last executing test programs:
5.234461738s ago: executing program 3 (id=3138):
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
close_range$auto(0x0, 0x5, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/020/001\x00', 0x209403, 0x0)
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0xc0482, 0x0)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7)
write$auto_sg_fops_sg(r0, &(0x7f0000001380)="4a0200000000040000899edb615550fd8c44924d87f0010047eb02eff5d2adc245a4e1eded0e91b86c61b6b42ed6", 0x2e)
4.626794199s ago: executing program 3 (id=3147):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
pwritev$auto(r0, 0x0, 0x4, 0xcee, 0x18a)
unshare$auto(0x40000080)
3.051828379s ago: executing program 1 (id=3152):
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
capset$auto(0x0, 0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
2.859975728s ago: executing program 2 (id=3156):
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000180), 0x109802, 0x0)
close_range$auto(0x2, r0, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000040)={0x7, 0x0, [{0x4b564dff, 0x2, 0x6}]})
2.762152752s ago: executing program 3 (id=3157):
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x0, 0xffffffffffffffff, 0x0)
eventfd$auto(0x8e)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(r1, 0x4040ae79, r2)
2.609687122s ago: executing program 1 (id=3159):
mmap$auto(0x200000000, 0x5, 0x8, 0x40009b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
write$auto(0x1, 0x0, 0x80000000)
write$auto(0x1, 0x0, 0x80000000)
munmap$auto(0x8000, 0xffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
2.485973232s ago: executing program 2 (id=3161):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/erspan0/queues/tx-0/byte_queue_limits/hold_time\x00', 0x2, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zl10353/parameters/debug\x00', 0x80000, 0x0)
read$auto(r0, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfdef)
2.457966722s ago: executing program 3 (id=3162):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
setreuid$auto(0x4, 0x8)
socket(0x2, 0x2, 0x1)
2.356888844s ago: executing program 2 (id=3163):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
r1 = epoll_create$auto(0x8800001)
epoll_ctl$auto(r1, 0x1, r0, 0x0)
2.299094884s ago: executing program 0 (id=3164):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vivid.0/video4linux/v4l-touch5/dev_debug\x00', 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/graphics/fbcon/rotate_all\x00', 0xa001, 0x0)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000580)='/proc/sys/net/ipv4/conf/wg1/shared_media\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x1ff)
write$auto(0x3, 0x0, 0xfdef)
2.198334502s ago: executing program 2 (id=3165):
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x602, 0x1)
r0 = open(&(0x7f0000000080)='./file0\x00', 0x662c2, 0xe1d2b27bdc14aa0c)
fanotify_mark$auto(0x400000000000, 0x105, 0xf2b, r0, 0x0)
open(&(0x7f0000000000)='./bus\x00', 0x12ba7e, 0x45)
r1 = prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0)
ioctl$auto(r1, 0x541b, 0xffffffffffffffff)
2.085539279s ago: executing program 2 (id=3166):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
pwritev$auto(r0, 0x0, 0x4, 0xcee, 0x18a)
unshare$auto(0x40000080)
2.006810137s ago: executing program 0 (id=3167):
socket(0x10, 0x2, 0x4)
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x400c890}, 0x800)
r0 = openat$auto_l2cap_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x0, r0, 0x801, 0x10008, 0x4f0d, 0x1000049, 0xffffffffffffffff, 0x20000000000804, 0x7}, 0x6f3)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
1.870461632s ago: executing program 0 (id=3168):
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={0x0}, 0x1, 0x0, 0x0, 0x20000084}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x24008895}, 0x20000800)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="01002cbd7000fbdbdf250a00"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="19"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000000)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x1}, 0x2, 0x0)
1.763390205s ago: executing program 0 (id=3169):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x2, 0x0)
socket(0xa, 0x801, 0x106)
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9)
socketpair$auto(0x3, 0x5, 0x7, 0x0)
setsockopt$auto(0x3, 0x0, 0xf, 0x0, 0xb)
1.584695335s ago: executing program 0 (id=3170):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, 0x0, 0x20202, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
munmap$auto(0x200000008000, 0xffffffff)
1.57737488s ago: executing program 1 (id=3171):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x80000000000000a, 0x2, 0x0)
socket(0xa, 0x801, 0x84)
shutdown$auto(0x200000003, 0x2)
recvmmsg$auto(0x3, 0x0, 0x10400, 0x3, 0x0)
listen$auto(0x3, 0x3)
1.356869498s ago: executing program 3 (id=3172):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x13, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x12de82, 0x0)
ioctl$auto(0x3, 0x40106f52, r0)
1.164935484s ago: executing program 1 (id=3173):
r0 = socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x400008, 0x100000000036, 0x1009b72, 0x2, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0)
pread64$auto(r1, 0x0, 0x9, 0x2)
setsockopt$auto(r0, 0x10000000084, 0x0, 0x0, 0x10)
1.090795632s ago: executing program 3 (id=3174):
semctl$auto(0x2, 0xff, 0x1, 0x7ff)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
lremovexattr$auto(0x0, 0x0)
590.668182ms ago: executing program 1 (id=3175):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22241, 0x155)
socket(0xa, 0x5, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x19, 0x0, 0x8)
416.772225ms ago: executing program 1 (id=3176):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x7fffffff, 0x0, 0x9)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
mbind$auto(0x2000, 0x100000008, 0x2100000000, 0x0, 0x6, 0x2)
futex_wake$auto(0x0, 0x4, 0x1, 0x9)
mincore$auto(0x1000, 0x4000000, 0x0)
176.26171ms ago: executing program 2 (id=3177):
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x84)
0s ago: executing program 0 (id=3178):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
unshare$auto(0x40000080)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x50, &(0x7f0000000200)={0x0, 0x1ff}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0225020000000800030080"], 0x24}, 0x1, 0x0, 0x0, 0x20008010}, 0x400d0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x20040004)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x80000005, &(0x7f0000000180)={0x0, 0xc8}, 0x1, 0x0, 0x5}, 0x3}, 0x40000204, 0x0)
kernel console output (not intermixed with test programs):
T10978] dump_stack_lvl+0x100/0x190
[ 278.659039][T10978] should_fail_ex.cold+0x5/0xa
[ 278.659073][T10978] should_failslab+0xc2/0x120
[ 278.659101][T10978] kmem_cache_alloc_noprof+0x7b/0x6e0
[ 278.659142][T10978] ? __anon_vma_prepare+0xae/0x5e0
[ 278.659186][T10978] __anon_vma_prepare+0xae/0x5e0
[ 278.659219][T10978] ? __filemap_get_folio_mpol+0x3ba/0xe70
[ 278.659262][T10978] __vmf_anon_prepare+0x11f/0x250
[ 278.659319][T10978] hugetlb_no_page+0xe28/0x1970
[ 278.659368][T10978] hugetlb_fault+0x5df/0x1450
[ 278.659407][T10978] ? __pfx_hugetlb_fault+0x10/0x10
[ 278.659456][T10978] ? find_vma+0xbf/0x140
[ 278.659482][T10978] ? __pfx_find_vma+0x10/0x10
[ 278.659511][T10978] handle_mm_fault+0x5f1/0xa20
[ 278.659555][T10978] do_user_addr_fault+0x74c/0x12f0
[ 278.659608][T10978] exc_page_fault+0x6f/0xd0
[ 278.659646][T10978] asm_exc_page_fault+0x26/0x30
[ 278.659672][T10978] RIP: 0010:strncpy_from_user+0xfd/0x2d0
[ 278.659702][T10978] Code: 00 4d 89 64 1d 00 48 83 ed 08 bf 07 00 00 00 48 83 c3 08 48 89 ee e8 72 c9 df fc 48 83 fd 07 0f 86 bb 00 00 00 e8 83 ce df fc <4d> 8b 24 1e e8 7a ce df fc 4c 89 e2 31 ff 4d 8d 7c 1d 00 48 b8 ff
[ 278.659729][T10978] RSP: 0018:ffffc9000e3bfe88 EFLAGS: 00050283
[ 278.659752][T10978] RAX: 0000000000000025 RBX: 0000000000000000 RCX: ffffc90005f51000
[ 278.659770][T10978] RDX: 0000000000080000 RSI: ffffffff852849dd RDI: ffff888076a85b80
[ 278.659788][T10978] RBP: 00000000000000fa R08: 0000000000000007 R09: 0000000000000007
[ 278.659803][T10978] R10: 00000000000000fa R11: 0000000000000000 R12: ffff88805e2cf600
[ 278.659820][T10978] R13: ffff88805e2cf606 R14: 0000000000000000 R15: 00000000000000fa
[ 278.659849][T10978] ? strncpy_from_user+0xfd/0x2d0
[ 278.659883][T10978] ? strncpy_from_user+0xfd/0x2d0
[ 278.659917][T10978] __do_sys_memfd_create+0x1a7/0x3d0
[ 278.659952][T10978] do_syscall_64+0x106/0xf80
[ 278.659984][T10978] ? clear_bhb_loop+0x40/0x90
[ 278.660018][T10978] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 278.660047][T10978] RIP: 0033:0x7f0eec39c799
[ 278.660069][T10978] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 278.660095][T10978] RSP: 002b:00007f0eed2e4028 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[ 278.660120][T10978] RAX: ffffffffffffffda RBX: 00007f0eec615fa0 RCX: 00007f0eec39c799
[ 278.660138][T10978] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 278.660154][T10978] RBP: 00007f0eec432c99 R08: 0000000000000000 R09: 0000000000000000
[ 278.660171][T10978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 278.660188][T10978] R13: 00007f0eec616038 R14: 00007f0eec615fa0 R15: 00007ffc3d832588
[ 278.660228][T10978]
[ 279.331478][ T5831] Bluetooth: hci0: command 0x0c1a tx timeout
[ 279.419601][ C1] sd 0:0:1:0: [sda] tag#9256 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[ 279.430170][ C1] sd 0:0:1:0: [sda] tag#9256 CDB: Read(6) 08 00 00 00 10 00 00 00 00 00 00 00
[ 279.597909][T10992] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 279.604418][T10992] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 279.627241][T10992] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 279.633402][T10992] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 279.808086][T11004] futex_wake_op: syz.0.1853 tries to shift op by -2048; fix this program
[ 279.888252][T11007] FAULT_INJECTION: forcing a failure.
[ 279.888252][T11007] name failslab, interval 1, probability 0, space 0, times 0
[ 279.930103][T11008] size and base must be multiples of 4 kiB
[ 279.933418][T11007] CPU: 0 UID: 0 PID: 11007 Comm: syz.2.1854 Tainted: G L syzkaller #0 PREEMPT(full)
[ 279.933461][T11007] Tainted: [L]=SOFTLOCKUP
[ 279.933471][T11007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 279.933488][T11007] Call Trace:
[ 279.933496][T11007]
[ 279.933506][T11007] dump_stack_lvl+0x100/0x190
[ 279.933550][T11007] should_fail_ex.cold+0x5/0xa
[ 279.933584][T11007] should_failslab+0xc2/0x120
[ 279.933612][T11007] __kmalloc_cache_noprof+0x7a/0x6f0
[ 279.933644][T11007] ? __v4l2_subdev_state_alloc+0x53/0x410
[ 279.933684][T11007] __v4l2_subdev_state_alloc+0x53/0x410
[ 279.933719][T11007] subdev_open+0xa6/0x510
[ 279.933751][T11007] v4l2_open+0x1d2/0x490
[ 279.933788][T11007] ? __pfx_v4l2_open+0x10/0x10
[ 279.933826][T11007] chrdev_open+0x234/0x6a0
[ 279.933851][T11007] ? __pfx_apparmor_file_open+0x10/0x10
[ 279.933893][T11007] ? __pfx_chrdev_open+0x10/0x10
[ 279.933921][T11007] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 279.933956][T11007] do_dentry_open+0x6d8/0x1660
[ 279.933984][T11007] ? __pfx_chrdev_open+0x10/0x10
[ 279.934028][T11007] vfs_open+0x82/0x3f0
[ 279.934066][T11007] path_openat+0x208c/0x31a0
[ 279.934102][T11007] ? stack_depot_save_flags+0x27/0x9d0
[ 279.934135][T11007] ? __pfx_path_openat+0x10/0x10
[ 279.934165][T11007] ? kasan_save_stack+0x3f/0x50
[ 279.934201][T11007] ? kasan_save_stack+0x30/0x50
[ 279.934237][T11007] ? kasan_save_track+0x14/0x30
[ 279.934274][T11007] ? __kasan_slab_alloc+0x89/0x90
[ 279.934297][T11007] ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 279.934332][T11007] ? do_getname+0x35/0x390
[ 279.934367][T11007] do_file_open+0x20e/0x430
[ 279.934397][T11007] ? __pfx_do_file_open+0x10/0x10
[ 279.934452][T11007] ? find_held_lock+0x2b/0x80
[ 279.934477][T11007] ? __might_fault+0xc5/0x140
[ 279.934510][T11007] ? __might_fault+0xc5/0x140
[ 279.934550][T11007] file_open_name+0x198/0x3b0
[ 279.934584][T11007] ? __pfx_file_open_name+0x10/0x10
[ 279.934623][T11007] ? do_getname+0x191/0x390
[ 279.934658][T11007] acct_on+0xa4/0x9e0
[ 279.934695][T11007] ? __pfx_acct_on+0x10/0x10
[ 279.934732][T11007] ? bpf_lsm_capable+0x9/0x10
[ 279.934759][T11007] ? security_capable+0x80/0x260
[ 279.934801][T11007] __x64_sys_acct+0x81/0x1e0
[ 279.934836][T11007] ? lockdep_hardirqs_on+0x78/0x100
[ 279.934872][T11007] do_syscall_64+0x106/0xf80
[ 279.934906][T11007] ? clear_bhb_loop+0x40/0x90
[ 279.934938][T11007] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 279.934965][T11007] RIP: 0033:0x7fc1acd9c799
[ 279.934987][T11007] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 279.935019][T11007] RSP: 002b:00007fc1adc6d028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3
[ 279.935046][T11007] RAX: ffffffffffffffda RBX: 00007fc1ad015fa0 RCX: 00007fc1acd9c799
[ 279.935063][T11007] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000100
[ 279.935080][T11007] RBP: 00007fc1ace32c99 R08: 0000000000000000 R09: 0000000000000000
[ 279.935097][T11007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 279.935113][T11007] R13: 00007fc1ad016038 R14: 00007fc1ad015fa0 R15: 00007ffcb4afdf38
[ 279.935149][T11007]
[ 280.198136][T11011] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 280.204215][T11008] CPU: 1 UID: 0 PID: 11008 Comm: syz.0.1853 Tainted: G L syzkaller #0 PREEMPT(full)
[ 280.204258][T11008] Tainted: [L]=SOFTLOCKUP
[ 280.204267][T11008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 280.204284][T11008] Call Trace:
[ 280.204292][T11008]
[ 280.204302][T11008] dump_stack_lvl+0x100/0x190
[ 280.204345][T11008] mtrr_add.cold+0x74/0x87
[ 280.204375][T11008] mtrr_ioctl+0x25a/0xcf0
[ 280.204410][T11008] ? __pfx_mtrr_ioctl+0x10/0x10
[ 280.204451][T11008] ? find_held_lock+0x2b/0x80
[ 280.204486][T11008] ? __fget_files+0x21f/0x3d0
[ 280.204512][T11008] ? __pfx_mtrr_ioctl+0x10/0x10
[ 280.204547][T11008] proc_reg_unlocked_ioctl+0x229/0x320
[ 280.204585][T11008] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[ 280.204626][T11008] __x64_sys_ioctl+0x18e/0x210
[ 280.204664][T11008] do_syscall_64+0x106/0xf80
[ 280.204698][T11008] ? clear_bhb_loop+0x40/0x90
[ 280.204730][T11008] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 280.204757][T11008] RIP: 0033:0x7f0eec39c799
[ 280.204778][T11008] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 280.204804][T11008] RSP: 002b:00007f0eed2c3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 280.204829][T11008] RAX: ffffffffffffffda RBX: 00007f0eec616090 RCX: 00007f0eec39c799
[ 280.204846][T11008] RDX: 0000000000000000 RSI: 0000000040104d01 RDI: 0000000000000000
[ 280.204862][T11008] RBP: 00007f0eec432c99 R08: 0000000000000000 R09: 0000000000000000
[ 280.204878][T11008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 280.204893][T11008] R13: 00007f0eec616128 R14: 00007f0eec616090 R15: 00007ffc3d832588
[ 280.204929][T11008]
[ 280.681615][T11015] netlink: 350 bytes leftover after parsing attributes in process `syz.1.1856'.
[ 281.027692][T11024] netlink: 'syz.1.1860': attribute type 15 has an invalid length.
[ 281.035905][T11024] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1860'.
[ 281.464847][T11038] Unable to find swap-space signature
[ 281.637349][ T5148] Bluetooth: hci1: command 0x0c1a tx timeout
[ 281.638248][ T5831] Bluetooth: hci3: command 0x0c1a tx timeout
[ 281.643509][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout
[ 281.649461][ T5831] Bluetooth: hci0: command 0x0c1a tx timeout
[ 282.540796][T11058] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[ 282.603477][T11058] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[ 282.872968][T11060] FAULT_INJECTION: forcing a failure.
[ 282.872968][T11060] name failslab, interval 1, probability 0, space 0, times 0
[ 282.948577][T11060] CPU: 0 UID: 0 PID: 11060 Comm: syz.3.1872 Tainted: G L syzkaller #0 PREEMPT(full)
[ 282.948620][T11060] Tainted: [L]=SOFTLOCKUP
[ 282.948630][T11060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 282.948646][T11060] Call Trace:
[ 282.948655][T11060]
[ 282.948665][T11060] dump_stack_lvl+0x100/0x190
[ 282.948708][T11060] should_fail_ex.cold+0x5/0xa
[ 282.948739][T11060] should_failslab+0xc2/0x120
[ 282.948767][T11060] kmem_cache_alloc_noprof+0x7b/0x6e0
[ 282.948805][T11060] ? __kernfs_new_node+0xd2/0x960
[ 282.948851][T11060] __kernfs_new_node+0xd2/0x960
[ 282.948888][T11060] ? lockdep_unlock+0x5a/0xc0
[ 282.948915][T11060] ? __pfx___kernfs_new_node+0x10/0x10
[ 282.948960][T11060] ? find_held_lock+0x2b/0x80
[ 282.948986][T11060] ? kernfs_root+0xee/0x2a0
[ 282.949023][T11060] ? kernfs_root+0xee/0x2a0
[ 282.949069][T11060] kernfs_new_node+0x11b/0x1a0
[ 282.949116][T11060] __kernfs_create_file+0x53/0x350
[ 282.949152][T11060] sysfs_add_file_mode_ns+0x207/0x3c0
[ 282.949197][T11060] sysfs_merge_group+0x194/0x340
[ 282.949236][T11060] ? __pfx_sysfs_merge_group+0x10/0x10
[ 282.949288][T11060] ? __pfx_dev_add_physical_location+0x10/0x10
[ 282.949321][T11060] ? bus_to_subsys+0x114/0x150
[ 282.949361][T11060] dpm_sysfs_add+0x237/0x280
[ 282.949394][T11060] device_add+0x9ef/0x1950
[ 282.949428][T11060] ? __pfx_device_add+0x10/0x10
[ 282.949458][T11060] ? lockdep_init_map_type+0x5c/0x250
[ 282.949495][T11060] ? __init_waitqueue_head+0xca/0x150
[ 282.949545][T11060] rfkill_register+0x1ad/0xb30
[ 282.949579][T11060] nfc_register_device+0x11f/0x3e0
[ 282.949619][T11060] nci_register_device+0x7f1/0xb80
[ 282.949652][T11060] ? __pfx_nci_register_device+0x10/0x10
[ 282.949688][T11060] ? lockdep_init_map_type+0x5c/0x250
[ 282.949729][T11060] virtual_ncidev_open+0x141/0x220
[ 282.949766][T11060] ? __pfx_virtual_ncidev_open+0x10/0x10
[ 282.949800][T11060] misc_open+0x26d/0x450
[ 282.949830][T11060] ? __pfx_misc_open+0x10/0x10
[ 282.949860][T11060] chrdev_open+0x234/0x6a0
[ 282.949886][T11060] ? __pfx_apparmor_file_open+0x10/0x10
[ 282.949928][T11060] ? __pfx_chrdev_open+0x10/0x10
[ 282.949958][T11060] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 282.949995][T11060] do_dentry_open+0x6d8/0x1660
[ 282.950021][T11060] ? __pfx_chrdev_open+0x10/0x10
[ 282.950058][T11060] vfs_open+0x82/0x3f0
[ 282.950096][T11060] path_openat+0x208c/0x31a0
[ 282.950138][T11060] ? __pfx_path_openat+0x10/0x10
[ 282.950181][T11060] do_file_open+0x20e/0x430
[ 282.950212][T11060] ? __pfx_do_file_open+0x10/0x10
[ 282.950274][T11060] ? alloc_fd+0x476/0x790
[ 282.950306][T11060] ? do_getname+0x191/0x390
[ 282.950344][T11060] do_sys_openat2+0x10d/0x1e0
[ 282.950379][T11060] ? __pfx_do_sys_openat2+0x10/0x10
[ 282.950416][T11060] ? __fget_files+0x21f/0x3d0
[ 282.950450][T11060] __x64_sys_openat+0x12d/0x210
[ 282.950486][T11060] ? __pfx___x64_sys_openat+0x10/0x10
[ 282.950536][T11060] do_syscall_64+0x106/0xf80
[ 282.950572][T11060] ? clear_bhb_loop+0x40/0x90
[ 282.950605][T11060] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 282.950633][T11060] RIP: 0033:0x7f154379c799
[ 282.950657][T11060] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 282.950684][T11060] RSP: 002b:00007f154457c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 282.950710][T11060] RAX: ffffffffffffffda RBX: 00007f1543a15fa0 RCX: 00007f154379c799
[ 282.950729][T11060] RDX: 0000000000000002 RSI: 0000200000000040 RDI: ffffffffffffff9c
[ 282.950746][T11060] RBP: 00007f1543832c99 R08: 0000000000000000 R09: 0000000000000000
[ 282.950762][T11060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 282.950778][T11060] R13: 00007f1543a16038 R14: 00007f1543a15fa0 R15: 00007ffdb085a8b8
[ 282.950816][T11060]
[ 283.972299][T11079] Unable to find swap-space signature
[ 285.717938][T11113] Unable to find swap-space signature
[ 285.982295][T11123] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1894'.
[ 288.051089][T11153] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1905'.
[ 288.215092][T11162] FAULT_INJECTION: forcing a failure.
[ 288.215092][T11162] name failslab, interval 1, probability 0, space 0, times 0
[ 288.228288][T11162] CPU: 1 UID: 0 PID: 11162 Comm: syz.2.1908 Tainted: G L syzkaller #0 PREEMPT(full)
[ 288.228331][T11162] Tainted: [L]=SOFTLOCKUP
[ 288.228341][T11162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 288.228357][T11162] Call Trace:
[ 288.228366][T11162]
[ 288.228377][T11162] dump_stack_lvl+0x100/0x190
[ 288.228422][T11162] should_fail_ex.cold+0x5/0xa
[ 288.228453][T11162] should_failslab+0xc2/0x120
[ 288.228491][T11162] __kmalloc_cache_noprof+0x7a/0x6f0
[ 288.228526][T11162] ? dummy_hrtimer_create+0x45/0x170
[ 288.228566][T11162] dummy_hrtimer_create+0x45/0x170
[ 288.228599][T11162] ? __pfx_dummy_hrtimer_create+0x10/0x10
[ 288.228630][T11162] dummy_pcm_open+0xc1/0x5b0
[ 288.228662][T11162] snd_pcm_open_substream+0xa76/0x1850
[ 288.228701][T11162] ? __pfx_snd_pcm_open_substream+0x10/0x10
[ 288.228748][T11162] snd_pcm_oss_open+0x735/0x1390
[ 288.228791][T11162] ? __pfx_snd_pcm_oss_open+0x10/0x10
[ 288.228821][T11162] ? __lock_acquire+0x4a5/0x2630
[ 288.228854][T11162] ? __pfx_default_wake_function+0x10/0x10
[ 288.228884][T11162] ? __lock_acquire+0x4a5/0x2630
[ 288.228925][T11162] ? do_raw_spin_lock+0x128/0x260
[ 288.228964][T11162] ? soundcore_open+0x231/0x5a0
[ 288.228992][T11162] ? __pfx_snd_pcm_oss_open+0x10/0x10
[ 288.229023][T11162] soundcore_open+0x2e3/0x5a0
[ 288.229052][T11162] ? __pfx_soundcore_open+0x10/0x10
[ 288.229077][T11162] chrdev_open+0x234/0x6a0
[ 288.229103][T11162] ? __pfx_apparmor_file_open+0x10/0x10
[ 288.229145][T11162] ? __pfx_chrdev_open+0x10/0x10
[ 288.229174][T11162] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 288.229212][T11162] do_dentry_open+0x6d8/0x1660
[ 288.229238][T11162] ? __pfx_chrdev_open+0x10/0x10
[ 288.229278][T11162] vfs_open+0x82/0x3f0
[ 288.229315][T11162] path_openat+0x208c/0x31a0
[ 288.229355][T11162] ? __pfx_path_openat+0x10/0x10
[ 288.229395][T11162] do_file_open+0x20e/0x430
[ 288.229425][T11162] ? __pfx_do_file_open+0x10/0x10
[ 288.229483][T11162] ? alloc_fd+0x476/0x790
[ 288.229513][T11162] ? do_getname+0x191/0x390
[ 288.229549][T11162] do_sys_openat2+0x10d/0x1e0
[ 288.229582][T11162] ? __pfx_do_sys_openat2+0x10/0x10
[ 288.229620][T11162] ? __fget_files+0x21f/0x3d0
[ 288.229651][T11162] __x64_sys_openat+0x12d/0x210
[ 288.229686][T11162] ? __pfx___x64_sys_openat+0x10/0x10
[ 288.229735][T11162] do_syscall_64+0x106/0xf80
[ 288.229770][T11162] ? clear_bhb_loop+0x40/0x90
[ 288.229803][T11162] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 288.229831][T11162] RIP: 0033:0x7fc1acd9c799
[ 288.229854][T11162] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 288.229878][T11162] RSP: 002b:00007fc1adc6d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 288.229900][T11162] RAX: ffffffffffffffda RBX: 00007fc1ad015fa0 RCX: 00007fc1acd9c799
[ 288.229916][T11162] RDX: 0000000000020342 RSI: 0000200000000100 RDI: ffffffffffffff9c
[ 288.229935][T11162] RBP: 00007fc1ace32c99 R08: 0000000000000000 R09: 0000000000000000
[ 288.229950][T11162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 288.229964][T11162] R13: 00007fc1ad016038 R14: 00007fc1ad015fa0 R15: 00007ffcb4afdf38
[ 288.230000][T11162]
[ 288.637862][T11168] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1912'.
[ 289.634859][T11191] netlink: 'syz.0.1918': attribute type 15 has an invalid length.
[ 289.644533][T11191] netlink: 186 bytes leftover after parsing attributes in process `syz.0.1918'.
[ 290.057710][T11196] netlink: 74 bytes leftover after parsing attributes in process `syz.1.1920'.
[ 290.111429][T11200] Unable to find swap-space signature
[ 290.518640][T11208] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1924'.
[ 290.677405][T11209] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1925'.
[ 290.863221][ C1] sd 0:0:1:0: [sda] tag#9266 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[ 290.873712][ C1] sd 0:0:1:0: [sda] tag#9266 CDB: Read(6) 08 00 00 00 10 00 00 00 00 00 00 00
[ 290.966463][T11215] FAULT_INJECTION: forcing a failure.
[ 290.966463][T11215] name failslab, interval 1, probability 0, space 0, times 0
[ 290.997441][T11215] CPU: 1 UID: 0 PID: 11215 Comm: syz.0.1927 Tainted: G L syzkaller #0 PREEMPT(full)
[ 290.997487][T11215] Tainted: [L]=SOFTLOCKUP
[ 290.997498][T11215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 290.997514][T11215] Call Trace:
[ 290.997523][T11215]
[ 290.997534][T11215] dump_stack_lvl+0x100/0x190
[ 290.997577][T11215] should_fail_ex.cold+0x5/0xa
[ 290.997610][T11215] should_failslab+0xc2/0x120
[ 290.997648][T11215] __kmalloc_cache_noprof+0x7a/0x6f0
[ 290.997684][T11215] ? __v4l2_subdev_state_alloc+0x53/0x410
[ 290.997721][T11215] __v4l2_subdev_state_alloc+0x53/0x410
[ 290.997757][T11215] subdev_open+0xa6/0x510
[ 290.997790][T11215] v4l2_open+0x1d2/0x490
[ 290.997831][T11215] ? __pfx_v4l2_open+0x10/0x10
[ 290.997871][T11215] chrdev_open+0x234/0x6a0
[ 290.997898][T11215] ? __pfx_apparmor_file_open+0x10/0x10
[ 290.997941][T11215] ? __pfx_chrdev_open+0x10/0x10
[ 290.997970][T11215] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 290.998009][T11215] do_dentry_open+0x6d8/0x1660
[ 290.998036][T11215] ? __pfx_chrdev_open+0x10/0x10
[ 290.998073][T11215] vfs_open+0x82/0x3f0
[ 290.998111][T11215] path_openat+0x208c/0x31a0
[ 290.998146][T11215] ? futex_unqueue+0x13d/0x2c0
[ 290.998179][T11215] ? stack_depot_save_flags+0x27/0x9d0
[ 290.998214][T11215] ? __pfx_path_openat+0x10/0x10
[ 290.998245][T11215] ? kasan_save_stack+0x3f/0x50
[ 290.998285][T11215] ? kasan_save_stack+0x30/0x50
[ 290.998324][T11215] ? kasan_save_track+0x14/0x30
[ 290.998364][T11215] ? __kasan_slab_alloc+0x89/0x90
[ 290.998401][T11215] ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 290.998441][T11215] ? do_getname+0x35/0x390
[ 290.998479][T11215] do_file_open+0x20e/0x430
[ 290.998522][T11215] ? __pfx_do_file_open+0x10/0x10
[ 290.998582][T11215] ? find_held_lock+0x2b/0x80
[ 290.998608][T11215] ? __might_fault+0xc5/0x140
[ 290.998651][T11215] ? __might_fault+0xc5/0x140
[ 290.998693][T11215] file_open_name+0x198/0x3b0
[ 290.998728][T11215] ? __pfx_file_open_name+0x10/0x10
[ 290.998771][T11215] ? do_getname+0x191/0x390
[ 290.998809][T11215] acct_on+0xa4/0x9e0
[ 290.998848][T11215] ? __pfx_acct_on+0x10/0x10
[ 290.998887][T11215] ? bpf_lsm_capable+0x9/0x10
[ 290.998915][T11215] ? security_capable+0x80/0x260
[ 290.998959][T11215] __x64_sys_acct+0x81/0x1e0
[ 290.998996][T11215] ? lockdep_hardirqs_on+0x78/0x100
[ 290.999033][T11215] do_syscall_64+0x106/0xf80
[ 290.999068][T11215] ? clear_bhb_loop+0x40/0x90
[ 290.999102][T11215] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 290.999131][T11215] RIP: 0033:0x7f0eec39c799
[ 290.999156][T11215] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 290.999183][T11215] RSP: 002b:00007f0eed2e4028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3
[ 290.999209][T11215] RAX: ffffffffffffffda RBX: 00007f0eec615fa0 RCX: 00007f0eec39c799
[ 290.999227][T11215] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000100
[ 290.999245][T11215] RBP: 00007f0eec432c99 R08: 0000000000000000 R09: 0000000000000000
[ 290.999262][T11215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 290.999279][T11215] R13: 00007f0eec616038 R14: 00007f0eec615fa0 R15: 00007ffc3d832588
[ 290.999317][T11215]
[ 291.544775][T11224] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1931'.
[ 292.475542][T11253] FAULT_INJECTION: forcing a failure.
[ 292.475542][T11253] name failslab, interval 1, probability 0, space 0, times 0
[ 292.489556][T11253] CPU: 0 UID: 0 PID: 11253 Comm: syz.2.1944 Tainted: G L syzkaller #0 PREEMPT(full)
[ 292.489603][T11253] Tainted: [L]=SOFTLOCKUP
[ 292.489613][T11253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 292.489630][T11253] Call Trace:
[ 292.489639][T11253]
[ 292.489649][T11253] dump_stack_lvl+0x100/0x190
[ 292.489695][T11253] should_fail_ex.cold+0x5/0xa
[ 292.489726][T11253] should_failslab+0xc2/0x120
[ 292.489756][T11253] __kmalloc_cache_noprof+0x7a/0x6f0
[ 292.489789][T11253] ? landlock_init_hierarchy_log+0xa9/0x820
[ 292.489835][T11253] landlock_init_hierarchy_log+0xa9/0x820
[ 292.489879][T11253] landlock_merge_ruleset+0x67b/0x830
[ 292.489909][T11253] ? prepare_creds+0x5ee/0x950
[ 292.489950][T11253] __do_sys_landlock_restrict_self+0x2a6/0x9e0
[ 292.490000][T11253] do_syscall_64+0x106/0xf80
[ 292.490036][T11253] ? clear_bhb_loop+0x40/0x90
[ 292.490071][T11253] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 292.490099][T11253] RIP: 0033:0x7fc1acd9c799
[ 292.490123][T11253] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 292.490150][T11253] RSP: 002b:00007fc1adc6d028 EFLAGS: 00000246 ORIG_RAX: 00000000000001be
[ 292.490177][T11253] RAX: ffffffffffffffda RBX: 00007fc1ad015fa0 RCX: 00007fc1acd9c799
[ 292.490194][T11253] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000003
[ 292.490211][T11253] RBP: 00007fc1ace32c99 R08: 0000000000000000 R09: 0000000000000000
[ 292.490227][T11253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 292.490244][T11253] R13: 00007fc1ad016038 R14: 00007fc1ad015fa0 R15: 00007ffcb4afdf38
[ 292.490289][T11253]
[ 292.782018][T11256] FAULT_INJECTION: forcing a failure.
[ 292.782018][T11256] name failslab, interval 1, probability 0, space 0, times 0
[ 292.797603][T11256] CPU: 0 UID: 0 PID: 11256 Comm: syz.2.1945 Tainted: G L syzkaller #0 PREEMPT(full)
[ 292.797647][T11256] Tainted: [L]=SOFTLOCKUP
[ 292.797657][T11256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 292.797675][T11256] Call Trace:
[ 292.797684][T11256]
[ 292.797694][T11256] dump_stack_lvl+0x100/0x190
[ 292.797740][T11256] should_fail_ex.cold+0x5/0xa
[ 292.797773][T11256] should_failslab+0xc2/0x120
[ 292.797802][T11256] kmem_cache_alloc_noprof+0x7b/0x6e0
[ 292.797843][T11256] ? dup_fd+0x4d/0xd10
[ 292.797868][T11256] ? do_futex+0x192/0x350
[ 292.797907][T11256] dup_fd+0x4d/0xd10
[ 292.797931][T11256] ? bpf_lsm_capable+0x9/0x10
[ 292.797980][T11256] ? security_capable+0x80/0x260
[ 292.798031][T11256] __x64_sys_close_range+0x405/0x5d0
[ 292.798064][T11256] ? __pfx___x64_sys_close_range+0x10/0x10
[ 292.798105][T11256] do_syscall_64+0x106/0xf80
[ 292.798141][T11256] ? clear_bhb_loop+0x40/0x90
[ 292.798173][T11256] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 292.798202][T11256] RIP: 0033:0x7fc1acd9c799
[ 292.798224][T11256] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 292.798270][T11256] RSP: 002b:00007fc1adc6d028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 292.798297][T11256] RAX: ffffffffffffffda RBX: 00007fc1ad015fa0 RCX: 00007fc1acd9c799
[ 292.798315][T11256] RDX: 0000000000000002 RSI: fffffffffffff001 RDI: 0000000000000000
[ 292.798332][T11256] RBP: 00007fc1ace32c99 R08: 0000000000000000 R09: 0000000000000000
[ 292.798348][T11256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 292.798364][T11256] R13: 00007fc1ad016038 R14: 00007fc1ad015fa0 R15: 00007ffcb4afdf38
[ 292.798400][T11256]
[ 293.151889][T11265] netlink: 206 bytes leftover after parsing attributes in process `syz.3.1949'.
[ 293.182654][T11265] Process accounting resumed
[ 293.690298][T11293] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1961'.
[ 295.166689][T11350] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1983'.
[ 296.365074][T11383] device-mapper: ioctl: device name cannot contain '/'
[ 297.049225][T11401] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2004'.
[ 297.334962][T11412] sg_write: data in/out 4060/39 bytes for SCSI command 0x0-- guessing data in;
[ 297.334962][T11412] program syz.0.2009 not setting count and/or reply_len properly
[ 297.569121][T11417] nbd: socks must be embedded in a SOCK_ITEM attr
[ 297.593503][T11417] block nbd2: shutting down sockets
[ 298.622133][T11444] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2020'.
[ 298.631494][T11444] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 298.639249][T11444] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 298.657998][T11444] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 298.665417][T11444] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 299.475101][T11474] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size
[ 300.604412][T11502] FAULT_INJECTION: forcing a failure.
[ 300.604412][T11502] name failslab, interval 1, probability 0, space 0, times 0
[ 300.657159][T11502] CPU: 0 UID: 0 PID: 11502 Comm: syz.0.2042 Tainted: G L syzkaller #0 PREEMPT(full)
[ 300.657208][T11502] Tainted: [L]=SOFTLOCKUP
[ 300.657218][T11502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 300.657235][T11502] Call Trace:
[ 300.657244][T11502]
[ 300.657255][T11502] dump_stack_lvl+0x100/0x190
[ 300.657300][T11502] should_fail_ex.cold+0x5/0xa
[ 300.657332][T11502] should_failslab+0xc2/0x120
[ 300.657362][T11502] __kmalloc_node_track_caller_noprof+0xe3/0x850
[ 300.657406][T11502] ? snd_pcm_hw_rule_add+0x3b3/0x510
[ 300.657443][T11502] krealloc_node_align_noprof+0x30a/0x3e0
[ 300.657483][T11502] ? __split_page_owner+0x1f9/0x350
[ 300.657515][T11502] snd_pcm_hw_rule_add+0x3b3/0x510
[ 300.657545][T11502] ? __pfx_snd_pcm_hw_rule_format+0x10/0x10
[ 300.657580][T11502] ? __pfx_snd_pcm_hw_rule_add+0x10/0x10
[ 300.657611][T11502] ? mutex_init_lockep+0x110/0x150
[ 300.657658][T11502] ? snd_pcm_attach_substream+0x29b/0xd60
[ 300.657722][T11502] snd_pcm_open_substream+0x54a/0x1850
[ 300.657763][T11502] ? __pfx_snd_pcm_open_substream+0x10/0x10
[ 300.657813][T11502] snd_pcm_oss_open+0x735/0x1390
[ 300.657859][T11502] ? __pfx_snd_pcm_oss_open+0x10/0x10
[ 300.657890][T11502] ? __lock_acquire+0x4a5/0x2630
[ 300.657925][T11502] ? __pfx_default_wake_function+0x10/0x10
[ 300.657956][T11502] ? __lock_acquire+0x4a5/0x2630
[ 300.657998][T11502] ? do_raw_spin_lock+0x128/0x260
[ 300.658039][T11502] ? soundcore_open+0x231/0x5a0
[ 300.658069][T11502] ? __pfx_snd_pcm_oss_open+0x10/0x10
[ 300.658101][T11502] soundcore_open+0x2e3/0x5a0
[ 300.658131][T11502] ? __pfx_soundcore_open+0x10/0x10
[ 300.658157][T11502] chrdev_open+0x234/0x6a0
[ 300.658184][T11502] ? __pfx_apparmor_file_open+0x10/0x10
[ 300.658227][T11502] ? __pfx_chrdev_open+0x10/0x10
[ 300.658257][T11502] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 300.658295][T11502] do_dentry_open+0x6d8/0x1660
[ 300.658352][T11502] ? __pfx_chrdev_open+0x10/0x10
[ 300.658404][T11502] vfs_open+0x82/0x3f0
[ 300.658457][T11502] path_openat+0x208c/0x31a0
[ 300.658498][T11502] ? __pfx_path_openat+0x10/0x10
[ 300.658542][T11502] do_file_open+0x20e/0x430
[ 300.658574][T11502] ? __pfx_do_file_open+0x10/0x10
[ 300.658629][T11502] ? alloc_fd+0x476/0x790
[ 300.658667][T11502] ? do_getname+0x191/0x390
[ 300.658705][T11502] do_sys_openat2+0x10d/0x1e0
[ 300.658740][T11502] ? __pfx_do_sys_openat2+0x10/0x10
[ 300.658779][T11502] ? __fget_files+0x21f/0x3d0
[ 300.658814][T11502] __x64_sys_openat+0x12d/0x210
[ 300.658849][T11502] ? __pfx___x64_sys_openat+0x10/0x10
[ 300.658898][T11502] do_syscall_64+0x106/0xf80
[ 300.658935][T11502] ? clear_bhb_loop+0x40/0x90
[ 300.658970][T11502] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 300.658999][T11502] RIP: 0033:0x7f0eec39c799
[ 300.659023][T11502] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 300.659050][T11502] RSP: 002b:00007f0eed2e4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 300.659080][T11502] RAX: ffffffffffffffda RBX: 00007f0eec615fa0 RCX: 00007f0eec39c799
[ 300.659099][T11502] RDX: 0000000000020342 RSI: 0000200000000100 RDI: ffffffffffffff9c
[ 300.659117][T11502] RBP: 00007f0eec432c99 R08: 0000000000000000 R09: 0000000000000000
[ 300.659134][T11502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 300.659150][T11502] R13: 00007f0eec616038 R14: 00007f0eec615fa0 R15: 00007ffc3d832588
[ 300.659189][T11502]
[ 301.539806][T11522] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2051'.
[ 303.816737][T11575] zswap: compressor û not available
[ 304.875892][T11608] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2079'.
[ 304.917565][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[ 304.985087][T11616] FAULT_INJECTION: forcing a failure.
[ 304.985087][T11616] name failslab, interval 1, probability 0, space 0, times 0
[ 304.998138][T11616] CPU: 1 UID: 0 PID: 11616 Comm: syz.3.2081 Tainted: G L syzkaller #0 PREEMPT(full)
[ 304.998184][T11616] Tainted: [L]=SOFTLOCKUP
[ 304.998194][T11616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 304.998210][T11616] Call Trace:
[ 304.998219][T11616]
[ 304.998230][T11616] dump_stack_lvl+0x100/0x190
[ 304.998277][T11616] should_fail_ex.cold+0x5/0xa
[ 304.998311][T11616] should_failslab+0xc2/0x120
[ 304.998340][T11616] kmem_cache_alloc_noprof+0x7b/0x6e0
[ 304.998378][T11616] ? __send_signal_locked+0x155/0x12d0
[ 304.998429][T11616] __send_signal_locked+0x155/0x12d0
[ 304.998478][T11616] group_send_sig_info+0x2a4/0x300
[ 304.998511][T11616] ? __pfx_group_send_sig_info+0x10/0x10
[ 304.998552][T11616] ? kill_pid_info_type+0x1a/0x290
[ 304.998580][T11616] kill_pid_info_type+0x92/0x290
[ 304.998615][T11616] kill_proc_info+0x6f/0x1b0
[ 304.998647][T11616] kill_something_info+0x2a0/0x310
[ 304.998684][T11616] __x64_sys_kill+0x1c4/0x250
[ 304.998718][T11616] ? __pfx___x64_sys_kill+0x10/0x10
[ 304.998768][T11616] do_syscall_64+0x106/0xf80
[ 304.998805][T11616] ? clear_bhb_loop+0x40/0x90
[ 304.998839][T11616] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 304.998866][T11616] RIP: 0033:0x7f154379c799
[ 304.998889][T11616] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 304.998916][T11616] RSP: 002b:00007f154457c028 EFLAGS: 00000246 ORIG_RAX: 000000000000003e
[ 304.998943][T11616] RAX: ffffffffffffffda RBX: 00007f1543a15fa0 RCX: 00007f154379c799
[ 304.998962][T11616] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000517
[ 304.998978][T11616] RBP: 00007f1543832c99 R08: 0000000000000000 R09: 0000000000000000
[ 304.998995][T11616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 304.999011][T11616] R13: 00007f1543a16038 R14: 00007f1543a15fa0 R15: 00007ffdb085a8b8
[ 304.999051][T11616]
[ 305.247064][ T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!!
[ 305.977653][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[ 307.496202][T11659] zswap: compressor û not available
[ 307.753234][T11664] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2094'.
[ 308.454539][T11694] FAULT_INJECTION: forcing a failure.
[ 308.454539][T11694] name failslab, interval 1, probability 0, space 0, times 0
[ 308.467644][T11694] CPU: 0 UID: 0 PID: 11694 Comm: syz.0.2107 Tainted: G L syzkaller #0 PREEMPT(full)
[ 308.467691][T11694] Tainted: [L]=SOFTLOCKUP
[ 308.467702][T11694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 308.467717][T11694] Call Trace:
[ 308.467727][T11694]
[ 308.467736][T11694] dump_stack_lvl+0x100/0x190
[ 308.467784][T11694] should_fail_ex.cold+0x5/0xa
[ 308.467816][T11694] ? lsm_blob_alloc+0x68/0x90
[ 308.467852][T11694] should_failslab+0xc2/0x120
[ 308.467879][T11694] __kmalloc_noprof+0xe0/0x850
[ 308.467917][T11694] ? trace_kmem_cache_alloc+0xf3/0x120
[ 308.467952][T11694] lsm_blob_alloc+0x68/0x90
[ 308.467988][T11694] security_prepare_creds+0x2d/0x290
[ 308.468025][T11694] prepare_creds+0x5d6/0x950
[ 308.468066][T11694] __do_sys_capset+0x270/0x460
[ 308.468094][T11694] ? __pfx___do_sys_capset+0x10/0x10
[ 308.468123][T11694] ? __x64_sys_futex+0x358/0x4d0
[ 308.468158][T11694] ? __pfx_ksys_mmap_pgoff+0x10/0x10
[ 308.468188][T11694] ? xfd_validate_state+0x129/0x190
[ 308.468238][T11694] do_syscall_64+0x106/0xf80
[ 308.468273][T11694] ? clear_bhb_loop+0x40/0x90
[ 308.468306][T11694] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 308.468334][T11694] RIP: 0033:0x7f0eec39c799
[ 308.468356][T11694] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 308.468392][T11694] RSP: 002b:00007f0eed2e4028 EFLAGS: 00000246 ORIG_RAX: 000000000000007e
[ 308.468419][T11694] RAX: ffffffffffffffda RBX: 00007f0eec615fa0 RCX: 00007f0eec39c799
[ 308.468438][T11694] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000200
[ 308.468455][T11694] RBP: 00007f0eec432c99 R08: 0000000000000000 R09: 0000000000000000
[ 308.468473][T11694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 308.468489][T11694] R13: 00007f0eec616038 R14: 00007f0eec615fa0 R15: 00007ffc3d832588
[ 308.468526][T11694]
[ 308.884481][T11699] FAULT_INJECTION: forcing a failure.
[ 308.884481][T11699] name failslab, interval 1, probability 0, space 0, times 0
[ 308.935158][T11699] CPU: 1 UID: 0 PID: 11699 Comm: syz.0.2109 Tainted: G L syzkaller #0 PREEMPT(full)
[ 308.935202][T11699] Tainted: [L]=SOFTLOCKUP
[ 308.935211][T11699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 308.935227][T11699] Call Trace:
[ 308.935235][T11699]
[ 308.935246][T11699] dump_stack_lvl+0x100/0x190
[ 308.935293][T11699] should_fail_ex.cold+0x5/0xa
[ 308.935326][T11699] should_failslab+0xc2/0x120
[ 308.935355][T11699] kmem_cache_alloc_noprof+0x7b/0x6e0
[ 308.935395][T11699] ? key_alloc+0x3c5/0x1310
[ 308.935425][T11699] ? rcu_is_watching+0x12/0xc0
[ 308.935470][T11699] key_alloc+0x3c5/0x1310
[ 308.935513][T11699] ? __pfx_key_alloc+0x10/0x10
[ 308.935555][T11699] keyring_alloc+0x44/0xc0
[ 308.935593][T11699] lookup_user_key+0x9b8/0x1300
[ 308.935627][T11699] ? __pfx_lookup_user_key+0x10/0x10
[ 308.935656][T11699] ? find_held_lock+0x2b/0x80
[ 308.935683][T11699] ? setid_policy_lookup+0x10c/0x350
[ 308.935722][T11699] ? __pfx_lookup_user_key_possessed+0x10/0x10
[ 308.935760][T11699] ? bpf_lsm_capable+0x9/0x10
[ 308.935788][T11699] ? security_capable+0x80/0x260
[ 308.935833][T11699] keyctl_get_persistent+0x197/0x8b0
[ 308.935880][T11699] ? __pfx_keyctl_get_persistent+0x10/0x10
[ 308.935921][T11699] ? __x64_sys_futex+0x34f/0x4d0
[ 308.935955][T11699] ? __x64_sys_futex+0x358/0x4d0
[ 308.935993][T11699] ? xfd_validate_state+0x129/0x190
[ 308.936039][T11699] __do_sys_keyctl+0x3b2/0x5a0
[ 308.936067][T11699] do_syscall_64+0x106/0xf80
[ 308.936103][T11699] ? clear_bhb_loop+0x40/0x90
[ 308.936136][T11699] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 308.936165][T11699] RIP: 0033:0x7f0eec39c799
[ 308.936189][T11699] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 308.936216][T11699] RSP: 002b:00007f0eed2e4028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[ 308.936242][T11699] RAX: ffffffffffffffda RBX: 00007f0eec615fa0 RCX: 00007f0eec39c799
[ 308.936261][T11699] RDX: 7fffffffffffffff RSI: 000000000000ee00 RDI: 0000000000000016
[ 308.936278][T11699] RBP: 00007f0eec432c99 R08: 000000000000000c R09: 0000000000000000
[ 308.936295][T11699] R10: 00000000000099a7 R11: 0000000000000246 R12: 0000000000000000
[ 308.936312][T11699] R13: 00007f0eec616038 R14: 00007f0eec615fa0 R15: 00007ffc3d832588
[ 308.936349][T11699]
[ 309.356085][T11703] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2110'.
[ 310.694917][T11737] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2121'.
[ 311.571405][T11758] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2127'.
[ 311.587631][ T30] audit: type=1326 audit(1773777065.230:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11756 comm="syz.0.2126" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0eec39c799 code=0x0
[ 312.483984][T11779] HfR: entered promiscuous mode
[ 312.509887][T11785] netlink: 350 bytes leftover after parsing attributes in process `syz.0.2138'.
[ 312.522856][T11779] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2146'.
[ 312.617497][T11779] HfR: left promiscuous mode
[ 313.087516][T11047] Bluetooth: hci1: unexpected subevent 0x05 length: 123 > 12
[ 313.899332][T11821] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2151'.
[ 313.984424][T11824] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2152'.
[ 314.018464][T11824] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 314.056354][T11824] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 314.065096][T11824] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 314.073038][T11824] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 314.325965][T11833] Format for adding new port is "id [perm_addr]" (uint MAC).
[ 314.948991][T11853] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2163'.
[ 315.157134][T11047] Bluetooth: hci1: command 0x0c1a tx timeout
[ 315.219342][T11863] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2168'.
[ 315.229211][T11863] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 315.236634][T11863] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 315.262979][T11863] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 315.280803][T11863] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 315.913351][T11888] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2176'.
[ 315.963487][T11888] netlink: 354 bytes leftover after parsing attributes in process `syz.0.2176'.
[ 316.311523][T11904] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2180'.
[ 316.350098][T11904] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 316.373226][T11904] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 316.438292][T11904] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 316.464526][T11904] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 316.765652][T11918] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2189'.
[ 317.006225][T11927] FAULT_INJECTION: forcing a failure.
[ 317.006225][T11927] name failslab, interval 1, probability 0, space 0, times 0
[ 317.025569][T11927] CPU: 1 UID: 0 PID: 11927 Comm: syz.2.2193 Tainted: G L syzkaller #0 PREEMPT(full)
[ 317.025614][T11927] Tainted: [L]=SOFTLOCKUP
[ 317.025624][T11927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 317.025640][T11927] Call Trace:
[ 317.025649][T11927]
[ 317.025659][T11927] dump_stack_lvl+0x100/0x190
[ 317.025707][T11927] should_fail_ex.cold+0x5/0xa
[ 317.025749][T11927] should_failslab+0xc2/0x120
[ 317.025780][T11927] kmem_cache_alloc_noprof+0x7b/0x6e0
[ 317.025820][T11927] ? __kernfs_new_node+0xd2/0x960
[ 317.025865][T11927] __kernfs_new_node+0xd2/0x960
[ 317.025907][T11927] ? __pfx___kernfs_new_node+0x10/0x10
[ 317.025954][T11927] ? find_held_lock+0x2b/0x80
[ 317.025978][T11927] ? kernfs_root+0xee/0x2a0
[ 317.026010][T11927] ? kernfs_root+0xee/0x2a0
[ 317.026054][T11927] kernfs_new_node+0x11b/0x1a0
[ 317.026100][T11927] __kernfs_create_file+0x53/0x350
[ 317.026135][T11927] sysfs_add_file_mode_ns+0x207/0x3c0
[ 317.026179][T11927] internal_create_group+0x593/0xf40
[ 317.026226][T11927] ? __pfx_internal_create_group+0x10/0x10
[ 317.026271][T11927] ? kernfs_create_link+0x1bd/0x240
[ 317.026309][T11927] internal_create_groups+0x9d/0x150
[ 317.026352][T11927] device_add+0x71a/0x1950
[ 317.026385][T11927] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 317.026428][T11927] ? __pfx_device_add+0x10/0x10
[ 317.026459][T11927] ? lockdep_init_map_type+0x5c/0x250
[ 317.026497][T11927] ? __init_waitqueue_head+0xca/0x150
[ 317.026544][T11927] netdev_register_kobject+0x1a9/0x3d0
[ 317.026590][T11927] register_netdevice+0x12e0/0x2210
[ 317.026636][T11927] ? __pfx_register_netdevice+0x10/0x10
[ 317.026684][T11927] ? __pfx_loopback_net_init+0x10/0x10
[ 317.026712][T11927] register_netdev+0x34/0x50
[ 317.026758][T11927] loopback_net_init+0x7a/0x170
[ 317.026788][T11927] ? __pfx_loopback_net_init+0x10/0x10
[ 317.026814][T11927] ops_init+0x1e2/0x5f0
[ 317.026856][T11927] setup_net+0x118/0x3a0
[ 317.026895][T11927] ? __pfx_setup_net+0x10/0x10
[ 317.026930][T11927] ? lockdep_init_map_type+0x5c/0x250
[ 317.026968][T11927] ? mutex_init_lockep+0x110/0x150
[ 317.027003][T11927] copy_net_ns+0x46f/0x7c0
[ 317.027028][T11927] create_new_namespaces+0x3ea/0xac0
[ 317.027063][T11927] unshare_nsproxy_namespaces+0xc3/0x1f0
[ 317.027093][T11927] ksys_unshare+0x473/0xad0
[ 317.027127][T11927] ? __pfx_ksys_unshare+0x10/0x10
[ 317.027174][T11927] __x64_sys_unshare+0x31/0x40
[ 317.027206][T11927] do_syscall_64+0x106/0xf80
[ 317.027241][T11927] ? clear_bhb_loop+0x40/0x90
[ 317.027276][T11927] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 317.027305][T11927] RIP: 0033:0x7fc1acd9c799
[ 317.027328][T11927] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 317.027354][T11927] RSP: 002b:00007fc1adc6d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 317.027379][T11927] RAX: ffffffffffffffda RBX: 00007fc1ad015fa0 RCX: 00007fc1acd9c799
[ 317.027396][T11927] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 317.027411][T11927] RBP: 00007fc1ace32c99 R08: 0000000000000000 R09: 0000000000000000
[ 317.027428][T11927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 317.027444][T11927] R13: 00007fc1ad016038 R14: 00007fc1ad015fa0 R15: 00007ffcb4afdf38
[ 317.027478][T11927]
[ 317.364274][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[ 317.370922][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 317.485904][ T30] audit: type=1804 audit(1773777071.100:8): pid=11934 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2196" name="/newroot/543/file0" dev="tmpfs" ino=2767 res=1 errno=0
[ 317.573241][ T30] audit: type=1804 audit(1773777071.120:9): pid=11934 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.2196" name="/newroot/543/file0" dev="tmpfs" ino=2767 res=1 errno=0
[ 317.640182][T11939] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2197'.
[ 317.767840][T11943] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2198'.
[ 318.403611][T11964] netlink: 326 bytes leftover after parsing attributes in process `syz.2.2205'.
[ 319.330299][T11991] FAULT_INJECTION: forcing a failure.
[ 319.330299][T11991] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 319.425283][T11991] CPU: 0 UID: 0 PID: 11991 Comm: syz.2.2215 Tainted: G L syzkaller #0 PREEMPT(full)
[ 319.425310][T11991] Tainted: [L]=SOFTLOCKUP
[ 319.425316][T11991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 319.425325][T11991] Call Trace:
[ 319.425330][T11991]
[ 319.425336][T11991] dump_stack_lvl+0x100/0x190
[ 319.425363][T11991] should_fail_ex.cold+0x5/0xa
[ 319.425378][T11991] ? prepare_alloc_pages+0x16d/0x5f0
[ 319.425396][T11991] should_fail_alloc_page+0xeb/0x140
[ 319.425412][T11991] prepare_alloc_pages+0x1f0/0x5f0
[ 319.425431][T11991] __alloc_frozen_pages_noprof+0x19a/0x2ba0
[ 319.425460][T11991] ? __lock_acquire+0x4a5/0x2630
[ 319.425477][T11991] ? css_rstat_updated+0x1ce/0x5a0
[ 319.425494][T11991] ? __pfx_css_rstat_updated+0x10/0x10
[ 319.425511][T11991] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 319.425537][T11991] ? rcu_is_watching+0x12/0xc0
[ 319.425561][T11991] ? __lock_acquire+0x4a5/0x2630
[ 319.425580][T11991] ? __lock_acquire+0x4a5/0x2630
[ 319.425596][T11991] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 319.425619][T11991] ? policy_nodemask+0xed/0x4f0
[ 319.425635][T11991] alloc_pages_mpol+0x1fb/0x550
[ 319.425654][T11991] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 319.425669][T11991] ? find_held_lock+0x2b/0x80
[ 319.425681][T11991] ? filemap_get_entry+0x1a7/0x3b0
[ 319.425703][T11991] ? filemap_get_entry+0x1a7/0x3b0
[ 319.425725][T11991] folio_alloc_noprof+0x22/0x330
[ 319.425742][T11991] filemap_alloc_folio_noprof.part.0+0x377/0x450
[ 319.425759][T11991] ? __pfx_filemap_get_entry+0x10/0x10
[ 319.425779][T11991] ? filemap_add_folio+0x114/0x690
[ 319.425800][T11991] ? __pfx_filemap_alloc_folio_noprof.part.0+0x10/0x10
[ 319.425820][T11991] ? rcu_is_watching+0x12/0xc0
[ 319.425841][T11991] __filemap_get_folio_mpol+0x6a4/0xe70
[ 319.425868][T11991] ioctx_alloc+0x7e4/0x21d0
[ 319.425891][T11991] ? __pfx_ioctx_alloc+0x10/0x10
[ 319.425912][T11991] __x64_sys_io_setup+0xc9/0x220
[ 319.425929][T11991] do_syscall_64+0x106/0xf80
[ 319.425948][T11991] ? clear_bhb_loop+0x40/0x90
[ 319.425965][T11991] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 319.425980][T11991] RIP: 0033:0x7fc1acd9c799
[ 319.425993][T11991] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 319.426007][T11991] RSP: 002b:00007fc1adc6d028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[ 319.426022][T11991] RAX: ffffffffffffffda RBX: 00007fc1ad015fa0 RCX: 00007fc1acd9c799
[ 319.426032][T11991] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff
[ 319.426041][T11991] RBP: 00007fc1ace32c99 R08: 0000000000000000 R09: 0000000000000000
[ 319.426050][T11991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 319.426058][T11991] R13: 00007fc1ad016038 R14: 00007fc1ad015fa0 R15: 00007ffcb4afdf38
[ 319.426078][T11991]
[ 320.877120][T12018] raw_sendmsg: syz.3.2224 forgot to set AF_INET. Fix it!
[ 321.808745][T12047] sctp: [Deprecated]: syz.2.2234 (pid 12047) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 321.808745][T12047] Use struct sctp_sack_info instead
[ 322.021763][T12049] netlink: 130 bytes leftover after parsing attributes in process `syz.3.2235'.
[ 323.576612][T12059] Process accounting paused
[ 324.408810][T12103] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2253'.
[ 325.462096][T12117] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2258'.
[ 326.742482][T12157] FAULT_INJECTION: forcing a failure.
[ 326.742482][T12157] name failslab, interval 1, probability 0, space 0, times 0
[ 326.756437][T12157] CPU: 0 UID: 0 PID: 12157 Comm: syz.2.2273 Tainted: G L syzkaller #0 PREEMPT(full)
[ 326.756480][T12157] Tainted: [L]=SOFTLOCKUP
[ 326.756488][T12157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 326.756503][T12157] Call Trace:
[ 326.756511][T12157]
[ 326.756520][T12157] dump_stack_lvl+0x100/0x190
[ 326.756561][T12157] should_fail_ex.cold+0x5/0xa
[ 326.756587][T12157] should_failslab+0xc2/0x120
[ 326.756611][T12157] __kmalloc_cache_noprof+0x7a/0x6f0
[ 326.756642][T12157] ? mtdchar_open+0x1e5/0x340
[ 326.756665][T12157] ? find_held_lock+0x2b/0x80
[ 326.756689][T12157] ? chrdev_open+0x10b/0x6a0
[ 326.756715][T12157] mtdchar_open+0x1e5/0x340
[ 326.756741][T12157] ? __pfx_mtdchar_open+0x10/0x10
[ 326.756764][T12157] chrdev_open+0x234/0x6a0
[ 326.756784][T12157] ? __pfx_apparmor_file_open+0x10/0x10
[ 326.756823][T12157] ? __pfx_chrdev_open+0x10/0x10
[ 326.756846][T12157] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 326.756880][T12157] do_dentry_open+0x6d8/0x1660
[ 326.756903][T12157] ? __pfx_chrdev_open+0x10/0x10
[ 326.756935][T12157] vfs_open+0x82/0x3f0
[ 326.756972][T12157] path_openat+0x208c/0x31a0
[ 326.757012][T12157] ? __pfx_path_openat+0x10/0x10
[ 326.757051][T12157] do_file_open+0x20e/0x430
[ 326.757080][T12157] ? __pfx_do_file_open+0x10/0x10
[ 326.757132][T12157] ? alloc_fd+0x476/0x790
[ 326.757160][T12157] ? do_getname+0x191/0x390
[ 326.757190][T12157] do_sys_openat2+0x10d/0x1e0
[ 326.757226][T12157] ? __pfx_do_sys_openat2+0x10/0x10
[ 326.757267][T12157] ? __fget_files+0x21f/0x3d0
[ 326.757300][T12157] __x64_sys_openat+0x12d/0x210
[ 326.757338][T12157] ? __pfx___x64_sys_openat+0x10/0x10
[ 326.757391][T12157] do_syscall_64+0x106/0xf80
[ 326.757433][T12157] ? clear_bhb_loop+0x40/0x90
[ 326.757469][T12157] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 326.757499][T12157] RIP: 0033:0x7fc1acd9c799
[ 326.757524][T12157] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 326.757549][T12157] RSP: 002b:00007fc1adc6d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 326.757571][T12157] RAX: ffffffffffffffda RBX: 00007fc1ad015fa0 RCX: 00007fc1acd9c799
[ 326.757587][T12157] RDX: 0000000000002c00 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 326.757603][T12157] RBP: 00007fc1ace32c99 R08: 0000000000000000 R09: 0000000000000000
[ 326.757619][T12157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 326.757633][T12157] R13: 00007fc1ad016038 R14: 00007fc1ad015fa0 R15: 00007ffcb4afdf38
[ 326.757666][T12157]
[ 327.119806][T12164] netlink: 'syz.3.2274': attribute type 27 has an invalid length.
[ 327.149006][T12164] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2274'.
[ 330.272899][T12233] ima: policy update failed
[ 330.290321][ T30] audit: type=1802 audit(1773777083.930:10): pid=12233 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2298" res=0 errno=0
[ 330.521127][T12242] kvm: kvm [12241]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x11e) = 0x1
[ 331.631612][T12275] FAULT_INJECTION: forcing a failure.
[ 331.631612][T12275] name failslab, interval 1, probability 0, space 0, times 0
[ 331.747522][T12275] CPU: 1 UID: 0 PID: 12275 Comm: syz.3.2313 Tainted: G L syzkaller #0 PREEMPT(full)
[ 331.747569][T12275] Tainted: [L]=SOFTLOCKUP
[ 331.747579][T12275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 331.747595][T12275] Call Trace:
[ 331.747604][T12275]
[ 331.747615][T12275] dump_stack_lvl+0x100/0x190
[ 331.747661][T12275] should_fail_ex.cold+0x5/0xa
[ 331.747693][T12275] should_failslab+0xc2/0x120
[ 331.747722][T12275] kmem_cache_alloc_noprof+0x7b/0x6e0
[ 331.747762][T12275] ? security_file_alloc+0x34/0x2c0
[ 331.747793][T12275] ? trace_kmem_cache_alloc+0xf3/0x120
[ 331.747829][T12275] security_file_alloc+0x34/0x2c0
[ 331.747861][T12275] init_file+0x95/0x480
[ 331.747892][T12275] alloc_empty_file+0x73/0x1c0
[ 331.747927][T12275] alloc_file_pseudo+0x13a/0x230
[ 331.747963][T12275] ? __pfx_alloc_file_pseudo+0x10/0x10
[ 331.747997][T12275] ? tipc_sk_finish_conn+0x600/0x7a0
[ 331.748045][T12275] sock_alloc_file+0x50/0x210
[ 331.748087][T12275] __sys_socketpair+0x321/0x5b0
[ 331.748121][T12275] ? __pfx___sys_socketpair+0x10/0x10
[ 331.748150][T12275] ? __pfx_ksys_mmap_pgoff+0x10/0x10
[ 331.748179][T12275] ? __pfx___x64_sys_futex+0x10/0x10
[ 331.748216][T12275] ? __pfx_do_writev+0x10/0x10
[ 331.748260][T12275] __x64_sys_socketpair+0x96/0x100
[ 331.748291][T12275] ? lockdep_hardirqs_on+0x78/0x100
[ 331.748327][T12275] do_syscall_64+0x106/0xf80
[ 331.748371][T12275] ? clear_bhb_loop+0x40/0x90
[ 331.748404][T12275] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 331.748433][T12275] RIP: 0033:0x7f154379c799
[ 331.748454][T12275] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 331.748478][T12275] RSP: 002b:00007f154457c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[ 331.748503][T12275] RAX: ffffffffffffffda RBX: 00007f1543a15fa0 RCX: 00007f154379c799
[ 331.748519][T12275] RDX: 8000000000000000 RSI: 0000000000000005 RDI: 000000000000001e
[ 331.748534][T12275] RBP: 00007f1543832c99 R08: 0000000000000000 R09: 0000000000000000
[ 331.748550][T12275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 331.748565][T12275] R13: 00007f1543a16038 R14: 00007f1543a15fa0 R15: 00007ffdb085a8b8
[ 331.748600][T12275]
[ 332.075663][ T30] audit: type=1804 audit(1773777085.690:11): pid=12278 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2312" name="/newroot/598/file0" dev="tmpfs" ino=3060 res=1 errno=0
[ 332.119305][ T30] audit: type=1804 audit(1773777085.750:12): pid=12279 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.2312" name="/newroot/598/file0" dev="tmpfs" ino=3060 res=1 errno=0
[ 332.719294][T12294] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2321'.
[ 333.534425][T12324] binder: 12323:12324 ioctl c0306201 2000000000c0 returned -14
[ 334.693325][T12348] UHID_CREATE from different security context by process 1529 (syz.0.2338), this is not allowed.
[ 334.815102][T12350] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2339'.
[ 335.328711][T12371] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2349'.
[ 336.305972][T12383] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 336.313117][T12383] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 336.319659][T12383] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 336.325838][T12383] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 336.464832][T12403] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2360'.
[ 337.723531][T11047] Bluetooth: hci0: command 0x0c1a tx timeout
[ 338.238298][T12448] phram: parameter too long
[ 338.359116][ T51] Bluetooth: hci3: command 0x0c1a tx timeout
[ 338.359536][ T5831] Bluetooth: hci2: command 0x0c1a tx timeout
[ 338.365176][T11047] Bluetooth: hci1: command 0x0c1a tx timeout
[ 338.518707][T12462] netlink: 346 bytes leftover after parsing attributes in process `syz.2.2382'.
[ 338.523209][T12465] netlink: 'syz.1.2381': attribute type 28 has an invalid length.
[ 338.548191][T12465] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2381'.
[ 341.262005][T12533] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2410'.
[ 341.505270][T12540] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2413'.
[ 341.586949][T12546] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2415'.
[ 341.606338][T12546] IPv6: NLM_F_CREATE should be specified when creating new route
[ 341.645414][T12547] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2415'.
[ 341.662440][T12546] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 341.670260][T12546] IPv6: NLM_F_CREATE should be set when creating new route
[ 341.677541][T12546] IPv6: NLM_F_CREATE should be set when creating new route
[ 341.863043][T12547] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 343.382032][T12588] netlink: 130 bytes leftover after parsing attributes in process `syz.2.2432'.
[ 343.519439][T12592] sg_write: data in/out 65500/90 bytes for SCSI command 0x0-- guessing data in;
[ 343.519439][T12592] program syz.3.2434 not setting count and/or reply_len properly
[ 344.336682][T12621] FAULT_INJECTION: forcing a failure.
[ 344.336682][T12621] name failslab, interval 1, probability 0, space 0, times 0
[ 344.394317][T12621] CPU: 0 UID: 0 PID: 12621 Comm: syz.2.2442 Tainted: G L syzkaller #0 PREEMPT(full)
[ 344.394362][T12621] Tainted: [L]=SOFTLOCKUP
[ 344.394373][T12621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 344.394389][T12621] Call Trace:
[ 344.394397][T12621]
[ 344.394406][T12621] dump_stack_lvl+0x100/0x190
[ 344.394470][T12621] should_fail_ex.cold+0x5/0xa
[ 344.394503][T12621] should_failslab+0xc2/0x120
[ 344.394531][T12621] kmem_cache_alloc_noprof+0x7b/0x6e0
[ 344.394568][T12621] ? security_file_alloc+0x34/0x2c0
[ 344.394600][T12621] ? trace_kmem_cache_alloc+0xf3/0x120
[ 344.394636][T12621] security_file_alloc+0x34/0x2c0
[ 344.394668][T12621] init_file+0x95/0x480
[ 344.394700][T12621] alloc_empty_file+0x73/0x1c0
[ 344.394732][T12621] alloc_file_pseudo+0x13a/0x230
[ 344.394764][T12621] ? __pfx_alloc_file_pseudo+0x10/0x10
[ 344.394794][T12621] ? inode_init_always_gfp+0xd0e/0x1040
[ 344.394828][T12621] sock_alloc_file+0x50/0x210
[ 344.394864][T12621] do_accept+0x242/0x530
[ 344.394893][T12621] ? 0xffffffff81000000
[ 344.394911][T12621] ? do_raw_spin_lock+0x128/0x260
[ 344.394949][T12621] ? __pfx_do_accept+0x10/0x10
[ 344.395000][T12621] ? 0xffffffff81000000
[ 344.395016][T12621] __sys_accept4+0x108/0x200
[ 344.395046][T12621] ? __pfx___sys_accept4+0x10/0x10
[ 344.395085][T12621] __x64_sys_accept+0x74/0xb0
[ 344.395114][T12621] ? lockdep_hardirqs_on+0x78/0x100
[ 344.395151][T12621] do_syscall_64+0x106/0xf80
[ 344.395185][T12621] ? clear_bhb_loop+0x40/0x90
[ 344.395218][T12621] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 344.395256][T12621] RIP: 0033:0x7fc1acd9c799
[ 344.395278][T12621] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 344.395306][T12621] RSP: 002b:00007fc1adc6d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002b
[ 344.395332][T12621] RAX: ffffffffffffffda RBX: 00007fc1ad015fa0 RCX: 00007fc1acd9c799
[ 344.395350][T12621] RDX: ffffffff81000000 RSI: ffffffffffffffff RDI: 0000000000000003
[ 344.395368][T12621] RBP: 00007fc1ace32c99 R08: 0000000000000000 R09: 0000000000000000
[ 344.395384][T12621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 344.395398][T12621] R13: 00007fc1ad016038 R14: 00007fc1ad015fa0 R15: 00007ffcb4afdf38
[ 344.395426][T12621] ? 0xffffffff81000000
[ 344.395453][T12621]
[ 345.163512][T12628] zswap: compressor 000 not available
[ 345.296059][T12641] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2449'.
[ 345.309540][T12638] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888078006000 pfn:0x78006
[ 345.323564][T12641] netlink: 'syz.1.2449': attribute type 7 has an invalid length.
[ 345.368785][T12638] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 345.409117][T12638] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000
[ 345.452631][T12638] raw: ffff888078006000 0000000000000000 00000001ffffffff 0000000000000000
[ 345.493503][T12638] page dumped because: unmovable page
[ 345.521874][T12638] page_owner tracks the page as allocated
[ 345.547182][T12638] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xcc0(GFP_KERNEL), pid 8766, tgid 8766 (syz-executor), ts 185702770192, free_ts 185698560437
[ 345.578025][T12647] netlink: 350 bytes leftover after parsing attributes in process `syz.3.2451'.
[ 345.597213][T12638] post_alloc_hook+0x153/0x170
[ 345.617137][T12638] get_page_from_freelist+0x111d/0x3140
[ 345.747239][T12638] __alloc_frozen_pages_noprof+0x27c/0x2ba0
[ 345.766149][T12638] alloc_pages_bulk_noprof+0x782/0x1490
[ 345.786372][T12638] __kasan_populate_vmalloc+0xf0/0x210
[ 345.804480][T12638] alloc_vmap_area+0x95d/0x2bd0
[ 345.822345][T12651] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2453'.
[ 345.832939][T12638] __get_vm_area_node+0x1ca/0x330
[ 345.858283][T12638] __vmalloc_node_range_noprof+0x213/0x1530
[ 345.894930][T12638] vmalloc_user_noprof+0x9e/0xe0
[ 345.916364][T12638] kcov_ioctl+0x4c/0x720
[ 345.949423][T12638] __x64_sys_ioctl+0x18e/0x210
[ 345.968233][T12638] do_syscall_64+0x106/0xf80
[ 345.985721][T12638] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 346.015041][T12638] page last free pid 23 tgid 23 stack trace:
[ 346.039470][T12638] __free_frozen_pages+0x7e1/0x10d0
[ 346.097588][T12638] rcu_core+0x5a2/0x10d0
[ 346.101919][T12638] handle_softirqs+0x1eb/0x9e0
[ 346.106728][T12638] run_ksoftirqd+0x38/0x60
[ 346.111393][T12638] smpboot_thread_fn+0x3d3/0xaa0
[ 346.116389][T12638] kthread+0x370/0x450
[ 346.136427][T12638] ret_from_fork+0x754/0xd80
[ 346.141357][T12638] ret_from_fork_asm+0x1a/0x30
[ 348.035226][T12694] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2467'.
[ 349.169304][T12730] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2482'.
[ 349.615102][T12743] input: j�J�Ǹ-¶š9ã%vø“û¨lÐQ J86Ö�‘ as /devices/virtual/input/input8
[ 349.861079][T12745] FAULT_INJECTION: forcing a failure.
[ 349.861079][T12745] name failslab, interval 1, probability 0, space 0, times 0
[ 349.909186][T12745] CPU: 1 UID: 0 PID: 12745 Comm: syz.0.2488 Tainted: G L syzkaller #0 PREEMPT(full)
[ 349.909235][T12745] Tainted: [L]=SOFTLOCKUP
[ 349.909246][T12745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 349.909263][T12745] Call Trace:
[ 349.909273][T12745]
[ 349.909284][T12745] dump_stack_lvl+0x100/0x190
[ 349.909331][T12745] should_fail_ex.cold+0x5/0xa
[ 349.909364][T12745] should_failslab+0xc2/0x120
[ 349.909401][T12745] __kmalloc_node_track_caller_noprof+0xe3/0x850
[ 349.909446][T12745] ? __devinet_sysctl_register+0xbc/0x360
[ 349.909497][T12745] kmemdup_noprof+0x29/0x60
[ 349.909540][T12745] __devinet_sysctl_register+0xbc/0x360
[ 349.909584][T12745] ? trace_kmalloc+0x101/0x130
[ 349.909613][T12745] ? __pfx___devinet_sysctl_register+0x10/0x10
[ 349.909662][T12745] ? __asan_memcpy+0x3c/0x60
[ 349.909701][T12745] devinet_init_net+0x334/0x8d0
[ 349.909742][T12745] ? __pfx_devinet_init_net+0x10/0x10
[ 349.909781][T12745] ops_init+0x1e2/0x5f0
[ 349.909823][T12745] setup_net+0x118/0x3a0
[ 349.909862][T12745] ? __pfx_setup_net+0x10/0x10
[ 349.909898][T12745] ? lockdep_init_map_type+0x5c/0x250
[ 349.909934][T12745] ? mutex_init_lockep+0x110/0x150
[ 349.909976][T12745] copy_net_ns+0x46f/0x7c0
[ 349.910005][T12745] create_new_namespaces+0x3ea/0xac0
[ 349.910042][T12745] unshare_nsproxy_namespaces+0xc3/0x1f0
[ 349.910075][T12745] ksys_unshare+0x473/0xad0
[ 349.910111][T12745] ? __pfx_ksys_unshare+0x10/0x10
[ 349.910158][T12745] __x64_sys_unshare+0x31/0x40
[ 349.910190][T12745] do_syscall_64+0x106/0xf80
[ 349.910226][T12745] ? clear_bhb_loop+0x40/0x90
[ 349.910261][T12745] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 349.910290][T12745] RIP: 0033:0x7f0eec39c799
[ 349.910314][T12745] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 349.910340][T12745] RSP: 002b:00007f0eed2e4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 349.910367][T12745] RAX: ffffffffffffffda RBX: 00007f0eec615fa0 RCX: 00007f0eec39c799
[ 349.910393][T12745] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 349.910409][T12745] RBP: 00007f0eec432c99 R08: 0000000000000000 R09: 0000000000000000
[ 349.910426][T12745] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 349.910443][T12745] R13: 00007f0eec616038 R14: 00007f0eec615fa0 R15: 00007ffc3d832588
[ 349.910481][T12745]
[ 351.144796][T12778] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2498'.
[ 351.243258][T12782] ubi0: attaching mtd0
[ 351.272945][T12782] ubi0: scanning is finished
[ 351.281620][T12782] ubi0 error: ubi_read_volume_table: the layout volume was not found
[ 351.459161][T12782] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 351.588457][T12794] syz.2.2504 uses obsolete (PF_INET,SOCK_PACKET)
[ 351.602010][T12793] FAULT_INJECTION: forcing a failure.
[ 351.602010][T12793] name failslab, interval 1, probability 0, space 0, times 0
[ 351.627974][T12793] CPU: 0 UID: 0 PID: 12793 Comm: syz.0.2505 Tainted: G L syzkaller #0 PREEMPT(full)
[ 351.628019][T12793] Tainted: [L]=SOFTLOCKUP
[ 351.628029][T12793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 351.628054][T12793] Call Trace:
[ 351.628093][T12793]
[ 351.628104][T12793] dump_stack_lvl+0x100/0x190
[ 351.628182][T12793] should_fail_ex.cold+0x5/0xa
[ 351.628231][T12793] ? handler_new_ref+0x1ab/0xc60
[ 351.628410][T12793] should_failslab+0xc2/0x120
[ 351.628462][T12793] __kmalloc_noprof+0xe0/0x850
[ 351.628522][T12793] handler_new_ref+0x1ab/0xc60
[ 351.628574][T12793] v4l2_ctrl_new+0xe67/0x23a0
[ 351.628627][T12793] ? __pfx_v4l2_ctrl_new+0x10/0x10
[ 351.628676][T12793] ? __sanitizer_cov_trace_switch+0x12/0x90
[ 351.628742][T12793] v4l2_ctrl_new_std+0x1bb/0x290
[ 351.628794][T12793] ? __pfx_v4l2_ctrl_new_std+0x10/0x10
[ 351.628858][T12793] ? v4l2_ctrl_handler_init_class+0x23b/0x350
[ 351.628901][T12793] ? media_request_object_init+0x105/0x180
[ 351.629000][T12793] vim2m_open+0x140/0x830
[ 351.629093][T12793] v4l2_open+0x1d2/0x490
[ 351.629158][T12793] ? __pfx_v4l2_open+0x10/0x10
[ 351.629198][T12793] chrdev_open+0x234/0x6a0
[ 351.629232][T12793] ? __pfx_apparmor_file_open+0x10/0x10
[ 351.629349][T12793] ? __pfx_chrdev_open+0x10/0x10
[ 351.629380][T12793] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 351.629427][T12793] do_dentry_open+0x6d8/0x1660
[ 351.629460][T12793] ? __pfx_chrdev_open+0x10/0x10
[ 351.629497][T12793] vfs_open+0x82/0x3f0
[ 351.629536][T12793] path_openat+0x208c/0x31a0
[ 351.629576][T12793] ? __pfx_path_openat+0x10/0x10
[ 351.629619][T12793] do_file_open+0x20e/0x430
[ 351.629650][T12793] ? __pfx_do_file_open+0x10/0x10
[ 351.629704][T12793] ? alloc_fd+0x476/0x790
[ 351.629741][T12793] ? do_getname+0x191/0x390
[ 351.629778][T12793] do_sys_openat2+0x10d/0x1e0
[ 351.629813][T12793] ? __pfx_do_sys_openat2+0x10/0x10
[ 351.629879][T12793] ? __fget_files+0x21f/0x3d0
[ 351.629913][T12793] __x64_sys_openat+0x12d/0x210
[ 351.629950][T12793] ? __pfx___x64_sys_openat+0x10/0x10
[ 351.629999][T12793] do_syscall_64+0x106/0xf80
[ 351.630110][T12793] ? clear_bhb_loop+0x40/0x90
[ 351.630158][T12793] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 351.630188][T12793] RIP: 0033:0x7f0eec39c799
[ 351.630212][T12793] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 351.630238][T12793] RSP: 002b:00007f0eed2e4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 351.630306][T12793] RAX: ffffffffffffffda RBX: 00007f0eec615fa0 RCX: 00007f0eec39c799
[ 351.630325][T12793] RDX: 000000000002aa01 RSI: 0000200000000180 RDI: ffffffffffffff9c
[ 351.630343][T12793] RBP: 00007f0eec432c99 R08: 0000000000000000 R09: 0000000000000000
[ 351.630359][T12793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 351.630375][T12793] R13: 00007f0eec616038 R14: 00007f0eec615fa0 R15: 00007ffc3d832588
[ 351.630412][T12793]
[ 352.158954][T12802] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2510'.
[ 352.192885][T12804] netlink: 130 bytes leftover after parsing attributes in process `syz.0.2509'.
[ 353.434089][T12841] FAULT_INJECTION: forcing a failure.
[ 353.434089][T12841] name failslab, interval 1, probability 0, space 0, times 0
[ 353.455007][T12841] CPU: 1 UID: 0 PID: 12841 Comm: syz.3.2521 Tainted: G L syzkaller #0 PREEMPT(full)
[ 353.455048][T12841] Tainted: [L]=SOFTLOCKUP
[ 353.455058][T12841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 353.455070][T12841] Call Trace:
[ 353.455079][T12841]
[ 353.455089][T12841] dump_stack_lvl+0x100/0x190
[ 353.455132][T12841] should_fail_ex.cold+0x5/0xa
[ 353.455168][T12841] ? constrain_params_by_rules+0x175/0xcc0
[ 353.455299][T12841] should_failslab+0xc2/0x120
[ 353.455330][T12841] __kmalloc_noprof+0xe0/0x850
[ 353.455378][T12841] constrain_params_by_rules+0x175/0xcc0
[ 353.455415][T12841] ? arch_stack_walk+0xa6/0xf0
[ 353.455470][T12841] ? __pfx_constrain_params_by_rules+0x10/0x10
[ 353.455506][T12841] ? stack_trace_save+0x8e/0xc0
[ 353.455549][T12841] ? kfree+0x1f6/0x6b0
[ 353.455579][T12841] ? snd_pcm_hw_param_near.constprop.0+0x573/0x850
[ 353.455716][T12841] ? snd_pcm_oss_make_ready_locked+0xb7/0x130
[ 353.455746][T12841] ? snd_pcm_oss_read+0x3d4/0x730
[ 353.455775][T12841] ? vfs_read+0x1e4/0xb30
[ 353.455812][T12841] ? ksys_read+0x12a/0x250
[ 353.455834][T12841] ? do_syscall_64+0x106/0xf80
[ 353.455870][T12841] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 353.455898][T12841] ? snd_interval_refine+0x2d0/0x580
[ 353.455944][T12841] snd_pcm_hw_refine+0x7e7/0xad0
[ 353.455989][T12841] ? __pfx_snd_pcm_hw_refine+0x10/0x10
[ 353.456048][T12841] snd_pcm_hw_param_last+0x2b2/0x660
[ 353.456110][T12841] snd_pcm_hw_param_near.constprop.0+0x546/0x850
[ 353.456144][T12841] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[ 353.456187][T12841] ? calc_src_frames.isra.0+0x17c/0x1c0
[ 353.456228][T12841] snd_pcm_oss_change_params_locked+0x193a/0x39f0
[ 353.456277][T12841] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[ 353.456338][T12841] snd_pcm_oss_make_ready_locked+0xb7/0x130
[ 353.456373][T12841] snd_pcm_oss_read+0x3d4/0x730
[ 353.456410][T12841] ? __pfx_snd_pcm_oss_read+0x10/0x10
[ 353.456444][T12841] vfs_read+0x1e4/0xb30
[ 353.456488][T12841] ? __pfx_vfs_read+0x10/0x10
[ 353.456522][T12841] ? find_held_lock+0x2b/0x80
[ 353.456557][T12841] ? __fget_files+0x215/0x3d0
[ 353.456582][T12841] ? __fget_files+0x215/0x3d0
[ 353.456613][T12841] ? __fget_files+0x21f/0x3d0
[ 353.456647][T12841] ksys_read+0x12a/0x250
[ 353.456670][T12841] ? __pfx_ksys_read+0x10/0x10
[ 353.456704][T12841] do_syscall_64+0x106/0xf80
[ 353.456736][T12841] ? clear_bhb_loop+0x40/0x90
[ 353.456769][T12841] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 353.456797][T12841] RIP: 0033:0x7f154379c799
[ 353.456820][T12841] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 353.456845][T12841] RSP: 002b:00007f154457c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 353.456872][T12841] RAX: ffffffffffffffda RBX: 00007f1543a15fa0 RCX: 00007f154379c799
[ 353.456891][T12841] RDX: 0000000000008080 RSI: 0000000000000000 RDI: 0000000000000003
[ 353.456907][T12841] RBP: 00007f1543832c99 R08: 0000000000000000 R09: 0000000000000000
[ 353.456924][T12841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 353.456940][T12841] R13: 00007f1543a16038 R14: 00007f1543a15fa0 R15: 00007ffdb085a8b8
[ 353.456972][T12841]
[ 353.850513][T12839] Process accounting resumed
[ 353.985029][T12849] random: crng reseeded on system resumption
[ 355.677976][T12881] netlink: 146 bytes leftover after parsing attributes in process `syz.0.2534'.
[ 356.227962][T12898] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 356.260192][T12898] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 356.688418][T12913] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2546'.
[ 356.938641][T12918] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2548'.
[ 358.548997][T12965] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 358.772524][T12973] sg_write: data in/out 220/90 bytes for SCSI command 0x0-- guessing data in;
[ 358.772524][T12973] program syz.0.2568 not setting count and/or reply_len properly
[ 359.270238][T12984] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 361.480477][T13028] FAULT_INJECTION: forcing a failure.
[ 361.480477][T13028] name failslab, interval 1, probability 0, space 0, times 0
[ 361.518634][T13028] CPU: 1 UID: 0 PID: 13028 Comm: syz.3.2586 Tainted: G L syzkaller #0 PREEMPT(full)
[ 361.518684][T13028] Tainted: [L]=SOFTLOCKUP
[ 361.518693][T13028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 361.518710][T13028] Call Trace:
[ 361.518720][T13028]
[ 361.518731][T13028] dump_stack_lvl+0x100/0x190
[ 361.518780][T13028] should_fail_ex.cold+0x5/0xa
[ 361.518813][T13028] should_failslab+0xc2/0x120
[ 361.518843][T13028] __kmalloc_node_track_caller_noprof+0xe3/0x850
[ 361.518888][T13028] ? kasprintf+0xc7/0x100
[ 361.519011][T13028] kvasprintf+0xbc/0x150
[ 361.519043][T13028] ? __pfx_kvasprintf+0x10/0x10
[ 361.519078][T13028] ? __pfx_vsnprintf+0x10/0x10
[ 361.519169][T13028] ? kasan_save_stack+0x30/0x50
[ 361.519209][T13028] ? kasan_save_track+0x14/0x30
[ 361.519247][T13028] ? __kasan_kmalloc+0xaa/0xb0
[ 361.519285][T13028] ? uevent_show+0x166/0x3a0
[ 361.519380][T13028] kasprintf+0xc7/0x100
[ 361.519412][T13028] ? __pfx_kasprintf+0x10/0x10
[ 361.519446][T13028] ? __pfx_add_uevent_var+0x10/0x10
[ 361.519518][T13028] ? __pfx_dvb_devnode+0x10/0x10
[ 361.519589][T13028] device_get_devnode+0x166/0x2c0
[ 361.519652][T13028] dev_uevent+0x4c6/0x8a0
[ 361.519686][T13028] ? __pfx_dev_uevent+0x10/0x10
[ 361.519735][T13028] ? __pfx_uevent_show+0x10/0x10
[ 361.519774][T13028] uevent_show+0x1ca/0x3a0
[ 361.519817][T13028] ? __pfx_uevent_show+0x10/0x10
[ 361.519855][T13028] dev_attr_show+0x52/0xa0
[ 361.519887][T13028] ? __pfx_dev_attr_show+0x10/0x10
[ 361.519917][T13028] sysfs_kf_seq_show+0x217/0x3a0
[ 361.519983][T13028] seq_read_iter+0x32f/0x1270
[ 361.520041][T13028] kernfs_fop_read_iter+0x46c/0x610
[ 361.520072][T13028] ? rw_verify_area+0xce/0x6d0
[ 361.520117][T13028] ? __pfx_kernfs_fop_read_iter+0x10/0x10
[ 361.520151][T13028] vfs_read+0x825/0xb30
[ 361.520198][T13028] ? __pfx_vfs_read+0x10/0x10
[ 361.520265][T13028] ksys_read+0x12a/0x250
[ 361.520289][T13028] ? __pfx_ksys_read+0x10/0x10
[ 361.520326][T13028] do_syscall_64+0x106/0xf80
[ 361.520361][T13028] ? clear_bhb_loop+0x40/0x90
[ 361.520395][T13028] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 361.520423][T13028] RIP: 0033:0x7f154379c799
[ 361.520448][T13028] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 361.520476][T13028] RSP: 002b:00007f154457c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 361.520503][T13028] RAX: ffffffffffffffda RBX: 00007f1543a15fa0 RCX: 00007f154379c799
[ 361.520522][T13028] RDX: 0000000000000086 RSI: 00002000000003c0 RDI: 0000000000000005
[ 361.520539][T13028] RBP: 00007f1543832c99 R08: 0000000000000000 R09: 0000000000000000
[ 361.520556][T13028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 361.520573][T13028] R13: 00007f1543a16038 R14: 00007f1543a15fa0 R15: 00007ffdb085a8b8
[ 361.520610][T13028]
[ 362.159034][T13036] netlink: 146 bytes leftover after parsing attributes in process `syz.0.2589'.
[ 362.948339][T13054] netlink: 'syz.1.2593': attribute type 27 has an invalid length.
[ 362.967311][T13054] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2593'.
[ 365.796106][T13126] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2619'.
[ 366.117500][T13137] FAULT_INJECTION: forcing a failure.
[ 366.117500][T13137] name failslab, interval 1, probability 0, space 0, times 0
[ 366.159448][T13137] CPU: 1 UID: 0 PID: 13137 Comm: syz.2.2623 Tainted: G L syzkaller #0 PREEMPT(full)
[ 366.159495][T13137] Tainted: [L]=SOFTLOCKUP
[ 366.159505][T13137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 366.159520][T13137] Call Trace:
[ 366.159531][T13137]
[ 366.159542][T13137] dump_stack_lvl+0x100/0x190
[ 366.159597][T13137] should_fail_ex.cold+0x5/0xa
[ 366.159631][T13137] should_failslab+0xc2/0x120
[ 366.159661][T13137] __kmalloc_cache_noprof+0x7a/0x6f0
[ 366.159697][T13137] ? mon_text_open+0x1d9/0x510
[ 366.159814][T13137] ? lockdep_init_map_type+0x5c/0x250
[ 366.159857][T13137] ? __pfx_mon_text_open+0x10/0x10
[ 366.159881][T13137] mon_text_open+0x1d9/0x510
[ 366.159907][T13137] ? __pfx_mon_text_open+0x10/0x10
[ 366.159935][T13137] ? __debugfs_file_get+0x1fc/0x860
[ 366.160050][T13137] ? __pfx___debugfs_file_get+0x10/0x10
[ 366.160086][T13137] ? __pfx_apparmor_file_open+0x10/0x10
[ 366.160126][T13137] ? lockdown_is_locked_down+0x3d/0x140
[ 366.160196][T13137] ? bpf_lsm_locked_down+0x9/0x10
[ 366.160239][T13137] ? __pfx_mon_text_open+0x10/0x10
[ 366.160263][T13137] full_proxy_open_regular+0x1b6/0x370
[ 366.160309][T13137] do_dentry_open+0x6d8/0x1660
[ 366.160336][T13137] ? __pfx_full_proxy_open_regular+0x10/0x10
[ 366.160387][T13137] vfs_open+0x82/0x3f0
[ 366.160424][T13137] path_openat+0x208c/0x31a0
[ 366.160477][T13137] ? __pfx_path_openat+0x10/0x10
[ 366.160520][T13137] do_file_open+0x20e/0x430
[ 366.160552][T13137] ? __pfx_do_file_open+0x10/0x10
[ 366.160615][T13137] ? alloc_fd+0x476/0x790
[ 366.160645][T13137] ? do_getname+0x191/0x390
[ 366.160683][T13137] do_sys_openat2+0x10d/0x1e0
[ 366.160718][T13137] ? __pfx_do_sys_openat2+0x10/0x10
[ 366.160755][T13137] ? __fget_files+0x21f/0x3d0
[ 366.160789][T13137] __x64_sys_openat+0x12d/0x210
[ 366.160824][T13137] ? __pfx___x64_sys_openat+0x10/0x10
[ 366.160874][T13137] do_syscall_64+0x106/0xf80
[ 366.160910][T13137] ? clear_bhb_loop+0x40/0x90
[ 366.160943][T13137] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 366.160973][T13137] RIP: 0033:0x7fc1acd9c799
[ 366.160996][T13137] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 366.161024][T13137] RSP: 002b:00007fc1adc6d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 366.161052][T13137] RAX: ffffffffffffffda RBX: 00007fc1ad015fa0 RCX: 00007fc1acd9c799
[ 366.161071][T13137] RDX: 0000000000080080 RSI: 0000200000000280 RDI: ffffffffffffff9c
[ 366.161088][T13137] RBP: 00007fc1ace32c99 R08: 0000000000000000 R09: 0000000000000000
[ 366.161105][T13137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 366.161121][T13137] R13: 00007fc1ad016038 R14: 00007fc1ad015fa0 R15: 00007ffcb4afdf38
[ 366.161160][T13137]
[ 366.653387][T13141] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2624'.
[ 366.704733][T13141] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2624'.
[ 367.251549][T13169] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2635'.
[ 367.261289][T13169] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2635'.
[ 367.381549][T13173] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2636'.
[ 367.802964][T13193] netlink: 25 bytes leftover after parsing attributes in process `syz.3.2645'.
[ 368.013273][T13199] netlink: 354 bytes leftover after parsing attributes in process `syz.1.2647'.
[ 368.236134][T13210] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2652'.
[ 368.376560][T13215] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2654'.
[ 368.413019][T13215] netlink: 25 bytes leftover after parsing attributes in process `syz.3.2654'.
[ 368.529757][T13223] netlink: 'syz.3.2658': attribute type 29 has an invalid length.
[ 368.538112][T13223] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2658'.
[ 368.815072][T13230] sg_write: data in/out 220/90 bytes for SCSI command 0x0-- guessing data in;
[ 368.815072][T13230] program syz.3.2661 not setting count and/or reply_len properly
[ 368.838266][T13232] netlink: 25 bytes leftover after parsing attributes in process `syz.0.2662'.
[ 371.147173][T13292] syz.0.2690 (13292): /proc/13291/oom_adj is deprecated, please use /proc/13291/oom_score_adj instead.
[ 372.227855][T13322] FAULT_INJECTION: forcing a failure.
[ 372.227855][T13322] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 372.267197][T13322] CPU: 1 UID: 0 PID: 13322 Comm: syz.3.2695 Tainted: G L syzkaller #0 PREEMPT(full)
[ 372.267240][T13322] Tainted: [L]=SOFTLOCKUP
[ 372.267248][T13322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 372.267262][T13322] Call Trace:
[ 372.267272][T13322]
[ 372.267282][T13322] dump_stack_lvl+0x100/0x190
[ 372.267334][T13322] should_fail_ex.cold+0x5/0xa
[ 372.267364][T13322] _copy_from_user+0x2e/0xd0
[ 372.267503][T13322] memdup_user+0x6b/0xe0
[ 372.267538][T13322] strndup_user+0x78/0xe0
[ 372.267565][T13322] __x64_sys_fsopen+0x9e/0x220
[ 372.267601][T13322] do_syscall_64+0x106/0xf80
[ 372.267638][T13322] ? clear_bhb_loop+0x40/0x90
[ 372.267677][T13322] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 372.267701][T13322] RIP: 0033:0x7f154379c799
[ 372.267724][T13322] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 372.267752][T13322] RSP: 002b:00007f154457c028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae
[ 372.267779][T13322] RAX: ffffffffffffffda RBX: 00007f1543a15fa0 RCX: 00007f154379c799
[ 372.267797][T13322] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 372.267814][T13322] RBP: 00007f1543832c99 R08: 0000000000000000 R09: 0000000000000000
[ 372.267831][T13322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 372.267848][T13322] R13: 00007f1543a16038 R14: 00007f1543a15fa0 R15: 00007ffdb085a8b8
[ 372.267884][T13322]
[ 373.559958][T13339] FAULT_INJECTION: forcing a failure.
[ 373.559958][T13339] name failslab, interval 1, probability 0, space 0, times 0
[ 373.576248][T13339] CPU: 0 UID: 0 PID: 13339 Comm: syz.0.2702 Tainted: G L syzkaller #0 PREEMPT(full)
[ 373.576295][T13339] Tainted: [L]=SOFTLOCKUP
[ 373.576305][T13339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 373.576323][T13339] Call Trace:
[ 373.576331][T13339]
[ 373.576342][T13339] dump_stack_lvl+0x100/0x190
[ 373.576391][T13339] should_fail_ex.cold+0x5/0xa
[ 373.576422][T13339] should_failslab+0xc2/0x120
[ 373.576452][T13339] kmem_cache_alloc_node_noprof+0x81/0x6f0
[ 373.576494][T13339] ? __alloc_skb+0x140/0x710
[ 373.576622][T13339] __alloc_skb+0x140/0x710
[ 373.576656][T13339] ? __alloc_skb+0x5b7/0x710
[ 373.576690][T13339] ? __pfx___alloc_skb+0x10/0x10
[ 373.576725][T13339] ? __pfx___register_sysctl_table+0x10/0x10
[ 373.576764][T13339] ? is_module_address+0x69/0xf0
[ 373.576807][T13339] inet_netconf_notify_devconf+0x9d/0x170
[ 373.576927][T13339] __devinet_sysctl_register+0x227/0x360
[ 373.576971][T13339] ? trace_kmalloc+0x101/0x130
[ 373.576997][T13339] ? __pfx___devinet_sysctl_register+0x10/0x10
[ 373.577051][T13339] ? __asan_memcpy+0x3c/0x60
[ 373.577090][T13339] devinet_init_net+0x334/0x8d0
[ 373.577131][T13339] ? __pfx_devinet_init_net+0x10/0x10
[ 373.577168][T13339] ops_init+0x1e2/0x5f0
[ 373.577264][T13339] setup_net+0x118/0x3a0
[ 373.577303][T13339] ? __pfx_setup_net+0x10/0x10
[ 373.577341][T13339] ? lockdep_init_map_type+0x5c/0x250
[ 373.577379][T13339] ? mutex_init_lockep+0x110/0x150
[ 373.577421][T13339] copy_net_ns+0x46f/0x7c0
[ 373.577451][T13339] create_new_namespaces+0x3ea/0xac0
[ 373.577499][T13339] unshare_nsproxy_namespaces+0xc3/0x1f0
[ 373.577531][T13339] ksys_unshare+0x473/0xad0
[ 373.577573][T13339] ? __pfx_ksys_unshare+0x10/0x10
[ 373.577621][T13339] __x64_sys_unshare+0x31/0x40
[ 373.577654][T13339] do_syscall_64+0x106/0xf80
[ 373.577690][T13339] ? clear_bhb_loop+0x40/0x90
[ 373.577724][T13339] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 373.577751][T13339] RIP: 0033:0x7f0eec39c799
[ 373.577775][T13339] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 373.577803][T13339] RSP: 002b:00007f0eed2e4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 373.577830][T13339] RAX: ffffffffffffffda RBX: 00007f0eec615fa0 RCX: 00007f0eec39c799
[ 373.577849][T13339] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 373.577866][T13339] RBP: 00007f0eec432c99 R08: 0000000000000000 R09: 0000000000000000
[ 373.577884][T13339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 373.577901][T13339] R13: 00007f0eec616038 R14: 00007f0eec615fa0 R15: 00007ffc3d832588
[ 373.577940][T13339]
[ 373.914858][T13346] base or size exceeds the MTRR width
[ 374.132112][T13350] FAULT_INJECTION: forcing a failure.
[ 374.132112][T13350] name failslab, interval 1, probability 0, space 0, times 0
[ 374.155351][T13350] CPU: 0 UID: 0 PID: 13350 Comm: syz.3.2708 Tainted: G L syzkaller #0 PREEMPT(full)
[ 374.155398][T13350] Tainted: [L]=SOFTLOCKUP
[ 374.155408][T13350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 374.155424][T13350] Call Trace:
[ 374.155433][T13350]
[ 374.155444][T13350] dump_stack_lvl+0x100/0x190
[ 374.155490][T13350] should_fail_ex.cold+0x5/0xa
[ 374.155522][T13350] should_failslab+0xc2/0x120
[ 374.155551][T13350] kmem_cache_alloc_noprof+0x7b/0x6e0
[ 374.155588][T13350] ? locks_get_lock_context+0x94/0x640
[ 374.155633][T13350] locks_get_lock_context+0x94/0x640
[ 374.155679][T13350] posix_lock_inode+0xcc/0x2440
[ 374.155722][T13350] ? __pfx_posix_lock_inode+0x10/0x10
[ 374.155762][T13350] vfs_lock_file+0xfb/0x150
[ 374.155792][T13350] fcntl_setlk+0x782/0xe40
[ 374.155825][T13350] ? __pfx_fcntl_setlk+0x10/0x10
[ 374.155858][T13350] ? __might_fault+0xc5/0x140
[ 374.155891][T13350] ? __might_fault+0xc5/0x140
[ 374.155941][T13350] do_fcntl+0xf39/0x1670
[ 374.155976][T13350] ? __pfx_do_fcntl+0x10/0x10
[ 374.156017][T13350] ? __fget_files+0x215/0x3d0
[ 374.156055][T13350] ? tomoyo_file_fcntl+0x6c/0xc0
[ 374.156188][T13350] __x64_sys_fcntl+0x163/0x200
[ 374.156228][T13350] do_syscall_64+0x106/0xf80
[ 374.156265][T13350] ? clear_bhb_loop+0x40/0x90
[ 374.156299][T13350] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 374.156327][T13350] RIP: 0033:0x7f154379c799
[ 374.156350][T13350] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 374.156377][T13350] RSP: 002b:00007f154457c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[ 374.156404][T13350] RAX: ffffffffffffffda RBX: 00007f1543a15fa0 RCX: 00007f154379c799
[ 374.156423][T13350] RDX: 000000000000000d RSI: 0000000000000026 RDI: 0000000000000003
[ 374.156440][T13350] RBP: 00007f1543832c99 R08: 0000000000000000 R09: 0000000000000000
[ 374.156457][T13350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 374.156474][T13350] R13: 00007f1543a16038 R14: 00007f1543a15fa0 R15: 00007ffdb085a8b8
[ 374.156511][T13350]
[ 374.778261][T13363] __nla_validate_parse: 3 callbacks suppressed
[ 374.778285][T13363] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2719'.
[ 375.931005][T13392] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 377.422392][T13437] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2738'.
[ 378.604810][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[ 378.611381][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 380.541331][T13503] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2763'.
[ 382.057575][T13532] netlink: 110 bytes leftover after parsing attributes in process `syz.2.2774'.
[ 382.261261][T13535] mkiss: ax0: crc mode is auto.
[ 382.407822][T13537] netlink: 322 bytes leftover after parsing attributes in process `syz.3.2776'.
[ 382.789369][T13547] FAULT_INJECTION: forcing a failure.
[ 382.789369][T13547] name failslab, interval 1, probability 0, space 0, times 0
[ 382.875739][T13547] CPU: 1 UID: 0 PID: 13547 Comm: syz.3.2779 Tainted: G L syzkaller #0 PREEMPT(full)
[ 382.875788][T13547] Tainted: [L]=SOFTLOCKUP
[ 382.875799][T13547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 382.875815][T13547] Call Trace:
[ 382.875825][T13547]
[ 382.875836][T13547] dump_stack_lvl+0x100/0x190
[ 382.875884][T13547] should_fail_ex.cold+0x5/0xa
[ 382.875917][T13547] should_failslab+0xc2/0x120
[ 382.875946][T13547] __kmalloc_cache_noprof+0x7a/0x6f0
[ 382.875982][T13547] ? __kthread_create_on_node+0xce/0x3f0
[ 382.876013][T13547] ? lockdep_init_map_type+0x5c/0x250
[ 382.876061][T13547] ? __pfx_tomoyo_gc_thread+0x10/0x10
[ 382.876091][T13547] __kthread_create_on_node+0xce/0x3f0
[ 382.876126][T13547] ? __pfx___kthread_create_on_node+0x10/0x10
[ 382.876177][T13547] ? __pfx_tomoyo_gc_thread+0x10/0x10
[ 382.876207][T13547] kthread_create_on_node+0xc7/0x100
[ 382.876239][T13547] ? __pfx_kthread_create_on_node+0x10/0x10
[ 382.876272][T13547] ? lockdep_hardirqs_on+0x78/0x100
[ 382.876385][T13547] ? find_held_lock+0x2b/0x80
[ 382.876410][T13547] ? tomoyo_notify_gc+0xc6/0x480
[ 382.876450][T13547] tomoyo_notify_gc+0x102/0x480
[ 382.876479][T13547] ? ima_iint_find+0xe9/0x130
[ 382.876582][T13547] ? __pfx_tomoyo_release+0x10/0x10
[ 382.876620][T13547] tomoyo_release+0x31/0x40
[ 382.876654][T13547] __fput+0x3ff/0xb40
[ 382.876693][T13547] task_work_run+0x150/0x240
[ 382.876732][T13547] ? __pfx_task_work_run+0x10/0x10
[ 382.876788][T13547] exit_to_user_mode_loop+0x100/0x4a0
[ 382.876836][T13547] do_syscall_64+0x668/0xf80
[ 382.876874][T13547] ? clear_bhb_loop+0x40/0x90
[ 382.876907][T13547] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 382.876935][T13547] RIP: 0033:0x7f154379c799
[ 382.876957][T13547] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 382.876982][T13547] RSP: 002b:00007f154457c028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 382.877007][T13547] RAX: 0000000000000000 RBX: 00007f1543a15fa0 RCX: 00007f154379c799
[ 382.877023][T13547] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[ 382.877036][T13547] RBP: 00007f1543832c99 R08: 0000000000000000 R09: 0000000000000000
[ 382.877060][T13547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 382.877076][T13547] R13: 00007f1543a16038 R14: 00007f1543a15fa0 R15: 00007ffdb085a8b8
[ 382.877113][T13547]
[ 383.932736][T13556] Process accounting paused
[ 387.311018][T13609] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2808'.
[ 387.604692][T13613] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2811'.
[ 387.632564][T13613] netlink: 13 bytes leftover after parsing attributes in process `syz.0.2811'.
[ 387.652475][T13613] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2811'.
[ 388.305178][T13634] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2812'.
[ 388.979508][T13653] netlink: 'syz.2.2819': attribute type 21 has an invalid length.
[ 388.995077][T13653] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2819'.
[ 389.754037][T13666] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2824'.
[ 389.774732][T13666] netlink: 17 bytes leftover after parsing attributes in process `syz.1.2824'.
[ 390.642892][T13693] netlink: 146 bytes leftover after parsing attributes in process `syz.1.2834'.
[ 390.777973][T13703] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2838'.
[ 392.586867][T13731] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 392.603500][T13731] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 392.627449][T13731] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 392.641817][T13731] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 392.882728][T13755] sg_write: data in/out 1886744398/84 bytes for SCSI command 0x72-- guessing data in;
[ 392.882728][T13755] program syz.0.2856 not setting count and/or reply_len properly
[ 393.188077][T13768] mkiss: ax0: crc mode is auto.
[ 393.449127][T13774] mkiss: ax0: crc mode is auto.
[ 393.681326][T13780] netlink: 74 bytes leftover after parsing attributes in process `syz.2.2866'.
[ 393.870782][T13791] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2872'.
[ 393.957167][T11047] Bluetooth: hci0: command 0x0c1a tx timeout
[ 394.003100][T13797] mkiss: ax0: crc mode is auto.
[ 394.085592][T13802] FAULT_INJECTION: forcing a failure.
[ 394.085592][T13802] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 394.101445][T13802] CPU: 1 UID: 0 PID: 13802 Comm: syz.0.2875 Tainted: G L syzkaller #0 PREEMPT(full)
[ 394.101489][T13802] Tainted: [L]=SOFTLOCKUP
[ 394.101498][T13802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 394.101514][T13802] Call Trace:
[ 394.101523][T13802]
[ 394.101533][T13802] dump_stack_lvl+0x100/0x190
[ 394.101581][T13802] should_fail_ex.cold+0x5/0xa
[ 394.101608][T13802] ? prepare_alloc_pages+0x16d/0x5f0
[ 394.101643][T13802] should_fail_alloc_page+0xeb/0x140
[ 394.101675][T13802] prepare_alloc_pages+0x1f0/0x5f0
[ 394.101713][T13802] __alloc_frozen_pages_noprof+0x19a/0x2ba0
[ 394.101758][T13802] ? __lock_acquire+0x4a5/0x2630
[ 394.101804][T13802] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 394.101848][T13802] ? do_raw_spin_lock+0x128/0x260
[ 394.101886][T13802] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 394.101924][T13802] ? find_held_lock+0x2b/0x80
[ 394.101960][T13802] ? __lock_acquire+0x4a5/0x2630
[ 394.102001][T13802] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 394.102049][T13802] ? policy_nodemask+0xed/0x4f0
[ 394.102081][T13802] alloc_pages_mpol+0x1fb/0x550
[ 394.102112][T13802] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 394.102140][T13802] ? __folio_batch_add_and_move+0x5e5/0xc60
[ 394.102182][T13802] ? __folio_batch_add_and_move+0x5e5/0xc60
[ 394.102229][T13802] folio_alloc_mpol_noprof+0x36/0x340
[ 394.102265][T13802] shmem_alloc_folio+0x135/0x160
[ 394.102297][T13802] shmem_alloc_and_add_folio+0x371/0xd40
[ 394.102343][T13802] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 394.102386][T13802] ? shmem_allowable_huge_orders+0x2bd/0x400
[ 394.102425][T13802] ? __lock_acquire+0x400/0x2630
[ 394.102465][T13802] shmem_get_folio_gfp+0x6ab/0x1900
[ 394.102509][T13802] ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 394.102547][T13802] ? __pfx___might_resched+0x10/0x10
[ 394.102586][T13802] ? noop_dirty_folio+0xfd/0x160
[ 394.102617][T13802] shmem_fallocate+0x6d7/0x1060
[ 394.102673][T13802] ? __pfx_shmem_fallocate+0x10/0x10
[ 394.102710][T13802] ? aa_file_perm+0x7f3/0x14d0
[ 394.102758][T13802] ? __lock_acquire+0x4a5/0x2630
[ 394.102817][T13802] ? __pfx_shmem_fallocate+0x10/0x10
[ 394.102854][T13802] vfs_fallocate+0x576/0x10d0
[ 394.102884][T13802] ? __pfx_vfs_fallocate+0x10/0x10
[ 394.102918][T13802] __x64_sys_fallocate+0xd5/0x140
[ 394.102949][T13802] do_syscall_64+0x106/0xf80
[ 394.102987][T13802] ? clear_bhb_loop+0x40/0x90
[ 394.103029][T13802] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 394.103052][T13802] RIP: 0033:0x7f0eec39c799
[ 394.103073][T13802] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 394.103100][T13802] RSP: 002b:00007f0eed2e4028 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[ 394.103126][T13802] RAX: ffffffffffffffda RBX: 00007f0eec615fa0 RCX: 00007f0eec39c799
[ 394.103144][T13802] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000005
[ 394.103160][T13802] RBP: 00007f0eec432c99 R08: 0000000000000000 R09: 0000000000000000
[ 394.103175][T13802] R10: 00000000004cbd5d R11: 0000000000000246 R12: 0000000000000000
[ 394.103191][T13802] R13: 00007f0eec616038 R14: 00007f0eec615fa0 R15: 00007ffc3d832588
[ 394.103229][T13802]
[ 394.529792][T13809] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2878'.
[ 394.677290][ T5831] Bluetooth: hci3: command 0x0c1a tx timeout
[ 394.677653][ T51] Bluetooth: hci2: command 0x0c1a tx timeout
[ 394.683424][T11047] Bluetooth: hci1: command 0x0c1a tx timeout
[ 395.244873][T13827] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2886'.
[ 395.537633][T13835] mkiss: ax0: crc mode is auto.
[ 395.847476][T13849] FAULT_INJECTION: forcing a failure.
[ 395.847476][T13849] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 395.866020][T13849] CPU: 1 UID: 0 PID: 13849 Comm: syz.2.2897 Tainted: G L syzkaller #0 PREEMPT(full)
[ 395.866064][T13849] Tainted: [L]=SOFTLOCKUP
[ 395.866074][T13849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 395.866088][T13849] Call Trace:
[ 395.866097][T13849]
[ 395.866106][T13849] dump_stack_lvl+0x100/0x190
[ 395.866150][T13849] should_fail_ex.cold+0x5/0xa
[ 395.866174][T13849] ? prepare_alloc_pages+0x16d/0x5f0
[ 395.866204][T13849] should_fail_alloc_page+0xeb/0x140
[ 395.866233][T13849] prepare_alloc_pages+0x1f0/0x5f0
[ 395.866267][T13849] __alloc_frozen_pages_noprof+0x19a/0x2ba0
[ 395.866316][T13849] ? __lock_acquire+0x4a5/0x2630
[ 395.866353][T13849] ? __lock_acquire+0x4a5/0x2630
[ 395.866385][T13849] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 395.866428][T13849] ? __lock_acquire+0x4a5/0x2630
[ 395.866459][T13849] ? look_up_lock_class+0x55/0x120
[ 395.866503][T13849] ? lock_acquire+0x1cf/0x380
[ 395.866536][T13849] ? find_held_lock+0x2b/0x80
[ 395.866560][T13849] ? page_table_check_set+0x49a/0xa10
[ 395.866593][T13849] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 395.866641][T13849] ? policy_nodemask+0xed/0x4f0
[ 395.866670][T13849] alloc_pages_mpol+0x1fb/0x550
[ 395.866699][T13849] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 395.866737][T13849] folio_alloc_mpol_noprof+0x36/0x340
[ 395.866770][T13849] vma_alloc_folio_noprof+0xed/0x1d0
[ 395.866802][T13849] ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 395.866846][T13849] do_anonymous_page+0xb3a/0x1fb0
[ 395.866892][T13849] __handle_mm_fault+0x1d42/0x2b60
[ 395.866939][T13849] ? __pfx___handle_mm_fault+0x10/0x10
[ 395.866972][T13849] ? pte_offset_map_lock+0x174/0x320
[ 395.867000][T13849] ? find_held_lock+0x2b/0x80
[ 395.867036][T13849] ? follow_page_pte+0x5b3/0x1400
[ 395.867072][T13849] handle_mm_fault+0x36d/0xa20
[ 395.867115][T13849] __get_user_pages+0xf9c/0x34d0
[ 395.867158][T13849] ? __pfx___get_user_pages+0x10/0x10
[ 395.867197][T13849] populate_vma_page_range+0x267/0x3f0
[ 395.867229][T13849] ? __pfx_populate_vma_page_range+0x10/0x10
[ 395.867260][T13849] ? __pfx_find_vma_intersection+0x10/0x10
[ 395.867290][T13849] ? do_mmap+0x93f/0x12f0
[ 395.867323][T13849] __mm_populate+0x107/0x3a0
[ 395.867355][T13849] ? __pfx___mm_populate+0x10/0x10
[ 395.867389][T13849] ? up_write+0x290/0x4f0
[ 395.867429][T13849] vm_mmap_pgoff+0x37f/0x470
[ 395.867463][T13849] ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 395.867496][T13849] ? do_futex+0x192/0x350
[ 395.867530][T13849] ? __pfx_do_futex+0x10/0x10
[ 395.867571][T13849] ksys_mmap_pgoff+0xe1/0x650
[ 395.867608][T13849] ? __x64_sys_futex+0x34f/0x4d0
[ 395.867641][T13849] ? __x64_sys_futex+0x358/0x4d0
[ 395.867677][T13849] ? __pfx_ksys_mmap_pgoff+0x10/0x10
[ 395.867707][T13849] ? __pfx___x64_sys_futex+0x10/0x10
[ 395.867743][T13849] ? __pfx_do_writev+0x10/0x10
[ 395.867785][T13849] __x64_sys_mmap+0x125/0x190
[ 395.867863][T13849] do_syscall_64+0x106/0xf80
[ 395.867899][T13849] ? clear_bhb_loop+0x40/0x90
[ 395.867933][T13849] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 395.867961][T13849] RIP: 0033:0x7fc1acd9c799
[ 395.867984][T13849] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 395.868011][T13849] RSP: 002b:00007fc1adc6d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 395.868038][T13849] RAX: ffffffffffffffda RBX: 00007fc1ad015fa0 RCX: 00007fc1acd9c799
[ 395.868056][T13849] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 395.868074][T13849] RBP: 00007fc1ace32c99 R08: 0000000000000002 R09: 0000000000008000
[ 395.868090][T13849] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[ 395.868106][T13849] R13: 00007fc1ad016038 R14: 00007fc1ad015fa0 R15: 00007ffcb4afdf38
[ 395.868140][T13849]
[ 397.035838][T13873] netlink: 322 bytes leftover after parsing attributes in process `syz.1.2906'.
[ 397.043569][T13874] tc_dump_action: action bad kind
[ 397.199586][ T51] Bluetooth: hci0: Malformed LE Event: 0x0b
[ 398.413768][T13917] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2925'.
[ 401.063226][T13982] MTRR 2 not used
[ 401.483321][T13991] netlink: 198 bytes leftover after parsing attributes in process `syz.1.2950'.
[ 401.758684][T13996] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 402.521859][T14024] FAULT_INJECTION: forcing a failure.
[ 402.521859][T14024] name failslab, interval 1, probability 0, space 0, times 0
[ 402.560980][T14024] CPU: 0 UID: 0 PID: 14024 Comm: syz.3.2962 Tainted: G L syzkaller #0 PREEMPT(full)
[ 402.561028][T14024] Tainted: [L]=SOFTLOCKUP
[ 402.561038][T14024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 402.561055][T14024] Call Trace:
[ 402.561064][T14024]
[ 402.561075][T14024] dump_stack_lvl+0x100/0x190
[ 402.561123][T14024] should_fail_ex.cold+0x5/0xa
[ 402.561155][T14024] should_failslab+0xc2/0x120
[ 402.561186][T14024] __kmalloc_cache_noprof+0x7a/0x6f0
[ 402.561220][T14024] ? snd_pcm_oss_change_params_locked+0x1db/0x39f0
[ 402.561263][T14024] snd_pcm_oss_change_params_locked+0x1db/0x39f0
[ 402.561305][T14024] ? __mutex_lock+0x26a/0x1b90
[ 402.561422][T14024] ? snd_pcm_oss_sync+0x243/0x840
[ 402.561454][T14024] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[ 402.561490][T14024] ? __pfx___mutex_lock+0x10/0x10
[ 402.561531][T14024] ? __fsnotify_parent+0x2b4/0xca0
[ 402.561568][T14024] snd_pcm_oss_make_ready_locked+0xb7/0x130
[ 402.561602][T14024] snd_pcm_oss_sync+0x265/0x840
[ 402.561637][T14024] snd_pcm_oss_release+0x238/0x300
[ 402.561667][T14024] ? __pfx_snd_pcm_oss_release+0x10/0x10
[ 402.561698][T14024] __fput+0x3ff/0xb40
[ 402.561736][T14024] task_work_run+0x150/0x240
[ 402.561775][T14024] ? __pfx_task_work_run+0x10/0x10
[ 402.561821][T14024] exit_to_user_mode_loop+0x100/0x4a0
[ 402.561859][T14024] do_syscall_64+0x668/0xf80
[ 402.561893][T14024] ? clear_bhb_loop+0x40/0x90
[ 402.561926][T14024] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 402.561955][T14024] RIP: 0033:0x7f154379c799
[ 402.561978][T14024] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 402.562005][T14024] RSP: 002b:00007f154457c028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 402.562032][T14024] RAX: 0000000000000000 RBX: 00007f1543a15fa0 RCX: 00007f154379c799
[ 402.562049][T14024] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[ 402.562064][T14024] RBP: 00007f1543832c99 R08: 0000000000000000 R09: 0000000000000000
[ 402.562080][T14024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 402.562096][T14024] R13: 00007f1543a16038 R14: 00007f1543a15fa0 R15: 00007ffdb085a8b8
[ 402.562132][T14024]
[ 405.679867][T14093] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2988'.
[ 405.690064][T14093] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2988'.
[ 405.783076][T14099] tc_dump_action: action bad kind
[ 406.015744][T14108] Process accounting resumed
[ 406.330096][T14120] FAULT_INJECTION: forcing a failure.
[ 406.330096][T14120] name failslab, interval 1, probability 0, space 0, times 0
[ 406.347649][T14120] CPU: 0 UID: 0 PID: 14120 Comm: syz.0.3007 Tainted: G L syzkaller #0 PREEMPT(full)
[ 406.347695][T14120] Tainted: [L]=SOFTLOCKUP
[ 406.347704][T14120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 406.347720][T14120] Call Trace:
[ 406.347729][T14120]
[ 406.347739][T14120] dump_stack_lvl+0x100/0x190
[ 406.347786][T14120] should_fail_ex.cold+0x5/0xa
[ 406.347818][T14120] should_failslab+0xc2/0x120
[ 406.347846][T14120] __kmalloc_cache_noprof+0x7a/0x6f0
[ 406.347881][T14120] ? wakeup_source_device_create+0x46/0x2e0
[ 406.347991][T14120] wakeup_source_device_create+0x46/0x2e0
[ 406.348026][T14120] wakeup_source_sysfs_add+0x1c/0x90
[ 406.348056][T14120] wakeup_source_register+0x154/0x3e0
[ 406.348127][T14120] ep_create_wakeup_source+0x1df/0x2e0
[ 406.348172][T14120] ? __pfx_ep_create_wakeup_source+0x10/0x10
[ 406.348220][T14120] ? do_epoll_ctl+0x1012/0x36a0
[ 406.348247][T14120] ? do_epoll_ctl+0x1012/0x36a0
[ 406.348281][T14120] do_epoll_ctl+0x1eee/0x36a0
[ 406.348324][T14120] ? __pfx_do_epoll_ctl+0x10/0x10
[ 406.348350][T14120] ? find_held_lock+0x2b/0x80
[ 406.348375][T14120] ? __might_fault+0xc5/0x140
[ 406.348410][T14120] ? __might_fault+0xc5/0x140
[ 406.348460][T14120] ? __x64_sys_epoll_ctl+0x15c/0x1e0
[ 406.348488][T14120] __x64_sys_epoll_ctl+0x15c/0x1e0
[ 406.348518][T14120] ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[ 406.348558][T14120] do_syscall_64+0x106/0xf80
[ 406.348594][T14120] ? clear_bhb_loop+0x40/0x90
[ 406.348636][T14120] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 406.348665][T14120] RIP: 0033:0x7f0eec39c799
[ 406.348688][T14120] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 406.348715][T14120] RSP: 002b:00007f0eed2e4028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[ 406.348741][T14120] RAX: ffffffffffffffda RBX: 00007f0eec615fa0 RCX: 00007f0eec39c799
[ 406.348759][T14120] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004
[ 406.348775][T14120] RBP: 00007f0eec432c99 R08: 0000000000000000 R09: 0000000000000000
[ 406.348792][T14120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 406.348807][T14120] R13: 00007f0eec616038 R14: 00007f0eec615fa0 R15: 00007ffc3d832588
[ 406.348845][T14120]
[ 406.901992][T14137] netlink: 'syz.3.3006': attribute type 1 has an invalid length.
[ 406.944666][T14137] netlink: 318 bytes leftover after parsing attributes in process `syz.3.3006'.
[ 407.775615][T14153] FAULT_INJECTION: forcing a failure.
[ 407.775615][T14153] name failslab, interval 1, probability 0, space 0, times 0
[ 407.837265][T14153] CPU: 1 UID: 0 PID: 14153 Comm: syz.0.3014 Tainted: G L syzkaller #0 PREEMPT(full)
[ 407.837309][T14153] Tainted: [L]=SOFTLOCKUP
[ 407.837320][T14153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 407.837337][T14153] Call Trace:
[ 407.837347][T14153]
[ 407.837357][T14153] dump_stack_lvl+0x100/0x190
[ 407.837404][T14153] should_fail_ex.cold+0x5/0xa
[ 407.837435][T14153] should_failslab+0xc2/0x120
[ 407.837464][T14153] kmem_cache_alloc_noprof+0x7b/0x6e0
[ 407.837502][T14153] ? __kernfs_new_node+0xd2/0x960
[ 407.837558][T14153] __kernfs_new_node+0xd2/0x960
[ 407.837600][T14153] ? __pfx___kernfs_new_node+0x10/0x10
[ 407.837645][T14153] ? find_held_lock+0x2b/0x80
[ 407.837670][T14153] ? kernfs_root+0xee/0x2a0
[ 407.837703][T14153] ? kernfs_root+0xee/0x2a0
[ 407.837747][T14153] kernfs_new_node+0x11b/0x1a0
[ 407.837792][T14153] __kernfs_create_file+0x53/0x350
[ 407.837826][T14153] sysfs_add_file_mode_ns+0x207/0x3c0
[ 407.837870][T14153] sysfs_merge_group+0x194/0x340
[ 407.837909][T14153] ? __pfx_sysfs_merge_group+0x10/0x10
[ 407.837951][T14153] ? __pfx_dev_add_physical_location+0x10/0x10
[ 407.838089][T14153] ? bus_to_subsys+0x114/0x150
[ 407.838131][T14153] dpm_sysfs_add+0x237/0x280
[ 407.838192][T14153] device_add+0x9ef/0x1950
[ 407.838227][T14153] ? __pfx_device_add+0x10/0x10
[ 407.838255][T14153] ? __pfx___might_resched+0x10/0x10
[ 407.838294][T14153] ? lockdep_hardirqs_on+0x78/0x100
[ 407.838344][T14153] __add_disk+0x518/0xe40
[ 407.838450][T14153] add_disk_fwnode+0x118/0x5c0
[ 407.838481][T14153] loop_add+0x90b/0xb60
[ 407.838523][T14153] ? __pfx_loop_add+0x10/0x10
[ 407.838583][T14153] ? find_held_lock+0x2b/0x80
[ 407.838608][T14153] ? __fget_files+0x215/0x3d0
[ 407.838639][T14153] loop_control_ioctl+0xae/0x620
[ 407.838678][T14153] ? __pfx_loop_control_ioctl+0x10/0x10
[ 407.838719][T14153] ? __pfx_loop_control_ioctl+0x10/0x10
[ 407.838757][T14153] __x64_sys_ioctl+0x18e/0x210
[ 407.838798][T14153] do_syscall_64+0x106/0xf80
[ 407.838833][T14153] ? clear_bhb_loop+0x40/0x90
[ 407.838866][T14153] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 407.838894][T14153] RIP: 0033:0x7f0eec39c799
[ 407.838917][T14153] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 407.838943][T14153] RSP: 002b:00007f0eed2e4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 407.838970][T14153] RAX: ffffffffffffffda RBX: 00007f0eec615fa0 RCX: 00007f0eec39c799
[ 407.838989][T14153] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000005
[ 407.839004][T14153] RBP: 00007f0eec432c99 R08: 0000000000000000 R09: 0000000000000000
[ 407.839017][T14153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 407.839032][T14153] R13: 00007f0eec616038 R14: 00007f0eec615fa0 R15: 00007ffc3d832588
[ 407.839063][T14153]
[ 407.947671][T14155] netlink: 74 bytes leftover after parsing attributes in process `syz.3.3015'.
[ 408.560680][T14169] FAULT_INJECTION: forcing a failure.
[ 408.560680][T14169] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 408.607313][T14169] CPU: 1 UID: 0 PID: 14169 Comm: syz.2.3019 Tainted: G L syzkaller #0 PREEMPT(full)
[ 408.607358][T14169] Tainted: [L]=SOFTLOCKUP
[ 408.607368][T14169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 408.607384][T14169] Call Trace:
[ 408.607393][T14169]
[ 408.607403][T14169] dump_stack_lvl+0x100/0x190
[ 408.607450][T14169] should_fail_ex.cold+0x5/0xa
[ 408.607476][T14169] ? prepare_alloc_pages+0x16d/0x5f0
[ 408.607510][T14169] should_fail_alloc_page+0xeb/0x140
[ 408.607543][T14169] prepare_alloc_pages+0x1f0/0x5f0
[ 408.607578][T14169] __alloc_frozen_pages_noprof+0x19a/0x2ba0
[ 408.607625][T14169] ? __lock_acquire+0x4a5/0x2630
[ 408.607670][T14169] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 408.607714][T14169] ? do_raw_spin_lock+0x128/0x260
[ 408.607753][T14169] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 408.607791][T14169] ? find_held_lock+0x2b/0x80
[ 408.607827][T14169] ? __lock_acquire+0x4a5/0x2630
[ 408.607860][T14169] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 408.607905][T14169] ? policy_nodemask+0xed/0x4f0
[ 408.607936][T14169] alloc_pages_mpol+0x1fb/0x550
[ 408.607965][T14169] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 408.607990][T14169] ? __folio_batch_add_and_move+0x5e5/0xc60
[ 408.608026][T14169] ? __folio_batch_add_and_move+0x5e5/0xc60
[ 408.608076][T14169] folio_alloc_mpol_noprof+0x36/0x340
[ 408.608111][T14169] shmem_alloc_folio+0x135/0x160
[ 408.608148][T14169] shmem_alloc_and_add_folio+0x371/0xd40
[ 408.608198][T14169] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 408.608241][T14169] ? shmem_allowable_huge_orders+0x2bd/0x400
[ 408.608281][T14169] ? __lock_acquire+0x400/0x2630
[ 408.608320][T14169] shmem_get_folio_gfp+0x6ab/0x1900
[ 408.608362][T14169] ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 408.608400][T14169] ? __pfx___might_resched+0x10/0x10
[ 408.608433][T14169] ? noop_dirty_folio+0xfd/0x160
[ 408.608461][T14169] shmem_fallocate+0x6d7/0x1060
[ 408.608512][T14169] ? __pfx_shmem_fallocate+0x10/0x10
[ 408.608546][T14169] ? aa_file_perm+0x7f3/0x14d0
[ 408.608591][T14169] ? __lock_acquire+0x4a5/0x2630
[ 408.608648][T14169] ? __pfx_shmem_fallocate+0x10/0x10
[ 408.608685][T14169] vfs_fallocate+0x576/0x10d0
[ 408.608714][T14169] ? __pfx_vfs_fallocate+0x10/0x10
[ 408.608748][T14169] __x64_sys_fallocate+0xd5/0x140
[ 408.608776][T14169] do_syscall_64+0x106/0xf80
[ 408.608810][T14169] ? clear_bhb_loop+0x40/0x90
[ 408.608840][T14169] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 408.608867][T14169] RIP: 0033:0x7fc1acd9c799
[ 408.608891][T14169] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 408.608918][T14169] RSP: 002b:00007fc1adc6d028 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[ 408.608944][T14169] RAX: ffffffffffffffda RBX: 00007fc1ad015fa0 RCX: 00007fc1acd9c799
[ 408.608962][T14169] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000005
[ 408.608979][T14169] RBP: 00007fc1ace32c99 R08: 0000000000000000 R09: 0000000000000000
[ 408.608996][T14169] R10: 00000000004cbd5d R11: 0000000000000246 R12: 0000000000000000
[ 408.609012][T14169] R13: 00007fc1ad016038 R14: 00007fc1ad015fa0 R15: 00007ffcb4afdf38
[ 408.609050][T14169]
[ 408.611628][T14168] FAULT_INJECTION: forcing a failure.
[ 408.611628][T14168] name failslab, interval 1, probability 0, space 0, times 0
[ 408.949218][T14168] CPU: 0 UID: 0 PID: 14168 Comm: syz.3.3020 Tainted: G L syzkaller #0 PREEMPT(full)
[ 408.949260][T14168] Tainted: [L]=SOFTLOCKUP
[ 408.949269][T14168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 408.949285][T14168] Call Trace:
[ 408.949295][T14168]
[ 408.949306][T14168] dump_stack_lvl+0x100/0x190
[ 408.949351][T14168] should_fail_ex.cold+0x5/0xa
[ 408.949383][T14168] ? tracepoint_add_func+0x2c5/0xf30
[ 408.949409][T14168] should_failslab+0xc2/0x120
[ 408.949437][T14168] __kmalloc_noprof+0xe0/0x850
[ 408.949480][T14168] ? __pfx_probe_sched_wakeup+0x10/0x10
[ 408.949539][T14168] tracepoint_add_func+0x2c5/0xf30
[ 408.949565][T14168] ? __pfx_probe_sched_wakeup+0x10/0x10
[ 408.949591][T14168] ? __pfx___mutex_lock+0x10/0x10
[ 408.949645][T14168] ? rcu_is_watching+0x12/0xc0
[ 408.949689][T14168] ? __pfx_probe_sched_wakeup+0x10/0x10
[ 408.949716][T14168] tracepoint_probe_register+0xc4/0x110
[ 408.949746][T14168] ? __pfx_tracepoint_probe_register+0x10/0x10
[ 408.949774][T14168] ? __pfx_probe_sched_wakeup+0x10/0x10
[ 408.949800][T14168] ? __lock_acquire+0x4a5/0x2630
[ 408.949843][T14168] tracing_start_sched_switch+0xaf/0x170
[ 408.949885][T14168] __ftrace_event_enable_disable+0x557/0x6f0
[ 408.949919][T14168] __ftrace_set_clr_event_nolock+0x390/0xc30
[ 408.949968][T14168] ftrace_set_clr_event+0x16e/0x330
[ 408.950004][T14168] ? __pfx_ftrace_set_clr_event+0x10/0x10
[ 408.950037][T14168] ? trace_get_user+0x3ae/0xa70
[ 408.950074][T14168] ftrace_event_write+0x259/0x2c0
[ 408.950108][T14168] ? __pfx_ftrace_event_write+0x10/0x10
[ 408.950158][T14168] vfs_write+0x2aa/0x1070
[ 408.950184][T14168] ? __pfx_ftrace_event_write+0x10/0x10
[ 408.950222][T14168] ? __pfx_vfs_write+0x10/0x10
[ 408.950262][T14168] ? __fget_files+0x215/0x3d0
[ 408.950295][T14168] ? __fget_files+0x21f/0x3d0
[ 408.950332][T14168] ksys_write+0x12a/0x250
[ 408.950356][T14168] ? __pfx_ksys_write+0x10/0x10
[ 408.950392][T14168] do_syscall_64+0x106/0xf80
[ 408.950428][T14168] ? clear_bhb_loop+0x40/0x90
[ 408.950460][T14168] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 408.950487][T14168] RIP: 0033:0x7f154379c799
[ 408.950509][T14168] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 408.950535][T14168] RSP: 002b:00007f154457c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 408.950560][T14168] RAX: ffffffffffffffda RBX: 00007f1543a15fa0 RCX: 00007f154379c799
[ 408.950578][T14168] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 0000000000000005
[ 408.950594][T14168] RBP: 00007f1543832c99 R08: 0000000000000000 R09: 0000000000000000
[ 408.950610][T14168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 408.950626][T14168] R13: 00007f1543a16038 R14: 00007f1543a15fa0 R15: 00007ffdb085a8b8
[ 408.950665][T14168]
[ 408.951481][T14168] wakeup trace: Couldn't activate tracepoint probe to kernel_sched_wakeup
[ 409.924741][T14195] netlink: 322 bytes leftover after parsing attributes in process `syz.2.3028'.
[ 410.105864][T14197] netlink: 'syz.1.3029': attribute type 14 has an invalid length.
[ 410.114062][T14197] netlink: 330 bytes leftover after parsing attributes in process `syz.1.3029'.
[ 410.644173][T14215] netlink: 146 bytes leftover after parsing attributes in process `syz.3.3035'.
[ 411.748078][T14237] FAULT_INJECTION: forcing a failure.
[ 411.748078][T14237] name failslab, interval 1, probability 0, space 0, times 0
[ 411.781817][T14237] CPU: 1 UID: 0 PID: 14237 Comm: syz.0.3049 Tainted: G L syzkaller #0 PREEMPT(full)
[ 411.781862][T14237] Tainted: [L]=SOFTLOCKUP
[ 411.781872][T14237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 411.781889][T14237] Call Trace:
[ 411.781898][T14237]
[ 411.781909][T14237] dump_stack_lvl+0x100/0x190
[ 411.781956][T14237] should_fail_ex.cold+0x5/0xa
[ 411.781987][T14237] ? argv_split+0x173/0x420
[ 411.782095][T14237] should_failslab+0xc2/0x120
[ 411.782126][T14237] __kmalloc_noprof+0xe0/0x850
[ 411.782165][T14237] ? __asan_memcpy+0x3c/0x60
[ 411.782207][T14237] argv_split+0x173/0x420
[ 411.782242][T14237] ? __pfx___trace_eprobe_create+0x10/0x10
[ 411.782279][T14237] trace_probe_create+0x7d/0x100
[ 411.782320][T14237] ? __pfx_trace_probe_create+0x10/0x10
[ 411.782377][T14237] create_dyn_event+0xee/0x1d0
[ 411.782414][T14237] trace_parse_run_command+0x1ab/0x3b0
[ 411.782455][T14237] ? __pfx_create_dyn_event+0x10/0x10
[ 411.782495][T14237] vfs_write+0x2aa/0x1070
[ 411.782522][T14237] ? __pfx_dyn_event_write+0x10/0x10
[ 411.782558][T14237] ? __pfx_vfs_write+0x10/0x10
[ 411.782599][T14237] ? __fget_files+0x215/0x3d0
[ 411.782633][T14237] ? __fget_files+0x21f/0x3d0
[ 411.782670][T14237] ksys_write+0x12a/0x250
[ 411.782695][T14237] ? __pfx_ksys_write+0x10/0x10
[ 411.782732][T14237] do_syscall_64+0x106/0xf80
[ 411.782768][T14237] ? clear_bhb_loop+0x40/0x90
[ 411.782803][T14237] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 411.782831][T14237] RIP: 0033:0x7f0eec39c799
[ 411.782854][T14237] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 411.782880][T14237] RSP: 002b:00007f0eed2e4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 411.782907][T14237] RAX: ffffffffffffffda RBX: 00007f0eec615fa0 RCX: 00007f0eec39c799
[ 411.782926][T14237] RDX: 0000000000000001 RSI: 0000200000000000 RDI: 0000000000000005
[ 411.782943][T14237] RBP: 00007f0eec432c99 R08: 0000000000000000 R09: 0000000000000000
[ 411.782960][T14237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 411.782976][T14237] R13: 00007f0eec616038 R14: 00007f0eec615fa0 R15: 00007ffc3d832588
[ 411.783014][T14237]
[ 412.764761][T14259] netlink: 198 bytes leftover after parsing attributes in process `syz.3.3052'.
[ 412.958536][T14262] netlink: 146 bytes leftover after parsing attributes in process `syz.0.3053'.
[ 413.074395][T14271] netlink: 338 bytes leftover after parsing attributes in process `syz.3.3056'.
[ 413.388294][T14286] random: crng reseeded on system resumption
[ 414.218532][T14305] Process accounting resumed
[ 414.450367][T14324] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3075'.
[ 414.468098][T14324] hsr_slave_0: left promiscuous mode
[ 414.474470][T14324] hsr_slave_1: left promiscuous mode
[ 414.758370][T14335] netlink: 334 bytes leftover after parsing attributes in process `syz.0.3080'.
[ 416.382661][T14379] smpboot: CPU 1 is now offline
[ 417.428027][T14408] netlink: 334 bytes leftover after parsing attributes in process `syz.2.3105'.
[ 418.230083][T14423] netlink: 334 bytes leftover after parsing attributes in process `syz.1.3111'.
[ 419.057933][T14437] ptrace attach of "./syz-executor exec"[8777] was attempted by ""[14437]
[ 419.508777][T14450] netlink: 342 bytes leftover after parsing attributes in process `syz.2.3123'.
[ 420.184625][T14471] smpboot: Booting Node 0 Processor 1 APIC 0x1
[ 420.227801][T14471] MDS CPU bug present and SMT on, data leak possible. See https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/mds.html for more details.
[ 420.257275][T14471] TAA CPU bug present and SMT on, data leak possible. See https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/tsx_async_abort.html for more details.
[ 420.307102][T14471] MMIO Stale Data CPU bug present and SMT on, data leak possible. See https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/processor_mmio_stale_data.html for more details.
[ 421.280901][T14486] FAULT_INJECTION: forcing a failure.
[ 421.280901][T14486] name failslab, interval 1, probability 0, space 0, times 0
[ 421.308865][T14486] CPU: 1 UID: 0 PID: 14486 Comm: syz.0.3135 Tainted: G L syzkaller #0 PREEMPT(full)
[ 421.308953][T14486] Tainted: [L]=SOFTLOCKUP
[ 421.308979][T14486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 421.308995][T14486] Call Trace:
[ 421.309003][T14486]
[ 421.309014][T14486] dump_stack_lvl+0x100/0x190
[ 421.309061][T14486] should_fail_ex.cold+0x5/0xa
[ 421.309093][T14486] ? drm_atomic_state_init+0x190/0x490
[ 421.309227][T14486] should_failslab+0xc2/0x120
[ 421.309258][T14486] __kmalloc_noprof+0xe0/0x850
[ 421.309307][T14486] drm_atomic_state_init+0x190/0x490
[ 421.309339][T14486] ? kasan_save_track+0x14/0x30
[ 421.309384][T14486] drm_atomic_state_alloc+0xd3/0x120
[ 421.309418][T14486] drm_client_modeset_commit_atomic+0xcc/0x7e0
[ 421.309488][T14486] ? trace_contention_end+0x140/0x180
[ 421.309528][T14486] ? __mutex_lock+0x26a/0x1b90
[ 421.309569][T14486] ? __mutex_lock+0x26a/0x1b90
[ 421.309608][T14486] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[ 421.309648][T14486] ? drm_master_internal_acquire+0x21/0x80
[ 421.309721][T14486] drm_client_modeset_commit_locked+0x14d/0x580
[ 421.309764][T14486] drm_client_modeset_commit+0x4f/0x80
[ 421.309803][T14486] __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[ 421.309902][T14486] drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[ 421.309944][T14486] drm_fbdev_client_restore+0x1b/0x30
[ 421.310045][T14486] ? __pfx_drm_fbdev_client_restore+0x10/0x10
[ 421.310074][T14486] drm_client_dev_restore+0x205/0x2a0
[ 421.310121][T14486] drm_release+0x2c6/0x360
[ 421.310181][T14486] ? __pfx_drm_release+0x10/0x10
[ 421.310215][T14486] __fput+0x3ff/0xb40
[ 421.310258][T14486] task_work_run+0x150/0x240
[ 421.310298][T14486] ? __pfx_task_work_run+0x10/0x10
[ 421.310349][T14486] exit_to_user_mode_loop+0x100/0x4a0
[ 421.310389][T14486] do_syscall_64+0x668/0xf80
[ 421.310425][T14486] ? clear_bhb_loop+0x40/0x90
[ 421.310461][T14486] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 421.310489][T14486] RIP: 0033:0x7f0eec39c799
[ 421.310514][T14486] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 421.310541][T14486] RSP: 002b:00007f0eed2e4028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 421.310570][T14486] RAX: 0000000000000000 RBX: 00007f0eec615fa0 RCX: 00007f0eec39c799
[ 421.310589][T14486] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[ 421.310606][T14486] RBP: 00007f0eec432c99 R08: 0000000000000000 R09: 0000000000000000
[ 421.310624][T14486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 421.310640][T14486] R13: 00007f0eec616038 R14: 00007f0eec615fa0 R15: 00007ffc3d832588
[ 421.310681][T14486]
[ 425.622150][T14583] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3168'.
[ 426.148672][T14595] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 427.358186][T14611] Console: switching to colour VGA+ 80x25
[ 427.477813][T14611] ==================================================================
[ 427.477875][T14611] BUG: KASAN: slab-out-of-bounds in fbcon_prepare_logo+0x94e/0xc60
[ 427.477953][T14611] Read of size 26 at addr ffff8880369312ea by task syz.2.3177/14611
[ 427.477977][T14611]
[ 427.477993][T14611] CPU: 1 UID: 0 PID: 14611 Comm: syz.2.3177 Tainted: G L syzkaller #0 PREEMPT(full)
[ 427.478032][T14611] Tainted: [L]=SOFTLOCKUP
[ 427.478042][T14611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 427.478060][T14611] Call Trace:
[ 427.478069][T14611]
[ 427.478079][T14611] dump_stack_lvl+0x100/0x190
[ 427.478117][T14611] print_report+0x156/0x4c9
[ 427.478160][T14611] ? __virt_addr_valid+0x81/0x620
[ 427.478192][T14611] ? __phys_addr+0xe8/0x180
[ 427.478232][T14611] ? fbcon_prepare_logo+0x94e/0xc60
[ 427.478258][T14611] kasan_report+0xdf/0x1e0
[ 427.478287][T14611] ? fbcon_prepare_logo+0x94e/0xc60
[ 427.478318][T14611] kasan_check_range+0x10f/0x1e0
[ 427.478349][T14611] __asan_memcpy+0x23/0x60
[ 427.478383][T14611] fbcon_prepare_logo+0x94e/0xc60
[ 427.478417][T14611] fbcon_init+0x10a0/0x1820
[ 427.478447][T14611] visual_init+0x320/0x620
[ 427.478523][T14611] do_bind_con_driver.isra.0+0x636/0x9c0
[ 427.478565][T14611] store_bind+0x609/0x730
[ 427.478602][T14611] ? __pfx_store_bind+0x10/0x10
[ 427.478633][T14611] dev_attr_store+0x58/0x80
[ 427.478662][T14611] ? __pfx_dev_attr_store+0x10/0x10
[ 427.478691][T14611] sysfs_kf_write+0xf2/0x150
[ 427.478724][T14611] kernfs_fop_write_iter+0x3e0/0x5f0
[ 427.478751][T14611] ? __pfx_sysfs_kf_write+0x10/0x10
[ 427.478783][T14611] vfs_write+0x6ac/0x1070
[ 427.478807][T14611] ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 427.478836][T14611] ? __pfx_vfs_write+0x10/0x10
[ 427.478885][T14611] ksys_write+0x12a/0x250
[ 427.478909][T14611] ? __pfx_ksys_write+0x10/0x10
[ 427.478937][T14611] do_syscall_64+0x106/0xf80
[ 427.478973][T14611] ? clear_bhb_loop+0x40/0x90
[ 427.479003][T14611] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 427.479030][T14611] RIP: 0033:0x7fc1acd9c799
[ 427.479052][T14611] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 427.479079][T14611] RSP: 002b:00007fc1adc6d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 427.479106][T14611] RAX: ffffffffffffffda RBX: 00007fc1ad015fa0 RCX: 00007fc1acd9c799
[ 427.479125][T14611] RDX: 0000000000000084 RSI: 0000200000000040 RDI: 0000000000000003
[ 427.479144][T14611] RBP: 00007fc1ace32c99 R08: 0000000000000000 R09: 0000000000000000
[ 427.479161][T14611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 427.479177][T14611] R13: 00007fc1ad016038 R14: 00007fc1ad015fa0 R15: 00007ffcb4afdf38
[ 427.479211][T14611]
[ 427.479221][T14611]
[ 427.479229][T14611] Allocated by task 7355:
[ 427.479279][T14611] kasan_save_stack+0x30/0x50
[ 427.479319][T14611] kasan_save_track+0x14/0x30
[ 427.479358][T14611] __kasan_kmalloc+0xaa/0xb0
[ 427.479394][T14611] __kmalloc_node_noprof+0x307/0x850
[ 427.479431][T14611] alloc_slab_obj_exts+0xae/0x260
[ 427.479461][T14611] __memcg_slab_post_alloc_hook+0x246/0x990
[ 427.479490][T14611] kmem_cache_alloc_lru_noprof+0x592/0x6e0
[ 427.479527][T14611] xas_alloc+0x350/0x460
[ 427.479554][T14611] xas_create+0x75a/0x14e0
[ 427.479583][T14611] xas_store+0x9e/0x1a30
[ 427.479616][T14611] shmem_add_to_page_cache+0x95c/0xcd0
[ 427.479647][T14611] shmem_alloc_and_add_folio+0x558/0xd40
[ 427.479680][T14611] shmem_get_folio_gfp+0x6ab/0x1900
[ 427.479713][T14611] shmem_fault+0x1f9/0xa20
[ 427.479745][T14611] __do_fault+0x10d/0x550
[ 427.479767][T14611] do_fault+0x2db/0x1990
[ 427.479794][T14611] __handle_mm_fault+0x180f/0x2b60
[ 427.479826][T14611] handle_mm_fault+0x36d/0xa20
[ 427.479856][T14611] __get_user_pages+0xf9c/0x34d0
[ 427.479881][T14611] faultin_page_range+0x1f1/0x9e0
[ 427.479909][T14611] madvise_do_behavior+0x354/0x510
[ 427.479935][T14611] do_madvise+0x195/0x240
[ 427.479961][T14611] __x64_sys_madvise+0xa9/0x110
[ 427.479988][T14611] do_syscall_64+0x106/0xf80
[ 427.480020][T14611] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 427.480045][T14611]
[ 427.480052][T14611] The buggy address belongs to the object at ffff888036931200
[ 427.480052][T14611] which belongs to the cache kmalloc-192 of size 192
[ 427.480073][T14611] The buggy address is located 50 bytes to the right of
[ 427.480073][T14611] allocated 184-byte region [ffff888036931200, ffff8880369312b8)
[ 427.480100][T14611]
[ 427.480106][T14611] The buggy address belongs to the physical page:
[ 427.480117][T14611] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x36931
[ 427.480155][T14611] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 427.480178][T14611] page_type: f5(slab)
[ 427.480201][T14611] raw: 00fff00000000000 ffff88813fe3c3c0 dead000000000100 dead000000000122
[ 427.480237][T14611] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[ 427.480253][T14611] page dumped because: kasan: bad access detected
[ 427.480305][T14611] page_owner tracks the page as allocated
[ 427.480315][T14611] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xd2cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 7053, tgid 7052 (syz.1.469), ts 116774659568, free_ts 116726822795
[ 427.480363][T14611] post_alloc_hook+0x153/0x170
[ 427.480395][T14611] get_page_from_freelist+0x111d/0x3140
[ 427.480429][T14611] __alloc_frozen_pages_noprof+0x27c/0x2ba0
[ 427.480466][T14611] new_slab+0xa6/0x6b0
[ 427.480493][T14611] refill_objects+0x26b/0x400
[ 427.480523][T14611] __pcs_replace_empty_main+0x1ab/0x660
[ 427.480559][T14611] __kmalloc_noprof+0x688/0x850
[ 427.480592][T14611] __register_sysctl_table+0xbe4/0x1650
[ 427.480632][T14611] neigh_sysctl_register+0x326/0x660
[ 427.480700][T14611] addrconf_sysctl_register+0xb9/0x200
[ 427.480794][T14611] ipv6_add_dev+0xaf2/0x1520
[ 427.480827][T14611] addrconf_notify+0x563/0x19c0
[ 427.480879][T14611] notifier_call_chain+0x99/0x420
[ 427.480912][T14611] call_netdevice_notifiers_info+0xbe/0x110
[ 427.480997][T14611] register_netdevice+0x16e6/0x2210
[ 427.481032][T14611] register_netdev+0x34/0x50
[ 427.481066][T14611] page last free pid 5817 tgid 5817 stack trace:
[ 427.481079][T14611] __free_frozen_pages+0x7e1/0x10d0
[ 427.481105][T14611] __folio_put+0x3b4/0x540
[ 427.481132][T14611] anon_pipe_buf_release+0x40c/0x530
[ 427.481152][T14611] anon_pipe_read+0x5cd/0x1200
[ 427.481181][T14611] vfs_read+0x957/0xb30
[ 427.481214][T14611] ksys_read+0x1f8/0x250
[ 427.481230][T14611] do_syscall_64+0x106/0xf80
[ 427.481258][T14611] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 427.481280][T14611]
[ 427.481285][T14611] Memory state around the buggy address:
[ 427.481297][T14611] ffff888036931180: 00 00 00 04 fc fc fc fc fc fc fc fc fc fc fc fc
[ 427.481312][T14611] ffff888036931200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 427.481327][T14611] >ffff888036931280: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc
[ 427.481339][T14611] ^
[ 427.481351][T14611] ffff888036931300: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 427.481366][T14611] ffff888036931380: 00 00 00 00 00 00 00 07 fc fc fc fc fc fc fc fc
[ 427.481377][T14611] ==================================================================
[ 427.481617][T14611] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 427.481646][T14611] CPU: 1 UID: 0 PID: 14611 Comm: syz.2.3177 Tainted: G L syzkaller #0 PREEMPT(full)
[ 427.481688][T14611] Tainted: [L]=SOFTLOCKUP
[ 427.481700][T14611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 427.481715][T14611] Call Trace:
[ 427.481724][T14611]
[ 427.481735][T14611] dump_stack_lvl+0x100/0x190
[ 427.481778][T14611] vpanic+0x552/0x970
[ 427.481805][T14611] ? __pfx_vpanic+0x10/0x10
[ 427.481834][T14611] ? fbcon_prepare_logo+0x94e/0xc60
[ 427.481863][T14611] panic+0xd1/0xe0
[ 427.481888][T14611] ? __pfx_panic+0x10/0x10
[ 427.481915][T14611] ? fbcon_prepare_logo+0x94e/0xc60
[ 427.481943][T14611] ? preempt_schedule_common+0x42/0xc0
[ 427.481983][T14611] check_panic_on_warn.cold+0x19/0x34
[ 427.482013][T14611] end_report.part.0+0x3a/0x90
[ 427.482049][T14611] kasan_report.cold+0xe/0x18
[ 427.482086][T14611] ? fbcon_prepare_logo+0x94e/0xc60
[ 427.482118][T14611] kasan_check_range+0x10f/0x1e0
[ 427.482150][T14611] __asan_memcpy+0x23/0x60
[ 427.482183][T14611] fbcon_prepare_logo+0x94e/0xc60
[ 427.482224][T14611] fbcon_init+0x10a0/0x1820
[ 427.482253][T14611] visual_init+0x320/0x620
[ 427.482281][T14611] do_bind_con_driver.isra.0+0x636/0x9c0
[ 427.482319][T14611] store_bind+0x609/0x730
[ 427.482351][T14611] ? __pfx_store_bind+0x10/0x10
[ 427.482381][T14611] dev_attr_store+0x58/0x80
[ 427.482409][T14611] ? __pfx_dev_attr_store+0x10/0x10
[ 427.482436][T14611] sysfs_kf_write+0xf2/0x150
[ 427.482466][T14611] kernfs_fop_write_iter+0x3e0/0x5f0
[ 427.482493][T14611] ? __pfx_sysfs_kf_write+0x10/0x10
[ 427.482523][T14611] vfs_write+0x6ac/0x1070
[ 427.482547][T14611] ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 427.482574][T14611] ? __pfx_vfs_write+0x10/0x10
[ 427.482619][T14611] ksys_write+0x12a/0x250
[ 427.482643][T14611] ? __pfx_ksys_write+0x10/0x10
[ 427.482673][T14611] do_syscall_64+0x106/0xf80
[ 427.482707][T14611] ? clear_bhb_loop+0x40/0x90
[ 427.482738][T14611] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 427.482767][T14611] RIP: 0033:0x7fc1acd9c799
[ 427.482786][T14611] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 427.482811][T14611] RSP: 002b:00007fc1adc6d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 427.482837][T14611] RAX: ffffffffffffffda RBX: 00007fc1ad015fa0 RCX: 00007fc1acd9c799
[ 427.482856][T14611] RDX: 0000000000000084 RSI: 0000200000000040 RDI: 0000000000000003
[ 427.482873][T14611] RBP: 00007fc1ace32c99 R08: 0000000000000000 R09: 0000000000000000
[ 427.482890][T14611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 427.482906][T14611] R13: 00007fc1ad016038 R14: 00007fc1ad015fa0 R15: 00007ffcb4afdf38
[ 427.482933][T14611]
[ 427.483169][T14611] Kernel Offset: disabled