last executing test programs: 6.764755868s ago: executing program 2 (id=609): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram3\x00', 0x44000, 0x0) ioctl$auto_BLKBSZSET(r0, 0x40081271, &(0x7f00000000c0)=0x1000) 6.497288263s ago: executing program 2 (id=612): unshare$auto(0x40000080) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/crash_elfcorehdr_size\x00', 0xc0001, 0x0) r0 = socket(0xa, 0x1, 0x0) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x2000300000000000) mmap$auto(0x5, 0x100000000000e983, 0x3, 0xeb4, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20006, 0x8, 0xebe, r0, 0x8004) unlinkat$auto(0xffffffffffffffff, 0x0, 0x200) close_range$auto(0x2, 0x8, 0x0) select$auto(0x9, 0x0, 0x0, 0x0, 0x0) io_uring_setup$auto(0x6, 0x0) msgctl$auto(0xb, 0x80000001, 0x0) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000003fc0)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20a02, 0x0) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/keys\x00', 0x8340, 0x0) pread64$auto(r1, 0x0, 0x8, 0xfffd) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) rt_sigprocmask$auto(0xffffffff, 0x0, 0x0, 0x8) openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x42880, 0x0) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x7) socket(0xa, 0x5, 0x81) mmap$auto(0x4000000004, 0x4020009, 0x0, 0xeb1, 0xffffffffffffffff, 0x7ffc) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/ubifs/parameters/default_version\x00', 0x8041, 0x0) write$auto(r2, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) rt_sigprocmask$auto(0x6, 0x0, &(0x7f0000000100)={0x400}, 0x8) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40001, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) sysfs$auto(0x2, 0x100000000000037, 0x0) 4.549228562s ago: executing program 0 (id=623): r0 = openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, 0x0, 0x1, 0x0) writev$auto(r0, &(0x7f0000000bc0)={0x0, 0x3}, 0x7) (async) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/mac802154_hwsim/ieee802154/phy1/net/wpan1/statistics/rx_packets\x00', 0x244100, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, 0x0, 0x0) (async, rerun: 32) write$auto_cachefiles_daemon_fops_internal(0xffffffffffffffff, &(0x7f0000000300)="a04f", 0x2) (async, rerun: 32) ioctl$auto_NS_GET_TGID_IN_PIDNS(0xffffffffffffffff, 0x8004b709, &(0x7f0000000040)=0x5) (async, rerun: 32) r2 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/ieee80211/phy3/netdev:wlan0/stations/08:02:11:00:00:01/he_capa\x00', 0xa0080, 0x0) (rerun: 32) r3 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000240)='/dev/binderfs/binder0\x00', 0x80000, 0x0) ppoll$auto(&(0x7f00000002c0)={r3, 0x101, 0x2}, 0x6, 0x0, 0x0, 0x8) read$auto_debugfs_full_proxy_file_operations_internal(r2, 0x0, 0x0) unshare$auto(0x40000080) (async) r5 = socket(0xa, 0x2, 0x3a) bind$auto(r5, &(0x7f0000000280)=@llc={0x1a, 0x325, 0x6, 0x9d, 0x6, 0x8, @random="c7ff4dd0edeb"}, 0x4) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/set_event\x00', 0x101901, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd15/queue/scheduler\x00', 0x103a42, 0x0) sendfile$auto(r6, r6, 0x0, 0x9) (async) r7 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r8 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r8, 0x7a0, 0x0) (async) write$auto(r7, &(0x7f0000000400)='/dev/\x98@dio1\x00', 0x100000a3d9) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 32) r9 = socket(0x2, 0x80001, 0xffff8000) (rerun: 32) r10 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000002c0), r9) sendmsg$auto_NL80211_CMD_ADD_LINK(r8, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYBLOB="14850a00", @ANYRES16=r10, @ANYBLOB="00042abd7000fedbdf2594000000"], 0x14}, 0x1, 0x0, 0x0, 0x4010}, 0x44) (async, rerun: 64) r11 = socket(0x15, 0x80000, 0x801) (rerun: 64) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x11}}, 0x6a) sendmmsg$auto(r11, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000) sendfile$auto(0x1, 0xffffffffffffffff, 0x0, 0x7ff) (async, rerun: 32) ioctl$auto_EVIOCREVOKE(r4, 0x40044591, &(0x7f0000000080)=0x1) (async, rerun: 32) sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c) 4.233446866s ago: executing program 2 (id=624): mmap$auto(0x9, 0x8, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0x4040, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1c100, 0x0) ioctl$auto(0x3, 0x800005411, 0x38) sendmsg$auto_IPVS_CMD_SET_DEST(0xffffffffffffffff, 0x0, 0x4044000) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008012, r0, 0x8000) mbind$auto(0x800000000000200, 0x7, 0x4, 0x0, 0x6, 0x20000201) socket(0x26, 0x800, 0x8) read$auto(0x3, 0x0, 0x7fffffff) mmap$auto(0x0, 0x2020009, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0xffffffffffffffff, 0x8, 0x0) sysfs$auto(0x2, 0x7, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80402, 0x0) keyctl$auto(0x5, 0xffffffffffffffff, 0x200008, 0x6, 0x3) r1 = geteuid() keyctl$auto(0x2, r1, r1, 0x0, 0xb) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x80080, 0x0) poll$auto(0x0, 0x5, 0x108) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/ram8/queue/zoned\x00', 0x90103, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/1-0:1.0/usb1-port1/quirks\x00', 0x103a42, 0x0) sendfile$auto(r2, r3, 0x0, 0x3) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/apparmor/parameters/audit\x00', 0xb02, 0x0) read$auto(r4, &(0x7f00000003c0)=']%\'\x00', 0x5) write$auto(0xca, 0x0, 0x81) mmap$auto(0x8, 0x4000a, 0xdf, 0x9b72, 0x7, 0x28000) 3.92607398s ago: executing program 1 (id=626): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000000)="56c975de61d30bf6d13006ad6ac9449ec798", 0x1, 0x0, 0x9, 0x0, 0x8001, 0x4}, 0x3}, 0xfffffff7, 0x4, 0x0) r0 = socket(0x11, 0x2, 0x6) capset$auto(0x0, &(0x7f0000000000)={0xa82, 0x3a, 0x4001}) sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000), 0x1aa, &(0x7f0000000100)={&(0x7f00000003c0), 0x49}, 0x5, &(0x7f0000000180), 0x5, 0x1000}, 0x5}, 0x2, 0x100) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x2c201, 0x0) ioctl$auto_IOC_PR_RESERVE(r1, 0x401070c9, 0x0) 3.835912705s ago: executing program 0 (id=627): r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x40001, 0x84) unlinkat$auto(r0, &(0x7f0000000040)='./file0\x00', 0x7e9) (async) r1 = bpf$auto(0xe8e5, &(0x7f0000000080)=@bpf_attr_7={@link_id=0x100, 0x80, 0xe3, r0}, 0x7abe) io_uring_register$auto_IORING_REGISTER_CLOCK(r2, 0x1d, &(0x7f0000000140)="cf9644b32e1cee3d6e95488c81d91eda3eef522c7eeec760a0c64ad9169f00d36790cd911216474e2bc191e2bd0a556735074779fbd883a05fe9ae5a791dbe82f45e141c", 0x4) ioctl$auto_SOUND_MIXER_INFO2(r1, 0x805c4d65, &(0x7f00000001c0)="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") read$auto_fops_u32_ro_(r2, &(0x7f00000011c0)=""/159, 0x9f) mmap$auto(0x9, 0x3, 0x3, 0x75f846b7, r0, 0x7) r3 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f00000012c0), r1) sendmsg$auto_OVS_VPORT_CMD_SET(r2, &(0x7f00000014c0)={&(0x7f0000001280)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000001480)={&(0x7f0000001300)={0x144, r3, 0x200, 0x70bd28, 0x25dfdbfd, {}, [@OVS_VPORT_ATTR_NETNSID={0x8, 0x9, 0x400}, @OVS_VPORT_ATTR_OPTIONS={0x128, 0x4, 0x0, 0x1, [@nested={0x8, 0x16, 0x0, 0x1, [@nested={0x4, 0x54}]}, @nested={0x11a, 0xc0, 0x0, 0x1, [@generic="34e466ee39bc5f980465d97a27ab02433354a0c8497858bdb14b3f80dfef6239e4364aa9807f8e5abcc144b6f982183a8035983e039dbd675bc58a9ef80dbef99ba65a4bc911466804ecbd8117befeb0d08d8f145b40bb23c0356f5953f3ad07ff18a60f8f6659709f71e9a72a8cfa53b1fceff43f4c9fbf9e808e4d8d938bf3bffd799531bbfc73b224fb9073752ecca64d83b53d16635a0a66b7a41b9e1f587d31de4c54e7d7255ad7ca717704e57cf98a975030f559cc6f26ab4bdb223441b340d84bca4a005055a0a65a335194c65fd86be251e4d9", @generic="1f00bf7a3a5de9a0c19e822a4d959412682fbd928061775a99f39d1d3a71d90369c93edf15bf9d1a31834f", @typed={0x8, 0x10b, 0x0, 0x0, @fd=r2}, @typed={0x8, 0xc6, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x4, 0xe2}]}]}]}, 0x144}, 0x1, 0x0, 0x0, 0x48814}, 0x0) ioctl$auto_XFS_IOC_FREESP(r2, 0x4030580b, &(0x7f0000001500)={0x1, 0x0, 0x9, 0xfffffffffffffff8, 0x8, 0x0}) (async) r5 = waitid$auto_P_PID(0x1, 0x0, &(0x7f0000001540)={@siginfo_0_0={0x6, 0x4, 0x80000000, @_kill={0x0}}}, 0x1, &(0x7f00000015c0)={{0x3, 0xfffffffffffffffd}, {0x2, 0xffffffffffff8000}, 0x7, 0x9, 0x0, 0x1, 0x8000, 0x8000000000000001, 0xaa31, 0x5, 0x10, 0xfff, 0x6a, 0x894f, 0x40, 0x80}) kcmp$auto_KCMP_FILE(r4, r6, 0x0, r2, r2) mmap$auto_snd_pcm_oss_f_reg_pcm_oss(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1, 0x10010, r2, 0x4) (async, rerun: 32) io_uring_register$auto_IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f0000001680)="7a72dfbb415f295bb4b07370b714a99fe48e7e87fb6772a61d388d4a4678af9f5b15071e23beaac7c3159369b81f6a28a685e97f0bc537fd0cbd8deb5e9710c4783b707858da8c58ef8e08d114e537c0aa26cbb6c2c823dc5422421a83604367fec3ed4b7d5ff5322aaf7ae6d2a6020aac5b06c45b5236b5974a04b29cf3", 0x7) (async, rerun: 32) r7 = openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000001700)='/sys/devices/virtual/bluetooth/hci7/power\x00', 0x2a041, 0x0) ioctl$auto_XFS_IOC_FSGROWFSDATA(r7, 0x4010586e, &(0x7f0000001740)={0x4, 0x7ff}) (async) r8 = open_tree$auto(r0, &(0x7f0000001780)='./file0\x00', 0x8001) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000017c0)={'netdevsim0\x00', 0x0}) r10 = open(&(0x7f0000001800)='./file0\x00', 0x781002, 0x3) (async) r11 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000001880), r1) sendmsg$auto_BATADV_CMD_GET_GATEWAYS(r2, &(0x7f0000001940)={&(0x7f0000001840)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001900)={&(0x7f00000018c0)={0x2c, r11, 0x400, 0x70bd2c, 0x25dfdbff, {}, [@BATADV_ATTR_BLA_VID={0x6, 0x20, 0x6}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x3}, @BATADV_ATTR_TT_FLAGS={0x8, 0x15, 0x8001}]}, 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x800) sendmsg$auto_NL80211_CMD_CRIT_PROTOCOL_STOP(r1, &(0x7f00000020c0)={&(0x7f0000001980)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000002080)={&(0x7f00000019c0)={0x684, 0x0, 0x20, 0x70bd28, 0x25dfdbfc, {}, [@NL80211_ATTR_TDLS_INITIATOR={0x4}, @NL80211_ATTR_IE_RIC={0x5a7, 0xb2, "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"}, @NL80211_ATTR_FTM_RESPONDER={0xc4, 0x10e, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_LCI={0xbb, 0x2, "dee59073797da23e7647b99892bdba3d7f28374d1aafa9718a663ae995b4691d3747e1eebe5eaa5005517e5395f718fcc33f27c686cab38fa75687e201609afc02928d4caa2fa2c73f825c594690013d58b23f5b32957b4afed3d5b1ef6d0f828fb7848b9d70109875c4467bfda71235650742f996bfc8878ef0700bcd10137af2b9724609f14ea83affffd4767ac8136c9c6ceb5715db9bb2f197200f1c13f9709ec98494474cd86e95be1b41e6fce971372a02fac8d3"}]}]}, 0x684}}, 0x0) write$auto_ftrace_system_enable_fops_trace_events(r10, &(0x7f0000002100)="73224a5bfe317da047372b0d87a3d5d94dd7090f158fcec3353733d1b72d82e5e6d8ebc8c9d24406", 0x28) (async) ppoll$auto(&(0x7f0000002140)={r1, 0xfffd, 0xa}, 0xf6, &(0x7f0000002180)={0x6}, &(0x7f00000021c0)={0x1ff}, 0x8) recvfrom$auto(r12, &(0x7f0000002200)="98646aa5897567471f551351cf27976ccb33cba3e9d4ebee9a875523bc653bc82d6795e6939d34e1576b9cef5753f3365fc23949f2523276f8198f5c029ddfcaba4fdee70814a59e27214d67887aa30b875f55537478b7e2a52a25214113e2", 0x7, 0x49, &(0x7f0000002280)=@ethernet={0x306}, &(0x7f00000022c0)=0x9) (async) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000002300)='/sys/kernel/debug/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x80, 0x0) io_uring_register$auto_IORING_UNREGISTER_EVENTFD(r8, 0x5, &(0x7f0000002340), 0x80000001) r13 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f00000023c0), r8) sendmsg$auto_OVS_DP_CMD_SET(r8, &(0x7f00000024c0)={&(0x7f0000002380)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000002480)={&(0x7f0000002400)={0x78, r13, 0x2, 0x70bd25, 0x25dfdbff, {}, [@OVS_DP_ATTR_NAME={0xb, 0x1, 'batadv\x00'}, @OVS_DP_ATTR_NAME={0xf, 0x1, '\xc6%{}]]&\xfd:-\x00'}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x5}, @OVS_DP_ATTR_USER_FEATURES={0x8}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x9}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x3}, @OVS_DP_ATTR_IFINDEX={0x8, 0x9, r9}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, r5}, @OVS_DP_ATTR_NAME={0x16, 0x1, '^,\\,{\'\xfc,.^(>$$,%-\x00'}]}, 0x78}, 0x1, 0x0, 0x0, 0x40}, 0x80) (async) sendmsg$auto_NL80211_CMD_RADAR_DETECT(r10, &(0x7f0000002640)={&(0x7f0000002500)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000002600)={&(0x7f0000002580)={0x48, 0x0, 0x300, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_WIPHY_DYN_ACK={0x4}, @NL80211_ATTR_MAC_MASK={0x27, 0xd7, "1d94f0cbabb24e331631813bf6e8d336f442f102737a4c6a4051b1a8c4bd72544286de"}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x8000}]}, 0x48}, 0x1, 0x0, 0x0, 0x44044}, 0xc810) 3.219628957s ago: executing program 3 (id=628): mmap$auto(0x0, 0xe983, 0xe2, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0) r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40602, 0x0) read$auto(r0, 0x0, 0x7ff) write$auto(0x3, 0x0, 0x200) r1 = socket(0xa, 0x1, 0x84) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pppol2tp\x00', 0x120a40, 0x0) pread64$auto(r2, &(0x7f0000000040)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\x8d\xa8\xcfM9\\\xd6\xcfUq\x05#\xed\x1c\xd1G\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xbasG\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1', 0x3ff, 0x9) r3 = timerfd_create$auto_CLOCK_REALTIME(0x0, 0x35c) r4 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000100), r1) r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup/syz0\x00', 0x200002, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f00000003c0), 0xffffffffffffffff) sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x20, r7, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@IOAM6_ATTR_SC_NONE={0x4}, @IOAM6_ATTR_NS_ID={0x6, 0x1, 0x6}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0xc0d0) personality$auto(0x40004010410ffc) prctl$auto_PR_SYS_DISPATCH_ON(0x5, 0x1, 0x0, 0x0, 0x7fff) shmctl$auto_IPC_SET(0x80, 0x1, &(0x7f00000002c0)={{0x4, 0xee00, 0xee00, 0x8, 0xfffffffb, 0x9, 0x1}, 0x7fff, 0x6, 0x9, 0x1, @raw=0x7, @inferred=0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000180)="ee8b0939bd31656f6821cfe01d11ed2ce18def57a7f783f5c925d37b79478d4893ca56182a79139b36bb56b038f3333b4e189f3c66c946a254890f5e1f118344508d56438a6916cfd4f317ee2408eea275f44fec2d831768f65224e4bad9f7c726a2ad4578eea07968fb790e291064bdcf4c412c2c51", &(0x7f0000000200)="59b770f643ded4e2e2b38021fe0c2252ee43969810de8f3552703c459acb9d9926e0df9d3746f5d2ec01ef9618c62a6104e6e43690f2b4ad2d83dfdb6e8e3bf91497aeb379b63dbe407f449e6328f24da43a4230e4ebc5b4c2d34eee3ee652cdcc690e127765f1b6c47acabcb437f075c55452b2f2b79692850f0771d517fe91f858df51240546cfb5848149b9a6cb3b803fd61933a7ef9552e50d9bcd85f3f6c8f40d1fb1dbd56cf6368d"}) sendmsg$auto_OVS_VPORT_CMD_NEW(r3, &(0x7f00000028c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000002880)={&(0x7f0000004f40)=ANY=[@ANYBLOB="e0240000", @ANYRES16=r4, @ANYBLOB, @ANYRES32=r5, @ANYBLOB="080071000000000008001c00", @ANYRES32=r1, @ANYBLOB, @ANYRES32=r1, @ANYBLOB="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", @ANYRES32, @ANYBLOB="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"], 0x24e0}, 0x1, 0x0, 0x0, 0x8040}, 0x40000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) unshare$auto(0x40000080) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) readv$auto(r5, &(0x7f0000000380)={&(0x7f0000000400)="7e1f4e356e82302a5f74ff6757bd418dcc42af182217098014da1ca02dbcc296918dc67d80e5b2cee13b91cece97e6ea91e50710efdd484592360b1fe282de1dcced91106d3450d58749367c58fa52f263b02ce8c281835142b73b2cf855e53d884273ab0a47c2131d81f3e3507fedf5be7eaff6cad22b0594c96decdbd9ac88e4233a4d352d4e08509a92b239bef6fe9423902f2b5ba4da54f471e728821ad2c84ba77b72d68ee0e3caf4246394801517d636eb8084bb"}, 0xfffffffffffffff7) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r8 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x81, 0x8000000000001, 0xa}, 0xb, 0x0) landlock_restrict_self$auto(r8, 0x8) 3.218314079s ago: executing program 0 (id=636): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x800000008000) r0 = socket(0x6, 0x3, 0x37) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x4) r1 = socket(0x26, 0x5, 0x8c68) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x101e41, 0x0) ioperm$auto(0xfffffffffffffff7, 0x5, 0x4000005) futex_waitv$auto(0x0, 0x7ff, 0x8, &(0x7f00000000c0)={0x1000000004, 0x10}, 0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2000, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x48040, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r3, 0x0, 0x20) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dmmidi2\x00', 0x8e100, 0x0) read$auto_snd_rawmidi_f_ops_rawmidi(r5, &(0x7f00000002c0)=""/157, 0x9d) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) close_range$auto(0x2, 0x8, 0x0) close_range$auto(r3, r0, 0xc) sysfs$auto(0x2, 0x7, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) r6 = ioctl$auto_TUNATTACHFILTER(r1, 0x401054d5, 0x0) ioctl$auto_virtual_ncidev_fops_virtual_ncidev(0xffffffffffffffff, 0x400000046, 0x0) futex_wake$auto(&(0x7f0000000140)="adf3e16812f6e5", 0x8, 0x6, 0x6) ioctl$auto_BLKRRPART(r6, 0x125f, 0x0) r7 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000280), 0x141182, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r7, 0x40146f2c, 0x0) unshare$auto(0x40000080) openat$auto_bm_register_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000040), 0x20580, 0x0) mmap$auto(0x5, 0x80000000005, 0x810, 0xfffffffffffffe10, r2, 0x7fff) mincore$auto(0x1000, 0x8001, 0x0) madvise$auto(0x40, 0x3, 0xf) 3.217946489s ago: executing program 1 (id=629): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0xff1, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x187900, 0x0) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/fail-nth\x00', 0x129842, 0x0) mmap$auto(0x0, 0xb668, 0xb, 0x11, r0, 0x6) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram3\x00', 0x44000, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0) ioctl$auto_BLKBSZSET(r1, 0x40081271, &(0x7f00000000c0)=0x1000) 3.096927803s ago: executing program 1 (id=630): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) write$auto(0x3, 0x0, 0xfffffffffffffffa) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0xe) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x11f, 0x0, 0xfffffffffffffffd) mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0x401, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) prctl$auto(0x18, 0x1, 0x0, 0x1, 0x0) capset$auto(0x0, &(0x7f0000000000)={0x2, 0x10000002, 0x6}) syz_genetlink_get_family_id$auto_ovs_vport(0x0, r0) waitid$auto(0xffffff6e, 0xffffffffffffffff, 0x0, 0x66cd8758, 0x0) connect$auto(0x3, 0x0, 0x55) 2.886617645s ago: executing program 2 (id=631): r0 = openat$auto_stats_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0) pread64$auto(r0, 0x0, 0x200000002, 0x100001ba6) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r2 = socket(0x22, 0x3, 0x0) ioctl$auto(0xffffffffffffffff, 0x40104d01, 0xffffffffffffffff) futex$auto(&(0x7f0000000080)=0x2948, 0x0, 0x2948, 0x0, 0x0, 0x1000) r3 = openat$auto_safesetid_gid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000000), 0x480, 0x0) readv$auto(r3, &(0x7f0000000040)={0x0, 0xffff}, 0x4) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000001c0), r2) sendmsg$auto_NL80211_CMD_STOP_AP(r2, &(0x7f0000000500)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000200)={0x28c, r4, 0x10, 0x70bd2a, 0x25dfdbfc, {}, [@NL80211_ATTR_SAR_SPEC={0x220, 0x12c, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS={0x54, 0x2, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x7}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x3}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x6}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x80000001}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x401}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x7}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xc58}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x19f}]}]}, @NL80211_SAR_ATTR_TYPE={0x8, 0x1, 0x1}, @NL80211_SAR_ATTR_SPECS={0x84, 0x2, 0x0, 0x1, [{0x4c, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x5}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x3}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x6f6}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x1}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xf}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x101}, @NL80211_SAR_ATTR_SPECS_POWER={0x8}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x6}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x7332}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x44}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x1d7}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x400}]}]}, @NL80211_SAR_ATTR_SPECS={0x12c, 0x2, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0xffffffff}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x9}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xd}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x1}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x1}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x6}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x3}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x80}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x1}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x9}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x101}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x85}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x5}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x516}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x27}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x4}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x1}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xbad5}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x9}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0xb}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x2b4}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x8001}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x9}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x1}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x2}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x7c}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xfffffffa}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x10001}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xfffffff8}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x9d9}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8}, @NL80211_SAR_ATTR_SPECS_POWER={0x8}]}]}, @NL80211_SAR_ATTR_TYPE={0x8, 0x1, 0x10}, @NL80211_SAR_ATTR_TYPE={0x8, 0x1, 0x446}]}, @NL80211_ATTR_EHT_CAPABILITY={0x55, 0x136, "f3a684f121ece52d3afae93343eb1f338ff7af0d262244c740f81e9f071125d77eb2ba1b5b2c3bf3e13dfcf3db5f14f603314794132b6be0e8699ea86937deb2746ecf5038831817cb91f91b8c91c2dbb8"}]}, 0x28c}, 0x1, 0x0, 0x0, 0x800}, 0x48004) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000002dc0)='/dev/adsp1\x00', 0x2401, 0x0) poll$auto(&(0x7f0000000540)={r3, 0x4, 0x8}, 0xa, 0x7) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0) write$auto(r1, &(0x7f0000000100)='/dev/audio1\x00\xf6\x89\t\xb6t\xae\x12Q\x15E O\xd8\x8d/\xd9\x13\v_\xbcTd\xe0DS\xef?f\xf1ou\xa4W&^\x80\xb2}\x96K\x16*\xa0\x10[8\xa3\x86\x9a3\xc1\xf7\x89x; 4\x8d,U\xa2\xd8\xd5\xfd\xf8\xd8\xb0\xe0W\xad\xe7\x05l*P\xe3\xdfD\x997\xd8p\xfc\xa3\xa9\xc5Z\x8d\xc88}n\x81\tK\x00\x12\xae\xff\xe5\xf1\xb5$\xd4\xca\xbe&\x195\xc1\xda>\x8c\x89P\xa1\xdb\xb4g9E\xc8\x92\xf6m\x1c\x9b\xebAzeI\xcb\x16f\xc0@\x978x\xbe\x15\'\xc6d}\xc2\xd3', 0x6051) readv$auto(0x3, 0x0, 0x1) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.6/usb7/7-0:1.0/modalias\x00', 0x40900, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000280)=""/4096, 0x1000) bpf$auto_BPF_ITER_CREATE(0x21, &(0x7f0000000580)=@prog_bind_map={r5, r3, 0x7fff}, 0x7ff) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r6, &(0x7f0000000000)='//\xf2\x00', 0x80000000) mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x0) msync$auto(0x0, 0xe0, 0x6) 2.507852094s ago: executing program 3 (id=632): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyua\x00', 0x20804, 0x0) (async) r0 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) readv$auto(r0, &(0x7f0000000a80)={0x0, 0x2}, 0x100000001) (async) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f00000031c0)='/dev/ttyua\x00', 0x109000, 0x0) mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000) (async) ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3) (async) r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r1, 0x7a7, 0x0) (async) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, 0x6) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_SETVA(r1, 0x7a4, 0x0) (async) select$auto(0x8, 0x0, 0x0, &(0x7f0000000200)={[0x80000000008, 0xffffffffffffff4b, 0x100000001, 0x15, 0x7fffffffffffffff, 0x1, 0x9, 0x5, 0x8, 0x40000000000000, 0x3, 0x6, 0xfffffffffffffffa, 0xab, 0x2, 0x9]}, 0x0) close_range$auto(0x2, 0x8, 0x0) 2.484689517s ago: executing program 0 (id=633): mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x8001, 0x0) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) socketpair$auto(0x1b, 0x4, 0x8000000000000000, 0x0) r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x232040, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_TREAD64(r0, 0x400454a4, 0x0) (async) ioctl$auto_SNDRV_TIMER_IOCTL_TREAD64(r0, 0x400454a4, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capset$auto(&(0x7f0000000180)={0x19980330}, 0x0) (async) capset$auto(&(0x7f0000000180)={0x19980330}, 0x0) r1 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0) ioctl$auto_BLKPG2(r1, 0x1269, 0x0) (async) ioctl$auto_BLKPG2(r1, 0x1269, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x6, 0x100000011, 0xfffffffffffffffa, 0x7) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ram0\x00', 0x67f00, 0x0) (async) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ram0\x00', 0x67f00, 0x0) preadv2$auto(r3, 0x0, 0x6, 0xffffffffffffffff, 0x400, 0x2f) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) (async) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) socket(0x10, 0xa, 0x1) getsockopt$auto(r2, 0xa, 0x1c, 0x0, 0x0) (async) getsockopt$auto(r2, 0xa, 0x1c, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) (async) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000) write$auto(0xffffffffffffffff, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x402000b, 0xdf, 0x80eb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x402000b, 0xdf, 0x80eb1, 0x401, 0x8000) sysfs$auto(0x2, 0x6, 0x0) close_range$auto(0x2, 0xa, 0x0) fanotify_init$auto(0x5, 0x2000000000002) socket(0x2, 0x801, 0x100) 2.329320333s ago: executing program 3 (id=634): mmap$auto(0x0, 0x20009, 0x3, 0xeb1, 0x401, 0x8000) setitimer$auto(0x2, &(0x7f00000002c0)={{0x82, 0x401}, {0x2, 0x8}}, 0x0) mkdir$auto(&(0x7f0000000040)='./file0\x00', 0x2) mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x9) rename$auto(&(0x7f0000000000)='./file1\x00', &(0x7f0000000040)='./file0/file0\x00') r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x8000, 0x70) mkdir$auto(&(0x7f0000000000)='./file1\x00', 0x4) renameat2$auto(r0, &(0x7f00000000c0)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x2) setrlimit$auto(0x0, &(0x7f0000000040)={0x3346, 0xffffffffffffffff}) timer_create$auto(0x3, 0x0, 0x0) timer_settime$auto(0x0, 0x8, &(0x7f00000000c0)={{0x8}, {0x0, 0x87}}, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) 2.170400758s ago: executing program 3 (id=635): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/net/nr15/queues/tx-0/tx_maxrate\x00', 0x10b942, 0x0) (async) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000005c0)='/sys/devices/virtual/mac80211_hwsim/hwsim1/ieee80211/phy1/rfkill3/state\x00', 0x102, 0x0) mmap$auto(0x1fffff, 0x0, 0xb4, 0x12, r0, 0x400300000000000) ioctl$auto_TUNGETFILTER(0xffffffffffffffff, 0x801054db, 0x0) (async) sendfile$auto(r1, r0, 0x0, 0x7) process_madvise$auto_MADV_NORMAL(0xffffffffffffffff, 0x0, 0x8, 0x0, 0x8) 2.074743282s ago: executing program 1 (id=637): unshare$auto(0x40000080) (async) close_range$auto(0x2, 0x8, 0x0) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/apparmor/parameters/rawdata_compression_level\x00', 0x80, 0x0) (async) r0 = io_uring_setup$auto(0x7, 0x0) (async) r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000140), 0x2200, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, 0x0) r2 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0xc0402, 0x0) (async) r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), r0) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x34, r3, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x7fffffff}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x1000}, @NFSD_A_SERVER_SCOPE={0xe, 0x4, '/dev/ptp0\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x20044001}, 0x0) (async) ioctl$auto_posix_clock_file_operations_posix_clock(r2, 0x40383d0c, 0x0) 1.613320991s ago: executing program 3 (id=638): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vhci_hcd.14/usb38/bNumConfigurations\x00', 0x400100, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) sysfs$auto(0x2, 0x11, 0x0) r1 = fsopen$auto(0x0, 0x1) r2 = getegid() openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, 0x0, 0x80001, 0x0) r3 = socket(0xa, 0x1, 0x84) getsockopt$auto(r3, 0xfffffff8, 0xe, 0x0, &(0x7f0000000040)=0xb0) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) close_range$auto(0x2, 0x8, 0x0) r4 = socket(0x2b, 0x1, 0x1) socketpair$auto(0xfffffffe, 0x1, 0x8000000000000000, 0x0) ioctl$auto(r4, 0x89a0, 0x4) fsconfig$auto(r1, 0x0, &(0x7f0000000080)='/sys/devices/platform/vhci_hcd.14/usb38/bNumConfigurations\x00', &(0x7f00000000c0)="ea616bd224a8a4561ff2f0da8d61b9bd20a83e8d28d1faefe489727e2d4026b66fd2a6713b584d09d3b26a56908abc08a844491241c708e5481d15de3b8a197bc585c544f03d55767514b5a3821ca3710399d024cb86b4e4dfbf8a146fd58d308a9723740235ee7ed6e2d07d7477d363cd9002fd5ad4cc8616d56dbbd9aa7ebb2cc859b7ed05cb5deb4a2413247f937c04091bf1f0478b089638944d86f0aaf643e1fab2eb07a413efc40756940283677e303b54acc1c5f46ba0340b4d54d6160e1f", r2) lstat$auto(&(0x7f0000000000)='./file0\x00', &(0x7f00000001c0)={0x8, 0x5, 0x20b5eec4, 0x2, 0x0, r2, 0x0, 0x4, 0x4, 0x8000000000000000, 0x7, 0x2, 0x2, 0x1, 0x7, 0xadb, 0xc}) fsconfig$auto(r0, 0xe1, 0x0, 0x0, r2) r5 = fsopen$auto(0x0, 0x1) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/bonding/xmit_hash_policy\x00', 0x10b062, 0x0) write$auto(r6, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) fsconfig$auto(r5, 0x8, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) r7 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r7, 0xc004500a, &(0x7f0000000000)) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x3, 0x0, 0xffd8) process_mrelease$auto(0xffffffffffffffff, 0xa) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) ioctl$auto_SNDCTL_DSP_GETOSPACE(r7, 0x8010500c, &(0x7f00000000c0)) 906.962198ms ago: executing program 0 (id=639): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/resend_igmp\x00', 0x1e2142, 0x0) sendfile$auto(r0, r0, 0x0, 0x7fff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0105, 0x19) madvise$auto(0x0, 0xffffff7fffff0005, 0x8) bpf$auto_BPF_ENABLE_STATS(0x20, &(0x7f00000000c0)=@raw_tracepoint={0x0, r0, 0x0, 0x1ff}, 0x6) madvise$auto(0x0, 0x200007, 0x8) 383.780812ms ago: executing program 1 (id=640): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0xff1, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x187900, 0x0) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/fail-nth\x00', 0x129842, 0x0) mmap$auto(0x0, 0xb668, 0xb, 0x11, r0, 0x6) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram3\x00', 0x44000, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0) ioctl$auto_BLKBSZSET(r1, 0x40081271, &(0x7f00000000c0)=0x1000) 360.923066ms ago: executing program 2 (id=641): r0 = openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/fs/orangefs/stats/writes\x00', 0x101040, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000300)=""/6, 0x6) ioctl$auto_IOCTL_STOP_ACCEL_DEV(r0, 0x40096101, 0x0) openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/fs/orangefs/stats/writes\x00', 0x101040, 0x0) (async) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000300)=""/6, 0x6) (async) ioctl$auto_IOCTL_STOP_ACCEL_DEV(r0, 0x40096101, 0x0) (async) 338.533233ms ago: executing program 0 (id=642): openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000100), 0x30e41, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/memory/memory3/online\x00', 0x2062, 0x0) sendfile$auto(r0, r0, 0x0, 0x5) write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa) unshare$auto(0x40000080) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x21, 0x0) write$auto(r1, &(0x7f0000000480)='/Eev/audio1\x00\xa9\v\xce\xf7`\x9ey\xd8@\xe7\x05\xd0KVI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\x04\xb6\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x147\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x00)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xa8!n\xce\xc9\xf4\xfb\x01\x8d\x82\x97\xf2\xeaB\x101\b\xc8\xc4\xeb\xf8\xa9Z\xa2\xb8\x1b\xb0[\xeb\x10\xc2\x14\x86<\x89\x12\xc6!\xd0\x05\v\xa7O\xda\xa0\xd3:\xd1-\xeb\xe3\x8eq\xdb\x009@\x96\xe0\x05\xaa\n\x8c\xf6\x00u-6\xa8#\xd2Z\xfd\xef\x95\x81+C\xb4\xd7\xd8\xdf\xf7\xa3.(J~U\xb6i[q\x8f\xc0D\xcc', 0x5) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x40000000000008, 0x202000a, 0xffffffff, 0xdc, 0xfffffffffffffffa, 0x8000) keyctl$auto(0x1f, 0x1, 0x0, 0x3, 0x8) r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084) madvise$auto(0x0, 0x200007, 0x19) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x103003, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0) pread64$auto(0xffffffffffffffff, &(0x7f0000000200)='\x03\x96l\x00)U\xd7\xcb6,A9\xf8\f\xfe\xa8\x84\xe4x\x8b\x89\xea8\xbdh\x1e\x15gBh\xe7[d\x01\x8a\xbf\x8d`\x9a\xe7\xa1\x03\xaa\xfb3f\xd8\xa1\xc8\x80\xa8\xbc-\xe2\x18w0\x91\xa7\xf7\f\x96n\x05\xee_\x15qD\x1e\xee\x9e\xad\xa6\x99\x17\t4\xe28\xb4e\x84J\xc2\x86\x83F\x9c\x84\xa8C\x90[\x9fV\xf2\xb9\x10\x89v\x8c\x012\xdf\x83XX\xaa\xc5\xee\xab\xdbr\x93u\x01\xce\xb0>\xbb?I\xf0\xfca8\xae\x82\xb9\x98>Z\xbb\xa3m\x19\x98\xe6\xa6\"\x19\xb4*\xc6\x8c\xe2\x13;\xa7\aM}\x14\x93\t\xac\x9fi\x9e\xfaQ\xaf}~K\x88MY;\x91U\xfaB|\xf4\x87\xc5[W\x8f\x13lG\x02\xc4\x12\xd5\x9cE\xb7\xd8\x1f\x8d8\xc8\x96\xccR\xc7\xa5\x93\xcd\x88\xa8\xbe:Y\x9c\x03$\x98Y\xfe}\xf5\xa2c\xdc\\g\x10\xce\xd6\x97\xa5\xb2\xf3c&Zra\x91xQ\x1a\x81\xc6A\x00'/256, 0x100000008, 0xb) close_range$auto(0x0, 0xfffffffffffff000, 0x0) mq_notify$auto(0xffffffffffffffff, &(0x7f0000000180)={@sival_ptr=0x0, @inferred, 0x0, @_sigev_thread={0x0, 0x0}}) mq_timedsend$auto(r2, 0x0, 0x2, 0x9, 0x0) r4 = socket(0x9, 0x800, 0x100341) getsockopt$auto(r4, 0x84, 0x21, 0x0, 0x0) fstatfs$auto(r4, &(0x7f0000000080)={0x9e4, 0x20d9, 0xd4, 0xb, 0x1, 0x2, 0x0, {[0x0, 0x6ba9]}, 0x0, 0x5, 0xfffffffffffffffd, [0x7, 0xfffffffffffffff9, 0x5, 0x6]}) 221.311444ms ago: executing program 1 (id=643): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x800000008000) r0 = socket(0x6, 0x3, 0x37) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x4) r1 = socket(0x26, 0x5, 0x8c68) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x101e41, 0x0) ioperm$auto(0xfffffffffffffff7, 0x5, 0x4000005) futex_waitv$auto(0x0, 0x7ff, 0x8, &(0x7f00000000c0)={0x1000000004, 0x10}, 0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2000, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x48040, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r3, 0x0, 0x20) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dmmidi2\x00', 0x8e100, 0x0) read$auto_snd_rawmidi_f_ops_rawmidi(r5, &(0x7f00000002c0)=""/157, 0x9d) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) close_range$auto(0x2, 0x8, 0x0) close_range$auto(r3, r0, 0xc) sysfs$auto(0x2, 0x7, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) r6 = ioctl$auto_TUNATTACHFILTER(r1, 0x401054d5, 0x0) ioctl$auto_virtual_ncidev_fops_virtual_ncidev(0xffffffffffffffff, 0x400000046, 0x0) futex_wake$auto(&(0x7f0000000140)="adf3e16812f6e5", 0x8, 0x6, 0x6) ioctl$auto_BLKRRPART(r6, 0x125f, 0x0) r7 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000280), 0x141182, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r7, 0x40146f2c, 0x0) unshare$auto(0x40000080) openat$auto_bm_register_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000040), 0x20580, 0x0) mmap$auto(0x5, 0x80000000005, 0x810, 0xfffffffffffffe10, r2, 0x7fff) mincore$auto(0x1000, 0x8001, 0x0) madvise$auto(0x40, 0x3, 0xf) 97.262436ms ago: executing program 2 (id=644): r0 = openat$auto_tracing_err_log_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/error_log\x00', 0x80000, 0x0) mprotect$auto(0x200000000000, 0x806122, 0xc) sched_setscheduler$auto(0x0, 0x5, &(0x7f0000000040)={0x2}) ioprio_set$auto(0x2, 0x800000000, 0x8) sendmsg$auto_IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x4014) r1 = getpid() process_vm_readv$auto(r1, 0x0, 0x1, &(0x7f0000000280)={0x0, 0xffffffff}, 0x6, 0x0) r2 = waitid$auto_P_ALL(0x0, 0xb5ae, &(0x7f0000000180)={@_si_pad}, 0x6, &(0x7f00000002c0)={{0x0, 0xa4}, {0x1ff, 0x6}, 0x1000, 0x6, 0xa2e, 0x5, 0xe, 0x2, 0x9, 0x910, 0x4, 0xf, 0xffffffff, 0x9, 0x8, 0x10001}) sched_setscheduler$auto(r2, 0x3, &(0x7f0000000080)={0xfffffffe}) socket(0x8, 0x802, 0xe) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) capset$auto(0x0, 0x0) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) close_range$auto(r0, r4, 0x0) r5 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/event0\x00', 0x0, 0x0) ioctl$auto_EVIOCSKEYCODE(r5, 0x40084504, &(0x7f0000000040)=[0x8, 0x80000000]) mprotect$auto(0x200000000000, 0x806121, 0x8) mq_getsetattr$auto(0xffffffffffffffff, 0x0, 0x0) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001a40), 0xffffffffffffffff) poll$auto(0x0, 0x2, 0x5) read$auto(0x3, 0x0, 0xfffffdef) 0s ago: executing program 3 (id=645): r0 = socket(0x2, 0x1, 0x0) socket(0xa, 0x3, 0x73) r1 = socket(0x10, 0x2, 0x14) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20000045}, 0x24000044) write$auto(r1, &(0x7f0000000100)='\x00', 0xfffffffffffffffa) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.7/usb8/remove\x00', 0xa001, 0x0) mmap$auto(0x0, 0x2020009, 0xa1, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mbind$auto(0x2000, 0x100000008, 0x2100000000, 0x0, 0x6, 0x2) memfd_secret$auto(0x0) mmap$auto(0xfffffffffffffffc, 0x7, 0x800000000000000f, 0xeb2, 0xfffffffffffffffa, 0x15) sysfs$auto(0x2, 0x17, 0x0) fsconfig$auto_SHMEM_HUGE_NEVER(r0, 0x800e03, &(0x7f0000000340)='/\x00\x8c\'\xdda\xc6\xcct\x94\xaa\xd3M\xa3\x14@*\xd2\xf7\x1f\x03\x1ef%8N\x95#,\xa9\xa7;@\xf76*\xe5\xf9\xef\xda\xc2mH\xd0\xffU\xd2siy%\x89\xce\xb0\x96Pa$ah\x19\xd8qG\x81\xdc\x1a\xec\xf4x(&\xc5].%7dE\xd4\xcfuH\xd1P\xfd5\xce,\x9fc\x9e\xf3\x1d65\n\x8f|c}-\xe7c\xf1\xf2;u9\x9e\xf6P0\xa2\x01\x8b\xd1\xa6XH\xde\xd8ZA\xa4\xdb\xc1\xea\x03\x10%J\x8d\xf2\xec\xcd{~\xbd\xcd\x03iN\xeb\x83\xa6\x00\x00\x00\x00\xfc%\x9e@\x19\xb2\x9e\x9fC@[\xde\xd6\xaa%pFc\xb1\x1c\x10\xfcEK\xfe\xd5\x95\xdd\xc0\x937,\xab\xf3\xc5\xba\xd6\\\f\x84\'}\x81\x8c\xe0n\x9f\x0f\\Y\xba|\xf09X\xa9\x19\x87iY\xfe\xd0o\xfb\x12K\x93gz\x10\'\xd3l\x1a\x17\x8d\x1e\x162\xb6\xd9\xcf\x9b\xff\x10sJ.\x9fD}\x95', &(0x7f0000000680)="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", 0x0) setrlimit$auto(0x7ffb, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x40004) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(r0, 0x2, &(0x7f0000000200)="3e35b904afeafec9eb045dc78a9325a0ae3a87afef07a723636df220906fab3ecab468240c84334a014f3ec002c29e9967fd2cb87fc8ca33364fbf26fb4bb1c5662edbb4a7f2086e702cc1c1dd07371fbe1ef47ecd874d02fa13ad50f876dc39ce0a8f10ee285e51708821fd7e873615485088224f113cb0a44fe6bb8739f548cb21e2b09d1df14995c7431c44dd73d5335edd14d4c0", 0x3) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) syz_clone3(&(0x7f0000000140)={0x1045100, 0x0, 0x0, 0x0, {0x2d}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x2, 0x0) read$auto(r2, 0x0, 0x39b8) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/devices/virtual/net/bond0/bonding/arp_ip_target\x00', 0xa0002, 0x0) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/audit\x00', 0x40602, 0x0) r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r3, 0xc0045516, &(0x7f0000000040)=0x8) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) kernel console output (not intermixed with test programs): n_name+0x1a0/0x3b0 [ 108.358105][ T6347] alloc_vfsmnt+0x23/0x6a0 [ 108.358144][ T6347] mnt_clone_internal+0x81/0x250 [ 108.358179][ T6347] acct_on+0xd7/0x9e0 [ 108.358223][ T6347] ? __pfx_acct_on+0x10/0x10 [ 108.358266][ T6347] ? bpf_lsm_capable+0x9/0x10 [ 108.358297][ T6347] ? security_capable+0x80/0x260 [ 108.358330][ T6347] __x64_sys_acct+0x81/0x1e0 [ 108.358381][ T6347] ? lockdep_hardirqs_on+0x78/0x100 [ 108.358412][ T6347] do_syscall_64+0x106/0xf80 [ 108.358440][ T6347] ? clear_bhb_loop+0x40/0x90 [ 108.358476][ T6347] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 108.358505][ T6347] RIP: 0033:0x7fe54739c819 [ 108.358529][ T6347] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 108.358556][ T6347] RSP: 002b:00007fe54824d028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 108.358582][ T6347] RAX: ffffffffffffffda RBX: 00007fe547615fa0 RCX: 00007fe54739c819 [ 108.358601][ T6347] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000c40 [ 108.358618][ T6347] RBP: 00007fe547432c91 R08: 0000000000000000 R09: 0000000000000000 [ 108.358634][ T6347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 108.358650][ T6347] R13: 00007fe547616038 R14: 00007fe547615fa0 R15: 00007fffd6cee108 [ 108.358688][ T6347] [ 109.368002][ T6360] FAULT_INJECTION: forcing a failure. [ 109.368002][ T6360] name fail_futex, interval 1, probability 0, space 0, times 0 [ 109.405359][ T6360] CPU: 1 UID: 0 PID: 6360 Comm: syz.2.108 Not tainted syzkaller #0 PREEMPT(full) [ 109.405394][ T6360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 109.405410][ T6360] Call Trace: [ 109.405419][ T6360] [ 109.405429][ T6360] dump_stack_lvl+0x100/0x190 [ 109.405474][ T6360] should_fail_ex.cold+0x5/0xa [ 109.405505][ T6360] get_futex_key+0x1d2/0x1620 [ 109.405541][ T6360] ? __pfx_get_futex_key+0x10/0x10 [ 109.405576][ T6360] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 109.405618][ T6360] ? hrtimer_try_to_cancel+0x3a/0x2f0 [ 109.405664][ T6360] futex_wake+0xea/0x530 [ 109.405703][ T6360] ? __pfx_futex_wait+0x10/0x10 [ 109.405741][ T6360] ? __lock_acquire+0x4a5/0x2630 [ 109.405776][ T6360] ? __pfx_futex_wake+0x10/0x10 [ 109.405817][ T6360] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 109.405866][ T6360] do_futex+0x32b/0x350 [ 109.405903][ T6360] ? __pfx_do_futex+0x10/0x10 [ 109.405937][ T6360] ? ktime_get+0x200/0x300 [ 109.405965][ T6360] ? lockdep_hardirqs_on+0x78/0x100 [ 109.405991][ T6360] ? read_tsc+0x9/0x20 [ 109.406026][ T6360] __x64_sys_futex+0x34f/0x4d0 [ 109.406067][ T6360] ? __pfx___x64_sys_futex+0x10/0x10 [ 109.406117][ T6360] do_syscall_64+0x106/0xf80 [ 109.406144][ T6360] ? clear_bhb_loop+0x40/0x90 [ 109.406176][ T6360] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.406204][ T6360] RIP: 0033:0x7fb5e719c819 [ 109.406226][ T6360] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 109.406251][ T6360] RSP: 002b:00007ffd50c60c28 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 109.406283][ T6360] RAX: ffffffffffffffda RBX: 00000000000000f0 RCX: 00007fb5e719c819 [ 109.406300][ T6360] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb5e7416098 [ 109.406317][ T6360] RBP: 0000000000000ca3 R08: 000000000000000f R09: 0000000000000000 [ 109.406332][ T6360] R10: 00007fb5e7415fa0 R11: 0000000000000246 R12: 0000000000000001 [ 109.406349][ T6360] R13: 00007fb5e741609c R14: 00007fb5e7416098 R15: 00007fb5e7416090 [ 109.406383][ T6360] [ 110.184699][ T6375] mtrr: base(0x1000000000000000) is not aligned on a size(0x0000) boundary [ 110.298824][ T29] audit: type=1804 audit(1775189129.035:13): pid=6377 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.110" name="/newroot/28/file0" dev="tmpfs" ino=165 res=1 errno=0 [ 110.588083][ T6379] FAULT_INJECTION: forcing a failure. [ 110.588083][ T6379] name failslab, interval 1, probability 0, space 0, times 0 [ 110.636743][ T6379] CPU: 1 UID: 0 PID: 6379 Comm: syz.2.111 Not tainted syzkaller #0 PREEMPT(full) [ 110.636776][ T6379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 110.636789][ T6379] Call Trace: [ 110.636798][ T6379] [ 110.636807][ T6379] dump_stack_lvl+0x100/0x190 [ 110.636852][ T6379] should_fail_ex.cold+0x5/0xa [ 110.636884][ T6379] should_failslab+0xc2/0x120 [ 110.636913][ T6379] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 110.636953][ T6379] ? __alloc_skb+0x140/0x710 [ 110.636998][ T6379] __alloc_skb+0x140/0x710 [ 110.637035][ T6379] ? __alloc_skb+0x5b7/0x710 [ 110.637070][ T6379] ? __pfx___alloc_skb+0x10/0x10 [ 110.637118][ T6379] netlink_dump+0x19b/0xd30 [ 110.637147][ T6379] ? __pfx_netlink_dump+0x10/0x10 [ 110.637186][ T6379] ? __asan_memset+0x23/0x50 [ 110.637225][ T6379] ? genl_start+0x67a/0x970 [ 110.637257][ T6379] __netlink_dump_start+0x6d6/0x990 [ 110.637288][ T6379] genl_family_rcv_msg_dumpit+0x1e2/0x2e0 [ 110.637326][ T6379] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 110.637365][ T6379] ? __pfx_genl_get_cmd+0x10/0x10 [ 110.637392][ T6379] ? __pfx_genl_start+0x10/0x10 [ 110.637419][ T6379] ? __pfx_genl_dumpit+0x10/0x10 [ 110.637455][ T6379] ? __pfx_genl_done+0x10/0x10 [ 110.637488][ T6379] ? __dev_queue_xmit+0x5af/0x4800 [ 110.637519][ T6379] ? __radix_tree_lookup+0x217/0x2b0 [ 110.637563][ T6379] genl_rcv_msg+0x471/0x800 [ 110.637601][ T6379] ? __pfx_genl_rcv_msg+0x10/0x10 [ 110.637634][ T6379] ? __pfx_nl80211_dump_survey+0x10/0x10 [ 110.637681][ T6379] netlink_rcv_skb+0x159/0x420 [ 110.637707][ T6379] ? __pfx_genl_rcv_msg+0x10/0x10 [ 110.637741][ T6379] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 110.637784][ T6379] ? netlink_deliver_tap+0x1ae/0xcc0 [ 110.637832][ T6379] genl_rcv+0x28/0x40 [ 110.637858][ T6379] netlink_unicast+0x5aa/0x870 [ 110.637890][ T6379] ? __pfx_netlink_unicast+0x10/0x10 [ 110.637928][ T6379] netlink_sendmsg+0x8b0/0xda0 [ 110.637963][ T6379] ? __pfx_netlink_sendmsg+0x10/0x10 [ 110.637989][ T6379] ? __import_iovec+0x1d2/0x640 [ 110.638029][ T6379] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 110.638064][ T6379] ____sys_sendmsg+0x9e1/0xb70 [ 110.638094][ T6379] ? __pfx_netlink_sendmsg+0x10/0x10 [ 110.638126][ T6379] ? __pfx_____sys_sendmsg+0x10/0x10 [ 110.638176][ T6379] ___sys_sendmsg+0x190/0x1e0 [ 110.638212][ T6379] ? __pfx____sys_sendmsg+0x10/0x10 [ 110.638290][ T6379] __sys_sendmsg+0x170/0x220 [ 110.638338][ T6379] ? __pfx___sys_sendmsg+0x10/0x10 [ 110.638399][ T6379] do_syscall_64+0x106/0xf80 [ 110.638425][ T6379] ? clear_bhb_loop+0x40/0x90 [ 110.638467][ T6379] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 110.638494][ T6379] RIP: 0033:0x7fb5e719c819 [ 110.638517][ T6379] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 110.638543][ T6379] RSP: 002b:00007fb5e800d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 110.638569][ T6379] RAX: ffffffffffffffda RBX: 00007fb5e7415fa0 RCX: 00007fb5e719c819 [ 110.638587][ T6379] RDX: 0000000000000840 RSI: 0000200000002fc0 RDI: 0000000000000003 [ 110.638603][ T6379] RBP: 00007fb5e800d090 R08: 0000000000000000 R09: 0000000000000000 [ 110.638618][ T6379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 110.638634][ T6379] R13: 00007fb5e7416038 R14: 00007fb5e7415fa0 R15: 00007ffd50c60ac8 [ 110.638673][ T6379] [ 110.977938][ T6381] netlink: 'syz.1.112': attribute type 64 has an invalid length. [ 110.988591][ T6381] netlink: 74 bytes leftover after parsing attributes in process `syz.1.112'. [ 111.182719][ T6387] FAULT_INJECTION: forcing a failure. [ 111.182719][ T6387] name failslab, interval 1, probability 0, space 0, times 0 [ 111.356507][ T6387] CPU: 1 UID: 0 PID: 6387 Comm: syz.2.113 Not tainted syzkaller #0 PREEMPT(full) [ 111.356544][ T6387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 111.356561][ T6387] Call Trace: [ 111.356571][ T6387] [ 111.356582][ T6387] dump_stack_lvl+0x100/0x190 [ 111.356632][ T6387] should_fail_ex.cold+0x5/0xa [ 111.356666][ T6387] should_failslab+0xc2/0x120 [ 111.356698][ T6387] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 111.356744][ T6387] ? alloc_empty_file+0x55/0x1c0 [ 111.356788][ T6387] alloc_empty_file+0x55/0x1c0 [ 111.356826][ T6387] alloc_file_pseudo+0x13a/0x230 [ 111.356866][ T6387] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 111.356901][ T6387] ? alloc_fd+0x476/0x790 [ 111.356933][ T6387] ? do_raw_spin_unlock+0x145/0x1e0 [ 111.356981][ T6387] __anon_inode_getfile+0xe8/0x280 [ 111.357021][ T6387] anon_inode_getfile_fmode+0x37/0xa0 [ 111.357060][ T6387] __do_sys_fanotify_init+0xa79/0xe50 [ 111.357120][ T6387] do_syscall_64+0x106/0xf80 [ 111.357148][ T6387] ? clear_bhb_loop+0x40/0x90 [ 111.357183][ T6387] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.357212][ T6387] RIP: 0033:0x7fb5e719c819 [ 111.357235][ T6387] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 111.357262][ T6387] RSP: 002b:00007fb5e800d028 EFLAGS: 00000246 ORIG_RAX: 000000000000012c [ 111.357288][ T6387] RAX: ffffffffffffffda RBX: 00007fb5e7415fa0 RCX: 00007fb5e719c819 [ 111.357307][ T6387] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 111.357322][ T6387] RBP: 00007fb5e7232c91 R08: 0000000000000000 R09: 0000000000000000 [ 111.357338][ T6387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 111.357354][ T6387] R13: 00007fb5e7416038 R14: 00007fb5e7415fa0 R15: 00007ffd50c60ac8 [ 111.357392][ T6387] [ 111.711540][ T6397] FAULT_INJECTION: forcing a failure. [ 111.711540][ T6397] name failslab, interval 1, probability 0, space 0, times 0 [ 111.724407][ T6397] CPU: 1 UID: 0 PID: 6397 Comm: syz.0.116 Not tainted syzkaller #0 PREEMPT(full) [ 111.724444][ T6397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 111.724462][ T6397] Call Trace: [ 111.724471][ T6397] [ 111.724481][ T6397] dump_stack_lvl+0x100/0x190 [ 111.724532][ T6397] should_fail_ex.cold+0x5/0xa [ 111.724568][ T6397] should_failslab+0xc2/0x120 [ 111.724599][ T6397] __kmalloc_cache_noprof+0x7a/0x6f0 [ 111.724635][ T6397] ? tomoyo_open_control+0x43d/0xa20 [ 111.724662][ T6397] ? lockdep_init_map_type+0x5c/0x250 [ 111.724702][ T6397] tomoyo_open_control+0x43d/0xa20 [ 111.724731][ T6397] do_dentry_open+0x6d8/0x1660 [ 111.724759][ T6397] ? __pfx_tomoyo_open+0x10/0x10 [ 111.724807][ T6397] vfs_open+0x82/0x3f0 [ 111.724848][ T6397] path_openat+0x208c/0x31a0 [ 111.724882][ T6397] ? futex_unqueue+0x13d/0x2c0 [ 111.724915][ T6397] ? stack_depot_save_flags+0x27/0x9d0 [ 111.724953][ T6397] ? __pfx_path_openat+0x10/0x10 [ 111.724987][ T6397] ? kasan_save_stack+0x3f/0x50 [ 111.725012][ T6397] ? kasan_save_stack+0x30/0x50 [ 111.725036][ T6397] ? kasan_save_track+0x14/0x30 [ 111.725061][ T6397] ? __kasan_slab_alloc+0x89/0x90 [ 111.725101][ T6397] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 111.725145][ T6397] ? do_getname+0x35/0x390 [ 111.725187][ T6397] do_file_open+0x20e/0x430 [ 111.725221][ T6397] ? __pfx_do_file_open+0x10/0x10 [ 111.725281][ T6397] ? find_held_lock+0x2b/0x80 [ 111.725309][ T6397] ? __might_fault+0xc5/0x140 [ 111.725347][ T6397] ? __might_fault+0xc5/0x140 [ 111.725391][ T6397] file_open_name+0x198/0x3b0 [ 111.725429][ T6397] ? __pfx_file_open_name+0x10/0x10 [ 111.725475][ T6397] ? do_getname+0x191/0x390 [ 111.725524][ T6397] acct_on+0xa4/0x9e0 [ 111.725570][ T6397] ? __pfx_acct_on+0x10/0x10 [ 111.725611][ T6397] ? bpf_lsm_capable+0x9/0x10 [ 111.725642][ T6397] ? security_capable+0x80/0x260 [ 111.725675][ T6397] __x64_sys_acct+0x81/0x1e0 [ 111.725717][ T6397] ? lockdep_hardirqs_on+0x78/0x100 [ 111.725745][ T6397] do_syscall_64+0x106/0xf80 [ 111.725771][ T6397] ? clear_bhb_loop+0x40/0x90 [ 111.725805][ T6397] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.725833][ T6397] RIP: 0033:0x7f51a599c819 [ 111.725854][ T6397] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 111.725881][ T6397] RSP: 002b:00007f51a67f9028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 111.725909][ T6397] RAX: ffffffffffffffda RBX: 00007f51a5c15fa0 RCX: 00007f51a599c819 [ 111.725928][ T6397] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000c40 [ 111.725945][ T6397] RBP: 00007f51a5a32c91 R08: 0000000000000000 R09: 0000000000000000 [ 111.725961][ T6397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 111.725977][ T6397] R13: 00007f51a5c16038 R14: 00007f51a5c15fa0 R15: 00007ffd72d98348 [ 111.726015][ T6397] [ 112.389278][ T6401] FAULT_INJECTION: forcing a failure. [ 112.389278][ T6401] name failslab, interval 1, probability 0, space 0, times 0 [ 112.500782][ T6401] CPU: 0 UID: 0 PID: 6401 Comm: syz.2.117 Not tainted syzkaller #0 PREEMPT(full) [ 112.500819][ T6401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 112.500836][ T6401] Call Trace: [ 112.500844][ T6401] [ 112.500855][ T6401] dump_stack_lvl+0x100/0x190 [ 112.500904][ T6401] should_fail_ex.cold+0x5/0xa [ 112.500938][ T6401] ? __register_sysctl_table+0xac/0x1650 [ 112.500968][ T6401] should_failslab+0xc2/0x120 [ 112.500998][ T6401] __kmalloc_noprof+0xe0/0x850 [ 112.501049][ T6401] __register_sysctl_table+0xac/0x1650 [ 112.501079][ T6401] ? is_module_address+0x5f/0xf0 [ 112.501124][ T6401] ? __pfx___register_sysctl_table+0x10/0x10 [ 112.501152][ T6401] ? is_module_address+0x69/0xf0 [ 112.501189][ T6401] ? register_net_sysctl_sz+0x222/0x430 [ 112.501232][ T6401] nf_ct_net_init+0x249/0x370 [ 112.501272][ T6401] ? __pfx_nf_ct_net_init+0x10/0x10 [ 112.501319][ T6401] ops_init+0x1e2/0x5f0 [ 112.501352][ T6401] setup_net+0x118/0x3a0 [ 112.501381][ T6401] ? __pfx_setup_net+0x10/0x10 [ 112.501408][ T6401] ? lockdep_init_map_type+0x5c/0x250 [ 112.501448][ T6401] ? mutex_init_lockep+0x110/0x150 [ 112.501494][ T6401] copy_net_ns+0x46f/0x7c0 [ 112.501530][ T6401] create_new_namespaces+0x3ea/0xac0 [ 112.501571][ T6401] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 112.501607][ T6401] ksys_unshare+0x473/0xad0 [ 112.501647][ T6401] ? __pfx_ksys_unshare+0x10/0x10 [ 112.501698][ T6401] __x64_sys_unshare+0x31/0x40 [ 112.501735][ T6401] do_syscall_64+0x106/0xf80 [ 112.501764][ T6401] ? clear_bhb_loop+0x40/0x90 [ 112.501799][ T6401] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.501829][ T6401] RIP: 0033:0x7fb5e719c819 [ 112.501853][ T6401] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 112.501880][ T6401] RSP: 002b:00007fb5e800d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 112.501907][ T6401] RAX: ffffffffffffffda RBX: 00007fb5e7415fa0 RCX: 00007fb5e719c819 [ 112.501925][ T6401] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 112.501942][ T6401] RBP: 00007fb5e7232c91 R08: 0000000000000000 R09: 0000000000000000 [ 112.501958][ T6401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 112.501974][ T6401] R13: 00007fb5e7416038 R14: 00007fb5e7415fa0 R15: 00007ffd50c60ac8 [ 112.502013][ T6401] [ 113.460917][ T6422] netlink: 4 bytes leftover after parsing attributes in process `syz.3.122'. [ 113.489526][ T6422] netlink: 'syz.3.122': attribute type 1 has an invalid length. [ 113.507402][ T6422] netlink: 5 bytes leftover after parsing attributes in process `syz.3.122'. [ 113.528961][ T6422] netlink: 'syz.3.122': attribute type 1 has an invalid length. [ 114.473555][ T6438] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8 [ 114.797639][ T6443] netlink: 8 bytes leftover after parsing attributes in process `syz.3.126'. [ 114.831765][ T6443] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„ [ 116.415756][ T6491] FAULT_INJECTION: forcing a failure. [ 116.415756][ T6491] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 116.460894][ T6491] CPU: 0 UID: 0 PID: 6491 Comm: syz.1.140 Not tainted syzkaller #0 PREEMPT(full) [ 116.460930][ T6491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 116.460946][ T6491] Call Trace: [ 116.460953][ T6491] [ 116.460963][ T6491] dump_stack_lvl+0x100/0x190 [ 116.461008][ T6491] should_fail_ex.cold+0x5/0xa [ 116.461045][ T6491] _copy_to_user+0x32/0xd0 [ 116.461083][ T6491] simple_read_from_buffer+0xcb/0x170 [ 116.461129][ T6491] proc_fail_nth_read+0x1af/0x230 [ 116.461166][ T6491] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 116.461204][ T6491] ? rw_verify_area+0xce/0x6d0 [ 116.461243][ T6491] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 116.461278][ T6491] vfs_read+0x1e4/0xb30 [ 116.461308][ T6491] ? __pfx_vfs_read+0x10/0x10 [ 116.461333][ T6491] ? __fget_files+0x215/0x3d0 [ 116.461369][ T6491] ? __fget_files+0x21f/0x3d0 [ 116.461407][ T6491] ksys_read+0x12a/0x250 [ 116.461432][ T6491] ? __pfx_ksys_read+0x10/0x10 [ 116.461468][ T6491] do_syscall_64+0x106/0xf80 [ 116.461495][ T6491] ? clear_bhb_loop+0x40/0x90 [ 116.461528][ T6491] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.461553][ T6491] RIP: 0033:0x7fc4edd5d04e [ 116.461572][ T6491] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 116.461596][ T6491] RSP: 002b:00007fc4ebfedfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 116.461620][ T6491] RAX: ffffffffffffffda RBX: 00007fc4ebfee6c0 RCX: 00007fc4edd5d04e [ 116.461636][ T6491] RDX: 000000000000000f RSI: 00007fc4ebfee0a0 RDI: 0000000000000005 [ 116.461649][ T6491] RBP: 00007fc4ebfee090 R08: 0000000000000000 R09: 0000000000000000 [ 116.461665][ T6491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 116.461680][ T6491] R13: 00007fc4ee016038 R14: 00007fc4ee015fa0 R15: 00007ffc1c8f77d8 [ 116.461713][ T6491] [ 117.359692][ T6497] netlink: 8 bytes leftover after parsing attributes in process `syz.1.141'. [ 117.441341][ T6510] FAULT_INJECTION: forcing a failure. [ 117.441341][ T6510] name failslab, interval 1, probability 0, space 0, times 0 [ 117.472512][ T6497] debugfs: '!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷§‚W' already exists in 'ieee80211' [ 117.473927][ T6510] CPU: 1 UID: 0 PID: 6510 Comm: syz.0.144 Not tainted syzkaller #0 PREEMPT(full) [ 117.473961][ T6510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 117.473977][ T6510] Call Trace: [ 117.473987][ T6510] [ 117.473997][ T6510] dump_stack_lvl+0x100/0x190 [ 117.474043][ T6510] should_fail_ex.cold+0x5/0xa [ 117.474075][ T6510] ? ima_write_template_field_data+0x59/0x1d0 [ 117.474114][ T6510] should_failslab+0xc2/0x120 [ 117.474145][ T6510] __kmalloc_noprof+0xe0/0x850 [ 117.474194][ T6510] ima_write_template_field_data+0x59/0x1d0 [ 117.474239][ T6510] ima_eventname_init_common+0x1c6/0x2a0 [ 117.474282][ T6510] ? __pfx_ima_eventname_init_common+0x10/0x10 [ 117.474329][ T6510] ? __kmalloc_noprof+0x320/0x850 [ 117.474378][ T6510] ima_alloc_init_template+0x399/0x6d0 [ 117.474418][ T6510] ima_store_measurement+0x1e3/0x5b0 [ 117.474452][ T6510] ? __pfx_ima_store_measurement+0x10/0x10 [ 117.474498][ T6510] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 117.474547][ T6510] process_measurement+0x19cc/0x2350 [ 117.474588][ T6510] ? __pfx_process_measurement+0x10/0x10 [ 117.474619][ T6510] ? lock_acquire+0x1cf/0x380 [ 117.474694][ T6510] ? mutex_init_lockep+0x110/0x150 [ 117.474733][ T6510] ? seq_open+0x116/0x170 [ 117.474769][ T6510] ? inode_to_bdi+0x9e/0x160 [ 117.474801][ T6510] ima_file_check+0xcc/0x120 [ 117.474838][ T6510] ? __pfx_ima_file_check+0x10/0x10 [ 117.474876][ T6510] security_file_post_open+0xc4/0x210 [ 117.474914][ T6510] path_openat+0x1418/0x31a0 [ 117.474956][ T6510] ? __pfx_path_openat+0x10/0x10 [ 117.474999][ T6510] do_file_open+0x20e/0x430 [ 117.475031][ T6510] ? __pfx_do_file_open+0x10/0x10 [ 117.475087][ T6510] ? alloc_fd+0x476/0x790 [ 117.475118][ T6510] ? do_getname+0x191/0x390 [ 117.475156][ T6510] do_sys_openat2+0x10d/0x1e0 [ 117.475195][ T6510] ? __pfx_do_sys_openat2+0x10/0x10 [ 117.475233][ T6510] ? __fget_files+0x21f/0x3d0 [ 117.475267][ T6510] __x64_sys_openat+0x12d/0x210 [ 117.475306][ T6510] ? __pfx___x64_sys_openat+0x10/0x10 [ 117.475371][ T6510] do_syscall_64+0x106/0xf80 [ 117.475399][ T6510] ? clear_bhb_loop+0x40/0x90 [ 117.475433][ T6510] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.475461][ T6510] RIP: 0033:0x7f51a599c819 [ 117.475484][ T6510] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 117.475509][ T6510] RSP: 002b:00007f51a67b7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 117.475535][ T6510] RAX: ffffffffffffffda RBX: 00007f51a5c16180 RCX: 00007f51a599c819 [ 117.475552][ T6510] RDX: 0000000000040000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 117.475578][ T6510] RBP: 00007f51a5a32c91 R08: 0000000000000000 R09: 0000000000000000 [ 117.475595][ T6510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 117.475611][ T6510] R13: 00007f51a5c16218 R14: 00007f51a5c16180 R15: 00007ffd72d98348 [ 117.475648][ T6510] [ 117.533100][ T29] audit: type=1804 audit(1775189136.215:14): pid=6510 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.0.144" name="/newroot/dev/binderfs/features/freeze_notification" dev="binder" ino=1048593 res=0 errno=0 [ 117.825268][ T6513] ima: Unable to open file: /surit‹¯Ròy/integrity?iqa/policy (-2) [ 117.949816][ T6513] ima: policy update failed [ 118.011250][ T29] audit: type=1802 audit(1775189136.745:15): pid=6513 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.145" res=0 errno=0 “ÇIãjníüú¡9»_UÏ´îVQ8Àñj@:Un M½×%[ 119.163070][ T29] audit: type=1804 audit(1775189137.895:16): pid=6551 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.152" name="/newroot/38/file0" dev="tmpfs" ino=218 res=1 errno=0 [ 119.729839][ T6556] __vm_enough_memory: pid: 6556, comm: syz.2.152, bytes: 4398046511104 not enough memory for the allocation [ 120.539786][ T6574] FAULT_INJECTION: forcing a failure. [ 120.539786][ T6574] name failslab, interval 1, probability 0, space 0, times 0 [ 120.580810][ T6574] CPU: 1 UID: 0 PID: 6574 Comm: syz.3.156 Not tainted syzkaller #0 PREEMPT(full) [ 120.580851][ T6574] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 120.580866][ T6574] Call Trace: [ 120.580876][ T6574] [ 120.580886][ T6574] dump_stack_lvl+0x100/0x190 [ 120.580949][ T6574] should_fail_ex.cold+0x5/0xa [ 120.580981][ T6574] should_failslab+0xc2/0x120 [ 120.581015][ T6574] __kmalloc_cache_noprof+0x7a/0x6f0 [ 120.581056][ T6574] ? ima_d_path+0xc9/0x260 [ 120.581089][ T6574] ? xattr_resolve_name+0x27d/0x3f0 [ 120.581122][ T6574] ima_d_path+0xc9/0x260 [ 120.581156][ T6574] ? __pfx_ima_d_path+0x10/0x10 [ 120.581196][ T6574] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 120.581261][ T6574] process_measurement+0x1b25/0x2350 [ 120.581303][ T6574] ? __pfx_process_measurement+0x10/0x10 [ 120.581336][ T6574] ? lock_acquire+0x1cf/0x380 [ 120.581381][ T6574] ? find_held_lock+0x2b/0x80 [ 120.581409][ T6574] ? rcu_read_unlock+0x17/0x60 [ 120.581469][ T6574] ? mutex_init_lockep+0x110/0x150 [ 120.581511][ T6574] ? seq_open+0x116/0x170 [ 120.581548][ T6574] ? inode_to_bdi+0x9e/0x160 [ 120.581581][ T6574] ima_file_check+0xcc/0x120 [ 120.581609][ T6574] ? __pfx_ima_file_check+0x10/0x10 [ 120.581648][ T6574] security_file_post_open+0xc4/0x210 [ 120.581686][ T6574] path_openat+0x1418/0x31a0 [ 120.581731][ T6574] ? __pfx_path_openat+0x10/0x10 [ 120.581777][ T6574] do_file_open+0x20e/0x430 [ 120.581812][ T6574] ? __pfx_do_file_open+0x10/0x10 [ 120.581872][ T6574] ? alloc_fd+0x476/0x790 [ 120.581906][ T6574] ? do_getname+0x191/0x390 [ 120.581953][ T6574] do_sys_openat2+0x10d/0x1e0 [ 120.581992][ T6574] ? __pfx_do_sys_openat2+0x10/0x10 [ 120.582035][ T6574] ? __fget_files+0x21f/0x3d0 [ 120.582073][ T6574] __x64_sys_openat+0x12d/0x210 [ 120.582113][ T6574] ? __pfx___x64_sys_openat+0x10/0x10 [ 120.582169][ T6574] do_syscall_64+0x106/0xf80 [ 120.582197][ T6574] ? clear_bhb_loop+0x40/0x90 [ 120.582239][ T6574] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.582269][ T6574] RIP: 0033:0x7fe54739c819 [ 120.582300][ T6574] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 120.582328][ T6574] RSP: 002b:00007fe54822c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 120.582355][ T6574] RAX: ffffffffffffffda RBX: 00007fe547616090 RCX: 00007fe54739c819 [ 120.582374][ T6574] RDX: 0000000000040000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 120.582392][ T6574] RBP: 00007fe547432c91 R08: 0000000000000000 R09: 0000000000000000 [ 120.582409][ T6574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 120.582425][ T6574] R13: 00007fe547616128 R14: 00007fe547616090 R15: 00007fffd6cee108 [ 120.582462][ T6574] [ 120.788761][ T29] audit: type=1800 audit(1775189139.525:17): pid=6583 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.157" name="dbroot" dev="configfs" ino=11438 res=0 errno=0 [ 123.140957][ T6615] synth uevent: /devices/virtual/tty/ttyz1: unknown uevent action string [ 123.153043][ T6615] tty ttyz1: uevent: failed to send synthetic uevent: -22 [ 123.440070][ T6620] FAULT_INJECTION: forcing a failure. [ 123.440070][ T6620] name failslab, interval 1, probability 0, space 0, times 0 [ 123.458989][ T6620] CPU: 1 UID: 0 PID: 6620 Comm: syz.2.164 Not tainted syzkaller #0 PREEMPT(full) [ 123.459027][ T6620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 123.459042][ T6620] Call Trace: [ 123.459051][ T6620] [ 123.459061][ T6620] dump_stack_lvl+0x100/0x190 [ 123.459111][ T6620] should_fail_ex.cold+0x5/0xa [ 123.459146][ T6620] should_failslab+0xc2/0x120 [ 123.459185][ T6620] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 123.459229][ T6620] ? acpi_ps_alloc_op+0x29d/0x360 [ 123.459275][ T6620] acpi_ps_alloc_op+0x29d/0x360 [ 123.459312][ T6620] ? acpi_ut_status_exit+0x111/0x1c0 [ 123.459353][ T6620] acpi_ps_create_op+0x4b3/0xd10 [ 123.459386][ T6620] ? __pfx_acpi_ps_create_op+0x10/0x10 [ 123.459418][ T6620] ? __pfx_acpi_ut_trace_ptr+0x10/0x10 [ 123.459455][ T6620] acpi_ps_parse_loop+0xa65/0x24a0 [ 123.459490][ T6620] ? rcu_is_watching+0x12/0xc0 [ 123.459533][ T6620] ? acpi_ut_trace+0x1d7/0x2a0 [ 123.459577][ T6620] ? __pfx_acpi_ps_parse_loop+0x10/0x10 [ 123.459617][ T6620] ? kmem_cache_alloc_noprof+0x292/0x6e0 [ 123.459658][ T6620] ? acpi_ut_create_thread_state+0x6d/0x170 [ 123.459703][ T6620] acpi_ps_parse_aml+0x81e/0x1120 [ 123.459743][ T6620] acpi_ps_execute_method+0x5c4/0xe90 [ 123.459789][ T6620] acpi_ns_evaluate+0x640/0x1670 [ 123.459831][ T6620] acpi_evaluate_object+0x420/0xe00 [ 123.459860][ T6620] ? kasan_save_stack+0x30/0x50 [ 123.459882][ T6620] ? kasan_save_track+0x14/0x30 [ 123.459914][ T6620] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 123.459958][ T6620] acpi_evaluate_integer+0xdf/0x220 [ 123.460007][ T6620] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 123.460071][ T6620] ? __pfx_status_show+0x10/0x10 [ 123.460103][ T6620] status_show+0xa0/0x120 [ 123.460135][ T6620] ? __pfx_status_show+0x10/0x10 [ 123.460184][ T6620] dev_attr_show+0x52/0xa0 [ 123.460225][ T6620] ? __pfx_dev_attr_show+0x10/0x10 [ 123.460263][ T6620] sysfs_kf_seq_show+0x217/0x3a0 [ 123.460309][ T6620] seq_read_iter+0x32f/0x1270 [ 123.460382][ T6620] kernfs_fop_read_iter+0x46c/0x610 [ 123.460417][ T6620] ? rw_verify_area+0xce/0x6d0 [ 123.460461][ T6620] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 123.460499][ T6620] vfs_read+0x825/0xb30 [ 123.460533][ T6620] ? __pfx_vfs_read+0x10/0x10 [ 123.460558][ T6620] ? do_futex+0x192/0x350 [ 123.460597][ T6620] ? __pfx_do_sys_openat2+0x10/0x10 [ 123.460648][ T6620] ? __x64_sys_futex+0x34f/0x4d0 [ 123.460680][ T6620] ? __x64_sys_futex+0x358/0x4d0 [ 123.460718][ T6620] ksys_read+0x12a/0x250 [ 123.460743][ T6620] ? __pfx_ksys_read+0x10/0x10 [ 123.460783][ T6620] do_syscall_64+0x106/0xf80 [ 123.460811][ T6620] ? clear_bhb_loop+0x40/0x90 [ 123.460848][ T6620] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.460877][ T6620] RIP: 0033:0x7fb5e719c819 [ 123.460902][ T6620] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 123.460929][ T6620] RSP: 002b:00007fb5e800d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 123.460957][ T6620] RAX: ffffffffffffffda RBX: 00007fb5e7415fa0 RCX: 00007fb5e719c819 [ 123.460976][ T6620] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000004 [ 123.460994][ T6620] RBP: 00007fb5e7232c91 R08: 0000000000000000 R09: 0000000000000000 [ 123.461012][ T6620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 123.461029][ T6620] R13: 00007fb5e7416038 R14: 00007fb5e7415fa0 R15: 00007ffd50c60ac8 [ 123.461068][ T6620] [ 124.110680][ T6620] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 124.156705][ T29] audit: type=1804 audit(1775189142.895:18): pid=6626 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.164" name="/newroot/43/file0" dev="tmpfs" ino=245 res=1 errno=0 [ 125.177311][ T6637] FAULT_INJECTION: forcing a failure. [ 125.177311][ T6637] name failslab, interval 1, probability 0, space 0, times 0 [ 125.190579][ T6637] CPU: 0 UID: 0 PID: 6637 Comm: syz.0.167 Not tainted syzkaller #0 PREEMPT(full) [ 125.190619][ T6637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 125.190638][ T6637] Call Trace: [ 125.190646][ T6637] [ 125.190655][ T6637] dump_stack_lvl+0x100/0x190 [ 125.190702][ T6637] should_fail_ex.cold+0x5/0xa [ 125.190737][ T6637] should_failslab+0xc2/0x120 [ 125.190779][ T6637] __kmalloc_cache_noprof+0x7a/0x6f0 [ 125.190820][ T6637] ? ima_d_path+0xc9/0x260 [ 125.190853][ T6637] ? xattr_resolve_name+0x27d/0x3f0 [ 125.190887][ T6637] ima_d_path+0xc9/0x260 [ 125.190922][ T6637] ? __pfx_ima_d_path+0x10/0x10 [ 125.190962][ T6637] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 125.191017][ T6637] process_measurement+0x1b25/0x2350 [ 125.191059][ T6637] ? __pfx_process_measurement+0x10/0x10 [ 125.191097][ T6637] ? lock_acquire+0x1cf/0x380 [ 125.191144][ T6637] ? find_held_lock+0x2b/0x80 [ 125.191173][ T6637] ? rcu_read_unlock+0x17/0x60 [ 125.191236][ T6637] ? mutex_init_lockep+0x110/0x150 [ 125.191277][ T6637] ? seq_open+0x116/0x170 [ 125.191315][ T6637] ? inode_to_bdi+0x9e/0x160 [ 125.191350][ T6637] ima_file_check+0xcc/0x120 [ 125.191381][ T6637] ? __pfx_ima_file_check+0x10/0x10 [ 125.191421][ T6637] security_file_post_open+0xc4/0x210 [ 125.191459][ T6637] path_openat+0x1418/0x31a0 [ 125.191505][ T6637] ? __pfx_path_openat+0x10/0x10 [ 125.191551][ T6637] do_file_open+0x20e/0x430 [ 125.191585][ T6637] ? __pfx_do_file_open+0x10/0x10 [ 125.191645][ T6637] ? alloc_fd+0x476/0x790 [ 125.191678][ T6637] ? do_getname+0x191/0x390 [ 125.191719][ T6637] do_sys_openat2+0x10d/0x1e0 [ 125.191765][ T6637] ? __pfx_do_sys_openat2+0x10/0x10 [ 125.191809][ T6637] ? __fget_files+0x21f/0x3d0 [ 125.191846][ T6637] __x64_sys_openat+0x12d/0x210 [ 125.191888][ T6637] ? __pfx___x64_sys_openat+0x10/0x10 [ 125.191943][ T6637] do_syscall_64+0x106/0xf80 [ 125.191971][ T6637] ? clear_bhb_loop+0x40/0x90 [ 125.192009][ T6637] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 125.192039][ T6637] RIP: 0033:0x7f51a599c819 [ 125.192064][ T6637] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 125.192091][ T6637] RSP: 002b:00007f51a67d8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 125.192119][ T6637] RAX: ffffffffffffffda RBX: 00007f51a5c16090 RCX: 00007f51a599c819 [ 125.192139][ T6637] RDX: 0000000000040000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 125.192157][ T6637] RBP: 00007f51a5a32c91 R08: 0000000000000000 R09: 0000000000000000 [ 125.192175][ T6637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 125.192192][ T6637] R13: 00007f51a5c16128 R14: 00007f51a5c16090 R15: 00007ffd72d98348 [ 125.192230][ T6637] [ 125.941182][ T6630] netlink: 12 bytes leftover after parsing attributes in process `syz.2.166'. “ÇIãjníüú¡9»_UÏ´îVQ8Àñj@:Un M½×%[ 128.324345][ T6693] netlink: 'syz.2.180': attribute type 11 has an invalid length. [ 129.237188][ T6699] FAULT_INJECTION: forcing a failure. [ 129.237188][ T6699] name fail_futex, interval 1, probability 0, space 0, times 0 [ 129.277106][ T6699] CPU: 0 UID: 0 PID: 6699 Comm: syz.1.182 Not tainted syzkaller #0 PREEMPT(full) [ 129.277140][ T6699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 129.277154][ T6699] Call Trace: [ 129.277162][ T6699] [ 129.277171][ T6699] dump_stack_lvl+0x100/0x190 [ 129.277215][ T6699] should_fail_ex.cold+0x5/0xa [ 129.277246][ T6699] get_futex_key+0x107c/0x1620 [ 129.277284][ T6699] ? __pfx_get_futex_key+0x10/0x10 [ 129.277313][ T6699] ? lock_acquire+0x1cf/0x380 [ 129.277341][ T6699] futex_wake+0xea/0x530 [ 129.277365][ T6699] ? __pfx_futex_wake+0x10/0x10 [ 129.277387][ T6699] ? exit_mm_release+0x19/0x30 [ 129.277411][ T6699] do_futex+0x32b/0x350 [ 129.277430][ T6699] ? __pfx_do_futex+0x10/0x10 [ 129.277448][ T6699] ? __might_fault+0xc5/0x140 [ 129.277475][ T6699] mm_release+0x24a/0x2f0 [ 129.277490][ T6699] do_exit+0x704/0x2b60 [ 129.277514][ T6699] ? __pfx_do_exit+0x10/0x10 [ 129.277533][ T6699] ? do_raw_spin_lock+0x128/0x260 [ 129.277554][ T6699] ? find_held_lock+0x2b/0x80 [ 129.277567][ T6699] ? get_signal+0x7e0/0x21e0 [ 129.277592][ T6699] do_group_exit+0xd5/0x2a0 [ 129.277614][ T6699] get_signal+0x1ec7/0x21e0 [ 129.277636][ T6699] ? __pfx_get_signal+0x10/0x10 [ 129.277653][ T6699] ? do_futex+0x192/0x350 [ 129.277674][ T6699] arch_do_signal_or_restart+0x91/0x770 [ 129.277694][ T6699] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 129.277725][ T6699] ? __pfx___x64_sys_futex+0x10/0x10 [ 129.277749][ T6699] exit_to_user_mode_loop+0x86/0x4a0 [ 129.277771][ T6699] do_syscall_64+0x668/0xf80 [ 129.277785][ T6699] ? clear_bhb_loop+0x40/0x90 [ 129.277803][ T6699] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 129.277818][ T6699] RIP: 0033:0x7fc4edd9c819 [ 129.277832][ T6699] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 129.277845][ T6699] RSP: 002b:00007fc4ebfcd0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 129.277859][ T6699] RAX: fffffffffffffe00 RBX: 00007fc4ee016098 RCX: 00007fc4edd9c819 [ 129.277868][ T6699] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fc4ee016098 [ 129.277877][ T6699] RBP: 00007fc4ee016090 R08: 0000000000000000 R09: 0000000000000000 [ 129.277885][ T6699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 129.277893][ T6699] R13: 00007fc4ee016128 R14: 00007ffc1c8f76f0 R15: 00007ffc1c8f77d8 [ 129.277912][ T6699] [ 129.746218][ T6712] netlink: 28 bytes leftover after parsing attributes in process `syz.1.185'. [ 130.178911][ T6718] binder: 6716:6718 ioctl 40046210 0 returned -14 [ 130.670112][ T6730] netlink: 28 bytes leftover after parsing attributes in process `syz.1.190'. [ 130.706221][ T6732] netlink: 8 bytes leftover after parsing attributes in process `syz.3.189'. [ 131.910613][ T29] audit: type=1800 audit(1775189150.645:19): pid=6764 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.197" name="dbroot" dev="configfs" ino=11958 res=0 errno=0 [ 132.641204][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 132.956233][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.963679][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 135.145563][ T29] audit: type=1804 audit(1775189153.875:20): pid=6816 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.209" name="/newroot/49/file0" dev="tmpfs" ino=278 res=1 errno=0 [ 135.591885][ T6823] netlink: 4 bytes leftover after parsing attributes in process `syz.3.212'. [ 135.783062][ T6829] netlink: 28 bytes leftover after parsing attributes in process `syz.3.215'. [ 138.926531][ T6861] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 138.976906][ T6861] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 139.067395][ T6861] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 139.116551][ T6861] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 139.141573][ T6861] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 139.161515][ T6861] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 139.179050][ T6861] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 139.208648][ T6861] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 139.234588][ T6861] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 139.246780][ T6861] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 139.271069][ T6861] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 139.278809][ T6861] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 139.681924][ T6895] mmap: syz.3.228 (6895) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 139.787790][ T6888] nvme_fcloop: unknown parameter or missing value '0' [ 140.390742][ T5826] Bluetooth: hci0: command 0x0c1a tx timeout [ 141.191671][ T5838] Bluetooth: hci1: command 0x0c1a tx timeout [ 141.198059][ T5826] Bluetooth: hci2: command 0x0c1a tx timeout [ 141.273737][ T5826] Bluetooth: hci3: command 0x0c1a tx timeout [ 141.846972][ T6930] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 141.985295][ T6930] netlink: 252 bytes leftover after parsing attributes in process `syz.3.234'. [ 142.212964][ T6937] netlink: 8 bytes leftover after parsing attributes in process `syz.2.235'. [ 142.472837][ T5826] Bluetooth: hci0: command 0x0c1a tx timeout [ 142.537387][ T6941] FAULT_INJECTION: forcing a failure. [ 142.537387][ T6941] name fail_futex, interval 1, probability 0, space 0, times 0 [ 142.611155][ T6941] CPU: 1 UID: 0 PID: 6941 Comm: syz.0.237 Not tainted syzkaller #0 PREEMPT(full) [ 142.611192][ T6941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 142.611208][ T6941] Call Trace: [ 142.611216][ T6941] [ 142.611225][ T6941] dump_stack_lvl+0x100/0x190 [ 142.611272][ T6941] should_fail_ex.cold+0x5/0xa [ 142.611306][ T6941] get_futex_key+0x1d2/0x1620 [ 142.611345][ T6941] ? __pfx_get_futex_key+0x10/0x10 [ 142.611415][ T6941] ? __pfx_call_function_single_prep_ipi+0x10/0x10 [ 142.611464][ T6941] futex_wait_setup+0x83/0x510 [ 142.611518][ T6941] __futex_wait+0x19f/0x300 [ 142.611565][ T6941] ? __pfx___futex_wait+0x10/0x10 [ 142.611604][ T6941] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 142.611649][ T6941] ? lockdep_hardirqs_on+0x78/0x100 [ 142.611679][ T6941] ? __pfx_futex_wake_mark+0x10/0x10 [ 142.611727][ T6941] ? find_held_lock+0x2b/0x80 [ 142.611753][ T6941] ? futex_wake+0x456/0x530 [ 142.611803][ T6941] futex_wait+0xed/0x380 [ 142.611848][ T6941] ? __pfx_futex_wait+0x10/0x10 [ 142.611892][ T6941] ? putname+0xb1/0x110 [ 142.611917][ T6941] ? kmem_cache_free+0x124/0x6a0 [ 142.611958][ T6941] do_futex+0x1ef/0x350 [ 142.611996][ T6941] ? __pfx_do_futex+0x10/0x10 [ 142.612032][ T6941] ? __pfx_do_sys_openat2+0x10/0x10 [ 142.612068][ T6941] ? __fget_files+0x21f/0x3d0 [ 142.612096][ T6941] __x64_sys_futex+0x34f/0x4d0 [ 142.612132][ T6941] ? __x64_sys_openat+0x12d/0x210 [ 142.612168][ T6941] ? __pfx___x64_sys_futex+0x10/0x10 [ 142.612211][ T6941] do_syscall_64+0x106/0xf80 [ 142.612238][ T6941] ? clear_bhb_loop+0x40/0x90 [ 142.612271][ T6941] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 142.612300][ T6941] RIP: 0033:0x7f51a599c819 [ 142.612323][ T6941] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 142.612348][ T6941] RSP: 002b:00007f51a67f90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 142.612382][ T6941] RAX: ffffffffffffffda RBX: 00007f51a5c15fa8 RCX: 00007f51a599c819 [ 142.612397][ T6941] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f51a5c15fa8 [ 142.612412][ T6941] RBP: 00007f51a5c15fa0 R08: 0000000000000000 R09: 0000000000000000 [ 142.612430][ T6941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 142.612446][ T6941] R13: 00007f51a5c16038 R14: 00007ffd72d98260 R15: 00007ffd72d98348 [ 142.612482][ T6941] [ 143.280919][ T5826] Bluetooth: hci2: command 0x0c1a tx timeout [ 143.287107][ T5838] Bluetooth: hci1: command 0x0c1a tx timeout [ 143.350701][ T5826] Bluetooth: hci3: command 0x0c1a tx timeout [ 143.399626][ T29] audit: type=1804 audit(1775189162.135:21): pid=6958 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.242" name="/newroot/67/file0" dev="tmpfs" ino=373 res=1 errno=0 [ 144.424871][ T6975] netlink: 4 bytes leftover after parsing attributes in process `syz.1.246'. [ 144.560026][ T5826] Bluetooth: hci0: command 0x0c1a tx timeout [ 145.125653][ T6990] zswap: compressor not available [ 145.351589][ T5826] Bluetooth: hci2: command 0x0c1a tx timeout [ 145.357797][ T5838] Bluetooth: hci1: command 0x0c1a tx timeout [ 145.432397][ T5826] Bluetooth: hci3: command 0x0c1a tx timeout [ 146.625215][ T7043] bridge0: port 3(team0) entered blocking state [ 146.631717][ T7043] bridge0: port 3(team0) entered disabled state [ 146.638458][ T7043] team0: entered allmulticast mode [ 146.644038][ T7043] team_slave_0: entered allmulticast mode [ 146.661381][ T7043] team_slave_1: entered allmulticast mode [ 146.691514][ T7043] team0: entered promiscuous mode [ 146.708497][ T7043] team_slave_0: entered promiscuous mode [ 146.728790][ T7043] team_slave_1: entered promiscuous mode [ 146.755249][ T7043] bridge0: port 3(team0) entered blocking state [ 146.761777][ T7043] bridge0: port 3(team0) entered forwarding state [ 147.729103][ T7074] FAULT_INJECTION: forcing a failure. [ 147.729103][ T7074] name failslab, interval 1, probability 0, space 0, times 0 [ 147.742399][ T7074] CPU: 1 UID: 0 PID: 7074 Comm: syz.0.264 Not tainted syzkaller #0 PREEMPT(full) [ 147.742439][ T7074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 147.742456][ T7074] Call Trace: [ 147.742464][ T7074] [ 147.742475][ T7074] dump_stack_lvl+0x100/0x190 [ 147.742525][ T7074] should_fail_ex.cold+0x5/0xa [ 147.742560][ T7074] should_failslab+0xc2/0x120 [ 147.742592][ T7074] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 147.742638][ T7074] ? __d_alloc+0x34/0xa80 [ 147.742680][ T7074] __d_alloc+0x34/0xa80 [ 147.742718][ T7074] d_alloc+0x4a/0x1e0 [ 147.742753][ T7074] lookup_one_qstr_excl+0x175/0x250 [ 147.742797][ T7074] start_dirop+0x59/0xb0 [ 147.742863][ T7074] simple_start_creating+0xf9/0x110 [ 147.742893][ T7074] ? __pfx_simple_start_creating+0x10/0x10 [ 147.742924][ T7074] ? mntput+0x70/0xa0 [ 147.742950][ T7074] ? simple_pin_fs+0xa3/0x190 [ 147.742994][ T7074] debugfs_start_creating.part.0+0x82/0x170 [ 147.743030][ T7074] __debugfs_create_file+0xb3/0x4f0 [ 147.743069][ T7074] debugfs_create_file_full+0x41/0x60 [ 147.743106][ T7074] ref_tracker_dir_debugfs+0x19e/0x2e0 [ 147.743148][ T7074] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 147.743186][ T7074] ? rcu_is_watching+0x12/0xc0 [ 147.743247][ T7074] ? lockdep_init_map_type+0x5c/0x250 [ 147.743271][ T7074] preinit_net.part.0+0x24e/0x8f0 [ 147.743287][ T7074] copy_net_ns+0x339/0x7c0 [ 147.743305][ T7074] create_new_namespaces+0x3ea/0xac0 [ 147.743326][ T7074] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 147.743345][ T7074] ksys_unshare+0x473/0xad0 [ 147.743365][ T7074] ? __pfx_ksys_unshare+0x10/0x10 [ 147.743411][ T7074] __x64_sys_unshare+0x31/0x40 [ 147.743446][ T7074] do_syscall_64+0x106/0xf80 [ 147.743472][ T7074] ? clear_bhb_loop+0x40/0x90 [ 147.743506][ T7074] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.743535][ T7074] RIP: 0033:0x7f51a599c819 [ 147.743559][ T7074] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 147.743585][ T7074] RSP: 002b:00007f51a67d8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 147.743612][ T7074] RAX: ffffffffffffffda RBX: 00007f51a5c16090 RCX: 00007f51a599c819 [ 147.743630][ T7074] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 147.743646][ T7074] RBP: 00007f51a5a32c91 R08: 0000000000000000 R09: 0000000000000000 [ 147.743663][ T7074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 147.743680][ T7074] R13: 00007f51a5c16128 R14: 00007f51a5c16090 R15: 00007ffd72d98348 [ 147.743718][ T7074] [ 148.527628][ T7079] syz.2.266(7079): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 148.670894][ T7077] FAULT_INJECTION: forcing a failure. [ 148.670894][ T7077] name fail_futex, interval 1, probability 0, space 0, times 0 [ 148.693412][ T7077] CPU: 1 UID: 0 PID: 7077 Comm: syz.3.265 Not tainted syzkaller #0 PREEMPT(full) [ 148.693447][ T7077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 148.693463][ T7077] Call Trace: [ 148.693471][ T7077] [ 148.693481][ T7077] dump_stack_lvl+0x100/0x190 [ 148.693530][ T7077] should_fail_ex.cold+0x5/0xa [ 148.693562][ T7077] get_futex_key+0x1d2/0x1620 [ 148.693599][ T7077] ? __pfx_get_futex_key+0x10/0x10 [ 148.693644][ T7077] futex_wake+0xea/0x530 [ 148.693692][ T7077] ? __pfx_futex_wake+0x10/0x10 [ 148.693740][ T7077] ? putname+0xb1/0x110 [ 148.693779][ T7077] ? kmem_cache_free+0x124/0x6a0 [ 148.693825][ T7077] do_futex+0x32b/0x350 [ 148.693863][ T7077] ? __pfx_do_futex+0x10/0x10 [ 148.693898][ T7077] ? __pfx_do_sys_openat2+0x10/0x10 [ 148.693937][ T7077] ? __fget_files+0x21f/0x3d0 [ 148.693969][ T7077] __x64_sys_futex+0x34f/0x4d0 [ 148.694008][ T7077] ? __x64_sys_openat+0x12d/0x210 [ 148.694048][ T7077] ? __pfx___x64_sys_futex+0x10/0x10 [ 148.694099][ T7077] do_syscall_64+0x106/0xf80 [ 148.694124][ T7077] ? clear_bhb_loop+0x40/0x90 [ 148.694157][ T7077] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 148.694186][ T7077] RIP: 0033:0x7fe54739c819 [ 148.694209][ T7077] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 148.694232][ T7077] RSP: 002b:00007fe54824d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 148.694258][ T7077] RAX: ffffffffffffffda RBX: 00007fe547615fa8 RCX: 00007fe54739c819 [ 148.694276][ T7077] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe547615fac [ 148.694293][ T7077] RBP: 00007fe547615fa0 R08: 0000000000000000 R09: 0000000000000000 [ 148.694311][ T7077] R10: 000000000000000a R11: 0000000000000246 R12: 0000000000000000 [ 148.694327][ T7077] R13: 00007fe547616038 R14: 00007fffd6cee020 R15: 00007fffd6cee108 [ 148.694364][ T7077] [ 149.132152][ T7092] overlayfs: "check_copy_up" module option is obsolete [ 149.154853][ T7084] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 149.161438][ T7084] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 149.313531][ T7067] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 149.353864][ T7067] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 149.360274][ T7067] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 149.401924][ T7067] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 149.557225][ T7100] ======================================================= [ 149.557225][ T7100] WARNING: The mand mount option has been deprecated and [ 149.557225][ T7100] and is ignored by this kernel. Remove the mand [ 149.557225][ T7100] option from the mount to silence this warning. [ 149.557225][ T7100] ======================================================= [ 149.602781][ T7098] FAULT_INJECTION: forcing a failure. [ 149.602781][ T7098] name failslab, interval 1, probability 0, space 0, times 0 [ 149.713443][ T7098] CPU: 0 UID: 0 PID: 7098 Comm: syz.3.270 Not tainted syzkaller #0 PREEMPT(full) [ 149.713483][ T7098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 149.713499][ T7098] Call Trace: [ 149.713508][ T7098] [ 149.713518][ T7098] dump_stack_lvl+0x100/0x190 [ 149.713568][ T7098] should_fail_ex.cold+0x5/0xa [ 149.713603][ T7098] ? ima_alloc_init_template+0x19d/0x6d0 [ 149.713635][ T7098] should_failslab+0xc2/0x120 [ 149.713666][ T7098] __kmalloc_noprof+0xe0/0x850 [ 149.713707][ T7098] ? take_dentry_name_snapshot+0x30b/0x7c0 [ 149.713744][ T7098] ima_alloc_init_template+0x19d/0x6d0 [ 149.713771][ T7098] ? take_dentry_name_snapshot+0x310/0x7c0 [ 149.713813][ T7098] ima_store_measurement+0x1e3/0x5b0 [ 149.713847][ T7098] ? __pfx_ima_store_measurement+0x10/0x10 [ 149.713894][ T7098] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 149.713942][ T7098] process_measurement+0x19cc/0x2350 [ 149.713980][ T7098] ? stack_trace_save+0x8e/0xc0 [ 149.714010][ T7098] ? __pfx_process_measurement+0x10/0x10 [ 149.714040][ T7098] ? __lock_acquire+0x4a5/0x2630 [ 149.714074][ T7098] ? __kasan_slab_alloc+0x89/0x90 [ 149.714100][ T7098] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 149.714142][ T7098] ? init_file+0x95/0x480 [ 149.714172][ T7098] ? alloc_empty_file+0x73/0x1c0 [ 149.714219][ T7098] ? alloc_file_pseudo+0x13a/0x230 [ 149.714257][ T7098] ? ksys_mmap_pgoff+0x232/0x650 [ 149.714287][ T7098] ? __x64_sys_mmap+0x125/0x190 [ 149.714328][ T7098] ? do_syscall_64+0x106/0xf80 [ 149.714392][ T7098] ? __pfx_aa_file_perm+0x10/0x10 [ 149.714452][ T7098] ima_file_mmap+0x1c4/0x1f0 [ 149.714483][ T7098] ? __pfx_ima_file_mmap+0x10/0x10 [ 149.714523][ T7098] security_mmap_file+0x278/0x9b0 [ 149.714564][ T7098] vm_mmap_pgoff+0xec/0x470 [ 149.714603][ T7098] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 149.714634][ T7098] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 149.714673][ T7098] ? hugetlbfs_get_inode+0x36e/0x750 [ 149.714716][ T7098] ksys_mmap_pgoff+0x273/0x650 [ 149.714746][ T7098] ? __x64_sys_futex+0x358/0x4d0 [ 149.714781][ T7098] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 149.714810][ T7098] ? xfd_validate_state+0x129/0x190 [ 149.714857][ T7098] __x64_sys_mmap+0x125/0x190 [ 149.714905][ T7098] do_syscall_64+0x106/0xf80 [ 149.714931][ T7098] ? clear_bhb_loop+0x40/0x90 [ 149.714963][ T7098] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.714992][ T7098] RIP: 0033:0x7fe54739c819 [ 149.715013][ T7098] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 149.715038][ T7098] RSP: 002b:00007fe54824d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 149.715065][ T7098] RAX: ffffffffffffffda RBX: 00007fe547615fa0 RCX: 00007fe54739c819 [ 149.715083][ T7098] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000 [ 149.715099][ T7098] RBP: 00007fe547432c91 R08: 0000000000000401 R09: 0000300000000000 [ 149.715117][ T7098] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 149.715134][ T7098] R13: 00007fe547616038 R14: 00007fe547615fa0 R15: 00007fffd6cee108 [ 149.715173][ T7098] [ 149.721322][ T29] audit: type=1804 audit(1775191214.453:22): pid=7098 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.3.270" name="anon_hugepage" dev="hugetlbfs" ino=13960 res=0 errno=0 [ 150.156541][ T7107] ptp ptp0: new virtual clock ptp1 [ 150.161918][ T7107] ptp ptp0: guarantee physical clock free running [ 150.185357][ T7107] ptp ptp0: delete virtual clock ptp1 [ 150.206388][ T7107] ptp ptp0: only physical clock in use now [ 150.255923][ T7107] ptp ptp0: new virtual clock ptp1 [ 150.261143][ T7107] ptp ptp0: guarantee physical clock free running [ 150.466957][ T7116] nvme_fcloop: unknown parameter or missing value '0' [ 150.476397][ T5826] Bluetooth: hci0: command 0x0c1a tx timeout [ 151.321520][ T7148] FAULT_INJECTION: forcing a failure. [ 151.321520][ T7148] name failslab, interval 1, probability 0, space 0, times 0 [ 151.393386][ T7148] CPU: 0 UID: 0 PID: 7148 Comm: syz.2.282 Not tainted syzkaller #0 PREEMPT(full) [ 151.393426][ T7148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 151.393441][ T7148] Call Trace: [ 151.393450][ T7148] [ 151.393460][ T7148] dump_stack_lvl+0x100/0x190 [ 151.393507][ T7148] should_fail_ex.cold+0x5/0xa [ 151.393539][ T7148] should_failslab+0xc2/0x120 [ 151.393570][ T7148] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 151.393610][ T7148] ? shmem_alloc_inode+0x25/0x50 [ 151.393648][ T7148] ? __lock_acquire+0x4a5/0x2630 [ 151.393682][ T7148] ? __pfx_shmem_alloc_inode+0x10/0x10 [ 151.393725][ T7148] shmem_alloc_inode+0x25/0x50 [ 151.393756][ T7148] alloc_inode+0x68/0x250 [ 151.393795][ T7148] new_inode+0x22/0x1c0 [ 151.393832][ T7148] shmem_get_inode+0x212/0x1040 [ 151.393874][ T7148] ? __pfx_shmem_get_inode+0x10/0x10 [ 151.393908][ T7148] ? rcu_is_watching+0x12/0xc0 [ 151.393948][ T7148] ? percpu_counter_add_batch+0xb9/0x230 [ 151.393995][ T7148] __shmem_file_setup+0x3ac/0x490 [ 151.394037][ T7148] ? __pfx___shmem_file_setup+0x10/0x10 [ 151.394084][ T7148] ? vm_area_alloc+0x1f/0x160 [ 151.394130][ T7148] shmem_zero_setup+0x96/0x1b0 [ 151.394157][ T7148] __mmap_region+0x2198/0x29e0 [ 151.394210][ T7148] ? __pfx___mmap_region+0x10/0x10 [ 151.394245][ T7148] ? process_measurement+0x1f4/0x2350 [ 151.394292][ T7148] ? __lock_acquire+0x4a5/0x2630 [ 151.394347][ T7148] ? find_held_lock+0x2b/0x80 [ 151.394374][ T7148] ? finish_task_switch.isra.0+0x200/0xb80 [ 151.394407][ T7148] ? finish_task_switch.isra.0+0x200/0xb80 [ 151.394452][ T7148] ? trace_sched_exit_tp+0x13a/0x180 [ 151.394488][ T7148] ? __schedule+0x1000/0x6120 [ 151.394580][ T7148] ? rcu_is_watching+0x12/0xc0 [ 151.394624][ T7148] ? cap_capable+0x107/0x460 [ 151.394660][ T7148] mmap_region+0x180/0x3e0 [ 151.394711][ T7148] do_mmap+0xc63/0x12f0 [ 151.394752][ T7148] ? __pfx_do_mmap+0x10/0x10 [ 151.394785][ T7148] ? __pfx_down_write_killable+0x10/0x10 [ 151.394827][ T7148] vm_mmap_pgoff+0x29e/0x470 [ 151.394868][ T7148] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 151.394905][ T7148] ? do_futex+0x192/0x350 [ 151.394952][ T7148] ? __pfx_do_futex+0x10/0x10 [ 151.394999][ T7148] ksys_mmap_pgoff+0xe1/0x650 [ 151.395032][ T7148] ? __x64_sys_futex+0x34f/0x4d0 [ 151.395070][ T7148] ? __x64_sys_futex+0x358/0x4d0 [ 151.395110][ T7148] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 151.395142][ T7148] ? xfd_validate_state+0x129/0x190 [ 151.395201][ T7148] __x64_sys_mmap+0x125/0x190 [ 151.395258][ T7148] do_syscall_64+0x106/0xf80 [ 151.395286][ T7148] ? clear_bhb_loop+0x40/0x90 [ 151.395321][ T7148] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 151.395351][ T7148] RIP: 0033:0x7fb5e719c819 [ 151.395375][ T7148] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 151.395402][ T7148] RSP: 002b:00007fb5e800d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 151.395429][ T7148] RAX: ffffffffffffffda RBX: 00007fb5e7415fa0 RCX: 00007fb5e719c819 [ 151.395447][ T7148] RDX: 00000000000000df RSI: 0000000000020009 RDI: 0000000000000000 [ 151.395463][ T7148] RBP: 00007fb5e7232c91 R08: 0000000000000401 R09: 0000000000008000 [ 151.395476][ T7148] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 151.395490][ T7148] R13: 00007fb5e7416038 R14: 00007fb5e7415fa0 R15: 00007ffd50c60ac8 [ 151.395522][ T7148] [ 152.068207][ T5826] Bluetooth: hci3: command 0x0c1a tx timeout [ 152.068226][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout [ 152.074339][ T5826] Bluetooth: hci1: command 0x0c1a tx timeout [ 152.510338][ T7159] FAULT_INJECTION: forcing a failure. [ 152.510338][ T7159] name failslab, interval 1, probability 0, space 0, times 0 [ 152.523273][ T7159] CPU: 1 UID: 0 PID: 7159 Comm: syz.2.285 Not tainted syzkaller #0 PREEMPT(full) [ 152.523309][ T7159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 152.523326][ T7159] Call Trace: [ 152.523335][ T7159] [ 152.523345][ T7159] dump_stack_lvl+0x100/0x190 [ 152.523398][ T7159] should_fail_ex.cold+0x5/0xa [ 152.523432][ T7159] should_failslab+0xc2/0x120 [ 152.523465][ T7159] __kvmalloc_node_noprof+0xfa/0xa00 [ 152.523491][ T7159] ? bucket_table_alloc.isra.0+0x88/0x460 [ 152.523535][ T7159] bucket_table_alloc.isra.0+0x88/0x460 [ 152.523572][ T7159] rhashtable_init_noprof+0x43b/0x7d0 [ 152.523604][ T7159] ? __init_waitqueue_head+0xca/0x150 [ 152.523658][ T7159] rhltable_init_noprof+0x20/0x60 [ 152.523691][ T7159] sta_info_init+0x27/0x160 [ 152.523737][ T7159] ieee80211_alloc_hw_nm+0x836/0x22a0 [ 152.523776][ T7159] mac80211_hwsim_new_radio+0x1e1/0x57d0 [ 152.523824][ T7159] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 152.523860][ T7159] ? __nla_validate_parse+0x1e7/0x28b0 [ 152.523906][ T7159] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 152.523951][ T7159] hwsim_new_radio_nl+0xc1f/0x1340 [ 152.523988][ T7159] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 152.524032][ T7159] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280 [ 152.524069][ T7159] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280 [ 152.524112][ T7159] genl_family_rcv_msg_doit+0x214/0x300 [ 152.524150][ T7159] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 152.524183][ T7159] ? genl_get_cmd+0x3ef/0x720 [ 152.524224][ T7159] ? bpf_lsm_capable+0x9/0x10 [ 152.524255][ T7159] ? security_capable+0x80/0x260 [ 152.524285][ T7159] ? ns_capable+0xd2/0xf0 [ 152.524317][ T7159] genl_rcv_msg+0x560/0x800 [ 152.524357][ T7159] ? __pfx_genl_rcv_msg+0x10/0x10 [ 152.524399][ T7159] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 152.524445][ T7159] netlink_rcv_skb+0x159/0x420 [ 152.524475][ T7159] ? __pfx_genl_rcv_msg+0x10/0x10 [ 152.524507][ T7159] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 152.524545][ T7159] ? netlink_deliver_tap+0x1ae/0xcc0 [ 152.524594][ T7159] genl_rcv+0x28/0x40 [ 152.524623][ T7159] netlink_unicast+0x5aa/0x870 [ 152.524654][ T7159] ? __pfx_netlink_unicast+0x10/0x10 [ 152.524698][ T7159] netlink_sendmsg+0x8b0/0xda0 [ 152.524730][ T7159] ? __pfx_netlink_sendmsg+0x10/0x10 [ 152.524755][ T7159] ? __import_iovec+0x1d2/0x640 [ 152.524795][ T7159] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 152.524830][ T7159] ____sys_sendmsg+0x9e1/0xb70 [ 152.524859][ T7159] ? __pfx_netlink_sendmsg+0x10/0x10 [ 152.524891][ T7159] ? __pfx_____sys_sendmsg+0x10/0x10 [ 152.524930][ T7159] ? __pfx_futex_wake_mark+0x10/0x10 [ 152.524978][ T7159] ___sys_sendmsg+0x190/0x1e0 [ 152.525013][ T7159] ? __pfx____sys_sendmsg+0x10/0x10 [ 152.525094][ T7159] __sys_sendmsg+0x170/0x220 [ 152.525139][ T7159] ? __pfx___sys_sendmsg+0x10/0x10 [ 152.525183][ T7159] ? __x64_sys_futex+0x34f/0x4d0 [ 152.525243][ T7159] do_syscall_64+0x106/0xf80 [ 152.525270][ T7159] ? clear_bhb_loop+0x40/0x90 [ 152.525306][ T7159] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 152.525334][ T7159] RIP: 0033:0x7fb5e719c819 [ 152.525358][ T7159] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 152.525395][ T7159] RSP: 002b:00007fb5e800d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 152.525423][ T7159] RAX: ffffffffffffffda RBX: 00007fb5e7415fa0 RCX: 00007fb5e719c819 [ 152.525442][ T7159] RDX: 0000000000000000 RSI: 0000200000004240 RDI: 0000000000000007 [ 152.525459][ T7159] RBP: 00007fb5e7232c91 R08: 0000000000000000 R09: 0000000000000000 [ 152.525475][ T7159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 152.525491][ T7159] R13: 00007fb5e7416038 R14: 00007fb5e7415fa0 R15: 00007ffd50c60ac8 [ 152.525530][ T7159] [ 153.252723][ T7163] bridge0: port 3(team0) entered blocking state [ 153.261724][ T7163] bridge0: port 3(team0) entered disabled state [ 153.268304][ T7163] team0: entered allmulticast mode [ 153.281645][ T7163] team_slave_0: entered allmulticast mode [ 153.295838][ T7163] team_slave_1: entered allmulticast mode [ 153.302926][ T7163] team0: entered promiscuous mode [ 153.323653][ T7163] team_slave_0: entered promiscuous mode [ 153.331239][ T7163] team_slave_1: entered promiscuous mode [ 153.395226][ T7163] bridge0: port 3(team0) entered blocking state [ 153.401640][ T7163] bridge0: port 3(team0) entered forwarding state [ 153.775734][ T7154] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 153.801801][ T7154] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 153.819426][ T7154] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 153.841123][ T7154] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 154.888918][ T7185] nvme_fcloop: unknown parameter or missing value '0' [ 155.057429][ T7190] FAULT_INJECTION: forcing a failure. [ 155.057429][ T7190] name failslab, interval 1, probability 0, space 0, times 0 [ 155.194764][ T7190] CPU: 0 UID: 0 PID: 7190 Comm: syz.3.295 Not tainted syzkaller #0 PREEMPT(full) [ 155.194805][ T7190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 155.194822][ T7190] Call Trace: [ 155.194832][ T7190] [ 155.194842][ T7190] dump_stack_lvl+0x100/0x190 [ 155.194891][ T7190] should_fail_ex.cold+0x5/0xa [ 155.194925][ T7190] should_failslab+0xc2/0x120 [ 155.194958][ T7190] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 155.195004][ T7190] ? sk_prot_alloc+0x60/0x2a0 [ 155.195044][ T7190] sk_prot_alloc+0x60/0x2a0 [ 155.195080][ T7190] sk_alloc+0x36/0xe80 [ 155.195134][ T7190] qrtr_create+0x84/0x1d0 [ 155.195165][ T7190] __sock_create+0x339/0x860 [ 155.195209][ T7190] __sys_socket+0x14d/0x260 [ 155.195245][ T7190] ? fput+0x79/0x100 [ 155.195278][ T7190] ? __pfx___sys_socket+0x10/0x10 [ 155.195316][ T7190] ? __pfx___x64_sys_setxattrat+0x10/0x10 [ 155.195358][ T7190] __x64_sys_socket+0x72/0xb0 [ 155.195394][ T7190] ? lockdep_hardirqs_on+0x78/0x100 [ 155.195423][ T7190] do_syscall_64+0x106/0xf80 [ 155.195450][ T7190] ? clear_bhb_loop+0x40/0x90 [ 155.195486][ T7190] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 155.195516][ T7190] RIP: 0033:0x7fe54739c819 [ 155.195541][ T7190] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 155.195570][ T7190] RSP: 002b:00007fe54824d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 155.195599][ T7190] RAX: ffffffffffffffda RBX: 00007fe547615fa0 RCX: 00007fe54739c819 [ 155.195620][ T7190] RDX: 0000000000000001 RSI: 0000000000000002 RDI: 000000000000002a [ 155.195638][ T7190] RBP: 00007fe547432c91 R08: 0000000000000000 R09: 0000000000000000 [ 155.195656][ T7190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 155.195673][ T7190] R13: 00007fe547616038 R14: 00007fe547615fa0 R15: 00007fffd6cee108 [ 155.195712][ T7190] [ 155.760819][ T5834] Bluetooth: hci0: command 0x0c1a tx timeout [ 155.840103][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout [ 155.847972][ T5826] Bluetooth: hci1: command 0x0c1a tx timeout [ 155.927524][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout [ 157.010811][ T7234] block nbd7: not configured, cannot reconfigure [ 157.629068][ T7241] netlink: 729 bytes leftover after parsing attributes in process `syz.3.304'. [ 159.669028][ T7277] zswap: compressor û not available [ 160.595523][ T29] audit: type=1804 audit(1775192248.319:23): pid=7307 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.321" name="/newroot/73/file0" dev="tmpfs" ino=407 res=1 errno=0 [ 161.157668][ T7326] can: request_module (can-proto-0) failed. [ 162.639453][ T7352] FAULT_INJECTION: forcing a failure. [ 162.639453][ T7352] name failslab, interval 1, probability 0, space 0, times 0 [ 162.655815][ T7352] CPU: 1 UID: 0 PID: 7352 Comm: syz.1.331 Not tainted syzkaller #0 PREEMPT(full) [ 162.655856][ T7352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 162.655873][ T7352] Call Trace: [ 162.655883][ T7352] [ 162.655894][ T7352] dump_stack_lvl+0x100/0x190 [ 162.655944][ T7352] should_fail_ex.cold+0x5/0xa [ 162.655978][ T7352] should_failslab+0xc2/0x120 [ 162.656011][ T7352] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 162.656053][ T7352] ? skb_clone+0x190/0x400 [ 162.656105][ T7352] skb_clone+0x190/0x400 [ 162.656147][ T7352] netlink_deliver_tap+0xaed/0xcc0 [ 162.656200][ T7352] netlink_unicast+0x650/0x870 [ 162.656234][ T7352] ? __pfx_netlink_unicast+0x10/0x10 [ 162.656278][ T7352] netlink_sendmsg+0x8b0/0xda0 [ 162.656326][ T7352] ? __pfx_netlink_sendmsg+0x10/0x10 [ 162.656354][ T7352] ? __import_iovec+0x1d2/0x640 [ 162.656398][ T7352] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 162.656435][ T7352] ____sys_sendmsg+0x9e1/0xb70 [ 162.656468][ T7352] ? __pfx_netlink_sendmsg+0x10/0x10 [ 162.656502][ T7352] ? __pfx_____sys_sendmsg+0x10/0x10 [ 162.656544][ T7352] ? __pfx_futex_wake_mark+0x10/0x10 [ 162.656594][ T7352] ___sys_sendmsg+0x190/0x1e0 [ 162.656633][ T7352] ? __pfx____sys_sendmsg+0x10/0x10 [ 162.656707][ T7352] __sys_sendmsg+0x170/0x220 [ 162.656749][ T7352] ? __pfx___sys_sendmsg+0x10/0x10 [ 162.656790][ T7352] ? __x64_sys_futex+0x34f/0x4d0 [ 162.656845][ T7352] do_syscall_64+0x106/0xf80 [ 162.656874][ T7352] ? clear_bhb_loop+0x40/0x90 [ 162.656911][ T7352] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 162.656940][ T7352] RIP: 0033:0x7fc4edd9c819 [ 162.656965][ T7352] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 162.656993][ T7352] RSP: 002b:00007fc4ebfee028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 162.657020][ T7352] RAX: ffffffffffffffda RBX: 00007fc4ee015fa0 RCX: 00007fc4edd9c819 [ 162.657039][ T7352] RDX: 0000000000000000 RSI: 0000200000004240 RDI: 0000000000000007 [ 162.657055][ T7352] RBP: 00007fc4ede32c91 R08: 0000000000000000 R09: 0000000000000000 [ 162.657072][ T7352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 162.657088][ T7352] R13: 00007fc4ee016038 R14: 00007fc4ee015fa0 R15: 00007ffc1c8f77d8 [ 162.657126][ T7352] [ 163.361661][ T7361] block nbd7: not configured, cannot reconfigure [ 163.489990][ T7363] FAULT_INJECTION: forcing a failure. [ 163.489990][ T7363] name failslab, interval 1, probability 0, space 0, times 0 [ 163.554124][ T7363] CPU: 1 UID: 0 PID: 7363 Comm: syz.0.334 Not tainted syzkaller #0 PREEMPT(full) [ 163.554162][ T7363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 163.554178][ T7363] Call Trace: [ 163.554187][ T7363] [ 163.554198][ T7363] dump_stack_lvl+0x100/0x190 [ 163.554251][ T7363] should_fail_ex.cold+0x5/0xa [ 163.554286][ T7363] should_failslab+0xc2/0x120 [ 163.554319][ T7363] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 163.554365][ T7363] ? __proc_create+0x2cb/0x8c0 [ 163.554402][ T7363] __proc_create+0x2cb/0x8c0 [ 163.554432][ T7363] ? __pfx___proc_create+0x10/0x10 [ 163.554466][ T7363] ? _raw_write_unlock+0x28/0x50 [ 163.554511][ T7363] ? proc_register+0x559/0x8a0 [ 163.554547][ T7363] proc_create_reg+0x75/0x170 [ 163.554578][ T7363] ? __pfx_can_stats_proc_show+0x10/0x10 [ 163.554625][ T7363] proc_create_net_single+0x86/0x180 [ 163.554657][ T7363] ? __pfx_proc_create_net_single+0x10/0x10 [ 163.554692][ T7363] ? round_jiffies+0x10a/0x160 [ 163.554728][ T7363] can_init_proc+0xac/0x4b0 [ 163.554774][ T7363] can_pernet_init+0x1e4/0x370 [ 163.554819][ T7363] ? __pfx_can_pernet_init+0x10/0x10 [ 163.554860][ T7363] ops_init+0x1e2/0x5f0 [ 163.554893][ T7363] setup_net+0x118/0x3a0 [ 163.554922][ T7363] ? __pfx_setup_net+0x10/0x10 [ 163.554949][ T7363] ? lockdep_init_map_type+0x5c/0x250 [ 163.554989][ T7363] ? mutex_init_lockep+0x110/0x150 [ 163.555040][ T7363] copy_net_ns+0x46f/0x7c0 [ 163.555076][ T7363] create_new_namespaces+0x3ea/0xac0 [ 163.555119][ T7363] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 163.555156][ T7363] ksys_unshare+0x473/0xad0 [ 163.555196][ T7363] ? __pfx_ksys_unshare+0x10/0x10 [ 163.555249][ T7363] __x64_sys_unshare+0x31/0x40 [ 163.555285][ T7363] do_syscall_64+0x106/0xf80 [ 163.555313][ T7363] ? clear_bhb_loop+0x40/0x90 [ 163.555348][ T7363] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 163.555378][ T7363] RIP: 0033:0x7f51a599c819 [ 163.555404][ T7363] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 163.555432][ T7363] RSP: 002b:00007f51a67f9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 163.555461][ T7363] RAX: ffffffffffffffda RBX: 00007f51a5c15fa0 RCX: 00007f51a599c819 [ 163.555480][ T7363] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 163.555498][ T7363] RBP: 00007f51a5a32c91 R08: 0000000000000000 R09: 0000000000000000 [ 163.555515][ T7363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 163.555533][ T7363] R13: 00007f51a5c16038 R14: 00007f51a5c15fa0 R15: 00007ffd72d98348 [ 163.555572][ T7363] [ 164.161773][ T7369] FAULT_INJECTION: forcing a failure. [ 164.161773][ T7369] name fail_futex, interval 1, probability 0, space 0, times 0 [ 164.190704][ T7369] CPU: 1 UID: 0 PID: 7369 Comm: syz.1.335 Not tainted syzkaller #0 PREEMPT(full) [ 164.190742][ T7369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 164.190757][ T7369] Call Trace: [ 164.190766][ T7369] [ 164.190788][ T7369] dump_stack_lvl+0x100/0x190 [ 164.190835][ T7369] should_fail_ex.cold+0x5/0xa [ 164.190866][ T7369] get_futex_key+0x1d2/0x1620 [ 164.190904][ T7369] ? __pfx_get_futex_key+0x10/0x10 [ 164.190957][ T7369] futex_wake+0xea/0x530 [ 164.191005][ T7369] ? __pfx_futex_wake+0x10/0x10 [ 164.191046][ T7369] ? putname+0xb1/0x110 [ 164.191076][ T7369] ? kmem_cache_free+0x124/0x6a0 [ 164.191126][ T7369] do_futex+0x32b/0x350 [ 164.191162][ T7369] ? __pfx_do_futex+0x10/0x10 [ 164.191195][ T7369] ? __pfx_do_sys_openat2+0x10/0x10 [ 164.191244][ T7369] ? __fget_files+0x21f/0x3d0 [ 164.191277][ T7369] __x64_sys_futex+0x34f/0x4d0 [ 164.191318][ T7369] ? __x64_sys_openat+0x12d/0x210 [ 164.191358][ T7369] ? __pfx___x64_sys_futex+0x10/0x10 [ 164.191407][ T7369] do_syscall_64+0x106/0xf80 [ 164.191436][ T7369] ? clear_bhb_loop+0x40/0x90 [ 164.191472][ T7369] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 164.191501][ T7369] RIP: 0033:0x7fc4edd9c819 [ 164.191524][ T7369] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 164.191550][ T7369] RSP: 002b:00007fc4ebfee0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 164.191573][ T7369] RAX: ffffffffffffffda RBX: 00007fc4ee015fa8 RCX: 00007fc4edd9c819 [ 164.191591][ T7369] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc4ee015fac [ 164.191609][ T7369] RBP: 00007fc4ee015fa0 R08: 0000000000000000 R09: 0000000000000000 [ 164.191625][ T7369] R10: 000000000000000b R11: 0000000000000246 R12: 0000000000000000 [ 164.191641][ T7369] R13: 00007fc4ee016038 R14: 00007ffc1c8f76f0 R15: 00007ffc1c8f77d8 [ 164.191676][ T7369] [ 165.003703][ T7382] ubi0: attaching mtd0 [ 165.044151][ T7382] ubi0: scanning is finished [ 165.051842][ T7382] ubi0: empty MTD device detected [ 165.418797][ T7382] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 165.426461][ T7382] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 165.433772][ T7382] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 165.440872][ T7382] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 165.440992][ T7365] zswap: compressor not available [ 165.470406][ T7382] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 165.522008][ T7382] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 165.558262][ T7382] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2609190128 [ 165.605741][ T7382] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 165.696194][ T7388] ubi0: background thread "ubi_bgt0d" started, PID 7388 [ 165.703350][ T7384] ubi0: detaching mtd0 [ 165.704508][ T7393] futex_wake_op: syz.1.339 tries to shift op by -2048; fix this program [ 165.763654][ T7384] ubi0: mtd0 is detached [ 167.271766][ T7404] vmstat_refresh: nr_hugetlb -2048 [ 167.348752][ T7404] vmstat_refresh: nr_hugetlb -2048 [ 168.992971][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 171.247661][ T7458] FAULT_INJECTION: forcing a failure. [ 171.247661][ T7458] name fail_futex, interval 1, probability 0, space 0, times 0 [ 171.260672][ T7458] CPU: 1 UID: 0 PID: 7458 Comm: syz.1.354 Not tainted syzkaller #0 PREEMPT(full) [ 171.260703][ T7458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 171.260713][ T7458] Call Trace: [ 171.260720][ T7458] [ 171.260727][ T7458] dump_stack_lvl+0x100/0x190 [ 171.260755][ T7458] should_fail_ex.cold+0x5/0xa [ 171.260774][ T7458] get_futex_key+0x1d2/0x1620 [ 171.260796][ T7458] ? __pfx_get_futex_key+0x10/0x10 [ 171.260822][ T7458] futex_wake+0xea/0x530 [ 171.260846][ T7458] ? __pfx_futex_wake+0x10/0x10 [ 171.260872][ T7458] ? putname+0xb1/0x110 [ 171.260887][ T7458] ? kmem_cache_free+0x124/0x6a0 [ 171.260911][ T7458] do_futex+0x32b/0x350 [ 171.260931][ T7458] ? __pfx_do_futex+0x10/0x10 [ 171.260949][ T7458] ? __pfx_do_sys_openat2+0x10/0x10 [ 171.260970][ T7458] ? __fget_files+0x21f/0x3d0 [ 171.260987][ T7458] __x64_sys_futex+0x34f/0x4d0 [ 171.261007][ T7458] ? __x64_sys_openat+0x12d/0x210 [ 171.261027][ T7458] ? __pfx___x64_sys_futex+0x10/0x10 [ 171.261060][ T7458] do_syscall_64+0x106/0xf80 [ 171.261076][ T7458] ? clear_bhb_loop+0x40/0x90 [ 171.261094][ T7458] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 171.261111][ T7458] RIP: 0033:0x7fc4edd9c819 [ 171.261124][ T7458] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 171.261138][ T7458] RSP: 002b:00007fc4ebfee0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 171.261153][ T7458] RAX: ffffffffffffffda RBX: 00007fc4ee015fa8 RCX: 00007fc4edd9c819 [ 171.261162][ T7458] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc4ee015fac [ 171.261172][ T7458] RBP: 00007fc4ee015fa0 R08: 0000000000000000 R09: 0000000000000000 [ 171.261180][ T7458] R10: 000000000000000b R11: 0000000000000246 R12: 0000000000000000 [ 171.261189][ T7458] R13: 00007fc4ee016038 R14: 00007ffc1c8f76f0 R15: 00007ffc1c8f77d8 [ 171.261209][ T7458] [ 173.935322][ T7489] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 175.286353][ T7500] sp0: Synchronizing with TNC [ 175.722532][ T7513] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 177.119011][ T7537] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 178.392007][ T7568] netlink: 338 bytes leftover after parsing attributes in process `syz.0.380'. [ 178.532269][ T7568] netlink: 334 bytes leftover after parsing attributes in process `syz.0.380'. [ 178.543923][ T7572] vhci_hcd vhci_hcd.1: invalid port number 14 [ 178.802154][ T7576] bond0: invalid ARP target specified [ 178.812628][ T7576] netlink: 338 bytes leftover after parsing attributes in process `syz.2.382'. [ 178.822386][ T7576] bond_slave_0: entered allmulticast mode [ 179.106047][ T7587] ubi3: attaching mtd1 [ 179.126295][ T7585] FAULT_INJECTION: forcing a failure. [ 179.126295][ T7585] name fail_futex, interval 1, probability 0, space 0, times 0 [ 179.132490][ T7587] ubi3 error: ubi_attach_mtd_dev: bad VID header (32185) or data offsets (32249) [ 179.158372][ T7585] CPU: 0 UID: 0 PID: 7585 Comm: syz.1.385 Not tainted syzkaller #0 PREEMPT(full) [ 179.158395][ T7585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 179.158404][ T7585] Call Trace: [ 179.158411][ T7585] [ 179.158417][ T7585] dump_stack_lvl+0x100/0x190 [ 179.158445][ T7585] should_fail_ex.cold+0x5/0xa [ 179.158466][ T7585] get_futex_key+0x1d2/0x1620 [ 179.158489][ T7585] ? __pfx_get_futex_key+0x10/0x10 [ 179.158515][ T7585] futex_wait_setup+0x83/0x510 [ 179.158544][ T7585] __futex_wait+0x19f/0x300 [ 179.158568][ T7585] ? __pfx___futex_wait+0x10/0x10 [ 179.158594][ T7585] ? __pfx_futex_wake_mark+0x10/0x10 [ 179.158620][ T7585] ? find_held_lock+0x2b/0x80 [ 179.158634][ T7585] ? futex_wake+0x456/0x530 [ 179.158660][ T7585] futex_wait+0xed/0x380 [ 179.158683][ T7585] ? __pfx_futex_wait+0x10/0x10 [ 179.158728][ T7585] ? putname+0xb1/0x110 [ 179.158769][ T7585] ? kmem_cache_free+0x124/0x6a0 [ 179.158800][ T7585] do_futex+0x1ef/0x350 [ 179.158821][ T7585] ? __pfx_do_futex+0x10/0x10 [ 179.158839][ T7585] ? __pfx_do_sys_openat2+0x10/0x10 [ 179.158860][ T7585] ? __fget_files+0x21f/0x3d0 [ 179.158877][ T7585] __x64_sys_futex+0x34f/0x4d0 [ 179.158897][ T7585] ? __x64_sys_openat+0x12d/0x210 [ 179.158918][ T7585] ? __pfx___x64_sys_futex+0x10/0x10 [ 179.158944][ T7585] do_syscall_64+0x106/0xf80 [ 179.158959][ T7585] ? clear_bhb_loop+0x40/0x90 [ 179.158978][ T7585] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.158994][ T7585] RIP: 0033:0x7fc4edd9c819 [ 179.159008][ T7585] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 179.159023][ T7585] RSP: 002b:00007fc4ebfee0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 179.159038][ T7585] RAX: ffffffffffffffda RBX: 00007fc4ee015fa8 RCX: 00007fc4edd9c819 [ 179.159047][ T7585] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fc4ee015fa8 [ 179.159056][ T7585] RBP: 00007fc4ee015fa0 R08: 0000000000000000 R09: 0000000000000000 [ 179.159065][ T7585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 179.159073][ T7585] R13: 00007fc4ee016038 R14: 00007ffc1c8f76f0 R15: 00007ffc1c8f77d8 [ 179.159093][ T7585] [ 179.446844][ T7589] FAULT_INJECTION: forcing a failure. [ 179.446844][ T7589] name failslab, interval 1, probability 0, space 0, times 0 [ 179.470939][ T7589] CPU: 0 UID: 0 PID: 7589 Comm: syz.3.387 Not tainted syzkaller #0 PREEMPT(full) [ 179.470982][ T7589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 179.471000][ T7589] Call Trace: [ 179.471010][ T7589] [ 179.471021][ T7589] dump_stack_lvl+0x100/0x190 [ 179.471072][ T7589] should_fail_ex.cold+0x5/0xa [ 179.471108][ T7589] ? udp_init_sock+0x24e/0x450 [ 179.471146][ T7589] should_failslab+0xc2/0x120 [ 179.471178][ T7589] __kmalloc_noprof+0xe0/0x850 [ 179.471222][ T7589] ? lockdep_init_map_type+0x5c/0x250 [ 179.471269][ T7589] udp_init_sock+0x24e/0x450 [ 179.471308][ T7589] ? __pfx_udp_init_sock+0x10/0x10 [ 179.471350][ T7589] inet_create+0x94c/0x1060 [ 179.471387][ T7589] ? inet_create+0x94/0x1060 [ 179.471428][ T7589] __sock_create+0x339/0x860 [ 179.471484][ T7589] __sys_socket+0x14d/0x260 [ 179.471523][ T7589] ? __pfx___sys_socket+0x10/0x10 [ 179.471572][ T7589] __x64_sys_socket+0x72/0xb0 [ 179.471611][ T7589] ? lockdep_hardirqs_on+0x78/0x100 [ 179.471642][ T7589] do_syscall_64+0x106/0xf80 [ 179.471670][ T7589] ? clear_bhb_loop+0x40/0x90 [ 179.471704][ T7589] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.471735][ T7589] RIP: 0033:0x7fe54739c819 [ 179.471761][ T7589] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 179.471790][ T7589] RSP: 002b:00007fe54824d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 179.471817][ T7589] RAX: ffffffffffffffda RBX: 00007fe547615fa0 RCX: 00007fe54739c819 [ 179.471837][ T7589] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000002 [ 179.471854][ T7589] RBP: 00007fe547432c91 R08: 0000000000000000 R09: 0000000000000000 [ 179.471872][ T7589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 179.471890][ T7589] R13: 00007fe547616038 R14: 00007fe547615fa0 R15: 00007fffd6cee108 [ 179.471929][ T7589] [ 180.125263][ T7609] netlink: 12 bytes leftover after parsing attributes in process `syz.3.391'. [ 181.425717][ T7638] warning: `syz.1.395' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 181.555916][ T7645] FAULT_INJECTION: forcing a failure. [ 181.555916][ T7645] name fail_futex, interval 1, probability 0, space 0, times 0 [ 181.579449][ T7645] CPU: 0 UID: 0 PID: 7645 Comm: syz.2.397 Not tainted syzkaller #0 PREEMPT(full) [ 181.579490][ T7645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 181.579507][ T7645] Call Trace: [ 181.579516][ T7645] [ 181.579526][ T7645] dump_stack_lvl+0x100/0x190 [ 181.579582][ T7645] should_fail_ex.cold+0x5/0xa [ 181.579604][ T7645] get_futex_key+0x1d2/0x1620 [ 181.579625][ T7645] ? __pfx_get_futex_key+0x10/0x10 [ 181.579668][ T7645] futex_wake+0xea/0x530 [ 181.579710][ T7645] ? __pfx_futex_wake+0x10/0x10 [ 181.579734][ T7645] ? putname+0xb1/0x110 [ 181.579750][ T7645] ? kmem_cache_free+0x124/0x6a0 [ 181.579775][ T7645] do_futex+0x32b/0x350 [ 181.579795][ T7645] ? __pfx_do_futex+0x10/0x10 [ 181.579812][ T7645] ? __pfx_do_sys_openat2+0x10/0x10 [ 181.579834][ T7645] ? __fget_files+0x21f/0x3d0 [ 181.579851][ T7645] __x64_sys_futex+0x34f/0x4d0 [ 181.579871][ T7645] ? __x64_sys_openat+0x12d/0x210 [ 181.579891][ T7645] ? __pfx___x64_sys_futex+0x10/0x10 [ 181.579918][ T7645] do_syscall_64+0x106/0xf80 [ 181.579933][ T7645] ? clear_bhb_loop+0x40/0x90 [ 181.579950][ T7645] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.579965][ T7645] RIP: 0033:0x7fb5e719c819 [ 181.579979][ T7645] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 181.579993][ T7645] RSP: 002b:00007fb5e800d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 181.580008][ T7645] RAX: ffffffffffffffda RBX: 00007fb5e7415fa8 RCX: 00007fb5e719c819 [ 181.580017][ T7645] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb5e7415fac [ 181.580027][ T7645] RBP: 00007fb5e7415fa0 R08: 0000000000000000 R09: 0000000000000000 [ 181.580036][ T7645] R10: 000000000000000a R11: 0000000000000246 R12: 0000000000000000 [ 181.580044][ T7645] R13: 00007fb5e7416038 R14: 00007ffd50c609e0 R15: 00007ffd50c60ac8 [ 181.580063][ T7645] [ 182.070996][ T7650] mkiss: ax0: crc mode is auto. [ 182.274161][ T7653] netlink: 338 bytes leftover after parsing attributes in process `syz.2.399'. [ 182.288506][ T7653] netlink: 334 bytes leftover after parsing attributes in process `syz.2.399'. [ 182.365599][ T7655] netlink: 28 bytes leftover after parsing attributes in process `syz.1.400'. [ 183.298302][ T5834] Bluetooth: hci3: unexpected event 0x3e length: 505 > 260 [ 183.298343][ T5834] Bluetooth: hci3: unexpected subevent 0x02 length: 504 > 260 [ 183.315540][ T5834] Bluetooth: hci3: Dropping invalid advertising data [ 183.322848][ T5834] Bluetooth: hci3: unknown advertising packet type: 0xe9 [ 183.813962][ T7667] syz.0.403 (7667) used greatest stack depth: 19088 bytes left [ 183.929959][ T7691] ubi3: attaching mtd1 [ 183.934205][ T7691] ubi3 error: ubi_attach_mtd_dev: bad VID header (32185) or data offsets (32249) [ 183.968810][ T7697] FAULT_INJECTION: forcing a failure. [ 183.968810][ T7697] name failslab, interval 1, probability 0, space 0, times 0 [ 183.997541][ T7697] CPU: 1 UID: 0 PID: 7697 Comm: syz.2.411 Not tainted syzkaller #0 PREEMPT(full) [ 183.997580][ T7697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 183.997610][ T7697] Call Trace: [ 183.997622][ T7697] [ 183.997633][ T7697] dump_stack_lvl+0x100/0x190 [ 183.997682][ T7697] should_fail_ex.cold+0x5/0xa [ 183.997717][ T7697] should_failslab+0xc2/0x120 [ 183.997750][ T7697] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 183.997795][ T7697] ? vm_area_alloc+0x1f/0x160 [ 183.997833][ T7697] ? vma_merge_new_range+0x38b/0xa30 [ 183.997880][ T7697] vm_area_alloc+0x1f/0x160 [ 183.997918][ T7697] __mmap_region+0x10cc/0x29e0 [ 183.997966][ T7697] ? __pfx___mmap_region+0x10/0x10 [ 183.998010][ T7697] ? css_rstat_updated+0x1ce/0x5a0 [ 183.998046][ T7697] ? __pfx_css_rstat_updated+0x10/0x10 [ 183.998100][ T7697] ? __lock_acquire+0x4a5/0x2630 [ 183.998136][ T7697] ? update_cfs_rq_load_avg+0x51/0x550 [ 183.998179][ T7697] ? find_held_lock+0x2b/0x80 [ 183.998206][ T7697] ? finish_task_switch.isra.0+0x200/0xb80 [ 183.998238][ T7697] ? finish_task_switch.isra.0+0x200/0xb80 [ 183.998286][ T7697] ? trace_sched_exit_tp+0x13a/0x180 [ 183.998322][ T7697] ? __schedule+0x1000/0x6120 [ 183.998413][ T7697] ? rcu_is_watching+0x12/0xc0 [ 183.998458][ T7697] ? cap_capable+0x107/0x460 [ 183.998494][ T7697] mmap_region+0x180/0x3e0 [ 183.998549][ T7697] do_mmap+0xc63/0x12f0 [ 183.998591][ T7697] ? __pfx_do_mmap+0x10/0x10 [ 183.998637][ T7697] ? __pfx_down_write_killable+0x10/0x10 [ 183.998679][ T7697] vm_mmap_pgoff+0x29e/0x470 [ 183.998722][ T7697] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 183.998759][ T7697] ? do_futex+0x192/0x350 [ 183.998798][ T7697] ? __pfx_do_futex+0x10/0x10 [ 183.998853][ T7697] ksys_mmap_pgoff+0xe1/0x650 [ 183.998887][ T7697] ? __x64_sys_futex+0x34f/0x4d0 [ 183.998922][ T7697] ? __x64_sys_futex+0x358/0x4d0 [ 183.998961][ T7697] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 183.998993][ T7697] ? xfd_validate_state+0x129/0x190 [ 183.999042][ T7697] __x64_sys_mmap+0x125/0x190 [ 183.999097][ T7697] do_syscall_64+0x106/0xf80 [ 183.999124][ T7697] ? clear_bhb_loop+0x40/0x90 [ 183.999158][ T7697] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.999187][ T7697] RIP: 0033:0x7fb5e719c819 [ 183.999212][ T7697] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 183.999240][ T7697] RSP: 002b:00007fb5e800d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 183.999267][ T7697] RAX: ffffffffffffffda RBX: 00007fb5e7415fa0 RCX: 00007fb5e719c819 [ 183.999286][ T7697] RDX: 0000000000000005 RSI: 0000000000020009 RDI: 0000000000000000 [ 183.999304][ T7697] RBP: 00007fb5e7232c91 R08: 0000000000000008 R09: 0000000001008000 [ 183.999321][ T7697] R10: 0000000000000eb2 R11: 0000000000000246 R12: 0000000000000000 [ 183.999338][ T7697] R13: 00007fb5e7416038 R14: 00007fb5e7415fa0 R15: 00007ffd50c60ac8 [ 183.999377][ T7697] [ 186.286975][ T7739] FAULT_INJECTION: forcing a failure. [ 186.286975][ T7739] name fail_futex, interval 1, probability 0, space 0, times 0 [ 186.332738][ T7739] CPU: 0 UID: 0 PID: 7739 Comm: syz.3.417 Not tainted syzkaller #0 PREEMPT(full) [ 186.332776][ T7739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 186.332792][ T7739] Call Trace: [ 186.332801][ T7739] [ 186.332810][ T7739] dump_stack_lvl+0x100/0x190 [ 186.332866][ T7739] should_fail_ex.cold+0x5/0xa [ 186.332899][ T7739] get_futex_key+0x1d2/0x1620 [ 186.332938][ T7739] ? __pfx_get_futex_key+0x10/0x10 [ 186.332986][ T7739] futex_wake+0xea/0x530 [ 186.333031][ T7739] ? __pfx_futex_wake+0x10/0x10 [ 186.333077][ T7739] ? putname+0xb1/0x110 [ 186.333107][ T7739] ? kmem_cache_free+0x124/0x6a0 [ 186.333156][ T7739] do_futex+0x32b/0x350 [ 186.333191][ T7739] ? __pfx_do_futex+0x10/0x10 [ 186.333224][ T7739] ? __pfx_do_sys_openat2+0x10/0x10 [ 186.333264][ T7739] ? __fget_files+0x21f/0x3d0 [ 186.333296][ T7739] __x64_sys_futex+0x34f/0x4d0 [ 186.333336][ T7739] ? __x64_sys_openat+0x12d/0x210 [ 186.333375][ T7739] ? __pfx___x64_sys_futex+0x10/0x10 [ 186.333426][ T7739] do_syscall_64+0x106/0xf80 [ 186.333454][ T7739] ? clear_bhb_loop+0x40/0x90 [ 186.333489][ T7739] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 186.333514][ T7739] RIP: 0033:0x7fe54739c819 [ 186.333537][ T7739] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 186.333563][ T7739] RSP: 002b:00007fe54824d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 186.333590][ T7739] RAX: ffffffffffffffda RBX: 00007fe547615fa8 RCX: 00007fe54739c819 [ 186.333607][ T7739] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe547615fac [ 186.333623][ T7739] RBP: 00007fe547615fa0 R08: 0000000000000000 R09: 0000000000000000 [ 186.333639][ T7739] R10: 000000000000000c R11: 0000000000000246 R12: 0000000000000000 [ 186.333655][ T7739] R13: 00007fe547616038 R14: 00007fffd6cee020 R15: 00007fffd6cee108 [ 186.333689][ T7739] [ 186.875869][ T7757] FAULT_INJECTION: forcing a failure. [ 186.875869][ T7757] name failslab, interval 1, probability 0, space 0, times 0 [ 186.919689][ T7757] CPU: 1 UID: 0 PID: 7757 Comm: syz.1.422 Not tainted syzkaller #0 PREEMPT(full) [ 186.919725][ T7757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 186.919742][ T7757] Call Trace: [ 186.919752][ T7757] [ 186.919761][ T7757] dump_stack_lvl+0x100/0x190 [ 186.919807][ T7757] should_fail_ex.cold+0x5/0xa [ 186.919840][ T7757] should_failslab+0xc2/0x120 [ 186.919871][ T7757] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 186.919910][ T7757] ? alloc_vfsmnt+0x23/0x6a0 [ 186.919945][ T7757] ? file_open_name+0x1a0/0x3b0 [ 186.919991][ T7757] alloc_vfsmnt+0x23/0x6a0 [ 186.920039][ T7757] mnt_clone_internal+0x81/0x250 [ 186.920070][ T7757] acct_on+0xd7/0x9e0 [ 186.920109][ T7757] ? __pfx_acct_on+0x10/0x10 [ 186.920150][ T7757] ? bpf_lsm_capable+0x9/0x10 [ 186.920178][ T7757] ? security_capable+0x80/0x260 [ 186.920210][ T7757] __x64_sys_acct+0x81/0x1e0 [ 186.920252][ T7757] ? lockdep_hardirqs_on+0x78/0x100 [ 186.920280][ T7757] do_syscall_64+0x106/0xf80 [ 186.920308][ T7757] ? clear_bhb_loop+0x40/0x90 [ 186.920343][ T7757] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 186.920372][ T7757] RIP: 0033:0x7fc4edd9c819 [ 186.920395][ T7757] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 186.920423][ T7757] RSP: 002b:00007fc4ebfee028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 186.920452][ T7757] RAX: ffffffffffffffda RBX: 00007fc4ee015fa0 RCX: 00007fc4edd9c819 [ 186.920470][ T7757] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000c40 [ 186.920487][ T7757] RBP: 00007fc4ede32c91 R08: 0000000000000000 R09: 0000000000000000 [ 186.920502][ T7757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 186.920518][ T7757] R13: 00007fc4ee016038 R14: 00007fc4ee015fa0 R15: 00007ffc1c8f77d8 [ 186.920557][ T7757] [ 187.334248][ T7766] mmap: syz.1.424 (7766): VmData 29310976 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 187.647605][ T7754] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 187.659962][ T7754] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 187.675353][ T7754] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 187.702589][ T7754] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 188.530360][ T7789] FAULT_INJECTION: forcing a failure. [ 188.530360][ T7789] name fail_futex, interval 1, probability 0, space 0, times 0 [ 188.546307][ T7789] CPU: 1 UID: 0 PID: 7789 Comm: syz.3.429 Not tainted syzkaller #0 PREEMPT(full) [ 188.546344][ T7789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 188.546360][ T7789] Call Trace: [ 188.546369][ T7789] [ 188.546381][ T7789] dump_stack_lvl+0x100/0x190 [ 188.546426][ T7789] should_fail_ex.cold+0x5/0xa [ 188.546458][ T7789] get_futex_key+0x1d2/0x1620 [ 188.546500][ T7789] ? __pfx_get_futex_key+0x10/0x10 [ 188.546550][ T7789] futex_wake+0xea/0x530 [ 188.546595][ T7789] ? __pfx_futex_wake+0x10/0x10 [ 188.546640][ T7789] ? putname+0xb1/0x110 [ 188.546671][ T7789] ? kmem_cache_free+0x124/0x6a0 [ 188.546719][ T7789] do_futex+0x32b/0x350 [ 188.546755][ T7789] ? __pfx_do_futex+0x10/0x10 [ 188.546789][ T7789] ? __pfx_do_sys_openat2+0x10/0x10 [ 188.546839][ T7789] ? __fget_files+0x21f/0x3d0 [ 188.546872][ T7789] __x64_sys_futex+0x34f/0x4d0 [ 188.546913][ T7789] ? __x64_sys_openat+0x12d/0x210 [ 188.546952][ T7789] ? __pfx___x64_sys_futex+0x10/0x10 [ 188.547003][ T7789] do_syscall_64+0x106/0xf80 [ 188.547030][ T7789] ? clear_bhb_loop+0x40/0x90 [ 188.547062][ T7789] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 188.547090][ T7789] RIP: 0033:0x7fe54739c819 [ 188.547112][ T7789] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 188.547140][ T7789] RSP: 002b:00007fe54824d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 188.547164][ T7789] RAX: ffffffffffffffda RBX: 00007fe547615fa8 RCX: 00007fe54739c819 [ 188.547182][ T7789] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe547615fac [ 188.547198][ T7789] RBP: 00007fe547615fa0 R08: 0000000000000000 R09: 0000000000000000 [ 188.547214][ T7789] R10: 000000000000000c R11: 0000000000000246 R12: 0000000000000000 [ 188.547229][ T7789] R13: 00007fe547616038 R14: 00007fffd6cee020 R15: 00007fffd6cee108 [ 188.547264][ T7789] [ 189.533324][ T5834] Bluetooth: hci0: command 0x0c1a tx timeout [ 189.622595][ T7819] netlink: 28 bytes leftover after parsing attributes in process `syz.0.433'. [ 189.693867][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout [ 189.693931][ T5826] Bluetooth: hci1: command 0x0c1a tx timeout [ 189.708531][ T7819] bridge0: port 2(bridge_slave_1) entered disabled state [ 189.753596][ T7819] bridge_slave_1 (unregistering): left allmulticast mode [ 189.763911][ T7819] bridge_slave_1 (unregistering): left promiscuous mode [ 189.773472][ T5826] Bluetooth: hci3: command 0x0c1a tx timeout [ 189.781293][ T7819] bridge0: port 2(bridge_slave_1) entered disabled state [ 192.751266][ T7921] FAULT_INJECTION: forcing a failure. [ 192.751266][ T7921] name failslab, interval 1, probability 0, space 0, times 0 [ 192.794477][ T7921] CPU: 1 UID: 0 PID: 7921 Comm: syz.0.452 Not tainted syzkaller #0 PREEMPT(full) [ 192.794515][ T7921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 192.794530][ T7921] Call Trace: [ 192.794540][ T7921] [ 192.794550][ T7921] dump_stack_lvl+0x100/0x190 [ 192.794596][ T7921] should_fail_ex.cold+0x5/0xa [ 192.794630][ T7921] ? iovec_from_user+0x8d/0x140 [ 192.794664][ T7921] should_failslab+0xc2/0x120 [ 192.794694][ T7921] __kmalloc_noprof+0xe0/0x850 [ 192.794741][ T7921] iovec_from_user+0x8d/0x140 [ 192.794778][ T7921] __import_iovec+0x81/0x640 [ 192.794821][ T7921] import_iovec+0x82/0xb0 [ 192.794856][ T7921] __do_sys_vmsplice+0x202/0x14f0 [ 192.794900][ T7921] ? __pfx___do_sys_vmsplice+0x10/0x10 [ 192.794933][ T7921] ? get_pid_task+0x106/0x250 [ 192.794970][ T7921] ? find_held_lock+0x2b/0x80 [ 192.795005][ T7921] ? find_held_lock+0x2b/0x80 [ 192.795030][ T7921] ? ksys_write+0x190/0x250 [ 192.795056][ T7921] ? ksys_write+0x190/0x250 [ 192.795101][ T7921] ? __fget_files+0x21f/0x3d0 [ 192.795143][ T7921] ? fput+0x79/0x100 [ 192.795175][ T7921] ? ksys_write+0x1ac/0x250 [ 192.795201][ T7921] ? __pfx_ksys_write+0x10/0x10 [ 192.795238][ T7921] ? do_syscall_64+0x106/0xf80 [ 192.795264][ T7921] do_syscall_64+0x106/0xf80 [ 192.795290][ T7921] ? clear_bhb_loop+0x40/0x90 [ 192.795324][ T7921] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 192.795352][ T7921] RIP: 0033:0x7f51a599c819 [ 192.795374][ T7921] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 192.795399][ T7921] RSP: 002b:00007f51a67f9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000116 [ 192.795423][ T7921] RAX: ffffffffffffffda RBX: 00007f51a5c15fa0 RCX: 00007f51a599c819 [ 192.795441][ T7921] RDX: 0000000000000009 RSI: 0000200000000040 RDI: 0000000000000003 [ 192.795457][ T7921] RBP: 00007f51a67f9090 R08: 0000000000000000 R09: 0000000000000000 [ 192.795473][ T7921] R10: 000000000000000d R11: 0000000000000246 R12: 0000000000000001 [ 192.795488][ T7921] R13: 00007f51a5c16038 R14: 00007f51a5c15fa0 R15: 00007ffd72d98348 [ 192.795524][ T7921] [ 192.851575][ T7918] netlink: 28 bytes leftover after parsing attributes in process `syz.1.451'. [ 193.245464][ T7918] veth0_macvtap: left promiscuous mode [ 194.426305][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.432686][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.402249][ T5826] Bluetooth: hci3: Malformed Event: 0x13 [ 197.412329][ T7991] [U] [ 197.415188][ T7991] [U] [ 197.417881][ T7991] [U] [ 197.420642][ T7991] [U] [ 197.451389][ T7991] [U] [ 197.454199][ T7991] [U] [ 197.456965][ T7991] [U] [ 197.459643][ T7991] [U] [ 197.489282][ T7991] [U] [ 197.492026][ T7991] [U] [ 197.494734][ T7991] [U] [ 197.497422][ T7991] [U] [ 197.605244][ T7991] [U] [ 197.607985][ T7991] [U] [ 197.610679][ T7991] [U] [ 197.613358][ T7991] [U] [ 197.616471][ T7991] [U] [ 197.619186][ T7991] [U] [ 197.621879][ T7991] [U] [ 197.624680][ T7991] [U] [ 197.650810][ T7991] [U] [ 197.653558][ T7991] [U] [ 197.656241][ T7991] [U] [ 197.659005][ T7991] [U] [ 197.714736][ T7991] [U] [ 197.717507][ T7991] [U] [ 197.720228][ T7991] [U] [ 197.722949][ T7991] [U] [ 197.764995][ T7991] [U] [ 197.767719][ T7991] [U] [ 197.770400][ T7991] [U] [ 197.773075][ T7991] [U] [ 197.797777][ T7991] [U] [ 197.800518][ T7991] [U] [ 197.803285][ T7991] [U] [ 197.805956][ T7991] [U] [ 197.828341][ T7991] [U] [ 197.831059][ T7991] [U] [ 197.833735][ T7991] [U] [ 197.836405][ T7991] [U] [ 197.879361][ T7991] [U] [ 197.882077][ T7991] [U] [ 197.884785][ T7991] [U] [ 197.887475][ T7991] [U] [ 197.936268][ T7991] [U] [ 197.938997][ T7991] [U] [ 197.941758][ T7991] [U] [ 197.944445][ T7991] [U] [ 197.993607][ T7991] [U] [ 197.996361][ T7991] [U] [ 197.999043][ T7991] [U] [ 198.001741][ T7991] [U] [ 198.036043][ T7991] [U] [ 198.038787][ T7991] [U] [ 198.041505][ T7991] [U] [ 198.044183][ T7991] [U] [ 198.087915][ T7991] [U] [ 198.090670][ T7991] [U] [ 198.093387][ T7991] [U] [ 198.096103][ T7991] [U] [ 198.127938][ T7991] [U] [ 198.130744][ T7991] [U] [ 198.133469][ T7991] [U] [ 198.136185][ T7991] [U] [ 198.140349][ T7991] [U] [ 198.143093][ T7991] [U] [ 198.145820][ T7991] [U] [ 198.148544][ T7991] [U] [ 198.218181][ T7991] [U] [ 198.220963][ T7991] [U] [ 198.223762][ T7991] [U] [ 198.226489][ T7991] [U] [ 198.249538][ T7991] [U] [ 198.252293][ T7991] [U] [ 198.254998][ T7991] [U] [ 198.257699][ T7991] [U] [ 198.270915][ T7991] [U] [ 199.070000][ T7987] kexec: Could not allocate control_code_buffer [ 199.222047][ T8024] FAULT_INJECTION: forcing a failure. [ 199.222047][ T8024] name failslab, interval 1, probability 0, space 0, times 0 [ 199.234850][ T8024] CPU: 1 UID: 0 PID: 8024 Comm: syz.3.472 Not tainted syzkaller #0 PREEMPT(full) [ 199.234887][ T8024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 199.234906][ T8024] Call Trace: [ 199.234915][ T8024] [ 199.234926][ T8024] dump_stack_lvl+0x100/0x190 [ 199.234976][ T8024] should_fail_ex.cold+0x5/0xa [ 199.235012][ T8024] should_failslab+0xc2/0x120 [ 199.235045][ T8024] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 199.235091][ T8024] ? alloc_inode+0x68/0x250 [ 199.235132][ T8024] ? simple_start_creating+0xb0/0x110 [ 199.235163][ T8024] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 199.235198][ T8024] alloc_inode+0x68/0x250 [ 199.235237][ T8024] new_inode+0x22/0x1c0 [ 199.235277][ T8024] __debugfs_create_file+0x105/0x4f0 [ 199.235316][ T8024] debugfs_create_file_full+0x41/0x60 [ 199.235353][ T8024] ref_tracker_dir_debugfs+0x19e/0x2e0 [ 199.235394][ T8024] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 199.235431][ T8024] ? find_held_lock+0x2b/0x80 [ 199.235501][ T8024] ? lockdep_init_map_type+0x5c/0x250 [ 199.235545][ T8024] preinit_net.part.0+0x437/0x8f0 [ 199.235577][ T8024] copy_net_ns+0x339/0x7c0 [ 199.235610][ T8024] create_new_namespaces+0x3ea/0xac0 [ 199.235651][ T8024] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 199.235686][ T8024] ksys_unshare+0x473/0xad0 [ 199.235725][ T8024] ? __pfx_ksys_unshare+0x10/0x10 [ 199.235775][ T8024] __x64_sys_unshare+0x31/0x40 [ 199.235813][ T8024] do_syscall_64+0x106/0xf80 [ 199.235840][ T8024] ? clear_bhb_loop+0x40/0x90 [ 199.235878][ T8024] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.235908][ T8024] RIP: 0033:0x7fe54739c819 [ 199.235931][ T8024] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 199.235957][ T8024] RSP: 002b:00007fe54824d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 199.235985][ T8024] RAX: ffffffffffffffda RBX: 00007fe547615fa0 RCX: 00007fe54739c819 [ 199.236004][ T8024] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 199.236019][ T8024] RBP: 00007fe547432c91 R08: 0000000000000000 R09: 0000000000000000 [ 199.236034][ T8024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 199.236049][ T8024] R13: 00007fe547616038 R14: 00007fe547615fa0 R15: 00007fffd6cee108 [ 199.236084][ T8024] [ 199.236096][ T8024] debugfs: out of free dentries, can not create file 'net_notrefcnt@ffff888055eda978' [ 199.478406][ T8026] Unable to find swap-space signature [ 200.474663][ T29] audit: type=1807 audit(1775192288.180:24): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0 [ 200.498950][ T29] audit: type=1802 audit(1775192288.180:25): pid=8050 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.0.477" res=0 errno=0 [ 200.698641][ T8056] block nbd0: Unsupported socket: should be TCP or UNIX. [ 200.760434][ T8050] ima: policy update failed [ 200.766921][ T29] audit: type=1802 audit(1775192288.469:26): pid=8050 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.477" res=0 errno=0 [ 201.701838][ T8077] FAULT_INJECTION: forcing a failure. [ 201.701838][ T8077] name fail_futex, interval 1, probability 0, space 0, times 0 [ 201.725189][ T8077] CPU: 1 UID: 0 PID: 8077 Comm: syz.3.483 Not tainted syzkaller #0 PREEMPT(full) [ 201.725228][ T8077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 201.725246][ T8077] Call Trace: [ 201.725255][ T8077] [ 201.725266][ T8077] dump_stack_lvl+0x100/0x190 [ 201.725316][ T8077] should_fail_ex.cold+0x5/0xa [ 201.725350][ T8077] get_futex_key+0x1d2/0x1620 [ 201.725391][ T8077] ? __pfx_get_futex_key+0x10/0x10 [ 201.725441][ T8077] futex_wake+0xea/0x530 [ 201.725489][ T8077] ? __pfx_futex_wake+0x10/0x10 [ 201.725537][ T8077] ? putname+0xb1/0x110 [ 201.725567][ T8077] ? kmem_cache_free+0x124/0x6a0 [ 201.725624][ T8077] do_futex+0x32b/0x350 [ 201.725664][ T8077] ? __pfx_do_futex+0x10/0x10 [ 201.725700][ T8077] ? __pfx_do_sys_openat2+0x10/0x10 [ 201.725743][ T8077] ? __fget_files+0x21f/0x3d0 [ 201.725775][ T8077] __x64_sys_futex+0x34f/0x4d0 [ 201.725816][ T8077] ? __x64_sys_openat+0x12d/0x210 [ 201.725856][ T8077] ? __pfx___x64_sys_futex+0x10/0x10 [ 201.725908][ T8077] do_syscall_64+0x106/0xf80 [ 201.725937][ T8077] ? clear_bhb_loop+0x40/0x90 [ 201.725972][ T8077] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 201.726001][ T8077] RIP: 0033:0x7fe54739c819 [ 201.726026][ T8077] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 201.726053][ T8077] RSP: 002b:00007fe54824d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 201.726080][ T8077] RAX: ffffffffffffffda RBX: 00007fe547615fa8 RCX: 00007fe54739c819 [ 201.726099][ T8077] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe547615fac [ 201.726117][ T8077] RBP: 00007fe547615fa0 R08: 0000000000000000 R09: 0000000000000000 [ 201.726135][ T8077] R10: 000000000000000b R11: 0000000000000246 R12: 0000000000000000 [ 201.726151][ T8077] R13: 00007fe547616038 R14: 00007fffd6cee020 R15: 00007fffd6cee108 [ 201.726190][ T8077] [ 202.256115][ T8081] netlink: 12 bytes leftover after parsing attributes in process `syz.1.482'. [ 203.348421][ T8113] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 203.355022][ T8113] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 204.781063][ T8158] Unable to find swap-space signature [ 207.780344][ T8201] ubi0: attaching mtd0 [ 207.812299][ T8201] ubi0: scanning is finished [ 208.147970][ T8201] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 208.155887][ T8201] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 208.172460][ T8201] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 208.192402][ T8201] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 208.226985][ T8201] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 208.252515][ T8201] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 208.351933][ T8201] ubi0: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 2609190128 [ 208.460564][ T8201] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 208.492631][ T8207] ubi0: background thread "ubi_bgt0d" started, PID 8207 [ 209.026277][ T8221] netlink: 8 bytes leftover after parsing attributes in process `syz.1.515'. [ 209.061899][ T8227] vivid-007: ================= START STATUS ================= [ 209.070094][ T8227] vivid-007: Generate PTS: true [ 209.080289][ T8227] vivid-007: Generate SCR: true [ 209.085250][ T8227] tpg source WxH: 320x240 (Y'CbCr) [ 209.108127][ T8227] tpg field: 1 [ 209.111635][ T8227] tpg crop: (0,0)/320x240 [ 209.115988][ T8227] tpg compose: (0,0)/320x240 [ 209.132362][ T8227] tpg colorspace: 8 [ 209.136303][ T8227] tpg transfer function: 0/0 [ 209.149506][ T8227] tpg Y'CbCr encoding: 0/0 [ 209.160711][ T8227] tpg quantization: 0/0 [ 209.172671][ T8227] tpg RGB range: 0/2 [ 209.216668][ T8227] vivid-007: ================== END STATUS ================== [ 209.319652][ T8227] Invalid ELF header magic: != ELF [ 209.881394][ T8246] Invalid ELF header magic: != ELF [ 210.195000][ T8257] usb usb35: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 210.258076][ T8257] vhci_hcd vhci_hcd.1: SetHubDepth req not supported for USB 2.0 roothub [ 210.924840][ T8281] netlink: 'syz.2.528': attribute type 10 has an invalid length. [ 210.949552][ T8281] netlink: 330 bytes leftover after parsing attributes in process `syz.2.528'. [ 211.360298][ T8293] vivid-007: ================= START STATUS ================= [ 211.368190][ T8293] vivid-007: Generate PTS: true [ 211.377388][ T8293] vivid-007: Generate SCR: true [ 211.382331][ T8293] tpg source WxH: 320x240 (Y'CbCr) [ 211.397306][ T8293] tpg field: 1 [ 211.407318][ T8293] tpg crop: (0,0)/320x240 [ 211.412200][ T8293] tpg compose: (0,0)/320x240 [ 211.416917][ T8293] tpg colorspace: 8 [ 211.438980][ T8293] tpg transfer function: 0/0 [ 211.443889][ T8293] tpg Y'CbCr encoding: 0/0 [ 211.456985][ T8293] tpg quantization: 0/0 [ 211.461201][ T8293] tpg RGB range: 0/2 [ 211.465266][ T8293] vivid-007: ================== END STATUS ================== [ 211.644149][ T8295] Invalid ELF header magic: != ELF [ 213.139803][ T8316] random: crng reseeded on system resumption [ 213.399992][ T8318] FAULT_INJECTION: forcing a failure. [ 213.399992][ T8318] name failslab, interval 1, probability 0, space 0, times 0 [ 213.413018][ T8318] CPU: 1 UID: 0 PID: 8318 Comm: syz.0.538 Not tainted syzkaller #0 PREEMPT(full) [ 213.413058][ T8318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 213.413077][ T8318] Call Trace: [ 213.413086][ T8318] [ 213.413097][ T8318] dump_stack_lvl+0x100/0x190 [ 213.413146][ T8318] should_fail_ex.cold+0x5/0xa [ 213.413183][ T8318] should_failslab+0xc2/0x120 [ 213.413216][ T8318] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 213.413262][ T8318] ? alloc_empty_file_noaccount+0x23/0xd0 [ 213.413310][ T8318] alloc_empty_file_noaccount+0x23/0xd0 [ 213.413351][ T8318] alloc_file_pseudo_noaccount+0x13a/0x230 [ 213.413400][ T8318] ? __pfx_alloc_file_pseudo_noaccount+0x10/0x10 [ 213.413448][ T8318] ? iput+0x3a/0x40 [ 213.413487][ T8318] bdev_file_open_by_dev+0x13a/0x210 [ 213.413534][ T8318] blkdev_bszset+0x170/0x240 [ 213.413577][ T8318] ? __pfx_blkdev_bszset+0x10/0x10 [ 213.413620][ T8318] ? find_held_lock+0x2b/0x80 [ 213.413647][ T8318] ? __fget_files+0x215/0x3d0 [ 213.413673][ T8318] ? hook_file_ioctl_common+0x146/0x410 [ 213.413714][ T8318] blkdev_ioctl+0x513/0x6f0 [ 213.413757][ T8318] ? __pfx_blkdev_ioctl+0x10/0x10 [ 213.413805][ T8318] ? __pfx_blkdev_ioctl+0x10/0x10 [ 213.413850][ T8318] __x64_sys_ioctl+0x18e/0x210 [ 213.413896][ T8318] do_syscall_64+0x106/0xf80 [ 213.413929][ T8318] ? clear_bhb_loop+0x40/0x90 [ 213.413966][ T8318] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 213.413996][ T8318] RIP: 0033:0x7f51a599c819 [ 213.414021][ T8318] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 213.414050][ T8318] RSP: 002b:00007f51a67f9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 213.414077][ T8318] RAX: ffffffffffffffda RBX: 00007f51a5c15fa0 RCX: 00007f51a599c819 [ 213.414097][ T8318] RDX: 00002000000000c0 RSI: 0000000040081271 RDI: 0000000000000004 [ 213.414114][ T8318] RBP: 00007f51a5a32c91 R08: 0000000000000000 R09: 0000000000000000 [ 213.414132][ T8318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 213.414149][ T8318] R13: 00007f51a5c16038 R14: 00007f51a5c15fa0 R15: 00007ffd72d98348 [ 213.414188][ T8318] [ 213.704943][ T8318] FAULT_INJECTION: forcing a failure. [ 213.704943][ T8318] name failslab, interval 1, probability 0, space 0, times 0 [ 213.717927][ T8318] CPU: 1 UID: 0 PID: 8318 Comm: syz.0.538 Not tainted syzkaller #0 PREEMPT(full) [ 213.717966][ T8318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 213.717983][ T8318] Call Trace: [ 213.717998][ T8318] [ 213.718008][ T8318] dump_stack_lvl+0x100/0x190 [ 213.718075][ T8318] should_fail_ex.cold+0x5/0xa [ 213.718115][ T8318] should_failslab+0xc2/0x120 [ 213.718149][ T8318] __kmalloc_cache_noprof+0x7a/0x6f0 [ 213.718189][ T8318] ? tomoyo_open_control+0x43d/0xa20 [ 213.718217][ T8318] ? lockdep_init_map_type+0x5c/0x250 [ 213.718263][ T8318] tomoyo_open_control+0x43d/0xa20 [ 213.718299][ T8318] do_dentry_open+0x6d8/0x1660 [ 213.718327][ T8318] ? __pfx_tomoyo_open+0x10/0x10 [ 213.718386][ T8318] vfs_open+0x82/0x3f0 [ 213.718434][ T8318] path_openat+0x208c/0x31a0 [ 213.718474][ T8318] ? futex_unqueue+0x13d/0x2c0 [ 213.718512][ T8318] ? stack_depot_save_flags+0x27/0x9d0 [ 213.718552][ T8318] ? __pfx_path_openat+0x10/0x10 [ 213.718584][ T8318] ? kasan_save_stack+0x3f/0x50 [ 213.718608][ T8318] ? kasan_save_stack+0x30/0x50 [ 213.718632][ T8318] ? kasan_save_track+0x14/0x30 [ 213.718655][ T8318] ? __kasan_slab_alloc+0x89/0x90 [ 213.718681][ T8318] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 213.718724][ T8318] ? do_getname+0x35/0x390 [ 213.718760][ T8318] do_file_open+0x20e/0x430 [ 213.718795][ T8318] ? __pfx_do_file_open+0x10/0x10 [ 213.718860][ T8318] ? find_held_lock+0x2b/0x80 [ 213.718888][ T8318] ? __might_fault+0xc5/0x140 [ 213.718930][ T8318] ? __might_fault+0xc5/0x140 [ 213.718978][ T8318] file_open_name+0x198/0x3b0 [ 213.719019][ T8318] ? __pfx_file_open_name+0x10/0x10 [ 213.719064][ T8318] ? do_getname+0x191/0x390 [ 213.719106][ T8318] acct_on+0xa4/0x9e0 [ 213.719148][ T8318] ? __pfx_acct_on+0x10/0x10 [ 213.719192][ T8318] ? bpf_lsm_capable+0x9/0x10 [ 213.719224][ T8318] ? security_capable+0x80/0x260 [ 213.719257][ T8318] __x64_sys_acct+0x81/0x1e0 [ 213.719299][ T8318] ? lockdep_hardirqs_on+0x78/0x100 [ 213.719329][ T8318] do_syscall_64+0x106/0xf80 [ 213.719357][ T8318] ? clear_bhb_loop+0x40/0x90 [ 213.719400][ T8318] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 213.719431][ T8318] RIP: 0033:0x7f51a599c819 [ 213.719453][ T8318] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 213.719481][ T8318] RSP: 002b:00007f51a67f9028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 213.719508][ T8318] RAX: ffffffffffffffda RBX: 00007f51a5c15fa0 RCX: 00007f51a599c819 [ 213.719528][ T8318] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000c40 [ 213.719545][ T8318] RBP: 00007f51a5a32c91 R08: 0000000000000000 R09: 0000000000000000 [ 213.719563][ T8318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 213.719580][ T8318] R13: 00007f51a5c16038 R14: 00007f51a5c15fa0 R15: 00007ffd72d98348 [ 213.719619][ T8318] [ 214.424664][ T8334] ubi3: attaching mtd1 [ 214.429065][ T8334] ubi3 error: ubi_attach_mtd_dev: bad VID header (32185) or data offsets (32249) [ 214.647923][ T8330] pci 0000:00:00.0: MSI/MSI-X allowed for future drivers [ 215.282168][ T8360] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(3) [ 216.221441][ T8375] netlink: 32 bytes leftover after parsing attributes in process `syz.3.549'. [ 216.943955][ T8384] ubi3: attaching mtd1 [ 216.948438][ T8384] ubi3 error: ubi_attach_mtd_dev: bad VID header (32185) or data offsets (32249) [ 218.045406][ T5826] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 219.951808][ T8429] openvswitch: netlink: Duplicate key (type 15). [ 220.346414][ T8437] ubi3: attaching mtd1 [ 220.350557][ T8437] ubi3 error: ubi_attach_mtd_dev: bad VID header (32185) or data offsets (32249) [ 220.610926][ T8442] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 220.778539][ T8447] netlink: 28 bytes leftover after parsing attributes in process `syz.3.568'. [ 221.792097][ T8479] ubi3: attaching mtd1 [ 221.796218][ T8479] ubi3 error: ubi_attach_mtd_dev: bad VID header (32185) or data offsets (32249) [ 222.030722][ T8488] ubi31: attaching mtd1 [ 222.043950][ T8488] ubi31 error: ubi_attach_mtd_dev: bad VID header (32185) or data offsets (32249) [ 223.194364][ T8521] FAULT_INJECTION: forcing a failure. [ 223.194364][ T8521] name failslab, interval 1, probability 0, space 0, times 0 [ 223.241502][ T8521] CPU: 0 UID: 0 PID: 8521 Comm: syz.3.587 Tainted: G L syzkaller #0 PREEMPT(full) [ 223.241547][ T8521] Tainted: [L]=SOFTLOCKUP [ 223.241555][ T8521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 223.241569][ T8521] Call Trace: [ 223.241577][ T8521] [ 223.241586][ T8521] dump_stack_lvl+0x100/0x190 [ 223.241632][ T8521] should_fail_ex.cold+0x5/0xa [ 223.241664][ T8521] should_failslab+0xc2/0x120 [ 223.241694][ T8521] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 223.241733][ T8521] ? security_file_alloc+0x34/0x2c0 [ 223.241770][ T8521] ? trace_kmem_cache_alloc+0xf3/0x120 [ 223.241808][ T8521] security_file_alloc+0x34/0x2c0 [ 223.241848][ T8521] init_file+0x95/0x480 [ 223.241885][ T8521] alloc_empty_file_noaccount+0x3d/0xd0 [ 223.241925][ T8521] alloc_file_pseudo_noaccount+0x13a/0x230 [ 223.241968][ T8521] ? __pfx_alloc_file_pseudo_noaccount+0x10/0x10 [ 223.242013][ T8521] ? iput+0x3a/0x40 [ 223.242053][ T8521] bdev_file_open_by_dev+0x13a/0x210 [ 223.242100][ T8521] blkdev_bszset+0x170/0x240 [ 223.242143][ T8521] ? __pfx_blkdev_bszset+0x10/0x10 [ 223.242186][ T8521] ? find_held_lock+0x2b/0x80 [ 223.242225][ T8521] ? __fget_files+0x215/0x3d0 [ 223.242252][ T8521] ? hook_file_ioctl_common+0x146/0x410 [ 223.242293][ T8521] blkdev_ioctl+0x513/0x6f0 [ 223.242337][ T8521] ? __pfx_blkdev_ioctl+0x10/0x10 [ 223.242385][ T8521] ? __pfx_blkdev_ioctl+0x10/0x10 [ 223.242431][ T8521] __x64_sys_ioctl+0x18e/0x210 [ 223.242476][ T8521] do_syscall_64+0x106/0xf80 [ 223.242504][ T8521] ? clear_bhb_loop+0x40/0x90 [ 223.242541][ T8521] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 223.242571][ T8521] RIP: 0033:0x7fe54739c819 [ 223.242595][ T8521] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 223.242623][ T8521] RSP: 002b:00007fe54824d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 223.242652][ T8521] RAX: ffffffffffffffda RBX: 00007fe547615fa0 RCX: 00007fe54739c819 [ 223.242671][ T8521] RDX: 00002000000000c0 RSI: 0000000040081271 RDI: 0000000000000004 [ 223.242690][ T8521] RBP: 00007fe547432c91 R08: 0000000000000000 R09: 0000000000000000 [ 223.242707][ T8521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 223.242724][ T8521] R13: 00007fe547616038 R14: 00007fe547615fa0 R15: 00007fffd6cee108 [ 223.242762][ T8521] [ 223.665228][ T8527] netlink: 186 bytes leftover after parsing attributes in process `syz.0.589'. [ 224.780954][ T8560] netlink: 32 bytes leftover after parsing attributes in process `syz.1.598'. [ 225.870100][ T8585] FAULT_INJECTION: forcing a failure. [ 225.870100][ T8585] name fail_futex, interval 1, probability 0, space 0, times 0 [ 225.926207][ T8585] CPU: 0 UID: 0 PID: 8585 Comm: syz.1.611 Tainted: G L syzkaller #0 PREEMPT(full) [ 225.926252][ T8585] Tainted: [L]=SOFTLOCKUP [ 225.926261][ T8585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 225.926271][ T8585] Call Trace: [ 225.926276][ T8585] [ 225.926282][ T8585] dump_stack_lvl+0x100/0x190 [ 225.926310][ T8585] should_fail_ex.cold+0x5/0xa [ 225.926329][ T8585] get_futex_key+0x295/0x1620 [ 225.926350][ T8585] ? __pfx_get_futex_key+0x10/0x10 [ 225.926367][ T8585] ? lock_acquire+0x1cf/0x380 [ 225.926393][ T8585] futex_wake+0xea/0x530 [ 225.926417][ T8585] ? __pfx_futex_wake+0x10/0x10 [ 225.926440][ T8585] ? exit_mm_release+0x19/0x30 [ 225.926463][ T8585] do_futex+0x32b/0x350 [ 225.926483][ T8585] ? __pfx_do_futex+0x10/0x10 [ 225.926501][ T8585] ? __might_fault+0xc5/0x140 [ 225.926528][ T8585] mm_release+0x24a/0x2f0 [ 225.926543][ T8585] do_exit+0x704/0x2b60 [ 225.926565][ T8585] ? __pfx_do_exit+0x10/0x10 [ 225.926584][ T8585] ? do_raw_spin_lock+0x128/0x260 [ 225.926606][ T8585] ? find_held_lock+0x2b/0x80 [ 225.926619][ T8585] ? get_signal+0x7e0/0x21e0 [ 225.926637][ T8585] do_group_exit+0xd5/0x2a0 [ 225.926658][ T8585] get_signal+0x1ec7/0x21e0 [ 225.926681][ T8585] ? __pfx_get_signal+0x10/0x10 [ 225.926698][ T8585] ? do_futex+0x192/0x350 [ 225.926719][ T8585] arch_do_signal_or_restart+0x91/0x770 [ 225.926739][ T8585] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 225.926763][ T8585] ? __pfx___x64_sys_futex+0x10/0x10 [ 225.926787][ T8585] exit_to_user_mode_loop+0x86/0x4a0 [ 225.926808][ T8585] do_syscall_64+0x668/0xf80 [ 225.926823][ T8585] ? clear_bhb_loop+0x40/0x90 [ 225.926841][ T8585] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 225.926856][ T8585] RIP: 0033:0x7fc4edd9c819 [ 225.926869][ T8585] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 225.926883][ T8585] RSP: 002b:00007fc4ebfcd0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 225.926898][ T8585] RAX: fffffffffffffe00 RBX: 00007fc4ee016098 RCX: 00007fc4edd9c819 [ 225.926910][ T8585] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fc4ee016098 [ 225.926923][ T8585] RBP: 00007fc4ee016090 R08: 0000000000000000 R09: 0000000000000000 [ 225.926936][ T8585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 225.926948][ T8585] R13: 00007fc4ee016128 R14: 00007ffc1c8f76f0 R15: 00007ffc1c8f77d8 [ 225.926976][ T8585] [ 226.270513][ T8582] pci 0000:00:00.0: MSI/MSI-X allowed for future drivers [ 227.547662][ T8623] FAULT_INJECTION: forcing a failure. [ 227.547662][ T8623] name fail_futex, interval 1, probability 0, space 0, times 0 [ 227.562057][ T8623] CPU: 1 UID: 0 PID: 8623 Comm: syz.1.615 Tainted: G L syzkaller #0 PREEMPT(full) [ 227.562106][ T8623] Tainted: [L]=SOFTLOCKUP [ 227.562116][ T8623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 227.562132][ T8623] Call Trace: [ 227.562141][ T8623] [ 227.562150][ T8623] dump_stack_lvl+0x100/0x190 [ 227.562179][ T8623] should_fail_ex.cold+0x5/0xa [ 227.562198][ T8623] get_futex_key+0x1d2/0x1620 [ 227.562219][ T8623] ? __pfx_get_futex_key+0x10/0x10 [ 227.562243][ T8623] futex_wake+0xea/0x530 [ 227.562267][ T8623] ? __pfx_futex_wake+0x10/0x10 [ 227.562291][ T8623] ? putname+0xb1/0x110 [ 227.562306][ T8623] ? kmem_cache_free+0x124/0x6a0 [ 227.562331][ T8623] do_futex+0x32b/0x350 [ 227.562350][ T8623] ? __pfx_do_futex+0x10/0x10 [ 227.562369][ T8623] ? __pfx_do_sys_openat2+0x10/0x10 [ 227.562390][ T8623] ? __fget_files+0x21f/0x3d0 [ 227.562407][ T8623] __x64_sys_futex+0x34f/0x4d0 [ 227.562427][ T8623] ? __x64_sys_openat+0x12d/0x210 [ 227.562447][ T8623] ? __pfx___x64_sys_futex+0x10/0x10 [ 227.562474][ T8623] do_syscall_64+0x106/0xf80 [ 227.562488][ T8623] ? clear_bhb_loop+0x40/0x90 [ 227.562506][ T8623] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 227.562521][ T8623] RIP: 0033:0x7fc4edd9c819 [ 227.562534][ T8623] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 227.562549][ T8623] RSP: 002b:00007fc4ebfee0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 227.562563][ T8623] RAX: ffffffffffffffda RBX: 00007fc4ee015fa8 RCX: 00007fc4edd9c819 [ 227.562582][ T8623] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc4ee015fac [ 227.562592][ T8623] RBP: 00007fc4ee015fa0 R08: 0000000000000000 R09: 0000000000000000 [ 227.562601][ T8623] R10: 000000000000000b R11: 0000000000000246 R12: 0000000000000000 [ 227.562610][ T8623] R13: 00007fc4ee016038 R14: 00007ffc1c8f76f0 R15: 00007ffc1c8f77d8 [ 227.562630][ T8623] [ 228.074335][ T8628] ubi3: attaching mtd1 [ 228.078572][ T8628] ubi3 error: ubi_attach_mtd_dev: bad VID header (32185) or data offsets (32249) [ 228.479063][ T8645] ubi3: attaching mtd1 [ 228.506921][ T8645] ubi3 error: ubi_attach_mtd_dev: bad VID header (32185) or data offsets (32249) [ 229.549628][ T8668] ubi3: attaching mtd1 [ 229.553858][ T8668] ubi3 error: ubi_attach_mtd_dev: bad VID header (32185) or data offsets (32249) [ 229.723223][ T8641] vhci_hcd vhci_hcd.1: invalid port number 14 [ 229.736694][ T8672] sd 0:0:1:0: PR command failed: 1026 [ 229.748596][ T8641] vhci_hcd vhci_hcd.1: Wrong hub descriptor type for USB 3.0 roothub. [ 229.757172][ T8672] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 229.765762][ T8672] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 230.173000][ T5826] Bluetooth: hci0: ISO packet for unknown connection handle 0 [ 231.325357][ T8714] capability: warning: `syz.0.633' uses 32-bit capabilities (legacy support in use) [ 233.335410][ T8758] QAT: failed to copy from user cfg_data. [ 233.356663][ T8762] QAT: failed to copy from user cfg_data. [ 233.628425][ T8772] FAULT_INJECTION: forcing a failure. [ 233.628425][ T8772] name failslab, interval 1, probability 0, space 0, times 0 [ 233.650974][ T8772] CPU: 1 UID: 0 PID: 8772 Comm: syz.1.643 Tainted: G L syzkaller #0 PREEMPT(full) [ 233.651021][ T8772] Tainted: [L]=SOFTLOCKUP [ 233.651031][ T8772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 233.651049][ T8772] Call Trace: [ 233.651060][ T8772] [ 233.651071][ T8772] dump_stack_lvl+0x100/0x190 [ 233.651123][ T8772] should_fail_ex.cold+0x5/0xa [ 233.651164][ T8772] should_failslab+0xc2/0x120 [ 233.651206][ T8772] __kmalloc_cache_noprof+0x7a/0x6f0 [ 233.651246][ T8772] ? vidtv_mux_create_pid_ctx_once.part.0+0x49/0x200 [ 233.651282][ T8772] vidtv_mux_create_pid_ctx_once.part.0+0x49/0x200 [ 233.651314][ T8772] vidtv_mux_init+0x8a6/0xbf0 [ 233.651346][ T8772] vidtv_start_feed+0x33e/0x4c0 [ 233.651380][ T8772] ? __pfx_vidtv_start_feed+0x10/0x10 [ 233.651414][ T8772] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 233.651454][ T8772] ? mark_held_locks+0x40/0x70 [ 233.651493][ T8772] ? __pfx_vidtv_start_feed+0x10/0x10 [ 233.651527][ T8772] dmx_ts_feed_start_filtering+0xf6/0x220 [ 233.651568][ T8772] dvb_dmxdev_start_feed+0x273/0x3f0 [ 233.651602][ T8772] dvb_dmxdev_filter_start+0x1b6/0xdd0 [ 233.651638][ T8772] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 233.651673][ T8772] dvb_demux_do_ioctl+0xe64/0x1200 [ 233.651721][ T8772] dvb_usercopy+0x167/0x340 [ 233.651752][ T8772] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 233.651790][ T8772] ? __pfx_dvb_usercopy+0x10/0x10 [ 233.651837][ T8772] ? __fget_files+0x21f/0x3d0 [ 233.651869][ T8772] dvb_demux_ioctl+0x29/0x40 [ 233.651895][ T8772] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 233.651932][ T8772] __x64_sys_ioctl+0x18e/0x210 [ 233.651977][ T8772] do_syscall_64+0x106/0xf80 [ 233.652004][ T8772] ? clear_bhb_loop+0x40/0x90 [ 233.652040][ T8772] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 233.652070][ T8772] RIP: 0033:0x7fc4edd9c819 [ 233.652095][ T8772] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 233.652124][ T8772] RSP: 002b:00007fc4ebfcd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 233.652151][ T8772] RAX: ffffffffffffffda RBX: 00007fc4ee016090 RCX: 00007fc4edd9c819 [ 233.652171][ T8772] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000002 [ 233.652196][ T8772] RBP: 00007fc4ede32c91 R08: 0000000000000000 R09: 0000000000000000 [ 233.652214][ T8772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 233.652232][ T8772] R13: 00007fc4ee016128 R14: 00007fc4ee016090 R15: 00007ffc1c8f77d8 [ 233.652276][ T8772] [ 233.652416][ T42] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI [ 233.911298][ T42] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 233.919723][ T42] CPU: 1 UID: 0 PID: 42 Comm: kworker/1:1 Tainted: G L syzkaller #0 PREEMPT(full) [ 233.930500][ T42] Tainted: [L]=SOFTLOCKUP [ 233.934816][ T42] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 233.944886][ T42] Workqueue: events vidtv_mux_tick [ 233.950016][ T42] RIP: 0010:vidtv_psi_ts_psi_write_into+0x54a/0xbc0 [ 233.956657][ T42] Code: bc 76 db f9 4c 8d 63 20 4c 89 e0 48 c1 e8 03 80 3c 28 00 0f 85 e8 04 00 00 48 8b 43 20 48 89 c2 48 89 c1 48 c1 ea 03 83 e1 07 <0f> b6 14 2a 38 ca 7f 08 84 d2 0f 85 19 05 00 00 0f b6 10 48 8b 7c [ 233.976302][ T42] RSP: 0018:ffffc90000b273f8 EFLAGS: 00010202 [ 233.982388][ T42] RAX: 0000000000000002 RBX: ffffc90000b27678 RCX: 0000000000000002 [ 233.990396][ T42] RDX: 0000000000000000 RSI: ffffffff882cd244 RDI: ffff888021680000 [ 233.998383][ T42] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000 [ 234.006359][ T42] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc90000b27698 [ 234.014345][ T42] R13: 0000000000000178 R14: 0000000000000000 R15: 0000000000000008 [ 234.022361][ T42] FS: 0000000000000000(0000) GS:ffff888124441000(0000) knlGS:0000000000000000 [ 234.031302][ T42] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 234.037982][ T42] CR2: 00007f4a16d787e8 CR3: 000000007a70c000 CR4: 00000000003526f0 [ 234.045958][ T42] Call Trace: [ 234.049290][ T42] [ 234.052227][ T42] ? __pfx_vidtv_psi_ts_psi_write_into+0x10/0x10 [ 234.058578][ T42] vidtv_psi_pmt_write_into+0x3b2/0xa70 [ 234.064151][ T42] ? __pfx_vidtv_psi_pmt_write_into+0x10/0x10 [ 234.070241][ T42] ? vidtv_psi_pat_write_into+0x56a/0x690 [ 234.076440][ T42] ? __pfx_vidtv_psi_pat_write_into+0x10/0x10 [ 234.082527][ T42] ? find_held_lock+0x2b/0x80 [ 234.087309][ T42] ? ret_from_fork_asm+0x1a/0x30 [ 234.092260][ T42] vidtv_mux_push_si+0x932/0xe80 [ 234.097215][ T42] ? __pfx_vidtv_mux_push_si+0x10/0x10 [ 234.102676][ T42] ? __lock_acquire+0x4a5/0x2630 [ 234.107629][ T42] ? inat_get_opcode_attribute+0xf/0x60 [ 234.113190][ T42] ? __pfx_vidtv_ts_pcr_write_into+0x10/0x10 [ 234.119183][ T42] ? sched_clock+0x38/0x60 [ 234.123622][ T42] vidtv_mux_tick+0xe96/0x1480 [ 234.128396][ T42] ? __lock_acquire+0x4a5/0x2630 [ 234.133361][ T42] ? __pfx_vidtv_mux_tick+0x10/0x10 [ 234.138585][ T42] ? __lock_acquire+0x4a5/0x2630 [ 234.143538][ T42] ? debug_object_deactivate+0x2e4/0x3b0 [ 234.149229][ T42] ? finish_task_switch.isra.0+0x200/0xb80 [ 234.155053][ T42] ? rcu_is_watching+0x12/0xc0 [ 234.159846][ T42] process_one_work+0xa23/0x19a0 [ 234.164900][ T42] ? __pfx_process_one_work+0x10/0x10 [ 234.170321][ T42] ? __pfx_vidtv_mux_tick+0x10/0x10 [ 234.175647][ T42] worker_thread+0x5ef/0xe50 [ 234.180297][ T42] ? kthread+0x13a/0x450 [ 234.184660][ T42] ? __pfx_worker_thread+0x10/0x10 [ 234.189902][ T42] kthread+0x370/0x450 [ 234.193997][ T42] ? __pfx_kthread+0x10/0x10 [ 234.198604][ T42] ret_from_fork+0x754/0xd80 [ 234.203217][ T42] ? __pfx_ret_from_fork+0x10/0x10 [ 234.208345][ T42] ? __switch_to+0x7b4/0x1120 [ 234.213030][ T42] ? __pfx_kthread+0x10/0x10 [ 234.217661][ T42] ret_from_fork_asm+0x1a/0x30 [ 234.222459][ T42] [ 234.225539][ T42] Modules linked in: [ 234.230120][ T42] ---[ end trace 0000000000000000 ]--- [ 234.240196][ T42] RIP: 0010:vidtv_psi_ts_psi_write_into+0x54a/0xbc0 [ 234.247018][ T42] Code: bc 76 db f9 4c 8d 63 20 4c 89 e0 48 c1 e8 03 80 3c 28 00 0f 85 e8 04 00 00 48 8b 43 20 48 89 c2 48 89 c1 48 c1 ea 03 83 e1 07 <0f> b6 14 2a 38 ca 7f 08 84 d2 0f 85 19 05 00 00 0f b6 10 48 8b 7c [ 234.267337][ T42] RSP: 0018:ffffc90000b273f8 EFLAGS: 00010202 [ 234.273608][ T42] RAX: 0000000000000002 RBX: ffffc90000b27678 RCX: 0000000000000002 [ 234.281947][ T42] RDX: 0000000000000000 RSI: ffffffff882cd244 RDI: ffff888021680000 [ 234.290030][ T42] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000 [ 234.298183][ T42] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc90000b27698 [ 234.307530][ T42] R13: 0000000000000178 R14: 0000000000000000 R15: 0000000000000008 [ 234.316550][ T42] FS: 0000000000000000(0000) GS:ffff888124441000(0000) knlGS:0000000000000000 [ 234.325837][ T42] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 234.332659][ T42] CR2: 00007fcf97582970 CR3: 00000000761c2000 CR4: 00000000003526f0 [ 234.340921][ T42] Kernel panic - not syncing: Fatal exception [ 234.347547][ T42] Kernel Offset: disabled [ 234.351960][ T42] Rebooting in 86400 seconds..