last executing test programs: 5.786620119s ago: executing program 1 (id=732): r0 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0) write$auto_fuse_dev_operations_fuse_i(r0, &(0x7f0000000440)="110000000100"/17, 0x11) r1 = openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/media11\x00', 0x1, 0x0) mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000) close_range$auto(0x0, 0xffffffffffffffff, 0x2) connect$auto(r1, 0x0, 0x10001) setitimer$auto(0x1, 0x0, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x101202, 0x0) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) writev$auto(0x3, &(0x7f0000000140)={0x0, 0xdc7}, 0x1) 5.319981739s ago: executing program 1 (id=735): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) r0 = socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) r1 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r1, 0xfffffff7effffd04, &(0x7f00000001c0)) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/mac80211_hwsim/hwsim1/net/wlan1/statistics/rx_crc_errors\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000100)=""/4096, 0x1000) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001200), r0) sendmsg$auto_NL80211_CMD_NOTIFY_RADAR(r0, &(0x7f00000037c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000003780)={&(0x7f0000001240)={0x2470, r3, 0x1, 0x70bd25, 0x25dfdbfe, {}, [@NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x80}, @NL80211_ATTR_BSS_SELECT={0x2453, 0xe3, 0x0, 0x1, [@nested={0x18a, 0x47, 0x0, 0x1, [@nested={0x4, 0x36}, @nested={0x4, 0x43}, @typed={0xf3, 0xa6, 0x0, 0x0, @binary="5ee7ec7321d8c4070c0f44e74cdfc4248519b384190da3633eb7edd35f0bb9f0c07c0973ee7970480f85ed0af48c7353fa20d37803f32659bbf7fd1a5244ee55bdcb6f3fbe608a7f655d641eae5b35d7ff0c5b0dd2924db233d92a8209e85ec8df8e84134279478fe6b226fca815db91d4810dcfcf6d7fc58fb03e4213970b6159f1d8814cb90823ef5156c04c5ed752d254797d7737a3d730cd584889a5ab2a5509334da375bb12a3fda77c69a85f6aabb305f23d5fbe520d38097d6e8069e9e971eaf4a17ad5a955736b695f8f72d2ab70568b95c89eeaf02e77721e1520c6f1b3439f1f4fb9f28cc8ee637f01c2"}, @typed={0xf, 0x82, 0x0, 0x0, @str='/dev/tty46\x00'}, @generic="b0ac93fab34c3db5d2f88557b21db167055faf3499d704c4ab88b0ef855d2966c809c436bb0be88172f29b03f1d0a26743c070b6c5d0acd2127082e6c47d9066b72a2bd21e90c86169b52cb8feb965134be79a47c4b77e615629eb831461e1a12b7ad23019beb98dd9827f60ba75", @typed={0xc, 0x63, 0x0, 0x0, @u64=0x1}]}, @nested={0x226d, 0x94, 0x0, 0x1, [@typed={0x1004, 0xba, 0x0, 0x0, @binary="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"}, @typed={0x1004, 0xa1, 0x0, 0x0, @binary="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"}, @typed={0x4, 0x100}, @generic="1eb5b8ea3507606ccf50b67915ddf633962a0511804a57a56de2c96da764397300194aec508dac9aeb62d80bc7ab57e92a96ce29e7ebb1a6d99ba7a3e196e0d6a4fad70366222dd33ed7b9d059b824626993aaf65f8190671324e7624b86cef4513a7ad2552548ad1efc0c878b9a6cb9e81ac5aa03653d0c275ac86591fef7fd164ef45aeb73d415443989b1821a798330a867e1ff1db8f8e90f56b2aa689b0098553f7eb364459d328c39039b2c8cadf8e787d5c7ee27e2b1f94d6319874e97ccbe49d8c8c664977ab8d0dc59182f67e09afd38324e3b831fc6", @generic="81dc92db37aa03ee54c320ed74b06acbb54b90dcc1e77c1111259c996119a69d901c00b8732b40a923fba7d959e27eabc6838e62ca89f959a46bf4e89482ae53039e6a39945ff217199e5bf52592b165016d3eef86e2d23489c78b3ce405f91a0b8f48bd7a89798337216ec7725652c2ba5ab044920c47f6cf192bd9c5a3ebc2afbfa19016ba5c64a6378fafb7cf3c124cb6cbcca6b183aac04bd4bc03e7dec9cee012", @generic="7dd195e193fa57ec3bd33b0f0acca027c44782e2116e7a028b677983319c034ad13ddd90c61e89653fc07338582e3c1baf48e6bb356ea568f1f76d680370211e0fd824f8a99d575760acd6147a78b3cc1a531e82367dd1c6ecad24bf0b8ad38f6c3705b3f9cb27f74f202dd2c8b05c079e44969bbfbccf100c9eb58eaa10be63a35c969e321cdc295c2bd073e78cca95f4d35c8eba4a9eec3aace88f0c8b4029f7d5080ef48a00dd58707a2b268c203981cf6be47b86cd078ab6a656adc1444438dff8a8d55b685b4cbca1b97a597e754c9ed39e2ae2c382c9d46595", @nested={0x4, 0x11b}]}, @typed={0xc, 0x113, 0x0, 0x0, @u64}, @generic="575b3736950faf8a21b80ba9757ac36882", @generic="a2fbced2b412b305a4a48ee6755620e9284b5c448cdcedc546f9aa52ce45a4eb05ebb1c58e688a93a80e70d59093", @typed={0x8, 0xe1, 0x0, 0x0, @ipv4=@multicast2}]}]}, 0x2470}, 0x1, 0x0, 0x0, 0x40000}, 0x800) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0) timer_create$auto_CLOCK_TAI(0xb, 0x0, &(0x7f0000000200)=0xfb) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x2, 0x1d2c, 0x3, 0x4, 0x15f4da0e, 0x6, 0x9, 0x100000000000000c, 0x8, 0x4, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) write$auto_force_suspend_fops_hci_vhci(0xffffffffffffffff, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x400, 0x7fff, 0x0, 0x10000, 0x100000000000007) madvise$auto(0x0, 0xffffffffffff0005, 0x19) bind$auto(0x3, 0x0, 0x6a) syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000011c0), r4) 5.223930445s ago: executing program 0 (id=736): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb2, 0x403, 0x8000) r0 = socket(0x3, 0x800, 0x2) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) setuid$auto(0xee01) open(0x0, 0x1db300, 0x64) socket(0xa, 0x2, 0x88) setsockopt$auto(r0, 0x1, 0x6, 0x0, 0xc089) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x5) connect$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x4e22, @broadcast}, 0x55) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) 5.134714542s ago: executing program 0 (id=737): mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0xffffffffffffffff, 0x8000) r0 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000280)='/dev/mixer1\x00', 0x200, 0x0) ioctl$auto_FS_IOC_UNRESVSP64(r0, 0x4030582b, 0x4) 4.919279432s ago: executing program 0 (id=739): openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0xc0402, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f00000000c0), 0x190880, 0x0) r0 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000040), 0x80083, 0x0) mseal$auto(0x7, 0x6, 0xff) ioctl$auto_posix_clock_file_operations_posix_clock(r0, 0xffffffff7fffffff, &(0x7f0000000080)="2700cded7fb713f5d79fe3956fdd906ff89949c073db24") 4.567195403s ago: executing program 0 (id=740): openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_severities_coverage_fops_severity(0xffffffffffffff9c, 0x0, 0x0, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/pagemap\x00', 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000db, 0xeb1, 0x400, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0x400000000e31, 0xffffffffffffffff, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x1, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x80000001) getrandom$auto(0x0, 0x6000000, 0x3) write$auto(0x3, 0x0, 0xfffffdef) io_uring_setup$auto(0x2, 0x0) socket(0x2, 0x4, 0x106) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/bdi/43:256/strict_limit\x00', 0xa022, 0x0) pwrite64$auto(r0, &(0x7f00000000c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x7fff, 0xc) close_range$auto(0x2, 0x8, 0x0) openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, 0x0, 0x341, 0x0) mmap$auto(0x401000000000, 0x40000004020009, 0xc, 0x15, 0xffffffffffffffff, 0x7ffe) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sysfs$auto(0x2, 0x10000000000002a, 0x81) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x40000c, 0x45bd, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x54) open_by_handle_at$auto(0xffffffffffffffff, 0x0, 0x4295) 4.542526999s ago: executing program 2 (id=741): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/conf/syz_tun/shared_media\x00', 0x103342, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/veth1_macvtap/addr_gen_mode\x00', 0x202, 0x0) sendfile$auto(r1, r0, 0x0, 0x6) 4.342045285s ago: executing program 2 (id=742): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x19, 0x4, 0x4, 0x880b, 0x8, 0xd, 0x66b, 0x4, 0x7ff}, 0x6f4) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/loop10/queue/add_random\x00', 0x80302, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/clients\x00', 0xc0100, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto_SOUND_MIXER_WRITE_RECSRC2(r2, 0xc0044dff, &(0x7f0000000280)) io_uring_setup$auto(0x6, 0x0) timer_gettime$auto(0x401, &(0x7f00000000c0)={{0x6, 0x27257ca}, {0x7fffffff, 0x100}}) ioprio_set$auto_IOPRIO_WHO_PROCESS(0x1, r1, 0x9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x100, 0x0) read$auto_proc_reg_file_ops_compat_inode(r4, 0x0, 0x0) writev$auto(r3, &(0x7f0000000100)={&(0x7f0000000340), 0x7111}, 0x4) socket$nl_generic(0x10, 0x3, 0x10) r5 = epoll_create$auto(0x3a) listxattrat$auto(r5, &(0x7f00000000c0)='\x00', 0x1000, 0x0, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd8/queue/iosched/fifo_batch\x00', 0x20681, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f00000000c0), 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r8, @ANYBLOB="080061000100"], 0x2c}, 0x1, 0x0, 0x0, 0x24004080}, 0x20040894) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/scsi/sg/allow_dio\x00', 0x101181, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000540)="8dabc6760e11b0145de35343f846b0b6d87043b06540026189bdffa946db0a59585afac2133c728ebdb331a873e7d1ac4f6c29ca15eba84f8fa6e4bed6b9ba202e5267ad94ce090b5e04691ea4390f3d8f9c4af4ad6ac7c8eb00cb686a59fb1649c73a31beba686b009a79f09cf387ba7b3176310b4d22c868e8d230376054764ff392f990cdb751ee5b7f1feb3b06bd42009d3c73b242add60223fa6ab54607ec0ef789b62c58d692512fb16d349daef5e65c6f993bc5d37c14168176cde13626d576390f1357845bcdc6c3c79de41022775b5d92efaab3d5213432b27f480ea184") write$auto(0x3, 0x0, 0xfdef) 4.173632343s ago: executing program 1 (id=743): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x1eba02, 0x0) setresuid$auto(0x0, 0x0, 0x0) r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb0\x00', 0x20401, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.net/blkio.bfq.sectors_recursive\x00', 0x88000, 0x0) ioctl$auto_FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000080)) ioctl$auto_BLKALIGNOFF(r0, 0x127a, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000080)='/sys/devices/virtual/mtd/mtd0/bitflip_threshold\x00', 0x5) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x3, 0x4000) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/mtd/mtd0/bitflip_threshold\x00', 0x2062, 0x0) r4 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000080), 0x8203, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/graphics/fbcon/cursor_blink\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000100)=""/192, 0xc0) ioctl$auto(r4, 0x80046f45, 0x38) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) ioctl$auto_BLKRESETZONE(r3, 0x40101283, &(0x7f0000000240)={0x3, 0x9}) sched_setattr$auto(0x0, 0x0, 0x7b) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/misc/hw_random/rng_available\x00', 0x22000, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/firmware/acpi/interrupts/ff_slp_btn\x00', 0x8522, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0xa0102, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/0000:00:04.0/remove\x00', 0x2801, 0x0) write$auto(r6, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92\x90|l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00'/507, 0x1098c7) msync$auto(0x1fffeffc, 0x65c925e8, 0x4) mmap$auto(0x0, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto_BLKTRACESETUP2(r3, 0xc0481273, &(0x7f0000000180)={"5a0d65bdc57b29610872225f9ab8f3a24e31368873006a03bc474816c6f90554", 0x2, 0x3ff, 0x7, 0x400, 0x7, 0xffffffffffffffff}) 3.224132815s ago: executing program 3 (id=745): mmap$auto(0x0, 0x400008, 0xdf, 0xfffffffffffffc10, 0xffffffffffffffff, 0x800008000) r0 = socket(0x1d, 0x2, 0x7) getsockopt$auto(r0, 0x6b, 0xdc5a, 0xfffffffffffffffe, 0x0) r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) r2 = fcntl$auto(r1, 0x400, 0x1) execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) fcntl$auto(0x3, 0x8, 0x9ebfffffffffffff) fcntl$auto(0x3, 0x4, 0xa553) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/cpu.pressure\x00', 0x183142, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/misc/hw_random/rng_quality\x00', 0x180, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) sendfile$auto(r2, r3, 0x0, 0xc01) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb5, 0xffffffffffffffff, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) keyctl$auto(0x4, 0xfffffffe, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) r4 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000f40), 0x2100, 0x0) ioctl$auto_BTRFS_IOC_GET_SUPPORTED_FEATURES(r4, 0x80489439, &(0x7f0000000f80)=[{0x3ff, 0x3, 0x8000000000000000}, {0x5, 0x5, 0x2}, {0xa6, 0x1, 0x2}]) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/lockd/parameters/nlm_timeout\x00', 0x68041, 0x0) write$auto(r5, &(0x7f0000000200)='y\xd2\xaf\xfa\xc9W.\xaa:\xe3\x98\xcc\xe5`\x90\x19\xd0\xcb\xde\xb9\xcb\xf5\xc6\xea\xcc\xe9\"\x96xx\xe1\x99\xfb\xc6n\x86\xfa\xfbb\xe2\'\xa1\\\xfdg\x94wW\x05\xc0\x94\xd8\xa1\xe1\x05\xef\x89\x05\xbeU{\xb7\x117\a\x13\xed\xd2\x02\xae\xbf\xe1\x1e\xf2 \xbeN\x19\x05\xed9\x87D\x1d\xa2\xca4\xafn\x9a\r[\x9f\xb7\xf42\x9bi\x03\x98r\xf2f\xf20\x8f\x17W\xf5\x8c\x874\x15', 0x2160) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20800, 0x0) statmount$auto(0x0, 0x0, 0x1fe, 0x5) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) unshare$auto(0x40000080) 2.89579069s ago: executing program 1 (id=746): r0 = socket$nl_generic(0x10, 0x3, 0x10) fchown$auto(r0, 0xee00, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008) (async) socket(0x29, 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) (async) recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'ipvlan1\x00'}) (async) mmap$auto(0x0, 0x30009, 0x4000000000df, 0x4000eb1, 0x401, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x1, 0x0) r3 = openat$auto_fops_u8_(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/nfcsim/nfc1/dropframe\x00', 0x101080, 0x0) dup2$auto(r3, r2) (async) r4 = io_uring_setup$auto(0x1, 0x0) openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x109402, 0x0) (async) read$auto_tomoyo_operations_securityfs_if(r4, &(0x7f00000001c0)=""/43, 0x2b) (async) socketpair$auto(0x3, 0x80001, 0x7d, 0x0) (async) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async) connect$auto(0x3, &(0x7f00000018c0)=@qipcrtr={0x2a, 0x0, 0x4001}, 0x1b) (async) close_range$auto(0x2, 0xa, 0x0) (async) socket(0xa, 0x2, 0x0) (async) r5 = socket(0xa, 0x3, 0xff) setsockopt$auto_SO_PROTOCOL(r2, 0x6, 0x26, 0x0, 0x5) (async) connect$auto(r5, &(0x7f00000018c0)=@generic={0xa}, 0x55) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) 2.69817057s ago: executing program 3 (id=747): mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x100) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001540)={'netdevsim0\x00', 0x0}) sendmsg$auto_NET_SHAPER_CMD_GROUP(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f00000002c0)={0x88, r1, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NET_SHAPER_A_HANDLE={0x14, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x9a0}, @NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x2}]}, @NET_SHAPER_A_LEAVES={0x4}, @NET_SHAPER_A_IFINDEX={0x8, 0x8, r2}, @NET_SHAPER_A_HANDLE={0x3c, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x7ff}, @NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x6}, @NET_SHAPER_A_HANDLE_SCOPE={0x8}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x9}, @NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x3}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x60000}, @NET_SHAPER_A_HANDLE_SCOPE={0x8}]}, @NET_SHAPER_A_BW_MIN={0xc, 0x3, 0x1}, @NET_SHAPER_A_BW_MAX={0xc, 0x4, 0x81}]}, 0x88}, 0x1, 0x0, 0x0, 0x44000}, 0x14) r3 = gettid() rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8) rt_sigtimedwait$auto(&(0x7f0000000100)={0xfffffffffffffbff}, 0x0, 0x0, 0x8) kill$auto(r3, 0x14) mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0xffffffffffffffff, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x100002, 0x0) socket(0x28, 0x1, 0x0) socket(0x2, 0x5, 0x0) epoll_create$auto(0x7) sysfs$auto(0x2, 0x0, 0x0) epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xf6f6, 0x8000) r5 = socket(0x22, 0x2, 0x4) ioctl$sock_SIOCGIFINDEX(r5, 0x80044943, 0x0) epoll_ctl$auto(0x5, 0x1, r4, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000280)='/dev/mixer1\x00', 0x200, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000001c0), r6) 2.45087256s ago: executing program 2 (id=748): mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0xffffffffffffffff, 0x8000) r0 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000280)='/dev/mixer1\x00', 0x200, 0x0) ioctl$auto_FS_IOC_UNRESVSP64(r0, 0x4030582b, 0x4) (fail_nth: 2) 2.425957056s ago: executing program 3 (id=749): r0 = prctl$auto_PR_SCHED_CORE_GET(0x1ff, 0x0, 0x0, 0x7, 0x5) ioctl$auto_FS_IOC_SETFLAGS(r0, 0x40086602, 0x784c) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x0) socketpair$auto(0x3, 0x5, 0x7, 0x0) setsockopt$auto(0x3, 0x0, 0xf, 0x0, 0xb) bind$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x0, @rand_addr=0x2000000}, 0x68) 1.87374356s ago: executing program 2 (id=750): r0 = socket(0x2, 0x3, 0xa) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x2c01, 0x0) ioctl$auto_SOUND_MIXER_READ_RECMASK2(r1, 0x80044dfd, &(0x7f00000014c0)) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0xa, 0xe983, 0x10, 0xeb1, r0, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) r2 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000140), r0) sendmsg$auto_OVS_VPORT_CMD_NEW(r0, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="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", @ANYRES16=r2, @ANYBLOB="000204000000ffdbdf2501000000080002000800000008"], 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x40008000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) bpf$auto(0x5, &(0x7f0000000000)=@test={0x8, 0x1, 0x1, 0x1, 0x8, 0x63a, 0x10001, 0x8, 0xc511, 0x7, 0xff, 0x49, 0xff, 0x4, 0x9f31}, 0x779) ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r3, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) ioctl$auto_PPPIOCSPASS(r3, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x28, 0xf3, 0xb0, @raw=0xfffff038}}) sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, 0x0, 0x8044) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) msync$auto(0x8, 0xb, 0x10) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r4 = socket(0x15, 0x5, 0x0) getsockopt$auto(r4, 0x114, 0x2711, 0xfffffffffffffffc, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/environ\x00', 0x40082, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/scsi/drivers/st/debug_flag\x00', 0x501, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000080)='5', 0x1) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x2, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000) shmat$auto(0x0, 0x0, 0xfffffffa) close_range$auto(0x0, 0xfffffffffffff000, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0xa, 0xb8, 0x10, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0xf) bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@prog_fd=r5, @target_fd=r6, 0x2, 0x81, @target_btf_id=0x1}, 0x92) 1.872153033s ago: executing program 3 (id=751): fsconfig$auto_HIDEPID_NO_ACCESS(0xffffffffffffffff, 0xffff0000, 0x0, &(0x7f0000000080)="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", 0x1) r0 = open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0x538, 0x80, 0x10000, 0x0, r0, 0x1000, "72fea04183dce563f03f2a25077b3383", 0x0, r0, 0x4, 0x6, 0x101, 0x1, r0}, 0x6f3) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000040), 0x12a382, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nbd12\x00', 0x8001, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/cifs/SecurityFlags\x00', 0x48041, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/ram0/queue/dma_alignment\x00', 0x8800, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x4) writev$auto(0x3, 0x0, 0x8009) r1 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(0xffffffffffffffff, 0xaf01, 0x0) mmap$auto(0x0, 0x2, 0x1ff, 0x40eb1, 0xffffffffffffffff, 0x20008) migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2) ioctl$auto_VHOST_SET_LOG_FD2(r1, 0x4004af07, &(0x7f00000003c0)) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) prctl$auto_PR_GET_CHILD_SUBREAPER(0x25, 0x8, 0xfffffffffffffffa, 0x9, 0xfffffffffffffbff) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.5/usb6/idVendor\x00', 0x80000, 0x0) read$auto(r2, &(0x7f0000000100)='\xcb%)\x00', 0x7) splice$auto(r2, &(0x7f0000000040)=0x7, 0xffffffffffffffff, &(0x7f0000000080)=0x7, 0x26c4, 0x895) ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(r0, 0x1, &(0x7f0000000400)="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") prctl$auto_PR_GET_CHILD_SUBREAPER(0x25, 0xfdd5, 0xd, 0x378, 0x9) syz_genetlink_get_family_id$auto_ovs_flow(0x0, 0xffffffffffffffff) mmap$auto(0x7fffffff, 0x4020007, 0x1, 0x18, 0xffffffffffffffff, 0x100000000006) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) 1.827834497s ago: executing program 1 (id=752): r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x20800, 0x0) quotactl$auto(0x8, &(0x7f0000000000)='/dev/dri/card0\x00', 0x0, &(0x7f0000000080)="6d81ed53558f326f4107f70e686921ed0e564e8737d9c14db5da89607c41cac4dd0062dada25a6074684b7777ad3cd6434431cfcff57c8cc5be3a4b0c7fb3ecdf79ce7b85580b21c74da1bc83ca8e54f1e168a012322ff8efbf7bb15d0") ioctl$auto(r0, 0xb21064d5, r0) ioprio_set$auto(0x3, 0x0, 0x4b34) socket(0x2, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00'}) r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000080)=0x400) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) ioctl$auto_FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000080)) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket(0xa, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'erspan0\x00'}) syz_clone(0x4100000, 0x0, 0x0, 0x0, 0x0, 0x0) futex$auto(0x0, 0x86, 0x8, &(0x7f0000000280)={0x400000000007fe, 0x9}, 0x0, 0x7) madvise$auto(0x1000000, 0xffffffffffff0006, 0x17) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) select$auto(0xa4d, 0x0, 0x0, &(0x7f00000002c0)={[0x8, 0x8, 0x208, 0x1, 0x0, 0x4000000008, 0x15f6da12, 0x3, 0x800080000010d08, 0x10000000000000b, 0xfffffffffffffffc, 0x3, 0x6d3f, 0x6, 0x4, 0x5]}, 0x0) r3 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, 0x0, 0x2100, 0x0) mmap$auto(0xffffffffffffffff, 0x400008, 0xdf, 0x250, r3, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x1000, 0x2) clone$auto(0x0, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) select$auto(0xff, &(0x7f0000000140)={[0xbe2, 0x9, 0x6, 0x8, 0x9, 0xd8e, 0x5, 0x227, 0x4, 0x1, 0x1, 0x8000000000000000, 0x5, 0x89, 0x2, 0x4]}, &(0x7f00000001c0)={[0x2, 0x9, 0x3, 0x5, 0x2, 0x3, 0x7fff, 0x9, 0x0, 0x5, 0x6a3, 0x5, 0x3, 0x7, 0x10, 0x1e83]}, &(0x7f0000000340)={[0x7fff, 0x8, 0x8, 0x200, 0x2, 0xec, 0x6, 0x0, 0xa8, 0x6, 0x3, 0x5d5, 0xeb, 0x4, 0x1, 0x5]}, &(0x7f0000000240)={0x3}) 1.432516341s ago: executing program 1 (id=753): mmap$auto(0x0, 0x2020007, 0x4, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x4000, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) r0 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r0, 0x29, 0x19, &(0x7f0000000040)='!\x00', 0x1ff) write$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffffff, 0x0, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) socket(0x10, 0x4, 0xffffffc0) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x200, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r2, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) r3 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x10003c, 0x1, 0x1ffde, 0x7, 0x3, 0xfffffffffffffffe, 0x9, 0x3, 0x6, 0x4, 0x7, 0x9, 0x9, 0x10005, 0x80, 0x4, 0xffefffff, 0x7, 0x2080, 0x203, 0x0, 0x20e9d17d, 0x9, 0xfffffff9, 0x0, 0x6, 0xf04, [0xfffffffffffffffe, 0x0, 0x2, 0xfffffffffffffffd, 0x2, 0xfffffffffffffffe, 0x2, 0x6, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x6, 0x0, 0x0, 0x8f, 0x10000, 0x8000000, 0x7, 0x0, 0x1, 0xfffffffefffffffd, 0x5, 0xff5b, 0xc72, 0x0, 0x9, 0xbaa1, 0x66, 0x1, 0x1, 0x0, 0x0, 0xfffffffffffffffb, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000003, 0x1, 0x8c]}, 0x2, 0xd) ioctl$auto_EVIOCGRAB(r3, 0x40044590, &(0x7f0000000000)=0x2) write$auto(r3, &(0x7f0000000040)='/dev/input/event1\x00', 0x10001) mmap$auto(0x800000000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/pcm0p/oss\x00', 0xaa102, 0x0) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82040, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) prctl$auto(0x7, 0x1, 0x0, 0x1, 0x4) select$auto(0x7, 0x0, 0x0, 0x0, 0x0) capget$auto(0x0, 0xfffffffffffffffe) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) 1.257484395s ago: executing program 3 (id=754): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x19, 0x4, 0x4, 0x880b, 0x8, 0xd, 0x66b, 0x4, 0x7ff}, 0x6f4) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/loop10/queue/add_random\x00', 0x80302, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/clients\x00', 0xc0100, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto_SOUND_MIXER_WRITE_RECSRC2(r2, 0xc0044dff, &(0x7f0000000280)) io_uring_setup$auto(0x6, 0x0) timer_gettime$auto(0x401, &(0x7f00000000c0)={{0x6, 0x27257ca}, {0x7fffffff, 0x100}}) ioprio_set$auto_IOPRIO_WHO_PROCESS(0x1, r1, 0x9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x100, 0x0) read$auto_proc_reg_file_ops_compat_inode(r4, 0x0, 0x0) writev$auto(r3, &(0x7f0000000100)={&(0x7f0000000340), 0x7111}, 0x4) socket$nl_generic(0x10, 0x3, 0x10) r5 = epoll_create$auto(0x3a) listxattrat$auto(r5, &(0x7f00000000c0)='\x00', 0x1000, 0x0, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd8/queue/iosched/fifo_batch\x00', 0x20681, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f00000000c0), 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r8, @ANYBLOB="080061000100"], 0x2c}, 0x1, 0x0, 0x0, 0x24004080}, 0x20040894) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/scsi/sg/allow_dio\x00', 0x101181, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000540)="8dabc6760e11b0145de35343f846b0b6d87043b06540026189bdffa946db0a59585afac2133c728ebdb331a873e7d1ac4f6c29ca15eba84f8fa6e4bed6b9ba202e5267ad94ce090b5e04691ea4390f3d8f9c4af4ad6ac7c8eb00cb686a59fb1649c73a31beba686b009a79f09cf387ba7b3176310b4d22c868e8d230376054764ff392f990cdb751ee5b7f1feb3b06bd42009d3c73b242add60223fa6ab54607ec0ef789b62c58d692512fb16d349daef5e65c6f993bc5d37c14168176cde13626d576390f1357845bcdc6c3c79de41022775b5d92efaab3d5213432b27f480ea184") write$auto(0x3, 0x0, 0xfdef) (fail_nth: 4) 1.242842709s ago: executing program 2 (id=755): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) kcmp$auto(0x1, 0x1, 0x0, 0xffffffffffffffff, 0x100000001) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) keyctl$auto(0x4, 0xfffffffe, 0xffffffffffffffff, 0xffffffffffffffff, 0x8000000e) open(&(0x7f0000001bc0)='./file0\x00', 0x4140, 0x0) readlink$auto(&(0x7f0000000200)='./file0\x00', 0x0, 0x6) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) ioctl$auto_BTRFS_IOC_GET_SUPPORTED_FEATURES(0xffffffffffffffff, 0x80489439, &(0x7f0000000f80)=[{0xfffffffffffff9f3, 0x3, 0x8000000000000000}, {0x5, 0x5, 0x4}, {0xa6, 0x1, 0x2}]) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20800, 0x0) unshare$auto(0x40000080) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS0\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_lowpan_control_fops_6lowpan(0xffffffffffffff9c, &(0x7f0000000040), 0x40001, 0x0) mmap$auto(0x5, 0xffffffffffffffff, 0xd, 0x18, r2, 0x8346) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r3 = getpid() process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0x10ffffffff}, 0x6, 0x0) prctl$auto_PR_SET_MM_ENV_END(0x1, 0xb, r3, 0x6, 0x3) socket(0xa, 0x1, 0x84) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) openat$auto_tomoyo_self_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) 964.49304ms ago: executing program 0 (id=756): mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0xffffffffffffffff, 0x8000) r0 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000280)='/dev/mixer1\x00', 0x200, 0x0) ioctl$auto_FS_IOC_UNRESVSP64(r0, 0x4030581e, 0x4) 639.866305ms ago: executing program 3 (id=757): r0 = socket(0x11, 0x80003, 0x300) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async, rerun: 64) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 64) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) (async) io_uring_setup$auto(0x6, 0x0) (async) mmap$auto(0x2, 0x810004, 0xffb, 0x800000000a011, 0x3, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async, rerun: 64) ioctl$auto(0x3, 0xae41, r2) (async, rerun: 64) ioctl$auto_KVM_CREATE_VM(r1, 0x4040aea0, 0x0) (async) socket(0x18, 0x3, 0x2) (async) sendmmsg$auto(r0, 0x0, 0xfffffffe, 0x7) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async) epoll_create$auto(0x4) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) (async) sendfile$auto(0x1, 0xffffffffffffffff, 0x0, 0x8fb5) (async) fcntl$auto(0x0, 0x408, 0x100000) (async) setsockopt$auto_SO_OOBINLINE(0xffffffffffffffff, 0x3, 0xa, &(0x7f0000000080)='nlctrl\x00', 0x2) close_range$auto(0x2, 0xa, 0x0) (async) socket(0x18, 0xa, 0x1) (async) socket(0xa, 0x2, 0x0) 615.811762ms ago: executing program 0 (id=758): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) write$auto(r0, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xd8\x9c\xf7?:\x1a\xc62\x911e\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xff\x7f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\x87N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00', 0x5) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) getsockopt$auto_SO_NO_CHECK(r0, 0x7, 0xb, 0x0, 0x0) getcwd$auto(0x0, 0x3) r2 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0) read$auto_l2cap_debugfs_fops_(r2, 0x0, 0x0) ioctl$auto_BCH_IOCTL_DISK_RESIZE(r2, 0x4018bc0e, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2a}) read$auto(r1, 0x0, 0x1f40) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) mmap$auto(0x0, 0xa00006, 0xa6, 0x40eb1, 0xffffffffffffffff, 0x1) socket(0x9, 0x80000, 0x106) bind$auto(r2, &(0x7f0000000040)=@nfc={0x27, 0x0, 0x0, 0x1}, 0x6d) connect$auto(0x3, &(0x7f0000000080)=@nfc={0x27, r3, 0xffffffffffffffff, 0x3}, 0x54) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x13e, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r5 = open(0x0, 0x14d27e, 0x72) getsockopt$auto_SO_PEERNAME(r5, 0xfffffffa, 0x1c, &(0x7f00000000c0)='\xaa+.$[\x00', &(0x7f0000000180)=0x8) select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0xfff, 0x1, 0x948b, 0x3, 0x95f4da2d, 0xc, 0x6, 0x62, 0x4, 0x7, 0x6d3f, 0xffffffffffffff7a, 0x5, 0x5]}, 0x0) write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000140), 0x60a41, 0x0) close_range$auto(0x2, 0x8, 0x0) madvise$auto(0x8, 0x1, 0x8) unshare$auto(0x40000080) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) tkill$auto(0x0, 0x9) 0s ago: executing program 2 (id=759): mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0xffffffffffffffff, 0x8000) r0 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000280)='/dev/mixer1\x00', 0x200, 0x0) ioctl$auto_FS_IOC_UNRESVSP64(r0, 0x4030582b, 0x4) (fail_nth: 3) kernel console output (not intermixed with test programs): ve_0): Enslaving as an active interface with an up link [ 122.293343][ T5841] team0: Port device team_slave_1 added [ 122.302656][ T5842] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 122.316607][ T5843] team0: Port device team_slave_0 added [ 122.366765][ T5843] team0: Port device team_slave_1 added [ 122.377877][ T5844] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 122.429799][ T5844] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 122.441015][ T5841] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 122.448957][ T5841] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 122.478532][ T5841] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 122.493228][ T5842] team0: Port device team_slave_0 added [ 122.529151][ T5841] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 122.536790][ T5841] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 122.565715][ T5841] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 122.579860][ T5842] team0: Port device team_slave_1 added [ 122.587840][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 122.595534][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 122.624204][ T5843] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 122.636674][ T53] Bluetooth: hci1: command tx timeout [ 122.683205][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 122.691389][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 122.724334][ T5843] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 122.738872][ T5844] team0: Port device team_slave_0 added [ 122.756338][ T53] Bluetooth: hci2: command tx timeout [ 122.756605][ T5156] Bluetooth: hci0: command tx timeout [ 122.768731][ T5847] Bluetooth: hci3: command tx timeout [ 122.791559][ T5844] team0: Port device team_slave_1 added [ 122.799689][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 122.808877][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 122.837409][ T5842] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 122.851128][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 122.858708][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 122.887507][ T5842] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 122.974462][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 122.982125][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 123.010074][ T5844] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 123.030818][ T5841] hsr_slave_0: entered promiscuous mode [ 123.038589][ T5841] hsr_slave_1: entered promiscuous mode [ 123.060274][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 123.068645][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 123.096719][ T5844] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 123.129638][ T5843] hsr_slave_0: entered promiscuous mode [ 123.137115][ T5843] hsr_slave_1: entered promiscuous mode [ 123.144761][ T5843] debugfs: 'hsr0' already exists in 'hsr' [ 123.151635][ T5843] Cannot create hsr debugfs directory [ 123.220450][ T5842] hsr_slave_0: entered promiscuous mode [ 123.227463][ T5842] hsr_slave_1: entered promiscuous mode [ 123.234080][ T5842] debugfs: 'hsr0' already exists in 'hsr' [ 123.240489][ T5842] Cannot create hsr debugfs directory [ 123.382809][ T5844] hsr_slave_0: entered promiscuous mode [ 123.390016][ T5844] hsr_slave_1: entered promiscuous mode [ 123.398105][ T5844] debugfs: 'hsr0' already exists in 'hsr' [ 123.404994][ T5844] Cannot create hsr debugfs directory [ 123.846767][ T5841] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 123.865479][ T5841] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 123.889111][ T5841] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 123.901558][ T5841] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 123.962861][ T5843] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 123.983741][ T5843] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 123.998015][ T5843] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 124.028070][ T5843] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 124.127609][ T5842] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 124.150089][ T5842] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 124.170412][ T5842] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 124.201793][ T5842] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 124.313558][ T5844] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 124.331947][ T5844] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 124.345251][ T5844] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 124.359740][ T5844] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 124.429978][ T5841] 8021q: adding VLAN 0 to HW filter on device bond0 [ 124.494651][ T5841] 8021q: adding VLAN 0 to HW filter on device team0 [ 124.531854][ T74] bridge0: port 1(bridge_slave_0) entered blocking state [ 124.540992][ T74] bridge0: port 1(bridge_slave_0) entered forwarding state [ 124.565863][ T5843] 8021q: adding VLAN 0 to HW filter on device bond0 [ 124.601073][ T1164] bridge0: port 2(bridge_slave_1) entered blocking state [ 124.608647][ T1164] bridge0: port 2(bridge_slave_1) entered forwarding state [ 124.663106][ T5843] 8021q: adding VLAN 0 to HW filter on device team0 [ 124.677997][ T5156] Bluetooth: hci1: command tx timeout [ 124.712864][ T1333] bridge0: port 1(bridge_slave_0) entered blocking state [ 124.720910][ T1333] bridge0: port 1(bridge_slave_0) entered forwarding state [ 124.749716][ T5842] 8021q: adding VLAN 0 to HW filter on device bond0 [ 124.777030][ T74] bridge0: port 2(bridge_slave_1) entered blocking state [ 124.785848][ T74] bridge0: port 2(bridge_slave_1) entered forwarding state [ 124.837675][ T5847] Bluetooth: hci3: command tx timeout [ 124.838329][ T53] Bluetooth: hci2: command tx timeout [ 124.843419][ T5156] Bluetooth: hci0: command tx timeout [ 124.864095][ T5842] 8021q: adding VLAN 0 to HW filter on device team0 [ 124.912004][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 124.920475][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 124.944667][ T5844] 8021q: adding VLAN 0 to HW filter on device bond0 [ 124.992222][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 125.000110][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 125.068122][ T5844] 8021q: adding VLAN 0 to HW filter on device team0 [ 125.125006][ T74] bridge0: port 1(bridge_slave_0) entered blocking state [ 125.132771][ T74] bridge0: port 1(bridge_slave_0) entered forwarding state [ 125.188717][ T1164] bridge0: port 2(bridge_slave_1) entered blocking state [ 125.197486][ T1164] bridge0: port 2(bridge_slave_1) entered forwarding state [ 125.432317][ T5841] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 125.609842][ T5841] veth0_vlan: entered promiscuous mode [ 125.648953][ T5841] veth1_vlan: entered promiscuous mode [ 125.734648][ T5843] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 125.827391][ T5841] veth0_macvtap: entered promiscuous mode [ 125.853818][ T5841] veth1_macvtap: entered promiscuous mode [ 125.891456][ T5842] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 125.910711][ T5844] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 125.935824][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 125.946836][ T5843] veth0_vlan: entered promiscuous mode [ 125.977073][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 126.003172][ T5843] veth1_vlan: entered promiscuous mode [ 126.032997][ T586] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.045179][ T586] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.068997][ T586] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.079486][ T586] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.145143][ T5842] veth0_vlan: entered promiscuous mode [ 126.220283][ T5844] veth0_vlan: entered promiscuous mode [ 126.250943][ T5843] veth0_macvtap: entered promiscuous mode [ 126.269569][ T5842] veth1_vlan: entered promiscuous mode [ 126.283651][ T5843] veth1_macvtap: entered promiscuous mode [ 126.300078][ T586] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.311036][ T586] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.322386][ T5844] veth1_vlan: entered promiscuous mode [ 126.393511][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 126.410964][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.419243][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 126.438825][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.452772][ T1090] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.473348][ T1090] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.488481][ T1090] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.499887][ T1090] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.531660][ T5842] veth0_macvtap: entered promiscuous mode [ 126.554021][ T5842] veth1_macvtap: entered promiscuous mode [ 126.575476][ T5841] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 126.623279][ T5844] veth0_macvtap: entered promiscuous mode [ 126.709059][ T5844] veth1_macvtap: entered promiscuous mode [ 126.743540][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 126.756381][ T5156] Bluetooth: hci1: command tx timeout [ 126.785359][ T5926] process 'syz.3.4' launched '/dev/fd/6' with NULL argv: empty string added [ 126.803149][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 126.805402][ T5926] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 126.824613][ T66] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.871739][ T1164] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.886624][ T66] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.905445][ T1164] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.923810][ T5156] Bluetooth: hci0: command tx timeout [ 126.923837][ T53] Bluetooth: hci3: command tx timeout [ 126.929624][ T5847] Bluetooth: hci2: command tx timeout [ 126.946718][ T1164] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.957444][ T1164] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.998158][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 127.031350][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 127.051150][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 127.062519][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 127.160871][ T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 127.183343][ T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 127.221568][ T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 127.305690][ T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 127.578287][ T74] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 127.600876][ T74] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 127.623975][ T74] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 127.643831][ T74] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 127.808747][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 127.849705][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 127.859830][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 127.927880][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 127.983140][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 128.377972][ T5938] random: crng reseeded on system resumption [ 128.766329][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 128.836659][ T53] Bluetooth: hci1: command tx timeout [ 128.996519][ T53] Bluetooth: hci0: command tx timeout [ 128.997647][ T5156] Bluetooth: hci2: command tx timeout [ 129.009853][ T5156] Bluetooth: hci3: command tx timeout [ 129.083712][ T5946] bridge0: port 3(gretap0) entered blocking state [ 129.097143][ T5946] bridge0: port 3(gretap0) entered disabled state [ 129.124428][ T5946] gretap0: entered allmulticast mode [ 129.137072][ T5946] gretap0: entered promiscuous mode [ 129.143867][ T5946] bridge0: port 3(gretap0) entered blocking state [ 129.151432][ T5946] bridge0: port 3(gretap0) entered forwarding state [ 129.660102][ T5953] syz.0.7: vmalloc error: size 28672, failed to allocate pages, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 129.689164][ T5953] CPU: 0 UID: 0 PID: 5953 Comm: syz.0.7 Not tainted syzkaller #0 PREEMPT(full) [ 129.689211][ T5953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 129.689241][ T5953] Call Trace: [ 129.689253][ T5953] [ 129.689267][ T5953] dump_stack_lvl+0x16c/0x1f0 [ 129.689319][ T5953] warn_alloc+0x248/0x3a0 [ 129.689378][ T5953] ? __pfx_warn_alloc+0x10/0x10 [ 129.689438][ T5953] ? alloc_pages_mpol+0x25a/0x550 [ 129.689485][ T5953] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 129.689526][ T5953] ? __pfx_alloc_pages_bulk_mempolicy_noprof+0x10/0x10 [ 129.689585][ T5953] ? __kmalloc_node_noprof+0x364/0x890 [ 129.689624][ T5953] ? __get_vm_area_node+0x208/0x330 [ 129.689679][ T5953] __vmalloc_node_range_noprof+0x119b/0x1480 [ 129.689742][ T5953] ? vb2_vmalloc_alloc+0x135/0x3f0 [ 129.689792][ T5953] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 129.689856][ T5953] ? vb2_vmalloc_alloc+0x135/0x3f0 [ 129.689893][ T5953] vmalloc_user_noprof+0x9e/0xe0 [ 129.689939][ T5953] ? vb2_vmalloc_alloc+0x135/0x3f0 [ 129.689977][ T5953] vb2_vmalloc_alloc+0x135/0x3f0 [ 129.690029][ T5953] ? __pfx_vb2_vmalloc_alloc+0x10/0x10 [ 129.690067][ T5953] __vb2_queue_alloc+0x8c9/0x1280 [ 129.690125][ T5953] vb2_core_reqbufs+0xa90/0xfe0 [ 129.690170][ T5953] ? __pfx_vb2_core_reqbufs+0x10/0x10 [ 129.690233][ T5953] __vb2_init_fileio+0x3f1/0x1100 [ 129.690267][ T5953] ? lockdep_hardirqs_on+0x7c/0x110 [ 129.690310][ T5953] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 129.690351][ T5953] ? __pollwait+0x271/0x460 [ 129.690395][ T5953] vb2_core_poll+0x5ec/0x700 [ 129.690434][ T5953] vb2_poll+0x4b/0xe0 [ 129.690488][ T5953] vb2_fop_poll+0x10f/0x2c0 [ 129.690548][ T5953] ? __pfx_vb2_fop_poll+0x10/0x10 [ 129.690609][ T5953] v4l2_poll+0x163/0x320 [ 129.690657][ T5953] ? __pfx_v4l2_poll+0x10/0x10 [ 129.690699][ T5953] do_sys_poll+0x55c/0xdf0 [ 129.690756][ T5953] ? __pfx_do_sys_poll+0x10/0x10 [ 129.690794][ T5953] ? __lock_acquire+0x433/0x22f0 [ 129.690880][ T5953] ? __futex_wait+0x24b/0x2f0 [ 129.690930][ T5953] ? __pfx___pollwait+0x10/0x10 [ 129.690975][ T5953] ? __pfx_pollwake+0x10/0x10 [ 129.691138][ T5953] ? __pfx_timespec64_add_safe+0x10/0x10 [ 129.691182][ T5953] ? ktime_get_ts64+0x2d2/0x400 [ 129.691220][ T5953] ? read_tsc+0x9/0x20 [ 129.691262][ T5953] ? ktime_get_ts64+0x256/0x400 [ 129.691307][ T5953] __x64_sys_poll+0x1a6/0x450 [ 129.691350][ T5953] ? __pfx___x64_sys_poll+0x10/0x10 [ 129.691408][ T5953] do_syscall_64+0xcd/0xf80 [ 129.691453][ T5953] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 129.691488][ T5953] RIP: 0033:0x7f2c91b8f7c9 [ 129.691516][ T5953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 129.691548][ T5953] RSP: 002b:00007f2c92aab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000007 [ 129.691580][ T5953] RAX: ffffffffffffffda RBX: 00007f2c91de5fa0 RCX: 00007f2c91b8f7c9 [ 129.691603][ T5953] RDX: 0000000000000008 RSI: 0000000000000003 RDI: 0000200000000480 [ 129.691624][ T5953] RBP: 00007f2c91c13f91 R08: 0000000000000000 R09: 0000000000000000 [ 129.691646][ T5953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 129.691667][ T5953] R13: 00007f2c91de6038 R14: 00007f2c91de5fa0 R15: 00007ffcc4a80eb8 [ 129.691712][ T5953] [ 129.692670][ T5953] Mem-Info: [ 130.216379][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 130.264538][ T5953] active_anon:9579 inactive_anon:0 isolated_anon:0 [ 130.264538][ T5953] active_file:2542 inactive_file:39885 isolated_file:0 [ 130.264538][ T5953] unevictable:768 dirty:238 writeback:0 [ 130.264538][ T5953] slab_reclaimable:10127 slab_unreclaimable:91015 [ 130.264538][ T5953] mapped:29744 shmem:4595 pagetables:1036 [ 130.264538][ T5953] sec_pagetables:0 bounce:0 [ 130.264538][ T5953] kernel_misc_reclaimable:0 [ 130.264538][ T5953] free:1344037 free_pcp:12055 free_cma:0 [ 130.437468][ T5953] Node 0 active_anon:38216kB inactive_anon:0kB active_file:10168kB inactive_file:159344kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:119376kB dirty:1044kB writeback:0kB shmem:16844kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11760kB pagetables:4088kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 130.513706][ T5955] zswap: compressor not available [ 130.643902][ T5953] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:196kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:8kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:156kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 130.760894][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 130.771901][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 130.781015][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 130.824823][ T5953] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 130.906250][ T5953] lowmem_reserve[]: 0 2482 2484 2484 2484 [ 130.912625][ T5953] Node 0 DMA32 free:1468980kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB free_highatomic:0KB active_anon:40672kB inactive_anon:196kB active_file:8968kB inactive_file:160148kB unevictable:1536kB writepending:892kB zspages:268kB present:3129332kB managed:2542524kB mlocked:0kB bounce:0kB free_pcp:24836kB local_pcp:6968kB free_cma:0kB [ 131.113038][ T5953] lowmem_reserve[]: 0 0 1 1 1 [ 131.183735][ T5953] Node 0 Normal free:0kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 131.335971][ T5953] lowmem_reserve[]: 0 0 0 0 0 [ 131.378616][ T5975] FAULT_INJECTION: forcing a failure. [ 131.378616][ T5975] name failslab, interval 1, probability 0, space 0, times 1 [ 131.418613][ T5975] CPU: 0 UID: 0 PID: 5975 Comm: syz.2.11 Not tainted syzkaller #0 PREEMPT(full) [ 131.418648][ T5975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 131.418664][ T5975] Call Trace: [ 131.418672][ T5975] [ 131.418681][ T5975] dump_stack_lvl+0x16c/0x1f0 [ 131.418716][ T5975] should_fail_ex+0x512/0x640 [ 131.418743][ T5975] ? __kmalloc_noprof+0xca/0x870 [ 131.418787][ T5975] should_failslab+0xc2/0x120 [ 131.418822][ T5975] __kmalloc_noprof+0xdd/0x870 [ 131.418911][ T5975] ? lsm_blob_alloc+0x68/0x90 [ 131.418967][ T5975] ? lsm_blob_alloc+0x68/0x90 [ 131.419004][ T5975] lsm_blob_alloc+0x68/0x90 [ 131.419054][ T5975] security_prepare_creds+0x30/0x270 [ 131.419094][ T5975] prepare_creds+0x501/0x740 [ 131.419127][ T5975] set_current_groups+0x15/0xd0 [ 131.419156][ T5975] __do_sys_setgroups+0x3e0/0x4f0 [ 131.419190][ T5975] do_syscall_64+0xcd/0xf80 [ 131.419222][ T5975] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.419252][ T5975] RIP: 0033:0x7f77b8f8f7c9 [ 131.419273][ T5975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 131.419297][ T5975] RSP: 002b:00007f77b9d5b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000074 [ 131.419321][ T5975] RAX: ffffffffffffffda RBX: 00007f77b91e5fa0 RCX: 00007f77b8f8f7c9 [ 131.419338][ T5975] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000008 [ 131.419353][ T5975] RBP: 00007f77b9013f91 R08: 0000000000000000 R09: 0000000000000000 [ 131.419368][ T5975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 131.419383][ T5975] R13: 00007f77b91e6038 R14: 00007f77b91e5fa0 R15: 00007ffcfd452cf8 [ 131.419415][ T5975] [ 131.640625][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 131.646835][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 131.662638][ T5953] Node 1 Normal free:3890208kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:196kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:21984kB local_pcp:7648kB free_cma:0kB [ 131.730710][ T5967] FAULT_INJECTION: forcing a failure. [ 131.730710][ T5967] name failslab, interval 1, probability 0, space 0, times 0 [ 131.744927][ T5967] CPU: 0 UID: 0 PID: 5967 Comm: syz.3.9 Not tainted syzkaller #0 PREEMPT(full) [ 131.744959][ T5967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 131.744973][ T5967] Call Trace: [ 131.744981][ T5967] [ 131.744989][ T5967] dump_stack_lvl+0x16c/0x1f0 [ 131.745024][ T5967] should_fail_ex+0x512/0x640 [ 131.745053][ T5967] should_failslab+0xc2/0x120 [ 131.745085][ T5967] kmem_cache_alloc_node_noprof+0x78/0x760 [ 131.745124][ T5967] ? percpu_ref_put_many.constprop.0+0xc4/0x2a0 [ 131.745160][ T5967] ? zswap_store+0x850/0x2800 [ 131.745203][ T5967] ? zswap_store+0x850/0x2800 [ 131.745236][ T5967] zswap_store+0x850/0x2800 [ 131.745269][ T5967] ? smp_call_function_many_cond+0x431/0x15e0 [ 131.745323][ T5967] ? __pfx_zswap_store+0x10/0x10 [ 131.745368][ T5967] ? folio_free_swap+0x141/0x4b0 [ 131.745404][ T5967] ? do_raw_spin_unlock+0x172/0x230 [ 131.745442][ T5967] ? _raw_spin_unlock+0x28/0x50 [ 131.745472][ T5967] ? folio_free_swap+0x19d/0x4b0 [ 131.745513][ T5967] swap_writeout+0x3f4/0x1090 [ 131.745563][ T5967] shrink_folio_list+0x3d7a/0x47e0 [ 131.745607][ T5967] ? __pfx_shrink_folio_list+0x10/0x10 [ 131.745638][ T5967] ? trace_mm_vmscan_lru_isolate+0x1bc/0x210 [ 131.745668][ T5967] ? count_memcg_events+0x100/0x290 [ 131.745698][ T5967] ? isolate_folios+0x212d/0x2f20 [ 131.745726][ T5967] ? isolate_folios+0x26ae/0x2f20 [ 131.745801][ T5967] ? find_held_lock+0x2b/0x80 [ 131.745837][ T5967] ? mark_held_locks+0x49/0x80 [ 131.745865][ T5967] evict_folios+0x79c/0x1b30 [ 131.745911][ T5967] ? __pfx_evict_folios+0x10/0x10 [ 131.745953][ T5967] ? find_held_lock+0x2b/0x80 [ 131.745990][ T5967] ? mem_cgroup_get_nr_swap_pages+0x20/0x120 [ 131.746042][ T5967] ? sc_swappiness+0xd4/0x190 [ 131.746087][ T5967] try_to_shrink_lruvec+0x585/0x9b0 [ 131.746147][ T5967] ? __pfx_try_to_shrink_lruvec+0x10/0x10 [ 131.746197][ T5967] shrink_lruvec+0x312/0x2b50 [ 131.746228][ T5967] ? find_held_lock+0x2b/0x80 [ 131.746262][ T5967] ? xa_load+0x149/0x2c0 [ 131.746295][ T5967] ? __lock_acquire+0x433/0x22f0 [ 131.746319][ T5967] ? __pfx_xa_load+0x10/0x10 [ 131.746349][ T5967] ? find_held_lock+0x2b/0x80 [ 131.746384][ T5967] ? __pfx_shrink_lruvec+0x10/0x10 [ 131.746415][ T5967] ? __lock_acquire+0x433/0x22f0 [ 131.746439][ T5967] ? find_held_lock+0x2b/0x80 [ 131.746479][ T5967] ? do_shrink_slab+0xa9f/0x1130 [ 131.746523][ T5967] ? __lock_acquire+0x433/0x22f0 [ 131.746551][ T5967] ? shrink_slab+0x54d/0x12b0 [ 131.746593][ T5967] ? __pfx___might_resched+0x10/0x10 [ 131.746628][ T5967] ? page_counter_calculate_protection+0x23/0x720 [ 131.746666][ T5967] ? mem_cgroup_iter+0x38a/0x710 [ 131.746704][ T5967] shrink_node+0x988/0x3da0 [ 131.746739][ T5967] ? __lock_acquire+0x433/0x22f0 [ 131.746771][ T5967] ? __queue_work+0x340/0x10f0 [ 131.746805][ T5967] ? __pfx_shrink_node+0x10/0x10 [ 131.746843][ T5967] ? queue_work_on+0x12a/0x1f0 [ 131.746868][ T5967] ? lockdep_hardirqs_on+0x7c/0x110 [ 131.746896][ T5967] ? queue_work_on+0x8b/0x1f0 [ 131.746924][ T5967] ? vmpressure.part.0+0x2ba/0x350 [ 131.746965][ T5967] ? do_try_to_free_pages+0x362/0x1920 [ 131.747002][ T5967] do_try_to_free_pages+0x362/0x1920 [ 131.747056][ T5967] ? __pfx_do_try_to_free_pages+0x10/0x10 [ 131.747092][ T5967] ? lock_acquire+0x179/0x330 [ 131.747115][ T5967] ? find_held_lock+0x2b/0x80 [ 131.747152][ T5967] try_to_free_mem_cgroup_pages+0x31b/0x740 [ 131.747191][ T5967] ? __pfx_try_to_free_mem_cgroup_pages+0x10/0x10 [ 131.747243][ T5967] ? page_counter_set_max+0x128/0x170 [ 131.747288][ T5967] mem_cgroup_resize_max+0x113/0x2b0 [ 131.747318][ T5967] mem_cgroup_write+0x295/0x3a0 [ 131.747340][ T5967] ? __pfx_mem_cgroup_write+0x10/0x10 [ 131.747364][ T5967] ? kernfs_root+0xf8/0x2a0 [ 131.747392][ T5967] cgroup_file_write+0x1ef/0x7a0 [ 131.747430][ T5967] ? __pfx_mem_cgroup_write+0x10/0x10 [ 131.747454][ T5967] ? __pfx_cgroup_file_write+0x10/0x10 [ 131.747500][ T5967] kernfs_fop_write_iter+0x3af/0x570 [ 131.747530][ T5967] ? __pfx_cgroup_file_write+0x10/0x10 [ 131.747591][ T5967] iter_file_splice_write+0xa24/0x12b0 [ 131.747638][ T5967] ? copy_splice_read+0x89c/0xc20 [ 131.747665][ T5967] ? __pfx_iter_file_splice_write+0x10/0x10 [ 131.747713][ T5967] ? __pfx_copy_splice_read+0x10/0x10 [ 131.747784][ T5967] ? __pfx_iter_file_splice_write+0x10/0x10 [ 131.747819][ T5967] direct_splice_actor+0x192/0x6c0 [ 131.747853][ T5967] splice_direct_to_actor+0x345/0xa30 [ 131.747884][ T5967] ? __pfx_direct_splice_actor+0x10/0x10 [ 131.747922][ T5967] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 131.747961][ T5967] do_splice_direct+0x174/0x240 [ 131.747991][ T5967] ? __pfx_do_splice_direct+0x10/0x10 [ 131.748023][ T5967] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 131.748057][ T5967] ? rw_verify_area+0xcf/0x6c0 [ 131.748085][ T5967] do_sendfile+0xb06/0xe50 [ 131.748117][ T5967] ? __pfx_do_sendfile+0x10/0x10 [ 131.748143][ T5967] ? __sys_sendmsg+0x18c/0x220 [ 131.748173][ T5967] ? __x64_sys_futex+0x1e0/0x4c0 [ 131.748200][ T5967] ? __x64_sys_futex+0x1e9/0x4c0 [ 131.748232][ T5967] __x64_sys_sendfile64+0x1d8/0x220 [ 131.748268][ T5967] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 131.748301][ T5967] ? syscall_user_dispatch+0x78/0x140 [ 131.748341][ T5967] do_syscall_64+0xcd/0xf80 [ 131.748371][ T5967] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.748396][ T5967] RIP: 0033:0x7fdd6b38f7c9 [ 131.748416][ T5967] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 131.748438][ T5967] RSP: 002b:00007fdd6c28e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 131.748461][ T5967] RAX: ffffffffffffffda RBX: 00007fdd6b5e5fa0 RCX: 00007fdd6b38f7c9 [ 131.748476][ T5967] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 0000000000000009 [ 131.748490][ T5967] RBP: 00007fdd6b413f91 R08: 0000000000000000 R09: 0000000000000000 [ 131.748504][ T5967] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 131.748518][ T5967] R13: 00007fdd6b5e6038 R14: 00007fdd6b5e5fa0 R15: 00007ffffdf3fa18 [ 131.748549][ T5967] [ 131.806807][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 132.413035][ T5953] lowmem_reserve[]: 0 0 0 0 0 [ 132.418719][ T5953] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 132.433916][ T5953] Node 0 DMA32: 3*4kB (UME) 1*8kB (M) 0*16kB 2*32kB (UE) 2*64kB (ME) 2*128kB (UM) 2*256kB (UE) 0*512kB 2*1024kB (UE) 5*2048kB (UME) 355*4096kB (M) = 1467348kB [ 132.451702][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 132.512559][ T5953] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 132.526340][ T5953] Node 1 Normal: 218*4kB (UME) 47*8kB (UME) 48*16kB (UME) 56*32kB (UME) 19*64kB (UME) 9*128kB (UME) 2*256kB (M) 3*512kB (UM) 3*1024kB (UME) 2*2048kB (UE) 946*4096kB (M) = 3890208kB [ 132.545945][ T5953] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 132.556619][ T5953] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 132.567909][ T5953] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 132.578533][ T5953] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 132.588330][ T5953] 48188 total pagecache pages [ 132.593652][ T5953] 38 pages in swap cache [ 132.598950][ T5953] Free swap = 123172kB [ 132.603426][ T5953] Total swap = 124996kB [ 132.607696][ T5953] 2097051 pages RAM [ 132.612135][ T5953] 0 pages HighMem/MovableOnly [ 132.617055][ T5953] 429330 pages reserved [ 132.621819][ T5953] 0 pages cma reserved [ 132.964458][ T5975] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 133.770222][ T5987] FAULT_INJECTION: forcing a failure. [ 133.770222][ T5987] name failslab, interval 1, probability 0, space 0, times 0 [ 133.866171][ T5987] CPU: 0 UID: 0 PID: 5987 Comm: syz.1.13 Not tainted syzkaller #0 PREEMPT(full) [ 133.866224][ T5987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 133.866245][ T5987] Call Trace: [ 133.866257][ T5987] [ 133.866271][ T5987] dump_stack_lvl+0x16c/0x1f0 [ 133.866321][ T5987] should_fail_ex+0x512/0x640 [ 133.866358][ T5987] ? fs_reclaim_acquire+0xae/0x150 [ 133.866408][ T5987] should_failslab+0xc2/0x120 [ 133.866457][ T5987] kmem_cache_alloc_noprof+0x75/0x720 [ 133.866523][ T5987] ? __pfx_map_id_range_down+0x10/0x10 [ 133.866572][ T5987] ? security_inode_alloc+0x3b/0x2b0 [ 133.866619][ T5987] ? security_inode_alloc+0x3b/0x2b0 [ 133.866658][ T5987] security_inode_alloc+0x3b/0x2b0 [ 133.866701][ T5987] inode_init_always_gfp+0xced/0x1040 [ 133.866755][ T5987] alloc_inode+0x86/0x240 [ 133.866787][ T5987] new_inode+0x22/0x1c0 [ 133.866823][ T5987] rpc_new_dir+0xa1/0x440 [ 133.866888][ T5987] rpc_populate.constprop.0+0x51/0x1d0 [ 133.866926][ T5987] ? d_instantiate+0x77/0x90 [ 133.866980][ T5987] ? __pfx_rpc_fill_super+0x10/0x10 [ 133.867017][ T5987] rpc_fill_super+0x2b9/0x4f0 [ 133.867054][ T5987] ? __pfx_rpc_fill_super+0x10/0x10 [ 133.867088][ T5987] get_tree_keyed+0x10e/0x1d0 [ 133.867136][ T5987] vfs_get_tree+0x8e/0x330 [ 133.867170][ T5987] vfs_cmd_create+0xd7/0x2a0 [ 133.867207][ T5987] __do_sys_fsconfig+0x7b8/0xbe0 [ 133.867247][ T5987] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 133.867303][ T5987] do_syscall_64+0xcd/0xf80 [ 133.867370][ T5987] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.867407][ T5987] RIP: 0033:0x7fe01558f7c9 [ 133.867437][ T5987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.867471][ T5987] RSP: 002b:00007fe016475038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 133.867929][ T5987] RAX: ffffffffffffffda RBX: 00007fe0157e5fa0 RCX: 00007fe01558f7c9 [ 133.867972][ T5987] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000005 [ 133.867992][ T5987] RBP: 00007fe015613f91 R08: 0000000000000000 R09: 0000000000000000 [ 133.868013][ T5987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 133.868032][ T5987] R13: 00007fe0157e6038 R14: 00007fe0157e5fa0 R15: 00007ffffa085a68 [ 133.868079][ T5987] [ 134.157570][ T5987] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory / [ 134.536835][ T5994] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 134.671763][ C1] vcan0: j1939_tp_rxtimer: 0xffff88802dfe0800: rx timeout, send abort [ 135.177866][ T6003] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 135.182369][ C1] vcan0: j1939_tp_rxtimer: 0xffff88802dfe0800: abort rx timeout. Force session deactivation [ 135.360382][ T5991] input: jJǸ-¶š9ã%vø“ûJ86Ö‘ as /devices/virtual/input/input5 [ 136.817338][ T6012] random: crng reseeded on system resumption [ 136.905005][ T6012] hub 1-0:1.0: USB hub found [ 136.930940][ T6012] hub 1-0:1.0: 1 port detected [ 140.348766][ T6045] random: crng reseeded on system resumption [ 140.526823][ T6045] Restarting kernel threads ... [ 140.591919][ T6045] Done restarting kernel threads. [ 142.839037][ T6068] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6 [ 143.597827][ T6079] Console: switching to colour VGA+ 80x25 [ 144.058104][ T1306] ieee802154 phy0 wpan0: encryption failed: -22 [ 144.065541][ T1306] ieee802154 phy1 wpan1: encryption failed: -22 [ 144.091840][ T6084] tipc: Started in network mode [ 144.099819][ T6084] tipc: Node identity ffffffff, cluster identity 4711 [ 144.123272][ T6084] tipc: Node number set to 4294967295 syzkaller syzkaller login: [ 146.084926][ T6100] bridge0: port 3(gretap0) entered blocking state [ 146.093243][ T6100] bridge0: port 3(gretap0) entered disabled state [ 146.106502][ T6100] gretap0: entered allmulticast mode [ 146.113896][ T6100] gretap0: entered promiscuous mode [ 146.159347][ T6100] bridge0: port 3(gretap0) entered blocking state [ 146.165936][ T6100] bridge0: port 3(gretap0) entered forwarding state [ 146.359142][ T6104] netlink: 28 bytes leftover after parsing attributes in process `syz.1.37'. [ 146.498286][ T6104] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 146.530493][ T6104] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 146.573720][ T6104] bond0 (unregistering): Released all slaves [ 146.737704][ T6104] Zero length message leads to an empty skb [ 149.629186][ T6146] zswap: compressor not available [ 152.021743][ T6201] FAULT_INJECTION: forcing a failure. [ 152.021743][ T6201] name failslab, interval 1, probability 0, space 0, times 0 [ 152.045770][ T6201] CPU: 0 UID: 0 PID: 6201 Comm: syz.2.58 Not tainted syzkaller #0 PREEMPT(full) [ 152.045814][ T6201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 152.045833][ T6201] Call Trace: [ 152.045845][ T6201] [ 152.045857][ T6201] dump_stack_lvl+0x16c/0x1f0 [ 152.045905][ T6201] should_fail_ex+0x512/0x640 [ 152.045939][ T6201] ? __kmalloc_node_noprof+0xcd/0x890 [ 152.045981][ T6201] should_failslab+0xc2/0x120 [ 152.046029][ T6201] __kmalloc_node_noprof+0xe0/0x890 [ 152.046065][ T6201] ? alloc_slab_obj_exts+0x43/0xf0 [ 152.046118][ T6201] ? alloc_slab_obj_exts+0x43/0xf0 [ 152.046164][ T6201] alloc_slab_obj_exts+0x43/0xf0 [ 152.046210][ T6201] new_slab+0x283/0x360 [ 152.046259][ T6201] ___slab_alloc+0xee7/0x1cd0 [ 152.046309][ T6201] ? sk_prot_alloc+0x60/0x2a0 [ 152.046368][ T6201] ? sk_prot_alloc+0x60/0x2a0 [ 152.046410][ T6201] ? __slab_alloc.constprop.0+0x63/0x110 [ 152.046456][ T6201] __slab_alloc.constprop.0+0x63/0x110 [ 152.046526][ T6201] kmem_cache_alloc_noprof+0x43f/0x720 [ 152.046576][ T6201] ? sk_prot_alloc+0x60/0x2a0 [ 152.046624][ T6201] ? sk_prot_alloc+0x60/0x2a0 [ 152.046663][ T6201] sk_prot_alloc+0x60/0x2a0 [ 152.046711][ T6201] sk_alloc+0x36/0xb80 [ 152.046746][ T6201] rds_create+0x9e/0x5f0 [ 152.046797][ T6201] __sock_create+0x339/0x8a0 [ 152.046850][ T6201] __sys_socket+0x153/0x2d0 [ 152.046898][ T6201] ? __pfx___sys_socket+0x10/0x10 [ 152.046948][ T6201] ? xfd_validate_state+0x61/0x180 [ 152.046997][ T6201] ? __pfx_ksys_write+0x10/0x10 [ 152.047043][ T6201] __x64_sys_socket+0x72/0xb0 [ 152.047090][ T6201] ? lockdep_hardirqs_on+0x7c/0x110 [ 152.047128][ T6201] do_syscall_64+0xcd/0xf80 [ 152.047170][ T6201] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 152.047203][ T6201] RIP: 0033:0x7f77b8f8f7c9 [ 152.047230][ T6201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 152.047261][ T6201] RSP: 002b:00007f77b9d5b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 152.047292][ T6201] RAX: ffffffffffffffda RBX: 00007f77b91e5fa0 RCX: 00007f77b8f8f7c9 [ 152.047313][ T6201] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000015 [ 152.047332][ T6201] RBP: 00007f77b9013f91 R08: 0000000000000000 R09: 0000000000000000 [ 152.047353][ T6201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 152.047372][ T6201] R13: 00007f77b91e6038 R14: 00007f77b91e5fa0 R15: 00007ffcfd452cf8 [ 152.047414][ T6201] [ 152.576842][ T6202] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 154.837436][ T6236] netlink: 28 bytes leftover after parsing attributes in process `syz.3.65'. [ 155.279971][ T6236] veth1_macvtap: left promiscuous mode [ 156.571238][ T6255] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 156.894422][ T6251] syz.1.68 (6251) used greatest stack depth: 19080 bytes left [ 157.354822][ T6265] random: crng reseeded on system resumption [ 158.802431][ T6288] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 159.246516][ T6290] netlink: 28 bytes leftover after parsing attributes in process `syz.0.75'. [ 160.397005][ T6308] netlink: 16 bytes leftover after parsing attributes in process `syz.1.79'. [ 161.230671][ T6320] capability: warning: `syz.0.81' uses 32-bit capabilities (legacy support in use) [ 162.620238][ T6337] futex_wake_op: syz.0.84 tries to shift op by -2048; fix this program [ 162.662420][ T6337] 0x000000000001-0x000000020000 : "" [ 162.756552][ T6337] ftl_cs: FTL header corrupt! [ 164.727897][ T13] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.247903][ T6364] FAULT_INJECTION: forcing a failure. [ 165.247903][ T6364] name failslab, interval 1, probability 0, space 0, times 0 [ 165.351293][ T6364] CPU: 0 UID: 0 PID: 6364 Comm: syz.0.91 Not tainted syzkaller #0 PREEMPT(full) [ 165.351342][ T6364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 165.351363][ T6364] Call Trace: [ 165.351374][ T6364] [ 165.351388][ T6364] dump_stack_lvl+0x16c/0x1f0 [ 165.351440][ T6364] should_fail_ex+0x512/0x640 [ 165.351478][ T6364] ? __kmalloc_cache_noprof+0x5f/0x770 [ 165.351539][ T6364] should_failslab+0xc2/0x120 [ 165.351591][ T6364] __kmalloc_cache_noprof+0x72/0x770 [ 165.351648][ T6364] ? devinet_init_net+0x56/0x910 [ 165.351717][ T6364] ? devinet_init_net+0x56/0x910 [ 165.351772][ T6364] ? __pfx_devinet_init_net+0x10/0x10 [ 165.351834][ T6364] devinet_init_net+0x56/0x910 [ 165.351894][ T6364] ? __pfx_devinet_init_net+0x10/0x10 [ 165.351950][ T6364] ops_init+0x1e2/0x5f0 [ 165.351995][ T6364] setup_net+0x11d/0x3a0 [ 165.352043][ T6364] ? __pfx_setup_net+0x10/0x10 [ 165.352081][ T6364] ? lockdep_init_map_type+0x5c/0x270 [ 165.352122][ T6364] ? mutex_init_lockep+0x110/0x150 [ 165.352171][ T6364] copy_net_ns+0x351/0x5d0 [ 165.352221][ T6364] create_new_namespaces+0x3ea/0xab0 [ 165.352320][ T6364] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 165.352376][ T6364] ksys_unshare+0x45b/0xa40 [ 165.352408][ T6364] ? __pfx_ksys_unshare+0x10/0x10 [ 165.352467][ T6364] ? xfd_validate_state+0x61/0x180 [ 165.352535][ T6364] __x64_sys_unshare+0x31/0x40 [ 165.352567][ T6364] do_syscall_64+0xcd/0xf80 [ 165.352611][ T6364] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.352654][ T6364] RIP: 0033:0x7f2c91b8f7c9 [ 165.352682][ T6364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 165.352717][ T6364] RSP: 002b:00007f2c92aab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 165.352750][ T6364] RAX: ffffffffffffffda RBX: 00007f2c91de5fa0 RCX: 00007f2c91b8f7c9 [ 165.352772][ T6364] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 165.352793][ T6364] RBP: 00007f2c91c13f91 R08: 0000000000000000 R09: 0000000000000000 [ 165.352814][ T6364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 165.352835][ T6364] R13: 00007f2c91de6038 R14: 00007f2c91de5fa0 R15: 00007ffcc4a80eb8 [ 165.352881][ T6364] [ 165.589806][ C0] vkms_vblank_simulate: vblank timer overrun [ 166.199958][ T6366] can: request_module (can-proto-0) failed. [ 166.599864][ T6366] binder: BINDER_SET_CONTEXT_MGR already set [ 166.626222][ T6366] binder: 6365:6366 ioctl 4018620d 9 returned -16 [ 168.069077][ T6388] vhci_hcd: invalid port number 16 [ 168.244256][ T6395] sg_write: process 104 (syz.0.97) changed security contexts after opening file descriptor, this is not allowed. [ 168.837516][ T6405] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(3) [ 169.461198][ T6415] mmap: syz.2.103 (6415) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 170.086114][ T6438] bond0: option all_slaves_active: invalid value () [ 170.621817][ T6454] netlink: 8 bytes leftover after parsing attributes in process `syz.1.108'. [ 170.682863][ T6452] netlink: 338 bytes leftover after parsing attributes in process `syz.1.108'. [ 170.891572][ T6453] netlink: 338 bytes leftover after parsing attributes in process `syz.1.108'. [ 170.924445][ T6454] netlink: 338 bytes leftover after parsing attributes in process `syz.1.108'. [ 172.799525][ T6481] Invalid ELF header magic: != ELF [ 172.985665][ C0] vcan0: j1939_tp_rxtimer: 0xffff88802dfe3c00: rx timeout, send abort [ 173.496657][ C0] vcan0: j1939_tp_rxtimer: 0xffff88802dfe3c00: abort rx timeout. Force session deactivation [ 175.030254][ T6517] openvswitch: netlink: ERSPAN option length err (len 256, max 255). [ 175.097411][ T6520] Invalid ELF header magic: != ELF [ 175.988535][ T6541] netlink: 'syz.2.131': attribute type 19 has an invalid length. [ 176.025722][ T6541] netlink: 226 bytes leftover after parsing attributes in process `syz.2.131'. [ 176.342739][ T6552] netlink: 334 bytes leftover after parsing attributes in process `syz.1.135'. [ 176.513937][ T6555] netlink: 24 bytes leftover after parsing attributes in process `syz.2.136'. [ 176.579375][ T6560] FAULT_INJECTION: forcing a failure. [ 176.579375][ T6560] name failslab, interval 1, probability 0, space 0, times 0 [ 176.620148][ T6560] CPU: 1 UID: 0 PID: 6560 Comm: syz.3.138 Not tainted syzkaller #0 PREEMPT(full) [ 176.620194][ T6560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 176.620214][ T6560] Call Trace: [ 176.620225][ T6560] [ 176.620237][ T6560] dump_stack_lvl+0x16c/0x1f0 [ 176.620282][ T6560] should_fail_ex+0x512/0x640 [ 176.620316][ T6560] ? fs_reclaim_acquire+0xae/0x150 [ 176.620362][ T6560] should_failslab+0xc2/0x120 [ 176.620407][ T6560] __kmalloc_noprof+0xdd/0x870 [ 176.620459][ T6560] ? security_inode_init_security+0x13f/0x390 [ 176.620519][ T6560] ? security_inode_init_security+0x13f/0x390 [ 176.620573][ T6560] security_inode_init_security+0x13f/0x390 [ 176.620649][ T6560] ? __pfx_shmem_initxattrs+0x10/0x10 [ 176.620689][ T6560] ? __pfx_security_inode_init_security+0x10/0x10 [ 176.620758][ T6560] shmem_mknod+0x22e/0x450 [ 176.620807][ T6560] shmem_mkdir+0x31/0x80 [ 176.620848][ T6560] vfs_mkdir+0x731/0xb60 [ 176.620888][ T6560] do_mkdirat+0x442/0x5e0 [ 176.620938][ T6560] ? __pfx_do_mkdirat+0x10/0x10 [ 176.620982][ T6560] ? strncpy_from_user+0x203/0x2e0 [ 176.621052][ T6560] ? getname_flags.part.0+0x1c5/0x550 [ 176.621114][ T6560] __x64_sys_mkdir+0xef/0x140 [ 176.621161][ T6560] do_syscall_64+0xcd/0xf80 [ 176.621206][ T6560] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 176.621240][ T6560] RIP: 0033:0x7fdd6b38f7c9 [ 176.621267][ T6560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 176.621300][ T6560] RSP: 002b:00007fdd6c28e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 176.621332][ T6560] RAX: ffffffffffffffda RBX: 00007fdd6b5e5fa0 RCX: 00007fdd6b38f7c9 [ 176.621353][ T6560] RDX: 0000000000000000 RSI: 0000000000008003 RDI: 0000000000000000 [ 176.621373][ T6560] RBP: 00007fdd6b413f91 R08: 0000000000000000 R09: 0000000000000000 [ 176.621394][ T6560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 176.621414][ T6560] R13: 00007fdd6b5e6038 R14: 00007fdd6b5e5fa0 R15: 00007ffffdf3fa18 [ 176.621460][ T6560] [ 176.935751][ T6555] syz.2.136 (6555): /proc/6554/oom_adj is deprecated, please use /proc/6554/oom_score_adj instead. [ 177.229821][ T6571] FAULT_INJECTION: forcing a failure. [ 177.229821][ T6571] name fail_futex, interval 1, probability 0, space 0, times 1 [ 177.263893][ T6571] CPU: 0 UID: 0 PID: 6571 Comm: syz.1.139 Not tainted syzkaller #0 PREEMPT(full) [ 177.263937][ T6571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 177.263958][ T6571] Call Trace: [ 177.263968][ T6571] [ 177.263981][ T6571] dump_stack_lvl+0x16c/0x1f0 [ 177.264025][ T6571] should_fail_ex+0x512/0x640 [ 177.264064][ T6571] get_futex_key+0x1d0/0x1560 [ 177.264106][ T6571] ? __pfx_get_futex_key+0x10/0x10 [ 177.264148][ T6571] ? __pfx___schedule+0x10/0x10 [ 177.264186][ T6571] futex_wait_setup+0x9d/0x550 [ 177.264240][ T6571] __futex_wait+0x193/0x2f0 [ 177.264286][ T6571] ? __pfx___futex_wait+0x10/0x10 [ 177.264328][ T6571] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 177.264371][ T6571] ? __pfx_futex_wake_mark+0x10/0x10 [ 177.264441][ T6571] futex_wait+0xe8/0x380 [ 177.264487][ T6571] ? __pfx_futex_wait+0x10/0x10 [ 177.264545][ T6571] ? madvise_unlock+0x7c/0x220 [ 177.264602][ T6571] do_futex+0x229/0x350 [ 177.264641][ T6571] ? __pfx_do_futex+0x10/0x10 [ 177.264692][ T6571] __x64_sys_futex+0x1e0/0x4c0 [ 177.264744][ T6571] ? __pfx___x64_sys_futex+0x10/0x10 [ 177.264810][ T6571] do_syscall_64+0xcd/0xf80 [ 177.264855][ T6571] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 177.264888][ T6571] RIP: 0033:0x7fe01558f7c9 [ 177.264912][ T6571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 177.264946][ T6571] RSP: 002b:00007fe0164540e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 177.264985][ T6571] RAX: ffffffffffffffda RBX: 00007fe0157e6098 RCX: 00007fe01558f7c9 [ 177.265008][ T6571] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe0157e6098 [ 177.265028][ T6571] RBP: 00007fe0157e6090 R08: 0000000000000000 R09: 0000000000000000 [ 177.265046][ T6571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 177.265064][ T6571] R13: 00007fe0157e6128 R14: 00007ffffa085980 R15: 00007ffffa085a68 [ 177.265106][ T6571] [ 177.955584][ T6582] FAULT_INJECTION: forcing a failure. [ 177.955584][ T6582] name failslab, interval 1, probability 0, space 0, times 0 [ 178.066135][ T6582] CPU: 0 UID: 0 PID: 6582 Comm: syz.2.140 Not tainted syzkaller #0 PREEMPT(full) [ 178.066179][ T6582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 178.066199][ T6582] Call Trace: [ 178.066208][ T6582] [ 178.066221][ T6582] dump_stack_lvl+0x16c/0x1f0 [ 178.066266][ T6582] should_fail_ex+0x512/0x640 [ 178.066308][ T6582] should_failslab+0xc2/0x120 [ 178.066355][ T6582] kmem_cache_alloc_node_noprof+0x78/0x760 [ 178.066412][ T6582] ? alloc_io_context+0x21/0x2f0 [ 178.066459][ T6582] ? alloc_io_context+0x21/0x2f0 [ 178.066495][ T6582] alloc_io_context+0x21/0x2f0 [ 178.066531][ T6582] set_task_ioprio+0x49e/0x670 [ 178.066575][ T6582] __do_sys_ioprio_set+0x55b/0xb50 [ 178.066605][ T6582] ? __do_sys_ioprio_set+0x3dd/0xb50 [ 178.066658][ T6582] do_syscall_64+0xcd/0xf80 [ 178.066703][ T6582] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 178.066737][ T6582] RIP: 0033:0x7f77b8f8f7c9 [ 178.066764][ T6582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 178.066797][ T6582] RSP: 002b:00007f77b71f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fb [ 178.066829][ T6582] RAX: ffffffffffffffda RBX: 00007f77b91e6090 RCX: 00007f77b8f8f7c9 [ 178.066850][ T6582] RDX: 0000000000004b34 RSI: 0000000000000000 RDI: 0000000000000003 [ 178.066869][ T6582] RBP: 00007f77b9013f91 R08: 0000000000000000 R09: 0000000000000000 [ 178.066897][ T6582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 178.066917][ T6582] R13: 00007f77b91e6128 R14: 00007f77b91e6090 R15: 00007ffcfd452cf8 [ 178.066963][ T6582] [ 178.447977][ T6586] FAULT_INJECTION: forcing a failure. [ 178.447977][ T6586] name failslab, interval 1, probability 0, space 0, times 0 [ 178.516538][ T6586] CPU: 0 UID: 0 PID: 6586 Comm: syz.1.142 Not tainted syzkaller #0 PREEMPT(full) [ 178.516589][ T6586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 178.516612][ T6586] Call Trace: [ 178.516622][ T6586] [ 178.516638][ T6586] dump_stack_lvl+0x16c/0x1f0 [ 178.516687][ T6586] should_fail_ex+0x512/0x640 [ 178.516719][ T6586] ? fs_reclaim_acquire+0xae/0x150 [ 178.516762][ T6586] should_failslab+0xc2/0x120 [ 178.516812][ T6586] __kmalloc_noprof+0xdd/0x870 [ 178.516862][ T6586] ? tomoyo_encode2+0x100/0x3e0 [ 178.516914][ T6586] ? tomoyo_encode2+0x100/0x3e0 [ 178.516955][ T6586] tomoyo_encode2+0x100/0x3e0 [ 178.517006][ T6586] tomoyo_encode+0x29/0x50 [ 178.517050][ T6586] tomoyo_realpath_from_path+0x18f/0x6e0 [ 178.517109][ T6586] tomoyo_path_number_perm+0x245/0x580 [ 178.517147][ T6586] ? tomoyo_path_number_perm+0x237/0x580 [ 178.517189][ T6586] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 178.517269][ T6586] ? d_alloc_parallel+0xb4e/0x1510 [ 178.517305][ T6586] ? current_check_access_path+0x33c/0x460 [ 178.517354][ T6586] ? __pfx_current_check_access_path+0x10/0x10 [ 178.517412][ T6586] tomoyo_path_mknod+0x10c/0x190 [ 178.517442][ T6586] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 178.517476][ T6586] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 178.517530][ T6586] security_path_mknod+0x161/0x310 [ 178.517573][ T6586] lookup_open.isra.0+0xc10/0x1780 [ 178.517619][ T6586] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 178.517663][ T6586] ? find_held_lock+0x2b/0x80 [ 178.517719][ T6586] ? __pfx_down_write+0x10/0x10 [ 178.517774][ T6586] path_openat+0xa95/0x3140 [ 178.517837][ T6586] ? __pfx_path_openat+0x10/0x10 [ 178.517897][ T6586] do_filp_open+0x20b/0x470 [ 178.517941][ T6586] ? __pfx_do_filp_open+0x10/0x10 [ 178.518017][ T6586] ? alloc_fd+0x471/0x7d0 [ 178.518070][ T6586] do_sys_openat2+0x11f/0x280 [ 178.518098][ T6586] ? __pfx_do_sys_openat2+0x10/0x10 [ 178.518130][ T6586] ? __fput+0x68d/0xb70 [ 178.518187][ T6586] __x64_sys_openat+0x174/0x210 [ 178.518217][ T6586] ? __pfx___x64_sys_openat+0x10/0x10 [ 178.518266][ T6586] do_syscall_64+0xcd/0xf80 [ 178.518305][ T6586] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 178.518334][ T6586] RIP: 0033:0x7fe01558f7c9 [ 178.518358][ T6586] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 178.518387][ T6586] RSP: 002b:00007fe016454038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 178.518417][ T6586] RAX: ffffffffffffffda RBX: 00007fe0157e6090 RCX: 00007fe01558f7c9 [ 178.518437][ T6586] RDX: 0000000000080040 RSI: 0000200000001040 RDI: ffffffffffffff9c [ 178.518456][ T6586] RBP: 00007fe015613f91 R08: 0000000000000000 R09: 0000000000000000 [ 178.518475][ T6586] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 178.518492][ T6586] R13: 00007fe0157e6128 R14: 00007fe0157e6090 R15: 00007ffffa085a68 [ 178.518537][ T6586] [ 178.525333][ T6586] ERROR: Out of memory at tomoyo_realpath_from_path. [ 179.797279][ T6603] bridge0: port 3(gretap0) entered blocking state [ 179.816321][ T6603] bridge0: port 3(gretap0) entered disabled state [ 179.837139][ T6603] gretap0: entered allmulticast mode [ 179.912650][ T6603] gretap0: entered promiscuous mode [ 179.962783][ T6603] bridge0: port 3(gretap0) entered blocking state [ 179.969632][ T6603] bridge0: port 3(gretap0) entered forwarding state [ 180.244791][ T6612] vhci_hcd: SetHubDepth req not supported for USB 2.0 roothub [ 180.599150][ T6620] futex_wake_op: syz.3.149 tries to shift op by -2048; fix this program [ 182.511510][ T6659] FAULT_INJECTION: forcing a failure. [ 182.511510][ T6659] name fail_futex, interval 1, probability 0, space 0, times 0 [ 182.548300][ T6659] CPU: 0 UID: 0 PID: 6659 Comm: syz.3.158 Not tainted syzkaller #0 PREEMPT(full) [ 182.548335][ T6659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 182.548351][ T6659] Call Trace: [ 182.548359][ T6659] [ 182.548369][ T6659] dump_stack_lvl+0x16c/0x1f0 [ 182.548404][ T6659] should_fail_ex+0x512/0x640 [ 182.548442][ T6659] get_futex_key+0x1d0/0x1560 [ 182.548473][ T6659] ? __pfx_get_futex_key+0x10/0x10 [ 182.548497][ T6659] ? __pfx_do_wp_page+0x10/0x10 [ 182.548550][ T6659] ? pte_shstk+0xa2/0xe0 [ 182.548590][ T6659] futex_wake+0xea/0x530 [ 182.548622][ T6659] ? __handle_mm_fault+0x50a/0x2a30 [ 182.548661][ T6659] ? __pfx_futex_wake+0x10/0x10 [ 182.548715][ T6659] ? __pfx_css_rstat_updated+0x10/0x10 [ 182.548780][ T6659] do_futex+0x1e3/0x350 [ 182.548828][ T6659] ? __pfx_do_futex+0x10/0x10 [ 182.548855][ T6659] ? find_held_lock+0x2b/0x80 [ 182.548891][ T6659] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 182.548933][ T6659] __x64_sys_futex+0x1e0/0x4c0 [ 182.548985][ T6659] ? __pfx___x64_sys_futex+0x10/0x10 [ 182.549018][ T6659] ? do_user_addr_fault+0x381/0xda0 [ 182.549053][ T6659] do_syscall_64+0xcd/0xf80 [ 182.549085][ T6659] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 182.549117][ T6659] RIP: 0033:0x7fdd6b38f7c9 [ 182.549136][ T6659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 182.549160][ T6659] RSP: 002b:00007fdd6c28e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 182.549185][ T6659] RAX: ffffffffffffffda RBX: 00007fdd6b5e5fa8 RCX: 00007fdd6b38f7c9 [ 182.549201][ T6659] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fdd6b5e5fac [ 182.549216][ T6659] RBP: 00007fdd6b5e5fa0 R08: 00007fdd6c28f000 R09: 0000000000000000 [ 182.549231][ T6659] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 182.549246][ T6659] R13: 00007fdd6b5e6038 R14: 00007ffffdf3f930 R15: 00007ffffdf3fa18 [ 182.549278][ T6659] [ 183.836482][ T6677] FAULT_INJECTION: forcing a failure. [ 183.836482][ T6677] name failslab, interval 1, probability 0, space 0, times 0 [ 183.877035][ T6677] CPU: 1 UID: 0 PID: 6677 Comm: syz.0.161 Not tainted syzkaller #0 PREEMPT(full) [ 183.877083][ T6677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 183.877104][ T6677] Call Trace: [ 183.877116][ T6677] [ 183.877129][ T6677] dump_stack_lvl+0x16c/0x1f0 [ 183.877179][ T6677] should_fail_ex+0x512/0x640 [ 183.877217][ T6677] ? __kmalloc_noprof+0xca/0x870 [ 183.877279][ T6677] should_failslab+0xc2/0x120 [ 183.877328][ T6677] __kmalloc_noprof+0xdd/0x870 [ 183.877391][ T6677] ? __register_sysctl_table+0xea2/0x1900 [ 183.877445][ T6677] ? __register_sysctl_table+0xea2/0x1900 [ 183.877489][ T6677] __register_sysctl_table+0xea2/0x1900 [ 183.877546][ T6677] ? __pfx___register_sysctl_table+0x10/0x10 [ 183.877589][ T6677] ? is_module_address+0x69/0xf0 [ 183.877633][ T6677] ? register_net_sysctl_sz+0x222/0x3d0 [ 183.877697][ T6677] __devinet_sysctl_register+0x1b9/0x360 [ 183.877756][ T6677] ? rcu_is_watching+0x12/0xc0 [ 183.877808][ T6677] ? __pfx___devinet_sysctl_register+0x10/0x10 [ 183.877861][ T6677] ? __kmalloc_node_track_caller_noprof+0x362/0x890 [ 183.877913][ T6677] ? __asan_memcpy+0x3c/0x60 [ 183.877955][ T6677] devinet_init_net+0x315/0x910 [ 183.878013][ T6677] ? __pfx_devinet_init_net+0x10/0x10 [ 183.878083][ T6677] ops_init+0x1e2/0x5f0 [ 183.878131][ T6677] setup_net+0x11d/0x3a0 [ 183.878176][ T6677] ? __pfx_setup_net+0x10/0x10 [ 183.878215][ T6677] ? lockdep_init_map_type+0x5c/0x270 [ 183.878257][ T6677] ? mutex_init_lockep+0x110/0x150 [ 183.878304][ T6677] copy_net_ns+0x351/0x5d0 [ 183.878357][ T6677] create_new_namespaces+0x3ea/0xab0 [ 183.878419][ T6677] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 183.878475][ T6677] ksys_unshare+0x45b/0xa40 [ 183.878509][ T6677] ? __pfx_ksys_unshare+0x10/0x10 [ 183.878568][ T6677] ? xfd_validate_state+0x61/0x180 [ 183.878649][ T6677] __x64_sys_unshare+0x31/0x40 [ 183.878682][ T6677] do_syscall_64+0xcd/0xf80 [ 183.878730][ T6677] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.878768][ T6677] RIP: 0033:0x7f2c91b8f7c9 [ 183.878796][ T6677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 183.878831][ T6677] RSP: 002b:00007f2c92a8a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 183.878865][ T6677] RAX: ffffffffffffffda RBX: 00007f2c91de6090 RCX: 00007f2c91b8f7c9 [ 183.878889][ T6677] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 183.878911][ T6677] RBP: 00007f2c91c13f91 R08: 0000000000000000 R09: 0000000000000000 [ 183.878933][ T6677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 183.878954][ T6677] R13: 00007f2c91de6128 R14: 00007f2c91de6090 R15: 00007ffcc4a80eb8 [ 183.879005][ T6677] [ 183.879119][ T6677] sysctl could not get directory: /net/ipv4/conf -12 [ 185.693311][ T6691] netlink: 334 bytes leftover after parsing attributes in process `syz.1.166'. [ 187.841942][ T6735] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 187.988731][ T6738] netlink: 4 bytes leftover after parsing attributes in process `syz.0.178'. [ 188.017763][ T6738] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9 [ 189.292274][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805864a800: rx timeout, send abort [ 189.801044][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805864a800: abort rx timeout. Force session deactivation [ 190.483199][ T6783] netlink: 8 bytes leftover after parsing attributes in process `syz.2.186'. [ 190.675603][ T6784] syz.1.187 uses obsolete (PF_INET,SOCK_PACKET) [ 190.761907][ T6791] input: jJǸí¸ü;9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input10 [ 192.202621][ T6819] ICMPv6: process `syz.2.192' is using deprecated sysctl (syscall) net.ipv6.neigh.veth0_to_bridge.base_reachable_time - use net.ipv6.neigh.veth0_to_bridge.base_reachable_time_ms instead [ 192.592860][ C0] vcan0: j1939_tp_rxtimer: 0xffff888028cadc00: rx timeout, send abort [ 192.702390][ T6827] netlink: 330 bytes leftover after parsing attributes in process `syz.1.193'. [ 193.101838][ C0] vcan0: j1939_tp_rxtimer: 0xffff888028cadc00: abort rx timeout. Force session deactivation [ 193.786577][ T6840] netlink: 28 bytes leftover after parsing attributes in process `syz.2.197'. [ 193.818545][ T6840] gretap0: left allmulticast mode [ 193.834448][ T6840] gretap0: left promiscuous mode [ 193.849661][ T6840] bridge0: port 3(gretap0) entered disabled state [ 193.885563][ T6840] bridge_slave_1: left allmulticast mode [ 193.911550][ T6840] bridge_slave_1: left promiscuous mode [ 193.938749][ T6840] bridge0: port 2(bridge_slave_1) entered disabled state [ 193.970004][ T6840] bridge_slave_0: left allmulticast mode [ 193.983932][ T6840] bridge_slave_0: left promiscuous mode [ 194.001062][ T6840] bridge0: port 1(bridge_slave_0) entered disabled state [ 194.087663][ T53] Bluetooth: hci1: unexpected event 0x36 length: 124 > 7 [ 195.690231][ C1] vcan0: j1939_tp_rxtimer: 0xffff888031dbc800: rx timeout, send abort [ 196.206117][ C1] vcan0: j1939_tp_rxtimer: 0xffff888031dbc800: abort rx timeout. Force session deactivation [ 196.591179][ T6888] netlink: 8 bytes leftover after parsing attributes in process `syz.2.206'. [ 199.059927][ T6922] Invalid ELF header magic: != ELF [ 201.828944][ T6983] random: crng reseeded on system resumption [ 202.758280][ T7003] FAULT_INJECTION: forcing a failure. [ 202.758280][ T7003] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 202.787151][ T7003] CPU: 1 UID: 0 PID: 7003 Comm: syz.2.233 Not tainted syzkaller #0 PREEMPT(full) [ 202.787192][ T7003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 202.787211][ T7003] Call Trace: [ 202.787221][ T7003] [ 202.787232][ T7003] dump_stack_lvl+0x16c/0x1f0 [ 202.787275][ T7003] should_fail_ex+0x512/0x640 [ 202.787314][ T7003] _copy_from_user+0x2e/0xd0 [ 202.787351][ T7003] move_addr_to_kernel+0x65/0x170 [ 202.787400][ T7003] __sys_connect+0xb1/0x160 [ 202.787452][ T7003] ? __pfx___sys_connect+0x10/0x10 [ 202.787519][ T7003] ? xfd_validate_state+0x61/0x180 [ 202.787567][ T7003] ? __pfx_ksys_write+0x10/0x10 [ 202.787616][ T7003] __x64_sys_connect+0x72/0xb0 [ 202.787666][ T7003] ? lockdep_hardirqs_on+0x7c/0x110 [ 202.787705][ T7003] do_syscall_64+0xcd/0xf80 [ 202.787746][ T7003] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.787779][ T7003] RIP: 0033:0x7f77b8f8f7c9 [ 202.787804][ T7003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 202.787834][ T7003] RSP: 002b:00007f77b9d5b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 202.787862][ T7003] RAX: ffffffffffffffda RBX: 00007f77b91e5fa0 RCX: 00007f77b8f8f7c9 [ 202.787882][ T7003] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 202.787902][ T7003] RBP: 00007f77b9013f91 R08: 0000000000000000 R09: 0000000000000000 [ 202.787920][ T7003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 202.787939][ T7003] R13: 00007f77b91e6038 R14: 00007f77b91e5fa0 R15: 00007ffcfd452cf8 [ 202.787982][ T7003] [ 203.610740][ T7016] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11 [ 204.275923][ T7030] netlink: 16 bytes leftover after parsing attributes in process `syz.2.240'. [ 204.989571][ T7050] futex_wake_op: syz.3.241 tries to shift op by -2048; fix this program [ 205.242916][ T7044] 0x000000000001-0x000000020000 : "" [ 205.315335][ T7044] ftl_cs: FTL header corrupt! [ 205.488110][ T1306] ieee802154 phy0 wpan0: encryption failed: -22 [ 205.494706][ T1306] ieee802154 phy1 wpan1: encryption failed: -22 [ 206.389616][ T7073] FAULT_INJECTION: forcing a failure. [ 206.389616][ T7073] name failslab, interval 1, probability 0, space 0, times 0 [ 206.476793][ T7073] CPU: 0 UID: 0 PID: 7073 Comm: syz.3.248 Not tainted syzkaller #0 PREEMPT(full) [ 206.476838][ T7073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 206.476857][ T7073] Call Trace: [ 206.476868][ T7073] [ 206.476881][ T7073] dump_stack_lvl+0x16c/0x1f0 [ 206.476927][ T7073] should_fail_ex+0x512/0x640 [ 206.476963][ T7073] ? kmem_cache_alloc_noprof+0x62/0x720 [ 206.477023][ T7073] should_failslab+0xc2/0x120 [ 206.477069][ T7073] kmem_cache_alloc_noprof+0x75/0x720 [ 206.477124][ T7073] ? vm_area_dup+0x27/0x8d0 [ 206.477179][ T7073] ? vm_area_dup+0x27/0x8d0 [ 206.477225][ T7073] vm_area_dup+0x27/0x8d0 [ 206.477275][ T7073] dup_mmap+0x86f/0x2250 [ 206.477333][ T7073] ? __pfx_dup_mmap+0x10/0x10 [ 206.477403][ T7073] copy_process+0x3f16/0x7680 [ 206.477455][ T7073] ? __pfx___futex_wait+0x10/0x10 [ 206.477518][ T7073] ? __pfx_copy_process+0x10/0x10 [ 206.477577][ T7073] ? find_held_lock+0x2b/0x80 [ 206.477631][ T7073] ? futex_private_hash_put+0xd5/0x190 [ 206.477675][ T7073] kernel_clone+0xfc/0x910 [ 206.477728][ T7073] ? __pfx_kernel_clone+0x10/0x10 [ 206.477805][ T7073] __do_sys_clone+0xce/0x120 [ 206.477853][ T7073] ? __pfx___do_sys_clone+0x10/0x10 [ 206.477919][ T7073] ? xfd_validate_state+0x61/0x180 [ 206.477987][ T7073] do_syscall_64+0xcd/0xf80 [ 206.478027][ T7073] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 206.478058][ T7073] RIP: 0033:0x7fdd6b38f7c9 [ 206.478085][ T7073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 206.478118][ T7073] RSP: 002b:00007fdd6c28dfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 206.478150][ T7073] RAX: ffffffffffffffda RBX: 00007fdd6b5e5fa0 RCX: 00007fdd6b38f7c9 [ 206.478173][ T7073] RDX: 0000200000000180 RSI: 0000200000001840 RDI: 0000000020000000 [ 206.478196][ T7073] RBP: 00007fdd6b413f91 R08: 0000200000000440 R09: 0000200000000440 [ 206.478217][ T7073] R10: 00002000000001c0 R11: 0000000000000206 R12: 0000000000000000 [ 206.478237][ T7073] R13: 00007fdd6b5e6038 R14: 00007fdd6b5e5fa0 R15: 00007ffffdf3fa18 [ 206.478283][ T7073] [ 207.295896][ T7086] random: crng reseeded on system resumption [ 207.586846][ T53] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5 [ 208.623089][ T7113] kAFS: unparsable volume name [ 208.628341][ T7114] kAFS: unparsable volume name [ 209.197223][ T7125] openvswitch: netlink: Key type 311 is out of range max 32 [ 209.541943][ T30] audit: type=1800 audit(1764722737.563:2): pid=7139 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.262" name="features" dev="configfs" ino=14977 res=0 errno=0 [ 211.725301][ T7165] bond0: no command found in slaves file - use +ifname or -ifname [ 211.846664][ T7162] bond0: no command found in slaves file - use +ifname or -ifname [ 213.722602][ T30] audit: type=1800 audit(1764722741.751:3): pid=7201 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.272" name="file0" dev="tmpfs" ino=358 res=0 errno=0 [ 214.202819][ T7209] Invalid ELF header magic: != ELF [ 214.395824][ T7212] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub. [ 214.634154][ T7217] bond0: option all_slaves_active: invalid value () [ 215.251399][ T7227] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78400 [ 215.301669][ T7227] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 215.338146][ T7227] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 215.378779][ T7227] page_type: f5(slab) [ 215.409439][ T7227] raw: 00fff00000000040 ffff88813ffb03c0 dead000000000122 0000000000000000 [ 215.418233][ T7227] raw: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000 [ 215.448757][ T7227] head: 00fff00000000040 ffff88813ffb03c0 dead000000000122 0000000000000000 [ 215.474512][ T7227] head: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000 [ 215.560182][ T7227] head: 00fff00000000003 ffffea0001e10001 00000000ffffffff 00000000ffffffff [ 215.592812][ T7227] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 215.657592][ T7227] page dumped because: unmovable page [ 215.729550][ T7227] page_owner tracks the page as allocated [ 215.771586][ T7237] netlink: 342 bytes leftover after parsing attributes in process `syz.3.276'. [ 215.849388][ T7227] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5842, tgid 5842 (syz-executor), ts 122176637790, free_ts 122101262047 [ 215.871515][ T7227] post_alloc_hook+0x1af/0x220 [ 215.929616][ T7227] get_page_from_freelist+0xd0b/0x31a0 [ 215.942116][ T7227] __alloc_frozen_pages_noprof+0x25f/0x2440 [ 216.072123][ T7227] alloc_pages_mpol+0x1fb/0x550 [ 216.103965][ T7227] new_slab+0x24a/0x360 [ 216.109452][ T7227] ___slab_alloc+0xee7/0x1cd0 [ 216.126264][ T7227] __slab_alloc.constprop.0+0x63/0x110 [ 216.144340][ T7227] __kmalloc_cache_noprof+0x477/0x770 [ 216.151127][ T7227] ipv6_add_dev+0x1c9/0x1590 [ 216.161433][ T7227] addrconf_notify+0x53e/0x19b0 [ 216.175038][ T7227] notifier_call_chain+0xbc/0x3e0 [ 216.189613][ T7227] call_netdevice_notifiers_info+0xbe/0x110 [ 216.199507][ T7227] register_netdevice+0x1792/0x21d0 [ 216.206414][ T7227] veth_newlink+0x44d/0xa00 [ 216.228913][ T7227] rtnl_newlink+0xc19/0x1f50 [ 216.236525][ T7227] rtnetlink_rcv_msg+0x95e/0xe90 [ 216.280796][ T7227] page last free pid 5843 tgid 5843 stack trace: [ 216.297139][ T7227] __free_frozen_pages+0x7df/0x1160 [ 216.304488][ T7227] qlist_free_all+0x4d/0x120 [ 216.317373][ T7227] kasan_quarantine_reduce+0x195/0x1e0 [ 216.319213][ T7244] Invalid ELF header magic: != ELF [ 216.369554][ T7227] __kasan_slab_alloc+0x69/0x90 [ 216.400406][ T7227] __kmalloc_cache_noprof+0x274/0x770 [ 216.406033][ T7227] netdevice_event+0x365/0x9d0 [ 216.443266][ T7227] notifier_call_chain+0xbc/0x3e0 [ 216.448415][ T7227] call_netdevice_notifiers_info+0xbe/0x110 [ 216.485729][ T7227] netif_open+0x142/0x160 [ 216.490787][ T7227] dev_open+0xb2/0x260 [ 216.494909][ T7227] bond_enslave+0x9a3/0x5db0 [ 216.513836][ T7227] do_set_master+0x40f/0x730 [ 216.518590][ T7227] do_setlink.constprop.0+0xbd8/0x4380 [ 216.533645][ T7271] netlink: 'syz.1.282': attribute type 1 has an invalid length. [ 216.548003][ T7227] rtnl_newlink+0x1370/0x1f50 [ 216.559459][ T7227] rtnetlink_rcv_msg+0x95e/0xe90 [ 216.589538][ T7227] netlink_rcv_skb+0x158/0x420 [ 220.111145][ T7350] FAULT_INJECTION: forcing a failure. [ 220.111145][ T7350] name failslab, interval 1, probability 0, space 0, times 0 [ 220.233464][ T7350] CPU: 0 UID: 0 PID: 7350 Comm: syz.3.295 Not tainted syzkaller #0 PREEMPT(full) [ 220.233496][ T7350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 220.233510][ T7350] Call Trace: [ 220.233517][ T7350] [ 220.233526][ T7350] dump_stack_lvl+0x16c/0x1f0 [ 220.233558][ T7350] should_fail_ex+0x512/0x640 [ 220.233600][ T7350] ? kmem_cache_alloc_noprof+0x62/0x720 [ 220.233639][ T7350] should_failslab+0xc2/0x120 [ 220.233670][ T7350] kmem_cache_alloc_noprof+0x75/0x720 [ 220.233706][ T7350] ? do_fcntl_add_lease+0x9d/0x550 [ 220.233740][ T7350] ? do_fcntl_add_lease+0x9d/0x550 [ 220.233767][ T7350] do_fcntl_add_lease+0x9d/0x550 [ 220.233796][ T7350] ? __pfx_do_fcntl_add_lease+0x10/0x10 [ 220.233823][ T7350] ? __pfx_futex_wait+0x10/0x10 [ 220.233864][ T7350] fcntl_setlease+0xfc/0x180 [ 220.233895][ T7350] ? __pfx_fcntl_setlease+0x10/0x10 [ 220.233932][ T7350] do_fcntl+0x153b/0x1660 [ 220.233969][ T7350] ? __pfx_do_fcntl+0x10/0x10 [ 220.234027][ T7350] ? tomoyo_file_fcntl+0x6c/0xc0 [ 220.234053][ T7350] __x64_sys_fcntl+0x163/0x200 [ 220.234095][ T7350] do_syscall_64+0xcd/0xf80 [ 220.234126][ T7350] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.234149][ T7350] RIP: 0033:0x7fdd6b38f7c9 [ 220.234167][ T7350] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 220.234189][ T7350] RSP: 002b:00007fdd6c24c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 [ 220.234211][ T7350] RAX: ffffffffffffffda RBX: 00007fdd6b5e6180 RCX: 00007fdd6b38f7c9 [ 220.234226][ T7350] RDX: 9ec0000000000000 RSI: 0000000000000400 RDI: 0000000000000003 [ 220.234241][ T7350] RBP: 00007fdd6b413f91 R08: 0000000000000000 R09: 0000000000000000 [ 220.234255][ T7350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 220.234269][ T7350] R13: 00007fdd6b5e6218 R14: 00007fdd6b5e6180 R15: 00007ffffdf3fa18 [ 220.234299][ T7350] [ 222.016079][ T7387] netlink: 8 bytes leftover after parsing attributes in process `syz.3.304'. [ 222.225743][ T7395] netlink: 330 bytes leftover after parsing attributes in process `syz.2.306'. [ 223.873718][ T53] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 224.053277][ T7431] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 224.436952][ C0] vcan0: j1939_tp_rxtimer: 0xffff888075894c00: rx timeout, send abort [ 224.605914][ T7447] random: crng reseeded on system resumption [ 224.697307][ T53] Bluetooth: hci3: unexpected event 0x1c length: 725 > 5 [ 224.945714][ C0] vcan0: j1939_tp_rxtimer: 0xffff888075894c00: abort rx timeout. Force session deactivation [ 225.688045][ T7476] kAFS: Invalid Command on /proc/fs/afs/cells file [ 225.816680][ T7478] ptrace attach of "./syz-executor exec"[7480] was attempted by "./syz-executor exec"[7478] [ 225.894473][ T53] Bluetooth: hci3: command tx timeout [ 230.703221][ T7578] Invalid ELF header magic: != ELF [ 231.567193][ T7594] svc: failed to register nfsdv3 RPC service (errno 111). [ 231.589138][ T7594] svc: failed to register nfsaclv3 RPC service (errno 111). [ 232.883771][ T7616] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 233.424908][ C1] vcan0: j1939_tp_rxtimer: 0xffff888055569000: rx timeout, send abort [ 233.910778][ T7625] FAULT_INJECTION: forcing a failure. [ 233.910778][ T7625] name failslab, interval 1, probability 0, space 0, times 0 [ 233.919276][ T7628] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 233.924239][ T7625] CPU: 0 UID: 7 PID: 7625 Comm: syz.1.354 Not tainted syzkaller #0 PREEMPT(full) [ 233.924287][ T7625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 233.924305][ T7625] Call Trace: [ 233.924315][ T7625] [ 233.924331][ T7625] dump_stack_lvl+0x16c/0x1f0 [ 233.924382][ T7625] should_fail_ex+0x512/0x640 [ 233.924440][ T7625] should_failslab+0xc2/0x120 [ 233.924494][ T7625] __kmalloc_noprof+0xdd/0x870 [ 233.924551][ T7625] ? nsim_fib_event_nb+0x45e/0x10d0 [ 233.924611][ T7625] ? nsim_fib_event_nb+0x45e/0x10d0 [ 233.924658][ T7625] nsim_fib_event_nb+0x45e/0x10d0 [ 233.924720][ T7625] call_fib_notifier+0x3c/0x80 [ 233.924766][ T7625] fib6_node_dump+0x1ea/0x320 [ 233.924816][ T7625] ? __pfx_fib6_node_dump+0x10/0x10 [ 233.924875][ T7625] ? do_raw_write_lock+0x121/0x3b0 [ 233.924928][ T7625] fib6_walk_continue+0x452/0x8d0 [ 233.924985][ T7625] fib6_walk+0x182/0x370 [ 233.925034][ T7625] fib6_tables_dump+0x222/0x370 [ 233.925095][ T7625] ? __pfx_fib6_tables_dump+0x10/0x10 [ 233.925166][ T7625] fib6_dump+0x48/0x60 [ 233.925213][ T7625] register_fib_notifier+0x123/0x470 [ 233.925261][ T7625] ? __pfx_nsim_fib_dump_inconsistent+0x10/0x10 [ 233.925322][ T7625] nsim_fib_create+0x938/0xc90 [ 233.925388][ T7625] ? __pfx_nsim_fib_create+0x10/0x10 [ 233.925461][ T7625] nsim_drv_probe+0xcec/0x1520 [ 233.925516][ T7625] ? __pfx_nsim_drv_probe+0x10/0x10 [ 233.925578][ T7625] ? kernfs_put+0x35/0x60 [ 233.925623][ T7625] ? sysfs_create_link+0x68/0xc0 [ 233.925661][ T7625] ? __pfx_nsim_bus_probe+0x10/0x10 [ 233.925718][ T7625] really_probe+0x241/0xa90 [ 233.925781][ T7625] __driver_probe_device+0x1de/0x440 [ 233.925835][ T7625] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 233.925881][ T7625] driver_probe_device+0x4c/0x1b0 [ 233.925938][ T7625] __device_attach_driver+0x1df/0x310 [ 233.925998][ T7625] ? __pfx___device_attach_driver+0x10/0x10 [ 233.926052][ T7625] bus_for_each_drv+0x159/0x1e0 [ 233.926099][ T7625] ? __pfx_bus_for_each_drv+0x10/0x10 [ 233.926160][ T7625] __device_attach+0x1e4/0x4b0 [ 233.926215][ T7625] ? __pfx___device_attach+0x10/0x10 [ 233.926275][ T7625] ? do_raw_spin_unlock+0x172/0x230 [ 233.926333][ T7625] bus_probe_device+0x17f/0x1c0 [ 233.926385][ T7625] device_add+0x1148/0x1950 [ 233.926442][ T7625] ? __pfx_device_add+0x10/0x10 [ 233.926478][ T7625] ? lockdep_init_map_type+0x5c/0x270 [ 233.926521][ T7625] ? __init_waitqueue_head+0xca/0x150 [ 233.926585][ T7625] new_device_store+0x41b/0x730 [ 233.926642][ T7625] ? __pfx_new_device_store+0x10/0x10 [ 233.926701][ T7625] ? find_held_lock+0x2b/0x80 [ 233.926754][ T7625] ? sysfs_file_kobj+0xe4/0x290 [ 233.926809][ T7625] ? __pfx_new_device_store+0x10/0x10 [ 233.926867][ T7625] bus_attr_store+0x74/0xb0 [ 233.926907][ T7625] ? __pfx_bus_attr_store+0x10/0x10 [ 233.926946][ T7625] sysfs_kf_write+0xf2/0x150 [ 233.927006][ T7625] kernfs_fop_write_iter+0x3af/0x570 [ 233.927056][ T7625] ? __pfx_sysfs_kf_write+0x10/0x10 [ 233.927120][ T7625] do_iter_readv_writev+0x662/0x9e0 [ 233.927174][ T7625] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 233.927241][ T7625] vfs_writev+0x35f/0xde0 [ 233.927282][ T7625] ? rcu_is_watching+0x12/0xc0 [ 233.927348][ T7625] ? __pfx_vfs_writev+0x10/0x10 [ 233.927389][ T7625] ? fdget_pos+0x2a2/0x370 [ 233.927481][ T7625] ? __fget_files+0x20e/0x3c0 [ 233.927524][ T7625] ? __rseq_handle_notify_resume+0x590/0x1070 [ 233.927601][ T7625] ? do_writev+0x132/0x340 [ 233.927639][ T7625] do_writev+0x132/0x340 [ 233.927679][ T7625] ? __pfx_do_writev+0x10/0x10 [ 233.927736][ T7625] do_syscall_64+0xcd/0xf80 [ 233.927787][ T7625] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 233.927824][ T7625] RIP: 0033:0x7fe01558f7c9 [ 233.927854][ T7625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 233.927890][ T7625] RSP: 002b:00007fe016475038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 233.927924][ T7625] RAX: ffffffffffffffda RBX: 00007fe0157e5fa0 RCX: 00007fe01558f7c9 [ 233.927949][ T7625] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000005 [ 233.927971][ T7625] RBP: 00007fe015613f91 R08: 0000000000000000 R09: 0000000000000000 [ 233.927994][ T7625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 233.928016][ T7625] R13: 00007fe0157e6038 R14: 00007fe0157e5fa0 R15: 00007ffffa085a68 [ 233.928069][ T7625] [ 233.943158][ C1] vcan0: j1939_tp_rxtimer: 0xffff888055569000: abort rx timeout. Force session deactivation [ 234.031611][ T7625] Failed to register fib notifier [ 234.553937][ T7637] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 236.143355][ T7661] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 237.627594][ T7682] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12 [ 238.150138][ T7683] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13 [ 238.292377][ T7625] netdevsim netdevsim511: probe with driver netdevsim failed with error -1 [ 238.909734][ T7704] FAULT_INJECTION: forcing a failure. [ 238.909734][ T7704] name failslab, interval 1, probability 0, space 0, times 0 [ 238.929516][ T7704] CPU: 0 UID: 0 PID: 7704 Comm: syz.3.372 Not tainted syzkaller #0 PREEMPT(full) [ 238.929560][ T7704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 238.929579][ T7704] Call Trace: [ 238.929589][ T7704] [ 238.929601][ T7704] dump_stack_lvl+0x16c/0x1f0 [ 238.929646][ T7704] should_fail_ex+0x512/0x640 [ 238.929681][ T7704] ? kmem_cache_alloc_noprof+0x62/0x720 [ 238.929742][ T7704] should_failslab+0xc2/0x120 [ 238.929784][ T7704] kmem_cache_alloc_noprof+0x75/0x720 [ 238.929836][ T7704] ? __proc_create+0x2c8/0x8d0 [ 238.929967][ T7704] ? __proc_create+0x2c8/0x8d0 [ 238.930006][ T7704] __proc_create+0x2c8/0x8d0 [ 238.930048][ T7704] ? __pfx___proc_create+0x10/0x10 [ 238.930089][ T7704] ? __lock_acquire+0x433/0x22f0 [ 238.930133][ T7704] proc_create_reg+0x7d/0x180 [ 238.930180][ T7704] proc_create_data+0x86/0x110 [ 238.930222][ T7704] ? __pfx_proc_create_data+0x10/0x10 [ 238.930278][ T7704] gss_svc_init_net+0x238/0x660 [ 238.930312][ T7704] ? __pfx_canbcm_pernet_init+0x10/0x10 [ 238.930361][ T7704] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 238.930399][ T7704] ops_init+0x1e2/0x5f0 [ 238.930443][ T7704] setup_net+0x11d/0x3a0 [ 238.930483][ T7704] ? __pfx_setup_net+0x10/0x10 [ 238.930519][ T7704] ? lockdep_init_map_type+0x5c/0x270 [ 238.930555][ T7704] ? mutex_init_lockep+0x110/0x150 [ 238.930607][ T7704] copy_net_ns+0x351/0x5d0 [ 238.930656][ T7704] create_new_namespaces+0x3ea/0xab0 [ 238.930713][ T7704] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 238.930771][ T7704] ksys_unshare+0x45b/0xa40 [ 238.930800][ T7704] ? __pfx_ksys_unshare+0x10/0x10 [ 238.930853][ T7704] ? xfd_validate_state+0x61/0x180 [ 238.930929][ T7704] __x64_sys_unshare+0x31/0x40 [ 238.930958][ T7704] do_syscall_64+0xcd/0xf80 [ 238.931000][ T7704] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.931032][ T7704] RIP: 0033:0x7fdd6b38f7c9 [ 238.931058][ T7704] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 238.931089][ T7704] RSP: 002b:00007fdd6c28e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 238.931119][ T7704] RAX: ffffffffffffffda RBX: 00007fdd6b5e5fa0 RCX: 00007fdd6b38f7c9 [ 238.931140][ T7704] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 238.931160][ T7704] RBP: 00007fdd6b413f91 R08: 0000000000000000 R09: 0000000000000000 [ 238.931180][ T7704] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 238.931198][ T7704] R13: 00007fdd6b5e6038 R14: 00007fdd6b5e5fa0 R15: 00007ffffdf3fa18 [ 238.931243][ T7704] [ 239.248363][ T7710] cifs: Unknown parameter '‰ƒ´ÕéŒ)¬ Up†µÌ¢{´¼V ]7ž62']ßΨÉú!²gÉÊ®Ë7ú9½ófM¸<*y¢sEéhîé”' [ 239.402615][ T7710] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 239.469737][ T7713] FAULT_INJECTION: forcing a failure. [ 239.469737][ T7713] name failslab, interval 1, probability 0, space 0, times 0 [ 239.510327][ T7713] CPU: 1 UID: 0 PID: 7713 Comm: syz.2.375 Not tainted syzkaller #0 PREEMPT(full) [ 239.510371][ T7713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 239.510391][ T7713] Call Trace: [ 239.510402][ T7713] [ 239.510415][ T7713] dump_stack_lvl+0x16c/0x1f0 [ 239.510461][ T7713] should_fail_ex+0x512/0x640 [ 239.510497][ T7713] ? __kmalloc_noprof+0xca/0x870 [ 239.510553][ T7713] should_failslab+0xc2/0x120 [ 239.510599][ T7713] __kmalloc_noprof+0xdd/0x870 [ 239.510650][ T7713] ? unregister_netdevice_many_notify+0x60c/0x2570 [ 239.510704][ T7713] ? unregister_netdevice_many_notify+0x60c/0x2570 [ 239.510746][ T7713] ? flush_backlogs_alloc+0x5/0x60 [ 239.510777][ T7713] unregister_netdevice_many_notify+0x60c/0x2570 [ 239.510824][ T7713] ? trace_contention_end+0xdd/0x110 [ 239.510872][ T7713] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 239.510917][ T7713] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 239.510971][ T7713] ? __pfx___mutex_lock+0x10/0x10 [ 239.511027][ T7713] unregister_netdevice_queue+0x305/0x3c0 [ 239.511079][ T7713] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 239.511134][ T7713] ? __pfx_locks_remove_file+0x10/0x10 [ 239.511179][ T7713] ? security_file_free+0xb9/0x180 [ 239.511230][ T7713] ? __pfx_ppp_release+0x10/0x10 [ 239.511282][ T7713] ppp_release+0x209/0x230 [ 239.511335][ T7713] __fput+0x402/0xb70 [ 239.511395][ T7713] task_work_run+0x150/0x240 [ 239.511436][ T7713] ? __pfx_task_work_run+0x10/0x10 [ 239.511475][ T7713] ? __pfx___do_sys_close_range+0x10/0x10 [ 239.511532][ T7713] exit_to_user_mode_loop+0xec/0x130 [ 239.511576][ T7713] do_syscall_64+0x4d8/0xf80 [ 239.511621][ T7713] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.511655][ T7713] RIP: 0033:0x7f77b8f8f7c9 [ 239.511682][ T7713] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 239.511714][ T7713] RSP: 002b:00007f77b9d5b038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 239.511746][ T7713] RAX: 0000000000000000 RBX: 00007f77b91e5fa0 RCX: 00007f77b8f8f7c9 [ 239.511767][ T7713] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 239.511787][ T7713] RBP: 00007f77b9013f91 R08: 0000000000000000 R09: 0000000000000000 [ 239.511807][ T7713] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 239.511826][ T7713] R13: 00007f77b91e6038 R14: 00007f77b91e5fa0 R15: 00007ffcfd452cf8 [ 239.511872][ T7713] [ 239.992563][ T7718] netlink: 'syz.3.376': attribute type 2 has an invalid length. [ 240.369333][ T7724] netlink: 334 bytes leftover after parsing attributes in process `syz.0.378'. [ 242.072054][ T7766] bridge0: port 3(gretap0) entered blocking state [ 242.092683][ T7766] bridge0: port 3(gretap0) entered disabled state [ 242.122710][ T7766] gretap0: entered allmulticast mode [ 242.138362][ T7766] gretap0: entered promiscuous mode [ 242.172348][ T7766] bridge0: port 3(gretap0) entered blocking state [ 242.179023][ T7766] bridge0: port 3(gretap0) entered forwarding state [ 242.574538][ T7774] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 243.425527][ T5854] Bluetooth: hci3: command 0x0406 tx timeout [ 243.425994][ T5851] Bluetooth: hci2: command 0x0406 tx timeout [ 243.431699][ T5852] Bluetooth: hci1: command 0x0406 tx timeout [ 243.444632][ T5853] Bluetooth: hci0: command 0x0406 tx timeout [ 244.836878][ T7806] random: crng reseeded on system resumption [ 245.919877][ T7820] syz.0.401 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 248.219419][ T7852] synth uevent: /devices/platform/dummy_hcd.3/usb4/ep_00: unknown uevent action string [ 248.265758][ T7852] ep_00: uevent: failed to send synthetic uevent: -22 [ 248.717315][ T7860] netlink: 16 bytes leftover after parsing attributes in process `syz.2.411'. [ 248.832615][ T7833] kexec: Could not allocate control_code_buffer [ 249.228269][ T7864] netlink: 'syz.0.412': attribute type 2 has an invalid length. [ 250.023466][ T7877] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 250.921241][ T7886] blktrace: Concurrent blktraces are not allowed on loop2 [ 251.707354][ T7896] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 252.859615][ T7924] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 254.224908][ T7940] FAULT_INJECTION: forcing a failure. [ 254.224908][ T7940] name failslab, interval 1, probability 0, space 0, times 0 [ 254.249137][ T7940] CPU: 1 UID: 0 PID: 7940 Comm: syz.1.430 Not tainted syzkaller #0 PREEMPT(full) [ 254.249183][ T7940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 254.249218][ T7940] Call Trace: [ 254.249229][ T7940] [ 254.249242][ T7940] dump_stack_lvl+0x16c/0x1f0 [ 254.249291][ T7940] should_fail_ex+0x512/0x640 [ 254.249326][ T7940] ? kmem_cache_alloc_noprof+0x62/0x720 [ 254.249387][ T7940] should_failslab+0xc2/0x120 [ 254.249431][ T7940] kmem_cache_alloc_noprof+0x75/0x720 [ 254.249494][ T7940] ? __proc_create+0x2c8/0x8d0 [ 254.249541][ T7940] ? __proc_create+0x2c8/0x8d0 [ 254.249577][ T7940] __proc_create+0x2c8/0x8d0 [ 254.249617][ T7940] ? __pfx___proc_create+0x10/0x10 [ 254.249662][ T7940] ? _raw_write_unlock+0x28/0x50 [ 254.249699][ T7940] ? proc_register+0x559/0x8b0 [ 254.249745][ T7940] proc_create_reg+0x7d/0x180 [ 254.249787][ T7940] ? __pfx_ip_vs_stats_percpu_show+0x10/0x10 [ 254.249832][ T7940] proc_create_net_single+0x86/0x180 [ 254.249874][ T7940] ? __pfx_proc_create_net_single+0x10/0x10 [ 254.249930][ T7940] ip_vs_control_net_init+0x4c9/0x1d20 [ 254.249985][ T7940] ? mutex_init_lockep+0x110/0x150 [ 254.250027][ T7940] __ip_vs_init+0x217/0x520 [ 254.250063][ T7940] ? __pfx___ip_vs_init+0x10/0x10 [ 254.250096][ T7940] ops_init+0x1e2/0x5f0 [ 254.250147][ T7940] setup_net+0x11d/0x3a0 [ 254.250188][ T7940] ? __pfx_setup_net+0x10/0x10 [ 254.250225][ T7940] ? lockdep_init_map_type+0x5c/0x270 [ 254.250263][ T7940] ? mutex_init_lockep+0x110/0x150 [ 254.250306][ T7940] copy_net_ns+0x351/0x5d0 [ 254.250355][ T7940] create_new_namespaces+0x3ea/0xab0 [ 254.250411][ T7940] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 254.250464][ T7940] ksys_unshare+0x45b/0xa40 [ 254.250500][ T7940] ? __pfx_ksys_unshare+0x10/0x10 [ 254.250555][ T7940] ? xfd_validate_state+0x61/0x180 [ 254.250621][ T7940] __x64_sys_unshare+0x31/0x40 [ 254.250651][ T7940] do_syscall_64+0xcd/0xf80 [ 254.250695][ T7940] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 254.250729][ T7940] RIP: 0033:0x7fe01558f7c9 [ 254.250756][ T7940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 254.250789][ T7940] RSP: 002b:00007fe016475038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 254.250820][ T7940] RAX: ffffffffffffffda RBX: 00007fe0157e5fa0 RCX: 00007fe01558f7c9 [ 254.250842][ T7940] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 254.250861][ T7940] RBP: 00007fe015613f91 R08: 0000000000000000 R09: 0000000000000000 [ 254.250882][ T7940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 254.250901][ T7940] R13: 00007fe0157e6038 R14: 00007fe0157e5fa0 R15: 00007ffffa085a68 [ 254.250947][ T7940] [ 254.524668][ C1] vkms_vblank_simulate: vblank timer overrun [ 255.148298][ T7957] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 255.499880][ T7960] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 256.731079][ T7970] tipc: Started in network mode [ 256.735975][ T7970] tipc: Node identity ffffffff, cluster identity 4711 [ 256.827407][ T7970] tipc: Node number set to 4294967295 [ 257.722551][ T7987] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 259.260047][ T8006] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 260.753086][ T8029] FAULT_INJECTION: forcing a failure. [ 260.753086][ T8029] name failslab, interval 1, probability 0, space 0, times 0 [ 260.782110][ T8029] CPU: 1 UID: 0 PID: 8029 Comm: syz.0.457 Not tainted syzkaller #0 PREEMPT(full) [ 260.782154][ T8029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 260.782180][ T8029] Call Trace: [ 260.782191][ T8029] [ 260.782203][ T8029] dump_stack_lvl+0x16c/0x1f0 [ 260.782250][ T8029] should_fail_ex+0x512/0x640 [ 260.782285][ T8029] ? kmem_cache_alloc_lru_noprof+0x66/0x720 [ 260.782348][ T8029] should_failslab+0xc2/0x120 [ 260.782391][ T8029] kmem_cache_alloc_lru_noprof+0x79/0x720 [ 260.782454][ T8029] ? __d_lookup+0x25c/0x4a0 [ 260.782485][ T8029] ? __d_alloc+0x35/0xa80 [ 260.782535][ T8029] ? __d_alloc+0x35/0xa80 [ 260.782582][ T8029] __d_alloc+0x35/0xa80 [ 260.782635][ T8029] d_alloc+0x4a/0x1e0 [ 260.782683][ T8029] lookup_one_qstr_excl+0x175/0x250 [ 260.782744][ T8029] start_dirop+0x59/0xb0 [ 260.782783][ T8029] simple_start_creating+0xf4/0x100 [ 260.782825][ T8029] ? __pfx_simple_start_creating+0x10/0x10 [ 260.782866][ T8029] ? up_write+0x282/0x4e0 [ 260.782909][ T8029] rpc_new_dir+0x27/0x440 [ 260.782969][ T8029] rpc_populate.constprop.0+0x51/0x1d0 [ 260.783009][ T8029] ? d_instantiate+0x77/0x90 [ 260.783058][ T8029] ? __pfx_rpc_fill_super+0x10/0x10 [ 260.783092][ T8029] rpc_fill_super+0x2b9/0x4f0 [ 260.783127][ T8029] ? __pfx_rpc_fill_super+0x10/0x10 [ 260.783159][ T8029] get_tree_keyed+0x10e/0x1d0 [ 260.783199][ T8029] vfs_get_tree+0x8e/0x330 [ 260.783232][ T8029] vfs_cmd_create+0xd7/0x2a0 [ 260.783264][ T8029] __do_sys_fsconfig+0x7b8/0xbe0 [ 260.783301][ T8029] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 260.783354][ T8029] do_syscall_64+0xcd/0xf80 [ 260.783405][ T8029] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 260.783440][ T8029] RIP: 0033:0x7f2c91b8f7c9 [ 260.783468][ T8029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 260.783501][ T8029] RSP: 002b:00007f2c92aab038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 260.783533][ T8029] RAX: ffffffffffffffda RBX: 00007f2c91de5fa0 RCX: 00007f2c91b8f7c9 [ 260.783555][ T8029] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000005 [ 260.783574][ T8029] RBP: 00007f2c91c13f91 R08: 0000000000000000 R09: 0000000000000000 [ 260.783593][ T8029] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 260.783613][ T8029] R13: 00007f2c91de6038 R14: 00007f2c91de5fa0 R15: 00007ffcc4a80eb8 [ 260.783658][ T8029] [ 261.121983][ T8029] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory / [ 262.226341][ T8039] FAULT_INJECTION: forcing a failure. [ 262.226341][ T8039] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 262.263092][ T8039] CPU: 1 UID: 0 PID: 8039 Comm: syz.0.450 Not tainted syzkaller #0 PREEMPT(full) [ 262.263126][ T8039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 262.263141][ T8039] Call Trace: [ 262.263148][ T8039] [ 262.263157][ T8039] dump_stack_lvl+0x16c/0x1f0 [ 262.263190][ T8039] should_fail_ex+0x512/0x640 [ 262.263218][ T8039] should_fail_alloc_page+0xe7/0x130 [ 262.263255][ T8039] prepare_alloc_pages+0x3c2/0x610 [ 262.263284][ T8039] ? rcu_is_watching+0x12/0xc0 [ 262.263321][ T8039] __alloc_frozen_pages_noprof+0x18b/0x2440 [ 262.263363][ T8039] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 262.263386][ T8039] ? is_bpf_text_address+0x94/0x1a0 [ 262.263415][ T8039] ? kernel_text_address+0x8d/0x100 [ 262.263442][ T8039] ? __kernel_text_address+0xd/0x40 [ 262.263468][ T8039] ? unwind_get_return_address+0x59/0xa0 [ 262.263507][ T8039] ? arch_stack_walk+0xa6/0x100 [ 262.263537][ T8039] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 262.263588][ T8039] ? stack_depot_save_flags+0x29/0x9b0 [ 262.263612][ T8039] ? __pfx_stack_trace_save+0x10/0x10 [ 262.263638][ T8039] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 262.263674][ T8039] ? policy_nodemask+0xea/0x4e0 [ 262.263706][ T8039] alloc_pages_mpol+0x1fb/0x550 [ 262.263737][ T8039] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 262.263775][ T8039] alloc_pages_noprof+0x12d/0x180 [ 262.263806][ T8039] kimage_alloc_pages+0x74/0x350 [ 262.263847][ T8039] kimage_alloc_control_pages+0x153/0xa00 [ 262.263890][ T8039] ? __pfx_kimage_alloc_control_pages+0x10/0x10 [ 262.263938][ T8039] do_kexec_load+0x439/0x860 [ 262.263976][ T8039] ? __pfx_do_kexec_load+0x10/0x10 [ 262.264016][ T8039] ? _copy_from_user+0x59/0xd0 [ 262.264050][ T8039] __x64_sys_kexec_load+0x1bf/0x230 [ 262.264092][ T8039] do_syscall_64+0xcd/0xf80 [ 262.264122][ T8039] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 262.264146][ T8039] RIP: 0033:0x7f2c91b8f7c9 [ 262.264165][ T8039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 262.264187][ T8039] RSP: 002b:00007f2c92aab038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6 [ 262.264209][ T8039] RAX: ffffffffffffffda RBX: 00007f2c91de5fa0 RCX: 00007f2c91b8f7c9 [ 262.264225][ T8039] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000200000000007 [ 262.264239][ T8039] RBP: 00007f2c91c13f91 R08: 0000000000000000 R09: 0000000000000000 [ 262.264254][ T8039] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 262.264267][ T8039] R13: 00007f2c91de6038 R14: 00007f2c91de5fa0 R15: 00007ffcc4a80eb8 [ 262.264296][ T8039] [ 262.264627][ T8039] kexec: Could not allocate control_code_buffer [ 262.771657][ T8047] random: crng reseeded on system resumption [ 264.719224][ T8059] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 266.223331][ T8077] [U] [ 266.226563][ T8077] [U] [ 266.229324][ T8077] [U] [ 266.232078][ T8077] [U] [ 266.292590][ T8077] [U] [ 266.295412][ T8077] [U] [ 266.298182][ T8077] [U] [ 266.300935][ T8077] [U] [ 266.340275][ T8076] [U] [ 266.985378][ T1306] ieee802154 phy0 wpan0: encryption failed: -22 [ 266.994032][ T1306] ieee802154 phy1 wpan1: encryption failed: -22 [ 268.263074][ T8113] random: crng reseeded on system resumption [ 269.473043][ T8126] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 271.360888][ T8148] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 272.655914][ T8166] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 274.638166][ T8201] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 276.043211][ T8222] openvswitch: netlink: ERSPAN option length err (len 256, max 255). [ 276.054365][ T8219] Invalid ELF header magic: != ELF [ 276.133786][ T8225] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 276.537542][ T53] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 276.537574][ T53] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 276.554438][ T53] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 276.554527][ T53] Bluetooth: hci0: Unknown advertising packet type: 0x14 [ 276.562523][ T53] Bluetooth: hci0: Unknown advertising packet type: 0x14 [ 276.569906][ T53] Bluetooth: hci0: Unknown advertising packet type: 0x14 [ 276.578176][ T53] Bluetooth: hci0: Unknown advertising packet type: 0x72 [ 276.585983][ T53] Bluetooth: hci0: Unknown advertising packet type: 0x14 [ 276.593753][ T53] Bluetooth: hci0: Malformed LE Event: 0x0d [ 276.871990][ T8235] snd_virmidi snd_virmidi.0: control 61678:131081:3:yªƒ>oÆ[k<÷:1597170177 is already present [ 277.671160][ T8259] Invalid ELF header magic: != ELF [ 278.930839][ T8288] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 279.067153][ T8290] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 280.143754][ T8304] netlink: 'syz.2.513': attribute type 2 has an invalid length. [ 281.898575][ T8325] mkiss: ax0: crc mode is auto. [ 282.567931][ T8343] netlink: 'syz.2.521': attribute type 2 has an invalid length. [ 283.475407][ T53] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 283.475454][ T53] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 283.490574][ T53] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 283.490642][ T53] Bluetooth: hci3: Unknown advertising packet type: 0x14 [ 283.503333][ T53] Bluetooth: hci3: Unknown advertising packet type: 0x14 [ 283.510468][ T53] Bluetooth: hci3: Unknown advertising packet type: 0x14 [ 283.517935][ T53] Bluetooth: hci3: Unknown advertising packet type: 0x72 [ 283.525509][ T53] Bluetooth: hci3: Unknown advertising packet type: 0x14 [ 283.532657][ T53] Bluetooth: hci3: Malformed LE Event: 0x0d [ 283.584798][ T8360] random: crng reseeded on system resumption [ 283.723013][ T8350] binder: BINDER_SET_CONTEXT_MGR already set [ 283.729318][ T8350] binder: 8349:8350 ioctl 4018620d 9 returned -16 [ 283.792266][ T8364] snd_virmidi snd_virmidi.0: control 61678:131081:3:yªƒ>oÆ[k<÷:1597170177 is already present [ 285.158214][ T8391] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 287.045234][ T8422] netlink: 'syz.1.537': attribute type 2 has an invalid length. [ 288.539045][ T8447] zero sized request [ 289.924972][ T8468] netlink: 'syz.1.548': attribute type 2 has an invalid length. [ 290.439097][ T8477] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 291.714843][ T8505] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 291.784776][ T8506] binder: BINDER_SET_CONTEXT_MGR already set [ 291.791075][ T8506] binder: 8504:8506 ioctl 4018620d 9 returned -16 [ 294.411295][ T8559] netlink: 8 bytes leftover after parsing attributes in process `syz.1.568'. [ 294.614884][ T8562] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 295.483566][ T8575] netlink: 28 bytes leftover after parsing attributes in process `syz.0.573'. [ 295.509500][ T8575] gretap0: left allmulticast mode [ 295.514672][ T8575] gretap0: left promiscuous mode [ 295.541203][ T8575] bridge0: port 3(gretap0) entered disabled state [ 295.576880][ T8575] bridge_slave_1: left allmulticast mode [ 295.593125][ T8575] bridge_slave_1: left promiscuous mode [ 295.602578][ T8575] bridge0: port 2(bridge_slave_1) entered disabled state [ 295.622594][ T8575] bridge_slave_0: left allmulticast mode [ 295.630971][ T8575] bridge_slave_0: left promiscuous mode [ 295.637223][ T8575] bridge0: port 1(bridge_slave_0) entered disabled state [ 296.111815][ T8588] netlink: 8 bytes leftover after parsing attributes in process `syz.0.577'. [ 296.553908][ T8601] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 297.752426][ T8613] FAULT_INJECTION: forcing a failure. [ 297.752426][ T8613] name failslab, interval 1, probability 0, space 0, times 0 [ 297.766826][ T8613] CPU: 1 UID: 0 PID: 8613 Comm: syz.1.582 Not tainted syzkaller #0 PREEMPT(full) [ 297.766870][ T8613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 297.766891][ T8613] Call Trace: [ 297.766903][ T8613] [ 297.766915][ T8613] dump_stack_lvl+0x116/0x1f0 [ 297.766962][ T8613] should_fail_ex+0x512/0x640 [ 297.767004][ T8613] should_failslab+0xc2/0x120 [ 297.767050][ T8613] kmem_cache_alloc_noprof+0x75/0x720 [ 297.767107][ T8613] ? __send_signal_locked+0x159/0x12c0 [ 297.767156][ T8613] ? __send_signal_locked+0x159/0x12c0 [ 297.767195][ T8613] __send_signal_locked+0x159/0x12c0 [ 297.767244][ T8613] force_sig_info_to_task+0x31d/0x660 [ 297.767300][ T8613] force_exit_sig+0xbe/0x100 [ 297.767344][ T8613] ? __pfx_force_exit_sig+0x10/0x10 [ 297.767391][ T8613] ? arch_syscall_is_vdso_sigreturn+0xb6/0x230 [ 297.767454][ T8613] ? __get_user_nocheck_8+0x20/0x20 [ 297.767487][ T8613] syscall_user_dispatch+0x120/0x140 [ 297.767538][ T8613] syscall_trace_enter+0x5e/0x220 [ 297.767583][ T8613] do_syscall_64+0x3db/0xf80 [ 297.767624][ T8613] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 297.767656][ T8613] RIP: 0033:0x7fe01558f7c9 [ 297.767681][ T8613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 297.767712][ T8613] RSP: 002b:00007fe0164750e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 297.767741][ T8613] RAX: ffffffffffffffda RBX: 00007fe0157e5fa8 RCX: 00007fe01558f7c9 [ 297.767762][ T8613] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe0157e5fac [ 297.767781][ T8613] RBP: 00007fe0157e5fa0 R08: 00007fe016476000 R09: 0000000000000000 [ 297.767800][ T8613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 297.767817][ T8613] R13: 00007fe0157e6038 R14: 00007ffffa085980 R15: 00007ffffa085a68 [ 297.767857][ T8613] [ 299.323342][ T8627] FAULT_INJECTION: forcing a failure. [ 299.323342][ T8627] name failslab, interval 1, probability 0, space 0, times 0 [ 299.337394][ T8627] CPU: 0 UID: 0 PID: 8627 Comm: syz.3.585 Not tainted syzkaller #0 PREEMPT(full) [ 299.337455][ T8627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 299.337469][ T8627] Call Trace: [ 299.337477][ T8627] [ 299.337486][ T8627] dump_stack_lvl+0x16c/0x1f0 [ 299.337518][ T8627] should_fail_ex+0x512/0x640 [ 299.337543][ T8627] ? __kmalloc_cache_noprof+0x5f/0x770 [ 299.337603][ T8627] should_failslab+0xc2/0x120 [ 299.337635][ T8627] __kmalloc_cache_noprof+0x72/0x770 [ 299.337671][ T8627] ? __pfx_snd_pcm_hw_rule_add+0x10/0x10 [ 299.337704][ T8627] ? dummy_hrtimer_create+0x45/0x170 [ 299.337746][ T8627] ? dummy_hrtimer_create+0x45/0x170 [ 299.337782][ T8627] dummy_hrtimer_create+0x45/0x170 [ 299.337820][ T8627] ? __pfx_dummy_hrtimer_create+0x10/0x10 [ 299.337856][ T8627] dummy_pcm_open+0xd4/0x5b0 [ 299.337893][ T8627] snd_pcm_open_substream+0xa60/0x17f0 [ 299.337920][ T8627] ? __pfx_snd_pcm_open_substream+0x10/0x10 [ 299.337954][ T8627] snd_pcm_open+0x29e/0x730 [ 299.337981][ T8627] ? __pfx_snd_pcm_open+0x10/0x10 [ 299.338009][ T8627] ? __pfx_default_wake_function+0x10/0x10 [ 299.338051][ T8627] ? __pfx_snd_pcm_playback_open+0x10/0x10 [ 299.338076][ T8627] snd_pcm_playback_open+0x86/0xe0 [ 299.338101][ T8627] snd_open+0x22d/0x4c0 [ 299.338133][ T8627] ? __pfx_snd_open+0x10/0x10 [ 299.338166][ T8627] chrdev_open+0x234/0x6a0 [ 299.338196][ T8627] ? __pfx_apparmor_file_open+0x10/0x10 [ 299.338222][ T8627] ? __pfx_chrdev_open+0x10/0x10 [ 299.338254][ T8627] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 299.338293][ T8627] do_dentry_open+0x748/0x1590 [ 299.338322][ T8627] ? __pfx_chrdev_open+0x10/0x10 [ 299.338361][ T8627] vfs_open+0x82/0x3f0 [ 299.338408][ T8627] path_openat+0x2078/0x3140 [ 299.338450][ T8627] ? __pfx_path_openat+0x10/0x10 [ 299.338491][ T8627] do_filp_open+0x20b/0x470 [ 299.338524][ T8627] ? __pfx_do_filp_open+0x10/0x10 [ 299.338577][ T8627] ? alloc_fd+0x471/0x7d0 [ 299.338615][ T8627] do_sys_openat2+0x11f/0x280 [ 299.338636][ T8627] ? __pfx_do_sys_openat2+0x10/0x10 [ 299.338668][ T8627] __x64_sys_openat+0x174/0x210 [ 299.338690][ T8627] ? __pfx___x64_sys_openat+0x10/0x10 [ 299.338724][ T8627] do_syscall_64+0xcd/0xf80 [ 299.338754][ T8627] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 299.338778][ T8627] RIP: 0033:0x7fdd6b38f7c9 [ 299.338796][ T8627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 299.338819][ T8627] RSP: 002b:00007fdd6c26d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 299.338841][ T8627] RAX: ffffffffffffffda RBX: 00007fdd6b5e6090 RCX: 00007fdd6b38f7c9 [ 299.338857][ T8627] RDX: 0000000000080000 RSI: 0000200000000200 RDI: ffffffffffffff9c [ 299.338871][ T8627] RBP: 00007fdd6b413f91 R08: 0000000000000000 R09: 0000000000000000 [ 299.338885][ T8627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 299.338899][ T8627] R13: 00007fdd6b5e6128 R14: 00007fdd6b5e6090 R15: 00007ffffdf3fa18 [ 299.338930][ T8627] [ 300.268638][ T8634] binder: 8633:8634 ioctl c018620c 0 returned -1 [ 301.126788][ T8645] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 301.135777][ T8645] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 301.238050][ T8645] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 301.283740][ T8645] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 301.347474][ T8645] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 301.413628][ T8645] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 301.513507][ T8645] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 301.532641][ T8645] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 301.609620][ T8645] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 302.280795][ T8693] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 302.437257][ T8652] workqueue: Failed to create a rescuer kthread for wq "nfc19_nci_cmd_wq": -EINTR [ 303.092785][ T8725] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 303.223247][ T53] Bluetooth: hci2: command 0x0406 tx timeout [ 303.293522][ T53] Bluetooth: hci0: command 0x0406 tx timeout [ 303.302865][ T8728] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 303.383091][ T53] Bluetooth: hci1: command 0x0406 tx timeout [ 303.551361][ T53] Bluetooth: hci3: command 0x0406 tx timeout [ 305.304066][ T53] Bluetooth: hci2: command 0x0406 tx timeout [ 305.380257][ T53] Bluetooth: hci0: command 0x0406 tx timeout [ 305.454119][ T53] Bluetooth: hci1: command 0x0406 tx timeout [ 305.618683][ T53] Bluetooth: hci3: command 0x0406 tx timeout [ 306.259521][ T8768] netlink: 16 bytes leftover after parsing attributes in process `syz.1.605'. [ 306.408715][ T8773] netlink: 8 bytes leftover after parsing attributes in process `syz.2.606'. [ 306.793184][ T8778] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 306.806395][ T8777] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 306.959340][ T8783] bond0: option all_slaves_active: invalid value () [ 307.695311][ T53] Bluetooth: hci3: command 0x0406 tx timeout [ 307.867999][ T8796] zero sized request [ 308.871889][ T8827] netlink: 16 bytes leftover after parsing attributes in process `syz.3.617'. [ 309.026351][ C1] vcan0: j1939_tp_rxtimer: 0xffff888020f46400: rx timeout, send abort [ 309.534955][ C1] vcan0: j1939_tp_rxtimer: 0xffff888020f46400: abort rx timeout. Force session deactivation [ 310.123842][ T8859] FAULT_INJECTION: forcing a failure. [ 310.123842][ T8859] name failslab, interval 1, probability 0, space 0, times 0 [ 310.163088][ T8859] CPU: 1 UID: 0 PID: 8859 Comm: syz.3.628 Not tainted syzkaller #0 PREEMPT(full) [ 310.163130][ T8859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 310.163150][ T8859] Call Trace: [ 310.163159][ T8859] [ 310.163171][ T8859] dump_stack_lvl+0x16c/0x1f0 [ 310.163215][ T8859] should_fail_ex+0x512/0x640 [ 310.163250][ T8859] ? __kmalloc_cache_noprof+0x5f/0x770 [ 310.163307][ T8859] should_failslab+0xc2/0x120 [ 310.163355][ T8859] __kmalloc_cache_noprof+0x72/0x770 [ 310.163406][ T8859] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 310.163444][ T8859] ? sctp_endpoint_new+0xfc/0xb20 [ 310.163494][ T8859] ? sctp_endpoint_new+0xfc/0xb20 [ 310.163537][ T8859] sctp_endpoint_new+0xfc/0xb20 [ 310.163584][ T8859] ? __pfx_sctp_endpoint_new+0x10/0x10 [ 310.163627][ T8859] ? lockdep_init_map_type+0x5c/0x270 [ 310.163669][ T8859] ? lockdep_init_map_type+0x5c/0x270 [ 310.163713][ T8859] sctp_init_sock+0xe2b/0x12f0 [ 310.163753][ T8859] ? __pfx_sctp_init_sock+0x10/0x10 [ 310.163793][ T8859] inet_create+0x939/0x1040 [ 310.163823][ T8859] ? inet_create+0x93/0x1040 [ 310.163858][ T8859] __sock_create+0x339/0x8a0 [ 310.163907][ T8859] __sys_socket+0x153/0x2d0 [ 310.163952][ T8859] ? __pfx___sys_socket+0x10/0x10 [ 310.164010][ T8859] ? xfd_validate_state+0x61/0x180 [ 310.164061][ T8859] ? __pfx_ksys_write+0x10/0x10 [ 310.164108][ T8859] __x64_sys_socket+0x72/0xb0 [ 310.164151][ T8859] ? lockdep_hardirqs_on+0x7c/0x110 [ 310.164188][ T8859] do_syscall_64+0xcd/0xf80 [ 310.164227][ T8859] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 310.164260][ T8859] RIP: 0033:0x7fdd6b38f7c9 [ 310.164285][ T8859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 310.164316][ T8859] RSP: 002b:00007fdd6c28e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 310.164345][ T8859] RAX: ffffffffffffffda RBX: 00007fdd6b5e5fa0 RCX: 00007fdd6b38f7c9 [ 310.164366][ T8859] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000002 [ 310.164384][ T8859] RBP: 00007fdd6b413f91 R08: 0000000000000000 R09: 0000000000000000 [ 310.164402][ T8859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 310.164421][ T8859] R13: 00007fdd6b5e6038 R14: 00007fdd6b5e5fa0 R15: 00007ffffdf3fa18 [ 310.164460][ T8859] [ 310.840016][ T8877] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15 [ 311.355707][ T8879] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16 [ 311.751353][ C1] vcan0: j1939_tp_rxtimer: 0xffff888024af6c00: rx timeout, send abort [ 312.260219][ C1] vcan0: j1939_tp_rxtimer: 0xffff888024af6c00: abort rx timeout. Force session deactivation [ 312.321657][ T8901] binder: 8900:8901 ioctl c018620c 0 returned -1 [ 312.385994][ T8903] random: crng reseeded on system resumption [ 312.484955][ T8910] Unrecognized hibernate image header format! [ 312.500312][ T8910] PM: hibernation: Image mismatch: architecture specific data [ 313.649062][ T8934] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 313.932842][ C1] vcan0: j1939_tp_rxtimer: 0xffff888025825400: rx timeout, send abort [ 314.107138][ T8946] zero sized request [ 314.441383][ C1] vcan0: j1939_tp_rxtimer: 0xffff888025825400: abort rx timeout. Force session deactivation [ 314.716321][ T8953] FAULT_INJECTION: forcing a failure. [ 314.716321][ T8953] name failslab, interval 1, probability 0, space 0, times 0 [ 314.733205][ T8953] CPU: 0 UID: 0 PID: 8953 Comm: syz.1.648 Not tainted syzkaller #0 PREEMPT(full) [ 314.733237][ T8953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 314.733251][ T8953] Call Trace: [ 314.733259][ T8953] [ 314.733268][ T8953] dump_stack_lvl+0x16c/0x1f0 [ 314.733301][ T8953] should_fail_ex+0x512/0x640 [ 314.733331][ T8953] ? __kmalloc_noprof+0xca/0x870 [ 314.733372][ T8953] should_failslab+0xc2/0x120 [ 314.733405][ T8953] __kmalloc_noprof+0xdd/0x870 [ 314.733442][ T8953] ? sk_prot_alloc+0x1a8/0x2a0 [ 314.733477][ T8953] ? sk_prot_alloc+0x1a8/0x2a0 [ 314.733514][ T8953] sk_prot_alloc+0x1a8/0x2a0 [ 314.733547][ T8953] sk_alloc+0x36/0xb80 [ 314.733571][ T8953] __netlink_create+0x5e/0x2c0 [ 314.733593][ T8953] ? __wake_up+0x3f/0x60 [ 314.733631][ T8953] netlink_create+0x39e/0x620 [ 314.733656][ T8953] ? __pfx_genl_bind+0x10/0x10 [ 314.733686][ T8953] ? __pfx_genl_unbind+0x10/0x10 [ 314.733715][ T8953] ? __pfx_genl_release+0x10/0x10 [ 314.733753][ T8953] __sock_create+0x339/0x8a0 [ 314.733793][ T8953] __sys_socket+0x153/0x2d0 [ 314.733827][ T8953] ? __pfx___sys_socket+0x10/0x10 [ 314.733861][ T8953] ? xfd_validate_state+0x61/0x180 [ 314.733904][ T8953] __x64_sys_socket+0x72/0xb0 [ 314.733937][ T8953] ? lockdep_hardirqs_on+0x7c/0x110 [ 314.733965][ T8953] do_syscall_64+0xcd/0xf80 [ 314.733994][ T8953] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 314.734018][ T8953] RIP: 0033:0x7fe01558f7c9 [ 314.734037][ T8953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 314.734059][ T8953] RSP: 002b:00007fe016475038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 314.734081][ T8953] RAX: ffffffffffffffda RBX: 00007fe0157e5fa0 RCX: 00007fe01558f7c9 [ 314.734097][ T8953] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 314.734110][ T8953] RBP: 00007fe015613f91 R08: 0000000000000000 R09: 0000000000000000 [ 314.734124][ T8953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 314.734143][ T8953] R13: 00007fe0157e6038 R14: 00007fe0157e5fa0 R15: 00007ffffa085a68 [ 314.734173][ T8953] [ 314.950612][ C0] vkms_vblank_simulate: vblank timer overrun [ 315.393725][ T8963] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 315.567156][ T8966] FAULT_INJECTION: forcing a failure. [ 315.567156][ T8966] name failslab, interval 1, probability 0, space 0, times 0 [ 315.581003][ T8966] CPU: 0 UID: 0 PID: 8966 Comm: syz.0.651 Not tainted syzkaller #0 PREEMPT(full) [ 315.581049][ T8966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 315.581070][ T8966] Call Trace: [ 315.581080][ T8966] [ 315.581093][ T8966] dump_stack_lvl+0x16c/0x1f0 [ 315.581136][ T8966] should_fail_ex+0x512/0x640 [ 315.581170][ T8966] ? __kmalloc_cache_noprof+0x5f/0x770 [ 315.581225][ T8966] should_failslab+0xc2/0x120 [ 315.581272][ T8966] __kmalloc_cache_noprof+0x72/0x770 [ 315.581319][ T8966] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 315.581346][ T8966] ? sctp_endpoint_new+0xfc/0xb20 [ 315.581381][ T8966] ? sctp_endpoint_new+0xfc/0xb20 [ 315.581410][ T8966] sctp_endpoint_new+0xfc/0xb20 [ 315.581452][ T8966] ? __pfx_sctp_endpoint_new+0x10/0x10 [ 315.581482][ T8966] ? lockdep_init_map_type+0x5c/0x270 [ 315.581512][ T8966] ? lockdep_init_map_type+0x5c/0x270 [ 315.581542][ T8966] sctp_init_sock+0xe2b/0x12f0 [ 315.581570][ T8966] ? __pfx_sctp_init_sock+0x10/0x10 [ 315.581599][ T8966] inet_create+0x939/0x1040 [ 315.581622][ T8966] ? inet_create+0x93/0x1040 [ 315.581647][ T8966] __sock_create+0x339/0x8a0 [ 315.581686][ T8966] __sys_socket+0x153/0x2d0 [ 315.581721][ T8966] ? __pfx___sys_socket+0x10/0x10 [ 315.581755][ T8966] ? xfd_validate_state+0x61/0x180 [ 315.581792][ T8966] ? __pfx_ksys_write+0x10/0x10 [ 315.581826][ T8966] __x64_sys_socket+0x72/0xb0 [ 315.581859][ T8966] ? lockdep_hardirqs_on+0x7c/0x110 [ 315.581887][ T8966] do_syscall_64+0xcd/0xf80 [ 315.581917][ T8966] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 315.581940][ T8966] RIP: 0033:0x7f2c91b8f7c9 [ 315.581959][ T8966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 315.581981][ T8966] RSP: 002b:00007f2c92aab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 315.582003][ T8966] RAX: ffffffffffffffda RBX: 00007f2c91de5fa0 RCX: 00007f2c91b8f7c9 [ 315.582018][ T8966] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000002 [ 315.582031][ T8966] RBP: 00007f2c91c13f91 R08: 0000000000000000 R09: 0000000000000000 [ 315.582045][ T8966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 315.582059][ T8966] R13: 00007f2c91de6038 R14: 00007f2c91de5fa0 R15: 00007ffcc4a80eb8 [ 315.582089][ T8966] [ 315.816385][ C0] vkms_vblank_simulate: vblank timer overrun [ 316.738451][ T8981] Invalid ELF header magic: != ELF [ 317.592771][ T8998] Invalid ELF header magic: != ELF [ 318.877968][ T9015] netlink: 342 bytes leftover after parsing attributes in process `syz.2.663'. [ 318.891972][ T9015] netlink: 274 bytes leftover after parsing attributes in process `syz.2.663'. [ 319.066414][ T9017] vhci_hcd: invalid port number 252 [ 319.071731][ T9017] vhci_hcd: default hub control req: 040f v0772 i00fc l2 [ 319.574867][ T9019] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 321.918746][ T9068] RDS: rds_bind could not find a transport for ::ffff:172.30.1.4, load rds_tcp or rds_rdma? [ 323.678055][ T9108] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 324.888118][ T9129] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) getty: ttyS0: read error: Resource temporarily unavailable [ 327.836524][ T9160] zswap: compressor not available [ 328.441783][ T1306] ieee802154 phy0 wpan0: encryption failed: -22 [ 328.448255][ T1306] ieee802154 phy1 wpan1: encryption failed: -22 [ 329.207584][ T9190] smc: net device dummy0 applied user defined pnetid DUMMY0 [ 329.227341][ T9190] random: crng reseeded on system resumption [ 332.558066][ T9232] svc: failed to register nfsdv3 RPC service (errno 111). [ 332.592008][ T9232] svc: failed to register nfsaclv3 RPC service (errno 111). [ 332.654070][ T9237] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 333.627660][ T9255] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 333.904803][ T9252] zswap: compressor not available [ 334.136877][ T9270] netlink: 8 bytes leftover after parsing attributes in process `syz.2.723'. [ 334.992442][ T9290] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 335.011989][ T9290] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 335.030884][ T9290] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 335.051276][ T9290] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 335.671974][ T9308] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 336.006225][ T9315] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 337.070461][ T53] Bluetooth: hci3: command 0x0406 tx timeout [ 337.070501][ T5847] Bluetooth: hci1: command 0x0406 tx timeout [ 337.076638][ T5156] Bluetooth: hci2: command 0x0406 tx timeout [ 337.089327][ T5845] Bluetooth: hci0: command 0x0406 tx timeout [ 338.901852][ T9374] FAULT_INJECTION: forcing a failure. [ 338.901852][ T9374] name failslab, interval 1, probability 0, space 0, times 0 [ 338.938390][ T9374] CPU: 1 UID: 0 PID: 9374 Comm: syz.2.748 Not tainted syzkaller #0 PREEMPT(full) [ 338.938431][ T9374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 338.938450][ T9374] Call Trace: [ 338.938460][ T9374] [ 338.938471][ T9374] dump_stack_lvl+0x16c/0x1f0 [ 338.938514][ T9374] should_fail_ex+0x512/0x640 [ 338.938546][ T9374] ? fs_reclaim_acquire+0xae/0x150 [ 338.938590][ T9374] should_failslab+0xc2/0x120 [ 338.938633][ T9374] __kmalloc_noprof+0xdd/0x870 [ 338.938684][ T9374] ? tomoyo_encode2+0x100/0x3e0 [ 338.938738][ T9374] ? tomoyo_encode2+0x100/0x3e0 [ 338.938791][ T9374] tomoyo_encode2+0x100/0x3e0 [ 338.938842][ T9374] tomoyo_encode+0x29/0x50 [ 338.938885][ T9374] tomoyo_realpath_from_path+0x18f/0x6e0 [ 338.938944][ T9374] tomoyo_path_number_perm+0x245/0x580 [ 338.938983][ T9374] ? tomoyo_path_number_perm+0x237/0x580 [ 338.939026][ T9374] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 338.939068][ T9374] ? find_held_lock+0x2b/0x80 [ 338.939148][ T9374] ? find_held_lock+0x2b/0x80 [ 338.939192][ T9374] ? hook_file_ioctl_common+0x145/0x410 [ 338.939241][ T9374] ? __fget_files+0x20e/0x3c0 [ 338.939285][ T9374] security_file_ioctl+0x9b/0x240 [ 338.939329][ T9374] __x64_sys_ioctl+0xb7/0x210 [ 338.939364][ T9374] do_syscall_64+0xcd/0xf80 [ 338.939411][ T9374] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 338.939444][ T9374] RIP: 0033:0x7f77b8f8f7c9 [ 338.939468][ T9374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 338.939499][ T9374] RSP: 002b:00007f77b9d5b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 338.939528][ T9374] RAX: ffffffffffffffda RBX: 00007f77b91e5fa0 RCX: 00007f77b8f8f7c9 [ 338.939549][ T9374] RDX: 0000000000000004 RSI: 000000004030582b RDI: 0000000000000003 [ 338.939568][ T9374] RBP: 00007f77b9d5b090 R08: 0000000000000000 R09: 0000000000000000 [ 338.939587][ T9374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 338.939606][ T9374] R13: 00007f77b91e6038 R14: 00007f77b91e5fa0 R15: 00007ffcfd452cf8 [ 338.939649][ T9374] [ 339.209212][ T9374] ERROR: Out of memory at tomoyo_realpath_from_path. syzkaller syzkaller login: [ 340.212023][ T9397] FAULT_INJECTION: forcing a failure. [ 340.212023][ T9397] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 340.245129][ T9397] CPU: 0 UID: 0 PID: 9397 Comm: syz.3.754 Not tainted syzkaller #0 PREEMPT(full) [ 340.245171][ T9397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 340.245190][ T9397] Call Trace: [ 340.245200][ T9397] [ 340.245212][ T9397] dump_stack_lvl+0x16c/0x1f0 [ 340.245255][ T9397] should_fail_ex+0x512/0x640 [ 340.245296][ T9397] _copy_from_user+0x2e/0xd0 [ 340.245335][ T9397] snd_pcm_oss_write+0x2e8/0xa10 [ 340.245401][ T9397] ? __pfx_snd_pcm_oss_write+0x10/0x10 [ 340.245450][ T9397] vfs_write+0x2a0/0x11d0 [ 340.245499][ T9397] ? __pfx_vfs_write+0x10/0x10 [ 340.245536][ T9397] ? find_held_lock+0x2b/0x80 [ 340.245582][ T9397] ? __fget_files+0x204/0x3c0 [ 340.245628][ T9397] ? __fget_files+0x20e/0x3c0 [ 340.245679][ T9397] ksys_write+0x12a/0x250 [ 340.245719][ T9397] ? __pfx_ksys_write+0x10/0x10 [ 340.245772][ T9397] do_syscall_64+0xcd/0xf80 [ 340.245814][ T9397] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 340.245846][ T9397] RIP: 0033:0x7fdd6b38f7c9 [ 340.245871][ T9397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 340.245913][ T9397] RSP: 002b:00007fdd6c28e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 340.245943][ T9397] RAX: ffffffffffffffda RBX: 00007fdd6b5e5fa0 RCX: 00007fdd6b38f7c9 [ 340.245964][ T9397] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003 [ 340.245984][ T9397] RBP: 00007fdd6c28e090 R08: 0000000000000000 R09: 0000000000000000 [ 340.246003][ T9397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 340.246022][ T9397] R13: 00007fdd6b5e6038 R14: 00007fdd6b5e5fa0 R15: 00007ffffdf3fa18 [ 340.246066][ T9397] [ 340.251210][ T9400] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17 [ 340.942679][ T5900] smpboot: CPU 1 is now offline [ 341.118666][ T9405] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18 [ 341.249180][ T9417] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 341.334339][ T5206] ------------[ cut here ]------------ [ 341.335011][ T5206] [ 341.335019][ T5206] ====================================================== [ 341.335028][ T5206] WARNING: possible circular locking dependency detected [ 341.335038][ T5206] syzkaller #0 Not tainted [ 341.335049][ T5206] ------------------------------------------------------ [ 341.335058][ T5206] udevd/5206 is trying to acquire lock: [ 341.335070][ T5206] ffffffff8e0d56a0 (console_owner){-.-.}-{0:0}, at: console_lock_spinning_enable+0x61/0x80 [ 341.335138][ T5206] [ 341.335138][ T5206] but task is already holding lock: [ 341.335144][ T5206] ffff8880b843a958 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130 [ 341.335211][ T5206] [ 341.335211][ T5206] which lock already depends on the new lock. [ 341.335211][ T5206] [ 341.335219][ T5206] [ 341.335219][ T5206] the existing dependency chain (in reverse order) is: [ 341.335227][ T5206] [ 341.335227][ T5206] -> #4 (&rq->__lock){-.-.}-{2:2}: [ 341.335256][ T5206] _raw_spin_lock_nested+0x31/0x40 [ 341.335281][ T5206] raw_spin_rq_lock_nested+0x29/0x130 [ 341.335315][ T5206] task_rq_lock+0xcf/0x490 [ 341.335347][ T5206] cgroup_move_task+0x81/0x2a0 [ 341.335385][ T5206] css_set_move_task+0x288/0x5f0 [ 341.335412][ T5206] cgroup_post_fork+0x201/0x9e0 [ 341.335448][ T5206] copy_process+0x6037/0x7680 [ 341.335483][ T5206] kernel_clone+0xfc/0x910 [ 341.335518][ T5206] user_mode_thread+0xc8/0x110 [ 341.335554][ T5206] rest_init+0x23/0x2b0 [ 341.335595][ T5206] start_kernel+0x3f6/0x4d0 [ 341.335622][ T5206] x86_64_start_reservations+0x18/0x30 [ 341.335651][ T5206] x86_64_start_kernel+0x130/0x190 [ 341.335678][ T5206] common_startup_64+0x13e/0x148 [ 341.335705][ T5206] [ 341.335705][ T5206] -> #3 (&p->pi_lock){-.-.}-{2:2}: [ 341.335734][ T5206] _raw_spin_lock_irqsave+0x3a/0x60 [ 341.335757][ T5206] try_to_wake_up+0xb7/0x1870 [ 341.335788][ T5206] __wake_up_common+0x135/0x1f0 [ 341.335810][ T5206] __wake_up+0x31/0x60 [ 341.335846][ T5206] tty_port_default_wakeup+0x47/0x60 [ 341.335882][ T5206] serial8250_tx_chars+0x68e/0x860 [ 341.335916][ T5206] serial8250_handle_irq+0x761/0xcb0 [ 341.335952][ T5206] serial8250_default_handle_irq+0x9e/0x270 [ 341.335990][ T5206] serial8250_interrupt+0xf8/0x1d0 [ 341.336011][ T5206] __handle_irq_event_percpu+0x236/0x890 [ 341.336047][ T5206] handle_irq_event+0xab/0x1e0 [ 341.336080][ T5206] handle_edge_irq+0x3ca/0x9e0 [ 341.336111][ T5206] __common_interrupt+0xd0/0x2f0 [ 341.336144][ T5206] common_interrupt+0xba/0xe0 [ 341.336180][ T5206] asm_common_interrupt+0x26/0x40 [ 341.336206][ T5206] pv_native_safe_halt+0xf/0x20 [ 341.336240][ T5206] default_idle+0x13/0x20 [ 341.336268][ T5206] default_idle_call+0x6c/0xb0 [ 341.336297][ T5206] do_idle+0x38d/0x500 [ 341.336324][ T5206] cpu_startup_entry+0x4f/0x60 [ 341.336353][ T5206] rest_init+0x16b/0x2b0 [ 341.336382][ T5206] start_kernel+0x3f6/0x4d0 [ 341.336404][ T5206] x86_64_start_reservations+0x18/0x30 [ 341.336429][ T5206] x86_64_start_kernel+0x130/0x190 [ 341.336453][ T5206] common_startup_64+0x13e/0x148 [ 341.336475][ T5206] [ 341.336475][ T5206] -> #2 (&tty->write_wait){-.-.}-{3:3}: [ 341.336502][ T5206] _raw_spin_lock_irqsave+0x3a/0x60 [ 341.336522][ T5206] __wake_up+0x1c/0x60 [ 341.336553][ T5206] tty_port_default_wakeup+0x47/0x60 [ 341.336588][ T5206] serial8250_tx_chars+0x68e/0x860 [ 341.336618][ T5206] serial8250_handle_irq+0x761/0xcb0 [ 341.336651][ T5206] serial8250_default_handle_irq+0x9e/0x270 [ 341.336685][ T5206] serial8250_interrupt+0xf8/0x1d0 [ 341.336704][ T5206] __handle_irq_event_percpu+0x236/0x890 [ 341.336735][ T5206] handle_irq_event+0xab/0x1e0 [ 341.336765][ T5206] handle_edge_irq+0x3ca/0x9e0 [ 341.336792][ T5206] __common_interrupt+0xd0/0x2f0 [ 341.336822][ T5206] common_interrupt+0xba/0xe0 [ 341.336855][ T5206] asm_common_interrupt+0x26/0x40 [ 341.336875][ T5206] pv_native_safe_halt+0xf/0x20 [ 341.336897][ T5206] default_idle+0x13/0x20 [ 341.336925][ T5206] default_idle_call+0x6c/0xb0 [ 341.336954][ T5206] do_idle+0x38d/0x500 [ 341.336980][ T5206] cpu_startup_entry+0x4f/0x60 [ 341.337009][ T5206] rest_init+0x16b/0x2b0 [ 341.337039][ T5206] start_kernel+0x3f6/0x4d0 [ 341.337061][ T5206] x86_64_start_reservations+0x18/0x30 [ 341.337086][ T5206] x86_64_start_kernel+0x130/0x190 [ 341.337110][ T5206] common_startup_64+0x13e/0x148 [ 341.337132][ T5206] [ 341.337132][ T5206] -> #1 (&port_lock_key){-.-.}-{3:3}: [ 341.337158][ T5206] _raw_spin_lock_irqsave+0x3a/0x60 [ 341.337179][ T5206] serial8250_console_write+0x181/0x1890 [ 341.337212][ T5206] console_flush_all+0x801/0xc60 [ 341.337240][ T5206] console_unlock+0xd8/0x210 [ 341.337268][ T5206] vprintk_emit+0x3d7/0x680 [ 341.337297][ T5206] _printk+0xc7/0x100 [ 341.337318][ T5206] register_console+0xc27/0x11b0 [ 341.337348][ T5206] univ8250_console_init+0x5f/0x90 [ 341.337374][ T5206] console_init+0x152/0x600 [ 341.337400][ T5206] start_kernel+0x29f/0x4d0 [ 341.337429][ T5206] x86_64_start_reservations+0x18/0x30 [ 341.337455][ T5206] x86_64_start_kernel+0x130/0x190 [ 341.337479][ T5206] common_startup_64+0x13e/0x148 [ 341.337502][ T5206] [ 341.337502][ T5206] -> #0 (console_owner){-.-.}-{0:0}: [ 341.337529][ T5206] __lock_acquire+0x1542/0x22f0 [ 341.337550][ T5206] lock_acquire+0x179/0x330 [ 341.337572][ T5206] console_lock_spinning_enable+0x72/0x80 [ 341.337607][ T5206] console_flush_all+0x7aa/0xc60 [ 341.337636][ T5206] console_unlock+0xd8/0x210 [ 341.337664][ T5206] vprintk_emit+0x3d7/0x680 [ 341.337694][ T5206] _printk+0xc7/0x100 [ 341.337720][ T5206] __report_bug+0x3a6/0x520 [ 341.337740][ T5206] report_bug+0xb2/0x220 [ 341.337758][ T5206] handle_bug+0x127/0x260 [ 341.337786][ T5206] exc_invalid_op+0x17/0x50 [ 341.337815][ T5206] asm_exc_invalid_op+0x1a/0x20 [ 341.337836][ T5206] update_rq_clock+0x34a/0xc70 [ 341.337866][ T5206] __schedule+0x2035/0x5de0 [ 341.337888][ T5206] preempt_schedule_common+0x44/0xc0 [ 341.337911][ T5206] preempt_schedule_thunk+0x16/0x30 [ 341.337945][ T5206] _raw_spin_unlock_irqrestore+0x61/0x80 [ 341.337968][ T5206] sock_def_readable+0x15b/0x5d0 [ 341.337988][ T5206] netlink_unicast+0x75f/0x870 [ 341.338015][ T5206] netlink_sendmsg+0x8c8/0xdd0 [ 341.338040][ T5206] ____sys_sendmsg+0xa5d/0xc30 [ 341.338068][ T5206] ___sys_sendmsg+0x134/0x1d0 [ 341.338090][ T5206] __sys_sendmsg+0x16d/0x220 [ 341.338111][ T5206] do_syscall_64+0xcd/0xf80 [ 341.338135][ T5206] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 341.338156][ T5206] [ 341.338156][ T5206] other info that might help us debug this: [ 341.338156][ T5206] [ 341.338163][ T5206] Chain exists of: [ 341.338163][ T5206] console_owner --> &p->pi_lock --> &rq->__lock [ 341.338163][ T5206] [ 341.338194][ T5206] Possible unsafe locking scenario: [ 341.338194][ T5206] [ 341.338200][ T5206] CPU0 CPU1 [ 341.338206][ T5206] ---- ---- [ 341.338212][ T5206] lock(&rq->__lock); [ 341.338225][ T5206] lock(&p->pi_lock); [ 341.338239][ T5206] lock(&rq->__lock); [ 341.338254][ T5206] lock(console_owner); [ 341.338266][ T5206] [ 341.338266][ T5206] *** DEADLOCK *** [ 341.338266][ T5206] [ 341.338271][ T5206] 4 locks held by udevd/5206: [ 341.338283][ T5206] #0: ffffffff8e1c8620 (rcu_read_lock){....}-{1:3}, at: sock_def_readable+0x97/0x5d0 [ 341.338332][ T5206] #1: ffff8880b843a958 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130 [ 341.338391][ T5206] #2: ffffffff8e1b5ae0 (console_lock){+.+.}-{0:0}, at: _printk+0xc7/0x100 [ 341.338447][ T5206] #3: ffffffff8e1b5b50 (console_srcu){....}-{0:0}, at: console_flush_all+0x158/0xc60 [ 341.338506][ T5206] [ 341.338506][ T5206] stack backtrace: [ 341.338516][ T5206] CPU: 0 UID: 0 PID: 5206 Comm: udevd Not tainted syzkaller #0 PREEMPT(full) [ 341.338542][ T5206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 341.338556][ T5206] Call Trace: [ 341.338563][ T5206] [ 341.338572][ T5206] dump_stack_lvl+0x116/0x1f0 [ 341.338603][ T5206] print_circular_bug+0x2db/0x410 [ 341.338627][ T5206] check_noncircular+0x146/0x160 [ 341.338653][ T5206] __lock_acquire+0x1542/0x22f0 [ 341.338680][ T5206] lock_acquire+0x179/0x330 [ 341.338702][ T5206] ? console_lock_spinning_enable+0x61/0x80 [ 341.338734][ T5206] ? console_lock_spinning_enable+0x4a/0x80 [ 341.338768][ T5206] console_lock_spinning_enable+0x72/0x80 [ 341.338799][ T5206] ? console_lock_spinning_enable+0x61/0x80 [ 341.338830][ T5206] console_flush_all+0x7aa/0xc60 [ 341.338867][ T5206] ? __pfx_console_flush_all+0x10/0x10 [ 341.338903][ T5206] ? __lock_acquire+0x433/0x22f0 [ 341.338929][ T5206] ? is_printk_cpu_sync_owner+0x32/0x40 [ 341.338967][ T5206] console_unlock+0xd8/0x210 [ 341.338998][ T5206] ? __pfx_console_unlock+0x10/0x10 [ 341.339029][ T5206] ? do_raw_spin_unlock+0x170/0x230 [ 341.339059][ T5206] ? _printk+0xc7/0x100 [ 341.339082][ T5206] ? __down_trylock_console_sem+0xb0/0x140 [ 341.339111][ T5206] vprintk_emit+0x3d7/0x680 [ 341.339143][ T5206] ? __pfx_vprintk_emit+0x10/0x10 [ 341.339177][ T5206] ? __pfx___schedule+0x10/0x10 [ 341.339199][ T5206] ? is_bpf_text_address+0x94/0x1a0 [ 341.339229][ T5206] _printk+0xc7/0x100 [ 341.339253][ T5206] ? __pfx__printk+0x10/0x10 [ 341.339275][ T5206] ? __lock_acquire+0x433/0x22f0 [ 341.339301][ T5206] ? __lock_acquire+0x433/0x22f0 [ 341.339323][ T5206] ? __report_bug+0x396/0x520 [ 341.339343][ T5206] ? __report_bug+0x385/0x520 [ 341.339365][ T5206] __report_bug+0x3a6/0x520 [ 341.339385][ T5206] ? update_rq_clock+0x34a/0xc70 [ 341.339421][ T5206] ? __pfx___report_bug+0x10/0x10 [ 341.339444][ T5206] ? __lock_acquire+0x433/0x22f0 [ 341.339468][ T5206] ? __lock_acquire+0x433/0x22f0 [ 341.339492][ T5206] ? update_rq_clock+0x34a/0xc70 [ 341.339525][ T5206] report_bug+0xb2/0x220 [ 341.339546][ T5206] ? update_rq_clock+0x34a/0xc70 [ 341.339578][ T5206] handle_bug+0x127/0x260 [ 341.339613][ T5206] exc_invalid_op+0x17/0x50 [ 341.339643][ T5206] asm_exc_invalid_op+0x1a/0x20 [ 341.339665][ T5206] RIP: 0010:update_rq_clock+0x34a/0xc70 [ 341.339700][ T5206] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc a8 04 0f 84 9c fd ff ff 90 0f 0b 90 e9 93 fd ff ff 90 <0f> 0b 90 e9 4f fd ff ff 48 8d bb 18 0e 00 00 48 b8 00 00 00 00 00 [ 341.339723][ T5206] RSP: 0018:ffffc900030e75b8 EFLAGS: 00010046 [ 341.339740][ T5206] RAX: 0000000000000000 RBX: ffff8880b853a940 RCX: 0000000000000001 [ 341.339755][ T5206] RDX: 0000000000000000 RSI: ffffffff8d8785ac RDI: ffffffff8bd1bd00 [ 341.339769][ T5206] RBP: 0000000000000001 R08: ffff8880b843b448 R09: fffffbfff20cb9fa [ 341.339784][ T5206] R10: ffffffff9065cfd7 R11: 0000000000000001 R12: ffffffff90660034 [ 341.339799][ T5206] R13: ffffffff8db35ce0 R14: ffff888028308000 R15: ffff8880b853a940 [ 341.339821][ T5206] ? update_rq_clock+0x99/0xc70 [ 341.339853][ T5206] ? pick_task_fair+0x85/0x350 [ 341.339884][ T5206] __schedule+0x2035/0x5de0 [ 341.339915][ T5206] ? __pfx___schedule+0x10/0x10 [ 341.339941][ T5206] ? ep_autoremove_wake_function+0xe4/0x180 [ 341.339971][ T5206] ? find_held_lock+0x2b/0x80 [ 341.340001][ T5206] ? ep_poll_callback+0x9ab/0xbc0 [ 341.340030][ T5206] ? do_raw_spin_unlock+0x172/0x230 [ 341.340065][ T5206] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 341.340090][ T5206] ? ep_poll_callback+0x699/0xbc0 [ 341.340120][ T5206] ? preempt_schedule_thunk+0x16/0x30 [ 341.340156][ T5206] preempt_schedule_common+0x44/0xc0 [ 341.340182][ T5206] preempt_schedule_thunk+0x16/0x30 [ 341.340220][ T5206] _raw_spin_unlock_irqrestore+0x61/0x80 [ 341.340245][ T5206] sock_def_readable+0x15b/0x5d0 [ 341.340267][ T5206] netlink_unicast+0x75f/0x870 [ 341.340297][ T5206] ? __pfx_netlink_unicast+0x10/0x10 [ 341.340324][ T5206] ? apparmor_capable+0x1d8/0x4e0 [ 341.340348][ T5206] ? __pfx___might_resched+0x10/0x10 [ 341.340385][ T5206] netlink_sendmsg+0x8c8/0xdd0 [ 341.340415][ T5206] ? __pfx_netlink_sendmsg+0x10/0x10 [ 341.340445][ T5206] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 341.340470][ T5206] ____sys_sendmsg+0xa5d/0xc30 [ 341.340500][ T5206] ? copy_msghdr_from_user+0x10a/0x160 [ 341.340525][ T5206] ? __pfx_____sys_sendmsg+0x10/0x10 [ 341.340562][ T5206] ___sys_sendmsg+0x134/0x1d0 [ 341.340591][ T5206] ? __pfx____sys_sendmsg+0x10/0x10 [ 341.340628][ T5206] ? putname+0xf5/0x1a0 [ 341.340660][ T5206] ? do_sys_openat2+0x190/0x280 [ 341.340681][ T5206] __sys_sendmsg+0x16d/0x220 [ 341.340704][ T5206] ? __pfx___sys_sendmsg+0x10/0x10 [ 341.340736][ T5206] do_syscall_64+0xcd/0xf80 [ 341.340763][ T5206] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 341.340784][ T5206] RIP: 0033:0x7f87bd2a7407 [ 341.340801][ T5206] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff [ 341.340823][ T5206] RSP: 002b:00007ffe3317fb50 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 341.340845][ T5206] RAX: ffffffffffffffda RBX: 00007f87bd9fa880 RCX: 00007f87bd2a7407 [ 341.340860][ T5206] RDX: 0000000000000000 RSI: 00007ffe3317fbb0 RDI: 0000000000000004 [ 341.340874][ T5206] RBP: 0000559b888e3f50 R08: 0000000000000000 R09: 0000000000000000 [ 341.340888][ T5206] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000000008b [ 341.340902][ T5206] R13: 0000559b888bc9e0 R14: 0000000000000000 R15: 0000000000000000 [ 341.340923][ T5206] [ 342.654426][ T5206] WARNING: kernel/sched/sched.h:1547 at update_rq_clock+0x34a/0xc70, CPU#0: udevd/5206 [ 342.664093][ T5206] Modules linked in: [ 342.668003][ T5206] CPU: 0 UID: 0 PID: 5206 Comm: udevd Not tainted syzkaller #0 PREEMPT(full) [ 342.676868][ T5206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 342.686944][ T5206] RIP: 0010:update_rq_clock+0x34a/0xc70 [ 342.692551][ T5206] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc a8 04 0f 84 9c fd ff ff 90 0f 0b 90 e9 93 fd ff ff 90 <0f> 0b 90 e9 4f fd ff ff 48 8d bb 18 0e 00 00 48 b8 00 00 00 00 00 [ 342.712174][ T5206] RSP: 0018:ffffc900030e75b8 EFLAGS: 00010046 [ 342.718259][ T5206] RAX: 0000000000000000 RBX: ffff8880b853a940 RCX: 0000000000000001 [ 342.726238][ T5206] RDX: 0000000000000000 RSI: ffffffff8d8785ac RDI: ffffffff8bd1bd00 [ 342.734218][ T5206] RBP: 0000000000000001 R08: ffff8880b843b448 R09: fffffbfff20cb9fa [ 342.742210][ T5206] R10: ffffffff9065cfd7 R11: 0000000000000001 R12: ffffffff90660034 [ 342.750185][ T5206] R13: ffffffff8db35ce0 R14: ffff888028308000 R15: ffff8880b853a940 [ 342.758250][ T5206] FS: 00007f87bd9fa880(0000) GS:ffff888124ba8000(0000) knlGS:0000000000000000 [ 342.767192][ T5206] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 342.773820][ T5206] CR2: 00007f77b91b6ad8 CR3: 000000007efe0000 CR4: 00000000003526f0 [ 342.781797][ T5206] Call Trace: [ 342.785079][ T5206] [ 342.788010][ T5206] ? pick_task_fair+0x85/0x350 [ 342.792794][ T5206] __schedule+0x2035/0x5de0 [ 342.797312][ T5206] ? __pfx___schedule+0x10/0x10 [ 342.802173][ T5206] ? ep_autoremove_wake_function+0xe4/0x180 [ 342.808087][ T5206] ? find_held_lock+0x2b/0x80 [ 342.812975][ T5206] ? ep_poll_callback+0x9ab/0xbc0 [ 342.818034][ T5206] ? do_raw_spin_unlock+0x172/0x230 [ 342.823248][ T5206] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 342.829065][ T5206] ? ep_poll_callback+0x699/0xbc0 [ 342.834101][ T5206] ? preempt_schedule_thunk+0x16/0x30 [ 342.839520][ T5206] preempt_schedule_common+0x44/0xc0 [ 342.844905][ T5206] preempt_schedule_thunk+0x16/0x30 [ 342.850124][ T5206] _raw_spin_unlock_irqrestore+0x61/0x80 [ 342.855767][ T5206] sock_def_readable+0x15b/0x5d0 [ 342.860729][ T5206] netlink_unicast+0x75f/0x870 [ 342.865528][ T5206] ? __pfx_netlink_unicast+0x10/0x10 [ 342.870827][ T5206] ? apparmor_capable+0x1d8/0x4e0 [ 342.876122][ T5206] ? __pfx___might_resched+0x10/0x10 [ 342.881440][ T5206] netlink_sendmsg+0x8c8/0xdd0 [ 342.886232][ T5206] ? __pfx_netlink_sendmsg+0x10/0x10 [ 342.891632][ T5206] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 342.897723][ T5206] ____sys_sendmsg+0xa5d/0xc30 [ 342.902552][ T5206] ? copy_msghdr_from_user+0x10a/0x160 [ 342.908033][ T5206] ? __pfx_____sys_sendmsg+0x10/0x10 [ 342.913367][ T5206] ___sys_sendmsg+0x134/0x1d0 [ 342.918058][ T5206] ? __pfx____sys_sendmsg+0x10/0x10 [ 342.923277][ T5206] ? putname+0xf5/0x1a0 [ 342.927470][ T5206] ? do_sys_openat2+0x190/0x280 [ 342.932354][ T5206] __sys_sendmsg+0x16d/0x220 [ 342.936968][ T5206] ? __pfx___sys_sendmsg+0x10/0x10 [ 342.942099][ T5206] do_syscall_64+0xcd/0xf80 [ 342.946633][ T5206] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 342.952540][ T5206] RIP: 0033:0x7f87bd2a7407 [ 342.956957][ T5206] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff [ 342.976570][ T5206] RSP: 002b:00007ffe3317fb50 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 342.985019][ T5206] RAX: ffffffffffffffda RBX: 00007f87bd9fa880 RCX: 00007f87bd2a7407 [ 342.993005][ T5206] RDX: 0000000000000000 RSI: 00007ffe3317fbb0 RDI: 0000000000000004 [ 343.000978][ T5206] RBP: 0000559b888e3f50 R08: 0000000000000000 R09: 0000000000000000 [ 343.008955][ T5206] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000000008b [ 343.016934][ T5206] R13: 0000559b888bc9e0 R14: 0000000000000000 R15: 0000000000000000 [ 343.024931][ T5206] [ 343.028002][ T5206] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 343.035382][ T5206] CPU: 0 UID: 0 PID: 5206 Comm: udevd Not tainted syzkaller #0 PREEMPT(full) [ 343.044441][ T5206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 343.054530][ T5206] Call Trace: [ 343.057815][ T5206] [ 343.060748][ T5206] dump_stack_lvl+0x3d/0x1f0 [ 343.065356][ T5206] vpanic+0x640/0x6f0 [ 343.069358][ T5206] ? update_rq_clock+0x34a/0xc70 [ 343.074324][ T5206] panic+0xca/0xd0 [ 343.078054][ T5206] ? __pfx_panic+0x10/0x10 [ 343.082682][ T5206] ? check_panic_on_warn+0x1f/0xb0 [ 343.087823][ T5206] check_panic_on_warn+0xab/0xb0 [ 343.092872][ T5206] __warn+0x108/0x3c0 [ 343.096888][ T5206] __report_bug+0x2a0/0x520 [ 343.101413][ T5206] ? update_rq_clock+0x34a/0xc70 [ 343.106379][ T5206] ? __pfx___report_bug+0x10/0x10 [ 343.111424][ T5206] ? __lock_acquire+0x433/0x22f0 [ 343.116383][ T5206] ? __lock_acquire+0x433/0x22f0 [ 343.121512][ T5206] ? update_rq_clock+0x34a/0xc70 [ 343.126558][ T5206] report_bug+0xb2/0x220 [ 343.130942][ T5206] ? update_rq_clock+0x34a/0xc70 [ 343.135948][ T5206] handle_bug+0x127/0x260 [ 343.140318][ T5206] exc_invalid_op+0x17/0x50 [ 343.144846][ T5206] asm_exc_invalid_op+0x1a/0x20 [ 343.149719][ T5206] RIP: 0010:update_rq_clock+0x34a/0xc70 [ 343.155290][ T5206] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc a8 04 0f 84 9c fd ff ff 90 0f 0b 90 e9 93 fd ff ff 90 <0f> 0b 90 e9 4f fd ff ff 48 8d bb 18 0e 00 00 48 b8 00 00 00 00 00 [ 343.174996][ T5206] RSP: 0018:ffffc900030e75b8 EFLAGS: 00010046 [ 343.181075][ T5206] RAX: 0000000000000000 RBX: ffff8880b853a940 RCX: 0000000000000001 [ 343.189061][ T5206] RDX: 0000000000000000 RSI: ffffffff8d8785ac RDI: ffffffff8bd1bd00 [ 343.197038][ T5206] RBP: 0000000000000001 R08: ffff8880b843b448 R09: fffffbfff20cb9fa [ 343.205021][ T5206] R10: ffffffff9065cfd7 R11: 0000000000000001 R12: ffffffff90660034 [ 343.212994][ T5206] R13: ffffffff8db35ce0 R14: ffff888028308000 R15: ffff8880b853a940 [ 343.220996][ T5206] ? update_rq_clock+0x99/0xc70 [ 343.225896][ T5206] ? pick_task_fair+0x85/0x350 [ 343.230680][ T5206] __schedule+0x2035/0x5de0 [ 343.235206][ T5206] ? __pfx___schedule+0x10/0x10 [ 343.240068][ T5206] ? ep_autoremove_wake_function+0xe4/0x180 [ 343.245979][ T5206] ? find_held_lock+0x2b/0x80 [ 343.250677][ T5206] ? ep_poll_callback+0x9ab/0xbc0 [ 343.255720][ T5206] ? do_raw_spin_unlock+0x172/0x230 [ 343.260931][ T5206] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 343.266746][ T5206] ? ep_poll_callback+0x699/0xbc0 [ 343.271784][ T5206] ? preempt_schedule_thunk+0x16/0x30 [ 343.277182][ T5206] preempt_schedule_common+0x44/0xc0 [ 343.282479][ T5206] preempt_schedule_thunk+0x16/0x30 [ 343.287789][ T5206] _raw_spin_unlock_irqrestore+0x61/0x80 [ 343.293440][ T5206] sock_def_readable+0x15b/0x5d0 [ 343.298394][ T5206] netlink_unicast+0x75f/0x870 [ 343.303202][ T5206] ? __pfx_netlink_unicast+0x10/0x10 [ 343.308507][ T5206] ? apparmor_capable+0x1d8/0x4e0 [ 343.313632][ T5206] ? __pfx___might_resched+0x10/0x10 [ 343.318951][ T5206] netlink_sendmsg+0x8c8/0xdd0 [ 343.323740][ T5206] ? __pfx_netlink_sendmsg+0x10/0x10 [ 343.329049][ T5206] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 343.335211][ T5206] ____sys_sendmsg+0xa5d/0xc30 [ 343.341127][ T5206] ? copy_msghdr_from_user+0x10a/0x160 [ 343.346609][ T5206] ? __pfx_____sys_sendmsg+0x10/0x10 [ 343.351925][ T5206] ___sys_sendmsg+0x134/0x1d0 [ 343.356881][ T5206] ? __pfx____sys_sendmsg+0x10/0x10 [ 343.362104][ T5206] ? putname+0xf5/0x1a0 [ 343.366279][ T5206] ? do_sys_openat2+0x190/0x280 [ 343.371157][ T5206] __sys_sendmsg+0x16d/0x220 [ 343.375798][ T5206] ? __pfx___sys_sendmsg+0x10/0x10 [ 343.381159][ T5206] do_syscall_64+0xcd/0xf80 [ 343.385702][ T5206] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 343.391614][ T5206] RIP: 0033:0x7f87bd2a7407 [ 343.396044][ T5206] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff [ 343.415844][ T5206] RSP: 002b:00007ffe3317fb50 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 343.424284][ T5206] RAX: ffffffffffffffda RBX: 00007f87bd9fa880 RCX: 00007f87bd2a7407 [ 343.432272][ T5206] RDX: 0000000000000000 RSI: 00007ffe3317fbb0 RDI: 0000000000000004 [ 343.440262][ T5206] RBP: 0000559b888e3f50 R08: 0000000000000000 R09: 0000000000000000 [ 343.448253][ T5206] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000000008b [ 343.456236][ T5206] R13: 0000559b888bc9e0 R14: 0000000000000000 R15: 0000000000000000 [ 343.464223][ T5206] [ 343.467434][ T5206] Kernel Offset: disabled [ 343.471857][ T5206] Rebooting in 86400 seconds..