [ 394.549645][T10541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 394.549659][T10541] R13: 00007fbbd1de6038 R14: 00007fbbd1de5fa0 R15: 00007ffd0e87c348 [ 394.549690][T10541] [ 395.201858][T10556] FAULT_INJECTION: forcing a failure. [ 395.201858][T10556] name fail_futex, interval 1, probability 0, space 0, times 0 [ 395.235496][T10556] CPU: 1 UID: 0 PID: 10556 Comm: syz.3.955 Tainted: G L syzkaller #0 PREEMPT(full) [ 395.235531][T10556] Tainted: [L]=SOFTLOCKUP [ 395.235538][T10556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 395.235550][T10556] Call Trace: [ 395.235557][T10556] [ 395.235565][T10556] dump_stack_lvl+0x16c/0x1f0 [ 395.235605][T10556] should_fail_ex+0x512/0x640 [ 395.235633][T10556] get_futex_key+0x1d0/0x15f0 [ 395.235660][T10556] ? __pfx_get_futex_key+0x10/0x10 [ 395.235692][T10556] futex_wake+0xea/0x530 [ 395.235725][T10556] ? futex_wait+0x120/0x380 [ 395.235757][T10556] ? __pfx_futex_wait+0x10/0x10 [ 395.235788][T10556] ? __pfx_futex_wake+0x10/0x10 [ 395.235822][T10556] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 395.235859][T10556] ? is_valid_madvise+0x34/0xd0 [ 395.235910][T10556] do_futex+0x1e3/0x350 [ 395.235936][T10556] ? __pfx_do_futex+0x10/0x10 [ 395.235968][T10556] __x64_sys_futex+0x1e0/0x4c0 [ 395.235998][T10556] ? __pfx___x64_sys_futex+0x10/0x10 [ 395.236024][T10556] ? xfd_validate_state+0x61/0x180 [ 395.236053][T10556] do_syscall_64+0xcd/0xf80 [ 395.236088][T10556] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 395.236111][T10556] RIP: 0033:0x7fbbd1b8f7c9 [ 395.236128][T10556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 395.236149][T10556] RSP: 002b:00007fbbd29960e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 395.236170][T10556] RAX: ffffffffffffffda RBX: 00007fbbd1de6188 RCX: 00007fbbd1b8f7c9 [ 395.236185][T10556] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbbd1de618c [ 395.236199][T10556] RBP: 00007fbbd1de6180 R08: 00007fbbd29d9000 R09: 0000000000000000 [ 395.236213][T10556] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 395.236226][T10556] R13: 00007fbbd1de6218 R14: 00007ffd0e87c260 R15: 00007ffd0e87c348 [ 395.236255][T10556] [ 397.301930][T10597] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size [ 397.902780][T10609] zswap: compressor not available [ 398.395283][T10623] netlink: 8 bytes leftover after parsing attributes in process `syz.3.967'. [ 399.179195][T10625] random: crng reseeded on system resumption [ 399.399532][ T6517] Process accounting resumed [ 399.788518][T10639] Invalid ELF header magic: != ELF [ 400.175129][T10645] netlink: 326 bytes leftover after parsing attributes in process `syz.0.972'. [ 400.202566][ T31] audit: type=1804 audit(1767047653.124:19): pid=10645 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.972" name="/newroot/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw" dev="tracefs" ino=1209 res=1 errno=0 [ 400.469339][T10653] random: crng reseeded on system resumption [ 400.581970][ T31] audit: type=1800 audit(1767047653.494:20): pid=10658 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm=050820 name="lu_gp_id" dev="configfs" ino=34232 res=0 errno=0 [ 401.639683][ T31] audit: type=1800 audit(1767047654.563:21): pid=10673 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.978" name="sr0" dev="devtmpfs" ino=2928 res=0 errno=0 [ 402.442127][T10697] ptrace attach of "./syz-executor exec"[5830] was attempted by ""[10697] [ 403.177114][T10699] nvme_fcloop: unknown parameter or missing value '7' [ 406.064194][T10733] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 407.035972][T10752] random: crng reseeded on system resumption [ 408.293653][T10772] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE r҄y*"l-y– [ 410.606396][T10810] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1006'. [ 410.620873][T10810] netlink: 354 bytes leftover after parsing attributes in process `syz.2.1006'. [ 411.750857][T10833] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1010'. [ 411.819849][T10824] zswap: compressor not available [ 412.639293][T10839] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1011'. [ 413.382841][T10852] binder: 10848:10852 ioctl c018620c 0 returned -22 [ 413.994090][T10851] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 414.001857][T10851] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 414.008033][T10851] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 414.026404][T10851] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 415.407229][ T5834] Bluetooth: hci1: command 0x0406 tx timeout [ 415.850813][T10896] blktrace: Concurrent blktraces are not allowed on nbd8 [ 416.044073][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout [ 416.044097][ T52] Bluetooth: hci0: command 0x0406 tx timeout [ 416.044138][ T5842] Bluetooth: hci2: command 0x2016 tx timeout [ 416.178701][T10904] net_ratelimit: 49 callbacks suppressed [ 416.178730][T10904] openvswitch: netlink: IPv6 tunnel dst address is zero [ 417.105478][T10901] random: crng reseeded on system resumption [ 418.725709][T10950] blktrace: Concurrent blktraces are not allowed on loop2 [ 419.153955][T10950] GUP no longer grows the stack in syz.2.1035 (10950): 14000-18000 (4000) [ 419.165679][T10950] CPU: 1 UID: 0 PID: 10950 Comm: syz.2.1035 Tainted: G L syzkaller #0 PREEMPT(full) [ 419.165728][T10950] Tainted: [L]=SOFTLOCKUP [ 419.165739][T10950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 419.165759][T10950] Call Trace: [ 419.165770][T10950] [ 419.165783][T10950] dump_stack_lvl+0x16c/0x1f0 [ 419.165838][T10950] gup_vma_lookup+0x1d2/0x220 [ 419.165888][T10950] __get_user_pages+0x241/0x3590 [ 419.165932][T10950] ? find_held_lock+0x2b/0x80 [ 419.165963][T10950] ? __pfx___get_user_pages+0x10/0x10 [ 419.166006][T10950] get_user_pages_remote+0x243/0xab0 [ 419.166047][T10950] ? __pfx_get_user_pages_remote+0x10/0x10 [ 419.166084][T10950] ? __pfx___might_resched+0x10/0x10 [ 419.166117][T10950] ? noop_dirty_folio+0x5e/0xb0 [ 419.166152][T10950] __access_remote_vm+0x24d/0x850 [ 419.166190][T10950] ? __pfx___access_remote_vm+0x10/0x10 [ 419.166230][T10950] mem_rw+0x20e/0x640 [ 419.166267][T10950] ? __pfx_mem_write+0x10/0x10 [ 419.166300][T10950] vfs_write+0x2a0/0x11d0 [ 419.166334][T10950] ? __pfx___mutex_lock+0x10/0x10 [ 419.166373][T10950] ? __pfx_vfs_write+0x10/0x10 [ 419.166413][T10950] ? __fget_files+0x20e/0x3c0 [ 419.166453][T10950] ksys_write+0x12a/0x250 [ 419.166486][T10950] ? __pfx_ksys_write+0x10/0x10 [ 419.166527][T10950] do_syscall_64+0xcd/0xf80 [ 419.166563][T10950] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 419.166594][T10950] RIP: 0033:0x7f5d1c58f7c9 [ 419.166612][T10950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 419.166635][T10950] RSP: 002b:00007f5d1d40b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 419.166656][T10950] RAX: ffffffffffffffda RBX: 00007f5d1c7e6090 RCX: 00007f5d1c58f7c9 [ 419.166671][T10950] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003 [ 419.166685][T10950] RBP: 00007f5d1c613f91 R08: 0000000000000000 R09: 0000000000000000 [ 419.166698][T10950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 419.166712][T10950] R13: 00007f5d1c7e6128 R14: 00007f5d1c7e6090 R15: 00007fff08988b18 [ 419.166742][T10950] [ 420.134940][T10961] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #264: comm syz.1.1038: No space for directory leaf checksum. Please run e2fsck -D. [ 420.159363][T10961] EXT4-fs error (device sda1): __ext4_find_entry:1624: inode #264: comm syz.1.1038: checksumming directory block 0 [ 420.209839][T10961] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 420.239944][T10961] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #264: comm syz.1.1038: No space for directory leaf checksum. Please run e2fsck -D. [ 420.300356][T10961] EXT4-fs error (device sda1): __ext4_find_entry:1624: inode #264: comm syz.1.1038: checksumming directory block 0 [ 420.346968][T10961] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 420.357589][T10961] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #264: comm syz.1.1038: No space for directory leaf checksum. Please run e2fsck -D. [ 420.399782][T10961] EXT4-fs error (device sda1): __ext4_find_entry:1624: inode #264: comm syz.1.1038: checksumming directory block 0 [ 420.417787][T10961] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 420.429848][T10961] EXT4-fs warning (device sda1): ext4_dirblock_csum_verify:375: inode #264: comm syz.1.1038: No space for directory leaf checksum. Please run e2fsck -D. [ 420.446343][T10961] EXT4-fs error (device sda1): __ext4_find_entry:1624: inode #264: comm syz.1.1038: checksumming directory block 0 [ 420.485243][T10961] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 420.528886][T10961] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 420.556566][T10970] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 420.568181][T10961] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 421.177526][T10978] netlink: 'syz.0.1042': attribute type 1 has an invalid length. [ 422.561031][T10988] input: jJǸ-9%vJ86 as /devices/virtual/input/input22 [ 423.998941][T11017] FAULT_INJECTION: forcing a failure. [ 423.998941][T11017] name failslab, interval 1, probability 0, space 0, times 0 [ 424.015866][T11017] CPU: 0 UID: 0 PID: 11017 Comm: syz.2.1050 Tainted: G L syzkaller #0 PREEMPT(full) [ 424.015917][T11017] Tainted: [L]=SOFTLOCKUP [ 424.015925][T11017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 424.015939][T11017] Call Trace: [ 424.015947][T11017] [ 424.015956][T11017] dump_stack_lvl+0x16c/0x1f0 [ 424.015996][T11017] should_fail_ex+0x512/0x640 [ 424.016022][T11017] ? kmem_cache_alloc_noprof+0x62/0x770 [ 424.016055][T11017] should_failslab+0xc2/0x120 [ 424.016092][T11017] kmem_cache_alloc_noprof+0x83/0x770 [ 424.016121][T11017] ? alloc_empty_file+0x55/0x1e0 [ 424.016151][T11017] ? alloc_empty_file+0x55/0x1e0 [ 424.016175][T11017] alloc_empty_file+0x55/0x1e0 [ 424.016201][T11017] alloc_file_pseudo+0x13a/0x230 [ 424.016228][T11017] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 424.016257][T11017] ? do_raw_spin_unlock+0x172/0x230 [ 424.016289][T11017] __anon_inode_getfile+0xe8/0x280 [ 424.016317][T11017] anon_inode_getfile_fmode+0x37/0xa0 [ 424.016343][T11017] __do_sys_timerfd_create+0x2fd/0x4e0 [ 424.016380][T11017] do_syscall_64+0xcd/0xf80 [ 424.016418][T11017] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 424.016443][T11017] RIP: 0033:0x7f5d1c58f7c9 [ 424.016461][T11017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 424.016484][T11017] RSP: 002b:00007f5d1d42c038 EFLAGS: 00000246 ORIG_RAX: 000000000000011b [ 424.016507][T11017] RAX: ffffffffffffffda RBX: 00007f5d1c7e5fa0 RCX: 00007f5d1c58f7c9 [ 424.016523][T11017] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000009 [ 424.016537][T11017] RBP: 00007f5d1c613f91 R08: 0000000000000000 R09: 0000000000000000 [ 424.016556][T11017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 424.016570][T11017] R13: 00007f5d1c7e6038 R14: 00007f5d1c7e5fa0 R15: 00007fff08988b18 [ 424.016601][T11017] [ 428.173934][T11081] random: crng reseeded on system resumption [ 428.301482][T11082] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1061'. [ 429.240717][T11101] FAULT_INJECTION: forcing a failure. [ 429.240717][T11101] name fail_futex, interval 1, probability 0, space 0, times 0 [ 429.254172][T11101] CPU: 1 UID: 0 PID: 11101 Comm: syz.0.1064 Tainted: G L syzkaller #0 PREEMPT(full) [ 429.254218][T11101] Tainted: [L]=SOFTLOCKUP [ 429.254230][T11101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 429.254248][T11101] Call Trace: [ 429.254258][T11101] [ 429.254270][T11101] dump_stack_lvl+0x16c/0x1f0 [ 429.254320][T11101] should_fail_ex+0x512/0x640 [ 429.254361][T11101] get_futex_key+0x1d0/0x15f0 [ 429.254400][T11101] ? __pfx_get_futex_key+0x10/0x10 [ 429.254447][T11101] futex_wake+0xea/0x530 [ 429.254493][T11101] ? __pfx_futex_wake+0x10/0x10 [ 429.254553][T11101] do_futex+0x1e3/0x350 [ 429.254588][T11101] ? __pfx_do_futex+0x10/0x10 [ 429.254621][T11101] ? __might_fault+0xe3/0x190 [ 429.254668][T11101] mm_release+0x24e/0x300 [ 429.254710][T11101] do_exit+0x69e/0x2bd0 [ 429.254748][T11101] ? __pfx_do_exit+0x10/0x10 [ 429.254777][T11101] ? do_raw_spin_lock+0x12c/0x2b0 [ 429.254812][T11101] ? find_held_lock+0x2b/0x80 [ 429.254859][T11101] do_group_exit+0xd3/0x2a0 [ 429.254899][T11101] get_signal+0x2671/0x26d0 [ 429.254952][T11101] ? kasan_quarantine_put+0x10a/0x240 [ 429.254996][T11101] ? __pfx_get_signal+0x10/0x10 [ 429.255041][T11101] ? do_futex+0x122/0x350 [ 429.255088][T11101] arch_do_signal_or_restart+0x8f/0x7a0 [ 429.255133][T11101] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 429.255188][T11101] ? fdget_pos+0x2b8/0x370 [ 429.255233][T11101] ? __pfx___x64_sys_futex+0x10/0x10 [ 429.255276][T11101] exit_to_user_mode_loop+0x8c/0x540 [ 429.255319][T11101] do_syscall_64+0x4ee/0xf80 [ 429.255369][T11101] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 429.255400][T11101] RIP: 0033:0x7f2ba738f7c9 [ 429.255424][T11101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 429.255454][T11101] RSP: 002b:00007f2ba81790e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 429.255482][T11101] RAX: fffffffffffffe00 RBX: 00007f2ba75e6188 RCX: 00007f2ba738f7c9 [ 429.255503][T11101] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2ba75e6188 [ 429.255522][T11101] RBP: 00007f2ba75e6180 R08: 0000000000000000 R09: 0000000000000000 [ 429.255540][T11101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 429.255558][T11101] R13: 00007f2ba75e6218 R14: 00007fff97770650 R15: 00007fff97770738 [ 429.255599][T11101] [ 429.852904][T11104] FAULT_INJECTION: forcing a failure. [ 429.852904][T11104] name failslab, interval 1, probability 0, space 0, times 0 [ 429.877690][T11104] CPU: 0 UID: 0 PID: 11104 Comm: syz.2.1066 Tainted: G L syzkaller #0 PREEMPT(full) [ 429.877740][T11104] Tainted: [L]=SOFTLOCKUP [ 429.877752][T11104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 429.877770][T11104] Call Trace: [ 429.877780][T11104] [ 429.877792][T11104] dump_stack_lvl+0x16c/0x1f0 [ 429.877843][T11104] should_fail_ex+0x512/0x640 [ 429.877879][T11104] ? kmem_cache_alloc_noprof+0x62/0x770 [ 429.877922][T11104] should_failslab+0xc2/0x120 [ 429.877972][T11104] kmem_cache_alloc_noprof+0x83/0x770 [ 429.878009][T11104] ? getname_flags.part.0+0x4c/0x550 [ 429.878053][T11104] ? getname_flags.part.0+0x4c/0x550 [ 429.878087][T11104] getname_flags.part.0+0x4c/0x550 [ 429.878128][T11104] getname_flags+0x93/0xf0 [ 429.878172][T11104] do_sys_openat2+0xb9/0x290 [ 429.878209][T11104] ? __pfx_do_sys_openat2+0x10/0x10 [ 429.878261][T11104] __x64_sys_openat+0x174/0x210 [ 429.878299][T11104] ? __pfx___x64_sys_openat+0x10/0x10 [ 429.878339][T11104] ? syscall_user_dispatch+0x78/0x140 [ 429.878391][T11104] do_syscall_64+0xcd/0xf80 [ 429.878440][T11104] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 429.878471][T11104] RIP: 0033:0x7f5d1c58f7c9 [ 429.878495][T11104] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 429.878525][T11104] RSP: 002b:00007f5d1d42c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 429.878556][T11104] RAX: ffffffffffffffda RBX: 00007f5d1c7e5fa0 RCX: 00007f5d1c58f7c9 [ 429.878576][T11104] RDX: 0000000000101202 RSI: 0000000000000000 RDI: ffffffffffffff9c [ 429.878606][T11104] RBP: 00007f5d1c613f91 R08: 0000000000000000 R09: 0000000000000000 [ 429.878625][T11104] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 429.878650][T11104] R13: 00007f5d1c7e6038 R14: 00007f5d1c7e5fa0 R15: 00007fff08988b18 [ 429.878690][T11104] [ 434.670600][T11162] FAULT_INJECTION: forcing a failure. [ 434.670600][T11162] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 434.684512][T11162] CPU: 1 UID: 0 PID: 11162 Comm: syz.2.1077 Tainted: G L syzkaller #0 PREEMPT(full) [ 434.684563][T11162] Tainted: [L]=SOFTLOCKUP [ 434.684575][T11162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 434.684594][T11162] Call Trace: [ 434.684604][T11162] [ 434.684616][T11162] dump_stack_lvl+0x16c/0x1f0 [ 434.684672][T11162] should_fail_ex+0x512/0x640 [ 434.684716][T11162] should_fail_alloc_page+0xe7/0x130 [ 434.684772][T11162] prepare_alloc_pages+0x401/0x670 [ 434.684833][T11162] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 434.684875][T11162] ? should_fail_alloc_page+0xee/0x130 [ 434.684930][T11162] ? rcu_is_watching+0x12/0xc0 [ 434.684978][T11162] ? trace_mm_page_alloc+0x11b/0x180 [ 434.685028][T11162] ? __alloc_frozen_pages_noprof+0x292/0x2430 [ 434.685070][T11162] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 434.685116][T11162] ? lockdep_hardirqs_on+0x7c/0x110 [ 434.685167][T11162] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 434.685208][T11162] ? stack_depot_save_flags+0x3de/0x9b0 [ 434.685269][T11162] ? alloc_vmap_area+0x66f/0x2a50 [ 434.685317][T11162] ? __vmalloc_node_range_noprof+0x247/0x16b0 [ 434.685350][T11162] ? __vmalloc_noprof+0xa3/0x120 [ 434.685380][T11162] ? bpf_prog_alloc_no_stats+0x58/0x600 [ 434.685421][T11162] ? bpf_prog_alloc+0x3b/0x230 [ 434.685458][T11162] ? bpf_prog_load+0x19bc/0x2cc0 [ 434.685506][T11162] ? __sys_bpf+0x3e72/0x4980 [ 434.685532][T11162] ? __x64_sys_bpf+0x78/0xc0 [ 434.685560][T11162] ? do_syscall_64+0xcd/0xf80 [ 434.685622][T11162] alloc_pages_bulk_noprof+0x77a/0x1410 [ 434.685663][T11162] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 434.685716][T11162] ? policy_nodemask+0xea/0x4e0 [ 434.685771][T11162] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 434.685815][T11162] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 434.685882][T11162] __kasan_populate_vmalloc+0xfb/0x220 [ 434.685935][T11162] alloc_vmap_area+0x98d/0x2a50 [ 434.686001][T11162] ? __pfx_alloc_vmap_area+0x10/0x10 [ 434.686062][T11162] __get_vm_area_node+0x1ca/0x330 [ 434.686123][T11162] __vmalloc_node_range_noprof+0x247/0x16b0 [ 434.686158][T11162] ? bpf_prog_alloc_no_stats+0x58/0x600 [ 434.686199][T11162] ? finish_task_switch.isra.0+0x202/0xbd0 [ 434.686258][T11162] ? rcu_is_watching+0x12/0xc0 [ 434.686305][T11162] ? finish_task_switch.isra.0+0x207/0xbd0 [ 434.686356][T11162] ? bpf_prog_alloc_no_stats+0x58/0x600 [ 434.686401][T11162] ? trace_sched_exit_tp+0xd1/0x110 [ 434.686455][T11162] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 434.686507][T11162] ? bpf_prog_alloc_no_stats+0x58/0x600 [ 434.686550][T11162] __vmalloc_node_noprof+0xad/0xf0 [ 434.686581][T11162] ? bpf_prog_alloc_no_stats+0x58/0x600 [ 434.686640][T11162] __vmalloc_noprof+0xa3/0x120 [ 434.686671][T11162] ? __pfx___vmalloc_noprof+0x10/0x10 [ 434.686700][T11162] ? lockdep_hardirqs_on+0x7c/0x110 [ 434.686747][T11162] ? irqentry_exit+0x1dd/0x8c0 [ 434.686797][T11162] ? apparmor_capable+0x1d7/0x4e0 [ 434.686833][T11162] bpf_prog_alloc_no_stats+0x58/0x600 [ 434.686872][T11162] ? security_capable+0x7e/0x260 [ 434.686927][T11162] bpf_prog_alloc+0x3b/0x230 [ 434.686965][T11162] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 434.687014][T11162] bpf_prog_load+0x19bc/0x2cc0 [ 434.687074][T11162] ? __pfx_bpf_prog_load+0x10/0x10 [ 434.687121][T11162] ? __lock_acquire+0x436/0x2890 [ 434.687188][T11162] ? bpf_lsm_bpf+0x9/0x10 [ 434.687240][T11162] __sys_bpf+0x3e72/0x4980 [ 434.687269][T11162] ? futex_private_hash_put+0x160/0x1b0 [ 434.687308][T11162] ? __pfx___sys_bpf+0x10/0x10 [ 434.687337][T11162] ? __pfx_futex_wait+0x10/0x10 [ 434.687404][T11162] ? do_futex+0x122/0x350 [ 434.687460][T11162] ? fput+0x70/0xf0 [ 434.687492][T11162] ? xfd_validate_state+0x61/0x180 [ 434.687520][T11162] ? __pfx_ksys_write+0x10/0x10 [ 434.687573][T11162] __x64_sys_bpf+0x78/0xc0 [ 434.687603][T11162] ? lockdep_hardirqs_on+0x7c/0x110 [ 434.687650][T11162] do_syscall_64+0xcd/0xf80 [ 434.687699][T11162] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 434.687731][T11162] RIP: 0033:0x7f5d1c58f7c9 [ 434.687756][T11162] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 434.687787][T11162] RSP: 002b:00007f5d1d42c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 434.687819][T11162] RAX: ffffffffffffffda RBX: 00007f5d1c7e5fa0 RCX: 00007f5d1c58f7c9 [ 434.687840][T11162] RDX: 000000000000000d RSI: 0000200000000080 RDI: 0000000000000005 [ 434.687859][T11162] RBP: 00007f5d1c613f91 R08: 0000000000000000 R09: 0000000000000000 [ 434.687879][T11162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 434.687898][T11162] R13: 00007f5d1c7e6038 R14: 00007f5d1c7e5fa0 R15: 00007fff08988b18 [ 434.687940][T11162] [ 434.688319][T11162] syz.2.1077: vmalloc error: size 303104, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 435.175209][T11162] CPU: 1 UID: 0 PID: 11162 Comm: syz.2.1077 Tainted: G L syzkaller #0 PREEMPT(full) [ 435.175258][T11162] Tainted: [L]=SOFTLOCKUP [ 435.175268][T11162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 435.175286][T11162] Call Trace: [ 435.175297][T11162] [ 435.175309][T11162] dump_stack_lvl+0x16c/0x1f0 [ 435.175359][T11162] warn_alloc+0x248/0x3a0 [ 435.175401][T11162] ? __pfx_warn_alloc+0x10/0x10 [ 435.175449][T11162] ? kfree+0x2f8/0x6e0 [ 435.175481][T11162] ? __get_vm_area_node+0x2cd/0x330 [ 435.175541][T11162] ? __get_vm_area_node+0x2cd/0x330 [ 435.175590][T11162] ? __get_vm_area_node+0x1dc/0x330 [ 435.175640][T11162] ? __get_vm_area_node+0x208/0x330 [ 435.175700][T11162] __vmalloc_node_range_noprof+0xbe0/0x16b0 [ 435.175739][T11162] ? rcu_is_watching+0x12/0xc0 [ 435.175785][T11162] ? finish_task_switch.isra.0+0x207/0xbd0 [ 435.175836][T11162] ? bpf_prog_alloc_no_stats+0x58/0x600 [ 435.175882][T11162] ? trace_sched_exit_tp+0xd1/0x110 [ 435.175937][T11162] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 435.175990][T11162] ? bpf_prog_alloc_no_stats+0x58/0x600 [ 435.176031][T11162] __vmalloc_node_noprof+0xad/0xf0 [ 435.176063][T11162] ? bpf_prog_alloc_no_stats+0x58/0x600 [ 435.176110][T11162] __vmalloc_noprof+0xa3/0x120 [ 435.176141][T11162] ? __pfx___vmalloc_noprof+0x10/0x10 [ 435.176172][T11162] ? lockdep_hardirqs_on+0x7c/0x110 [ 435.176221][T11162] ? irqentry_exit+0x1dd/0x8c0 [ 435.176273][T11162] ? apparmor_capable+0x1d7/0x4e0 [ 435.176311][T11162] bpf_prog_alloc_no_stats+0x58/0x600 [ 435.176352][T11162] ? security_capable+0x7e/0x260 [ 435.176415][T11162] bpf_prog_alloc+0x3b/0x230 [ 435.176453][T11162] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 435.176506][T11162] bpf_prog_load+0x19bc/0x2cc0 [ 435.176569][T11162] ? __pfx_bpf_prog_load+0x10/0x10 [ 435.176620][T11162] ? __lock_acquire+0x436/0x2890 [ 435.176689][T11162] ? bpf_lsm_bpf+0x9/0x10 [ 435.176735][T11162] __sys_bpf+0x3e72/0x4980 [ 435.176764][T11162] ? futex_private_hash_put+0x160/0x1b0 [ 435.176803][T11162] ? __pfx___sys_bpf+0x10/0x10 [ 435.176834][T11162] ? __pfx_futex_wait+0x10/0x10 [ 435.176901][T11162] ? do_futex+0x122/0x350 [ 435.176960][T11162] ? fput+0x70/0xf0 [ 435.176993][T11162] ? xfd_validate_state+0x61/0x180 [ 435.177022][T11162] ? __pfx_ksys_write+0x10/0x10 [ 435.177077][T11162] __x64_sys_bpf+0x78/0xc0 [ 435.177108][T11162] ? lockdep_hardirqs_on+0x7c/0x110 [ 435.177155][T11162] do_syscall_64+0xcd/0xf80 [ 435.177208][T11162] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 435.177241][T11162] RIP: 0033:0x7f5d1c58f7c9 [ 435.177267][T11162] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 435.177299][T11162] RSP: 002b:00007f5d1d42c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 435.177329][T11162] RAX: ffffffffffffffda RBX: 00007f5d1c7e5fa0 RCX: 00007f5d1c58f7c9 [ 435.177350][T11162] RDX: 000000000000000d RSI: 0000200000000080 RDI: 0000000000000005 [ 435.177370][T11162] RBP: 00007f5d1c613f91 R08: 0000000000000000 R09: 0000000000000000 [ 435.177391][T11162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 435.177416][T11162] R13: 00007f5d1c7e6038 R14: 00007f5d1c7e5fa0 R15: 00007fff08988b18 [ 435.177459][T11162] [ 435.177484][T11162] Mem-Info: [ 435.649960][T11162] active_anon:57620 inactive_anon:4 isolated_anon:0 [ 435.649960][T11162] active_file:11173 inactive_file:45926 isolated_file:0 [ 435.649960][T11162] unevictable:768 dirty:33 writeback:0 [ 435.649960][T11162] slab_reclaimable:11978 slab_unreclaimable:94948 [ 435.649960][T11162] mapped:42441 shmem:42978 pagetables:1325 [ 435.649960][T11162] sec_pagetables:0 bounce:0 [ 435.649960][T11162] kernel_misc_reclaimable:0 [ 435.649960][T11162] free:1267337 free_pcp:9624 free_cma:0 [ 435.769123][T11162] Node 0 active_anon:224480kB inactive_anon:16kB active_file:44692kB inactive_file:183572kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:169564kB dirty:132kB writeback:0kB shmem:164576kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12884kB pagetables:5168kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 435.889772][T11162] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:132kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 435.941304][T11162] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 435.977740][T11162] lowmem_reserve[]: 0 2481 2483 2483 2483 [ 435.984351][T11162] Node 0 DMA32 free:1159256kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB free_highatomic:0KB active_anon:212480kB inactive_anon:16kB active_file:44692kB inactive_file:183572kB unevictable:1536kB writepending:132kB zspages:0kB present:3129332kB managed:2541032kB mlocked:0kB bounce:0kB free_pcp:53088kB local_pcp:29316kB free_cma:0kB [ 436.018527][T11162] lowmem_reserve[]: 0 0 1 1 1 [ 436.023536][T11162] Node 0 Normal free:0kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 436.055875][T11162] lowmem_reserve[]: 0 0 0 0 0 [ 436.097482][T11162] Node 1 Normal free:3894732kB boost:0kB min:55784kB low:69728kB high:83672kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:3828kB local_pcp:0kB free_cma:0kB [ 436.130234][T11162] lowmem_reserve[]: 0 0 0 0 0 [ 436.161793][T11162] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 436.230025][T11162] Node 0 DMA32: 2521*4kB (UE) 1567*8kB (UE) 745*16kB (UME) 1*32kB (E) 561*64kB (UME) 560*128kB (UME) 261*256kB (UM) 94*512kB (UME) 43*1024kB (UM) 5*2048kB (UE) 207*4096kB (UM) = 1159244kB [ 436.250080][T11162] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 436.269850][T11162] Node 1 Normal: 210*4kB (UME) 53*8kB (UME) 47*16kB (UME) 215*32kB (UME) 105*64kB (UME) 36*128kB (UME) 11*256kB (UE) 4*512kB (UE) 3*1024kB (U) 2*2048kB (UE) 943*4096kB (M) = 3894784kB [ 436.295360][T11162] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 436.431382][T11162] Node 0 hugepages_total=4 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB [ 436.474766][T11162] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 436.486361][T11162] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB [ 436.499789][T11162] 97740 total pagecache pages [ 436.504529][T11162] 6 pages in swap cache [ 436.519891][T11162] Free swap = 122924kB [ 436.524111][T11162] Total swap = 124996kB [ 436.528299][T11162] 2097051 pages RAM [ 436.550137][T11162] 0 pages HighMem/MovableOnly [ 436.579665][T11162] 429767 pages reserved [ 436.590485][T11162] 0 pages cma reserved [ 436.971014][ T5842] Bluetooth: hci0: unexpected event 0x23 length: 127 > 13 [ 437.344506][T11170] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1078'. [ 438.825565][T11181] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 438.833349][T11181] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 438.847017][T11181] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 438.866587][T11181] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 438.893452][T11182] FAULT_INJECTION: forcing a failure. [ 438.893452][T11182] name failslab, interval 1, probability 0, space 0, times 0 [ 439.009897][T11182] CPU: 1 UID: 0 PID: 11182 Comm: syz.3.1079 Tainted: G L syzkaller #0 PREEMPT(full) [ 439.009947][T11182] Tainted: [L]=SOFTLOCKUP [ 439.009958][T11182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 439.009976][T11182] Call Trace: [ 439.009985][T11182] [ 439.009998][T11182] dump_stack_lvl+0x16c/0x1f0 [ 439.010054][T11182] should_fail_ex+0x512/0x640 [ 439.010091][T11182] ? __kmalloc_node_track_caller_noprof+0xcb/0x930 [ 439.010147][T11182] should_failslab+0xc2/0x120 [ 439.010196][T11182] __kmalloc_node_track_caller_noprof+0xec/0x930 [ 439.010245][T11182] ? kvasprintf_const+0x66/0x1a0 [ 439.010290][T11182] ? kvasprintf+0xbc/0x150 [ 439.010325][T11182] kvasprintf+0xbc/0x150 [ 439.010360][T11182] ? __pfx_kvasprintf+0x10/0x10 [ 439.010399][T11182] ? kfree+0x27d/0x6e0 [ 439.010433][T11182] ? mark_held_locks+0x49/0x80 [ 439.010470][T11182] kvasprintf_const+0x66/0x1a0 [ 439.010510][T11182] kobject_set_name_vargs+0x5a/0x140 [ 439.010545][T11182] dev_set_name+0xc7/0x100 [ 439.010594][T11182] ? __pfx_dev_set_name+0x10/0x10 [ 439.010665][T11182] nfc_allocate_device+0x206/0x5e0 [ 439.010721][T11182] nci_allocate_device+0x23b/0x460 [ 439.010777][T11182] virtual_ncidev_open+0x6f/0x220 [ 439.010830][T11182] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 439.010882][T11182] misc_open+0x26d/0x450 [ 439.010920][T11182] ? __pfx_misc_open+0x10/0x10 [ 439.010956][T11182] chrdev_open+0x234/0x6a0 [ 439.011014][T11182] ? __pfx_apparmor_file_open+0x10/0x10 [ 439.011056][T11182] ? __pfx_chrdev_open+0x10/0x10 [ 439.011108][T11182] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 439.011171][T11182] do_dentry_open+0x748/0x1590 [ 439.011218][T11182] ? __pfx_chrdev_open+0x10/0x10 [ 439.011292][T11182] vfs_open+0x82/0x3f0 [ 439.011333][T11182] path_openat+0x2078/0x3140 [ 439.011396][T11182] ? __pfx_path_openat+0x10/0x10 [ 439.011462][T11182] do_filp_open+0x20b/0x470 [ 439.011513][T11182] ? __pfx_do_filp_open+0x10/0x10 [ 439.011593][T11182] ? alloc_fd+0x471/0x7d0 [ 439.011654][T11182] do_sys_openat2+0x121/0x290 [ 439.011691][T11182] ? __pfx_do_sys_openat2+0x10/0x10 [ 439.011754][T11182] __x64_sys_openat+0x174/0x210 [ 439.011794][T11182] ? __pfx___x64_sys_openat+0x10/0x10 [ 439.011851][T11182] do_syscall_64+0xcd/0xf80 [ 439.011903][T11182] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 439.011935][T11182] RIP: 0033:0x7fbbd1b8f7c9 [ 439.011961][T11182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 439.011994][T11182] RSP: 002b:00007fbbd29d8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 439.012026][T11182] RAX: ffffffffffffffda RBX: 00007fbbd1de5fa0 RCX: 00007fbbd1b8f7c9 [ 439.012047][T11182] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 439.012068][T11182] RBP: 00007fbbd1c13f91 R08: 0000000000000000 R09: 0000000000000000 [ 439.012087][T11182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 439.012106][T11182] R13: 00007fbbd1de6038 R14: 00007fbbd1de5fa0 R15: 00007ffd0e87c348 [ 439.012159][T11182] [ 439.012526][T11182] workqueue: Failed to create a rescuer kthread for wq "(null)_nci_cmd_wq": -EINTR [ 439.574018][T11205] 0x000000000001-0x0000fffffff1 : "" [ 439.604211][T11205] mtd: partition "" extends beyond the end of device "mtdram test device" -- size truncated to 0x1ffff [ 439.627635][T11205] FAULT_INJECTION: forcing a failure. [ 439.627635][T11205] name failslab, interval 1, probability 0, space 0, times 0 [ 439.665211][T11205] CPU: 0 UID: 0 PID: 11205 Comm: syz.2.1087 Tainted: G L syzkaller #0 PREEMPT(full) [ 439.665261][T11205] Tainted: [L]=SOFTLOCKUP [ 439.665273][T11205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 439.665292][T11205] Call Trace: [ 439.665302][T11205] [ 439.665314][T11205] dump_stack_lvl+0x16c/0x1f0 [ 439.665368][T11205] should_fail_ex+0x512/0x640 [ 439.665403][T11205] ? kmem_cache_alloc_noprof+0x62/0x770 [ 439.665448][T11205] should_failslab+0xc2/0x120 [ 439.665498][T11205] kmem_cache_alloc_noprof+0x83/0x770 [ 439.665537][T11205] ? __kernfs_new_node+0xd2/0x9b0 [ 439.665583][T11205] ? __kernfs_new_node+0xd2/0x9b0 [ 439.665617][T11205] __kernfs_new_node+0xd2/0x9b0 [ 439.665652][T11205] ? find_held_lock+0x2b/0x80 [ 439.665693][T11205] ? kernfs_add_one+0x37d/0x840 [ 439.665736][T11205] ? __pfx___kernfs_new_node+0x10/0x10 [ 439.665785][T11205] ? find_held_lock+0x2b/0x80 [ 439.665828][T11205] ? kernfs_root+0xee/0x2a0 [ 439.665874][T11205] kernfs_new_node+0x13c/0x1e0 [ 439.665924][T11205] __kernfs_create_file+0x53/0x350 [ 439.665993][T11205] sysfs_add_file_mode_ns+0x207/0x3c0 [ 439.666038][T11205] sysfs_create_file_ns+0x13d/0x1d0 [ 439.666075][T11205] ? __pfx_sysfs_create_file_ns+0x10/0x10 [ 439.666108][T11205] ? down_read+0x13d/0x460 [ 439.666141][T11205] ? __pfx___up_read+0x10/0x10 [ 439.666179][T11205] ? acpi_device_notify+0x351/0x4d0 [ 439.666227][T11205] device_create_file+0xf2/0x1e0 [ 439.666279][T11205] device_add+0x2bf/0x1980 [ 439.666326][T11205] ? lockdep_init_map_type+0x5c/0x270 [ 439.666359][T11205] ? __pfx_device_add+0x10/0x10 [ 439.666402][T11205] ? lockdep_init_map_type+0x5c/0x270 [ 439.666435][T11205] ? __init_waitqueue_head+0xca/0x150 [ 439.666486][T11205] add_mtd_device+0x999/0x1830 [ 439.666547][T11205] ? __pfx_add_mtd_device+0x10/0x10 [ 439.666608][T11205] mtd_add_partition+0x30c/0x670 [ 439.666645][T11205] ? __pfx_mtd_add_partition+0x10/0x10 [ 439.666677][T11205] ? __might_fault+0xe3/0x190 [ 439.666713][T11205] ? __might_fault+0xe3/0x190 [ 439.666767][T11205] mtdchar_blkpg_ioctl+0x20b/0x250 [ 439.666804][T11205] ? __pfx_mtdchar_blkpg_ioctl+0x10/0x10 [ 439.666876][T11205] mtdchar_ioctl+0xc09/0x20f0 [ 439.666920][T11205] ? __pfx_mtdchar_ioctl+0x10/0x10 [ 439.666965][T11205] ? lock_acquire+0x179/0x330 [ 439.667001][T11205] ? __pfx___might_resched+0x10/0x10 [ 439.667052][T11205] ? trace_contention_end+0xdd/0x110 [ 439.667092][T11205] ? do_vfs_ioctl+0x128/0x14f0 [ 439.667130][T11205] ? mtdchar_unlocked_ioctl+0xa2/0xf0 [ 439.667167][T11205] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 439.667208][T11205] ? __pfx___mutex_lock+0x10/0x10 [ 439.667265][T11205] ? find_held_lock+0x2b/0x80 [ 439.667328][T11205] mtdchar_unlocked_ioctl+0xb0/0xf0 [ 439.667364][T11205] ? __pfx_mtdchar_unlocked_ioctl+0x10/0x10 [ 439.667405][T11205] __x64_sys_ioctl+0x18e/0x210 [ 439.667448][T11205] do_syscall_64+0xcd/0xf80 [ 439.667500][T11205] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 439.667534][T11205] RIP: 0033:0x7f5d1c58f7c9 [ 439.667560][T11205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 439.667591][T11205] RSP: 002b:00007f5d1d42c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 439.667623][T11205] RAX: ffffffffffffffda RBX: 00007f5d1c7e5fa0 RCX: 00007f5d1c58f7c9 [ 439.667645][T11205] RDX: 0000000000000000 RSI: 0000000000001269 RDI: 0000000000000005 [ 439.667665][T11205] RBP: 00007f5d1c613f91 R08: 0000000000000000 R09: 0000000000000000 [ 439.667684][T11205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 439.667703][T11205] R13: 00007f5d1c7e6038 R14: 00007f5d1c7e5fa0 R15: 00007fff08988b18 [ 439.667748][T11205] [ 440.036652][T11205] ------------[ cut here ]------------ [ 440.042536][T11205] WARNING: drivers/mtd/mtdpart.c:37 at release_mtd_partition+0x71/0x90, CPU#0: syz.2.1087/11205 [ 440.053073][T11205] Modules linked in: [ 440.057246][T11205] CPU: 0 UID: 0 PID: 11205 Comm: syz.2.1087 Tainted: G L syzkaller #0 PREEMPT(full) [ 440.068983][T11205] Tainted: [L]=SOFTLOCKUP [ 440.073981][T11205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 440.085309][T11205] RIP: 0010:release_mtd_partition+0x71/0x90 [ 440.091412][T11205] Code: 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 1e 48 8b 7b 38 e8 9f f8 d3 fb 48 89 df 5b 5d e9 95 f8 d3 fb e8 e0 d3 76 fb 90 <0f> 0b 90 eb c2 e8 25 b6 df fb eb db 48 89 ef e8 1b b6 df fb eb a5 [ 440.111116][T11205] RSP: 0018:ffffc900045df828 EFLAGS: 00010287 [ 440.117249][T11205] RAX: 0000000000029239 RBX: ffff88807b081000 RCX: ffffc90004d22000 [ 440.125391][T11205] RDX: 0000000000080000 RSI: ffffffff86478570 RDI: ffff88807b081000 [ 440.133882][T11205] RBP: ffff88807b081650 R08: 0000000000000001 R09: 0000000000000001 [ 440.142074][T11205] R10: 0000000000000007 R11: ffffffff81000130 R12: 0000000000000000 [ 440.150155][T11205] R13: dffffc0000000000 R14: ffff888029dfbc60 R15: 0000000000000000 [ 440.158271][T11205] FS: 00007f5d1d42c6c0(0000) GS:ffff8881248fc000(0000) knlGS:0000000000000000 [ 440.161323][ T5842] Bluetooth: hci1: command 0x0406 tx timeout [ 440.168526][T11205] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 440.180846][T11205] CR2: 0000001b3131aff8 CR3: 000000005c8b0000 CR4: 00000000003526f0 [ 440.188971][T11205] Call Trace: [ 440.192331][T11205] [ 440.195316][T11205] mtd_release+0xa0/0xd0 [ 440.199682][T11205] ? __pfx_mtd_release+0x10/0x10 [ 440.204702][T11205] device_release+0xa4/0x240 [ 440.209368][T11205] kobject_put+0x1ef/0x6f0 [ 440.213903][T11205] put_device+0x1f/0x30 [ 440.218147][T11205] add_mtd_device+0xc47/0x1830 [ 440.223042][T11205] ? __pfx_add_mtd_device+0x10/0x10 [ 440.228425][T11205] mtd_add_partition+0x30c/0x670 [ 440.233463][T11205] ? __pfx_mtd_add_partition+0x10/0x10 [ 440.238988][T11205] ? __might_fault+0xe3/0x190 [ 440.243788][T11205] ? __might_fault+0xe3/0x190 [ 440.248548][T11205] mtdchar_blkpg_ioctl+0x20b/0x250 [ 440.253779][T11205] ? __pfx_mtdchar_blkpg_ioctl+0x10/0x10 [ 440.259544][T11205] mtdchar_ioctl+0xc09/0x20f0 [ 440.264294][T11205] ? __pfx_mtdchar_ioctl+0x10/0x10 [ 440.269469][T11205] ? lock_acquire+0x179/0x330 [ 440.274899][T11205] ? __pfx___might_resched+0x10/0x10 [ 440.282975][T11205] ? trace_contention_end+0xdd/0x110 [ 440.288340][T11205] ? do_vfs_ioctl+0x128/0x14f0 [ 440.293209][T11205] ? mtdchar_unlocked_ioctl+0xa2/0xf0 [ 440.298648][T11205] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 440.303796][T11205] ? __pfx___mutex_lock+0x10/0x10 [ 440.308901][T11205] ? find_held_lock+0x2b/0x80 [ 440.313697][T11205] mtdchar_unlocked_ioctl+0xb0/0xf0 [ 440.318967][T11205] ? __pfx_mtdchar_unlocked_ioctl+0x10/0x10 [ 440.324977][T11205] __x64_sys_ioctl+0x18e/0x210 [ 440.329849][T11205] do_syscall_64+0xcd/0xf80 [ 440.334443][T11205] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 440.340431][T11205] RIP: 0033:0x7f5d1c58f7c9 [ 440.345007][T11205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 440.364819][T11205] RSP: 002b:00007f5d1d42c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 440.374052][T11205] RAX: ffffffffffffffda RBX: 00007f5d1c7e5fa0 RCX: 00007f5d1c58f7c9 [ 440.382700][T11205] RDX: 0000000000000000 RSI: 0000000000001269 RDI: 0000000000000005 [ 440.390770][T11205] RBP: 00007f5d1c613f91 R08: 0000000000000000 R09: 0000000000000000 [ 440.398805][T11205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 440.406873][T11205] R13: 00007f5d1c7e6038 R14: 00007f5d1c7e5fa0 R15: 00007fff08988b18 [ 440.414995][T11205] [ 440.418071][T11205] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 440.425404][T11205] CPU: 0 UID: 0 PID: 11205 Comm: syz.2.1087 Tainted: G L syzkaller #0 PREEMPT(full) [ 440.436417][T11205] Tainted: [L]=SOFTLOCKUP [ 440.440783][T11205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 440.450887][T11205] Call Trace: [ 440.454259][T11205] [ 440.457330][T11205] dump_stack_lvl+0x3d/0x1f0 [ 440.461995][T11205] vpanic+0x640/0x6f0 [ 440.466041][T11205] ? release_mtd_partition+0x71/0x90 [ 440.471384][T11205] panic+0xca/0xd0 [ 440.475166][T11205] ? __pfx_panic+0x10/0x10 [ 440.479656][T11205] check_panic_on_warn+0xab/0xb0 [ 440.484836][T11205] __warn+0x108/0x3c0 [ 440.488890][T11205] __report_bug+0x2a0/0x520 [ 440.493463][T11205] ? release_mtd_partition+0x71/0x90 [ 440.498807][T11205] ? __pfx___report_bug+0x10/0x10 [ 440.503946][T11205] ? delete_node+0x207/0x8d0 [ 440.508694][T11205] ? release_mtd_partition+0x71/0x90 [ 440.514037][T11205] report_bug+0xb2/0x220 [ 440.518451][T11205] ? release_mtd_partition+0x71/0x90 [ 440.523797][T11205] handle_bug+0x127/0x260 [ 440.528185][T11205] exc_invalid_op+0x17/0x50 [ 440.532789][T11205] asm_exc_invalid_op+0x1a/0x20 [ 440.537692][T11205] RIP: 0010:release_mtd_partition+0x71/0x90 [ 440.543679][T11205] Code: 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 1e 48 8b 7b 38 e8 9f f8 d3 fb 48 89 df 5b 5d e9 95 f8 d3 fb e8 e0 d3 76 fb 90 <0f> 0b 90 eb c2 e8 25 b6 df fb eb db 48 89 ef e8 1b b6 df fb eb a5 [ 440.563352][T11205] RSP: 0018:ffffc900045df828 EFLAGS: 00010287 [ 440.569481][T11205] RAX: 0000000000029239 RBX: ffff88807b081000 RCX: ffffc90004d22000 [ 440.577590][T11205] RDX: 0000000000080000 RSI: ffffffff86478570 RDI: ffff88807b081000 [ 440.585610][T11205] RBP: ffff88807b081650 R08: 0000000000000001 R09: 0000000000000001 [ 440.593642][T11205] R10: 0000000000000007 R11: ffffffff81000130 R12: 0000000000000000 [ 440.601665][T11205] R13: dffffc0000000000 R14: ffff888029dfbc60 R15: 0000000000000000 [ 440.609694][T11205] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 440.615828][T11205] ? release_mtd_partition+0x70/0x90 [ 440.621174][T11205] ? release_mtd_partition+0x70/0x90 [ 440.626545][T11205] mtd_release+0xa0/0xd0 [ 440.630855][T11205] ? __pfx_mtd_release+0x10/0x10 [ 440.635863][T11205] device_release+0xa4/0x240 [ 440.640540][T11205] kobject_put+0x1ef/0x6f0 [ 440.645040][T11205] put_device+0x1f/0x30 [ 440.649401][T11205] add_mtd_device+0xc47/0x1830 [ 440.654231][T11205] ? __pfx_add_mtd_device+0x10/0x10 [ 440.659495][T11205] mtd_add_partition+0x30c/0x670 [ 440.664484][T11205] ? __pfx_mtd_add_partition+0x10/0x10 [ 440.670073][T11205] ? __might_fault+0xe3/0x190 [ 440.674881][T11205] ? __might_fault+0xe3/0x190 [ 440.679624][T11205] mtdchar_blkpg_ioctl+0x20b/0x250 [ 440.684821][T11205] ? __pfx_mtdchar_blkpg_ioctl+0x10/0x10 [ 440.690556][T11205] mtdchar_ioctl+0xc09/0x20f0 [ 440.695298][T11205] ? __pfx_mtdchar_ioctl+0x10/0x10 [ 440.700489][T11205] ? lock_acquire+0x179/0x330 [ 440.705216][T11205] ? __pfx___might_resched+0x10/0x10 [ 440.710552][T11205] ? trace_contention_end+0xdd/0x110 [ 440.715881][T11205] ? do_vfs_ioctl+0x128/0x14f0 [ 440.720688][T11205] ? mtdchar_unlocked_ioctl+0xa2/0xf0 [ 440.726103][T11205] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 440.731170][T11205] ? __pfx___mutex_lock+0x10/0x10 [ 440.736253][T11205] ? find_held_lock+0x2b/0x80 [ 440.740987][T11205] mtdchar_unlocked_ioctl+0xb0/0xf0 [ 440.746249][T11205] ? __pfx_mtdchar_unlocked_ioctl+0x10/0x10 [ 440.752181][T11205] __x64_sys_ioctl+0x18e/0x210 [ 440.756983][T11205] do_syscall_64+0xcd/0xf80 [ 440.761587][T11205] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 440.767522][T11205] RIP: 0033:0x7f5d1c58f7c9 [ 440.771978][T11205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 440.791746][T11205] RSP: 002b:00007f5d1d42c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 440.800209][T11205] RAX: ffffffffffffffda RBX: 00007f5d1c7e5fa0 RCX: 00007f5d1c58f7c9 [ 440.808228][T11205] RDX: 0000000000000000 RSI: 0000000000001269 RDI: 0000000000000005 [ 440.816243][T11205] RBP: 00007f5d1c613f91 R08: 0000000000000000 R09: 0000000000000000 [ 440.824273][T11205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 440.832277][T11205] R13: 00007f5d1c7e6038 R14: 00007f5d1c7e5fa0 R15: 00007fff08988b18 [ 440.840303][T11205] [ 440.843948][T11205] Kernel Offset: disabled [ 440.848286][T11205] Rebooting in 86400 seconds..