last executing test programs: 8.827075616s ago: executing program 2 (id=6495): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r1 = dup$auto(r0) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000400), r1) shmctl$auto_IPC_STAT(0x1000, 0x2, &(0x7f00000004c0)={{0x7f, 0xee01, 0x0, 0x7ff, 0x5, 0x2, 0x3}, 0x10000, 0x7, 0x7f, 0x80000001, @inferred=0xffffffffffffffff, @raw=0x6, 0x1, 0x0, &(0x7f0000000440)="65ccb43499d0c7eb2f7ffb737a7feb2ee5956613779ed5ee74cae288709e45cdfb043a", &(0x7f0000000480)="1a7bf68acd35848568d70631dfd9be784fefd6da7012"}) r4 = getpid() r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/tty12\x00', 0x101840, 0x0) ioctl$auto(r5, 0x4b68, 0xffffffffffffffff) prctl$auto(0x3e, 0x1, r4, 0x1, 0x0) r6 = syz_clone(0x64000000, &(0x7f0000000540)="905a7a78b933239c6a4aacea43842254dd8a6f31d7bddcd82e9bddd89043cc4faf50a0228e12ff29ddd0b306dcfa0b636158e3af5b0e3ea504a3da2d007c5a2b047c3eb8ef98d21cec12276063ba", 0x4e, &(0x7f00000005c0), &(0x7f0000000600), &(0x7f0000000640)="db18605359bf432aa80a2ffef540e1e6a2ef9a07f3c4e7af4e590a3147c7022cbc009fdd114ac988af78f012cde15f0c67d45e9ff25ce05ed153d7e1ac258c0f0d8297e1332842c10330a659bb636ea5d249527cad5720897d352bc154c88093e2d1c1984ac90972c275806626fdd82f07dd42bda3f18894a0f8b745a7b97c445503d1f4a08e94349e4158b7db69caf946aa40b780ac5f3936318dc586d0468846418c58f4bbea983e4d45c651eb61e96330fc3da2cd35ad0a7353e7a96bc248a3a569970c390cad07a2bfc1a1ac2d97069e85cc2ca0bad36ed90e9291e970302bfc131bda45") sendmsg$auto_NL80211_CMD_DEL_STATION(r1, &(0x7f0000000c00)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000740)={0x39c, r2, 0x400, 0x70bd29, 0x25dfdbfe, {}, [@NL80211_ATTR_PUNCT_BITMAP={0x8, 0x142, 0x8}, @NL80211_ATTR_SCAN_FREQUENCIES={0x362, 0x2c, 0x0, 0x1, [@nested={0x2b3, 0x96, 0x0, 0x1, [@generic="ae693255af14190936e108a765ae9b92eaeb2b2c9877c2706c256e3ed71ee3b6249e3b0523332630ec62bec62f75da3f4cdb9b6fb5c14e92fc642476aefa737e7695401b8f97a0126bc937fbdbee9f8b7a33d0a79e57d6e1df4622d1b80a58b315bfc195d786ef58a2d4e87347af435b8c52eff87839a47b622fa258ffa043dac6d1a2d2470da03e92a7d41277873e2f00d46ed4ef2776b95001c6974286d85cb5d052086d6c202cd94c21bb01f5ab54ad348f71e5db5b5d1343e75aebc5e4406c4bebd3438afc0a83a5ba2647072acb1af46b79", @typed={0x8, 0xce, 0x0, 0x0, @uid=r3}, @nested={0x4, 0x35}, @nested={0x4, 0x59}, @generic="8c587c21c19ef05aaf83f6ff213f910952d7f7253808fdd01d78d93e0943c38f32fd0330eb6dc356368e2d972177aaeaed369fc95e1a564270ea566752d962a4cbaf9604dfb8c3f3cdea37791ff36b5759e20b2fce72100736e1e91c548cbcb49b5a94df76dfd1bd6482ffc4c45eef0cd2b76d8cb84f47e95ff20e20ab761d22a13de4ba9956c0a468d88a0b8073a3406b63caec6413542a6e515d6cfa98706c266ec60f57d360435f987fcc15ae83210f3e8f19ba5da5f2b3d528d116442e6746045699251d59b2b20ed613daa0543a3bb636dad19b7c101e4453f722235b3969c86e7093039fa9a1492b9dbe2daef8", @nested={0x4, 0x131}, @generic="aafcdf028eb2546d6aa58b5ddc4c4bc68c640bcf1262dc2e87fbc2eebf361d1a80a8dd522bf6e0a654a6ff571f60dbfbcde8e512c2f2804549458f30017f94be592e48c2f1b8579290e6ec4d8609aad903e8a57567a6b1ffd1930b7cdf4e326af39588e3df9da362377ef032eae2ecce438cf81065327f4c3ede915b4be57f60e4b82764a21b2a342345bd0652070562e307e1aa30a56d9a4ba1735b30c6a6baaa6b377ebf58dd5d585ed609bfd98039b6244b33fd8a6497ac5f1b63b4f0addbe9a7971c139102fc41cdd0e1c3768cd6099da2b2fb00e9"]}, @generic="ffe15b13a2df086e24abd1666ae071a95002ac47b455019759", @nested={0x18, 0x7a, 0x0, 0x1, [@nested={0xc, 0xd0, 0x0, 0x1, [@nested={0x4, 0x32}, @nested={0x4, 0xa4}, @generic]}, @typed={0x8, 0x1, 0x0, 0x0, @uid=r3}]}, @typed={0x8, 0xd5, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}}, @generic="33cac016a815d4a915df5de169a411dc6ab5c1ea50042d45293128bf7f121e4e47f63b4c0e58b9fd44", @nested={0x14, 0x140, 0x0, 0x1, [@nested={0x4, 0xe1}, @nested={0xc, 0x14b, 0x0, 0x1, [@typed={0x5, 0xa8, 0x0, 0x0, @str='\x00'}]}]}, @typed={0x14, 0xa3, 0x0, 0x0, @ipv6=@loopback}, @nested={0x20, 0x37, 0x0, 0x1, [@typed={0x8, 0x25, 0x0, 0x0, @pid=r4}, @typed={0x8, 0x36, 0x0, 0x0, @fd=r1}, @typed={0x4, 0x1e}, @typed={0x8, 0xaa, 0x0, 0x0, @pid=r6}]}]}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x6}, @NL80211_ATTR_DISABLE_HT={0x4}, @NL80211_ATTR_SUPPORT_MESH_AUTH={0x4}, @NL80211_ATTR_TWT_RESPONDER={0x4}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0xfffffffc}]}, 0x39c}, 0x1, 0x0, 0x0, 0x50}, 0x400) ioctl$auto_EXT4_IOC_CHECKPOINT(r1, 0x4004662b, &(0x7f0000000380)=0x6) write$auto(0x3, 0x0, 0xfffffdef) shutdown$auto(0x200000003, 0x2) r7 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/igmp\x00', 0x100, 0x0) r8 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), r0) sendmsg$auto_NL802154_CMD_SET_CHANNEL(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="040027bd7000fbdbdf250900000008000b00060000000800590ddb0f000008002a0045020000"], 0x2c}, 0x1, 0x0, 0x0, 0x24040800}, 0x9800) r9 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x80, 0x0) read$auto_tracing_pipe_fops_trace(r9, 0x0, 0xf0) pread64$auto(r7, 0x0, 0x40000000f42c, 0x80002) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r10 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_SMC_NETLINK_ENABLE_SEID(r10, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, 0x0, 0x1, 0x70bd29, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4805}, 0x2000c000) socket(0x1e, 0x4, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) getsockopt$auto(0xffffffffffffffff, 0x84, 0x20000001, 0x0, 0x0) 7.612623487s ago: executing program 2 (id=6500): r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmstat\x00', 0x20000, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x15, 0x5, 0x0) socket(0x2, 0x1, 0x106) getsockopt$auto(0x4, 0x6, 0x17, 0xfffffffffffffffc, 0x0) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000640)='/sys/firmware/acpi/tables/APIC\x00', 0x0, 0x0) write$auto_tty_fops_tty_io(0xffffffffffffffff, 0x0, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9) io_uring_setup$auto(0x1, 0x0) r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) mmap$auto(0x0, 0x4020009, 0xe2, 0x4000000eb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000) madvise$auto(0x0, 0x400053, 0x9) read$auto(r2, 0x0, 0xb4d3) read$auto(r1, 0x0, 0x7) pread64$auto(r0, &(0x7f00000002c0)='\x04\xefr\tbgc/\xd0\xe1\xf7$/tg/,s\b\xf5\xf7\x0f\x03\xd5\xef\xbf\xf6j\xe2\xed\x7f0\b\xff^\xe3th\xd2\x1bA\xba&\xba\xd0\xbb\xca\xb0\xa1\t\x00\x00\r(\xccF\xeeg\n\x00\x00\xa9l\x9cd\xcf\xff\x97=\xf4\xa1\xca\x82j\xf2\x17\t\x00\x00\x00\x00\x00\x00\x000\xf76\xb96\xd1\xb9\xde\xe2\x167\xc5\x94\x00A[B\xd9\x82\xaa\xc5\xfcoB\xfe\'\xfbI\xc9\xcb\xc3\xc1\x1e6~\x81\xb9\x0ff\x8e\xd3\x06\xba;yX\x966\x97#\xfb\x8d!F\xfc\x99\x86\x1d\xbb\xaf(\x92\x887\x01Z\xa7\xe3Y\x17\xd2#\x8aO\xef\r\xfa\xe0\x18IiI\xaek\xa9R\x02N;+@\x12>\'\x1a\xa6i\x93\x8c\x16BO@ \xb5\xd9\xd0\xb6S\xfc\x17\x11\x04\x8b?$\xean\xa1|D\xbbV%\xde\x87\xd1@\x00\x8cM\xfdr\xc9\x86\xbaq', 0x100003ffd, 0x6) 6.757548395s ago: executing program 2 (id=6501): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffffffd}, 0x10001}, 0x5, 0x20000000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) connect$auto(0x3, 0x0, 0x401) r1 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x404801, 0x0) close_range$auto(0x2, r1, 0xa5) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) bpf$auto(0x8000000, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x5, 0x9, 0x3a8453d3, 0x5, 0x8, 0x4, 0x1, 0x200, 0x8, 0x401, 0x2, 0x2, 0x2, 0xc28}, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(0xffffffffffffffff, 0x0, 0x20000054) write$auto(r3, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r3, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) socketpair$auto(0x81e, 0x5, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x700fdef) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f0000001bc0)="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", 0x850) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x100000000000000) 6.168204883s ago: executing program 1 (id=6503): mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06', &(0x7f0000000140)='nfsd\x00', 0x10000, 0x0) mmap$auto(0x0, 0xf, 0x4, 0xeb1, 0xffffffffffffffff, 0x10000000008000) sendmsg$auto_SMC_NETLINK_REMOVE_UEID(0xffffffffffffffff, 0x0, 0x20000000) r0 = socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = openat$auto_force_wakeup_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bluetooth/hci5/force_wakeup\x00', 0x82, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) write$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffffff, 0x0, 0x0) socket(0x10, 0x2, 0x0) readahead$auto(r0, 0x400000000000ef, 0x8) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89fc, 0x0) r2 = clone3$auto(&(0x7f0000000180)={0xc8, 0x4, 0x5, 0x0, 0x200, 0x2, 0x8, 0x2, 0x3, 0x5, 0x7}, 0x1004000000000000) mmap$auto(0x1, 0x7, 0x7, 0x15, r1, 0x6) bpf$auto_BPF_PROG_GET_NEXT_ID(0xb, &(0x7f0000000240)=@task_fd_query={r2, r0, 0x8, 0xfffffffd, 0x1, 0x8, r1, 0x7, 0x1ff}, 0x1) msgget$auto(0x2, 0x9) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_0={0x9, 0xb5, 0x4, 0x48d0, 0x4, 0xffffffffffffffff, 0x74b, "2af051a940806ec05be276cfc83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x4, 0xe5, 0x3}, 0x10) getdents64$auto(0xffffffffffffffff, 0x0, 0x18) 6.052595795s ago: executing program 3 (id=6504): mmap$auto(0x0, 0x400008, 0x36, 0x1009b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/fs/ocfs2/cluster_stack\x00', 0x88282, 0x0) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) socketpair$auto(0x409, 0x5, 0xffffffff, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_CREATE_VM(r0, 0xc048aeca, 0x0) 5.737023348s ago: executing program 0 (id=6505): setresuid$auto(0x8, 0x8, 0x0) r0 = setfsuid$auto(0xee00) setreuid$auto(r0, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000540)='/dev/snd/midiC2D0\x00', 0x40041, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0xc, 0x20009, 0x5, 0x14, 0xffffffffffffffff, 0x0) r3 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/state\x00', 0x2000, 0x0) lseek$auto(r3, 0x9, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) fsconfig$auto(0xffffffffffffffff, 0x9, 0x0, 0x0, 0x0) read$auto_cgwb_debug_stats_fops_(r2, 0x0, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/vhci_hcd.2/usb13/bDeviceProtocol\x00', 0x303800, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000000c0)=""/255, 0xff) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000001f00), 0xffffffffffffffff) madvise$auto(0x0, 0xffffffffffff0101, 0x15) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000040), 0x100, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(0x0, r2) sendmsg$auto_NL80211_CMD_NEW_MPATH(r5, &(0x7f0000000500)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000340)={&(0x7f0000000580)=ANY=[@ANYRES16=r2, @ANYRES64=r5], 0x121c}, 0x1, 0x0, 0x0, 0x8080}, 0x0) writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) ioctl$auto(r1, 0x4, r3) close_range$auto(0x0, 0xfffffffffffff000, 0x0) sendmsg$auto_L2TP_CMD_NOOP(0xffffffffffffffff, &(0x7f0000004fc0)={0x0, 0x0, &(0x7f0000004f80)={&(0x7f0000004f00)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="010026bd000000"], 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x40) r6 = seccomp$auto(0x101, 0x9, &(0x7f0000000440)="4baa326f5de8f55c5d1ffc05ceea1ae705bce4e9039104fdfeb35fed73da6cad7c187668ff3e4279182cfb5ba118a148c05660215664917d0bfb78931d9712afda71b8734fc2f261e5e03145e5f153153e59a2e2cc6cd2f6dd8d6672dd5568cb4f04c35d4fbba281b94b") sendmsg$auto_L2TP_CMD_TUNNEL_DELETE(r4, &(0x7f0000001680)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f0000001600)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00080100", @ANYRES32=r6, @ANYBLOB="0c00100004000000000000000c000f00400000000000000014001f00fc02000000000000000000000000000008000900a40f0000"], 0x50}, 0x1, 0x0, 0x0, 0x400c080}, 0x20018001) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x9, 0x6, 0x10, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0xf) bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex=r7, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92) 5.571496046s ago: executing program 3 (id=6506): r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x20000, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x15, 0x5, 0x0) socket(0x2, 0x1, 0x106) getsockopt$auto(0x4, 0x6, 0x17, 0xfffffffffffffffc, 0x0) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/self/pagemap\x00', 0x0, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000640)='/sys/firmware/acpi/tables/APIC\x00', 0x0, 0x0) write$auto_tty_fops_tty_io(0xffffffffffffffff, 0x0, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9) io_uring_setup$auto(0x1, 0x0) r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) mmap$auto(0x0, 0x4020009, 0xe2, 0x4000000eb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000) madvise$auto(0x0, 0x400053, 0x9) read$auto(r2, 0x0, 0xb4d3) read$auto(r1, 0x0, 0x7) pread64$auto(r0, &(0x7f00000002c0)='\x04\xefr\tbgc/\xd0\xe1\xf7$/tg/,s\b\xf5\xf7\x0f\x03\xd5\xef\xbf\xf6j\xe2\xed\x7f0\b\xff^\xe3th\xd2\x1bA\xba&\xba\xd0\xbb\xca\xb0\xa1\t\x00\x00\r(\xccF\xeeg\n\x00\x00\xa9l\x9cd\xcf\xff\x97=\xf4\xa1\xca\x82j\xf2\x17\t\x00\x00\x00\x00\x00\x00\x000\xf76\xb96\xd1\xb9\xde\xe2\x167\xc5\x94\x00A[B\xd9\x82\xaa\xc5\xfcoB\xfe\'\xfbI\xc9\xcb\xc3\xc1\x1e6~\x81\xb9\x0ff\x8e\xd3\x06\xba;yX\x966\x97#\xfb\x8d!F\xfc\x99\x86\x1d\xbb\xaf(\x92\x887\x01Z\xa7\xe3Y\x17\xd2#\x8aO\xef\r\xfa\xe0\x18IiI\xaek\xa9R\x02N;+@\x12>\'\x1a\xa6i\x93\x8c\x16BO@ \xb5\xd9\xd0\xb6S\xfc\x17\x11\x04\x8b?$\xean\xa1|D\xbbV%\xde\x87\xd1@\x00\x8cM\xfdr\xc9\x86\xbaq', 0x100003ffd, 0x6) 5.255941669s ago: executing program 3 (id=6507): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/netstat\x00', 0x0, 0x0) fcntl$auto(0xffffffffffffffff, 0x409, 0x40003f) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = semctl$auto(0x201, 0x2, 0x13, 0x8000000000000000) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@isdn={0x22, 0xd, 0x10, 0xc, 0x5}, 0x4) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0xac7b, 0xe983, 0x5, 0xeb1, 0x401, 0x8000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x8002, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000020) ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(0xffffffffffffffff, 0x1, 0x0) mmap$auto(0x0, 0x0, 0x4000000002df, 0x11, 0x401, 0x8000) sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="00010000", @ANYRES16=0x0, @ANYBLOB="000326bd7000fcdbdf2503000000790008805b4f2525b2dc3a73ec37e7122e6f0d55382854d419b883b7ed64bd3c7b9fb15273e787030718751e0a22cc6cabcae114aa6448d0356183e1ca7c01536c5c6f37915b26a3e75515ab02807fe932b8a415a581dcdc7800f91e231c001d800400d3800c002000f3000000002b3c0c7e9b52baf56fe40000000008008c00ac1414aa000000700002806a00e400addd3588300c750bd8c6341eedf20d260a37a63d761fd730c00d02e9ba0a478e7a2f6629a6ad62011d9ab5dc40c92828"], 0x100}, 0x1, 0x0, 0x0, 0x8000}, 0x42) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000000000)) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x9, 0x1, r0, 0x5, 0x403) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{&(0x7f0000000000), 0x3ff, &(0x7f0000000180)={&(0x7f00000000c0), 0x434b}, 0x9, &(0x7f00000001c0), 0x3ff, 0x24000000}, 0xb6}, 0x2, 0x2) mmap$auto(0x0, 0x2020009, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000) read$auto(0x3, 0x0, 0x8080) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x200241, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, &(0x7f00000000c0)="22419bd7bf8ef551d7735f6c9c3299167665395d69b463f2ebabe867ef2a32d4390edc36847d32aeac345b08cc8555") unshare$auto(0x40000080) unshare$auto(0x40000080) madvise$auto(0x0, 0x2000040080000004, 0xe) mmap$auto(0x0, 0x4b76, 0xdf, 0x9b72, 0x2, 0x800008000) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) socket(0x29, 0x2, 0x0) 4.861728446s ago: executing program 1 (id=6508): unshare$auto(0x40000080) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x5) fcntl$auto(0x3, 0x4, 0xa553) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f00000002c0)={{@inferred, 0x5, 0x9, 0x1, "4941aa833e2fc65b6b3cf7cec76d6778ad8eac3cda35ba9c2b2d43eeb0dc59c8dd3500f11581916caa0d3053"}, 0x4, 0xfffffff9, 0x1, @inferred, @enumerated={0xffff, 0xffe, "4bd04167d52dbe3758dcb7641f58661870525adcaedaa5deaa336a58b7382f979a0ff0b3d9583c08610104000049d9f994ef5578e78507d4f25cd03a4c4b5700", 0x9, 0x3fd}, "6cc1888a6393f1b4285854c5368de438f8cc142ef6df1259b05ba1183bedbd31b642b4051bc7955610c61c329794e5311121c760cb8211c78e6947a99807bcc1"}) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0xb) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f0, 0x15) select$auto(0xe, 0x0, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x7}) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/nilfs2/features/README\x00', 0x40, 0x0) mmap$auto(0x0, 0x40009, 0x7, 0x9b72, 0x7, 0x28000) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) madvise$auto(0x7fffffffffffffff, 0x6, 0x7) 4.115902648s ago: executing program 2 (id=6509): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x2, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000003c0)=""/231, 0xe7) socket(0xa, 0x1, 0x84) epoll_create$auto(0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyv2\x00', 0x383281, 0x0) r1 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/ieee80211/phy1/netdev:wlan1/rc_rateidx_mcs_mask_2ghz\x00', 0x88000, 0x0) read$auto(r1, &(0x7f0000001200)='\x00', 0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) vmsplice$auto(0x1, &(0x7f0000000000)={0x0, 0x5}, 0x6, 0x8) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x0, 0x0) unshare$auto(0x1) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/tracing_cpumask\x00', 0x8301, 0x0) write$auto(0x3, 0x0, 0x7fffffff) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x8, 0xfffffffffffffffe]}, 0x0) syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) close_range$auto(0x2, 0x8, 0x0) 3.988746017s ago: executing program 1 (id=6510): r0 = socket(0x2, 0x1, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) mmap$auto(0x0, 0x400008, 0x80000000df, 0x9b72, 0x2, 0x8000) openat$auto_kernel_debug_fops_orangefs_debugfs(0xffffffffffffff9c, 0x0, 0x4080, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket(0x22, 0x3, 0x0) openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, 0x0, 0x0, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fadvise64$auto_POSIX_FADV_NORMAL(0xffffffffffffffff, 0x7, 0xd, 0x0) write$auto(0x3, 0x0, 0x7fffffff) syz_genetlink_get_family_id$auto_nl80211(0x0, r0) sendmsg$auto_IEEE802154_LLSEC_LIST_SECLEVEL(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYRES16], 0x2c}, 0x1, 0x0, 0x0, 0x4000001}, 0x400c1) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x70, 0xdf, 0x9b72, 0x2, 0x80000000008000) connect$auto(0x3, 0x0, 0x55) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0) read$auto(0x3, 0x0, 0x80) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) 3.108328982s ago: executing program 0 (id=6511): open_by_handle_at$auto(0xffffffffffffffff, &(0x7f0000000080)={0x3, 0xfffffff7, "8f42b1"}, 0x7d) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/virtual/block/nbd3/queue/iosched/front_merges\x00', 0x2041, 0x0) socket(0x2, 0x1, 0x0) getsockopt$auto(r0, 0x2, 0x7, &(0x7f0000000000)=']\x00', &(0x7f0000000040)=0x200) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000) r1 = openat$auto_force_wakeup_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/bluetooth/hci3/force_wakeup\x00', 0x80, 0x0) sendmmsg$auto(r1, &(0x7f0000000180)={{0x0, 0x0, &(0x7f00000002c0)={0x0, 0xfc2}, 0x9, 0x0, 0x4000000000007, 0xa505}, 0x802}, 0x4, 0x4008) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, 0x0, 0x100000a3d9) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x7, 0x1f, 0x940, 0x1ffde, 0x3, 0x6, 0x8000001, 0x9, 0x5, 0x0, 0x85b5, 0xb0, 0x7, 0x200, 0x3, 0x205, 0x7, 0x0, 0x3ffff, 0x0, 0x3, 0x7069, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x3, [0x0, 0x0, 0xfffffffffffffffe, 0x8, 0x5, 0x8000004, 0x0, 0x100000000000000, 0xfffffffffffffffb, 0x0, 0x0, 0xfc, 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0x8, 0x20000001, 0xfffffffffffffffe, 0x0, 0x7, 0x0, 0x0, 0x80800, 0x0, 0x8001, 0x0, 0x8000000000000001, 0x0, 0x1, 0x0, 0x0, 0xfff, 0x4, 0x0, 0x0, 0x2000000000000001]}, 0xffff, 0x7d) r3 = socket(0x10, 0x2, 0x0) r4 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) recvmmsg$auto(r4, &(0x7f0000000100)={{0x0, 0x3, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000002, 0x6}, 0x9}, 0x7, 0x6, 0x0) bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@llc={0x1a, 0x339, 0x7, 0x10, 0xfd, 0x4, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xc}}, 0x6a) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4) sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x8) 3.002279985s ago: executing program 2 (id=6512): setresuid$auto(0x8, 0x8, 0x0) r0 = setfsuid$auto(0xee00) setreuid$auto(r0, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000540)='/dev/snd/midiC2D0\x00', 0x40041, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0xc, 0x20009, 0x5, 0x14, 0xffffffffffffffff, 0x0) r3 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/state\x00', 0x2000, 0x0) lseek$auto(r3, 0x9, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) fsconfig$auto(0xffffffffffffffff, 0x9, 0x0, 0x0, 0x0) read$auto_cgwb_debug_stats_fops_(r2, 0x0, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/vhci_hcd.2/usb13/bDeviceProtocol\x00', 0x303800, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000000c0)=""/255, 0xff) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000001f00), 0xffffffffffffffff) madvise$auto(0x0, 0xffffffffffff0101, 0x15) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000040), 0x100, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(0x0, r2) sendmsg$auto_NL80211_CMD_NEW_MPATH(r5, &(0x7f0000000500)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000340)={&(0x7f0000000580)=ANY=[@ANYRES16=r2, @ANYRES64=r5], 0x121c}, 0x1, 0x0, 0x0, 0x8080}, 0x0) writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) ioctl$auto(r1, 0x4, r3) close_range$auto(0x0, 0xfffffffffffff000, 0x0) sendmsg$auto_L2TP_CMD_NOOP(0xffffffffffffffff, &(0x7f0000004fc0)={0x0, 0x0, &(0x7f0000004f80)={&(0x7f0000004f00)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="010026bd000000"], 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x40) seccomp$auto(0x101, 0x9, &(0x7f0000000440)="4baa326f5de8f55c5d1ffc05ceea1ae705bce4e9039104fdfeb35fed73da6cad7c187668ff3e4279182cfb5ba118a148c05660215664917d0bfb78931d9712afda71b8734fc2f261e5e03145e5f153153e59a2e2cc6cd2f6dd8d6672dd5568cb4f04c35d4fbba281b94b42") sendmsg$auto_L2TP_CMD_TUNNEL_DELETE(r4, 0x0, 0x20018001) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x9, 0x6, 0x10, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0xf) bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex=r6, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92) 2.622923148s ago: executing program 0 (id=6513): setresuid$auto(0x8, 0x8, 0x0) r0 = setfsuid$auto(0xee00) setreuid$auto(r0, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000540)='/dev/snd/midiC2D0\x00', 0x40041, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r3 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x2000, 0x0) lseek$auto(r3, 0x9, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) fsconfig$auto(0xffffffffffffffff, 0x9, 0x0, 0x0, 0x0) read$auto_cgwb_debug_stats_fops_(r2, 0x0, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/vhci_hcd.2/usb13/bDeviceProtocol\x00', 0x303800, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000000c0)=""/255, 0xff) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000001f00), 0xffffffffffffffff) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000040), 0x100, 0x0) sendmsg$auto_NL80211_CMD_NEW_MPATH(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000340)={&(0x7f0000000580)=ANY=[@ANYRES16=r2, @ANYRES64], 0x121c}, 0x1, 0x0, 0x0, 0x8080}, 0x0) writev$auto(0xffffffffffffffff, 0x0, 0x1) ioctl$auto(r1, 0x4, r3) close_range$auto(0x0, 0xfffffffffffff000, 0x0) sendmsg$auto_L2TP_CMD_NOOP(0xffffffffffffffff, &(0x7f0000004fc0)={0x0, 0x0, &(0x7f0000004f80)={&(0x7f0000004f00)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="010026bd"], 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x40) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x9, 0x6, 0x10, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0xf) bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex=r5, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92) 2.386947968s ago: executing program 3 (id=6514): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x201, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x82, 0x0) socket(0x2, 0x3, 0x8) socket(0x2, 0x1, 0x0) epoll_create$auto(0x7) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0xa, 0x3, 0x3, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0x8000]}, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r3 = socket$nl_generic(0x10, 0x3, 0x10) epoll_ctl$auto(0x5, 0x1, r3, 0x0) capset$auto(0x0, 0x0) epoll_ctl$auto(0x5, 0x3, r3, 0x0) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_CQM(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000cc0)=ANY=[@ANYBLOB="60120000", @ANYRES16=r4, @ANYBLOB="01002bbd7000fddbdf253f00000042125e80120157803b38694e6b0fca720453224d88a2393983143415c642e3c360ab48d694e21204e89b4c8ab7d4be6f1bd65055c54d3fedb9b4591e6ee6576b1f011e23c80c6ea478e8f3da21f26ade35148398f2ef3e09640a60c3c91182270b133cd2c31dc32b05b5ee01b088c4974eef13d2e4f95cb2ac0310e4be67", @ANYRES32=0x0, @ANYBLOB="080081000700000000000400058008002600", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=r5], 0x1260}, 0x1, 0x0, 0x0, 0x1}, 0x8000000) sendmsg$auto_NL80211_CMD_SET_WOWLAN(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r4, 0x10, 0x70bd2d, 0x25dfdbff, {}, [@NL80211_ATTR_LOCAL_MESH_POWER_MODE={0x8, 0xa4, 0x80000000}, @NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x10}]}, 0x24}, 0x1, 0x0, 0x0, 0x4080}, 0x8000) ioctl$auto_TIOCSTI2(r0, 0x5412, 0x0) 2.101792163s ago: executing program 1 (id=6515): mmap$auto(0x0, 0x400008, 0x36, 0x1009b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x88282, 0x0) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) socketpair$auto(0x409, 0x5, 0xffffffff, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_CREATE_VM(r0, 0xc048aeca, 0x0) 1.785157507s ago: executing program 1 (id=6516): setresuid$auto(0x8, 0x8, 0x0) r0 = setfsuid$auto(0xee00) setreuid$auto(r0, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000540)='/dev/snd/midiC2D0\x00', 0x40041, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r3 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x2000, 0x0) lseek$auto(r3, 0x9, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) fsconfig$auto(0xffffffffffffffff, 0x9, 0x0, 0x0, 0x0) read$auto_cgwb_debug_stats_fops_(r2, 0x0, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/vhci_hcd.2/usb13/bDeviceProtocol\x00', 0x303800, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000000c0)=""/255, 0xff) syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000001f00), 0xffffffffffffffff) madvise$auto(0x0, 0xffffffffffff0101, 0x15) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) sendmsg$auto_NL80211_CMD_NEW_MPATH(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000340)={&(0x7f0000000580)=ANY=[@ANYRES16=r2, @ANYRES64], 0x121c}, 0x1, 0x0, 0x0, 0x8080}, 0x0) writev$auto(0xffffffffffffffff, 0x0, 0x1) close_range$auto(0x0, 0xfffffffffffff000, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x9, 0x6, 0x10, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0xf) bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex=r5, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92) 1.384619856s ago: executing program 3 (id=6517): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r1 = dup$auto(r0) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000400), r1) shmctl$auto_IPC_STAT(0x1000, 0x2, &(0x7f00000004c0)={{0x7f, 0xee01, 0x0, 0x7ff, 0x5, 0x2, 0x3}, 0x10000, 0x7, 0x7f, 0x80000001, @inferred=0xffffffffffffffff, @raw=0x6, 0x1, 0x0, &(0x7f0000000440)="65ccb43499d0c7eb2f7ffb737a7feb2ee5956613779ed5ee74cae288709e45cdfb043a", &(0x7f0000000480)="1a7bf68acd35848568d70631dfd9be784fefd6da7012"}) r4 = getpid() r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/tty12\x00', 0x101840, 0x0) ioctl$auto(r5, 0x4b68, 0xffffffffffffffff) prctl$auto(0x3e, 0x1, r4, 0x1, 0x0) r6 = syz_clone(0x64000000, &(0x7f0000000540)="905a7a78b933239c6a4aacea43842254dd8a6f31d7bddcd82e9bddd89043cc4faf50a0228e12ff29ddd0b306dcfa0b636158e3af5b0e3ea504a3da2d007c5a2b047c3eb8ef98d21cec12276063ba", 0x4e, &(0x7f00000005c0), &(0x7f0000000600), &(0x7f0000000640)="db18605359bf432aa80a2ffef540e1e6a2ef9a07f3c4e7af4e590a3147c7022cbc009fdd114ac988af78f012cde15f0c67d45e9ff25ce05ed153d7e1ac258c0f0d8297e1332842c10330a659bb636ea5d249527cad5720897d352bc154c88093e2d1c1984ac90972c275806626fdd82f07dd42bda3f18894a0f8b745a7b97c445503d1f4a08e94349e4158b7db69caf946aa40b780ac5f3936318dc586d0468846418c58f4bbea983e4d45c651eb61e96330fc3da2cd35ad0a7353e7a96bc248a3a569970c390cad07a2bfc1a1ac2d97069e85cc2ca0bad36ed90e9291e970302bfc131bda45") sendmsg$auto_NL80211_CMD_DEL_STATION(r1, &(0x7f0000000c00)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000740)={0x39c, r2, 0x400, 0x70bd29, 0x25dfdbfe, {}, [@NL80211_ATTR_PUNCT_BITMAP={0x8, 0x142, 0x8}, @NL80211_ATTR_SCAN_FREQUENCIES={0x362, 0x2c, 0x0, 0x1, [@nested={0x2b3, 0x96, 0x0, 0x1, [@generic="ae693255af14190936e108a765ae9b92eaeb2b2c9877c2706c256e3ed71ee3b6249e3b0523332630ec62bec62f75da3f4cdb9b6fb5c14e92fc642476aefa737e7695401b8f97a0126bc937fbdbee9f8b7a33d0a79e57d6e1df4622d1b80a58b315bfc195d786ef58a2d4e87347af435b8c52eff87839a47b622fa258ffa043dac6d1a2d2470da03e92a7d41277873e2f00d46ed4ef2776b95001c6974286d85cb5d052086d6c202cd94c21bb01f5ab54ad348f71e5db5b5d1343e75aebc5e4406c4bebd3438afc0a83a5ba2647072acb1af46b79", @typed={0x8, 0xce, 0x0, 0x0, @uid=r3}, @nested={0x4, 0x35}, @nested={0x4, 0x59}, @generic="8c587c21c19ef05aaf83f6ff213f910952d7f7253808fdd01d78d93e0943c38f32fd0330eb6dc356368e2d972177aaeaed369fc95e1a564270ea566752d962a4cbaf9604dfb8c3f3cdea37791ff36b5759e20b2fce72100736e1e91c548cbcb49b5a94df76dfd1bd6482ffc4c45eef0cd2b76d8cb84f47e95ff20e20ab761d22a13de4ba9956c0a468d88a0b8073a3406b63caec6413542a6e515d6cfa98706c266ec60f57d360435f987fcc15ae83210f3e8f19ba5da5f2b3d528d116442e6746045699251d59b2b20ed613daa0543a3bb636dad19b7c101e4453f722235b3969c86e7093039fa9a1492b9dbe2daef8", @nested={0x4, 0x131}, @generic="aafcdf028eb2546d6aa58b5ddc4c4bc68c640bcf1262dc2e87fbc2eebf361d1a80a8dd522bf6e0a654a6ff571f60dbfbcde8e512c2f2804549458f30017f94be592e48c2f1b8579290e6ec4d8609aad903e8a57567a6b1ffd1930b7cdf4e326af39588e3df9da362377ef032eae2ecce438cf81065327f4c3ede915b4be57f60e4b82764a21b2a342345bd0652070562e307e1aa30a56d9a4ba1735b30c6a6baaa6b377ebf58dd5d585ed609bfd98039b6244b33fd8a6497ac5f1b63b4f0addbe9a7971c139102fc41cdd0e1c3768cd6099da2b2fb00e9"]}, @generic="ffe15b13a2df086e24abd1666ae071a95002ac47b455019759", @nested={0x18, 0x7a, 0x0, 0x1, [@nested={0xc, 0xd0, 0x0, 0x1, [@nested={0x4, 0x32}, @nested={0x4, 0xa4}, @generic]}, @typed={0x8, 0x1, 0x0, 0x0, @uid=r3}]}, @typed={0x8, 0xd5, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}}, @generic="33cac016a815d4a915df5de169a411dc6ab5c1ea50042d45293128bf7f121e4e47f63b4c0e58b9fd44", @nested={0x14, 0x140, 0x0, 0x1, [@nested={0x4, 0xe1}, @nested={0xc, 0x14b, 0x0, 0x1, [@typed={0x5, 0xa8, 0x0, 0x0, @str='\x00'}]}]}, @typed={0x14, 0xa3, 0x0, 0x0, @ipv6=@loopback}, @nested={0x20, 0x37, 0x0, 0x1, [@typed={0x8, 0x25, 0x0, 0x0, @pid=r4}, @typed={0x8, 0x36, 0x0, 0x0, @fd=r1}, @typed={0x4, 0x1e}, @typed={0x8, 0xaa, 0x0, 0x0, @pid=r6}]}]}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x6}, @NL80211_ATTR_DISABLE_HT={0x4}, @NL80211_ATTR_SUPPORT_MESH_AUTH={0x4}, @NL80211_ATTR_TWT_RESPONDER={0x4}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0xfffffffc}]}, 0x39c}, 0x1, 0x0, 0x0, 0x50}, 0x400) ioctl$auto_EXT4_IOC_CHECKPOINT(r1, 0x4004662b, &(0x7f0000000380)=0x6) write$auto(0x3, 0x0, 0xfffffdef) shutdown$auto(0x200000003, 0x2) r7 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/igmp\x00', 0x100, 0x0) r8 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), r0) sendmsg$auto_NL802154_CMD_SET_CHANNEL(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="040027bd7000fbdbdf250900000008000b00060000000800590ddb0f000008002a0045020000"], 0x2c}, 0x1, 0x0, 0x0, 0x24040800}, 0x9800) r9 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x80, 0x0) read$auto_tracing_pipe_fops_trace(r9, 0x0, 0xf0) pread64$auto(r7, 0x0, 0x40000000f42c, 0x80002) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r10 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_SMC_NETLINK_ENABLE_SEID(r10, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, 0x0, 0x1, 0x70bd29, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4805}, 0x2000c000) socket(0x1e, 0x4, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) getsockopt$auto(0xffffffffffffffff, 0x84, 0x20000001, 0x0, 0x0) 1.314608315s ago: executing program 0 (id=6518): futex$auto(0xfffffffffffffffe, 0xb, 0x47, 0x0, 0x0, 0x2) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyy2\x00', 0x100, 0x0) r1 = io_uring_setup$auto(0x7e1b, 0x0) ioctl$auto(0x3, 0x5420, 0x38) read$auto(r0, 0x0, 0x73) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x80082, 0x0) ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) r3 = syz_open_procfs$namespace(0x0, 0x0) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000400)={&(0x7f0000000080)={0x54, 0x0, 0x8, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_I_TEI={0x8, 0x8, 0xffff9eb5}, @GTPA_O_TEI={0x8, 0x9, 0x1}, @GTPA_MS_ADDR6={0x14, 0xc, @private1}, @GTPA_NET_NS_FD={0x8, 0x7, r3}, @GTPA_MS_ADDR6={0x14, 0xc, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, 0x54}, 0x1, 0x0, 0x0, 0x840}, 0x800) r4 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000480), 0x40, 0x0) r5 = bpf$auto_BPF_TOKEN_CREATE(0x24, &(0x7f00000004c0)=@prog_bind_map={0xffffffffffffffff, 0xffffffffffffffff, 0xfffffffa}, 0x9) ioctl$auto_SNDRV_TIMER_IOCTL_CREATE(r4, 0xc02054a5, &(0x7f0000000580)={0xfffffffffffffff1, r5, 0x0, "b26f5d12520629ccaa38bd800a7e0437"}) read$auto_page_owner_stack_operations_page_owner(r7, &(0x7f00000005c0)=""/77, 0x4d) getsockopt$auto_SO_KEEPALIVE(r6, 0x1, 0x9, &(0x7f0000000640)='/dev/bus/usb/006/001\x00', &(0x7f0000000680)=0x4) ioctl$auto_TUNSETDEBUG(r6, 0x400454c9, &(0x7f00000006c0)=0x41) sendmsg$auto_GTP_CMD_ECHOREQ(r6, &(0x7f0000000800)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000007c0)={&(0x7f0000000740)={0x68, 0x0, 0x100, 0x70bd27, 0x25dfdbff, {}, [@GTPA_O_TEI={0x8, 0x9, 0x14}, @GTPA_FLOW={0x6, 0x6, 0x8000}, @GTPA_FLOW={0x6, 0x6, 0x3}, @GTPA_FLOW={0x6, 0x6, 0x7}, @GTPA_MS_ADDRESS={0x8, 0x5, @initdev={0xac, 0x1e, 0x0, 0x0}}, @GTPA_NET_NS_FD={0x8, 0x7, r7}, @GTPA_MS_ADDR6={0x14, 0xc, @private1={0xfc, 0x1, '\x00', 0x1}}, @GTPA_LINK={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @rand_addr=0x64010101}]}, 0x68}, 0x1, 0x0, 0x0, 0x48014}, 0x41) write$auto_event_trigger_fops_trace(r5, &(0x7f0000000a80)="db0583082ef114840f4c40ce3abf6cbfe893130c5902aa40eeb6dbf0a65aa46e3a400c62a087772cd6e10d9bc268485c870f8f02d81f63711410", 0x3a) r8 = syz_clone(0x100000, &(0x7f0000000b40)="a9f7a3d55552f9eb0148a2fea05350e9c2970e55d22e6dc7514ca37e0f0189340b88ef424a22f4b709c103aac1454ded97f96eb614bf043994aee452d192b47fde4a75acc7", 0x45, &(0x7f0000000bc0), &(0x7f0000000c00), &(0x7f0000000c40)="47170e5969279390c0cbb3ce4890788a5d37cc837c79f8ac91ff172865d474b30975fe29aa1980ffa48e3de031d36f7cd4441dbd41f9b9131ecf3941a8b6f904afa3a2ef66e5d71b415dac54a69ada4a05e5fbe6159225d2a807f7ead1793556202c958190b95e3b63ed69db16ca362dec024f7f3ee3f59325f1f58fdeddc7ae678ea5dda0f12df160b5f0b8031137cd1bf4cc4dc4c990fbfa84930eeb37cdf0d794680db6bdec927d43839c514d350a9716ab1cf50b") ioctl$auto_XFS_IOC_FREESP(r7, 0x4030580b, &(0x7f0000000d00)={0x3, 0x6, 0x4, 0x9, 0x8, 0xffffffffffffffff}) sendmsg$auto_NL802154_CMD_SET_PAN_ID(r5, &(0x7f0000001140)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001100)={&(0x7f0000001180)=ANY=[@ANYBLOB="a0030000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0xee01, @ANYBLOB="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", @ANYRES32=r8, @ANYBLOB="050024000700000008001c00", @ANYRES32=r9, @ANYBLOB="b550e738661c4f292f45d45f859b2e54a81c4917b89a988038053a"], 0x3a0}}, 0x20000080) kcmp$auto_KCMP_FILE(0x0, r8, 0x0, r0, r2) socket(0x2a, 0x2, 0x1) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto_PPPIOCSMRRU(r1, 0x4004743b, &(0x7f0000000040)=0x10000) ioctl$auto(0x3, 0x800005411, 0x38) io_uring_setup$auto(0x1d48, &(0x7f0000000340)={0x7fffffff, 0x10, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x8, 0x1, 0x80000000, 0x100, 0x83, 0x101, 0x6, 0x8000000000000001}, {0x100, 0x1, 0x52, 0x5, 0x11, 0x101, 0x876c5, 0xc9, 0x3}}) ioctl$auto(0x3, 0x5404, 0x38) 1.221663329s ago: executing program 2 (id=6519): r0 = socket(0x2, 0x1, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) mmap$auto(0x0, 0x400008, 0x80000000df, 0x9b72, 0x2, 0x8000) openat$auto_kernel_debug_fops_orangefs_debugfs(0xffffffffffffff9c, 0x0, 0x4080, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket(0x22, 0x3, 0x0) openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, 0x0, 0x0, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fadvise64$auto_POSIX_FADV_NORMAL(0xffffffffffffffff, 0x7, 0xd, 0x0) write$auto(0x3, 0x0, 0x7fffffff) syz_genetlink_get_family_id$auto_nl80211(0x0, r0) sendmsg$auto_IEEE802154_LLSEC_LIST_SECLEVEL(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYRES16], 0x2c}, 0x1, 0x0, 0x0, 0x4000001}, 0x400c1) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x70, 0xdf, 0x9b72, 0x2, 0x80000000008000) connect$auto(0x3, 0x0, 0x55) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0) read$auto(0x3, 0x0, 0x80) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) 724.270614ms ago: executing program 0 (id=6520): r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x5) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) r2 = getpid() r3 = gettid() rt_tgsigqueueinfo$auto(r2, r3, 0x21, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000580)={{@raw=0x7fffffff, 0xf0ee, 0x20009, 0x3, "790eaa00ffff8eac2cdafc1f64010043eeb0b053030001ffff000e00", @inferred=r3}, 0x4, 0x966, 0x3, @raw=0x404, @integer={0x800000000000400e, 0x2000000b752, 0x1}, "6cc1294d63a4f1b4285854c5368de438f8cc142ef6df12bf3373a1183bedbd31b642b4051b078fa1c1c61c329794e5311121c760cb9611c78e6947a99807bcc1"}) ioctl$auto_SNDRV_CTL_IOCTL_TLV_COMMAND(r1, 0xc008551c, &(0x7f0000000000)={0x3}) 366.7443ms ago: executing program 0 (id=6521): r0 = socket(0x2, 0x1, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) mmap$auto(0x0, 0x400008, 0x80000000df, 0x9b72, 0x2, 0x8000) openat$auto_kernel_debug_fops_orangefs_debugfs(0xffffffffffffff9c, 0x0, 0x4080, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket(0x22, 0x3, 0x0) openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, 0x0, 0x0, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fadvise64$auto_POSIX_FADV_NORMAL(0xffffffffffffffff, 0x7, 0xd, 0x0) write$auto(0x3, 0x0, 0x7fffffff) syz_genetlink_get_family_id$auto_nl80211(0x0, r0) sendmsg$auto_IEEE802154_LLSEC_LIST_SECLEVEL(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x4000001}, 0x400c1) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x70, 0xdf, 0x9b72, 0x2, 0x80000000008000) connect$auto(0x3, 0x0, 0x55) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0) read$auto(0x3, 0x0, 0x80) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) 328.92737ms ago: executing program 3 (id=6522): r0 = socket(0x2, 0x1, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) mmap$auto(0x0, 0x400008, 0x80000000df, 0x9b72, 0x2, 0x8000) openat$auto_kernel_debug_fops_orangefs_debugfs(0xffffffffffffff9c, 0x0, 0x4080, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket(0x22, 0x3, 0x0) openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, 0x0, 0x0, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fadvise64$auto_POSIX_FADV_NORMAL(0xffffffffffffffff, 0x7, 0xd, 0x0) write$auto(0x3, 0x0, 0x7fffffff) syz_genetlink_get_family_id$auto_nl80211(0x0, r0) sendmsg$auto_IEEE802154_LLSEC_LIST_SECLEVEL(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYRES16, @ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x4000001}, 0x400c1) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x70, 0xdf, 0x9b72, 0x2, 0x80000000008000) connect$auto(0x3, 0x0, 0x55) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0) read$auto(0x3, 0x0, 0x80) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) 0s ago: executing program 1 (id=6523): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8842, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x400, 0x0) r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000001c0), 0x100, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000280)={{0x3, 0x1000, 0x1, 0x1, 0x4}, "654c6dbc7a4d30983899a7e1325b6a29ba1e184410ba9f74e82a3fa6c3ccf1bf"}) unshare$auto(0x40000080) write$auto(0xca, &(0x7f00000000c0)='\x04>\x00\x02\x18\x00\x00\xd3b\x01\xbd\x9b@\xb0\x00\x00\x00\x84\xa2\\\x15\xc4>\xa9\x82,\xf9y\xc7p\xf1w\xbe\xde\xe8\xc3\x01#\xcc\tF\xb6\x95\xeeH\xf8}v\xb3\xcb(\xa90Abe\xc3\x8c\xcc\xe7\xb8\x00F\x89#\xb4\xf0F\xa1\xd5\x1e\x8f\t\x9dZ~\xea\xa3\x93\xc2\x04\xe1;b\x99\x85\x00\x00\x00\xe2E\x00\x00-a\xb6n\xbc\xb4=\xf8\xce\x01\x1f]\x85|\xce\xd7\xff\xff\xd3lb\xc5\xee\xdb\xcb\xbb\xd8\x00\x80\x00\x00\xe9e\xe5\x80\x1c\x02\"\xa7&8U\xfd\xdc\x15\xae\xfa5\xb8}\x0e\xb4:\x91\xbb5\xd3{\xb2\xd0\xc0\x93=\xf8E\xceO\x1e\xd5\x8f\xdf\xaa\x1c\xfd\xb0h\xd8\xbc\xecA\xa6\xde\xd1=\xfd)d\x8f\vk\x1c+\xf7, \xf8]\xb3\xe9B\x02\f\'\xcf0\x06', 0x1ff) read$auto(r1, 0x0, 0x20) writev$auto(r0, &(0x7f0000000200)={0x0, 0x3}, 0x3) r3 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000240)='/dev/usbmon15\x00', 0x2402, 0x0) close_range$auto(r2, r3, 0x4) socket(0xf, 0x3, 0x2) socket(0x8, 0x4, 0x0) socket(0x25, 0x1, 0xa) setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28) read$auto_proc_pid_maps_operations_internal(0xffffffffffffffff, &(0x7f00000001c0)=""/7, 0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = fcntl$auto(r4, 0x8, 0x1) fcntl$auto(r4, 0x10, 0x2) r6 = socket(0xa, 0x5, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) r7 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nbd1\x00', 0x66ec3, 0x0) ioctl$auto_BLKFLSBUF(r7, 0x1261, 0x0) keyctl$auto(0x20000004, 0x0, 0x0, 0xee01, 0x8000000e) setsockopt$auto(r6, 0x10000000084, 0x7d, 0x0, 0x8) write$auto(0x3, 0x0, 0xffd8) mmap$auto(0x3, 0xff, 0x0, 0x9b74, r5, 0x8000) openat$auto_severities_coverage_fops_severity(0xffffffffffffff9c, 0x0, 0x0, 0x0) kernel console output (not intermixed with test programs): ][T28497] do_syscall_64+0xcd/0xfa0 [ 1636.389713][T28497] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1636.389727][T28497] RIP: 0033:0x7f1eb018f6c9 [ 1636.389739][T28497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1636.389753][T28497] RSP: 002b:00007f1eb10a00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1636.389767][T28497] RAX: ffffffffffffffda RBX: 00007f1eb03e5fa8 RCX: 00007f1eb018f6c9 [ 1636.389777][T28497] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1eb03e5fac [ 1636.389786][T28497] RBP: 00007f1eb03e5fa0 R08: 00007f1eb10a1000 R09: 0000000000000000 [ 1636.389794][T28497] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 1636.389803][T28497] R13: 00007f1eb03e6038 R14: 00007fffdf483e70 R15: 00007fffdf483f58 [ 1636.389823][T28497] [ 1636.905715][T28500] netlink: 'syz.3.5167': attribute type 1 has an invalid length. [ 1637.123544][T28502] CIFS mount error: No usable UNC path provided in device string! [ 1637.123544][T28502] [ 1637.140501][T28502] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1637.237009][T28506] FAULT_INJECTION: forcing a failure. [ 1637.237009][T28506] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1637.250194][T28506] CPU: 0 UID: 0 PID: 28506 Comm: syz.1.5169 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1637.250228][T28506] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1637.250236][T28506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1637.250246][T28506] Call Trace: [ 1637.250251][T28506] [ 1637.250257][T28506] dump_stack_lvl+0x16c/0x1f0 [ 1637.250279][T28506] should_fail_ex+0x512/0x640 [ 1637.250303][T28506] should_fail_futex+0x4c/0x60 [ 1637.250322][T28506] futex_lock_pi_atomic+0x101/0xd50 [ 1637.250348][T28506] futex_lock_pi+0x23f/0x7c0 [ 1637.250373][T28506] ? __pfx_futex_lock_pi+0x10/0x10 [ 1637.250393][T28506] ? __futex_wait+0x24b/0x2f0 [ 1637.250421][T28506] ? futex_private_hash_put+0xd5/0x190 [ 1637.250441][T28506] ? __pfx_futex_wake_mark+0x10/0x10 [ 1637.250467][T28506] ? vfs_write+0x15d/0x11d0 [ 1637.250488][T28506] do_futex+0x11a/0x350 [ 1637.250507][T28506] ? __pfx_do_futex+0x10/0x10 [ 1637.250531][T28506] __x64_sys_futex+0x1e0/0x4c0 [ 1637.250552][T28506] ? __pfx___x64_sys_futex+0x10/0x10 [ 1637.250571][T28506] ? xfd_validate_state+0x61/0x180 [ 1637.250590][T28506] ? __pfx_ksys_write+0x10/0x10 [ 1637.250610][T28506] do_syscall_64+0xcd/0xfa0 [ 1637.250628][T28506] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1637.250643][T28506] RIP: 0033:0x7f1eb018f6c9 [ 1637.250655][T28506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1637.250670][T28506] RSP: 002b:00007f1eb10a0038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1637.250684][T28506] RAX: ffffffffffffffda RBX: 00007f1eb03e5fa0 RCX: 00007f1eb018f6c9 [ 1637.250694][T28506] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1637.250702][T28506] RBP: 00007f1eb0211f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1637.250711][T28506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1637.250719][T28506] R13: 00007f1eb03e6038 R14: 00007f1eb03e5fa0 R15: 00007fffdf483f58 [ 1637.250738][T28506] [ 1638.989787][T28516] KVM: debugfs: duplicate directory 28516-3 [ 1639.104531][T28518] sd 0:0:1:0: PR command failed: 1026 [ 1639.109949][T28518] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 1639.241804][T28518] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 1639.425717][T28530] input: 00 [ 1639.425717][T28530] as /devices/virtual/input/input178 [ 1639.471622][T28530] FAULT_INJECTION: forcing a failure. [ 1639.471622][T28530] name failslab, interval 1, probability 0, space 0, times 0 [ 1639.536907][T28530] CPU: 0 UID: 0 PID: 28530 Comm: syz.0.5175 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1639.536948][T28530] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1639.536957][T28530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1639.536966][T28530] Call Trace: [ 1639.536972][T28530] [ 1639.536978][T28530] dump_stack_lvl+0x16c/0x1f0 [ 1639.537002][T28530] should_fail_ex+0x512/0x640 [ 1639.537024][T28530] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 1639.537043][T28530] should_failslab+0xc2/0x120 [ 1639.537063][T28530] kmem_cache_alloc_noprof+0x75/0x6e0 [ 1639.537078][T28530] ? __kernfs_new_node+0xd2/0x8e0 [ 1639.537100][T28530] ? __kernfs_new_node+0xd2/0x8e0 [ 1639.537117][T28530] __kernfs_new_node+0xd2/0x8e0 [ 1639.537136][T28530] ? kernfs_add_one+0x37d/0x840 [ 1639.537155][T28530] ? __pfx___kernfs_new_node+0x10/0x10 [ 1639.537178][T28530] ? find_held_lock+0x2b/0x80 [ 1639.537194][T28530] ? kernfs_root+0xee/0x2a0 [ 1639.537216][T28530] kernfs_new_node+0x13c/0x1e0 [ 1639.537240][T28530] __kernfs_create_file+0x53/0x350 [ 1639.537257][T28530] sysfs_add_file_mode_ns+0x207/0x3c0 [ 1639.537279][T28530] sysfs_create_file_ns+0x13d/0x1d0 [ 1639.537297][T28530] ? __pfx_sysfs_create_file_ns+0x10/0x10 [ 1639.537313][T28530] ? down_read+0x13d/0x480 [ 1639.537333][T28530] ? __pfx___up_read+0x10/0x10 [ 1639.537354][T28530] ? acpi_device_notify+0x351/0x480 [ 1639.537381][T28530] device_create_file+0xf2/0x1e0 [ 1639.537399][T28530] device_add+0x2bf/0x1aa0 [ 1639.537415][T28530] ? __pfx_device_add+0x10/0x10 [ 1639.537436][T28530] ? __pfx_exact_lock+0x10/0x10 [ 1639.537456][T28530] ? kobject_get+0xbb/0x150 [ 1639.537476][T28530] cdev_device_add+0xc2/0x1e0 [ 1639.537495][T28530] evdev_connect+0x3a4/0x4c0 [ 1639.537514][T28530] input_attach_handler.isra.0+0x176/0x250 [ 1639.537533][T28530] input_register_device+0xab9/0x1180 [ 1639.537549][T28530] ? input_ff_create+0x1c1/0x350 [ 1639.537571][T28530] uinput_ioctl_handler.isra.0+0x1357/0x1df0 [ 1639.537593][T28530] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 1639.537614][T28530] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 1639.537639][T28530] ? find_held_lock+0x2b/0x80 [ 1639.537664][T28530] ? __pfx_uinput_ioctl+0x10/0x10 [ 1639.537684][T28530] __x64_sys_ioctl+0x18e/0x210 [ 1639.537706][T28530] do_syscall_64+0xcd/0xfa0 [ 1639.537725][T28530] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1639.537740][T28530] RIP: 0033:0x7f6ddff8f6c9 [ 1639.537753][T28530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1639.537767][T28530] RSP: 002b:00007f6de0d8a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1639.537781][T28530] RAX: ffffffffffffffda RBX: 00007f6de01e5fa0 RCX: 00007f6ddff8f6c9 [ 1639.537791][T28530] RDX: 000000000000ffe4 RSI: 0000000000005501 RDI: 000000000000000b [ 1639.537799][T28530] RBP: 00007f6de0011f91 R08: 0000000000000000 R09: 0000000000000000 [ 1639.537808][T28530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1639.537818][T28530] R13: 00007f6de01e6038 R14: 00007f6de01e5fa0 R15: 00007fffd762e9c8 [ 1639.537839][T28530] [ 1641.319612][T28530] input: failed to attach handler evdev to device input178, error: -12 [ 1641.632436][T28548] FAULT_INJECTION: forcing a failure. [ 1641.632436][T28548] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1641.645322][T28548] CPU: 0 UID: 0 PID: 28548 Comm: syz.0.5181 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1641.645356][T28548] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1641.645365][T28548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1641.645374][T28548] Call Trace: [ 1641.645380][T28548] [ 1641.645386][T28548] dump_stack_lvl+0x16c/0x1f0 [ 1641.645408][T28548] should_fail_ex+0x512/0x640 [ 1641.645433][T28548] should_fail_futex+0x4c/0x60 [ 1641.645452][T28548] futex_lock_pi_atomic+0x148/0xd50 [ 1641.645479][T28548] futex_lock_pi+0x23f/0x7c0 [ 1641.645503][T28548] ? __pfx_futex_lock_pi+0x10/0x10 [ 1641.645523][T28548] ? preempt_schedule_common+0x44/0xc0 [ 1641.645541][T28548] ? preempt_schedule_thunk+0x16/0x30 [ 1641.645570][T28548] ? __pfx_try_to_wake_up+0x10/0x10 [ 1641.645589][T28548] ? futex_private_hash_put+0xd5/0x190 [ 1641.645610][T28548] ? __pfx_futex_wake_mark+0x10/0x10 [ 1641.645637][T28548] ? ksys_write+0x190/0x250 [ 1641.645657][T28548] do_futex+0x11a/0x350 [ 1641.645676][T28548] ? __pfx_do_futex+0x10/0x10 [ 1641.645706][T28548] __x64_sys_futex+0x1e0/0x4c0 [ 1641.645726][T28548] ? fput+0x9b/0xd0 [ 1641.645745][T28548] ? __pfx___x64_sys_futex+0x10/0x10 [ 1641.645764][T28548] ? xfd_validate_state+0x61/0x180 [ 1641.645785][T28548] ? __pfx_ksys_write+0x10/0x10 [ 1641.645806][T28548] do_syscall_64+0xcd/0xfa0 [ 1641.645825][T28548] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1641.645839][T28548] RIP: 0033:0x7f6ddff8f6c9 [ 1641.645852][T28548] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1641.645866][T28548] RSP: 002b:00007f6de0d8a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1641.645883][T28548] RAX: ffffffffffffffda RBX: 00007f6de01e5fa0 RCX: 00007f6ddff8f6c9 [ 1641.645894][T28548] RDX: 000000000000001f RSI: 0000000000000006 RDI: 0000000000000000 [ 1641.645903][T28548] RBP: 00007f6de0011f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1641.645912][T28548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1641.645921][T28548] R13: 00007f6de01e6038 R14: 00007f6de01e5fa0 R15: 00007fffd762e9c8 [ 1641.645944][T28548] [ 1642.210193][T28555] sg_write: data in/out 8156/1 bytes for SCSI command 0x0-- guessing data in; [ 1642.210193][T28555] program syz.3.5183 not setting count and/or reply_len properly [ 1642.710939][T28563] netlink: 330 bytes leftover after parsing attributes in process `syz.1.5186'. [ 1643.228312][T28579] random: crng reseeded on system resumption [ 1643.753160][T28585] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1643.798476][T28585] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1643.848682][T28585] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1643.876729][T28585] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1644.501727][T28599] FAULT_INJECTION: forcing a failure. [ 1644.501727][T28599] name failslab, interval 1, probability 0, space 0, times 0 [ 1644.635572][T28599] CPU: 0 UID: 0 PID: 28599 Comm: syz.0.5196 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1644.635606][T28599] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1644.635615][T28599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1644.635623][T28599] Call Trace: [ 1644.635629][T28599] [ 1644.635634][T28599] dump_stack_lvl+0x16c/0x1f0 [ 1644.635657][T28599] should_fail_ex+0x512/0x640 [ 1644.635678][T28599] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 1644.635696][T28599] should_failslab+0xc2/0x120 [ 1644.635716][T28599] kmem_cache_alloc_noprof+0x75/0x6e0 [ 1644.635731][T28599] ? seq_open+0x55/0x170 [ 1644.635753][T28599] ? seq_open+0x55/0x170 [ 1644.635770][T28599] seq_open+0x55/0x170 [ 1644.635789][T28599] __seq_open_private+0x3e/0xd0 [ 1644.635811][T28599] tracing_open+0x25f/0xdf0 [ 1644.635833][T28599] do_dentry_open+0x982/0x1530 [ 1644.635851][T28599] ? __pfx_tracing_open+0x10/0x10 [ 1644.635872][T28599] vfs_open+0x82/0x3f0 [ 1644.635895][T28599] path_openat+0x1de4/0x2cb0 [ 1644.635917][T28599] ? __pfx_path_openat+0x10/0x10 [ 1644.635934][T28599] ? __lock_acquire+0xb8a/0x1c90 [ 1644.635957][T28599] do_filp_open+0x20b/0x470 [ 1644.635973][T28599] ? __pfx_do_filp_open+0x10/0x10 [ 1644.636003][T28599] ? alloc_fd+0x471/0x7d0 [ 1644.636023][T28599] do_sys_openat2+0x11b/0x1d0 [ 1644.636043][T28599] ? __pfx_do_sys_openat2+0x10/0x10 [ 1644.636071][T28599] __x64_sys_openat+0x174/0x210 [ 1644.636092][T28599] ? __pfx___x64_sys_openat+0x10/0x10 [ 1644.636121][T28599] do_syscall_64+0xcd/0xfa0 [ 1644.636140][T28599] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1644.636155][T28599] RIP: 0033:0x7f6ddff8f6c9 [ 1644.636166][T28599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1644.636180][T28599] RSP: 002b:00007f6de0d8a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1644.636195][T28599] RAX: ffffffffffffffda RBX: 00007f6de01e5fa0 RCX: 00007f6ddff8f6c9 [ 1644.636204][T28599] RDX: 0000000000002040 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 1644.636213][T28599] RBP: 00007f6de0011f91 R08: 0000000000000000 R09: 0000000000000000 [ 1644.636222][T28599] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1644.636230][T28599] R13: 00007f6de01e6038 R14: 00007f6de01e5fa0 R15: 00007fffd762e9c8 [ 1644.636250][T28599] [ 1645.548156][T28610] FAULT_INJECTION: forcing a failure. [ 1645.548156][T28610] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1645.608830][T28610] CPU: 0 UID: 0 PID: 28610 Comm: syz.2.5198 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1645.608863][T28610] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1645.608872][T28610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1645.608882][T28610] Call Trace: [ 1645.608887][T28610] [ 1645.608893][T28610] dump_stack_lvl+0x16c/0x1f0 [ 1645.608916][T28610] should_fail_ex+0x512/0x640 [ 1645.608941][T28610] get_futex_key+0x1d0/0x1560 [ 1645.608963][T28610] ? __pfx_get_futex_key+0x10/0x10 [ 1645.608988][T28610] futex_wake+0xea/0x530 [ 1645.609009][T28610] ? rcu_is_watching+0x12/0xc0 [ 1645.609026][T28610] ? __pfx_futex_wake+0x10/0x10 [ 1645.609050][T28610] ? kmem_cache_free+0x2d4/0x6c0 [ 1645.609065][T28610] ? putname+0x154/0x1a0 [ 1645.609088][T28610] do_futex+0x1e3/0x350 [ 1645.609107][T28610] ? __pfx_do_futex+0x10/0x10 [ 1645.609131][T28610] __x64_sys_futex+0x1e0/0x4c0 [ 1645.609151][T28610] ? __x64_sys_openat+0x174/0x210 [ 1645.609171][T28610] ? __pfx___x64_sys_futex+0x10/0x10 [ 1645.609198][T28610] do_syscall_64+0xcd/0xfa0 [ 1645.609216][T28610] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1645.609231][T28610] RIP: 0033:0x7f9986f8f6c9 [ 1645.609252][T28610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1645.609267][T28610] RSP: 002b:00007f9987d8a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1645.609282][T28610] RAX: ffffffffffffffda RBX: 00007f99871e6098 RCX: 00007f9986f8f6c9 [ 1645.609292][T28610] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f99871e609c [ 1645.609302][T28610] RBP: 00007f99871e6090 R08: 00007f9987dac000 R09: 0000000000000000 [ 1645.609311][T28610] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000 [ 1645.609320][T28610] R13: 00007f99871e6128 R14: 00007ffd04f8bce0 R15: 00007ffd04f8bdc8 [ 1645.609341][T28610] [ 1646.088767][T14612] Bluetooth: hci1: command 0x0c1a tx timeout [ 1646.094894][T14612] Bluetooth: hci3: command 0x041b tx timeout [ 1646.100938][T14612] Bluetooth: hci4: command 0x0c1a tx timeout [ 1646.108234][T14612] Bluetooth: hci0: command 0x0c1a tx timeout [ 1647.039264][T28636] netlink: 338 bytes leftover after parsing attributes in process `syz.0.5205'. [ 1647.114017][T28636] netlink: 338 bytes leftover after parsing attributes in process `syz.0.5205'. [ 1647.987822][T28639] netlink: 134 bytes leftover after parsing attributes in process `syz.0.5205'. [ 1648.760925][T28663] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5212'. [ 1649.339652][T28668] netlink: 338 bytes leftover after parsing attributes in process `syz.1.5214'. [ 1649.399625][T28669] netlink: 338 bytes leftover after parsing attributes in process `syz.1.5214'. [ 1650.064866][T28689] ptrace attach of "./syz-executor exec"[26512] was attempted by ""[28689] [ 1650.884795][T28713] FAULT_INJECTION: forcing a failure. [ 1650.884795][T28713] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1650.967802][T20068] team0: left allmulticast mode [ 1650.982894][T28713] CPU: 0 UID: 0 PID: 28713 Comm: syz.0.5226 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1650.982928][T28713] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1650.982937][T28713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1650.982946][T28713] Call Trace: [ 1650.982951][T28713] [ 1650.982958][T28713] dump_stack_lvl+0x16c/0x1f0 [ 1650.982981][T28713] should_fail_ex+0x512/0x640 [ 1650.983007][T28713] get_futex_key+0x1d0/0x1560 [ 1650.983029][T28713] ? __pfx_get_futex_key+0x10/0x10 [ 1650.983055][T28713] futex_wake+0xea/0x530 [ 1650.983076][T28713] ? rcu_is_watching+0x12/0xc0 [ 1650.983093][T28713] ? __pfx_futex_wake+0x10/0x10 [ 1650.983116][T28713] ? kmem_cache_free+0x2d4/0x6c0 [ 1650.983131][T28713] ? putname+0x154/0x1a0 [ 1650.983154][T28713] do_futex+0x1e3/0x350 [ 1650.983173][T28713] ? __pfx_do_futex+0x10/0x10 [ 1650.983197][T28713] __x64_sys_futex+0x1e0/0x4c0 [ 1650.983218][T28713] ? __x64_sys_openat+0x174/0x210 [ 1650.983238][T28713] ? __pfx___x64_sys_futex+0x10/0x10 [ 1650.983265][T28713] do_syscall_64+0xcd/0xfa0 [ 1650.983283][T28713] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1650.983298][T28713] RIP: 0033:0x7f6ddff8f6c9 [ 1650.983310][T28713] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1650.983324][T28713] RSP: 002b:00007f6de0d8a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1650.983339][T28713] RAX: ffffffffffffffda RBX: 00007f6de01e5fa8 RCX: 00007f6ddff8f6c9 [ 1650.983349][T28713] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6de01e5fac [ 1650.983358][T28713] RBP: 00007f6de01e5fa0 R08: 00007f6de0d8b000 R09: 0000000000000000 [ 1650.983367][T28713] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 1650.983376][T28713] R13: 00007f6de01e6038 R14: 00007fffd762e8e0 R15: 00007fffd762e9c8 [ 1650.983396][T28713] [ 1651.378637][T20068] team_slave_0: left allmulticast mode [ 1651.384394][T20068] team_slave_1: left allmulticast mode [ 1651.416128][T20068] team0: left promiscuous mode [ 1651.434558][T20068] team_slave_0: left promiscuous mode [ 1651.440125][T20068] team_slave_1: left promiscuous mode [ 1651.445688][T20068] bridge0: port 3(team0) entered disabled state [ 1651.798763][T20068] bridge_slave_0: left allmulticast mode [ 1651.846768][T20068] bridge_slave_0: left promiscuous mode [ 1651.852495][T20068] bridge0: port 1(bridge_slave_0) entered disabled state [ 1651.993686][T28735] netlink: 334 bytes leftover after parsing attributes in process `syz.0.5232'. [ 1653.416625][T20068] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1653.452707][T20068] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1653.479917][T20068] bond0 (unregistering): Released all slaves [ 1654.382728][T20068] hsr_slave_0: left promiscuous mode [ 1654.438121][T20068] hsr_slave_1: left promiscuous mode [ 1654.502949][T20068] veth1_vlan: left promiscuous mode [ 1654.531726][T20068] veth0_vlan: left promiscuous mode [ 1654.824526][T28777] FAULT_INJECTION: forcing a failure. [ 1654.824526][T28777] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1654.838299][T28777] CPU: 0 UID: 0 PID: 28777 Comm: syz.1.5241 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1654.838332][T28777] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1654.838341][T28777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1654.838350][T28777] Call Trace: [ 1654.838355][T28777] [ 1654.838361][T28777] dump_stack_lvl+0x16c/0x1f0 [ 1654.838384][T28777] should_fail_ex+0x512/0x640 [ 1654.838414][T28777] should_fail_futex+0x4c/0x60 [ 1654.838433][T28777] futex_lock_pi_atomic+0x101/0xd50 [ 1654.838459][T28777] futex_lock_pi+0x23f/0x7c0 [ 1654.838484][T28777] ? __pfx_futex_lock_pi+0x10/0x10 [ 1654.838505][T28777] ? __futex_wait+0x24b/0x2f0 [ 1654.838520][T28777] ? lockdep_hardirqs_on+0x7c/0x110 [ 1654.838548][T28777] ? futex_private_hash_put+0xd5/0x190 [ 1654.838568][T28777] ? __pfx_futex_wake_mark+0x10/0x10 [ 1654.838595][T28777] ? vfs_write+0x15d/0x11d0 [ 1654.838615][T28777] do_futex+0x11a/0x350 [ 1654.838633][T28777] ? __pfx_do_futex+0x10/0x10 [ 1654.838657][T28777] __x64_sys_futex+0x1e0/0x4c0 [ 1654.838678][T28777] ? __pfx___x64_sys_futex+0x10/0x10 [ 1654.838697][T28777] ? xfd_validate_state+0x61/0x180 [ 1654.838716][T28777] ? __pfx_ksys_write+0x10/0x10 [ 1654.838736][T28777] do_syscall_64+0xcd/0xfa0 [ 1654.838755][T28777] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1654.838770][T28777] RIP: 0033:0x7f1eb018f6c9 [ 1654.838792][T28777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1654.838807][T28777] RSP: 002b:00007f1eb107f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1654.838821][T28777] RAX: ffffffffffffffda RBX: 00007f1eb03e6090 RCX: 00007f1eb018f6c9 [ 1654.838831][T28777] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1654.838840][T28777] RBP: 00007f1eb0211f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1654.838850][T28777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1654.838860][T28777] R13: 00007f1eb03e6128 R14: 00007f1eb03e6090 R15: 00007fffdf483f58 [ 1654.838880][T28777] [ 1655.055585][T28779] FAULT_INJECTION: forcing a failure. [ 1655.055585][T28779] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1655.069427][T28779] CPU: 0 UID: 0 PID: 28779 Comm: syz.0.5242 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1655.069463][T28779] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1655.069472][T28779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1655.069482][T28779] Call Trace: [ 1655.069487][T28779] [ 1655.069493][T28779] dump_stack_lvl+0x16c/0x1f0 [ 1655.069517][T28779] should_fail_ex+0x512/0x640 [ 1655.069541][T28779] should_fail_futex+0x4c/0x60 [ 1655.069561][T28779] futex_lock_pi_atomic+0x101/0xd50 [ 1655.069587][T28779] futex_lock_pi+0x23f/0x7c0 [ 1655.069611][T28779] ? __pfx_futex_lock_pi+0x10/0x10 [ 1655.069632][T28779] ? __futex_wait+0x24b/0x2f0 [ 1655.069659][T28779] ? futex_private_hash_put+0xd5/0x190 [ 1655.069680][T28779] ? __pfx_futex_wake_mark+0x10/0x10 [ 1655.069706][T28779] ? vfs_write+0x15d/0x11d0 [ 1655.069727][T28779] do_futex+0x11a/0x350 [ 1655.069746][T28779] ? __pfx_do_futex+0x10/0x10 [ 1655.069770][T28779] __x64_sys_futex+0x1e0/0x4c0 [ 1655.069791][T28779] ? __pfx___x64_sys_futex+0x10/0x10 [ 1655.069810][T28779] ? xfd_validate_state+0x61/0x180 [ 1655.069829][T28779] ? __pfx_ksys_write+0x10/0x10 [ 1655.069850][T28779] do_syscall_64+0xcd/0xfa0 [ 1655.069869][T28779] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1655.069883][T28779] RIP: 0033:0x7f6ddff8f6c9 [ 1655.069896][T28779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1655.069910][T28779] RSP: 002b:00007f6de0d69038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1655.069924][T28779] RAX: ffffffffffffffda RBX: 00007f6de01e6090 RCX: 00007f6ddff8f6c9 [ 1655.069933][T28779] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1655.069942][T28779] RBP: 00007f6de0011f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1655.069951][T28779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1655.069959][T28779] R13: 00007f6de01e6128 R14: 00007f6de01e6090 R15: 00007fffd762e9c8 [ 1655.069979][T28779] [ 1656.260474][T20068] team0 (unregistering): Port device team_slave_1 removed [ 1656.453251][T20068] team0 (unregistering): Port device team_slave_0 removed [ 1658.013147][T28805] FAULT_INJECTION: forcing a failure. [ 1658.013147][T28805] name failslab, interval 1, probability 0, space 0, times 0 [ 1658.082189][T28805] CPU: 0 UID: 0 PID: 28805 Comm: syz.1.5249 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1658.082224][T28805] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1658.082233][T28805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1658.082242][T28805] Call Trace: [ 1658.082248][T28805] [ 1658.082254][T28805] dump_stack_lvl+0x16c/0x1f0 [ 1658.082276][T28805] should_fail_ex+0x512/0x640 [ 1658.082298][T28805] ? __kmalloc_cache_noprof+0x5f/0x780 [ 1658.082315][T28805] should_failslab+0xc2/0x120 [ 1658.082335][T28805] __kmalloc_cache_noprof+0x72/0x780 [ 1658.082349][T28805] ? bus_add_driver+0x92/0x690 [ 1658.082371][T28805] ? bus_add_driver+0x92/0x690 [ 1658.082387][T28805] bus_add_driver+0x92/0x690 [ 1658.082406][T28805] driver_register+0x15c/0x4b0 [ 1658.082429][T28805] usb_gadget_register_driver_owner+0x132/0x330 [ 1658.082451][T28805] raw_ioctl+0x17d0/0x2c30 [ 1658.082476][T28805] ? __pfx_raw_ioctl+0x10/0x10 [ 1658.082498][T28805] ? __pfx_raw_ioctl+0x10/0x10 [ 1658.082518][T28805] __x64_sys_ioctl+0x18e/0x210 [ 1658.082541][T28805] do_syscall_64+0xcd/0xfa0 [ 1658.082560][T28805] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1658.082576][T28805] RIP: 0033:0x7f1eb018f6c9 [ 1658.082588][T28805] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1658.082602][T28805] RSP: 002b:00007f1eb10a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1658.082616][T28805] RAX: ffffffffffffffda RBX: 00007f1eb03e5fa0 RCX: 00007f1eb018f6c9 [ 1658.082626][T28805] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000003 [ 1658.082634][T28805] RBP: 00007f1eb10a0090 R08: 0000000000000000 R09: 0000000000000000 [ 1658.082643][T28805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1658.082651][T28805] R13: 00007f1eb03e6038 R14: 00007f1eb03e5fa0 R15: 00007fffdf483f58 [ 1658.082671][T28805] [ 1658.082678][T28805] UDC core: USB Raw Gadget: driver registration failed: -12 [ 1658.757600][T28815] netlink: 334 bytes leftover after parsing attributes in process `syz.2.5253'. [ 1658.836066][T28815] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1658.862658][T28815] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1658.997803][T28805] misc raw-gadget: fail, usb_gadget_register_driver returned -12 [ 1659.258153][T28823] FAULT_INJECTION: forcing a failure. [ 1659.258153][T28823] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1659.271078][T28823] CPU: 0 UID: 0 PID: 28823 Comm: syz.2.5256 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1659.271113][T28823] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1659.271122][T28823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1659.271131][T28823] Call Trace: [ 1659.271137][T28823] [ 1659.271142][T28823] dump_stack_lvl+0x16c/0x1f0 [ 1659.271166][T28823] should_fail_ex+0x512/0x640 [ 1659.271198][T28823] should_fail_futex+0x4c/0x60 [ 1659.271217][T28823] futex_lock_pi_atomic+0x101/0xd50 [ 1659.271244][T28823] futex_lock_pi+0x23f/0x7c0 [ 1659.271270][T28823] ? __pfx_futex_lock_pi+0x10/0x10 [ 1659.271290][T28823] ? __futex_wait+0x24b/0x2f0 [ 1659.271306][T28823] ? lockdep_hardirqs_on+0x7c/0x110 [ 1659.271334][T28823] ? futex_private_hash_put+0xd5/0x190 [ 1659.271355][T28823] ? __pfx_futex_wake_mark+0x10/0x10 [ 1659.271382][T28823] ? vfs_write+0x15d/0x11d0 [ 1659.271402][T28823] do_futex+0x11a/0x350 [ 1659.271421][T28823] ? __pfx_do_futex+0x10/0x10 [ 1659.271445][T28823] __x64_sys_futex+0x1e0/0x4c0 [ 1659.271466][T28823] ? __pfx___x64_sys_futex+0x10/0x10 [ 1659.271485][T28823] ? xfd_validate_state+0x61/0x180 [ 1659.271504][T28823] ? __pfx_ksys_write+0x10/0x10 [ 1659.271525][T28823] do_syscall_64+0xcd/0xfa0 [ 1659.271544][T28823] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1659.271558][T28823] RIP: 0033:0x7f9986f8f6c9 [ 1659.271572][T28823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1659.271586][T28823] RSP: 002b:00007f9987dab038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1659.271600][T28823] RAX: ffffffffffffffda RBX: 00007f99871e5fa0 RCX: 00007f9986f8f6c9 [ 1659.271610][T28823] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1659.271619][T28823] RBP: 00007f9987011f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1659.271628][T28823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1659.271637][T28823] R13: 00007f99871e6038 R14: 00007f99871e5fa0 R15: 00007ffd04f8bdc8 [ 1659.271657][T28823] [ 1660.078568][T28830] Line length is too long: Should be less than 4094 [ 1660.559692][T28824] Process accounting paused [ 1661.801581][T28864] FAULT_INJECTION: forcing a failure. [ 1661.801581][T28864] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1661.815358][T28864] CPU: 0 UID: 0 PID: 28864 Comm: syz.3.5267 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1661.815391][T28864] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1661.815400][T28864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1661.815409][T28864] Call Trace: [ 1661.815414][T28864] [ 1661.815420][T28864] dump_stack_lvl+0x16c/0x1f0 [ 1661.815444][T28864] should_fail_ex+0x512/0x640 [ 1661.815469][T28864] should_fail_futex+0x4c/0x60 [ 1661.815488][T28864] futex_lock_pi_atomic+0x101/0xd50 [ 1661.815514][T28864] futex_lock_pi+0x23f/0x7c0 [ 1661.815540][T28864] ? __pfx_futex_lock_pi+0x10/0x10 [ 1661.815560][T28864] ? __futex_wait+0x24b/0x2f0 [ 1661.815588][T28864] ? futex_private_hash_put+0xd5/0x190 [ 1661.815608][T28864] ? __pfx_futex_wake_mark+0x10/0x10 [ 1661.815634][T28864] ? vfs_write+0x15d/0x11d0 [ 1661.815654][T28864] do_futex+0x11a/0x350 [ 1661.815679][T28864] ? __pfx_do_futex+0x10/0x10 [ 1661.815703][T28864] __x64_sys_futex+0x1e0/0x4c0 [ 1661.815726][T28864] ? __pfx___x64_sys_futex+0x10/0x10 [ 1661.815745][T28864] ? xfd_validate_state+0x61/0x180 [ 1661.815765][T28864] ? __pfx_ksys_write+0x10/0x10 [ 1661.815786][T28864] do_syscall_64+0xcd/0xfa0 [ 1661.815805][T28864] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1661.815820][T28864] RIP: 0033:0x7f8f7338f6c9 [ 1661.815832][T28864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1661.815847][T28864] RSP: 002b:00007f8f74231038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1661.815861][T28864] RAX: ffffffffffffffda RBX: 00007f8f735e5fa0 RCX: 00007f8f7338f6c9 [ 1661.815870][T28864] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1661.815879][T28864] RBP: 00007f8f73411f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1661.815887][T28864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1661.815896][T28864] R13: 00007f8f735e6038 R14: 00007f8f735e5fa0 R15: 00007fffff0e33d8 [ 1661.815916][T28864] [ 1663.125147][T28890] FAULT_INJECTION: forcing a failure. [ 1663.125147][T28890] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1663.217075][T28890] CPU: 0 UID: 0 PID: 28890 Comm: syz.1.5273 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1663.217108][T28890] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1663.217116][T28890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1663.217125][T28890] Call Trace: [ 1663.217130][T28890] [ 1663.217136][T28890] dump_stack_lvl+0x16c/0x1f0 [ 1663.217159][T28890] should_fail_ex+0x512/0x640 [ 1663.217184][T28890] _copy_from_user+0x2e/0xd0 [ 1663.217207][T28890] copy_msghdr_from_user+0x98/0x160 [ 1663.217224][T28890] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 1663.217241][T28890] ? kfree+0x252/0x6d0 [ 1663.217254][T28890] ? __lock_acquire+0x622/0x1c90 [ 1663.217277][T28890] ___sys_recvmsg+0xdb/0x1a0 [ 1663.217291][T28890] ? __pfx____sys_recvmsg+0x10/0x10 [ 1663.217317][T28890] ? __pfx___might_resched+0x10/0x10 [ 1663.217336][T28890] do_recvmmsg+0x2fe/0x750 [ 1663.217353][T28890] ? __pfx_do_recvmmsg+0x10/0x10 [ 1663.217372][T28890] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 1663.217397][T28890] ? __fget_files+0x20e/0x3c0 [ 1663.217417][T28890] __x64_sys_recvmmsg+0x22a/0x280 [ 1663.217434][T28890] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 1663.217455][T28890] do_syscall_64+0xcd/0xfa0 [ 1663.217474][T28890] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1663.217489][T28890] RIP: 0033:0x7f1eb018f6c9 [ 1663.217501][T28890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1663.217516][T28890] RSP: 002b:00007f1eb105e038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1663.217530][T28890] RAX: ffffffffffffffda RBX: 00007f1eb03e6180 RCX: 00007f1eb018f6c9 [ 1663.217540][T28890] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 1663.217548][T28890] RBP: 00007f1eb105e090 R08: 0000000000000000 R09: 0000000000000000 [ 1663.217564][T28890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1663.217573][T28890] R13: 00007f1eb03e6218 R14: 00007f1eb03e6180 R15: 00007fffdf483f58 [ 1663.217592][T28890] [ 1663.425931][ C0] vkms_vblank_simulate: vblank timer overrun [ 1663.879513][T28896] delete_channel: no stack [ 1664.190770][T28902] netlink: 'syz.3.5277': attribute type 1 has an invalid length. [ 1664.458955][T28909] FAULT_INJECTION: forcing a failure. [ 1664.458955][T28909] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1664.471913][T28909] CPU: 0 UID: 0 PID: 28909 Comm: syz.3.5280 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1664.471946][T28909] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1664.471954][T28909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1664.471963][T28909] Call Trace: [ 1664.471969][T28909] [ 1664.471975][T28909] dump_stack_lvl+0x16c/0x1f0 [ 1664.471998][T28909] should_fail_ex+0x512/0x640 [ 1664.472023][T28909] should_fail_futex+0x4c/0x60 [ 1664.472042][T28909] futex_lock_pi_atomic+0x101/0xd50 [ 1664.472068][T28909] futex_lock_pi+0x23f/0x7c0 [ 1664.472092][T28909] ? __pfx_futex_lock_pi+0x10/0x10 [ 1664.472113][T28909] ? __futex_wait+0x24b/0x2f0 [ 1664.472141][T28909] ? futex_private_hash_put+0xd5/0x190 [ 1664.472161][T28909] ? __pfx_futex_wake_mark+0x10/0x10 [ 1664.472188][T28909] ? vfs_write+0x15d/0x11d0 [ 1664.472208][T28909] do_futex+0x11a/0x350 [ 1664.472227][T28909] ? __pfx_do_futex+0x10/0x10 [ 1664.472251][T28909] __x64_sys_futex+0x1e0/0x4c0 [ 1664.472272][T28909] ? __pfx___x64_sys_futex+0x10/0x10 [ 1664.472291][T28909] ? xfd_validate_state+0x61/0x180 [ 1664.472310][T28909] ? __pfx_ksys_write+0x10/0x10 [ 1664.472331][T28909] do_syscall_64+0xcd/0xfa0 [ 1664.472350][T28909] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1664.472365][T28909] RIP: 0033:0x7f8f7338f6c9 [ 1664.472377][T28909] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1664.472392][T28909] RSP: 002b:00007f8f74231038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1664.472406][T28909] RAX: ffffffffffffffda RBX: 00007f8f735e5fa0 RCX: 00007f8f7338f6c9 [ 1664.472423][T28909] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1664.472432][T28909] RBP: 00007f8f73411f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1664.472442][T28909] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1664.472451][T28909] R13: 00007f8f735e6038 R14: 00007f8f735e5fa0 R15: 00007fffff0e33d8 [ 1664.472476][T28909] [ 1664.677821][ C0] vkms_vblank_simulate: vblank timer overrun [ 1665.090564][T28916] FAULT_INJECTION: forcing a failure. [ 1665.090564][T28916] name failslab, interval 1, probability 0, space 0, times 0 [ 1665.181005][T28916] CPU: 0 UID: 0 PID: 28916 Comm: syz.1.5281 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1665.181041][T28916] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1665.181049][T28916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1665.181058][T28916] Call Trace: [ 1665.181064][T28916] [ 1665.181070][T28916] dump_stack_lvl+0x16c/0x1f0 [ 1665.181092][T28916] should_fail_ex+0x512/0x640 [ 1665.181115][T28916] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 1665.181131][T28916] should_failslab+0xc2/0x120 [ 1665.181151][T28916] kmem_cache_alloc_noprof+0x75/0x6e0 [ 1665.181167][T28916] ? skb_clone+0x190/0x3f0 [ 1665.181185][T28916] ? skb_clone+0x190/0x3f0 [ 1665.181198][T28916] skb_clone+0x190/0x3f0 [ 1665.181213][T28916] netlink_deliver_tap+0xabd/0xd30 [ 1665.181234][T28916] netlink_unicast+0x64c/0x870 [ 1665.181253][T28916] ? __pfx_netlink_unicast+0x10/0x10 [ 1665.181276][T28916] netlink_sendmsg+0x8c8/0xdd0 [ 1665.181295][T28916] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1665.181313][T28916] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 1665.181339][T28916] ____sys_sendmsg+0xa98/0xc70 [ 1665.181364][T28916] ? copy_msghdr_from_user+0x10a/0x160 [ 1665.181379][T28916] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1665.181407][T28916] ___sys_sendmsg+0x134/0x1d0 [ 1665.181423][T28916] ? __pfx____sys_sendmsg+0x10/0x10 [ 1665.181435][T28916] ? __lock_acquire+0x622/0x1c90 [ 1665.181480][T28916] __sys_sendmsg+0x16d/0x220 [ 1665.181495][T28916] ? __pfx___sys_sendmsg+0x10/0x10 [ 1665.181522][T28916] do_syscall_64+0xcd/0xfa0 [ 1665.181541][T28916] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1665.181557][T28916] RIP: 0033:0x7f1eb018f6c9 [ 1665.181569][T28916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1665.181583][T28916] RSP: 002b:00007f1eb10a0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1665.181598][T28916] RAX: ffffffffffffffda RBX: 00007f1eb03e5fa0 RCX: 00007f1eb018f6c9 [ 1665.181607][T28916] RDX: 0000000000000080 RSI: 0000200000000080 RDI: 0000000000000003 [ 1665.181617][T28916] RBP: 00007f1eb10a0090 R08: 0000000000000000 R09: 0000000000000000 [ 1665.181626][T28916] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1665.181634][T28916] R13: 00007f1eb03e6038 R14: 00007f1eb03e5fa0 R15: 00007fffdf483f58 [ 1665.181654][T28916] [ 1665.415468][ C0] vkms_vblank_simulate: vblank timer overrun [ 1666.097458][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1666.103908][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1666.455820][T28938] FAULT_INJECTION: forcing a failure. [ 1666.455820][T28938] name failslab, interval 1, probability 0, space 0, times 0 [ 1666.549452][T28938] CPU: 0 UID: 0 PID: 28938 Comm: syz.1.5286 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1666.549487][T28938] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1666.549496][T28938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1666.549505][T28938] Call Trace: [ 1666.549510][T28938] [ 1666.549517][T28938] dump_stack_lvl+0x16c/0x1f0 [ 1666.549539][T28938] should_fail_ex+0x512/0x640 [ 1666.549561][T28938] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 1666.549579][T28938] should_failslab+0xc2/0x120 [ 1666.549600][T28938] kmem_cache_alloc_noprof+0x75/0x6e0 [ 1666.549614][T28938] ? mas_preallocate+0xe6a/0x11f0 [ 1666.549636][T28938] ? mas_preallocate+0xe6a/0x11f0 [ 1666.549653][T28938] mas_preallocate+0xe6a/0x11f0 [ 1666.549674][T28938] ? __pfx_mas_preallocate+0x10/0x10 [ 1666.549696][T28938] ? vm_area_alloc+0x1f/0x160 [ 1666.549711][T28938] ? lockdep_init_map_type+0x5c/0x280 [ 1666.549733][T28938] __mmap_region+0x117f/0x27a0 [ 1666.549749][T28938] ? find_held_lock+0x2b/0x80 [ 1666.549764][T28938] ? __pfx___mmap_region+0x10/0x10 [ 1666.549776][T28938] ? finish_task_switch.isra.0+0x21c/0xc10 [ 1666.549793][T28938] ? rcu_is_watching+0x12/0xc0 [ 1666.549808][T28938] ? finish_task_switch.isra.0+0x221/0xc10 [ 1666.549822][T28938] ? lockdep_hardirqs_on+0x7c/0x110 [ 1666.549839][T28938] ? finish_task_switch.isra.0+0x221/0xc10 [ 1666.549872][T28938] ? __pfx___schedule+0x10/0x10 [ 1666.549910][T28938] ? trace_cap_capable+0x18d/0x200 [ 1666.549937][T28938] mmap_region+0x1ab/0x3f0 [ 1666.549952][T28938] ? __get_unmapped_area+0x267/0x440 [ 1666.549972][T28938] do_mmap+0xa3e/0x1210 [ 1666.549993][T28938] ? __pfx_do_mmap+0x10/0x10 [ 1666.550011][T28938] ? __pfx_down_write_killable+0x10/0x10 [ 1666.550035][T28938] vm_mmap_pgoff+0x29e/0x470 [ 1666.550057][T28938] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1666.550080][T28938] ? __x64_sys_futex+0x1e0/0x4c0 [ 1666.550099][T28938] ? __x64_sys_futex+0x1e9/0x4c0 [ 1666.550120][T28938] ksys_mmap_pgoff+0x7d/0x5c0 [ 1666.550137][T28938] ? xfd_validate_state+0x61/0x180 [ 1666.550157][T28938] ? __pfx___do_sys_close_range+0x10/0x10 [ 1666.550176][T28938] __x64_sys_mmap+0x125/0x190 [ 1666.550206][T28938] do_syscall_64+0xcd/0xfa0 [ 1666.550226][T28938] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1666.550242][T28938] RIP: 0033:0x7f1eb018f6c9 [ 1666.550254][T28938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1666.550269][T28938] RSP: 002b:00007f1eb10a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1666.550283][T28938] RAX: ffffffffffffffda RBX: 00007f1eb03e5fa0 RCX: 00007f1eb018f6c9 [ 1666.550293][T28938] RDX: 00000000000000df RSI: 0000000000020009 RDI: 0000000000000000 [ 1666.550302][T28938] RBP: 00007f1eb0211f91 R08: 00000000000003fd R09: 0000000000008000 [ 1666.550311][T28938] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 1666.550320][T28938] R13: 00007f1eb03e6038 R14: 00007f1eb03e5fa0 R15: 00007fffdf483f58 [ 1666.550340][T28938] [ 1666.849419][ C0] vkms_vblank_simulate: vblank timer overrun [ 1667.516653][T28946] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input180 [ 1667.752610][T28950] FAULT_INJECTION: forcing a failure. [ 1667.752610][T28950] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1667.766181][T28950] CPU: 0 UID: 0 PID: 28950 Comm: syz.2.5291 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1667.766215][T28950] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1667.766223][T28950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1667.766232][T28950] Call Trace: [ 1667.766238][T28950] [ 1667.766244][T28950] dump_stack_lvl+0x16c/0x1f0 [ 1667.766267][T28950] should_fail_ex+0x512/0x640 [ 1667.766292][T28950] should_fail_futex+0x4c/0x60 [ 1667.766311][T28950] futex_lock_pi_atomic+0x101/0xd50 [ 1667.766338][T28950] futex_lock_pi+0x23f/0x7c0 [ 1667.766362][T28950] ? __pfx_futex_lock_pi+0x10/0x10 [ 1667.766382][T28950] ? __futex_wait+0x24b/0x2f0 [ 1667.766397][T28950] ? lockdep_hardirqs_on+0x7c/0x110 [ 1667.766425][T28950] ? futex_private_hash_put+0xd5/0x190 [ 1667.766445][T28950] ? __pfx_futex_wake_mark+0x10/0x10 [ 1667.766471][T28950] ? vfs_write+0x15d/0x11d0 [ 1667.766492][T28950] do_futex+0x11a/0x350 [ 1667.766511][T28950] ? __pfx_do_futex+0x10/0x10 [ 1667.766535][T28950] __x64_sys_futex+0x1e0/0x4c0 [ 1667.766556][T28950] ? __pfx___x64_sys_futex+0x10/0x10 [ 1667.766575][T28950] ? xfd_validate_state+0x61/0x180 [ 1667.766594][T28950] ? __pfx_ksys_write+0x10/0x10 [ 1667.766614][T28950] do_syscall_64+0xcd/0xfa0 [ 1667.766632][T28950] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1667.766647][T28950] RIP: 0033:0x7f9986f8f6c9 [ 1667.766660][T28950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1667.766675][T28950] RSP: 002b:00007f9987dab038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1667.766689][T28950] RAX: ffffffffffffffda RBX: 00007f99871e5fa0 RCX: 00007f9986f8f6c9 [ 1667.766699][T28950] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1667.766707][T28950] RBP: 00007f9987011f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1667.766717][T28950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1667.766726][T28950] R13: 00007f99871e6038 R14: 00007f99871e5fa0 R15: 00007ffd04f8bdc8 [ 1667.766746][T28950] [ 1669.171919][T28971] netlink: 'syz.0.5297': attribute type 1 has an invalid length. [ 1669.594952][T28982] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5301'. [ 1669.857392][T28986] FAULT_INJECTION: forcing a failure. [ 1669.857392][T28986] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1669.870465][T28986] CPU: 0 UID: 0 PID: 28986 Comm: syz.0.5302 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1669.870498][T28986] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1669.870506][T28986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1669.870515][T28986] Call Trace: [ 1669.870520][T28986] [ 1669.870526][T28986] dump_stack_lvl+0x16c/0x1f0 [ 1669.870549][T28986] should_fail_ex+0x512/0x640 [ 1669.870574][T28986] should_fail_futex+0x4c/0x60 [ 1669.870593][T28986] futex_lock_pi_atomic+0x101/0xd50 [ 1669.870619][T28986] futex_lock_pi+0x23f/0x7c0 [ 1669.870643][T28986] ? __pfx_futex_lock_pi+0x10/0x10 [ 1669.870663][T28986] ? __futex_wait+0x24b/0x2f0 [ 1669.870678][T28986] ? lockdep_hardirqs_on+0x7c/0x110 [ 1669.870706][T28986] ? futex_private_hash_put+0xd5/0x190 [ 1669.870727][T28986] ? __pfx_futex_wake_mark+0x10/0x10 [ 1669.870753][T28986] ? vfs_write+0x15d/0x11d0 [ 1669.870774][T28986] do_futex+0x11a/0x350 [ 1669.870793][T28986] ? __pfx_do_futex+0x10/0x10 [ 1669.870816][T28986] __x64_sys_futex+0x1e0/0x4c0 [ 1669.870838][T28986] ? __pfx___x64_sys_futex+0x10/0x10 [ 1669.870857][T28986] ? xfd_validate_state+0x61/0x180 [ 1669.870876][T28986] ? __pfx_ksys_write+0x10/0x10 [ 1669.870897][T28986] do_syscall_64+0xcd/0xfa0 [ 1669.870915][T28986] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1669.870955][T28986] RIP: 0033:0x7f6ddff8f6c9 [ 1669.870969][T28986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1669.870984][T28986] RSP: 002b:00007f6de0d8a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1669.870998][T28986] RAX: ffffffffffffffda RBX: 00007f6de01e5fa0 RCX: 00007f6ddff8f6c9 [ 1669.871009][T28986] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1669.871018][T28986] RBP: 00007f6de0011f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1669.871028][T28986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1669.871037][T28986] R13: 00007f6de01e6038 R14: 00007f6de01e5fa0 R15: 00007fffd762e9c8 [ 1669.871058][T28986] [ 1670.182030][T28991] FAULT_INJECTION: forcing a failure. [ 1670.182030][T28991] name failslab, interval 1, probability 0, space 0, times 0 [ 1670.194829][T28991] CPU: 0 UID: 0 PID: 28991 Comm: syz.0.5303 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1670.194863][T28991] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1670.194871][T28991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1670.194904][T28991] Call Trace: [ 1670.194910][T28991] [ 1670.194916][T28991] dump_stack_lvl+0x16c/0x1f0 [ 1670.194939][T28991] should_fail_ex+0x512/0x640 [ 1670.194962][T28991] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 1670.194981][T28991] should_failslab+0xc2/0x120 [ 1670.195000][T28991] kmem_cache_alloc_node_noprof+0x78/0x770 [ 1670.195015][T28991] ? __lock_acquire+0x622/0x1c90 [ 1670.195032][T28991] ? __alloc_skb+0x2b2/0x380 [ 1670.195059][T28991] ? __alloc_skb+0x2b2/0x380 [ 1670.195079][T28991] __alloc_skb+0x2b2/0x380 [ 1670.195100][T28991] ? __pfx___alloc_skb+0x10/0x10 [ 1670.195125][T28991] ? netlink_has_listeners+0x20f/0x430 [ 1670.195143][T28991] alloc_uevent_skb+0x7d/0x210 [ 1670.195165][T28991] kobject_uevent_env+0xca4/0x1870 [ 1670.195190][T28991] ? bus_to_subsys+0x131/0x160 [ 1670.195208][T28991] device_add+0x10dd/0x1aa0 [ 1670.195224][T28991] ? __pfx_device_add+0x10/0x10 [ 1670.195245][T28991] ? rcu_is_watching+0x12/0xc0 [ 1670.195261][T28991] ? lockdep_init_map_type+0x5c/0x280 [ 1670.195284][T28991] input_register_device+0x7e8/0x1180 [ 1670.195301][T28991] ? input_ff_create+0x256/0x350 [ 1670.195323][T28991] uinput_ioctl_handler.isra.0+0x1357/0x1df0 [ 1670.195344][T28991] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 1670.195365][T28991] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 1670.195395][T28991] ? find_held_lock+0x2b/0x80 [ 1670.195420][T28991] ? __pfx_uinput_ioctl+0x10/0x10 [ 1670.195440][T28991] __x64_sys_ioctl+0x18e/0x210 [ 1670.195462][T28991] do_syscall_64+0xcd/0xfa0 [ 1670.195483][T28991] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1670.195498][T28991] RIP: 0033:0x7f6ddff8f6c9 [ 1670.195511][T28991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1670.195526][T28991] RSP: 002b:00007f6de0d8a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1670.195541][T28991] RAX: ffffffffffffffda RBX: 00007f6de01e5fa0 RCX: 00007f6ddff8f6c9 [ 1670.195551][T28991] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000004 [ 1670.195560][T28991] RBP: 00007f6de0011f91 R08: 0000000000000000 R09: 0000000000000000 [ 1670.195570][T28991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1670.195579][T28991] R13: 00007f6de01e6038 R14: 00007f6de01e5fa0 R15: 00007fffd762e9c8 [ 1670.195600][T28991] [ 1670.195691][T28991] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input181 [ 1671.871367][T29010] netlink: 'syz.3.5309': attribute type 1 has an invalid length. [ 1672.418803][T29019] FAULT_INJECTION: forcing a failure. [ 1672.418803][T29019] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1672.431661][T29019] CPU: 0 UID: 0 PID: 29019 Comm: syz.3.5312 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1672.431694][T29019] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1672.431702][T29019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1672.431711][T29019] Call Trace: [ 1672.431717][T29019] [ 1672.431724][T29019] dump_stack_lvl+0x16c/0x1f0 [ 1672.431746][T29019] should_fail_ex+0x512/0x640 [ 1672.431771][T29019] should_fail_futex+0x4c/0x60 [ 1672.431790][T29019] futex_lock_pi_atomic+0x148/0xd50 [ 1672.431815][T29019] futex_lock_pi+0x23f/0x7c0 [ 1672.431839][T29019] ? __pfx_futex_lock_pi+0x10/0x10 [ 1672.431858][T29019] ? preempt_schedule_common+0x44/0xc0 [ 1672.431876][T29019] ? preempt_schedule_thunk+0x16/0x30 [ 1672.431905][T29019] ? __pfx_try_to_wake_up+0x10/0x10 [ 1672.431926][T29019] ? futex_private_hash_put+0xd5/0x190 [ 1672.431946][T29019] ? __pfx_futex_wake_mark+0x10/0x10 [ 1672.431972][T29019] ? vfs_write+0x15d/0x11d0 [ 1672.431993][T29019] do_futex+0x11a/0x350 [ 1672.432011][T29019] ? __pfx_do_futex+0x10/0x10 [ 1672.432035][T29019] __x64_sys_futex+0x1e0/0x4c0 [ 1672.432056][T29019] ? __pfx___x64_sys_futex+0x10/0x10 [ 1672.432075][T29019] ? xfd_validate_state+0x61/0x180 [ 1672.432094][T29019] ? __pfx_ksys_write+0x10/0x10 [ 1672.432115][T29019] do_syscall_64+0xcd/0xfa0 [ 1672.432133][T29019] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1672.432148][T29019] RIP: 0033:0x7f8f7338f6c9 [ 1672.432161][T29019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1672.432175][T29019] RSP: 002b:00007f8f74231038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1672.432189][T29019] RAX: ffffffffffffffda RBX: 00007f8f735e5fa0 RCX: 00007f8f7338f6c9 [ 1672.432199][T29019] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1672.432207][T29019] RBP: 00007f8f73411f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1672.432216][T29019] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1672.432225][T29019] R13: 00007f8f735e6038 R14: 00007f8f735e5fa0 R15: 00007fffff0e33d8 [ 1672.432245][T29019] [ 1674.055502][T29043] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input182 [ 1674.269504][T29047] netlink: 'syz.3.5319': attribute type 1 has an invalid length. [ 1674.504889][T29045] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input183 [ 1677.717890][T29085] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 1679.220062][T29098] FAULT_INJECTION: forcing a failure. [ 1679.220062][T29098] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1679.299570][T29098] CPU: 0 UID: 0 PID: 29098 Comm: syz.3.5329 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1679.299608][T29098] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1679.299617][T29098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1679.299626][T29098] Call Trace: [ 1679.299632][T29098] [ 1679.299639][T29098] dump_stack_lvl+0x16c/0x1f0 [ 1679.299663][T29098] should_fail_ex+0x512/0x640 [ 1679.299688][T29098] core_sys_select+0x4c5/0xc20 [ 1679.299710][T29098] ? __pfx_core_sys_select+0x10/0x10 [ 1679.299729][T29098] ? futex_wake+0x1ad/0x530 [ 1679.299766][T29098] ? __pfx_do_futex+0x10/0x10 [ 1679.299790][T29098] kern_select+0x15d/0x1e0 [ 1679.299805][T29098] ? __pfx_kern_select+0x10/0x10 [ 1679.299821][T29098] ? xfd_validate_state+0x61/0x180 [ 1679.299845][T29098] __x64_sys_select+0xbd/0x160 [ 1679.299859][T29098] ? do_syscall_64+0x91/0xfa0 [ 1679.299877][T29098] ? lockdep_hardirqs_on+0x7c/0x110 [ 1679.299894][T29098] do_syscall_64+0xcd/0xfa0 [ 1679.299913][T29098] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1679.299928][T29098] RIP: 0033:0x7f8f7338f6c9 [ 1679.299941][T29098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1679.299956][T29098] RSP: 002b:00007f8f74231038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 1679.299971][T29098] RAX: ffffffffffffffda RBX: 00007f8f735e5fa0 RCX: 00007f8f7338f6c9 [ 1679.299981][T29098] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000008 [ 1679.299990][T29098] RBP: 00007f8f73411f91 R08: 0000000000000000 R09: 0000000000000000 [ 1679.299999][T29098] R10: 0000200000000200 R11: 0000000000000246 R12: 0000000000000000 [ 1679.300009][T29098] R13: 00007f8f735e6038 R14: 00007f8f735e5fa0 R15: 00007fffff0e33d8 [ 1679.300029][T29098] [ 1681.572523][T29138] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input184 [ 1683.677056][T29139] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input185 [ 1683.976508][T29164] FAULT_INJECTION: forcing a failure. [ 1683.976508][T29164] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1684.039374][T29164] CPU: 0 UID: 0 PID: 29164 Comm: syz.1.5345 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1684.039408][T29164] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1684.039417][T29164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1684.039426][T29164] Call Trace: [ 1684.039432][T29164] [ 1684.039438][T29164] dump_stack_lvl+0x16c/0x1f0 [ 1684.039468][T29164] should_fail_ex+0x512/0x640 [ 1684.039494][T29164] get_futex_key+0x1d0/0x1560 [ 1684.039517][T29164] ? __pfx_get_futex_key+0x10/0x10 [ 1684.039542][T29164] futex_wake+0xea/0x530 [ 1684.039564][T29164] ? rcu_is_watching+0x12/0xc0 [ 1684.039580][T29164] ? __pfx_futex_wake+0x10/0x10 [ 1684.039604][T29164] ? kmem_cache_free+0x2d4/0x6c0 [ 1684.039619][T29164] ? putname+0x154/0x1a0 [ 1684.039642][T29164] do_futex+0x1e3/0x350 [ 1684.039661][T29164] ? __pfx_do_futex+0x10/0x10 [ 1684.039686][T29164] __x64_sys_futex+0x1e0/0x4c0 [ 1684.039706][T29164] ? __x64_sys_openat+0x174/0x210 [ 1684.039726][T29164] ? __pfx___x64_sys_futex+0x10/0x10 [ 1684.039753][T29164] do_syscall_64+0xcd/0xfa0 [ 1684.039779][T29164] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1684.039795][T29164] RIP: 0033:0x7f1eb018f6c9 [ 1684.039808][T29164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1684.039822][T29164] RSP: 002b:00007f1eb10a00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1684.039837][T29164] RAX: ffffffffffffffda RBX: 00007f1eb03e5fa8 RCX: 00007f1eb018f6c9 [ 1684.039847][T29164] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1eb03e5fac [ 1684.039856][T29164] RBP: 00007f1eb03e5fa0 R08: 00007f1eb10a1000 R09: 0000000000000000 [ 1684.039865][T29164] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 1684.039874][T29164] R13: 00007f1eb03e6038 R14: 00007fffdf483e70 R15: 00007fffdf483f58 [ 1684.039895][T29164] [ 1684.683208][T29170] FAULT_INJECTION: forcing a failure. [ 1684.683208][T29170] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1684.696123][T29170] CPU: 0 UID: 0 PID: 29170 Comm: syz.0.5347 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1684.696157][T29170] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1684.696166][T29170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1684.696174][T29170] Call Trace: [ 1684.696180][T29170] [ 1684.696186][T29170] dump_stack_lvl+0x16c/0x1f0 [ 1684.696208][T29170] should_fail_ex+0x512/0x640 [ 1684.696233][T29170] should_fail_futex+0x4c/0x60 [ 1684.696252][T29170] futex_lock_pi_atomic+0x101/0xd50 [ 1684.696279][T29170] futex_lock_pi+0x23f/0x7c0 [ 1684.696303][T29170] ? __pfx_futex_lock_pi+0x10/0x10 [ 1684.696323][T29170] ? __futex_wait+0x24b/0x2f0 [ 1684.696338][T29170] ? lockdep_hardirqs_on+0x7c/0x110 [ 1684.696366][T29170] ? futex_private_hash_put+0xd5/0x190 [ 1684.696387][T29170] ? __pfx_futex_wake_mark+0x10/0x10 [ 1684.696413][T29170] ? vfs_write+0x15d/0x11d0 [ 1684.696434][T29170] do_futex+0x11a/0x350 [ 1684.696452][T29170] ? __pfx_do_futex+0x10/0x10 [ 1684.696476][T29170] __x64_sys_futex+0x1e0/0x4c0 [ 1684.696498][T29170] ? __pfx___x64_sys_futex+0x10/0x10 [ 1684.696523][T29170] ? xfd_validate_state+0x61/0x180 [ 1684.696544][T29170] ? __pfx_ksys_write+0x10/0x10 [ 1684.696566][T29170] do_syscall_64+0xcd/0xfa0 [ 1684.696586][T29170] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1684.696601][T29170] RIP: 0033:0x7f6ddff8f6c9 [ 1684.696614][T29170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1684.696628][T29170] RSP: 002b:00007f6de0d8a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1684.696642][T29170] RAX: ffffffffffffffda RBX: 00007f6de01e5fa0 RCX: 00007f6ddff8f6c9 [ 1684.696652][T29170] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1684.696660][T29170] RBP: 00007f6de0011f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1684.696670][T29170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1684.696679][T29170] R13: 00007f6de01e6038 R14: 00007f6de01e5fa0 R15: 00007fffd762e9c8 [ 1684.696699][T29170] [ 1687.290801][T29209] netlink: 'syz.1.5355': attribute type 1 has an invalid length. [ 1688.719861][T29233] input: f as /devices/virtual/input/input186 [ 1689.081688][T29236] FAULT_INJECTION: forcing a failure. [ 1689.081688][T29236] name failslab, interval 1, probability 0, space 0, times 0 [ 1689.183076][T29236] CPU: 0 UID: 0 PID: 29236 Comm: syz.0.5362 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1689.183112][T29236] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1689.183120][T29236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1689.183130][T29236] Call Trace: [ 1689.183135][T29236] [ 1689.183141][T29236] dump_stack_lvl+0x16c/0x1f0 [ 1689.183165][T29236] should_fail_ex+0x512/0x640 [ 1689.183187][T29236] ? __kmalloc_noprof+0xca/0x880 [ 1689.183212][T29236] should_failslab+0xc2/0x120 [ 1689.183233][T29236] __kmalloc_noprof+0xdd/0x880 [ 1689.183256][T29236] ? __register_sysctl_table+0xe8e/0x1900 [ 1689.183277][T29236] ? __register_sysctl_table+0xea2/0x1900 [ 1689.183301][T29236] ? __register_sysctl_table+0xea2/0x1900 [ 1689.183324][T29236] __register_sysctl_table+0xea2/0x1900 [ 1689.183350][T29236] ? __pfx___register_sysctl_table+0x10/0x10 [ 1689.183370][T29236] ? is_module_address+0x69/0xf0 [ 1689.183391][T29236] ? register_net_sysctl_sz+0x228/0x3e0 [ 1689.183418][T29236] __devinet_sysctl_register+0x1b9/0x360 [ 1689.183440][T29236] ? __pfx_neigh_sysctl_register+0x10/0x10 [ 1689.183455][T29236] ? inetdev_init+0x245/0x5a0 [ 1689.183472][T29236] ? __pfx___devinet_sysctl_register+0x10/0x10 [ 1689.183493][T29236] ? copy_net_ns+0x2f8/0x690 [ 1689.183509][T29236] ? create_new_namespaces+0x3ea/0xa90 [ 1689.183525][T29236] ? unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1689.183541][T29236] ? ksys_unshare+0x45b/0xa40 [ 1689.183559][T29236] ? __x64_sys_unshare+0x31/0x40 [ 1689.183576][T29236] ? do_syscall_64+0xcd/0xfa0 [ 1689.183593][T29236] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1689.183611][T29236] devinet_sysctl_register+0x17b/0x200 [ 1689.183632][T29236] inetdev_init+0x2b8/0x5a0 [ 1689.183651][T29236] inetdev_event+0xc5f/0x18a0 [ 1689.183671][T29236] ? ib_netdevice_event+0xfc/0x330 [ 1689.183686][T29236] ? __pfx_inetdev_event+0x10/0x10 [ 1689.183706][T29236] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1689.183733][T29236] notifier_call_chain+0xbc/0x410 [ 1689.183751][T29236] ? __pfx_inetdev_event+0x10/0x10 [ 1689.183773][T29236] call_netdevice_notifiers_info+0xbe/0x140 [ 1689.183794][T29236] register_netdevice+0x182e/0x2270 [ 1689.183815][T29236] ? __pfx_register_netdevice+0x10/0x10 [ 1689.183838][T29236] register_netdev+0x34/0x50 [ 1689.183854][T29236] sit_init_net+0x286/0x630 [ 1689.183869][T29236] ? __pfx_sit_init_net+0x10/0x10 [ 1689.183882][T29236] ops_init+0x1e2/0x5f0 [ 1689.183900][T29236] setup_net+0x100/0x390 [ 1689.183916][T29236] ? __pfx_setup_net+0x10/0x10 [ 1689.183932][T29236] ? debug_mutex_init+0x37/0x70 [ 1689.183950][T29236] copy_net_ns+0x2f8/0x690 [ 1689.183970][T29236] create_new_namespaces+0x3ea/0xa90 [ 1689.183991][T29236] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1689.184009][T29236] ksys_unshare+0x45b/0xa40 [ 1689.184033][T29236] ? __pfx_ksys_unshare+0x10/0x10 [ 1689.184053][T29236] ? xfd_validate_state+0x61/0x180 [ 1689.184081][T29236] __x64_sys_unshare+0x31/0x40 [ 1689.184099][T29236] do_syscall_64+0xcd/0xfa0 [ 1689.184117][T29236] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1689.184132][T29236] RIP: 0033:0x7f6ddff8f6c9 [ 1689.184145][T29236] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1689.184159][T29236] RSP: 002b:00007f6de0d69038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1689.184174][T29236] RAX: ffffffffffffffda RBX: 00007f6de01e6090 RCX: 00007f6ddff8f6c9 [ 1689.184184][T29236] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1689.184193][T29236] RBP: 00007f6de0011f91 R08: 0000000000000000 R09: 0000000000000000 [ 1689.184202][T29236] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1689.184211][T29236] R13: 00007f6de01e6128 R14: 00007f6de01e6090 R15: 00007fffd762e9c8 [ 1689.184232][T29236] [ 1689.956497][T29236] sysctl could not get directory: /net/ipv4/conf/sit0 -12 [ 1690.005612][T29245] snd_dummy snd_dummy.0: control 61682:131077:3:y:617 is already present [ 1691.435284][T29231] Process accounting resumed [ 1692.985788][T29293] netlink: 'syz.0.5375': attribute type 1 has an invalid length. [ 1693.587084][T29299] sp0: Synchronizing with TNC [ 1695.577391][T29329] netlink: 'syz.2.5384': attribute type 1 has an invalid length. [ 1701.188720][T29406] FAULT_INJECTION: forcing a failure. [ 1701.188720][T29406] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1701.201860][T29406] CPU: 0 UID: 0 PID: 29406 Comm: syz.1.5403 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1701.201899][T29406] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1701.201908][T29406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1701.201916][T29406] Call Trace: [ 1701.201922][T29406] [ 1701.201928][T29406] dump_stack_lvl+0x16c/0x1f0 [ 1701.201951][T29406] should_fail_ex+0x512/0x640 [ 1701.201977][T29406] should_fail_futex+0x4c/0x60 [ 1701.201996][T29406] futex_lock_pi_atomic+0x101/0xd50 [ 1701.202021][T29406] futex_lock_pi+0x23f/0x7c0 [ 1701.202046][T29406] ? __pfx_futex_lock_pi+0x10/0x10 [ 1701.202066][T29406] ? __futex_wait+0x24b/0x2f0 [ 1701.202094][T29406] ? futex_private_hash_put+0xd5/0x190 [ 1701.202114][T29406] ? __pfx_futex_wake_mark+0x10/0x10 [ 1701.202140][T29406] ? vfs_write+0x15d/0x11d0 [ 1701.202161][T29406] do_futex+0x11a/0x350 [ 1701.202180][T29406] ? __pfx_do_futex+0x10/0x10 [ 1701.202204][T29406] __x64_sys_futex+0x1e0/0x4c0 [ 1701.202225][T29406] ? __pfx___x64_sys_futex+0x10/0x10 [ 1701.202244][T29406] ? xfd_validate_state+0x61/0x180 [ 1701.202263][T29406] ? __pfx_ksys_write+0x10/0x10 [ 1701.202284][T29406] do_syscall_64+0xcd/0xfa0 [ 1701.202303][T29406] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1701.202317][T29406] RIP: 0033:0x7f1eb018f6c9 [ 1701.202330][T29406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1701.202344][T29406] RSP: 002b:00007f1eb10a0038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1701.202358][T29406] RAX: ffffffffffffffda RBX: 00007f1eb03e5fa0 RCX: 00007f1eb018f6c9 [ 1701.202368][T29406] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1701.202376][T29406] RBP: 00007f1eb0211f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1701.202385][T29406] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1701.202394][T29406] R13: 00007f1eb03e6038 R14: 00007f1eb03e5fa0 R15: 00007fffdf483f58 [ 1701.202414][T29406] [ 1701.892270][T29410] netlink: 'syz.1.5404': attribute type 1 has an invalid length. [ 1702.757261][T29425] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5408'. [ 1702.834845][T29425] openvswitch: netlink: Flow actions attr not present in new flow. [ 1704.151006][T29443] FAULT_INJECTION: forcing a failure. [ 1704.151006][T29443] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1704.163909][T29443] CPU: 0 UID: 0 PID: 29443 Comm: syz.2.5412 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1704.163943][T29443] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1704.163951][T29443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1704.163960][T29443] Call Trace: [ 1704.163966][T29443] [ 1704.163972][T29443] dump_stack_lvl+0x16c/0x1f0 [ 1704.163994][T29443] should_fail_ex+0x512/0x640 [ 1704.164019][T29443] should_fail_futex+0x4c/0x60 [ 1704.164038][T29443] futex_lock_pi_atomic+0x101/0xd50 [ 1704.164070][T29443] futex_lock_pi+0x23f/0x7c0 [ 1704.164095][T29443] ? __pfx_futex_lock_pi+0x10/0x10 [ 1704.164116][T29443] ? __futex_wait+0x24b/0x2f0 [ 1704.164145][T29443] ? futex_private_hash_put+0xd5/0x190 [ 1704.164166][T29443] ? __pfx_futex_wake_mark+0x10/0x10 [ 1704.164194][T29443] ? vfs_write+0x15d/0x11d0 [ 1704.164214][T29443] do_futex+0x11a/0x350 [ 1704.164233][T29443] ? __pfx_do_futex+0x10/0x10 [ 1704.164257][T29443] __x64_sys_futex+0x1e0/0x4c0 [ 1704.164279][T29443] ? __pfx___x64_sys_futex+0x10/0x10 [ 1704.164298][T29443] ? xfd_validate_state+0x61/0x180 [ 1704.164317][T29443] ? __pfx_ksys_write+0x10/0x10 [ 1704.164339][T29443] do_syscall_64+0xcd/0xfa0 [ 1704.164357][T29443] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1704.164371][T29443] RIP: 0033:0x7f9986f8f6c9 [ 1704.164383][T29443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1704.164398][T29443] RSP: 002b:00007f9987dab038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1704.164412][T29443] RAX: ffffffffffffffda RBX: 00007f99871e5fa0 RCX: 00007f9986f8f6c9 [ 1704.164421][T29443] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1704.164430][T29443] RBP: 00007f9987011f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1704.164439][T29443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1704.164447][T29443] R13: 00007f99871e6038 R14: 00007f99871e5fa0 R15: 00007ffd04f8bdc8 [ 1704.164466][T29443] [ 1706.079055][T29461] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input187 [ 1706.328022][T29467] FAULT_INJECTION: forcing a failure. [ 1706.328022][T29467] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1706.400349][T29467] CPU: 0 UID: 0 PID: 29467 Comm: syz.1.5419 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1706.400389][T29467] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1706.400398][T29467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1706.400407][T29467] Call Trace: [ 1706.400413][T29467] [ 1706.400419][T29467] dump_stack_lvl+0x16c/0x1f0 [ 1706.400443][T29467] should_fail_ex+0x512/0x640 [ 1706.400468][T29467] _copy_from_iter+0x29f/0x1720 [ 1706.400493][T29467] ? __alloc_skb+0x200/0x380 [ 1706.400516][T29467] ? __pfx__copy_from_iter+0x10/0x10 [ 1706.400539][T29467] ? netlink_autobind.isra.0+0x158/0x370 [ 1706.400563][T29467] netlink_sendmsg+0x820/0xdd0 [ 1706.400582][T29467] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1706.400600][T29467] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 1706.400626][T29467] ____sys_sendmsg+0xa98/0xc70 [ 1706.400645][T29467] ? copy_msghdr_from_user+0x10a/0x160 [ 1706.400660][T29467] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1706.400687][T29467] ___sys_sendmsg+0x134/0x1d0 [ 1706.400703][T29467] ? __pfx____sys_sendmsg+0x10/0x10 [ 1706.400716][T29467] ? __lock_acquire+0x622/0x1c90 [ 1706.400759][T29467] __sys_sendmsg+0x16d/0x220 [ 1706.400775][T29467] ? __pfx___sys_sendmsg+0x10/0x10 [ 1706.400802][T29467] do_syscall_64+0xcd/0xfa0 [ 1706.400821][T29467] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1706.400836][T29467] RIP: 0033:0x7f1eb018f6c9 [ 1706.400849][T29467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1706.400862][T29467] RSP: 002b:00007f1eb10a0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1706.400877][T29467] RAX: ffffffffffffffda RBX: 00007f1eb03e5fa0 RCX: 00007f1eb018f6c9 [ 1706.400886][T29467] RDX: 0000000020008844 RSI: 00002000000054c0 RDI: 0000000000000003 [ 1706.400895][T29467] RBP: 00007f1eb10a0090 R08: 0000000000000000 R09: 0000000000000000 [ 1706.400904][T29467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1706.400913][T29467] R13: 00007f1eb03e6038 R14: 00007f1eb03e5fa0 R15: 00007fffdf483f58 [ 1706.400933][T29467] [ 1707.303626][T29472] futex_wake_op: syz.3.5421 tries to shift op by -2048; fix this program [ 1707.368850][T29472] 0x000000000001-0x000000020000 : "" [ 1707.378293][T29472] ftl_cs: FTL header corrupt! [ 1709.022321][T29498] Invalid ELF header magic: != ELF [ 1709.420514][T29508] random: crng reseeded on system resumption [ 1710.028116][T29509] can: request_module (can-proto-0) failed. [ 1710.325185][T29521] netlink: 'syz.3.5434': attribute type 1 has an invalid length. [ 1712.488737][T24311] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 1715.787408][T29601] FAULT_INJECTION: forcing a failure. [ 1715.787408][T29601] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1715.981611][T29601] CPU: 0 UID: 0 PID: 29601 Comm: syz.2.5452 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1715.981646][T29601] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1715.981655][T29601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1715.981666][T29601] Call Trace: [ 1715.981671][T29601] [ 1715.981678][T29601] dump_stack_lvl+0x16c/0x1f0 [ 1715.981701][T29601] should_fail_ex+0x512/0x640 [ 1715.981727][T29601] get_futex_key+0x1d0/0x1560 [ 1715.981750][T29601] ? __pfx_get_futex_key+0x10/0x10 [ 1715.981768][T29601] ? stack_trace_save+0x8e/0xc0 [ 1715.981784][T29601] ? __pfx_stack_trace_save+0x10/0x10 [ 1715.981801][T29601] ? stack_depot_save_flags+0x29/0x9c0 [ 1715.981824][T29601] futex_wait_setup+0x9d/0x550 [ 1715.981843][T29601] __futex_wait+0x193/0x2f0 [ 1715.981857][T29601] ? __pfx___futex_wait+0x10/0x10 [ 1715.981873][T29601] ? __pfx_futex_wake_mark+0x10/0x10 [ 1715.981898][T29601] ? futex_hash+0x2c5/0x380 [ 1715.981917][T29601] ? futex_private_hash_put+0xd5/0x190 [ 1715.981937][T29601] futex_wait+0xe8/0x380 [ 1715.981949][T29601] ? __pfx_futex_wait+0x10/0x10 [ 1715.981966][T29601] ? kmem_cache_free+0x2d4/0x6c0 [ 1715.981982][T29601] ? putname+0x154/0x1a0 [ 1715.982004][T29601] do_futex+0x229/0x350 [ 1715.982023][T29601] ? __pfx_do_futex+0x10/0x10 [ 1715.982047][T29601] __x64_sys_futex+0x1e0/0x4c0 [ 1715.982067][T29601] ? __x64_sys_openat+0x174/0x210 [ 1715.982088][T29601] ? __pfx___x64_sys_futex+0x10/0x10 [ 1715.982114][T29601] do_syscall_64+0xcd/0xfa0 [ 1715.982134][T29601] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1715.982149][T29601] RIP: 0033:0x7f9986f8f6c9 [ 1715.982161][T29601] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1715.982175][T29601] RSP: 002b:00007f9987dab0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1715.982190][T29601] RAX: ffffffffffffffda RBX: 00007f99871e5fa8 RCX: 00007f9986f8f6c9 [ 1715.982200][T29601] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f99871e5fa8 [ 1715.982209][T29601] RBP: 00007f99871e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1715.982218][T29601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1715.982226][T29601] R13: 00007f99871e6038 R14: 00007ffd04f8bce0 R15: 00007ffd04f8bdc8 [ 1715.982246][T29601] [ 1718.305242][T29631] mkiss: ax0: crc mode is auto. [ 1718.425410][T29637] mkiss: ax0: crc mode is auto. [ 1718.794149][T29642] FAULT_INJECTION: forcing a failure. [ 1718.794149][T29642] name failslab, interval 1, probability 0, space 0, times 0 [ 1718.952924][T29642] CPU: 0 UID: 0 PID: 29642 Comm: syz.2.5464 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1718.952960][T29642] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1718.952969][T29642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1718.952978][T29642] Call Trace: [ 1718.952985][T29642] [ 1718.952991][T29642] dump_stack_lvl+0x16c/0x1f0 [ 1718.953014][T29642] should_fail_ex+0x512/0x640 [ 1718.953036][T29642] ? fs_reclaim_acquire+0xae/0x150 [ 1718.953058][T29642] should_failslab+0xc2/0x120 [ 1718.953078][T29642] __kmalloc_noprof+0xdd/0x880 [ 1718.953099][T29642] ? kfree+0x252/0x6d0 [ 1718.953111][T29642] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1718.953133][T29642] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1718.953154][T29642] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1718.953178][T29642] tomoyo_check_open_permission+0x2ab/0x3c0 [ 1718.953195][T29642] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 1718.953239][T29642] ? do_raw_spin_lock+0x12c/0x2b0 [ 1718.953266][T29642] tomoyo_file_open+0x6b/0x90 [ 1718.953285][T29642] security_file_open+0x84/0x1e0 [ 1718.953301][T29642] do_dentry_open+0x596/0x1530 [ 1718.953324][T29642] vfs_open+0x82/0x3f0 [ 1718.953346][T29642] path_openat+0x1de4/0x2cb0 [ 1718.953369][T29642] ? __pfx_path_openat+0x10/0x10 [ 1718.953385][T29642] ? __lock_acquire+0xb8a/0x1c90 [ 1718.953406][T29642] do_filp_open+0x20b/0x470 [ 1718.953422][T29642] ? __pfx_do_filp_open+0x10/0x10 [ 1718.953453][T29642] ? alloc_fd+0x471/0x7d0 [ 1718.953472][T29642] do_sys_openat2+0x11b/0x1d0 [ 1718.953492][T29642] ? __pfx_do_sys_openat2+0x10/0x10 [ 1718.953520][T29642] __x64_sys_openat+0x174/0x210 [ 1718.953541][T29642] ? __pfx___x64_sys_openat+0x10/0x10 [ 1718.953570][T29642] do_syscall_64+0xcd/0xfa0 [ 1718.953588][T29642] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1718.953603][T29642] RIP: 0033:0x7f9986f8f6c9 [ 1718.953615][T29642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1718.953629][T29642] RSP: 002b:00007f9987dab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1718.953643][T29642] RAX: ffffffffffffffda RBX: 00007f99871e5fa0 RCX: 00007f9986f8f6c9 [ 1718.953652][T29642] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 1718.953661][T29642] RBP: 00007f9987011f91 R08: 0000000000000000 R09: 0000000000000000 [ 1718.953670][T29642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1718.953679][T29642] R13: 00007f99871e6038 R14: 00007f99871e5fa0 R15: 00007ffd04f8bdc8 [ 1718.953700][T29642] [ 1718.953706][T29642] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1719.472496][T29644] zswap: compressor 000 not available [ 1719.637879][T29648] zswap: compressor not available [ 1722.249211][T29699] ceph: Failed to parse sending metrics switch value '' [ 1722.768230][T29702] zswap: compressor 000 not available [ 1722.941290][T29680] Process accounting paused [ 1723.062610][T29705] zswap: compressor not available [ 1726.696199][T29762] zswap: compressor 000 not available [ 1726.899468][T29773] : entered promiscuous mode [ 1726.980656][T29764] zswap: compressor not available [ 1727.222745][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1727.230117][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1729.311279][T29809] netlink: 25 bytes leftover after parsing attributes in process `syz.0.5504'. [ 1733.294399][T29871] FAULT_INJECTION: forcing a failure. [ 1733.294399][T29871] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1733.374221][T29871] CPU: 0 UID: 0 PID: 29871 Comm: syz.1.5516 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1733.374256][T29871] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1733.374264][T29871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1733.374273][T29871] Call Trace: [ 1733.374278][T29871] [ 1733.374285][T29871] dump_stack_lvl+0x16c/0x1f0 [ 1733.374306][T29871] should_fail_ex+0x512/0x640 [ 1733.374331][T29871] get_futex_key+0x1d0/0x1560 [ 1733.374352][T29871] ? __pfx_get_futex_key+0x10/0x10 [ 1733.374377][T29871] futex_wake+0xea/0x530 [ 1733.374399][T29871] ? rcu_is_watching+0x12/0xc0 [ 1733.374414][T29871] ? __pfx_futex_wake+0x10/0x10 [ 1733.374438][T29871] ? kmem_cache_free+0x2d4/0x6c0 [ 1733.374453][T29871] ? putname+0x154/0x1a0 [ 1733.374475][T29871] do_futex+0x1e3/0x350 [ 1733.374494][T29871] ? __pfx_do_futex+0x10/0x10 [ 1733.374518][T29871] __x64_sys_futex+0x1e0/0x4c0 [ 1733.374539][T29871] ? __x64_sys_openat+0x174/0x210 [ 1733.374563][T29871] ? __pfx___x64_sys_futex+0x10/0x10 [ 1733.374590][T29871] do_syscall_64+0xcd/0xfa0 [ 1733.374610][T29871] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1733.374625][T29871] RIP: 0033:0x7f1eb018f6c9 [ 1733.374638][T29871] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1733.374652][T29871] RSP: 002b:00007f1eb10a00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1733.374667][T29871] RAX: ffffffffffffffda RBX: 00007f1eb03e5fa8 RCX: 00007f1eb018f6c9 [ 1733.374677][T29871] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1eb03e5fac [ 1733.374686][T29871] RBP: 00007f1eb03e5fa0 R08: 00007f1eb10a1000 R09: 0000000000000000 [ 1733.374695][T29871] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 1733.374704][T29871] R13: 00007f1eb03e6038 R14: 00007fffdf483e70 R15: 00007fffdf483f58 [ 1733.374724][T29871] [ 1733.575995][T29870] FAULT_INJECTION: forcing a failure. [ 1733.575995][T29870] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1733.588920][T29870] CPU: 0 UID: 0 PID: 29870 Comm: syz.2.5517 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1733.588953][T29870] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1733.588962][T29870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1733.588970][T29870] Call Trace: [ 1733.588977][T29870] [ 1733.588983][T29870] dump_stack_lvl+0x16c/0x1f0 [ 1733.589010][T29870] should_fail_ex+0x512/0x640 [ 1733.589035][T29870] should_fail_futex+0x4c/0x60 [ 1733.589055][T29870] futex_lock_pi_atomic+0x148/0xd50 [ 1733.589081][T29870] futex_lock_pi+0x23f/0x7c0 [ 1733.589105][T29870] ? __pfx_futex_lock_pi+0x10/0x10 [ 1733.589125][T29870] ? preempt_schedule_common+0x44/0xc0 [ 1733.589142][T29870] ? preempt_schedule_thunk+0x16/0x30 [ 1733.589171][T29870] ? __pfx_try_to_wake_up+0x10/0x10 [ 1733.589191][T29870] ? futex_private_hash_put+0xd5/0x190 [ 1733.589211][T29870] ? __pfx_futex_wake_mark+0x10/0x10 [ 1733.589237][T29870] ? vfs_write+0x15d/0x11d0 [ 1733.589257][T29870] do_futex+0x11a/0x350 [ 1733.589276][T29870] ? __pfx_do_futex+0x10/0x10 [ 1733.589297][T29870] ? __pfx___might_resched+0x10/0x10 [ 1733.589314][T29870] __x64_sys_futex+0x1e0/0x4c0 [ 1733.589335][T29870] ? __pfx___x64_sys_futex+0x10/0x10 [ 1733.589354][T29870] ? xfd_validate_state+0x61/0x180 [ 1733.589373][T29870] ? __pfx_ksys_write+0x10/0x10 [ 1733.589394][T29870] do_syscall_64+0xcd/0xfa0 [ 1733.589413][T29870] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1733.589428][T29870] RIP: 0033:0x7f9986f8f6c9 [ 1733.589440][T29870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1733.589454][T29870] RSP: 002b:00007f9987dab038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1733.589468][T29870] RAX: ffffffffffffffda RBX: 00007f99871e5fa0 RCX: 00007f9986f8f6c9 [ 1733.589477][T29870] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1733.589486][T29870] RBP: 00007f9987011f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1733.589495][T29870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1733.589503][T29870] R13: 00007f99871e6038 R14: 00007f99871e5fa0 R15: 00007ffd04f8bdc8 [ 1733.589522][T29870] [ 1734.647972][T29880] FAULT_INJECTION: forcing a failure. [ 1734.647972][T29880] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1734.648004][T29880] CPU: 0 UID: 0 PID: 29880 Comm: syz.2.5520 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1734.648035][T29880] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1734.648043][T29880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1734.648052][T29880] Call Trace: [ 1734.648057][T29880] [ 1734.648063][T29880] dump_stack_lvl+0x16c/0x1f0 [ 1734.648085][T29880] should_fail_ex+0x512/0x640 [ 1734.648110][T29880] should_fail_futex+0x4c/0x60 [ 1734.648128][T29880] futex_lock_pi_atomic+0x101/0xd50 [ 1734.648154][T29880] futex_lock_pi+0x23f/0x7c0 [ 1734.648178][T29880] ? __pfx_futex_lock_pi+0x10/0x10 [ 1734.648198][T29880] ? __futex_wait+0x24b/0x2f0 [ 1734.648225][T29880] ? futex_private_hash_put+0xd5/0x190 [ 1734.648246][T29880] ? __pfx_futex_wake_mark+0x10/0x10 [ 1734.648273][T29880] ? vfs_write+0x15d/0x11d0 [ 1734.648293][T29880] do_futex+0x11a/0x350 [ 1734.648312][T29880] ? __pfx_do_futex+0x10/0x10 [ 1734.648335][T29880] __x64_sys_futex+0x1e0/0x4c0 [ 1734.648357][T29880] ? __pfx___x64_sys_futex+0x10/0x10 [ 1734.648376][T29880] ? xfd_validate_state+0x61/0x180 [ 1734.648396][T29880] ? __pfx_ksys_write+0x10/0x10 [ 1734.648416][T29880] do_syscall_64+0xcd/0xfa0 [ 1734.648436][T29880] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1734.648450][T29880] RIP: 0033:0x7f9986f8f6c9 [ 1734.648462][T29880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1734.648476][T29880] RSP: 002b:00007f9987dab038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1734.648491][T29880] RAX: ffffffffffffffda RBX: 00007f99871e5fa0 RCX: 00007f9986f8f6c9 [ 1734.648500][T29880] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1734.648509][T29880] RBP: 00007f9987011f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1734.648518][T29880] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1734.648526][T29880] R13: 00007f99871e6038 R14: 00007f99871e5fa0 R15: 00007ffd04f8bdc8 [ 1734.648546][T29880] [ 1736.733647][T29902] FAULT_INJECTION: forcing a failure. [ 1736.733647][T29902] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1736.818040][T29902] CPU: 0 UID: 0 PID: 29902 Comm: syz.3.5527 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1736.818074][T29902] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1736.818083][T29902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1736.818092][T29902] Call Trace: [ 1736.818097][T29902] [ 1736.818103][T29902] dump_stack_lvl+0x16c/0x1f0 [ 1736.818126][T29902] should_fail_ex+0x512/0x640 [ 1736.818151][T29902] get_futex_key+0x1d0/0x1560 [ 1736.818174][T29902] ? __pfx_get_futex_key+0x10/0x10 [ 1736.818199][T29902] futex_wake+0xea/0x530 [ 1736.818220][T29902] ? rcu_is_watching+0x12/0xc0 [ 1736.818237][T29902] ? __pfx_futex_wake+0x10/0x10 [ 1736.818262][T29902] ? kmem_cache_free+0x2d4/0x6c0 [ 1736.818277][T29902] ? putname+0x154/0x1a0 [ 1736.818299][T29902] do_futex+0x1e3/0x350 [ 1736.818318][T29902] ? __pfx_do_futex+0x10/0x10 [ 1736.818343][T29902] __x64_sys_futex+0x1e0/0x4c0 [ 1736.818363][T29902] ? __x64_sys_openat+0x174/0x210 [ 1736.818384][T29902] ? __pfx___x64_sys_futex+0x10/0x10 [ 1736.818410][T29902] do_syscall_64+0xcd/0xfa0 [ 1736.818438][T29902] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1736.818454][T29902] RIP: 0033:0x7f8f7338f6c9 [ 1736.818466][T29902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1736.818481][T29902] RSP: 002b:00007f8f742310e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1736.818496][T29902] RAX: ffffffffffffffda RBX: 00007f8f735e5fa8 RCX: 00007f8f7338f6c9 [ 1736.818506][T29902] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f8f735e5fac [ 1736.818515][T29902] RBP: 00007f8f735e5fa0 R08: 00007f8f74232000 R09: 0000000000000000 [ 1736.818524][T29902] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 1736.818533][T29902] R13: 00007f8f735e6038 R14: 00007fffff0e32f0 R15: 00007fffff0e33d8 [ 1736.818552][T29902] [ 1740.880018][T29960] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5539'. [ 1742.023271][T29982] netlink: 'syz.2.5546': attribute type 1 has an invalid length. [ 1743.951304][T30005] i2c i2c-0: Failed to register i2c client card: at 0x01 (-16) [ 1744.406434][T30016] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input188 [ 1744.416454][T30015] netlink: 'syz.2.5557': attribute type 1 has an invalid length. [ 1744.946003][T30018] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input189 [ 1744.987955][T30029] FAULT_INJECTION: forcing a failure. [ 1744.987955][T30029] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1745.116323][T30029] CPU: 0 UID: 0 PID: 30029 Comm: syz.0.5560 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1745.116358][T30029] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1745.116367][T30029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1745.116376][T30029] Call Trace: [ 1745.116382][T30029] [ 1745.116388][T30029] dump_stack_lvl+0x16c/0x1f0 [ 1745.116411][T30029] should_fail_ex+0x512/0x640 [ 1745.116438][T30029] get_futex_key+0x1d0/0x1560 [ 1745.116460][T30029] ? __pfx_get_futex_key+0x10/0x10 [ 1745.116485][T30029] futex_wake+0xea/0x530 [ 1745.116506][T30029] ? rcu_is_watching+0x12/0xc0 [ 1745.116522][T30029] ? __pfx_futex_wake+0x10/0x10 [ 1745.116546][T30029] ? kmem_cache_free+0x2d4/0x6c0 [ 1745.116561][T30029] ? putname+0x154/0x1a0 [ 1745.116583][T30029] do_futex+0x1e3/0x350 [ 1745.116602][T30029] ? __pfx_do_futex+0x10/0x10 [ 1745.116626][T30029] __x64_sys_futex+0x1e0/0x4c0 [ 1745.116652][T30029] ? __x64_sys_openat+0x174/0x210 [ 1745.116676][T30029] ? __pfx___x64_sys_futex+0x10/0x10 [ 1745.116696][T30029] ? xfd_validate_state+0x61/0x180 [ 1745.116724][T30029] do_syscall_64+0xcd/0xfa0 [ 1745.116744][T30029] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1745.116759][T30029] RIP: 0033:0x7f6ddff8f6c9 [ 1745.116771][T30029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1745.116785][T30029] RSP: 002b:00007f6de0d8a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1745.116799][T30029] RAX: ffffffffffffffda RBX: 00007f6de01e5fa8 RCX: 00007f6ddff8f6c9 [ 1745.116809][T30029] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6de01e5fac [ 1745.116818][T30029] RBP: 00007f6de01e5fa0 R08: 00007f6de0d8b000 R09: 0000000000000000 [ 1745.116827][T30029] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 1745.116836][T30029] R13: 00007f6de01e6038 R14: 00007fffd762e8e0 R15: 00007fffd762e9c8 [ 1745.116857][T30029] [ 1746.077325][T30040] random: crng reseeded on system resumption [ 1746.520679][T30044] can: request_module (can-proto-0) failed. [ 1746.641785][T30041] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input190 [ 1747.309825][T30042] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input191 [ 1748.006784][T30061] netlink: 'syz.3.5567': attribute type 1 has an invalid length. [ 1748.031516][T30060] i2c i2c-0: Failed to register i2c client card: at 0x01 (-16) [ 1749.098280][T24311] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 1749.328433][T30081] FAULT_INJECTION: forcing a failure. [ 1749.328433][T30081] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1749.394772][T30082] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input192 [ 1749.425023][T30081] CPU: 0 UID: 0 PID: 30081 Comm: syz.1.5572 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1749.425057][T30081] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1749.425066][T30081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1749.425076][T30081] Call Trace: [ 1749.425081][T30081] [ 1749.425088][T30081] dump_stack_lvl+0x16c/0x1f0 [ 1749.425110][T30081] should_fail_ex+0x512/0x640 [ 1749.425136][T30081] get_futex_key+0x1d0/0x1560 [ 1749.425158][T30081] ? __pfx_get_futex_key+0x10/0x10 [ 1749.425183][T30081] futex_wake+0xea/0x530 [ 1749.425205][T30081] ? rcu_is_watching+0x12/0xc0 [ 1749.425230][T30081] ? __pfx_futex_wake+0x10/0x10 [ 1749.425255][T30081] ? kmem_cache_free+0x2d4/0x6c0 [ 1749.425271][T30081] ? putname+0x154/0x1a0 [ 1749.425295][T30081] do_futex+0x1e3/0x350 [ 1749.425314][T30081] ? __pfx_do_futex+0x10/0x10 [ 1749.425338][T30081] __x64_sys_futex+0x1e0/0x4c0 [ 1749.425358][T30081] ? __x64_sys_openat+0x174/0x210 [ 1749.425379][T30081] ? __pfx___x64_sys_futex+0x10/0x10 [ 1749.425405][T30081] do_syscall_64+0xcd/0xfa0 [ 1749.425424][T30081] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1749.425439][T30081] RIP: 0033:0x7f1eb018f6c9 [ 1749.425451][T30081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1749.425465][T30081] RSP: 002b:00007f1eb10a00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1749.425479][T30081] RAX: ffffffffffffffda RBX: 00007f1eb03e5fa8 RCX: 00007f1eb018f6c9 [ 1749.425489][T30081] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1eb03e5fac [ 1749.425498][T30081] RBP: 00007f1eb03e5fa0 R08: 00007f1eb10a1000 R09: 0000000000000000 [ 1749.425507][T30081] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 1749.425516][T30081] R13: 00007f1eb03e6038 R14: 00007fffdf483e70 R15: 00007fffdf483f58 [ 1749.425535][T30081] [ 1749.614579][ C0] vkms_vblank_simulate: vblank timer overrun [ 1751.201184][T30083] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input193 [ 1752.135453][T30119] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input194 [ 1752.751905][T30122] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input195 [ 1753.408625][T30115] Process accounting resumed [ 1754.619368][T30146] FAULT_INJECTION: forcing a failure. [ 1754.619368][T30146] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1754.632729][T30146] CPU: 0 UID: 0 PID: 30146 Comm: syz.1.5593 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1754.632762][T30146] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1754.632770][T30146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1754.632779][T30146] Call Trace: [ 1754.632784][T30146] [ 1754.632790][T30146] dump_stack_lvl+0x16c/0x1f0 [ 1754.632813][T30146] should_fail_ex+0x512/0x640 [ 1754.632838][T30146] should_fail_futex+0x4c/0x60 [ 1754.632857][T30146] futex_lock_pi_atomic+0x101/0xd50 [ 1754.632883][T30146] futex_lock_pi+0x23f/0x7c0 [ 1754.632907][T30146] ? __pfx_futex_lock_pi+0x10/0x10 [ 1754.632928][T30146] ? __futex_wait+0x24b/0x2f0 [ 1754.632956][T30146] ? futex_private_hash_put+0xd5/0x190 [ 1754.632976][T30146] ? __pfx_futex_wake_mark+0x10/0x10 [ 1754.633002][T30146] ? vfs_write+0x15d/0x11d0 [ 1754.633022][T30146] do_futex+0x11a/0x350 [ 1754.633041][T30146] ? __pfx_do_futex+0x10/0x10 [ 1754.633065][T30146] __x64_sys_futex+0x1e0/0x4c0 [ 1754.633087][T30146] ? __pfx___x64_sys_futex+0x10/0x10 [ 1754.633105][T30146] ? xfd_validate_state+0x61/0x180 [ 1754.633124][T30146] ? __pfx_ksys_write+0x10/0x10 [ 1754.633145][T30146] do_syscall_64+0xcd/0xfa0 [ 1754.633164][T30146] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1754.633179][T30146] RIP: 0033:0x7f1eb018f6c9 [ 1754.633191][T30146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1754.633205][T30146] RSP: 002b:00007f1eb10a0038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1754.633219][T30146] RAX: ffffffffffffffda RBX: 00007f1eb03e5fa0 RCX: 00007f1eb018f6c9 [ 1754.633229][T30146] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1754.633238][T30146] RBP: 00007f1eb0211f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1754.633247][T30146] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1754.633255][T30146] R13: 00007f1eb03e6038 R14: 00007f1eb03e5fa0 R15: 00007fffdf483f58 [ 1754.633275][T30146] [ 1755.114864][T30152] random: crng reseeded on system resumption [ 1755.513141][T30153] can: request_module (can-proto-0) failed. [ 1756.004811][T30167] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input196 [ 1756.339362][T30170] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input197 [ 1757.172332][T30186] netlink: 'syz.0.5595': attribute type 1 has an invalid length. [ 1758.526691][T30202] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input198 [ 1758.913148][T30209] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input199 [ 1759.701529][T30226] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input200 [ 1759.986716][T30228] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input201 [ 1761.117483][T30244] bond0: no command found in slaves file - use +ifname or -ifname [ 1761.780797][T30247] FAULT_INJECTION: forcing a failure. [ 1761.780797][T30247] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1761.897695][T30247] CPU: 0 UID: 0 PID: 30247 Comm: syz.3.5609 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1761.897731][T30247] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1761.897739][T30247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1761.897748][T30247] Call Trace: [ 1761.897754][T30247] [ 1761.897761][T30247] dump_stack_lvl+0x16c/0x1f0 [ 1761.897784][T30247] should_fail_ex+0x512/0x640 [ 1761.897809][T30247] _copy_from_user+0x2e/0xd0 [ 1761.897833][T30247] core_sys_select+0x35b/0xc20 [ 1761.897853][T30247] ? __pfx_core_sys_select+0x10/0x10 [ 1761.897871][T30247] ? futex_wake+0x1ad/0x530 [ 1761.897908][T30247] ? __pfx_do_futex+0x10/0x10 [ 1761.897933][T30247] kern_select+0x15d/0x1e0 [ 1761.897947][T30247] ? __pfx_kern_select+0x10/0x10 [ 1761.897965][T30247] ? xfd_validate_state+0x61/0x180 [ 1761.897988][T30247] __x64_sys_select+0xbd/0x160 [ 1761.898010][T30247] ? do_syscall_64+0x91/0xfa0 [ 1761.898028][T30247] ? lockdep_hardirqs_on+0x7c/0x110 [ 1761.898046][T30247] do_syscall_64+0xcd/0xfa0 [ 1761.898065][T30247] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1761.898081][T30247] RIP: 0033:0x7f8f7338f6c9 [ 1761.898093][T30247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1761.898107][T30247] RSP: 002b:00007f8f74231038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 1761.898122][T30247] RAX: ffffffffffffffda RBX: 00007f8f735e5fa0 RCX: 00007f8f7338f6c9 [ 1761.898133][T30247] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000008 [ 1761.898141][T30247] RBP: 00007f8f73411f91 R08: 0000000000000000 R09: 0000000000000000 [ 1761.898149][T30247] R10: 0000200000000200 R11: 0000000000000246 R12: 0000000000000000 [ 1761.898158][T30247] R13: 00007f8f735e6038 R14: 00007f8f735e5fa0 R15: 00007fffff0e33d8 [ 1761.898177][T30247] [ 1762.762271][T30268] FAULT_INJECTION: forcing a failure. [ 1762.762271][T30268] name failslab, interval 1, probability 0, space 0, times 0 [ 1762.797537][T30268] CPU: 0 UID: 0 PID: 30268 Comm: syz.2.5614 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1762.797570][T30268] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1762.797579][T30268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1762.797588][T30268] Call Trace: [ 1762.797594][T30268] [ 1762.797600][T30268] dump_stack_lvl+0x16c/0x1f0 [ 1762.797622][T30268] should_fail_ex+0x512/0x640 [ 1762.797644][T30268] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 1762.797662][T30268] should_failslab+0xc2/0x120 [ 1762.797682][T30268] kmem_cache_alloc_noprof+0x75/0x6e0 [ 1762.797697][T30268] ? mas_preallocate+0xe6a/0x11f0 [ 1762.797720][T30268] ? mas_preallocate+0xe6a/0x11f0 [ 1762.797736][T30268] mas_preallocate+0xe6a/0x11f0 [ 1762.797758][T30268] ? __pfx_mas_preallocate+0x10/0x10 [ 1762.797782][T30268] ? anon_vma_name+0x81/0x2f0 [ 1762.797806][T30268] __split_vma+0x34a/0x1070 [ 1762.797823][T30268] ? __pfx___split_vma+0x10/0x10 [ 1762.797845][T30268] ? mas_prev_setup.constprop.0+0xb6/0x9d0 [ 1762.797866][T30268] ? __pfx_mas_prev_range+0x10/0x10 [ 1762.797885][T30268] ? can_vma_merge_right+0xa5/0x530 [ 1762.797909][T30268] vma_modify+0x16dc/0x2030 [ 1762.797931][T30268] ? _parse_integer_limit+0x17f/0x1d0 [ 1762.797950][T30268] ? __pfx_vma_modify+0x10/0x10 [ 1762.797963][T30268] ? _kstrtoull+0x145/0x200 [ 1762.797984][T30268] vma_modify_flags+0x212/0x2d0 [ 1762.797999][T30268] ? __pfx_vma_modify_flags+0x10/0x10 [ 1762.798022][T30268] ? may_expand_vm+0xe8/0x430 [ 1762.798044][T30268] mprotect_fixup+0x1df/0xb40 [ 1762.798071][T30268] ? __pfx_mprotect_fixup+0x10/0x10 [ 1762.798093][T30268] ? __pfx_mas_prev+0x10/0x10 [ 1762.798116][T30268] do_mprotect_pkey+0x9bc/0xd40 [ 1762.798144][T30268] ? __pfx_do_mprotect_pkey+0x10/0x10 [ 1762.798167][T30268] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 1762.798193][T30268] ? __fget_files+0x20e/0x3c0 [ 1762.798215][T30268] ? __pfx_ksys_write+0x10/0x10 [ 1762.798235][T30268] __x64_sys_mprotect+0x78/0xc0 [ 1762.798248][T30268] ? lockdep_hardirqs_on+0x7c/0x110 [ 1762.798265][T30268] do_syscall_64+0xcd/0xfa0 [ 1762.798284][T30268] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1762.798300][T30268] RIP: 0033:0x7f9986f8f6c9 [ 1762.798312][T30268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1762.798326][T30268] RSP: 002b:00007f9987d8a038 EFLAGS: 00000246 ORIG_RAX: 000000000000000a [ 1762.798340][T30268] RAX: ffffffffffffffda RBX: 00007f99871e6090 RCX: 00007f9986f8f6c9 [ 1762.798350][T30268] RDX: 0000000000000006 RSI: 0000000000806121 RDI: 0000000000100000 [ 1762.798358][T30268] RBP: 00007f9987d8a090 R08: 0000000000000000 R09: 0000000000000000 [ 1762.798367][T30268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1762.798376][T30268] R13: 00007f99871e6128 R14: 00007f99871e6090 R15: 00007ffd04f8bdc8 [ 1762.798396][T30268] [ 1763.147655][T30273] netlink: 'syz.0.5615': attribute type 1 has an invalid length. [ 1766.160594][T30309] netlink: 'syz.3.5622': attribute type 1 has an invalid length. [ 1766.792183][T30315] ptrace attach of "./syz-executor exec"[30316] was attempted by "./syz-executor exec"[30315] [ 1767.063325][T30327] binder: 30317:30327 ioctl 4018620d 9 returned -22 [ 1768.057473][T30342] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input202 [ 1768.476580][T30344] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input203 [ 1770.265023][T30377] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input204 [ 1771.173895][T30378] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input205 [ 1771.201342][T30386] ptrace attach of "./syz-executor exec"[30387] was attempted by "./syz-executor exec"[30386] [ 1775.212078][T30424] netlink: 64 bytes leftover after parsing attributes in process `syz.0.5650'. [ 1778.984594][T30464] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1779.093902][T30464] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1779.094028][T30464] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1779.094129][T30464] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1779.316207][T30477] FAULT_INJECTION: forcing a failure. [ 1779.316207][T30477] name failslab, interval 1, probability 0, space 0, times 0 [ 1779.316239][T30477] CPU: 0 UID: 0 PID: 30477 Comm: syz.1.5659 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1779.316269][T30477] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1779.316277][T30477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1779.316286][T30477] Call Trace: [ 1779.316297][T30477] [ 1779.316303][T30477] dump_stack_lvl+0x16c/0x1f0 [ 1779.316326][T30477] should_fail_ex+0x512/0x640 [ 1779.316348][T30477] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 1779.316366][T30477] should_failslab+0xc2/0x120 [ 1779.316386][T30477] kmem_cache_alloc_noprof+0x75/0x6e0 [ 1779.316401][T30477] ? vm_area_dup+0x27/0x8d0 [ 1779.316418][T30477] ? vm_area_dup+0x27/0x8d0 [ 1779.316430][T30477] vm_area_dup+0x27/0x8d0 [ 1779.316444][T30477] __split_vma+0x18e/0x1070 [ 1779.316460][T30477] ? __pfx___split_vma+0x10/0x10 [ 1779.316486][T30477] ? __pfx_mas_prev+0x10/0x10 [ 1779.316509][T30477] vms_gather_munmap_vmas+0x3aa/0x1340 [ 1779.316527][T30477] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 1779.316549][T30477] ? lock_acquire+0x179/0x350 [ 1779.316572][T30477] do_vmi_align_munmap+0x286/0x7e0 [ 1779.316587][T30477] ? rcu_is_watching+0x12/0xc0 [ 1779.316602][T30477] ? __pfx_do_vmi_align_munmap+0x10/0x10 [ 1779.316617][T30477] ? finish_task_switch.isra.0+0x221/0xc10 [ 1779.316660][T30477] do_vmi_munmap+0x204/0x3e0 [ 1779.316676][T30477] do_munmap+0xb6/0xf0 [ 1779.316694][T30477] ? __pfx_do_munmap+0x10/0x10 [ 1779.316721][T30477] ? __pfx_down_write_killable+0x10/0x10 [ 1779.316743][T30477] mremap_to+0x236/0x450 [ 1779.316758][T30477] do_mremap+0xd89/0x2020 [ 1779.316778][T30477] ? __lock_acquire+0xb8a/0x1c90 [ 1779.316798][T30477] ? __pfx_do_mremap+0x10/0x10 [ 1779.316812][T30477] ? do_raw_spin_lock+0x12c/0x2b0 [ 1779.316836][T30477] ? lock_acquire+0x179/0x350 [ 1779.316854][T30477] ? find_held_lock+0x2b/0x80 [ 1779.316872][T30477] __do_sys_mremap+0x119/0x170 [ 1779.316886][T30477] ? __pfx___do_sys_mremap+0x10/0x10 [ 1779.316900][T30477] ? read_tsc+0x9/0x20 [ 1779.316915][T30477] ? ktime_get+0x1a7/0x310 [ 1779.316935][T30477] ? kvm_sched_clock_read+0x11/0x20 [ 1779.316950][T30477] ? sched_clock+0x38/0x60 [ 1779.316967][T30477] ? sched_clock_cpu+0x6c/0x530 [ 1779.316997][T30477] do_syscall_64+0xcd/0xfa0 [ 1779.317015][T30477] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1779.317031][T30477] RIP: 0033:0x7f1eb018f6c9 [ 1779.317043][T30477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1779.317058][T30477] RSP: 002b:00007f1eb103d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 1779.317072][T30477] RAX: ffffffffffffffda RBX: 00007f1eb03e6270 RCX: 00007f1eb018f6c9 [ 1779.317081][T30477] RDX: 0000000000000101 RSI: 00f0ffffff7f0000 RDI: 000000110c230000 [ 1779.317091][T30477] RBP: 00007f1eb0211f91 R08: 0000000000000000 R09: 0000000000000000 [ 1779.317099][T30477] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 1779.317108][T30477] R13: 00007f1eb03e6308 R14: 00007f1eb03e6270 R15: 00007fffdf483f58 [ 1779.317129][T30477] [ 1779.779795][T30479] netlink: 338 bytes leftover after parsing attributes in process `syz.0.5661'. [ 1779.782294][T30479] netlink: 338 bytes leftover after parsing attributes in process `syz.0.5661'. [ 1779.876376][T30479] netlink: 134 bytes leftover after parsing attributes in process `syz.0.5661'. [ 1781.027342][T29523] Bluetooth: hci3: command 0x041b tx timeout [ 1781.105374][T29523] Bluetooth: hci4: command 0x0c1a tx timeout [ 1781.105412][T29523] Bluetooth: hci0: command 0x0c1a tx timeout [ 1781.105447][T29523] Bluetooth: hci1: command 0x0c1a tx timeout [ 1782.161199][T30515] netlink: 'syz.2.5670': attribute type 1 has an invalid length. [ 1783.222930][T30533] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input206 [ 1783.637804][T30532] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input207 [ 1783.830187][T30530] Process accounting paused [ 1784.616978][T30555] netlink: 'syz.3.5680': attribute type 1 has an invalid length. [ 1786.263628][T30580] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input208 [ 1786.902134][T30583] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input209 [ 1787.758581][T30593] __vm_enough_memory: pid: 30593, comm: syz.0.5689, bytes: 4398046511104 not enough memory for the allocation [ 1787.850768][T30592] netlink: 'syz.2.5690': attribute type 1 has an invalid length. [ 1788.370555][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1788.376845][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1789.160995][T30614] netlink: 64 bytes leftover after parsing attributes in process `syz.0.5696'. [ 1789.257010][T30612] FAULT_INJECTION: forcing a failure. [ 1789.257010][T30612] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1789.269932][T30612] CPU: 0 UID: 0 PID: 30612 Comm: syz.1.5695 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1789.269966][T30612] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1789.269975][T30612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1789.269984][T30612] Call Trace: [ 1789.269990][T30612] [ 1789.269995][T30612] dump_stack_lvl+0x16c/0x1f0 [ 1789.270018][T30612] should_fail_ex+0x512/0x640 [ 1789.270043][T30612] should_fail_futex+0x4c/0x60 [ 1789.270061][T30612] futex_lock_pi_atomic+0x101/0xd50 [ 1789.270086][T30612] futex_lock_pi+0x23f/0x7c0 [ 1789.270111][T30612] ? __pfx_futex_lock_pi+0x10/0x10 [ 1789.270131][T30612] ? __futex_wait+0x24b/0x2f0 [ 1789.270146][T30612] ? lockdep_hardirqs_on+0x7c/0x110 [ 1789.270175][T30612] ? futex_private_hash_put+0xd5/0x190 [ 1789.270195][T30612] ? __pfx_futex_wake_mark+0x10/0x10 [ 1789.270222][T30612] ? vfs_write+0x15d/0x11d0 [ 1789.270242][T30612] do_futex+0x11a/0x350 [ 1789.270261][T30612] ? __pfx_do_futex+0x10/0x10 [ 1789.270285][T30612] __x64_sys_futex+0x1e0/0x4c0 [ 1789.270306][T30612] ? __pfx___x64_sys_futex+0x10/0x10 [ 1789.270325][T30612] ? xfd_validate_state+0x61/0x180 [ 1789.270351][T30612] ? __pfx_ksys_write+0x10/0x10 [ 1789.270372][T30612] do_syscall_64+0xcd/0xfa0 [ 1789.270392][T30612] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1789.270408][T30612] RIP: 0033:0x7f1eb018f6c9 [ 1789.270420][T30612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1789.270435][T30612] RSP: 002b:00007f1eb10a0038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1789.270449][T30612] RAX: ffffffffffffffda RBX: 00007f1eb03e5fa0 RCX: 00007f1eb018f6c9 [ 1789.270458][T30612] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1789.270467][T30612] RBP: 00007f1eb0211f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1789.270476][T30612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1789.270486][T30612] R13: 00007f1eb03e6038 R14: 00007f1eb03e5fa0 R15: 00007fffdf483f58 [ 1789.270506][T30612] [ 1790.563369][T30612] ptm ptm0: ldisc open failed (-12), clearing slot 0 [ 1790.959438][T30632] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input210 [ 1791.093527][T30634] netlink: 64 bytes leftover after parsing attributes in process `syz.1.5709'. [ 1791.499125][T30637] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input211 [ 1792.176336][T30653] netlink: 338 bytes leftover after parsing attributes in process `syz.3.5705'. [ 1792.260278][T30655] netlink: 338 bytes leftover after parsing attributes in process `syz.3.5705'. [ 1792.358750][T30653] netlink: 126 bytes leftover after parsing attributes in process `syz.3.5705'. [ 1792.543869][T30661] netlink: 'syz.0.5706': attribute type 1 has an invalid length. [ 1792.863721][T30665] FAULT_INJECTION: forcing a failure. [ 1792.863721][T30665] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1792.876694][T30665] CPU: 0 UID: 0 PID: 30665 Comm: syz.3.5710 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1792.876727][T30665] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1792.876735][T30665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1792.876745][T30665] Call Trace: [ 1792.876750][T30665] [ 1792.876756][T30665] dump_stack_lvl+0x16c/0x1f0 [ 1792.876779][T30665] should_fail_ex+0x512/0x640 [ 1792.876805][T30665] should_fail_futex+0x4c/0x60 [ 1792.876823][T30665] futex_lock_pi_atomic+0x101/0xd50 [ 1792.876849][T30665] futex_lock_pi+0x23f/0x7c0 [ 1792.876874][T30665] ? __pfx_futex_lock_pi+0x10/0x10 [ 1792.876894][T30665] ? __futex_wait+0x24b/0x2f0 [ 1792.876921][T30665] ? futex_private_hash_put+0xd5/0x190 [ 1792.876942][T30665] ? __pfx_futex_wake_mark+0x10/0x10 [ 1792.876968][T30665] ? vfs_write+0x15d/0x11d0 [ 1792.876989][T30665] do_futex+0x11a/0x350 [ 1792.877015][T30665] ? __pfx_do_futex+0x10/0x10 [ 1792.877040][T30665] __x64_sys_futex+0x1e0/0x4c0 [ 1792.877062][T30665] ? __pfx___x64_sys_futex+0x10/0x10 [ 1792.877081][T30665] ? xfd_validate_state+0x61/0x180 [ 1792.877102][T30665] ? __pfx_ksys_write+0x10/0x10 [ 1792.877123][T30665] do_syscall_64+0xcd/0xfa0 [ 1792.877142][T30665] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1792.877157][T30665] RIP: 0033:0x7f8f7338f6c9 [ 1792.877170][T30665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1792.877184][T30665] RSP: 002b:00007f8f74231038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1792.877198][T30665] RAX: ffffffffffffffda RBX: 00007f8f735e5fa0 RCX: 00007f8f7338f6c9 [ 1792.877208][T30665] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1792.877216][T30665] RBP: 00007f8f73411f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1792.877225][T30665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1792.877235][T30665] R13: 00007f8f735e6038 R14: 00007f8f735e5fa0 R15: 00007fffff0e33d8 [ 1792.877254][T30665] [ 1793.606194][T30672] netlink: 64 bytes leftover after parsing attributes in process `syz.3.5712'. [ 1794.051366][T30686] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input212 [ 1794.531168][T30692] netlink: 338 bytes leftover after parsing attributes in process `syz.2.5718'. [ 1794.556577][T30687] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input213 [ 1794.575868][T30696] FAULT_INJECTION: forcing a failure. [ 1794.575868][T30696] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1794.601250][T30694] netlink: 338 bytes leftover after parsing attributes in process `syz.2.5718'. [ 1794.643570][T30692] netlink: 134 bytes leftover after parsing attributes in process `syz.2.5718'. [ 1794.653060][T30696] CPU: 0 UID: 0 PID: 30696 Comm: syz.3.5719 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1794.653092][T30696] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1794.653101][T30696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1794.653110][T30696] Call Trace: [ 1794.653115][T30696] [ 1794.653121][T30696] dump_stack_lvl+0x16c/0x1f0 [ 1794.653143][T30696] should_fail_ex+0x512/0x640 [ 1794.653168][T30696] get_futex_key+0x1d0/0x1560 [ 1794.653191][T30696] ? __pfx_get_futex_key+0x10/0x10 [ 1794.653215][T30696] futex_wake+0xea/0x530 [ 1794.653236][T30696] ? rcu_is_watching+0x12/0xc0 [ 1794.653253][T30696] ? __pfx_futex_wake+0x10/0x10 [ 1794.653277][T30696] ? kmem_cache_free+0x2d4/0x6c0 [ 1794.653292][T30696] ? putname+0x154/0x1a0 [ 1794.653314][T30696] do_futex+0x1e3/0x350 [ 1794.653333][T30696] ? __pfx_do_futex+0x10/0x10 [ 1794.653358][T30696] __x64_sys_futex+0x1e0/0x4c0 [ 1794.653378][T30696] ? __x64_sys_openat+0x174/0x210 [ 1794.653398][T30696] ? __pfx___x64_sys_futex+0x10/0x10 [ 1794.653425][T30696] do_syscall_64+0xcd/0xfa0 [ 1794.653444][T30696] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1794.653459][T30696] RIP: 0033:0x7f8f7338f6c9 [ 1794.653471][T30696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1794.653485][T30696] RSP: 002b:00007f8f742310e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1794.653500][T30696] RAX: ffffffffffffffda RBX: 00007f8f735e5fa8 RCX: 00007f8f7338f6c9 [ 1794.653510][T30696] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f8f735e5fac [ 1794.653519][T30696] RBP: 00007f8f735e5fa0 R08: 00007f8f74232000 R09: 0000000000000000 [ 1794.653528][T30696] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 1794.653536][T30696] R13: 00007f8f735e6038 R14: 00007fffff0e32f0 R15: 00007fffff0e33d8 [ 1794.653556][T30696] [ 1795.781010][T30714] netlink: 64 bytes leftover after parsing attributes in process `syz.1.5724'. [ 1796.012512][T30719] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input214 [ 1796.528200][T30722] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input215 [ 1797.115414][T30740] netlink: 338 bytes leftover after parsing attributes in process `syz.3.5730'. [ 1797.153615][T30743] netlink: 338 bytes leftover after parsing attributes in process `syz.3.5730'. [ 1797.381046][T30746] FAULT_INJECTION: forcing a failure. [ 1797.381046][T30746] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1797.449806][T30746] CPU: 0 UID: 0 PID: 30746 Comm: syz.1.5740 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1797.449839][T30746] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1797.449847][T30746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1797.449857][T30746] Call Trace: [ 1797.449862][T30746] [ 1797.449868][T30746] dump_stack_lvl+0x16c/0x1f0 [ 1797.449891][T30746] should_fail_ex+0x512/0x640 [ 1797.449917][T30746] get_futex_key+0x1d0/0x1560 [ 1797.449940][T30746] ? __pfx_get_futex_key+0x10/0x10 [ 1797.449965][T30746] futex_wake+0xea/0x530 [ 1797.449987][T30746] ? rcu_is_watching+0x12/0xc0 [ 1797.450003][T30746] ? __pfx_futex_wake+0x10/0x10 [ 1797.450028][T30746] ? kmem_cache_free+0x2d4/0x6c0 [ 1797.450043][T30746] ? putname+0x154/0x1a0 [ 1797.450065][T30746] do_futex+0x1e3/0x350 [ 1797.450085][T30746] ? __pfx_do_futex+0x10/0x10 [ 1797.450109][T30746] __x64_sys_futex+0x1e0/0x4c0 [ 1797.450129][T30746] ? __x64_sys_openat+0x174/0x210 [ 1797.450150][T30746] ? __pfx___x64_sys_futex+0x10/0x10 [ 1797.450177][T30746] do_syscall_64+0xcd/0xfa0 [ 1797.450195][T30746] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1797.450210][T30746] RIP: 0033:0x7f1eb018f6c9 [ 1797.450222][T30746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1797.450236][T30746] RSP: 002b:00007f1eb10a00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1797.450250][T30746] RAX: ffffffffffffffda RBX: 00007f1eb03e5fa8 RCX: 00007f1eb018f6c9 [ 1797.450260][T30746] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1eb03e5fac [ 1797.450269][T30746] RBP: 00007f1eb03e5fa0 R08: 00007f1eb10a1000 R09: 0000000000000000 [ 1797.450278][T30746] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 1797.450287][T30746] R13: 00007f1eb03e6038 R14: 00007fffdf483e70 R15: 00007fffdf483f58 [ 1797.450306][T30746] [ 1797.873579][T30749] FAULT_INJECTION: forcing a failure. [ 1797.873579][T30749] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1797.905702][T30749] CPU: 0 UID: 0 PID: 30749 Comm: syz.0.5732 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1797.905738][T30749] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1797.905746][T30749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1797.905755][T30749] Call Trace: [ 1797.905761][T30749] [ 1797.905767][T30749] dump_stack_lvl+0x16c/0x1f0 [ 1797.905790][T30749] should_fail_ex+0x512/0x640 [ 1797.905815][T30749] get_futex_key+0x1d0/0x1560 [ 1797.905838][T30749] ? __pfx_get_futex_key+0x10/0x10 [ 1797.905863][T30749] futex_wake+0xea/0x530 [ 1797.905884][T30749] ? rcu_is_watching+0x12/0xc0 [ 1797.905901][T30749] ? __pfx_futex_wake+0x10/0x10 [ 1797.905924][T30749] ? kmem_cache_free+0x2d4/0x6c0 [ 1797.905939][T30749] ? putname+0x154/0x1a0 [ 1797.905961][T30749] do_futex+0x1e3/0x350 [ 1797.905980][T30749] ? __pfx_do_futex+0x10/0x10 [ 1797.906004][T30749] __x64_sys_futex+0x1e0/0x4c0 [ 1797.906025][T30749] ? __x64_sys_openat+0x174/0x210 [ 1797.906046][T30749] ? __pfx___x64_sys_futex+0x10/0x10 [ 1797.906073][T30749] do_syscall_64+0xcd/0xfa0 [ 1797.906092][T30749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1797.906107][T30749] RIP: 0033:0x7f6ddff8f6c9 [ 1797.906119][T30749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1797.906133][T30749] RSP: 002b:00007f6de0d8a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1797.906147][T30749] RAX: ffffffffffffffda RBX: 00007f6de01e5fa8 RCX: 00007f6ddff8f6c9 [ 1797.906157][T30749] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6de01e5fac [ 1797.906166][T30749] RBP: 00007f6de01e5fa0 R08: 00007f6de0d8b000 R09: 0000000000000000 [ 1797.906180][T30749] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000 [ 1797.906188][T30749] R13: 00007f6de01e6038 R14: 00007fffd762e8e0 R15: 00007fffd762e9c8 [ 1797.906208][T30749] [ 1800.112950][T30778] netlink: 338 bytes leftover after parsing attributes in process `syz.3.5741'. [ 1800.149474][T30780] netlink: 338 bytes leftover after parsing attributes in process `syz.3.5741'. [ 1800.580154][T30794] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input217 [ 1801.359283][T30797] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input218 [ 1801.919739][T30811] FAULT_INJECTION: forcing a failure. [ 1801.919739][T30811] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1801.932648][T30811] CPU: 0 UID: 0 PID: 30811 Comm: syz.3.5748 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1801.932683][T30811] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1801.932691][T30811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1801.932701][T30811] Call Trace: [ 1801.932706][T30811] [ 1801.932712][T30811] dump_stack_lvl+0x16c/0x1f0 [ 1801.932735][T30811] should_fail_ex+0x512/0x640 [ 1801.932759][T30811] should_fail_futex+0x4c/0x60 [ 1801.932778][T30811] futex_lock_pi_atomic+0x101/0xd50 [ 1801.932804][T30811] futex_lock_pi+0x23f/0x7c0 [ 1801.932828][T30811] ? __pfx_futex_lock_pi+0x10/0x10 [ 1801.932848][T30811] ? __futex_wait+0x24b/0x2f0 [ 1801.932876][T30811] ? futex_private_hash_put+0xd5/0x190 [ 1801.932896][T30811] ? __pfx_futex_wake_mark+0x10/0x10 [ 1801.932922][T30811] ? vfs_write+0x15d/0x11d0 [ 1801.932942][T30811] do_futex+0x11a/0x350 [ 1801.932961][T30811] ? __pfx_do_futex+0x10/0x10 [ 1801.932985][T30811] __x64_sys_futex+0x1e0/0x4c0 [ 1801.933006][T30811] ? __pfx___x64_sys_futex+0x10/0x10 [ 1801.933025][T30811] ? xfd_validate_state+0x61/0x180 [ 1801.933044][T30811] ? __pfx_ksys_write+0x10/0x10 [ 1801.933065][T30811] do_syscall_64+0xcd/0xfa0 [ 1801.933084][T30811] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1801.933098][T30811] RIP: 0033:0x7f8f7338f6c9 [ 1801.933117][T30811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1801.933132][T30811] RSP: 002b:00007f8f74231038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1801.933147][T30811] RAX: ffffffffffffffda RBX: 00007f8f735e5fa0 RCX: 00007f8f7338f6c9 [ 1801.933157][T30811] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1801.933166][T30811] RBP: 00007f8f73411f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1801.933175][T30811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1801.933183][T30811] R13: 00007f8f735e6038 R14: 00007f8f735e5fa0 R15: 00007fffff0e33d8 [ 1801.933204][T30811] [ 1804.193199][T30825] netlink: 338 bytes leftover after parsing attributes in process `syz.2.5753'. [ 1804.226195][T30829] netlink: 338 bytes leftover after parsing attributes in process `syz.2.5753'. [ 1804.589407][T30836] netlink: 64 bytes leftover after parsing attributes in process `syz.2.5754'. [ 1804.919179][T30845] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input219 [ 1805.293732][T30846] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input220 [ 1806.991583][T30870] netlink: 334 bytes leftover after parsing attributes in process `syz.0.5761'. [ 1807.060855][T30870] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1807.105659][T30870] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1807.302546][T30874] FAULT_INJECTION: forcing a failure. [ 1807.302546][T30874] name failslab, interval 1, probability 0, space 0, times 0 [ 1807.345575][T30874] CPU: 0 UID: 0 PID: 30874 Comm: syz.0.5762 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1807.345611][T30874] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1807.345619][T30874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1807.345628][T30874] Call Trace: [ 1807.345634][T30874] [ 1807.345641][T30874] dump_stack_lvl+0x16c/0x1f0 [ 1807.345672][T30874] should_fail_ex+0x512/0x640 [ 1807.345695][T30874] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 1807.345714][T30874] should_failslab+0xc2/0x120 [ 1807.345734][T30874] kmem_cache_alloc_noprof+0x75/0x6e0 [ 1807.345753][T30874] ? mas_preallocate+0xe6a/0x11f0 [ 1807.345775][T30874] ? mas_preallocate+0xe6a/0x11f0 [ 1807.345792][T30874] mas_preallocate+0xe6a/0x11f0 [ 1807.345813][T30874] ? __pfx_mas_preallocate+0x10/0x10 [ 1807.345836][T30874] ? vm_area_alloc+0x1f/0x160 [ 1807.345851][T30874] ? lockdep_init_map_type+0x5c/0x280 [ 1807.345874][T30874] __mmap_region+0x117f/0x27a0 [ 1807.345892][T30874] ? find_held_lock+0x2b/0x80 [ 1807.345907][T30874] ? __pfx___mmap_region+0x10/0x10 [ 1807.345920][T30874] ? finish_task_switch.isra.0+0x21c/0xc10 [ 1807.345937][T30874] ? rcu_is_watching+0x12/0xc0 [ 1807.345952][T30874] ? finish_task_switch.isra.0+0x221/0xc10 [ 1807.345966][T30874] ? lockdep_hardirqs_on+0x7c/0x110 [ 1807.345983][T30874] ? finish_task_switch.isra.0+0x221/0xc10 [ 1807.346015][T30874] ? __pfx___schedule+0x10/0x10 [ 1807.346055][T30874] ? trace_cap_capable+0x18d/0x200 [ 1807.346081][T30874] mmap_region+0x1ab/0x3f0 [ 1807.346095][T30874] ? __get_unmapped_area+0x267/0x440 [ 1807.346116][T30874] do_mmap+0xa3e/0x1210 [ 1807.346137][T30874] ? __pfx_do_mmap+0x10/0x10 [ 1807.346155][T30874] ? __pfx_down_write_killable+0x10/0x10 [ 1807.346179][T30874] vm_mmap_pgoff+0x29e/0x470 [ 1807.346201][T30874] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1807.346224][T30874] ? __x64_sys_futex+0x1e0/0x4c0 [ 1807.346242][T30874] ? __x64_sys_futex+0x1e9/0x4c0 [ 1807.346263][T30874] ksys_mmap_pgoff+0x7d/0x5c0 [ 1807.346280][T30874] ? xfd_validate_state+0x61/0x180 [ 1807.346301][T30874] ? __pfx___do_sys_close_range+0x10/0x10 [ 1807.346320][T30874] __x64_sys_mmap+0x125/0x190 [ 1807.346343][T30874] do_syscall_64+0xcd/0xfa0 [ 1807.346362][T30874] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1807.346377][T30874] RIP: 0033:0x7f6ddff8f6c9 [ 1807.346389][T30874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1807.346404][T30874] RSP: 002b:00007f6de0d8a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1807.346419][T30874] RAX: ffffffffffffffda RBX: 00007f6de01e5fa0 RCX: 00007f6ddff8f6c9 [ 1807.346429][T30874] RDX: 00000000000000df RSI: 0000000000020009 RDI: 0000000000000000 [ 1807.346438][T30874] RBP: 00007f6de0011f91 R08: 00000000000003fd R09: 0000000000008000 [ 1807.346448][T30874] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 1807.346457][T30874] R13: 00007f6de01e6038 R14: 00007f6de01e5fa0 R15: 00007fffd762e9c8 [ 1807.346478][T30874] [ 1807.671915][T30874] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5762'. [ 1807.683273][T30874] bridge0: port 2(bridge_slave_1) entered disabled state [ 1807.705484][T30874] bridge_slave_1 (unregistering): left allmulticast mode [ 1807.713892][T30874] bridge_slave_1 (unregistering): left promiscuous mode [ 1807.720962][T30874] bridge0: port 2(bridge_slave_1) entered disabled state [ 1808.183124][T30877] netlink: 338 bytes leftover after parsing attributes in process `syz.3.5763'. [ 1808.200459][T30878] netlink: 338 bytes leftover after parsing attributes in process `syz.3.5763'. [ 1811.608656][T30928] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 1811.978388][T30938] netlink: 'syz.2.5776': attribute type 1 has an invalid length. [ 1812.126607][T30942] netlink: 'syz.0.5777': attribute type 1 has an invalid length. [ 1813.378091][T30962] netlink: 'syz.3.5782': attribute type 1 has an invalid length. [ 1814.377302][T30957] Process accounting resumed [ 1815.256724][T30981] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 1816.018593][T31007] random: crng reseeded on system resumption [ 1816.684412][T31014] can: request_module (can-proto-0) failed. [ 1817.395457][T31028] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input221 [ 1817.419187][T31029] binder: 31020:31029 ioctl 4018620d 9 returned -22 [ 1818.462440][T31030] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input222 [ 1819.086197][T24311] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 1819.764288][T31054] netlink: 'syz.1.5803': attribute type 1 has an invalid length. [ 1820.934942][T31071] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input223 [ 1821.028310][T31070] netlink: 'syz.0.5808': attribute type 1 has an invalid length. [ 1821.363708][T31076] netlink: 'syz.0.5809': attribute type 1 has an invalid length. [ 1821.483855][T31072] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input224 [ 1822.161400][T31082] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input225 [ 1822.876968][T31083] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input226 [ 1824.553541][T31109] netlink: 338 bytes leftover after parsing attributes in process `syz.2.5816'. [ 1824.623012][T31109] netlink: 338 bytes leftover after parsing attributes in process `syz.2.5816'. [ 1825.745914][T31135] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input227 [ 1826.198504][T31136] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input228 [ 1826.959653][T31153] netlink: 'syz.2.5825': attribute type 1 has an invalid length. [ 1828.492977][T31178] netlink: 338 bytes leftover after parsing attributes in process `syz.1.5830'. [ 1828.567238][T31178] netlink: 342 bytes leftover after parsing attributes in process `syz.1.5830'. [ 1829.648356][T31199] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input229 [ 1830.835000][T31202] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input230 [ 1836.515371][T31281] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input231 [ 1837.323249][T31282] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input232 [ 1838.677362][T31302] netlink: 64 bytes leftover after parsing attributes in process `syz.0.5857'. [ 1844.324478][T31371] netlink: 64 bytes leftover after parsing attributes in process `syz.3.5869'. [ 1844.768425][T31344] Process accounting paused [ 1846.722236][T31399] FAULT_INJECTION: forcing a failure. [ 1846.722236][T31399] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1846.793581][T31399] CPU: 0 UID: 0 PID: 31399 Comm: syz.2.5876 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1846.793615][T31399] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1846.793624][T31399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1846.793632][T31399] Call Trace: [ 1846.793638][T31399] [ 1846.793644][T31399] dump_stack_lvl+0x16c/0x1f0 [ 1846.793667][T31399] should_fail_ex+0x512/0x640 [ 1846.793692][T31399] get_futex_key+0x1d0/0x1560 [ 1846.793714][T31399] ? __pfx_get_futex_key+0x10/0x10 [ 1846.793745][T31399] futex_wake+0xea/0x530 [ 1846.793774][T31399] ? rcu_is_watching+0x12/0xc0 [ 1846.793792][T31399] ? __pfx_futex_wake+0x10/0x10 [ 1846.793815][T31399] ? kmem_cache_free+0x2d4/0x6c0 [ 1846.793832][T31399] ? putname+0x154/0x1a0 [ 1846.793855][T31399] do_futex+0x1e3/0x350 [ 1846.793875][T31399] ? __pfx_do_futex+0x10/0x10 [ 1846.793899][T31399] __x64_sys_futex+0x1e0/0x4c0 [ 1846.793919][T31399] ? __x64_sys_openat+0x174/0x210 [ 1846.793939][T31399] ? __pfx___x64_sys_futex+0x10/0x10 [ 1846.793966][T31399] do_syscall_64+0xcd/0xfa0 [ 1846.793985][T31399] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1846.794000][T31399] RIP: 0033:0x7f9986f8f6c9 [ 1846.794012][T31399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1846.794026][T31399] RSP: 002b:00007f9987dab0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1846.794040][T31399] RAX: ffffffffffffffda RBX: 00007f99871e5fa8 RCX: 00007f9986f8f6c9 [ 1846.794050][T31399] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f99871e5fac [ 1846.794058][T31399] RBP: 00007f99871e5fa0 R08: 00007f9987dac000 R09: 0000000000000000 [ 1846.794067][T31399] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 1846.794076][T31399] R13: 00007f99871e6038 R14: 00007ffd04f8bce0 R15: 00007ffd04f8bdc8 [ 1846.794095][T31399] [ 1847.901699][T31412] FAULT_INJECTION: forcing a failure. [ 1847.901699][T31412] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1847.914633][T31412] CPU: 0 UID: 0 PID: 31412 Comm: syz.0.5879 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1847.914673][T31412] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1847.914681][T31412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1847.914690][T31412] Call Trace: [ 1847.914696][T31412] [ 1847.914702][T31412] dump_stack_lvl+0x16c/0x1f0 [ 1847.914724][T31412] should_fail_ex+0x512/0x640 [ 1847.914749][T31412] should_fail_futex+0x4c/0x60 [ 1847.914768][T31412] futex_lock_pi_atomic+0x101/0xd50 [ 1847.914794][T31412] futex_lock_pi+0x23f/0x7c0 [ 1847.914818][T31412] ? __pfx_futex_lock_pi+0x10/0x10 [ 1847.914838][T31412] ? __futex_wait+0x24b/0x2f0 [ 1847.914853][T31412] ? lockdep_hardirqs_on+0x7c/0x110 [ 1847.914881][T31412] ? futex_private_hash_put+0xd5/0x190 [ 1847.914902][T31412] ? __pfx_futex_wake_mark+0x10/0x10 [ 1847.914928][T31412] ? vfs_write+0x15d/0x11d0 [ 1847.914948][T31412] do_futex+0x11a/0x350 [ 1847.914967][T31412] ? __pfx_do_futex+0x10/0x10 [ 1847.914991][T31412] __x64_sys_futex+0x1e0/0x4c0 [ 1847.915012][T31412] ? __pfx___x64_sys_futex+0x10/0x10 [ 1847.915031][T31412] ? xfd_validate_state+0x61/0x180 [ 1847.915050][T31412] ? __pfx_ksys_write+0x10/0x10 [ 1847.915070][T31412] do_syscall_64+0xcd/0xfa0 [ 1847.915089][T31412] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1847.915103][T31412] RIP: 0033:0x7f6ddff8f6c9 [ 1847.915116][T31412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1847.915130][T31412] RSP: 002b:00007f6de0d8a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1847.915145][T31412] RAX: ffffffffffffffda RBX: 00007f6de01e5fa0 RCX: 00007f6ddff8f6c9 [ 1847.915155][T31412] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1847.915163][T31412] RBP: 00007f6de0011f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1847.915172][T31412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1847.915181][T31412] R13: 00007f6de01e6038 R14: 00007f6de01e5fa0 R15: 00007fffd762e9c8 [ 1847.915202][T31412] [ 1849.506061][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1849.512441][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1850.497738][T31451] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input233 [ 1850.940926][T31452] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input234 [ 1853.232415][T31489] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input235 [ 1853.527452][T31491] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input236 [ 1854.617739][T31512] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input237 [ 1855.261198][T31519] netlink: 342 bytes leftover after parsing attributes in process `syz.1.5904'. [ 1855.712358][T31523] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input238 [ 1856.513008][T31535] FAULT_INJECTION: forcing a failure. [ 1856.513008][T31535] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1856.525926][T31535] CPU: 0 UID: 0 PID: 31535 Comm: syz.1.5910 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1856.525959][T31535] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1856.525967][T31535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1856.525976][T31535] Call Trace: [ 1856.525982][T31535] [ 1856.525988][T31535] dump_stack_lvl+0x16c/0x1f0 [ 1856.526010][T31535] should_fail_ex+0x512/0x640 [ 1856.526036][T31535] should_fail_futex+0x4c/0x60 [ 1856.526054][T31535] futex_lock_pi_atomic+0x101/0xd50 [ 1856.526080][T31535] futex_lock_pi+0x23f/0x7c0 [ 1856.526105][T31535] ? __pfx_futex_lock_pi+0x10/0x10 [ 1856.526125][T31535] ? __futex_wait+0x24b/0x2f0 [ 1856.526140][T31535] ? lockdep_hardirqs_on+0x7c/0x110 [ 1856.526168][T31535] ? futex_private_hash_put+0xd5/0x190 [ 1856.526188][T31535] ? __pfx_futex_wake_mark+0x10/0x10 [ 1856.526214][T31535] ? vfs_write+0x15d/0x11d0 [ 1856.526234][T31535] do_futex+0x11a/0x350 [ 1856.526253][T31535] ? __pfx_do_futex+0x10/0x10 [ 1856.526277][T31535] __x64_sys_futex+0x1e0/0x4c0 [ 1856.526299][T31535] ? __pfx___x64_sys_futex+0x10/0x10 [ 1856.526318][T31535] ? xfd_validate_state+0x61/0x180 [ 1856.526337][T31535] ? __pfx_ksys_write+0x10/0x10 [ 1856.526357][T31535] do_syscall_64+0xcd/0xfa0 [ 1856.526376][T31535] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1856.526390][T31535] RIP: 0033:0x7f1eb018f6c9 [ 1856.526402][T31535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1856.526417][T31535] RSP: 002b:00007f1eb10a0038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1856.526431][T31535] RAX: ffffffffffffffda RBX: 00007f1eb03e5fa0 RCX: 00007f1eb018f6c9 [ 1856.526441][T31535] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1856.526449][T31535] RBP: 00007f1eb0211f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1856.526458][T31535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1856.526467][T31535] R13: 00007f1eb03e6038 R14: 00007f1eb03e5fa0 R15: 00007fffdf483f58 [ 1856.526487][T31535] [ 1860.216717][T31597] FAULT_INJECTION: forcing a failure. [ 1860.216717][T31597] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1860.229659][T31597] CPU: 0 UID: 0 PID: 31597 Comm: syz.0.5924 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1860.229693][T31597] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1860.229702][T31597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1860.229711][T31597] Call Trace: [ 1860.229716][T31597] [ 1860.229722][T31597] dump_stack_lvl+0x16c/0x1f0 [ 1860.229745][T31597] should_fail_ex+0x512/0x640 [ 1860.229771][T31597] should_fail_futex+0x4c/0x60 [ 1860.229789][T31597] futex_lock_pi_atomic+0x101/0xd50 [ 1860.229816][T31597] futex_lock_pi+0x23f/0x7c0 [ 1860.229840][T31597] ? __pfx_futex_lock_pi+0x10/0x10 [ 1860.229860][T31597] ? __futex_wait+0x24b/0x2f0 [ 1860.229875][T31597] ? lockdep_hardirqs_on+0x7c/0x110 [ 1860.229903][T31597] ? futex_private_hash_put+0xd5/0x190 [ 1860.229924][T31597] ? __pfx_futex_wake_mark+0x10/0x10 [ 1860.229950][T31597] ? vfs_write+0x15d/0x11d0 [ 1860.229970][T31597] do_futex+0x11a/0x350 [ 1860.229989][T31597] ? __pfx_do_futex+0x10/0x10 [ 1860.230013][T31597] __x64_sys_futex+0x1e0/0x4c0 [ 1860.230034][T31597] ? __pfx___x64_sys_futex+0x10/0x10 [ 1860.230053][T31597] ? xfd_validate_state+0x61/0x180 [ 1860.230072][T31597] ? __pfx_ksys_write+0x10/0x10 [ 1860.230093][T31597] do_syscall_64+0xcd/0xfa0 [ 1860.230111][T31597] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1860.230127][T31597] RIP: 0033:0x7f6ddff8f6c9 [ 1860.230140][T31597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1860.230154][T31597] RSP: 002b:00007f6de0d8a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1860.230168][T31597] RAX: ffffffffffffffda RBX: 00007f6de01e5fa0 RCX: 00007f6ddff8f6c9 [ 1860.230177][T31597] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1860.230185][T31597] RBP: 00007f6de0011f91 R08: 0000000000000000 R09: 000000008000fff5 [ 1860.230194][T31597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1860.230203][T31597] R13: 00007f6de01e6038 R14: 00007f6de01e5fa0 R15: 00007fffd762e9c8 [ 1860.230223][T31597] [ 1864.688153][T31654] FAULT_INJECTION: forcing a failure. [ 1864.688153][T31654] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1864.793734][T31654] CPU: 0 UID: 0 PID: 31654 Comm: syz.3.5939 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1864.793771][T31654] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1864.793780][T31654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1864.793789][T31654] Call Trace: [ 1864.793795][T31654] [ 1864.793801][T31654] dump_stack_lvl+0x16c/0x1f0 [ 1864.793823][T31654] should_fail_ex+0x512/0x640 [ 1864.793848][T31654] should_fail_alloc_page+0xe7/0x130 [ 1864.793869][T31654] prepare_alloc_pages+0x3c2/0x610 [ 1864.793891][T31654] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 1864.793908][T31654] ? __pfx_try_to_migrate_one+0x10/0x10 [ 1864.793935][T31654] ? __up_read+0x1f8/0x750 [ 1864.793957][T31654] ? __pfx___up_read+0x10/0x10 [ 1864.793977][T31654] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1864.793991][T31654] ? rmap_walk_anon+0x503/0x710 [ 1864.794032][T31654] __folio_alloc_noprof+0x11/0x220 [ 1864.794047][T31654] alloc_migration_target+0x24a/0x660 [ 1864.794069][T31654] migrate_pages_batch+0x3bc/0x3bb0 [ 1864.794093][T31654] ? __pfx_alloc_migration_target+0x10/0x10 [ 1864.794121][T31654] ? __pfx_migrate_pages_batch+0x10/0x10 [ 1864.794146][T31654] ? __pfx_walk_pgd_range+0x10/0x10 [ 1864.794164][T31654] migrate_pages_sync+0x12d/0x8a0 [ 1864.794185][T31654] ? __pfx_alloc_migration_target+0x10/0x10 [ 1864.794209][T31654] ? queue_pages_test_walk+0x279/0x410 [ 1864.794229][T31654] ? __pfx_migrate_pages_sync+0x10/0x10 [ 1864.794251][T31654] ? walk_page_test+0x9b/0x180 [ 1864.794266][T31654] ? walk_page_range_mm+0x235/0xb40 [ 1864.794286][T31654] migrate_pages+0x1b5f/0x23a0 [ 1864.794309][T31654] ? __pfx_alloc_migration_target+0x10/0x10 [ 1864.794335][T31654] ? __pfx_migrate_pages+0x10/0x10 [ 1864.794356][T31654] ? queue_pages_range+0x11e/0x180 [ 1864.794376][T31654] ? __pfx___up_read+0x10/0x10 [ 1864.794397][T31654] ? do_migrate_pages+0x458/0x750 [ 1864.794419][T31654] do_migrate_pages+0x48e/0x750 [ 1864.794443][T31654] ? __pfx_do_migrate_pages+0x10/0x10 [ 1864.794463][T31654] ? rcu_is_watching+0x12/0xc0 [ 1864.794482][T31654] ? cap_capable+0xb3/0x250 [ 1864.794500][T31654] ? get_task_mm+0xc2/0xf0 [ 1864.794516][T31654] ? security_capable+0x250/0x260 [ 1864.794537][T31654] kernel_migrate_pages+0x55b/0x700 [ 1864.794557][T31654] ? __pfx_kernel_migrate_pages+0x10/0x10 [ 1864.794577][T31654] ? __pfx_do_writev+0x10/0x10 [ 1864.794594][T31654] __x64_sys_migrate_pages+0x96/0x100 [ 1864.794614][T31654] ? lockdep_hardirqs_on+0x7c/0x110 [ 1864.794632][T31654] do_syscall_64+0xcd/0xfa0 [ 1864.794650][T31654] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1864.794665][T31654] RIP: 0033:0x7f8f7338f6c9 [ 1864.794677][T31654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1864.794691][T31654] RSP: 002b:00007f8f74231038 EFLAGS: 00000246 ORIG_RAX: 0000000000000100 [ 1864.794705][T31654] RAX: ffffffffffffffda RBX: 00007f8f735e5fa0 RCX: 00007f8f7338f6c9 [ 1864.794715][T31654] RDX: 0000200000000100 RSI: 000000000000000a RDI: 0000000000000000 [ 1864.794725][T31654] RBP: 00007f8f73411f91 R08: 0000000000000000 R09: 0000000000000000 [ 1864.794734][T31654] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000000 [ 1864.794743][T31654] R13: 00007f8f735e6038 R14: 00007f8f735e5fa0 R15: 00007fffff0e33d8 [ 1864.794763][T31654] [ 1868.038392][T31692] netlink: 342 bytes leftover after parsing attributes in process `syz.2.5947'. [ 1869.326408][T31715] sd 0:0:1:0: PR command failed: 1026 [ 1869.408664][T31715] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 1869.468433][T31715] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 1869.650380][T31720] FAULT_INJECTION: forcing a failure. [ 1869.650380][T31720] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1869.744879][T31723] Invalid ELF header magic: != ELF [ 1869.778164][T31720] CPU: 0 UID: 0 PID: 31720 Comm: syz.1.5954 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1869.778198][T31720] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1869.778206][T31720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1869.778215][T31720] Call Trace: [ 1869.778220][T31720] [ 1869.778226][T31720] dump_stack_lvl+0x16c/0x1f0 [ 1869.778249][T31720] should_fail_ex+0x512/0x640 [ 1869.778274][T31720] _copy_from_user+0x2e/0xd0 [ 1869.778298][T31720] copy_msghdr_from_user+0x98/0x160 [ 1869.778314][T31720] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 1869.778332][T31720] ? kfree+0x252/0x6d0 [ 1869.778345][T31720] ? __lock_acquire+0x622/0x1c90 [ 1869.778372][T31720] ___sys_recvmsg+0xdb/0x1a0 [ 1869.778390][T31720] ? __pfx____sys_recvmsg+0x10/0x10 [ 1869.778415][T31720] ? __pfx___might_resched+0x10/0x10 [ 1869.778435][T31720] do_recvmmsg+0x2fe/0x750 [ 1869.778453][T31720] ? __pfx_do_recvmmsg+0x10/0x10 [ 1869.778471][T31720] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 1869.778496][T31720] ? __fget_files+0x20e/0x3c0 [ 1869.778516][T31720] __x64_sys_recvmmsg+0x22a/0x280 [ 1869.778533][T31720] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 1869.778554][T31720] do_syscall_64+0xcd/0xfa0 [ 1869.778582][T31720] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1869.778597][T31720] RIP: 0033:0x7f1eb018f6c9 [ 1869.778609][T31720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1869.778623][T31720] RSP: 002b:00007f1eb107f038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1869.778637][T31720] RAX: ffffffffffffffda RBX: 00007f1eb03e6090 RCX: 00007f1eb018f6c9 [ 1869.778647][T31720] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 1869.778656][T31720] RBP: 00007f1eb107f090 R08: 0000000000000000 R09: 0000000000000000 [ 1869.778664][T31720] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001 [ 1869.778673][T31720] R13: 00007f1eb03e6128 R14: 00007f1eb03e6090 R15: 00007fffdf483f58 [ 1869.778693][T31720] [ 1871.155733][T31741] netlink: 338 bytes leftover after parsing attributes in process `syz.3.5959'. [ 1871.270257][T31746] netlink: 338 bytes leftover after parsing attributes in process `syz.3.5959'. [ 1873.483549][T31776] audit: audit_lost=2 audit_rate_limit=0 audit_backlog_limit=64 [ 1873.658976][T31776] audit: out of memory in audit_log_start [ 1873.666410][T31783] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input240 [ 1873.774736][T31782] netlink: 338 bytes leftover after parsing attributes in process `syz.1.5971'. [ 1873.839374][T31787] netlink: 338 bytes leftover after parsing attributes in process `syz.1.5971'. [ 1874.585698][T31784] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input241 [ 1874.906808][T31797] FAULT_INJECTION: forcing a failure. [ 1874.906808][T31797] name failslab, interval 1, probability 0, space 0, times 0 [ 1875.109927][T31797] CPU: 0 UID: 0 PID: 31797 Comm: syz.3.5975 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1875.109965][T31797] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1875.109974][T31797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1875.109984][T31797] Call Trace: [ 1875.109990][T31797] [ 1875.109996][T31797] dump_stack_lvl+0x16c/0x1f0 [ 1875.110026][T31797] should_fail_ex+0x512/0x640 [ 1875.110052][T31797] ? __kmalloc_noprof+0xca/0x880 [ 1875.110079][T31797] should_failslab+0xc2/0x120 [ 1875.110102][T31797] __kmalloc_noprof+0xdd/0x880 [ 1875.110126][T31797] ? kobject_get_path+0xd2/0x2a0 [ 1875.110148][T31797] ? kobject_get_path+0xd2/0x2a0 [ 1875.110166][T31797] kobject_get_path+0xd2/0x2a0 [ 1875.110190][T31797] input_register_device+0x91b/0x1180 [ 1875.110209][T31797] ? input_ff_create+0x256/0x350 [ 1875.110231][T31797] uinput_ioctl_handler.isra.0+0x1357/0x1df0 [ 1875.110256][T31797] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 1875.110278][T31797] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 1875.110306][T31797] ? find_held_lock+0x2b/0x80 [ 1875.110332][T31797] ? __pfx_uinput_ioctl+0x10/0x10 [ 1875.110355][T31797] __x64_sys_ioctl+0x18e/0x210 [ 1875.110379][T31797] do_syscall_64+0xcd/0xfa0 [ 1875.110400][T31797] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1875.110417][T31797] RIP: 0033:0x7f8f7338f6c9 [ 1875.110431][T31797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1875.110446][T31797] RSP: 002b:00007f8f74231038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1875.110461][T31797] RAX: ffffffffffffffda RBX: 00007f8f735e5fa0 RCX: 00007f8f7338f6c9 [ 1875.110472][T31797] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000004 [ 1875.110482][T31797] RBP: 00007f8f73411f91 R08: 0000000000000000 R09: 0000000000000000 [ 1875.110491][T31797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1875.110500][T31797] R13: 00007f8f735e6038 R14: 00007f8f735e5fa0 R15: 00007fffff0e33d8 [ 1875.110521][T31797] [ 1875.110528][T31797] input: jJǸ;9%vlQ J86 as N/A [ 1875.539077][T31801] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input243 [ 1876.346464][T31806] Process accounting resumed [ 1879.113831][T31843] queue_state_write: operation too long [ 1879.227858][T31843] queue_state_write: use 'run', 'start' or 'kick' [ 1879.246815][T31848] netlink: 'syz.1.5987': attribute type 1 has an invalid length. [ 1879.736420][T31856] netlink: 338 bytes leftover after parsing attributes in process `syz.1.5988'. [ 1879.810650][T31856] netlink: 338 bytes leftover after parsing attributes in process `syz.1.5988'. [ 1881.657150][T31884] netlink: 'syz.0.5996': attribute type 1 has an invalid length. [ 1882.219972][T31896] netlink: 342 bytes leftover after parsing attributes in process `syz.2.5997'. [ 1882.242043][T31893] bridge0: port 3(team0) entered blocking state [ 1882.258985][T31893] bridge0: port 3(team0) entered disabled state [ 1882.291975][T31893] team0: entered allmulticast mode [ 1882.354161][T31893] team_slave_0: entered allmulticast mode [ 1882.396428][T31893] team_slave_1: entered allmulticast mode [ 1882.525867][T31893] team0: entered promiscuous mode [ 1882.617494][T31893] team_slave_0: entered promiscuous mode [ 1882.696017][T31893] team_slave_1: entered promiscuous mode [ 1882.776210][T31893] bridge0: port 3(team0) entered blocking state [ 1882.782614][T31893] bridge0: port 3(team0) entered forwarding state [ 1882.917360][T31896] netlink: 342 bytes leftover after parsing attributes in process `syz.2.5997'. [ 1883.503173][T31915] FAULT_INJECTION: forcing a failure. [ 1883.503173][T31915] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1883.647209][T31915] CPU: 0 UID: 0 PID: 31915 Comm: syz.3.6001 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 1883.647244][T31915] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 1883.647252][T31915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1883.647262][T31915] Call Trace: [ 1883.647267][T31915] [ 1883.647273][T31915] dump_stack_lvl+0x16c/0x1f0 [ 1883.647297][T31915] should_fail_ex+0x512/0x640 [ 1883.647323][T31915] get_futex_key+0x1d0/0x1560 [ 1883.647346][T31915] ? __pfx_get_futex_key+0x10/0x10 [ 1883.647365][T31915] ? stack_trace_save+0x8e/0xc0 [ 1883.647381][T31915] ? __pfx_stack_trace_save+0x10/0x10 [ 1883.647400][T31915] futex_wait_setup+0x9d/0x550 [ 1883.647420][T31915] __futex_wait+0x193/0x2f0 [ 1883.647435][T31915] ? __pfx___futex_wait+0x10/0x10 [ 1883.647452][T31915] ? __pfx_futex_wake_mark+0x10/0x10 [ 1883.647484][T31915] ? futex_hash+0x2c5/0x380 [ 1883.647505][T31915] ? futex_private_hash_put+0xd5/0x190 [ 1883.647525][T31915] futex_wait+0xe8/0x380 [ 1883.647538][T31915] ? __pfx_futex_wait+0x10/0x10 [ 1883.647557][T31915] ? task_mm_cid_work+0x37b/0x900 [ 1883.647576][T31915] do_futex+0x229/0x350 [ 1883.647595][T31915] ? __pfx_do_futex+0x10/0x10 [ 1883.647613][T31915] ? __pfx_task_mm_cid_work+0x10/0x10 [ 1883.647627][T31915] ? __pfx___might_resched+0x10/0x10 [ 1883.647645][T31915] __x64_sys_futex+0x1e0/0x4c0 [ 1883.647664][T31915] ? __pfx_blkcg_maybe_throttle_current+0x10/0x10 [ 1883.647682][T31915] ? __pfx___x64_sys_futex+0x10/0x10 [ 1883.647709][T31915] do_syscall_64+0xcd/0xfa0 [ 1883.647728][T31915] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1883.647742][T31915] RIP: 0033:0x7f8f7338f6c9 [ 1883.647758][T31915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1883.647772][T31915] RSP: 002b:00007f8f742310e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1883.647787][T31915] RAX: ffffffffffffffda RBX: 00007f8f735e5fa8 RCX: 00007f8f7338f6c9 [ 1883.647796][T31915] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f8f735e5fa8 [ 1883.647805][T31915] RBP: 00007f8f735e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1883.647814][T31915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1883.647824][T31915] R13: 00007f8f735e6038 R14: 00007fffff0e32f0 R15: 00007fffff0e33d8 [ 1883.647844][T31915] [ 1885.431786][T31936] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6007'. [ 1885.520649][T31936] veth1_macvtap: left promiscuous mode [ 1886.512468][T31946] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input244 [ 1887.039415][T31947] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input245 [ 1888.902929][T31985] netlink: 'syz.0.6020': attribute type 1 has an invalid length. [ 1889.187876][T31991] KVM: debugfs: duplicate directory 31991-4 [ 1891.918299][T32030] netlink: 'syz.3.6031': attribute type 1 has an invalid length. [ 1892.529329][T32048] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6036'. [ 1892.753966][T32048] veth1_macvtap: left promiscuous mode [ 1893.771570][T32059] netlink: 342 bytes leftover after parsing attributes in process `syz.1.6039'. [ 1893.853944][T32060] netlink: 342 bytes leftover after parsing attributes in process `syz.1.6039'. [ 1901.958333][T32185] netlink: 338 bytes leftover after parsing attributes in process `syz.2.6070'. [ 1902.090641][T32187] netlink: 338 bytes leftover after parsing attributes in process `syz.2.6070'. [ 1902.146615][T32185] netlink: 126 bytes leftover after parsing attributes in process `syz.2.6070'. [ 1903.024499][T32203] netlink: 338 bytes leftover after parsing attributes in process `syz.1.6074'. [ 1903.226734][T32201] netlink: 338 bytes leftover after parsing attributes in process `syz.1.6074'. [ 1903.304467][T32201] netlink: 134 bytes leftover after parsing attributes in process `syz.1.6074'. [ 1903.824577][T32217] block nbd9: NBD_DISCONNECT [ 1907.435614][T32278] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6092'. [ 1907.511420][T32278] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6092'. [ 1907.579594][T32281] netlink: 126 bytes leftover after parsing attributes in process `syz.3.6092'. [ 1907.658655][T32260] Process accounting paused [ 1910.667043][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1910.673531][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1911.459340][T32327] netlink: 'syz.2.6102': attribute type 1 has an invalid length. [ 1911.946467][T32332] netlink: 338 bytes leftover after parsing attributes in process `syz.0.6103'. [ 1912.003808][T32334] netlink: 342 bytes leftover after parsing attributes in process `syz.0.6103'. [ 1914.101074][T32370] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input246 [ 1915.066071][T32372] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input247 [ 1919.357069][T32447] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6130'. [ 1919.412475][T32447] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6130'. [ 1919.469325][T32450] netlink: 134 bytes leftover after parsing attributes in process `syz.3.6130'. [ 1920.345083][T32462] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input248 [ 1921.226724][T32467] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input249 [ 1922.687296][T32491] netlink: 338 bytes leftover after parsing attributes in process `syz.2.6141'. [ 1922.794820][T32487] netlink: 338 bytes leftover after parsing attributes in process `syz.2.6141'. [ 1922.850086][T32491] netlink: 126 bytes leftover after parsing attributes in process `syz.2.6141'. [ 1930.260034][T32569] netlink: 338 bytes leftover after parsing attributes in process `syz.2.6155'. [ 1930.527000][T32575] netlink: 'syz.1.6159': attribute type 1 has an invalid length. [ 1930.569434][T32566] netlink: 338 bytes leftover after parsing attributes in process `syz.2.6155'. [ 1930.745450][T32569] netlink: 126 bytes leftover after parsing attributes in process `syz.2.6155'. [ 1934.524859][T32628] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6172'. [ 1934.595105][T32632] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6172'. [ 1934.748736][T32628] netlink: 126 bytes leftover after parsing attributes in process `syz.3.6172'. [ 1937.722668][T32658] Process accounting resumed [ 1938.100805][T32680] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6182'. [ 1938.210542][T32677] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6182'. [ 1938.265615][T32680] netlink: 126 bytes leftover after parsing attributes in process `syz.3.6182'. [ 1938.945894][T32692] netlink: 'syz.3.6187': attribute type 1 has an invalid length. [ 1939.299228][T32704] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input250 [ 1939.800174][T32706] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input251 [ 1941.244116][T32725] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6194'. [ 1941.304151][T32723] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6194'. [ 1944.458645][ T301] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input252 [ 1945.446278][ T302] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input253 [ 1947.903577][ T341] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input254 [ 1948.425779][ T344] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input255 [ 1954.474880][ T425] netlink: 338 bytes leftover after parsing attributes in process `syz.1.6227'. [ 1954.683429][ T424] netlink: 338 bytes leftover after parsing attributes in process `syz.1.6227'. [ 1954.823726][ T424] netlink: 126 bytes leftover after parsing attributes in process `syz.1.6227'. [ 1956.027007][ T448] netlink: 338 bytes leftover after parsing attributes in process `syz.2.6233'. [ 1956.093415][ T452] netlink: 338 bytes leftover after parsing attributes in process `syz.2.6233'. [ 1956.152428][ T448] netlink: 126 bytes leftover after parsing attributes in process `syz.2.6233'. [ 1957.195384][ T478] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input256 [ 1957.854956][ T479] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input257 [ 1958.761099][ T500] netlink: 338 bytes leftover after parsing attributes in process `syz.1.6245'. [ 1958.792379][ T504] netlink: 338 bytes leftover after parsing attributes in process `syz.1.6245'. [ 1958.837423][ T500] netlink: 126 bytes leftover after parsing attributes in process `syz.1.6245'. [ 1961.513438][ T534] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input258 [ 1962.208842][ T539] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input259 [ 1963.686750][ T558] netlink: 'syz.2.6256': attribute type 1 has an invalid length. [ 1965.668101][ T587] netlink: 338 bytes leftover after parsing attributes in process `syz.2.6262'. [ 1965.717501][ T587] netlink: 338 bytes leftover after parsing attributes in process `syz.2.6262'. [ 1965.834985][ T590] netlink: 126 bytes leftover after parsing attributes in process `syz.2.6262'. [ 1967.865731][ T621] netlink: 338 bytes leftover after parsing attributes in process `syz.2.6272'. [ 1967.921418][ T622] netlink: 338 bytes leftover after parsing attributes in process `syz.2.6272'. [ 1968.016242][ T621] netlink: 126 bytes leftover after parsing attributes in process `syz.2.6272'. [ 1968.204697][ T605] Process accounting paused [ 1968.388511][ T626] netlink: 338 bytes leftover after parsing attributes in process `syz.2.6273'. [ 1968.448192][ T631] netlink: 338 bytes leftover after parsing attributes in process `syz.2.6273'. [ 1968.504315][ T626] netlink: 126 bytes leftover after parsing attributes in process `syz.2.6273'. [ 1969.869538][ T652] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6279'. [ 1971.815417][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1971.822076][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1976.145590][ T758] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input260 [ 1976.344993][ T757] __nla_validate_parse: 2 callbacks suppressed [ 1976.345009][ T757] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6306'. [ 1976.425333][ T757] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6306'. [ 1976.492989][ T764] netlink: 126 bytes leftover after parsing attributes in process `syz.3.6306'. [ 1976.637915][ T760] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input261 [ 1977.100265][ T777] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input262 [ 1978.000072][ T778] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input263 [ 1978.589038][ T794] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input264 [ 1979.607524][ T797] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input265 [ 1980.459232][ T821] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input266 [ 1980.936956][ T824] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input267 [ 1981.623929][ T829] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input268 [ 1982.135402][ T830] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input269 [ 1982.641463][ T850] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input270 [ 1983.991202][ T852] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input271 [ 1987.904469][ T926] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input272 [ 1988.875512][ T930] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input273 [ 1995.657867][ T1042] netlink: 338 bytes leftover after parsing attributes in process `syz.0.6356'. [ 1996.012910][ T1041] netlink: 342 bytes leftover after parsing attributes in process `syz.0.6356'. [ 1998.485522][ T942] Process accounting resumed [ 2005.307170][ T1161] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input274 [ 2006.356979][ T1162] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input275 [ 2012.716915][ T1249] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input276 [ 2013.341563][ T1252] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input277 [ 2015.312982][ T1277] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input278 [ 2015.844975][ T1278] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input279 [ 2016.125404][ T1288] CIFS mount error: No usable UNC path provided in device string! [ 2016.125404][ T1288] [ 2016.169483][ T1288] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 2016.505613][ T1298] FAULT_INJECTION: forcing a failure. [ 2016.505613][ T1298] name failslab, interval 1, probability 0, space 0, times 0 [ 2016.610048][ T1298] CPU: 0 UID: 0 PID: 1298 Comm: syz.0.6410 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 2016.610083][ T1298] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 2016.610092][ T1298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 2016.610101][ T1298] Call Trace: [ 2016.610107][ T1298] [ 2016.610114][ T1298] dump_stack_lvl+0x16c/0x1f0 [ 2016.610136][ T1298] should_fail_ex+0x512/0x640 [ 2016.610158][ T1298] ? fs_reclaim_acquire+0xae/0x150 [ 2016.610179][ T1298] should_failslab+0xc2/0x120 [ 2016.610198][ T1298] kmem_cache_alloc_noprof+0x75/0x6e0 [ 2016.610213][ T1298] ? __pfx_map_id_range_down+0x10/0x10 [ 2016.610235][ T1298] ? rcu_is_watching+0x12/0xc0 [ 2016.610249][ T1298] ? security_inode_alloc+0x3b/0x2b0 [ 2016.610274][ T1298] ? security_inode_alloc+0x3b/0x2b0 [ 2016.610295][ T1298] security_inode_alloc+0x3b/0x2b0 [ 2016.610316][ T1298] inode_init_always_gfp+0xce4/0x1030 [ 2016.610335][ T1298] alloc_inode+0x86/0x240 [ 2016.610359][ T1298] new_inode+0x22/0x1c0 [ 2016.610379][ T1298] hugetlbfs_get_inode+0x354/0x730 [ 2016.610401][ T1298] hugetlb_file_setup+0x15b/0x620 [ 2016.610420][ T1298] ksys_mmap_pgoff+0x189/0x5c0 [ 2016.610441][ T1298] __x64_sys_mmap+0x125/0x190 [ 2016.610465][ T1298] do_syscall_64+0xcd/0xfa0 [ 2016.610484][ T1298] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2016.610498][ T1298] RIP: 0033:0x7f6ddff8f6c9 [ 2016.610512][ T1298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2016.610535][ T1298] RSP: 002b:00007f6de0d8a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 2016.610554][ T1298] RAX: ffffffffffffffda RBX: 00007f6de01e5fa0 RCX: 00007f6ddff8f6c9 [ 2016.610564][ T1298] RDX: 0000000000000002 RSI: 0000000000000005 RDI: 0000000000000000 [ 2016.610572][ T1298] RBP: 00007f6de0011f91 R08: 0000000000000401 R09: 0000300000000000 [ 2016.610582][ T1298] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000 [ 2016.610592][ T1298] R13: 00007f6de01e6038 R14: 00007f6de01e5fa0 R15: 00007fffd762e9c8 [ 2016.610613][ T1298] [ 2018.042798][ T1324] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input280 [ 2018.953555][ T1326] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input281 [ 2021.123331][ T1366] random: crng reseeded on system resumption [ 2021.697073][ T1379] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input282 [ 2022.676968][ T1381] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input283 [ 2023.980506][ T1406] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6435'. [ 2024.052460][ T1406] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6435'. [ 2024.110252][ T1410] netlink: 126 bytes leftover after parsing attributes in process `syz.3.6435'. [ 2024.125148][ T1408] vivid-007: ================= START STATUS ================= [ 2024.211666][ T1408] vivid-007: Generate PTS: true [ 2024.288874][ T1408] vivid-007: Generate SCR: true [ 2024.395672][ T1408] tpg source WxH: 320x240 (Y'CbCr) [ 2024.467536][ T1408] tpg field: 1 [ 2024.501952][ T1408] tpg crop: (0,0)/320x240 [ 2024.553370][ T1408] tpg compose: (0,0)/320x240 [ 2024.608991][ T1408] tpg colorspace: 8 [ 2024.683934][ T1408] tpg transfer function: 0/0 [ 2024.703496][ T1408] tpg Y'CbCr encoding: 0/0 [ 2024.763535][ T1408] tpg quantization: 0/0 [ 2024.829110][ T1408] tpg RGB range: 0/2 [ 2024.874520][ T1408] vivid-007: ================== END STATUS ================== [ 2026.619284][ T1450] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6449'. [ 2026.675269][ T1450] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6449'. [ 2026.761691][ T1452] netlink: 126 bytes leftover after parsing attributes in process `syz.3.6449'. [ 2027.083849][ T1462] input: 00 [ 2027.083849][ T1462] as /devices/virtual/input/input284 [ 2027.121662][ T1464] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input285 [ 2027.150887][ T1462] FAULT_INJECTION: forcing a failure. [ 2027.150887][ T1462] name failslab, interval 1, probability 0, space 0, times 0 [ 2027.237683][ T1462] CPU: 0 UID: 0 PID: 1462 Comm: syz.2.6453 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 2027.237719][ T1462] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 2027.237727][ T1462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 2027.237747][ T1462] Call Trace: [ 2027.237754][ T1462] [ 2027.237760][ T1462] dump_stack_lvl+0x16c/0x1f0 [ 2027.237783][ T1462] should_fail_ex+0x512/0x640 [ 2027.237806][ T1462] ? __kmalloc_cache_noprof+0x5f/0x780 [ 2027.237823][ T1462] should_failslab+0xc2/0x120 [ 2027.237843][ T1462] __kmalloc_cache_noprof+0x72/0x780 [ 2027.237856][ T1462] ? __pfx___mutex_lock+0x10/0x10 [ 2027.237875][ T1462] ? evdev_connect+0x82/0x4c0 [ 2027.237895][ T1462] ? evdev_connect+0x82/0x4c0 [ 2027.237909][ T1462] evdev_connect+0x82/0x4c0 [ 2027.237927][ T1462] input_attach_handler.isra.0+0x176/0x250 [ 2027.237946][ T1462] input_register_device+0xab9/0x1180 [ 2027.237962][ T1462] ? input_ff_create+0x1c1/0x350 [ 2027.237983][ T1462] uinput_ioctl_handler.isra.0+0x1357/0x1df0 [ 2027.238005][ T1462] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 2027.238025][ T1462] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 2027.238052][ T1462] ? find_held_lock+0x2b/0x80 [ 2027.238078][ T1462] ? __pfx_uinput_ioctl+0x10/0x10 [ 2027.238098][ T1462] __x64_sys_ioctl+0x18e/0x210 [ 2027.238120][ T1462] do_syscall_64+0xcd/0xfa0 [ 2027.238139][ T1462] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2027.238155][ T1462] RIP: 0033:0x7f9986f8f6c9 [ 2027.238167][ T1462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2027.238182][ T1462] RSP: 002b:00007f9987dab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2027.238197][ T1462] RAX: ffffffffffffffda RBX: 00007f99871e5fa0 RCX: 00007f9986f8f6c9 [ 2027.238206][ T1462] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 000000000000000b [ 2027.238215][ T1462] RBP: 00007f9987011f91 R08: 0000000000000000 R09: 0000000000000000 [ 2027.238223][ T1462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2027.238231][ T1462] R13: 00007f99871e6038 R14: 00007f99871e5fa0 R15: 00007ffd04f8bdc8 [ 2027.238252][ T1462] [ 2027.238262][ T1462] input: failed to attach handler evdev to device input284, error: -12 [ 2028.440723][ T1467] Process accounting paused [ 2028.904832][ T1486] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6458'. [ 2029.143589][ T1486] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6458'. [ 2029.644759][ T1502] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input286 [ 2030.396861][ T1503] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input287 [ 2030.656737][ T1510] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6463'. [ 2031.172457][ T1526] sg_write: data in/out 8156/1 bytes for SCSI command 0x0-- guessing data in; [ 2031.172457][ T1526] program syz.2.6468 not setting count and/or reply_len properly [ 2032.161215][ T1535] mtrr: base(0x1000) is not aligned on a size(0x0000) boundary [ 2032.970441][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 2032.977031][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 2033.147157][ T1553] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6474'. [ 2033.229221][ T1553] netlink: 338 bytes leftover after parsing attributes in process `syz.3.6474'. [ 2033.307750][ T1553] netlink: 126 bytes leftover after parsing attributes in process `syz.3.6474'. [ 2037.220156][ T1608] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input288 [ 2037.902168][ T1620] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input289 serialport: Connection terminated to allow system upgrade. Please reconnect at your convenience.