last executing test programs: 14.289434046s ago: executing program 0 (id=2679): r0 = socket(0x2, 0x2, 0x88) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x12}}, 0x54) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, 0x0, 0x20201, 0x0) sendmmsg$auto(r0, 0x0, 0x9a6, 0xe000) write$auto(0x3, 0x0, 0x800) 13.318564908s ago: executing program 0 (id=2683): openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fb1\x00', 0x422400, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) r0 = socket(0x1d, 0x2, 0x6) mmap$auto(0x0, 0x4000040009, 0xdf, 0x9b72, r0, 0x28000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x2020009, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000) unshare$auto(0x40000080) r2 = set_tid_address$auto(0x0) syz_open_procfs$namespace(r2, &(0x7f0000000080)) r3 = syz_clone(0x124a000, 0x0, 0x0, 0x0, 0x0, 0x0) read$auto(0xffffffffffffffff, 0x0, 0xea) read$auto(0xffffffffffffffff, 0x0, 0x0) writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x20000003) madvise$auto(0xfffffffffffffffe, 0x100000, 0x17) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, 0x0, 0x1, 0x0) geteuid() socket(0x9, 0x8000a, 0x1ff) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x3, r3, 0x1, 0x4000) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x804, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x12, 0x0, 0x6, 0x0, 0x2, 0x7}, 0x800008}, 0x1ff, 0x4) semget$auto(0x0, 0x13c, 0x1ff) semtimedop$auto(0x0, &(0x7f00000001c0)={0xa, 0x7, 0x7}, 0x1f4, 0x0) semtimedop$auto(0x0, &(0x7f0000000000)={0x7, 0x8000, 0x36ec}, 0x1, 0x0) semctl$auto(0x0, 0x9, 0x0, 0x2) io_uring_register$auto(r1, 0xe, 0x0, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000180), 0x800, 0x0) 10.804472807s ago: executing program 3 (id=2688): r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000600), 0x40, 0x0) ppoll$auto(&(0x7f0000001780)={r0, 0x1, 0xf}, 0x9, &(0x7f00000001c0)={0x8, 0x57e3}, 0x0, 0x8) mmap$auto(0xfffffffffffffffd, 0x400008, 0x54e, 0x9b72, r1, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x80000001, 0x8) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r2 = socket(0xa, 0x3, 0x3) connect$auto(r1, &(0x7f0000000140)=@isdn={0x22, 0x6, 0x41, 0x1, 0xf}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r3 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000009c0), 0x0, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_TREAD_OLD(r3, 0x40045402, &(0x7f0000000a00)=0x105) mmap$auto(0x0, 0xe981, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0xfffffffe, 0x0) openat$auto_fake_panic_fops_(0xffffffffffffff9c, &(0x7f0000000100), 0x501080, 0x0) mmap$auto(0x100000, 0x4020009, 0xdb, 0xeb1, r2, 0x8000) r4 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r6 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x80000000, 0x7, 0xd3e, 0x40000000000, 0x0, 0x3, 0x95f4da07, 0x10001, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r5, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x13, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x4000008000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000240)='/dev/usbmon29\x00', 0x640, 0x0) ioctl$auto_MON_IOCX_GET(r4, 0x40189206, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) lsm_set_self_attr$auto(0x8, &(0x7f0000000040)={0x6, 0xc7b, 0x8000002, 0xa0, "6da549af92b3c797f14b68f1871bdf2bca524a178d5f78de92a8f31de38aac23b34814d7bdb8c3755bc2b5a80a3564254ead5cd661a41d16e32f6d7e6465fd9a74b830b8fe880245564bb67a4d0ecfb78b9905af2a2f2de8677e181a3371cabc34f497b122263e2ba86a87a7e76ed0bbe08e08b6f0f3b25364fb6f9f33d5342ed76cc5453f8e8634458e6bf54825f7be456def0174640630a68b450b159e0d65"}, 0x6, 0x9) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r6) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/cifs/smbd_max_receive_size\x00', 0x103742, 0x0) close_range$auto(0x2, 0x8, 0x0) 10.345663644s ago: executing program 0 (id=2689): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xa, 0x0) writev$auto(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x1002}, 0x7) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x16, &(0x7f0000000040), 0x1) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7) sysinfo$auto(0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_REQ_SET_REG(r1, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="007000fe1cdf251b00000008379f0002000046010400080108004d01040000000800ef00000100"/54], 0x3c}, 0x1, 0x0, 0x0, 0x20040081}, 0x85) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x24302, 0x0) mmap$auto(0x3, 0x2000a, 0x10000000000df, 0xeb2, r0, 0x8000) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/input/event2\x00', 0x4a404, 0x0) socket(0x2, 0x1, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/dev/audio1\x00', 0x100000a3d9) r3 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x20001, 0x0) ppoll$auto(&(0x7f00000000c0)={r3, 0x0, 0x8}, 0xf7, &(0x7f0000000100)={0x80000000008000, 0x1}, 0x0, 0x8) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x3, 0x0, 0xfffffffffffffffc, 0x696b}, 0xed7138c}, 0x2, 0x9) sendto$auto(0xffffffffffffffff, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe80000700"}, 0x1c) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/sctp/assocs\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r4, 0x0, 0xfffffe36) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bus/usb/034/001\x00', 0x20882, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count\x00', 0xc0082, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000080)='7', 0x1) ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000140)={"2252f65ca1b92f72a92538725b0694521629e8c3e6ba91c62e2e9d42cf4aef15", 0x4, 0x3, 0x8004, 0x6, 0xff}) 9.505994637s ago: executing program 3 (id=2691): r0 = socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0xe983, 0xdf, 0x800000000000eb1, r0, 0x8000) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) ioctl$auto(0x3, 0x80108907, 0x38) readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7) 8.70998977s ago: executing program 3 (id=2693): openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) socket(0xa, 0x5, 0x0) socket(0xa, 0x3, 0xff) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) pidfd_open$auto(0x1, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) socket(0x1e, 0x1, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0xd, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) 8.644505586s ago: executing program 0 (id=2694): mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0xffffffffffffffff, 0x8000) modify_ldt$auto(0x1, 0x0, 0x10) r0 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0) r1 = io_uring_setup$auto(0x2008, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r0, 0x403c6f2b, 0x0) mmap$auto(0x0, 0x400008, 0x1ff, 0x9b72, 0x2, 0x8000) ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f0000000180)="8795610a3fb28e8c8d703859ae4e908b679237cd9f9e35b3e25621033d6ea06611b9324f6610c45cf087fe4c19eacccb7de1004ab7ec8fe3602ee3555bfd602b92204feadd11cdb922e374f7af27224e2a1b69f38863cc") r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) ioctl$auto(r2, 0x8000450a, r2) mmap$auto(0x0, 0x400008, 0xfcc, 0x18, 0x2, 0x8000) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) statmount$auto(&(0x7f0000000000)={0x8, @raw=0x400, 0x80000024, 0x7fff, 0xbbfe}, 0x0, 0x7ffffffff001, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) r3 = io_uring_setup$auto(0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/virtual/block/nbd12/queue/write_cache\x00', 0x80002, 0x0) close_range$auto(r2, r3, 0x8001) ioctl$auto_PROCMAP_QUERY(0xffffffffffffffff, 0xc0686611, &(0x7f0000000080)={0x67, 0x0, 0x7fff, 0x5, 0x80000000003, 0xfffbffffffffff80, 0x80000001, 0xff, 0x6, 0x7, 0xfbfffffe, 0x5, 0x0, 0x7, 0x80000005}) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x24040, 0x0) r5 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r5, 0x40345410, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_TREAD64(r5, 0x400454a4, 0x0) ioctl$auto_BLKTRACESETUP(r4, 0xc0481273, &(0x7f0000000540)={"ef13a5421a8765cadfca437c4d1316833843180bb151ed36e8ce6cb454168d6c", 0x3ff, 0xc9, 0x1000, 0xd, 0x9}) openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/dynamic_events\x00', 0x201, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kvm_amd/parameters/pause_filter_thresh\x00', 0x200, 0x0) read$auto(r6, 0x0, 0xc) close_range$auto(0x2, 0x8, 0x0) landlock_create_ruleset$auto(&(0x7f0000000000)={0x124c, 0x400, 0x7}, 0x7, 0x4000000) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x20040, 0x0) openat$auto_trace_options_core_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/options/latency-format\x00', 0x121082, 0x0) 7.155650763s ago: executing program 3 (id=2698): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0x848000000015, 0x805, 0x0) bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x37}}, 0x6b) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0xff, 0x0}}, 0x55) keyctl$auto(0x5, 0xffffffffffffffff, 0x5, 0x5, 0x8) r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/keys\x00', 0x1c9802, 0x0) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r2) sendmsg$auto_NL80211_CMD_SET_NOACK_MAP(r1, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000180)={&(0x7f0000000900)=ANY=[@ANYBLOB="f8000000", @ANYRES16=r4, @ANYBLOB="00022abd7000fddbdf2557000003e4511cc076a9fc2182d718df080bca28001a007979ca1c81aefea98cf6a569a586693ac044c7758b25dbd1a1595339cad96e009031323be07556b8fb6b9f000d90ba10b4f4c82727788f3e2fca3ba20a55344556b191bbe1d6806cee471382db72946d652cafb87f086bada6f1ee0e699f024ca569b02fa2c429adc2938d9ba8b58bc24b08a7db856da7fdeb88aa057206e1e76689fecb3b7834e33f9953e9d9e8db089f4bf7aec4ef587b1168ce0328f731e753157994120e33a0a8b57f3d5d51f59162c1800df7e2eae15965b855fdaab91629f2962a658b5372e277531d621e66ca586098ee"], 0xf8}}, 0x4000000) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r5 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0) read$auto_proc_pid_maps_operations_internal(r5, &(0x7f0000001580)=""/4101, 0x1005) r6 = waitid$auto_P_ALL(0x0, 0x5cb, &(0x7f00000004c0)={@_si_pad}, 0xffff4b81, &(0x7f0000000540)={{}, {0xcb, 0x9580}, 0x6, 0x57, 0x1, 0x5821, 0x0, 0x1, 0x7, 0xa1, 0x1000, 0x200, 0x6246, 0xa, 0x7, 0x55c}) shmctl$auto_SHM_STAT_ANY(0x53c, 0xf, &(0x7f0000000800)={{0x1e, 0xee00, 0xee00, 0x307e68c5, 0x1, 0x792, 0x9}, 0xaf6, 0x6, 0x100, 0x1, @raw=0x33e, @inferred, 0x5, 0x0, &(0x7f0000000600)="3fa30759c01e598ab35c7a2b23fc0b38fd11729d666ad25dafcc6dcf4a43fc9e0e8d0575615c9e698dcee79b585a7be6e97fac780a977698ad2b4dac4840c1c2625433862c15a74133855e31e1bced218f1e63197a4ff36dc7917677d75aaee279b2e4d2f663cb66359fcbee7f7de96a5859b57c74ad00bcb564c1adc856bb68024de534299cab35065dcc8d3a337508d23e3179e4f3d75c6960a6fe0230fc8d87b5dbd9bd3a26aed3991727b9f13a9050dfb2f359aeaf3d2fbb14d51d3f71d2ae0e79bb", &(0x7f0000000700)="c9158de1c1b86f68ef2245d3417d025a65ede4642c41b91d652e38dc83fb8af1b0ac22d8085dddc2aee5681f1eb268dd56e8fbf690b1028beae2e9128ede88ff54d511d2b1fac89bc25c892ffb826b28ed5db3ab8e627e3975a04b0b4513451cea10bb00c1fe320cc40996f078e6cfc615f3673787fdc54bf1a54c74d31f5a81ea94facc911705a8d9af9e57bee9362cf0fe73cf21a4a5f48610f7d91fb9b39b2c319353a935ae54994011c40a760c5d30415f7c30fdbbb5017d64e418301aad5f41f1ffd438f0dad16c67f4c270538d3e84dc1a8a4f3d7857a8f906ed7ff43cffba53c1"}) pidfd_send_signal$auto_PIDFD_SELF_THREAD_GROUP(0xffffffffffffb1e0, 0x0, &(0x7f0000000880)={@siginfo_0_0={0x4, 0x5, 0x3, @_sigchld={r6, r7, 0x0, 0x6, 0x7fffffff}}}, 0x1000) pread64$auto(r3, 0x0, 0x100000001, 0x100) socket(0x2d, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x4) sendmsg$auto_NL80211_CMD_GET_WIPHY(r0, 0x0, 0x0) sendmsg$auto_OVS_FLOW_CMD_GET(r0, 0x0, 0x0) ioctl$auto_XFS_IOC_PATH_TO_FSHANDLE(0xffffffffffffffff, 0xc0385868, &(0x7f0000000280)={r2, &(0x7f0000000100), 0xffffffff, &(0x7f0000000000)="0c54893d92c8e14117e7c244a0e9219e586449e72bdc6a0bfb01a1f634512364b048e46d75c95f7795f96638335e65b4cd218823f9da2b006f7fd5a6af69cada86dfdeffac550e0945263002a823b78b424ff4a3f6d591f36f73e0cc9f398b7b8f3b1379c0", 0x100, &(0x7f0000000200)="9dabc562d54a8c25f5f8b0d1849a1cadfb21967ba4c681dbcd241d57", &(0x7f0000000240)=0x4}) read$auto_ipsec_dbg_fops_ipsec(r8, &(0x7f00000002c0)=""/167, 0xa7) close_range$auto(0x2, 0x8, 0x0) 4.532897577s ago: executing program 0 (id=2705): socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@nl=@proc={0x10, 0x0, 0x25dfdbfb, 0x8}, 0x5) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/usb/usbmon/33t\x00', 0x0, 0x0) pread64$auto(r1, 0x0, 0x101, 0x103) read$auto_mon_fops_text_t_mon_text(r1, 0x0, 0x0) keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x5, 0x3, 0xfffffffffffffffc, 0x4) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) pidfd_open$auto(0x1, 0xfffffffd) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r2 = io_uring_setup$auto(0x4, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x8f3b7a51b80ebd01, 0x0) mmap$auto(0x0, 0x800000002020009, 0x0, 0x110, 0xffffffffffffffff, 0x8000) close_range$auto(r0, r2, 0x8002) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_0={0x1, 0x7, 0x2817, 0x4, 0x200004, 0xffffffffffffffff, 0xa, '\x00', 0x0, 0xffffffffffffffff, 0x10001, 0x7, 0x5, 0x8}, 0x10) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) semctl$auto(0x1, 0xfffffffe, 0x3, 0x5) write$auto(0xffffffffffffffff, 0x0, 0xc3) 4.40258081s ago: executing program 1 (id=2706): mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/disable_policy\x00', 0x202, 0x0) sendfile$auto(r1, r0, 0x0, 0x48) 4.235615114s ago: executing program 1 (id=2707): r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) socket(0xa, 0x5, 0x0) socket(0xa, 0x3, 0xff) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) pidfd_open$auto(0x1, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) socket(0x1e, 0x1, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0xd, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) getpid() ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x5) 4.099091485s ago: executing program 2 (id=2708): r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) socket(0xa, 0x5, 0x0) socket(0xa, 0x3, 0xff) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) pidfd_open$auto(0x1, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) socket(0x1e, 0x1, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0xd, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) getpid() ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x5) 3.969627732s ago: executing program 3 (id=2709): openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fb1\x00', 0x422400, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x2020009, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000) unshare$auto(0x40000080) set_tid_address$auto(0x0) 3.193649941s ago: executing program 1 (id=2710): r0 = socket(0x2, 0x2, 0x88) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) connect$auto(0x3, 0x0, 0x54) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) sendmmsg$auto(r0, 0x0, 0x9a6, 0xe000) write$auto(0x3, 0x0, 0x800) 3.084386013s ago: executing program 0 (id=2711): mmap$auto(0x0, 0x400006, 0x7, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/vm/nr_overcommit_hugepages\x00', 0x100, 0x0) read$auto(r0, &(0x7f0000000240)='nl80211\x00', 0x7) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x2, 0x1, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x3, 0x0) futex$auto(&(0x7f00000001c0)=0x6, 0xd6, 0xfb, &(0x7f0000000280)={0x8, 0x401}, &(0x7f00000002c0), 0x0) mount_setattr$auto(0x0, 0xfffffffffffffffe, 0x100, 0x0, 0x20) r2 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r1, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000140)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100253d7000fddbdf2501000000100007800c00018008000180000000000c0002000600000080000000164f6caad19e139bba76db7bc99f463d444447d8012a5778abefd177566400"/85], 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x8880) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) getsockopt$auto_SO_INCOMING_CPU(r1, 0x4, 0x31, &(0x7f0000000000)='TIPCv2\x00', &(0x7f0000000080)=0x401) unshare$auto(0x40000080) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x2c201, 0x0) ioctl$auto_IOC_PR_RESERVE(r3, 0x401070c9, &(0x7f00000000c0)={0xffffffffffffffff, 0x5, 0x1}) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x40040, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/net/ipv6/conf/default/ignore_routes_with_linkdown\x00', 0x42a81, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/mode\x00', 0x0, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) write$auto(0x3, 0x0, 0x20000) r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/driver/usbserial\x00', 0x40000, 0x0) read$auto_proc_iter_file_ops_compat_inode(r5, &(0x7f0000000400)=""/232, 0xe8) clock_adjtime$auto(0x1, &(0x7f0000000280)={0x4, 0x0, 0x6fe, 0x100000021, 0x7, 0x4, 0x8227, 0x0, 0x2, 0x240000, 0x8, {0x7, 0x800}, 0x101, 0xf8, 0xa, 0xd94, 0x0, 0x3, 0x4, 0x406, 0xa9, 0x3, 0xfffffffe}) r6 = openat$auto_o2hb_debug_fops_heartbeat(0xffffffffffffff9c, &(0x7f0000000500)='/sys/kernel/debug/o2hb/live_regions\x00', 0x2000, 0x0) fsconfig$auto_HIDEPID_NOT_PTRACEABLE(r6, 0x40, &(0x7f0000000540)='})*($$\x00', &(0x7f0000000580)="9aaeafc3310f260c04652c2288ed5f121c53ec1adfc7b4269b4823cd2c811c0e16ccc22241f5dce356cfe47e547e199c935277bb8d185da7b1b432d6564a51a31d4345a413aa40c4f7a7977486f38f21a48a27241d61b15764128637dbbff9d18bfbd756f96757ba956cc59d581b58aa786f3cb1d1a66f786ff5a39cf577660cc51d6d7d870764c8fe6f29e357a453ca9d", 0x4) 2.546280848s ago: executing program 2 (id=2712): socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) shmctl$auto_IPC_RMID(0x0, 0x0, 0x0) chown$auto(&(0x7f00000000c0)='./file0\x00', 0xee01, 0x0) prctl$auto(0x10, 0x100000000000001, 0x0, 0x100000000007ffe, 0x0) r0 = setfsuid$auto(0xee00) setreuid$auto(r0, 0x0) r1 = getegid() r2 = waitid$auto_P_PGID(0x2, 0x0, &(0x7f0000000280)={@_si_pad}, 0x3, &(0x7f0000000440)={{0x8, 0x6}, {0x8, 0xc5e}, 0x100000001, 0x3, 0x1, 0xf9, 0xfffffffffffffffc, 0x5, 0x6274, 0x9, 0x0, 0xb, 0x35d, 0x439c, 0x9, 0x7}) shmctl$auto_SHM_STAT_ANY(0x0, 0xf, &(0x7f00000006c0)={{0x7, r0, r1, 0x4, 0x6, 0x81, 0x48d}, 0x1, 0x5, 0x8, 0x2, @inferred=r2, @raw=0x5, 0x5, 0x0, &(0x7f0000000500)="4f98c640887224e1536d4e40a39d3c81a9c6e8ae66bc479f7d92b6c649f07587e8084d4fd558d54a2ddca9c318eb050342e0fbb295dd58250b8d185616881413c9b3a8bbc9cb6f3059624b9d64d81f5b347672273ff0eac474a4fce025de7972a1b178c920727aab101d7741be7f42a7acc5ee4675ca2c96a2d08ca9a74b323f548afca84b63a71fb65c71061963f9693b6afa898480b20dc6d2e4f35f2381eabde6ac3f3b34948a7014878f346459ef0a11d7cb4fe7732d8d9e95d0cc7450914c2b63b9054c10080ba951b8f095adaead86e8bf209f5a9ecef565321572507c2b71c3a04fe37344218ffc325a27547ba7f31f1edb3ba545", &(0x7f0000000600)="3b4aab5baf7b70279f51554278b9b2497af28d2f68748361dda23b269d8b59ff913dc2ce2f41389066481eb9ea5492d38b5b950569f4d785c41fe5d0ab02234a66c5d804108051813044b3235a4b452ff0c51b938f2f5440d9ecee6cfad16d8271c93fa2488f5af21c4361fca3799a20b53b6f0c6c3b19b35a674aec24b246c982d5f007b2ecde6cab52699af3b1e94e1a42d4e44b022d7d64730dd5127ccd9f02f7590e93c2c7d8eb6e44"}) r3 = getgid() setregid$auto(r1, r3) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x1000, 0x2) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r5) ioctl$auto_KVM_CREATE_VM(r4, 0xae80, 0x0) close_range$auto(0x2, 0x8, 0x0) 2.503042567s ago: executing program 1 (id=2713): mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0xffffffffffffffff, 0x8000) modify_ldt$auto(0x1, 0x0, 0x10) r0 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0) r1 = io_uring_setup$auto(0x2008, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r0, 0x403c6f2b, 0x0) mmap$auto(0x0, 0x400008, 0x1ff, 0x9b72, 0x2, 0x8000) ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f0000000180)="8795610a3fb28e8c8d703859ae4e908b679237cd9f9e35b3e25621033d6ea06611b9324f6610c45cf087fe4c19eacccb7de1004ab7ec8fe3602ee3555bfd602b92204feadd11cdb922e374f7af27224e2a1b69f38863cc") r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) ioctl$auto(r2, 0x8000450a, r2) mmap$auto(0x0, 0x400008, 0xfcc, 0x18, 0x2, 0x8000) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) statmount$auto(&(0x7f0000000000)={0x8, @raw=0x400, 0x80000024, 0x7fff, 0xbbfe}, 0x0, 0x7ffffffff001, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) r3 = io_uring_setup$auto(0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/virtual/block/nbd12/queue/write_cache\x00', 0x80002, 0x0) close_range$auto(r2, r3, 0x8001) ioctl$auto_PROCMAP_QUERY(0xffffffffffffffff, 0xc0686611, &(0x7f0000000080)={0x67, 0x0, 0x7fff, 0x5, 0x80000000003, 0xfffbffffffffff80, 0x80000001, 0xff, 0x6, 0x7, 0xfbfffffe, 0x5, 0x0, 0x7, 0x80000005}) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x24040, 0x0) r5 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r5, 0x40345410, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_TREAD64(r5, 0x400454a4, 0x0) ioctl$auto_BLKTRACESETUP(r4, 0xc0481273, &(0x7f0000000540)={"ef13a5421a8765cadfca437c4d1316833843180bb151ed36e8ce6cb454168d6c", 0x3ff, 0xc9, 0x1000, 0xd, 0x9}) openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/dynamic_events\x00', 0x201, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kvm_amd/parameters/pause_filter_thresh\x00', 0x200, 0x0) read$auto(r6, 0x0, 0xc) close_range$auto(0x2, 0x8, 0x0) landlock_create_ruleset$auto(&(0x7f0000000000)={0x124c, 0x400, 0x7}, 0x7, 0x4000000) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x20040, 0x0) openat$auto_trace_options_core_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/options/latency-format\x00', 0x121082, 0x0) 1.850049483s ago: executing program 1 (id=2714): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xa, 0x0) writev$auto(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x1002}, 0x7) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x16, &(0x7f0000000040), 0x1) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7) sysinfo$auto(0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_REQ_SET_REG(r1, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="007000fe1cdf251b00000008379f0002000046010400080108004d01040000000800ef00000100"/54], 0x3c}, 0x1, 0x0, 0x0, 0x20040081}, 0x85) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x24302, 0x0) mmap$auto(0x3, 0x2000a, 0x10000000000df, 0xeb2, r0, 0x8000) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/input/event2\x00', 0x4a404, 0x0) socket(0x2, 0x1, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/dev/audio1\x00', 0x100000a3d9) r3 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x20001, 0x0) ppoll$auto(&(0x7f00000000c0)={r3, 0x0, 0x8}, 0xf7, &(0x7f0000000100)={0x80000000008000, 0x1}, 0x0, 0x8) r4 = socket(0x4, 0x5, 0x84) sendto$auto(r4, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe80000700"}, 0x1c) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/sctp/assocs\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r5, 0x0, 0xfffffe36) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bus/usb/034/001\x00', 0x20882, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count\x00', 0xc0082, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000080)='7', 0x1) ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000140)={"2252f65ca1b92f72a92538725b0694521629e8c3e6ba91c62e2e9d42cf4aef15", 0x4, 0x3, 0x8004, 0x6, 0xff}) 1.330268176s ago: executing program 2 (id=2715): mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0) sendfile$auto(0xffffffffffffffff, r0, 0x0, 0x48) 1.124189673s ago: executing program 2 (id=2716): mmap$auto(0x0, 0x40000c, 0x45bb, 0x9b72, 0x2, 0x8000) epoll_create$auto(0x4) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) socket(0x2, 0x1, 0x106) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/midiC2D1\x00', 0x222041, 0x0) r1 = prctl$auto(0x1000, 0x3, 0xffffffffffffffff, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xd9, 0xeb5, 0x401, 0x41) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000280)=""/65, 0x41) mmap$auto(0x0, 0x400008, 0xe3, 0x9b72, r2, 0x80007ffe) madvise$auto(0x0, 0xffffffffffff0001, 0x15) setresuid$auto(0x0, 0x0, 0x0) msgctl$auto_MSG_INFO(0xf, 0xc, &(0x7f0000000500)={{0x6, 0xee00, 0xee01, 0x6, 0x9, 0xffffffff, 0x4a}, &(0x7f00000003c0)=0x4, &(0x7f00000004c0)=0x1e, 0x4, 0xde, 0xd6a, 0x5, 0x7, 0x2, 0x7ffe, 0x3, @raw=0x6, @raw=0x1}) sendmsg$auto_IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000580)={&(0x7f0000000800)=ANY=[@ANYBLOB="88340000", @ANYRES16=0x0, @ANYBLOB="100026bd7000ffdbdf2504000000eb02028063a7def2ee545633d05379dd385c87b7f4963f06ee46440858604e4f5f188fce7ecfb48aa624e2206df3a0625fbd09f8f53071f25bfe2a434b7866560c0337176649ffa19c04f75194ce1ec5668f834625366d5a5760ccb130998de20b315105d72d31b7d7817d0ac52040df5a97debaa606f4beeb86d8dc6da901d70e0cb7328dff2c2abd9759abfca61758ace3bf0497147690b0ec5dbe01060c0017800800be00ffffff7f180052002f6465762f617564696fe2f5c8101a98d05d31007101fb80bab35257a999b66bbd508baaffe7d9b26fce16e4fad0bb59a2b1ab79e56b7702cc067641aa4d7b7f21b39ca524d6ed8a7498ed9e906bbbcec7622f202c38a756015f124c270ded37634a14be1a1eb15de7b828bf29e348d1b98df98104f3cafefbe906ae026d954fc0393c9276a094db629f76ade375e824601872adf4505a077ba37f5e7c04df75c3919c4706e757992a5105c897a864203b5cae758d31ee7b88c13570822cc55383e1c1a65ecc1db093ff4973e6ac241a322ca222d925a6afa426e5d0250e418ba5d47ad6394afc19bbaac3ee33dbb8bf6decfc6db88e8673a3faf5f3528d66d459706f0173cf7ae3160d2a48668850e4714067774a8d3f0a05afb0e65763992fa8a51d5ddcf080d0dd81431845bf528ae0e4c05f35d58b611b50d0b2f8fec15dad75e0573fe5aefc3f52c5e64cddc0d64155cb0cf2864d6c0b91b0bae34fe1cfba72cfdbe000f6cb79cc82251dfbc413079ddd30adfbde4b3823fc5ac57e23e522ec7b0b59000000ea9c020d9d121588ac7833bf63de1d2875c938c89215bb340df56b2282714dd15a1245170b7a7f636f0e8dc1910bb7dded6c799cabfed4a5c1bdfa5775c017a60fe6c0768223051bd615a6c4703bcfe5d66866aa93f92fdc5dbe16ed26876c2905921f73f3403cc8cd423ef2171e4693a869ef067ade79eadf8c4b3881457b7b72fd17aea7b3b3074ebc1ad66fa202930224d33152bc804c1ea9d78d6c34c2460a91540ab1875588dd627405f6608e6da0d647c5e1002a070280c900018008004800", @ANYRES32=r2, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB='\b\x00+\x00', @ANYRES32=r3, @ANYBLOB="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"], 0x3488}, 0x1, 0x0, 0x0, 0x20004080}, 0x20000000) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x0, 0x0) ioctl$auto_SOUND_MIXER_WRITE_RECSRC2(r4, 0xc0044dff, 0x0) sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000040)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x1000) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0xc045}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x800) bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_0={0x8000, 0x1, 0x8, 0x7, 0x5, 0xffffffffffffffff, 0x80000001, "787d66da4a620eab7f736e854ef61529", 0x0, r0, 0x7, 0xffff4e8b, 0x2, 0x1, r4}, 0x7) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40090) r5 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r5, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f0000000180)={0x0, 0x101}, 0x3, 0x0, 0x7, 0x1}, 0x5}, 0x10000002, 0x4) read$auto_kernfs_file_fops_kernfs_internal(r1, 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x8, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f0000000100)='/dev/audio\xe2\xf5g\xa0\x1a\x98\xd0]1\x00', 0x8) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000001ff, 0x4, 0xd, 0x1, 0x3, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000023, 0x7, 0x6d3e, 0xd, 0xd, 0x1]}, 0x0) 583.763017ms ago: executing program 1 (id=2717): openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/003/001\x00', 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv6/neigh/ip_vti0/base_reachable_time_ms\x00', 0x202, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000b80)='/proc/sys/kernel/kptr_restrict\x00', 0x202, 0x0) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0x0, 0xf4, 0xdf, 0xeb1, 0x69a5, 0xa800000000000000) r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000000c0)={{0x6, 0x2, 0x200800, 0xffebffff, 0xfffffffb}, "0dcffd570001000000000000000000000000000000000000000000000000000a"}) sysfs$auto(0x2, 0x41, 0x0) r1 = fsopen$auto(0x0, 0x1) fsconfig$auto_SHMEM_HUGE_NEVER(r1, 0x5, &(0x7f0000000180)='+\x00_\xe8\xdb\xff\x0f\\X\xc9#\xa0\xdc\x04\x0f\x99v\xbc\xc3\xf2\x03\xe2T\b\x9c\xe7J\xcd\x00\x00\x00\x00\x00\x00\x00\x00c\x00\x00\x00\x00\x00\x00\x00', 0x0, 0x0) socket(0x2, 0x80002, 0x73) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/kcore\x00', 0x10b402, 0x0) pread64$auto(r2, 0x0, 0x800003, 0x2e5c) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) read$auto(r2, &(0x7f0000000000)='\x00', 0x8) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0d566b3dd008e4edd9650200000000000008"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x200000c4) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/bus/usb/drivers/ushc/remove_id\x00', 0x3c5981, 0x0) socket(0x10, 0xa, 0x5) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="010600bd7000fbdbdf250a"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) r3 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r3, &(0x7f0000000080)={{0x0, 0x400, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x6, 0x1}, 0x5}, 0x1, 0x8000) 172.410068ms ago: executing program 2 (id=2718): mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) r0 = socket(0x2, 0x1, 0x106) ppoll$auto(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x8) sendmsg$auto_NL80211_CMD_COLOR_CHANGE_REQUEST(r0, 0x0, 0x2000c004) r1 = io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) r2 = openat$auto_nsim_psample_enable_fops_psample(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim1/psample/enable\x00', 0x480, 0x0) connect$auto(r2, &(0x7f00000018c0)=@in={0x2, 0x300, @rand_addr=0x64010100}, 0x55) r3 = socket(0x2, 0x1, 0x0) openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x303, 0x0) getsockopt$auto(r3, 0x6, 0x21, 0x0, &(0x7f00000000c0)=0x28000) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000700), 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_SET_CONFIG(r4, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="1bbf1146e81c80a4c408f2fa0651"], 0x14}}, 0x4000050) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/device_info\x00', 0x48041, 0x0) write$auto(0x3, 0x0, 0xfffffdef) socket(0xa, 0x3, 0x3b) sendmsg$auto_NLBL_UNLABEL_C_LIST(r1, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000080)={0x48, 0x0, 0x8, 0x70bd2a, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x9}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'veth0_vlan\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @rand_addr=0x64010101}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @private=0xa010101}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @local}]}, 0x48}, 0x1, 0x0, 0x0, 0x2000c852}, 0x10) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0xffffffffffffffff, &(0x7f00000018c0)=@in={0x2, 0x4e21, @broadcast}, 0x55) 113.206712ms ago: executing program 3 (id=2719): r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) socket(0xa, 0x5, 0x0) socket(0xa, 0x3, 0xff) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) pidfd_open$auto(0x1, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) socket(0x1e, 0x1, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0xd, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) getpid() ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x5) 0s ago: executing program 2 (id=2720): r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec2\x00', 0x101000, 0x0) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f00000000c0)={"58f99464", 0x8, 0x6, 0x1, 0x3, 0x5, "4bb69ec4b3f4c14539898e4c5682f5", "347f00", "a630df9d", "a0ed9959", ["cd9196b8fe1a8a7eb90401a9", "2f9c30017721de33c560b95a", "d3fe6c55a78d6932211c9b69", "ea334f1f1e5e27a1320d6edb"]}) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000048c0)='/dev/dsp1\x00', 0x20000, 0x0) ioctl$auto_SNDCTL_DSP_SETFMT(r1, 0xc0045005, &(0x7f0000000180)="6da6b940dfe114cacac8b7cca871a393aaf922f69708e0") close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\b', @ANYRES16=0x0, @ANYBLOB], 0x28}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[@ANYBLOB="141e00dd7f0038537b7ff52045486a0bdc6901c61ba3777428b50129f254b446ab6e3cd3484bc5bcf0c592fda4190103f7628098f1a4beb3baedae7f610449c0a60af75192dab729c77501353be2d6a1f14874b6bf8502f42e46d89d75ff897b6c7e9ba71ce612dac5b0d20585e9179c0db9e9a4e4d921abdbc02e1f7933ad0634219be36cef0bc6f309551f8711769dfbc465b60f8436f24f87c89bee8aaae1eab8266fb70f08eb1904ebd16797f22648", @ANYRES16=0x0, @ANYBLOB="000326bd7000fedbdf2502000000"], 0x14}, 0x1, 0x0, 0x0, 0x4c894}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x9}, 0x3, 0x0) write$auto(0xca, &(0x7f0000000040)='\x045h\xd5\x89|d\v\x00\x00\x00\x00\x81\x00\x00\x00\xf6\xf5\x00\xdf\xff\x00', 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event1\x00', 0x8000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_UPD_RXSC(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="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", @ANYRES32=0x0], 0x2c}, 0x1, 0x0, 0x0, 0x20004054}, 0x480b0) kernel console output (not intermixed with test programs): ss `syz.1.2319'. [ 1002.025519][T17530] netlink: 504 bytes leftover after parsing attributes in process `syz.2.2318'. [ 1003.847162][T16859] Bluetooth: hci1: unexpected event 0x35 length: 13 > 6 [ 1003.889060][T17574] netlink: 11 bytes leftover after parsing attributes in process `syz.3.2327'. [ 1004.525118][T17580] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 1005.376423][T17595] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2331'. [ 1005.644804][T17566] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 1005.856745][T17609] FAULT_INJECTION: forcing a failure. [ 1005.856745][T17609] name failslab, interval 1, probability 0, space 0, times 0 [ 1005.878109][T17609] CPU: 1 UID: 0 PID: 17609 Comm: syz.3.2333 Not tainted syzkaller #0 PREEMPT(full) [ 1005.878152][T17609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1005.878172][T17609] Call Trace: [ 1005.878182][T17609] [ 1005.878195][T17609] dump_stack_lvl+0x16c/0x1f0 [ 1005.878235][T17609] should_fail_ex+0x512/0x640 [ 1005.878280][T17609] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 1005.878317][T17609] should_failslab+0xc2/0x120 [ 1005.878358][T17609] kmem_cache_alloc_noprof+0x75/0x6e0 [ 1005.878390][T17609] ? __kernfs_new_node+0xd2/0x8e0 [ 1005.878438][T17609] ? __kernfs_new_node+0xd2/0x8e0 [ 1005.878473][T17609] __kernfs_new_node+0xd2/0x8e0 [ 1005.878517][T17609] ? __pfx___kernfs_new_node+0x10/0x10 [ 1005.878568][T17609] ? find_held_lock+0x2b/0x80 [ 1005.878601][T17609] ? kernfs_root+0xee/0x2a0 [ 1005.878649][T17609] kernfs_new_node+0x13c/0x1e0 [ 1005.878701][T17609] __kernfs_create_file+0x53/0x350 [ 1005.878737][T17609] sysfs_add_file_mode_ns+0x207/0x3c0 [ 1005.878785][T17609] internal_create_group+0x578/0xf30 [ 1005.878838][T17609] ? __pfx_internal_create_group+0x10/0x10 [ 1005.878885][T17609] ? kernfs_create_link+0x1bd/0x240 [ 1005.878922][T17609] internal_create_groups+0x9d/0x150 [ 1005.878977][T17609] device_add+0x731/0x1aa0 [ 1005.879030][T17609] ? __pfx_device_add+0x10/0x10 [ 1005.879074][T17609] ? __pfx___mutex_lock+0x10/0x10 [ 1005.879137][T17609] input_register_device+0x7e8/0x1180 [ 1005.879180][T17609] uinput_ioctl_handler.isra.0+0x1357/0x1df0 [ 1005.879228][T17609] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 1005.879273][T17609] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 1005.879332][T17609] ? find_held_lock+0x2b/0x80 [ 1005.879390][T17609] ? __pfx_uinput_ioctl+0x10/0x10 [ 1005.879436][T17609] __x64_sys_ioctl+0x18e/0x210 [ 1005.879485][T17609] do_syscall_64+0xcd/0xfa0 [ 1005.879523][T17609] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1005.879554][T17609] RIP: 0033:0x7f18e858f6c9 [ 1005.879579][T17609] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1005.879608][T17609] RSP: 002b:00007f18e943c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1005.879638][T17609] RAX: ffffffffffffffda RBX: 00007f18e87e6090 RCX: 00007f18e858f6c9 [ 1005.879659][T17609] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000008 [ 1005.879677][T17609] RBP: 00007f18e8611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1005.879696][T17609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1005.879714][T17609] R13: 00007f18e87e6128 R14: 00007f18e87e6090 R15: 00007ffed8d74a98 [ 1005.879758][T17609] [ 1006.139689][ C1] vkms_vblank_simulate: vblank timer overrun [ 1007.598893][T16859] Bluetooth: hci1: unexpected event 0x35 length: 13 > 6 [ 1007.624912][T17630] netlink: 11 bytes leftover after parsing attributes in process `syz.3.2336'. [ 1008.069331][T17636] zswap: compressor 000 not available [ 1008.201263][T17643] size and base must be multiples of 4 kiB [ 1008.247583][T17643] CPU: 1 UID: 0 PID: 17643 Comm: syz.3.2338 Not tainted syzkaller #0 PREEMPT(full) [ 1008.247611][T17643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1008.247621][T17643] Call Trace: [ 1008.247628][T17643] [ 1008.247635][T17643] dump_stack_lvl+0x16c/0x1f0 [ 1008.247659][T17643] mtrr_del+0xd1/0x110 [ 1008.247683][T17643] mtrr_ioctl+0x922/0xcf0 [ 1008.247708][T17643] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1008.247736][T17643] ? find_held_lock+0x2b/0x80 [ 1008.247759][T17643] ? __fget_files+0x20e/0x3c0 [ 1008.247789][T17643] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1008.247813][T17643] proc_reg_unlocked_ioctl+0x229/0x320 [ 1008.247838][T17643] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1008.247863][T17643] __x64_sys_ioctl+0x18e/0x210 [ 1008.247891][T17643] do_syscall_64+0xcd/0xfa0 [ 1008.247912][T17643] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1008.247930][T17643] RIP: 0033:0x7f18e858f6c9 [ 1008.247944][T17643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1008.247961][T17643] RSP: 002b:00007f18e945d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1008.247977][T17643] RAX: ffffffffffffffda RBX: 00007f18e87e5fa0 RCX: 00007f18e858f6c9 [ 1008.247989][T17643] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1008.247999][T17643] RBP: 00007f18e8611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1008.248009][T17643] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1008.248019][T17643] R13: 00007f18e87e6038 R14: 00007f18e87e5fa0 R15: 00007ffed8d74a98 [ 1008.248041][T17643] [ 1008.414202][ C1] vkms_vblank_simulate: vblank timer overrun [ 1009.077087][T17619] blktrace: Concurrent blktraces are not allowed on loop2 [ 1009.498837][T17666] ima: policy update failed [ 1009.503573][ T30] audit: type=1802 audit(1762398635.927:14): pid=17666 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2345" res=0 errno=0 [ 1009.525296][T17666] netlink: 25 bytes leftover after parsing attributes in process `syz.0.2345'. [ 1010.002003][T17668] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2347'. [ 1010.013154][T17668] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2347'. [ 1010.588999][T17680] size and base must be multiples of 4 kiB [ 1010.595391][T17680] CPU: 1 UID: 0 PID: 17680 Comm: syz.0.2350 Not tainted syzkaller #0 PREEMPT(full) [ 1010.595416][T17680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1010.595427][T17680] Call Trace: [ 1010.595434][T17680] [ 1010.595440][T17680] dump_stack_lvl+0x16c/0x1f0 [ 1010.595465][T17680] mtrr_del+0xd1/0x110 [ 1010.595488][T17680] mtrr_ioctl+0x922/0xcf0 [ 1010.595512][T17680] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1010.595539][T17680] ? find_held_lock+0x2b/0x80 [ 1010.595563][T17680] ? __fget_files+0x20e/0x3c0 [ 1010.595582][T17680] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1010.595605][T17680] proc_reg_unlocked_ioctl+0x229/0x320 [ 1010.595628][T17680] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1010.595653][T17680] __x64_sys_ioctl+0x18e/0x210 [ 1010.595680][T17680] do_syscall_64+0xcd/0xfa0 [ 1010.595701][T17680] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1010.595717][T17680] RIP: 0033:0x7f1aec58f6c9 [ 1010.595732][T17680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1010.595748][T17680] RSP: 002b:00007f1aed362038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1010.595765][T17680] RAX: ffffffffffffffda RBX: 00007f1aec7e5fa0 RCX: 00007f1aec58f6c9 [ 1010.595776][T17680] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1010.595787][T17680] RBP: 00007f1aec611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1010.595797][T17680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1010.595807][T17680] R13: 00007f1aec7e6038 R14: 00007f1aec7e5fa0 R15: 00007fff5da05ac8 [ 1010.595836][T17680] [ 1010.827807][T17677] netlink: 504 bytes leftover after parsing attributes in process `syz.2.2348'. [ 1011.262041][T17693] can: request_module (can-proto-4) failed. [ 1011.573525][T17664] blktrace: Concurrent blktraces are not allowed on loop2 [ 1012.893975][T17706] FAULT_INJECTION: forcing a failure. [ 1012.893975][T17706] name failslab, interval 1, probability 0, space 0, times 0 [ 1012.974751][T17706] CPU: 0 UID: 0 PID: 17706 Comm: syz.2.2357 Not tainted syzkaller #0 PREEMPT(full) [ 1012.974792][T17706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1012.974820][T17706] Call Trace: [ 1012.974831][T17706] [ 1012.974843][T17706] dump_stack_lvl+0x16c/0x1f0 [ 1012.974883][T17706] should_fail_ex+0x512/0x640 [ 1012.974937][T17706] should_failslab+0xc2/0x120 [ 1012.974978][T17706] kmem_cache_alloc_node_noprof+0x78/0x770 [ 1012.975012][T17706] ? __alloc_skb+0x2b2/0x380 [ 1012.975061][T17706] ? __alloc_skb+0x2b2/0x380 [ 1012.975100][T17706] __alloc_skb+0x2b2/0x380 [ 1012.975144][T17706] ? __pfx___alloc_skb+0x10/0x10 [ 1012.975195][T17706] ? sctp_v4_xmit+0x768/0x1030 [ 1012.975230][T17706] ? sctp_chunk_put+0x1a2/0x2c0 [ 1012.975269][T17706] _sctp_make_chunk+0x51/0x270 [ 1012.975301][T17706] sctp_make_shutdown_ack+0x2e/0x340 [ 1012.975333][T17706] sctp_sf_do_9_2_shutdown_ack+0x321/0x7c0 [ 1012.975382][T17706] ? __pfx_sctp_cname+0x10/0x10 [ 1012.975411][T17706] sctp_do_sm+0x181/0x5c80 [ 1012.975458][T17706] ? sctp_outq_flush+0xba2/0x3350 [ 1012.975504][T17706] ? mark_held_locks+0x49/0x80 [ 1012.975544][T17706] ? __pfx_sctp_do_sm+0x10/0x10 [ 1012.975588][T17706] ? __pfx_sctp_outq_flush+0x10/0x10 [ 1012.975676][T17706] ? ktime_get+0x200/0x310 [ 1012.975710][T17706] ? lockdep_hardirqs_on+0x7c/0x110 [ 1012.975750][T17706] sctp_assoc_bh_rcv+0x392/0x6f0 [ 1012.975814][T17706] sctp_inq_push+0x1db/0x270 [ 1012.975861][T17706] sctp_backlog_rcv+0x169/0x590 [ 1012.975896][T17706] ? __pfx_sctp_backlog_rcv+0x10/0x10 [ 1012.975943][T17706] __release_sock+0x3a9/0x450 [ 1012.975975][T17706] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1012.976021][T17706] release_sock+0x5a/0x220 [ 1012.976053][T17706] sctp_close+0x464/0x940 [ 1012.976101][T17706] ? __pfx_sctp_close+0x10/0x10 [ 1012.976141][T17706] ? __pfx___might_resched+0x10/0x10 [ 1012.976182][T17706] ? ip_mc_drop_socket+0x1f/0x280 [ 1012.976218][T17706] ? down_write+0x14d/0x200 [ 1012.976263][T17706] inet_release+0xed/0x200 [ 1012.976310][T17706] inet6_release+0x4f/0x70 [ 1012.976345][T17706] __sock_release+0xb3/0x270 [ 1012.976379][T17706] ? __pfx_sock_close+0x10/0x10 [ 1012.976409][T17706] sock_close+0x1c/0x30 [ 1012.976439][T17706] __fput+0x402/0xb70 [ 1012.976485][T17706] ? _raw_spin_unlock_irq+0x23/0x50 [ 1012.976522][T17706] task_work_run+0x150/0x240 [ 1012.976572][T17706] ? __pfx_task_work_run+0x10/0x10 [ 1012.976622][T17706] ? __pfx___do_sys_close_range+0x10/0x10 [ 1012.976669][T17706] exit_to_user_mode_loop+0xec/0x130 [ 1012.976719][T17706] do_syscall_64+0x426/0xfa0 [ 1012.976756][T17706] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1012.976784][T17706] RIP: 0033:0x7f2ebe58f6c9 [ 1012.976818][T17706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1012.976847][T17706] RSP: 002b:00007f2ebf40a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 1012.976877][T17706] RAX: 0000000000000000 RBX: 00007f2ebe7e5fa0 RCX: 00007f2ebe58f6c9 [ 1012.976897][T17706] RDX: 0000000000000000 RSI: 000000000000000a RDI: 0000000000000002 [ 1012.976915][T17706] RBP: 00007f2ebe611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1012.976933][T17706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1012.976950][T17706] R13: 00007f2ebe7e6038 R14: 00007f2ebe7e5fa0 R15: 00007ffd51a180a8 [ 1012.976993][T17706] [ 1014.073649][ T3452] bridge_slave_1: left allmulticast mode [ 1014.124947][ T3452] bridge_slave_1: left promiscuous mode [ 1014.146875][ T3452] bridge0: port 2(bridge_slave_1) entered disabled state [ 1014.264756][ T3452] bridge_slave_0: left allmulticast mode [ 1014.270437][ T3452] bridge_slave_0: left promiscuous mode [ 1014.325430][ T3452] bridge0: port 1(bridge_slave_0) entered disabled state [ 1015.321160][T17723] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 1015.382453][T17711] kexec: Could not allocate control_code_buffer [ 1016.205819][T17724] MTRR 1 not used [ 1016.391849][ T3452] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1016.428404][ T3452] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1016.459134][ T3452] bond0 (unregistering): Released all slaves [ 1016.568198][ T3452] ovs_ÿþÿþ?: left promiscuous mode [ 1017.038836][T17743] size and base must be multiples of 4 kiB [ 1017.044924][T17743] CPU: 0 UID: 0 PID: 17743 Comm: syz.0.2365 Not tainted syzkaller #0 PREEMPT(full) [ 1017.044949][T17743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1017.044960][T17743] Call Trace: [ 1017.044966][T17743] [ 1017.044974][T17743] dump_stack_lvl+0x16c/0x1f0 [ 1017.044999][T17743] mtrr_del+0xd1/0x110 [ 1017.045023][T17743] mtrr_ioctl+0x922/0xcf0 [ 1017.045048][T17743] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1017.045075][T17743] ? find_held_lock+0x2b/0x80 [ 1017.045099][T17743] ? __fget_files+0x20e/0x3c0 [ 1017.045118][T17743] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1017.045141][T17743] proc_reg_unlocked_ioctl+0x229/0x320 [ 1017.045166][T17743] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1017.045199][T17743] __x64_sys_ioctl+0x18e/0x210 [ 1017.045225][T17743] do_syscall_64+0xcd/0xfa0 [ 1017.045247][T17743] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1017.045265][T17743] RIP: 0033:0x7f1aec58f6c9 [ 1017.045281][T17743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1017.045298][T17743] RSP: 002b:00007f1aed341038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1017.045315][T17743] RAX: ffffffffffffffda RBX: 00007f1aec7e6090 RCX: 00007f1aec58f6c9 [ 1017.045326][T17743] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1017.045337][T17743] RBP: 00007f1aec611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1017.045347][T17743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1017.045357][T17743] R13: 00007f1aec7e6128 R14: 00007f1aec7e6090 R15: 00007fff5da05ac8 [ 1017.045379][T17743] [ 1017.549352][T17745] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 1017.599271][T17745] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 1017.610259][ T3452] hsr_slave_0: left promiscuous mode [ 1017.632503][ T3452] hsr_slave_1: left promiscuous mode [ 1017.662968][ T3452] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1017.707322][ T3452] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1017.746214][ T3452] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1017.784781][ T3452] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1017.856922][ T3452] veth1_macvtap: left promiscuous mode [ 1017.894988][ T3452] veth0_macvtap: left promiscuous mode [ 1017.900743][ T3452] veth1_vlan: left promiscuous mode [ 1017.935173][ T3452] veth0_vlan: left promiscuous mode [ 1018.182163][T17745] blktrace: Concurrent blktraces are not allowed on loop2 [ 1018.759646][T17763] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 1019.655654][ T3452] team0 (unregistering): Port device team_slave_1 removed [ 1019.757477][T17761] netlink: 504 bytes leftover after parsing attributes in process `syz.1.2370'. [ 1019.839111][ T3452] team0 (unregistering): Port device team_slave_0 removed [ 1021.281748][T17787] zswap: compressor 000 not available [ 1021.370513][T16859] Bluetooth: hci0: unexpected event 0x35 length: 13 > 6 [ 1021.393478][T17791] netlink: 11 bytes leftover after parsing attributes in process `syz.2.2378'. [ 1021.930294][T17800] FAULT_INJECTION: forcing a failure. [ 1021.930294][T17800] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1021.944711][T17800] CPU: 0 UID: 0 PID: 17800 Comm: syz.2.2388 Not tainted syzkaller #0 PREEMPT(full) [ 1021.944731][T17800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1021.944740][T17800] Call Trace: [ 1021.944747][T17800] [ 1021.944754][T17800] dump_stack_lvl+0x16c/0x1f0 [ 1021.944778][T17800] should_fail_ex+0x512/0x640 [ 1021.944809][T17800] _copy_from_user+0x2e/0xd0 [ 1021.944837][T17800] core_sys_select+0x35b/0xc20 [ 1021.944860][T17800] ? __pfx_core_sys_select+0x10/0x10 [ 1021.944881][T17800] ? proc_fail_nth_write+0x9f/0x220 [ 1021.944917][T17800] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1021.944945][T17800] kern_select+0x15d/0x1e0 [ 1021.944961][T17800] ? __pfx_kern_select+0x10/0x10 [ 1021.944981][T17800] ? __pfx_ksys_write+0x10/0x10 [ 1021.945003][T17800] __x64_sys_select+0xbd/0x160 [ 1021.945019][T17800] ? do_syscall_64+0x91/0xfa0 [ 1021.945039][T17800] ? lockdep_hardirqs_on+0x7c/0x110 [ 1021.945058][T17800] do_syscall_64+0xcd/0xfa0 [ 1021.945086][T17800] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1021.945105][T17800] RIP: 0033:0x7f2ebe58f6c9 [ 1021.945119][T17800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1021.945137][T17800] RSP: 002b:00007f2ebf40a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 1021.945155][T17800] RAX: ffffffffffffffda RBX: 00007f2ebe7e5fa0 RCX: 00007f2ebe58f6c9 [ 1021.945166][T17800] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 1021.945176][T17800] RBP: 00007f2ebf40a090 R08: 0000000000000000 R09: 0000000000000000 [ 1021.945186][T17800] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001 [ 1021.945197][T17800] R13: 00007f2ebe7e6038 R14: 00007f2ebe7e5fa0 R15: 00007ffd51a180a8 [ 1021.945218][T17800] [ 1022.967106][T17812] ptrace attach of "./syz-executor exec"[17247] was attempted by ""[17812] [ 1023.600669][T17831] ptrace attach of "./syz-executor exec"[17247] was attempted by ""[17831] [ 1023.689648][T17805] netlink: 504 bytes leftover after parsing attributes in process `syz.1.2381'. [ 1025.097331][T17868] ptrace attach of "./syz-executor exec"[16903] was attempted by ""[17868] [ 1026.105302][T16859] Bluetooth: hci3: unexpected event 0x35 length: 13 > 6 [ 1026.110891][T17889] netlink: 11 bytes leftover after parsing attributes in process `syz.1.2398'. [ 1026.419054][T17891] FAULT_INJECTION: forcing a failure. [ 1026.419054][T17891] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1026.432864][T17891] CPU: 1 UID: 0 PID: 17891 Comm: syz.0.2395 Not tainted syzkaller #0 PREEMPT(full) [ 1026.432898][T17891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1026.432912][T17891] Call Trace: [ 1026.432920][T17891] [ 1026.432929][T17891] dump_stack_lvl+0x16c/0x1f0 [ 1026.432969][T17891] should_fail_ex+0x512/0x640 [ 1026.433012][T17891] get_futex_key+0x293/0x1560 [ 1026.433046][T17891] ? __pfx_get_futex_key+0x10/0x10 [ 1026.433074][T17891] ? __mutex_trylock_common+0xe9/0x250 [ 1026.433116][T17891] futex_wake+0xea/0x530 [ 1026.433153][T17891] ? __pfx_futex_wake+0x10/0x10 [ 1026.433184][T17891] ? __lock_acquire+0xb8a/0x1c90 [ 1026.433230][T17891] do_futex+0x1e3/0x350 [ 1026.433261][T17891] ? __pfx_do_futex+0x10/0x10 [ 1026.433288][T17891] ? __might_fault+0xe3/0x190 [ 1026.433321][T17891] mm_release+0x24e/0x300 [ 1026.433348][T17891] do_exit+0x68e/0x2bf0 [ 1026.433391][T17891] ? __pfx_do_exit+0x10/0x10 [ 1026.433421][T17891] ? do_raw_spin_lock+0x12c/0x2b0 [ 1026.433454][T17891] ? find_held_lock+0x2b/0x80 [ 1026.433483][T17891] do_group_exit+0xd3/0x2a0 [ 1026.433516][T17891] get_signal+0x2671/0x26d0 [ 1026.433555][T17891] ? __pfx_get_signal+0x10/0x10 [ 1026.433580][T17891] ? do_futex+0x122/0x350 [ 1026.433610][T17891] ? __pfx_do_futex+0x10/0x10 [ 1026.433642][T17891] arch_do_signal_or_restart+0x8f/0x790 [ 1026.433672][T17891] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1026.433711][T17891] ? xfd_validate_state+0x61/0x180 [ 1026.433740][T17891] ? __pfx___do_sys_close_range+0x10/0x10 [ 1026.433774][T17891] exit_to_user_mode_loop+0x85/0x130 [ 1026.433809][T17891] do_syscall_64+0x426/0xfa0 [ 1026.433838][T17891] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1026.433861][T17891] RIP: 0033:0x7f1aec58f6c9 [ 1026.433880][T17891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1026.433902][T17891] RSP: 002b:00007f1aea7f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1026.433925][T17891] RAX: fffffffffffffe00 RBX: 00007f1aec7e6188 RCX: 00007f1aec58f6c9 [ 1026.433946][T17891] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f1aec7e6188 [ 1026.433960][T17891] RBP: 00007f1aec7e6180 R08: 0000000000000000 R09: 0000000000000000 [ 1026.433974][T17891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1026.433988][T17891] R13: 00007f1aec7e6218 R14: 00007fff5da059e0 R15: 00007fff5da05ac8 [ 1026.434020][T17891] [ 1026.672486][ C1] vkms_vblank_simulate: vblank timer overrun [ 1026.922787][T17896] FAULT_INJECTION: forcing a failure. [ 1026.922787][T17896] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1026.936886][T17896] CPU: 1 UID: 0 PID: 17896 Comm: syz.2.2399 Not tainted syzkaller #0 PREEMPT(full) [ 1026.936926][T17896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1026.936955][T17896] Call Trace: [ 1026.936965][T17896] [ 1026.936976][T17896] dump_stack_lvl+0x16c/0x1f0 [ 1026.937017][T17896] should_fail_ex+0x512/0x640 [ 1026.937067][T17896] get_futex_key+0x1d0/0x1560 [ 1026.937111][T17896] ? __pfx_get_futex_key+0x10/0x10 [ 1026.937148][T17896] ? __mutex_trylock_common+0xe9/0x250 [ 1026.937203][T17896] futex_wake+0xea/0x530 [ 1026.937253][T17896] ? __pfx_futex_wake+0x10/0x10 [ 1026.937294][T17896] ? __lock_acquire+0xb8a/0x1c90 [ 1026.937354][T17896] do_futex+0x1e3/0x350 [ 1026.937394][T17896] ? __pfx_do_futex+0x10/0x10 [ 1026.937430][T17896] ? __might_fault+0xe3/0x190 [ 1026.937475][T17896] mm_release+0x24e/0x300 [ 1026.937507][T17896] do_exit+0x68e/0x2bf0 [ 1026.937554][T17896] ? __pfx_do_exit+0x10/0x10 [ 1026.937592][T17896] ? do_raw_spin_lock+0x12c/0x2b0 [ 1026.937634][T17896] ? find_held_lock+0x2b/0x80 [ 1026.937672][T17896] do_group_exit+0xd3/0x2a0 [ 1026.937715][T17896] get_signal+0x2671/0x26d0 [ 1026.937764][T17896] ? __pfx_get_signal+0x10/0x10 [ 1026.937796][T17896] ? do_futex+0x122/0x350 [ 1026.937834][T17896] ? __pfx_do_futex+0x10/0x10 [ 1026.937876][T17896] arch_do_signal_or_restart+0x8f/0x790 [ 1026.937914][T17896] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1026.937973][T17896] ? __pfx___do_sys_close_range+0x10/0x10 [ 1026.938016][T17896] exit_to_user_mode_loop+0x85/0x130 [ 1026.938062][T17896] do_syscall_64+0x426/0xfa0 [ 1026.938099][T17896] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1026.938128][T17896] RIP: 0033:0x7f2ebe58f6c9 [ 1026.938153][T17896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1026.938181][T17896] RSP: 002b:00007f2ebf3c80e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1026.938211][T17896] RAX: fffffffffffffe00 RBX: 00007f2ebe7e6188 RCX: 00007f2ebe58f6c9 [ 1026.938232][T17896] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2ebe7e6188 [ 1026.938251][T17896] RBP: 00007f2ebe7e6180 R08: 0000000000000000 R09: 0000000000000000 [ 1026.938269][T17896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1026.938287][T17896] R13: 00007f2ebe7e6218 R14: 00007ffd51a17fc0 R15: 00007ffd51a180a8 [ 1026.938326][T17896] [ 1027.177648][ C1] vkms_vblank_simulate: vblank timer overrun [ 1027.951410][T17898] syz.1.2400 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 1028.006226][T17898] CPU: 1 UID: 0 PID: 17898 Comm: syz.1.2400 Not tainted syzkaller #0 PREEMPT(full) [ 1028.006269][T17898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1028.006292][T17898] Call Trace: [ 1028.006303][T17898] [ 1028.006315][T17898] dump_stack_lvl+0x16c/0x1f0 [ 1028.006356][T17898] dump_header+0x101/0x930 [ 1028.006393][T17898] oom_kill_process+0x272/0xa40 [ 1028.006430][T17898] out_of_memory+0x350/0x1700 [ 1028.006471][T17898] ? __pfx_out_of_memory+0x10/0x10 [ 1028.006514][T17898] mem_cgroup_out_of_memory+0x118/0x130 [ 1028.006558][T17898] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 1028.006614][T17898] ? do_raw_spin_unlock+0x172/0x230 [ 1028.006667][T17898] try_charge_memcg+0x695/0xd30 [ 1028.006713][T17898] ? __pfx_try_charge_memcg+0x10/0x10 [ 1028.006762][T17898] ? find_held_lock+0x2b/0x80 [ 1028.006801][T17898] charge_memcg+0x8a/0x230 [ 1028.006840][T17898] mem_cgroup_swapin_charge_folio+0xbb/0x440 [ 1028.006886][T17898] __read_swap_cache_async+0x397/0x500 [ 1028.006924][T17898] ? __pfx___read_swap_cache_async+0x10/0x10 [ 1028.006970][T17898] ? __xa_erase+0xee/0x150 [ 1028.007008][T17898] ? __pfx___xa_erase+0x10/0x10 [ 1028.007052][T17898] swap_cluster_readahead+0x528/0x770 [ 1028.007095][T17898] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 1028.007156][T17898] ? __lock_acquire+0x622/0x1c90 [ 1028.007195][T17898] ? get_vma_policy+0x242/0x3c0 [ 1028.007241][T17898] swapin_readahead+0x13a/0xd60 [ 1028.007285][T17898] ? __pfx_swapin_readahead+0x10/0x10 [ 1028.007314][T17898] ? swap_cache_get_folio+0x267/0x8e0 [ 1028.007342][T17898] ? swap_cache_get_folio+0x267/0x8e0 [ 1028.007367][T17898] ? swap_cache_get_folio+0x267/0x8e0 [ 1028.007400][T17898] ? swap_cache_get_folio+0x267/0x8e0 [ 1028.007429][T17898] ? swap_cache_get_folio+0x1f/0x8e0 [ 1028.007456][T17898] ? swap_cache_get_folio+0x293/0x8e0 [ 1028.007488][T17898] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 1028.007516][T17898] ? __pfx_get_swap_device+0x10/0x10 [ 1028.007557][T17898] ? do_swap_page+0x125/0x6340 [ 1028.007602][T17898] do_swap_page+0x86c/0x6340 [ 1028.007663][T17898] ? __pfx_do_swap_page+0x10/0x10 [ 1028.007707][T17898] ? __pfx_default_wake_function+0x10/0x10 [ 1028.007748][T17898] ? rcu_is_watching+0x12/0xc0 [ 1028.007781][T17898] ? ___pte_offset_map+0x2ad/0x4f0 [ 1028.007827][T17898] __handle_mm_fault+0x17d1/0x2aa0 [ 1028.007879][T17898] ? mt_find+0x3e2/0xa20 [ 1028.007918][T17898] ? __pfx___handle_mm_fault+0x10/0x10 [ 1028.007971][T17898] ? __pfx_mt_find+0x10/0x10 [ 1028.008036][T17898] ? find_vma+0xbf/0x140 [ 1028.008071][T17898] ? __pfx_find_vma+0x10/0x10 [ 1028.008114][T17898] handle_mm_fault+0x589/0xd10 [ 1028.008164][T17898] ? __pkru_allows_pkey+0x11/0xb0 [ 1028.008218][T17898] do_user_addr_fault+0x7a6/0x1370 [ 1028.008253][T17898] ? rcu_is_watching+0x12/0xc0 [ 1028.008290][T17898] exc_page_fault+0x64/0xc0 [ 1028.008326][T17898] asm_exc_page_fault+0x26/0x30 [ 1028.008356][T17898] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 1028.008402][T17898] Code: 3c 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 1028.008428][T17898] RSP: 0018:ffffc90003357c38 EFLAGS: 00050202 [ 1028.008453][T17898] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 00000000000bf085 [ 1028.008472][T17898] RDX: fffff520006f3211 RSI: 0000000000041000 RDI: ffffc900036da000 [ 1028.008492][T17898] RBP: 0000000000100085 R08: 0000000000000001 R09: fffff520006f3210 [ 1028.008512][T17898] R10: ffffc90003799084 R11: 0000000000000000 R12: 0000000000000000 [ 1028.008530][T17898] R13: ffffc90003699000 R14: 0000000000000000 R15: ffffc90003699000 [ 1028.008574][T17898] _copy_from_user+0x98/0xd0 [ 1028.008620][T17898] fb_sys_write+0x253/0x420 [ 1028.008662][T17898] drm_fbdev_shmem_defio_write+0x48/0x90 [ 1028.008695][T17898] ? __pfx_drm_fbdev_shmem_defio_write+0x10/0x10 [ 1028.008725][T17898] fb_write+0x19c/0x2a0 [ 1028.008754][T17898] ? __pfx_fb_write+0x10/0x10 [ 1028.008780][T17898] vfs_write+0x2a0/0x11d0 [ 1028.008820][T17898] ? __pfx_vfs_write+0x10/0x10 [ 1028.008849][T17898] ? find_held_lock+0x2b/0x80 [ 1028.008880][T17898] ? __fget_files+0x204/0x3c0 [ 1028.008916][T17898] ? __fget_files+0x20e/0x3c0 [ 1028.008969][T17898] ksys_write+0x12a/0x250 [ 1028.009000][T17898] ? __pfx_ksys_write+0x10/0x10 [ 1028.009046][T17898] do_syscall_64+0xcd/0xfa0 [ 1028.009084][T17898] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1028.009113][T17898] RIP: 0033:0x7f14c598f6c9 [ 1028.009139][T17898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1028.009165][T17898] RSP: 002b:00007f14c6754038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1028.009194][T17898] RAX: ffffffffffffffda RBX: 00007f14c5be5fa0 RCX: 00007f14c598f6c9 [ 1028.009213][T17898] RDX: 0000000000100085 RSI: 0000000000000000 RDI: 0000000000000003 [ 1028.009231][T17898] RBP: 00007f14c5a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1028.009248][T17898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1028.009266][T17898] R13: 00007f14c5be6038 R14: 00007f14c5be5fa0 R15: 00007ffde25f71b8 [ 1028.009315][T17898] [ 1028.508838][ C1] vkms_vblank_simulate: vblank timer overrun [ 1028.522703][T17898] memory: usage 3072kB, limit 3072kB, failcnt 265343 [ 1028.529463][T17898] memory+swap: usage 6856kB, limit 9007199254740988kB, failcnt 0 [ 1028.538633][T17898] kmem: usage 1656kB, limit 9007199254740988kB, failcnt 0 [ 1028.545900][T17898] Memory cgroup stats for /syz1: [ 1028.546103][T17898] cache 4096 [ 1028.554286][T17898] rss 950272 [ 1028.557572][T17898] rss_huge 0 [ 1028.560797][T17898] shmem 0 [ 1028.563751][T17898] mapped_file 0 [ 1028.567287][T17898] dirty 0 [ 1028.570255][T17898] writeback 0 [ 1028.573571][T17898] workingset_refault_anon 44336 [ 1028.578513][T17898] workingset_refault_file 81878 [ 1028.583422][T17898] swap 3874816 [ 1028.586848][T17898] swapcached 503808 [ 1028.590693][T17898] pgpgin 529009 [ 1028.594178][T17898] pgpgout 530699 [ 1028.597813][T17898] pgfault 724179 [ 1028.601417][T17898] pgmajfault 20440 [ 1028.605216][T17898] inactive_anon 16384 [ 1028.609224][T17898] active_anon 479232 [ 1028.613234][T17898] inactive_file 0 [ 1028.616977][T17898] active_file 4096 [ 1028.620721][T17898] unevictable 950272 [ 1028.625186][T17898] hierarchical_memory_limit 3145728 [ 1028.630423][T17898] hierarchical_memsw_limit 9223372036854771712 [ 1028.637638][T17898] total_cache 4096 [ 1028.641384][T17898] total_rss 950272 [ 1028.645175][T17898] total_rss_huge 0 [ 1028.648923][T17898] total_shmem 0 [ 1028.652436][T17898] total_mapped_file 0 [ 1028.656675][T17898] total_dirty 0 [ 1028.660161][T17898] total_writeback 0 [ 1028.663992][T17898] total_workingset_refault_anon 44336 [ 1028.669483][T17898] total_workingset_refault_file 81878 [ 1028.675200][T17898] total_swap 3874816 [ 1028.679124][T17898] total_swapcached 503808 [ 1028.683508][T17898] total_pgpgin 529009 [ 1028.687573][T17898] total_pgpgout 530699 [ 1028.691669][T17898] total_pgfault 724179 [ 1028.695840][T17898] total_pgmajfault 20440 [ 1028.700141][T17898] total_inactive_anon 16384 [ 1028.704710][T17898] total_active_anon 479232 [ 1028.709312][T17898] total_inactive_file 0 [ 1028.713494][T17898] total_active_file 4096 [ 1028.717846][T17898] total_unevictable 950272 [ 1028.722293][T17898] anon_cost 0 [ 1028.726155][T17898] file_cost 0 [ 1028.729468][T17898] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.2400,pid=17897,uid=0 [ 1028.744773][T17898] Memory cgroup out of memory: Killed process 17897 (syz.1.2400) total-vm:108300kB, anon-rss:2164kB, file-rss:23088kB, shmem-rss:0kB, UID:0 pgtables:152kB oom_score_adj:1000 [ 1029.206428][T17928] size and base must be multiples of 4 kiB [ 1029.213173][T17928] CPU: 0 UID: 0 PID: 17928 Comm: syz.2.2407 Not tainted syzkaller #0 PREEMPT(full) [ 1029.213214][T17928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1029.213231][T17928] Call Trace: [ 1029.213242][T17928] [ 1029.213255][T17928] dump_stack_lvl+0x16c/0x1f0 [ 1029.213296][T17928] mtrr_del+0xd1/0x110 [ 1029.213339][T17928] mtrr_ioctl+0x922/0xcf0 [ 1029.213383][T17928] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1029.213433][T17928] ? find_held_lock+0x2b/0x80 [ 1029.213477][T17928] ? __fget_files+0x20e/0x3c0 [ 1029.213512][T17928] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1029.213554][T17928] proc_reg_unlocked_ioctl+0x229/0x320 [ 1029.213590][T17928] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1029.213638][T17928] __x64_sys_ioctl+0x18e/0x210 [ 1029.213682][T17928] do_syscall_64+0xcd/0xfa0 [ 1029.213719][T17928] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1029.213749][T17928] RIP: 0033:0x7f2ebe58f6c9 [ 1029.213774][T17928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1029.213802][T17928] RSP: 002b:00007f2ebf3e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1029.213831][T17928] RAX: ffffffffffffffda RBX: 00007f2ebe7e6090 RCX: 00007f2ebe58f6c9 [ 1029.213852][T17928] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1029.213869][T17928] RBP: 00007f2ebe611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1029.213887][T17928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1029.213905][T17928] R13: 00007f2ebe7e6128 R14: 00007f2ebe7e6090 R15: 00007ffd51a180a8 [ 1029.213961][T17928] [ 1029.976107][T17933] ptrace attach of "./syz-executor exec"[16903] was attempted by ""[17933] [ 1031.394812][T17965] ptrace attach of "./syz-executor exec"[17247] was attempted by ""[17965] [ 1032.059401][T17976] ptrace attach of "./syz-executor exec"[17247] was attempted by ""[17976] [ 1032.484569][T17992] FAULT_INJECTION: forcing a failure. [ 1032.484569][T17992] name failslab, interval 1, probability 0, space 0, times 0 [ 1032.508637][T17992] CPU: 0 UID: 0 PID: 17992 Comm: syz.3.2420 Not tainted syzkaller #0 PREEMPT(full) [ 1032.508685][T17992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1032.508702][T17992] Call Trace: [ 1032.508712][T17992] [ 1032.508724][T17992] dump_stack_lvl+0x16c/0x1f0 [ 1032.508763][T17992] should_fail_ex+0x512/0x640 [ 1032.508803][T17992] ? fs_reclaim_acquire+0xae/0x150 [ 1032.508847][T17992] should_failslab+0xc2/0x120 [ 1032.508887][T17992] __kmalloc_noprof+0xdd/0x880 [ 1032.508932][T17992] ? tomoyo_encode2+0x100/0x3e0 [ 1032.508972][T17992] ? tomoyo_encode2+0x100/0x3e0 [ 1032.509001][T17992] tomoyo_encode2+0x100/0x3e0 [ 1032.509035][T17992] tomoyo_encode+0x29/0x50 [ 1032.509057][T17992] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1032.509092][T17992] tomoyo_path_number_perm+0x245/0x580 [ 1032.509125][T17992] ? tomoyo_path_number_perm+0x237/0x580 [ 1032.509163][T17992] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1032.509199][T17992] ? find_held_lock+0x2b/0x80 [ 1032.509250][T17992] ? find_held_lock+0x2b/0x80 [ 1032.509272][T17992] ? hook_file_ioctl_common+0x145/0x410 [ 1032.509302][T17992] ? __fget_files+0x20e/0x3c0 [ 1032.509330][T17992] security_file_ioctl+0x9b/0x240 [ 1032.509353][T17992] __x64_sys_ioctl+0xb7/0x210 [ 1032.509388][T17992] do_syscall_64+0xcd/0xfa0 [ 1032.509416][T17992] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1032.509438][T17992] RIP: 0033:0x7f18e858f6c9 [ 1032.509457][T17992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1032.509480][T17992] RSP: 002b:00007f18e945d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1032.509503][T17992] RAX: ffffffffffffffda RBX: 00007f18e87e5fa0 RCX: 00007f18e858f6c9 [ 1032.509518][T17992] RDX: 0000000000000000 RSI: 0000000040046205 RDI: 0000000000000003 [ 1032.509533][T17992] RBP: 00007f18e945d090 R08: 0000000000000000 R09: 0000000000000000 [ 1032.509546][T17992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1032.509560][T17992] R13: 00007f18e87e6038 R14: 00007f18e87e5fa0 R15: 00007ffed8d74a98 [ 1032.509592][T17992] [ 1032.509621][T17992] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1032.775119][T17992] binder: 17991:17992 ioctl 40046205 0 returned -22 [ 1032.885520][T16859] Bluetooth: hci3: unexpected event 0x35 length: 13 > 6 [ 1032.896377][T17998] netlink: 11 bytes leftover after parsing attributes in process `syz.1.2422'. [ 1033.047074][T18000] size and base must be multiples of 4 kiB [ 1033.053127][T18000] CPU: 1 UID: 0 PID: 18000 Comm: syz.2.2419 Not tainted syzkaller #0 PREEMPT(full) [ 1033.053169][T18000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1033.053187][T18000] Call Trace: [ 1033.053198][T18000] [ 1033.053210][T18000] dump_stack_lvl+0x16c/0x1f0 [ 1033.053248][T18000] mtrr_del+0xd1/0x110 [ 1033.053276][T18000] mtrr_ioctl+0x922/0xcf0 [ 1033.053301][T18000] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1033.053328][T18000] ? find_held_lock+0x2b/0x80 [ 1033.053351][T18000] ? __fget_files+0x20e/0x3c0 [ 1033.053369][T18000] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1033.053393][T18000] proc_reg_unlocked_ioctl+0x229/0x320 [ 1033.053416][T18000] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1033.053441][T18000] __x64_sys_ioctl+0x18e/0x210 [ 1033.053468][T18000] do_syscall_64+0xcd/0xfa0 [ 1033.053488][T18000] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1033.053506][T18000] RIP: 0033:0x7f2ebe58f6c9 [ 1033.053521][T18000] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1033.053537][T18000] RSP: 002b:00007f2ebf3c8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1033.053555][T18000] RAX: ffffffffffffffda RBX: 00007f2ebe7e6180 RCX: 00007f2ebe58f6c9 [ 1033.053566][T18000] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1033.053576][T18000] RBP: 00007f2ebe611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1033.053587][T18000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1033.053597][T18000] R13: 00007f2ebe7e6218 R14: 00007f2ebe7e6180 R15: 00007ffd51a180a8 [ 1033.053618][T18000] [ 1034.423482][T18027] ptrace attach of "./syz-executor exec"[16903] was attempted by ""[18027] [ 1035.881185][T18046] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 1035.927397][T18046] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 1037.239902][T18056] netlink: 504 bytes leftover after parsing attributes in process `syz.2.2430'. [ 1037.348470][T18063] size and base must be multiples of 4 kiB [ 1037.364797][T18063] CPU: 0 UID: 0 PID: 18063 Comm: syz.1.2431 Not tainted syzkaller #0 PREEMPT(full) [ 1037.364838][T18063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1037.364855][T18063] Call Trace: [ 1037.364866][T18063] [ 1037.364877][T18063] dump_stack_lvl+0x16c/0x1f0 [ 1037.364912][T18063] mtrr_del+0xd1/0x110 [ 1037.364938][T18063] mtrr_ioctl+0x922/0xcf0 [ 1037.364972][T18063] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1037.365000][T18063] ? find_held_lock+0x2b/0x80 [ 1037.365023][T18063] ? __fget_files+0x20e/0x3c0 [ 1037.365041][T18063] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1037.365064][T18063] proc_reg_unlocked_ioctl+0x229/0x320 [ 1037.365088][T18063] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1037.365114][T18063] __x64_sys_ioctl+0x18e/0x210 [ 1037.365142][T18063] do_syscall_64+0xcd/0xfa0 [ 1037.365162][T18063] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1037.365180][T18063] RIP: 0033:0x7f14c598f6c9 [ 1037.365195][T18063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1037.365211][T18063] RSP: 002b:00007f14c3bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1037.365228][T18063] RAX: ffffffffffffffda RBX: 00007f14c5be6090 RCX: 00007f14c598f6c9 [ 1037.365240][T18063] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1037.365250][T18063] RBP: 00007f14c5a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1037.365260][T18063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1037.365270][T18063] R13: 00007f14c5be6128 R14: 00007f14c5be6090 R15: 00007ffde25f71b8 [ 1037.365292][T18063] [ 1037.755513][T16859] Bluetooth: hci4: unexpected event 0x35 length: 13 > 6 [ 1037.826983][T18072] netlink: 11 bytes leftover after parsing attributes in process `syz.0.2433'. [ 1040.789657][ T5834] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1040.812902][ T5834] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1040.821613][ T5834] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1040.836011][ T5834] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1040.845233][ T5834] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1041.492405][T16859] Bluetooth: hci0: unexpected event 0x35 length: 13 > 6 [ 1041.498594][T18130] netlink: 11 bytes leftover after parsing attributes in process `syz.2.2446'. [ 1042.148860][T18140] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 1042.914810][T16859] Bluetooth: hci2: command tx timeout [ 1042.926391][T16746] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:4: bg 2: bad block bitmap checksum [ 1042.966333][T16746] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 914 with max blocks 17 with error 74 [ 1043.026631][T16746] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1043.026631][T16746] [ 1043.472777][ T143] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1043.740630][ T143] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1044.421800][ T143] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1044.736824][ T143] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1044.878553][T18125] chnl_net:caif_netlink_parms(): no params data found [ 1044.995294][T16859] Bluetooth: hci2: command tx timeout [ 1045.366842][T18125] bridge0: port 1(bridge_slave_0) entered blocking state [ 1045.374128][T18125] bridge0: port 1(bridge_slave_0) entered disabled state [ 1045.384158][T18125] bridge_slave_0: entered allmulticast mode [ 1045.394380][T18125] bridge_slave_0: entered promiscuous mode [ 1045.404322][T18125] bridge0: port 2(bridge_slave_1) entered blocking state [ 1045.411993][T18125] bridge0: port 2(bridge_slave_1) entered disabled state [ 1045.420506][T18125] bridge_slave_1: entered allmulticast mode [ 1045.430898][T18125] bridge_slave_1: entered promiscuous mode [ 1045.640682][T18125] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1045.658786][T18165] zswap: compressor 000 not available [ 1045.684136][ T143] bridge_slave_1: left allmulticast mode [ 1045.715252][ T143] bridge_slave_1: left promiscuous mode [ 1045.722640][ T143] bridge0: port 2(bridge_slave_1) entered disabled state [ 1045.840655][ T143] bridge_slave_0: left allmulticast mode [ 1045.860503][ T143] bridge_slave_0: left promiscuous mode [ 1045.888297][ T143] bridge0: port 1(bridge_slave_0) entered disabled state [ 1046.386740][T18173] netlink: 504 bytes leftover after parsing attributes in process `syz.0.2453'. [ 1047.082402][T16859] Bluetooth: hci2: command tx timeout [ 1047.490753][ T3458] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 914 with max blocks 1 with error 117 [ 1047.529346][ T3458] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1047.529346][ T3458] [ 1047.547756][ T143] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1047.601276][ T143] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1047.650468][ T143] bond0 (unregistering): Released all slaves [ 1047.711246][T18125] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1048.110420][T18125] team0: Port device team_slave_0 added [ 1048.286455][T18125] team0: Port device team_slave_1 added [ 1048.564593][ T143] hsr_slave_0: left promiscuous mode [ 1048.633885][ T143] hsr_slave_1: left promiscuous mode [ 1048.640218][ T143] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1048.648429][ T143] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1048.700672][ T143] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1048.714733][ T143] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1048.774224][T18174] syz.0.2453 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 1048.820504][T18174] CPU: 1 UID: 0 PID: 18174 Comm: syz.0.2453 Not tainted syzkaller #0 PREEMPT(full) [ 1048.820544][T18174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1048.820560][T18174] Call Trace: [ 1048.820570][T18174] [ 1048.820581][T18174] dump_stack_lvl+0x16c/0x1f0 [ 1048.820620][T18174] dump_header+0x101/0x930 [ 1048.820654][T18174] oom_kill_process+0x272/0xa40 [ 1048.820690][T18174] out_of_memory+0x350/0x1700 [ 1048.820727][T18174] ? __pfx_out_of_memory+0x10/0x10 [ 1048.820770][T18174] mem_cgroup_out_of_memory+0x118/0x130 [ 1048.820815][T18174] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 1048.820876][T18174] ? do_raw_spin_unlock+0x172/0x230 [ 1048.820929][T18174] try_charge_memcg+0x695/0xd30 [ 1048.820974][T18174] ? __pfx_try_charge_memcg+0x10/0x10 [ 1048.821020][T18174] ? find_held_lock+0x2b/0x80 [ 1048.821057][T18174] charge_memcg+0x8a/0x230 [ 1048.821094][T18174] mem_cgroup_swapin_charge_folio+0xbb/0x440 [ 1048.821141][T18174] __read_swap_cache_async+0x397/0x500 [ 1048.821177][T18174] ? __pfx___read_swap_cache_async+0x10/0x10 [ 1048.821209][T18174] ? mlock_drain_local+0x210/0x4f0 [ 1048.821252][T18174] swap_cluster_readahead+0x432/0x770 [ 1048.821292][T18174] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 1048.821349][T18174] ? __lock_acquire+0x622/0x1c90 [ 1048.821385][T18174] ? get_vma_policy+0x242/0x3c0 [ 1048.821429][T18174] swapin_readahead+0x13a/0xd60 [ 1048.821473][T18174] ? __pfx_swapin_readahead+0x10/0x10 [ 1048.821500][T18174] ? swap_cache_get_folio+0x267/0x8e0 [ 1048.821527][T18174] ? swap_cache_get_folio+0x267/0x8e0 [ 1048.821553][T18174] ? swap_cache_get_folio+0x267/0x8e0 [ 1048.821582][T18174] ? swap_cache_get_folio+0x267/0x8e0 [ 1048.821609][T18174] ? swap_cache_get_folio+0x1f/0x8e0 [ 1048.821634][T18174] ? swap_cache_get_folio+0x293/0x8e0 [ 1048.821665][T18174] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 1048.821691][T18174] ? __pfx_get_swap_device+0x10/0x10 [ 1048.821729][T18174] ? do_swap_page+0x125/0x6340 [ 1048.821775][T18174] do_swap_page+0x86c/0x6340 [ 1048.821844][T18174] ? __pfx_do_swap_page+0x10/0x10 [ 1048.821890][T18174] ? __pfx_default_wake_function+0x10/0x10 [ 1048.821924][T18174] ? __lock_acquire+0x622/0x1c90 [ 1048.821968][T18174] ? rcu_is_watching+0x12/0xc0 [ 1048.821999][T18174] ? ___pte_offset_map+0x2ad/0x4f0 [ 1048.822045][T18174] __handle_mm_fault+0x17d1/0x2aa0 [ 1048.822104][T18174] ? __pfx___handle_mm_fault+0x10/0x10 [ 1048.822155][T18174] ? lock_vma_under_rcu+0x176/0x530 [ 1048.822215][T18174] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 1048.822273][T18174] handle_mm_fault+0x589/0xd10 [ 1048.822318][T18174] ? rcu_is_watching+0x11/0xc0 [ 1048.822354][T18174] do_user_addr_fault+0x60c/0x1370 [ 1048.822388][T18174] ? rcu_is_watching+0x12/0xc0 [ 1048.822422][T18174] exc_page_fault+0x64/0xc0 [ 1048.822454][T18174] asm_exc_page_fault+0x26/0x30 [ 1048.822482][T18174] RIP: 0033:0x369000 [ 1048.822513][T18174] Code: Unable to access opcode bytes at 0x368fd6. [ 1048.822526][T18174] RSP: 002b:000000000000000a EFLAGS: 00010257 [ 1048.822548][T18174] RAX: 0000000000000003 RBX: 00007f1aec7e6090 RCX: 00007f1aec58f6c9 [ 1048.822567][T18174] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46 [ 1048.822584][T18174] RBP: 00007f1aec611f91 R08: 0000000000000002 R09: 0000000000000000 [ 1048.822601][T18174] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1048.822618][T18174] R13: 00007f1aec7e6128 R14: 00007f1aec7e6090 R15: 00007fff5da05ac8 [ 1048.822660][T18174] [ 1048.822672][T18174] memory: usage 3072kB, limit 3072kB, failcnt 387418 [ 1048.913212][ T143] veth1_macvtap: left promiscuous mode [ 1048.994683][T18174] memory+swap: usage 34636kB, limit 9007199254740988kB, failcnt 0 [ 1049.176577][T18174] kmem: usage 1992kB, limit 9007199254740988kB, failcnt 0 [ 1049.183730][T18174] Memory cgroup stats for /syz3: [ 1049.183921][T18174] cache 4096 [ 1049.194768][T16859] Bluetooth: hci2: command tx timeout [ 1049.214816][ T143] veth0_macvtap: left promiscuous mode [ 1049.221293][ T143] veth1_vlan: left promiscuous mode [ 1049.226817][ T143] veth0_vlan: left promiscuous mode [ 1049.245421][T18174] rss 0 [ 1049.248240][T18174] rss_huge 0 [ 1049.260054][T18174] shmem 0 [ 1049.263039][T18174] mapped_file 0 [ 1049.266648][T18174] dirty 0 [ 1049.269606][T18174] writeback 0 [ 1049.310399][T18174] workingset_refault_anon 53514 [ 1049.336082][T18174] workingset_refault_file 140761 [ 1049.360528][T18174] swap 32321536 [ 1049.365847][T16859] Bluetooth: hci0: unexpected event 0x35 length: 13 > 6 [ 1049.388088][T18224] netlink: 11 bytes leftover after parsing attributes in process `syz.2.2462'. [ 1049.405375][T18174] swapcached 1101824 [ 1049.409369][T18174] pgpgin 690842 [ 1049.412862][T18174] pgpgout 692105 [ 1049.431752][T18174] pgfault 683427 [ 1049.437698][T18174] pgmajfault 23375 [ 1049.441450][T18174] inactive_anon 262144 [ 1049.474828][T18174] active_anon 417792 [ 1049.478789][T18174] inactive_file 0 [ 1049.482446][T18174] active_file 4096 [ 1049.511812][T18174] unevictable 0 [ 1049.517095][T18174] hierarchical_memory_limit 3145728 [ 1049.546004][T18174] hierarchical_memsw_limit 9223372036854771712 [ 1049.563297][T18174] total_cache 4096 [ 1049.575276][T18174] total_rss 0 [ 1049.578606][T18174] total_rss_huge 0 [ 1049.582347][T18174] total_shmem 0 [ 1049.612592][T18174] total_mapped_file 0 [ 1049.617000][T18174] total_dirty 0 [ 1049.620467][T18174] total_writeback 0 [ 1049.624266][T18174] total_workingset_refault_anon 53514 [ 1049.630696][T18174] total_workingset_refault_file 140761 [ 1049.637327][T18174] total_swap 32321536 [ 1049.641317][T18174] total_swapcached 1101824 [ 1049.652694][T18174] total_pgpgin 690842 [ 1049.729659][T18174] total_pgpgout 692105 [ 1049.736947][T18174] total_pgfault 683427 [ 1049.741058][T18174] total_pgmajfault 23375 [ 1049.769011][T18174] total_inactive_anon 262144 [ 1049.782277][T18174] total_active_anon 417792 [ 1049.786985][T18174] total_inactive_file 0 [ 1049.791219][T18174] total_active_file 4096 [ 1049.795593][T18174] total_unevictable 0 [ 1049.799831][T18174] anon_cost 0 [ 1049.803200][T18174] file_cost 0 [ 1049.806610][T18174] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.2423,pid=18023,uid=0 [ 1049.822489][T18174] Memory cgroup out of memory: Killed process 18023 (syz.3.2423) total-vm:108432kB, anon-rss:1196kB, file-rss:46696kB, shmem-rss:0kB, UID:0 pgtables:196kB oom_score_adj:1000 [ 1051.409861][ T143] team0 (unregistering): Port device team_slave_1 removed [ 1051.496061][ T143] team0 (unregistering): Port device team_slave_0 removed [ 1052.110922][T18246] size and base must be multiples of 4 kiB [ 1052.118033][T18246] CPU: 1 UID: 0 PID: 18246 Comm: syz.3.2467 Not tainted syzkaller #0 PREEMPT(full) [ 1052.118074][T18246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1052.118091][T18246] Call Trace: [ 1052.118102][T18246] [ 1052.118115][T18246] dump_stack_lvl+0x16c/0x1f0 [ 1052.118156][T18246] mtrr_del+0xd1/0x110 [ 1052.118199][T18246] mtrr_ioctl+0x922/0xcf0 [ 1052.118243][T18246] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1052.118294][T18246] ? find_held_lock+0x2b/0x80 [ 1052.118336][T18246] ? __fget_files+0x20e/0x3c0 [ 1052.118369][T18246] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1052.118412][T18246] proc_reg_unlocked_ioctl+0x229/0x320 [ 1052.118454][T18246] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1052.118501][T18246] __x64_sys_ioctl+0x18e/0x210 [ 1052.118550][T18246] do_syscall_64+0xcd/0xfa0 [ 1052.118600][T18246] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1052.118632][T18246] RIP: 0033:0x7f18e858f6c9 [ 1052.118656][T18246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1052.118686][T18246] RSP: 002b:00007f18e943c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1052.118715][T18246] RAX: ffffffffffffffda RBX: 00007f18e87e6090 RCX: 00007f18e858f6c9 [ 1052.118735][T18246] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1052.118754][T18246] RBP: 00007f18e8611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1052.118773][T18246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1052.118792][T18246] R13: 00007f18e87e6128 R14: 00007f18e87e6090 R15: 00007ffed8d74a98 [ 1052.118834][T18246] [ 1052.339056][T18125] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1052.346442][T18125] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1052.373012][T18125] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1052.403624][T18125] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1052.410876][T18125] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1052.436936][T18125] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1052.617677][T18125] hsr_slave_0: entered promiscuous mode [ 1052.643779][T18125] hsr_slave_1: entered promiscuous mode [ 1052.804861][T18251] ptrace attach of "./syz-executor exec"[16903] was attempted by ""[18251] [ 1053.368102][T18257] size and base must be multiples of 4 kiB [ 1053.396472][T18260] ptrace attach of "./syz-executor exec"[5832] was attempted by ""[18260] [ 1053.409239][T18257] CPU: 0 UID: 0 PID: 18257 Comm: syz.2.2469 Not tainted syzkaller #0 PREEMPT(full) [ 1053.409279][T18257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1053.409296][T18257] Call Trace: [ 1053.409307][T18257] [ 1053.409319][T18257] dump_stack_lvl+0x16c/0x1f0 [ 1053.409360][T18257] mtrr_del+0xd1/0x110 [ 1053.409400][T18257] mtrr_ioctl+0x922/0xcf0 [ 1053.409438][T18257] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1053.409477][T18257] ? find_held_lock+0x2b/0x80 [ 1053.409511][T18257] ? __fget_files+0x20e/0x3c0 [ 1053.409536][T18257] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1053.409568][T18257] proc_reg_unlocked_ioctl+0x229/0x320 [ 1053.409609][T18257] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1053.409643][T18257] __x64_sys_ioctl+0x18e/0x210 [ 1053.409680][T18257] do_syscall_64+0xcd/0xfa0 [ 1053.409709][T18257] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1053.409733][T18257] RIP: 0033:0x7f2ebe58f6c9 [ 1053.409753][T18257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1053.409774][T18257] RSP: 002b:00007f2ebf3e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1053.409797][T18257] RAX: ffffffffffffffda RBX: 00007f2ebe7e6090 RCX: 00007f2ebe58f6c9 [ 1053.409812][T18257] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1053.409826][T18257] RBP: 00007f2ebe611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1053.409841][T18257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1053.409855][T18257] R13: 00007f2ebe7e6128 R14: 00007f2ebe7e6090 R15: 00007ffd51a180a8 [ 1053.409887][T18257] [ 1054.222863][T18267] zswap: compressor 000 not available [ 1054.937914][T18125] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 1055.039061][T18125] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 1055.063732][T18293] size and base must be multiples of 4 kiB [ 1055.069840][T18293] CPU: 0 UID: 0 PID: 18293 Comm: syz.2.2476 Not tainted syzkaller #0 PREEMPT(full) [ 1055.069871][T18293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1055.069885][T18293] Call Trace: [ 1055.069902][T18293] [ 1055.069911][T18293] dump_stack_lvl+0x16c/0x1f0 [ 1055.069943][T18293] mtrr_del+0xd1/0x110 [ 1055.069965][T18293] mtrr_ioctl+0x922/0xcf0 [ 1055.069984][T18293] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1055.070007][T18293] ? find_held_lock+0x2b/0x80 [ 1055.070026][T18293] ? __fget_files+0x20e/0x3c0 [ 1055.070041][T18293] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1055.070064][T18293] proc_reg_unlocked_ioctl+0x229/0x320 [ 1055.070088][T18293] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1055.070108][T18293] __x64_sys_ioctl+0x18e/0x210 [ 1055.070129][T18293] do_syscall_64+0xcd/0xfa0 [ 1055.070146][T18293] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1055.070160][T18293] RIP: 0033:0x7f2ebe58f6c9 [ 1055.070171][T18293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1055.070184][T18293] RSP: 002b:00007f2ebf3e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1055.070198][T18293] RAX: ffffffffffffffda RBX: 00007f2ebe7e6090 RCX: 00007f2ebe58f6c9 [ 1055.070206][T18293] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1055.070215][T18293] RBP: 00007f2ebe611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1055.070223][T18293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1055.070230][T18293] R13: 00007f2ebe7e6128 R14: 00007f2ebe7e6090 R15: 00007ffd51a180a8 [ 1055.070247][T18293] [ 1055.323116][T18125] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 1055.466285][T18125] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 1055.698307][T18317] ptrace attach of "./syz-executor exec"[17247] was attempted by ""[18317] [ 1055.862974][T18125] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1055.969248][T18125] 8021q: adding VLAN 0 to HW filter on device team0 [ 1056.019046][ T143] bridge0: port 1(bridge_slave_0) entered blocking state [ 1056.026233][ T143] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1056.175712][ T143] bridge0: port 2(bridge_slave_1) entered blocking state [ 1056.182860][ T143] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1056.441354][T18327] size and base must be multiples of 4 kiB [ 1056.447451][T18327] CPU: 0 UID: 0 PID: 18327 Comm: syz.3.2481 Not tainted syzkaller #0 PREEMPT(full) [ 1056.447489][T18327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1056.447507][T18327] Call Trace: [ 1056.447519][T18327] [ 1056.447532][T18327] dump_stack_lvl+0x16c/0x1f0 [ 1056.447570][T18327] mtrr_del+0xd1/0x110 [ 1056.447598][T18327] mtrr_ioctl+0x922/0xcf0 [ 1056.447623][T18327] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1056.447650][T18327] ? find_held_lock+0x2b/0x80 [ 1056.447674][T18327] ? __fget_files+0x20e/0x3c0 [ 1056.447693][T18327] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1056.447726][T18327] proc_reg_unlocked_ioctl+0x229/0x320 [ 1056.447749][T18327] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1056.447775][T18327] __x64_sys_ioctl+0x18e/0x210 [ 1056.447801][T18327] do_syscall_64+0xcd/0xfa0 [ 1056.447822][T18327] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1056.447839][T18327] RIP: 0033:0x7f18e858f6c9 [ 1056.447855][T18327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1056.447872][T18327] RSP: 002b:00007f18e943c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1056.447889][T18327] RAX: ffffffffffffffda RBX: 00007f18e87e6090 RCX: 00007f18e858f6c9 [ 1056.447900][T18327] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1056.447910][T18327] RBP: 00007f18e8611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1056.447921][T18327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1056.447930][T18327] R13: 00007f18e87e6128 R14: 00007f18e87e6090 R15: 00007ffed8d74a98 [ 1056.447952][T18327] [ 1056.967184][T18339] ptrace attach of "./syz-executor exec"[16903] was attempted by ""[18339] [ 1057.007285][T18125] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1057.515044][T18338] size and base must be multiples of 4 kiB [ 1057.541266][T18338] CPU: 1 UID: 0 PID: 18338 Comm: syz.2.2482 Not tainted syzkaller #0 PREEMPT(full) [ 1057.541309][T18338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1057.541326][T18338] Call Trace: [ 1057.541333][T18338] [ 1057.541341][T18338] dump_stack_lvl+0x16c/0x1f0 [ 1057.541366][T18338] mtrr_del+0xd1/0x110 [ 1057.541391][T18338] mtrr_ioctl+0x922/0xcf0 [ 1057.541416][T18338] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1057.541445][T18338] ? find_held_lock+0x2b/0x80 [ 1057.541469][T18338] ? __fget_files+0x20e/0x3c0 [ 1057.541488][T18338] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1057.541512][T18338] proc_reg_unlocked_ioctl+0x229/0x320 [ 1057.541545][T18338] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1057.541572][T18338] __x64_sys_ioctl+0x18e/0x210 [ 1057.541598][T18338] do_syscall_64+0xcd/0xfa0 [ 1057.541620][T18338] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1057.541638][T18338] RIP: 0033:0x7f2ebe58f6c9 [ 1057.541653][T18338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1057.541671][T18338] RSP: 002b:00007f2ebf3e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1057.541689][T18338] RAX: ffffffffffffffda RBX: 00007f2ebe7e6090 RCX: 00007f2ebe58f6c9 [ 1057.541700][T18338] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1057.541711][T18338] RBP: 00007f2ebe611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1057.541721][T18338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1057.541730][T18338] R13: 00007f2ebe7e6128 R14: 00007f2ebe7e6090 R15: 00007ffd51a180a8 [ 1057.541752][T18338] [ 1057.745714][T18125] veth0_vlan: entered promiscuous mode [ 1057.760714][T18125] veth1_vlan: entered promiscuous mode [ 1057.800588][T18125] veth0_macvtap: entered promiscuous mode [ 1057.811954][T18125] veth1_macvtap: entered promiscuous mode [ 1057.836210][T18125] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1057.852604][T18125] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1057.895240][ T143] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1058.049139][ T143] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1058.095014][ T143] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1058.144417][ T143] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1058.452057][T18352] zswap: compressor 000 not available [ 1058.573871][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1058.623534][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1058.846241][T18357] zswap: compressor 000 not available [ 1058.906202][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1058.931070][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1059.879475][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1059.892329][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1060.782652][T18434] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 1060.840243][T18420] zswap: compressor 000 not available [ 1063.723231][T18495] zswap: compressor 000 not available [ 1065.189192][T18461] blktrace: Concurrent blktraces are not allowed on loop2 [ 1066.079808][T18522] size and base must be multiples of 4 kiB [ 1066.085864][T18522] CPU: 0 UID: 0 PID: 18522 Comm: syz.2.2515 Not tainted syzkaller #0 PREEMPT(full) [ 1066.085907][T18522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1066.085926][T18522] Call Trace: [ 1066.085937][T18522] [ 1066.085949][T18522] dump_stack_lvl+0x16c/0x1f0 [ 1066.085991][T18522] mtrr_del+0xd1/0x110 [ 1066.086034][T18522] mtrr_ioctl+0x922/0xcf0 [ 1066.086078][T18522] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1066.086129][T18522] ? find_held_lock+0x2b/0x80 [ 1066.086170][T18522] ? __fget_files+0x20e/0x3c0 [ 1066.086201][T18522] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1066.086244][T18522] proc_reg_unlocked_ioctl+0x229/0x320 [ 1066.086286][T18522] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1066.086333][T18522] __x64_sys_ioctl+0x18e/0x210 [ 1066.086381][T18522] do_syscall_64+0xcd/0xfa0 [ 1066.086429][T18522] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1066.086459][T18522] RIP: 0033:0x7f2ebe58f6c9 [ 1066.086486][T18522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1066.086516][T18522] RSP: 002b:00007f2ebf3e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1066.086547][T18522] RAX: ffffffffffffffda RBX: 00007f2ebe7e6090 RCX: 00007f2ebe58f6c9 [ 1066.086568][T18522] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1066.086588][T18522] RBP: 00007f2ebe611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1066.086607][T18522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1066.086626][T18522] R13: 00007f2ebe7e6128 R14: 00007f2ebe7e6090 R15: 00007ffd51a180a8 [ 1066.086667][T18522] [ 1066.504273][T18531] FAULT_INJECTION: forcing a failure. [ 1066.504273][T18531] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1066.563454][T18531] CPU: 0 UID: 0 PID: 18531 Comm: syz.1.2517 Not tainted syzkaller #0 PREEMPT(full) [ 1066.563504][T18531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1066.563521][T18531] Call Trace: [ 1066.563531][T18531] [ 1066.563543][T18531] dump_stack_lvl+0x16c/0x1f0 [ 1066.563581][T18531] should_fail_ex+0x512/0x640 [ 1066.563629][T18531] get_futex_key+0xff0/0x1560 [ 1066.563672][T18531] ? __pfx_get_futex_key+0x10/0x10 [ 1066.563709][T18531] ? __mutex_trylock_common+0xe9/0x250 [ 1066.563758][T18531] futex_wake+0xea/0x530 [ 1066.563806][T18531] ? __pfx_futex_wake+0x10/0x10 [ 1066.563847][T18531] ? __lock_acquire+0xb8a/0x1c90 [ 1066.563903][T18531] do_futex+0x1e3/0x350 [ 1066.563942][T18531] ? __pfx_do_futex+0x10/0x10 [ 1066.563978][T18531] ? __might_fault+0xe3/0x190 [ 1066.564018][T18531] mm_release+0x24e/0x300 [ 1066.564052][T18531] do_exit+0x68e/0x2bf0 [ 1066.564095][T18531] ? __pfx_do_exit+0x10/0x10 [ 1066.564131][T18531] ? do_raw_spin_lock+0x12c/0x2b0 [ 1066.564171][T18531] ? find_held_lock+0x2b/0x80 [ 1066.564208][T18531] do_group_exit+0xd3/0x2a0 [ 1066.564248][T18531] get_signal+0x2671/0x26d0 [ 1066.564295][T18531] ? __pfx_get_signal+0x10/0x10 [ 1066.564334][T18531] ? do_futex+0x122/0x350 [ 1066.564373][T18531] ? __pfx_do_futex+0x10/0x10 [ 1066.564416][T18531] arch_do_signal_or_restart+0x8f/0x790 [ 1066.564455][T18531] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1066.564514][T18531] ? syscall_user_dispatch+0x78/0x140 [ 1066.564568][T18531] exit_to_user_mode_loop+0x85/0x130 [ 1066.564618][T18531] do_syscall_64+0x426/0xfa0 [ 1066.564654][T18531] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1066.564683][T18531] RIP: 0033:0x7fe577d8f6c9 [ 1066.564708][T18531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1066.564733][T18531] RSP: 002b:00007fe575ff60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1066.564761][T18531] RAX: fffffffffffffe00 RBX: 00007fe577fe6098 RCX: 00007fe577d8f6c9 [ 1066.564780][T18531] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe577fe6098 [ 1066.564798][T18531] RBP: 00007fe577fe6090 R08: 0000000000000000 R09: 0000000000000000 [ 1066.564815][T18531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1066.564832][T18531] R13: 00007fe577fe6128 R14: 00007fff7a95fe50 R15: 00007fff7a95ff38 [ 1066.564876][T18531] [ 1066.916726][T18537] ptrace attach of "./syz-executor exec"[16903] was attempted by ""[18537] [ 1069.307010][T16859] Bluetooth: hci0: unexpected event 0x35 length: 13 > 6 [ 1069.317487][T18583] netlink: 11 bytes leftover after parsing attributes in process `syz.2.2531'. [ 1069.557841][T18569] size and base must be multiples of 4 kiB [ 1069.563850][T18569] CPU: 0 UID: 0 PID: 18569 Comm: syz.3.2527 Not tainted syzkaller #0 PREEMPT(full) [ 1069.563874][T18569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1069.563884][T18569] Call Trace: [ 1069.563890][T18569] [ 1069.563897][T18569] dump_stack_lvl+0x16c/0x1f0 [ 1069.563923][T18569] mtrr_del+0xd1/0x110 [ 1069.563946][T18569] mtrr_ioctl+0x922/0xcf0 [ 1069.563971][T18569] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1069.563998][T18569] ? find_held_lock+0x2b/0x80 [ 1069.564022][T18569] ? __fget_files+0x20e/0x3c0 [ 1069.564041][T18569] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1069.564064][T18569] proc_reg_unlocked_ioctl+0x229/0x320 [ 1069.564089][T18569] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1069.564114][T18569] __x64_sys_ioctl+0x18e/0x210 [ 1069.564141][T18569] do_syscall_64+0xcd/0xfa0 [ 1069.564162][T18569] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1069.564179][T18569] RIP: 0033:0x7f18e858f6c9 [ 1069.564193][T18569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1069.564209][T18569] RSP: 002b:00007f18e943c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1069.564226][T18569] RAX: ffffffffffffffda RBX: 00007f18e87e6090 RCX: 00007f18e858f6c9 [ 1069.564237][T18569] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1069.564248][T18569] RBP: 00007f18e8611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1069.564258][T18569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1069.564268][T18569] R13: 00007f18e87e6128 R14: 00007f18e87e6090 R15: 00007ffed8d74a98 [ 1069.564289][T18569] [ 1070.692815][T18601] netlink: 504 bytes leftover after parsing attributes in process `syz.2.2536'. [ 1072.290853][T18627] size and base must be multiples of 4 kiB [ 1072.306416][T18627] CPU: 1 UID: 0 PID: 18627 Comm: syz.1.2543 Not tainted syzkaller #0 PREEMPT(full) [ 1072.306460][T18627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1072.306478][T18627] Call Trace: [ 1072.306489][T18627] [ 1072.306501][T18627] dump_stack_lvl+0x16c/0x1f0 [ 1072.306541][T18627] mtrr_del+0xd1/0x110 [ 1072.306581][T18627] mtrr_ioctl+0x922/0xcf0 [ 1072.306623][T18627] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1072.306673][T18627] ? find_held_lock+0x2b/0x80 [ 1072.306715][T18627] ? __fget_files+0x20e/0x3c0 [ 1072.306748][T18627] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1072.306790][T18627] proc_reg_unlocked_ioctl+0x229/0x320 [ 1072.306832][T18627] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1072.306879][T18627] __x64_sys_ioctl+0x18e/0x210 [ 1072.306928][T18627] do_syscall_64+0xcd/0xfa0 [ 1072.306966][T18627] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1072.307007][T18627] RIP: 0033:0x7fe577d8f6c9 [ 1072.307033][T18627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1072.307063][T18627] RSP: 002b:00007fe575ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1072.307094][T18627] RAX: ffffffffffffffda RBX: 00007fe577fe6090 RCX: 00007fe577d8f6c9 [ 1072.307115][T18627] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1072.307134][T18627] RBP: 00007fe577e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1072.307154][T18627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1072.307172][T18627] R13: 00007fe577fe6128 R14: 00007fe577fe6090 R15: 00007fff7a95ff38 [ 1072.307216][T18627] [ 1073.406952][T18621] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1073.413193][T18621] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1073.445592][T18621] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 1073.505065][T18621] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 1073.606305][T18621] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1073.612399][T18621] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 1073.674922][T18621] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 1073.767993][T18621] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1073.799178][T18621] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 1073.809045][T18646] zswap: compressor 000 not available [ 1073.909838][T18621] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 1074.121185][T18652] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 1074.145548][T18652] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 1075.314835][T16859] Bluetooth: hci1: command 0x0406 tx timeout [ 1075.475326][T16859] Bluetooth: hci4: command 0x0c1a tx timeout [ 1075.635206][T16859] Bluetooth: hci0: command 0x0c1a tx timeout [ 1075.804728][T16859] Bluetooth: hci2: command 0x0c1a tx timeout [ 1076.263784][T18675] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 1076.271364][T18675] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 1076.362666][T18687] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 1076.426859][T18687] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 1076.466765][T18679] zswap: compressor 000 not available [ 1076.942015][T18675] blktrace: Concurrent blktraces are not allowed on loop2 [ 1077.555406][T16859] Bluetooth: hci4: command 0x0c1a tx timeout [ 1077.714858][T16859] Bluetooth: hci0: command 0x0c1a tx timeout [ 1077.874928][T16859] Bluetooth: hci2: command 0x0c1a tx timeout [ 1079.418714][T18723] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1079.428473][T18723] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1079.471020][T18723] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1079.503409][T18723] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1079.876157][T18740] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 1079.909343][T18740] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 1079.958521][T18736] size and base must be multiples of 4 kiB [ 1079.964605][T18736] CPU: 0 UID: 0 PID: 18736 Comm: syz.0.2569 Not tainted syzkaller #0 PREEMPT(full) [ 1079.964652][T18736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1079.964669][T18736] Call Trace: [ 1079.964679][T18736] [ 1079.964691][T18736] dump_stack_lvl+0x16c/0x1f0 [ 1079.964730][T18736] mtrr_del+0xd1/0x110 [ 1079.964773][T18736] mtrr_ioctl+0x922/0xcf0 [ 1079.964814][T18736] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1079.964863][T18736] ? find_held_lock+0x2b/0x80 [ 1079.964910][T18736] ? __fget_files+0x20e/0x3c0 [ 1079.964945][T18736] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1079.964988][T18736] proc_reg_unlocked_ioctl+0x229/0x320 [ 1079.965030][T18736] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1079.965076][T18736] __x64_sys_ioctl+0x18e/0x210 [ 1079.965126][T18736] do_syscall_64+0xcd/0xfa0 [ 1079.965166][T18736] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1079.965197][T18736] RIP: 0033:0x7f1aec58f6c9 [ 1079.965222][T18736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1079.965262][T18736] RSP: 002b:00007f1aed341038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1079.965301][T18736] RAX: ffffffffffffffda RBX: 00007f1aec7e6090 RCX: 00007f1aec58f6c9 [ 1079.965323][T18736] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1079.965343][T18736] RBP: 00007f1aec611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1079.965362][T18736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1079.965381][T18736] R13: 00007f1aec7e6128 R14: 00007f1aec7e6090 R15: 00007fff5da05ac8 [ 1079.965428][T18736] [ 1080.514161][T18740] blktrace: Concurrent blktraces are not allowed on loop2 [ 1081.074950][T16859] Bluetooth: hci1: command 0x0406 tx timeout [ 1081.475980][T16859] Bluetooth: hci0: command 0x0c1a tx timeout [ 1081.475996][ T5834] Bluetooth: hci4: command 0x0c1a tx timeout [ 1081.554743][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout [ 1081.871939][T18755] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1081.879166][T18755] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1081.886463][T18755] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1081.892563][T18755] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1082.951420][T18789] zswap: compressor 000 not available [ 1083.313888][T18790] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1083.324945][T18790] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1083.366669][T18790] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1083.372720][T18790] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1083.741510][T18807] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 1083.790952][T18807] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 1085.120575][T18813] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1085.127479][T18813] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1085.144942][T18813] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1085.167558][T18813] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1085.465331][T18837] ptrace attach of "./syz-executor exec"[5832] was attempted by ""[18837] [ 1085.687317][T18836] zswap: compressor 000 not available [ 1086.315893][T18843] size and base must be multiples of 4 kiB [ 1086.342348][T18843] CPU: 1 UID: 0 PID: 18843 Comm: syz.2.2592 Not tainted syzkaller #0 PREEMPT(full) [ 1086.342386][T18843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1086.342397][T18843] Call Trace: [ 1086.342404][T18843] [ 1086.342412][T18843] dump_stack_lvl+0x16c/0x1f0 [ 1086.342437][T18843] mtrr_del+0xd1/0x110 [ 1086.342461][T18843] mtrr_ioctl+0x922/0xcf0 [ 1086.342486][T18843] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1086.342513][T18843] ? find_held_lock+0x2b/0x80 [ 1086.342538][T18843] ? __fget_files+0x20e/0x3c0 [ 1086.342556][T18843] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1086.342583][T18843] proc_reg_unlocked_ioctl+0x229/0x320 [ 1086.342606][T18843] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1086.342634][T18843] __x64_sys_ioctl+0x18e/0x210 [ 1086.342666][T18843] do_syscall_64+0xcd/0xfa0 [ 1086.342688][T18843] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1086.342705][T18843] RIP: 0033:0x7f2ebe58f6c9 [ 1086.342716][T18843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1086.342729][T18843] RSP: 002b:00007f2ebf40a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1086.342742][T18843] RAX: ffffffffffffffda RBX: 00007f2ebe7e5fa0 RCX: 00007f2ebe58f6c9 [ 1086.342751][T18843] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1086.342759][T18843] RBP: 00007f2ebe611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1086.342767][T18843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1086.342775][T18843] R13: 00007f2ebe7e6038 R14: 00007f2ebe7e5fa0 R15: 00007ffd51a180a8 [ 1086.342792][T18843] [ 1087.075238][ T5834] Bluetooth: hci1: command 0x0406 tx timeout [ 1087.162601][ T5834] Bluetooth: hci0: command 0x0c1a tx timeout [ 1087.168778][T16859] Bluetooth: hci4: command 0x0c1a tx timeout [ 1087.236662][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout [ 1087.328683][T18848] netlink: 504 bytes leftover after parsing attributes in process `syz.0.2589'. [ 1087.390551][T18863] ptrace attach of "./syz-executor exec"[17247] was attempted by ""[18863] [ 1089.161333][T18887] FAULT_INJECTION: forcing a failure. [ 1089.161333][T18887] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1089.175277][T18887] CPU: 1 UID: 0 PID: 18887 Comm: syz.1.2602 Not tainted syzkaller #0 PREEMPT(full) [ 1089.175301][T18887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1089.175311][T18887] Call Trace: [ 1089.175317][T18887] [ 1089.175324][T18887] dump_stack_lvl+0x16c/0x1f0 [ 1089.175348][T18887] should_fail_ex+0x512/0x640 [ 1089.175378][T18887] get_futex_key+0x1d0/0x1560 [ 1089.175405][T18887] ? __pfx_get_futex_key+0x10/0x10 [ 1089.175427][T18887] ? __mutex_trylock_common+0xe9/0x250 [ 1089.175457][T18887] futex_wake+0xea/0x530 [ 1089.175486][T18887] ? __pfx_futex_wake+0x10/0x10 [ 1089.175512][T18887] ? __lock_acquire+0xb8a/0x1c90 [ 1089.175544][T18887] do_futex+0x1e3/0x350 [ 1089.175568][T18887] ? __pfx_do_futex+0x10/0x10 [ 1089.175590][T18887] ? __might_fault+0xe3/0x190 [ 1089.175614][T18887] mm_release+0x24e/0x300 [ 1089.175634][T18887] do_exit+0x68e/0x2bf0 [ 1089.175663][T18887] ? __pfx_do_exit+0x10/0x10 [ 1089.175687][T18887] ? do_raw_spin_lock+0x12c/0x2b0 [ 1089.175713][T18887] ? find_held_lock+0x2b/0x80 [ 1089.175734][T18887] do_group_exit+0xd3/0x2a0 [ 1089.175760][T18887] get_signal+0x2671/0x26d0 [ 1089.175788][T18887] ? __pfx_get_signal+0x10/0x10 [ 1089.175808][T18887] ? do_futex+0x122/0x350 [ 1089.175831][T18887] ? __pfx_do_futex+0x10/0x10 [ 1089.175856][T18887] arch_do_signal_or_restart+0x8f/0x790 [ 1089.175880][T18887] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1089.175907][T18887] ? xfd_validate_state+0x61/0x180 [ 1089.175931][T18887] ? __pfx___do_sys_close_range+0x10/0x10 [ 1089.175956][T18887] exit_to_user_mode_loop+0x85/0x130 [ 1089.175984][T18887] do_syscall_64+0x426/0xfa0 [ 1089.176006][T18887] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1089.176024][T18887] RIP: 0033:0x7fe577d8f6c9 [ 1089.176038][T18887] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1089.176056][T18887] RSP: 002b:00007fe575ff60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1089.176073][T18887] RAX: fffffffffffffe00 RBX: 00007fe577fe6098 RCX: 00007fe577d8f6c9 [ 1089.176085][T18887] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe577fe6098 [ 1089.176095][T18887] RBP: 00007fe577fe6090 R08: 0000000000000000 R09: 0000000000000000 [ 1089.176106][T18887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1089.176116][T18887] R13: 00007fe577fe6128 R14: 00007fff7a95fe50 R15: 00007fff7a95ff38 [ 1089.176138][T18887] [ 1090.242280][T18899] size and base must be multiples of 4 kiB [ 1090.248446][T18899] CPU: 1 UID: 0 PID: 18899 Comm: syz.3.2603 Not tainted syzkaller #0 PREEMPT(full) [ 1090.248486][T18899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1090.248505][T18899] Call Trace: [ 1090.248516][T18899] [ 1090.248528][T18899] dump_stack_lvl+0x16c/0x1f0 [ 1090.248567][T18899] mtrr_del+0xd1/0x110 [ 1090.248609][T18899] mtrr_ioctl+0x922/0xcf0 [ 1090.248652][T18899] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1090.248702][T18899] ? find_held_lock+0x2b/0x80 [ 1090.248746][T18899] ? __fget_files+0x20e/0x3c0 [ 1090.248780][T18899] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1090.248822][T18899] proc_reg_unlocked_ioctl+0x229/0x320 [ 1090.248864][T18899] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1090.248912][T18899] __x64_sys_ioctl+0x18e/0x210 [ 1090.248961][T18899] do_syscall_64+0xcd/0xfa0 [ 1090.249000][T18899] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1090.249031][T18899] RIP: 0033:0x7f18e858f6c9 [ 1090.249057][T18899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1090.249086][T18899] RSP: 002b:00007f18e943c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1090.249116][T18899] RAX: ffffffffffffffda RBX: 00007f18e87e6090 RCX: 00007f18e858f6c9 [ 1090.249136][T18899] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1090.249154][T18899] RBP: 00007f18e8611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1090.249172][T18899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1090.249190][T18899] R13: 00007f18e87e6128 R14: 00007f18e87e6090 R15: 00007ffed8d74a98 [ 1090.249230][T18899] [ 1091.201111][T18906] ptrace attach of "./syz-executor exec"[5832] was attempted by ""[18906] [ 1094.402259][T18916] netlink: 504 bytes leftover after parsing attributes in process `syz.0.2608'. [ 1094.965043][T18939] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1094.971635][T18939] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1094.999774][T18939] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1095.018474][T18939] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1095.590342][T18953] size and base must be multiples of 4 kiB [ 1095.600657][T18953] CPU: 1 UID: 0 PID: 18953 Comm: syz.1.2615 Not tainted syzkaller #0 PREEMPT(full) [ 1095.600696][T18953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1095.600713][T18953] Call Trace: [ 1095.600723][T18953] [ 1095.600735][T18953] dump_stack_lvl+0x16c/0x1f0 [ 1095.600775][T18953] mtrr_del+0xd1/0x110 [ 1095.600817][T18953] mtrr_ioctl+0x922/0xcf0 [ 1095.600861][T18953] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1095.600907][T18953] ? find_held_lock+0x2b/0x80 [ 1095.600947][T18953] ? __fget_files+0x20e/0x3c0 [ 1095.600976][T18953] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1095.601016][T18953] proc_reg_unlocked_ioctl+0x229/0x320 [ 1095.601057][T18953] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1095.601100][T18953] __x64_sys_ioctl+0x18e/0x210 [ 1095.601145][T18953] do_syscall_64+0xcd/0xfa0 [ 1095.601178][T18953] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1095.601208][T18953] RIP: 0033:0x7fe577d8f6c9 [ 1095.601232][T18953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1095.601280][T18953] RSP: 002b:00007fe575ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1095.601312][T18953] RAX: ffffffffffffffda RBX: 00007fe577fe6090 RCX: 00007fe577d8f6c9 [ 1095.601332][T18953] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1095.601351][T18953] RBP: 00007fe577e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1095.601371][T18953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1095.601390][T18953] R13: 00007fe577fe6128 R14: 00007fe577fe6090 R15: 00007fff7a95ff38 [ 1095.601434][T18953] [ 1096.638080][T18941] blktrace: Concurrent blktraces are not allowed on loop2 [ 1096.697423][T18964] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 1096.720563][T18964] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 1096.926422][ T5834] Bluetooth: hci1: command 0x0406 tx timeout [ 1096.994890][ T5834] Bluetooth: hci4: command 0x0c1a tx timeout [ 1097.074970][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout [ 1097.081135][T16859] Bluetooth: hci0: command 0x0c1a tx timeout [ 1097.190372][T18964] blktrace: Concurrent blktraces are not allowed on loop2 [ 1097.878098][T18983] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 1098.577107][T18994] FAULT_INJECTION: forcing a failure. [ 1098.577107][T18994] name failslab, interval 1, probability 0, space 0, times 0 [ 1098.589987][T18994] CPU: 1 UID: 0 PID: 18994 Comm: syz.3.2625 Not tainted syzkaller #0 PREEMPT(full) [ 1098.590050][T18994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1098.590068][T18994] Call Trace: [ 1098.590079][T18994] [ 1098.590091][T18994] dump_stack_lvl+0x16c/0x1f0 [ 1098.590131][T18994] should_fail_ex+0x512/0x640 [ 1098.590174][T18994] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 1098.590218][T18994] should_failslab+0xc2/0x120 [ 1098.590257][T18994] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 1098.590290][T18994] ? __d_alloc+0x32/0xae0 [ 1098.590331][T18994] ? __d_alloc+0x32/0xae0 [ 1098.590359][T18994] __d_alloc+0x32/0xae0 [ 1098.590395][T18994] d_alloc_parallel+0x111/0x1510 [ 1098.590439][T18994] ? __lock_acquire+0xb8a/0x1c90 [ 1098.590479][T18994] ? look_up_lock_class+0x6b/0x150 [ 1098.590513][T18994] ? register_lock_class+0x41/0x4c0 [ 1098.590554][T18994] ? __pfx_d_alloc_parallel+0x10/0x10 [ 1098.590599][T18994] ? lockdep_init_map_type+0x5c/0x280 [ 1098.590641][T18994] ? lockdep_init_map_type+0x5c/0x280 [ 1098.590689][T18994] __lookup_slow+0x193/0x460 [ 1098.590731][T18994] ? __pfx___lookup_slow+0x10/0x10 [ 1098.590800][T18994] ? lookup_fast+0x156/0x610 [ 1098.590833][T18994] walk_component+0x353/0x5b0 [ 1098.590864][T18994] link_path_walk+0x627/0xe20 [ 1098.590908][T18994] path_openat+0x1b0/0x2cb0 [ 1098.590954][T18994] ? __pfx_path_openat+0x10/0x10 [ 1098.590988][T18994] ? __lock_acquire+0xb8a/0x1c90 [ 1098.591032][T18994] do_filp_open+0x20b/0x470 [ 1098.591065][T18994] ? __pfx_do_filp_open+0x10/0x10 [ 1098.591127][T18994] ? alloc_fd+0x471/0x7d0 [ 1098.591168][T18994] do_sys_openat2+0x11b/0x1d0 [ 1098.591235][T18994] ? __pfx_do_sys_openat2+0x10/0x10 [ 1098.591283][T18994] ? __fget_files+0x20e/0x3c0 [ 1098.591323][T18994] __x64_sys_openat+0x174/0x210 [ 1098.591366][T18994] ? __pfx___x64_sys_openat+0x10/0x10 [ 1098.591407][T18994] ? ksys_write+0x1ac/0x250 [ 1098.591456][T18994] do_syscall_64+0xcd/0xfa0 [ 1098.591493][T18994] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1098.591522][T18994] RIP: 0033:0x7f18e858f6c9 [ 1098.591547][T18994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1098.591576][T18994] RSP: 002b:00007f18e945d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1098.591605][T18994] RAX: ffffffffffffffda RBX: 00007f18e87e5fa0 RCX: 00007f18e858f6c9 [ 1098.591625][T18994] RDX: 0000000000103742 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1098.591643][T18994] RBP: 00007f18e945d090 R08: 0000000000000000 R09: 0000000000000000 [ 1098.591662][T18994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1098.591679][T18994] R13: 00007f18e87e6038 R14: 00007f18e87e5fa0 R15: 00007ffed8d74a98 [ 1098.591722][T18994] [ 1099.218013][T18995] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1099.241388][T18995] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1099.263262][T18995] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1099.281186][T18995] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1099.495721][T19003] size and base must be multiples of 4 kiB [ 1099.508679][T19003] CPU: 0 UID: 0 PID: 19003 Comm: syz.2.2627 Not tainted syzkaller #0 PREEMPT(full) [ 1099.508720][T19003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1099.508747][T19003] Call Trace: [ 1099.508758][T19003] [ 1099.508771][T19003] dump_stack_lvl+0x16c/0x1f0 [ 1099.508812][T19003] mtrr_del+0xd1/0x110 [ 1099.508868][T19003] mtrr_ioctl+0x922/0xcf0 [ 1099.508912][T19003] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1099.508963][T19003] ? find_held_lock+0x2b/0x80 [ 1099.509007][T19003] ? __fget_files+0x20e/0x3c0 [ 1099.509041][T19003] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1099.509084][T19003] proc_reg_unlocked_ioctl+0x229/0x320 [ 1099.509127][T19003] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1099.509183][T19003] __x64_sys_ioctl+0x18e/0x210 [ 1099.509232][T19003] do_syscall_64+0xcd/0xfa0 [ 1099.509269][T19003] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1099.509302][T19003] RIP: 0033:0x7f2ebe58f6c9 [ 1099.509326][T19003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1099.509353][T19003] RSP: 002b:00007f2ebf3e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1099.509381][T19003] RAX: ffffffffffffffda RBX: 00007f2ebe7e6090 RCX: 00007f2ebe58f6c9 [ 1099.509400][T19003] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1099.509417][T19003] RBP: 00007f2ebe611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1099.509429][T19003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1099.509439][T19003] R13: 00007f2ebe7e6128 R14: 00007f2ebe7e6090 R15: 00007ffd51a180a8 [ 1099.509462][T19003] [ 1100.386017][T19013] size and base must be multiples of 4 kiB [ 1100.392032][T19013] CPU: 0 UID: 0 PID: 19013 Comm: syz.1.2629 Not tainted syzkaller #0 PREEMPT(full) [ 1100.392072][T19013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1100.392090][T19013] Call Trace: [ 1100.392101][T19013] [ 1100.392114][T19013] dump_stack_lvl+0x16c/0x1f0 [ 1100.392192][T19013] mtrr_del+0xd1/0x110 [ 1100.392237][T19013] mtrr_ioctl+0x922/0xcf0 [ 1100.392281][T19013] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1100.392334][T19013] ? find_held_lock+0x2b/0x80 [ 1100.392381][T19013] ? __fget_files+0x20e/0x3c0 [ 1100.392409][T19013] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1100.392452][T19013] proc_reg_unlocked_ioctl+0x229/0x320 [ 1100.392495][T19013] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1100.392542][T19013] __x64_sys_ioctl+0x18e/0x210 [ 1100.392592][T19013] do_syscall_64+0xcd/0xfa0 [ 1100.392633][T19013] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1100.392672][T19013] RIP: 0033:0x7fe577d8f6c9 [ 1100.392699][T19013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1100.392729][T19013] RSP: 002b:00007fe575ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1100.392759][T19013] RAX: ffffffffffffffda RBX: 00007fe577fe6090 RCX: 00007fe577d8f6c9 [ 1100.392781][T19013] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1100.392800][T19013] RBP: 00007fe577e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1100.392819][T19013] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1100.392838][T19013] R13: 00007fe577fe6128 R14: 00007fe577fe6090 R15: 00007fff7a95ff38 [ 1100.392881][T19013] [ 1101.118898][ T5834] Bluetooth: hci1: command 0x0406 tx timeout [ 1101.333749][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout [ 1101.344755][T16859] Bluetooth: hci0: command 0x0c1a tx timeout [ 1101.345200][ T5838] Bluetooth: hci4: command 0x0c1a tx timeout [ 1101.859835][T19035] ptrace attach of "./syz-executor exec"[5832] was attempted by ""[19035] [ 1102.812091][T19049] ptrace attach of "./syz-executor exec"[18125] was attempted by ""[19049] [ 1104.408805][T19065] size and base must be multiples of 4 kiB [ 1104.438880][T19065] CPU: 1 UID: 0 PID: 19065 Comm: syz.1.2641 Not tainted syzkaller #0 PREEMPT(full) [ 1104.438921][T19065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1104.438938][T19065] Call Trace: [ 1104.438949][T19065] [ 1104.438961][T19065] dump_stack_lvl+0x16c/0x1f0 [ 1104.438993][T19065] mtrr_del+0xd1/0x110 [ 1104.439018][T19065] mtrr_ioctl+0x922/0xcf0 [ 1104.439043][T19065] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1104.439071][T19065] ? find_held_lock+0x2b/0x80 [ 1104.439102][T19065] ? __fget_files+0x20e/0x3c0 [ 1104.439133][T19065] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1104.439170][T19065] proc_reg_unlocked_ioctl+0x229/0x320 [ 1104.439206][T19065] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1104.439233][T19065] __x64_sys_ioctl+0x18e/0x210 [ 1104.439259][T19065] do_syscall_64+0xcd/0xfa0 [ 1104.439281][T19065] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1104.439298][T19065] RIP: 0033:0x7fe577d8f6c9 [ 1104.439313][T19065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1104.439330][T19065] RSP: 002b:00007fe575ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1104.439347][T19065] RAX: ffffffffffffffda RBX: 00007fe577fe6090 RCX: 00007fe577d8f6c9 [ 1104.439359][T19065] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1104.439369][T19065] RBP: 00007fe577e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1104.439379][T19065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1104.439389][T19065] R13: 00007fe577fe6128 R14: 00007fe577fe6090 R15: 00007fff7a95ff38 [ 1104.439419][T19065] [ 1106.666821][T19094] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 1107.911673][T19108] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2652'. [ 1107.921323][T19108] netlink: 13 bytes leftover after parsing attributes in process `syz.0.2652'. [ 1108.169207][T19100] netlink: 25 bytes leftover after parsing attributes in process `syz.1.2650'. [ 1109.165992][T19106] blktrace: Concurrent blktraces are not allowed on loop2 [ 1109.855961][T19127] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 1109.895279][T19126] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 1110.356838][T19120] syz.3.2657 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 1110.372145][T19120] CPU: 1 UID: 0 PID: 19120 Comm: syz.3.2657 Not tainted syzkaller #0 PREEMPT(full) [ 1110.372187][T19120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1110.372205][T19120] Call Trace: [ 1110.372216][T19120] [ 1110.372227][T19120] dump_stack_lvl+0x16c/0x1f0 [ 1110.372268][T19120] dump_header+0x101/0x930 [ 1110.372303][T19120] oom_kill_process+0x272/0xa40 [ 1110.372340][T19120] out_of_memory+0x350/0x1700 [ 1110.372380][T19120] ? __pfx_out_of_memory+0x10/0x10 [ 1110.372424][T19120] mem_cgroup_out_of_memory+0x118/0x130 [ 1110.372470][T19120] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 1110.372523][T19120] ? do_raw_spin_unlock+0x172/0x230 [ 1110.372577][T19120] try_charge_memcg+0x695/0xd30 [ 1110.372622][T19120] ? __pfx_try_charge_memcg+0x10/0x10 [ 1110.372666][T19120] ? find_held_lock+0x2b/0x80 [ 1110.372701][T19120] charge_memcg+0x8a/0x230 [ 1110.372739][T19120] mem_cgroup_swapin_charge_folio+0xbb/0x440 [ 1110.372786][T19120] __read_swap_cache_async+0x397/0x500 [ 1110.372824][T19120] ? __pfx___read_swap_cache_async+0x10/0x10 [ 1110.372858][T19120] ? __xa_erase+0xee/0x150 [ 1110.372894][T19120] ? __pfx___xa_erase+0x10/0x10 [ 1110.372940][T19120] swap_cluster_readahead+0x432/0x770 [ 1110.372981][T19120] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 1110.373039][T19120] ? __lock_acquire+0x622/0x1c90 [ 1110.373084][T19120] ? get_vma_policy+0x242/0x3c0 [ 1110.373129][T19120] swapin_readahead+0x13a/0xd60 [ 1110.373174][T19120] ? __pfx_swapin_readahead+0x10/0x10 [ 1110.373201][T19120] ? swap_cache_get_folio+0x267/0x8e0 [ 1110.373228][T19120] ? swap_cache_get_folio+0x267/0x8e0 [ 1110.373254][T19120] ? swap_cache_get_folio+0x267/0x8e0 [ 1110.373283][T19120] ? swap_cache_get_folio+0x267/0x8e0 [ 1110.373311][T19120] ? swap_cache_get_folio+0x1f/0x8e0 [ 1110.373336][T19120] ? swap_cache_get_folio+0x293/0x8e0 [ 1110.373367][T19120] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 1110.373393][T19120] ? __pfx_get_swap_device+0x10/0x10 [ 1110.373431][T19120] ? do_swap_page+0x125/0x6340 [ 1110.373477][T19120] do_swap_page+0x86c/0x6340 [ 1110.373536][T19120] ? __pfx_do_swap_page+0x10/0x10 [ 1110.373580][T19120] ? __pfx_default_wake_function+0x10/0x10 [ 1110.373613][T19120] ? __lock_acquire+0x622/0x1c90 [ 1110.373657][T19120] ? rcu_is_watching+0x12/0xc0 [ 1110.373689][T19120] ? ___pte_offset_map+0x2ad/0x4f0 [ 1110.373735][T19120] __handle_mm_fault+0x17d1/0x2aa0 [ 1110.373788][T19120] ? __pfx___handle_mm_fault+0x10/0x10 [ 1110.373838][T19120] ? lock_vma_under_rcu+0x176/0x530 [ 1110.373896][T19120] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 1110.373953][T19120] handle_mm_fault+0x589/0xd10 [ 1110.374000][T19120] ? __pkru_allows_pkey+0x11/0xb0 [ 1110.374048][T19120] do_user_addr_fault+0x60c/0x1370 [ 1110.374089][T19120] ? rcu_is_watching+0x12/0xc0 [ 1110.374126][T19120] exc_page_fault+0x64/0xc0 [ 1110.374158][T19120] asm_exc_page_fault+0x26/0x30 [ 1110.374187][T19120] RIP: 0033:0x7f18e844d71f [ 1110.374214][T19120] Code: 1f 84 00 00 00 00 00 0f 1f 40 00 41 89 fb 44 8d 56 04 4c 8d 0d f2 48 38 00 89 f0 4c 8d 05 e9 28 38 00 89 c2 81 e2 ff 1f 00 00 <49> 8b 0c d1 48 39 f1 74 28 48 85 c9 74 29 45 38 1c 10 75 23 83 c0 [ 1110.374241][T19120] RSP: 002b:00007ffed8d74ac8 EFLAGS: 00010202 [ 1110.374265][T19120] RAX: 0000000081615a54 RBX: 00007f18e9315720 RCX: 000000000000000f [ 1110.374284][T19120] RDX: 0000000000001a54 RSI: ffffffff81615a54 RDI: 0000000000000006 [ 1110.374302][T19120] RBP: ffffffff81615a54 R08: 00007f18e87d0000 R09: 00007f18e87d2000 [ 1110.374320][T19120] R10: 0000000081615a58 R11: 0000000000000006 R12: 0000000000000006 [ 1110.374344][T19120] R13: 000000000000000f R14: ffffffff81615cdf R15: 000000000000000f [ 1110.374365][T19120] ? x86_task_fpu+0x5f/0x90 [ 1110.374397][T19120] ? perf_trace_x86_fpu+0x3b4/0x5d0 [ 1110.374433][T19120] ? perf_trace_x86_fpu+0x3b4/0x5d0 [ 1110.374469][T19120] [ 1110.415918][T19120] memory: usage 3072kB, limit 3072kB, failcnt 231273 [ 1110.758627][T19120] memory+swap: usage 61032kB, limit 9007199254740988kB, failcnt 0 [ 1110.771891][T19120] kmem: usage 2740kB, limit 9007199254740988kB, failcnt 0 [ 1110.779330][T19120] Memory cgroup stats for /syz0: [ 1110.779513][T19120] cache 0 [ 1110.787528][T19120] rss 0 [ 1110.792074][T19120] rss_huge 0 [ 1110.798862][T19120] shmem 0 [ 1110.802168][T19120] mapped_file 0 [ 1110.805916][T19120] dirty 0 [ 1110.808884][T19120] writeback 0 [ 1110.812190][T19120] workingset_refault_anon 45227 [ 1110.817145][T19120] workingset_refault_file 27055 [ 1110.822015][T19120] swap 59351040 [ 1110.825586][T19120] swapcached 339968 [ 1110.829850][T19120] pgpgin 488389 [ 1110.833346][T19120] pgpgout 488306 [ 1110.837118][T19120] pgfault 890758 [ 1110.840952][T19120] pgmajfault 21835 [ 1110.844750][T19120] inactive_anon 16384 [ 1110.848886][T19120] active_anon 323584 [ 1110.853404][T19120] inactive_file 0 [ 1110.857462][T19120] active_file 0 [ 1110.860921][T19120] unevictable 0 [ 1110.871834][T19120] hierarchical_memory_limit 3145728 [ 1110.877485][T19120] hierarchical_memsw_limit 9223372036854771712 [ 1110.884006][T19120] total_cache 0 [ 1110.890461][T19120] total_rss 0 [ 1110.893896][T19120] total_rss_huge 0 [ 1110.908235][T19120] total_shmem 0 [ 1110.912880][T19120] total_mapped_file 0 [ 1110.917918][T19120] total_dirty 0 [ 1110.921755][T19120] total_writeback 0 [ 1110.926155][T19120] total_workingset_refault_anon 45227 [ 1110.931867][T19120] total_workingset_refault_file 27055 [ 1110.937658][T19120] total_swap 59351040 [ 1110.941792][T19120] total_swapcached 339968 [ 1110.946778][T19120] total_pgpgin 488389 [ 1110.950950][T19120] total_pgpgout 488306 [ 1110.956031][T19120] total_pgfault 890758 [ 1110.973036][T19120] total_pgmajfault 21835 [ 1110.979261][T19120] total_inactive_anon 16384 [ 1110.989651][T19120] total_active_anon 323584 [ 1110.994211][T19120] total_inactive_file 0 [ 1111.001861][T19120] total_active_file 0 [ 1111.006392][T19120] total_unevictable 0 [ 1111.010746][T19120] anon_cost 0 [ 1111.014531][T19120] file_cost 0 [ 1111.018241][T19120] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2589,pid=18849,uid=0 [ 1111.034022][T19120] Memory cgroup out of memory: Killed process 18849 (syz.0.2589) total-vm:106180kB, anon-rss:1140kB, file-rss:55892kB, shmem-rss:0kB, UID:0 pgtables:224kB oom_score_adj:1000 [ 1111.073489][T19135] size and base must be multiples of 4 kiB [ 1111.080378][T19135] CPU: 1 UID: 0 PID: 19135 Comm: syz.1.2661 Not tainted syzkaller #0 PREEMPT(full) [ 1111.080407][T19135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1111.080420][T19135] Call Trace: [ 1111.080428][T19135] [ 1111.080437][T19135] dump_stack_lvl+0x16c/0x1f0 [ 1111.080469][T19135] mtrr_del+0xd1/0x110 [ 1111.080559][T19135] mtrr_ioctl+0x922/0xcf0 [ 1111.080580][T19135] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1111.080597][T19135] ? find_held_lock+0x2b/0x80 [ 1111.080613][T19135] ? __fget_files+0x20e/0x3c0 [ 1111.080626][T19135] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1111.080641][T19135] proc_reg_unlocked_ioctl+0x229/0x320 [ 1111.080657][T19135] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1111.080681][T19135] __x64_sys_ioctl+0x18e/0x210 [ 1111.080698][T19135] do_syscall_64+0xcd/0xfa0 [ 1111.080712][T19135] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1111.080723][T19135] RIP: 0033:0x7fe577d8f6c9 [ 1111.080733][T19135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1111.080744][T19135] RSP: 002b:00007fe575fd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1111.080756][T19135] RAX: ffffffffffffffda RBX: 00007fe577fe6180 RCX: 00007fe577d8f6c9 [ 1111.080763][T19135] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1111.080770][T19135] RBP: 00007fe577e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 1111.080776][T19135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1111.080782][T19135] R13: 00007fe577fe6218 R14: 00007fe577fe6180 R15: 00007fff7a95ff38 [ 1111.080794][T19135] [ 1113.610773][T19153] [U] [ 1113.613749][T19153] [U] [ 1113.616446][T19153] [U] [ 1113.619134][T19153] [U] [ 1113.624352][T19153] [U] [ 1113.627089][T19153] [U] [ 1113.629774][T19153] [U] [ 1113.632454][T19153] [U] [ 1113.670191][T19152] [U] [ 1114.687829][ T5832] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 1114.746604][ T5832] CPU: 1 UID: 0 PID: 5832 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) [ 1114.746647][ T5832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1114.746664][ T5832] Call Trace: [ 1114.746676][ T5832] [ 1114.746687][ T5832] dump_stack_lvl+0x16c/0x1f0 [ 1114.746727][ T5832] dump_header+0x101/0x930 [ 1114.746764][ T5832] oom_kill_process+0x272/0xa40 [ 1114.746800][ T5832] out_of_memory+0x350/0x1700 [ 1114.746841][ T5832] ? __pfx_out_of_memory+0x10/0x10 [ 1114.746883][ T5832] mem_cgroup_out_of_memory+0x118/0x130 [ 1114.746930][ T5832] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 1114.746986][ T5832] ? do_raw_spin_unlock+0x172/0x230 [ 1114.747049][ T5832] try_charge_memcg+0x695/0xd30 [ 1114.747096][ T5832] ? __pfx_try_charge_memcg+0x10/0x10 [ 1114.747147][ T5832] ? find_held_lock+0x2b/0x80 [ 1114.747187][ T5832] charge_memcg+0x8a/0x230 [ 1114.747225][ T5832] mem_cgroup_swapin_charge_folio+0xbb/0x440 [ 1114.747273][ T5832] __read_swap_cache_async+0x397/0x500 [ 1114.747312][ T5832] ? __pfx___read_swap_cache_async+0x10/0x10 [ 1114.747345][ T5832] ? __xa_erase+0xee/0x150 [ 1114.747386][ T5832] ? __pfx___xa_erase+0x10/0x10 [ 1114.747434][ T5832] swap_cluster_readahead+0x528/0x770 [ 1114.747463][ T5832] ? do_raw_spin_lock+0x12c/0x2b0 [ 1114.747519][ T5832] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 1114.747556][ T5832] ? css_rstat_updated+0x1c2/0x510 [ 1114.747592][ T5832] ? __pfx_css_rstat_updated+0x10/0x10 [ 1114.747640][ T5832] ? __lock_acquire+0x622/0x1c90 [ 1114.747677][ T5832] ? get_vma_policy+0x242/0x3c0 [ 1114.747721][ T5832] swapin_readahead+0x13a/0xd60 [ 1114.747769][ T5832] ? __pfx_swapin_readahead+0x10/0x10 [ 1114.747797][ T5832] ? swap_cache_get_folio+0x267/0x8e0 [ 1114.747826][ T5832] ? swap_cache_get_folio+0x267/0x8e0 [ 1114.747851][ T5832] ? swap_cache_get_folio+0x267/0x8e0 [ 1114.747883][ T5832] ? swap_cache_get_folio+0x267/0x8e0 [ 1114.747912][ T5832] ? swap_cache_get_folio+0x1f/0x8e0 [ 1114.747937][ T5832] ? swap_cache_get_folio+0x293/0x8e0 [ 1114.747970][ T5832] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 1114.747997][ T5832] ? __pfx_get_swap_device+0x10/0x10 [ 1114.748036][ T5832] ? do_swap_page+0x125/0x6340 [ 1114.748092][ T5832] do_swap_page+0x86c/0x6340 [ 1114.748156][ T5832] ? __pfx_do_swap_page+0x10/0x10 [ 1114.748201][ T5832] ? __pfx_default_wake_function+0x10/0x10 [ 1114.748237][ T5832] ? __lock_acquire+0x622/0x1c90 [ 1114.748281][ T5832] ? rcu_is_watching+0x12/0xc0 [ 1114.748312][ T5832] ? ___pte_offset_map+0x2ad/0x4f0 [ 1114.748358][ T5832] __handle_mm_fault+0x17d1/0x2aa0 [ 1114.748417][ T5832] ? __pfx___handle_mm_fault+0x10/0x10 [ 1114.748469][ T5832] ? lock_vma_under_rcu+0x176/0x530 [ 1114.748526][ T5832] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 1114.748566][ T5832] ? get_timespec64+0x136/0x1b0 [ 1114.748613][ T5832] handle_mm_fault+0x589/0xd10 [ 1114.748660][ T5832] ? __pkru_allows_pkey+0x11/0xb0 [ 1114.748710][ T5832] do_user_addr_fault+0x60c/0x1370 [ 1114.748744][ T5832] ? rcu_is_watching+0x12/0xc0 [ 1114.748782][ T5832] exc_page_fault+0x64/0xc0 [ 1114.748817][ T5832] asm_exc_page_fault+0x26/0x30 [ 1114.748844][ T5832] RIP: 0033:0x7f18e85c1f88 [ 1114.748869][ T5832] Code: 3c 24 48 89 4c 24 18 e8 f6 54 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f 55 ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f [ 1114.748896][ T5832] RSP: 002b:00007ffed8d74db0 EFLAGS: 00010293 [ 1114.748921][ T5832] RAX: 0000000000000000 RBX: 0000000000000870 RCX: 00007f18e85c1f85 [ 1114.748939][ T5832] RDX: 00007ffed8d74df0 RSI: 0000000000000000 RDI: 0000000000000000 [ 1114.748956][ T5832] RBP: 00007ffed8d74e5c R08: 0000000000000000 R09: 0000000000000000 [ 1114.748973][ T5832] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000001388 [ 1114.748990][ T5832] R13: 00000000000927c0 R14: 000000000010ff59 R15: 00007ffed8d74eb0 [ 1114.749033][ T5832] [ 1115.119787][ T5832] memory: usage 3072kB, limit 3072kB, failcnt 402501 [ 1115.128566][ T5832] memory+swap: usage 3676kB, limit 9007199254740988kB, failcnt 0 [ 1115.136372][ T5832] kmem: usage 2636kB, limit 9007199254740988kB, failcnt 0 [ 1115.143505][ T5832] Memory cgroup stats for /syz3: [ 1115.143684][ T5832] cache 4096 [ 1115.151886][ T5832] rss 0 [ 1115.154788][ T5832] rss_huge 0 [ 1115.158010][ T5832] shmem 0 [ 1115.160981][ T5832] mapped_file 0 [ 1115.164997][ T5832] dirty 0 [ 1115.168396][ T5832] writeback 0 [ 1115.171711][ T5832] workingset_refault_anon 57489 [ 1115.176644][ T5832] workingset_refault_file 140793 [ 1115.181610][ T5832] swap 618496 [ 1115.185320][ T5832] swapcached 442368 [ 1115.189153][ T5832] pgpgin 723151 [ 1115.192633][ T5832] pgpgout 724575 [ 1115.196259][ T5832] pgfault 739373 [ 1115.199834][ T5832] pgmajfault 25002 [ 1115.203577][ T5832] inactive_anon 331776 [ 1115.207713][ T5832] active_anon 0 [ 1115.211196][ T5832] inactive_file 4096 [ 1115.215189][ T5832] active_file 0 [ 1115.218667][ T5832] unevictable 0 [ 1115.222148][ T5832] hierarchical_memory_limit 3145728 [ 1115.227416][ T5832] hierarchical_memsw_limit 9223372036854771712 [ 1115.229375][T19175] FAULT_INJECTION: forcing a failure. [ 1115.229375][T19175] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1115.233584][ T5832] total_cache 4096 [ 1115.250463][ T5832] total_rss 0 [ 1115.253779][ T5832] total_rss_huge 0 [ 1115.257548][ T5832] total_shmem 0 [ 1115.261027][ T5832] total_mapped_file 0 [ 1115.265076][ T5832] total_dirty 0 [ 1115.269405][ T5832] total_writeback 0 [ 1115.273246][ T5832] total_workingset_refault_anon 57489 [ 1115.278708][ T5832] total_workingset_refault_file 140793 [ 1115.284194][ T5832] total_swap 618496 [ 1115.288080][ T5832] total_swapcached 442368 [ 1115.292429][ T5832] total_pgpgin 723151 [ 1115.303139][ T5832] total_pgpgout 724575 [ 1115.307336][ T5832] total_pgfault 739373 [ 1115.307885][T19176] bcache: register_bcache() error : failed to open device [ 1115.311419][ T5832] total_pgmajfault 25002 [ 1115.322893][ T5832] total_inactive_anon 331776 [ 1115.327548][ T5832] total_active_anon 0 [ 1115.331550][ T5832] total_inactive_file 4096 [ 1115.336389][ T5832] total_active_file 0 [ 1115.340392][ T5832] total_unevictable 0 [ 1115.344393][ T5832] anon_cost 0 [ 1115.347653][T19175] CPU: 0 UID: 0 PID: 19175 Comm: syz.1.2671 Not tainted syzkaller #0 PREEMPT(full) [ 1115.347686][T19175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1115.347702][T19175] Call Trace: [ 1115.347712][T19175] [ 1115.347723][T19175] dump_stack_lvl+0x16c/0x1f0 [ 1115.347761][T19175] should_fail_ex+0x512/0x640 [ 1115.347806][T19175] _copy_to_user+0x32/0xd0 [ 1115.347848][T19175] simple_read_from_buffer+0xcb/0x170 [ 1115.347890][T19175] proc_fail_nth_read+0x197/0x240 [ 1115.347919][T19175] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1115.347951][T19175] ? rw_verify_area+0xcf/0x6c0 [ 1115.347975][T19175] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1115.348002][T19175] vfs_read+0x1e4/0xcf0 [ 1115.348044][T19175] ? __pfx___mutex_lock+0x10/0x10 [ 1115.348074][T19175] ? __pfx_vfs_read+0x10/0x10 [ 1115.348113][T19175] ? __fget_files+0x20e/0x3c0 [ 1115.348152][T19175] ksys_read+0x12a/0x250 [ 1115.348178][T19175] ? __pfx_ksys_read+0x10/0x10 [ 1115.348206][T19175] ? fput+0x9b/0xd0 [ 1115.348245][T19175] do_syscall_64+0xcd/0xfa0 [ 1115.348276][T19175] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1115.348302][T19175] RIP: 0033:0x7fe577d8e0dc [ 1115.348323][T19175] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1115.348347][T19175] RSP: 002b:00007fe578b53030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1115.348372][T19175] RAX: ffffffffffffffda RBX: 00007fe577fe5fa0 RCX: 00007fe577d8e0dc [ 1115.348389][T19175] RDX: 000000000000000f RSI: 00007fe578b530a0 RDI: 0000000000000004 [ 1115.348405][T19175] RBP: 00007fe578b53090 R08: 0000000000000000 R09: 0000000000000000 [ 1115.348420][T19175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1115.348435][T19175] R13: 00007fe577fe6038 R14: 00007fe577fe5fa0 R15: 00007fff7a95ff38 [ 1115.348475][T19175] [ 1115.534403][ T5832] file_cost 0 [ 1115.537825][ T5832] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.2668,pid=19160,uid=0 [ 1115.552895][ T5832] Memory cgroup out of memory: Killed process 19160 (syz.3.2668) total-vm:164508kB, anon-rss:1116kB, file-rss:21504kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000 [ 1115.858916][T19163] netlink: 504 bytes leftover after parsing attributes in process `syz.0.2669'. [ 1116.012389][T19183] FAULT_INJECTION: forcing a failure. [ 1116.012389][T19183] name failslab, interval 1, probability 0, space 0, times 0 [ 1116.034669][T19183] CPU: 1 UID: 0 PID: 19183 Comm: syz.1.2672 Not tainted syzkaller #0 PREEMPT(full) [ 1116.034712][T19183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1116.034732][T19183] Call Trace: [ 1116.034743][T19183] [ 1116.034756][T19183] dump_stack_lvl+0x16c/0x1f0 [ 1116.034798][T19183] should_fail_ex+0x512/0x640 [ 1116.034846][T19183] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 1116.034883][T19183] should_failslab+0xc2/0x120 [ 1116.034925][T19183] kmem_cache_alloc_noprof+0x75/0x6e0 [ 1116.034956][T19183] ? vm_area_dup+0x27/0x8d0 [ 1116.035011][T19183] ? vm_area_dup+0x27/0x8d0 [ 1116.035054][T19183] vm_area_dup+0x27/0x8d0 [ 1116.035105][T19183] __split_vma+0x18e/0x1070 [ 1116.035159][T19183] ? __pfx___split_vma+0x10/0x10 [ 1116.035217][T19183] ? __pfx_mas_prev+0x10/0x10 [ 1116.035274][T19183] vms_gather_munmap_vmas+0x3aa/0x1340 [ 1116.035334][T19183] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 1116.035384][T19183] ? move_page_tables+0xf9e/0x4230 [ 1116.035444][T19183] do_vmi_align_munmap+0x286/0x7e0 [ 1116.035481][T19183] ? __pfx_do_vmi_align_munmap+0x10/0x10 [ 1116.035571][T19183] do_vmi_munmap+0x204/0x3e0 [ 1116.035608][T19183] move_vma+0x801/0x1770 [ 1116.035646][T19183] ? __pfx_move_vma+0x10/0x10 [ 1116.035701][T19183] ? vrm_set_new_addr+0x208/0x290 [ 1116.035737][T19183] mremap_to+0x1b7/0x450 [ 1116.035770][T19183] do_mremap+0xd89/0x2020 [ 1116.035803][T19183] ? futex_private_hash_put+0x18a/0x300 [ 1116.035844][T19183] ? futex_hash_put+0x3e/0x50 [ 1116.035879][T19183] ? futex_wake+0x1ad/0x530 [ 1116.035928][T19183] ? __pfx_do_mremap+0x10/0x10 [ 1116.035956][T19183] ? __pfx_futex_wake+0x10/0x10 [ 1116.036010][T19183] ? do_user_addr_fault+0x829/0x1370 [ 1116.036052][T19183] __do_sys_mremap+0x119/0x170 [ 1116.036083][T19183] ? __pfx___do_sys_mremap+0x10/0x10 [ 1116.036116][T19183] ? rcu_is_watching+0x12/0xc0 [ 1116.036156][T19183] ? __x64_sys_futex+0x1e0/0x4c0 [ 1116.036223][T19183] do_syscall_64+0xcd/0xfa0 [ 1116.036262][T19183] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1116.036302][T19183] RIP: 0033:0x7fe577d8f6c9 [ 1116.036328][T19183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1116.036358][T19183] RSP: 002b:00007fe575ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 1116.036389][T19183] RAX: ffffffffffffffda RBX: 00007fe577fe6090 RCX: 00007fe577d8f6c9 [ 1116.036411][T19183] RDX: 0000000000003fd6 RSI: 0000000000000007 RDI: 0000000000000000 [ 1116.036430][T19183] RBP: 00007fe577e11f91 R08: 0000000020000000 R09: 0000000000000000 [ 1116.036450][T19183] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 1116.036469][T19183] R13: 00007fe577fe6128 R14: 00007fe577fe6090 R15: 00007fff7a95ff38 [ 1116.036517][T19183] [ 1116.328841][T19183] Invalid ELF header magic: != ELF [ 1116.475864][T19186] FAULT_INJECTION: forcing a failure. [ 1116.475864][T19186] name failslab, interval 1, probability 0, space 0, times 0 [ 1116.538643][T19188] bcache: register_bcache() error : failed to open device [ 1116.574754][T19186] CPU: 1 UID: 0 PID: 19186 Comm: syz.0.2673 Not tainted syzkaller #0 PREEMPT(full) [ 1116.574793][T19186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1116.574811][T19186] Call Trace: [ 1116.574821][T19186] [ 1116.574832][T19186] dump_stack_lvl+0x16c/0x1f0 [ 1116.574870][T19186] should_fail_ex+0x512/0x640 [ 1116.574912][T19186] ? fs_reclaim_acquire+0xae/0x150 [ 1116.574954][T19186] should_failslab+0xc2/0x120 [ 1116.574992][T19186] __kmalloc_noprof+0xdd/0x880 [ 1116.575038][T19186] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1116.575090][T19186] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1116.575122][T19186] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1116.575161][T19186] ? tomoyo_profile+0x47/0x60 [ 1116.575203][T19186] tomoyo_path_perm+0x274/0x460 [ 1116.575246][T19186] ? tomoyo_path_perm+0x260/0x460 [ 1116.575295][T19186] ? __pfx_tomoyo_path_perm+0x10/0x10 [ 1116.575393][T19186] ? __pfx_ima_file_check+0x10/0x10 [ 1116.575432][T19186] ? hook_file_truncate+0xc7/0x250 [ 1116.575476][T19186] security_file_truncate+0x84/0x1e0 [ 1116.575509][T19186] path_openat+0xc10/0x2cb0 [ 1116.575555][T19186] ? __pfx_path_openat+0x10/0x10 [ 1116.575589][T19186] ? __lock_acquire+0xb8a/0x1c90 [ 1116.575632][T19186] do_filp_open+0x20b/0x470 [ 1116.575663][T19186] ? __pfx_do_filp_open+0x10/0x10 [ 1116.575725][T19186] ? alloc_fd+0x471/0x7d0 [ 1116.575767][T19186] do_sys_openat2+0x11b/0x1d0 [ 1116.575809][T19186] ? __pfx_do_sys_openat2+0x10/0x10 [ 1116.575853][T19186] ? __fget_files+0x20e/0x3c0 [ 1116.575891][T19186] __x64_sys_openat+0x174/0x210 [ 1116.575933][T19186] ? __pfx___x64_sys_openat+0x10/0x10 [ 1116.575974][T19186] ? ksys_write+0x1ac/0x250 [ 1116.576025][T19186] do_syscall_64+0xcd/0xfa0 [ 1116.576070][T19186] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1116.576101][T19186] RIP: 0033:0x7f1aec58f6c9 [ 1116.576124][T19186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1116.576153][T19186] RSP: 002b:00007f1aed362038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1116.576182][T19186] RAX: ffffffffffffffda RBX: 00007f1aec7e5fa0 RCX: 00007f1aec58f6c9 [ 1116.576201][T19186] RDX: 0000000000000201 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 1116.576220][T19186] RBP: 00007f1aed362090 R08: 0000000000000000 R09: 0000000000000000 [ 1116.576237][T19186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1116.576254][T19186] R13: 00007f1aec7e6038 R14: 00007f1aec7e5fa0 R15: 00007fff5da05ac8 [ 1116.576302][T19186] [ 1116.576313][T19186] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1116.656751][ T30] audit: type=1804 audit(1762398743.057:15): pid=19194 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2673" name="/newroot/sys/kernel/debug/tracing/dynamic_events" dev="tracefs" ino=1069 res=1 errno=0 [ 1117.054326][T19200] kernel read not supported for file /dynamic_events (pid: 19200 comm: syz.1.2677) [ 1117.063771][ T30] audit: type=1804 audit(1762398743.477:16): pid=19200 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2677" name="/newroot/sys/kernel/debug/tracing/dynamic_events" dev="tracefs" ino=1069 res=1 errno=0 [ 1117.142565][ T30] audit: type=1800 audit(1762398743.487:17): pid=19200 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2677" name="dynamic_events" dev="tracefs" ino=1069 res=0 errno=0 [ 1117.490062][T19208] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 1117.513343][T19208] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 1117.874147][T19208] blktrace: Concurrent blktraces are not allowed on loop2 [ 1119.334764][T19227] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 1119.354112][T19227] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 1119.727389][T19221] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1119.749718][T19221] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1119.775119][T19221] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1119.817127][T19221] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1121.331972][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1121.339325][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1121.795046][ T5838] Bluetooth: hci0: command 0x0c1a tx timeout [ 1121.801432][T19030] Bluetooth: hci4: command 0x0c1a tx timeout [ 1121.801464][T16859] Bluetooth: hci1: command 0x0406 tx timeout [ 1121.874774][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout [ 1123.684427][T19277] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 1123.837113][T19277] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 1125.142158][ T30] audit: type=1804 audit(1762398751.567:18): pid=19293 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2700" name="/newroot/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw" dev="tracefs" ino=241 res=1 errno=0 [ 1125.931967][T19301] size and base must be multiples of 4 kiB [ 1125.964818][T19301] CPU: 1 UID: 0 PID: 19301 Comm: syz.2.2701 Not tainted syzkaller #0 PREEMPT(full) [ 1125.964856][T19301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1125.964875][T19301] Call Trace: [ 1125.964885][T19301] [ 1125.964897][T19301] dump_stack_lvl+0x16c/0x1f0 [ 1125.964934][T19301] mtrr_del+0xd1/0x110 [ 1125.964969][T19301] mtrr_ioctl+0x922/0xcf0 [ 1125.964994][T19301] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1125.965023][T19301] ? find_held_lock+0x2b/0x80 [ 1125.965048][T19301] ? __fget_files+0x20e/0x3c0 [ 1125.965066][T19301] ? __pfx_mtrr_ioctl+0x10/0x10 [ 1125.965089][T19301] proc_reg_unlocked_ioctl+0x229/0x320 [ 1125.965112][T19301] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 1125.965137][T19301] __x64_sys_ioctl+0x18e/0x210 [ 1125.965164][T19301] do_syscall_64+0xcd/0xfa0 [ 1125.965184][T19301] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1125.965202][T19301] RIP: 0033:0x7f2ebe58f6c9 [ 1125.965217][T19301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1125.965234][T19301] RSP: 002b:00007f2ebf3e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1125.965251][T19301] RAX: ffffffffffffffda RBX: 00007f2ebe7e6090 RCX: 00007f2ebe58f6c9 [ 1125.965262][T19301] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 1125.965280][T19301] RBP: 00007f2ebe611f91 R08: 0000000000000000 R09: 0000000000000000 [ 1125.965291][T19301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1125.965301][T19301] R13: 00007f2ebe7e6128 R14: 00007f2ebe7e6090 R15: 00007ffd51a180a8 [ 1125.965323][T19301] [ 1127.028750][T19310] ptrace attach of "./syz-executor exec"[17247] was attempted by ""[19310] [ 1129.316303][T19342] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 1129.334065][T19342] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 1129.523094][T19342] blktrace: Concurrent blktraces are not allowed on loop2 [ 1129.712400][ T5838] block nbd0: Receive control failed (result -107) [ 1129.751631][T19337] nbd0: detected capacity change from 0 to 1073741824 [ 1129.768244][T19157] block nbd0: Dead connection, failed to find a fallback [ 1129.783976][T19157] block nbd0: shutting down sockets [ 1129.793663][T19157] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 1129.806357][T19157] Buffer I/O error on dev nbd0, logical block 0, async page read [ 1129.815276][T19157] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 1129.824313][T19157] Buffer I/O error on dev nbd0, logical block 0, async page read [ 1129.832484][T19157] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 1129.841815][T19157] Buffer I/O error on dev nbd0, logical block 0, async page read [ 1129.850595][T19157] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 1129.859885][T19157] Buffer I/O error on dev nbd0, logical block 0, async page read [ 1129.884877][T19157] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 1129.904380][T19157] Buffer I/O error on dev nbd0, logical block 0, async page read [ 1129.915152][T19157] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 1129.924234][T19157] Buffer I/O error on dev nbd0, logical block 0, async page read [ 1129.933298][T19157] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 1129.944000][T19157] Buffer I/O error on dev nbd0, logical block 0, async page read [ 1129.952871][T19157] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 1129.962800][T19157] Buffer I/O error on dev nbd0, logical block 0, async page read [ 1129.970966][T19157] ldm_validate_partition_table(): Disk read failed. [ 1129.982125][T19157] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 1130.010243][T19157] Buffer I/O error on dev nbd0, logical block 0, async page read [ 1130.070612][T19157] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 1130.187965][T19157] Buffer I/O error on dev nbd0, logical block 0, async page read [ 1130.225685][T19157] Dev nbd0: unable to read RDB block 0 [ 1130.262864][T19157] nbd0: unable to read partition table [ 1130.329327][T19157] ldm_validate_partition_table(): Disk read failed. [ 1130.368318][T19157] Dev nbd0: unable to read RDB block 0 [ 1130.395774][T19157] nbd0: unable to read partition table [ 1131.646762][ T10] [ 1131.646912][ T5838] Bluetooth: hci0: unexpected event 0x35 length: 13 > 6 [ 1131.649153][ T10] ====================================================== [ 1131.649168][ T10] WARNING: possible circular locking dependency detected [ 1131.649180][ T10] syzkaller #0 Not tainted [ 1131.649196][ T10] ------------------------------------------------------ [ 1131.649207][ T10] kworker/0:1/10 is trying to acquire lock: [ 1131.649222][ T10] ffff8881446f6c18 [ 1131.677384][T19369] netlink: 11 bytes leftover after parsing attributes in process `syz.2.2720'. [ 1131.681972][ T10] (&hugetlbfs_i_mmap_rwsem_key){++++}-{4:4}, at: __hugetlb_zap_begin+0x233/0x2a0 [ 1131.709793][ T10] [ 1131.709793][ T10] but task is already holding lock: [ 1131.717175][ T10] ffff88805f3dda78 (&vma_lock->rw_sema){++++}-{4:4}, at: hugetlb_vma_lock_write+0xac/0x130 [ 1131.727496][ T10] [ 1131.727496][ T10] which lock already depends on the new lock. [ 1131.727496][ T10] [ 1131.737905][ T10] [ 1131.737905][ T10] the existing dependency chain (in reverse order) is: [ 1131.747179][ T10] [ 1131.747179][ T10] -> #10 (&vma_lock->rw_sema){++++}-{4:4}: [ 1131.755181][ T10] down_read+0x9b/0x480 [ 1131.759877][ T10] hugetlb_vma_lock_read+0xac/0x130 [ 1131.765609][ T10] hugetlb_fault+0x30a/0x2f40 [ 1131.770811][ T10] handle_mm_fault+0xbfa/0xd10 [ 1131.776203][ T10] do_user_addr_fault+0x7a6/0x1370 [ 1131.781930][ T10] exc_page_fault+0x64/0xc0 [ 1131.787317][ T10] asm_exc_page_fault+0x26/0x30 [ 1131.792705][ T10] strncpy_from_user+0x147/0x2e0 [ 1131.798186][ T10] getname_flags.part.0+0x8f/0x550 [ 1131.803854][ T10] getname_flags+0x93/0xf0 [ 1131.808809][ T10] do_sys_openat2+0xb8/0x1d0 [ 1131.813952][ T10] __x64_sys_openat+0x174/0x210 [ 1131.819358][ T10] do_syscall_64+0xcd/0xfa0 [ 1131.824397][ T10] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1131.831522][ T10] [ 1131.831522][ T10] -> #9 (&hugetlb_fault_mutex_table[i]){+.+.}-{4:4}: [ 1131.840494][ T10] __mutex_lock+0x193/0x1060 [ 1131.845625][ T10] hugetlb_fault+0x302/0x2f40 [ 1131.851001][ T10] handle_mm_fault+0xbfa/0xd10 [ 1131.856303][ T10] do_user_addr_fault+0x7a6/0x1370 [ 1131.861941][ T10] exc_page_fault+0x64/0xc0 [ 1131.866972][ T10] asm_exc_page_fault+0x26/0x30 [ 1131.872352][ T10] rep_movs_alternative+0x4a/0x90 [ 1131.877913][ T10] _copy_from_iter+0x383/0x1720 [ 1131.883306][ T10] tcp_sendmsg_locked+0x2900/0x42e0 [ 1131.889042][ T10] tcp_sendmsg+0x2e/0x50 [ 1131.893822][ T10] inet_sendmsg+0xb9/0x140 [ 1131.898773][ T10] sock_write_iter+0x509/0x610 [ 1131.904069][ T10] vfs_write+0x7d3/0x11d0 [ 1131.908931][ T10] ksys_write+0x1f8/0x250 [ 1131.913801][ T10] do_syscall_64+0xcd/0xfa0 [ 1131.918832][ T10] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1131.925257][ T10] [ 1131.925257][ T10] -> #8 (k-sk_lock-AF_INET){+.+.}-{0:0}: [ 1131.933090][ T10] lock_sock_nested+0x41/0xf0 [ 1131.938297][ T10] mptcp_sendmsg+0x1449/0x1ec0 [ 1131.943589][ T10] inet_sendmsg+0x11c/0x140 [ 1131.948626][ T10] ____sys_sendmsg+0x973/0xc70 [ 1131.953927][ T10] ___sys_sendmsg+0x134/0x1d0 [ 1131.959133][ T10] __sys_sendmsg+0x16d/0x220 [ 1131.964252][ T10] do_syscall_64+0xcd/0xfa0 [ 1131.969285][ T10] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1131.975711][ T10] [ 1131.975711][ T10] -> #7 (sk_lock-AF_INET){+.+.}-{0:0}: [ 1131.983373][ T10] lock_sock_nested+0x41/0xf0 [ 1131.988580][ T10] inet_shutdown+0x67/0x440 [ 1131.993699][ T10] nbd_mark_nsock_dead+0xae/0x5d0 [ 1131.999255][ T10] recv_work+0x671/0xa80 [ 1132.004044][ T10] process_one_work+0x9cf/0x1b70 [ 1132.009540][ T10] worker_thread+0x6c8/0xf10 [ 1132.014677][ T10] kthread+0x3c5/0x780 [ 1132.019285][ T10] ret_from_fork+0x675/0x7d0 [ 1132.024419][ T10] ret_from_fork_asm+0x1a/0x30 [ 1132.029727][ T10] [ 1132.029727][ T10] -> #6 (&nsock->tx_lock){+.+.}-{4:4}: [ 1132.037408][ T10] __mutex_lock+0x193/0x1060 [ 1132.042535][ T10] nbd_queue_rq+0x423/0x12d0 [ 1132.047666][ T10] blk_mq_dispatch_rq_list+0x416/0x1e20 [ 1132.053923][ T10] __blk_mq_sched_dispatch_requests+0xcb7/0x15f0 [ 1132.060779][ T10] blk_mq_sched_dispatch_requests+0xd8/0x1b0 [ 1132.067288][ T10] blk_mq_run_hw_queue+0x239/0x670 [ 1132.072938][ T10] blk_mq_dispatch_list+0x514/0x1310 [ 1132.078766][ T10] blk_mq_flush_plug_list+0x130/0x600 [ 1132.084669][ T10] __blk_flush_plug+0x2c4/0x4b0 [ 1132.090050][ T10] __submit_bio+0x545/0x690 [ 1132.095080][ T10] submit_bio_noacct_nocheck+0x53d/0xc10 [ 1132.101241][ T10] submit_bio_noacct+0x5bd/0x1f60 [ 1132.106801][ T10] block_read_full_folio+0x4db/0x850 [ 1132.112620][ T10] filemap_read_folio+0xc8/0x2a0 [ 1132.118082][ T10] do_read_cache_folio+0x263/0x5c0 [ 1132.123719][ T10] read_part_sector+0xd4/0x370 [ 1132.129194][ T10] adfspart_check_ICS+0x93/0x940 [ 1132.134658][ T10] bdev_disk_changed+0x723/0x1520 [ 1132.140478][ T10] blkdev_get_whole+0x187/0x290 [ 1132.145875][ T10] bdev_open+0x2c7/0xe40 [ 1132.150647][ T10] blkdev_open+0x34e/0x4f0 [ 1132.155710][ T10] do_dentry_open+0x982/0x1530 [ 1132.161012][ T10] vfs_open+0x82/0x3f0 [ 1132.165614][ T10] path_openat+0x1de4/0x2cb0 [ 1132.170737][ T10] do_filp_open+0x20b/0x470 [ 1132.175767][ T10] do_sys_openat2+0x11b/0x1d0 [ 1132.180980][ T10] __x64_sys_openat+0x174/0x210 [ 1132.186364][ T10] do_syscall_64+0xcd/0xfa0 [ 1132.191396][ T10] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1132.197814][ T10] [ 1132.197814][ T10] -> #5 (&cmd->lock){+.+.}-{4:4}: [ 1132.205036][ T10] __mutex_lock+0x193/0x1060 [ 1132.210421][ T10] nbd_queue_rq+0xbd/0x12d0 [ 1132.215458][ T10] blk_mq_dispatch_rq_list+0x416/0x1e20 [ 1132.221709][ T10] __blk_mq_sched_dispatch_requests+0xcb7/0x15f0 [ 1132.228563][ T10] blk_mq_sched_dispatch_requests+0xd8/0x1b0 [ 1132.235069][ T10] blk_mq_run_hw_queue+0x239/0x670 [ 1132.240718][ T10] blk_mq_dispatch_list+0x514/0x1310 [ 1132.246529][ T10] blk_mq_flush_plug_list+0x130/0x600 [ 1132.252429][ T10] __blk_flush_plug+0x2c4/0x4b0 [ 1132.257805][ T10] __submit_bio+0x545/0x690 [ 1132.262830][ T10] submit_bio_noacct_nocheck+0x53d/0xc10 [ 1132.268993][ T10] submit_bio_noacct+0x5bd/0x1f60 [ 1132.274635][ T10] block_read_full_folio+0x4db/0x850 [ 1132.280465][ T10] filemap_read_folio+0xc8/0x2a0 [ 1132.285935][ T10] do_read_cache_folio+0x263/0x5c0 [ 1132.291600][ T10] read_part_sector+0xd4/0x370 [ 1132.296911][ T10] adfspart_check_ICS+0x93/0x940 [ 1132.302374][ T10] bdev_disk_changed+0x723/0x1520 [ 1132.307936][ T10] blkdev_get_whole+0x187/0x290 [ 1132.313326][ T10] bdev_open+0x2c7/0xe40 [ 1132.318092][ T10] blkdev_open+0x34e/0x4f0 [ 1132.323037][ T10] do_dentry_open+0x982/0x1530 [ 1132.328328][ T10] vfs_open+0x82/0x3f0 [ 1132.332932][ T10] path_openat+0x1de4/0x2cb0 [ 1132.338050][ T10] do_filp_open+0x20b/0x470 [ 1132.343085][ T10] do_sys_openat2+0x11b/0x1d0 [ 1132.348301][ T10] __x64_sys_openat+0x174/0x210 [ 1132.353693][ T10] do_syscall_64+0xcd/0xfa0 [ 1132.358728][ T10] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1132.365147][ T10] [ 1132.365147][ T10] -> #4 (set->srcu){.+.+}-{0:0}: [ 1132.372294][ T10] __synchronize_srcu+0xa1/0x290 [ 1132.377778][ T10] blk_mq_quiesce_queue+0x149/0x1b0 [ 1132.383532][ T10] elevator_switch+0x17d/0x810 [ 1132.388835][ T10] elevator_change+0x391/0x5d0 [ 1132.394144][ T10] elevator_set_default+0x2e9/0x380 [ 1132.399868][ T10] blk_register_queue+0x384/0x4e0 [ 1132.405438][ T10] __add_disk+0x74a/0xf00 [ 1132.410300][ T10] add_disk_fwnode+0x13f/0x5d0 [ 1132.415601][ T10] nbd_dev_add+0x783/0xbb0 [ 1132.420554][ T10] nbd_init+0x1a2/0x3c0 [ 1132.425328][ T10] do_one_initcall+0x123/0x6e0 [ 1132.430627][ T10] kernel_init_freeable+0x5c8/0x920 [ 1132.436391][ T10] kernel_init+0x1c/0x2b0 [ 1132.441258][ T10] ret_from_fork+0x675/0x7d0 [ 1132.446384][ T10] ret_from_fork_asm+0x1a/0x30 [ 1132.451683][ T10] [ 1132.451683][ T10] -> #3 (&q->elevator_lock){+.+.}-{4:4}: [ 1132.459514][ T10] __mutex_lock+0x193/0x1060 [ 1132.464638][ T10] queue_requests_store+0x3a7/0x670 [ 1132.470378][ T10] queue_attr_store+0x26b/0x310 [ 1132.475764][ T10] sysfs_kf_write+0xf2/0x150 [ 1132.480889][ T10] kernfs_fop_write_iter+0x3af/0x570 [ 1132.486727][ T10] vfs_write+0x7d3/0x11d0 [ 1132.491587][ T10] ksys_write+0x12a/0x250 [ 1132.496443][ T10] do_syscall_64+0xcd/0xfa0 [ 1132.501479][ T10] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1132.507904][ T10] [ 1132.507904][ T10] -> #2 (&q->q_usage_counter(io)#63){++++}-{0:0}: [ 1132.516541][ T10] blk_alloc_queue+0x619/0x760 [ 1132.521839][ T10] blk_mq_alloc_queue+0x172/0x280 [ 1132.527393][ T10] __blk_mq_alloc_disk+0x29/0x120 [ 1132.532951][ T10] nbd_dev_add+0x492/0xbb0 [ 1132.537906][ T10] nbd_init+0x1a2/0x3c0 [ 1132.542605][ T10] do_one_initcall+0x123/0x6e0 [ 1132.547902][ T10] kernel_init_freeable+0x5c8/0x920 [ 1132.553641][ T10] kernel_init+0x1c/0x2b0 [ 1132.558507][ T10] ret_from_fork+0x675/0x7d0 [ 1132.563634][ T10] ret_from_fork_asm+0x1a/0x30 [ 1132.568933][ T10] [ 1132.568933][ T10] -> #1 (fs_reclaim){+.+.}-{0:0}: [ 1132.576156][ T10] fs_reclaim_acquire+0x102/0x150 [ 1132.581716][ T10] __kmalloc_cache_noprof+0x58/0x780 [ 1132.587549][ T10] allocate_file_region_entries+0x1a0/0x620 [ 1132.593974][ T10] region_chg+0x85/0x140 [ 1132.598751][ T10] __vma_reservation_common+0x43b/0x740 [ 1132.604832][ T10] __unmap_hugepage_range+0xeb9/0x1a00 [ 1132.610817][ T10] unmap_single_vma.constprop.0+0x1ea/0x240 [ 1132.617246][ T10] unmap_vmas+0x218/0x470 [ 1132.622107][ T10] exit_mmap+0x1b2/0xb90 [ 1132.626882][ T10] __mmput+0x12a/0x410 [ 1132.631488][ T10] mmput+0x62/0x70 [ 1132.635737][ T10] do_exit+0x7c7/0x2bf0 [ 1132.640428][ T10] do_group_exit+0xd3/0x2a0 [ 1132.645466][ T10] get_signal+0x2671/0x26d0 [ 1132.650499][ T10] arch_do_signal_or_restart+0x8f/0x790 [ 1132.656579][ T10] exit_to_user_mode_loop+0x85/0x130 [ 1132.662402][ T10] do_syscall_64+0x426/0xfa0 [ 1132.667523][ T10] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1132.673944][ T10] [ 1132.673944][ T10] -> #0 (&hugetlbfs_i_mmap_rwsem_key){++++}-{4:4}: [ 1132.682639][ T10] __lock_acquire+0x126f/0x1c90 [ 1132.688025][ T10] lock_acquire+0x179/0x350 [ 1132.693067][ T10] down_write+0x92/0x200 [ 1132.697841][ T10] __hugetlb_zap_begin+0x233/0x2a0 [ 1132.703492][ T10] unmap_vmas+0x2e9/0x470 [ 1132.708351][ T10] exit_mmap+0x1b2/0xb90 [ 1132.713129][ T10] __mmput+0x12a/0x410 [ 1132.717729][ T10] process_one_work+0x9cf/0x1b70 [ 1132.723205][ T10] worker_thread+0x6c8/0xf10 [ 1132.728331][ T10] kthread+0x3c5/0x780 [ 1132.732943][ T10] ret_from_fork+0x675/0x7d0 [ 1132.738073][ T10] ret_from_fork_asm+0x1a/0x30 [ 1132.743381][ T10] [ 1132.743381][ T10] other info that might help us debug this: [ 1132.743381][ T10] [ 1132.753607][ T10] Chain exists of: [ 1132.753607][ T10] &hugetlbfs_i_mmap_rwsem_key --> &hugetlb_fault_mutex_table[i] --> &vma_lock->rw_sema [ 1132.753607][ T10] [ 1132.769175][ T10] Possible unsafe locking scenario: [ 1132.769175][ T10] [ 1132.776623][ T10] CPU0 CPU1 [ 1132.781986][ T10] ---- ---- [ 1132.787348][ T10] lock(&vma_lock->rw_sema); [ 1132.792031][ T10] lock(&hugetlb_fault_mutex_table[i]); [ 1132.800188][ T10] lock(&vma_lock->rw_sema); [ 1132.807394][ T10] lock(&hugetlbfs_i_mmap_rwsem_key); [ 1132.812857][ T10] [ 1132.812857][ T10] *** DEADLOCK *** [ 1132.812857][ T10] [ 1132.821000][ T10] 4 locks held by kworker/0:1/10: [ 1132.826031][ T10] #0: ffff88813ff15948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 1132.836513][ T10] #1: ffffc900000f7d00 ((work_completion)(&mm->async_put_work)#2){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 1132.848551][ T10] #2: ffff8880596b4d20 (&mm->mmap_lock){++++}-{4:4}, at: exit_mmap+0x103/0xb90 [ 1132.857628][ T10] #3: ffff88805f3dda78 (&vma_lock->rw_sema){++++}-{4:4}, at: hugetlb_vma_lock_write+0xac/0x130 [ 1132.868102][ T10] [ 1132.868102][ T10] stack backtrace: [ 1132.873995][ T10] CPU: 0 UID: 0 PID: 10 Comm: kworker/0:1 Not tainted syzkaller #0 PREEMPT(full) [ 1132.874021][ T10] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1132.874036][ T10] Workqueue: events mmput_async_fn [ 1132.874062][ T10] Call Trace: [ 1132.874070][ T10] [ 1132.874079][ T10] dump_stack_lvl+0x116/0x1f0 [ 1132.874104][ T10] print_circular_bug+0x275/0x350 [ 1132.874134][ T10] check_noncircular+0x14c/0x170 [ 1132.874166][ T10] __lock_acquire+0x126f/0x1c90 [ 1132.874199][ T10] lock_acquire+0x179/0x350 [ 1132.874227][ T10] ? __hugetlb_zap_begin+0x233/0x2a0 [ 1132.874260][ T10] ? __pfx___might_resched+0x10/0x10 [ 1132.874285][ T10] down_write+0x92/0x200 [ 1132.874311][ T10] ? __hugetlb_zap_begin+0x233/0x2a0 [ 1132.874343][ T10] ? __pfx_down_write+0x10/0x10 [ 1132.874374][ T10] __hugetlb_zap_begin+0x233/0x2a0 [ 1132.874408][ T10] unmap_vmas+0x2e9/0x470 [ 1132.874437][ T10] ? __pfx_unmap_vmas+0x10/0x10 [ 1132.874472][ T10] exit_mmap+0x1b2/0xb90 [ 1132.874501][ T10] ? __pfx_exit_mmap+0x10/0x10 [ 1132.874532][ T10] ? lockdep_unlock+0x64/0xe0 [ 1132.874553][ T10] ? __lock_acquire+0x1053/0x1c90 [ 1132.874586][ T10] ? arch_uprobe_clear_state+0x16/0x150 [ 1132.874628][ T10] __mmput+0x12a/0x410 [ 1132.874651][ T10] process_one_work+0x9cf/0x1b70 [ 1132.874689][ T10] ? __pfx_process_one_work+0x10/0x10 [ 1132.874726][ T10] ? assign_work+0x1a0/0x250 [ 1132.874756][ T10] worker_thread+0x6c8/0xf10 [ 1132.874794][ T10] ? __pfx_worker_thread+0x10/0x10 [ 1132.874826][ T10] kthread+0x3c5/0x780 [ 1132.874856][ T10] ? __pfx_kthread+0x10/0x10 [ 1132.874886][ T10] ? rcu_is_watching+0x12/0xc0 [ 1132.874915][ T10] ? __pfx_kthread+0x10/0x10 [ 1132.874945][ T10] ret_from_fork+0x675/0x7d0 [ 1132.874976][ T10] ? __pfx_kthread+0x10/0x10 [ 1132.875006][ T10] ret_from_fork_asm+0x1a/0x30 [ 1132.875041][ T10] [ 1133.421327][ T36] EXT4-fs (sda1): Delayed block allocation failed for inode 2030 at logical offset 2 with max blocks 2 with error 117 [ 1133.453723][ T36] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1133.453723][ T36]