last executing test programs: 13.91504636s ago: executing program 2 (id=923): rseq$auto(&(0x7f0000000080)={0xe, 0x401, 0x0, 0x806, 0xffffffff, 0x2}, 0xab0, 0x0, 0x8000003) openat$auto_random_fops_random(0xffffffffffffff9c, &(0x7f00000001c0), 0x10400, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x8a042, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/sctp/rto_max\x00', 0x800, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x80502, 0x0) r0 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) write$auto_snd_seq_f_ops_seq_clientmgr(r0, &(0x7f0000000000)="632d1bfe595046ab5c40bd7563307acb6d16baef6176e669a216aae183cccafdd80500ffffffff0600"/56, 0x38) splice$auto(0x4, 0x0, 0x2, 0x0, 0x1000, 0xf) mmap$auto(0x0, 0x9, 0xfc, 0x1000000eb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) recvmmsg$auto(0x3, &(0x7f0000000100)={{0x0, 0x9, &(0x7f0000000080)={0x0, 0x9}, 0x7, 0x0, 0x1, 0x4}, 0x4}, 0x10000, 0x300, 0x0) listen$auto(0x3, 0x400000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/mm/transparent_hugepage/khugepaged/alloc_sleep_millisecs\x00', 0x20681, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000000c0)='5', 0x1) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) 12.731160111s ago: executing program 2 (id=928): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000040)) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) seccomp$auto(0x1, 0x0, &(0x7f0000000100)="740fb5dc698e7ba7e41f") ioctl$auto_SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000000)='N>') socket(0xb, 0x3, 0x3a) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptyv8\x00', 0x0, 0x0) ioctl$auto_TIOCMSET2(r1, 0x5418, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000000), r2) ioctl$auto_TUNSETSNDBUF2(0xffffffffffffffff, 0x400454d4, &(0x7f00000000c0)=0xc8c4) unshare$auto(0x40000080) prctl$auto_PR_SCHED_CORE_CREATE(0x23b, 0x1, 0x0, 0x41b, 0x1831) mmap$auto(0x0, 0xffffffffffffffa4, 0x10000000000df, 0xeb2, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x0) r4 = openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000000), 0x80101, 0x0) close_range$auto(0x2, 0x8, 0x0) r5 = socket(0xa, 0x1, 0x84) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vbi5\x00', 0xc0501, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'veth1\x00'}) r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) write$auto(r6, &(0x7f0000000100)='/d\xb0e`\xaf\xeb\"ef/a\x13\r\x01ldU\xb4\x9a\x91\xb2\x1b\xb9Z\xd5\xb1\xaa\xb3_\xd31\xe4O\xb558\xbf:\xc4\x85\xd4uK\xe7\xd4\xb7\x87\xbd.\x1e\xea\x9fVq\xd2\xe6\xb0\x06\xfa(\x9d]\xb6{:\xf6\xc0\"Gk|\xdf\x15\xa1\xff\"0\xffK\xf0\xc9G\x0e', 0x100000a3d9) select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1000000000001, 0x948e, 0xffffffffffffffff, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x4000008000001d, 0x7, 0x6d3e, 0x6, 0x2, 0x6]}, 0x0) write$auto_split_huge_pages_fops_huge_memory(r4, &(0x7f0000000480), 0x0) io_uring_register$auto_IORING_REGISTER_MEM_REGION(r1, 0x22, &(0x7f0000002600), 0xfffffffa) sendmsg$auto_NL802154_CMD_GET_INTERFACE(r2, &(0x7f0000000300)={0x0, 0xa6, &(0x7f0000000100)={&(0x7f0000000840)={0x14, r3, 0x305, 0x70bd2c, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4004010}, 0x4040008) mmap$auto(0x6, 0x4000000002020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) 4.710355937s ago: executing program 0 (id=957): rseq$auto(&(0x7f0000000080)={0xe, 0x401, 0x0, 0x806, 0xffffffff, 0x2}, 0xab0, 0x0, 0x8000003) rseq$auto(&(0x7f00000000c0)={0x800007, 0x9ea01ffc, 0x94b6, 0x7, 0x2, 0x3, "f689753a35f160c3317868d3da5060eb5c2d4f35fa9447038632b8fbda2577e7d67c57c14eeb13fac4e8facf3e3e19ee4251aba959931ea29460da85b34a459a75d6fdac3aa8a055031e5ba30baf80f51f495e0d4137df857f25f728a362618cc8e2c4f2a08fd26af32d1fca47d4a4f144f112dc5bf254df338ce067d387bce744a989190b83c5b621f8d59288e0d22b5a7568cd4b1232e489fdfdfd51a68f2938138991f21283f429583d6c1e46a36b9a1078a8c04169fa01dfd2ca2ed56a2e0790115852926cc1eebf5aee746505dfb755966d3ff492cd155a163d03ac833758dda49e1a307fb6e498a9258911c4d99fd835"}, 0x8, 0xfffffff3, 0x7ff) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x24040, 0x0) mprotect$auto(0x1ffffffff000, 0x100018, 0x4) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) 4.705531465s ago: executing program 1 (id=959): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) sysfs$auto(0x2, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="810b25bd7000ffdbdf2532"], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x6c, 0x697c}, 0xed71390}, 0x9a6, 0x0) 4.593986461s ago: executing program 1 (id=960): close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f00000001c0)={0x14, r1, 0x1, 0x70bd2a, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NFSD_CMD_LISTENER_SET(r2, &(0x7f0000000940)={0x0, 0xfd, &(0x7f00000002c0)={&(0x7f0000000340)={0x14, r1, 0x1, 0x70bd25, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x0) 4.530774298s ago: executing program 0 (id=961): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x10806, 0x0, 0xfffffffffffffffd) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x109001, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) write$auto(0xffffffffffffffff, 0x0, 0x8000000000000001) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rpc/auth.unix.ip/flush\x00', 0x40d81, 0x0) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000240), 0x408501, 0x0) getpid() r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), r1) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) bpf$auto_BPF_MAP_CREATE(0x0, &(0x7f0000000100)=@prog_bind_map={0xffffffffffffffff, 0xffffffffffffffff, 0x5}, 0x800) mmap$auto(0x0, 0x400006, 0xdf, 0x809b72, 0x2, 0xffffffffffffffff) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={0x0, 0xf}, 0x5b, 0x0) getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f00000000c0)={&(0x7f00000000c0), 0x5}, 0x6, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x154) socket(0x2, 0x3, 0xa) set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7ffffffffffffffb, 0x3) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) r3 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/netdevsim/netdevsim3/hwstats/l3/disable_ifindex\x00', 0x1242, 0x0) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/neigh/batadv0/mcast_solicit\x00', 0x2000, 0x0) read$auto(r4, 0x0, 0x1ff) r5 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000001200)='/sys/kernel/tracing/trace_options\x00', 0x8102, 0x0) write$auto_tracing_iter_fops_trace(r5, &(0x7f0000001240)="a7e60900", 0x4) write$auto(r3, 0x0, 0x9) 4.497309397s ago: executing program 2 (id=962): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x10806, 0x0, 0xfffffffffffffffd) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x109001, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) write$auto(0xffffffffffffffff, 0x0, 0x8000000000000001) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rpc/auth.unix.ip/flush\x00', 0x40d81, 0x0) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000240), 0x408501, 0x0) getpid() r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), r1) sendmsg$auto_NFSD_CMD_VERSION_SET(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x24000001}, 0x844) getsockopt$auto_SO_MEMINFO(r1, 0x7, 0x37, &(0x7f0000000180)='\x00', &(0x7f00000001c0)=0x5) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r2) unshare$auto(0x40000080) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0) ioctl$auto_MON_IOCX_MFETCH(r3, 0xc0109207, &(0x7f0000000100)={0x0, 0x2000004, 0x7}) pread64$auto(r3, 0x0, 0x81, 0xd) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/023/001\x00', 0x122202, 0x0) mmap$auto(0x8000000000000001, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80002, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x20882, 0x0) mlockall$auto(0x7) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) mprotect$auto(0x0, 0x806121, 0x6) close_range$auto(0x2, 0x8, 0x3000000) 4.273166981s ago: executing program 1 (id=963): rseq$auto(&(0x7f0000000140)={0xe, 0x5, 0x2c2, 0x23, 0x8007d, 0xfffffffe, "26c788a7a5024a9859acd35804093ad080405e5667c1ebdf247e1520d2c4f723c82081928a325dde6dcc8b245461261f1e847bfe4289c4a3d8893fe91794c1a983b7dec4715155f202bcb0489c4e8c9a1391f75a1e4c289bd6c51ca54f1d"}, 0x8000, 0x2000, 0x6) r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x40080, 0x0) r1 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy15/airtime_flags\x00', 0x224a1, 0x0) write$auto(r1, 0x0, 0x5) ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000400)={{0xc, 0x23, 0xa6, 0x83}, "66ac010005000000000068d190eb0d4a4cada7272464294b9183349eef4c1f028fdcc8ecc66fdd02316f064ebd893007abb4c0bbc3b822f66eaf240963110d61771552c03de65800", 0x2}) ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0) ioctl$auto_UI_SET_MSCBIT(r0, 0x40045568, 0x0) r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/set_event\x00', 0x220442, 0x0) mmap$auto(0x6, 0x202000b, 0x9, 0x17, r2, 0x8000) close_range$auto(0x2, 0x8, 0x0) mkdir$auto(0x0, 0x8001) lseek$auto(r2, 0x200006, 0x6) io_uring_setup$auto(0xfffff7fc, 0x0) mmap$auto(0x3, 0xe, 0x339, 0xeb1, r2, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) syz_clone3(&(0x7f0000000240)={0x123146000, 0x0, 0x0, 0x0, {0x3f}, 0x0, 0x0, 0x0, 0x0}, 0x58) mremap$auto(0x8, 0x0, 0x101, 0x2, 0xfffffffffffffffc) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv6/conf/netdevsim2/hop_limit\x00', 0x5014c0, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004814}, 0x8800) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/class/zram-control/hot_remove\x00', 0x8001, 0x0) r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv6/conf/tunl0/disable_policy\x00', 0xd02, 0x0) sendfile$auto(r4, r5, 0x0, 0x800048) close_range$auto(r5, 0x8, 0x0) rseq$auto(&(0x7f00000002c0)={0x401, 0x7, 0xfffffffffffff411, 0x0, 0x8, 0x7fff, "8e16ec7b4bc6f850fd318ded36d1c62640b871b33a7d22d8388adbaf5896e16a2d40c73405507d45302d209f83903fa926c5d54e85089ef10e00a73aa1eea55f1fadb7d46e8c8cac51fd"}, 0x7fff, 0x9, 0x7) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/mice\x00', 0x181383, 0x0) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vcsu\x00', 0x544282, 0x0) 2.610059667s ago: executing program 1 (id=966): close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f00000001c0)={0x14, r1, 0x1, 0x70bd2a, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NFSD_CMD_LISTENER_SET(r2, &(0x7f0000000940)={0x0, 0x300, &(0x7f00000002c0)={&(0x7f0000000340)={0x14, r1, 0x1, 0x70bd25, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x0) 2.553910079s ago: executing program 3 (id=967): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20000, 0x0) read$auto(r1, 0x0, 0x20) writev$auto(r0, &(0x7f0000000200)={0x0, 0x3}, 0x3) openat$auto_dfs_dom_ops_debugfs(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0) 2.439402774s ago: executing program 3 (id=968): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, 0x0, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0x3, 0x0, 0x7fffffff) io_uring_setup$auto(0x1d48, 0x0) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x13e, 0x0, 0xfffffffffffffffd) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) 2.202724764s ago: executing program 1 (id=969): rseq$auto(&(0x7f0000000080)={0xe, 0x401, 0x0, 0x806, 0xffffffff, 0x2}, 0xab0, 0x0, 0x8000003) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/netdevsim/del_device\x00', 0x501, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty29\x00', 0x0, 0x0) openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f00000089c0)='/sys/kernel/debug/netdevsim/netdevsim1/max_vfs\x00', 0x101000, 0x0) io_uring_setup$auto(0x7e1b, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0xfffffffffffffffd, 0xd, 0xaee, 0x948b, 0x3, 0x15f4da0a, 0x40000001, 0x3, 0x8, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffa]}, 0x0) ioctl$auto_SNDCTL_TMR_CONTINUE(r0, 0x5404, 0x0) setresuid$auto(0x8, 0x8, 0x0) setfsuid$auto(0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x129102, 0x0) mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) r2 = socket(0x1d, 0x2, 0x7) r3 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(r2, &(0x7f0000000000)=@can={0x1d, r4}, 0x6a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'vcan0\x00', 0x0}) connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r5}, 0x18) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x687ca0b, &(0x7f00000002c0)={0x0, 0xffcd}, 0x1, 0x0, 0x0, 0xb}}, 0xb6, 0x0) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop7\x00', 0x84100, 0x0) ioctl$auto_IOC_PR_RELEASE(r6, 0x801070cf, 0x0) r7 = socket(0x1d, 0x2, 0x6) bind$auto(r7, &(0x7f0000000080)=@generic={0x1d, "577908080000569be7c30b00"}, 0x13) write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000000c0)="ff0e0000", 0x4) 2.201692243s ago: executing program 0 (id=970): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) r1 = openat$auto_show_traces_fops_trace(0xffffffffffffff9c, 0x0, 0x826c0, 0x0) writev$auto(r0, 0x0, 0x6) mmap$auto(0x0, 0x400008, 0x8000000000000df, 0x9b72, 0x2, 0x8001) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x2000c000}, 0x0) modify_ldt$auto(0x3, 0x0, 0x80) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x40100, 0x0) close_range$auto(0x2, r2, 0x25e) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x1e, 0x4, 0x0) r4 = socket(0x1e, 0x3, 0xfffffff9) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r4, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) recvmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x2, &(0x7f0000000140)={0x0, 0x4da}, 0x6, 0x0, 0x8, 0x7ff}, 0x1000}, 0xffffffff, 0x4, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x230) close_range$auto(r3, 0xffffffffffffffff, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000100), r6) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000001540)={'netdevsim0\x00'}) sendmsg$auto_NET_SHAPER_CMD_GROUP(r5, &(0x7f0000001600)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYRESOCT=r0, @ANYRES16=r7, @ANYRESDEC=r1, @ANYRESOCT=0x0, @ANYRES16], 0x3c}, 0x1, 0x0, 0x0, 0x44000}, 0x0) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NFSD_CMD_LISTENER_SET(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000003100)={&(0x7f00000001c0)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x0) r9 = openat$auto_rb_simple_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/tracing_on\x00', 0x40100, 0x0) read$auto_rb_simple_fops_trace(r9, 0x0, 0x0) 2.085726204s ago: executing program 3 (id=971): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000001180)='/dev/input/mice\x00', 0x1a1382, 0x0) writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000140), 0x7111}, 0x8) r2 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000000), r0) sendmsg$auto_SMC_PNETID_ADD(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB, @ANYRES16=r2, @ANYBLOB="010029bd7000fcdbdf25020000000b00010064756d6d793000000b00020064756d6d79300000"], 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x44c0) epoll_create$auto(0x4) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0) r3 = socket(0x18, 0x5, 0x1) r4 = socket(0x11, 0x3, 0x9) sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYRESHEX=r4, @ANYRES16=0x0, @ANYRESOCT=r3], 0x1c}, 0x1, 0x0, 0x0, 0x14}, 0x1) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r7 = setfsuid$auto(0xee00) r8 = setfsuid$auto(0xee01) setresuid$auto(r7, r8, r7) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_BATADV_CMD_TP_METER(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="000326bd70e7d205df2502000040", @ANYRES16=r1, @ANYBLOB="14000000"], 0x14}, 0x1, 0x0, 0x0, 0x4c894}, 0x20000005) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYRES32=r5, @ANYRESHEX=r3], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x9}, 0x3, 0x0) close_range$auto(0x2, 0x8, 0x0) 1.997486948s ago: executing program 2 (id=972): close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f00000001c0)={0x14, r1, 0x1, 0x70bd2a, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NFSD_CMD_LISTENER_SET(r2, &(0x7f0000000940)={0x0, 0xfd, &(0x7f00000002c0)={&(0x7f0000000340)={0x14, r1, 0x1, 0x70bd25, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x0) 1.703000362s ago: executing program 2 (id=973): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) recvfrom$auto(0xffffffffffffffff, 0x0, 0x7, 0x7, 0x0, 0xfffffffffffffffd) r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x109001, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) write$auto(r1, 0x0, 0x80000000000004) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rpc/auth.unix.ip/flush\x00', 0x40d81, 0x0) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000240), 0x408501, 0x0) getpid() r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), r3) sendmsg$auto_NFSD_CMD_VERSION_SET(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000500)={0x0}, 0x1, 0x0, 0x0, 0x24000001}, 0x844) getsockopt$auto_SO_MEMINFO(r3, 0x7, 0x37, &(0x7f0000000180)='\x00', &(0x7f00000001c0)=0x5) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r4) unshare$auto(0x40000080) sendmsg$auto_NL80211_CMD_GET_KEY(r3, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="48010700", @ANYRESHEX=r2, @ANYRES32=r1, @ANYRESHEX=r0, @ANYRESOCT=r0], 0x148}, 0x1, 0x0, 0x0, 0x8805}, 0x40010) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) r5 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0) ioctl$auto_MON_IOCX_MFETCH(r5, 0xc0109207, &(0x7f0000000100)={0x0, 0x2000004, 0x7}) pread64$auto(r5, 0x0, 0x81, 0xd) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/023/001\x00', 0x122202, 0x0) mmap$auto(0x8000000000000001, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80002, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x20882, 0x0) mlockall$auto(0x7) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) mprotect$auto(0xe, 0x806121, 0x9ed) close_range$auto(0x2, 0x8, 0x0) 1.70055151s ago: executing program 3 (id=974): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x10806, 0x0, 0xfffffffffffffffd) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x109001, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) write$auto(0xffffffffffffffff, 0x0, 0x8000000000000001) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rpc/auth.unix.ip/flush\x00', 0x40d81, 0x0) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000240), 0x408501, 0x0) getpid() r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), r1) sendmsg$auto_NFSD_CMD_VERSION_SET(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x24000001}, 0x844) getsockopt$auto_SO_MEMINFO(r1, 0x7, 0x37, &(0x7f0000000180)='\x00', &(0x7f00000001c0)=0x5) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r2) unshare$auto(0x40000080) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0) ioctl$auto_MON_IOCX_MFETCH(r3, 0xc0109207, &(0x7f0000000100)={0x0, 0x2000004, 0x7}) pread64$auto(r3, 0x0, 0x81, 0xd) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/023/001\x00', 0x122202, 0x0) mmap$auto(0x8000000000000001, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80002, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x20882, 0x0) mlockall$auto(0x7) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) mprotect$auto(0x0, 0x806121, 0x6) close_range$auto(0x2, 0x8, 0x2000000) 1.696257466s ago: executing program 0 (id=981): mmap$auto(0x0, 0xb9f, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) (async) mmap$auto(0x0, 0xb9f, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/block/ram5/integrity/format\x00', 0x4a181, 0x0) read$auto(r0, 0x0, 0x20) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) acct$auto(&(0x7f0000000040)='/dev/sda1\x00') openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/usbmon28\x00', 0x20000, 0x0) (async) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/usbmon28\x00', 0x20000, 0x0) mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0x401, 0x8000) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/printk_devkmsg\x00', 0x202, 0x0) read$auto(r2, 0x0, 0x9) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) (async) r3 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r3, 0x7a7, 0x0) (async) ioctl$auto_IOCTL_VMCI_VERSION2(r3, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, 0x6) ioctl$auto_IOCTL_VMCI_NOTIFICATIONS_RECEIVE(r3, 0x7a6, 0x0) openat$auto_hwflags_ops_debugfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/ieee80211/phy0/hwflags\x00', 0x101000, 0x0) getsockopt$auto_SO_TXTIME(r3, 0x5, 0x3d, &(0x7f0000000080)='/dev/sda1\x00', &(0x7f00000000c0)=0x7) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/domainname\x00', 0x88042, 0x0) sendfile$auto(r4, r4, 0x0, 0xd021) (async) sendfile$auto(r4, r4, 0x0, 0xd021) r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x14, r5, 0x100, 0x70bd2b, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x48014}, 0x20000080) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000600)='/sys/kernel/mm/lru_gen/enabled\x00', 0x2062, 0x0) (async) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000600)='/sys/kernel/mm/lru_gen/enabled\x00', 0x2062, 0x0) write$auto(r6, &(0x7f00000001c0)='y\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r7) (async) r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r7) sendmsg$auto_NL80211_CMD_UPDATE_CONNECT_PARAMS(r7, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000240)={&(0x7f00000003c0)={0x1c, r8, 0x218, 0x70bd2d, 0x25dfdbfd, {}, [@NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0xcd}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4040}, 0x4040881) (async) sendmsg$auto_NL80211_CMD_UPDATE_CONNECT_PARAMS(r7, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000240)={&(0x7f00000003c0)={0x1c, r8, 0x218, 0x70bd2d, 0x25dfdbfd, {}, [@NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0xcd}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4040}, 0x4040881) r9 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'tunl0\x00'}) sendmsg$auto_MACSEC_CMD_UPD_RXSA(r7, &(0x7f0000006200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x14, r9, 0x23, 0x70bd27, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x400c008}, 0x0) (async) sendmsg$auto_MACSEC_CMD_UPD_RXSA(r7, &(0x7f0000006200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x14, r9, 0x23, 0x70bd27, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x400c008}, 0x0) mount_setattr$auto(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000640)={0x100030, 0x7f}, 0x287) 228.815392ms ago: executing program 2 (id=975): rseq$auto(&(0x7f0000000140)={0xe, 0x5, 0x2c2, 0x23, 0x8007d, 0xfffffffe, "26c788a7a5024a9859acd35804093ad080405e5667c1ebdf247e1520d2c4f723c82081928a325dde6dcc8b245461261f1e847bfe4289c4a3d8893fe91794c1a983b7dec4715155f202bcb0489c4e8c9a1391f75a1e4c289bd6c51ca54f1d"}, 0x8000, 0x2000, 0x6) r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x40080, 0x0) r1 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy15/airtime_flags\x00', 0x224a1, 0x0) write$auto(r1, 0x0, 0x5) ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000400)={{0xc, 0x23, 0xa6, 0x83}, "66ac010005000000000068d190eb0d4a4cada7272464294b9183349eef4c1f028fdcc8ecc66fdd02316f064ebd893007abb4c0bbc3b822f66eaf240963110d61771552c03de65800", 0x2}) ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0) ioctl$auto_UI_SET_MSCBIT(r0, 0x40045568, 0x0) r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/set_event\x00', 0x220442, 0x0) mmap$auto(0x6, 0x202000b, 0x9, 0x17, r2, 0x8000) close_range$auto(0x2, 0x8, 0x0) mkdir$auto(0x0, 0x8001) lseek$auto(r2, 0x200006, 0x6) io_uring_setup$auto(0xfffff7fc, 0x0) mmap$auto(0x3, 0xe, 0x339, 0xeb1, r2, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) syz_clone3(&(0x7f0000000240)={0x123146000, 0x0, 0x0, 0x0, {0x3f}, 0x0, 0x0, 0x0, 0x0}, 0x58) mremap$auto(0x8, 0x0, 0x101, 0x2, 0xfffffffffffffffc) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv6/conf/netdevsim2/hop_limit\x00', 0x5014c0, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004814}, 0x8800) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/class/zram-control/hot_remove\x00', 0x8001, 0x0) r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv6/conf/tunl0/disable_policy\x00', 0xd02, 0x0) sendfile$auto(r4, r5, 0x0, 0x800048) close_range$auto(r5, 0x8, 0x0) rseq$auto(&(0x7f00000002c0)={0x401, 0x7, 0xfffffffffffff411, 0x0, 0x8, 0x7fff, "8e16ec7b4bc6f850fd318ded36d1c62640b871b33a7d22d8388adbaf5896e16a2d40c73405507d45302d209f83903fa926c5d54e85089ef10e00a73aa1eea55f1fadb7d46e8c8cac51fd"}, 0x7fff, 0x9, 0x7) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/mice\x00', 0x181383, 0x0) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vcsu\x00', 0x544282, 0x0) 228.469571ms ago: executing program 3 (id=976): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20000, 0x0) read$auto(r1, 0x0, 0x20) writev$auto(r0, &(0x7f0000000200)={0x0, 0x3}, 0x3) openat$auto_dfs_dom_ops_debugfs(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0) 225.322434ms ago: executing program 0 (id=984): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001080), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r0, @ANYBLOB="810b25bd7000ffdbdf2532"], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x6c, 0x697c}, 0xed71390}, 0x9a6, 0x0) 224.78017ms ago: executing program 1 (id=985): mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) write$auto(r0, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xd8\x9c\xf7?:\x1a\xc62\x911e\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xff\x7f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\x87N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00', 0x5) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/block/nbd6/trace/act_mask\x00', 0xb02, 0x0) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000) memfd_create$auto(0x0, 0x16) sendfile$auto(r1, r1, 0x0, 0x3) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/run_estimation\x00', 0x0, 0x0) read$auto_proc_sys_file_operations_proc_sysctl(r2, 0x0, 0x0) r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) r4 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) r5 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) readahead$auto(r4, 0x8000, 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/platform/dummy_udc.4/udc/dummy_udc.4/function\x00', 0xb2282, 0x0) read$auto(0x3, 0x0, 0x7fffffff) sendmsg$auto_KSMBD_EVENT_SPNEGO_AUTHEN_RESPONSE(r5, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x0, 0x10, 0x70bd2a, 0x25dfdbfc, {}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x400c040}, 0x40004854) ioctl$auto(r4, 0x5600, r5) getcwd$auto(0x0, 0x3) mmap$auto(0x0, 0x6, 0x3, 0xfffffffffffffffb, r3, 0x8000) read$auto(r3, 0x0, 0x1f40) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) r6 = socket$nl_generic(0x10, 0x3, 0x10) preadv$auto(r6, &(0x7f0000000140)={&(0x7f00000001c0)="024cdd963da73e577cc770e9bc9b3505a832e6fa92e74d847ad062e1a8e92b78256dd79177feea6bf53fd4e1471b991312e445b59a7d9a1260f629b70bf3be6737a9411d7ad73f919cc8ad769276c2b56056a4db823d754a3080874d22dacbc575422450a3cff0362d68b4d7af9d5e61445c18fbe7e049c42ece15b56e718914b99dacda0a546b18f6abe8323e5420ec254972c28137422866565f0baf08960ddc57655b324af35f0ccf8102399b4d7fcf425942cfdab524011b357da06cd9adc1659d43154be7114e5207", 0x1}, 0x3, 0x2, 0x0) r7 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002ec0), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r6, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000040)={0x2c, r7, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x11}, 0x24000802) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000080), r8) sendmsg$auto_SMC_PNETID_ADD(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010029bd0000000b00010064756d6d793000000b00020064756d6d79300000"], 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x44c0) 98.573524ms ago: executing program 3 (id=977): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x10806, 0x0, 0xfffffffffffffffd) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x109001, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) write$auto(0xffffffffffffffff, 0x0, 0x8000000000000001) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rpc/auth.unix.ip/flush\x00', 0x40d81, 0x0) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000240), 0x408501, 0x0) getpid() r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), r1) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) bpf$auto_BPF_MAP_CREATE(0x0, &(0x7f0000000100)=@prog_bind_map={0xffffffffffffffff, 0xffffffffffffffff, 0x5}, 0x800) mmap$auto(0x0, 0x400006, 0xdf, 0x809b72, 0x2, 0xffffffffffffffff) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={0x0, 0xf}, 0x5b, 0x0) getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f00000000c0)={&(0x7f00000000c0), 0x5}, 0x6, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x154) socket(0x2, 0x3, 0xa) set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7ffffffffffffffb, 0x3) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) r3 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/netdevsim/netdevsim3/hwstats/l3/disable_ifindex\x00', 0x1242, 0x0) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/neigh/batadv0/mcast_solicit\x00', 0x2000, 0x0) read$auto(r4, 0x0, 0x1ff) r5 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000001200)='/sys/kernel/tracing/trace_options\x00', 0x8102, 0x0) write$auto_tracing_iter_fops_trace(r5, &(0x7f0000001240)="a7e60900", 0x4) write$auto(r3, 0x0, 0x9) 0s ago: executing program 0 (id=978): close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f00000001c0)={0x14, r1, 0x1, 0x70bd2a, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x0) r2 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000000), 0x103301, 0x0) ioctl$auto_RNDGETENTCNT2(r2, 0x80045200, 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x458040, 0x0) sendmsg$auto_NFSD_CMD_LISTENER_SET(r3, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)={0x14, r1, 0x1, 0x70bd25, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x0) kernel console output (not intermixed with test programs): .236106][ T8917] sk_prot_alloc+0x1a8/0x2a0 [ 331.236141][ T8917] sk_alloc+0x36/0xe30 [ 331.236167][ T8917] pptp_create+0x32/0x340 [ 331.236198][ T8917] pppox_create+0x15c/0x2c0 [ 331.236228][ T8917] __sock_create+0x339/0x8a0 [ 331.236252][ T8917] __sys_socket+0x14d/0x260 [ 331.236273][ T8917] ? __pfx___sys_socket+0x10/0x10 [ 331.236294][ T8917] ? xfd_validate_state+0x61/0x180 [ 331.236319][ T8917] __x64_sys_socket+0x72/0xb0 [ 331.236339][ T8917] ? lockdep_hardirqs_on+0x7c/0x110 [ 331.236372][ T8917] do_syscall_64+0xcd/0xf80 [ 331.236391][ T8917] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 331.236412][ T8917] RIP: 0033:0x7fbd7498f7c9 [ 331.236428][ T8917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 331.236448][ T8917] RSP: 002b:00007fbd75757038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 331.236467][ T8917] RAX: ffffffffffffffda RBX: 00007fbd74be5fa0 RCX: 00007fbd7498f7c9 [ 331.236481][ T8917] RDX: 0000000000000002 RSI: 0000000000000005 RDI: 0000000000000018 [ 331.236493][ T8917] RBP: 00007fbd74a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 331.236505][ T8917] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 331.236517][ T8917] R13: 00007fbd74be6038 R14: 00007fbd74be5fa0 R15: 00007ffe33076f38 [ 331.236552][ T8917] [ 331.802983][ T5832] Bluetooth: hci2: unexpected event 0x0e length: 440 > 260 [ 331.803540][ T5832] Bluetooth: hci2: unexpected event for opcode 0x0f00 [ 332.781216][ T8948] FAULT_INJECTION: forcing a failure. [ 332.781216][ T8948] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 332.811858][ T8948] CPU: 0 UID: 0 PID: 8948 Comm: syz.2.651 Tainted: G L syzkaller #0 PREEMPT(full) [ 332.811903][ T8948] Tainted: [L]=SOFTLOCKUP [ 332.811912][ T8948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 332.811928][ T8948] Call Trace: [ 332.811936][ T8948] [ 332.811946][ T8948] dump_stack_lvl+0x16c/0x1f0 [ 332.811994][ T8948] should_fail_ex+0x512/0x640 [ 332.812030][ T8948] _copy_from_iter+0x2a4/0x16c0 [ 332.812066][ T8948] ? __alloc_skb+0x220/0x410 [ 332.812096][ T8948] ? __alloc_skb+0x35d/0x410 [ 332.812127][ T8948] ? __pfx__copy_from_iter+0x10/0x10 [ 332.812158][ T8948] ? __pfx___might_resched+0x10/0x10 [ 332.812195][ T8948] ? __lock_acquire+0x436/0x2890 [ 332.812231][ T8948] netlink_sendmsg+0x820/0xdd0 [ 332.812277][ T8948] ? __pfx_netlink_sendmsg+0x10/0x10 [ 332.812320][ T8948] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 332.812373][ T8948] ____sys_sendmsg+0xa5d/0xc30 [ 332.812400][ T8948] ? copy_msghdr_from_user+0x10a/0x160 [ 332.812440][ T8948] ? __pfx_____sys_sendmsg+0x10/0x10 [ 332.812492][ T8948] ___sys_sendmsg+0x134/0x1d0 [ 332.812529][ T8948] ? __pfx____sys_sendmsg+0x10/0x10 [ 332.812605][ T8948] __sys_sendmsg+0x16d/0x220 [ 332.812648][ T8948] ? __pfx___sys_sendmsg+0x10/0x10 [ 332.812705][ T8948] do_syscall_64+0xcd/0xf80 [ 332.812731][ T8948] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 332.812757][ T8948] RIP: 0033:0x7f4ac0f8f7c9 [ 332.812778][ T8948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 332.812804][ T8948] RSP: 002b:00007f4ac1ded038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 332.812829][ T8948] RAX: ffffffffffffffda RBX: 00007f4ac11e5fa0 RCX: 00007f4ac0f8f7c9 [ 332.812846][ T8948] RDX: 00000000000044c0 RSI: 0000200000000180 RDI: 0000000000000003 [ 332.812861][ T8948] RBP: 00007f4ac1ded090 R08: 0000000000000000 R09: 0000000000000000 [ 332.812877][ T8948] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 332.812893][ T8948] R13: 00007f4ac11e6038 R14: 00007f4ac11e5fa0 R15: 00007ffc8e3bb5a8 [ 332.812926][ T8948] [ 335.409711][ T8978] ubi31: attaching mtd0 [ 335.427370][ T8978] ubi31: scanning is finished [ 335.445369][ T8978] ubi31: empty MTD device detected [ 335.724543][ T8978] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB) [ 335.751940][ T8978] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3518 bytes [ 335.834800][ T8978] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 335.866682][ T8978] ubi31: VID header offset: 514 (aligned 514), data offset: 578 [ 335.876235][ T5832] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 335.884961][ T5832] Bluetooth: hci2: Injecting HCI hardware error event [ 335.893552][ T53] Bluetooth: hci2: hardware error 0x00 [ 335.901892][ T8978] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 335.908813][ T8978] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 20 [ 335.921867][ T8978] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2057269778 [ 335.932133][ T8978] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 335.943295][ T8983] ubi31: background thread "ubi_bgt31d" started, PID 8983 [ 336.177690][ T8988] FAULT_INJECTION: forcing a failure. [ 336.177690][ T8988] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 336.191512][ T8988] CPU: 1 UID: 0 PID: 8988 Comm: syz.3.658 Tainted: G L syzkaller #0 PREEMPT(full) [ 336.191555][ T8988] Tainted: [L]=SOFTLOCKUP [ 336.191565][ T8988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 336.191581][ T8988] Call Trace: [ 336.191590][ T8988] [ 336.191600][ T8988] dump_stack_lvl+0x16c/0x1f0 [ 336.191651][ T8988] should_fail_ex+0x512/0x640 [ 336.191689][ T8988] _copy_from_user+0x2e/0xd0 [ 336.191722][ T8988] copy_msghdr_from_user+0x98/0x160 [ 336.191763][ T8988] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 336.191821][ T8988] ___sys_sendmsg+0xfe/0x1d0 [ 336.191867][ T8988] ? __pfx____sys_sendmsg+0x10/0x10 [ 336.191951][ T8988] __sys_sendmsg+0x16d/0x220 [ 336.191990][ T8988] ? __pfx___sys_sendmsg+0x10/0x10 [ 336.192052][ T8988] do_syscall_64+0xcd/0xf80 [ 336.192082][ T8988] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 336.192112][ T8988] RIP: 0033:0x7fd5b1d8f7c9 [ 336.192134][ T8988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 336.192162][ T8988] RSP: 002b:00007fd5b2bcd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 336.192189][ T8988] RAX: ffffffffffffffda RBX: 00007fd5b1fe6090 RCX: 00007fd5b1d8f7c9 [ 336.192207][ T8988] RDX: 0000000000000000 RSI: 0000200000000940 RDI: 0000000000000003 [ 336.192225][ T8988] RBP: 00007fd5b2bcd090 R08: 0000000000000000 R09: 0000000000000000 [ 336.192243][ T8988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 336.192260][ T8988] R13: 00007fd5b1fe6128 R14: 00007fd5b1fe6090 R15: 00007ffe5b42cac8 [ 336.192304][ T8988] [ 338.141479][ T9023] FAULT_INJECTION: forcing a failure. [ 338.141479][ T9023] name failslab, interval 1, probability 0, space 0, times 0 [ 338.237888][ T9023] CPU: 0 UID: 0 PID: 9023 Comm: syz.3.668 Tainted: G L syzkaller #0 PREEMPT(full) [ 338.237938][ T9023] Tainted: [L]=SOFTLOCKUP [ 338.237948][ T9023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 338.237966][ T9023] Call Trace: [ 338.237977][ T9023] [ 338.237988][ T9023] dump_stack_lvl+0x16c/0x1f0 [ 338.238043][ T9023] should_fail_ex+0x512/0x640 [ 338.238088][ T9023] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 338.238132][ T9023] should_failslab+0xc2/0x120 [ 338.238180][ T9023] kmem_cache_alloc_noprof+0x83/0x770 [ 338.238220][ T9023] ? skb_clone+0x190/0x3f0 [ 338.238269][ T9023] ? skb_clone+0x190/0x3f0 [ 338.238309][ T9023] skb_clone+0x190/0x3f0 [ 338.238353][ T9023] netlink_deliver_tap+0xabd/0xd30 [ 338.238409][ T9023] netlink_unicast+0x64c/0x870 [ 338.238475][ T9023] ? __pfx_netlink_unicast+0x10/0x10 [ 338.238532][ T9023] ? __pfx___might_resched+0x10/0x10 [ 338.238572][ T9023] ? __lock_acquire+0x436/0x2890 [ 338.238609][ T9023] netlink_sendmsg+0x8c8/0xdd0 [ 338.238659][ T9023] ? __pfx_netlink_sendmsg+0x10/0x10 [ 338.238707][ T9023] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 338.238761][ T9023] ____sys_sendmsg+0xa5d/0xc30 [ 338.238789][ T9023] ? copy_msghdr_from_user+0x10a/0x160 [ 338.238828][ T9023] ? __pfx_____sys_sendmsg+0x10/0x10 [ 338.238872][ T9023] ___sys_sendmsg+0x134/0x1d0 [ 338.238912][ T9023] ? __pfx____sys_sendmsg+0x10/0x10 [ 338.238998][ T9023] __sys_sendmsg+0x16d/0x220 [ 338.239038][ T9023] ? __pfx___sys_sendmsg+0x10/0x10 [ 338.239104][ T9023] do_syscall_64+0xcd/0xf80 [ 338.239133][ T9023] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 338.239160][ T9023] RIP: 0033:0x7fd5b1d8f7c9 [ 338.239182][ T9023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 338.239210][ T9023] RSP: 002b:00007fd5b2bee038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 338.239239][ T9023] RAX: ffffffffffffffda RBX: 00007fd5b1fe5fa0 RCX: 00007fd5b1d8f7c9 [ 338.239257][ T9023] RDX: 00000000000044c0 RSI: 0000200000000180 RDI: 0000000000000003 [ 338.239275][ T9023] RBP: 00007fd5b2bee090 R08: 0000000000000000 R09: 0000000000000000 [ 338.239293][ T9023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 338.239313][ T9023] R13: 00007fd5b1fe6038 R14: 00007fd5b1fe5fa0 R15: 00007ffe5b42cac8 [ 338.239353][ T9023] [ 338.630091][ T53] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 338.916426][ T9035] FAULT_INJECTION: forcing a failure. [ 338.916426][ T9035] name failslab, interval 1, probability 0, space 0, times 0 [ 338.963543][ T9035] CPU: 1 UID: 0 PID: 9035 Comm: syz.2.671 Tainted: G L syzkaller #0 PREEMPT(full) [ 338.963589][ T9035] Tainted: [L]=SOFTLOCKUP [ 338.963615][ T9035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 338.963633][ T9035] Call Trace: [ 338.963643][ T9035] [ 338.963655][ T9035] dump_stack_lvl+0x16c/0x1f0 [ 338.963710][ T9035] should_fail_ex+0x512/0x640 [ 338.963744][ T9035] ? __kmalloc_noprof+0xca/0x910 [ 338.963786][ T9035] should_failslab+0xc2/0x120 [ 338.963822][ T9035] __kmalloc_noprof+0xeb/0x910 [ 338.963846][ T9035] ? sk_prot_alloc+0x1a8/0x2a0 [ 338.963886][ T9035] ? sk_prot_alloc+0x1a8/0x2a0 [ 338.963920][ T9035] sk_prot_alloc+0x1a8/0x2a0 [ 338.963956][ T9035] sk_alloc+0x36/0xe30 [ 338.963984][ T9035] pptp_create+0x32/0x340 [ 338.964023][ T9035] pppox_create+0x15c/0x2c0 [ 338.964054][ T9035] __sock_create+0x339/0x8a0 [ 338.964081][ T9035] __sys_socket+0x14d/0x260 [ 338.964104][ T9035] ? __pfx___sys_socket+0x10/0x10 [ 338.964126][ T9035] ? xfd_validate_state+0x61/0x180 [ 338.964154][ T9035] __x64_sys_socket+0x72/0xb0 [ 338.964175][ T9035] ? lockdep_hardirqs_on+0x7c/0x110 [ 338.964210][ T9035] do_syscall_64+0xcd/0xf80 [ 338.964231][ T9035] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 338.964254][ T9035] RIP: 0033:0x7f4ac0f8f7c9 [ 338.964272][ T9035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 338.964293][ T9035] RSP: 002b:00007f4ac1ded038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 338.964313][ T9035] RAX: ffffffffffffffda RBX: 00007f4ac11e5fa0 RCX: 00007f4ac0f8f7c9 [ 338.964328][ T9035] RDX: 0000000000000002 RSI: 0000000000000005 RDI: 0000000000000018 [ 338.964341][ T9035] RBP: 00007f4ac1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 338.964355][ T9035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 338.964368][ T9035] R13: 00007f4ac11e6038 R14: 00007f4ac11e5fa0 R15: 00007ffc8e3bb5a8 [ 338.964396][ T9035] [ 339.205637][ T9043] FAULT_INJECTION: forcing a failure. [ 339.205637][ T9043] name failslab, interval 1, probability 0, space 0, times 0 [ 339.218504][ T9043] CPU: 1 UID: 0 PID: 9043 Comm: syz.1.665 Tainted: G L syzkaller #0 PREEMPT(full) [ 339.218552][ T9043] Tainted: [L]=SOFTLOCKUP [ 339.218563][ T9043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 339.218592][ T9043] Call Trace: [ 339.218601][ T9043] [ 339.218613][ T9043] dump_stack_lvl+0x16c/0x1f0 [ 339.218664][ T9043] should_fail_ex+0x512/0x640 [ 339.218717][ T9043] ? fs_reclaim_acquire+0xae/0x150 [ 339.218779][ T9043] should_failslab+0xc2/0x120 [ 339.218826][ T9043] __kmalloc_noprof+0xeb/0x910 [ 339.218861][ T9043] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 339.218914][ T9043] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 339.218957][ T9043] tomoyo_realpath_from_path+0xc2/0x6e0 [ 339.219005][ T9043] ? tomoyo_profile+0x47/0x60 [ 339.219055][ T9043] tomoyo_path_number_perm+0x245/0x580 [ 339.219089][ T9043] ? tomoyo_path_number_perm+0x237/0x580 [ 339.219130][ T9043] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 339.219164][ T9043] ? futex_wake+0x1ad/0x530 [ 339.219244][ T9043] ? find_held_lock+0x2b/0x80 [ 339.219285][ T9043] ? hook_file_ioctl_common+0x144/0x410 [ 339.219331][ T9043] ? __fget_files+0x20e/0x3c0 [ 339.219383][ T9043] security_file_ioctl+0x9b/0x240 [ 339.219424][ T9043] __x64_sys_ioctl+0xb7/0x210 [ 339.219465][ T9043] do_syscall_64+0xcd/0xf80 [ 339.219503][ T9043] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 339.219535][ T9043] RIP: 0033:0x7f910778f7c9 [ 339.219560][ T9043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 339.219591][ T9043] RSP: 002b:00007f91055f4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 339.219620][ T9043] RAX: ffffffffffffffda RBX: 00007f91079e6270 RCX: 00007f910778f7c9 [ 339.219641][ T9043] RDX: 0000000000000000 RSI: 00000000c0403d11 RDI: 0000000000000005 [ 339.219659][ T9043] RBP: 00007f9107813f91 R08: 0000000000000000 R09: 0000000000000000 [ 339.219678][ T9043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 339.219696][ T9043] R13: 00007f91079e6308 R14: 00007f91079e6270 R15: 00007ffc119834e8 [ 339.219746][ T9043] [ 339.219839][ T9043] ERROR: Out of memory at tomoyo_realpath_from_path. [ 339.839163][ T9046] ubi: mtd0 is already attached to ubi31 [ 340.077971][ T9050] FAULT_INJECTION: forcing a failure. [ 340.077971][ T9050] name failslab, interval 1, probability 0, space 0, times 0 [ 340.113952][ T9050] CPU: 1 UID: 0 PID: 9050 Comm: syz.2.673 Tainted: G L syzkaller #0 PREEMPT(full) [ 340.113994][ T9050] Tainted: [L]=SOFTLOCKUP [ 340.114003][ T9050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 340.114018][ T9050] Call Trace: [ 340.114028][ T9050] [ 340.114038][ T9050] dump_stack_lvl+0x16c/0x1f0 [ 340.114105][ T9050] should_fail_ex+0x512/0x640 [ 340.114138][ T9050] ? __kmalloc_noprof+0xca/0x910 [ 340.114173][ T9050] should_failslab+0xc2/0x120 [ 340.114221][ T9050] __kmalloc_noprof+0xeb/0x910 [ 340.114255][ T9050] ? sk_prot_alloc+0x1a8/0x2a0 [ 340.114308][ T9050] ? sk_prot_alloc+0x1a8/0x2a0 [ 340.114353][ T9050] sk_prot_alloc+0x1a8/0x2a0 [ 340.114403][ T9050] sk_alloc+0x36/0xe30 [ 340.114441][ T9050] pptp_create+0x32/0x340 [ 340.114493][ T9050] pppox_create+0x15c/0x2c0 [ 340.114532][ T9050] __sock_create+0x339/0x8a0 [ 340.114566][ T9050] __sys_socket+0x14d/0x260 [ 340.114592][ T9050] ? __pfx___sys_socket+0x10/0x10 [ 340.114620][ T9050] ? xfd_validate_state+0x61/0x180 [ 340.114654][ T9050] __x64_sys_socket+0x72/0xb0 [ 340.114681][ T9050] ? lockdep_hardirqs_on+0x7c/0x110 [ 340.114723][ T9050] do_syscall_64+0xcd/0xf80 [ 340.114750][ T9050] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 340.114778][ T9050] RIP: 0033:0x7f4ac0f8f7c9 [ 340.114800][ T9050] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 340.114828][ T9050] RSP: 002b:00007f4ac1ded038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 340.114854][ T9050] RAX: ffffffffffffffda RBX: 00007f4ac11e5fa0 RCX: 00007f4ac0f8f7c9 [ 340.114872][ T9050] RDX: 0000000000000002 RSI: 0000000000000005 RDI: 0000000000000018 [ 340.114913][ T9050] RBP: 00007f4ac1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 340.114931][ T9050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 340.114949][ T9050] R13: 00007f4ac11e6038 R14: 00007f4ac11e5fa0 R15: 00007ffc8e3bb5a8 [ 340.114988][ T9050] [ 340.971615][ T9064] netlink: 'syz.1.677': attribute type 1 has an invalid length. [ 341.913194][ T9085] FAULT_INJECTION: forcing a failure. [ 341.913194][ T9085] name failslab, interval 1, probability 0, space 0, times 0 [ 341.926094][ T9085] CPU: 0 UID: 0 PID: 9085 Comm: syz.1.682 Tainted: G L syzkaller #0 PREEMPT(full) [ 341.926140][ T9085] Tainted: [L]=SOFTLOCKUP [ 341.926148][ T9085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 341.926162][ T9085] Call Trace: [ 341.926169][ T9085] [ 341.926177][ T9085] dump_stack_lvl+0x16c/0x1f0 [ 341.926217][ T9085] should_fail_ex+0x512/0x640 [ 341.926243][ T9085] ? __kmalloc_noprof+0xca/0x910 [ 341.926269][ T9085] should_failslab+0xc2/0x120 [ 341.926305][ T9085] __kmalloc_noprof+0xeb/0x910 [ 341.926330][ T9085] ? sk_prot_alloc+0x1a8/0x2a0 [ 341.926370][ T9085] ? sk_prot_alloc+0x1a8/0x2a0 [ 341.926403][ T9085] sk_prot_alloc+0x1a8/0x2a0 [ 341.926440][ T9085] sk_alloc+0x36/0xe30 [ 341.926468][ T9085] pptp_create+0x32/0x340 [ 341.926501][ T9085] pppox_create+0x15c/0x2c0 [ 341.926532][ T9085] __sock_create+0x339/0x8a0 [ 341.926570][ T9085] __sys_socket+0x14d/0x260 [ 341.926592][ T9085] ? __pfx___sys_socket+0x10/0x10 [ 341.926615][ T9085] ? xfd_validate_state+0x61/0x180 [ 341.926643][ T9085] __x64_sys_socket+0x72/0xb0 [ 341.926665][ T9085] ? lockdep_hardirqs_on+0x7c/0x110 [ 341.926700][ T9085] do_syscall_64+0xcd/0xf80 [ 341.926721][ T9085] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 341.926744][ T9085] RIP: 0033:0x7f910778f7c9 [ 341.926760][ T9085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 341.926782][ T9085] RSP: 002b:00007f9108598038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 341.926802][ T9085] RAX: ffffffffffffffda RBX: 00007f91079e5fa0 RCX: 00007f910778f7c9 [ 341.926817][ T9085] RDX: 0000000000000002 RSI: 0000000000000005 RDI: 0000000000000018 [ 341.926830][ T9085] RBP: 00007f9107813f91 R08: 0000000000000000 R09: 0000000000000000 [ 341.926843][ T9085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 341.926856][ T9085] R13: 00007f91079e6038 R14: 00007f91079e5fa0 R15: 00007ffc119834e8 [ 341.926884][ T9085] [ 342.311948][ T9089] FAULT_INJECTION: forcing a failure. [ 342.311948][ T9089] name failslab, interval 1, probability 0, space 0, times 0 [ 342.366336][ T9089] CPU: 0 UID: 0 PID: 9089 Comm: syz.2.683 Tainted: G L syzkaller #0 PREEMPT(full) [ 342.366387][ T9089] Tainted: [L]=SOFTLOCKUP [ 342.366397][ T9089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 342.366423][ T9089] Call Trace: [ 342.366433][ T9089] [ 342.366445][ T9089] dump_stack_lvl+0x16c/0x1f0 [ 342.366501][ T9089] should_fail_ex+0x512/0x640 [ 342.366535][ T9089] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 342.366578][ T9089] should_failslab+0xc2/0x120 [ 342.366627][ T9089] kmem_cache_alloc_noprof+0x83/0x770 [ 342.366664][ T9089] ? skb_clone+0x190/0x3f0 [ 342.366714][ T9089] ? skb_clone+0x190/0x3f0 [ 342.366752][ T9089] skb_clone+0x190/0x3f0 [ 342.366797][ T9089] netlink_deliver_tap+0xabd/0xd30 [ 342.366851][ T9089] netlink_unicast+0x64c/0x870 [ 342.366905][ T9089] ? __pfx_netlink_unicast+0x10/0x10 [ 342.366953][ T9089] ? __pfx___might_resched+0x10/0x10 [ 342.366995][ T9089] ? __lock_acquire+0x436/0x2890 [ 342.367036][ T9089] netlink_sendmsg+0x8c8/0xdd0 [ 342.367092][ T9089] ? __pfx_netlink_sendmsg+0x10/0x10 [ 342.367147][ T9089] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 342.367208][ T9089] ____sys_sendmsg+0xa5d/0xc30 [ 342.367239][ T9089] ? copy_msghdr_from_user+0x10a/0x160 [ 342.367280][ T9089] ? __pfx_____sys_sendmsg+0x10/0x10 [ 342.367315][ T9089] ___sys_sendmsg+0x134/0x1d0 [ 342.367348][ T9089] ? __pfx____sys_sendmsg+0x10/0x10 [ 342.367418][ T9089] __sys_sendmsg+0x16d/0x220 [ 342.367449][ T9089] ? __pfx___sys_sendmsg+0x10/0x10 [ 342.367499][ T9089] do_syscall_64+0xcd/0xf80 [ 342.367521][ T9089] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 342.367544][ T9089] RIP: 0033:0x7f4ac0f8f7c9 [ 342.367562][ T9089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 342.367584][ T9089] RSP: 002b:00007f4ac1ded038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 342.367604][ T9089] RAX: ffffffffffffffda RBX: 00007f4ac11e5fa0 RCX: 00007f4ac0f8f7c9 [ 342.367619][ T9089] RDX: 00000000000044c0 RSI: 0000200000000180 RDI: 0000000000000003 [ 342.367633][ T9089] RBP: 00007f4ac1ded090 R08: 0000000000000000 R09: 0000000000000000 [ 342.367646][ T9089] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 342.367661][ T9089] R13: 00007f4ac11e6038 R14: 00007f4ac11e5fa0 R15: 00007ffc8e3bb5a8 [ 342.367691][ T9089] [ 343.279632][ T9099] FAULT_INJECTION: forcing a failure. [ 343.279632][ T9099] name failslab, interval 1, probability 0, space 0, times 0 [ 343.400646][ T9099] CPU: 1 UID: 0 PID: 9099 Comm: syz.1.684 Tainted: G L syzkaller #0 PREEMPT(full) [ 343.400684][ T9099] Tainted: [L]=SOFTLOCKUP [ 343.400692][ T9099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 343.400705][ T9099] Call Trace: [ 343.400712][ T9099] [ 343.400720][ T9099] dump_stack_lvl+0x16c/0x1f0 [ 343.400759][ T9099] should_fail_ex+0x512/0x640 [ 343.400784][ T9099] ? kmem_cache_alloc_lru_noprof+0x66/0x770 [ 343.400816][ T9099] should_failslab+0xc2/0x120 [ 343.400851][ T9099] kmem_cache_alloc_lru_noprof+0x87/0x770 [ 343.400879][ T9099] ? __d_alloc+0x35/0xa80 [ 343.400903][ T9099] ? __d_alloc+0x35/0xa80 [ 343.400921][ T9099] __d_alloc+0x35/0xa80 [ 343.400943][ T9099] d_alloc_pseudo+0x1c/0xc0 [ 343.400969][ T9099] alloc_file_pseudo+0xcf/0x230 [ 343.400995][ T9099] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 343.401020][ T9099] ? alloc_fd+0x471/0x7d0 [ 343.401056][ T9099] sock_alloc_file+0x50/0x210 [ 343.401090][ T9099] __sys_socket+0x1c0/0x260 [ 343.401113][ T9099] ? __pfx___sys_socket+0x10/0x10 [ 343.401135][ T9099] ? xfd_validate_state+0x61/0x180 [ 343.401162][ T9099] __x64_sys_socket+0x72/0xb0 [ 343.401184][ T9099] ? lockdep_hardirqs_on+0x7c/0x110 [ 343.401219][ T9099] do_syscall_64+0xcd/0xf80 [ 343.401241][ T9099] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 343.401263][ T9099] RIP: 0033:0x7f910778f7c9 [ 343.401280][ T9099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 343.401301][ T9099] RSP: 002b:00007f9108598038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 343.401327][ T9099] RAX: ffffffffffffffda RBX: 00007f91079e5fa0 RCX: 00007f910778f7c9 [ 343.401343][ T9099] RDX: 0000000000000002 RSI: 0000000000000005 RDI: 0000000000000018 [ 343.401356][ T9099] RBP: 00007f9107813f91 R08: 0000000000000000 R09: 0000000000000000 [ 343.401369][ T9099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 343.401382][ T9099] R13: 00007f91079e6038 R14: 00007f91079e5fa0 R15: 00007ffc119834e8 [ 343.401422][ T9099] [ 344.971234][ T9110] FAULT_INJECTION: forcing a failure. [ 344.971234][ T9110] name failslab, interval 1, probability 0, space 0, times 0 [ 345.012248][ T9110] CPU: 0 UID: 0 PID: 9110 Comm: syz.3.689 Tainted: G L syzkaller #0 PREEMPT(full) [ 345.012287][ T9110] Tainted: [L]=SOFTLOCKUP [ 345.012295][ T9110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 345.012310][ T9110] Call Trace: [ 345.012317][ T9110] [ 345.012326][ T9110] dump_stack_lvl+0x16c/0x1f0 [ 345.012374][ T9110] should_fail_ex+0x512/0x640 [ 345.012400][ T9110] ? kmem_cache_alloc_noprof+0x62/0x770 [ 345.012431][ T9110] ? __pfx_dom_debug_open+0x10/0x10 [ 345.012460][ T9110] should_failslab+0xc2/0x120 [ 345.012497][ T9110] kmem_cache_alloc_noprof+0x83/0x770 [ 345.012525][ T9110] ? seq_open+0x55/0x170 [ 345.012555][ T9110] ? __pfx_dom_debug_open+0x10/0x10 [ 345.012576][ T9110] ? __pfx_dom_debug_show+0x10/0x10 [ 345.012597][ T9110] ? seq_open+0x55/0x170 [ 345.012621][ T9110] seq_open+0x55/0x170 [ 345.012645][ T9110] ? __pfx_dom_debug_show+0x10/0x10 [ 345.012668][ T9110] single_open+0xfc/0x1f0 [ 345.012696][ T9110] full_proxy_open_regular+0x1b9/0x350 [ 345.012734][ T9110] do_dentry_open+0x748/0x1590 [ 345.012767][ T9110] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 345.012809][ T9110] vfs_open+0x82/0x3f0 [ 345.012836][ T9110] path_openat+0x2078/0x3140 [ 345.012880][ T9110] ? __pfx_path_openat+0x10/0x10 [ 345.012925][ T9110] do_filp_open+0x20b/0x470 [ 345.012960][ T9110] ? __pfx_do_filp_open+0x10/0x10 [ 345.013015][ T9110] ? alloc_fd+0x471/0x7d0 [ 345.013056][ T9110] do_sys_openat2+0x121/0x290 [ 345.013081][ T9110] ? __pfx_do_sys_openat2+0x10/0x10 [ 345.013118][ T9110] __x64_sys_openat+0x174/0x210 [ 345.013144][ T9110] ? __pfx___x64_sys_openat+0x10/0x10 [ 345.013182][ T9110] do_syscall_64+0xcd/0xf80 [ 345.013206][ T9110] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 345.013230][ T9110] RIP: 0033:0x7fd5b1d8f7c9 [ 345.013248][ T9110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 345.013270][ T9110] RSP: 002b:00007fd5b2bee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 345.013291][ T9110] RAX: ffffffffffffffda RBX: 00007fd5b1fe5fa0 RCX: 00007fd5b1d8f7c9 [ 345.013306][ T9110] RDX: 0000000000000100 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 345.013321][ T9110] RBP: 00007fd5b1e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 345.013334][ T9110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 345.013348][ T9110] R13: 00007fd5b1fe6038 R14: 00007fd5b1fe5fa0 R15: 00007ffe5b42cac8 [ 345.013378][ T9110] [ 345.948531][ T9120] FAULT_INJECTION: forcing a failure. [ 345.948531][ T9120] name failslab, interval 1, probability 0, space 0, times 0 [ 345.982832][ T9120] CPU: 1 UID: 0 PID: 9120 Comm: syz.0.693 Tainted: G L syzkaller #0 PREEMPT(full) [ 345.982885][ T9120] Tainted: [L]=SOFTLOCKUP [ 345.982896][ T9120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 345.982914][ T9120] Call Trace: [ 345.982924][ T9120] [ 345.982936][ T9120] dump_stack_lvl+0x16c/0x1f0 [ 345.982991][ T9120] should_fail_ex+0x512/0x640 [ 345.983022][ T9120] ? __kmalloc_noprof+0xca/0x910 [ 345.983054][ T9120] should_failslab+0xc2/0x120 [ 345.983098][ T9120] __kmalloc_noprof+0xeb/0x910 [ 345.983127][ T9120] ? sk_prot_alloc+0x1a8/0x2a0 [ 345.983174][ T9120] ? sk_prot_alloc+0x1a8/0x2a0 [ 345.983216][ T9120] sk_prot_alloc+0x1a8/0x2a0 [ 345.983260][ T9120] sk_alloc+0x36/0xe30 [ 345.983293][ T9120] pptp_create+0x32/0x340 [ 345.983332][ T9120] pppox_create+0x15c/0x2c0 [ 345.983377][ T9120] __sock_create+0x339/0x8a0 [ 345.983410][ T9120] __sys_socket+0x14d/0x260 [ 345.983438][ T9120] ? __pfx___sys_socket+0x10/0x10 [ 345.983466][ T9120] ? xfd_validate_state+0x61/0x180 [ 345.983498][ T9120] __x64_sys_socket+0x72/0xb0 [ 345.983524][ T9120] ? lockdep_hardirqs_on+0x7c/0x110 [ 345.983566][ T9120] do_syscall_64+0xcd/0xf80 [ 345.983591][ T9120] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 345.983618][ T9120] RIP: 0033:0x7fbd7498f7c9 [ 345.983640][ T9120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 345.983666][ T9120] RSP: 002b:00007fbd75757038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 345.983692][ T9120] RAX: ffffffffffffffda RBX: 00007fbd74be5fa0 RCX: 00007fbd7498f7c9 [ 345.983709][ T9120] RDX: 0000000000000002 RSI: 0000000000000005 RDI: 0000000000000018 [ 345.983726][ T9120] RBP: 00007fbd74a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 345.983742][ T9120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 345.983759][ T9120] R13: 00007fbd74be6038 R14: 00007fbd74be5fa0 R15: 00007ffe33076f38 [ 345.983794][ T9120] [ 347.260244][ T9134] FAULT_INJECTION: forcing a failure. [ 347.260244][ T9134] name failslab, interval 1, probability 0, space 0, times 0 [ 347.373449][ T9134] CPU: 1 UID: 0 PID: 9134 Comm: syz.0.697 Tainted: G L syzkaller #0 PREEMPT(full) [ 347.373498][ T9134] Tainted: [L]=SOFTLOCKUP [ 347.373509][ T9134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 347.373527][ T9134] Call Trace: [ 347.373537][ T9134] [ 347.373548][ T9134] dump_stack_lvl+0x16c/0x1f0 [ 347.373609][ T9134] should_fail_ex+0x512/0x640 [ 347.373645][ T9134] ? __kmalloc_noprof+0xca/0x910 [ 347.373682][ T9134] should_failslab+0xc2/0x120 [ 347.373728][ T9134] __kmalloc_noprof+0xeb/0x910 [ 347.373762][ T9134] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 347.373808][ T9134] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 347.373844][ T9134] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 347.373887][ T9134] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 347.373923][ T9134] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 347.373955][ T9134] ? genl_get_cmd+0x194/0x580 [ 347.373992][ T9134] ? bpf_lsm_capable+0x9/0x10 [ 347.374034][ T9134] ? security_capable+0x7e/0x260 [ 347.374102][ T9134] genl_rcv_msg+0x55c/0x800 [ 347.374147][ T9134] ? __pfx_genl_rcv_msg+0x10/0x10 [ 347.374181][ T9134] ? __pfx_smc_pnet_add+0x10/0x10 [ 347.374244][ T9134] netlink_rcv_skb+0x158/0x420 [ 347.374298][ T9134] ? __pfx_genl_rcv_msg+0x10/0x10 [ 347.374333][ T9134] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 347.374399][ T9134] ? netlink_deliver_tap+0x1ae/0xd30 [ 347.374457][ T9134] genl_rcv+0x28/0x40 [ 347.374483][ T9134] netlink_unicast+0x5aa/0x870 [ 347.374533][ T9134] ? __pfx_netlink_unicast+0x10/0x10 [ 347.374573][ T9134] ? __pfx___might_resched+0x10/0x10 [ 347.374614][ T9134] ? __lock_acquire+0x436/0x2890 [ 347.374647][ T9134] netlink_sendmsg+0x8c8/0xdd0 [ 347.374693][ T9134] ? __pfx_netlink_sendmsg+0x10/0x10 [ 347.374737][ T9134] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 347.374788][ T9134] ____sys_sendmsg+0xa5d/0xc30 [ 347.374815][ T9134] ? copy_msghdr_from_user+0x10a/0x160 [ 347.374851][ T9134] ? __pfx_____sys_sendmsg+0x10/0x10 [ 347.374892][ T9134] ___sys_sendmsg+0x134/0x1d0 [ 347.374930][ T9134] ? __pfx____sys_sendmsg+0x10/0x10 [ 347.375011][ T9134] __sys_sendmsg+0x16d/0x220 [ 347.375048][ T9134] ? __pfx___sys_sendmsg+0x10/0x10 [ 347.375105][ T9134] do_syscall_64+0xcd/0xf80 [ 347.375137][ T9134] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 347.375164][ T9134] RIP: 0033:0x7fbd7498f7c9 [ 347.375189][ T9134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 347.375214][ T9134] RSP: 002b:00007fbd75757038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 347.375239][ T9134] RAX: ffffffffffffffda RBX: 00007fbd74be5fa0 RCX: 00007fbd7498f7c9 [ 347.375257][ T9134] RDX: 00000000000044c0 RSI: 0000200000000180 RDI: 0000000000000003 [ 347.375273][ T9134] RBP: 00007fbd75757090 R08: 0000000000000000 R09: 0000000000000000 [ 347.375289][ T9134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 347.375304][ T9134] R13: 00007fbd74be6038 R14: 00007fbd74be5fa0 R15: 00007ffe33076f38 [ 347.375339][ T9134] [ 349.727712][ T53] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 350.263890][ T9162] FAULT_INJECTION: forcing a failure. [ 350.263890][ T9162] name failslab, interval 1, probability 0, space 0, times 0 [ 350.283755][ T9162] CPU: 0 UID: 0 PID: 9162 Comm: syz.3.706 Tainted: G L syzkaller #0 PREEMPT(full) [ 350.283806][ T9162] Tainted: [L]=SOFTLOCKUP [ 350.283817][ T9162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 350.283836][ T9162] Call Trace: [ 350.283846][ T9162] [ 350.283858][ T9162] dump_stack_lvl+0x16c/0x1f0 [ 350.283915][ T9162] should_fail_ex+0x512/0x640 [ 350.283964][ T9162] ? __kmalloc_noprof+0xca/0x910 [ 350.284004][ T9162] should_failslab+0xc2/0x120 [ 350.284054][ T9162] __kmalloc_noprof+0xeb/0x910 [ 350.284089][ T9162] ? sk_prot_alloc+0x1a8/0x2a0 [ 350.284146][ T9162] ? sk_prot_alloc+0x1a8/0x2a0 [ 350.284195][ T9162] sk_prot_alloc+0x1a8/0x2a0 [ 350.284249][ T9162] sk_alloc+0x36/0xe30 [ 350.284290][ T9162] pptp_create+0x32/0x340 [ 350.284337][ T9162] pppox_create+0x15c/0x2c0 [ 350.284381][ T9162] __sock_create+0x339/0x8a0 [ 350.284421][ T9162] __sys_socket+0x14d/0x260 [ 350.284455][ T9162] ? __pfx___sys_socket+0x10/0x10 [ 350.284486][ T9162] ? xfd_validate_state+0x61/0x180 [ 350.284526][ T9162] __x64_sys_socket+0x72/0xb0 [ 350.284558][ T9162] ? lockdep_hardirqs_on+0x7c/0x110 [ 350.284607][ T9162] do_syscall_64+0xcd/0xf80 [ 350.284638][ T9162] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 350.284670][ T9162] RIP: 0033:0x7fd5b1d8f7c9 [ 350.284695][ T9162] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 350.284726][ T9162] RSP: 002b:00007fd5b2bee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 350.284755][ T9162] RAX: ffffffffffffffda RBX: 00007fd5b1fe5fa0 RCX: 00007fd5b1d8f7c9 [ 350.284776][ T9162] RDX: 0000000000000002 RSI: 0000000000000005 RDI: 0000000000000018 [ 350.284795][ T9162] RBP: 00007fd5b1e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 350.284814][ T9162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 350.284832][ T9162] R13: 00007fd5b1fe6038 R14: 00007fd5b1fe5fa0 R15: 00007ffe5b42cac8 [ 350.284875][ T9162] [ 351.197708][ T9174] FAULT_INJECTION: forcing a failure. [ 351.197708][ T9174] name failslab, interval 1, probability 0, space 0, times 0 [ 351.220370][ T9174] CPU: 1 UID: 0 PID: 9174 Comm: syz.1.704 Tainted: G L syzkaller #0 PREEMPT(full) [ 351.220410][ T9174] Tainted: [L]=SOFTLOCKUP [ 351.220418][ T9174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 351.220431][ T9174] Call Trace: [ 351.220438][ T9174] [ 351.220447][ T9174] dump_stack_lvl+0x16c/0x1f0 [ 351.220486][ T9174] should_fail_ex+0x512/0x640 [ 351.220522][ T9174] should_failslab+0xc2/0x120 [ 351.220558][ T9174] __kmalloc_cache_noprof+0x80/0x800 [ 351.220584][ T9174] ? __pfx___might_resched+0x10/0x10 [ 351.220615][ T9174] ? nfc_genl_rcv_nl_event+0xb9/0x310 [ 351.220649][ T9174] ? nfc_genl_rcv_nl_event+0xb9/0x310 [ 351.220674][ T9174] nfc_genl_rcv_nl_event+0xb9/0x310 [ 351.220699][ T9174] notifier_call_chain+0xbc/0x3e0 [ 351.220734][ T9174] ? __pfx_nfc_genl_rcv_nl_event+0x10/0x10 [ 351.220767][ T9174] blocking_notifier_call_chain+0x69/0xa0 [ 351.220792][ T9174] netlink_release+0x1671/0x2000 [ 351.220832][ T9174] ? netlink_release+0x1e4/0x2000 [ 351.220867][ T9174] ? __pfx_netlink_release+0x10/0x10 [ 351.220903][ T9174] ? __pfx_locks_remove_file+0x10/0x10 [ 351.220941][ T9174] __sock_release+0xb3/0x270 [ 351.220994][ T9174] ? __pfx_sock_close+0x10/0x10 [ 351.221036][ T9174] sock_close+0x1c/0x30 [ 351.221077][ T9174] __fput+0x402/0xb70 [ 351.221134][ T9174] task_work_run+0x150/0x240 [ 351.221188][ T9174] ? __pfx_task_work_run+0x10/0x10 [ 351.221220][ T9174] ? __do_sys_close_range+0x278/0x730 [ 351.221281][ T9174] exit_to_user_mode_loop+0xfb/0x540 [ 351.221326][ T9174] do_syscall_64+0x4ee/0xf80 [ 351.221358][ T9174] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 351.221390][ T9174] RIP: 0033:0x7f910778f7c9 [ 351.221414][ T9174] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 351.221443][ T9174] RSP: 002b:00007f91059d5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 351.221471][ T9174] RAX: 0000000000000000 RBX: 00007f91079e6360 RCX: 00007f910778f7c9 [ 351.221491][ T9174] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 351.221515][ T9174] RBP: 00007f91059d5090 R08: 0000000000000000 R09: 0000000000000000 [ 351.221534][ T9174] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 351.221552][ T9174] R13: 00007f91079e63f8 R14: 00007f91079e6360 R15: 00007ffc119834e8 [ 351.221596][ T9174] [ 352.133415][ T9180] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 354.715327][ T9227] FAULT_INJECTION: forcing a failure. [ 354.715327][ T9227] name failslab, interval 1, probability 0, space 0, times 0 [ 354.861302][ T9227] CPU: 1 UID: 0 PID: 9227 Comm: syz.0.716 Tainted: G L syzkaller #0 PREEMPT(full) [ 354.861339][ T9227] Tainted: [L]=SOFTLOCKUP [ 354.861347][ T9227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 354.861360][ T9227] Call Trace: [ 354.861367][ T9227] [ 354.861380][ T9227] dump_stack_lvl+0x16c/0x1f0 [ 354.861420][ T9227] should_fail_ex+0x512/0x640 [ 354.861446][ T9227] ? __kmalloc_noprof+0xca/0x910 [ 354.861473][ T9227] should_failslab+0xc2/0x120 [ 354.861508][ T9227] __kmalloc_noprof+0xeb/0x910 [ 354.861532][ T9227] ? sk_prot_alloc+0x1a8/0x2a0 [ 354.861582][ T9227] ? sk_prot_alloc+0x1a8/0x2a0 [ 354.861614][ T9227] sk_prot_alloc+0x1a8/0x2a0 [ 354.861649][ T9227] sk_alloc+0x36/0xe30 [ 354.861675][ T9227] pptp_create+0x32/0x340 [ 354.861706][ T9227] pppox_create+0x15c/0x2c0 [ 354.861735][ T9227] __sock_create+0x339/0x8a0 [ 354.861762][ T9227] __sys_socket+0x14d/0x260 [ 354.861784][ T9227] ? __pfx___sys_socket+0x10/0x10 [ 354.861805][ T9227] ? xfd_validate_state+0x61/0x180 [ 354.861830][ T9227] __x64_sys_socket+0x72/0xb0 [ 354.861850][ T9227] ? lockdep_hardirqs_on+0x7c/0x110 [ 354.861883][ T9227] do_syscall_64+0xcd/0xf80 [ 354.861903][ T9227] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 354.861941][ T9227] RIP: 0033:0x7fbd7498f7c9 [ 354.861958][ T9227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 354.861993][ T9227] RSP: 002b:00007fbd75757038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 354.862012][ T9227] RAX: ffffffffffffffda RBX: 00007fbd74be5fa0 RCX: 00007fbd7498f7c9 [ 354.862026][ T9227] RDX: 0000000000000002 RSI: 0000000000000005 RDI: 0000000000000018 [ 354.862038][ T9227] RBP: 00007fbd74a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 354.862051][ T9227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 354.862063][ T9227] R13: 00007fbd74be6038 R14: 00007fbd74be5fa0 R15: 00007ffe33076f38 [ 354.862089][ T9227] [ 355.801824][ T53] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 357.299568][ T9254] FAULT_INJECTION: forcing a failure. [ 357.299568][ T9254] name failslab, interval 1, probability 0, space 0, times 0 [ 357.539301][ T9254] CPU: 1 UID: 0 PID: 9254 Comm: syz.3.723 Tainted: G L syzkaller #0 PREEMPT(full) [ 357.539349][ T9254] Tainted: [L]=SOFTLOCKUP [ 357.539360][ T9254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 357.539377][ T9254] Call Trace: [ 357.539387][ T9254] [ 357.539399][ T9254] dump_stack_lvl+0x16c/0x1f0 [ 357.539452][ T9254] should_fail_ex+0x512/0x640 [ 357.539487][ T9254] ? __kmalloc_cache_noprof+0x5f/0x800 [ 357.539525][ T9254] should_failslab+0xc2/0x120 [ 357.539572][ T9254] __kmalloc_cache_noprof+0x80/0x800 [ 357.539607][ T9254] ? snd_card_file_add+0x52/0x340 [ 357.539644][ T9254] ? snd_card_file_add+0x52/0x340 [ 357.539673][ T9254] snd_card_file_add+0x52/0x340 [ 357.539709][ T9254] snd_rawmidi_open+0x2cc/0xbf0 [ 357.539755][ T9254] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 357.539801][ T9254] ? kobject_get_unless_zero+0x156/0x1e0 [ 357.539837][ T9254] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 357.539870][ T9254] snd_open+0x22d/0x4c0 [ 357.539898][ T9254] ? __pfx_snd_open+0x10/0x10 [ 357.539924][ T9254] chrdev_open+0x234/0x6a0 [ 357.539969][ T9254] ? __pfx_apparmor_file_open+0x10/0x10 [ 357.540000][ T9254] ? __pfx_chrdev_open+0x10/0x10 [ 357.540048][ T9254] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 357.540103][ T9254] do_dentry_open+0x748/0x1590 [ 357.540156][ T9254] ? __pfx_chrdev_open+0x10/0x10 [ 357.540221][ T9254] vfs_open+0x82/0x3f0 [ 357.540275][ T9254] path_openat+0x2078/0x3140 [ 357.540333][ T9254] ? __pfx_path_openat+0x10/0x10 [ 357.540392][ T9254] do_filp_open+0x20b/0x470 [ 357.540438][ T9254] ? __pfx_do_filp_open+0x10/0x10 [ 357.540509][ T9254] ? alloc_fd+0x471/0x7d0 [ 357.540572][ T9254] do_sys_openat2+0x121/0x290 [ 357.540602][ T9254] ? __pfx_do_sys_openat2+0x10/0x10 [ 357.540635][ T9254] ? __fput+0x68d/0xb70 [ 357.540669][ T9254] __x64_sys_openat+0x174/0x210 [ 357.540703][ T9254] ? __pfx___x64_sys_openat+0x10/0x10 [ 357.540749][ T9254] do_syscall_64+0xcd/0xf80 [ 357.540778][ T9254] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 357.540807][ T9254] RIP: 0033:0x7fd5b1d8f7c9 [ 357.540829][ T9254] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 357.540856][ T9254] RSP: 002b:00007fd5b2bac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 357.540883][ T9254] RAX: ffffffffffffffda RBX: 00007fd5b1fe6180 RCX: 00007fd5b1d8f7c9 [ 357.540900][ T9254] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 357.540918][ T9254] RBP: 00007fd5b1e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 357.540934][ T9254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 357.540951][ T9254] R13: 00007fd5b1fe6218 R14: 00007fd5b1fe6180 R15: 00007ffe5b42cac8 [ 357.540988][ T9254] [ 360.582692][ T9283] FAULT_INJECTION: forcing a failure. [ 360.582692][ T9283] name failslab, interval 1, probability 0, space 0, times 0 [ 360.595974][ T9283] CPU: 0 UID: 0 PID: 9283 Comm: syz.1.731 Tainted: G L syzkaller #0 PREEMPT(full) [ 360.596023][ T9283] Tainted: [L]=SOFTLOCKUP [ 360.596035][ T9283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 360.596054][ T9283] Call Trace: [ 360.596064][ T9283] [ 360.596076][ T9283] dump_stack_lvl+0x16c/0x1f0 [ 360.596135][ T9283] should_fail_ex+0x512/0x640 [ 360.596171][ T9283] ? __kmalloc_noprof+0xca/0x910 [ 360.596210][ T9283] should_failslab+0xc2/0x120 [ 360.596260][ T9283] __kmalloc_noprof+0xeb/0x910 [ 360.596296][ T9283] ? sk_prot_alloc+0x1a8/0x2a0 [ 360.596354][ T9283] ? sk_prot_alloc+0x1a8/0x2a0 [ 360.596403][ T9283] sk_prot_alloc+0x1a8/0x2a0 [ 360.596457][ T9283] sk_alloc+0x36/0xe30 [ 360.596498][ T9283] pptp_create+0x32/0x340 [ 360.596548][ T9283] pppox_create+0x15c/0x2c0 [ 360.596593][ T9283] __sock_create+0x339/0x8a0 [ 360.596639][ T9283] __sys_socket+0x14d/0x260 [ 360.596673][ T9283] ? __pfx___sys_socket+0x10/0x10 [ 360.596719][ T9283] ? xfd_validate_state+0x61/0x180 [ 360.596767][ T9283] __x64_sys_socket+0x72/0xb0 [ 360.596809][ T9283] ? lockdep_hardirqs_on+0x7c/0x110 [ 360.596869][ T9283] do_syscall_64+0xcd/0xf80 [ 360.596897][ T9283] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 360.596931][ T9283] RIP: 0033:0x7f910778f7c9 [ 360.596954][ T9283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 360.596983][ T9283] RSP: 002b:00007f9108598038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 360.597029][ T9283] RAX: ffffffffffffffda RBX: 00007f91079e5fa0 RCX: 00007f910778f7c9 [ 360.597049][ T9283] RDX: 0000000000000002 RSI: 0000000000000005 RDI: 0000000000000018 [ 360.597068][ T9283] RBP: 00007f9107813f91 R08: 0000000000000000 R09: 0000000000000000 [ 360.597092][ T9283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 360.597111][ T9283] R13: 00007f91079e6038 R14: 00007f91079e5fa0 R15: 00007ffc119834e8 [ 360.597152][ T9283] [ 364.107348][ T9336] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 365.214945][ T9347] syz.2.746 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=2, oom_score_adj=1000 [ 365.236553][ T9347] CPU: 1 UID: 0 PID: 9347 Comm: syz.2.746 Tainted: G L syzkaller #0 PREEMPT(full) [ 365.236603][ T9347] Tainted: [L]=SOFTLOCKUP [ 365.236616][ T9347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 365.236634][ T9347] Call Trace: [ 365.236645][ T9347] [ 365.236657][ T9347] dump_stack_lvl+0x16c/0x1f0 [ 365.236715][ T9347] dump_header+0x101/0x960 [ 365.236757][ T9347] oom_kill_process+0x176/0x910 [ 365.236799][ T9347] out_of_memory+0x350/0x1700 [ 365.236836][ T9347] ? __lock_acquire+0x436/0x2890 [ 365.236873][ T9347] ? __pfx_out_of_memory+0x10/0x10 [ 365.236922][ T9347] mem_cgroup_out_of_memory+0x118/0x130 [ 365.236962][ T9347] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 365.237009][ T9347] ? do_raw_spin_unlock+0x172/0x230 [ 365.237048][ T9347] try_charge_memcg+0x695/0xd30 [ 365.237099][ T9347] ? __pfx_try_charge_memcg+0x10/0x10 [ 365.237143][ T9347] ? peak_open+0x11/0x50 [ 365.237172][ T9347] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 365.237213][ T9347] obj_cgroup_charge_account+0x336/0x670 [ 365.237269][ T9347] __memcg_slab_post_alloc_hook+0x2e3/0x880 [ 365.237333][ T9347] __kmalloc_cache_noprof+0x5cc/0x800 [ 365.237367][ T9347] ? ipv6_add_dev+0x6af/0x15f0 [ 365.237415][ T9347] ? ipv6_add_dev+0x6af/0x15f0 [ 365.237456][ T9347] ipv6_add_dev+0x6af/0x15f0 [ 365.237504][ T9347] addrconf_notify+0x53e/0x19f0 [ 365.237537][ T9347] ? ip6mr_device_event+0x1bc/0x230 [ 365.237578][ T9347] notifier_call_chain+0xbc/0x3e0 [ 365.237621][ T9347] ? __pfx_addrconf_notify+0x10/0x10 [ 365.237661][ T9347] call_netdevice_notifiers_info+0xbe/0x110 [ 365.237692][ T9347] register_netdevice+0x1792/0x21d0 [ 365.237742][ T9347] ? __pfx_register_netdevice+0x10/0x10 [ 365.237786][ T9347] ? alloc_netdev_mqs+0xe17/0x1550 [ 365.237832][ T9347] register_netdev+0x34/0x50 [ 365.237873][ T9347] ip6gre_init_net+0x2bd/0x440 [ 365.237904][ T9347] ? __pfx_ip6gre_init_net+0x10/0x10 [ 365.237939][ T9347] ops_init+0x1e2/0x5f0 [ 365.237982][ T9347] setup_net+0x11d/0x3a0 [ 365.238022][ T9347] ? __pfx_setup_net+0x10/0x10 [ 365.238059][ T9347] ? lockdep_init_map_type+0x5c/0x270 [ 365.238088][ T9347] ? mutex_init_lockep+0x110/0x150 [ 365.238122][ T9347] copy_net_ns+0x351/0x7c0 [ 365.238168][ T9347] create_new_namespaces+0x3ea/0xab0 [ 365.238213][ T9347] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 365.238255][ T9347] ksys_unshare+0x45b/0xa40 [ 365.238299][ T9347] ? __pfx_ksys_unshare+0x10/0x10 [ 365.238351][ T9347] ? xfd_validate_state+0x61/0x180 [ 365.238387][ T9347] __x64_sys_unshare+0x31/0x40 [ 365.238410][ T9347] do_syscall_64+0xcd/0xf80 [ 365.238437][ T9347] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 365.238466][ T9347] RIP: 0033:0x7f4ac0f8f7c9 [ 365.238487][ T9347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 365.238520][ T9347] RSP: 002b:00007f4ac1dcc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 365.238545][ T9347] RAX: ffffffffffffffda RBX: 00007f4ac11e6090 RCX: 00007f4ac0f8f7c9 [ 365.238563][ T9347] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 365.238580][ T9347] RBP: 00007f4ac1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 365.238596][ T9347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 365.238612][ T9347] R13: 00007f4ac11e6128 R14: 00007f4ac11e6090 R15: 00007ffc8e3bb5a8 [ 365.238650][ T9347] [ 365.238694][ T9347] memory: usage 3072kB, limit 3072kB, failcnt 5280 [ 365.618251][ T9347] memory+swap: usage 5564kB, limit 9007199254740988kB, failcnt 0 [ 365.626011][ T9347] kmem: usage 1244kB, limit 9007199254740988kB, failcnt 0 [ 365.735185][ T9347] Memory cgroup stats for /syz2: [ 365.735617][ T9347] cache 4096 [ 365.746674][ T9347] rss 1847296 [ 365.750442][ T9347] rss_huge 0 [ 365.755951][ T9347] shmem 0 [ 365.760188][ T9347] mapped_file 4096 [ 365.867620][ T9347] dirty 4096 [ 365.870857][ T9347] writeback 0 [ 365.874151][ T9347] workingset_refault_anon 1904 [ 365.899028][ T9347] workingset_refault_file 1978 [ 365.914496][ T9347] swap 2551808 [ 365.919003][ T9347] swapcached 98304 [ 365.928287][ T9347] pgpgin 168801 [ 365.931945][ T9347] pgpgout 171410 [ 365.935627][ T9347] pgfault 283485 [ 365.954583][ T9347] pgmajfault 503 [ 365.966892][ T9347] inactive_anon 8192 [ 365.972415][ T9347] active_anon 12288 [ 365.976332][ T9347] inactive_file 0 [ 365.997021][ T9347] active_file 0 [ 366.000510][ T9347] unevictable 1851392 [ 366.007867][ T9347] hierarchical_memory_limit 3145728 [ 366.016923][ T9347] hierarchical_memsw_limit 9223372036854771712 [ 366.023151][ T9347] total_cache 4096 [ 366.036999][ T9347] total_rss 1847296 [ 366.047783][ T9347] total_rss_huge 0 [ 366.067278][ T9347] total_shmem 0 [ 366.072965][ T9347] total_mapped_file 4096 [ 366.077850][ T9347] total_dirty 4096 [ 366.094748][ T9347] total_writeback 0 [ 366.099110][ T9347] total_workingset_refault_anon 1904 [ 366.104971][ T9347] total_workingset_refault_file 1978 [ 366.127863][ T9347] total_swap 2551808 [ 366.131815][ T9347] total_swapcached 98304 [ 366.136070][ T9347] total_pgpgin 168801 [ 366.163119][ T9347] total_pgpgout 171410 [ 366.167594][ T9347] total_pgfault 283485 [ 366.171708][ T9347] total_pgmajfault 503 [ 366.197059][ T9347] total_inactive_anon 8192 [ 366.202160][ T9347] total_active_anon 12288 [ 366.207554][ T53] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 366.219639][ T9347] total_inactive_file 0 [ 366.226026][ T9347] total_active_file 0 [ 366.230367][ T9347] total_unevictable 1851392 [ 366.248797][ T9347] anon_cost 0 [ 366.252109][ T9347] file_cost 0 [ 366.255392][ T9347] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.746,pid=9342,uid=0 [ 366.298529][ T9347] Memory cgroup out of memory: Killed process 9342 (syz.2.746) total-vm:110560kB, anon-rss:2932kB, file-rss:27100kB, shmem-rss:0kB, UID:0 pgtables:168kB oom_score_adj:1000 [ 369.303878][ T9399] FAULT_INJECTION: forcing a failure. [ 369.303878][ T9399] name failslab, interval 1, probability 0, space 0, times 0 [ 369.351020][ T9399] CPU: 1 UID: 0 PID: 9399 Comm: syz.0.759 Tainted: G L syzkaller #0 PREEMPT(full) [ 369.351067][ T9399] Tainted: [L]=SOFTLOCKUP [ 369.351077][ T9399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 369.351095][ T9399] Call Trace: [ 369.351104][ T9399] [ 369.351116][ T9399] dump_stack_lvl+0x16c/0x1f0 [ 369.351178][ T9399] should_fail_ex+0x512/0x640 [ 369.351216][ T9399] should_failslab+0xc2/0x120 [ 369.351261][ T9399] __kmalloc_cache_noprof+0x80/0x800 [ 369.351292][ T9399] ? __pfx___might_resched+0x10/0x10 [ 369.351332][ T9399] ? nfc_genl_rcv_nl_event+0xb9/0x310 [ 369.351369][ T9399] ? nfc_genl_rcv_nl_event+0xb9/0x310 [ 369.351398][ T9399] nfc_genl_rcv_nl_event+0xb9/0x310 [ 369.351430][ T9399] notifier_call_chain+0xbc/0x3e0 [ 369.351474][ T9399] ? __pfx_nfc_genl_rcv_nl_event+0x10/0x10 [ 369.351513][ T9399] blocking_notifier_call_chain+0x69/0xa0 [ 369.351545][ T9399] netlink_release+0x1671/0x2000 [ 369.351597][ T9399] ? netlink_release+0x1e4/0x2000 [ 369.351648][ T9399] ? __pfx_netlink_release+0x10/0x10 [ 369.351693][ T9399] ? __pfx_locks_remove_file+0x10/0x10 [ 369.351742][ T9399] __sock_release+0xb3/0x270 [ 369.351785][ T9399] ? __pfx_sock_close+0x10/0x10 [ 369.351820][ T9399] sock_close+0x1c/0x30 [ 369.351867][ T9399] __fput+0x402/0xb70 [ 369.351914][ T9399] task_work_run+0x150/0x240 [ 369.351938][ T9399] ? __pfx_task_work_run+0x10/0x10 [ 369.351960][ T9399] ? __do_sys_close_range+0x278/0x730 [ 369.352001][ T9399] exit_to_user_mode_loop+0xfb/0x540 [ 369.352032][ T9399] do_syscall_64+0x4ee/0xf80 [ 369.352053][ T9399] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 369.352075][ T9399] RIP: 0033:0x7fbd7498f7c9 [ 369.352092][ T9399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 369.352113][ T9399] RSP: 002b:00007fbd72bd5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 369.352134][ T9399] RAX: 0000000000000000 RBX: 00007fbd74be6180 RCX: 00007fbd7498f7c9 [ 369.352148][ T9399] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 369.352160][ T9399] RBP: 00007fbd72bd5090 R08: 0000000000000000 R09: 0000000000000000 [ 369.352173][ T9399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 369.352186][ T9399] R13: 00007fbd74be6218 R14: 00007fbd74be6180 R15: 00007ffe33076f38 [ 369.352214][ T9399] [ 370.071643][ T9410] FAULT_INJECTION: forcing a failure. [ 370.071643][ T9410] name failslab, interval 1, probability 0, space 0, times 0 [ 370.098125][ T9410] CPU: 1 UID: 0 PID: 9410 Comm: syz.2.764 Tainted: G L syzkaller #0 PREEMPT(full) [ 370.098176][ T9410] Tainted: [L]=SOFTLOCKUP [ 370.098188][ T9410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 370.098207][ T9410] Call Trace: [ 370.098217][ T9410] [ 370.098229][ T9410] dump_stack_lvl+0x16c/0x1f0 [ 370.098286][ T9410] should_fail_ex+0x512/0x640 [ 370.098323][ T9410] ? __kmalloc_noprof+0xca/0x910 [ 370.098363][ T9410] should_failslab+0xc2/0x120 [ 370.098414][ T9410] __kmalloc_noprof+0xeb/0x910 [ 370.098450][ T9410] ? sk_prot_alloc+0x1a8/0x2a0 [ 370.098509][ T9410] ? sk_prot_alloc+0x1a8/0x2a0 [ 370.098568][ T9410] sk_prot_alloc+0x1a8/0x2a0 [ 370.098618][ T9410] sk_alloc+0x36/0xe30 [ 370.098655][ T9410] pptp_create+0x32/0x340 [ 370.098698][ T9410] pppox_create+0x15c/0x2c0 [ 370.098739][ T9410] __sock_create+0x339/0x8a0 [ 370.098775][ T9410] __sys_socket+0x14d/0x260 [ 370.098809][ T9410] ? __pfx___sys_socket+0x10/0x10 [ 370.098839][ T9410] ? xfd_validate_state+0x61/0x180 [ 370.098882][ T9410] __x64_sys_socket+0x72/0xb0 [ 370.098911][ T9410] ? lockdep_hardirqs_on+0x7c/0x110 [ 370.098957][ T9410] do_syscall_64+0xcd/0xf80 [ 370.098986][ T9410] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 370.099015][ T9410] RIP: 0033:0x7f4ac0f8f7c9 [ 370.099038][ T9410] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 370.099066][ T9410] RSP: 002b:00007f4ac1ded038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 370.099093][ T9410] RAX: ffffffffffffffda RBX: 00007f4ac11e5fa0 RCX: 00007f4ac0f8f7c9 [ 370.099112][ T9410] RDX: 0000000000000002 RSI: 0000000000000005 RDI: 0000000000000018 [ 370.099128][ T9410] RBP: 00007f4ac1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 370.099145][ T9410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 370.099162][ T9410] R13: 00007f4ac11e6038 R14: 00007f4ac11e5fa0 R15: 00007ffc8e3bb5a8 [ 370.099201][ T9410] [ 373.495577][ T9454] netlink: 8 bytes leftover after parsing attributes in process `syz.1.773'. [ 373.918470][ T9463] FAULT_INJECTION: forcing a failure. [ 373.918470][ T9463] name failslab, interval 1, probability 0, space 0, times 0 [ 373.963989][ T9463] CPU: 1 UID: 0 PID: 9463 Comm: syz.2.775 Tainted: G L syzkaller #0 PREEMPT(full) [ 373.964035][ T9463] Tainted: [L]=SOFTLOCKUP [ 373.964045][ T9463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 373.964062][ T9463] Call Trace: [ 373.964071][ T9463] [ 373.964083][ T9463] dump_stack_lvl+0x16c/0x1f0 [ 373.964135][ T9463] should_fail_ex+0x512/0x640 [ 373.964167][ T9463] ? __kmalloc_noprof+0xca/0x910 [ 373.964201][ T9463] should_failslab+0xc2/0x120 [ 373.964245][ T9463] __kmalloc_noprof+0xeb/0x910 [ 373.964276][ T9463] ? lsm_blob_alloc+0x68/0x90 [ 373.964320][ T9463] ? lsm_blob_alloc+0x68/0x90 [ 373.964359][ T9463] lsm_blob_alloc+0x68/0x90 [ 373.964407][ T9463] security_sk_alloc+0x2f/0x270 [ 373.964439][ T9463] sk_prot_alloc+0x1c7/0x2a0 [ 373.964487][ T9463] sk_alloc+0x36/0xe30 [ 373.964521][ T9463] pptp_create+0x32/0x340 [ 373.964561][ T9463] pppox_create+0x15c/0x2c0 [ 373.964599][ T9463] __sock_create+0x339/0x8a0 [ 373.964632][ T9463] __sys_socket+0x14d/0x260 [ 373.964661][ T9463] ? __pfx___sys_socket+0x10/0x10 [ 373.964689][ T9463] ? xfd_validate_state+0x61/0x180 [ 373.964724][ T9463] __x64_sys_socket+0x72/0xb0 [ 373.964751][ T9463] ? lockdep_hardirqs_on+0x7c/0x110 [ 373.964795][ T9463] do_syscall_64+0xcd/0xf80 [ 373.964822][ T9463] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 373.964850][ T9463] RIP: 0033:0x7f4ac0f8f7c9 [ 373.964872][ T9463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 373.964900][ T9463] RSP: 002b:00007f4ac1ded038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 373.964927][ T9463] RAX: ffffffffffffffda RBX: 00007f4ac11e5fa0 RCX: 00007f4ac0f8f7c9 [ 373.964946][ T9463] RDX: 0000000000000002 RSI: 0000000000000005 RDI: 0000000000000018 [ 373.964963][ T9463] RBP: 00007f4ac1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 373.964980][ T9463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 373.964997][ T9463] R13: 00007f4ac11e6038 R14: 00007f4ac11e5fa0 R15: 00007ffc8e3bb5a8 [ 373.965034][ T9463] [ 375.794399][ T9505] netlink: 8 bytes leftover after parsing attributes in process `syz.2.787'. [ 376.655225][ T9526] FAULT_INJECTION: forcing a failure. [ 376.655225][ T9526] name failslab, interval 1, probability 0, space 0, times 0 [ 376.672293][ T9526] CPU: 0 UID: 0 PID: 9526 Comm: syz.3.792 Tainted: G L syzkaller #0 PREEMPT(full) [ 376.672357][ T9526] Tainted: [L]=SOFTLOCKUP [ 376.672368][ T9526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 376.672386][ T9526] Call Trace: [ 376.672398][ T9526] [ 376.672409][ T9526] dump_stack_lvl+0x16c/0x1f0 [ 376.672466][ T9526] should_fail_ex+0x512/0x640 [ 376.672500][ T9526] ? kmem_cache_alloc_noprof+0x62/0x770 [ 376.672542][ T9526] ? __pfx_dom_debug_open+0x10/0x10 [ 376.672572][ T9526] should_failslab+0xc2/0x120 [ 376.672622][ T9526] kmem_cache_alloc_noprof+0x83/0x770 [ 376.672661][ T9526] ? seq_open+0x55/0x170 [ 376.672699][ T9526] ? __pfx_dom_debug_open+0x10/0x10 [ 376.672728][ T9526] ? __pfx_dom_debug_show+0x10/0x10 [ 376.672757][ T9526] ? seq_open+0x55/0x170 [ 376.672799][ T9526] seq_open+0x55/0x170 [ 376.672846][ T9526] ? __pfx_dom_debug_show+0x10/0x10 [ 376.672877][ T9526] single_open+0xfc/0x1f0 [ 376.672914][ T9526] full_proxy_open_regular+0x1b9/0x350 [ 376.672962][ T9526] do_dentry_open+0x748/0x1590 [ 376.673020][ T9526] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 376.673086][ T9526] vfs_open+0x82/0x3f0 [ 376.673122][ T9526] path_openat+0x2078/0x3140 [ 376.673178][ T9526] ? __pfx_path_openat+0x10/0x10 [ 376.673237][ T9526] do_filp_open+0x20b/0x470 [ 376.673282][ T9526] ? __pfx_do_filp_open+0x10/0x10 [ 376.673353][ T9526] ? alloc_fd+0x471/0x7d0 [ 376.673406][ T9526] do_sys_openat2+0x121/0x290 [ 376.673439][ T9526] ? __pfx_do_sys_openat2+0x10/0x10 [ 376.673486][ T9526] __x64_sys_openat+0x174/0x210 [ 376.673516][ T9526] ? __pfx___x64_sys_openat+0x10/0x10 [ 376.673560][ T9526] do_syscall_64+0xcd/0xf80 [ 376.673587][ T9526] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 376.673616][ T9526] RIP: 0033:0x7fd5b1d8f7c9 [ 376.673639][ T9526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 376.673668][ T9526] RSP: 002b:00007fd5b2bee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 376.673697][ T9526] RAX: ffffffffffffffda RBX: 00007fd5b1fe5fa0 RCX: 00007fd5b1d8f7c9 [ 376.673717][ T9526] RDX: 0000000000000100 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 376.673736][ T9526] RBP: 00007fd5b1e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 376.673753][ T9526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 376.673769][ T9526] R13: 00007fd5b1fe6038 R14: 00007fd5b1fe5fa0 R15: 00007ffe5b42cac8 [ 376.673807][ T9526] [ 377.179792][ T9533] FAULT_INJECTION: forcing a failure. [ 377.179792][ T9533] name failslab, interval 1, probability 0, space 0, times 0 [ 377.179852][ T9533] CPU: 1 UID: 0 PID: 9533 Comm: syz.2.794 Tainted: G L syzkaller #0 PREEMPT(full) [ 377.179899][ T9533] Tainted: [L]=SOFTLOCKUP [ 377.179909][ T9533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 377.179925][ T9533] Call Trace: [ 377.179934][ T9533] [ 377.179944][ T9533] dump_stack_lvl+0x16c/0x1f0 [ 377.179995][ T9533] should_fail_ex+0x512/0x640 [ 377.180027][ T9533] ? __kmalloc_cache_noprof+0x5f/0x800 [ 377.180064][ T9533] should_failslab+0xc2/0x120 [ 377.180108][ T9533] __kmalloc_cache_noprof+0x80/0x800 [ 377.180142][ T9533] ? __svc_create+0x5c/0x9f0 [ 377.180185][ T9533] ? __svc_create+0x5c/0x9f0 [ 377.180212][ T9533] ? __pfx_nfsd+0x10/0x10 [ 377.180247][ T9533] __svc_create+0x5c/0x9f0 [ 377.180283][ T9533] ? __pfx_nfsd+0x10/0x10 [ 377.180319][ T9533] svc_create_pooled+0x4db/0x820 [ 377.180351][ T9533] ? nfsd_reset_versions+0x86/0x2d0 [ 377.180389][ T9533] ? __init_swait_queue_head+0xca/0x150 [ 377.180445][ T9533] nfsd_create_serv+0x2b9/0x4a0 [ 377.180490][ T9533] ? __pfx_nfsd_create_serv+0x10/0x10 [ 377.180537][ T9533] ? __nla_validate_parse+0x600/0x2880 [ 377.180585][ T9533] nfsd_nl_listener_set_doit+0xdd/0x1ae0 [ 377.180629][ T9533] ? rcu_is_watching+0x12/0xc0 [ 377.180674][ T9533] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 377.180708][ T9533] ? __nla_parse+0x40/0x60 [ 377.180755][ T9533] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 377.180790][ T9533] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 377.180842][ T9533] genl_family_rcv_msg_doit+0x209/0x2f0 [ 377.180875][ T9533] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 377.180906][ T9533] ? genl_get_cmd+0x194/0x580 [ 377.180939][ T9533] ? bpf_lsm_capable+0x9/0x10 [ 377.180978][ T9533] ? security_capable+0x7e/0x260 [ 377.181032][ T9533] genl_rcv_msg+0x55c/0x800 [ 377.181065][ T9533] ? __pfx_genl_rcv_msg+0x10/0x10 [ 377.181095][ T9533] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 377.181141][ T9533] netlink_rcv_skb+0x158/0x420 [ 377.181191][ T9533] ? __pfx_genl_rcv_msg+0x10/0x10 [ 377.181222][ T9533] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 377.181304][ T9533] ? netlink_deliver_tap+0x1ae/0xd30 [ 377.181353][ T9533] genl_rcv+0x28/0x40 [ 377.181378][ T9533] netlink_unicast+0x5aa/0x870 [ 377.181441][ T9533] ? __pfx_netlink_unicast+0x10/0x10 [ 377.181519][ T9533] netlink_sendmsg+0x8c8/0xdd0 [ 377.181572][ T9533] ? __pfx_netlink_sendmsg+0x10/0x10 [ 377.181636][ T9533] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 377.181691][ T9533] ____sys_sendmsg+0xa5d/0xc30 [ 377.181721][ T9533] ? copy_msghdr_from_user+0x10a/0x160 [ 377.181760][ T9533] ? __pfx_____sys_sendmsg+0x10/0x10 [ 377.181805][ T9533] ___sys_sendmsg+0x134/0x1d0 [ 377.181846][ T9533] ? __pfx____sys_sendmsg+0x10/0x10 [ 377.181931][ T9533] __sys_sendmsg+0x16d/0x220 [ 377.181990][ T9533] ? __pfx___sys_sendmsg+0x10/0x10 [ 377.182057][ T9533] do_syscall_64+0xcd/0xf80 [ 377.182088][ T9533] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 377.182120][ T9533] RIP: 0033:0x7f4ac0f8f7c9 [ 377.182144][ T9533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 377.182179][ T9533] RSP: 002b:00007f4ac1dcc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 377.182208][ T9533] RAX: ffffffffffffffda RBX: 00007f4ac11e6090 RCX: 00007f4ac0f8f7c9 [ 377.182228][ T9533] RDX: 0000000000000000 RSI: 0000200000000940 RDI: 0000000000000003 [ 377.182246][ T9533] RBP: 00007f4ac1dcc090 R08: 0000000000000000 R09: 0000000000000000 [ 377.182263][ T9533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 377.182281][ T9533] R13: 00007f4ac11e6128 R14: 00007f4ac11e6090 R15: 00007ffc8e3bb5a8 [ 377.182323][ T9533] [ 377.399118][ T9506] sctp: [Deprecated]: syz.1.785 (pid 9506) Use of struct sctp_assoc_value in delayed_ack socket option. [ 377.399118][ T9506] Use struct sctp_sack_info instead [ 378.901238][ T9556] FAULT_INJECTION: forcing a failure. [ 378.901238][ T9556] name failslab, interval 1, probability 0, space 0, times 0 [ 378.980680][ T9556] CPU: 1 UID: 0 PID: 9556 Comm: syz.1.807 Tainted: G L syzkaller #0 PREEMPT(full) [ 378.980746][ T9556] Tainted: [L]=SOFTLOCKUP [ 378.980757][ T9556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 378.980774][ T9556] Call Trace: [ 378.980783][ T9556] [ 378.980795][ T9556] dump_stack_lvl+0x16c/0x1f0 [ 378.980849][ T9556] should_fail_ex+0x512/0x640 [ 378.980881][ T9556] ? kmem_cache_alloc_noprof+0x62/0x770 [ 378.980919][ T9556] ? __pfx_dom_debug_open+0x10/0x10 [ 378.980949][ T9556] should_failslab+0xc2/0x120 [ 378.980995][ T9556] kmem_cache_alloc_noprof+0x83/0x770 [ 378.981031][ T9556] ? seq_open+0x55/0x170 [ 378.981067][ T9556] ? __pfx_dom_debug_open+0x10/0x10 [ 378.981094][ T9556] ? __pfx_dom_debug_show+0x10/0x10 [ 378.981121][ T9556] ? seq_open+0x55/0x170 [ 378.981151][ T9556] seq_open+0x55/0x170 [ 378.981182][ T9556] ? __pfx_dom_debug_show+0x10/0x10 [ 378.981211][ T9556] single_open+0xfc/0x1f0 [ 378.981246][ T9556] full_proxy_open_regular+0x1b9/0x350 [ 378.981294][ T9556] do_dentry_open+0x748/0x1590 [ 378.981334][ T9556] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 378.981388][ T9556] vfs_open+0x82/0x3f0 [ 378.981424][ T9556] path_openat+0x2078/0x3140 [ 378.981480][ T9556] ? __pfx_path_openat+0x10/0x10 [ 378.981537][ T9556] do_filp_open+0x20b/0x470 [ 378.981589][ T9556] ? __pfx_do_filp_open+0x10/0x10 [ 378.981707][ T9556] ? alloc_fd+0x471/0x7d0 [ 378.981772][ T9556] do_sys_openat2+0x121/0x290 [ 378.981808][ T9556] ? __pfx_do_sys_openat2+0x10/0x10 [ 378.981861][ T9556] __x64_sys_openat+0x174/0x210 [ 378.981898][ T9556] ? __pfx___x64_sys_openat+0x10/0x10 [ 378.981953][ T9556] do_syscall_64+0xcd/0xf80 [ 378.981987][ T9556] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 378.982020][ T9556] RIP: 0033:0x7f910778f7c9 [ 378.982046][ T9556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 378.982078][ T9556] RSP: 002b:00007f9108598038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 378.982108][ T9556] RAX: ffffffffffffffda RBX: 00007f91079e5fa0 RCX: 00007f910778f7c9 [ 378.982130][ T9556] RDX: 0000000000000100 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 378.982151][ T9556] RBP: 00007f9107813f91 R08: 0000000000000000 R09: 0000000000000000 [ 378.982171][ T9556] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 378.982190][ T9556] R13: 00007f91079e6038 R14: 00007f91079e5fa0 R15: 00007ffc119834e8 [ 378.982233][ T9556] [ 379.424734][ T9565] netlink: 146 bytes leftover after parsing attributes in process `syz.0.803'. [ 379.522738][ T9566] bond0: no command found in slaves file - use +ifname or -ifname [ 381.953530][ T30] audit: type=1800 audit(1768467974.819:8): pid=9625 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.818" name="version" dev="configfs" ino=27243 res=0 errno=0 [ 384.526973][ T30] audit: type=1800 audit(1768467977.398:9): pid=9668 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.836" name="version" dev="configfs" ino=26504 res=0 errno=0 [ 384.792082][ T9673] FAULT_INJECTION: forcing a failure. [ 384.792082][ T9673] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 384.810279][ T9673] CPU: 0 UID: 0 PID: 9673 Comm: syz.0.830 Tainted: G L syzkaller #0 PREEMPT(full) [ 384.810340][ T9673] Tainted: [L]=SOFTLOCKUP [ 384.810352][ T9673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 384.810371][ T9673] Call Trace: [ 384.810382][ T9673] [ 384.810394][ T9673] dump_stack_lvl+0x16c/0x1f0 [ 384.810448][ T9673] should_fail_ex+0x512/0x640 [ 384.810489][ T9673] strncpy_from_user+0x3b/0x2e0 [ 384.810544][ T9673] getname_flags.part.0+0x8f/0x550 [ 384.810588][ T9673] getname_flags+0x93/0xf0 [ 384.810631][ T9673] __x64_sys_mknod+0x74/0xb0 [ 384.810682][ T9673] do_syscall_64+0xcd/0xf80 [ 384.810713][ T9673] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 384.810745][ T9673] RIP: 0033:0x7fbd7498f7c9 [ 384.810770][ T9673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 384.810802][ T9673] RSP: 002b:00007fbd75757038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 384.810833][ T9673] RAX: ffffffffffffffda RBX: 00007fbd74be5fa0 RCX: 00007fbd7498f7c9 [ 384.810854][ T9673] RDX: 00000000fffffffa RSI: 00000000000000ca RDI: 0000200000001040 [ 384.810876][ T9673] RBP: 00007fbd74a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 384.810896][ T9673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 384.810915][ T9673] R13: 00007fbd74be6038 R14: 00007fbd74be5fa0 R15: 00007ffe33076f38 [ 384.810959][ T9673] [ 385.441163][ T9686] FAULT_INJECTION: forcing a failure. [ 385.441163][ T9686] name failslab, interval 1, probability 0, space 0, times 0 [ 385.499276][ T9686] CPU: 1 UID: 0 PID: 9686 Comm: syz.3.832 Tainted: G L syzkaller #0 PREEMPT(full) [ 385.499322][ T9686] Tainted: [L]=SOFTLOCKUP [ 385.499336][ T9686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 385.499352][ T9686] Call Trace: [ 385.499361][ T9686] [ 385.499372][ T9686] dump_stack_lvl+0x16c/0x1f0 [ 385.499422][ T9686] should_fail_ex+0x512/0x640 [ 385.499453][ T9686] ? __kmalloc_noprof+0xca/0x910 [ 385.499488][ T9686] should_failslab+0xc2/0x120 [ 385.499531][ T9686] __kmalloc_noprof+0xeb/0x910 [ 385.499563][ T9686] ? __svc_create+0x5c0/0x9f0 [ 385.499599][ T9686] ? __svc_create+0x5c0/0x9f0 [ 385.499626][ T9686] __svc_create+0x5c0/0x9f0 [ 385.499662][ T9686] ? __pfx_nfsd+0x10/0x10 [ 385.499698][ T9686] svc_create_pooled+0x4db/0x820 [ 385.499730][ T9686] ? nfsd_reset_versions+0x86/0x2d0 [ 385.499767][ T9686] ? __init_swait_queue_head+0xca/0x150 [ 385.499806][ T9686] nfsd_create_serv+0x2b9/0x4a0 [ 385.499849][ T9686] ? __pfx_nfsd_create_serv+0x10/0x10 [ 385.499891][ T9686] ? __nla_validate_parse+0x600/0x2880 [ 385.499946][ T9686] nfsd_nl_listener_set_doit+0xdd/0x1ae0 [ 385.499989][ T9686] ? rcu_is_watching+0x12/0xc0 [ 385.500035][ T9686] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 385.500066][ T9686] ? __nla_parse+0x40/0x60 [ 385.500110][ T9686] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 385.500144][ T9686] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 385.500183][ T9686] genl_family_rcv_msg_doit+0x209/0x2f0 [ 385.500215][ T9686] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 385.500245][ T9686] ? genl_get_cmd+0x194/0x580 [ 385.500281][ T9686] ? bpf_lsm_capable+0x9/0x10 [ 385.500317][ T9686] ? security_capable+0x7e/0x260 [ 385.500371][ T9686] genl_rcv_msg+0x55c/0x800 [ 385.500405][ T9686] ? __pfx_genl_rcv_msg+0x10/0x10 [ 385.500435][ T9686] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 385.500479][ T9686] netlink_rcv_skb+0x158/0x420 [ 385.500522][ T9686] ? __pfx_genl_rcv_msg+0x10/0x10 [ 385.500553][ T9686] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 385.500613][ T9686] ? netlink_deliver_tap+0x1ae/0xd30 [ 385.500661][ T9686] genl_rcv+0x28/0x40 [ 385.500683][ T9686] netlink_unicast+0x5aa/0x870 [ 385.500732][ T9686] ? __pfx_netlink_unicast+0x10/0x10 [ 385.500790][ T9686] netlink_sendmsg+0x8c8/0xdd0 [ 385.500841][ T9686] ? __pfx_netlink_sendmsg+0x10/0x10 [ 385.500890][ T9686] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 385.500945][ T9686] ____sys_sendmsg+0xa5d/0xc30 [ 385.500974][ T9686] ? copy_msghdr_from_user+0x10a/0x160 [ 385.501021][ T9686] ? __pfx_____sys_sendmsg+0x10/0x10 [ 385.501067][ T9686] ___sys_sendmsg+0x134/0x1d0 [ 385.501108][ T9686] ? __pfx____sys_sendmsg+0x10/0x10 [ 385.501193][ T9686] __sys_sendmsg+0x16d/0x220 [ 385.501233][ T9686] ? __pfx___sys_sendmsg+0x10/0x10 [ 385.501296][ T9686] do_syscall_64+0xcd/0xf80 [ 385.501324][ T9686] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 385.501354][ T9686] RIP: 0033:0x7fd5b1d8f7c9 [ 385.501376][ T9686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 385.501403][ T9686] RSP: 002b:00007fd5b2bee038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 385.501430][ T9686] RAX: ffffffffffffffda RBX: 00007fd5b1fe5fa0 RCX: 00007fd5b1d8f7c9 [ 385.501448][ T9686] RDX: 0000000000000000 RSI: 0000200000000940 RDI: 0000000000000003 [ 385.501465][ T9686] RBP: 00007fd5b2bee090 R08: 0000000000000000 R09: 0000000000000000 [ 385.501482][ T9686] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 385.501499][ T9686] R13: 00007fd5b1fe6038 R14: 00007fd5b1fe5fa0 R15: 00007ffe5b42cac8 [ 385.501538][ T9686] [ 386.005435][ T9692] FAULT_INJECTION: forcing a failure. [ 386.005435][ T9692] name fail_futex, interval 1, probability 0, space 0, times 0 [ 386.018926][ T9692] CPU: 1 UID: 0 PID: 9692 Comm: syz.3.834 Tainted: G L syzkaller #0 PREEMPT(full) [ 386.018982][ T9692] Tainted: [L]=SOFTLOCKUP [ 386.018993][ T9692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 386.019011][ T9692] Call Trace: [ 386.019021][ T9692] [ 386.019032][ T9692] dump_stack_lvl+0x16c/0x1f0 [ 386.019083][ T9692] should_fail_ex+0x512/0x640 [ 386.019122][ T9692] get_futex_key+0x1d0/0x15f0 [ 386.019158][ T9692] ? __pfx_get_futex_key+0x10/0x10 [ 386.019202][ T9692] futex_wake+0xea/0x530 [ 386.019242][ T9692] ? kasan_quarantine_put+0x10a/0x240 [ 386.019282][ T9692] ? __pfx_futex_wake+0x10/0x10 [ 386.019325][ T9692] ? putname+0xf5/0x1a0 [ 386.019360][ T9692] do_futex+0x1e3/0x350 [ 386.019394][ T9692] ? __pfx_do_futex+0x10/0x10 [ 386.019437][ T9692] __x64_sys_futex+0x1e0/0x4c0 [ 386.019473][ T9692] ? __x64_sys_openat+0x174/0x210 [ 386.019507][ T9692] ? __pfx___x64_sys_futex+0x10/0x10 [ 386.019556][ T9692] do_syscall_64+0xcd/0xf80 [ 386.019585][ T9692] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 386.019615][ T9692] RIP: 0033:0x7fd5b1d8f7c9 [ 386.019638][ T9692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 386.019667][ T9692] RSP: 002b:00007fd5b2bee0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 386.019695][ T9692] RAX: ffffffffffffffda RBX: 00007fd5b1fe5fa8 RCX: 00007fd5b1d8f7c9 [ 386.019714][ T9692] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fd5b1fe5fac [ 386.019733][ T9692] RBP: 00007fd5b1fe5fa0 R08: 00007fd5b2bef000 R09: 0000000000000000 [ 386.019750][ T9692] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 386.019768][ T9692] R13: 00007fd5b1fe6038 R14: 00007ffe5b42c9e0 R15: 00007ffe5b42cac8 [ 386.019807][ T9692] [ 386.643623][ T9698] FAULT_INJECTION: forcing a failure. [ 386.643623][ T9698] name failslab, interval 1, probability 0, space 0, times 0 [ 386.712241][ T9698] CPU: 1 UID: 0 PID: 9698 Comm: syz.3.838 Tainted: G L syzkaller #0 PREEMPT(full) [ 386.712277][ T9698] Tainted: [L]=SOFTLOCKUP [ 386.712285][ T9698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 386.712299][ T9698] Call Trace: [ 386.712307][ T9698] [ 386.712316][ T9698] dump_stack_lvl+0x16c/0x1f0 [ 386.712356][ T9698] should_fail_ex+0x512/0x640 [ 386.712382][ T9698] ? kmem_cache_alloc_lru_noprof+0x66/0x770 [ 386.712414][ T9698] should_failslab+0xc2/0x120 [ 386.712449][ T9698] kmem_cache_alloc_lru_noprof+0x87/0x770 [ 386.712475][ T9698] ? __pfx___debug_object_init+0x10/0x10 [ 386.712511][ T9698] ? __d_alloc+0x35/0xa80 [ 386.712535][ T9698] ? __d_alloc+0x35/0xa80 [ 386.712553][ T9698] __d_alloc+0x35/0xa80 [ 386.712575][ T9698] d_alloc_pseudo+0x1c/0xc0 [ 386.712601][ T9698] alloc_file_pseudo+0xcf/0x230 [ 386.712627][ T9698] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 386.712652][ T9698] ? alloc_fd+0x471/0x7d0 [ 386.712689][ T9698] sock_alloc_file+0x50/0x210 [ 386.712723][ T9698] __sys_socket+0x1c0/0x260 [ 386.712745][ T9698] ? __pfx___sys_socket+0x10/0x10 [ 386.712768][ T9698] ? xfd_validate_state+0x61/0x180 [ 386.712788][ T9698] ? __pfx_ksys_write+0x10/0x10 [ 386.712825][ T9698] __x64_sys_socket+0x72/0xb0 [ 386.712846][ T9698] ? lockdep_hardirqs_on+0x7c/0x110 [ 386.712884][ T9698] do_syscall_64+0xcd/0xf80 [ 386.712905][ T9698] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 386.712928][ T9698] RIP: 0033:0x7fd5b1d8f7c9 [ 386.712944][ T9698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 386.712967][ T9698] RSP: 002b:00007fd5b2bee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 386.712988][ T9698] RAX: ffffffffffffffda RBX: 00007fd5b1fe5fa0 RCX: 00007fd5b1d8f7c9 [ 386.713002][ T9698] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000015 [ 386.713026][ T9698] RBP: 00007fd5b1e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 386.713038][ T9698] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 386.713051][ T9698] R13: 00007fd5b1fe6038 R14: 00007fd5b1fe5fa0 R15: 00007ffe5b42cac8 [ 386.713077][ T9698] [ 387.159881][ T30] audit: type=1800 audit(1768467980.027:10): pid=9708 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.840" name="version" dev="configfs" ino=26573 res=0 errno=0 [ 387.201664][ T9710] netlink: 146 bytes leftover after parsing attributes in process `syz.2.839'. [ 389.063610][ T9741] netlink: 330 bytes leftover after parsing attributes in process `syz.0.856'. [ 389.159060][ T9741] gretap0: refused to change device tx_queue_len [ 389.263017][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 389.269505][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 390.212100][ T9760] FAULT_INJECTION: forcing a failure. [ 390.212100][ T9760] name failslab, interval 1, probability 0, space 0, times 0 [ 390.231242][ T9760] CPU: 1 UID: 0 PID: 9760 Comm: syz.3.861 Tainted: G L syzkaller #0 PREEMPT(full) [ 390.231287][ T9760] Tainted: [L]=SOFTLOCKUP [ 390.231298][ T9760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 390.231314][ T9760] Call Trace: [ 390.231324][ T9760] [ 390.231334][ T9760] dump_stack_lvl+0x16c/0x1f0 [ 390.231386][ T9760] should_fail_ex+0x512/0x640 [ 390.231420][ T9760] ? kmem_cache_alloc_lru_noprof+0x66/0x770 [ 390.231464][ T9760] should_failslab+0xc2/0x120 [ 390.231509][ T9760] kmem_cache_alloc_lru_noprof+0x87/0x770 [ 390.231559][ T9760] ? shmem_alloc_inode+0x25/0x50 [ 390.231608][ T9760] ? __pfx_shmem_alloc_inode+0x10/0x10 [ 390.231647][ T9760] ? shmem_alloc_inode+0x25/0x50 [ 390.231686][ T9760] shmem_alloc_inode+0x25/0x50 [ 390.231726][ T9760] alloc_inode+0x64/0x240 [ 390.231761][ T9760] new_inode+0x22/0x1c0 [ 390.231798][ T9760] shmem_get_inode+0x19a/0xfb0 [ 390.231851][ T9760] shmem_mknod+0x1a2/0x3b0 [ 390.231903][ T9760] vfs_create+0x63a/0x9e0 [ 390.231943][ T9760] do_mknodat+0x4f2/0x6f0 [ 390.231988][ T9760] ? __pfx_do_mknodat+0x10/0x10 [ 390.232032][ T9760] ? getname_flags.part.0+0x1c5/0x550 [ 390.232092][ T9760] __x64_sys_mknod+0x87/0xb0 [ 390.232142][ T9760] do_syscall_64+0xcd/0xf80 [ 390.232175][ T9760] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 390.232207][ T9760] RIP: 0033:0x7fd5b1d8f7c9 [ 390.232238][ T9760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 390.232270][ T9760] RSP: 002b:00007fd5b2bee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 390.232301][ T9760] RAX: ffffffffffffffda RBX: 00007fd5b1fe5fa0 RCX: 00007fd5b1d8f7c9 [ 390.232324][ T9760] RDX: 00000000fffffffa RSI: 00000000000000ca RDI: 0000200000001040 [ 390.232344][ T9760] RBP: 00007fd5b1e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 390.232364][ T9760] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 390.232383][ T9760] R13: 00007fd5b1fe6038 R14: 00007fd5b1fe5fa0 R15: 00007ffe5b42cac8 [ 390.232426][ T9760] [ 391.216335][ T30] audit: type=1800 audit(1768467984.085:11): pid=9778 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.853" name="version" dev="configfs" ino=28798 res=0 errno=0 [ 391.596099][ T9789] FAULT_INJECTION: forcing a failure. [ 391.596099][ T9789] name failslab, interval 1, probability 0, space 0, times 0 [ 391.640656][ T9789] CPU: 1 UID: 0 PID: 9789 Comm: syz.2.859 Tainted: G L syzkaller #0 PREEMPT(full) [ 391.640696][ T9789] Tainted: [L]=SOFTLOCKUP [ 391.640703][ T9789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 391.640716][ T9789] Call Trace: [ 391.640723][ T9789] [ 391.640731][ T9789] dump_stack_lvl+0x16c/0x1f0 [ 391.640769][ T9789] should_fail_ex+0x512/0x640 [ 391.640793][ T9789] ? kmem_cache_alloc_noprof+0x62/0x770 [ 391.640820][ T9789] ? __pfx_dom_debug_open+0x10/0x10 [ 391.640840][ T9789] should_failslab+0xc2/0x120 [ 391.640873][ T9789] kmem_cache_alloc_noprof+0x83/0x770 [ 391.640897][ T9789] ? seq_open+0x55/0x170 [ 391.640924][ T9789] ? __pfx_dom_debug_open+0x10/0x10 [ 391.640944][ T9789] ? __pfx_dom_debug_show+0x10/0x10 [ 391.640963][ T9789] ? seq_open+0x55/0x170 [ 391.640985][ T9789] seq_open+0x55/0x170 [ 391.641006][ T9789] ? __pfx_dom_debug_show+0x10/0x10 [ 391.641027][ T9789] single_open+0xfc/0x1f0 [ 391.641051][ T9789] full_proxy_open_regular+0x1b9/0x350 [ 391.641098][ T9789] do_dentry_open+0x748/0x1590 [ 391.641126][ T9789] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 391.641162][ T9789] vfs_open+0x82/0x3f0 [ 391.641185][ T9789] path_openat+0x2078/0x3140 [ 391.641221][ T9789] ? __pfx_path_openat+0x10/0x10 [ 391.641259][ T9789] do_filp_open+0x20b/0x470 [ 391.641309][ T9789] ? __pfx_do_filp_open+0x10/0x10 [ 391.641358][ T9789] ? alloc_fd+0x471/0x7d0 [ 391.641396][ T9789] do_sys_openat2+0x121/0x290 [ 391.641419][ T9789] ? __pfx_do_sys_openat2+0x10/0x10 [ 391.641451][ T9789] __x64_sys_openat+0x174/0x210 [ 391.641475][ T9789] ? __pfx___x64_sys_openat+0x10/0x10 [ 391.641509][ T9789] do_syscall_64+0xcd/0xf80 [ 391.641530][ T9789] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 391.641551][ T9789] RIP: 0033:0x7f4ac0f8f7c9 [ 391.641568][ T9789] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 391.641588][ T9789] RSP: 002b:00007f4ac1ded038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 391.641607][ T9789] RAX: ffffffffffffffda RBX: 00007f4ac11e5fa0 RCX: 00007f4ac0f8f7c9 [ 391.641621][ T9789] RDX: 0000000000000100 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 391.641634][ T9789] RBP: 00007f4ac1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 391.641647][ T9789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 391.641659][ T9789] R13: 00007f4ac11e6038 R14: 00007f4ac11e5fa0 R15: 00007ffc8e3bb5a8 [ 391.641693][ T9789] [ 393.400696][ T9819] netlink: 342 bytes leftover after parsing attributes in process `syz.1.867'. [ 393.423876][ T9819] netlink: 342 bytes leftover after parsing attributes in process `syz.1.867'. [ 393.462240][ T9821] FAULT_INJECTION: forcing a failure. [ 393.462240][ T9821] name failslab, interval 1, probability 0, space 0, times 0 [ 393.480869][ T9821] CPU: 1 UID: 0 PID: 9821 Comm: syz.2.866 Tainted: G L syzkaller #0 PREEMPT(full) [ 393.480925][ T9821] Tainted: [L]=SOFTLOCKUP [ 393.480934][ T9821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 393.480950][ T9821] Call Trace: [ 393.480958][ T9821] [ 393.480969][ T9821] dump_stack_lvl+0x16c/0x1f0 [ 393.481016][ T9821] should_fail_ex+0x512/0x640 [ 393.481047][ T9821] ? fs_reclaim_acquire+0xae/0x150 [ 393.481093][ T9821] should_failslab+0xc2/0x120 [ 393.481152][ T9821] __kmalloc_noprof+0xeb/0x910 [ 393.481195][ T9821] ? tomoyo_encode2+0x100/0x3e0 [ 393.481236][ T9821] ? tomoyo_encode2+0x100/0x3e0 [ 393.481269][ T9821] tomoyo_encode2+0x100/0x3e0 [ 393.481307][ T9821] tomoyo_encode+0x29/0x50 [ 393.481344][ T9821] tomoyo_realpath_from_path+0x18f/0x6e0 [ 393.481389][ T9821] tomoyo_path_number_perm+0x245/0x580 [ 393.481419][ T9821] ? tomoyo_path_number_perm+0x237/0x580 [ 393.481453][ T9821] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 393.481490][ T9821] ? rcu_read_unlock+0x17/0x60 [ 393.481523][ T9821] ? do_raw_spin_lock+0x12c/0x2b0 [ 393.481556][ T9821] ? find_held_lock+0x2b/0x80 [ 393.481630][ T9821] ? find_held_lock+0x2b/0x80 [ 393.481669][ T9821] ? __pfx___d_add+0x10/0x10 [ 393.481699][ T9821] ? d_alloc+0x176/0x1e0 [ 393.481723][ T9821] ? current_check_access_path+0x33b/0x460 [ 393.481769][ T9821] ? __pfx_current_check_access_path+0x10/0x10 [ 393.481815][ T9821] ? simple_lookup+0x105/0x1d0 [ 393.481867][ T9821] tomoyo_path_mknod+0x10c/0x190 [ 393.481916][ T9821] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 393.481969][ T9821] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 393.482023][ T9821] security_path_mknod+0x161/0x310 [ 393.482063][ T9821] do_mknodat+0x24e/0x6f0 [ 393.482121][ T9821] ? __pfx_do_mknodat+0x10/0x10 [ 393.482163][ T9821] ? getname_flags.part.0+0x1c5/0x550 [ 393.482208][ T9821] __x64_sys_mknod+0x87/0xb0 [ 393.482248][ T9821] do_syscall_64+0xcd/0xf80 [ 393.482273][ T9821] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 393.482298][ T9821] RIP: 0033:0x7f4ac0f8f7c9 [ 393.482318][ T9821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 393.482343][ T9821] RSP: 002b:00007f4ac1ded038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 393.482367][ T9821] RAX: ffffffffffffffda RBX: 00007f4ac11e5fa0 RCX: 00007f4ac0f8f7c9 [ 393.482384][ T9821] RDX: 00000000fffffffa RSI: 00000000000000ca RDI: 0000200000001040 [ 393.482399][ T9821] RBP: 00007f4ac1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 393.482414][ T9821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 393.482428][ T9821] R13: 00007f4ac11e6038 R14: 00007f4ac11e5fa0 R15: 00007ffc8e3bb5a8 [ 393.482466][ T9821] [ 393.482532][ T9821] ERROR: Out of memory at tomoyo_realpath_from_path. [ 393.767354][ T9819] netlink: 302 bytes leftover after parsing attributes in process `syz.1.867'. [ 394.563029][ T9835] FAULT_INJECTION: forcing a failure. [ 394.563029][ T9835] name failslab, interval 1, probability 0, space 0, times 0 [ 394.616476][ T9835] CPU: 0 UID: 0 PID: 9835 Comm: syz.2.871 Tainted: G L syzkaller #0 PREEMPT(full) [ 394.616509][ T9835] Tainted: [L]=SOFTLOCKUP [ 394.616516][ T9835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 394.616528][ T9835] Call Trace: [ 394.616534][ T9835] [ 394.616541][ T9835] dump_stack_lvl+0x16c/0x1f0 [ 394.616577][ T9835] should_fail_ex+0x512/0x640 [ 394.616600][ T9835] ? kmem_cache_alloc_noprof+0x62/0x770 [ 394.616626][ T9835] ? __pfx_dom_debug_open+0x10/0x10 [ 394.616645][ T9835] should_failslab+0xc2/0x120 [ 394.616675][ T9835] kmem_cache_alloc_noprof+0x83/0x770 [ 394.616699][ T9835] ? seq_open+0x55/0x170 [ 394.616724][ T9835] ? __pfx_dom_debug_open+0x10/0x10 [ 394.616741][ T9835] ? __pfx_dom_debug_show+0x10/0x10 [ 394.616759][ T9835] ? seq_open+0x55/0x170 [ 394.616779][ T9835] seq_open+0x55/0x170 [ 394.616799][ T9835] ? __pfx_dom_debug_show+0x10/0x10 [ 394.616819][ T9835] single_open+0xfc/0x1f0 [ 394.616842][ T9835] full_proxy_open_regular+0x1b9/0x350 [ 394.616874][ T9835] do_dentry_open+0x748/0x1590 [ 394.616902][ T9835] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 394.616938][ T9835] vfs_open+0x82/0x3f0 [ 394.616961][ T9835] path_openat+0x2078/0x3140 [ 394.616999][ T9835] ? __pfx_path_openat+0x10/0x10 [ 394.617037][ T9835] do_filp_open+0x20b/0x470 [ 394.617072][ T9835] ? __pfx_do_filp_open+0x10/0x10 [ 394.617119][ T9835] ? alloc_fd+0x471/0x7d0 [ 394.617154][ T9835] do_sys_openat2+0x121/0x290 [ 394.617176][ T9835] ? __pfx_do_sys_openat2+0x10/0x10 [ 394.617207][ T9835] __x64_sys_openat+0x174/0x210 [ 394.617229][ T9835] ? __pfx___x64_sys_openat+0x10/0x10 [ 394.617261][ T9835] do_syscall_64+0xcd/0xf80 [ 394.617285][ T9835] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 394.617312][ T9835] RIP: 0033:0x7f4ac0f8f7c9 [ 394.617327][ T9835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 394.617347][ T9835] RSP: 002b:00007f4ac1ded038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 394.617365][ T9835] RAX: ffffffffffffffda RBX: 00007f4ac11e5fa0 RCX: 00007f4ac0f8f7c9 [ 394.617397][ T9835] RDX: 0000000000000100 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 394.617411][ T9835] RBP: 00007f4ac1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 394.617425][ T9835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 394.617438][ T9835] R13: 00007f4ac11e6038 R14: 00007f4ac11e5fa0 R15: 00007ffc8e3bb5a8 [ 394.617468][ T9835] [ 397.369673][ T9857] netlink: 330 bytes leftover after parsing attributes in process `syz.2.876'. [ 397.383175][ T9857] gretap0: refused to change device tx_queue_len [ 398.127724][ T9886] FAULT_INJECTION: forcing a failure. [ 398.127724][ T9886] name failslab, interval 1, probability 0, space 0, times 0 [ 398.150149][ T9886] CPU: 1 UID: 0 PID: 9886 Comm: syz.2.885 Tainted: G L syzkaller #0 PREEMPT(full) [ 398.150197][ T9886] Tainted: [L]=SOFTLOCKUP [ 398.150207][ T9886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 398.150223][ T9886] Call Trace: [ 398.150232][ T9886] [ 398.150243][ T9886] dump_stack_lvl+0x16c/0x1f0 [ 398.150293][ T9886] should_fail_ex+0x512/0x640 [ 398.150326][ T9886] ? __kmalloc_cache_noprof+0x5f/0x800 [ 398.150363][ T9886] should_failslab+0xc2/0x120 [ 398.150408][ T9886] __kmalloc_cache_noprof+0x80/0x800 [ 398.150442][ T9886] ? xprt_alloc+0x590/0x9c0 [ 398.150475][ T9886] ? xprt_alloc+0x590/0x9c0 [ 398.150506][ T9886] xprt_alloc+0x590/0x9c0 [ 398.150539][ T9886] xs_setup_xprt+0xaf/0x3d0 [ 398.150577][ T9886] xs_setup_local+0x47/0x820 [ 398.150621][ T9886] xprt_create_transport+0x16c/0x710 [ 398.150662][ T9886] rpc_create+0x38e/0x7f0 [ 398.150704][ T9886] ? lock_acquire+0x179/0x330 [ 398.150735][ T9886] ? __pfx_rpc_create+0x10/0x10 [ 398.150823][ T9886] ? rcu_is_watching+0x12/0xc0 [ 398.150867][ T9886] ? trace_contention_end+0xdd/0x110 [ 398.150910][ T9886] rpcb_create_af_local+0x11b/0x310 [ 398.150949][ T9886] ? __pfx_rpcb_create_af_local+0x10/0x10 [ 398.151011][ T9886] ? find_held_lock+0x2b/0x80 [ 398.151054][ T9886] ? rpcb_create_local+0x1da/0x270 [ 398.151095][ T9886] rpcb_create_local+0x1ee/0x270 [ 398.151132][ T9886] svc_bind+0x1e8/0x260 [ 398.151170][ T9886] nfsd_create_serv+0x2da/0x4a0 [ 398.151219][ T9886] ? __pfx_nfsd_create_serv+0x10/0x10 [ 398.151271][ T9886] ? __nla_validate_parse+0x600/0x2880 [ 398.151325][ T9886] nfsd_nl_listener_set_doit+0xdd/0x1ae0 [ 398.151373][ T9886] ? rcu_is_watching+0x12/0xc0 [ 398.151419][ T9886] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 398.151455][ T9886] ? __nla_parse+0x40/0x60 [ 398.151504][ T9886] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 398.151540][ T9886] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 398.151585][ T9886] genl_family_rcv_msg_doit+0x209/0x2f0 [ 398.151622][ T9886] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 398.151656][ T9886] ? genl_get_cmd+0x194/0x580 [ 398.151695][ T9886] ? bpf_lsm_capable+0x9/0x10 [ 398.151737][ T9886] ? security_capable+0x7e/0x260 [ 398.151796][ T9886] genl_rcv_msg+0x55c/0x800 [ 398.151834][ T9886] ? __pfx_genl_rcv_msg+0x10/0x10 [ 398.151868][ T9886] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 398.151919][ T9886] netlink_rcv_skb+0x158/0x420 [ 398.151967][ T9886] ? __pfx_genl_rcv_msg+0x10/0x10 [ 398.152008][ T9886] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 398.152076][ T9886] ? netlink_deliver_tap+0x1ae/0xd30 [ 398.152135][ T9886] genl_rcv+0x28/0x40 [ 398.152161][ T9886] netlink_unicast+0x5aa/0x870 [ 398.152215][ T9886] ? __pfx_netlink_unicast+0x10/0x10 [ 398.152263][ T9886] ? skb_put+0x12e/0x1b0 [ 398.152293][ T9886] ? __sanitizer_cov_trace_pc+0x8/0x70 [ 398.152348][ T9886] netlink_sendmsg+0x8c8/0xdd0 [ 398.152405][ T9886] ? __pfx_netlink_sendmsg+0x10/0x10 [ 398.152460][ T9886] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 398.152519][ T9886] ____sys_sendmsg+0xa5d/0xc30 [ 398.152551][ T9886] ? copy_msghdr_from_user+0x10a/0x160 [ 398.152595][ T9886] ? __pfx_____sys_sendmsg+0x10/0x10 [ 398.152645][ T9886] ___sys_sendmsg+0x134/0x1d0 [ 398.152690][ T9886] ? __pfx____sys_sendmsg+0x10/0x10 [ 398.152786][ T9886] __sys_sendmsg+0x16d/0x220 [ 398.152830][ T9886] ? __pfx___sys_sendmsg+0x10/0x10 [ 398.152900][ T9886] do_syscall_64+0xcd/0xf80 [ 398.152932][ T9886] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 398.152963][ T9886] RIP: 0033:0x7f4ac0f8f7c9 [ 398.152987][ T9886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 398.153028][ T9886] RSP: 002b:00007f4ac1dcc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 398.153058][ T9886] RAX: ffffffffffffffda RBX: 00007f4ac11e6090 RCX: 00007f4ac0f8f7c9 [ 398.153077][ T9886] RDX: 0000000000000000 RSI: 0000200000000940 RDI: 0000000000000003 [ 398.153095][ T9886] RBP: 00007f4ac1dcc090 R08: 0000000000000000 R09: 0000000000000000 [ 398.153113][ T9886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 398.153130][ T9886] R13: 00007f4ac11e6128 R14: 00007f4ac11e6090 R15: 00007ffc8e3bb5a8 [ 398.153173][ T9886] [ 400.039387][ T9905] FAULT_INJECTION: forcing a failure. [ 400.039387][ T9905] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 400.071845][ T9905] CPU: 0 UID: 0 PID: 9905 Comm: syz.2.889 Tainted: G L syzkaller #0 PREEMPT(full) [ 400.071891][ T9905] Tainted: [L]=SOFTLOCKUP [ 400.071901][ T9905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 400.071918][ T9905] Call Trace: [ 400.071928][ T9905] [ 400.071940][ T9905] dump_stack_lvl+0x16c/0x1f0 [ 400.071994][ T9905] should_fail_ex+0x512/0x640 [ 400.072035][ T9905] should_fail_alloc_page+0xe7/0x130 [ 400.072085][ T9905] prepare_alloc_pages+0x401/0x670 [ 400.072138][ T9905] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 400.072176][ T9905] ? mas_find+0x156/0x6d0 [ 400.072207][ T9905] ? validate_mm+0x403/0x560 [ 400.072244][ T9905] ? __pfx_validate_mm+0x10/0x10 [ 400.072279][ T9905] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 400.072321][ T9905] ? kmem_cache_free+0x171/0x770 [ 400.072358][ T9905] ? uprobe_mmap+0x12f/0x10e0 [ 400.072389][ T9905] ? vma_wants_writenotify+0x10b/0x390 [ 400.072434][ T9905] ? __pfx_uprobe_mmap+0x10/0x10 [ 400.072466][ T9905] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 400.072523][ T9905] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 400.072571][ T9905] ? policy_nodemask+0xea/0x4e0 [ 400.072620][ T9905] alloc_pages_mpol+0x1fb/0x550 [ 400.072668][ T9905] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 400.072723][ T9905] alloc_pages_noprof+0x131/0x390 [ 400.072769][ T9905] __pmd_alloc+0x3b/0x9c0 [ 400.072818][ T9905] __handle_mm_fault+0xbeb/0x2bb0 [ 400.072860][ T9905] ? __pfx___handle_mm_fault+0x10/0x10 [ 400.072924][ T9905] handle_mm_fault+0x3fe/0xad0 [ 400.072963][ T9905] __get_user_pages+0x54e/0x3590 [ 400.073023][ T9905] ? __pfx___get_user_pages+0x10/0x10 [ 400.073079][ T9905] populate_vma_page_range+0x267/0x3f0 [ 400.073130][ T9905] ? __pfx_populate_vma_page_range+0x10/0x10 [ 400.073173][ T9905] ? __pfx_find_vma_intersection+0x10/0x10 [ 400.073219][ T9905] ? do_mmap+0x69c/0x1210 [ 400.073266][ T9905] __mm_populate+0x1d8/0x380 [ 400.073314][ T9905] ? __pfx___mm_populate+0x10/0x10 [ 400.073363][ T9905] ? up_write+0x282/0x4e0 [ 400.073398][ T9905] vm_mmap_pgoff+0x37f/0x470 [ 400.073444][ T9905] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 400.073503][ T9905] ? __fget_files+0x20e/0x3c0 [ 400.073554][ T9905] ksys_mmap_pgoff+0x32c/0x5c0 [ 400.073604][ T9905] __x64_sys_mmap+0x125/0x190 [ 400.073641][ T9905] do_syscall_64+0xcd/0xf80 [ 400.073672][ T9905] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 400.073701][ T9905] RIP: 0033:0x7f4ac0f8f7c9 [ 400.073726][ T9905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 400.073756][ T9905] RSP: 002b:00007f4ac1ded038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 400.073781][ T9905] RAX: ffffffffffffffda RBX: 00007f4ac11e5fa0 RCX: 00007f4ac0f8f7c9 [ 400.073801][ T9905] RDX: 0000000000000003 RSI: 0000000000000009 RDI: 0000000000000000 [ 400.073817][ T9905] RBP: 00007f4ac1013f91 R08: 0000000000000003 R09: 0000000000008000 [ 400.073834][ T9905] R10: 0000000000008012 R11: 0000000000000246 R12: 0000000000000000 [ 400.073851][ T9905] R13: 00007f4ac11e6038 R14: 00007f4ac11e5fa0 R15: 00007ffc8e3bb5a8 [ 400.073891][ T9905] [ 401.278194][ T9913] netlink: 330 bytes leftover after parsing attributes in process `syz.3.891'. [ 401.349450][ T9913] gretap0: refused to change device tx_queue_len [ 402.016886][ T9940] FAULT_INJECTION: forcing a failure. [ 402.016886][ T9940] name failslab, interval 1, probability 0, space 0, times 0 [ 402.058659][ T9940] CPU: 0 UID: 0 PID: 9940 Comm: syz.1.894 Tainted: G L syzkaller #0 PREEMPT(full) [ 402.058704][ T9940] Tainted: [L]=SOFTLOCKUP [ 402.058713][ T9940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 402.058728][ T9940] Call Trace: [ 402.058737][ T9940] [ 402.058747][ T9940] dump_stack_lvl+0x16c/0x1f0 [ 402.058801][ T9940] should_fail_ex+0x512/0x640 [ 402.058832][ T9940] ? kmem_cache_alloc_noprof+0x62/0x770 [ 402.058870][ T9940] ? __pfx_dom_debug_open+0x10/0x10 [ 402.058897][ T9940] should_failslab+0xc2/0x120 [ 402.058936][ T9940] kmem_cache_alloc_noprof+0x83/0x770 [ 402.058966][ T9940] ? seq_open+0x55/0x170 [ 402.059001][ T9940] ? __pfx_dom_debug_open+0x10/0x10 [ 402.059024][ T9940] ? __pfx_dom_debug_show+0x10/0x10 [ 402.059049][ T9940] ? seq_open+0x55/0x170 [ 402.059076][ T9940] seq_open+0x55/0x170 [ 402.059104][ T9940] ? __pfx_dom_debug_show+0x10/0x10 [ 402.059131][ T9940] single_open+0xfc/0x1f0 [ 402.059163][ T9940] full_proxy_open_regular+0x1b9/0x350 [ 402.059209][ T9940] do_dentry_open+0x748/0x1590 [ 402.059252][ T9940] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 402.059305][ T9940] vfs_open+0x82/0x3f0 [ 402.059339][ T9940] path_openat+0x2078/0x3140 [ 402.059387][ T9940] ? __pfx_path_openat+0x10/0x10 [ 402.059469][ T9940] do_filp_open+0x20b/0x470 [ 402.059511][ T9940] ? __pfx_do_filp_open+0x10/0x10 [ 402.059584][ T9940] ? alloc_fd+0x471/0x7d0 [ 402.059640][ T9940] do_sys_openat2+0x121/0x290 [ 402.059674][ T9940] ? __pfx_do_sys_openat2+0x10/0x10 [ 402.059722][ T9940] __x64_sys_openat+0x174/0x210 [ 402.059763][ T9940] ? __pfx___x64_sys_openat+0x10/0x10 [ 402.059832][ T9940] do_syscall_64+0xcd/0xf80 [ 402.059864][ T9940] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 402.059898][ T9940] RIP: 0033:0x7f910778f7c9 [ 402.059923][ T9940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 402.059955][ T9940] RSP: 002b:00007f9108598038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 402.059985][ T9940] RAX: ffffffffffffffda RBX: 00007f91079e5fa0 RCX: 00007f910778f7c9 [ 402.060006][ T9940] RDX: 0000000000000100 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 402.060027][ T9940] RBP: 00007f9107813f91 R08: 0000000000000000 R09: 0000000000000000 [ 402.060047][ T9940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 402.060067][ T9940] R13: 00007f91079e6038 R14: 00007f91079e5fa0 R15: 00007ffc119834e8 [ 402.060110][ T9940] [ 403.474559][ T9971] [ 403.864487][ T9947] syz.0.901 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 403.945900][ T9947] CPU: 0 UID: 0 PID: 9947 Comm: syz.0.901 Tainted: G L syzkaller #0 PREEMPT(full) [ 403.945939][ T9947] Tainted: [L]=SOFTLOCKUP [ 403.945947][ T9947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 403.945978][ T9947] Call Trace: [ 403.945985][ T9947] [ 403.945993][ T9947] dump_stack_lvl+0x16c/0x1f0 [ 403.946054][ T9947] dump_header+0x101/0x960 [ 403.946083][ T9947] oom_kill_process+0x176/0x910 [ 403.946114][ T9947] out_of_memory+0x350/0x1700 [ 403.946140][ T9947] ? __lock_acquire+0x436/0x2890 [ 403.946165][ T9947] ? __pfx_out_of_memory+0x10/0x10 [ 403.946198][ T9947] mem_cgroup_out_of_memory+0x118/0x130 [ 403.946227][ T9947] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 403.946291][ T9947] ? do_raw_spin_unlock+0x172/0x230 [ 403.946344][ T9947] try_charge_memcg+0x695/0xd30 [ 403.946387][ T9947] ? __pfx_try_charge_memcg+0x10/0x10 [ 403.946430][ T9947] ? find_held_lock+0x2b/0x80 [ 403.946464][ T9947] charge_memcg+0x8a/0x230 [ 403.946501][ T9947] mem_cgroup_swapin_charge_folio+0xeb/0x470 [ 403.946530][ T9947] __read_swap_cache_async+0x397/0x500 [ 403.946563][ T9947] ? __pfx___read_swap_cache_async+0x10/0x10 [ 403.946595][ T9947] ? __lock_acquire+0x436/0x2890 [ 403.946622][ T9947] swap_cluster_readahead+0x432/0x770 [ 403.946658][ T9947] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 403.946687][ T9947] ? swap_cache_get_folio+0x267/0x8e0 [ 403.946713][ T9947] ? swap_cache_get_folio+0x250/0x8e0 [ 403.946737][ T9947] ? swap_cache_get_folio+0x267/0x8e0 [ 403.946766][ T9947] ? swap_cache_get_folio+0x267/0x8e0 [ 403.946797][ T9947] ? __pfx_get_swap_device+0x10/0x10 [ 403.946839][ T9947] shmem_swapin_folio+0x1f9f/0x2660 [ 403.946867][ T9947] ? find_held_lock+0x2b/0x80 [ 403.946904][ T9947] ? __pfx_shmem_swapin_folio+0x10/0x10 [ 403.946928][ T9947] ? __pfx_filemap_get_entry+0x10/0x10 [ 403.946954][ T9947] ? mod_memcg_lruvec_state+0x381/0x5f0 [ 403.946995][ T9947] shmem_get_folio_gfp+0x2c5/0x1610 [ 403.947028][ T9947] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 403.947057][ T9947] ? find_held_lock+0x2b/0x80 [ 403.947091][ T9947] shmem_get_folio+0x84/0xb0 [ 403.947121][ T9947] collapse_file+0xd34/0x30e0 [ 403.947149][ T9947] ? __lock_acquire+0x436/0x2890 [ 403.947171][ T9947] ? __pfx_collapse_file+0x10/0x10 [ 403.947192][ T9947] ? xas_move_index+0xb0/0x110 [ 403.947236][ T9947] ? find_held_lock+0x2b/0x80 [ 403.947266][ T9947] ? hpage_collapse_scan_file+0xd57/0x1950 [ 403.947298][ T9947] hpage_collapse_scan_file+0xdf4/0x1950 [ 403.947323][ T9947] ? hpage_collapse_scan_file+0x1a8/0x1950 [ 403.947356][ T9947] ? __pfx_hpage_collapse_scan_file+0x10/0x10 [ 403.947386][ T9947] ? madvise_collapse+0x3ac/0xa40 [ 403.947415][ T9947] madvise_collapse+0x3c9/0xa40 [ 403.947444][ T9947] ? __pfx_madvise_collapse+0x10/0x10 [ 403.947468][ T9947] ? finish_task_switch.isra.0+0x207/0xbd0 [ 403.947499][ T9947] ? lockdep_hardirqs_on+0x10/0x110 [ 403.947544][ T9947] madvise_vma_behavior+0xe8a/0x29e0 [ 403.947568][ T9947] ? mas_prev_setup.constprop.0+0xb6/0x9d0 [ 403.947606][ T9947] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 403.947629][ T9947] ? mas_prev+0x9b/0xf0 [ 403.947649][ T9947] ? __pfx_mas_prev+0x10/0x10 [ 403.947677][ T9947] ? find_vma_prev+0xd3/0x150 [ 403.947709][ T9947] ? find_held_lock+0x2b/0x80 [ 403.947737][ T9947] ? __pfx_find_vma_prev+0x10/0x10 [ 403.947781][ T9947] ? __futex_wait+0x24b/0x2f0 [ 403.947817][ T9947] madvise_walk_vmas+0x31f/0xac0 [ 403.947844][ T9947] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 403.947875][ T9947] madvise_do_behavior+0x1e2/0x530 [ 403.947896][ T9947] ? futex_private_hash_put+0x160/0x1b0 [ 403.947922][ T9947] ? __pfx_madvise_do_behavior+0x10/0x10 [ 403.947950][ T9947] ? down_read+0x13d/0x460 [ 403.947988][ T9947] do_madvise+0x176/0x240 [ 403.948009][ T9947] ? __pfx_do_madvise+0x10/0x10 [ 403.948030][ T9947] ? do_futex+0x122/0x350 [ 403.948061][ T9947] ? __sys_sendmsg+0x18c/0x220 [ 403.948106][ T9947] ? xfd_validate_state+0x61/0x180 [ 403.948135][ T9947] __x64_sys_madvise+0xa9/0x110 [ 403.948156][ T9947] ? lockdep_hardirqs_on+0x7c/0x110 [ 403.948192][ T9947] do_syscall_64+0xcd/0xf80 [ 403.948214][ T9947] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 403.948239][ T9947] RIP: 0033:0x7fbd7498f7c9 [ 403.948257][ T9947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 403.948280][ T9947] RSP: 002b:00007fbd75757038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 403.948302][ T9947] RAX: ffffffffffffffda RBX: 00007fbd74be5fa0 RCX: 00007fbd7498f7c9 [ 403.948317][ T9947] RDX: 0000000000000019 RSI: 0000000000200007 RDI: 0000000000000000 [ 403.948331][ T9947] RBP: 00007fbd74a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 403.948351][ T9947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 403.948365][ T9947] R13: 00007fbd74be6038 R14: 00007fbd74be5fa0 R15: 00007ffe33076f38 [ 403.948395][ T9947] [ 403.948434][ T9947] memory: usage 3072kB, limit 3072kB, failcnt 9367 [ 404.471352][ T9947] memory+swap: usage 5376kB, limit 9007199254740988kB, failcnt 0 [ 404.506332][ T9947] kmem: usage 1052kB, limit 9007199254740988kB, failcnt 0 [ 404.522264][ T9947] Memory cgroup stats for /syz2: [ 404.522465][ T9947] cache 4096 [ 404.554146][ T9947] rss 2048000 [ 404.558956][ T9947] rss_huge 0 [ 404.563757][ T9947] shmem 0 [ 404.567258][ T9947] mapped_file 4096 [ 404.576633][ T9947] dirty 0 [ 404.580177][ T9947] writeback 0 [ 404.586581][ T9947] workingset_refault_anon 2412 [ 404.597527][ T9947] workingset_refault_file 3166 [ 404.603724][ T9947] swap 2359296 [ 404.608941][ T9947] swapcached 28672 [ 404.616413][ T9947] pgpgin 180092 [ 404.620076][ T9947] pgpgout 182653 [ 404.633865][ T9947] pgfault 306705 [ 404.647843][ T9947] pgmajfault 819 [ 404.656282][ T9947] inactive_anon 4096 [ 404.660207][ T9947] active_anon 12288 [ 404.681418][ T9947] inactive_file 0 [ 404.696310][ T9947] active_file 0 [ 404.699821][ T9947] unevictable 2052096 [ 404.717770][ T9947] hierarchical_memory_limit 3145728 [ 404.727760][ T9947] hierarchical_memsw_limit 9223372036854771712 [ 404.736428][ T9947] total_cache 4096 [ 404.742817][ T9947] total_rss 2048000 [ 404.747702][ T9947] total_rss_huge 0 [ 404.751447][ T9947] total_shmem 0 [ 404.756435][ T9947] total_mapped_file 4096 [ 404.763316][ T9947] total_dirty 0 [ 404.767107][ T9947] total_writeback 0 [ 404.773415][ T9947] total_workingset_refault_anon 2412 [ 404.779147][ T9947] total_workingset_refault_file 3166 [ 404.788464][ T9947] total_swap 2359296 [ 404.793751][ T9947] total_swapcached 28672 [ 404.816469][ T9947] total_pgpgin 180092 [ 404.820706][ T9947] total_pgpgout 182653 [ 404.824802][ T9947] total_pgfault 306705 [ 404.830451][ T9947] total_pgmajfault 819 [ 404.834556][ T9947] total_inactive_anon 4096 [ 404.839396][ T9947] total_active_anon 12288 [ 404.843905][ T9947] total_inactive_file 0 [ 404.848533][ T9947] total_active_file 0 [ 404.856388][ T9947] total_unevictable 2052096 [ 404.861134][ T9947] anon_cost 0 [ 404.864439][ T9947] file_cost 0 [ 404.875226][ T9947] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.904,pid=9959,uid=0 [ 404.893194][ T9947] Memory cgroup out of memory: Killed process 9959 (syz.2.904) total-vm:110560kB, anon-rss:3188kB, file-rss:27136kB, shmem-rss:0kB, UID:0 pgtables:172kB oom_score_adj:1000 [ 405.014520][ T9979] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -4 [ 405.063783][ T9979] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -4 [ 405.106564][ T9979] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 408.523731][T10034] FAULT_INJECTION: forcing a failure. [ 408.523731][T10034] name failslab, interval 1, probability 0, space 0, times 0 [ 408.539922][T10034] CPU: 0 UID: 0 PID: 10034 Comm: syz.1.924 Tainted: G L syzkaller #0 PREEMPT(full) [ 408.539965][T10034] Tainted: [L]=SOFTLOCKUP [ 408.539974][T10034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 408.539992][T10034] Call Trace: [ 408.540002][T10034] [ 408.540013][T10034] dump_stack_lvl+0x16c/0x1f0 [ 408.540064][T10034] should_fail_ex+0x512/0x640 [ 408.540097][T10034] ? kmem_cache_alloc_noprof+0x62/0x770 [ 408.540135][T10034] ? __pfx_dom_debug_open+0x10/0x10 [ 408.540163][T10034] should_failslab+0xc2/0x120 [ 408.540208][T10034] kmem_cache_alloc_noprof+0x83/0x770 [ 408.540244][T10034] ? seq_open+0x55/0x170 [ 408.540282][T10034] ? __pfx_dom_debug_open+0x10/0x10 [ 408.540308][T10034] ? __pfx_dom_debug_show+0x10/0x10 [ 408.540336][T10034] ? seq_open+0x55/0x170 [ 408.540367][T10034] seq_open+0x55/0x170 [ 408.540398][T10034] ? __pfx_dom_debug_show+0x10/0x10 [ 408.540428][T10034] single_open+0xfc/0x1f0 [ 408.540463][T10034] full_proxy_open_regular+0x1b9/0x350 [ 408.540512][T10034] do_dentry_open+0x748/0x1590 [ 408.540554][T10034] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 408.540608][T10034] vfs_open+0x82/0x3f0 [ 408.540655][T10034] path_openat+0x2078/0x3140 [ 408.540712][T10034] ? __pfx_path_openat+0x10/0x10 [ 408.540772][T10034] do_filp_open+0x20b/0x470 [ 408.540815][T10034] ? __pfx_do_filp_open+0x10/0x10 [ 408.540887][T10034] ? alloc_fd+0x471/0x7d0 [ 408.540939][T10034] do_sys_openat2+0x121/0x290 [ 408.540973][T10034] ? __pfx_do_sys_openat2+0x10/0x10 [ 408.541022][T10034] __x64_sys_openat+0x174/0x210 [ 408.541056][T10034] ? __pfx___x64_sys_openat+0x10/0x10 [ 408.541105][T10034] do_syscall_64+0xcd/0xf80 [ 408.541134][T10034] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 408.541164][T10034] RIP: 0033:0x7f910778f7c9 [ 408.541187][T10034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 408.541215][T10034] RSP: 002b:00007f9108598038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 408.541243][T10034] RAX: ffffffffffffffda RBX: 00007f91079e5fa0 RCX: 00007f910778f7c9 [ 408.541262][T10034] RDX: 0000000000000100 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 408.541281][T10034] RBP: 00007f9107813f91 R08: 0000000000000000 R09: 0000000000000000 [ 408.541299][T10034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 408.541317][T10034] R13: 00007f91079e6038 R14: 00007f91079e5fa0 R15: 00007ffc119834e8 [ 408.541356][T10034] [ 408.956406][T10040] FAULT_INJECTION: forcing a failure. [ 408.956406][T10040] name failslab, interval 1, probability 0, space 0, times 0 [ 409.031976][T10040] CPU: 1 UID: 0 PID: 10040 Comm: syz.1.933 Tainted: G L syzkaller #0 PREEMPT(full) [ 409.032023][T10040] Tainted: [L]=SOFTLOCKUP [ 409.032032][T10040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 409.032048][T10040] Call Trace: [ 409.032058][T10040] [ 409.032070][T10040] dump_stack_lvl+0x16c/0x1f0 [ 409.032120][T10040] should_fail_ex+0x512/0x640 [ 409.032167][T10040] ? kmem_cache_alloc_noprof+0x62/0x770 [ 409.032207][T10040] ? __pfx_dom_debug_open+0x10/0x10 [ 409.032235][T10040] should_failslab+0xc2/0x120 [ 409.032281][T10040] kmem_cache_alloc_noprof+0x83/0x770 [ 409.032316][T10040] ? seq_open+0x55/0x170 [ 409.032354][T10040] ? __pfx_dom_debug_open+0x10/0x10 [ 409.032381][T10040] ? __pfx_dom_debug_show+0x10/0x10 [ 409.032408][T10040] ? seq_open+0x55/0x170 [ 409.032438][T10040] seq_open+0x55/0x170 [ 409.032469][T10040] ? __pfx_dom_debug_show+0x10/0x10 [ 409.032498][T10040] single_open+0xfc/0x1f0 [ 409.032533][T10040] full_proxy_open_regular+0x1b9/0x350 [ 409.032581][T10040] do_dentry_open+0x748/0x1590 [ 409.032623][T10040] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 409.032676][T10040] vfs_open+0x82/0x3f0 [ 409.032712][T10040] path_openat+0x2078/0x3140 [ 409.032767][T10040] ? __pfx_path_openat+0x10/0x10 [ 409.032823][T10040] do_filp_open+0x20b/0x470 [ 409.032876][T10040] ? __pfx_do_filp_open+0x10/0x10 [ 409.032950][T10040] ? alloc_fd+0x471/0x7d0 [ 409.033001][T10040] do_sys_openat2+0x121/0x290 [ 409.033034][T10040] ? __pfx_do_sys_openat2+0x10/0x10 [ 409.033081][T10040] __x64_sys_openat+0x174/0x210 [ 409.033115][T10040] ? __pfx___x64_sys_openat+0x10/0x10 [ 409.033164][T10040] do_syscall_64+0xcd/0xf80 [ 409.033193][T10040] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 409.033223][T10040] RIP: 0033:0x7f910778f7c9 [ 409.033246][T10040] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 409.033285][T10040] RSP: 002b:00007f9108598038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 409.033310][T10040] RAX: ffffffffffffffda RBX: 00007f91079e5fa0 RCX: 00007f910778f7c9 [ 409.033329][T10040] RDX: 0000000000000100 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 409.033346][T10040] RBP: 00007f9107813f91 R08: 0000000000000000 R09: 0000000000000000 [ 409.033362][T10040] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 409.033379][T10040] R13: 00007f91079e6038 R14: 00007f91079e5fa0 R15: 00007ffc119834e8 [ 409.033414][T10040] [ 410.825017][T10070] netlink: 4 bytes leftover after parsing attributes in process `syz.1.930'. [ 412.245611][T10086] input: f¬ as /devices/virtual/input/input17 [ 412.264216][T10084] FAULT_INJECTION: forcing a failure. [ 412.264216][T10084] name failslab, interval 1, probability 0, space 0, times 0 [ 412.297100][T10084] CPU: 0 UID: 0 PID: 10084 Comm: syz.3.937 Tainted: G L syzkaller #0 PREEMPT(full) [ 412.297151][T10084] Tainted: [L]=SOFTLOCKUP [ 412.297161][T10084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 412.297178][T10084] Call Trace: [ 412.297188][T10084] [ 412.297200][T10084] dump_stack_lvl+0x16c/0x1f0 [ 412.297266][T10084] should_fail_ex+0x512/0x640 [ 412.297301][T10084] ? fs_reclaim_acquire+0xae/0x150 [ 412.297372][T10084] should_failslab+0xc2/0x120 [ 412.297416][T10084] __kmalloc_noprof+0xeb/0x910 [ 412.297448][T10084] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 412.297498][T10084] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 412.297540][T10084] tomoyo_realpath_from_path+0xc2/0x6e0 [ 412.297585][T10084] ? tomoyo_profile+0x47/0x60 [ 412.297632][T10084] tomoyo_path_number_perm+0x245/0x580 [ 412.297665][T10084] ? tomoyo_path_number_perm+0x237/0x580 [ 412.297703][T10084] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 412.297740][T10084] ? rcu_read_unlock+0x17/0x60 [ 412.297775][T10084] ? do_raw_spin_lock+0x12c/0x2b0 [ 412.297807][T10084] ? find_held_lock+0x2b/0x80 [ 412.297860][T10084] ? find_held_lock+0x2b/0x80 [ 412.297897][T10084] ? __pfx___d_add+0x10/0x10 [ 412.297926][T10084] ? d_alloc+0x176/0x1e0 [ 412.297947][T10084] ? current_check_access_path+0x33b/0x460 [ 412.297989][T10084] ? __pfx_current_check_access_path+0x10/0x10 [ 412.298031][T10084] ? simple_lookup+0x105/0x1d0 [ 412.298080][T10084] tomoyo_path_mknod+0x10c/0x190 [ 412.298136][T10084] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 412.298188][T10084] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 412.298246][T10084] security_path_mknod+0x161/0x310 [ 412.298284][T10084] do_mknodat+0x24e/0x6f0 [ 412.298330][T10084] ? __pfx_do_mknodat+0x10/0x10 [ 412.298373][T10084] ? getname_flags.part.0+0x1c5/0x550 [ 412.298414][T10084] __x64_sys_mknod+0x87/0xb0 [ 412.298459][T10084] do_syscall_64+0xcd/0xf80 [ 412.298501][T10084] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 412.298530][T10084] RIP: 0033:0x7fd5b1d8f7c9 [ 412.298562][T10084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 412.298588][T10084] RSP: 002b:00007fd5b2bee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 412.298613][T10084] RAX: ffffffffffffffda RBX: 00007fd5b1fe5fa0 RCX: 00007fd5b1d8f7c9 [ 412.298630][T10084] RDX: 00000000fffffffa RSI: 00000000000000ca RDI: 0000200000001040 [ 412.298647][T10084] RBP: 00007fd5b1e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 412.298665][T10084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 412.298683][T10084] R13: 00007fd5b1fe6038 R14: 00007fd5b1fe5fa0 R15: 00007ffe5b42cac8 [ 412.298724][T10084] [ 412.298736][T10084] ERROR: Out of memory at tomoyo_realpath_from_path. [ 412.635543][T10090] zram: Removed device: zram0 [ 413.786008][T10115] netlink: 28 bytes leftover after parsing attributes in process `syz.1.943'. [ 414.674380][ T30] audit: type=1800 audit(1768468007.533:12): pid=10126 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.946" name="dbroot" dev="configfs" ino=29975 res=0 errno=0 [ 414.697206][ T30] audit: type=1804 audit(1768468007.553:13): pid=10125 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.946" name="/newroot/sys/kernel/config/target/dbroot" dev="configfs" ino=29975 res=1 errno=0 [ 414.724436][ T30] audit: type=1800 audit(1768468007.583:14): pid=10125 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.946" name="dbroot" dev="configfs" ino=29975 res=0 errno=0 [ 415.177516][T10134] FAULT_INJECTION: forcing a failure. [ 415.177516][T10134] name failslab, interval 1, probability 0, space 0, times 0 [ 415.192702][T10134] CPU: 1 UID: 0 PID: 10134 Comm: syz.0.949 Tainted: G L syzkaller #0 PREEMPT(full) [ 415.192753][T10134] Tainted: [L]=SOFTLOCKUP [ 415.192765][T10134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 415.192783][T10134] Call Trace: [ 415.192793][T10134] [ 415.192805][T10134] dump_stack_lvl+0x16c/0x1f0 [ 415.192864][T10134] should_fail_ex+0x512/0x640 [ 415.192912][T10134] ? fs_reclaim_acquire+0xae/0x150 [ 415.192979][T10134] should_failslab+0xc2/0x120 [ 415.193028][T10134] __kmalloc_noprof+0xeb/0x910 [ 415.193063][T10134] ? tomoyo_encode2+0x100/0x3e0 [ 415.193114][T10134] ? tomoyo_encode2+0x100/0x3e0 [ 415.193155][T10134] tomoyo_encode2+0x100/0x3e0 [ 415.193204][T10134] tomoyo_encode+0x29/0x50 [ 415.193246][T10134] tomoyo_realpath_from_path+0x18f/0x6e0 [ 415.193302][T10134] tomoyo_path_number_perm+0x245/0x580 [ 415.193338][T10134] ? tomoyo_path_number_perm+0x237/0x580 [ 415.193379][T10134] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 415.193419][T10134] ? rcu_read_unlock+0x17/0x60 [ 415.193468][T10134] ? do_raw_spin_lock+0x12c/0x2b0 [ 415.193501][T10134] ? find_held_lock+0x2b/0x80 [ 415.193554][T10134] ? find_held_lock+0x2b/0x80 [ 415.193590][T10134] ? __pfx___d_add+0x10/0x10 [ 415.193618][T10134] ? d_alloc+0x176/0x1e0 [ 415.193641][T10134] ? current_check_access_path+0x33b/0x460 [ 415.193683][T10134] ? __pfx_current_check_access_path+0x10/0x10 [ 415.193724][T10134] ? simple_lookup+0x105/0x1d0 [ 415.193772][T10134] tomoyo_path_mknod+0x10c/0x190 [ 415.193818][T10134] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 415.193867][T10134] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 415.193917][T10134] security_path_mknod+0x161/0x310 [ 415.193964][T10134] do_mknodat+0x24e/0x6f0 [ 415.194010][T10134] ? __pfx_do_mknodat+0x10/0x10 [ 415.194050][T10134] ? getname_flags.part.0+0x1c5/0x550 [ 415.194091][T10134] __x64_sys_mknod+0x87/0xb0 [ 415.194137][T10134] do_syscall_64+0xcd/0xf80 [ 415.194167][T10134] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 415.194198][T10134] RIP: 0033:0x7fbd7498f7c9 [ 415.194240][T10134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 415.194272][T10134] RSP: 002b:00007fbd75757038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 415.194303][T10134] RAX: ffffffffffffffda RBX: 00007fbd74be5fa0 RCX: 00007fbd7498f7c9 [ 415.194323][T10134] RDX: 00000000fffffffa RSI: 00000000000000ca RDI: 0000200000001040 [ 415.194342][T10134] RBP: 00007fbd74a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 415.194362][T10134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 415.194381][T10134] R13: 00007fbd74be6038 R14: 00007fbd74be5fa0 R15: 00007ffe33076f38 [ 415.194424][T10134] [ 415.194451][T10134] ERROR: Out of memory at tomoyo_realpath_from_path. [ 415.643874][T10143] input: f¬ as /devices/virtual/input/input18 [ 418.110794][T10188] input: f¬ as /devices/virtual/input/input19 [ 419.036309][T10199] FAULT_INJECTION: forcing a failure. [ 419.036309][T10199] name failslab, interval 1, probability 0, space 0, times 0 [ 419.096862][T10199] CPU: 0 UID: 0 PID: 10199 Comm: syz.3.965 Tainted: G L syzkaller #0 PREEMPT(full) [ 419.096899][T10199] Tainted: [L]=SOFTLOCKUP [ 419.096907][T10199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 419.096920][T10199] Call Trace: [ 419.096928][T10199] [ 419.096936][T10199] dump_stack_lvl+0x16c/0x1f0 [ 419.096976][T10199] should_fail_ex+0x512/0x640 [ 419.097002][T10199] ? __kmalloc_node_track_caller_noprof+0xcb/0x930 [ 419.097054][T10199] should_failslab+0xc2/0x120 [ 419.097099][T10199] __kmalloc_node_track_caller_noprof+0xec/0x930 [ 419.097127][T10199] ? xprt_create_transport+0x3b6/0x710 [ 419.097155][T10199] ? kstrdup+0x53/0x100 [ 419.097176][T10199] kstrdup+0x53/0x100 [ 419.097199][T10199] xprt_create_transport+0x3b6/0x710 [ 419.097224][T10199] rpc_create+0x38e/0x7f0 [ 419.097249][T10199] ? lock_acquire+0x179/0x330 [ 419.097267][T10199] ? __pfx_rpc_create+0x10/0x10 [ 419.097322][T10199] ? rcu_is_watching+0x12/0xc0 [ 419.097349][T10199] ? trace_contention_end+0xdd/0x110 [ 419.097394][T10199] rpcb_create_af_local+0x11b/0x310 [ 419.097418][T10199] ? __pfx_rpcb_create_af_local+0x10/0x10 [ 419.097456][T10199] ? find_held_lock+0x2b/0x80 [ 419.097485][T10199] ? rpcb_create_local+0x1da/0x270 [ 419.097515][T10199] rpcb_create_local+0x1ee/0x270 [ 419.097540][T10199] svc_bind+0x1e8/0x260 [ 419.097567][T10199] nfsd_create_serv+0x2da/0x4a0 [ 419.097601][T10199] ? __pfx_nfsd_create_serv+0x10/0x10 [ 419.097636][T10199] ? __nla_validate_parse+0x600/0x2880 [ 419.097674][T10199] nfsd_nl_listener_set_doit+0xdd/0x1ae0 [ 419.097706][T10199] ? rcu_is_watching+0x12/0xc0 [ 419.097739][T10199] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 419.097764][T10199] ? __nla_parse+0x40/0x60 [ 419.097799][T10199] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 419.097825][T10199] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 419.097867][T10199] genl_family_rcv_msg_doit+0x209/0x2f0 [ 419.097892][T10199] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 419.097915][T10199] ? genl_get_cmd+0x194/0x580 [ 419.097942][T10199] ? bpf_lsm_capable+0x9/0x10 [ 419.097972][T10199] ? security_capable+0x7e/0x260 [ 419.098014][T10199] genl_rcv_msg+0x55c/0x800 [ 419.098040][T10199] ? __pfx_genl_rcv_msg+0x10/0x10 [ 419.098064][T10199] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 419.098098][T10199] netlink_rcv_skb+0x158/0x420 [ 419.098133][T10199] ? __pfx_genl_rcv_msg+0x10/0x10 [ 419.098157][T10199] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 419.098203][T10199] ? netlink_deliver_tap+0x1ae/0xd30 [ 419.098240][T10199] genl_rcv+0x28/0x40 [ 419.098258][T10199] netlink_unicast+0x5aa/0x870 [ 419.098296][T10199] ? __pfx_netlink_unicast+0x10/0x10 [ 419.098341][T10199] netlink_sendmsg+0x8c8/0xdd0 [ 419.098381][T10199] ? __pfx_netlink_sendmsg+0x10/0x10 [ 419.098419][T10199] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 419.098462][T10199] ____sys_sendmsg+0xa5d/0xc30 [ 419.098485][T10199] ? copy_msghdr_from_user+0x10a/0x160 [ 419.098516][T10199] ? __pfx_____sys_sendmsg+0x10/0x10 [ 419.098551][T10199] ___sys_sendmsg+0x134/0x1d0 [ 419.098593][T10199] ? __pfx____sys_sendmsg+0x10/0x10 [ 419.098648][T10199] __sys_sendmsg+0x16d/0x220 [ 419.098674][T10199] ? __pfx___sys_sendmsg+0x10/0x10 [ 419.098715][T10199] do_syscall_64+0xcd/0xf80 [ 419.098735][T10199] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 419.098754][T10199] RIP: 0033:0x7fd5b1d8f7c9 [ 419.098768][T10199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 419.098786][T10199] RSP: 002b:00007fd5b2bcd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 419.098804][T10199] RAX: ffffffffffffffda RBX: 00007fd5b1fe6090 RCX: 00007fd5b1d8f7c9 [ 419.098816][T10199] RDX: 0000000000000000 RSI: 0000200000000940 RDI: 0000000000000003 [ 419.098828][T10199] RBP: 00007fd5b2bcd090 R08: 0000000000000000 R09: 0000000000000000 [ 419.098844][T10199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 419.098855][T10199] R13: 00007fd5b1fe6128 R14: 00007fd5b1fe6090 R15: 00007ffe5b42cac8 [ 419.098881][T10199] [ 422.154168][T10248] input: f¬ as /devices/virtual/input/input20 [ 422.310967][ T5891] smpboot: CPU 1 is now offline [ 422.648774][T10260] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 422.758304][T10248] ------------[ cut here ]------------ [ 422.758972][T10248] [ 422.758980][T10248] ====================================================== [ 422.758988][T10248] WARNING: possible circular locking dependency detected [ 422.759001][T10248] syzkaller #0 Tainted: G L [ 422.759014][T10248] ------------------------------------------------------ [ 422.759021][T10248] syz.2.975/10248 is trying to acquire lock: [ 422.759033][T10248] ffffffff8e2d6ac0 (console_owner){-.-.}-{0:0}, at: console_lock_spinning_enable+0x61/0x80 [ 422.759096][T10248] [ 422.759096][T10248] but task is already holding lock: [ 422.759102][T10248] ffff8880b843add8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130 [ 422.759159][T10248] [ 422.759159][T10248] which lock already depends on the new lock. [ 422.759159][T10248] [ 422.759166][T10248] [ 422.759166][T10248] the existing dependency chain (in reverse order) is: [ 422.759173][T10248] [ 422.759173][T10248] -> #4 (&rq->__lock){-.-.}-{2:2}: [ 422.759211][T10248] _raw_spin_lock_nested+0x31/0x40 [ 422.759244][T10248] raw_spin_rq_lock_nested+0x29/0x130 [ 422.759273][T10248] task_rq_lock+0xcf/0x490 [ 422.759303][T10248] cgroup_move_task+0x81/0x2a0 [ 422.759335][T10248] css_set_move_task+0x288/0x5f0 [ 422.759371][T10248] cgroup_post_fork+0x201/0x9e0 [ 422.759406][T10248] copy_process+0x56b6/0x7430 [ 422.759441][T10248] kernel_clone+0xfc/0x910 [ 422.759474][T10248] user_mode_thread+0xc8/0x110 [ 422.759507][T10248] rest_init+0x23/0x2b0 [ 422.759532][T10248] start_kernel+0x3ef/0x4d0 [ 422.759554][T10248] x86_64_start_reservations+0x18/0x30 [ 422.759579][T10248] x86_64_start_kernel+0x130/0x190 [ 422.759604][T10248] common_startup_64+0x13e/0x148 [ 422.759632][T10248] [ 422.759632][T10248] -> #3 (&p->pi_lock){-.-.}-{2:2}: [ 422.759659][T10248] _raw_spin_lock_irqsave+0x3a/0x60 [ 422.759691][T10248] try_to_wake_up+0xb7/0x1860 [ 422.759719][T10248] autoremove_wake_function+0x16/0x150 [ 422.759753][T10248] __wake_up_common+0x135/0x1f0 [ 422.759772][T10248] __wake_up+0x31/0x60 [ 422.759804][T10248] tty_port_default_wakeup+0x4d/0x60 [ 422.759841][T10248] serial8250_tx_chars+0x68e/0x860 [ 422.759876][T10248] serial8250_handle_irq+0x761/0xcb0 [ 422.759897][T10248] serial8250_default_handle_irq+0x9e/0x270 [ 422.759918][T10248] serial8250_interrupt+0xf8/0x1d0 [ 422.759942][T10248] __handle_irq_event_percpu+0x236/0x890 [ 422.759973][T10248] handle_irq_event+0xab/0x1e0 [ 422.760002][T10248] handle_edge_irq+0x3ca/0x9e0 [ 422.760028][T10248] __common_interrupt+0xd0/0x2f0 [ 422.760066][T10248] common_interrupt+0xba/0xe0 [ 422.760111][T10248] asm_common_interrupt+0x26/0x40 [ 422.760130][T10248] _raw_spin_unlock_irqrestore+0x31/0x80 [ 422.760159][T10248] do_nanosleep+0x1f6/0x580 [ 422.760187][T10248] hrtimer_nanosleep+0x155/0x380 [ 422.760215][T10248] common_nsleep+0xa1/0xd0 [ 422.760235][T10248] __x64_sys_clock_nanosleep+0x34d/0x4a0 [ 422.760283][T10248] do_syscall_64+0xcd/0xf80 [ 422.760300][T10248] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 422.760321][T10248] [ 422.760321][T10248] -> #2 (&tty->write_wait){-.-.}-{3:3}: [ 422.760348][T10248] _raw_spin_lock_irqsave+0x3a/0x60 [ 422.760376][T10248] __wake_up+0x1c/0x60 [ 422.760404][T10248] tty_port_default_wakeup+0x4d/0x60 [ 422.760438][T10248] serial8250_tx_chars+0x68e/0x860 [ 422.760470][T10248] serial8250_handle_irq+0x761/0xcb0 [ 422.760488][T10248] serial8250_default_handle_irq+0x9e/0x270 [ 422.760508][T10248] serial8250_interrupt+0xf8/0x1d0 [ 422.760530][T10248] __handle_irq_event_percpu+0x236/0x890 [ 422.760558][T10248] handle_irq_event+0xab/0x1e0 [ 422.760584][T10248] handle_edge_irq+0x3ca/0x9e0 [ 422.760608][T10248] __common_interrupt+0xd0/0x2f0 [ 422.760638][T10248] common_interrupt+0xba/0xe0 [ 422.760661][T10248] asm_common_interrupt+0x26/0x40 [ 422.760681][T10248] pv_native_safe_halt+0xf/0x20 [ 422.760711][T10248] default_idle+0x13/0x20 [ 422.760731][T10248] default_idle_call+0x6c/0xb0 [ 422.760764][T10248] do_idle+0x38d/0x510 [ 422.760787][T10248] cpu_startup_entry+0x4f/0x60 [ 422.760812][T10248] rest_init+0x16b/0x2b0 [ 422.760832][T10248] start_kernel+0x3ef/0x4d0 [ 422.760851][T10248] x86_64_start_reservations+0x18/0x30 [ 422.760872][T10248] x86_64_start_kernel+0x130/0x190 [ 422.760892][T10248] common_startup_64+0x13e/0x148 [ 422.760915][T10248] [ 422.760915][T10248] -> #1 (&port_lock_key){-.-.}-{3:3}: [ 422.760939][T10248] _raw_spin_lock_irqsave+0x3a/0x60 [ 422.760985][T10248] serial8250_console_write+0x181/0x1890 [ 422.761006][T10248] console_flush_one_record+0x796/0xc60 [ 422.761033][T10248] console_unlock+0xef/0x240 [ 422.761058][T10248] vprintk_emit+0x407/0x6b0 [ 422.761084][T10248] _printk+0xc7/0x100 [ 422.761102][T10248] register_console+0x823/0x1210 [ 422.761130][T10248] univ8250_console_init+0x5f/0x90 [ 422.761156][T10248] console_init+0x152/0x600 [ 422.761185][T10248] start_kernel+0x298/0x4d0 [ 422.761205][T10248] x86_64_start_reservations+0x18/0x30 [ 422.761228][T10248] x86_64_start_kernel+0x130/0x190 [ 422.761250][T10248] common_startup_64+0x13e/0x148 [ 422.761273][T10248] [ 422.761273][T10248] -> #0 (console_owner){-.-.}-{0:0}: [ 422.761299][T10248] __lock_acquire+0x1669/0x2890 [ 422.761317][T10248] lock_acquire+0x179/0x330 [ 422.761334][T10248] console_lock_spinning_enable+0x72/0x80 [ 422.761360][T10248] console_flush_one_record+0x73f/0xc60 [ 422.761387][T10248] console_unlock+0xef/0x240 [ 422.761412][T10248] vprintk_emit+0x407/0x6b0 [ 422.761439][T10248] _printk+0xc7/0x100 [ 422.761458][T10248] __report_bug+0x3a6/0x520 [ 422.761486][T10248] report_bug+0xb2/0x220 [ 422.761513][T10248] handle_bug+0x127/0x260 [ 422.761536][T10248] exc_invalid_op+0x17/0x50 [ 422.761557][T10248] asm_exc_invalid_op+0x1a/0x20 [ 422.761575][T10248] update_rq_clock+0x34a/0xc70 [ 422.761602][T10248] __schedule+0x212d/0x6150 [ 422.761630][T10248] preempt_schedule_common+0x44/0xc0 [ 422.761661][T10248] preempt_schedule_thunk+0x16/0x30 [ 422.761680][T10248] _raw_spin_unlock_irq+0x44/0x50 [ 422.761709][T10248] snd_rawmidi_write+0x48c/0xc10 [ 422.761732][T10248] vfs_write+0x2a0/0x11d0 [ 422.761761][T10248] ksys_write+0x1f8/0x250 [ 422.761789][T10248] do_syscall_64+0xcd/0xf80 [ 422.761805][T10248] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 422.761825][T10248] [ 422.761825][T10248] other info that might help us debug this: [ 422.761825][T10248] [ 422.761831][T10248] Chain exists of: [ 422.761831][T10248] console_owner --> &p->pi_lock --> &rq->__lock [ 422.761831][T10248] [ 422.761861][T10248] Possible unsafe locking scenario: [ 422.761861][T10248] [ 422.761866][T10248] CPU0 CPU1 [ 422.761872][T10248] ---- ---- [ 422.761877][T10248] lock(&rq->__lock); [ 422.761889][T10248] lock(&p->pi_lock); [ 422.761902][T10248] lock(&rq->__lock); [ 422.761916][T10248] lock(console_owner); [ 422.761928][T10248] [ 422.761928][T10248] *** DEADLOCK *** [ 422.761928][T10248] [ 422.761933][T10248] 3 locks held by syz.2.975/10248: [ 422.761944][T10248] #0: ffff8880b843add8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130 [ 422.761999][T10248] #1: ffffffff8e3b6f00 (console_lock){+.+.}-{0:0}, at: _printk+0xc7/0x100 [ 422.762045][T10248] #2: ffffffff8e3b6f78 (console_srcu){....}-{0:0}, at: console_flush_one_record+0x103/0xc60 [ 422.762100][T10248] [ 422.762100][T10248] stack backtrace: [ 422.762112][T10248] CPU: 0 UID: 0 PID: 10248 Comm: syz.2.975 Tainted: G L syzkaller #0 PREEMPT(full) [ 422.762142][T10248] Tainted: [L]=SOFTLOCKUP [ 422.762149][T10248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 422.762163][T10248] Call Trace: [ 422.762169][T10248] [ 422.762177][T10248] dump_stack_lvl+0x116/0x1f0 [ 422.762217][T10248] print_circular_bug+0x275/0x340 [ 422.762251][T10248] check_noncircular+0x146/0x160 [ 422.762289][T10248] __lock_acquire+0x1669/0x2890 [ 422.762314][T10248] lock_acquire+0x179/0x330 [ 422.762332][T10248] ? console_lock_spinning_enable+0x61/0x80 [ 422.762361][T10248] ? console_lock_spinning_enable+0x4a/0x80 [ 422.762396][T10248] console_lock_spinning_enable+0x72/0x80 [ 422.762423][T10248] ? console_lock_spinning_enable+0x61/0x80 [ 422.762452][T10248] console_flush_one_record+0x73f/0xc60 [ 422.762484][T10248] ? __pfx_console_flush_one_record+0x10/0x10 [ 422.762513][T10248] ? __lock_acquire+0x436/0x2890 [ 422.762535][T10248] ? is_printk_cpu_sync_owner+0x32/0x40 [ 422.762580][T10248] console_unlock+0xef/0x240 [ 422.762605][T10248] ? __pfx_console_unlock+0x10/0x10 [ 422.762632][T10248] ? do_raw_spin_unlock+0x100/0x230 [ 422.762656][T10248] ? _printk+0xc7/0x100 [ 422.762675][T10248] ? __down_trylock_console_sem+0xb0/0x140 [ 422.762698][T10248] vprintk_emit+0x407/0x6b0 [ 422.762725][T10248] ? __pfx_vprintk_emit+0x10/0x10 [ 422.762753][T10248] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 422.762786][T10248] ? is_bpf_text_address+0x94/0x1a0 [ 422.762815][T10248] _printk+0xc7/0x100 [ 422.762833][T10248] ? __pfx__printk+0x10/0x10 [ 422.762856][T10248] ? __report_bug+0x396/0x520 [ 422.762884][T10248] __report_bug+0x3a6/0x520 [ 422.762910][T10248] ? update_rq_clock+0x34a/0xc70 [ 422.762938][T10248] ? __pfx___report_bug+0x10/0x10 [ 422.762967][T10248] ? rcu_is_watching+0x12/0xc0 [ 422.762994][T10248] ? trace_sched_set_need_resched_tp+0xf3/0x130 [ 422.763030][T10248] ? update_rq_clock+0x34a/0xc70 [ 422.763058][T10248] report_bug+0xb2/0x220 [ 422.763084][T10248] ? update_rq_clock+0x34a/0xc70 [ 422.763111][T10248] handle_bug+0x127/0x260 [ 422.763131][T10248] exc_invalid_op+0x17/0x50 [ 422.763153][T10248] asm_exc_invalid_op+0x1a/0x20 [ 422.763171][T10248] RIP: 0010:update_rq_clock+0x34a/0xc70 [ 422.763204][T10248] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc a8 04 0f 84 9c fd ff ff 90 0f 0b 90 e9 93 fd ff ff 90 <0f> 0b 90 e9 4f fd ff ff 48 8d bb 18 0e 00 00 48 b8 00 00 00 00 00 [ 422.763225][T10248] RSP: 0018:ffffc9000bf0f9a0 EFLAGS: 00010046 [ 422.763258][T10248] RAX: 0000000000000000 RBX: ffff8880b853adc0 RCX: 0000000000000001 [ 422.763272][T10248] RDX: 0000000000000000 RSI: ffffffff8daa50c6 RDI: ffffffff8bf2b680 [ 422.763286][T10248] RBP: 0000000000000001 R08: ffff8880b843b8c8 R09: fffffbfff2111e3a [ 422.763300][T10248] R10: ffffffff9088f1d7 R11: 0000000000000001 R12: ffffffff90892254 [ 422.763313][T10248] R13: ffffffff8dd65ce0 R14: ffff88807d610000 R15: ffff8880b853adc0 [ 422.763346][T10248] ? pick_task_fair+0x85/0x350 [ 422.763373][T10248] __schedule+0x212d/0x6150 [ 422.763408][T10248] ? __pfx___schedule+0x10/0x10 [ 422.763439][T10248] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 422.763463][T10248] ? preempt_schedule_thunk+0x16/0x30 [ 422.763482][T10248] preempt_schedule_common+0x44/0xc0 [ 422.763513][T10248] preempt_schedule_thunk+0x16/0x30 [ 422.763534][T10248] _raw_spin_unlock_irq+0x44/0x50 [ 422.763562][T10248] snd_rawmidi_write+0x48c/0xc10 [ 422.763589][T10248] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 422.763612][T10248] ? common_file_perm+0x1b1/0x500 [ 422.763636][T10248] ? __pfx_default_wake_function+0x10/0x10 [ 422.763664][T10248] ? bpf_lsm_file_permission+0x9/0x10 [ 422.763688][T10248] ? security_file_permission+0x71/0x210 [ 422.763715][T10248] ? rw_verify_area+0xcf/0x6c0 [ 422.763740][T10248] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 422.763763][T10248] vfs_write+0x2a0/0x11d0 [ 422.763793][T10248] ? __pfx_vfs_write+0x10/0x10 [ 422.763820][T10248] ? find_held_lock+0x2b/0x80 [ 422.763865][T10248] ? __fget_files+0x204/0x3c0 [ 422.763898][T10248] ? __fget_files+0x20e/0x3c0 [ 422.763931][T10248] ksys_write+0x1f8/0x250 [ 422.763961][T10248] ? __pfx_ksys_write+0x10/0x10 [ 422.763996][T10248] do_syscall_64+0xcd/0xf80 [ 422.764015][T10248] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 422.764054][T10248] RIP: 0033:0x7f4ac0f8f7c9 [ 422.764070][T10248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 422.764110][T10248] RSP: 002b:00007f4ac1ded038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 422.764130][T10248] RAX: ffffffffffffffda RBX: 00007f4ac11e5fa0 RCX: 00007f4ac0f8f7c9 [ 422.764145][T10248] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000002 [ 422.764159][T10248] RBP: 00007f4ac1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 422.764173][T10248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 422.764192][T10248] R13: 00007f4ac11e6038 R14: 00007f4ac11e5fa0 R15: 00007ffc8e3bb5a8 [ 422.764214][T10248] [ 423.994995][T10248] WARNING: kernel/sched/sched.h:1549 at update_rq_clock+0x34a/0xc70, CPU#0: syz.2.975/10248 [ 424.005098][T10248] Modules linked in: [ 424.009001][T10248] CPU: 0 UID: 0 PID: 10248 Comm: syz.2.975 Tainted: G L syzkaller #0 PREEMPT(full) [ 424.019857][T10248] Tainted: [L]=SOFTLOCKUP [ 424.024176][T10248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 424.034253][T10248] RIP: 0010:update_rq_clock+0x34a/0xc70 [ 424.039811][T10248] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc a8 04 0f 84 9c fd ff ff 90 0f 0b 90 e9 93 fd ff ff 90 <0f> 0b 90 e9 4f fd ff ff 48 8d bb 18 0e 00 00 48 b8 00 00 00 00 00 [ 424.059445][T10248] RSP: 0018:ffffc9000bf0f9a0 EFLAGS: 00010046 [ 424.065531][T10248] RAX: 0000000000000000 RBX: ffff8880b853adc0 RCX: 0000000000000001 [ 424.073500][T10248] RDX: 0000000000000000 RSI: ffffffff8daa50c6 RDI: ffffffff8bf2b680 [ 424.081478][T10248] RBP: 0000000000000001 R08: ffff8880b843b8c8 R09: fffffbfff2111e3a [ 424.089453][T10248] R10: ffffffff9088f1d7 R11: 0000000000000001 R12: ffffffff90892254 [ 424.097429][T10248] R13: ffffffff8dd65ce0 R14: ffff88807d610000 R15: ffff8880b853adc0 [ 424.105415][T10248] FS: 00007f4ac1ded6c0(0000) GS:ffff8881248f9000(0000) knlGS:0000000000000000 [ 424.114351][T10248] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 424.120935][T10248] CR2: 0000200000761000 CR3: 000000007df4c000 CR4: 00000000003526f0 [ 424.128907][T10248] Call Trace: [ 424.132181][T10248] [ 424.135110][T10248] ? pick_task_fair+0x85/0x350 [ 424.139883][T10248] __schedule+0x212d/0x6150 [ 424.144411][T10248] ? __pfx___schedule+0x10/0x10 [ 424.149278][T10248] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 424.154673][T10248] ? preempt_schedule_thunk+0x16/0x30 [ 424.160051][T10248] preempt_schedule_common+0x44/0xc0 [ 424.165348][T10248] preempt_schedule_thunk+0x16/0x30 [ 424.170562][T10248] _raw_spin_unlock_irq+0x44/0x50 [ 424.175608][T10248] snd_rawmidi_write+0x48c/0xc10 [ 424.180551][T10248] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 424.186038][T10248] ? common_file_perm+0x1b1/0x500 [ 424.191074][T10248] ? __pfx_default_wake_function+0x10/0x10 [ 424.196891][T10248] ? bpf_lsm_file_permission+0x9/0x10 [ 424.202266][T10248] ? security_file_permission+0x71/0x210 [ 424.207910][T10248] ? rw_verify_area+0xcf/0x6c0 [ 424.212693][T10248] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 424.218159][T10248] vfs_write+0x2a0/0x11d0 [ 424.222515][T10248] ? __pfx_vfs_write+0x10/0x10 [ 424.227288][T10248] ? find_held_lock+0x2b/0x80 [ 424.232001][T10248] ? __fget_files+0x204/0x3c0 [ 424.236698][T10248] ? __fget_files+0x20e/0x3c0 [ 424.241388][T10248] ksys_write+0x1f8/0x250 [ 424.245738][T10248] ? __pfx_ksys_write+0x10/0x10 [ 424.250605][T10248] do_syscall_64+0xcd/0xf80 [ 424.255108][T10248] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 424.261002][T10248] RIP: 0033:0x7f4ac0f8f7c9 [ 424.265507][T10248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 424.285131][T10248] RSP: 002b:00007f4ac1ded038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 424.293565][T10248] RAX: ffffffffffffffda RBX: 00007f4ac11e5fa0 RCX: 00007f4ac0f8f7c9 [ 424.301545][T10248] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000002 [ 424.309551][T10248] RBP: 00007f4ac1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 424.317525][T10248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 424.325504][T10248] R13: 00007f4ac11e6038 R14: 00007f4ac11e5fa0 R15: 00007ffc8e3bb5a8 [ 424.333500][T10248] [ 424.336530][T10248] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 424.343810][T10248] CPU: 0 UID: 0 PID: 10248 Comm: syz.2.975 Tainted: G L syzkaller #0 PREEMPT(full) [ 424.354682][T10248] Tainted: [L]=SOFTLOCKUP [ 424.359012][T10248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 424.369079][T10248] Call Trace: [ 424.372385][T10248] [ 424.375351][T10248] dump_stack_lvl+0x3d/0x1f0 [ 424.379996][T10248] vpanic+0x640/0x6f0 [ 424.384002][T10248] ? update_rq_clock+0x34a/0xc70 [ 424.388957][T10248] panic+0xca/0xd0 [ 424.392684][T10248] ? __pfx_panic+0x10/0x10 [ 424.397117][T10248] check_panic_on_warn+0xab/0xb0 [ 424.402061][T10248] __warn+0x108/0x3c0 [ 424.406049][T10248] __report_bug+0x2a0/0x520 [ 424.410571][T10248] ? update_rq_clock+0x34a/0xc70 [ 424.415515][T10248] ? __pfx___report_bug+0x10/0x10 [ 424.420545][T10248] ? rcu_is_watching+0x12/0xc0 [ 424.425321][T10248] ? trace_sched_set_need_resched_tp+0xf3/0x130 [ 424.431578][T10248] ? update_rq_clock+0x34a/0xc70 [ 424.436527][T10248] report_bug+0xb2/0x220 [ 424.440801][T10248] ? update_rq_clock+0x34a/0xc70 [ 424.445756][T10248] handle_bug+0x127/0x260 [ 424.450088][T10248] exc_invalid_op+0x17/0x50 [ 424.454616][T10248] asm_exc_invalid_op+0x1a/0x20 [ 424.459468][T10248] RIP: 0010:update_rq_clock+0x34a/0xc70 [ 424.465057][T10248] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc a8 04 0f 84 9c fd ff ff 90 0f 0b 90 e9 93 fd ff ff 90 <0f> 0b 90 e9 4f fd ff ff 48 8d bb 18 0e 00 00 48 b8 00 00 00 00 00 [ 424.484714][T10248] RSP: 0018:ffffc9000bf0f9a0 EFLAGS: 00010046 [ 424.490791][T10248] RAX: 0000000000000000 RBX: ffff8880b853adc0 RCX: 0000000000000001 [ 424.498757][T10248] RDX: 0000000000000000 RSI: ffffffff8daa50c6 RDI: ffffffff8bf2b680 [ 424.506725][T10248] RBP: 0000000000000001 R08: ffff8880b843b8c8 R09: fffffbfff2111e3a [ 424.514712][T10248] R10: ffffffff9088f1d7 R11: 0000000000000001 R12: ffffffff90892254 [ 424.522681][T10248] R13: ffffffff8dd65ce0 R14: ffff88807d610000 R15: ffff8880b853adc0 [ 424.530655][T10248] ? pick_task_fair+0x85/0x350 [ 424.535431][T10248] __schedule+0x212d/0x6150 [ 424.539968][T10248] ? __pfx___schedule+0x10/0x10 [ 424.544836][T10248] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 424.550216][T10248] ? preempt_schedule_thunk+0x16/0x30 [ 424.555588][T10248] preempt_schedule_common+0x44/0xc0 [ 424.560906][T10248] preempt_schedule_thunk+0x16/0x30 [ 424.566112][T10248] _raw_spin_unlock_irq+0x44/0x50 [ 424.571155][T10248] snd_rawmidi_write+0x48c/0xc10 [ 424.576127][T10248] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 424.581592][T10248] ? common_file_perm+0x1b1/0x500 [ 424.586622][T10248] ? __pfx_default_wake_function+0x10/0x10 [ 424.592469][T10248] ? bpf_lsm_file_permission+0x9/0x10 [ 424.597845][T10248] ? security_file_permission+0x71/0x210 [ 424.603492][T10248] ? rw_verify_area+0xcf/0x6c0 [ 424.608270][T10248] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 424.613739][T10248] vfs_write+0x2a0/0x11d0 [ 424.618087][T10248] ? __pfx_vfs_write+0x10/0x10 [ 424.622870][T10248] ? find_held_lock+0x2b/0x80 [ 424.627577][T10248] ? __fget_files+0x204/0x3c0 [ 424.632269][T10248] ? __fget_files+0x20e/0x3c0 [ 424.636954][T10248] ksys_write+0x1f8/0x250 [ 424.641295][T10248] ? __pfx_ksys_write+0x10/0x10 [ 424.646158][T10248] do_syscall_64+0xcd/0xf80 [ 424.650656][T10248] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 424.656547][T10248] RIP: 0033:0x7f4ac0f8f7c9 [ 424.660963][T10248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 424.680598][T10248] RSP: 002b:00007f4ac1ded038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 424.689012][T10248] RAX: ffffffffffffffda RBX: 00007f4ac11e5fa0 RCX: 00007f4ac0f8f7c9 [ 424.696978][T10248] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000002 [ 424.704979][T10248] RBP: 00007f4ac1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 424.712976][T10248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 424.720991][T10248] R13: 00007f4ac11e6038 R14: 00007f4ac11e5fa0 R15: 00007ffc8e3bb5a8 [ 424.728970][T10248] [ 424.732223][T10248] Kernel Offset: disabled [ 424.736555][T10248] Timer List Version: v0.10 [ 424.741041][T10248] HRTIMER_MAX_CLOCK_BASES: 8 [ 424.745661][T10248] now at 424620482975 nsecs [ 424.750176][T10248] [ 424.752492][T10248] cpu: 0 [ 424.755337][T10248] clock 0: [ 424.758438][T10248] .base: ffff8880b84284c0 [ 424.763475][T10248] .index: 0 [ 424.767184][T10248] .resolution: 1 nsecs [ 424.771413][T10248] .offset: 0 nsecs [ 424.775640][T10248] active timers: [ 424.779177][T10248] #0: , hrtimer_wakeup [ 424.779204][T10248] , S:01 [ 424.784906][T10248] [ 424.790064][T10248] # expires at 422646382961-422646432961 nsecs [in -1974100014 to -1974050014 nsecs] [ 424.799594][T10248] #1: , hrtimer_wakeup [ 424.799618][T10248] , S:01 [ 424.805317][T10248] [ 424.810469][T10248] # expires at 422647963704-422648013704 nsecs [in -1972519271 to -1972469271 nsecs] [ 424.820010][T10248] #2: , hrtimer_wakeup [ 424.820037][T10248] , S:01 [ 424.825748][T10248] [ 424.830903][T10248] # expires at 422649917086-422649967086 nsecs [in -1970565889 to -1970515889 nsecs] [ 424.840440][T10248] #3: , tick_nohz_handler [ 424.840484][T10248] , S:01 [ 424.846456][T10248] [ 424.851610][T10248] # expires at 422650000000-422650000000 nsecs [in -1970482975 to -1970482975 nsecs] [ 424.861148][T10248] #4: , hrtimer_wakeup [ 424.861173][T10248] , S:01 [ 424.866897][T10248] [ 424.872056][T10248] # expires at 423186260616-423187260612 nsecs [in -1434222359 to -1433222363 nsecs] [ 424.881595][T10248] #5: , dl_task_timer [ 424.881628][T10248] , S:01 [ 424.887247][T10248] [ 424.892417][T10248] # expires at 423543677437-423543677437 nsecs [in -1076805538 to -1076805538 nsecs] [ 424.901957][T10248] #6: , hrtimer_wakeup [ 424.901986][T10248] , S:01 [ 424.907699][T10248] [ 424.912861][T10248] # expires at 425588932044-425591932042 nsecs [in 968449069 to 971449067 nsecs] [ 424.922054][T10248] #7: , hrtimer_wakeup [ 424.922083][T10248] , S:01 [ 424.927793][T10248] [ 424.932948][T10248] # expires at 427375499403-427375549403 nsecs [in 2755016428 to 2755066428 nsecs] [ 424.942310][T10248] #8: , watchdog_timer_fn [ 424.942348][T10248] , S:01 [ 424.948317][T10248] [ 424.953517][T10248] # expires at 442954814994-442954814994 nsecs [in 18334332019 to 18334332019 nsecs] [ 424.963053][T10248] #9: , hrtimer_wakeup [ 424.963082][T10248] , S:01 [ 424.968800][T10248] [ 424.973962][T10248] # expires at 452816500529-452877228797 nsecs [in 28196017554 to 28256745822 nsecs] [ 424.983528][T10248] #10: , hrtimer_wakeup [ 424.983553][T10248] , S:01 [ 424.989343][T10248] [ 424.994496][T10248] # expires at 818477388856-818577388856 nsecs [in 393856905881 to 393956905881 nsecs] [ 425.004219][T10248] clock 1: [ 425.007324][T10248] .base: ffff8880b8428540 [ 425.012356][T10248] .index: 1 [ 425.016067][T10248] .resolution: 1 nsecs [ 425.020299][T10248] .offset: 1768467592975190443 nsecs [ 425.026091][T10248] active timers: [ 425.029632][T10248] #0: , sync_timer_callback [ 425.029658][T10248] , S:01 [ 425.035795][T10248] [ 425.040944][T10248] # expires at 1768468578500000000-1768468578500000000 nsecs [in 560904326582 to 560904326582 nsecs] [ 425.051869][T10248] clock 2: [ 425.054985][T10248] .base: ffff8880b84285c0 [ 425.060011][T10248] .index: 2 [ 425.063735][T10248] .resolution: 1 nsecs [ 425.067973][T10248] .offset: 0 nsecs [ 425.072213][T10248] active timers: [ 425.075754][T10248] clock 3: [ 425.078866][T10248] .base: ffff8880b8428640 [ 425.083882][T10248] .index: 3 [ 425.087598][T10248] .resolution: 1 nsecs [ 425.091852][T10248] .offset: 1768467599975190443 nsecs [ 425.097653][T10248] active timers: [ 425.101212][T10248] clock 4: [ 425.104336][T10248] .base: ffff8880b84286c0 [ 425.109354][T10248] .index: 4 [ 425.113059][T10248] .resolution: 1 nsecs [ 425.117290][T10248] .offset: 0 nsecs [ 425.121693][T10248] active timers: [ 425.125226][T10248] #0: , mac80211_hwsim_beacon [ 425.125260][T10248] , S:01 [ 425.131571][T10248] [ 425.136717][T10248] # expires at 422712832046-422712832046 nsecs [in -1907650929 to -1907650929 nsecs] [ 425.146256][T10248] #1: , mac80211_hwsim_beacon [ 425.146289][T10248] , S:01 [ 425.152602][T10248] [ 425.157764][T10248] # expires at 422712832243-422712832243 nsecs [in -1907650732 to -1907650732 nsecs] [ 425.167307][T10248] #2: , mac80211_hwsim_beacon [ 425.167340][T10248] , S:01 [ 425.173686][T10248] [ 425.178847][T10248] # expires at 422712832643-422712832643 nsecs [in -1907650332 to -1907650332 nsecs] [ 425.188385][T10248] #3: , mac80211_hwsim_beacon [ 425.188422][T10248] , S:01 [ 425.194734][T10248] [ 425.199884][T10248] # expires at 422712833117-422712833117 nsecs [in -1907649858 to -1907649858 nsecs] [ 425.209415][T10248] #4: , mac80211_hwsim_beacon [ 425.209445][T10248] , S:01 [ 425.215768][T10248] [ 425.220941][T10248] # expires at 422712833160-422712833160 nsecs [in -1907649815 to -1907649815 nsecs] [ 425.230476][T10248] #5: , mac80211_hwsim_beacon [ 425.230513][T10248] , S:01 [ 425.236828][T10248] [ 425.241972][T10248] # expires at 422712833188-422712833188 nsecs [in -1907649787 to -1907649787 nsecs] [ 425.251530][T10248] #6: , mac80211_hwsim_beacon [ 425.251561][T10248] , S:01 [ 425.257880][T10248] [ 425.263028][T10248] # expires at 422712833468-422712833468 nsecs [in -1907649507 to -1907649507 nsecs] [ 425.272564][T10248] #7: , mac80211_hwsim_beacon [ 425.272594][T10248] , S:01 [ 425.278906][T10248] [ 425.284059][T10248] # expires at 422713063806-422713063806 nsecs [in -1907419169 to -1907419169 nsecs] [ 425.293600][T10248] clock 5: [ 425.296699][T10248] .base: ffff8880b8428740 [ 425.301723][T10248] .index: 5 [ 425.305432][T10248] .resolution: 1 nsecs [ 425.309673][T10248] .offset: 1768467592975190443 nsecs [ 425.315474][T10248] active timers: [ 425.319005][T10248] clock 6: [ 425.322103][T10248] .base: ffff8880b84287c0 [ 425.327115][T10248] .index: 6 [ 425.330826][T10248] .resolution: 1 nsecs [ 425.335052][T10248] .offset: 0 nsecs [ 425.339298][T10248] active timers: [ 425.342848][T10248] clock 7: [ 425.345951][T10248] .base: ffff8880b8428840 [ 425.350969][T10248] .index: 7 [ 425.354701][T10248] .resolution: 1 nsecs [ 425.358939][T10248] .offset: 1768467599975190443 nsecs [ 425.364735][T10248] active timers: [ 425.368272][T10248] .expires_next : 422646432961 nsecs [ 425.373919][T10248] .hres_active : 1 [ 425.378066][T10248] .nr_events : 110465 [ 425.382649][T10248] .nr_retries : 300 [ 425.386970][T10248] .nr_hangs : 0 [ 425.391128][T10248] .max_hang_time : 0 [ 425.395278][T10248] .nohz : 1 [ 425.399474][T10248] .highres : 1 [ 425.403622][T10248] .last_tick : 421730000000 nsecs [ 425.409243][T10248] .tick_stopped : 0 [ 425.413427][T10248] .idle_jiffies : 4294979256 [ 425.418357][T10248] .idle_calls : 142662 [ 425.422938][T10248] .idle_sleeps : 20150 [ 425.427434][T10248] .idle_entrytime : 422152007645 nsecs [ 425.433065][T10248] .idle_waketime : 421502969627 nsecs [ 425.438699][T10248] .idle_exittime : 421720433022 nsecs [ 425.444329][T10248] .idle_sleeptime : 123389859819 nsecs [ 425.449955][T10248] .iowait_sleeptime: 3587179297 nsecs [ 425.455495][T10248] .last_jiffies : 4294979299 [ 425.460420][T10248] .next_timer : 421880000000 [ 425.465552][T10248] .idle_expires : 640040000000 nsecs [ 425.471201][T10248] jiffies: 4294979348 [ 425.475166][T10248] [ 425.477510][T10248] Tick Device: mode: 1 [ 425.481921][T10248] Broadcast device [ 425.485629][T10248] Clock Event Device: [ 425.485636][T10248] pit [ 425.492259][T10248] max_delta_ns: 27461861 [ 425.496747][T10248] min_delta_ns: 12572 [ 425.500981][T10248] mult: 5124678 [ 425.505397][T10248] shift: 32 [ 425.509365][T10248] mode: 1 [ 425.513245][T10248] next_event: 9223372036854775807 nsecs [ 425.519211][T10248] set_next_event: pit_next_event [ 425.524234][T10248] shutdown: pit_shutdown [ 425.529084][T10248] periodic: pit_set_periodic [ 425.534280][T10248] oneshot: pit_set_oneshot [ 425.539398][T10248] event_handler: tick_handle_oneshot_broadcast [ 425.545731][T10248] [ 425.548068][T10248] retries: 0 [ 425.551956][T10248] [ 425.554289][T10248] tick_broadcast_mask: 0 [ 425.558551][T10248] tick_broadcast_oneshot_mask: 0 [ 425.563478][T10248] [ 425.565802][T10248] Tick Device: mode: 1 [ 425.570202][T10248] Per CPU device: 0 [ 425.574020][T10248] Clock Event Device: [ 425.574028][T10248] lapic [ 425.580885][T10248] max_delta_ns: 34356385208 [ 425.585642][T10248] min_delta_ns: 1000 [ 425.589804][T10248] mult: 268461655 [ 425.594396][T10248] shift: 32 [ 425.598376][T10248] mode: 3 [ 425.602273][T10248] next_event: 422646432961 nsecs [ 425.607647][T10248] set_next_event: lapic_next_event [ 425.612867][T10248] shutdown: lapic_timer_shutdown [ 425.618434][T10248] periodic: lapic_timer_set_periodic [ 425.624348][T10248] oneshot: lapic_timer_set_oneshot [ 425.630171][T10248] oneshot stopped: lapic_timer_shutdown [ 425.635811][T10248] event_handler: hrtimer_interrupt [ 425.641122][T10248] [ 425.643451][T10248] retries: 2874 [ 425.647600][T10248] Wakeup Device: [ 425.651750][T10248] [ 425.654087][T10248] Dumping ftrace buffer: [ 425.658333][T10248] (ftrace buffer empty) [ 425.662747][T10248] NMI backtrace for cpu 0 [ 425.662767][T10248] CPU: 0 UID: 0 PID: 10248 Comm: syz.2.975 Tainted: G L syzkaller #0 PREEMPT(full) [ 425.662799][T10248] Tainted: [L]=SOFTLOCKUP [ 425.662807][T10248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 425.662821][T10248] Call Trace: [ 425.662831][T10248] [ 425.662840][T10248] dump_stack_lvl+0x3d/0x1f0 [ 425.662885][T10248] nmi_cpu_backtrace+0x27b/0x390 [ 425.662912][T10248] ? tracer_tracing_enable+0x3e/0x60 [ 425.662949][T10248] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 425.662973][T10248] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 425.663003][T10248] sys_info+0x133/0x180 [ 425.663026][T10248] vpanic+0x234/0x6f0 [ 425.663049][T10248] ? update_rq_clock+0x34a/0xc70 [ 425.663080][T10248] panic+0xca/0xd0 [ 425.663100][T10248] ? __pfx_panic+0x10/0x10 [ 425.663129][T10248] check_panic_on_warn+0xab/0xb0 [ 425.663154][T10248] __warn+0x108/0x3c0 [ 425.663177][T10248] __report_bug+0x2a0/0x520 [ 425.663207][T10248] ? update_rq_clock+0x34a/0xc70 [ 425.663239][T10248] ? __pfx___report_bug+0x10/0x10 [ 425.663271][T10248] ? rcu_is_watching+0x12/0xc0 [ 425.663303][T10248] ? trace_sched_set_need_resched_tp+0xf3/0x130 [ 425.663343][T10248] ? update_rq_clock+0x34a/0xc70 [ 425.663373][T10248] report_bug+0xb2/0x220 [ 425.663403][T10248] ? update_rq_clock+0x34a/0xc70 [ 425.663434][T10248] handle_bug+0x127/0x260 [ 425.663458][T10248] exc_invalid_op+0x17/0x50 [ 425.663482][T10248] asm_exc_invalid_op+0x1a/0x20 [ 425.663504][T10248] RIP: 0010:update_rq_clock+0x34a/0xc70 [ 425.663537][T10248] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc a8 04 0f 84 9c fd ff ff 90 0f 0b 90 e9 93 fd ff ff 90 <0f> 0b 90 e9 4f fd ff ff 48 8d bb 18 0e 00 00 48 b8 00 00 00 00 00 [ 425.663559][T10248] RSP: 0018:ffffc9000bf0f9a0 EFLAGS: 00010046 [ 425.663577][T10248] RAX: 0000000000000000 RBX: ffff8880b853adc0 RCX: 0000000000000001 [ 425.663591][T10248] RDX: 0000000000000000 RSI: ffffffff8daa50c6 RDI: ffffffff8bf2b680 [ 425.663606][T10248] RBP: 0000000000000001 R08: ffff8880b843b8c8 R09: fffffbfff2111e3a [ 425.663621][T10248] R10: ffffffff9088f1d7 R11: 0000000000000001 R12: ffffffff90892254 [ 425.663635][T10248] R13: ffffffff8dd65ce0 R14: ffff88807d610000 R15: ffff8880b853adc0 [ 425.663657][T10248] ? pick_task_fair+0x85/0x350 [ 425.663688][T10248] __schedule+0x212d/0x6150 [ 425.663728][T10248] ? __pfx___schedule+0x10/0x10 [ 425.663771][T10248] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 425.663799][T10248] ? preempt_schedule_thunk+0x16/0x30 [ 425.663821][T10248] preempt_schedule_common+0x44/0xc0 [ 425.663856][T10248] preempt_schedule_thunk+0x16/0x30 [ 425.663885][T10248] _raw_spin_unlock_irq+0x44/0x50 [ 425.663918][T10248] snd_rawmidi_write+0x48c/0xc10 [ 425.663949][T10248] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 425.663976][T10248] ? common_file_perm+0x1b1/0x500 [ 425.664003][T10248] ? __pfx_default_wake_function+0x10/0x10 [ 425.664034][T10248] ? bpf_lsm_file_permission+0x9/0x10 [ 425.664062][T10248] ? security_file_permission+0x71/0x210 [ 425.664092][T10248] ? rw_verify_area+0xcf/0x6c0 [ 425.664123][T10248] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 425.664150][T10248] vfs_write+0x2a0/0x11d0 [ 425.664185][T10248] ? __pfx_vfs_write+0x10/0x10 [ 425.664217][T10248] ? find_held_lock+0x2b/0x80 [ 425.664246][T10248] ? __fget_files+0x204/0x3c0 [ 425.664280][T10248] ? __fget_files+0x20e/0x3c0 [ 425.664316][T10248] ksys_write+0x1f8/0x250 [ 425.664348][T10248] ? __pfx_ksys_write+0x10/0x10 [ 425.664385][T10248] do_syscall_64+0xcd/0xf80 [ 425.664405][T10248] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 425.664428][T10248] RIP: 0033:0x7f4ac0f8f7c9 [ 425.664446][T10248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 425.664469][T10248] RSP: 002b:00007f4ac1ded038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 425.664489][T10248] RAX: ffffffffffffffda RBX: 00007f4ac11e5fa0 RCX: 00007f4ac0f8f7c9 [ 425.664505][T10248] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000002 [ 425.664519][T10248] RBP: 00007f4ac1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 425.664533][T10248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 425.664546][T10248] R13: 00007f4ac11e6038 R14: 00007f4ac11e5fa0 R15: 00007ffc8e3bb5a8 [ 425.664569][T10248] [ 426.081335][T10248] Rebooting in 86400 seconds..