last executing test programs: 10.403500278s ago: executing program 2 (id=956): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x2, 0x0) socket(0x28, 0x1, 0x0) socket(0x2, 0x5, 0x0) sysfs$auto(0x2, 0x0, 0x0) epoll_create$auto(0x7) r0 = socket$nl_generic(0x10, 0x3, 0x10) epoll_ctl$auto(0x5, 0x1, r0, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) epoll_ctl$auto(0x5, 0x3, r0, 0x0) (fail_nth: 2) 10.157491256s ago: executing program 1 (id=958): r0 = set_tid_address$auto(0x0) ioprio_get$auto_IOPRIO_WHO_PROCESS(0x1, r0) syz_open_procfs$namespace(r0, &(0x7f0000000000)='ns/cgroup\x00') close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) socket(0xb, 0x2, 0x0) mlockall$auto(0x5) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) ioctl$auto(r2, 0x1, r2) write$auto(r1, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9) r3 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/dynamic_events\x00', 0x542, 0x0) write$auto_dynamic_events_ops_trace_dynevent(r3, 0x0, 0x0) 9.295436229s ago: executing program 2 (id=962): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bus/usb/037/001\x00', 0x20882, 0x0) ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x14, 0x5, 0x7fc, 0x7fb, &(0x7f00000002c0)}) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = openat$auto_percpu_stats_fops_(0xffffffffffffff9c, &(0x7f0000000240), 0x303101, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto_BCH_IOCTL_FSCK_OFFLINE(0xffffffffffffffff, 0x4018bc13, 0x0) r2 = prctl$auto_PR_SCHED_CORE_SHARE_TO(0x6, 0x2, 0x0, 0x5, 0x80000001) ioctl$auto_FS_IOC_ENABLE_VERITY3(r2, 0x40806685, &(0x7f0000000280)={0x1c0, 0x3, 0x9, 0x6, 0x1, 0xa, 0x0, 0x1}) getsockopt$auto_SO_PEEK_OFF(r1, 0x8, 0x2a, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', &(0x7f00000001c0)=0x6) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/controlC2\x00', 0x400, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r4) sendmsg$auto_NL80211_CMD_GET_WIPHY(r4, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r5, @ANYBLOB="810b25bd7080fbdbdf250100"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r6 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r6, 0xc0285700, &(0x7f00000000c0)={0x1, "e6c26c22ab89af11056b0001ac097e0a0728d9300000c500"}) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r6, 0xc0285700, &(0x7f0000000080)={0x1, "36a2662b59209f6bd4aafa4ed15fdb9c791daf044ae6ff089930def80ce28999"}) newfstatat$auto(0xffffffffffffff9c, 0x0, &(0x7f0000000380)={0x5, 0x6, 0xa9, 0x4, 0x0, 0xee01, 0x0, 0x6, 0x3, 0x0, 0x4, 0x8, 0xbc, 0x1, 0x4, 0x0, 0x53}, 0x1) ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, 0x0, 0x8) ioctl$auto_SW_SYNC_IOC_INC(r6, 0x40045701, &(0x7f0000000040)=0x8) r7 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram8/power/runtime_active_time\x00', 0x1a200, 0x0) ioctl$auto_PAGEMAP_SCAN(r7, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xbff, 0x2c, 0x2c, 0x3, 0x2}) ioperm$auto(0x5, 0x4, 0x800005) 8.479575291s ago: executing program 1 (id=964): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0xf, 0x0) fsopen$auto(0x0, 0x1) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC2\x00', 0x2, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r0, 0xc1105511, &(0x7f0000000080)={{@raw=0x7, 0x5, 0xfffff7bb, 0x2f, "984e784f697ebcc30053822c357eb55df43e9e037b650dfc7a3df9aa20e32749384f515111de5da4403cab68", @raw=0x7}, 0x200000, 0x1, 0x4, @raw=0x3, @enumerated={0x8, 0x0, "3544fac47a801d819cb534605db6a893115890fe4787b893bf2d3f312883af26fc4d92993388bae934e26fa2157468e873f1359a98377e7310a5f19b224938a6", 0xf}, "b210e8ae72f3052d09004297cc39fbd4fe51f972eb62ed41cec2ea5c1e45264907d818e9711e2b57cd159b796ab9e6c81a2f47680e3d2a7f677dccfd260d82fe"}) r1 = socket(0x2, 0x1, 0x106) mmap$auto(0xffffffffffffffff, 0x2000d, 0x7, 0xeb2, 0x404, 0x86a4) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/net/rose8/address\x00', 0x752502, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ram15\x00', 0x7e9d00, 0x0) arch_prctl$auto_ARCH_MAP_VDSO_32(0x2002, 0x3) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r4 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x10a) open_by_handle_at$auto(r4, &(0x7f0000000040)={0x8, 0x20002, "0600000000000000"}, 0x2) r5 = openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/buffer_percent\x00', 0xbc102, 0x0) close_range$auto(r3, r5, 0x800000b) r6 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000002640)='/dev/mtd0\x00', 0x8000, 0x0) capset$auto(&(0x7f0000000100)={0x20080522}, 0x0) ioctl$auto(0xffffffffffffffff, 0x4b41, 0xffffffffffffffff) ioctl$auto_OTPSELECT(r6, 0x80044d0d, &(0x7f00000000c0)=0x10009) socket(0x2, 0x1, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) ioctl$auto_UI_DEV_SETUP(r8, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa}) recvmmsg$auto(r7, &(0x7f0000001200)={{&(0x7f0000000e80)="b55b19901ff5d0344a1fc41210effb3148cbe3c5791b79009e18bf3d26c57293c5779ada073afdd0a20efa60096260446c108c168ec4086cf313df39876424025ad4e7fc0e8c8426094761067586347c1063e9b50008b2a7f6301b0751703e44807609356dfec198152770fb7c0623499b420f0c1ef722d4403a5e08495914db725404ca8b13e575efa20e3a6d80ee2393ebbffc3a76e86be17ec6f79b797b4c598736222417c68f31576728f37abdb29364ac606ce330914f291447bd7f4db09fea1ecd629b66fc4e5e6b7c5e2e5a41a5bad3531b5a6a408dfa4292945a43", 0x80000001, &(0x7f0000001100)={&(0x7f0000001000)="623cd983a7fb9b2a4acb4194ddbfb4eebe4a3f6e4fb551c9356d1f98d6cafed56beff689ac5b4934e7907977a9259c08d7f33c76879e83423a6efc18123ae96e6405451753ded50b0c8b2023c1681fd75c1e6bd49044163705db07f519c2b4deb02ae960536e6965a11e072da7bbf52cd8f879c05e4e4b19583fcfc344c9a112bd3c960505171bb9ef811a44c9a9bdc45acbc076835334512689db86c3c2c2a01af2038fdef212fb4e181c01058173f5e370389132cee2a2b237173330b0158dd6619c11faffaa50ac9af1b40900b51db65d641bf8f0a4e8feb0f0da84ed15"}, 0x1, &(0x7f0000001140)="164f330375f2d5cdb5885938500089b153f324e417285e519f83d3b7a8b27c80570c0c38bdc1aa35cbb3547a2160f610dbd4976efd5a35c0ec7a3f1e98f1037584068e48881efc9a12f1e32be2ac43e3810103f2306ce8af254f9dea68dff0e09e348dd9b840a01ac90054f9ce476e8d8578cec2e91cbbbb66ab13195697e699632e0abd3f32b7", 0x3, 0x8}, 0xfff}, 0x3, 0x4, &(0x7f0000001240)={0xfffffffffffffff7, 0x7fffffffffffffff}) ioctl$auto_UI_DEV_CREATE(r8, 0x5501, 0x0) writev$auto(r8, &(0x7f0000000340)={&(0x7f0000000200)="000000000000000007995a558670f5f8d8eb5f2af16a144ff569c26b", 0xda7e}, 0x8) getsockopt$auto(r1, 0x6, 0x6, 0x0, &(0x7f00000000c0)=0xfffffff8) sendmsg$auto_NL80211_CMD_GET_MESH_CONFIG(0xffffffffffffffff, &(0x7f0000000fc0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000f80)={&(0x7f0000001280)=ANY=[@ANYBLOB="b40c00002c0d00000024cce328c40abf9d08000000f2c7574c833917745cc4cfe6faed2294f8360a", @ANYRES16=0x0, @ANYBLOB="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"], 0xcb4}, 0x1, 0x0, 0x0, 0x200000c4}, 0x0) 7.81989822s ago: executing program 2 (id=966): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r0, 0x4, 0x7ff) ptrace$auto_PTRACE_SINGLEBLOCK(0x21, r0, 0x7, 0x7) prctl$auto(0xfffffffe, 0x5, r0, 0x0, 0x8) (async, rerun: 32) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (rerun: 32) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) clone$auto(0x4000000000000008, 0x92e, 0xffffffffffffffff, 0x0, 0x0) (async) ioctl$auto(0x3, 0x2287, 0xffffffffffffffff) (async) r1 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) (async) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) recvmmsg$auto(r2, &(0x7f0000000140)={{0x0, 0x1, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0) (async) write$auto_proc_clear_refs_operations_internal(r1, 0x0, 0x0) (async) gettid() (async) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/devices/virtual/block/loop12/integrity/protection_interval_bytes\x00', 0x80000, 0x0) mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000) (async) mlockall$auto(0x6) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async) r4 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64) close_range$auto(0x2, 0x8000, 0x0) (async, rerun: 64) r5 = socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_PEER_REMOVE(r5, &(0x7f00000110c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f000000e000)=ANY=[], 0x18}, 0x1, 0x0, 0x0, 0x104}, 0x40) (async, rerun: 64) setreuid$auto(0x0, 0x20000000004) (async, rerun: 64) syz_genetlink_get_family_id$auto_nl80211(0x0, r4) (async) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000004c0)=""/206, 0xce) r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/phonet\x00', 0x42000, 0x0) read$auto_proc_reg_file_ops_compat_inode(r6, &(0x7f0000002100)=""/15, 0xf) 7.363805229s ago: executing program 1 (id=968): mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) mmap$auto(0x0, 0x8de, 0xdf, 0x591b, 0x2, 0xb) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) socketpair$auto(0x1, 0x800, 0x0, &(0x7f00000001c0)) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x47, 0x8000) ioctl$auto(0xffffffffffffffff, 0x8983, 0x4) write$auto(r1, 0x0, 0x100000a3d9) select$auto(0x9, 0x0, 0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8c00, 0x0) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0x10006, 0x300000000000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) r3 = socket(0x10, 0x2, 0x4) statmount$auto(&(0x7f0000000000)={0x7e, @inferred, 0x80000020, 0x4, 0x4}, 0x0, 0x7ffffffff000, 0x0) close_range$auto(0x2, 0x8, 0x0) r4 = socket(0x10, 0x2, 0xc) sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000003740)={&(0x7f0000000000)=ANY=[@ANYBLOB="b1000000", @ANYRES16, @ANYBLOB="01002dbd7000fddbdf25030000000c0001"], 0x20}, 0x1, 0x0, 0x0, 0x41}, 0x40080) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r4, @ANYRES8=r2], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050) write$auto(r3, &(0x7f0000000000)='-\x00', 0xfdef) 6.368819375s ago: executing program 1 (id=973): madvise$auto(0x0, 0x2000040080000004, 0xe) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/ptybe\x00', 0x6984c0, 0x0) ioctl$auto_FIDEDUPERANGE(r2, 0xc0189436, 0x1) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x4, 0x3, 0xeb5, r1, 0x4008) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop13\x00', 0x2000, 0x0) keyctl$auto(0x6, 0xfffffffffffffffc, 0x0, 0x0, 0x101) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000013c0)={&(0x7f00000001c0)=ANY=[@ANYRES8, @ANYRES16, @ANYBLOB="01002dbd7000ffdbdf25020000000800010009000000"], 0x1c}, 0x1, 0x0, 0x0, 0xc000}, 0x2000c800) capset$auto(&(0x7f00000002c0)={0xfffffffd, 0xffffffffffffffff}, &(0x7f0000000380)={0x5, 0xf, 0x80000000}) r4 = prctl$auto(0x3, 0xb, r3, 0x8000000000000000, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) ioctl$auto_USBDEVFS_BULK(r4, 0xc0185502, &(0x7f00000003c0)={0x1ff, 0x9, 0x0, &(0x7f0000000440)="a3e9177a47235f555dc81b2805aa80b035b6399213780497b49fe426efd65a4c6b3b8790d490d3af6a50b99494322324f105012171714f62c09df6691f498d39f90ec972c982b26c1014ae13b09c5dd4988d95d7976d6cc0af5ff6e0b376a6f7cc479d90fa762aba58b6481587a4f637b34ac47c2b4c806d9fe00775bb93f14a42c5e89b741dc77a7ef3bcc72491b610b36af57335ef3e70a429a9e39c8ec681a000ff3781318ad7463a5af93be99f3c81ddebac532cc73d2133b0a9aee8f9adee382a47543ba2a8f2f9aa42613b14f480de0bbd2dbef5"}) madvise$auto(0x0, 0x2003f2, 0x15) syslog$auto(0x3, 0x0, 0x5) poll$auto(0x0, 0x7f, 0x9) socket(0x25, 0x5, 0x6) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) r6 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0) pread64$auto(r6, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001) 5.373588994s ago: executing program 0 (id=974): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, &(0x7f0000000340)={0x23, 0x3, 0x3, 0x5, 0x7fc, 0x207f7, &(0x7f00000002c0)}) r0 = socket(0x10, 0x3, 0xa) sendmsg$auto_NL80211_CMD_EXTERNAL_AUTH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x14, 0x0, 0x100, 0x70bd2c, 0x65dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x10) syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000040), r0) pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0xa, 0x1, 0x100) eventfd2$auto(0x6af3, 0x800) r4 = socket(0xa, 0x2, 0x0) setsockopt$auto(r4, 0x29, 0x11, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x110) r5 = socket(0x2, 0x800, 0x4) bpf$auto_BPF_MAP_GET_NEXT_ID(0xc, &(0x7f0000000280)=@link_update={r5, @new_map_fd=r2, 0x3, @old_prog_fd=r3}, 0x1) r7 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) pipe2$auto(&(0x7f0000000040)=r1, 0x9) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000200)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x3, 0x3, 0x15f4da0a, 0x3, 0x3, 0xfffffffffffffffa, 0x80000001, 0x7440, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r7, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x100000001f9, 0x8, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x7, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x10008000009, 0x2, 0x6]}, 0x0) openat$auto_debug_help_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f00000032c0), 0x81004, 0x0) preadv$auto(r6, &(0x7f0000003340)={0x0, 0x40}, 0x9, 0x1000000005, 0x100000001) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x500, 0x0) unshare$auto(0x40000080) openat$dir(0xffffffffffffff9c, &(0x7f00000004c0)='v#\xd5\xaf>=\x14\xe6%\xf7\x8a\x8d\x9a\xae\x1a\xd6\xa8\xb8\x1d\xf5(\xb0\x1f\xbd\xcbV\n\"\xe3V\xfeP\xceN\xb2\xc32\xaf\xcc\x80\xfa\xf0\xd4\xd9|\xfe\x03y\xd16\x17\x99R\xca\xe5\xf4\xb4T\xfcv\xfc\xe6\x9cv\a\x00\xc2a\x16\xd1\x8a\x80\x90\x87\xa5s\x10\xed\x93\xd4\x15=\xc0\x1f\x0e\xb0\x18v}\x03!\xf0I\xe3}\x90\x9b\x92[\xfe2<7\xd3\x81\x9a~\xcd\r\x19\x9e\x10(5\xfd\x8b\x82\xd4\xc85\xc3\x93t\t\xd0\x9d\xca^n\xf3\xcb>\x1bO\xcej\xe0\xef\xf2\xd7\xc2}\x18\xd9`AO\x95<\x9aH\vu\xae\xd4\xea\x12\xb8\xd1\n\x01\x83r\x85\xbf*\x18\xa7 S:R\x14\x89Z3\x94\x8bP)\x00', 0x0, 0x12d) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8502, 0x0) bpf$auto(0x0, &(0x7f0000000580)=@task_fd_query={0x7, 0x4, 0x200, 0x1001, 0x0, 0xf, 0xffffffffffffffff, 0x1400000, 0x5}, 0x6f4) io_uring_setup$auto(0x4, 0x0) close_range$auto(0x2, 0xa, 0x0) 5.372297707s ago: executing program 3 (id=975): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = socket(0xa, 0x801, 0x106) ioctl$auto(r0, 0x8936, r0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bus/usb/037/001\x00', 0x20882, 0x0) ioctl$auto_USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x14, 0x5, 0x7fc, 0x7fb, &(0x7f00000002c0)}) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioperm$auto(0x5, 0x4, 0x800005) mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) remap_file_pages$auto(0x46a27, 0x1003, 0x0, 0xb74, 0x66a) timer_create$auto(0x0, &(0x7f0000000000)={@sival_int=0x8, @raw=0x7, 0x80000000}, &(0x7f0000000040)=0x1) r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x2, 0x0) write$auto_tomoyo_operations_securityfs_if(r2, &(0x7f0000000480)="f21a9a3c5c3e006e163bb154d7886d87a5c2574c58e9867ecec3371cadbc48770dc8f745d1c76eed1672bb713aca465c9bbc23b50000000000000004c635fcd1410f37152ad1f7fa09270ce98f867fefbe147095e2928c0a", 0x58) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_DEL_NAN_FUNCTION(r3, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0xf0, 0x0, 0x20, 0x70bd28, 0x25dfdbfe, {}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0x4}, @NL80211_ATTR_HE_BSS_COLOR={0xc, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_HE_OBSS_PD={0xbc, 0x117, 0x0, 0x1, [@NL80211_HE_OBSS_PD_ATTR_PARTIAL_BSSID_BITMAP={0xb8, 0x5, "de6f68ff1a134cde9a1df7d0daa287e736671a5c348c97df12983ac6542b8b36c0bbb51b119bc9c96331d597b1908f425119c349765a8f6d7a7cfe9f0dd94785ebf3bcd06acaaec8589d4c07e42af31f714539423e193b335985c780c6edf86825f24a7937b9eb84685099fe701ce75b2ed6baaa3d523bb3b89f758a7d09a74b1925bf28eeadd4ae1674c1d20b75eb6f35aae119805c7248a9bf69fd95658be5242776b0a87de6ed2889e26880fdd692c120bbf3"}]}, @NL80211_ATTR_HANDLE_DFS={0x4}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x9}]}, 0xf0}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) 3.851302942s ago: executing program 0 (id=976): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/ip_forward\x00', 0x2002, 0x0) set_mempolicy$auto(0x8000, 0x0, 0x3936) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/ip_local_port_range\x00', 0x20202, 0x0) close_range$auto(0x0, 0x2000000003, 0x0) socket(0x2, 0x1, 0x0) socket(0x1e, 0x1, 0x0) socket(0xa, 0x5, 0x0) setsockopt$auto(0x2, 0x1, 0xa, &(0x7f0000000000)='\x00', 0x40) sendfile$auto(r0, r1, 0x0, 0x4) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) epoll_ctl$auto(r2, 0x8, r0, &(0x7f0000000000)={0x2, 0xb}) mmap$auto(0x0, 0x2020049, 0xff, 0xeb1, r0, 0x8978) r3 = socket(0x15, 0x5, 0x0) getsockopt$auto(r3, 0x114, 0x2, 0xfffffffffffffffc, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0x8048ae66, 0x38) 3.790618922s ago: executing program 2 (id=977): mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) r0 = socket(0x10, 0x2, 0x0) socket(0x10, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x3, 0x5, 0x7, 0x0) socket(0xa, 0x1, 0x0) socket(0x2, 0x1, 0x84) connect$auto(0x3, 0x0, 0x55) listen$auto(0x3, 0x81) r2 = accept$auto(0x3, 0x0, 0x0) listen$auto(0x3, 0x0) pipe2$auto(0x0, 0x80) setsockopt$auto(0x3, 0x1, 0xf, 0x0, 0x8) listen$auto(0x3, 0x83) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket(0xa, 0x2, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) socket(0xa, 0x801, 0x84) io_uring_setup$auto(0x6, 0x0) r3 = socket(0xa, 0x2, 0x88) r4 = bpf$auto(0x8, &(0x7f0000000000)=@link_update={r3, @new_map_fd=r0, 0x4, @old_prog_fd=r1}, 0xa3) bpf$auto(0x24, &(0x7f0000000040)=@link_update={r4, @new_map_fd=r2, 0x1, @old_map_fd=r5}, 0x9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r6 = epoll_create$auto(0xc) sendmmsg$auto(r6, &(0x7f0000000280)={{&(0x7f0000000000)="3aa4a265b6d6cc9e96ac2c23f7754d32b2aff416e8a4aca9ad49453976c339e3bfff0adadb9b14a008279a1d8a3689ded4aa92a96f2c850d5d2d8e97803df3fdd4cfe10c6ba29f50b0a5dce3fb841366c1fb75975320c0493d669fb85e43a09e431da018f5f16747e5bc5b9387244b3f6d682b896494d81769b5bbf434e9714f1e0580b193592cf3838767c6ac69ad6a8eb16ff298de8c9080f4a44760d69ec2ef0d697ef8f380b3ed8f9988cccac56f6cb84a17cc3b8788136b35203622912fe1f7f2dd10578c1895cba64cf3cdac140cc4f5df66b6841530e4abcfd2841417178d5da7654eef794d60a2217c5da0ec0d70c3cc", 0x8, &(0x7f0000000140)={&(0x7f0000000100)="3b0794b4946cff265bdbfa98cc720249548a608e859602898ef3c067d2100fbc38a1f07a2fa3adcaf7b55ba375b806040f21d10e120622f3e2cb144b", 0x8001}, 0x5, &(0x7f0000000180)="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", 0xb, 0xfffffdc9}, 0x380}, 0xc5, 0x4) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) 3.788588413s ago: executing program 3 (id=978): openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/user_reserve_kbytes\x00', 0x103142, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bus/usb/037/001\x00', 0x20882, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), r1) sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="010027bd70000fdcdf04262b19a0c76b3caf51e7aa4ce125da96958990bca731240295e5ccf921be4fcc0f82edded7f5000000000000000000"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x4040080) ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x14, 0x5, 0x7fc, 0x7fb, &(0x7f00000002c0)}) pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv6/conf/netdevsim2/hop_limit\x00', 0x5014c0, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000814}, 0x8800) mmap$auto(0x0, 0x0, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) close_range$auto(0x2, 0x8, 0x0) r5 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x108002, 0x0) read$auto_vcs_fops_vc_screen(r5, &(0x7f0000000080)=""/238, 0xffffffe9) r6 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000380), 0x81, 0x0) ioctl$auto_NVRAM_INIT(r6, 0x7040, 0x0) membarrier$auto(0x2, 0x0, 0x9) write$auto_proc_mem_operations_base(r4, &(0x7f0000000300)="a5f107a258929a8ecc8e30c8b67391714676d1cf24bbb879dde004b1dc9cdc26eba60b230458f9338e7e6ee6b4f2bb5ec5ef67ef65f6fda55cdcd3fa7ae8f0a68b1600b0d70e811af29b03b91e7915b914163af74e06cb7979506e519f480c52d6", 0x61) prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) prctl$auto(0x43, 0x0, 0xffffffffffffffff, 0x0, 0x200000000000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) ioctl$auto_FIONREAD(0xffffffffffffffff, 0x541b, 0x7ff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setgroups$auto(0xe32, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) 3.751842168s ago: executing program 1 (id=979): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x0, 0x7, 0xeb1, 0xffffffffffffffff, 0x100) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f00000001c0)) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0) read$auto(r0, 0x0, 0x1000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0xffffffffffffffff, 0x0, 0xfffffffffffff6bf) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x2, 0x80002, 0x73) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) write$auto(0x3, 0x0, 0xfffffdef) close_range$auto(0x2, 0x8, 0x0) symlink$auto(0x0, 0x0) socket(0x11, 0x3, 0x4007) socket(0x2, 0x1, 0x0) getsockopt$auto(0x3, 0x6, 0xb, 0x0, 0x0) shutdown$auto(0x200000003, 0x2) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(0x3, 0x0, 0xffd8) semctl$auto_GETPID(0x20000001, 0x802, 0xb, 0xffff) recvmmsg$auto(0x3, 0x0, 0x200002, 0x0, 0x0) listen$auto(0x3, 0x3) openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, 0x0, 0x22a40, 0x0) mlock$auto(0xfbe8, 0x4) socket$nl_generic(0x10, 0x3, 0x10) 3.497505903s ago: executing program 0 (id=980): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpu1/hotplug/fail\x00', 0x100, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, 0x0, 0x100000a3d9) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x88001, 0x0) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0) write$auto_seq_oss_f_ops_seq_oss(r1, &(0x7f0000000040)="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", 0xfe04) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x8, 0x1, 0x2, 0x4, 0x15f4da0e, 0x3, 0xf03, 0x8, 0x4, 0x4, 0x6d3f, 0x9, 0x2, 0x4000000000000d]}, 0x0) 3.281489081s ago: executing program 0 (id=981): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x8800, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/tlb_dynamic_lb\x00', 0x2400, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000140)=""/213, 0xd5) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000100)=ANY=[@ANYBLOB="5c010000", @ANYRES16=r1, @ANYBLOB="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"], 0x15c}, 0x1, 0x0, 0x0, 0x40010}, 0x40801) sendmsg$auto_ETHTOOL_MSG_FEC_SET(0xffffffffffffffff, 0x0, 0x20004000) unshare$auto(0x40000080) futex$auto(&(0x7f0000000000)=0xf0fe, 0x5, 0x4, 0x0, &(0x7f0000000080)=0x9, 0x3000000) r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r3, 0xc0045516, 0x0) unshare$auto(0x40000080) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f0, 0x15) shmdt$auto(0x0) unshare$auto(0x7) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) mincore$auto(0x1000, 0x4000000, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r4 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r5 = socket(0x2, 0x1, 0x0) listen$auto(0x3, 0x81) getsockopt$auto(r5, 0x6, 0x23, 0x0, &(0x7f00000000c0)=0x28000) syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000c00), r4) 2.75836679s ago: executing program 3 (id=982): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) semctl$auto(0x80001ff, 0x804, 0x13, 0x4) mkdir$auto(&(0x7f00000001c0)='./file0\x00', 0xfff) keyctl$auto(0x1, 0x7, 0x100, 0x8, 0x4) keyctl$auto(0x1, 0x7, 0x100, 0x8, 0x4) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_MACSEC_CMD_UPD_RXSC(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, 0x0, 0x300, 0x70bd2a, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4008005}, 0x240000c1) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0x1, 0x1ff, 0x100, 0x83, 0x101, 0x6, 0x6}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x876c5, 0x8, 0x100000000}}) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0xffffffffffffffff, 0x8000) setrlimit$auto(0xb, 0x0) r2 = getpid() r3 = gettid() rt_tgsigqueueinfo$auto(r2, r3, 0x21, 0x0) openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cpu/0/cpuid\x00', 0x400000, 0x0) ioctl$auto_TCFLSH2(r1, 0x5453, 0x0) ioctl$auto(0x3, 0x89e0, 0x38) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) syz_clone(0x23926000, 0x0, 0x0, 0x0, 0x0, 0x0) 2.464399148s ago: executing program 3 (id=983): r0 = eventfd$auto(0x100) mmap$auto(0x0, 0x2020009, 0x7, 0x20eb1, r0, 0x8000) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bus/usb/037/001\x00', 0x20882, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/zram0/algorithm_params\x00', 0xa001, 0x0) write$auto(r2, &(0x7f0000000000)='\"\x81=\xe2\xad\xff\xf1y\xb3\x1d]\n\xcf\xfa\xee@\"', 0x81) ioctl$auto_USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x14, 0x5, 0x7fc, 0x7fb, &(0x7f00000002c0)}) openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000080), 0x8402, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket(0x11, 0x80003, 0x300) name_to_handle_at$auto(r0, &(0x7f00000001c0)='/\x00', &(0x7f0000000200)={0x0, 0x200}, 0x0, 0x1001) setsockopt$auto(r4, 0x107, 0x12, 0x0, 0x4) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="1b0026bd7000fedbdf25030000"], 0x14}, 0x1, 0x0, 0x0, 0x4004040}, 0x4800) socket$nl_generic(0x10, 0x3, 0x10) r5 = socket(0x1f, 0x3, 0x3) ioctl$auto(r5, 0x8903, 0x8) openat$auto_check_wx_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mmap$auto(0x0, 0x0, 0x7, 0xeb1, 0x404, 0x100) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x752502, 0x0) mmap$auto(0x66e204ee, 0x4, 0xdf, 0x9b71, 0x2, 0x8014) r6 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x2a8d42, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r6, 0xc0045006, &(0x7f00000001c0)) read$auto(r6, 0x0, 0x1000) mmap$auto(0x5, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0x100082) r7 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r7, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) close_range$auto(0x2, 0x8, 0x0) symlink$auto(&(0x7f0000000040)='./file0\x00', 0x0) 2.46349958s ago: executing program 1 (id=991): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xb, 0x9b72, 0x2, 0x8000) clone$auto(0x2, 0x81, 0x0, 0x0, 0x6) getrandom$auto(0x0, 0x6000000, 0x3) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) madvise$auto(0x0, 0x20499d, 0x9) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) r0 = openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f00000004c0), 0x101202, 0x0) read$auto(r0, &(0x7f0000000000)='!:\x00', 0x8) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bus/usb/037/001\x00', 0x20882, 0x0) ioctl$auto_USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x14, 0x5, 0x7fc, 0x7fb, &(0x7f00000002c0)}) pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC1\x00', 0x80, 0x0) ioctl$auto(r2, 0xc0b45545, 0xffffffffffffffff) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioperm$auto(0x5, 0x4, 0x800005) mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) remap_file_pages$auto(0x46a27, 0x1003, 0x0, 0xb74, 0x66a) 1.86239574s ago: executing program 2 (id=984): write$auto(0xffffffffffffffff, 0x0, 0x3) mmap$auto(0x0, 0x5, 0x4000000000df, 0x40eb1, 0x401, 0x5) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/bond0/bonding/primary_reselect\x00', 0x1e2142, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x18dd01, 0x0) fanotify_init$auto(0x6, 0x9) sendfile$auto(0x1, 0x3, 0x0, 0xc01) recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0) writev$auto(0xca, &(0x7f0000000080)={&(0x7f00000000c0), 0x2}, 0x2000000000000003) prctl$auto_PR_SME_SET_VL(0x3f, 0x7, 0x7, 0x3, 0x7) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000000080)='\t', 0x1) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/module/kvm_intel/parameters/vmentry_l1d_flush\x00', 0x82942, 0x0) sendfile$auto(r1, r1, 0x0, 0x200) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) splice$auto(0x4, 0x0, 0x2, 0x0, 0x80004001, 0x9) prctl$auto(0x43, 0x17, 0x0, 0x400000000000000, 0x0) 1.658781769s ago: executing program 0 (id=985): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x2, 0x0) socket(0x28, 0x1, 0x0) socket(0x2, 0x5, 0x0) sysfs$auto(0x2, 0x0, 0x0) epoll_create$auto(0x7) r0 = socket$nl_generic(0x10, 0x3, 0x10) epoll_ctl$auto(0x5, 0x1, r0, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) epoll_ctl$auto(0x5, 0x3, r0, 0x0) (fail_nth: 4) 1.349180284s ago: executing program 3 (id=986): socket$nl_generic(0x10, 0x3, 0x10) (async) mmap$auto(0x0, 0x400008, 0x6, 0x9b72, 0x2, 0x8000) (async) socket(0x25, 0x805, 0x3) r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptyda\x00', 0x400000, 0x0) (async) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, 0x0) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) (async) mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000) (async) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) (async) r2 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) (async) fcntl$auto(0x3, 0x4, 0xa553) (async) read$auto(0x3, 0x0, 0x7fffffff) (async) mmap$auto(0x100000000000, 0x20009, 0x101, 0xeb2, 0x401, 0x2) (async) readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7) write$auto(0x3, 0x0, 0xfffffdef) (async) io_uring_setup$auto(0x2, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/hid_cougar/parameters/g6_is_space\x00', 0x129102, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/tty/ttyaa/power/control\x00', 0x0, 0x0) (async) openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000003b80)='/proc/cmdline\x00', 0x400, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) socket(0xa, 0x2, 0x88) (async) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x0, 0x0) (async) socketpair$auto(0x9, 0x803, 0x2ffb, &(0x7f0000000000)=0x1) (async) close_range$auto(r1, r2, 0x80000004) (async) r3 = socket(0x11, 0x3, 0x9) close_range$auto(0x2, r3, 0x0) (async) r4 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r4, 0x107, 0x14, 0x0, 0x4) (async) sendmmsg$auto(r3, &(0x7f0000000400)={{&(0x7f0000000000), 0x205aa, &(0x7f0000000100)={0x0, 0x4b}, 0x1, 0x0, 0x5, 0x1060}, 0x5}, 0x2, 0x100) 995.532874ms ago: executing program 0 (id=987): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x100000000000036, 0x0) fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bus/usb/037/001\x00', 0x20882, 0x0) setsockopt$auto_SO_OOBINLINE(r0, 0x80, 0xa, &(0x7f0000000040)='\\}\x00', 0x7c00) ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x14, 0x5, 0x7fc, 0x7fb, &(0x7f00000002c0)}) pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioperm$auto(0x5, 0x4, 0x800005) mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) remap_file_pages$auto(0x46a27, 0x1003, 0x0, 0xb74, 0x66a) 946.569757ms ago: executing program 2 (id=988): madvise$auto(0x0, 0x2000040080000004, 0xe) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/ptybe\x00', 0x6984c0, 0x0) ioctl$auto_FIDEDUPERANGE(r2, 0xc0189436, 0x1) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x4, 0x3, 0xeb5, r1, 0x4008) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop13\x00', 0x2000, 0x0) keyctl$auto(0x6, 0xfffffffffffffffc, 0x0, 0x0, 0x101) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000013c0)={&(0x7f00000001c0)=ANY=[@ANYRES8, @ANYRES16, @ANYBLOB="01002dbd7000ffdbdf25020000000800010009000000"], 0x1c}, 0x1, 0x0, 0x0, 0xc000}, 0x2000c800) capset$auto(&(0x7f00000002c0)={0xfffffffd, 0xffffffffffffffff}, &(0x7f0000000380)={0x5, 0xf, 0x80000000}) r4 = prctl$auto(0x3, 0xb, r3, 0x8000000000000000, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) ioctl$auto_USBDEVFS_BULK(r4, 0xc0185502, &(0x7f00000003c0)={0x1ff, 0x9, 0x0, &(0x7f0000000440)="a3e9177a47235f555dc81b2805aa80b035b6399213780497b49fe426efd65a4c6b3b8790d490d3af6a50b99494322324f105012171714f62c09df6691f498d39f90ec972c982b26c1014ae13b09c5dd4988d95d7976d6cc0af5ff6e0b376a6f7cc479d90fa762aba58b6481587a4f637b34ac47c2b4c806d9fe00775bb93f14a42c5e89b741dc77a7ef3bcc72491b610b36af57335ef3e70a429a9e39c8ec681a000ff3781318ad7463a5af93be99f3c81ddebac532cc73d2133b0a9aee8f9adee382a47543ba2a8f2f9aa42613b14f480de0bbd2dbef5"}) madvise$auto(0x0, 0x2003f2, 0x15) syslog$auto(0x3, 0x0, 0x5) poll$auto(0x0, 0x7f, 0x9) socket(0x25, 0x5, 0x6) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) r6 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0) pread64$auto(r6, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001) 0s ago: executing program 3 (id=989): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bus/usb/027/001\x00', 0x20882, 0x0) ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x14, 0x5, 0x7fc, 0x7fb, &(0x7f00000002c0)}) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) mmap$auto(0x0, 0x40005, 0xdb, 0xfffffffffffffffb, 0xffffffffffffffff, 0x1) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x20000, 0x0) read$auto(r2, 0x0, 0x20) socket$nl_generic(0x10, 0x3, 0x10) writev$auto(r1, &(0x7f0000000200)={0x0, 0x3}, 0x3) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0) landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x100000000000001c, 0x280000000000, 0x64, 0x0, 0x0, 0x0, 0x1002, 0x4, 0x80000008040000a, 0x40000402, 0x7, 0x8, 0xffffffff80000000, 0x7ff, 0x6, 0x240000100103}) mq_notify$auto(0xffffffffffffffff, &(0x7f0000000180)={@sival_ptr=0x0, @raw=0x1, 0x1, @_sigev_thread={0x0, 0x0}}) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) r3 = socket(0x10, 0x2, 0x6) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13", @ANYRES64=0x0, @ANYRESHEX], 0x1ac}}, 0x4004) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x0, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x20, &(0x7f00000000c0), 0x1) ioperm$auto(0x5, 0x4, 0x800005) mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000) kernel console output (not intermixed with test programs): 026] ? __fget_files+0x20e/0x3c0 [ 379.929937][ T9026] ksys_write+0x12a/0x250 [ 379.929963][ T9026] ? __pfx_ksys_write+0x10/0x10 [ 379.930003][ T9026] do_syscall_64+0xcd/0x490 [ 379.930042][ T9026] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 379.930068][ T9026] RIP: 0033:0x7fae6a38ebe9 [ 379.930086][ T9026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 379.930109][ T9026] RSP: 002b:00007fae6b214038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 379.930132][ T9026] RAX: ffffffffffffffda RBX: 00007fae6a5b5fa0 RCX: 00007fae6a38ebe9 [ 379.930149][ T9026] RDX: 0000000000000055 RSI: 00002000000002c0 RDI: 0000000000000003 [ 379.930165][ T9026] RBP: 00007fae6b214090 R08: 0000000000000000 R09: 0000000000000000 [ 379.930180][ T9026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 379.930195][ T9026] R13: 00007fae6a5b6038 R14: 00007fae6a5b5fa0 R15: 00007ffd06e9ef98 [ 379.930229][ T9026] [ 380.503693][ T9018] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 380.510455][ T9018] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 382.877503][ T9044] FAULT_INJECTION: forcing a failure. [ 382.877503][ T9044] name failslab, interval 1, probability 0, space 0, times 0 [ 382.932633][ T9044] CPU: 0 UID: 0 PID: 9044 Comm: syz.2.535 Not tainted syzkaller #0 PREEMPT(full) [ 382.932669][ T9044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 382.932681][ T9044] Call Trace: [ 382.932690][ T9044] [ 382.932700][ T9044] dump_stack_lvl+0x16c/0x1f0 [ 382.932739][ T9044] should_fail_ex+0x512/0x640 [ 382.932774][ T9044] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 382.932810][ T9044] should_failslab+0xc2/0x120 [ 382.932844][ T9044] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 382.932873][ T9044] ? sctp_auth_shkey_create+0x15c/0x210 [ 382.932905][ T9044] ? __d_alloc+0x32/0xae0 [ 382.932941][ T9044] __d_alloc+0x32/0xae0 [ 382.932976][ T9044] d_alloc_pseudo+0x1c/0xc0 [ 382.933024][ T9044] alloc_file_pseudo+0xcf/0x230 [ 382.933065][ T9044] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 382.933104][ T9044] ? alloc_fd+0x471/0x7d0 [ 382.933137][ T9044] sock_alloc_file+0x50/0x210 [ 382.933174][ T9044] __sys_socket+0x1c0/0x260 [ 382.933200][ T9044] ? __pfx___sys_socket+0x10/0x10 [ 382.933227][ T9044] ? xfd_validate_state+0x61/0x180 [ 382.933262][ T9044] ? __pfx_do_writev+0x10/0x10 [ 382.933296][ T9044] __x64_sys_socket+0x72/0xb0 [ 382.933322][ T9044] ? lockdep_hardirqs_on+0x7c/0x110 [ 382.933353][ T9044] do_syscall_64+0xcd/0x490 [ 382.933395][ T9044] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 382.933420][ T9044] RIP: 0033:0x7fa67b38ebe9 [ 382.933440][ T9044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 382.933464][ T9044] RSP: 002b:00007fa67c17e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 382.933489][ T9044] RAX: ffffffffffffffda RBX: 00007fa67b5b5fa0 RCX: 00007fa67b38ebe9 [ 382.933508][ T9044] RDX: 0000000000000084 RSI: 0000000000000001 RDI: 000000000000000a [ 382.933524][ T9044] RBP: 00007fa67b411e19 R08: 0000000000000000 R09: 0000000000000000 [ 382.933541][ T9044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 382.933556][ T9044] R13: 00007fa67b5b6038 R14: 00007fa67b5b5fa0 R15: 00007fffaa64fdb8 [ 382.933591][ T9044] [ 383.220754][ T9047] FAULT_INJECTION: forcing a failure. [ 383.220754][ T9047] name failslab, interval 1, probability 0, space 0, times 0 [ 383.373726][ T9047] CPU: 0 UID: 0 PID: 9047 Comm: syz.2.535 Not tainted syzkaller #0 PREEMPT(full) [ 383.373749][ T9047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 383.373758][ T9047] Call Trace: [ 383.373763][ T9047] [ 383.373769][ T9047] dump_stack_lvl+0x16c/0x1f0 [ 383.373792][ T9047] should_fail_ex+0x512/0x640 [ 383.373811][ T9047] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 383.373829][ T9047] should_failslab+0xc2/0x120 [ 383.373847][ T9047] __kmalloc_cache_noprof+0x6a/0x3e0 [ 383.373861][ T9047] ? mark_held_locks+0x49/0x80 [ 383.373884][ T9047] ? ovs_ct_limit_cmd_set+0x30a/0xa90 [ 383.373910][ T9047] ovs_ct_limit_cmd_set+0x30a/0xa90 [ 383.373935][ T9047] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 383.373958][ T9047] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 383.373988][ T9047] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 383.374014][ T9047] genl_family_rcv_msg_doit+0x206/0x2f0 [ 383.374037][ T9047] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 383.374066][ T9047] ? bpf_lsm_capable+0x9/0x10 [ 383.374081][ T9047] ? security_capable+0x7e/0x260 [ 383.374097][ T9047] ? ns_capable+0xd7/0x110 [ 383.374113][ T9047] genl_rcv_msg+0x55c/0x800 [ 383.374136][ T9047] ? __pfx_genl_rcv_msg+0x10/0x10 [ 383.374156][ T9047] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 383.374183][ T9047] netlink_rcv_skb+0x155/0x420 [ 383.374201][ T9047] ? __pfx_genl_rcv_msg+0x10/0x10 [ 383.374222][ T9047] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 383.374248][ T9047] ? netlink_deliver_tap+0x1ae/0xd30 [ 383.374268][ T9047] genl_rcv+0x28/0x40 [ 383.374288][ T9047] netlink_unicast+0x5aa/0x870 [ 383.374308][ T9047] ? __pfx_netlink_unicast+0x10/0x10 [ 383.374325][ T9047] ? __asan_memset+0x23/0x50 [ 383.374339][ T9047] ? __build_skb_around+0x278/0x3b0 [ 383.374354][ T9047] ? is_vmalloc_addr+0x86/0xa0 [ 383.374372][ T9047] netlink_sendmsg+0x8d1/0xdd0 [ 383.374393][ T9047] ? __pfx_netlink_sendmsg+0x10/0x10 [ 383.374413][ T9047] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 383.374431][ T9047] ____sys_sendmsg+0xa95/0xc70 [ 383.374445][ T9047] ? copy_msghdr_from_user+0x10a/0x160 [ 383.374462][ T9047] ? __pfx_____sys_sendmsg+0x10/0x10 [ 383.374484][ T9047] ___sys_sendmsg+0x134/0x1d0 [ 383.374502][ T9047] ? __pfx____sys_sendmsg+0x10/0x10 [ 383.374543][ T9047] __sys_sendmsg+0x16d/0x220 [ 383.374561][ T9047] ? __pfx___sys_sendmsg+0x10/0x10 [ 383.374578][ T9047] ? __x64_sys_futex+0x1e0/0x4c0 [ 383.374606][ T9047] do_syscall_64+0xcd/0x490 [ 383.374625][ T9047] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 383.374639][ T9047] RIP: 0033:0x7fa67b38ebe9 [ 383.374652][ T9047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 383.374668][ T9047] RSP: 002b:00007fa67c15d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 383.374683][ T9047] RAX: ffffffffffffffda RBX: 00007fa67b5b6090 RCX: 00007fa67b38ebe9 [ 383.374692][ T9047] RDX: 0000000000000004 RSI: 0000200000000100 RDI: 0000000000000008 [ 383.374700][ T9047] RBP: 00007fa67b411e19 R08: 0000000000000000 R09: 0000000000000000 [ 383.374708][ T9047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 383.374716][ T9047] R13: 00007fa67b5b6128 R14: 00007fa67b5b6090 R15: 00007fffaa64fdb8 [ 383.374735][ T9047] [ 386.241719][ T9073] svc: failed to register nfsdv3 RPC service (errno 111). [ 386.269338][ T9073] svc: failed to register nfsaclv3 RPC service (errno 111). [ 389.288334][ T9118] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(2) [ 390.165025][ T9124] netlink: 342 bytes leftover after parsing attributes in process `syz.3.550'. [ 390.442667][ T9127] netlink: 24 bytes leftover after parsing attributes in process `syz.2.551'. [ 391.323873][ T9134] FAULT_INJECTION: forcing a failure. [ 391.323873][ T9134] name failslab, interval 1, probability 0, space 0, times 0 [ 391.477892][ T9134] CPU: 1 UID: 0 PID: 9134 Comm: syz.3.552 Not tainted syzkaller #0 PREEMPT(full) [ 391.477930][ T9134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 391.477945][ T9134] Call Trace: [ 391.477953][ T9134] [ 391.477963][ T9134] dump_stack_lvl+0x16c/0x1f0 [ 391.478003][ T9134] should_fail_ex+0x512/0x640 [ 391.478038][ T9134] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 391.478076][ T9134] should_failslab+0xc2/0x120 [ 391.478110][ T9134] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 391.478141][ T9134] ? mpol_new+0x11b/0x2d0 [ 391.478169][ T9134] ? _copy_from_user+0x59/0xd0 [ 391.478211][ T9134] mpol_new+0x11b/0x2d0 [ 391.478243][ T9134] do_set_mempolicy+0x83/0x480 [ 391.478276][ T9134] ? __pfx_do_set_mempolicy+0x10/0x10 [ 391.478312][ T9134] ? __x64_sys_futex+0x1e0/0x4c0 [ 391.478349][ T9134] kernel_set_mempolicy+0x1c4/0x1e0 [ 391.478398][ T9134] ? __pfx_kernel_set_mempolicy+0x10/0x10 [ 391.478445][ T9134] do_syscall_64+0xcd/0x490 [ 391.478484][ T9134] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 391.478511][ T9134] RIP: 0033:0x7f0163d8ebe9 [ 391.478532][ T9134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 391.478556][ T9134] RSP: 002b:00007f0164ca7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ee [ 391.478582][ T9134] RAX: ffffffffffffffda RBX: 00007f0163fb6090 RCX: 00007f0163d8ebe9 [ 391.478599][ T9134] RDX: 0000000000000005 RSI: 00002000000000c0 RDI: 0000000000000003 [ 391.478616][ T9134] RBP: 00007f0163e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 391.478632][ T9134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 391.478647][ T9134] R13: 00007f0163fb6128 R14: 00007f0163fb6090 R15: 00007ffeaf591548 [ 391.478683][ T9134] [ 392.424396][ T9127] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 392.537327][ T9127] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 392.609765][ T9127] bond0 (unregistering): Released all slaves [ 393.942208][ T9144] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 394.063688][ T9144] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 394.073744][ T9144] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 394.081167][ T9144] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 395.188121][ T9159] FAULT_INJECTION: forcing a failure. [ 395.188121][ T9159] name failslab, interval 1, probability 0, space 0, times 0 [ 395.303763][ T9159] CPU: 1 UID: 0 PID: 9159 Comm: syz.3.558 Not tainted syzkaller #0 PREEMPT(full) [ 395.303799][ T9159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 395.303813][ T9159] Call Trace: [ 395.303821][ T9159] [ 395.303832][ T9159] dump_stack_lvl+0x16c/0x1f0 [ 395.303873][ T9159] should_fail_ex+0x512/0x640 [ 395.303909][ T9159] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 395.303955][ T9159] should_failslab+0xc2/0x120 [ 395.303990][ T9159] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 395.304025][ T9159] ? mas_alloc_nodes+0x18b/0x8b0 [ 395.304063][ T9159] mas_alloc_nodes+0x18b/0x8b0 [ 395.304102][ T9159] mas_node_count_gfp+0x105/0x130 [ 395.304137][ T9159] mas_preallocate+0x7e0/0xde0 [ 395.304173][ T9159] ? __memcg_slab_post_alloc_hook+0x402/0x960 [ 395.304217][ T9159] ? __pfx_mas_preallocate+0x10/0x10 [ 395.304268][ T9159] ? anon_vma_name+0x81/0x2f0 [ 395.304311][ T9159] __split_vma+0x34a/0x1070 [ 395.304346][ T9159] ? __pfx___split_vma+0x10/0x10 [ 395.304374][ T9159] ? mas_prev_setup.constprop.0+0xb6/0x9d0 [ 395.304428][ T9159] vms_gather_munmap_vmas+0x3b1/0x1340 [ 395.304466][ T9159] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 395.304520][ T9159] do_vmi_align_munmap+0x27c/0x7d0 [ 395.304556][ T9159] ? __pfx_do_vmi_align_munmap+0x10/0x10 [ 395.304639][ T9159] do_vmi_munmap+0x204/0x3e0 [ 395.304675][ T9159] move_vma+0xb67/0x1780 [ 395.304711][ T9159] ? __pfx_move_vma+0x10/0x10 [ 395.304747][ T9159] ? mm_get_unmapped_area_vmflags+0x97/0xe0 [ 395.304799][ T9159] ? vrm_set_new_addr+0x208/0x290 [ 395.304832][ T9159] mremap_to+0x1b7/0x450 [ 395.304864][ T9159] do_mremap+0x13a3/0x2010 [ 395.304911][ T9159] ? __pfx_do_mremap+0x10/0x10 [ 395.304938][ T9159] ? __pfx_futex_wake+0x10/0x10 [ 395.304989][ T9159] ? do_writev+0x218/0x340 [ 395.305029][ T9159] __do_sys_mremap+0x119/0x170 [ 395.305061][ T9159] ? __pfx___do_sys_mremap+0x10/0x10 [ 395.305104][ T9159] ? __x64_sys_futex+0x1e0/0x4c0 [ 395.305162][ T9159] do_syscall_64+0xcd/0x490 [ 395.305200][ T9159] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 395.305228][ T9159] RIP: 0033:0x7f0163d8ebe9 [ 395.305250][ T9159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 395.305275][ T9159] RSP: 002b:00007f0164cc8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 395.305301][ T9159] RAX: ffffffffffffffda RBX: 00007f0163fb5fa0 RCX: 00007f0163d8ebe9 [ 395.305319][ T9159] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000000000 [ 395.305335][ T9159] RBP: 00007f0163e11e19 R08: 0000000107000000 R09: 0000000000000000 [ 395.305352][ T9159] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 395.305368][ T9159] R13: 00007f0163fb6038 R14: 00007f0163fb5fa0 R15: 00007ffeaf591548 [ 395.305406][ T9159] [ 395.946064][ T8513] Bluetooth: hci0: command 0x0c1a tx timeout [ 396.103569][ T8513] Bluetooth: hci3: command 0x0c1a tx timeout [ 396.109697][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 396.109734][ T5860] Bluetooth: hci1: command 0x0c1a tx timeout [ 396.194911][ T9161] FAULT_INJECTION: forcing a failure. [ 396.194911][ T9161] name failslab, interval 1, probability 0, space 0, times 0 [ 396.253865][ T9161] CPU: 1 UID: 7 PID: 9161 Comm: syz.1.559 Not tainted syzkaller #0 PREEMPT(full) [ 396.253897][ T9161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 396.253906][ T9161] Call Trace: [ 396.253911][ T9161] [ 396.253917][ T9161] dump_stack_lvl+0x16c/0x1f0 [ 396.253941][ T9161] should_fail_ex+0x512/0x640 [ 396.253960][ T9161] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 396.253977][ T9161] should_failslab+0xc2/0x120 [ 396.253995][ T9161] __kmalloc_cache_noprof+0x6a/0x3e0 [ 396.254008][ T9161] ? lockdep_init_map_type+0x5c/0x280 [ 396.254027][ T9161] ? nci_hci_allocate+0x45/0x330 [ 396.254047][ T9161] nci_hci_allocate+0x45/0x330 [ 396.254064][ T9161] nci_allocate_device+0x26f/0x430 [ 396.254080][ T9161] virtual_ncidev_open+0x6f/0x220 [ 396.254096][ T9161] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 396.254111][ T9161] misc_open+0x35a/0x420 [ 396.254126][ T9161] ? __pfx_misc_open+0x10/0x10 [ 396.254139][ T9161] chrdev_open+0x234/0x6a0 [ 396.254156][ T9161] ? __pfx_apparmor_file_open+0x10/0x10 [ 396.254171][ T9161] ? __pfx_chrdev_open+0x10/0x10 [ 396.254190][ T9161] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 396.254208][ T9161] do_dentry_open+0x982/0x1530 [ 396.254225][ T9161] ? __pfx_chrdev_open+0x10/0x10 [ 396.254246][ T9161] vfs_open+0x82/0x3f0 [ 396.254267][ T9161] path_openat+0x1de4/0x2cb0 [ 396.254289][ T9161] ? __pfx_path_openat+0x10/0x10 [ 396.254309][ T9161] do_filp_open+0x20b/0x470 [ 396.254325][ T9161] ? __pfx_do_filp_open+0x10/0x10 [ 396.254354][ T9161] ? alloc_fd+0x471/0x7d0 [ 396.254374][ T9161] do_sys_openat2+0x11b/0x1d0 [ 396.254394][ T9161] ? __pfx_do_sys_openat2+0x10/0x10 [ 396.254420][ T9161] __x64_sys_openat+0x174/0x210 [ 396.254440][ T9161] ? __pfx___x64_sys_openat+0x10/0x10 [ 396.254468][ T9161] do_syscall_64+0xcd/0x490 [ 396.254487][ T9161] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 396.254501][ T9161] RIP: 0033:0x7fae6a38ebe9 [ 396.254513][ T9161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 396.254526][ T9161] RSP: 002b:00007fae6b214038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 396.254540][ T9161] RAX: ffffffffffffffda RBX: 00007fae6a5b5fa0 RCX: 00007fae6a38ebe9 [ 396.254549][ T9161] RDX: 0000000000000002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 396.254558][ T9161] RBP: 00007fae6a411e19 R08: 0000000000000000 R09: 0000000000000000 [ 396.254566][ T9161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 396.254573][ T9161] R13: 00007fae6a5b6038 R14: 00007fae6a5b5fa0 R15: 00007ffd06e9ef98 [ 396.254591][ T9161] [ 396.531162][ T9170] FAULT_INJECTION: forcing a failure. [ 396.531162][ T9170] name fail_futex, interval 1, probability 0, space 0, times 0 [ 396.544095][ T9170] CPU: 1 UID: 0 PID: 9170 Comm: syz.0.562 Not tainted syzkaller #0 PREEMPT(full) [ 396.544115][ T9170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 396.544123][ T9170] Call Trace: [ 396.544129][ T9170] [ 396.544134][ T9170] dump_stack_lvl+0x16c/0x1f0 [ 396.544157][ T9170] should_fail_ex+0x512/0x640 [ 396.544179][ T9170] should_fail_futex+0x4c/0x60 [ 396.544196][ T9170] __x64_sys_futex+0x25e/0x4c0 [ 396.544215][ T9170] ? __pfx___x64_sys_futex+0x10/0x10 [ 396.544239][ T9170] do_syscall_64+0xcd/0x490 [ 396.544258][ T9170] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 396.544272][ T9170] RIP: 0033:0x7fd57bd8ebe9 [ 396.544284][ T9170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 396.544297][ T9170] RSP: 002b:00007ffcf7b34238 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 396.544310][ T9170] RAX: ffffffffffffffda RBX: 0000000000060cc7 RCX: 00007fd57bd8ebe9 [ 396.544319][ T9170] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fd57bfb609c [ 396.544327][ T9170] RBP: 0000000000000032 R08: 00007fd57ccd8000 R09: 0000001df7b3452f [ 396.544336][ T9170] R10: 00007ffcf7b34330 R11: 0000000000000246 R12: 00007fd57bfb609c [ 396.544344][ T9170] R13: 00007ffcf7b34330 R14: 0000000000060cf9 R15: 00007ffcf7b34350 [ 396.544361][ T9170] [ 397.989886][ T9184] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 398.049939][ T9184] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 398.177040][ T9184] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 398.211781][ T9184] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 400.034630][ T5860] Bluetooth: hci0: command 0x0c1a tx timeout [ 400.125740][ T5860] Bluetooth: hci1: command 0x0c1a tx timeout [ 400.183509][ T5860] Bluetooth: hci2: command 0x0c1a tx timeout [ 400.263493][ T5860] Bluetooth: hci3: command 0x0c1a tx timeout [ 403.298558][ T9235] FAULT_INJECTION: forcing a failure. [ 403.298558][ T9235] name failslab, interval 1, probability 0, space 0, times 0 [ 403.346470][ T9235] CPU: 0 UID: 7 PID: 9235 Comm: syz.2.573 Not tainted syzkaller #0 PREEMPT(full) [ 403.346492][ T9235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 403.346500][ T9235] Call Trace: [ 403.346506][ T9235] [ 403.346512][ T9235] dump_stack_lvl+0x16c/0x1f0 [ 403.346535][ T9235] should_fail_ex+0x512/0x640 [ 403.346554][ T9235] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 403.346571][ T9235] should_failslab+0xc2/0x120 [ 403.346590][ T9235] __kmalloc_cache_noprof+0x6a/0x3e0 [ 403.346603][ T9235] ? lockdep_init_map_type+0x5c/0x280 [ 403.346622][ T9235] ? nci_hci_allocate+0x45/0x330 [ 403.346643][ T9235] nci_hci_allocate+0x45/0x330 [ 403.346660][ T9235] nci_allocate_device+0x26f/0x430 [ 403.346676][ T9235] virtual_ncidev_open+0x6f/0x220 [ 403.346692][ T9235] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 403.346707][ T9235] misc_open+0x35a/0x420 [ 403.346722][ T9235] ? __pfx_misc_open+0x10/0x10 [ 403.346735][ T9235] chrdev_open+0x234/0x6a0 [ 403.346752][ T9235] ? __pfx_apparmor_file_open+0x10/0x10 [ 403.346767][ T9235] ? __pfx_chrdev_open+0x10/0x10 [ 403.346785][ T9235] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 403.346809][ T9235] do_dentry_open+0x982/0x1530 [ 403.346828][ T9235] ? __pfx_chrdev_open+0x10/0x10 [ 403.346849][ T9235] vfs_open+0x82/0x3f0 [ 403.346872][ T9235] path_openat+0x1de4/0x2cb0 [ 403.346895][ T9235] ? __pfx_path_openat+0x10/0x10 [ 403.346917][ T9235] do_filp_open+0x20b/0x470 [ 403.346933][ T9235] ? __pfx_do_filp_open+0x10/0x10 [ 403.346962][ T9235] ? alloc_fd+0x471/0x7d0 [ 403.346982][ T9235] do_sys_openat2+0x11b/0x1d0 [ 403.347001][ T9235] ? __pfx_do_sys_openat2+0x10/0x10 [ 403.347028][ T9235] __x64_sys_openat+0x174/0x210 [ 403.347048][ T9235] ? __pfx___x64_sys_openat+0x10/0x10 [ 403.347076][ T9235] do_syscall_64+0xcd/0x490 [ 403.347095][ T9235] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 403.347109][ T9235] RIP: 0033:0x7fa67b38ebe9 [ 403.347121][ T9235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 403.347135][ T9235] RSP: 002b:00007fa67c17e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 403.347148][ T9235] RAX: ffffffffffffffda RBX: 00007fa67b5b5fa0 RCX: 00007fa67b38ebe9 [ 403.347157][ T9235] RDX: 0000000000000002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 403.347166][ T9235] RBP: 00007fa67b411e19 R08: 0000000000000000 R09: 0000000000000000 [ 403.347173][ T9235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 403.347181][ T9235] R13: 00007fa67b5b6038 R14: 00007fa67b5b5fa0 R15: 00007fffaa64fdb8 [ 403.347199][ T9235] [ 406.570738][ T9266] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16 [ 407.818126][ T9268] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17 [ 408.894317][ T9284] input: jJǸ-9%wlQ J86 as /devices/virtual/input/input18 [ 410.337141][ T9300] FAULT_INJECTION: forcing a failure. [ 410.337141][ T9300] name failslab, interval 1, probability 0, space 0, times 0 [ 410.337211][ T9300] CPU: 0 UID: 0 PID: 9300 Comm: syz.3.588 Not tainted syzkaller #0 PREEMPT(full) [ 410.337229][ T9300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 410.337237][ T9300] Call Trace: [ 410.337242][ T9300] [ 410.337248][ T9300] dump_stack_lvl+0x16c/0x1f0 [ 410.337271][ T9300] should_fail_ex+0x512/0x640 [ 410.337290][ T9300] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 410.337310][ T9300] should_failslab+0xc2/0x120 [ 410.337329][ T9300] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 410.337345][ T9300] ? ptlock_alloc+0x1f/0x70 [ 410.337369][ T9300] ptlock_alloc+0x1f/0x70 [ 410.337383][ T9300] pte_alloc_one+0x82/0x3a0 [ 410.337399][ T9300] __pte_alloc+0x6d/0x3c0 [ 410.337417][ T9300] ? __pfx___pte_alloc+0x10/0x10 [ 410.337436][ T9300] ? _raw_spin_unlock+0x28/0x50 [ 410.337450][ T9300] ? __pmd_alloc+0x3fb/0x930 [ 410.337471][ T9300] move_page_tables+0x2372/0x4230 [ 410.337491][ T9300] ? __pfx_copy_vma+0x10/0x10 [ 410.337505][ T9300] ? __lock_acquire+0xb97/0x1ce0 [ 410.337525][ T9300] ? __pfx_move_page_tables+0x10/0x10 [ 410.337549][ T9300] ? rcu_is_watching+0x12/0xc0 [ 410.337563][ T9300] ? finish_task_switch.isra.0+0x221/0xc10 [ 410.337577][ T9300] ? lockdep_hardirqs_on+0x7c/0x110 [ 410.337596][ T9300] copy_vma_and_data+0x24e/0x790 [ 410.337613][ T9300] ? __pfx_copy_vma_and_data+0x10/0x10 [ 410.337632][ T9300] ? __vma_enter_locked+0x163/0x3f0 [ 410.337647][ T9300] ? find_held_lock+0x2b/0x80 [ 410.337661][ T9300] ? move_vma+0x536/0x1780 [ 410.337674][ T9300] ? __vm_enough_memory+0x184/0x3f0 [ 410.337697][ T9300] move_vma+0x548/0x1780 [ 410.337715][ T9300] ? __pfx_move_vma+0x10/0x10 [ 410.337732][ T9300] ? mm_get_unmapped_area_vmflags+0x97/0xe0 [ 410.337752][ T9300] ? cap_mmap_addr+0x4b/0x120 [ 410.337765][ T9300] ? bpf_lsm_mmap_addr+0x9/0x10 [ 410.337784][ T9300] ? security_mmap_addr+0x6c/0x1e0 [ 410.337801][ T9300] ? __get_unmapped_area+0x267/0x440 [ 410.337821][ T9300] ? vrm_set_new_addr+0x208/0x290 [ 410.337838][ T9300] mremap_to+0x1b7/0x450 [ 410.337853][ T9300] do_mremap+0x13a3/0x2010 [ 410.337876][ T9300] ? __pfx_do_mremap+0x10/0x10 [ 410.337895][ T9300] ? do_writev+0x218/0x340 [ 410.337914][ T9300] __do_sys_mremap+0x119/0x170 [ 410.337929][ T9300] ? __pfx___do_sys_mremap+0x10/0x10 [ 410.337949][ T9300] ? __x64_sys_futex+0x1e0/0x4c0 [ 410.337977][ T9300] do_syscall_64+0xcd/0x490 [ 410.337996][ T9300] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 410.338011][ T9300] RIP: 0033:0x7f0163d8ebe9 [ 410.338023][ T9300] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 410.338035][ T9300] RSP: 002b:00007f0164cc8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 410.338049][ T9300] RAX: ffffffffffffffda RBX: 00007f0163fb5fa0 RCX: 00007f0163d8ebe9 [ 410.338058][ T9300] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000000000 [ 410.338067][ T9300] RBP: 00007f0163e11e19 R08: 00007fffffffe000 R09: 0000000000000000 [ 410.338075][ T9300] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 410.338084][ T9300] R13: 00007f0163fb6038 R14: 00007f0163fb5fa0 R15: 00007ffeaf591548 [ 410.338102][ T9300] [ 411.319016][ T9310] FAULT_INJECTION: forcing a failure. [ 411.319016][ T9310] name failslab, interval 1, probability 0, space 0, times 0 [ 411.319060][ T9310] CPU: 0 UID: 0 PID: 9310 Comm: syz.0.589 Not tainted syzkaller #0 PREEMPT(full) [ 411.319092][ T9310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 411.319106][ T9310] Call Trace: [ 411.319115][ T9310] [ 411.319125][ T9310] dump_stack_lvl+0x16c/0x1f0 [ 411.319163][ T9310] should_fail_ex+0x512/0x640 [ 411.319197][ T9310] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 411.319232][ T9310] should_failslab+0xc2/0x120 [ 411.319263][ T9310] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 411.319293][ T9310] ? vm_area_dup+0x27/0x8d0 [ 411.319325][ T9310] vm_area_dup+0x27/0x8d0 [ 411.319354][ T9310] __split_vma+0x18e/0x1070 [ 411.319386][ T9310] ? __pfx___split_vma+0x10/0x10 [ 411.319418][ T9310] ? mas_prev_setup.constprop.0+0xb6/0x9d0 [ 411.319472][ T9310] vms_gather_munmap_vmas+0x3b1/0x1340 [ 411.319509][ T9310] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 411.319556][ T9310] do_vmi_align_munmap+0x27c/0x7d0 [ 411.319586][ T9310] ? __pfx_do_vmi_align_munmap+0x10/0x10 [ 411.319662][ T9310] do_vmi_munmap+0x204/0x3e0 [ 411.319696][ T9310] move_vma+0xb67/0x1780 [ 411.319729][ T9310] ? __pfx_move_vma+0x10/0x10 [ 411.319763][ T9310] ? mm_get_unmapped_area_vmflags+0x97/0xe0 [ 411.319807][ T9310] ? vrm_set_new_addr+0x208/0x290 [ 411.319839][ T9310] mremap_to+0x1b7/0x450 [ 411.319870][ T9310] do_mremap+0x13a3/0x2010 [ 411.319914][ T9310] ? __pfx_do_mremap+0x10/0x10 [ 411.319958][ T9310] ? do_writev+0x218/0x340 [ 411.319998][ T9310] __do_sys_mremap+0x119/0x170 [ 411.320028][ T9310] ? __pfx___do_sys_mremap+0x10/0x10 [ 411.320068][ T9310] ? __x64_sys_futex+0x1e0/0x4c0 [ 411.320123][ T9310] do_syscall_64+0xcd/0x490 [ 411.320159][ T9310] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 411.320185][ T9310] RIP: 0033:0x7fd57bd8ebe9 [ 411.320206][ T9310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 411.320230][ T9310] RSP: 002b:00007fd57ccd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 411.320256][ T9310] RAX: ffffffffffffffda RBX: 00007fd57bfb5fa0 RCX: 00007fd57bd8ebe9 [ 411.320274][ T9310] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000000000 [ 411.320289][ T9310] RBP: 00007fd57be11e19 R08: 0000000107000000 R09: 0000000000000000 [ 411.320304][ T9310] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 411.320318][ T9310] R13: 00007fd57bfb6038 R14: 00007fd57bfb5fa0 R15: 00007ffcf7b340d8 [ 411.320355][ T9310] [ 411.646830][ T9314] FAULT_INJECTION: forcing a failure. [ 411.646830][ T9314] name failslab, interval 1, probability 0, space 0, times 0 [ 411.646872][ T9314] CPU: 0 UID: 0 PID: 9314 Comm: syz.3.590 Not tainted syzkaller #0 PREEMPT(full) [ 411.646904][ T9314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 411.646927][ T9314] Call Trace: [ 411.646936][ T9314] [ 411.646946][ T9314] dump_stack_lvl+0x16c/0x1f0 [ 411.646984][ T9314] should_fail_ex+0x512/0x640 [ 411.647018][ T9314] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 411.647050][ T9314] should_failslab+0xc2/0x120 [ 411.647081][ T9314] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 411.647110][ T9314] ? vm_area_dup+0x27/0x8d0 [ 411.647139][ T9314] vm_area_dup+0x27/0x8d0 [ 411.647165][ T9314] __split_vma+0x18e/0x1070 [ 411.647198][ T9314] ? __pfx___split_vma+0x10/0x10 [ 411.647221][ T9314] ? mas_prev_setup.constprop.0+0xb6/0x9d0 [ 411.647271][ T9314] vms_gather_munmap_vmas+0x3b1/0x1340 [ 411.647302][ T9314] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 411.647345][ T9314] do_vmi_align_munmap+0x27c/0x7d0 [ 411.647380][ T9314] ? __pfx_do_vmi_align_munmap+0x10/0x10 [ 411.647462][ T9314] do_vmi_munmap+0x204/0x3e0 [ 411.647496][ T9314] move_vma+0xb67/0x1780 [ 411.647532][ T9314] ? __pfx_move_vma+0x10/0x10 [ 411.647568][ T9314] ? mm_get_unmapped_area_vmflags+0x97/0xe0 [ 411.647617][ T9314] ? vrm_set_new_addr+0x208/0x290 [ 411.647649][ T9314] mremap_to+0x1b7/0x450 [ 411.647681][ T9314] do_mremap+0x13a3/0x2010 [ 411.647727][ T9314] ? __pfx_do_mremap+0x10/0x10 [ 411.647763][ T9314] ? do_writev+0x218/0x340 [ 411.647801][ T9314] __do_sys_mremap+0x119/0x170 [ 411.647830][ T9314] ? __pfx___do_sys_mremap+0x10/0x10 [ 411.647870][ T9314] ? __x64_sys_futex+0x1e0/0x4c0 [ 411.647933][ T9314] do_syscall_64+0xcd/0x490 [ 411.647972][ T9314] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 411.648000][ T9314] RIP: 0033:0x7f0163d8ebe9 [ 411.648021][ T9314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 411.648046][ T9314] RSP: 002b:00007f0164cc8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 411.648072][ T9314] RAX: ffffffffffffffda RBX: 00007f0163fb5fa0 RCX: 00007f0163d8ebe9 [ 411.648090][ T9314] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000000000 [ 411.648106][ T9314] RBP: 00007f0163e11e19 R08: 000000011e000000 R09: 0000000000000000 [ 411.648123][ T9314] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 411.648138][ T9314] R13: 00007f0163fb6038 R14: 00007f0163fb5fa0 R15: 00007ffeaf591548 [ 411.648173][ T9314] [ 413.354824][ T9322] capability: warning: `syz.2.594' uses 32-bit capabilities (legacy support in use) [ 416.619608][ T9341] program syz.2.599 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 416.720272][ T9336] tty tty12: ldisc open failed (-12), clearing slot 11 [ 418.543793][ T9356] netlink: 152 bytes leftover after parsing attributes in process `syz.2.611'. [ 418.543957][ T9355] netlink: 152 bytes leftover after parsing attributes in process `syz.2.611'. [ 421.026321][ T9381] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 421.033308][ T9381] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 421.103640][ T9381] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 421.109652][ T9381] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 423.063733][ T5860] Bluetooth: hci1: command 0x0c1a tx timeout [ 423.077706][ T5860] Bluetooth: hci0: command 0x0c1a tx timeout [ 423.153474][ T5860] Bluetooth: hci3: command 0x0c1a tx timeout [ 423.153488][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 423.943736][ T8513] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 424.369660][ T9452] futex_wake_op: syz.0.616 tries to shift op by -2048; fix this program [ 424.409238][ T9439] zswap: compressor not available [ 424.462040][ T9452] futex_wake_op: syz.0.616 tries to shift op by -2048; fix this program [ 430.845413][ T9501] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 431.723829][ T9507] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 432.283587][ T8513] Bluetooth: hci2: ISO packet too small [ 432.715808][ T9515] zswap: compressor not available [ 433.683574][ T9529] ubi0: attaching mtd0 [ 433.713475][ T9529] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 435.996282][ T9562] program syz.0.636 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 436.823524][ T8513] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 436.959857][ T9573] zswap: compressor not available [ 437.668325][ T9595] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 439.294286][ T9611] FAULT_INJECTION: forcing a failure. [ 439.294286][ T9611] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 439.310572][ T9611] CPU: 0 UID: 0 PID: 9611 Comm: syz.3.642 Not tainted syzkaller #0 PREEMPT(full) [ 439.310593][ T9611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 439.310602][ T9611] Call Trace: [ 439.310607][ T9611] [ 439.310613][ T9611] dump_stack_lvl+0x16c/0x1f0 [ 439.310635][ T9611] should_fail_ex+0x512/0x640 [ 439.310658][ T9611] should_fail_alloc_page+0xe7/0x130 [ 439.310678][ T9611] prepare_alloc_pages+0x3c2/0x610 [ 439.310702][ T9611] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 439.310722][ T9611] ? rcu_is_watching+0x12/0xc0 [ 439.310737][ T9611] ? trace_mm_page_alloc+0x11f/0x1a0 [ 439.310758][ T9611] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 439.310776][ T9611] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 439.310794][ T9611] ? is_bpf_text_address+0x8a/0x1a0 [ 439.310812][ T9611] ? bpf_ksym_find+0x124/0x1c0 [ 439.310826][ T9611] ? is_bpf_text_address+0x94/0x1a0 [ 439.310844][ T9611] ? __kernel_text_address+0xd/0x40 [ 439.310857][ T9611] ? unwind_get_return_address+0x59/0xa0 [ 439.310879][ T9611] alloc_pages_bulk_noprof+0x71c/0x1410 [ 439.310895][ T9611] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 439.310916][ T9611] ? policy_nodemask+0xea/0x4e0 [ 439.310936][ T9611] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 439.310953][ T9611] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 439.310985][ T9611] kasan_populate_vmalloc+0xf1/0x1f0 [ 439.311004][ T9611] alloc_vmap_area+0x959/0x29c0 [ 439.311033][ T9611] ? __pfx_alloc_vmap_area+0x10/0x10 [ 439.311057][ T9611] __get_vm_area_node+0x1ca/0x330 [ 439.311081][ T9611] __vmalloc_node_range_noprof+0x271/0x14b0 [ 439.311095][ T9611] ? n_tty_open+0x1a/0x170 [ 439.311115][ T9611] ? look_up_lock_class+0x59/0x150 [ 439.311137][ T9611] ? n_tty_open+0x1a/0x170 [ 439.311161][ T9611] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 439.311174][ T9611] ? look_up_lock_class+0x59/0x150 [ 439.311193][ T9611] ? __pfx___ldsem_down_write_nested+0x10/0x10 [ 439.311219][ T9611] ? n_tty_open+0x1a/0x170 [ 439.311238][ T9611] __vmalloc_node_noprof+0xad/0xf0 [ 439.311250][ T9611] ? n_tty_open+0x1a/0x170 [ 439.311270][ T9611] ? __pfx_n_tty_open+0x10/0x10 [ 439.311290][ T9611] n_tty_open+0x1a/0x170 [ 439.311309][ T9611] ? __pfx_n_tty_open+0x10/0x10 [ 439.311328][ T9611] tty_ldisc_open+0x9f/0x120 [ 439.311349][ T9611] tty_ldisc_setup+0x40/0x100 [ 439.311378][ T9611] tty_init_dev.part.0+0x1ec/0x500 [ 439.311414][ T9611] tty_init_dev+0x60/0x80 [ 439.311440][ T9611] ? __pfx_ptmx_open+0x10/0x10 [ 439.311454][ T9611] ptmx_open+0x10d/0x360 [ 439.311468][ T9611] ? __pfx_ptmx_open+0x10/0x10 [ 439.311482][ T9611] chrdev_open+0x234/0x6a0 [ 439.311500][ T9611] ? __pfx_apparmor_file_open+0x10/0x10 [ 439.311516][ T9611] ? __pfx_chrdev_open+0x10/0x10 [ 439.311534][ T9611] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 439.311554][ T9611] do_dentry_open+0x982/0x1530 [ 439.311572][ T9611] ? __pfx_chrdev_open+0x10/0x10 [ 439.311593][ T9611] vfs_open+0x82/0x3f0 [ 439.311615][ T9611] path_openat+0x1de4/0x2cb0 [ 439.311638][ T9611] ? __pfx_path_openat+0x10/0x10 [ 439.311659][ T9611] do_filp_open+0x20b/0x470 [ 439.311676][ T9611] ? __pfx_do_filp_open+0x10/0x10 [ 439.311707][ T9611] ? alloc_fd+0x471/0x7d0 [ 439.311727][ T9611] do_sys_openat2+0x11b/0x1d0 [ 439.311747][ T9611] ? __pfx_do_sys_openat2+0x10/0x10 [ 439.311775][ T9611] __x64_sys_openat+0x174/0x210 [ 439.311795][ T9611] ? __pfx___x64_sys_openat+0x10/0x10 [ 439.311823][ T9611] do_syscall_64+0xcd/0x490 [ 439.311843][ T9611] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 439.311858][ T9611] RIP: 0033:0x7f0163d8ebe9 [ 439.311870][ T9611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 439.311883][ T9611] RSP: 002b:00007f0164ca7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 439.311897][ T9611] RAX: ffffffffffffffda RBX: 00007f0163fb6090 RCX: 00007f0163d8ebe9 [ 439.311906][ T9611] RDX: 0000000000040001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 439.311915][ T9611] RBP: 00007f0163e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 439.311923][ T9611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 439.311932][ T9611] R13: 00007f0163fb6128 R14: 00007f0163fb6090 R15: 00007ffeaf591548 [ 439.311951][ T9611] [ 439.312252][ T9611] syz.3.642: vmalloc error: size 9128, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 439.929903][ T9611] CPU: 1 UID: 0 PID: 9611 Comm: syz.3.642 Not tainted syzkaller #0 PREEMPT(full) [ 439.929925][ T9611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 439.929934][ T9611] Call Trace: [ 439.929940][ T9611] [ 439.929946][ T9611] dump_stack_lvl+0x16c/0x1f0 [ 439.929969][ T9611] warn_alloc+0x248/0x3a0 [ 439.929988][ T9611] ? __pfx_warn_alloc+0x10/0x10 [ 439.930005][ T9611] ? kfree+0x2b4/0x4d0 [ 439.930023][ T9611] ? __get_vm_area_node+0x208/0x330 [ 439.930048][ T9611] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 439.930062][ T9611] ? look_up_lock_class+0x59/0x150 [ 439.930085][ T9611] ? n_tty_open+0x1a/0x170 [ 439.930111][ T9611] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 439.930130][ T9611] ? look_up_lock_class+0x59/0x150 [ 439.930150][ T9611] ? __pfx___ldsem_down_write_nested+0x10/0x10 [ 439.930174][ T9611] ? n_tty_open+0x1a/0x170 [ 439.930193][ T9611] __vmalloc_node_noprof+0xad/0xf0 [ 439.930206][ T9611] ? n_tty_open+0x1a/0x170 [ 439.930225][ T9611] ? __pfx_n_tty_open+0x10/0x10 [ 439.930246][ T9611] n_tty_open+0x1a/0x170 [ 439.930266][ T9611] ? __pfx_n_tty_open+0x10/0x10 [ 439.930285][ T9611] tty_ldisc_open+0x9f/0x120 [ 439.930301][ T9611] tty_ldisc_setup+0x40/0x100 [ 439.930319][ T9611] tty_init_dev.part.0+0x1ec/0x500 [ 439.930339][ T9611] tty_init_dev+0x60/0x80 [ 439.930358][ T9611] ? __pfx_ptmx_open+0x10/0x10 [ 439.930372][ T9611] ptmx_open+0x10d/0x360 [ 439.930386][ T9611] ? __pfx_ptmx_open+0x10/0x10 [ 439.930401][ T9611] chrdev_open+0x234/0x6a0 [ 439.930418][ T9611] ? __pfx_apparmor_file_open+0x10/0x10 [ 439.930434][ T9611] ? __pfx_chrdev_open+0x10/0x10 [ 439.930452][ T9611] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 439.930471][ T9611] do_dentry_open+0x982/0x1530 [ 439.930504][ T9611] ? __pfx_chrdev_open+0x10/0x10 [ 439.930540][ T9611] vfs_open+0x82/0x3f0 [ 439.930579][ T9611] path_openat+0x1de4/0x2cb0 [ 439.930617][ T9611] ? __pfx_path_openat+0x10/0x10 [ 439.930650][ T9611] do_filp_open+0x20b/0x470 [ 439.930673][ T9611] ? __pfx_do_filp_open+0x10/0x10 [ 439.930713][ T9611] ? alloc_fd+0x471/0x7d0 [ 439.930741][ T9611] do_sys_openat2+0x11b/0x1d0 [ 439.930767][ T9611] ? __pfx_do_sys_openat2+0x10/0x10 [ 439.930804][ T9611] __x64_sys_openat+0x174/0x210 [ 439.930831][ T9611] ? __pfx___x64_sys_openat+0x10/0x10 [ 439.930868][ T9611] do_syscall_64+0xcd/0x490 [ 439.930896][ T9611] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 439.930916][ T9611] RIP: 0033:0x7f0163d8ebe9 [ 439.930931][ T9611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 439.930949][ T9611] RSP: 002b:00007f0164ca7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 439.930968][ T9611] RAX: ffffffffffffffda RBX: 00007f0163fb6090 RCX: 00007f0163d8ebe9 [ 439.930981][ T9611] RDX: 0000000000040001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 439.930993][ T9611] RBP: 00007f0163e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 439.931005][ T9611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 439.931016][ T9611] R13: 00007f0163fb6128 R14: 00007f0163fb6090 R15: 00007ffeaf591548 [ 439.931041][ T9611] [ 440.284623][ T9611] Mem-Info: [ 440.287768][ T9611] active_anon:67047 inactive_anon:5 isolated_anon:0 [ 440.287768][ T9611] active_file:16627 inactive_file:47327 isolated_file:0 [ 440.287768][ T9611] unevictable:768 dirty:786 writeback:512 [ 440.287768][ T9611] slab_reclaimable:11704 slab_unreclaimable:94266 [ 440.287768][ T9611] mapped:28313 shmem:56806 pagetables:1413 [ 440.287768][ T9611] sec_pagetables:0 bounce:0 [ 440.287768][ T9611] kernel_misc_reclaimable:0 [ 440.287768][ T9611] free:1255354 free_pcp:17637 free_cma:0 [ 440.574925][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.581605][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.612322][ T9611] Node 0 active_anon:200820kB inactive_anon:20kB active_file:66508kB inactive_file:189176kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:121344kB dirty:3144kB writeback:0kB shmem:158356kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11660kB pagetables:5548kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 440.763486][ T9611] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:80kB pagetables:148kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 440.863458][ T9611] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 440.929581][ T9611] lowmem_reserve[]: 0 2480 2481 2481 2481 [ 440.951346][ T9611] Node 0 DMA32 free:1177932kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:199072kB inactive_anon:20kB active_file:66508kB inactive_file:187848kB unevictable:1536kB writepending:3144kB present:3129332kB managed:2539588kB mlocked:0kB bounce:0kB free_pcp:53964kB local_pcp:21556kB free_cma:0kB [ 441.016703][ T9611] lowmem_reserve[]: 0 0 1 1 1 [ 441.033550][ T9611] Node 0 Normal free:0kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1328kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:8kB free_cma:0kB [ 441.103453][ T9611] lowmem_reserve[]: 0 0 0 0 0 [ 441.118016][ T9611] Node 1 Normal free:3903628kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:12584kB local_pcp:8900kB free_cma:0kB [ 441.183998][ T9611] lowmem_reserve[]: 0 0 0 0 0 [ 441.188782][ T9611] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 441.278818][ T9627] FAULT_INJECTION: forcing a failure. [ 441.278818][ T9627] name failslab, interval 1, probability 0, space 0, times 0 [ 441.291782][ T9611] Node 0 DMA32: 18071*4kB (UME) 8041*8kB (UME) 3020*16kB (UME) 1740*32kB (UME) 1123*64kB (UME) 859*128kB (UME) 374*256kB (UME) 116*512kB (UM) 31*1024kB (UME) 20*2048kB (UME) 137*4096kB (UM) = 1211428kB [ 441.353553][ T9611] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 441.386593][ T9627] CPU: 0 UID: 0 PID: 9627 Comm: syz.1.643 Not tainted syzkaller #0 PREEMPT(full) [ 441.386630][ T9627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 441.386643][ T9627] Call Trace: [ 441.386652][ T9627] [ 441.386662][ T9627] dump_stack_lvl+0x16c/0x1f0 [ 441.386701][ T9627] should_fail_ex+0x512/0x640 [ 441.386736][ T9627] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 441.386770][ T9627] should_failslab+0xc2/0x120 [ 441.386800][ T9627] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 441.386828][ T9627] ? alloc_empty_file+0x55/0x1e0 [ 441.386868][ T9627] alloc_empty_file+0x55/0x1e0 [ 441.386906][ T9627] path_openat+0xda/0x2cb0 [ 441.386935][ T9627] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 441.386974][ T9627] ? __pfx_path_openat+0x10/0x10 [ 441.387021][ T9627] do_filp_open+0x20b/0x470 [ 441.387055][ T9627] ? __pfx_do_filp_open+0x10/0x10 [ 441.387115][ T9627] ? alloc_fd+0x471/0x7d0 [ 441.387155][ T9627] do_sys_openat2+0x11b/0x1d0 [ 441.387197][ T9627] ? __pfx_do_sys_openat2+0x10/0x10 [ 441.387251][ T9627] __x64_sys_openat+0x174/0x210 [ 441.387291][ T9627] ? __pfx___x64_sys_openat+0x10/0x10 [ 441.387344][ T9627] do_syscall_64+0xcd/0x490 [ 441.387381][ T9627] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 441.387408][ T9627] RIP: 0033:0x7fae6a38ebe9 [ 441.387430][ T9627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 441.387456][ T9627] RSP: 002b:00007fae6b214038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 441.387482][ T9627] RAX: ffffffffffffffda RBX: 00007fae6a5b5fa0 RCX: 00007fae6a38ebe9 [ 441.387500][ T9627] RDX: 0000000000020f03 RSI: 0000200000000440 RDI: ffffffffffffff9c [ 441.387518][ T9627] RBP: 00007fae6a411e19 R08: 0000000000000000 R09: 0000000000000000 [ 441.387535][ T9627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 441.387551][ T9627] R13: 00007fae6a5b6038 R14: 00007fae6a5b5fa0 R15: 00007ffd06e9ef98 [ 441.387587][ T9627] [ 441.387693][ T9611] Node 1 Normal: 181*4kB (UME) 49*8kB (UME) 43*16kB (UME) 176*32kB (UME) 40*64kB (UME) 7*128kB (UME) 6*256kB (UME) 4*512kB (ME) 4*1024kB (UME) 3*2048kB (UME) 947*4096kB (M) = 3903628kB [ 441.640825][ T9611] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 441.656984][ T9629] nvme_fabrics: missing parameter 'transport=%s' [ 441.670607][ T9629] nvme_fabrics: missing parameter 'nqn=%s' [ 441.681073][ T9611] Node 0 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB [ 441.722769][ T9611] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 441.763943][ T9611] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 441.773277][ T9611] 91585 total pagecache pages [ 441.779753][ T9611] 5 pages in swap cache [ 441.794480][ T9611] Free swap = 124976kB [ 441.803831][ T9611] Total swap = 124996kB [ 441.808914][ T9611] 2097051 pages RAM [ 441.832827][ T9611] 0 pages HighMem/MovableOnly [ 441.842966][ T9611] 430192 pages reserved [ 441.859701][ T9611] 0 pages cma reserved [ 441.869826][ T9611] ptm ptm2: ldisc open failed (-12), clearing slot 2 [ 442.592356][ T9647] zswap: compressor not available [ 444.747747][ T9678] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 445.614502][ T9681] program syz.3.651 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 446.192479][ T9700] FAULT_INJECTION: forcing a failure. [ 446.192479][ T9700] name failslab, interval 1, probability 0, space 0, times 0 [ 446.265131][ T9700] CPU: 1 UID: 0 PID: 9700 Comm: syz.3.656 Not tainted syzkaller #0 PREEMPT(full) [ 446.265157][ T9700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 446.265167][ T9700] Call Trace: [ 446.265173][ T9700] [ 446.265179][ T9700] dump_stack_lvl+0x16c/0x1f0 [ 446.265205][ T9700] should_fail_ex+0x512/0x640 [ 446.265226][ T9700] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 446.265254][ T9700] should_failslab+0xc2/0x120 [ 446.265277][ T9700] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 446.265296][ T9700] ? vm_area_dup+0x27/0x8d0 [ 446.265315][ T9700] vm_area_dup+0x27/0x8d0 [ 446.265332][ T9700] __split_vma+0x18e/0x1070 [ 446.265348][ T9700] ? __lock_acquire+0xb97/0x1ce0 [ 446.265370][ T9700] ? __pfx___split_vma+0x10/0x10 [ 446.265392][ T9700] ? lock_acquire+0x179/0x350 [ 446.265411][ T9700] ? do_raw_spin_lock+0x12c/0x2b0 [ 446.265433][ T9700] ? find_held_lock+0x2b/0x80 [ 446.265449][ T9700] vms_gather_munmap_vmas+0x1d2/0x1340 [ 446.265471][ T9700] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 446.265499][ T9700] do_vmi_align_munmap+0x27c/0x7d0 [ 446.265520][ T9700] ? __pfx_do_vmi_align_munmap+0x10/0x10 [ 446.265563][ T9700] do_vmi_munmap+0x204/0x3e0 [ 446.265582][ T9700] move_vma+0xb67/0x1780 [ 446.265603][ T9700] ? __pfx_move_vma+0x10/0x10 [ 446.265623][ T9700] ? mm_get_unmapped_area_vmflags+0x97/0xe0 [ 446.265651][ T9700] ? vrm_set_new_addr+0x208/0x290 [ 446.265670][ T9700] mremap_to+0x1b7/0x450 [ 446.265689][ T9700] do_mremap+0x13a3/0x2010 [ 446.265714][ T9700] ? __pfx_do_mremap+0x10/0x10 [ 446.265736][ T9700] ? do_writev+0x218/0x340 [ 446.265758][ T9700] __do_sys_mremap+0x119/0x170 [ 446.265775][ T9700] ? __pfx___do_sys_mremap+0x10/0x10 [ 446.265799][ T9700] ? __x64_sys_futex+0x1e0/0x4c0 [ 446.265830][ T9700] do_syscall_64+0xcd/0x490 [ 446.265852][ T9700] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 446.265869][ T9700] RIP: 0033:0x7f0163d8ebe9 [ 446.265884][ T9700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 446.265899][ T9700] RSP: 002b:00007f0164cc8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 446.265915][ T9700] RAX: ffffffffffffffda RBX: 00007f0163fb5fa0 RCX: 00007f0163d8ebe9 [ 446.265926][ T9700] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000001000 [ 446.265936][ T9700] RBP: 00007f0163e11e19 R08: 0000000100000000 R09: 0000000000000000 [ 446.265946][ T9700] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 446.265955][ T9700] R13: 00007f0163fb6038 R14: 00007f0163fb5fa0 R15: 00007ffeaf591548 [ 446.265975][ T9700] [ 446.756436][ T9702] FAULT_INJECTION: forcing a failure. [ 446.756436][ T9702] name failslab, interval 1, probability 0, space 0, times 0 [ 446.812822][ T9702] CPU: 0 UID: 0 PID: 9702 Comm: syz.2.657 Not tainted syzkaller #0 PREEMPT(full) [ 446.812849][ T9702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 446.812858][ T9702] Call Trace: [ 446.812863][ T9702] [ 446.812869][ T9702] dump_stack_lvl+0x16c/0x1f0 [ 446.812892][ T9702] should_fail_ex+0x512/0x640 [ 446.812912][ T9702] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 446.812931][ T9702] should_failslab+0xc2/0x120 [ 446.812950][ T9702] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 446.812966][ T9702] ? vm_area_dup+0x27/0x8d0 [ 446.812982][ T9702] vm_area_dup+0x27/0x8d0 [ 446.812998][ T9702] copy_vma+0x4fa/0xaa0 [ 446.813017][ T9702] ? __pfx_copy_vma+0x10/0x10 [ 446.813052][ T9702] copy_vma_and_data+0x1cf/0x790 [ 446.813070][ T9702] ? __pfx_copy_vma_and_data+0x10/0x10 [ 446.813090][ T9702] ? __vma_enter_locked+0x163/0x3f0 [ 446.813105][ T9702] ? find_held_lock+0x2b/0x80 [ 446.813120][ T9702] ? move_vma+0x536/0x1780 [ 446.813134][ T9702] ? __vm_enough_memory+0x184/0x3f0 [ 446.813157][ T9702] move_vma+0x548/0x1780 [ 446.813184][ T9702] ? __pfx_move_vma+0x10/0x10 [ 446.813202][ T9702] ? mm_get_unmapped_area_vmflags+0x97/0xe0 [ 446.813222][ T9702] ? cap_mmap_addr+0x4b/0x120 [ 446.813237][ T9702] ? bpf_lsm_mmap_addr+0x9/0x10 [ 446.813256][ T9702] ? security_mmap_addr+0x6c/0x1e0 [ 446.813274][ T9702] ? __get_unmapped_area+0x267/0x440 [ 446.813295][ T9702] ? vrm_set_new_addr+0x208/0x290 [ 446.813312][ T9702] mremap_to+0x1b7/0x450 [ 446.813329][ T9702] do_mremap+0x13a3/0x2010 [ 446.813352][ T9702] ? __pfx_do_mremap+0x10/0x10 [ 446.813371][ T9702] ? ksys_write+0x190/0x250 [ 446.813407][ T9702] __do_sys_mremap+0x119/0x170 [ 446.813432][ T9702] ? __pfx___do_sys_mremap+0x10/0x10 [ 446.813456][ T9702] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 446.813522][ T9702] do_syscall_64+0xcd/0x490 [ 446.813556][ T9702] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 446.813580][ T9702] RIP: 0033:0x7fa67b38ebe9 [ 446.813595][ T9702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 446.813609][ T9702] RSP: 002b:00007fa67c17e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 446.813623][ T9702] RAX: ffffffffffffffda RBX: 00007fa67b5b5fa0 RCX: 00007fa67b38ebe9 [ 446.813632][ T9702] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000001000 [ 446.813640][ T9702] RBP: 00007fa67c17e090 R08: 0000000100000000 R09: 0000000000000000 [ 446.813649][ T9702] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 446.813657][ T9702] R13: 00007fa67b5b6038 R14: 00007fa67b5b5fa0 R15: 00007fffaa64fdb8 [ 446.813675][ T9702] [ 448.010613][ T9734] FAULT_INJECTION: forcing a failure. [ 448.010613][ T9734] name failslab, interval 1, probability 0, space 0, times 0 [ 448.051816][ T9716] zswap: compressor not available [ 448.057273][ T9734] CPU: 0 UID: 0 PID: 9734 Comm: syz.1.663 Not tainted syzkaller #0 PREEMPT(full) [ 448.057310][ T9734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 448.057324][ T9734] Call Trace: [ 448.057333][ T9734] [ 448.057343][ T9734] dump_stack_lvl+0x16c/0x1f0 [ 448.057383][ T9734] should_fail_ex+0x512/0x640 [ 448.057418][ T9734] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 448.057451][ T9734] should_failslab+0xc2/0x120 [ 448.057480][ T9734] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 448.057507][ T9734] ? vma_merge_new_range+0x3ae/0xa50 [ 448.057532][ T9734] ? vm_area_alloc+0x1f/0x160 [ 448.057562][ T9734] vm_area_alloc+0x1f/0x160 [ 448.057585][ T9734] __mmap_region+0xf90/0x27b0 [ 448.057613][ T9734] ? lock_acquire+0x179/0x350 [ 448.057643][ T9734] ? __pfx___mmap_region+0x10/0x10 [ 448.057678][ T9734] ? lockdep_hardirqs_on+0x7c/0x110 [ 448.057708][ T9734] ? finish_task_switch.isra.0+0x221/0xc10 [ 448.057737][ T9734] ? rcu_is_watching+0x12/0xc0 [ 448.057762][ T9734] ? trace_sched_exit_tp+0xd1/0x120 [ 448.057796][ T9734] ? __schedule+0x11a3/0x5de0 [ 448.057877][ T9734] ? trace_cap_capable+0x18d/0x200 [ 448.057915][ T9734] mmap_region+0x1ab/0x3f0 [ 448.057945][ T9734] ? __get_unmapped_area+0x267/0x440 [ 448.057988][ T9734] do_mmap+0xa3e/0x1210 [ 448.058030][ T9734] ? __pfx_do_mmap+0x10/0x10 [ 448.058075][ T9734] ? __pfx_down_write_killable+0x10/0x10 [ 448.058118][ T9734] vm_mmap_pgoff+0x29e/0x470 [ 448.058160][ T9734] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 448.058205][ T9734] ? __x64_sys_futex+0x1e0/0x4c0 [ 448.058236][ T9734] ? __x64_sys_futex+0x1e9/0x4c0 [ 448.058272][ T9734] ksys_mmap_pgoff+0x7d/0x5c0 [ 448.058306][ T9734] ? xfd_validate_state+0x61/0x180 [ 448.058341][ T9734] ? __pfx_ksys_write+0x10/0x10 [ 448.058375][ T9734] __x64_sys_mmap+0x125/0x190 [ 448.058418][ T9734] do_syscall_64+0xcd/0x490 [ 448.058454][ T9734] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 448.058480][ T9734] RIP: 0033:0x7fae6a38ebe9 [ 448.058503][ T9734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 448.058527][ T9734] RSP: 002b:00007fae6b1d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 448.058553][ T9734] RAX: ffffffffffffffda RBX: 00007fae6a5b6180 RCX: 00007fae6a38ebe9 [ 448.058571][ T9734] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000 [ 448.058587][ T9734] RBP: 00007fae6a411e19 R08: fffffffffffffffa R09: 0000000000000000 [ 448.058604][ T9734] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 448.058620][ T9734] R13: 00007fae6a5b6218 R14: 00007fae6a5b6180 R15: 00007ffd06e9ef98 [ 448.058654][ T9734] [ 450.115141][ T9771] program syz.1.668 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 451.514624][ T9787] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input19 [ 452.214782][ T9805] program syz.2.673 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 452.886440][ T9815] zswap: compressor not available [ 453.825279][ T9839] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input20 [ 454.307465][ T9795] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 454.314135][ T9795] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 454.506515][ T9795] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 454.695933][ T9795] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 454.824362][ T9843] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR [ 455.555213][ T8513] Bluetooth: hci0: command 0x0c1a tx timeout [ 456.218890][ T9857] FAULT_INJECTION: forcing a failure. [ 456.218890][ T9857] name failslab, interval 1, probability 0, space 0, times 0 [ 456.272910][ T9857] CPU: 0 UID: 0 PID: 9857 Comm: syz.2.685 Not tainted syzkaller #0 PREEMPT(full) [ 456.272942][ T9857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 456.272952][ T9857] Call Trace: [ 456.272958][ T9857] [ 456.272964][ T9857] dump_stack_lvl+0x16c/0x1f0 [ 456.272992][ T9857] should_fail_ex+0x512/0x640 [ 456.273013][ T9857] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 456.273036][ T9857] should_failslab+0xc2/0x120 [ 456.273056][ T9857] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 456.273074][ T9857] ? vm_area_dup+0x27/0x8d0 [ 456.273093][ T9857] vm_area_dup+0x27/0x8d0 [ 456.273111][ T9857] __split_vma+0x18e/0x1070 [ 456.273128][ T9857] ? __lock_acquire+0xb97/0x1ce0 [ 456.273150][ T9857] ? __pfx___split_vma+0x10/0x10 [ 456.273172][ T9857] ? lock_acquire+0x179/0x350 [ 456.273201][ T9857] ? do_raw_spin_lock+0x12c/0x2b0 [ 456.273226][ T9857] ? find_held_lock+0x2b/0x80 [ 456.273243][ T9857] vms_gather_munmap_vmas+0x1d2/0x1340 [ 456.273265][ T9857] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 456.273294][ T9857] do_vmi_align_munmap+0x27c/0x7d0 [ 456.273315][ T9857] ? __pfx_do_vmi_align_munmap+0x10/0x10 [ 456.273358][ T9857] do_vmi_munmap+0x204/0x3e0 [ 456.273384][ T9857] move_vma+0xb67/0x1780 [ 456.273418][ T9857] ? __pfx_move_vma+0x10/0x10 [ 456.273461][ T9857] ? mm_get_unmapped_area_vmflags+0x97/0xe0 [ 456.273499][ T9857] ? vrm_set_new_addr+0x208/0x290 [ 456.273518][ T9857] mremap_to+0x1b7/0x450 [ 456.273537][ T9857] do_mremap+0x13a3/0x2010 [ 456.273562][ T9857] ? __pfx_do_mremap+0x10/0x10 [ 456.273584][ T9857] ? do_writev+0x218/0x340 [ 456.273606][ T9857] __do_sys_mremap+0x119/0x170 [ 456.273624][ T9857] ? __pfx___do_sys_mremap+0x10/0x10 [ 456.273646][ T9857] ? __x64_sys_futex+0x1e0/0x4c0 [ 456.273678][ T9857] do_syscall_64+0xcd/0x490 [ 456.273701][ T9857] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 456.273718][ T9857] RIP: 0033:0x7fa67b38ebe9 [ 456.273732][ T9857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 456.273748][ T9857] RSP: 002b:00007fa67c17e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 456.273764][ T9857] RAX: ffffffffffffffda RBX: 00007fa67b5b5fa0 RCX: 00007fa67b38ebe9 [ 456.273774][ T9857] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000001000 [ 456.273785][ T9857] RBP: 00007fa67b411e19 R08: 0000000100000000 R09: 0000000000000000 [ 456.273794][ T9857] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 456.273804][ T9857] R13: 00007fa67b5b6038 R14: 00007fa67b5b5fa0 R15: 00007fffaa64fdb8 [ 456.273823][ T9857] [ 456.527950][ T8513] Bluetooth: hci1: command 0x0c1a tx timeout [ 456.593497][ T8513] Bluetooth: hci2: command 0x0c1a tx timeout [ 456.743652][ T8513] Bluetooth: hci3: command 0x0c1a tx timeout [ 458.158820][ T9840] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input21 [ 458.182915][ T9880] netlink: 24 bytes leftover after parsing attributes in process `syz.3.689'. [ 459.011464][ T9887] program syz.2.692 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 463.134325][ T9891] zswap: compressor not available [ 465.638713][ T9939] FAULT_INJECTION: forcing a failure. [ 465.638713][ T9939] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 465.687944][ T9939] CPU: 1 UID: 0 PID: 9939 Comm: syz.3.704 Not tainted syzkaller #0 PREEMPT(full) [ 465.687966][ T9939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 465.687974][ T9939] Call Trace: [ 465.687979][ T9939] [ 465.687985][ T9939] dump_stack_lvl+0x16c/0x1f0 [ 465.688008][ T9939] should_fail_ex+0x512/0x640 [ 465.688031][ T9939] _copy_from_user+0x2e/0xd0 [ 465.688054][ T9939] kstrtouint_from_user+0xd6/0x1d0 [ 465.688071][ T9939] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 465.688086][ T9939] ? __lock_acquire+0xb97/0x1ce0 [ 465.688113][ T9939] proc_fail_nth_write+0x83/0x220 [ 465.688132][ T9939] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 465.688152][ T9939] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 465.688166][ T9939] vfs_write+0x2a0/0x11d0 [ 465.688185][ T9939] ? __pfx___mutex_lock+0x10/0x10 [ 465.688204][ T9939] ? __pfx_vfs_write+0x10/0x10 [ 465.688224][ T9939] ? __fget_files+0x20e/0x3c0 [ 465.688245][ T9939] ksys_write+0x12a/0x250 [ 465.688260][ T9939] ? __pfx_ksys_write+0x10/0x10 [ 465.688281][ T9939] do_syscall_64+0xcd/0x490 [ 465.688301][ T9939] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 465.688316][ T9939] RIP: 0033:0x7f0163d8d69f [ 465.688328][ T9939] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 465.688342][ T9939] RSP: 002b:00007f0164cc8030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 465.688355][ T9939] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f0163d8d69f [ 465.688365][ T9939] RDX: 0000000000000001 RSI: 00007f0164cc8090 RDI: 0000000000000005 [ 465.688378][ T9939] RBP: 00007f0164cc8090 R08: 0000000000000000 R09: 00007f0164cc7df7 [ 465.688387][ T9939] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000005 [ 465.688395][ T9939] R13: 00007f0163fb6038 R14: 00007f0163fb5fa0 R15: 00007ffeaf591548 [ 465.688414][ T9939] [ 466.563012][ T9949] zero sized request [ 467.183346][ T9951] program syz.1.707 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 468.704695][ T9961] program syz.3.710 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 470.310079][ T9977] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input22 [ 471.004945][ T9980] syz.0.712 uses obsolete (PF_INET,SOCK_PACKET) [ 471.908392][ T9745] syz.0.667 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 472.172536][ T9745] CPU: 1 UID: 0 PID: 9745 Comm: syz.0.667 Not tainted syzkaller #0 PREEMPT(full) [ 472.172557][ T9745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 472.172566][ T9745] Call Trace: [ 472.172572][ T9745] [ 472.172578][ T9745] dump_stack_lvl+0x16c/0x1f0 [ 472.172601][ T9745] dump_header+0x101/0x930 [ 472.172621][ T9745] oom_kill_process+0x272/0xa40 [ 472.172641][ T9745] out_of_memory+0x350/0x1700 [ 472.172662][ T9745] ? __pfx_out_of_memory+0x10/0x10 [ 472.172685][ T9745] mem_cgroup_out_of_memory+0x118/0x130 [ 472.172706][ T9745] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 472.172731][ T9745] ? do_raw_spin_unlock+0x172/0x230 [ 472.172756][ T9745] try_charge_memcg+0x72b/0xd50 [ 472.172777][ T9745] ? __pfx_try_charge_memcg+0x10/0x10 [ 472.172793][ T9745] ? __print_lock_name+0x81/0xe0 [ 472.172808][ T9745] ? rcu_read_unlock+0x17/0x60 [ 472.172831][ T9745] charge_memcg+0x8a/0x230 [ 472.172847][ T9745] __mem_cgroup_charge+0x2b/0x1e0 [ 472.172867][ T9745] shmem_alloc_and_add_folio+0x514/0xc20 [ 472.172888][ T9745] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 472.172907][ T9745] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 472.172927][ T9745] shmem_get_folio_gfp+0x67f/0x1600 [ 472.172947][ T9745] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 472.172969][ T9745] shmem_write_begin+0x160/0x300 [ 472.172988][ T9745] ? __pfx_shmem_write_begin+0x10/0x10 [ 472.173002][ T9745] ? timestamp_truncate+0x21e/0x2d0 [ 472.173020][ T9745] ? balance_dirty_pages_ratelimited_flags+0x92/0x1260 [ 472.173045][ T9745] generic_perform_write+0x3c2/0x900 [ 472.173067][ T9745] ? __pfx_generic_perform_write+0x10/0x10 [ 472.173083][ T9745] ? inode_needs_update_time.part.0+0x191/0x270 [ 472.173105][ T9745] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 472.173122][ T9745] shmem_file_write_iter+0x10e/0x140 [ 472.173142][ T9745] __kernel_write_iter+0x31a/0xb10 [ 472.173160][ T9745] ? __pfx___kernel_write_iter+0x10/0x10 [ 472.173176][ T9745] ? __up_read+0x1f8/0x750 [ 472.173198][ T9745] ? dump_user_range+0x756/0xb70 [ 472.173216][ T9745] dump_user_range+0x413/0xb70 [ 472.173234][ T9745] ? __pfx_dump_user_range+0x10/0x10 [ 472.173250][ T9745] ? elf_coredump_extra_notes_write+0xbd/0x4f0 [ 472.173275][ T9745] ? __pfx_writenote+0x10/0x10 [ 472.173294][ T9745] elf_core_dump+0x2929/0x3b60 [ 472.173319][ T9745] ? __pfx_elf_core_dump+0x10/0x10 [ 472.173333][ T9745] ? finish_task_switch.isra.0+0x221/0xc10 [ 472.173350][ T9745] ? trace_sched_exit_tp+0xd1/0x120 [ 472.173374][ T9745] ? 0xffffffffff600000 [ 472.173414][ T9745] ? __pfx___schedule+0x10/0x10 [ 472.173482][ T9745] ? vfs_coredump+0x2b94/0x5670 [ 472.173503][ T9745] vfs_coredump+0x2b94/0x5670 [ 472.173528][ T9745] ? __pfx_vfs_coredump+0x10/0x10 [ 472.173543][ T9745] ? __lock_acquire+0x62e/0x1ce0 [ 472.173565][ T9745] ? __lock_acquire+0x62e/0x1ce0 [ 472.173584][ T9745] ? lock_acquire+0x179/0x350 [ 472.173610][ T9745] ? is_bpf_text_address+0x8a/0x1a0 [ 472.173627][ T9745] ? bpf_ksym_find+0x124/0x1c0 [ 472.173645][ T9745] ? __kernel_text_address+0xd/0x40 [ 472.173658][ T9745] ? unwind_get_return_address+0x59/0xa0 [ 472.173673][ T9745] ? arch_stack_walk+0xa6/0x100 [ 472.173696][ T9745] ? stack_trace_save+0x8e/0xc0 [ 472.173711][ T9745] ? __pfx_stack_trace_save+0x10/0x10 [ 472.173727][ T9745] ? stack_depot_save_flags+0x29/0x9c0 [ 472.173746][ T9745] ? __lock_acquire+0xb97/0x1ce0 [ 472.173798][ T9745] ? proc_coredump_connector+0x2d1/0x4f0 [ 472.173814][ T9745] ? __pfx_proc_coredump_connector+0x10/0x10 [ 472.173833][ T9745] ? rcu_is_watching+0x12/0xc0 [ 472.173850][ T9745] get_signal+0x22e3/0x26d0 [ 472.173871][ T9745] ? force_sig_fault+0xc4/0x100 [ 472.173887][ T9745] ? __pfx_get_signal+0x10/0x10 [ 472.173913][ T9745] arch_do_signal_or_restart+0x8f/0x790 [ 472.173932][ T9745] ? trace_irq_disable.constprop.0+0xd4/0x120 [ 472.173953][ T9745] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 472.173982][ T9745] irqentry_exit_to_user_mode+0x12a/0x270 [ 472.174001][ T9745] asm_exc_page_fault+0x26/0x30 [ 472.174015][ T9745] RIP: 0033:0x7fd57bd8ebf1 [ 472.174028][ T9745] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 472.174041][ T9745] RSP: 002b:000000000000c97e EFLAGS: 00010217 [ 472.174053][ T9745] RAX: 0000000000000000 RBX: 00007fd57bfb6180 RCX: 00007fd57bd8ebe9 [ 472.174062][ T9745] RDX: 0000200000000400 RSI: 000000000000c97e RDI: 0000000000009357 [ 472.174070][ T9745] RBP: 00007fd57be11e19 R08: 0000040000000000 R09: 0000000000000000 [ 472.174079][ T9745] R10: 0000200000000440 R11: 0000000000000246 R12: 0000000000000000 [ 472.174088][ T9745] R13: 00007fd57bfb6218 R14: 00007fd57bfb6180 R15: 00007ffcf7b340d8 [ 472.174106][ T9745] [ 473.214476][ T9745] memory: usage 307200kB, limit 307200kB, failcnt 24269 [ 473.309160][ T9745] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0 [ 473.348781][ T9979] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input23 [ 473.385109][ T9745] kmem: usage 2712kB, limit 9007199254740988kB, failcnt 0 [ 473.392246][ T9745] Memory cgroup stats for /syz0: [ 473.392416][ T9745] cache 311504896 [ 473.445699][ T9745] rss 290816 [ 473.448934][ T9745] rss_huge 0 [ 473.452110][ T9745] shmem 311500800 [ 473.552361][ T9745] mapped_file 4096 [ 473.577398][ T9745] dirty 0 [ 473.580389][ T9745] writeback 0 [ 473.625548][ T9745] workingset_refault_anon 191 [ 473.693498][ T9745] workingset_refault_file 1129 [ 473.752097][ T9745] swap 127995904 [ 473.783456][ T9745] swapcached 0 [ 473.786873][ T9745] pgpgin 959880 [ 473.790315][ T9745] pgpgout 885802 [ 473.856404][ T9745] pgfault 467383 [ 473.865697][ T9745] pgmajfault 95 [ 473.869186][ T9745] inactive_anon 146452480 [ 473.895772][ T9745] active_anon 165339136 [ 473.899954][ T9745] inactive_file 4096 [ 473.917706][ T9745] active_file 0 [ 473.949961][ T9745] unevictable 0 [ 473.964886][ T9745] hierarchical_memory_limit 314572800 [ 473.988632][ T9745] hierarchical_memsw_limit 9223372036854771712 [ 474.011737][ T9745] total_cache 311504896 [ 474.033440][ T9745] total_rss 290816 [ 474.046560][ T9745] total_rss_huge 0 [ 474.061111][ T9745] total_shmem 311500800 [ 474.071939][ T9745] total_mapped_file 4096 [ 474.116396][ T9745] total_dirty 0 [ 474.119907][ T9745] total_writeback 0 [ 474.153812][ T9745] total_workingset_refault_anon 191 [ 474.181310][ T9745] total_workingset_refault_file 1129 [ 474.293522][ T9745] total_swap 127995904 [ 474.297636][ T9745] total_swapcached 0 [ 474.301532][ T9745] total_pgpgin 959880 [ 474.356396][ T9745] total_pgpgout 885802 [ 474.360505][ T9745] total_pgfault 467383 [ 474.375993][ T9998] zswap: compressor not available [ 474.388847][ T9745] total_pgmajfault 95 [ 474.392868][ T9745] total_inactive_anon 146452480 [ 474.445190][ T9745] total_active_anon 165339136 [ 474.454685][ T9745] total_inactive_file 4096 [ 474.509947][ T9745] total_active_file 0 [ 474.563508][ T9745] total_unevictable 0 [ 474.567525][ T9745] anon_cost 0 [ 474.570787][ T9745] file_cost 0 [ 474.662788][ T9745] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.667,pid=9753,uid=0 [ 474.774770][ T9745] Memory cgroup out of memory: Killed process 9753 (syz.0.667) total-vm:98312kB, anon-rss:948kB, file-rss:54996kB, shmem-rss:0kB, UID:0 pgtables:196kB oom_score_adj:1000 [ 476.567631][T10037] FAULT_INJECTION: forcing a failure. [ 476.567631][T10037] name failslab, interval 1, probability 0, space 0, times 0 [ 476.580677][T10037] CPU: 1 UID: 0 PID: 10037 Comm: syz.2.725 Not tainted syzkaller #0 PREEMPT(full) [ 476.580712][T10037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 476.580727][T10037] Call Trace: [ 476.580736][T10037] [ 476.580745][T10037] dump_stack_lvl+0x16c/0x1f0 [ 476.580784][T10037] should_fail_ex+0x512/0x640 [ 476.580818][T10037] ? fs_reclaim_acquire+0xae/0x150 [ 476.580857][T10037] should_failslab+0xc2/0x120 [ 476.580889][T10037] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 476.580921][T10037] ? ima_alloc_tfm+0x21a/0x2e0 [ 476.580945][T10037] ? ima_collect_measurement+0x4b5/0xa40 [ 476.580981][T10037] krealloc_noprof+0x1ff/0x3a0 [ 476.581014][T10037] ima_collect_measurement+0x4b5/0xa40 [ 476.581056][T10037] ? __pfx_ima_collect_measurement+0x10/0x10 [ 476.581113][T10037] ? do_raw_read_unlock+0x44/0xe0 [ 476.581159][T10037] ? vfs_getxattr_alloc+0xec/0x340 [ 476.581196][T10037] ? ima_get_hash_algo+0x27c/0x400 [ 476.581221][T10037] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 476.581260][T10037] ? process_measurement+0x11fa/0x23e0 [ 476.581287][T10037] process_measurement+0x11fa/0x23e0 [ 476.581326][T10037] ? __pfx_process_measurement+0x10/0x10 [ 476.581369][T10037] ? find_held_lock+0x2b/0x80 [ 476.581428][T10037] ? mtree_load+0x325/0xa40 [ 476.581467][T10037] ima_file_mmap+0x1b1/0x1d0 [ 476.581493][T10037] ? __pfx_ima_file_mmap+0x10/0x10 [ 476.581530][T10037] security_mmap_file+0x88c/0x990 [ 476.581566][T10037] __do_sys_remap_file_pages+0x2e2/0xac0 [ 476.581615][T10037] ? __fget_files+0x20e/0x3c0 [ 476.581642][T10037] ? __pfx___do_sys_remap_file_pages+0x10/0x10 [ 476.581684][T10037] ? fput+0x9b/0xd0 [ 476.581717][T10037] ? ksys_write+0x1ac/0x250 [ 476.581746][T10037] ? __pfx_ksys_write+0x10/0x10 [ 476.581785][T10037] do_syscall_64+0xcd/0x490 [ 476.581822][T10037] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 476.581849][T10037] RIP: 0033:0x7fa67b38ebe9 [ 476.581870][T10037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 476.581894][T10037] RSP: 002b:00007fa67c15d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d8 [ 476.581919][T10037] RAX: ffffffffffffffda RBX: 00007fa67b5b6090 RCX: 00007fa67b38ebe9 [ 476.581936][T10037] RDX: 0000000000000000 RSI: 0000000000001003 RDI: 0000000000046a27 [ 476.581952][T10037] RBP: 00007fa67c15d090 R08: 000000000000066a R09: 0000000000000000 [ 476.581968][T10037] R10: 0000000000000b74 R11: 0000000000000246 R12: 0000000000000001 [ 476.581984][T10037] R13: 00007fa67b5b6128 R14: 00007fa67b5b6090 R15: 00007fffaa64fdb8 [ 476.582017][T10037] [ 476.757682][ T30] audit: type=1800 audit(1756034413.103:4): pid=10037 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.725" name="dev/zero" dev="tmpfs" ino=489 res=0 errno=0 [ 477.238307][ T32] oom_reaper: reaped process 9753 (syz.0.667), now anon-rss:136kB, file-rss:13440kB, shmem-rss:0kB [ 477.734519][T10042] FAULT_INJECTION: forcing a failure. [ 477.734519][T10042] name failslab, interval 1, probability 0, space 0, times 0 [ 477.802926][T10042] CPU: 1 UID: 0 PID: 10042 Comm: syz.3.726 Not tainted syzkaller #0 PREEMPT(full) [ 477.802963][T10042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 477.802979][T10042] Call Trace: [ 477.802989][T10042] [ 477.802999][T10042] dump_stack_lvl+0x16c/0x1f0 [ 477.803040][T10042] should_fail_ex+0x512/0x640 [ 477.803085][T10042] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 477.803122][T10042] should_failslab+0xc2/0x120 [ 477.803153][T10042] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 477.803183][T10042] ? __kernfs_new_node+0xd2/0x8e0 [ 477.803221][T10042] __kernfs_new_node+0xd2/0x8e0 [ 477.803253][T10042] ? __pfx___kernfs_new_node+0x10/0x10 [ 477.803286][T10042] ? find_held_lock+0x2b/0x80 [ 477.803310][T10042] ? kernfs_root+0xee/0x2a0 [ 477.803341][T10042] kernfs_new_node+0x13c/0x1e0 [ 477.803375][T10042] __kernfs_create_file+0x53/0x350 [ 477.803406][T10042] sysfs_add_file_mode_ns+0x207/0x3c0 [ 477.803442][T10042] sysfs_merge_group+0x1aa/0x340 [ 477.803472][T10042] ? __pfx_sysfs_merge_group+0x10/0x10 [ 477.803505][T10042] ? __pfx_dev_add_physical_location+0x10/0x10 [ 477.803537][T10042] ? bus_to_subsys+0x131/0x160 [ 477.803564][T10042] dpm_sysfs_add+0x237/0x280 [ 477.803595][T10042] device_add+0x9a6/0x1aa0 [ 477.803618][T10042] ? __pfx_device_add+0x10/0x10 [ 477.803649][T10042] nfc_register_device+0x41/0x3c0 [ 477.803680][T10042] nci_register_device+0x7f1/0xb80 [ 477.803705][T10042] ? __pfx_nci_register_device+0x10/0x10 [ 477.803733][T10042] ? lockdep_init_map_type+0x5c/0x280 [ 477.803767][T10042] virtual_ncidev_open+0x141/0x220 [ 477.803791][T10042] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 477.803814][T10042] misc_open+0x35a/0x420 [ 477.803838][T10042] ? __pfx_misc_open+0x10/0x10 [ 477.803860][T10042] chrdev_open+0x234/0x6a0 [ 477.803886][T10042] ? __pfx_apparmor_file_open+0x10/0x10 [ 477.803910][T10042] ? __pfx_chrdev_open+0x10/0x10 [ 477.803938][T10042] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 477.803968][T10042] do_dentry_open+0x982/0x1530 [ 477.803994][T10042] ? __pfx_chrdev_open+0x10/0x10 [ 477.804027][T10042] vfs_open+0x82/0x3f0 [ 477.804060][T10042] path_openat+0x1de4/0x2cb0 [ 477.804104][T10042] ? __pfx_path_openat+0x10/0x10 [ 477.804138][T10042] do_filp_open+0x20b/0x470 [ 477.804165][T10042] ? __pfx_do_filp_open+0x10/0x10 [ 477.804214][T10042] ? alloc_fd+0x471/0x7d0 [ 477.804245][T10042] do_sys_openat2+0x11b/0x1d0 [ 477.804275][T10042] ? __pfx_do_sys_openat2+0x10/0x10 [ 477.804317][T10042] __x64_sys_openat+0x174/0x210 [ 477.804348][T10042] ? __pfx___x64_sys_openat+0x10/0x10 [ 477.804391][T10042] do_syscall_64+0xcd/0x490 [ 477.804421][T10042] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 477.804443][T10042] RIP: 0033:0x7f0163d8ebe9 [ 477.804461][T10042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 477.804482][T10042] RSP: 002b:00007f0164cc8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 477.804504][T10042] RAX: ffffffffffffffda RBX: 00007f0163fb5fa0 RCX: 00007f0163d8ebe9 [ 477.804519][T10042] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 477.804534][T10042] RBP: 00007f0163e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 477.804547][T10042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 477.804561][T10042] R13: 00007f0163fb6038 R14: 00007f0163fb5fa0 R15: 00007ffeaf591548 [ 477.804591][T10042] [ 478.322497][ T9750] syz.0.667 (9750) used greatest stack depth: 19368 bytes left [ 478.978112][T10063] kAFS: Invalid Command on /proc/fs/afs/cells file [ 480.760493][ T9742] syz.0.667 (9742) used greatest stack depth: 18744 bytes left [ 481.172697][T10076] FAULT_INJECTION: forcing a failure. [ 481.172697][T10076] name failslab, interval 1, probability 0, space 0, times 0 [ 481.229082][T10076] CPU: 0 UID: 0 PID: 10076 Comm: syz.2.736 Not tainted syzkaller #0 PREEMPT(full) [ 481.229112][T10076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 481.229121][T10076] Call Trace: [ 481.229126][T10076] [ 481.229132][T10076] dump_stack_lvl+0x16c/0x1f0 [ 481.229156][T10076] should_fail_ex+0x512/0x640 [ 481.229175][T10076] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 481.229194][T10076] should_failslab+0xc2/0x120 [ 481.229213][T10076] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 481.229228][T10076] ? do_raw_read_unlock+0x44/0xe0 [ 481.229249][T10076] ? ima_d_path+0xbd/0x2a0 [ 481.229269][T10076] ima_d_path+0xbd/0x2a0 [ 481.229283][T10076] ? vfs_getxattr_alloc+0xec/0x340 [ 481.229299][T10076] ? __pfx_ima_d_path+0x10/0x10 [ 481.229318][T10076] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 481.229336][T10076] process_measurement+0x1d86/0x23e0 [ 481.229356][T10076] ? __pfx_process_measurement+0x10/0x10 [ 481.229379][T10076] ? find_held_lock+0x2b/0x80 [ 481.229413][T10076] ? mtree_load+0x325/0xa40 [ 481.229434][T10076] ima_file_mmap+0x1b1/0x1d0 [ 481.229448][T10076] ? __pfx_ima_file_mmap+0x10/0x10 [ 481.229467][T10076] security_mmap_file+0x88c/0x990 [ 481.229491][T10076] __do_sys_remap_file_pages+0x2e2/0xac0 [ 481.229518][T10076] ? __fget_files+0x20e/0x3c0 [ 481.229532][T10076] ? __pfx___do_sys_remap_file_pages+0x10/0x10 [ 481.229554][T10076] ? native_tss_update_io_bitmap+0x3e1/0x770 [ 481.229576][T10076] ? fput+0x9b/0xd0 [ 481.229594][T10076] ? __pfx_native_tss_update_io_bitmap+0x10/0x10 [ 481.229615][T10076] ? ksys_write+0x1ac/0x250 [ 481.229630][T10076] ? __pfx_ksys_write+0x10/0x10 [ 481.229651][T10076] do_syscall_64+0xcd/0x490 [ 481.229670][T10076] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 481.229685][T10076] RIP: 0033:0x7fa67b38ebe9 [ 481.229697][T10076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 481.229710][T10076] RSP: 002b:00007fa67c17e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d8 [ 481.229724][T10076] RAX: ffffffffffffffda RBX: 00007fa67b5b5fa0 RCX: 00007fa67b38ebe9 [ 481.229733][T10076] RDX: 0000000000000000 RSI: 0000000000001003 RDI: 0000000000046a27 [ 481.229741][T10076] RBP: 00007fa67c17e090 R08: 000000000000066a R09: 0000000000000000 [ 481.229749][T10076] R10: 0000000000000b74 R11: 0000000000000246 R12: 0000000000000001 [ 481.229758][T10076] R13: 00007fa67b5b6038 R14: 00007fa67b5b5fa0 R15: 00007fffaa64fdb8 [ 481.229776][T10076] [ 481.474646][ C0] vkms_vblank_simulate: vblank timer overrun [ 481.970312][ T9747] syz.0.667 (9747) used greatest stack depth: 17560 bytes left [ 482.260861][T10080] zswap: compressor not available [ 482.897911][T10098] zswap: compressor not available [ 483.792522][T10116] program syz.2.743 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 485.252378][T10138] FAULT_INJECTION: forcing a failure. [ 485.252378][T10138] name failslab, interval 1, probability 0, space 0, times 0 [ 485.265120][T10138] CPU: 1 UID: 0 PID: 10138 Comm: syz.1.748 Not tainted syzkaller #0 PREEMPT(full) [ 485.265157][T10138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 485.265174][T10138] Call Trace: [ 485.265184][T10138] [ 485.265194][T10138] dump_stack_lvl+0x16c/0x1f0 [ 485.265234][T10138] should_fail_ex+0x512/0x640 [ 485.265277][T10138] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 485.265314][T10138] should_failslab+0xc2/0x120 [ 485.265351][T10138] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 485.265383][T10138] ? ktime_get_coarse_real_ts64_mg+0x240/0x300 [ 485.265422][T10138] ? __d_alloc+0x32/0xae0 [ 485.265458][T10138] __d_alloc+0x32/0xae0 [ 485.265487][T10138] ? look_up_lock_class+0x59/0x150 [ 485.265524][T10138] d_alloc_pseudo+0x1c/0xc0 [ 485.265562][T10138] alloc_file_pseudo+0xcf/0x230 [ 485.265603][T10138] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 485.265639][T10138] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 485.265681][T10138] create_pipe_files+0x364/0x9a0 [ 485.265720][T10138] do_pipe2+0xaf/0x1c0 [ 485.265751][T10138] ? __pfx_do_pipe2+0x10/0x10 [ 485.265785][T10138] ? xfd_validate_state+0x61/0x180 [ 485.265821][T10138] ? __pfx_ksys_write+0x10/0x10 [ 485.265860][T10138] __x64_sys_pipe+0x33/0x50 [ 485.265893][T10138] do_syscall_64+0xcd/0x490 [ 485.265931][T10138] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 485.265958][T10138] RIP: 0033:0x7fae6a38ebe9 [ 485.265980][T10138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 485.266005][T10138] RSP: 002b:00007fae6b214038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 485.266031][T10138] RAX: ffffffffffffffda RBX: 00007fae6a5b5fa0 RCX: 00007fae6a38ebe9 [ 485.266050][T10138] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 485.266065][T10138] RBP: 00007fae6a411e19 R08: 0000000000000000 R09: 0000000000000000 [ 485.266082][T10138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 485.266099][T10138] R13: 00007fae6a5b6038 R14: 00007fae6a5b5fa0 R15: 00007ffd06e9ef98 [ 485.266135][T10138] [ 485.908721][T10147] block nbd9: NBD_DISCONNECT [ 487.245026][T10160] netlink: 24 bytes leftover after parsing attributes in process `syz.2.752'. [ 487.253615][T10153] zswap: compressor not available [ 487.256402][T10160] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 487.772633][T10167] zswap: compressor not available [ 488.174488][T10181] program syz.0.755 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 489.197014][ T8513] Bluetooth: hci0: unexpected event 0x02 length: 726 > 260 [ 489.662959][T10209] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 491.029704][T10224] zswap: compressor not available [ 491.841776][T10234] netlink: 'syz.2.766': attribute type 1 has an invalid length. [ 492.187984][T10249] netlink: 338 bytes leftover after parsing attributes in process `syz.2.767'. [ 493.402476][T10265] netlink: 28 bytes leftover after parsing attributes in process `syz.0.771'. [ 493.701226][T10265] bond0: (slave bond_slave_0): Releasing backup interface [ 493.928881][T10268] zswap: compressor not available [ 493.997960][T10275] random: crng reseeded on system resumption [ 495.321260][T10296] block nbd9: NBD_DISCONNECT [ 496.315979][T10307] FAULT_INJECTION: forcing a failure. [ 496.315979][T10307] name failslab, interval 1, probability 0, space 0, times 0 [ 496.373568][T10307] CPU: 0 UID: 0 PID: 10307 Comm: syz.0.782 Not tainted syzkaller #0 PREEMPT(full) [ 496.373606][T10307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 496.373622][T10307] Call Trace: [ 496.373631][T10307] [ 496.373641][T10307] dump_stack_lvl+0x16c/0x1f0 [ 496.373680][T10307] should_fail_ex+0x512/0x640 [ 496.373717][T10307] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 496.373751][T10307] should_failslab+0xc2/0x120 [ 496.373786][T10307] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 496.373818][T10307] ? mas_alloc_nodes+0x18b/0x8b0 [ 496.373854][T10307] mas_alloc_nodes+0x18b/0x8b0 [ 496.373891][T10307] mas_node_count_gfp+0x105/0x130 [ 496.373924][T10307] mas_preallocate+0x7e0/0xde0 [ 496.373959][T10307] ? __memcg_slab_post_alloc_hook+0x402/0x960 [ 496.374002][T10307] ? __pfx_mas_preallocate+0x10/0x10 [ 496.374052][T10307] ? anon_vma_name+0x81/0x2f0 [ 496.374095][T10307] __split_vma+0x34a/0x1070 [ 496.374139][T10307] ? __pfx___split_vma+0x10/0x10 [ 496.374177][T10307] ? __pfx_mas_prev+0x10/0x10 [ 496.374220][T10307] vms_gather_munmap_vmas+0x3b1/0x1340 [ 496.374260][T10307] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 496.374313][T10307] do_vmi_align_munmap+0x27c/0x7d0 [ 496.374350][T10307] ? __pfx_do_vmi_align_munmap+0x10/0x10 [ 496.374431][T10307] do_vmi_munmap+0x204/0x3e0 [ 496.374467][T10307] move_vma+0x809/0x1780 [ 496.374504][T10307] ? __pfx_move_vma+0x10/0x10 [ 496.374532][T10307] ? mm_get_unmapped_area+0x95/0xe0 [ 496.374572][T10307] ? shmem_get_unmapped_area+0x170/0xa00 [ 496.374613][T10307] ? vrm_set_new_addr+0x208/0x290 [ 496.374646][T10307] mremap_to+0x1b7/0x450 [ 496.374678][T10307] do_mremap+0x13a3/0x2010 [ 496.374725][T10307] ? __pfx_do_mremap+0x10/0x10 [ 496.374763][T10307] ? do_writev+0x218/0x340 [ 496.374814][T10307] __do_sys_mremap+0x119/0x170 [ 496.374846][T10307] ? __pfx___do_sys_mremap+0x10/0x10 [ 496.374886][T10307] ? __x64_sys_futex+0x1e0/0x4c0 [ 496.374943][T10307] do_syscall_64+0xcd/0x490 [ 496.374980][T10307] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 496.375008][T10307] RIP: 0033:0x7fd57bd8ebe9 [ 496.375029][T10307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 496.375056][T10307] RSP: 002b:00007fd57ccd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 496.375082][T10307] RAX: ffffffffffffffda RBX: 00007fd57bfb5fa0 RCX: 00007fd57bd8ebe9 [ 496.375100][T10307] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000000000000000 [ 496.375122][T10307] RBP: 00007fd57be11e19 R08: 0000000100000000 R09: 0000000000000000 [ 496.375139][T10307] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 496.375155][T10307] R13: 00007fd57bfb6038 R14: 00007fd57bfb5fa0 R15: 00007ffcf7b340d8 [ 496.375192][T10307] [ 497.334819][T10313] netlink: 28 bytes leftover after parsing attributes in process `syz.1.784'. [ 497.457750][T10313] bond0: (slave bond_slave_0): Releasing backup interface [ 497.540869][T10311] zswap: compressor not available [ 498.268599][T10329] netlink: 346 bytes leftover after parsing attributes in process `syz.0.786'. [ 500.165142][T10371] capability: warning: `syz.3.796' uses deprecated v2 capabilities in a way that may be insecure [ 500.750763][T10376] zswap: compressor not available [ 501.267756][T10389] ptrace attach of "./syz-executor exec"[10390] was attempted by "./syz-executor exec"[10389] [ 501.520306][T10395] netlink: 28 bytes leftover after parsing attributes in process `syz.2.800'. [ 501.724052][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.732143][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 502.869639][T10424] zswap: compressor not available [ 503.537944][T10444] FAULT_INJECTION: forcing a failure. [ 503.537944][T10444] name failslab, interval 1, probability 0, space 0, times 0 [ 503.611009][T10444] CPU: 0 UID: 0 PID: 10444 Comm: syz.3.808 Not tainted syzkaller #0 PREEMPT(full) [ 503.611042][T10444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 503.611055][T10444] Call Trace: [ 503.611063][T10444] [ 503.611072][T10444] dump_stack_lvl+0x16c/0x1f0 [ 503.611107][T10444] should_fail_ex+0x512/0x640 [ 503.611138][T10444] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 503.611168][T10444] should_failslab+0xc2/0x120 [ 503.611196][T10444] __kmalloc_cache_noprof+0x6a/0x3e0 [ 503.611223][T10444] ? snd_seq_oss_open+0x55/0xa20 [ 503.611263][T10444] snd_seq_oss_open+0x55/0xa20 [ 503.611306][T10444] odev_open+0x6f/0x90 [ 503.611343][T10444] ? __pfx_odev_open+0x10/0x10 [ 503.611377][T10444] soundcore_open+0x40c/0x580 [ 503.611412][T10444] ? __pfx_soundcore_open+0x10/0x10 [ 503.611444][T10444] chrdev_open+0x234/0x6a0 [ 503.611474][T10444] ? __pfx_apparmor_file_open+0x10/0x10 [ 503.611502][T10444] ? __pfx_chrdev_open+0x10/0x10 [ 503.611535][T10444] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 503.611571][T10444] do_dentry_open+0x982/0x1530 [ 503.611605][T10444] ? __pfx_chrdev_open+0x10/0x10 [ 503.611643][T10444] vfs_open+0x82/0x3f0 [ 503.611684][T10444] path_openat+0x1de4/0x2cb0 [ 503.611725][T10444] ? __pfx_path_openat+0x10/0x10 [ 503.611763][T10444] do_filp_open+0x20b/0x470 [ 503.611793][T10444] ? __pfx_do_filp_open+0x10/0x10 [ 503.611848][T10444] ? alloc_fd+0x471/0x7d0 [ 503.611883][T10444] do_sys_openat2+0x11b/0x1d0 [ 503.611917][T10444] ? __pfx_do_sys_openat2+0x10/0x10 [ 503.611950][T10444] ? find_held_lock+0x2b/0x80 [ 503.611977][T10444] ? handle_mm_fault+0x2ab/0xd10 [ 503.612013][T10444] __x64_sys_openat+0x174/0x210 [ 503.612049][T10444] ? __pfx___x64_sys_openat+0x10/0x10 [ 503.612100][T10444] do_syscall_64+0xcd/0x490 [ 503.612135][T10444] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 503.612162][T10444] RIP: 0033:0x7f0163d8ebe9 [ 503.612183][T10444] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 503.612207][T10444] RSP: 002b:00007f0164c65038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 503.612232][T10444] RAX: ffffffffffffffda RBX: 00007f0163fb6270 RCX: 00007f0163d8ebe9 [ 503.612249][T10444] RDX: 0000000000000801 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 503.612267][T10444] RBP: 00007f0163e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 503.612283][T10444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 503.612298][T10444] R13: 00007f0163fb6308 R14: 00007f0163fb6270 R15: 00007ffeaf591548 [ 503.612334][T10444] [ 505.974712][T10480] netlink: 342 bytes leftover after parsing attributes in process `syz.1.815'. [ 506.060655][T10485] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 506.403325][T10490] program syz.1.816 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 507.023375][ T30] audit: type=1800 audit(1756034443.543:5): pid=10498 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.818" name="members" dev="configfs" ino=26136 res=0 errno=0 [ 507.146037][T10499] zswap: compressor not available [ 509.175819][T10525] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 509.182247][T10525] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 509.190285][T10525] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 509.234910][T10528] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 509.247254][T10528] netlink: 20 bytes leftover after parsing attributes in process `syz.0.825'. [ 509.257117][T10525] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 509.461005][T10537] nbd: couldn't find device at index 137 [ 510.024483][T10546] program syz.3.828 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 511.226199][ T8513] Bluetooth: hci2: command 0x0c1a tx timeout [ 511.227098][ T5860] Bluetooth: hci1: command 0x0c1a tx timeout [ 511.232328][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 511.268850][T10558] zswap: compressor not available [ 511.313505][ T8513] Bluetooth: hci3: command 0x0c1a tx timeout [ 512.067330][T10576] netlink: 342 bytes leftover after parsing attributes in process `syz.2.833'. [ 515.458093][T10618] program syz.2.841 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 515.463690][T10619] zswap: compressor not available [ 515.526269][T10626] FAULT_INJECTION: forcing a failure. [ 515.526269][T10626] name failslab, interval 1, probability 0, space 0, times 0 [ 515.583652][T10626] CPU: 1 UID: 0 PID: 10626 Comm: syz.1.843 Not tainted syzkaller #0 PREEMPT(full) [ 515.583691][T10626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 515.583704][T10626] Call Trace: [ 515.583712][T10626] [ 515.583722][T10626] dump_stack_lvl+0x16c/0x1f0 [ 515.583770][T10626] should_fail_ex+0x512/0x640 [ 515.583805][T10626] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 515.583838][T10626] should_failslab+0xc2/0x120 [ 515.583873][T10626] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 515.583905][T10626] ? vm_area_dup+0x27/0x8d0 [ 515.583935][T10626] vm_area_dup+0x27/0x8d0 [ 515.583965][T10626] __split_vma+0x18e/0x1070 [ 515.583998][T10626] ? __pfx___split_vma+0x10/0x10 [ 515.584025][T10626] ? mark_held_locks+0x49/0x80 [ 515.584065][T10626] ? __page_table_check_ptes_set+0x1ae/0x420 [ 515.584099][T10626] ? find_held_lock+0x2b/0x80 [ 515.584129][T10626] vms_gather_munmap_vmas+0x1d2/0x1340 [ 515.584164][T10626] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 515.584215][T10626] do_vmi_align_munmap+0x27c/0x7d0 [ 515.584250][T10626] ? __pfx_do_vmi_align_munmap+0x10/0x10 [ 515.584330][T10626] do_vmi_munmap+0x204/0x3e0 [ 515.584365][T10626] move_vma+0xb67/0x1780 [ 515.584402][T10626] ? __pfx_move_vma+0x10/0x10 [ 515.584436][T10626] ? mm_get_unmapped_area_vmflags+0x97/0xe0 [ 515.584487][T10626] ? vrm_set_new_addr+0x208/0x290 [ 515.584519][T10626] mremap_to+0x1b7/0x450 [ 515.584551][T10626] do_mremap+0x13a3/0x2010 [ 515.584598][T10626] ? __pfx_do_mremap+0x10/0x10 [ 515.584634][T10626] ? do_writev+0x218/0x340 [ 515.584669][T10626] __do_sys_mremap+0x119/0x170 [ 515.584697][T10626] ? __pfx___do_sys_mremap+0x10/0x10 [ 515.584738][T10626] ? __x64_sys_futex+0x1e0/0x4c0 [ 515.584806][T10626] do_syscall_64+0xcd/0x490 [ 515.584845][T10626] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 515.584873][T10626] RIP: 0033:0x7fae6a38ebe9 [ 515.584895][T10626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 515.584921][T10626] RSP: 002b:00007fae6b214038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 515.584946][T10626] RAX: ffffffffffffffda RBX: 00007fae6a5b5fa0 RCX: 00007fae6a38ebe9 [ 515.584965][T10626] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000001000 [ 515.584981][T10626] RBP: 00007fae6a411e19 R08: 0000000100000000 R09: 0000000000000000 [ 515.584998][T10626] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 515.585013][T10626] R13: 00007fae6a5b6038 R14: 00007fae6a5b5fa0 R15: 00007ffd06e9ef98 [ 515.585050][T10626] [ 516.553603][ T30] audit: type=1800 audit(1756034453.073:6): pid=10640 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.847" name="members" dev="configfs" ino=26472 res=0 errno=0 [ 518.365110][T10658] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 519.128246][T10651] netlink: 346 bytes leftover after parsing attributes in process `syz.2.848'. [ 519.942704][T10669] FAULT_INJECTION: forcing a failure. [ 519.942704][T10669] name failslab, interval 1, probability 0, space 0, times 0 [ 520.036526][T10669] CPU: 0 UID: 0 PID: 10669 Comm: syz.3.853 Not tainted syzkaller #0 PREEMPT(full) [ 520.036549][T10669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 520.036557][T10669] Call Trace: [ 520.036563][T10669] [ 520.036569][T10669] dump_stack_lvl+0x16c/0x1f0 [ 520.036593][T10669] should_fail_ex+0x512/0x640 [ 520.036613][T10669] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 520.036630][T10669] should_failslab+0xc2/0x120 [ 520.036648][T10669] __kmalloc_cache_noprof+0x6a/0x3e0 [ 520.036662][T10669] ? raw_open+0x8b/0x500 [ 520.036683][T10669] raw_open+0x8b/0x500 [ 520.036700][T10669] ? __pfx_raw_open+0x10/0x10 [ 520.036717][T10669] misc_open+0x35a/0x420 [ 520.036733][T10669] ? __pfx_misc_open+0x10/0x10 [ 520.036747][T10669] chrdev_open+0x234/0x6a0 [ 520.036764][T10669] ? __pfx_apparmor_file_open+0x10/0x10 [ 520.036781][T10669] ? __pfx_chrdev_open+0x10/0x10 [ 520.036799][T10669] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 520.036818][T10669] do_dentry_open+0x982/0x1530 [ 520.036835][T10669] ? __pfx_chrdev_open+0x10/0x10 [ 520.036856][T10669] vfs_open+0x82/0x3f0 [ 520.036877][T10669] path_openat+0x1de4/0x2cb0 [ 520.036900][T10669] ? __pfx_path_openat+0x10/0x10 [ 520.036920][T10669] do_filp_open+0x20b/0x470 [ 520.036937][T10669] ? __pfx_do_filp_open+0x10/0x10 [ 520.036966][T10669] ? alloc_fd+0x471/0x7d0 [ 520.036986][T10669] do_sys_openat2+0x11b/0x1d0 [ 520.037005][T10669] ? __pfx_do_sys_openat2+0x10/0x10 [ 520.037032][T10669] __x64_sys_openat+0x174/0x210 [ 520.037052][T10669] ? __pfx___x64_sys_openat+0x10/0x10 [ 520.037079][T10669] do_syscall_64+0xcd/0x490 [ 520.037099][T10669] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 520.037113][T10669] RIP: 0033:0x7f0163d8ebe9 [ 520.037124][T10669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 520.037137][T10669] RSP: 002b:00007f0164cc8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 520.037151][T10669] RAX: ffffffffffffffda RBX: 00007f0163fb5fa0 RCX: 00007f0163d8ebe9 [ 520.037160][T10669] RDX: 0000000000000400 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 520.037169][T10669] RBP: 00007f0163e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 520.037177][T10669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 520.037185][T10669] R13: 00007f0163fb6038 R14: 00007f0163fb5fa0 R15: 00007ffeaf591548 [ 520.037203][T10669] [ 520.413852][T10672] netlink: 28 bytes leftover after parsing attributes in process `syz.3.855'. [ 521.074898][T10685] ptrace attach of "./syz-executor exec"[10690] was attempted by "./syz-executor exec"[10685] [ 522.760320][T10709] ubi0: attaching mtd0 [ 522.773186][T10709] ubi0 error: ubi_attach_mtd_dev: bad VID header (536870975) or data offsets (536871039) [ 522.858375][T10709] : Can't lookup blockdev [ 523.793461][T10715] block nbd0: shutting down sockets [ 524.881971][T10735] FAULT_INJECTION: forcing a failure. [ 524.881971][T10735] name failslab, interval 1, probability 0, space 0, times 0 [ 524.932292][T10727] zswap: compressor not available [ 525.113548][T10735] CPU: 1 UID: 0 PID: 10735 Comm: syz.2.870 Not tainted syzkaller #0 PREEMPT(full) [ 525.113572][T10735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 525.113581][T10735] Call Trace: [ 525.113587][T10735] [ 525.113593][T10735] dump_stack_lvl+0x16c/0x1f0 [ 525.113617][T10735] should_fail_ex+0x512/0x640 [ 525.113636][T10735] ? __kvmalloc_node_noprof+0x124/0x620 [ 525.113655][T10735] should_failslab+0xc2/0x120 [ 525.113672][T10735] __kvmalloc_node_noprof+0x137/0x620 [ 525.113688][T10735] ? lru_gen_seq_start+0x4f/0x240 [ 525.113707][T10735] ? rcu_is_watching+0x12/0xc0 [ 525.113724][T10735] ? lru_gen_seq_start+0x4f/0x240 [ 525.113743][T10735] lru_gen_seq_start+0x4f/0x240 [ 525.113773][T10735] traverse.part.0.constprop.0+0xac/0x640 [ 525.113795][T10735] seq_read_iter+0x932/0x12c0 [ 525.113813][T10735] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 525.113833][T10735] seq_read+0x3a3/0x570 [ 525.113847][T10735] ? __pfx_seq_read+0x10/0x10 [ 525.113875][T10735] full_proxy_read+0x12e/0x1a0 [ 525.113896][T10735] ? __pfx_full_proxy_read+0x10/0x10 [ 525.113917][T10735] vfs_read+0x1e1/0xcf0 [ 525.113936][T10735] ? __pfx_vfs_read+0x10/0x10 [ 525.113949][T10735] ? find_held_lock+0x2b/0x80 [ 525.113963][T10735] ? __fget_files+0x204/0x3c0 [ 525.113981][T10735] ? __fget_files+0x20e/0x3c0 [ 525.114001][T10735] __x64_sys_pread64+0x1eb/0x250 [ 525.114017][T10735] ? __pfx___x64_sys_pread64+0x10/0x10 [ 525.114040][T10735] do_syscall_64+0xcd/0x490 [ 525.114059][T10735] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 525.114073][T10735] RIP: 0033:0x7fa67b38ebe9 [ 525.114086][T10735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 525.114098][T10735] RSP: 002b:00007fa67c17e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 525.114112][T10735] RAX: ffffffffffffffda RBX: 00007fa67b5b5fa0 RCX: 00007fa67b38ebe9 [ 525.114122][T10735] RDX: 0000000000000006 RSI: 0000200000000040 RDI: 0000000000000009 [ 525.114130][T10735] RBP: 00007fa67b411e19 R08: 0000000000000000 R09: 0000000000000000 [ 525.114138][T10735] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000 [ 525.114146][T10735] R13: 00007fa67b5b6038 R14: 00007fa67b5b5fa0 R15: 00007fffaa64fdb8 [ 525.114164][T10735] [ 527.597659][T10770] random: crng reseeded on system resumption [ 529.059284][T10781] zswap: compressor not available [ 531.276796][T10814] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 532.079379][T10813] ovs_: entered promiscuous mode [ 533.089881][T10835] zswap: compressor not available [ 533.440218][T10850] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 534.004630][T10855] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 534.011330][T10855] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 534.652907][T10870] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 535.357985][T10874] program syz.3.900 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 538.718953][T10922] program syz.0.910 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 538.926791][T10928] ubi0: attaching mtd0 [ 538.932487][T10928] ubi0: scanning is finished [ 538.937354][T10928] ubi0: empty MTD device detected [ 539.222633][T10936] netlink: 342 bytes leftover after parsing attributes in process `syz.1.912'. [ 539.301678][T10936] IPv6: Can't replace route, no match found [ 539.560569][T10928] ubi0 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt0d", error -4 [ 539.965667][T10951] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 540.836501][ T5872] Bluetooth: hci2: ISO packet too small [ 541.022702][T10947] FAULT_INJECTION: forcing a failure. [ 541.022702][T10947] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 541.053733][T10947] CPU: 0 UID: 0 PID: 10947 Comm: syz.2.917 Not tainted syzkaller #0 PREEMPT(full) [ 541.053756][T10947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 541.053765][T10947] Call Trace: [ 541.053771][T10947] [ 541.053777][T10947] dump_stack_lvl+0x16c/0x1f0 [ 541.053802][T10947] should_fail_ex+0x512/0x640 [ 541.053825][T10947] should_fail_alloc_page+0xe7/0x130 [ 541.053856][T10947] prepare_alloc_pages+0x3c2/0x610 [ 541.053889][T10947] ? rcu_is_watching+0x12/0xc0 [ 541.053918][T10947] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 541.053950][T10947] ? __lock_acquire+0xb97/0x1ce0 [ 541.053993][T10947] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 541.054010][T10947] ? do_raw_spin_lock+0x12c/0x2b0 [ 541.054031][T10947] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 541.054051][T10947] ? find_held_lock+0x2b/0x80 [ 541.054069][T10947] ? __lock_acquire+0xb97/0x1ce0 [ 541.054096][T10947] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 541.054118][T10947] ? policy_nodemask+0xea/0x4e0 [ 541.054139][T10947] alloc_pages_mpol+0x1fb/0x550 [ 541.054158][T10947] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 541.054181][T10947] folio_alloc_mpol_noprof+0x36/0x2f0 [ 541.054203][T10947] shmem_alloc_folio+0x135/0x160 [ 541.054225][T10947] shmem_alloc_and_add_folio+0x499/0xc20 [ 541.054245][T10947] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 541.054263][T10947] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 541.054282][T10947] shmem_get_folio_gfp+0x67f/0x1600 [ 541.054302][T10947] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 541.054320][T10947] ? filemap_map_pages+0xf58/0x1670 [ 541.054338][T10947] shmem_fault+0x1fe/0xa30 [ 541.054354][T10947] ? __pfx_shmem_fault+0x10/0x10 [ 541.054373][T10947] ? __pfx_filemap_map_pages+0x10/0x10 [ 541.054394][T10947] ? __pfx_filemap_map_pages+0x10/0x10 [ 541.054409][T10947] __do_fault+0x10a/0x490 [ 541.054427][T10947] ? __pfx_filemap_map_pages+0x10/0x10 [ 541.054442][T10947] do_pte_missing+0xf50/0x3ba0 [ 541.054456][T10947] ? find_held_lock+0x2b/0x80 [ 541.054470][T10947] ? __handle_mm_fault+0x14fd/0x2a50 [ 541.054486][T10947] __handle_mm_fault+0x152a/0x2a50 [ 541.054503][T10947] ? mt_find+0x3ef/0xa30 [ 541.054523][T10947] ? __pfx___handle_mm_fault+0x10/0x10 [ 541.054535][T10947] ? __pfx_mt_find+0x10/0x10 [ 541.054564][T10947] ? find_vma+0xbf/0x140 [ 541.054580][T10947] ? __pfx_find_vma+0x10/0x10 [ 541.054600][T10947] handle_mm_fault+0x589/0xd10 [ 541.054614][T10947] ? __bpf_trace_exceptions+0x1/0x40 [ 541.054636][T10947] do_user_addr_fault+0x7a6/0x1370 [ 541.054658][T10947] ? rcu_is_watching+0x12/0xc0 [ 541.054674][T10947] exc_page_fault+0x5c/0xb0 [ 541.054692][T10947] asm_exc_page_fault+0x26/0x30 [ 541.054706][T10947] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 541.054721][T10947] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 541.054735][T10947] RSP: 0018:ffffc9001900ef98 EFLAGS: 00050206 [ 541.054747][T10947] RAX: 0000000000000001 RBX: 0000000000007111 RCX: 0000000000001111 [ 541.054755][T10947] RDX: ffffed10055bee23 RSI: 0000000000006000 RDI: ffff88802adf6000 [ 541.054764][T10947] RBP: 0000000000007111 R08: 0000000000000001 R09: ffffed10055bee22 [ 541.054773][T10947] R10: ffff88802adf7110 R11: 0000000000000000 R12: 0000000000000000 [ 541.054781][T10947] R13: ffffc9001900fd80 R14: ffff88802adf0000 R15: 0000000000000000 [ 541.054800][T10947] _copy_from_iter+0x4eb/0x1720 [ 541.054826][T10947] ? __pfx__copy_from_iter+0x10/0x10 [ 541.054845][T10947] ? alloc_pages_mpol+0x25a/0x550 [ 541.054863][T10947] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 541.054886][T10947] ip_generic_getfrag+0xf7/0x270 [ 541.054906][T10947] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 541.054926][T10947] ? sk_page_frag_refill+0x6c/0x300 [ 541.054944][T10947] __ip_append_data+0x13fa/0x41c0 [ 541.054967][T10947] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 541.054992][T10947] ? ip_dst_mtu_maybe_forward.constprop.0+0x314/0x6e0 [ 541.055015][T10947] ? __pfx___ip_append_data+0x10/0x10 [ 541.055033][T10947] ? dst_alloc+0xc0/0x1a0 [ 541.055052][T10947] ip_make_skb+0x27f/0x300 [ 541.055073][T10947] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 541.055103][T10947] ? __pfx_ip_make_skb+0x10/0x10 [ 541.055122][T10947] ? ip_route_output_key_hash+0x16b/0x2e0 [ 541.055149][T10947] ? udp_sendmsg+0x17d7/0x2870 [ 541.055167][T10947] udp_sendmsg+0x17d7/0x2870 [ 541.055189][T10947] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 541.055209][T10947] ? is_dynamic_key+0x140/0x160 [ 541.055226][T10947] ? __pfx_udp_sendmsg+0x10/0x10 [ 541.055262][T10947] ? css_rstat_updated+0x1c2/0x510 [ 541.055281][T10947] ? __lock_acquire+0xb97/0x1ce0 [ 541.055300][T10947] udpv6_sendmsg+0x128f/0x2d20 [ 541.055320][T10947] ? aa_label_sk_perm+0x195/0x600 [ 541.055344][T10947] ? __pfx_udpv6_sendmsg+0x10/0x10 [ 541.055366][T10947] ? find_held_lock+0x2b/0x80 [ 541.055387][T10947] ? rcu_is_watching+0x12/0xc0 [ 541.055414][T10947] ? __pfx_udpv6_sendmsg+0x10/0x10 [ 541.055435][T10947] ? inet6_sendmsg+0x105/0x140 [ 541.055454][T10947] inet6_sendmsg+0x105/0x140 [ 541.055474][T10947] sock_write_iter+0x3e6/0x5b0 [ 541.055488][T10947] ? __pfx_sock_write_iter+0x10/0x10 [ 541.055508][T10947] ? __futex_wait+0x24c/0x2f0 [ 541.055528][T10947] ? copy_iovec_from_user+0x131/0x170 [ 541.055550][T10947] do_iter_readv_writev+0x65f/0x9e0 [ 541.055567][T10947] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 541.055584][T10947] ? bpf_lsm_file_permission+0x9/0x10 [ 541.055603][T10947] ? security_file_permission+0x71/0x210 [ 541.055622][T10947] ? rw_verify_area+0xcf/0x6c0 [ 541.055638][T10947] vfs_writev+0x35f/0xde0 [ 541.055654][T10947] ? __lock_acquire+0x62e/0x1ce0 [ 541.055672][T10947] ? __pfx_vfs_writev+0x10/0x10 [ 541.055700][T10947] ? __fget_files+0x20e/0x3c0 [ 541.055720][T10947] ? do_writev+0x28c/0x340 [ 541.055733][T10947] do_writev+0x28c/0x340 [ 541.055747][T10947] ? __pfx_do_writev+0x10/0x10 [ 541.055766][T10947] do_syscall_64+0xcd/0x490 [ 541.055785][T10947] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 541.055799][T10947] RIP: 0033:0x7fa67b38ebe9 [ 541.055812][T10947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 541.055825][T10947] RSP: 002b:00007fa67c17e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 541.055838][T10947] RAX: ffffffffffffffda RBX: 00007fa67b5b5fa0 RCX: 00007fa67b38ebe9 [ 541.055848][T10947] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003 [ 541.055856][T10947] RBP: 00007fa67b411e19 R08: 0000000000000000 R09: 0000000000000000 [ 541.055865][T10947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 541.055873][T10947] R13: 00007fa67b5b6038 R14: 00007fa67b5b5fa0 R15: 00007fffaa64fdb8 [ 541.055891][T10947] [ 541.709382][ C0] vkms_vblank_simulate: vblank timer overrun [ 542.443158][T10973] FAULT_INJECTION: forcing a failure. [ 542.443158][T10973] name failslab, interval 1, probability 0, space 0, times 0 [ 542.463775][T10973] CPU: 0 UID: 0 PID: 10973 Comm: syz.3.921 Not tainted syzkaller #0 PREEMPT(full) [ 542.463797][T10973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 542.463806][T10973] Call Trace: [ 542.463811][T10973] [ 542.463817][T10973] dump_stack_lvl+0x16c/0x1f0 [ 542.463841][T10973] should_fail_ex+0x512/0x640 [ 542.463860][T10973] ? __kvmalloc_node_noprof+0x124/0x620 [ 542.463881][T10973] should_failslab+0xc2/0x120 [ 542.463899][T10973] __kvmalloc_node_noprof+0x137/0x620 [ 542.463914][T10973] ? trace_kmalloc+0x2b/0xd0 [ 542.463931][T10973] ? __kvmalloc_node_noprof+0x298/0x620 [ 542.463945][T10973] ? io_alloc_cache_init+0x33/0x170 [ 542.463967][T10973] ? io_alloc_cache_init+0x33/0x170 [ 542.463986][T10973] io_alloc_cache_init+0x33/0x170 [ 542.464006][T10973] io_rsrc_cache_init+0x26/0x50 [ 542.464026][T10973] io_uring_setup+0x68b/0x2080 [ 542.464045][T10973] ? __pfx_io_uring_setup+0x10/0x10 [ 542.464061][T10973] ? do_futex+0x122/0x350 [ 542.464079][T10973] ? __pfx_do_futex+0x10/0x10 [ 542.464097][T10973] ? __pfx___might_resched+0x10/0x10 [ 542.464125][T10973] ? xfd_validate_state+0x61/0x180 [ 542.464150][T10973] __x64_sys_io_uring_setup+0xc2/0x170 [ 542.464169][T10973] do_syscall_64+0xcd/0x490 [ 542.464190][T10973] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 542.464204][T10973] RIP: 0033:0x7f0163d8ebe9 [ 542.464216][T10973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 542.464229][T10973] RSP: 002b:00007f0164cc8038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 542.464243][T10973] RAX: ffffffffffffffda RBX: 00007f0163fb5fa0 RCX: 00007f0163d8ebe9 [ 542.464252][T10973] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 542.464260][T10973] RBP: 00007f0163e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 542.464268][T10973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 542.464276][T10973] R13: 00007f0163fb6038 R14: 00007f0163fb5fa0 R15: 00007ffeaf591548 [ 542.464293][T10973] [ 542.674053][ C0] vkms_vblank_simulate: vblank timer overrun [ 542.742111][T10965] zswap: compressor not available [ 543.282398][T10981] program syz.2.924 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 543.627415][T10982] netlink: 4 bytes leftover after parsing attributes in process `syz.3.923'. [ 543.813902][T10986] netlink: 13 bytes leftover after parsing attributes in process `syz.3.923'. [ 546.322770][T11018] FAULT_INJECTION: forcing a failure. [ 546.322770][T11018] name failslab, interval 1, probability 0, space 0, times 0 [ 546.337503][T11017] usb usb23: usbfs: interface 0 claimed by hub while 'syz.3.933' sets config #-2147483648 [ 546.353583][T11018] CPU: 1 UID: 0 PID: 11018 Comm: syz.0.931 Not tainted syzkaller #0 PREEMPT(full) [ 546.353617][T11018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 546.353631][T11018] Call Trace: [ 546.353640][T11018] [ 546.353650][T11018] dump_stack_lvl+0x16c/0x1f0 [ 546.353685][T11018] should_fail_ex+0x512/0x640 [ 546.353706][T11018] ? fs_reclaim_acquire+0xae/0x150 [ 546.353730][T11018] should_failslab+0xc2/0x120 [ 546.353748][T11018] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 546.353766][T11018] ? ima_inode_get+0x120/0x580 [ 546.353784][T11018] ima_inode_get+0x120/0x580 [ 546.353800][T11018] process_measurement+0x585/0x23e0 [ 546.353819][T11018] ? __lock_acquire+0x62e/0x1ce0 [ 546.353838][T11018] ? __pfx_process_measurement+0x10/0x10 [ 546.353860][T11018] ? find_held_lock+0x2b/0x80 [ 546.353891][T11018] ? mtree_load+0x325/0xa40 [ 546.353911][T11018] ima_file_mmap+0x1b1/0x1d0 [ 546.353925][T11018] ? __pfx_ima_file_mmap+0x10/0x10 [ 546.353944][T11018] security_mmap_file+0x88c/0x990 [ 546.353964][T11018] __do_sys_remap_file_pages+0x2e2/0xac0 [ 546.353990][T11018] ? __fget_files+0x20e/0x3c0 [ 546.354005][T11018] ? __pfx___do_sys_remap_file_pages+0x10/0x10 [ 546.354028][T11018] ? fput+0x9b/0xd0 [ 546.354047][T11018] ? ksys_write+0x1ac/0x250 [ 546.354062][T11018] ? __pfx_ksys_write+0x10/0x10 [ 546.354083][T11018] do_syscall_64+0xcd/0x490 [ 546.354103][T11018] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 546.354118][T11018] RIP: 0033:0x7fd57bd8ebe9 [ 546.354130][T11018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 546.354143][T11018] RSP: 002b:00007fd57ccb6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d8 [ 546.354157][T11018] RAX: ffffffffffffffda RBX: 00007fd57bfb6090 RCX: 00007fd57bd8ebe9 [ 546.354167][T11018] RDX: 0000000000000000 RSI: 0000000000001003 RDI: 0000000000046a27 [ 546.354175][T11018] RBP: 00007fd57ccb6090 R08: 000000000000066a R09: 0000000000000000 [ 546.354184][T11018] R10: 0000000000000b74 R11: 0000000000000246 R12: 0000000000000001 [ 546.354192][T11018] R13: 00007fd57bfb6128 R14: 00007fd57bfb6090 R15: 00007ffcf7b340d8 [ 546.354210][T11018] [ 547.230416][T11026] program syz.2.935 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 548.770892][T11058] random: crng reseeded on system resumption [ 551.556272][T11091] program syz.3.949 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 552.468870][T11103] zswap: compressor not available [ 553.113127][T11121] netlink: 4 bytes leftover after parsing attributes in process `syz.1.955'. [ 553.247397][T11097] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 553.294300][T11125] FAULT_INJECTION: forcing a failure. [ 553.294300][T11125] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 553.350565][T11125] CPU: 1 UID: 0 PID: 11125 Comm: syz.2.956 Not tainted syzkaller #0 PREEMPT(full) [ 553.350601][T11125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 553.350615][T11125] Call Trace: [ 553.350624][T11125] [ 553.350633][T11125] dump_stack_lvl+0x16c/0x1f0 [ 553.350670][T11125] should_fail_ex+0x512/0x640 [ 553.350709][T11125] should_fail_alloc_page+0xe7/0x130 [ 553.350745][T11125] prepare_alloc_pages+0x3c2/0x610 [ 553.350786][T11125] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 553.350816][T11125] ? unwind_get_return_address+0x59/0xa0 [ 553.350842][T11125] ? arch_stack_walk+0xa6/0x100 [ 553.350876][T11125] ? __lock_acquire+0x62e/0x1ce0 [ 553.350910][T11125] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 553.350948][T11125] ? __pfx_stack_trace_save+0x10/0x10 [ 553.351004][T11125] ? register_lock_class+0x41/0x4c0 [ 553.351035][T11125] ? find_held_lock+0x2b/0x80 [ 553.351065][T11125] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 553.351104][T11125] ? policy_nodemask+0xea/0x4e0 [ 553.351139][T11125] alloc_pages_mpol+0x1fb/0x550 [ 553.351173][T11125] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 553.351216][T11125] folio_alloc_mpol_noprof+0x36/0x2f0 [ 553.351256][T11125] shmem_alloc_folio+0x135/0x160 [ 553.351294][T11125] shmem_alloc_and_add_folio+0x499/0xc20 [ 553.351333][T11125] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 553.351367][T11125] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 553.351400][T11125] shmem_get_folio_gfp+0x67f/0x1600 [ 553.351437][T11125] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 553.351469][T11125] ? filemap_map_pages+0xf58/0x1670 [ 553.351503][T11125] shmem_fault+0x1fe/0xa30 [ 553.351531][T11125] ? __pfx_shmem_fault+0x10/0x10 [ 553.351565][T11125] ? __pfx_filemap_map_pages+0x10/0x10 [ 553.351605][T11125] ? __pfx_filemap_map_pages+0x10/0x10 [ 553.351633][T11125] __do_fault+0x10a/0x490 [ 553.351666][T11125] ? __pfx_filemap_map_pages+0x10/0x10 [ 553.351693][T11125] do_pte_missing+0xf50/0x3ba0 [ 553.351721][T11125] ? find_held_lock+0x2b/0x80 [ 553.351747][T11125] ? __handle_mm_fault+0x14fd/0x2a50 [ 553.351779][T11125] __handle_mm_fault+0x152a/0x2a50 [ 553.351811][T11125] ? mt_find+0x3ef/0xa30 [ 553.351847][T11125] ? __pfx___handle_mm_fault+0x10/0x10 [ 553.351871][T11125] ? __pfx_mt_find+0x10/0x10 [ 553.351926][T11125] ? find_vma+0xbf/0x140 [ 553.351962][T11125] ? __pfx_find_vma+0x10/0x10 [ 553.351997][T11125] handle_mm_fault+0x589/0xd10 [ 553.352025][T11125] ? __bpf_trace_exceptions+0x1/0x40 [ 553.352063][T11125] do_user_addr_fault+0x7a6/0x1370 [ 553.352105][T11125] ? rcu_is_watching+0x12/0xc0 [ 553.352135][T11125] exc_page_fault+0x5c/0xb0 [ 553.352167][T11125] asm_exc_page_fault+0x26/0x30 [ 553.352192][T11125] RIP: 0010:rep_movs_alternative+0x30/0x90 [ 553.352219][T11125] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 [ 553.352244][T11125] RSP: 0018:ffffc900199dfe58 EFLAGS: 00050202 [ 553.352265][T11125] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 000000000000000c [ 553.352280][T11125] RDX: fffff5200333bfd7 RSI: 0000000000000000 RDI: ffffc900199dfeb0 [ 553.352296][T11125] RBP: 000000000000000c R08: 0000000000000001 R09: fffff5200333bfd7 [ 553.352312][T11125] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000 [ 553.352327][T11125] R13: ffffc900199dfeb0 R14: 0000000000000003 R15: 0000000000000005 [ 553.352361][T11125] _copy_from_user+0x98/0xd0 [ 553.352400][T11125] __x64_sys_epoll_ctl+0x131/0x1e0 [ 553.352431][T11125] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 553.352469][T11125] do_syscall_64+0xcd/0x490 [ 553.352502][T11125] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 553.352525][T11125] RIP: 0033:0x7fa67b38ebe9 [ 553.352545][T11125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 553.352567][T11125] RSP: 002b:00007fa67c17e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 553.352591][T11125] RAX: ffffffffffffffda RBX: 00007fa67b5b5fa0 RCX: 00007fa67b38ebe9 [ 553.352608][T11125] RDX: 0000000000000006 RSI: 0000000000000003 RDI: 0000000000000005 [ 553.352624][T11125] RBP: 00007fa67c17e090 R08: 0000000000000000 R09: 0000000000000000 [ 553.352639][T11125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 553.352654][T11125] R13: 00007fa67b5b6038 R14: 00007fa67b5b5fa0 R15: 00007fffaa64fdb8 [ 553.352690][T11125] [ 553.883011][T11128] program syz.1.958 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 553.999476][T11131] hub 1-0:1.0: USB hub found [ 554.005507][T11131] hub 1-0:1.0: 1 port detected [ 555.081065][T11141] netlink: 4 bytes leftover after parsing attributes in process `syz.2.962'. [ 555.196751][T11152] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input24 [ 555.367240][T11146] zswap: compressor not available [ 556.714870][T11173] netlink: 4 bytes leftover after parsing attributes in process `syz.1.968'. [ 556.737304][T11173] netlink: 13 bytes leftover after parsing attributes in process `syz.1.968'. [ 556.792713][T11176] hub 1-0:1.0: USB hub found [ 556.812281][T11176] hub 1-0:1.0: 1 port detected [ 562.079302][T11252] FAULT_INJECTION: forcing a failure. [ 562.079302][T11252] name failslab, interval 1, probability 0, space 0, times 0 [ 562.174738][T11252] CPU: 1 UID: 0 PID: 11252 Comm: syz.0.985 Not tainted syzkaller #0 PREEMPT(full) [ 562.174775][T11252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 562.174790][T11252] Call Trace: [ 562.174798][T11252] [ 562.174808][T11252] dump_stack_lvl+0x16c/0x1f0 [ 562.174847][T11252] should_fail_ex+0x512/0x640 [ 562.174881][T11252] ? fs_reclaim_acquire+0xae/0x150 [ 562.174920][T11252] ? kobject_get_path+0xd2/0x2a0 [ 562.174951][T11252] should_failslab+0xc2/0x120 [ 562.174983][T11252] __kmalloc_noprof+0xd2/0x510 [ 562.175022][T11252] kobject_get_path+0xd2/0x2a0 [ 562.175068][T11252] kobject_uevent_env+0x289/0x1870 [ 562.175105][T11252] ? __pfx_dev_uevent_name+0x10/0x10 [ 562.175142][T11252] ? bus_to_subsys+0x131/0x160 [ 562.175173][T11252] device_del+0x623/0x9f0 [ 562.175209][T11252] ? __pfx_device_del+0x10/0x10 [ 562.175252][T11252] device_unregister+0x1d/0xc0 [ 562.175286][T11252] wakeup_source_unregister.part.0+0x192/0x570 [ 562.175326][T11252] wakeup_source_unregister+0x1f/0x30 [ 562.175361][T11252] do_epoll_ctl+0x1d9c/0x3790 [ 562.175405][T11252] ? __pfx_do_epoll_ctl+0x10/0x10 [ 562.175444][T11252] ? rep_movs_alternative+0x30/0x90 [ 562.175476][T11252] ? __x64_sys_epoll_ctl+0x15c/0x1e0 [ 562.175502][T11252] __x64_sys_epoll_ctl+0x15c/0x1e0 [ 562.175532][T11252] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 562.175572][T11252] do_syscall_64+0xcd/0x490 [ 562.175608][T11252] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 562.175633][T11252] RIP: 0033:0x7fd57bd8ebe9 [ 562.175653][T11252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 562.175677][T11252] RSP: 002b:00007fd57ccb6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 562.175701][T11252] RAX: ffffffffffffffda RBX: 00007fd57bfb6090 RCX: 00007fd57bd8ebe9 [ 562.175718][T11252] RDX: 0000000000000006 RSI: 0000000000000003 RDI: 0000000000000005 [ 562.175733][T11252] RBP: 00007fd57ccb6090 R08: 0000000000000000 R09: 0000000000000000 [ 562.175749][T11252] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 562.175768][T11252] R13: 00007fd57bfb6128 R14: 00007fd57bfb6090 R15: 00007ffcf7b340d8 [ 562.175804][T11252] [ 562.453136][T11245] zswap: compressor not available [ 563.157231][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.163776][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 563.599732][T11272] FAULT_INJECTION: forcing a failure. [ 563.599732][T11272] name failslab, interval 1, probability 0, space 0, times 0 [ 563.640571][T11272] CPU: 1 UID: 0 PID: 11272 Comm: syz.3.989 Not tainted syzkaller #0 PREEMPT(full) [ 563.640610][T11272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 563.640626][T11272] Call Trace: [ 563.640637][T11272] [ 563.640647][T11272] dump_stack_lvl+0x16c/0x1f0 [ 563.640689][T11272] should_fail_ex+0x512/0x640 [ 563.640732][T11272] should_failslab+0xc2/0x120 [ 563.640769][T11272] __kmalloc_cache_noprof+0x6a/0x3e0 [ 563.640796][T11272] ? do_raw_spin_lock+0x12c/0x2b0 [ 563.640833][T11272] ? find_held_lock+0x2b/0x80 [ 563.640857][T11272] ? async_schedule_node_domain+0x54/0x120 [ 563.640901][T11272] ? __pfx___async_dev_cache_fw_image+0x10/0x10 [ 563.640936][T11272] async_schedule_node_domain+0x54/0x120 [ 563.640973][T11272] dev_cache_fw_image+0x38e/0x490 [ 563.641008][T11272] ? __pfx_dev_cache_fw_image+0x10/0x10 [ 563.641046][T11272] ? __pfx_dev_cache_fw_image+0x10/0x10 [ 563.641079][T11272] dpm_for_each_dev+0x5a/0xb0 [ 563.641108][T11272] fw_pm_notify+0x81/0x150 [ 563.641135][T11272] notifier_call_chain+0xb9/0x410 [ 563.641168][T11272] ? __pfx_fw_pm_notify+0x10/0x10 [ 563.641205][T11272] blocking_notifier_call_chain_robust+0xc8/0x160 [ 563.641243][T11272] ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10 [ 563.641293][T11272] pm_notifier_call_chain_robust+0x27/0x60 [ 563.641330][T11272] snapshot_open+0x189/0x2b0 [ 563.641360][T11272] ? __pfx_snapshot_open+0x10/0x10 [ 563.641393][T11272] misc_open+0x35a/0x420 [ 563.641422][T11272] ? __pfx_misc_open+0x10/0x10 [ 563.641451][T11272] chrdev_open+0x234/0x6a0 [ 563.641483][T11272] ? __pfx_apparmor_file_open+0x10/0x10 [ 563.641513][T11272] ? __pfx_chrdev_open+0x10/0x10 [ 563.641549][T11272] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 563.641587][T11272] do_dentry_open+0x982/0x1530 [ 563.641621][T11272] ? __pfx_chrdev_open+0x10/0x10 [ 563.641662][T11272] vfs_open+0x82/0x3f0 [ 563.641704][T11272] path_openat+0x1de4/0x2cb0 [ 563.641750][T11272] ? __pfx_path_openat+0x10/0x10 [ 563.641792][T11272] do_filp_open+0x20b/0x470 [ 563.641825][T11272] ? __pfx_do_filp_open+0x10/0x10 [ 563.641891][T11272] ? alloc_fd+0x471/0x7d0 [ 563.641933][T11272] do_sys_openat2+0x11b/0x1d0 [ 563.641973][T11272] ? __pfx_do_sys_openat2+0x10/0x10 [ 563.642029][T11272] __x64_sys_openat+0x174/0x210 [ 563.642071][T11272] ? __pfx___x64_sys_openat+0x10/0x10 [ 563.642127][T11272] do_syscall_64+0xcd/0x490 [ 563.642166][T11272] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 563.642194][T11272] RIP: 0033:0x7f0163d8ebe9 [ 563.642217][T11272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 563.642243][T11272] RSP: 002b:00007f0164cc8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 563.642269][T11272] RAX: ffffffffffffffda RBX: 00007f0163fb5fa0 RCX: 00007f0163d8ebe9 [ 563.642287][T11272] RDX: 0000000000000040 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 563.642304][T11272] RBP: 00007f0163e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 563.642321][T11272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 563.642337][T11272] R13: 00007f0163fb6038 R14: 00007f0163fb5fa0 R15: 00007ffeaf591548 [ 563.642375][T11272] [ 563.962619][T11272] [ 563.964953][T11272] ====================================================== [ 563.971946][T11272] WARNING: possible circular locking dependency detected [ 563.978942][T11272] syzkaller #0 Not tainted [ 563.983334][T11272] ------------------------------------------------------ [ 563.990325][T11272] syz.3.989/11272 is trying to acquire lock: [ 563.996279][T11272] ffff8880763195b8 (&ima_iint_mutex_key[depth]){+.+.}-{4:4}, at: process_measurement+0x7e0/0x23e0 [ 564.006903][T11272] [ 564.006903][T11272] but task is already holding lock: [ 564.014431][T11272] ffffffff8f5173c8 (dpm_list_mtx){+.+.}-{4:4}, at: dpm_for_each_dev+0x2d/0xb0 [ 564.023331][T11272] [ 564.023331][T11272] which lock already depends on the new lock. [ 564.023331][T11272] [ 564.033716][T11272] [ 564.033716][T11272] the existing dependency chain (in reverse order) is: [ 564.042727][T11272] [ 564.042727][T11272] -> #4 (dpm_list_mtx){+.+.}-{4:4}: [ 564.050097][T11272] __mutex_lock+0x193/0x1060 [ 564.055213][T11272] device_pm_add+0x87/0x3e0 [ 564.060255][T11272] device_add+0x9cd/0x1aa0 [ 564.065192][T11272] device_create_groups_vargs+0x1f8/0x270 [ 564.071436][T11272] device_create+0xed/0x130 [ 564.076444][T11272] msr_device_create+0x31/0x70 [ 564.081734][T11272] cpuhp_invoke_callback+0x3d5/0xa10 [ 564.087552][T11272] cpuhp_thread_fun+0x47e/0x6f0 [ 564.092912][T11272] smpboot_thread_fn+0x3f7/0xae0 [ 564.098359][T11272] kthread+0x3c5/0x780 [ 564.102976][T11272] ret_from_fork+0x5d4/0x6f0 [ 564.108084][T11272] ret_from_fork_asm+0x1a/0x30 [ 564.113356][T11272] [ 564.113356][T11272] -> #3 (cpuhp_state-up){+.+.}-{0:0}: [ 564.120898][T11272] cpuhp_thread_fun+0x193/0x6f0 [ 564.126285][T11272] smpboot_thread_fn+0x3f7/0xae0 [ 564.131727][T11272] kthread+0x3c5/0x780 [ 564.136312][T11272] ret_from_fork+0x5d4/0x6f0 [ 564.141411][T11272] ret_from_fork_asm+0x1a/0x30 [ 564.146693][T11272] [ 564.146693][T11272] -> #2 (cpu_hotplug_lock){++++}-{0:0}: [ 564.154402][T11272] cpus_read_lock+0x42/0x160 [ 564.159499][T11272] ring_buffer_resize+0x105/0x15c0 [ 564.165206][T11272] tracing_resize_ring_buffer+0x143/0x330 [ 564.171434][T11272] tracing_free_buffer_release+0xfc/0x150 [ 564.177663][T11272] __fput+0x402/0xb70 [ 564.182173][T11272] task_work_run+0x14d/0x240 [ 564.187278][T11272] exit_to_user_mode_loop+0xeb/0x110 [ 564.193508][T11272] do_syscall_64+0x3f6/0x490 [ 564.198618][T11272] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 564.205017][T11272] [ 564.205017][T11272] -> #1 (trace_types_lock){+.+.}-{4:4}: [ 564.212823][T11272] __mutex_lock+0x193/0x1060 [ 564.217927][T11272] tracing_check_open_get_tr.part.0+0x49/0x190 [ 564.224588][T11272] tracing_open_generic_tr+0x66/0xf0 [ 564.230379][T11272] do_dentry_open+0x982/0x1530 [ 564.235650][T11272] vfs_open+0x82/0x3f0 [ 564.240227][T11272] dentry_open+0x71/0xd0 [ 564.244977][T11272] ima_calc_file_hash+0x2b6/0x490 [ 564.250527][T11272] ima_collect_measurement+0x899/0xa40 [ 564.256492][T11272] process_measurement+0x11fa/0x23e0 [ 564.262290][T11272] ima_file_check+0xc5/0x110 [ 564.267388][T11272] security_file_post_open+0x8e/0x210 [ 564.273291][T11272] path_openat+0x1404/0x2cb0 [ 564.278386][T11272] do_filp_open+0x20b/0x470 [ 564.283398][T11272] do_sys_openat2+0x11b/0x1d0 [ 564.288611][T11272] __x64_sys_openat+0x174/0x210 [ 564.293977][T11272] do_syscall_64+0xcd/0x490 [ 564.299014][T11272] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 564.305409][T11272] [ 564.305409][T11272] -> #0 (&ima_iint_mutex_key[depth]){+.+.}-{4:4}: [ 564.313987][T11272] __lock_acquire+0x12a6/0x1ce0 [ 564.319358][T11272] lock_acquire+0x179/0x350 [ 564.324363][T11272] __mutex_lock+0x193/0x1060 [ 564.329460][T11272] process_measurement+0x7e0/0x23e0 [ 564.335262][T11272] ima_file_check+0xc5/0x110 [ 564.340351][T11272] security_file_post_open+0x8e/0x210 [ 564.346226][T11272] path_openat+0x1404/0x2cb0 [ 564.351321][T11272] do_file_open_root+0x322/0x610 [ 564.356763][T11272] file_open_root+0x2a7/0x450 [ 564.361947][T11272] kernel_read_file_from_path_initns+0x189/0x260 [ 564.368867][T11272] _request_firmware+0x744/0x1470 [ 564.374742][T11272] __async_dev_cache_fw_image+0xb1/0x340 [ 564.380894][T11272] async_schedule_node_domain+0xd4/0x120 [ 564.387031][T11272] dev_cache_fw_image+0x38e/0x490 [ 564.392651][T11272] dpm_for_each_dev+0x5a/0xb0 [ 564.397826][T11272] fw_pm_notify+0x81/0x150 [ 564.402998][T11272] notifier_call_chain+0xb9/0x410 [ 564.408524][T11272] blocking_notifier_call_chain_robust+0xc8/0x160 [ 564.415456][T11272] pm_notifier_call_chain_robust+0x27/0x60 [ 564.421764][T11272] snapshot_open+0x189/0x2b0 [ 564.426864][T11272] misc_open+0x35a/0x420 [ 564.431610][T11272] chrdev_open+0x234/0x6a0 [ 564.436544][T11272] do_dentry_open+0x982/0x1530 [ 564.441823][T11272] vfs_open+0x82/0x3f0 [ 564.446398][T11272] path_openat+0x1de4/0x2cb0 [ 564.451488][T11272] do_filp_open+0x20b/0x470 [ 564.456519][T11272] do_sys_openat2+0x11b/0x1d0 [ 564.461703][T11272] __x64_sys_openat+0x174/0x210 [ 564.467064][T11272] do_syscall_64+0xcd/0x490 [ 564.472072][T11272] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 564.478463][T11272] [ 564.478463][T11272] other info that might help us debug this: [ 564.478463][T11272] [ 564.488667][T11272] Chain exists of: [ 564.488667][T11272] &ima_iint_mutex_key[depth] --> cpuhp_state-up --> dpm_list_mtx [ 564.488667][T11272] [ 564.502288][T11272] Possible unsafe locking scenario: [ 564.502288][T11272] [ 564.509719][T11272] CPU0 CPU1 [ 564.515063][T11272] ---- ---- [ 564.520405][T11272] lock(dpm_list_mtx); [ 564.524540][T11272] lock(cpuhp_state-up); [ 564.531371][T11272] lock(dpm_list_mtx); [ 564.538032][T11272] lock(&ima_iint_mutex_key[depth]); [ 564.543392][T11272] [ 564.543392][T11272] *** DEADLOCK *** [ 564.543392][T11272] [ 564.551527][T11272] 5 locks held by syz.3.989/11272: [ 564.556639][T11272] #0: ffffffff8f306f48 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420 [ 564.565069][T11272] #1: ffffffff8e484808 (system_transition_mutex){+.+.}-{4:4}, at: lock_system_sleep+0x87/0xa0 [ 564.575404][T11272] #2: ffffffff8e4c4c70 ((pm_chain_head).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain_robust+0xa8/0x160 [ 564.587241][T11272] #3: ffffffff8f51c9c8 (fw_lock){+.+.}-{4:4}, at: fw_pm_notify+0x69/0x150 [ 564.595842][T11272] #4: ffffffff8f5173c8 (dpm_list_mtx){+.+.}-{4:4}, at: dpm_for_each_dev+0x2d/0xb0 [ 564.605146][T11272] [ 564.605146][T11272] stack backtrace: [ 564.611030][T11272] CPU: 1 UID: 0 PID: 11272 Comm: syz.3.989 Not tainted syzkaller #0 PREEMPT(full) [ 564.611048][T11272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 564.611057][T11272] Call Trace: [ 564.611062][T11272] [ 564.611068][T11272] dump_stack_lvl+0x116/0x1f0 [ 564.611089][T11272] print_circular_bug+0x275/0x350 [ 564.611109][T11272] check_noncircular+0x14c/0x170 [ 564.611128][T11272] __lock_acquire+0x12a6/0x1ce0 [ 564.611148][T11272] lock_acquire+0x179/0x350 [ 564.611165][T11272] ? process_measurement+0x7e0/0x23e0 [ 564.611180][T11272] ? __pfx___might_resched+0x10/0x10 [ 564.611196][T11272] ? process_measurement+0x7e0/0x23e0 [ 564.611209][T11272] __mutex_lock+0x193/0x1060 [ 564.611226][T11272] ? process_measurement+0x7e0/0x23e0 [ 564.611242][T11272] ? __pfx___mutex_lock+0x10/0x10 [ 564.611259][T11272] ? __pfx___might_resched+0x10/0x10 [ 564.611273][T11272] ? find_held_lock+0x2b/0x80 [ 564.611286][T11272] ? down_write+0x14d/0x200 [ 564.611307][T11272] ? process_measurement+0x7e0/0x23e0 [ 564.611320][T11272] process_measurement+0x7e0/0x23e0 [ 564.611337][T11272] ? __pfx_process_measurement+0x10/0x10 [ 564.611353][T11272] ? find_held_lock+0x2b/0x80 [ 564.611365][T11272] ? fscrypt_file_open+0x47c/0x590 [ 564.611390][T11272] ? __pfx___fsnotify_parent+0x10/0x10 [ 564.611404][T11272] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 564.611421][T11272] ima_file_check+0xc5/0x110 [ 564.611435][T11272] ? __pfx_ima_file_check+0x10/0x10 [ 564.611449][T11272] ? vfs_open+0x2e3/0x3f0 [ 564.611469][T11272] security_file_post_open+0x8e/0x210 [ 564.611487][T11272] path_openat+0x1404/0x2cb0 [ 564.611505][T11272] ? trace_kmem_cache_alloc+0x28/0xc0 [ 564.611530][T11272] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 564.611546][T11272] ? __pfx_path_openat+0x10/0x10 [ 564.611561][T11272] ? __asan_memcpy+0x3c/0x60 [ 564.611576][T11272] do_file_open_root+0x322/0x610 [ 564.611593][T11272] ? __pfx_do_file_open_root+0x10/0x10 [ 564.611616][T11272] ? vsnprintf+0x318/0x1160 [ 564.611633][T11272] file_open_root+0x2a7/0x450 [ 564.611649][T11272] ? __pfx_file_open_root+0x10/0x10 [ 564.611665][T11272] ? find_held_lock+0x2b/0x80 [ 564.611678][T11272] ? kernel_read_file_from_path_initns+0x17a/0x260 [ 564.611700][T11272] kernel_read_file_from_path_initns+0x189/0x260 [ 564.611721][T11272] ? __pfx_kernel_read_file_from_path_initns+0x10/0x10 [ 564.611740][T11272] ? trace_kmem_cache_alloc+0x28/0xc0 [ 564.611760][T11272] ? _request_firmware+0x503/0x1470 [ 564.611778][T11272] _request_firmware+0x744/0x1470 [ 564.611797][T11272] ? __pfx__request_firmware+0x10/0x10 [ 564.611814][T11272] ? dump_stack_lvl+0x1a3/0x1f0 [ 564.611831][T11272] __async_dev_cache_fw_image+0xb1/0x340 [ 564.611848][T11272] ? __pfx___async_dev_cache_fw_image+0x10/0x10 [ 564.611867][T11272] ? mark_held_locks+0x49/0x80 [ 564.611883][T11272] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 564.611899][T11272] ? __pfx___async_dev_cache_fw_image+0x10/0x10 [ 564.611917][T11272] async_schedule_node_domain+0xd4/0x120 [ 564.611934][T11272] dev_cache_fw_image+0x38e/0x490 [ 564.611950][T11272] ? __pfx_dev_cache_fw_image+0x10/0x10 [ 564.611966][T11272] ? __pfx_dev_cache_fw_image+0x10/0x10 [ 564.611982][T11272] dpm_for_each_dev+0x5a/0xb0 [ 564.611996][T11272] fw_pm_notify+0x81/0x150 [ 564.612009][T11272] notifier_call_chain+0xb9/0x410 [ 564.612028][T11272] ? __pfx_fw_pm_notify+0x10/0x10 [ 564.612044][T11272] blocking_notifier_call_chain_robust+0xc8/0x160 [ 564.612062][T11272] ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10 [ 564.612083][T11272] pm_notifier_call_chain_robust+0x27/0x60 [ 564.612102][T11272] snapshot_open+0x189/0x2b0 [ 564.612118][T11272] ? __pfx_snapshot_open+0x10/0x10 [ 564.612134][T11272] misc_open+0x35a/0x420 [ 564.612149][T11272] ? __pfx_misc_open+0x10/0x10 [ 564.612163][T11272] chrdev_open+0x234/0x6a0 [ 564.612179][T11272] ? __pfx_apparmor_file_open+0x10/0x10 [ 564.612194][T11272] ? __pfx_chrdev_open+0x10/0x10 [ 564.612212][T11272] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 564.612228][T11272] do_dentry_open+0x982/0x1530 [ 564.612245][T11272] ? __pfx_chrdev_open+0x10/0x10 [ 564.612263][T11272] vfs_open+0x82/0x3f0 [ 564.612282][T11272] path_openat+0x1de4/0x2cb0 [ 564.612300][T11272] ? __pfx_path_openat+0x10/0x10 [ 564.612317][T11272] do_filp_open+0x20b/0x470 [ 564.612333][T11272] ? __pfx_do_filp_open+0x10/0x10 [ 564.612353][T11272] ? alloc_fd+0x471/0x7d0 [ 564.612370][T11272] do_sys_openat2+0x11b/0x1d0 [ 564.612389][T11272] ? __pfx_do_sys_openat2+0x10/0x10 [ 564.612411][T11272] __x64_sys_openat+0x174/0x210 [ 564.612431][T11272] ? __pfx___x64_sys_openat+0x10/0x10 [ 564.612455][T11272] do_syscall_64+0xcd/0x490 [ 564.612473][T11272] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 564.612488][T11272] RIP: 0033:0x7f0163d8ebe9 [ 564.612500][T11272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 564.612513][T11272] RSP: 002b:00007f0164cc8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 564.612531][T11272] RAX: ffffffffffffffda RBX: 00007f0163fb5fa0 RCX: 00007f0163d8ebe9 [ 564.612540][T11272] RDX: 0000000000000040 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 564.612549][T11272] RBP: 00007f0163e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 564.612558][T11272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 564.612566][T11272] R13: 00007f0163fb6038 R14: 00007f0163fb5fa0 R15: 00007ffeaf591548 [ 564.612580][T11272]