last executing test programs: 4.737821409s ago: executing program 2 (id=13427): open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) mq_getsetattr$auto(0xd, &(0x7f0000000200)={0x100, 0x3, 0x7, 0x10}, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_7={@link_id=0x1, 0x3, 0x3}, 0x6f3) mount$auto(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='nfs4\x00', 0x200, &(0x7f00000001c0)) 4.591463133s ago: executing program 2 (id=13431): mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x100000000000034, 0x0) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x6, 0x0, 0x0, 0x0) 4.444011797s ago: executing program 2 (id=13433): mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x0) sysfs$auto(0x2, 0xd, 0x0) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto_FSCONFIG_SET_BINARY(r0, 0x2, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\xff\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00', &(0x7f0000000180), 0x100d1) 4.274740029s ago: executing program 2 (id=13436): r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="011d3da4420008bd7100f9db5f250200"], 0x24}, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80) r1 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x7ff}, 0x7, 0x4008) 4.122364695s ago: executing program 2 (id=13438): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001540)={'netdevsim0\x00', 0x0}) sendmsg$auto_NET_SHAPER_CMD_GROUP(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000080)={0x34, r1, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NET_SHAPER_A_HANDLE={0xc, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x2}]}, @NET_SHAPER_A_LEAVES={0x4}, @NET_SHAPER_A_IFINDEX={0x8, 0x8, r2}, @NET_SHAPER_A_METRIC={0x8, 0x2, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x44000}, 0x14) 3.948971354s ago: executing program 2 (id=13443): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000040)) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000000)='N') 1.407533252s ago: executing program 3 (id=13485): mmap$auto(0x0, 0xd, 0x4000000000df, 0xeb1, 0x401, 0x4000000000008000) io_uring_setup$auto(0x1, 0x0) futex$auto(&(0x7f0000000080)=0x1, 0xb, 0x1, 0x0, 0x0, 0xfffffffa) futex$auto(&(0x7f0000000080)=0xfffffffa, 0xc, 0x1, 0x0, 0x0, 0xfffffffa) 638.957515ms ago: executing program 0 (id=13500): mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x1e, 0x1, 0x0) connect$auto(r0, 0x0, 0x10) 634.697461ms ago: executing program 1 (id=13501): r0 = socket(0xa, 0x3, 0x3c) bpf$auto(0x6, &(0x7f0000000200)=@link_create={@prog_fd, @target_fd=r0, 0x80000001, 0xbca, @kprobe_multi={0x5, 0x6, 0x4, 0x8, 0xc66}}, 0x101) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) write$auto(r0, &(0x7f0000000080)='+&\x00I\xaar\x1c\xbb\xde\ah\x15,\xeb|\x85\xe8\x97Z\xc30\xae}\xa1\x17K(\x80]]\x8d\xb5\xeb-\x9d\xc1\xceU\xbb_\xcf\xe8#U\xd0_|\x15f\x92\xaa\x9f\xa0l}7z#u\xf6\xd1\xe1\x8d\x05=w\xf1\xb9K\xf4\\\a\xdf\x87\xbb\x03d6\xe1\x14\xb1|\x98\x82$\xf3\xb2\xcf\xb7\x7f\xf8f*/\xc2\x82\x8c2\x8d^\x10\xc6\x1cs', 0x263f) 562.443564ms ago: executing program 0 (id=13502): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x7, 0x0) r0 = socket(0xa, 0x5, 0x84) getsockopt$auto(r0, 0x84, 0x1f, 0x0, &(0x7f0000000080)=0x49b) 559.274085ms ago: executing program 1 (id=13503): select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x8, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x8, 0x8, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) eventfd$auto(0x7) writev$auto(0x4, &(0x7f0000000080)={&(0x7f0000000180), 0x8}, 0x7) 459.469003ms ago: executing program 3 (id=13504): close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x42, 0x20) r1 = socket$nl_generic(0x11, 0x3, 0x10) bpf$auto(0x9, &(0x7f0000000a40)=@prog_bind_map={r1, r0, 0x2f}, 0x121) 439.998375ms ago: executing program 0 (id=13505): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r0 = open(&(0x7f00000001c0)='./cgroup\x00', 0x80400, 0x42) open_by_handle_at$auto(r0, &(0x7f0000000200)={0x8, 0xfe, "0200000000000000"}, 0x100004) 392.782018ms ago: executing program 1 (id=13506): mmap$auto(0x0, 0x400008, 0xe0, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x3, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r0, 0x29, 0x20, 0x0, 0x8002) 353.776195ms ago: executing program 3 (id=13507): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socket(0xa, 0x3, 0x5) sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0xc88, 0x0, 0x0, 0x0, 0x8, 0x200}, 0x5}, 0x3b8b, 0x800) recvmmsg$auto(0x3, 0x0, 0x10000, 0xffe, 0x0) 339.515588ms ago: executing program 1 (id=13508): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000003b00), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000003b40)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_EXTERNAL_AUTH(r0, &(0x7f0000003c00)={0x0, 0x0, &(0x7f0000003bc0)={&(0x7f0000003b80)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="0100fdc3af1ccc001a8b0700001008000300", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x180c0) 331.653855ms ago: executing program 0 (id=13509): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x100000000000036, 0x0) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0) 257.632796ms ago: executing program 3 (id=13510): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'veth0_to_hsr\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7000fddbdf250c0000000c00038004000380040005000c00018008000100", @ANYRES32=r2], 0x2c}, 0x1, 0x0, 0x0, 0x24004840}, 0x4000000) 226.920285ms ago: executing program 1 (id=13511): mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0xffffffffffffffff, 0x0) io_uring_setup$auto(0x59, 0x0) io_uring_register$auto(0x2, 0x24, 0x0, 0x0) 175.152126ms ago: executing program 0 (id=13512): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000001e40)={0x30, r1, 0x1, 0x703d25, 0x25dfdbfd, {}, [@NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x6}, @NBD_ATTR_TIMEOUT={0xc}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x8880) 136.880292ms ago: executing program 3 (id=13513): r0 = socket(0x2, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_handshake(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_HANDSHAKE_CMD_DONE(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r2, 0x1, 0x70bd22, 0x25dfdbff, {}, [@HANDSHAKE_A_DONE_SOCKFD={0x8, 0x2, r0}]}, 0x1c}}, 0xd4) 112.677759ms ago: executing program 1 (id=13514): mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) socket(0xa, 0x1, 0x84) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) getsockopt$auto(0x3, 0x200000000001, 0x41, 0x0, 0x0) 29.007138ms ago: executing program 0 (id=13515): sendto$auto(0x3, 0x0, 0x13, 0x7, &(0x7f0000000440)=@tipc=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x3, 0x8}}, 0x20) rt_sigqueueinfo$auto(0x0, 0x4, &(0x7f0000000000)={@siginfo_0_0={0xf5, 0x14, 0x7e73, @_timer={0x0, 0x80000001, @sival_ptr=0x0, 0x5}}}) r0 = socket(0x11, 0x3, 0x9) sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000440)="b4cfbaa27e5dba", 0x12}, 0x5, &(0x7f0000000180), 0x5, 0xe}, 0x5}, 0x2, 0x100) 0s ago: executing program 3 (id=13516): mmap$auto(0x0, 0x1, 0xdf, 0x9b72, 0x2, 0x40008000) socket(0x2, 0x80002, 0x73) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, 0x0, 0x54) kernel console output (not intermixed with test programs): 005] ? __pfx_out_of_memory+0x10/0x10 [ 585.932709][ T6005] mem_cgroup_out_of_memory+0xc6/0x130 [ 585.932730][ T6005] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 585.932748][ T6005] ? find_held_lock+0x2b/0x80 [ 585.932766][ T6005] ? do_raw_spin_unlock+0x145/0x1e0 [ 585.932787][ T6005] ? _raw_spin_unlock+0x28/0x50 [ 585.932807][ T6005] try_charge_memcg+0x652/0xc90 [ 585.932826][ T6005] ? __pfx_try_charge_memcg+0x10/0x10 [ 585.932844][ T6005] ? find_held_lock+0x2b/0x80 [ 585.932856][ T6005] ? rcu_read_unlock+0x17/0x60 [ 585.932871][ T6005] ? rcu_read_unlock+0x17/0x60 [ 585.932888][ T6005] charge_memcg+0xa6/0x280 [ 585.932901][ T6005] mem_cgroup_swapin_charge_folio+0xeb/0x470 [ 585.932922][ T6005] __swap_cache_prepare_and_add+0x528/0x9e0 [ 585.932950][ T6005] ? __pfx___swap_cache_prepare_and_add+0x10/0x10 [ 585.932970][ T6005] ? __pfx_swap_entry_swapped+0x10/0x10 [ 585.932988][ T6005] swap_cache_alloc_folio+0x1cb/0x300 [ 585.933009][ T6005] ? __pfx_swap_cache_alloc_folio+0x10/0x10 [ 585.933031][ T6005] ? finish_task_switch.isra.0+0x2c6/0xb80 [ 585.933049][ T6005] swap_cluster_readahead+0x411/0x770 [ 585.933073][ T6005] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 585.933096][ T6005] ? update_cfs_rq_load_avg+0x51/0x550 [ 585.933117][ T6005] ? __lock_acquire+0x4a5/0x2630 [ 585.933136][ T6005] ? get_vma_policy+0x23f/0x3b0 [ 585.933154][ T6005] swapin_readahead+0x160/0x12c0 [ 585.933180][ T6005] ? __pfx_swapin_readahead+0x10/0x10 [ 585.933199][ T6005] ? find_held_lock+0x2b/0x80 [ 585.933211][ T6005] ? swap_table_get+0x103/0x2c0 [ 585.933228][ T6005] ? swap_table_get+0x103/0x2c0 [ 585.933249][ T6005] ? swap_table_get+0x10d/0x2c0 [ 585.933267][ T6005] ? swap_cache_get_folio+0x1ae/0x600 [ 585.933287][ T6005] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 585.933304][ T6005] ? __pfx_get_swap_device+0x10/0x10 [ 585.933331][ T6005] ? do_swap_page+0xb2e/0x68e0 [ 585.933353][ T6005] do_swap_page+0xb2e/0x68e0 [ 585.933381][ T6005] ? __pfx_do_swap_page+0x10/0x10 [ 585.933400][ T6005] ? __free_object+0x2a8/0x400 [ 585.933421][ T6005] ? lockdep_hardirqs_on+0x78/0x100 [ 585.933440][ T6005] ? rcu_is_watching+0x12/0xc0 [ 585.933462][ T6005] ? __pte_offset_map+0x179/0x310 [ 585.933487][ T6005] __handle_mm_fault+0x18c1/0x2b60 [ 585.933510][ T6005] ? reacquire_held_locks+0xce/0x1e0 [ 585.933528][ T6005] ? __pfx___handle_mm_fault+0x10/0x10 [ 585.933550][ T6005] ? lock_vma_under_rcu+0x17c/0x590 [ 585.933580][ T6005] handle_mm_fault+0x36d/0xa20 [ 585.933603][ T6005] do_user_addr_fault+0x5a3/0x12f0 [ 585.933632][ T6005] exc_page_fault+0x6f/0xd0 [ 585.933648][ T6005] asm_exc_page_fault+0x26/0x30 [ 585.933662][ T6005] RIP: 0033:0x7f329975cfce [ 585.933676][ T6005] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 585.933690][ T6005] RSP: 002b:00007ffd2c76eff8 EFLAGS: 00010246 [ 585.933703][ T6005] RAX: 0000000000000000 RBX: 00005555622d7500 RCX: 00007f329975cfce [ 585.933712][ T6005] RDX: 00007ffd2c76f050 RSI: 0000000000000000 RDI: 0000000000000000 [ 585.933720][ T6005] RBP: 00007ffd2c76f0bc R08: 0000000000000000 R09: 0000000000000000 [ 585.933729][ T6005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000001388 [ 585.933737][ T6005] R13: 00000000000927c0 R14: 000000000008ee5c R15: 00007ffd2c76f110 [ 585.933756][ T6005] [ 585.933762][ T6005] memory: usage 3072kB, limit 3072kB, failcnt 93029 [ 587.367314][T29225] delete_channel: no stack [ 587.415830][ T6005] memory+swap: usage 3376kB, limit 9007199254740988kB, failcnt 0 [ 587.450857][ T6005] kmem: usage 1632kB, limit 9007199254740988kB, failcnt 0 [ 587.458016][ T6005] Memory cgroup stats for /syz1: [ 587.458122][ T6005] cache 1466368 [ 587.525658][ T6005] rss 0 [ 587.528454][ T6005] rss_huge 0 [ 587.558243][ T6005] shmem 0 [ 587.576164][ T6005] mapped_file 1462272 [ 587.605703][ T6005] dirty 0 [ 587.608666][ T6005] writeback 0 [ 587.636758][ T6005] workingset_refault_anon 4271 [ 587.669470][ T6005] workingset_refault_file 25626 [ 587.675581][ T6005] swap 311296 [ 587.679381][ T6005] swapcached 354209792 [ 587.707741][ T6005] pgpgin 246235 [ 587.723405][ T6005] pgpgout 246371 [ 587.726966][ T6005] pgfault 338060 [ 587.760344][ T6005] pgmajfault 2779 [ 587.763992][ T6005] inactive_anon 0 [ 587.767602][ T6005] active_anon 8192 [ 587.804037][ T6005] inactive_file 0 [ 587.807692][ T6005] active_file 4096 [ 587.844539][ T6005] unevictable 1462272 [ 587.848552][ T6005] hierarchical_memory_limit 3145728 [ 587.884929][ T6005] hierarchical_memsw_limit 9223372036854771712 [ 587.917946][ T6005] total_cache 1466368 [ 587.940202][ T6005] total_rss 0 [ 587.943509][ T6005] total_rss_huge 0 [ 587.947207][ T6005] total_shmem 0 [ 587.988265][ T6005] total_mapped_file 1462272 [ 588.015128][ T6005] total_dirty 0 [ 588.033428][ T6005] total_writeback 0 [ 588.037254][ T6005] total_workingset_refault_anon 4271 [ 588.080249][ T6005] total_workingset_refault_file 25626 [ 588.085644][ T6005] total_swap 311296 [ 588.119365][ T6005] total_swapcached 354209792 [ 588.143250][T29249] openvswitch: netlink: IP tunnel dst address not specified [ 588.150644][ T6005] total_pgpgin 246235 [ 588.162796][ T6005] total_pgpgout 246371 [ 588.193238][ T6005] total_pgfault 338060 [ 588.197334][ T6005] total_pgmajfault 2779 [ 588.221183][ T6005] total_inactive_anon 0 [ 588.247125][ T6005] total_active_anon 8192 [ 588.264575][ T6005] total_inactive_file 0 [ 588.268744][ T6005] total_active_file 4096 [ 588.304784][ T6005] total_unevictable 1462272 [ 588.325247][ T6005] anon_cost 1250 [ 588.354791][ T6005] file_cost 19 [ 588.358550][ T6005] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.10939,pid=29193,uid=0 [ 588.432042][ T6005] Memory cgroup out of memory: Killed process 29193 (syz.1.10939) total-vm:112664kB, anon-rss:1228kB, file-rss:23860kB, shmem-rss:0kB, UID:0 pgtables:144kB oom_score_adj:1000 [ 589.582307][T29306] netlink: 'syz.0.10994': attribute type 1 has an invalid length. [ 590.082152][T29321] netlink: 'syz.3.11001': attribute type 11 has an invalid length. [ 590.343629][T29331] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 590.479088][T29331] CIFS mount error: No usable UNC path provided in device string! [ 590.479088][T29331] [ 590.533258][T29331] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 591.142410][T29356] sg_write: process 5757 (syz.0.11018) changed security contexts after opening file descriptor, this is not allowed. [ 591.706868][T29376] netlink: 'syz.3.11026': attribute type 1 has an invalid length. [ 591.900708][T29385] openvswitch: netlink: Message has 20 unknown bytes. [ 592.321308][T29401] No such timeout policy "" [ 592.326150][T29401] netlink: Failed to associated timeout policy '' [ 593.695691][T29439] NFSD: Failed to start, no listeners configured. [ 594.017980][T29469] FAULT_INJECTION: forcing a failure. [ 594.017980][T29469] name failslab, interval 1, probability 0, space 0, times 0 [ 594.082372][T29469] CPU: 0 UID: 0 PID: 29469 Comm: syz.0.11070 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 594.082413][T29469] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 594.082422][T29469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 594.082431][T29469] Call Trace: [ 594.082437][T29469] [ 594.082444][T29469] dump_stack_lvl+0x100/0x190 [ 594.082475][T29469] should_fail_ex.cold+0x5/0xa [ 594.082494][T29469] ? __register_sysctl_table+0xbe4/0x1650 [ 594.082519][T29469] should_failslab+0xc2/0x120 [ 594.082535][T29469] __kmalloc_noprof+0xe0/0x850 [ 594.082562][T29469] __register_sysctl_table+0xbe4/0x1650 [ 594.082589][T29469] ? __pfx___register_sysctl_table+0x10/0x10 [ 594.082611][T29469] ? rcu_is_cpu_rrupt_from_idle+0x1f1/0x270 [ 594.082636][T29469] ? __asan_memcpy+0x3c/0x60 [ 594.082659][T29469] register_pidns_sysctls+0x11d/0x1c0 [ 594.082680][T29469] ? __ns_common_init+0x299/0x4b0 [ 594.082698][T29469] copy_pid_ns+0x680/0x10a0 [ 594.082716][T29469] ? __pfx_copy_pid_ns+0x10/0x10 [ 594.082733][T29469] ? rcu_is_watching+0x12/0xc0 [ 594.082759][T29469] ? copy_mnt_ns+0x106/0xc30 [ 594.082779][T29469] ? create_new_namespaces+0x30/0xac0 [ 594.082801][T29469] create_new_namespaces+0x2aa/0xac0 [ 594.082821][T29469] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 594.082839][T29469] ksys_unshare+0x473/0xad0 [ 594.082867][T29469] ? __pfx_ksys_unshare+0x10/0x10 [ 594.082893][T29469] __x64_sys_unshare+0x31/0x40 [ 594.082911][T29469] do_syscall_64+0x106/0xf80 [ 594.082932][T29469] ? clear_bhb_loop+0x40/0x90 [ 594.082952][T29469] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 594.082969][T29469] RIP: 0033:0x7fc71879c799 [ 594.082982][T29469] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 594.082996][T29469] RSP: 002b:00007fc71958d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 594.083012][T29469] RAX: ffffffffffffffda RBX: 00007fc718a15fa0 RCX: 00007fc71879c799 [ 594.083022][T29469] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080 [ 594.083031][T29469] RBP: 00007fc718832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 594.083040][T29469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 594.083049][T29469] R13: 00007fc718a16038 R14: 00007fc718a15fa0 R15: 00007fff7d9901d8 [ 594.083069][T29469] [ 594.083098][T29469] sysctl could not get directory: /kernel -12 [ 595.575715][T29516] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 596.209371][T29539] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 596.244542][T29513] openvswitch: netlink: Flow actions attr not present in new flow. [ 596.687575][T29554] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 596.701054][T29555] dyndbg: expected <4096 bytes into control [ 598.849749][T29621] forcing mempool usage for bio_alloc_bioset+0x392/0x850 [ 598.940860][T29644] nbd: couldn't find device at index 33904 [ 599.232069][T29656] input input44: cannot allocate more than FF_MAX_EFFECTS effects [ 600.067069][T29692] nbd: must specify an index to disconnect [ 601.698336][T29753] netlink: 'syz.1.11208': attribute type 11 has an invalid length. [ 601.741987][T29753] netlink: 'syz.1.11208': attribute type 11 has an invalid length. [ 601.749915][T29753] netlink: 'syz.1.11208': attribute type 11 has an invalid length. [ 601.818183][T29753] netlink: 'syz.1.11208': attribute type 11 has an invalid length. [ 601.858441][T29752] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 603.700304][T29831] tc_dump_action: action bad kind [ 605.608805][T29912] netlink: 'syz.1.11287': attribute type 11 has an invalid length. [ 605.649809][T29912] netlink: 'syz.1.11287': attribute type 11 has an invalid length. [ 605.689570][T29912] netlink: 'syz.1.11287': attribute type 11 has an invalid length. [ 605.713645][T29912] netlink: 'syz.1.11287': attribute type 11 has an invalid length. [ 606.465772][ T29] audit: type=1800 audit(4295069783.372:38): pid=29947 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.11303" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0 [ 606.651745][T29956] sctp: [Deprecated]: syz.3.11308 (pid 29956) Use of int in max_burst socket option deprecated. [ 606.651745][T29956] Use struct sctp_assoc_value instead [ 607.200672][T29973] openvswitch: netlink: ct_state flags aa1414ac unsupported [ 607.601661][T29983] netlink: 'syz.0.11321': attribute type 2 has an invalid length. [ 608.727837][T30022] netlink: 'syz.0.11337': attribute type 1 has an invalid length. [ 608.974775][T30028] openvswitch: netlink: Flow key attribute not present in set flow. [ 609.163797][T30035] openvswitch: netlink: IP tunnel dst address not specified [ 609.559785][T29992] netlink: Setting conntrack mark requires 'commit' flag. [ 611.321639][T30120] openvswitch: netlink: ERSPAN option length err (len 256, max 255). [ 612.221559][T30152] FAULT_INJECTION: forcing a failure. [ 612.221559][T30152] name failslab, interval 1, probability 0, space 0, times 0 [ 612.285196][T30152] CPU: 0 UID: 0 PID: 30152 Comm: syz.0.11398 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 612.285234][T30152] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 612.285244][T30152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 612.285253][T30152] Call Trace: [ 612.285258][T30152] [ 612.285264][T30152] dump_stack_lvl+0x100/0x190 [ 612.285293][T30152] should_fail_ex.cold+0x5/0xa [ 612.285310][T30152] ? sk_prot_alloc+0x10b/0x2a0 [ 612.285332][T30152] should_failslab+0xc2/0x120 [ 612.285348][T30152] __kmalloc_noprof+0xe0/0x850 [ 612.285373][T30152] sk_prot_alloc+0x10b/0x2a0 [ 612.285395][T30152] sk_alloc+0x36/0xe80 [ 612.285410][T30152] mISDN_sock_create+0x267/0x420 [ 612.285535][T30152] __sock_create+0x339/0x860 [ 612.285561][T30152] __sys_socket+0x14d/0x260 [ 612.285583][T30152] ? __pfx___sys_socket+0x10/0x10 [ 612.285610][T30152] __x64_sys_socket+0x72/0xb0 [ 612.285631][T30152] ? lockdep_hardirqs_on+0x78/0x100 [ 612.285650][T30152] do_syscall_64+0x106/0xf80 [ 612.285666][T30152] ? clear_bhb_loop+0x40/0x90 [ 612.285684][T30152] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 612.285699][T30152] RIP: 0033:0x7fc71879c799 [ 612.285713][T30152] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 612.285727][T30152] RSP: 002b:00007fc71958d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 612.285742][T30152] RAX: ffffffffffffffda RBX: 00007fc718a15fa0 RCX: 00007fc71879c799 [ 612.285752][T30152] RDX: 0000000000000002 RSI: 0000000000000002 RDI: 0000000000000022 [ 612.285761][T30152] RBP: 00007fc718832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 612.285770][T30152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 612.285778][T30152] R13: 00007fc718a16038 R14: 00007fc718a15fa0 R15: 00007fff7d9901d8 [ 612.285805][T30152] [ 613.792901][T30206] netlink: 206 bytes leftover after parsing attributes in process `syz.1.11420'. [ 613.892590][T30208] openvswitch: HfR: Dropping previously announced user features [ 615.444050][T30266] aoe: skb alloc failure [ 615.507820][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 615.514543][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 616.244432][T30286] zswap: compressor not available [ 616.677746][T30311] device-mapper: ioctl: device name cannot be "control", ".", or ".." [ 618.625257][T30372] bridge0: port 3(team0) entered blocking state [ 618.666465][T30372] bridge0: port 3(team0) entered disabled state [ 618.695071][T30372] team0: entered allmulticast mode [ 618.710012][T30372] team_slave_0: entered allmulticast mode [ 618.737616][T30372] team_slave_1: entered allmulticast mode [ 618.768537][T30372] team0: entered promiscuous mode [ 618.787026][T30372] team_slave_0: entered promiscuous mode [ 618.805047][T30372] team_slave_1: entered promiscuous mode [ 618.825677][T30372] bridge0: port 3(team0) entered blocking state [ 618.833254][T30372] bridge0: port 3(team0) entered forwarding state [ 619.779617][T30431] cifs: Unknown parameter 'T.żc[$⁍)UÑnE-ʙl- -_5Z omfwYh*/xDlݩgkǐA79Xa/f_ARxM vp$^;q3n-6+ekl*[GCHFx^ĒPktkyve' [ 620.477474][T30447] could not allocate digest TFM handle  [ 620.562793][T30452] netlink: 8 bytes leftover after parsing attributes in process `syz.2.11520'. [ 621.381560][T30477] netlink: 12 bytes leftover after parsing attributes in process `syz.3.11531'. [ 622.751521][T30506] zswap: compressor not available [ 624.504245][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.510794][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 628.164083][T30720] bridge0: port 3(veth1_macvtap) entered blocking state [ 628.195521][T30720] bridge0: port 3(veth1_macvtap) entered disabled state [ 628.232527][T30720] veth1_macvtap: entered allmulticast mode [ 628.261383][T30720] veth1_macvtap: left allmulticast mode [ 630.572212][T14457] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 630.572238][T14457] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 630.587046][T14457] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 630.587067][T14457] Bluetooth: hci2: adv larger than maximum supported [ 630.595415][T14457] Bluetooth: hci2: adv larger than maximum supported [ 630.602221][T14457] Bluetooth: hci2: Malformed LE Event: 0x0d [ 631.389024][T30843] FAULT_INJECTION: forcing a failure. [ 631.389024][T30843] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 631.441256][T30843] CPU: 0 UID: 0 PID: 30843 Comm: syz.0.11686 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 631.441293][T30843] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 631.441303][T30843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 631.441313][T30843] Call Trace: [ 631.441318][T30843] [ 631.441324][T30843] dump_stack_lvl+0x100/0x190 [ 631.441352][T30843] should_fail_ex.cold+0x5/0xa [ 631.441370][T30843] _copy_from_user+0x2e/0xd0 [ 631.441395][T30843] get_itimerspec64+0x16c/0x2f0 [ 631.441414][T30843] ? __pfx_get_itimerspec64+0x10/0x10 [ 631.441431][T30843] ? __pfx_do_futex+0x10/0x10 [ 631.441452][T30843] __x64_sys_timerfd_settime+0x15f/0x280 [ 631.441475][T30843] ? __pfx___x64_sys_timerfd_settime+0x10/0x10 [ 631.441497][T30843] ? xfd_validate_state+0x129/0x190 [ 631.441525][T30843] do_syscall_64+0x106/0xf80 [ 631.441543][T30843] ? clear_bhb_loop+0x40/0x90 [ 631.441561][T30843] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 631.441576][T30843] RIP: 0033:0x7fc71879c799 [ 631.441590][T30843] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 631.441604][T30843] RSP: 002b:00007fc71958d028 EFLAGS: 00000246 ORIG_RAX: 000000000000011e [ 631.441628][T30843] RAX: ffffffffffffffda RBX: 00007fc718a15fa0 RCX: 00007fc71879c799 [ 631.441638][T30843] RDX: 0000200000000040 RSI: 0000000000000003 RDI: ffffffffffffffff [ 631.441647][T30843] RBP: 00007fc718832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 631.441656][T30843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 631.441665][T30843] R13: 00007fc718a16038 R14: 00007fc718a15fa0 R15: 00007fff7d9901d8 [ 631.441685][T30843] [ 632.575298][T30879] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 632.634215][T30879] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 633.008019][T30893] sctp: [Deprecated]: syz.2.11707 (pid 30893) Use of struct sctp_assoc_value in delayed_ack socket option. [ 633.008019][T30893] Use struct sctp_sack_info instead [ 633.540309][T30909] sd 0:0:1:0: PR command failed: 1026 [ 633.568447][T30909] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 633.594197][T30909] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 634.910052][T30953] bridge0: port 3(bond0) entered blocking state [ 634.967485][T30953] bridge0: port 3(bond0) entered disabled state [ 635.010053][T30953] bond0: entered allmulticast mode [ 635.056345][T30953] bond_slave_0: entered allmulticast mode [ 635.090795][T30953] bond_slave_1: entered allmulticast mode [ 635.131688][T30953] bond0: entered promiscuous mode [ 635.197810][T30953] bond_slave_0: entered promiscuous mode [ 635.204246][T30953] bond_slave_1: entered promiscuous mode [ 635.240779][T30953] bridge0: port 3(bond0) entered blocking state [ 635.247135][T30953] bridge0: port 3(bond0) entered forwarding state [ 636.253191][T30992] tunl0: entered allmulticast mode [ 636.988255][T31026] netlink: 8 bytes leftover after parsing attributes in process `syz.3.11767'. [ 638.266454][T31074] netlink: 8 bytes leftover after parsing attributes in process `syz.0.11787'. [ 638.782603][T14457] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 638.782628][T14457] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 638.798935][T14457] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 638.798957][T14457] Bluetooth: hci0: adv larger than maximum supported [ 638.816904][T14457] Bluetooth: hci0: adv larger than maximum supported [ 638.823857][T14457] Bluetooth: hci0: Malformed LE Event: 0x0d [ 640.899655][T31169] zswap: compressor not available [ 641.852375][T31202] FAULT_INJECTION: forcing a failure. [ 641.852375][T31202] name failslab, interval 1, probability 0, space 0, times 0 [ 641.915871][T31202] CPU: 0 UID: 0 PID: 31202 Comm: syz.2.11831 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 641.915911][T31202] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 641.915921][T31202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 641.915931][T31202] Call Trace: [ 641.915936][T31202] [ 641.915949][T31202] dump_stack_lvl+0x100/0x190 [ 641.915977][T31202] should_fail_ex.cold+0x5/0xa [ 641.915995][T31202] ? lsm_blob_alloc+0x68/0x90 [ 641.916013][T31202] should_failslab+0xc2/0x120 [ 641.916028][T31202] __kmalloc_noprof+0xe0/0x850 [ 641.916049][T31202] ? trace_kmem_cache_alloc+0xf3/0x120 [ 641.916067][T31202] lsm_blob_alloc+0x68/0x90 [ 641.916085][T31202] security_prepare_creds+0x2d/0x290 [ 641.916103][T31202] prepare_creds+0x5d6/0x950 [ 641.916127][T31202] __sys_setfsgid+0xe3/0x3b0 [ 641.916145][T31202] do_syscall_64+0x106/0xf80 [ 641.916161][T31202] ? clear_bhb_loop+0x40/0x90 [ 641.916180][T31202] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 641.916196][T31202] RIP: 0033:0x7f073d19c799 [ 641.916209][T31202] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 641.916224][T31202] RSP: 002b:00007f073e05e028 EFLAGS: 00000246 ORIG_RAX: 000000000000007b [ 641.916239][T31202] RAX: ffffffffffffffda RBX: 00007f073d415fa0 RCX: 00007f073d19c799 [ 641.916248][T31202] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ee01 [ 641.916257][T31202] RBP: 00007f073d232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 641.916266][T31202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 641.916274][T31202] R13: 00007f073d416038 R14: 00007f073d415fa0 R15: 00007fff1920b9e8 [ 641.916293][T31202] [ 644.168580][T31265] netlink: 8 bytes leftover after parsing attributes in process `syz.0.11860'. [ 644.318895][T31271] netlink: 8 bytes leftover after parsing attributes in process `syz.1.11863'. [ 644.869940][T31285] netlink: 21 bytes leftover after parsing attributes in process `syz.1.11870'. [ 645.080790][T31293] netlink: 4 bytes leftover after parsing attributes in process `syz.1.11873'. [ 646.920529][T31348] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 649.375703][T31427] zswap: compressor not available [ 649.939382][T31456] netlink: 334 bytes leftover after parsing attributes in process `syz.1.11949'. [ 650.449325][T31466] syz.2.11954 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 650.518146][T31466] CPU: 0 UID: 0 PID: 31466 Comm: syz.2.11954 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 650.518181][T31466] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 650.518190][T31466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 650.518198][T31466] Call Trace: [ 650.518204][T31466] [ 650.518210][T31466] dump_stack_lvl+0x100/0x190 [ 650.518236][T31466] dump_header+0xfb/0x606 [ 650.518253][T31466] oom_kill_process.cold+0xd/0x330 [ 650.518270][T31466] out_of_memory+0x340/0x14f0 [ 650.518296][T31466] ? __pfx_out_of_memory+0x10/0x10 [ 650.518322][T31466] mem_cgroup_out_of_memory+0xc6/0x130 [ 650.518347][T31466] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 650.518365][T31466] ? find_held_lock+0x2b/0x80 [ 650.518383][T31466] ? do_raw_spin_unlock+0x145/0x1e0 [ 650.518404][T31466] ? _raw_spin_unlock+0x28/0x50 [ 650.518421][T31466] try_charge_memcg+0x652/0xc90 [ 650.518440][T31466] ? __pfx_try_charge_memcg+0x10/0x10 [ 650.518458][T31466] ? find_held_lock+0x2b/0x80 [ 650.518470][T31466] ? rcu_read_unlock+0x17/0x60 [ 650.518484][T31466] ? rcu_read_unlock+0x17/0x60 [ 650.518501][T31466] charge_memcg+0xa6/0x280 [ 650.518515][T31466] mem_cgroup_swapin_charge_folio+0xeb/0x470 [ 650.518535][T31466] __swap_cache_prepare_and_add+0x528/0x9e0 [ 650.518564][T31466] ? __pfx___swap_cache_prepare_and_add+0x10/0x10 [ 650.518583][T31466] ? __pfx_swap_entry_swapped+0x10/0x10 [ 650.518602][T31466] swap_cache_alloc_folio+0x1cb/0x300 [ 650.518623][T31466] ? __pfx_swap_cache_alloc_folio+0x10/0x10 [ 650.518645][T31466] ? finish_task_switch.isra.0+0x2c6/0xb80 [ 650.518663][T31466] swap_cluster_readahead+0x411/0x770 [ 650.518687][T31466] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 650.518719][T31466] ? get_vma_policy+0x23f/0x3b0 [ 650.518736][T31466] swapin_readahead+0x160/0x12c0 [ 650.518762][T31466] ? __pfx_swapin_readahead+0x10/0x10 [ 650.518780][T31466] ? find_held_lock+0x2b/0x80 [ 650.518793][T31466] ? swap_table_get+0x103/0x2c0 [ 650.518810][T31466] ? swap_table_get+0x103/0x2c0 [ 650.518830][T31466] ? swap_table_get+0x10d/0x2c0 [ 650.518849][T31466] ? swap_cache_get_folio+0x1ae/0x600 [ 650.518868][T31466] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 650.518886][T31466] ? __pfx_get_swap_device+0x10/0x10 [ 650.518912][T31466] ? do_swap_page+0xb2e/0x68e0 [ 650.518929][T31466] do_swap_page+0xb2e/0x68e0 [ 650.518957][T31466] ? __pfx_do_swap_page+0x10/0x10 [ 650.518981][T31466] ? rcu_is_watching+0x12/0xc0 [ 650.519002][T31466] ? __pte_offset_map+0x179/0x310 [ 650.519028][T31466] __handle_mm_fault+0x18c1/0x2b60 [ 650.519050][T31466] ? reacquire_held_locks+0xce/0x1e0 [ 650.519068][T31466] ? __pfx___handle_mm_fault+0x10/0x10 [ 650.519090][T31466] ? lock_vma_under_rcu+0x17c/0x590 [ 650.519120][T31466] handle_mm_fault+0x36d/0xa20 [ 650.519143][T31466] do_user_addr_fault+0x5a3/0x12f0 [ 650.519172][T31466] exc_page_fault+0x6f/0xd0 [ 650.519190][T31466] asm_exc_page_fault+0x26/0x30 [ 650.519204][T31466] RIP: 0033:0x7f073d1604f8 [ 650.519217][T31466] Code: 55 41 54 49 89 f4 55 48 89 fd 53 48 8d 5e 17 48 83 ec 18 48 83 fb 1f 0f 86 fd 03 00 00 48 83 e3 f0 48 85 ff 0f 84 05 07 00 00 <0f> b6 05 f1 c2 de 00 48 39 d8 0f 82 18 01 00 00 41 89 dd 41 c1 ed [ 650.519231][T31466] RSP: 002b:00007fff1920b8e0 EFLAGS: 00010202 [ 650.519243][T31466] RAX: 0000000000000000 RBX: 0000000000000120 RCX: 0000000000000000 [ 650.519252][T31466] RDX: 0000000000000001 RSI: 0000000000000110 RDI: 00007f073d3ebe20 [ 650.519260][T31466] RBP: 00007f073d3ebe20 R08: 00000000ffffffff R09: 0000000000000000 [ 650.519269][T31466] R10: 0000000000021000 R11: 0000000000000206 R12: 0000000000000110 [ 650.519277][T31466] R13: 000055558f738b00 R14: 00007f073d3ebe20 R15: 0000000000000000 [ 650.519297][T31466] [ 650.519302][T31466] memory: usage 3072kB, limit 3072kB, failcnt 103627 [ 651.085425][T31466] memory+swap: usage 3560kB, limit 9007199254740988kB, failcnt 0 [ 651.185507][T31466] kmem: usage 3060kB, limit 9007199254740988kB, failcnt 0 [ 651.210943][T31466] Memory cgroup stats for /syz2: [ 651.211046][T31466] cache 0 [ 651.244014][T31466] rss 4096 [ 651.253867][T31466] rss_huge 0 [ 651.265422][T31466] shmem 0 [ 651.275516][T31466] mapped_file 0 [ 651.289757][T31466] dirty 0 [ 651.297391][T31489] FAULT_INJECTION: forcing a failure. [ 651.297391][T31489] name failslab, interval 1, probability 0, space 0, times 0 [ 651.325487][T31466] writeback 4096 [ 651.329074][T31466] workingset_refault_anon 12154 [ 651.359569][T31466] workingset_refault_file 28046 [ 651.369904][T31489] CPU: 0 UID: 0 PID: 31489 Comm: syz.1.11964 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 651.369939][T31489] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 651.369949][T31489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 651.369958][T31489] Call Trace: [ 651.369963][T31489] [ 651.369970][T31489] dump_stack_lvl+0x100/0x190 [ 651.369999][T31489] should_fail_ex.cold+0x5/0xa [ 651.370018][T31489] should_failslab+0xc2/0x120 [ 651.370034][T31489] __kmalloc_cache_noprof+0x7a/0x6f0 [ 651.370056][T31489] ? subflow_create_ctx+0x9b/0x2e0 [ 651.370157][T31489] subflow_create_ctx+0x9b/0x2e0 [ 651.370178][T31489] subflow_ulp_init+0xc3/0x4f0 [ 651.370198][T31489] tcp_set_ulp+0x32e/0x7f0 [ 651.370258][T31489] mptcp_subflow_create_socket+0x385/0xa30 [ 651.370304][T31489] ? __pfx_mptcp_subflow_create_socket+0x10/0x10 [ 651.370333][T31489] __mptcp_nmpc_sk+0x17f/0x870 [ 651.370378][T31489] ? __pfx___mptcp_nmpc_sk+0x10/0x10 [ 651.370404][T31489] ? __local_bh_enable_ip+0x9e/0x120 [ 651.370423][T31489] mptcp_listen+0x135/0x4c0 [ 651.370438][T31489] ? __pfx_mptcp_listen+0x10/0x10 [ 651.370454][T31489] ? apparmor_socket_listen+0xf2/0x1a0 [ 651.370511][T31489] __sys_listen_socket+0x108/0x150 [ 651.370528][T31489] __sys_listen+0xa7/0x130 [ 651.370543][T31489] __x64_sys_listen+0x53/0x80 [ 651.370557][T31489] do_syscall_64+0x106/0xf80 [ 651.370575][T31489] ? clear_bhb_loop+0x40/0x90 [ 651.370593][T31489] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 651.370608][T31489] RIP: 0033:0x7f329979c799 [ 651.370622][T31489] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 651.370636][T31489] RSP: 002b:00007f329a5e0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000032 [ 651.370651][T31489] RAX: ffffffffffffffda RBX: 00007f3299a15fa0 RCX: 00007f329979c799 [ 651.370661][T31489] RDX: 0000000000000000 RSI: 0000000000000081 RDI: 0000000000000003 [ 651.370669][T31489] RBP: 00007f3299832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 651.370678][T31489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 651.370687][T31489] R13: 00007f3299a16038 R14: 00007f3299a15fa0 R15: 00007ffd2c76ed18 [ 651.370708][T31489] [ 651.596625][T31466] swap 507904 [ 651.599906][T31466] swapcached 344035328 [ 651.604663][T31466] pgpgin 266915 [ 651.608187][T31466] pgpgout 277676 [ 651.613228][T31466] pgfault 376122 [ 651.617727][T31466] pgmajfault 6786 [ 651.621463][T31466] inactive_anon 4096 [ 651.625336][T31466] active_anon 0 [ 651.628773][T31466] inactive_file 0 [ 651.632493][T31466] active_file 0 [ 651.635931][T31466] unevictable 0 [ 651.639375][T31466] hierarchical_memory_limit 3145728 [ 651.644647][T31466] hierarchical_memsw_limit 9223372036854771712 [ 651.650817][T31466] total_cache 0 [ 651.654254][T31466] total_rss 4096 [ 651.657830][T31466] total_rss_huge 0 [ 651.661562][T31466] total_shmem 0 [ 651.665000][T31466] total_mapped_file 0 [ 651.669007][T31466] total_dirty 0 [ 651.672479][T31466] total_writeback 4096 [ 651.676524][T31466] total_workingset_refault_anon 12154 [ 651.681954][T31466] total_workingset_refault_file 28046 [ 651.687317][T31466] total_swap 507904 [ 651.691177][T31466] total_swapcached 344035328 [ 651.695808][T31466] total_pgpgin 266915 [ 651.699767][T31466] total_pgpgout 277676 [ 651.703854][T31466] total_pgfault 376122 [ 651.707962][T31466] total_pgmajfault 6786 [ 651.713618][T31466] total_inactive_anon 4096 [ 651.718097][T31466] total_active_anon 0 [ 651.722103][T31466] total_inactive_file 0 [ 651.726238][T31466] total_active_file 0 [ 651.730288][T31466] total_unevictable 0 [ 651.734247][T31466] anon_cost 947 [ 651.737680][T31466] file_cost 0 [ 651.741049][T31466] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.11954,pid=31466,uid=0 [ 651.756060][T31466] Memory cgroup out of memory: Killed process 31466 (syz.2.11954) total-vm:104404kB, anon-rss:1232kB, file-rss:22504kB, shmem-rss:0kB, UID:0 pgtables:144kB oom_score_adj:1000 [ 652.110291][T31503] bridge0: port 3(hsr0) entered blocking state [ 652.127725][T31503] bridge0: port 3(hsr0) entered disabled state [ 652.151500][T31503] hsr0: entered allmulticast mode [ 652.170508][T31503] hsr_slave_0: entered allmulticast mode [ 652.176166][T31503] hsr_slave_1: entered allmulticast mode [ 652.200764][T31503] hsr0: entered promiscuous mode [ 652.217746][T31507] netlink: 29 bytes leftover after parsing attributes in process `syz.2.11969'. [ 652.228968][T31503] bridge0: port 3(hsr0) entered blocking state [ 652.235234][T31503] bridge0: port 3(hsr0) entered forwarding state [ 652.763375][T31532] netlink: 8 bytes leftover after parsing attributes in process `syz.1.11984'. [ 653.649331][T31574] netlink: 'syz.2.12004': attribute type 2 has an invalid length. [ 653.709632][T31577] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12006'. [ 654.044867][T14457] Bluetooth: hci3: Malformed HCI Event [ 655.685725][T31637] netlink: 28 bytes leftover after parsing attributes in process `syz.3.12031'. [ 655.881214][T31646] netlink: 342 bytes leftover after parsing attributes in process `syz.2.12036'. [ 656.482543][T31669] netlink: 8 bytes leftover after parsing attributes in process `syz.2.12047'. [ 657.647114][T31711] netlink: 'syz.1.12063': attribute type 4 has an invalid length. [ 657.709230][T31711] netlink: 62 bytes leftover after parsing attributes in process `syz.1.12063'. [ 658.289261][T31738] syz.2.12069 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 658.351613][T31738] CPU: 0 UID: 0 PID: 31738 Comm: syz.2.12069 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 658.351649][T31738] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 658.351658][T31738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 658.351667][T31738] Call Trace: [ 658.351672][T31738] [ 658.351678][T31738] dump_stack_lvl+0x100/0x190 [ 658.351705][T31738] dump_header+0xfb/0x606 [ 658.351722][T31738] oom_kill_process.cold+0xd/0x330 [ 658.351738][T31738] out_of_memory+0x340/0x14f0 [ 658.351764][T31738] ? __pfx_out_of_memory+0x10/0x10 [ 658.351789][T31738] mem_cgroup_out_of_memory+0xc6/0x130 [ 658.351809][T31738] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 658.351827][T31738] ? find_held_lock+0x2b/0x80 [ 658.351844][T31738] ? do_raw_spin_unlock+0x145/0x1e0 [ 658.351865][T31738] ? _raw_spin_unlock+0x28/0x50 [ 658.351882][T31738] try_charge_memcg+0x652/0xc90 [ 658.351909][T31738] ? __pfx_try_charge_memcg+0x10/0x10 [ 658.351928][T31738] ? find_held_lock+0x2b/0x80 [ 658.351940][T31738] ? rcu_read_unlock+0x17/0x60 [ 658.351954][T31738] ? rcu_read_unlock+0x17/0x60 [ 658.351971][T31738] charge_memcg+0xa6/0x280 [ 658.351985][T31738] mem_cgroup_swapin_charge_folio+0xeb/0x470 [ 658.352005][T31738] __swap_cache_prepare_and_add+0x528/0x9e0 [ 658.352033][T31738] ? __pfx___swap_cache_prepare_and_add+0x10/0x10 [ 658.352052][T31738] ? __pfx_swap_entry_swapped+0x10/0x10 [ 658.352071][T31738] swap_cache_alloc_folio+0x1cb/0x300 [ 658.352092][T31738] ? __pfx_swap_cache_alloc_folio+0x10/0x10 [ 658.352111][T31738] ? __handle_mm_fault+0x180f/0x2b60 [ 658.352129][T31738] ? do_user_addr_fault+0x5a3/0x12f0 [ 658.352155][T31738] ? exc_page_fault+0x6f/0xd0 [ 658.352169][T31738] ? asm_exc_page_fault+0x26/0x30 [ 658.352187][T31738] swap_cluster_readahead+0x411/0x770 [ 658.352212][T31738] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 658.352232][T31738] ? xas_set_mark+0x2b9/0x370 [ 658.352249][T31738] ? __lock_acquire+0x4a5/0x2630 [ 658.352266][T31738] ? __xa_set_mark+0xd1/0x120 [ 658.352290][T31738] ? get_vma_policy+0x23f/0x3b0 [ 658.352307][T31738] swapin_readahead+0x160/0x12c0 [ 658.352325][T31738] ? __lock_acquire+0x4a5/0x2630 [ 658.352348][T31738] ? __pfx_swapin_readahead+0x10/0x10 [ 658.352367][T31738] ? find_held_lock+0x2b/0x80 [ 658.352379][T31738] ? swap_table_get+0x103/0x2c0 [ 658.352396][T31738] ? swap_table_get+0x103/0x2c0 [ 658.352417][T31738] ? swap_table_get+0x10d/0x2c0 [ 658.352435][T31738] ? swap_cache_get_folio+0x1ae/0x600 [ 658.352455][T31738] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 658.352472][T31738] ? __pfx_get_swap_device+0x10/0x10 [ 658.352498][T31738] ? do_swap_page+0xb2e/0x68e0 [ 658.352515][T31738] do_swap_page+0xb2e/0x68e0 [ 658.352537][T31738] ? do_wp_page+0x1914/0x4f00 [ 658.352556][T31738] ? __pfx_do_swap_page+0x10/0x10 [ 658.352576][T31738] ? do_raw_spin_lock+0x128/0x260 [ 658.352597][T31738] ? rcu_is_watching+0x12/0xc0 [ 658.352619][T31738] ? __pte_offset_map+0x179/0x310 [ 658.352644][T31738] __handle_mm_fault+0x18c1/0x2b60 [ 658.352667][T31738] ? reacquire_held_locks+0xce/0x1e0 [ 658.352685][T31738] ? __pfx___handle_mm_fault+0x10/0x10 [ 658.352707][T31738] ? lock_vma_under_rcu+0x17c/0x590 [ 658.352737][T31738] handle_mm_fault+0x36d/0xa20 [ 658.352760][T31738] do_user_addr_fault+0x5a3/0x12f0 [ 658.352788][T31738] exc_page_fault+0x6f/0xd0 [ 658.352804][T31738] asm_exc_page_fault+0x26/0x30 [ 658.352818][T31738] RIP: 0033:0x7f073d04b190 [ 658.352832][T31738] Code: 68 00 00 00 00 e9 00 00 00 00 ff 25 2a 9f 39 00 68 00 00 00 00 e9 00 00 00 00 ff 25 22 9f 39 00 68 21 00 00 00 e9 90 fe ff ff 25 1a 9f 39 00 68 0a 00 00 00 e9 80 fe ff ff ff 25 12 9f 39 00 [ 658.352845][T31738] RSP: 002b:00007fff1920ba28 EFLAGS: 00010212 [ 658.352857][T31738] RAX: 000000007fffffff RBX: 00007f073df45720 RCX: 000000000000000a [ 658.352866][T31738] RDX: 000000000000000c RSI: 0000000000000000 RDI: 0000001b34304f38 [ 658.352875][T31738] RBP: 000000000000000c R08: 0000000000000008 R09: 00007f073d416038 [ 658.352883][T31738] R10: 0000000000000003 R11: 0000000000000004 R12: 000000000001f0bc [ 658.352891][T31738] R13: 000000000001f0ac R14: 000000000000000c R15: 0000000000000000 [ 658.352915][T31738] [ 658.352921][T31738] memory: usage 3072kB, limit 3072kB, failcnt 104422 [ 659.699631][T31738] memory+swap: usage 2948kB, limit 9007199254740988kB, failcnt 0 [ 659.773592][T31738] kmem: usage 2380kB, limit 9007199254740988kB, failcnt 0 [ 659.819781][T31738] Memory cgroup stats for /syz2: [ 659.819889][T31738] cache 0 [ 659.862151][T31738] rss 4096 [ 659.865223][T31738] rss_huge 0 [ 659.868403][T31738] shmem 0 [ 659.901351][T31738] mapped_file 0 [ 659.916358][T31738] dirty 0 [ 659.919315][T31738] writeback 98304 [ 659.956786][T31738] workingset_refault_anon 12434 [ 659.978881][T31738] workingset_refault_file 28046 [ 659.989078][T31775] [U] ^C [ 659.997673][T31738] swap 405504 [ 660.012911][T31738] swapcached 344256512 [ 660.017013][T31738] pgpgin 268545 [ 660.048491][T31738] pgpgout 279292 [ 660.068290][T31738] pgfault 380851 [ 660.100164][T31738] pgmajfault 7011 [ 660.119558][T31738] inactive_anon 106496 [ 660.136853][T31738] active_anon 0 [ 660.155700][T31738] inactive_file 0 [ 660.177289][T31738] active_file 0 [ 660.196863][T31738] unevictable 0 [ 660.218279][T31738] hierarchical_memory_limit 3145728 [ 660.243559][T31738] hierarchical_memsw_limit 9223372036854771712 [ 660.278326][T31738] total_cache 0 [ 660.297588][T31738] total_rss 4096 [ 660.321980][T31738] total_rss_huge 0 [ 660.349730][T31738] total_shmem 0 [ 660.359855][T31738] total_mapped_file 0 [ 660.382217][T31738] total_dirty 0 [ 660.393169][T31738] total_writeback 98304 [ 660.421943][T31738] total_workingset_refault_anon 12434 [ 660.427957][T31738] total_workingset_refault_file 28046 [ 660.466383][T31738] total_swap 405504 [ 660.494692][T31738] total_swapcached 344256512 [ 660.520534][T31738] total_pgpgin 268545 [ 660.540187][T31738] total_pgpgout 279292 [ 660.544273][T31738] total_pgfault 380851 [ 660.548343][T31738] total_pgmajfault 7011 [ 660.588444][T31738] total_inactive_anon 106496 [ 660.612017][T31738] total_active_anon 0 [ 660.625122][T31738] total_inactive_file 0 [ 660.650521][T31738] total_active_file 0 [ 660.675051][T31738] total_unevictable 0 [ 660.679046][T31738] anon_cost 947 [ 660.703113][T31738] file_cost 0 [ 660.706415][T31738] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.12069,pid=31738,uid=0 [ 660.788375][T31738] Memory cgroup out of memory: Killed process 31738 (syz.2.12069) total-vm:104272kB, anon-rss:1232kB, file-rss:23204kB, shmem-rss:0kB, UID:0 pgtables:144kB oom_score_adj:1000 [ 662.487955][ T6011] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 662.631267][ T6011] CPU: 0 UID: 0 PID: 6011 Comm: syz-executor Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 662.631302][ T6011] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 662.631311][ T6011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 662.631320][ T6011] Call Trace: [ 662.631325][ T6011] [ 662.631331][ T6011] dump_stack_lvl+0x100/0x190 [ 662.631358][ T6011] dump_header+0xfb/0x606 [ 662.631374][ T6011] oom_kill_process.cold+0xd/0x330 [ 662.631392][ T6011] out_of_memory+0x340/0x14f0 [ 662.631418][ T6011] ? __pfx_out_of_memory+0x10/0x10 [ 662.631443][ T6011] mem_cgroup_out_of_memory+0xc6/0x130 [ 662.631464][ T6011] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 662.631481][ T6011] ? find_held_lock+0x2b/0x80 [ 662.631498][ T6011] ? do_raw_spin_unlock+0x145/0x1e0 [ 662.631519][ T6011] ? _raw_spin_unlock+0x28/0x50 [ 662.631536][ T6011] try_charge_memcg+0x652/0xc90 [ 662.631555][ T6011] ? __pfx_try_charge_memcg+0x10/0x10 [ 662.631574][ T6011] ? find_held_lock+0x2b/0x80 [ 662.631586][ T6011] ? rcu_read_unlock+0x17/0x60 [ 662.631600][ T6011] ? rcu_read_unlock+0x17/0x60 [ 662.631617][ T6011] charge_memcg+0xa6/0x280 [ 662.631631][ T6011] mem_cgroup_swapin_charge_folio+0xeb/0x470 [ 662.631651][ T6011] __swap_cache_prepare_and_add+0x528/0x9e0 [ 662.631680][ T6011] ? __pfx___swap_cache_prepare_and_add+0x10/0x10 [ 662.631699][ T6011] ? __pfx_swap_entry_swapped+0x10/0x10 [ 662.631726][ T6011] swap_cache_alloc_folio+0x1cb/0x300 [ 662.631747][ T6011] ? __pfx_swap_cache_alloc_folio+0x10/0x10 [ 662.631773][ T6011] swap_cluster_readahead+0x411/0x770 [ 662.631797][ T6011] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 662.631820][ T6011] ? update_cfs_rq_load_avg+0x51/0x550 [ 662.631841][ T6011] ? __lock_acquire+0x4a5/0x2630 [ 662.631860][ T6011] ? get_vma_policy+0x23f/0x3b0 [ 662.631878][ T6011] swapin_readahead+0x160/0x12c0 [ 662.631904][ T6011] ? __pfx_swapin_readahead+0x10/0x10 [ 662.631922][ T6011] ? find_held_lock+0x2b/0x80 [ 662.631934][ T6011] ? swap_table_get+0x103/0x2c0 [ 662.631952][ T6011] ? swap_table_get+0x103/0x2c0 [ 662.631972][ T6011] ? swap_table_get+0x10d/0x2c0 [ 662.631990][ T6011] ? swap_cache_get_folio+0x1ae/0x600 [ 662.632009][ T6011] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 662.632027][ T6011] ? __pfx_get_swap_device+0x10/0x10 [ 662.632053][ T6011] ? do_swap_page+0xb2e/0x68e0 [ 662.632071][ T6011] do_swap_page+0xb2e/0x68e0 [ 662.632098][ T6011] ? __pfx_do_swap_page+0x10/0x10 [ 662.632117][ T6011] ? __free_object+0x2a8/0x400 [ 662.632136][ T6011] ? lockdep_hardirqs_on+0x78/0x100 [ 662.632154][ T6011] ? rcu_is_watching+0x12/0xc0 [ 662.632175][ T6011] ? __pte_offset_map+0x179/0x310 [ 662.632201][ T6011] __handle_mm_fault+0x18c1/0x2b60 [ 662.632223][ T6011] ? reacquire_held_locks+0xce/0x1e0 [ 662.632241][ T6011] ? __pfx___handle_mm_fault+0x10/0x10 [ 662.632263][ T6011] ? lock_vma_under_rcu+0x17c/0x590 [ 662.632293][ T6011] handle_mm_fault+0x36d/0xa20 [ 662.632315][ T6011] do_user_addr_fault+0x5a3/0x12f0 [ 662.632344][ T6011] exc_page_fault+0x6f/0xd0 [ 662.632360][ T6011] asm_exc_page_fault+0x26/0x30 [ 662.632375][ T6011] RIP: 0033:0x7f073d15cfce [ 662.632388][ T6011] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 662.632401][ T6011] RSP: 002b:00007fff1920bcc8 EFLAGS: 00010246 [ 662.632414][ T6011] RAX: 0000000000000000 RBX: 000055558f725500 RCX: 00007f073d15cfce [ 662.632422][ T6011] RDX: 00007fff1920bd20 RSI: 0000000000000000 RDI: 0000000000000000 [ 662.632431][ T6011] RBP: 00007fff1920bd8c R08: 0000000000000000 R09: 0000000000000000 [ 662.632439][ T6011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000001388 [ 662.632447][ T6011] R13: 00000000000927c0 R14: 00000000000a1a00 R15: 00007fff1920bde0 [ 662.632467][ T6011] [ 662.632472][ T6011] memory: usage 3072kB, limit 3072kB, failcnt 104519 [ 663.068443][T31897] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input45 [ 663.846205][ T6011] memory+swap: usage 3544kB, limit 9007199254740988kB, failcnt 0 [ 663.882019][ T6011] kmem: usage 3016kB, limit 9007199254740988kB, failcnt 0 [ 663.910144][ T6011] Memory cgroup stats for /syz2: [ 663.910245][ T6011] cache 0 [ 663.933979][ T6011] rss 4096 [ 663.937041][ T6011] rss_huge 0 [ 663.954633][ T6011] shmem 0 [ 663.966334][ T6011] mapped_file 0 [ 663.987958][ T6011] dirty 0 [ 663.997544][ T6011] writeback 12288 [ 664.011481][ T6011] workingset_refault_anon 12452 [ 664.027510][ T6011] workingset_refault_file 28046 [ 664.044609][ T6011] swap 483328 [ 664.057230][ T6011] swapcached 344297472 [ 664.070299][ T6011] pgpgin 268812 [ 664.082898][ T6011] pgpgout 279577 [ 664.096138][ T6011] pgfault 381666 [ 664.108849][ T6011] pgmajfault 7024 [ 664.119950][ T6011] inactive_anon 32768 [ 664.134667][ T6011] active_anon 0 [ 664.157014][ T6011] inactive_file 0 [ 664.169761][ T6011] active_file 0 [ 664.183291][ T6011] unevictable 0 [ 664.203261][ T6011] hierarchical_memory_limit 3145728 [ 664.221859][ T6011] hierarchical_memsw_limit 9223372036854771712 [ 664.243306][ T6011] total_cache 0 [ 664.255490][ T6011] total_rss 4096 [ 664.266908][ T6011] total_rss_huge 0 [ 664.279652][ T6011] total_shmem 0 [ 664.295284][ T6011] total_mapped_file 0 [ 664.313798][ T6011] total_dirty 0 [ 664.325063][ T6011] total_writeback 12288 [ 664.340739][ T6011] total_workingset_refault_anon 12452 [ 664.358560][ T6011] total_workingset_refault_file 28046 [ 664.376286][ T6011] total_swap 483328 [ 664.391938][ T6011] total_swapcached 344297472 [ 664.405437][ T6011] total_pgpgin 268812 [ 664.421800][ T6011] total_pgpgout 279577 [ 664.435842][ T6011] total_pgfault 381666 [ 664.450394][ T6011] total_pgmajfault 7024 [ 664.458994][ T6011] total_inactive_anon 32768 [ 664.469383][ T6011] total_active_anon 0 [ 664.478125][ T6011] total_inactive_file 0 [ 664.486741][ T6011] total_active_file 0 [ 664.499104][ T6011] total_unevictable 0 [ 664.509682][ T6011] anon_cost 947 [ 664.518945][ T6011] file_cost 0 [ 664.527349][ T6011] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.12115,pid=31862,uid=0 [ 664.559168][ T6011] Memory cgroup out of memory: Killed process 31862 (syz.2.12115) total-vm:104404kB, anon-rss:1236kB, file-rss:22516kB, shmem-rss:0kB, UID:0 pgtables:144kB oom_score_adj:1000 [ 665.979521][T31991] NFSD: Failed to start, no listeners configured. [ 666.405284][T32006] zswap: compressor not available [ 666.430751][T32012] overlayfs: "check_copy_up" module option is obsolete [ 666.564902][T32017] FAULT_INJECTION: forcing a failure. [ 666.564902][T32017] name failslab, interval 1, probability 0, space 0, times 0 [ 666.721429][T32017] CPU: 0 UID: 0 PID: 32017 Comm: syz.1.12161 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 666.721469][T32017] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 666.721479][T32017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 666.721489][T32017] Call Trace: [ 666.721495][T32017] [ 666.721501][T32017] dump_stack_lvl+0x100/0x190 [ 666.721529][T32017] should_fail_ex.cold+0x5/0xa [ 666.721548][T32017] should_failslab+0xc2/0x120 [ 666.721564][T32017] __kmalloc_cache_noprof+0x7a/0x6f0 [ 666.721584][T32017] ? allocate_file_region_entries+0x1a0/0x620 [ 666.721610][T32017] allocate_file_region_entries+0x1a0/0x620 [ 666.721636][T32017] ? __pfx_allocate_file_region_entries+0x10/0x10 [ 666.721664][T32017] region_chg+0x85/0x140 [ 666.721686][T32017] __vma_reservation_common+0x376/0x720 [ 666.721708][T32017] ? __pfx___vma_reservation_common+0x10/0x10 [ 666.721731][T32017] ? __pfx___might_resched+0x10/0x10 [ 666.721757][T32017] hugetlb_no_page+0xb2b/0x1970 [ 666.721781][T32017] hugetlb_fault+0x5df/0x1450 [ 666.721802][T32017] ? __pfx_hugetlb_fault+0x10/0x10 [ 666.721827][T32017] ? find_vma+0xbf/0x140 [ 666.721840][T32017] ? __pfx_find_vma+0x10/0x10 [ 666.721857][T32017] handle_mm_fault+0x5f1/0xa20 [ 666.721880][T32017] do_user_addr_fault+0x74c/0x12f0 [ 666.721909][T32017] exc_page_fault+0x6f/0xd0 [ 666.721928][T32017] asm_exc_page_fault+0x26/0x30 [ 666.721943][T32017] RIP: 0010:__put_user_4+0xd/0x20 [ 666.721961][T32017] Code: 66 89 01 31 c9 0f 01 ca e9 c0 d0 03 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca e9 97 d0 03 00 0f 1f 80 00 00 00 00 90 90 90 [ 666.721976][T32017] RSP: 0018:ffffc90005957e58 EFLAGS: 00050202 [ 666.721988][T32017] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000007 [ 666.721997][T32017] RDX: 0000000000000000 RSI: ffffffff8255f251 RDI: ffff888041b7615c [ 666.722006][T32017] RBP: 0000000000000002 R08: 0000000000000001 R09: 00000000000001c5 [ 666.722015][T32017] R10: 0000000000000200 R11: 0000000000000000 R12: 1ffff92000b2afce [ 666.722024][T32017] R13: 0000000000000007 R14: 0000000000000000 R15: dffffc0000000000 [ 666.722039][T32017] ? __might_fault+0x111/0x140 [ 666.722062][T32017] __do_sys_prctl+0xd67/0x2330 [ 666.722084][T32017] ? __pfx___do_sys_prctl+0x10/0x10 [ 666.722111][T32017] do_syscall_64+0x106/0xf80 [ 666.722127][T32017] ? clear_bhb_loop+0x40/0x90 [ 666.722145][T32017] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 666.722160][T32017] RIP: 0033:0x7f329979c799 [ 666.722172][T32017] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 666.722186][T32017] RSP: 002b:00007f329a5e0028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 666.722199][T32017] RAX: ffffffffffffffda RBX: 00007f3299a15fa0 RCX: 00007f329979c799 [ 666.722209][T32017] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000002 [ 666.722217][T32017] RBP: 00007f3299832bd9 R08: 0000000000000001 R09: 0000000000000000 [ 666.722226][T32017] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000 [ 666.722234][T32017] R13: 00007f3299a16038 R14: 00007f3299a15fa0 R15: 00007ffd2c76ed18 [ 666.722254][T32017] [ 669.552982][T32092] sd 0:0:1:0: PR command failed: 1026 [ 669.574808][T32092] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 669.605203][T32092] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 670.368839][T32114] FAULT_INJECTION: forcing a failure. [ 670.368839][T32114] name failslab, interval 1, probability 0, space 0, times 0 [ 670.433503][T32114] CPU: 0 UID: 0 PID: 32114 Comm: syz.2.12205 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 670.433541][T32114] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 670.433550][T32114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 670.433560][T32114] Call Trace: [ 670.433565][T32114] [ 670.433571][T32114] dump_stack_lvl+0x100/0x190 [ 670.433598][T32114] should_fail_ex.cold+0x5/0xa [ 670.433617][T32114] should_failslab+0xc2/0x120 [ 670.433632][T32114] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 670.433654][T32114] ? copy_net_ns+0xe8/0x7c0 [ 670.433678][T32114] copy_net_ns+0xe8/0x7c0 [ 670.433696][T32114] ? copy_cgroup_ns+0x71/0x970 [ 670.433715][T32114] create_new_namespaces+0x3ea/0xac0 [ 670.433736][T32114] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 670.433753][T32114] ksys_unshare+0x473/0xad0 [ 670.433772][T32114] ? __pfx_ksys_unshare+0x10/0x10 [ 670.433797][T32114] __x64_sys_unshare+0x31/0x40 [ 670.433815][T32114] do_syscall_64+0x106/0xf80 [ 670.433832][T32114] ? clear_bhb_loop+0x40/0x90 [ 670.433850][T32114] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 670.433865][T32114] RIP: 0033:0x7f073d19c799 [ 670.433877][T32114] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 670.433892][T32114] RSP: 002b:00007f073e05e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 670.433907][T32114] RAX: ffffffffffffffda RBX: 00007f073d415fa0 RCX: 00007f073d19c799 [ 670.433918][T32114] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 670.433927][T32114] RBP: 00007f073d232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 670.433935][T32114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 670.433944][T32114] R13: 00007f073d416038 R14: 00007f073d415fa0 R15: 00007fff1920b9e8 [ 670.433963][T32114] [ 670.643615][T32118] FAULT_INJECTION: forcing a failure. [ 670.643615][T32118] name failslab, interval 1, probability 0, space 0, times 0 [ 670.657090][T32118] CPU: 0 UID: 0 PID: 32118 Comm: syz.0.12206 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 670.657127][T32118] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 670.657137][T32118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 670.657147][T32118] Call Trace: [ 670.657152][T32118] [ 670.657157][T32118] dump_stack_lvl+0x100/0x190 [ 670.657185][T32118] should_fail_ex.cold+0x5/0xa [ 670.657204][T32118] ? sk_prot_alloc+0x10b/0x2a0 [ 670.657224][T32118] should_failslab+0xc2/0x120 [ 670.657240][T32118] __kmalloc_noprof+0xe0/0x850 [ 670.657266][T32118] sk_prot_alloc+0x10b/0x2a0 [ 670.657287][T32118] sk_alloc+0x36/0xe80 [ 670.657303][T32118] mctp_pf_create+0xe8/0x360 [ 670.657323][T32118] __sock_create+0x339/0x860 [ 670.657347][T32118] __sys_socket+0x14d/0x260 [ 670.657370][T32118] ? __pfx___sys_socket+0x10/0x10 [ 670.657398][T32118] __x64_sys_socket+0x72/0xb0 [ 670.657419][T32118] ? lockdep_hardirqs_on+0x78/0x100 [ 670.657436][T32118] do_syscall_64+0x106/0xf80 [ 670.657451][T32118] ? clear_bhb_loop+0x40/0x90 [ 670.657469][T32118] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 670.657484][T32118] RIP: 0033:0x7fc71879c799 [ 670.657498][T32118] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 670.657512][T32118] RSP: 002b:00007fc71958d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 670.657527][T32118] RAX: ffffffffffffffda RBX: 00007fc718a15fa0 RCX: 00007fc71879c799 [ 670.657537][T32118] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 000000000000002d [ 670.657546][T32118] RBP: 00007fc718832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 670.657555][T32118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 670.657563][T32118] R13: 00007fc718a16038 R14: 00007fc718a15fa0 R15: 00007fff7d9901d8 [ 670.657584][T32118] [ 671.767832][T32133] input: jJǸ-9%vJ86 as /devices/virtual/input/input46 [ 673.143867][T32179] ovs_: entered promiscuous mode [ 673.463016][T32196] FAULT_INJECTION: forcing a failure. [ 673.463016][T32196] name fail_futex, interval 1, probability 0, space 0, times 1 [ 673.528597][T32196] CPU: 0 UID: 0 PID: 32196 Comm: syz.2.12236 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 673.528636][T32196] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 673.528646][T32196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 673.528655][T32196] Call Trace: [ 673.528660][T32196] [ 673.528666][T32196] dump_stack_lvl+0x100/0x190 [ 673.528701][T32196] should_fail_ex.cold+0x5/0xa [ 673.528721][T32196] get_futex_key+0x1d2/0x1620 [ 673.528742][T32196] ? __pfx_get_futex_key+0x10/0x10 [ 673.528766][T32196] futex_wake+0xea/0x530 [ 673.528787][T32196] ? trace_kmem_cache_alloc+0xf3/0x120 [ 673.528802][T32196] ? __kasan_slab_alloc+0x89/0x90 [ 673.528825][T32196] ? lockdep_init_map_type+0x5c/0x250 [ 673.528844][T32196] ? __pfx_futex_wake+0x10/0x10 [ 673.528867][T32196] ? __lock_acquire+0x4a5/0x2630 [ 673.528886][T32196] ? file_init_path+0x48e/0x670 [ 673.528906][T32196] do_futex+0x32b/0x350 [ 673.528924][T32196] ? __pfx_do_futex+0x10/0x10 [ 673.528949][T32196] ? lock_acquire+0x1cf/0x380 [ 673.528968][T32196] ? find_held_lock+0x2b/0x80 [ 673.528981][T32196] ? fd_install+0x223/0x580 [ 673.529006][T32196] __x64_sys_futex+0x34f/0x4d0 [ 673.529026][T32196] ? fd_install+0x24f/0x580 [ 673.529049][T32196] ? __pfx___x64_sys_futex+0x10/0x10 [ 673.529075][T32196] do_syscall_64+0x106/0xf80 [ 673.529093][T32196] ? clear_bhb_loop+0x40/0x90 [ 673.529110][T32196] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 673.529125][T32196] RIP: 0033:0x7f073d19c799 [ 673.529139][T32196] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 673.529154][T32196] RSP: 002b:00007f073e05e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 673.529169][T32196] RAX: ffffffffffffffda RBX: 00007f073d415fa8 RCX: 00007f073d19c799 [ 673.529178][T32196] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f073d415fac [ 673.529187][T32196] RBP: 00007f073d415fa0 R08: 0000000000000000 R09: 0000000000000000 [ 673.529196][T32196] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 673.529205][T32196] R13: 00007f073d416038 R14: 00007fff1920b900 R15: 00007fff1920b9e8 [ 673.529224][T32196] [ 676.770472][T32304] sd 0:0:1:0: PR command failed: 1026 [ 676.813495][T32304] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 676.836323][T32304] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 677.612778][T32333] netlink: 'syz.0.12296': attribute type 1 has an invalid length. [ 677.681549][T32273] kexec: Could not allocate control_code_buffer [ 679.491014][T32417] netlink: 4 bytes leftover after parsing attributes in process `syz.1.12336'. [ 679.510667][T32420] Invalid ELF header magic: != ELF [ 680.036731][T32447] Invalid ELF header magic: != ELF [ 681.477125][T32499] Invalid ELF header magic: != ELF [ 681.900657][T32516] IPVS: length: 7562853 != 24 [ 683.553668][T32585] FAULT_INJECTION: forcing a failure. [ 683.553668][T32585] name failslab, interval 1, probability 0, space 0, times 0 [ 683.599172][T32585] CPU: 0 UID: 0 PID: 32585 Comm: syz.1.12414 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 683.599230][T32585] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 683.599240][T32585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 683.599249][T32585] Call Trace: [ 683.599254][T32585] [ 683.599266][T32585] dump_stack_lvl+0x100/0x190 [ 683.599297][T32585] should_fail_ex.cold+0x5/0xa [ 683.599316][T32585] should_failslab+0xc2/0x120 [ 683.599334][T32585] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 683.599357][T32585] ? alloc_empty_file+0x55/0x1c0 [ 683.599376][T32585] ? __pfx_stack_trace_save+0x10/0x10 [ 683.599395][T32585] alloc_empty_file+0x55/0x1c0 [ 683.599412][T32585] path_openat+0xe8/0x31a0 [ 683.599426][T32585] ? kasan_save_stack+0x3f/0x50 [ 683.599447][T32585] ? kasan_save_stack+0x30/0x50 [ 683.599466][T32585] ? kasan_save_track+0x14/0x30 [ 683.599486][T32585] ? __kasan_slab_alloc+0x89/0x90 [ 683.599507][T32585] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 683.599527][T32585] ? do_getname+0x35/0x390 [ 683.599543][T32585] ? do_sys_openat2+0xc5/0x1e0 [ 683.599561][T32585] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 683.599579][T32585] ? __pfx_path_openat+0x10/0x10 [ 683.599600][T32585] do_file_open+0x20e/0x430 [ 683.599616][T32585] ? __pfx_do_file_open+0x10/0x10 [ 683.599643][T32585] ? alloc_fd+0x476/0x790 [ 683.599659][T32585] ? do_getname+0x191/0x390 [ 683.599678][T32585] do_sys_openat2+0x10d/0x1e0 [ 683.599696][T32585] ? __pfx_do_sys_openat2+0x10/0x10 [ 683.599721][T32585] __x64_sys_openat+0x12d/0x210 [ 683.599740][T32585] ? __pfx___x64_sys_openat+0x10/0x10 [ 683.599766][T32585] do_syscall_64+0x106/0xf80 [ 683.599785][T32585] ? clear_bhb_loop+0x40/0x90 [ 683.599802][T32585] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 683.599817][T32585] RIP: 0033:0x7f329975cfce [ 683.599831][T32585] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 683.599845][T32585] RSP: 002b:00007f329a5dfec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 683.599860][T32585] RAX: ffffffffffffffda RBX: 00007f329a5e06c0 RCX: 00007f329975cfce [ 683.599870][T32585] RDX: 0000000000000002 RSI: 00007f329a5dff90 RDI: ffffffffffffff9c [ 683.599880][T32585] RBP: 00007f3299832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 683.599889][T32585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 683.599898][T32585] R13: 00007f3299a16038 R14: 00007f3299a15fa0 R15: 00007ffd2c76ed18 [ 683.599918][T32585] [ 683.994608][T32596] netlink: 'syz.3.12420': attribute type 33 has an invalid length. [ 684.211330][T32608] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12426'. [ 684.221998][T32608] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12426'. [ 684.323011][T32613] FAULT_INJECTION: forcing a failure. [ 684.323011][T32613] name failslab, interval 1, probability 0, space 0, times 0 [ 684.372145][T32613] CPU: 0 UID: 0 PID: 32613 Comm: syz.2.12428 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 684.372184][T32613] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 684.372194][T32613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 684.372203][T32613] Call Trace: [ 684.372209][T32613] [ 684.372216][T32613] dump_stack_lvl+0x100/0x190 [ 684.372244][T32613] should_fail_ex.cold+0x5/0xa [ 684.372269][T32613] should_failslab+0xc2/0x120 [ 684.372285][T32613] __kmalloc_cache_noprof+0x7a/0x6f0 [ 684.372304][T32613] ? alloc_ldt_struct+0x5d/0x1b0 [ 684.372330][T32613] ? __pfx_down_write_killable+0x10/0x10 [ 684.372354][T32613] alloc_ldt_struct+0x5d/0x1b0 [ 684.372377][T32613] write_ldt+0x62b/0xd40 [ 684.372395][T32613] ? __pfx_write_ldt+0x10/0x10 [ 684.372410][T32613] ? xfd_validate_state+0x129/0x190 [ 684.372436][T32613] __x64_sys_modify_ldt+0xb1/0x170 [ 684.372451][T32613] do_syscall_64+0x106/0xf80 [ 684.372467][T32613] ? clear_bhb_loop+0x40/0x90 [ 684.372485][T32613] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 684.372501][T32613] RIP: 0033:0x7f073d19c799 [ 684.372514][T32613] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 684.372528][T32613] RSP: 002b:00007f073e05e028 EFLAGS: 00000246 ORIG_RAX: 000000000000009a [ 684.372544][T32613] RAX: ffffffffffffffda RBX: 00007f073d415fa0 RCX: 00007f073d19c799 [ 684.372554][T32613] RDX: 0000000000000010 RSI: 00002000000001c0 RDI: 0000000000000001 [ 684.372563][T32613] RBP: 00007f073d232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 684.372572][T32613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 684.372580][T32613] R13: 00007f073d416038 R14: 00007f073d415fa0 R15: 00007fff1920b9e8 [ 684.372600][T32613] [ 684.710875][T32620] openvswitch: netlink: IP tunnel TTL not specified. [ 684.947070][T32633] FAULT_INJECTION: forcing a failure. [ 684.947070][T32633] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 684.997385][T32633] CPU: 0 UID: 0 PID: 32633 Comm: syz.1.12438 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 684.997426][T32633] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 684.997436][T32633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 684.997445][T32633] Call Trace: [ 684.997451][T32633] [ 684.997457][T32633] dump_stack_lvl+0x100/0x190 [ 684.997486][T32633] should_fail_ex.cold+0x5/0xa [ 684.997501][T32633] ? prepare_alloc_pages+0x16d/0x5f0 [ 684.997520][T32633] should_fail_alloc_page+0xeb/0x140 [ 684.997537][T32633] prepare_alloc_pages+0x1f0/0x5f0 [ 684.997557][T32633] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 684.997585][T32633] ? __lock_acquire+0x4a5/0x2630 [ 684.997606][T32633] ? futex_unqueue+0x13d/0x2c0 [ 684.997626][T32633] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 684.997651][T32633] ? find_held_lock+0x2b/0x80 [ 684.997663][T32633] ? __debug_object_init+0x2de/0x3d0 [ 684.997688][T32633] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 684.997705][T32633] ? lockdep_hardirqs_on+0x78/0x100 [ 684.997721][T32633] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 684.997737][T32633] ? __debug_object_init+0x2de/0x3d0 [ 684.997756][T32633] ? __might_fault+0xc5/0x140 [ 684.997776][T32633] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 684.997801][T32633] ? policy_nodemask+0xed/0x4f0 [ 684.997817][T32633] alloc_pages_mpol+0x1fb/0x550 [ 684.997833][T32633] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 684.997849][T32633] ? ktime_add_safe+0x60/0x70 [ 684.997869][T32633] ? __do_sys_futex_waitv+0x12e/0x2c0 [ 684.997887][T32633] ___kmalloc_large_node+0x104/0x150 [ 684.997903][T32633] ? futex2_setup_timeout+0x1c2/0x2d0 [ 684.997923][T32633] __kmalloc_large_node_noprof+0x1c/0x70 [ 684.997939][T32633] ? do_futex+0x192/0x350 [ 684.997957][T32633] __kmalloc_noprof+0x5be/0x850 [ 684.997982][T32633] __do_sys_futex_waitv+0x12e/0x2c0 [ 684.998002][T32633] ? __pfx___do_sys_futex_waitv+0x10/0x10 [ 684.998024][T32633] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 684.998049][T32633] do_syscall_64+0x106/0xf80 [ 684.998066][T32633] ? clear_bhb_loop+0x40/0x90 [ 684.998084][T32633] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 684.998099][T32633] RIP: 0033:0x7f329979c799 [ 684.998112][T32633] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 684.998126][T32633] RSP: 002b:00007f329a5e0028 EFLAGS: 00000246 ORIG_RAX: 00000000000001c1 [ 684.998141][T32633] RAX: ffffffffffffffda RBX: 00007f3299a15fa0 RCX: 00007f329979c799 [ 684.998151][T32633] RDX: 0000000000000000 RSI: 0000000000000040 RDI: 00002000000004c0 [ 684.998169][T32633] RBP: 00007f3299832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 684.998178][T32633] R10: 0000200000000500 R11: 0000000000000246 R12: 0000000000000000 [ 684.998188][T32633] R13: 00007f3299a16038 R14: 00007f3299a15fa0 R15: 00007ffd2c76ed18 [ 684.998207][T32633] [ 685.369800][T32640] FAULT_INJECTION: forcing a failure. [ 685.369800][T32640] name failslab, interval 1, probability 0, space 0, times 0 [ 685.382759][T32640] CPU: 0 UID: 0 PID: 32640 Comm: syz.1.12442 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 685.382796][T32640] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 685.382805][T32640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 685.382814][T32640] Call Trace: [ 685.382819][T32640] [ 685.382825][T32640] dump_stack_lvl+0x100/0x190 [ 685.382854][T32640] should_fail_ex.cold+0x5/0xa [ 685.382874][T32640] should_failslab+0xc2/0x120 [ 685.382889][T32640] __kmalloc_cache_noprof+0x7a/0x6f0 [ 685.382909][T32640] ? alloc_ldt_struct+0x5d/0x1b0 [ 685.382932][T32640] ? __pfx_down_write_killable+0x10/0x10 [ 685.382961][T32640] alloc_ldt_struct+0x5d/0x1b0 [ 685.382985][T32640] write_ldt+0x62b/0xd40 [ 685.383003][T32640] ? __pfx_write_ldt+0x10/0x10 [ 685.383019][T32640] ? xfd_validate_state+0x129/0x190 [ 685.383047][T32640] __x64_sys_modify_ldt+0xb1/0x170 [ 685.383062][T32640] do_syscall_64+0x106/0xf80 [ 685.383079][T32640] ? clear_bhb_loop+0x40/0x90 [ 685.383097][T32640] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 685.383112][T32640] RIP: 0033:0x7f329979c799 [ 685.383126][T32640] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 685.383140][T32640] RSP: 002b:00007f329a5e0028 EFLAGS: 00000246 ORIG_RAX: 000000000000009a [ 685.383155][T32640] RAX: ffffffffffffffda RBX: 00007f3299a15fa0 RCX: 00007f329979c799 [ 685.383164][T32640] RDX: 0000000000000010 RSI: 00002000000001c0 RDI: 0000000000000001 [ 685.383173][T32640] RBP: 00007f3299832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 685.383182][T32640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 685.383191][T32640] R13: 00007f3299a16038 R14: 00007f3299a15fa0 R15: 00007ffd2c76ed18 [ 685.383210][T32640] [ 685.980763][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 685.987074][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 686.542058][T32674] zswap: compressor not available [ 687.318566][T32721] netlink: 16 bytes leftover after parsing attributes in process `syz.1.12478'. [ 687.346313][T32724] FAULT_INJECTION: forcing a failure. [ 687.346313][T32724] name failslab, interval 1, probability 0, space 0, times 0 [ 687.412712][T32724] CPU: 0 UID: 0 PID: 32724 Comm: syz.0.12479 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 687.412751][T32724] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 687.412761][T32724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 687.412770][T32724] Call Trace: [ 687.412775][T32724] [ 687.412781][T32724] dump_stack_lvl+0x100/0x190 [ 687.412810][T32724] should_fail_ex.cold+0x5/0xa [ 687.412830][T32724] should_failslab+0xc2/0x120 [ 687.412845][T32724] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 687.412867][T32724] ? alloc_uid+0x13d/0x4c0 [ 687.412884][T32724] ? rcu_is_watching+0x12/0xc0 [ 687.412910][T32724] alloc_uid+0x13d/0x4c0 [ 687.412927][T32724] ? __pfx_alloc_uid+0x10/0x10 [ 687.412943][T32724] ? bpf_lsm_cred_prepare+0x9/0x10 [ 687.412957][T32724] ? security_prepare_creds+0xa8/0x290 [ 687.412978][T32724] __sys_setresuid+0x4f2/0x1280 [ 687.412996][T32724] do_syscall_64+0x106/0xf80 [ 687.413014][T32724] ? clear_bhb_loop+0x40/0x90 [ 687.413031][T32724] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 687.413047][T32724] RIP: 0033:0x7fc71879c799 [ 687.413060][T32724] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 687.413075][T32724] RSP: 002b:00007fc71958d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000075 [ 687.413090][T32724] RAX: ffffffffffffffda RBX: 00007fc718a15fa0 RCX: 00007fc71879c799 [ 687.413109][T32724] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008 [ 687.413118][T32724] RBP: 00007fc718832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 687.413127][T32724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 687.413136][T32724] R13: 00007fc718a16038 R14: 00007fc718a15fa0 R15: 00007fff7d9901d8 [ 687.413155][T32724] [ 687.695257][T32733] hugetlbfs: syz.0.12483 (32733): Using mlock ulimits for SHM_HUGETLB is obsolete [ 688.046240][T32743] zswap: compressor not available [ 688.214117][T32762] bridge_slave_1: left allmulticast mode [ 688.247218][T32762] bridge_slave_1: left promiscuous mode [ 688.284535][T32762] bridge0: port 2(bridge_slave_1) entered disabled state [ 688.402511][T32755] zswap: compressor not available [ 688.789119][ T315] netlink: 346 bytes leftover after parsing attributes in process `syz.3.12503'. [ 689.343762][ T316] Invalid ELF header len 5 [ 689.964722][ T360] Invalid ELF header len 5 [ 690.842962][ T398] ovs_: entered promiscuous mode [ 691.454159][ T418] bridge0: port 2(syz_tun) entered blocking state [ 691.487613][ T418] bridge0: port 2(syz_tun) entered disabled state [ 691.521113][ T418] syz_tun: entered allmulticast mode [ 691.548437][ T418] syz_tun: entered promiscuous mode [ 691.610881][ T423] bridge_slave_1: left allmulticast mode [ 691.641072][ T423] bridge_slave_1: left promiscuous mode [ 691.646799][ T423] bridge0: port 2(bridge_slave_1) entered disabled state [ 691.888524][ T434] Invalid ELF header len 5 [ 692.151630][ T446] netlink: 8 bytes leftover after parsing attributes in process `syz.2.12562'. [ 692.358963][ T454] FAULT_INJECTION: forcing a failure. [ 692.358963][ T454] name failslab, interval 1, probability 0, space 0, times 0 [ 692.414140][ T454] CPU: 0 UID: 0 PID: 454 Comm: syz.0.12566 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 692.414180][ T454] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 692.414189][ T454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 692.414198][ T454] Call Trace: [ 692.414204][ T454] [ 692.414210][ T454] dump_stack_lvl+0x100/0x190 [ 692.414238][ T454] should_fail_ex.cold+0x5/0xa [ 692.414257][ T454] should_failslab+0xc2/0x120 [ 692.414273][ T454] __kmalloc_cache_noprof+0x7a/0x6f0 [ 692.414291][ T454] ? io_uring_setup.cold+0x6c/0x1d09 [ 692.414318][ T454] io_uring_setup.cold+0x6c/0x1d09 [ 692.414342][ T454] ? __pfx_io_uring_setup+0x10/0x10 [ 692.414362][ T454] ? do_futex+0x192/0x350 [ 692.414381][ T454] ? __pfx_do_futex+0x10/0x10 [ 692.414408][ T454] ? xfd_validate_state+0x129/0x190 [ 692.414435][ T454] __x64_sys_io_uring_setup+0xc2/0x170 [ 692.414454][ T454] do_syscall_64+0x106/0xf80 [ 692.414471][ T454] ? clear_bhb_loop+0x40/0x90 [ 692.414489][ T454] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 692.414506][ T454] RIP: 0033:0x7fc71879c799 [ 692.414519][ T454] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 692.414534][ T454] RSP: 002b:00007fc71958d028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 692.414549][ T454] RAX: ffffffffffffffda RBX: 00007fc718a15fa0 RCX: 00007fc71879c799 [ 692.414558][ T454] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000059 [ 692.414567][ T454] RBP: 00007fc718832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 692.414576][ T454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 692.414584][ T454] R13: 00007fc718a16038 R14: 00007fc718a15fa0 R15: 00007fff7d9901d8 [ 692.414603][ T454] [ 694.147286][ T491] netlink: 186 bytes leftover after parsing attributes in process `syz.1.12582'. [ 694.751721][ T505] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12589'. [ 694.913510][ T508] FAULT_INJECTION: forcing a failure. [ 694.913510][ T508] name failslab, interval 1, probability 0, space 0, times 0 [ 694.966113][ T508] CPU: 0 UID: 0 PID: 508 Comm: syz.0.12590 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 694.966152][ T508] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 694.966162][ T508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 694.966171][ T508] Call Trace: [ 694.966176][ T508] [ 694.966183][ T508] dump_stack_lvl+0x100/0x190 [ 694.966211][ T508] should_fail_ex.cold+0x5/0xa [ 694.966229][ T508] ? sk_prot_alloc+0x10b/0x2a0 [ 694.966252][ T508] should_failslab+0xc2/0x120 [ 694.966268][ T508] __kmalloc_noprof+0xe0/0x850 [ 694.966292][ T508] sk_prot_alloc+0x10b/0x2a0 [ 694.966314][ T508] sk_alloc+0x36/0xe80 [ 694.966330][ T508] pfkey_create+0x105/0x600 [ 694.966351][ T508] __sock_create+0x339/0x860 [ 694.966377][ T508] __sys_socket+0x14d/0x260 [ 694.966400][ T508] ? __pfx___sys_socket+0x10/0x10 [ 694.966427][ T508] __x64_sys_socket+0x72/0xb0 [ 694.966448][ T508] ? lockdep_hardirqs_on+0x78/0x100 [ 694.966466][ T508] do_syscall_64+0x106/0xf80 [ 694.966482][ T508] ? clear_bhb_loop+0x40/0x90 [ 694.966500][ T508] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 694.966515][ T508] RIP: 0033:0x7fc71879c799 [ 694.966528][ T508] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 694.966542][ T508] RSP: 002b:00007fc71958d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 694.966557][ T508] RAX: ffffffffffffffda RBX: 00007fc718a15fa0 RCX: 00007fc71879c799 [ 694.966567][ T508] RDX: 0000000000000002 RSI: 0000000000000003 RDI: 000000000000000f [ 694.966575][ T508] RBP: 00007fc718832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 694.966584][ T508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 694.966602][ T508] R13: 00007fc718a16038 R14: 00007fc718a15fa0 R15: 00007fff7d9901d8 [ 694.966622][ T508] [ 695.381190][ T512] __vm_enough_memory: pid: 512, comm: syz.1.12592, bytes: 4398046511104 not enough memory for the allocation [ 698.023100][ T599] netlink: 16 bytes leftover after parsing attributes in process `syz.0.12633'. [ 704.181456][ T779] netlink: 2468 bytes leftover after parsing attributes in process `syz.2.12713'. [ 705.075539][ T803] openvswitch: netlink: Unknown VXLAN extension attribute 0 [ 705.269835][ T809] sctp: [Deprecated]: syz.2.12727 (pid 809) Use of int in max_burst socket option. [ 705.269835][ T809] Use struct sctp_assoc_value instead [ 705.529531][ T815] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE r҄y*"l-y–L̓]' [ 705.583246][ T815] CPU: 0 UID: 0 PID: 815 Comm: syz.2.12730 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 705.583286][ T815] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 705.583296][ T815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 705.583305][ T815] Call Trace: [ 705.583311][ T815] [ 705.583317][ T815] dump_stack_lvl+0x100/0x190 [ 705.583346][ T815] sysfs_warn_dup.cold+0x1c/0x28 [ 705.583398][ T815] sysfs_do_create_link_sd+0x113/0x140 [ 705.583423][ T815] sysfs_create_link+0x61/0xc0 [ 705.583442][ T815] device_add+0x675/0x1950 [ 705.583470][ T815] ? __pfx_device_add+0x10/0x10 [ 705.583492][ T815] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 705.583518][ T815] ? ieee80211_set_bitrate_flags+0x41b/0x6b0 [ 705.583611][ T815] wiphy_register+0x1e5b/0x2d30 [ 705.583653][ T815] ? __rtnl_unlock+0xb9/0xf0 [ 705.583701][ T815] ? netdev_run_todo+0x840/0x12c0 [ 705.583725][ T815] ? __pfx_wiphy_register+0x10/0x10 [ 705.583745][ T815] ? __asan_memset+0x23/0x50 [ 705.583767][ T815] ? minstrel_ht_alloc+0x5e6/0x7f0 [ 705.583850][ T815] ieee80211_register_hw+0x2cfd/0x4140 [ 705.583929][ T815] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 705.583949][ T815] ? __pfx___debug_object_init+0x10/0x10 [ 705.583974][ T815] ? find_held_lock+0x2b/0x80 [ 705.583989][ T815] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 705.584014][ T815] ? __hrtimer_setup+0x178/0x280 [ 705.584036][ T815] mac80211_hwsim_new_radio+0x2847/0x57d0 [ 705.584080][ T815] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 705.584107][ T815] hwsim_new_radio_nl+0xc1f/0x1340 [ 705.584130][ T815] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 705.584156][ T815] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280 [ 705.584215][ T815] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280 [ 705.584243][ T815] genl_family_rcv_msg_doit+0x214/0x300 [ 705.584268][ T815] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 705.584289][ T815] ? genl_get_cmd+0x3ef/0x720 [ 705.584313][ T815] ? bpf_lsm_capable+0x9/0x10 [ 705.584327][ T815] ? security_capable+0x80/0x260 [ 705.584347][ T815] ? ns_capable+0xd2/0xf0 [ 705.584363][ T815] genl_rcv_msg+0x560/0x800 [ 705.584412][ T815] ? __pfx_genl_rcv_msg+0x10/0x10 [ 705.584435][ T815] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 705.584462][ T815] netlink_rcv_skb+0x159/0x420 [ 705.584482][ T815] ? __pfx_genl_rcv_msg+0x10/0x10 [ 705.584504][ T815] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 705.584531][ T815] ? netlink_deliver_tap+0x1ae/0xcc0 [ 705.584552][ T815] genl_rcv+0x28/0x40 [ 705.584570][ T815] netlink_unicast+0x5aa/0x870 [ 705.584592][ T815] ? __pfx_netlink_unicast+0x10/0x10 [ 705.584610][ T815] ? __pfx___might_resched+0x10/0x10 [ 705.584630][ T815] ? __lock_acquire+0x4a5/0x2630 [ 705.584654][ T815] netlink_sendmsg+0x8b0/0xda0 [ 705.584676][ T815] ? __pfx_netlink_sendmsg+0x10/0x10 [ 705.584694][ T815] ? __import_iovec+0x1d2/0x640 [ 705.584710][ T815] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 705.584734][ T815] ____sys_sendmsg+0xa54/0xc30 [ 705.584757][ T815] ? __pfx_____sys_sendmsg+0x10/0x10 [ 705.584782][ T815] ? __pfx_futex_wake_mark+0x10/0x10 [ 705.584808][ T815] ___sys_sendmsg+0x190/0x1e0 [ 705.584831][ T815] ? __pfx____sys_sendmsg+0x10/0x10 [ 705.584877][ T815] __sys_sendmsg+0x170/0x220 [ 705.584895][ T815] ? __pfx___sys_sendmsg+0x10/0x10 [ 705.584911][ T815] ? __x64_sys_futex+0x34f/0x4d0 [ 705.584941][ T815] do_syscall_64+0x106/0xf80 [ 705.584958][ T815] ? clear_bhb_loop+0x40/0x90 [ 705.584976][ T815] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 705.584992][ T815] RIP: 0033:0x7f073d19c799 [ 705.585007][ T815] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 705.585022][ T815] RSP: 002b:00007f073e05e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 705.585038][ T815] RAX: ffffffffffffffda RBX: 00007f073d415fa0 RCX: 00007f073d19c799 [ 705.585048][ T815] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003 [ 705.585057][ T815] RBP: 00007f073d232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 705.585074][ T815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 705.585083][ T815] R13: 00007f073d416038 R14: 00007f073d415fa0 R15: 00007fff1920b9e8 [ 705.585105][ T815] [ 708.498919][ T865] FAULT_INJECTION: forcing a failure. [ 708.498919][ T865] name fail_futex, interval 1, probability 0, space 0, times 0 [ 708.613845][ T865] CPU: 0 UID: 0 PID: 865 Comm: syz.0.12751 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 708.613884][ T865] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 708.613894][ T865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 708.613903][ T865] Call Trace: [ 708.613908][ T865] [ 708.613914][ T865] dump_stack_lvl+0x100/0x190 [ 708.613942][ T865] should_fail_ex.cold+0x5/0xa [ 708.613961][ T865] get_futex_key+0x1d2/0x1620 [ 708.613981][ T865] ? __pfx_get_futex_key+0x10/0x10 [ 708.613999][ T865] ? kasan_quarantine_put+0x104/0x240 [ 708.614022][ T865] ? lockdep_hardirqs_on+0x78/0x100 [ 708.614043][ T865] futex_wake+0xea/0x530 [ 708.614066][ T865] ? __pfx_futex_wake+0x10/0x10 [ 708.614091][ T865] ? __pfx_assoc_array_delete+0x10/0x10 [ 708.614114][ T865] do_futex+0x32b/0x350 [ 708.614133][ T865] ? __pfx_do_futex+0x10/0x10 [ 708.614152][ T865] ? up_write+0x290/0x4f0 [ 708.614175][ T865] __x64_sys_futex+0x34f/0x4d0 [ 708.614195][ T865] ? __pfx___x64_sys_futex+0x10/0x10 [ 708.614214][ T865] ? key_put+0x62/0x2e0 [ 708.614312][ T865] do_syscall_64+0x106/0xf80 [ 708.614329][ T865] ? clear_bhb_loop+0x40/0x90 [ 708.614348][ T865] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 708.614364][ T865] RIP: 0033:0x7fc71879c799 [ 708.614378][ T865] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 708.614393][ T865] RSP: 002b:00007fc71958d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 708.614407][ T865] RAX: ffffffffffffffda RBX: 00007fc718a15fa8 RCX: 00007fc71879c799 [ 708.614417][ T865] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc718a15fac [ 708.614426][ T865] RBP: 00007fc718a15fa0 R08: 0000000000000000 R09: 0000000000000000 [ 708.614435][ T865] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 708.614444][ T865] R13: 00007fc718a16038 R14: 00007fff7d9900f0 R15: 00007fff7d9901d8 [ 708.614464][ T865] [ 709.805959][ T893] loop6: detected capacity change from 0 to 8 [ 710.503274][ T29] audit: type=1326 audit(4295069887.412:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=921 comm="syz.0.12776" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc71879c799 code=0x0 [ 711.659134][ T980] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12798'. [ 712.087955][ T998] netlink: 8 bytes leftover after parsing attributes in process `syz.2.12805'. [ 712.873913][ T1036] bridge0: port 3(dummy0) entered blocking state [ 712.910692][ T1036] bridge0: port 3(dummy0) entered disabled state [ 712.931557][ T1036] dummy0: entered allmulticast mode [ 712.966909][ T1036] dummy0: entered promiscuous mode [ 712.996122][ T1036] bridge0: port 3(dummy0) entered blocking state [ 713.002611][ T1036] bridge0: port 3(dummy0) entered forwarding state [ 713.571581][ T1072] netlink: 16 bytes leftover after parsing attributes in process `syz.2.12834'. [ 714.550208][ T1110] netlink: 338 bytes leftover after parsing attributes in process `syz.2.12852'. [ 714.954423][ T1128] FAULT_INJECTION: forcing a failure. [ 714.954423][ T1128] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 715.022660][ T1128] CPU: 0 UID: 0 PID: 1128 Comm: syz.0.12860 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 715.022698][ T1128] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 715.022708][ T1128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 715.022717][ T1128] Call Trace: [ 715.022723][ T1128] [ 715.022729][ T1128] dump_stack_lvl+0x100/0x190 [ 715.022757][ T1128] should_fail_ex.cold+0x5/0xa [ 715.022775][ T1128] _copy_to_user+0x32/0xd0 [ 715.022801][ T1128] copy_siginfo_to_user+0x27/0xc0 [ 715.022820][ T1128] x64_setup_rt_frame+0xa03/0xce0 [ 715.022842][ T1128] ? __pfx_x64_setup_rt_frame+0x10/0x10 [ 715.022861][ T1128] ? do_send_specific+0x15c/0x360 [ 715.022880][ T1128] arch_do_signal_or_restart+0x587/0x770 [ 715.022900][ T1128] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 715.022928][ T1128] exit_to_user_mode_loop+0x86/0x4a0 [ 715.022949][ T1128] do_syscall_64+0x668/0xf80 [ 715.022967][ T1128] ? clear_bhb_loop+0x40/0x90 [ 715.022985][ T1128] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 715.023000][ T1128] RIP: 0033:0x7fc71879c799 [ 715.023014][ T1128] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 715.023028][ T1128] RSP: 002b:00007fc71958d028 EFLAGS: 00000246 ORIG_RAX: 00000000000000c8 [ 715.023042][ T1128] RAX: 0000000000000000 RBX: 00007fc718a15fa0 RCX: 00007fc71879c799 [ 715.023052][ T1128] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000001af3 [ 715.023060][ T1128] RBP: 00007fc718832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 715.023069][ T1128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 715.023077][ T1128] R13: 00007fc718a16038 R14: 00007fc718a15fa0 R15: 00007fff7d9901d8 [ 715.023096][ T1128] [ 715.656970][ T1152] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12872'. [ 716.608428][ T1195] netlink: 350 bytes leftover after parsing attributes in process `syz.0.12890'. [ 718.502378][ T1277] Invalid ELF header magic: != ELF [ 718.688396][ T1279] syz.1.12927 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 718.786477][ T1279] CPU: 0 UID: 0 PID: 1279 Comm: syz.1.12927 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 718.786515][ T1279] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 718.786524][ T1279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 718.786533][ T1279] Call Trace: [ 718.786538][ T1279] [ 718.786544][ T1279] dump_stack_lvl+0x100/0x190 [ 718.786570][ T1279] dump_header+0xfb/0x606 [ 718.786587][ T1279] oom_kill_process.cold+0xd/0x330 [ 718.786604][ T1279] out_of_memory+0x340/0x14f0 [ 718.786631][ T1279] ? __pfx_out_of_memory+0x10/0x10 [ 718.786656][ T1279] mem_cgroup_out_of_memory+0xc6/0x130 [ 718.786676][ T1279] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 718.786694][ T1279] ? find_held_lock+0x2b/0x80 [ 718.786711][ T1279] ? do_raw_spin_unlock+0x145/0x1e0 [ 718.786732][ T1279] ? _raw_spin_unlock+0x28/0x50 [ 718.786749][ T1279] try_charge_memcg+0x652/0xc90 [ 718.786767][ T1279] ? __pfx_try_charge_memcg+0x10/0x10 [ 718.786786][ T1279] ? find_held_lock+0x2b/0x80 [ 718.786798][ T1279] ? rcu_read_unlock+0x17/0x60 [ 718.786813][ T1279] ? rcu_read_unlock+0x17/0x60 [ 718.786829][ T1279] charge_memcg+0xa6/0x280 [ 718.786843][ T1279] mem_cgroup_swapin_charge_folio+0xeb/0x470 [ 718.786863][ T1279] __swap_cache_prepare_and_add+0x528/0x9e0 [ 718.786892][ T1279] ? __pfx___swap_cache_prepare_and_add+0x10/0x10 [ 718.786910][ T1279] ? __pfx_swap_entry_swapped+0x10/0x10 [ 718.786930][ T1279] swap_cache_alloc_folio+0x1cb/0x300 [ 718.786950][ T1279] ? __pfx_swap_cache_alloc_folio+0x10/0x10 [ 718.786970][ T1279] ? lockdep_hardirqs_on+0x78/0x100 [ 718.786987][ T1279] ? finish_task_switch.isra.0+0x205/0xb80 [ 718.787005][ T1279] swap_cluster_readahead+0x53b/0x770 [ 718.787026][ T1279] ? __lock_acquire+0x4a5/0x2630 [ 718.787045][ T1279] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 718.787077][ T1279] ? get_vma_policy+0x23f/0x3b0 [ 718.787095][ T1279] swapin_readahead+0x160/0x12c0 [ 718.787121][ T1279] ? __pfx_swapin_readahead+0x10/0x10 [ 718.787146][ T1279] ? find_held_lock+0x2b/0x80 [ 718.787159][ T1279] ? swap_table_get+0x103/0x2c0 [ 718.787176][ T1279] ? swap_table_get+0x103/0x2c0 [ 718.787197][ T1279] ? swap_table_get+0x10d/0x2c0 [ 718.787215][ T1279] ? swap_cache_get_folio+0x1ae/0x600 [ 718.787234][ T1279] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 718.787252][ T1279] ? __pfx_get_swap_device+0x10/0x10 [ 718.787278][ T1279] ? do_swap_page+0xb2e/0x68e0 [ 718.787296][ T1279] do_swap_page+0xb2e/0x68e0 [ 718.787324][ T1279] ? __pfx_do_swap_page+0x10/0x10 [ 718.787347][ T1279] ? rcu_is_watching+0x12/0xc0 [ 718.787368][ T1279] ? __pte_offset_map+0x179/0x310 [ 718.787394][ T1279] __handle_mm_fault+0x18c1/0x2b60 [ 718.787416][ T1279] ? reacquire_held_locks+0xce/0x1e0 [ 718.787434][ T1279] ? __pfx___handle_mm_fault+0x10/0x10 [ 718.787456][ T1279] ? lock_vma_under_rcu+0x17c/0x590 [ 718.787486][ T1279] handle_mm_fault+0x36d/0xa20 [ 718.787508][ T1279] do_user_addr_fault+0x5a3/0x12f0 [ 718.787537][ T1279] exc_page_fault+0x6f/0xd0 [ 718.787553][ T1279] asm_exc_page_fault+0x26/0x30 [ 718.787567][ T1279] RIP: 0033:0x7f3299669b1a [ 718.787580][ T1279] Code: 24 00 01 00 00 48 69 d2 e8 03 00 00 48 29 d1 ba 80 00 00 00 48 69 c9 40 42 0f 00 48 89 8c 24 08 01 00 00 31 c9 e8 66 2c 13 00 <41> 8b 45 00 85 c0 0f 84 52 ff ff ff 4c 8b 7c 24 78 4c 8b 44 24 58 [ 718.787593][ T1279] RSP: 002b:00007ffd2c76ee80 EFLAGS: 00010286 [ 718.787606][ T1279] RAX: ffffffffffffffff RBX: 00000000000af603 RCX: ffffffffffffffe8 [ 718.787615][ T1279] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3299a15fac [ 718.787624][ T1279] RBP: 0000000000000032 R08: 0000000000000000 R09: 0000000000000000 [ 718.787632][ T1279] R10: 00007ffd2c76ef80 R11: 0000000000000246 R12: 00007ffd2c76efa0 [ 718.787644][ T1279] R13: 00007f3299a15fac R14: 00000000000af635 R15: 00007ffd2c76ef80 [ 718.787664][ T1279] [ 719.187313][ T1279] memory: usage 2028kB, limit 3072kB, failcnt 167722 [ 719.194867][ T1279] memory+swap: usage 2480kB, limit 9007199254740988kB, failcnt 0 [ 719.202871][ T1279] kmem: usage 1768kB, limit 9007199254740988kB, failcnt 0 [ 719.210012][ T1279] Memory cgroup stats for /syz1: [ 719.210503][ T1279] cache 0 [ 719.218329][ T1279] rss 0 [ 719.221123][ T1279] rss_huge 0 [ 719.224304][ T1279] shmem 0 [ 719.227220][ T1279] mapped_file 0 [ 719.230707][ T1279] dirty 0 [ 719.233623][ T1279] writeback 0 [ 719.236887][ T1279] workingset_refault_anon 9921 [ 719.241653][ T1279] workingset_refault_file 46666 [ 719.246939][ T1279] swap 462848 [ 719.250241][ T1279] swapcached 619810816 [ 719.254308][ T1279] pgpgin 363783 [ 719.257744][ T1279] pgpgout 364282 [ 719.261431][ T1279] pgfault 428467 [ 719.264957][ T1279] pgmajfault 5409 [ 719.268566][ T1279] inactive_anon 0 [ 719.272225][ T1279] active_anon 12288 [ 719.276269][ T1279] inactive_file 0 [ 719.279884][ T1279] active_file 0 [ 719.283364][ T1279] unevictable 0 [ 719.286802][ T1279] hierarchical_memory_limit 3145728 [ 719.292019][ T1279] hierarchical_memsw_limit 9223372036854771712 [ 719.298884][ T1279] total_cache 0 [ 719.302367][ T1279] total_rss 0 [ 719.305632][ T1279] total_rss_huge 0 [ 719.309331][ T1279] total_shmem 0 [ 719.312813][ T1279] total_mapped_file 0 [ 719.316770][ T1279] total_dirty 0 [ 719.320246][ T1279] total_writeback 0 [ 719.324030][ T1279] total_workingset_refault_anon 9921 [ 719.329289][ T1279] total_workingset_refault_file 46666 [ 719.334673][ T1279] total_swap 462848 [ 719.338458][ T1279] total_swapcached 619810816 [ 719.343069][ T1279] total_pgpgin 363783 [ 719.347031][ T1279] total_pgpgout 364282 [ 719.351112][ T1279] total_pgfault 428467 [ 719.355175][ T1279] total_pgmajfault 5409 [ 719.359308][ T1279] total_inactive_anon 0 [ 719.363471][ T1279] total_active_anon 12288 [ 719.367791][ T1279] total_inactive_file 0 [ 719.372005][ T1279] total_active_file 0 [ 719.375973][ T1279] total_unevictable 0 [ 719.380133][ T1279] anon_cost 1250 [ 719.383681][ T1279] file_cost 19 [ 719.387030][ T1279] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.12927,pid=1279,uid=0 [ 719.402785][ T1279] Memory cgroup out of memory: Killed process 1279 (syz.1.12927) total-vm:104272kB, anon-rss:1228kB, file-rss:22428kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000 [ 720.208313][ T1329] FAULT_INJECTION: forcing a failure. [ 720.208313][ T1329] name failslab, interval 1, probability 0, space 0, times 0 [ 720.270496][ T1329] CPU: 0 UID: 0 PID: 1329 Comm: syz.1.12948 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 720.270535][ T1329] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 720.270545][ T1329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 720.270554][ T1329] Call Trace: [ 720.270562][ T1329] [ 720.270568][ T1329] dump_stack_lvl+0x100/0x190 [ 720.270596][ T1329] should_fail_ex.cold+0x5/0xa [ 720.270614][ T1329] should_failslab+0xc2/0x120 [ 720.270631][ T1329] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 720.270652][ T1329] ? key_alloc+0x3c5/0x1310 [ 720.270666][ T1329] ? rcu_is_watching+0x12/0xc0 [ 720.270691][ T1329] key_alloc+0x3c5/0x1310 [ 720.270712][ T1329] ? __pfx_key_alloc+0x10/0x10 [ 720.270731][ T1329] keyring_alloc+0x44/0xc0 [ 720.270750][ T1329] lookup_user_key+0x9b8/0x1300 [ 720.270775][ T1329] ? __pfx_lookup_user_key+0x10/0x10 [ 720.270797][ T1329] ? do_futex+0x192/0x350 [ 720.270816][ T1329] ? __pfx_do_futex+0x10/0x10 [ 720.270836][ T1329] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 720.270861][ T1329] ? __x64_sys_futex+0x34f/0x4d0 [ 720.270878][ T1329] ? __x64_sys_futex+0x358/0x4d0 [ 720.270900][ T1329] keyctl_watch_key+0x52/0x500 [ 720.270923][ T1329] __do_sys_keyctl+0x29f/0x5a0 [ 720.270944][ T1329] do_syscall_64+0x106/0xf80 [ 720.270962][ T1329] ? clear_bhb_loop+0x40/0x90 [ 720.270980][ T1329] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 720.271002][ T1329] RIP: 0033:0x7f329979c799 [ 720.271016][ T1329] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 720.271032][ T1329] RSP: 002b:00007f329a5e0028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 720.271047][ T1329] RAX: ffffffffffffffda RBX: 00007f3299a15fa0 RCX: 00007f329979c799 [ 720.271057][ T1329] RDX: 0000000000000005 RSI: ffffffffffffffff RDI: 0200000000000020 [ 720.271067][ T1329] RBP: 00007f3299832bd9 R08: 0000000000000008 R09: 0000000000000000 [ 720.271076][ T1329] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 720.271085][ T1329] R13: 00007f3299a16038 R14: 00007f3299a15fa0 R15: 00007ffd2c76ed18 [ 720.271105][ T1329] [ 721.807324][ T1381] Invalid ELF header magic: != ELF [ 722.589105][ T1360] kexec: Could not allocate control_code_buffer [ 722.991983][ T1444] FAULT_INJECTION: forcing a failure. [ 722.991983][ T1444] name failslab, interval 1, probability 0, space 0, times 0 [ 723.049473][ T1444] CPU: 0 UID: 0 PID: 1444 Comm: syz.0.12989 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 723.049511][ T1444] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 723.049522][ T1444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 723.049531][ T1444] Call Trace: [ 723.049536][ T1444] [ 723.049542][ T1444] dump_stack_lvl+0x100/0x190 [ 723.049571][ T1444] should_fail_ex.cold+0x5/0xa [ 723.049590][ T1444] should_failslab+0xc2/0x120 [ 723.049606][ T1444] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 723.049627][ T1444] ? security_inode_alloc+0x3b/0x2c0 [ 723.049649][ T1444] ? lockdep_init_map_type+0x5c/0x250 [ 723.049671][ T1444] security_inode_alloc+0x3b/0x2c0 [ 723.049694][ T1444] inode_init_always_gfp+0xced/0x1040 [ 723.049720][ T1444] alloc_inode+0x8e/0x250 [ 723.049739][ T1444] create_pipe_files+0x4c/0x970 [ 723.049756][ T1444] do_pipe2+0xbd/0x1e0 [ 723.049776][ T1444] ? __pfx_do_pipe2+0x10/0x10 [ 723.049805][ T1444] __x64_sys_pipe+0x33/0x50 [ 723.049820][ T1444] do_syscall_64+0x106/0xf80 [ 723.049839][ T1444] ? clear_bhb_loop+0x40/0x90 [ 723.049857][ T1444] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 723.049872][ T1444] RIP: 0033:0x7fc71879c799 [ 723.049885][ T1444] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 723.049900][ T1444] RSP: 002b:00007fc71958d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 723.049915][ T1444] RAX: ffffffffffffffda RBX: 00007fc718a15fa0 RCX: 00007fc71879c799 [ 723.049925][ T1444] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 723.049934][ T1444] RBP: 00007fc718832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 723.049943][ T1444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 723.049951][ T1444] R13: 00007fc718a16038 R14: 00007fc718a15fa0 R15: 00007fff7d9901d8 [ 723.049970][ T1444] [ 723.982598][ T1465] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12996'. [ 724.030586][ T1465] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12996'. [ 724.597824][ T1488] netlink: Unknown conntrack attr (0) [ 724.971136][T14457] Bluetooth: hci3: Malformed Event: 0x13 [ 725.857784][ T1534] FAULT_INJECTION: forcing a failure. [ 725.857784][ T1534] name failslab, interval 1, probability 0, space 0, times 0 [ 725.915603][ T1534] CPU: 0 UID: 0 PID: 1534 Comm: syz.2.13027 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 725.915643][ T1534] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 725.915653][ T1534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 725.915662][ T1534] Call Trace: [ 725.915668][ T1534] [ 725.915674][ T1534] dump_stack_lvl+0x100/0x190 [ 725.915702][ T1534] should_fail_ex.cold+0x5/0xa [ 725.915720][ T1534] ? lsm_blob_alloc+0x68/0x90 [ 725.915738][ T1534] should_failslab+0xc2/0x120 [ 725.915753][ T1534] __kmalloc_noprof+0xe0/0x850 [ 725.915775][ T1534] ? trace_kmem_cache_alloc+0xf3/0x120 [ 725.915794][ T1534] lsm_blob_alloc+0x68/0x90 [ 725.915819][ T1534] security_prepare_creds+0x2d/0x290 [ 725.915838][ T1534] prepare_creds+0x5d6/0x950 [ 725.915863][ T1534] lookup_user_key+0x8e9/0x1300 [ 725.915888][ T1534] ? __pfx_lookup_user_key+0x10/0x10 [ 725.915911][ T1534] ? find_held_lock+0x2b/0x80 [ 725.915925][ T1534] ? setid_policy_lookup+0x10c/0x350 [ 725.916017][ T1534] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 725.916045][ T1534] ? bpf_lsm_capable+0x9/0x10 [ 725.916060][ T1534] ? security_capable+0x80/0x260 [ 725.916082][ T1534] keyctl_get_persistent+0x197/0x8b0 [ 725.916101][ T1534] ? __pfx_keyctl_get_persistent+0x10/0x10 [ 725.916120][ T1534] ? __x64_sys_futex+0x34f/0x4d0 [ 725.916138][ T1534] ? __x64_sys_futex+0x358/0x4d0 [ 725.916158][ T1534] ? xfd_validate_state+0x129/0x190 [ 725.916183][ T1534] __do_sys_keyctl+0x3b2/0x5a0 [ 725.916205][ T1534] do_syscall_64+0x106/0xf80 [ 725.916222][ T1534] ? clear_bhb_loop+0x40/0x90 [ 725.916241][ T1534] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 725.916256][ T1534] RIP: 0033:0x7f073d19c799 [ 725.916271][ T1534] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 725.916286][ T1534] RSP: 002b:00007f073e05e028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 725.916300][ T1534] RAX: ffffffffffffffda RBX: 00007f073d415fa0 RCX: 00007f073d19c799 [ 725.916310][ T1534] RDX: 7fffffffffffffff RSI: 000000000000ee00 RDI: 0000000000000016 [ 725.916320][ T1534] RBP: 00007f073d232bd9 R08: 000000000000000c R09: 0000000000000000 [ 725.916328][ T1534] R10: 00000000000099a7 R11: 0000000000000246 R12: 0000000000000000 [ 725.916337][ T1534] R13: 00007f073d416038 R14: 00007f073d415fa0 R15: 00007fff1920b9e8 [ 725.916356][ T1534] [ 727.238086][ T1560] zswap: compressor not available [ 727.708286][ T1581] sctp: [Deprecated]: syz.1.13046 (pid 1581) Use of int in maxseg socket option. [ 727.708286][ T1581] Use struct sctp_assoc_value instead [ 728.334240][ T1599] random: crng reseeded on system resumption [ 729.515370][ T1638] FAULT_INJECTION: forcing a failure. [ 729.515370][ T1638] name failslab, interval 1, probability 0, space 0, times 0 [ 729.628743][ T1638] CPU: 0 UID: 0 PID: 1638 Comm: syz.0.13071 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 729.628782][ T1638] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 729.628792][ T1638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 729.628801][ T1638] Call Trace: [ 729.628806][ T1638] [ 729.628812][ T1638] dump_stack_lvl+0x100/0x190 [ 729.628840][ T1638] should_fail_ex.cold+0x5/0xa [ 729.628859][ T1638] should_failslab+0xc2/0x120 [ 729.628876][ T1638] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 729.628898][ T1638] ? alloc_empty_file+0x55/0x1c0 [ 729.628920][ T1638] alloc_empty_file+0x55/0x1c0 [ 729.628939][ T1638] alloc_file_pseudo+0x13a/0x230 [ 729.628958][ T1638] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 729.628974][ T1638] ? alloc_fd+0x476/0x790 [ 729.628989][ T1638] ? do_raw_spin_unlock+0x145/0x1e0 [ 729.629013][ T1638] __anon_inode_getfile+0xe8/0x280 [ 729.629033][ T1638] anon_inode_getfile_fmode+0x37/0xa0 [ 729.629051][ T1638] do_eventfd+0x159/0x2b0 [ 729.629071][ T1638] __x64_sys_eventfd+0x32/0x50 [ 729.629096][ T1638] do_syscall_64+0x106/0xf80 [ 729.629114][ T1638] ? clear_bhb_loop+0x40/0x90 [ 729.629131][ T1638] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 729.629146][ T1638] RIP: 0033:0x7fc71879c799 [ 729.629160][ T1638] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 729.629175][ T1638] RSP: 002b:00007fc71958d028 EFLAGS: 00000246 ORIG_RAX: 000000000000011c [ 729.629189][ T1638] RAX: ffffffffffffffda RBX: 00007fc718a15fa0 RCX: 00007fc71879c799 [ 729.629199][ T1638] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 729.629207][ T1638] RBP: 00007fc718832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 729.629217][ T1638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 729.629226][ T1638] R13: 00007fc718a16038 R14: 00007fc718a15fa0 R15: 00007fff7d9901d8 [ 729.629245][ T1638] [ 730.744337][ T1653] FAULT_INJECTION: forcing a failure. [ 730.744337][ T1653] name failslab, interval 1, probability 0, space 0, times 0 [ 730.817954][ T1653] CPU: 0 UID: 0 PID: 1653 Comm: syz.2.13078 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 730.817994][ T1653] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 730.818003][ T1653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 730.818012][ T1653] Call Trace: [ 730.818018][ T1653] [ 730.818024][ T1653] dump_stack_lvl+0x100/0x190 [ 730.818052][ T1653] should_fail_ex.cold+0x5/0xa [ 730.818071][ T1653] should_failslab+0xc2/0x120 [ 730.818087][ T1653] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 730.818108][ T1653] ? prepare_creds+0x2c/0x950 [ 730.818132][ T1653] ? __sys_socket+0xac/0x260 [ 730.818159][ T1653] prepare_creds+0x2c/0x950 [ 730.818183][ T1653] __sys_setuid+0x9c/0x440 [ 730.818199][ T1653] do_syscall_64+0x106/0xf80 [ 730.818216][ T1653] ? clear_bhb_loop+0x40/0x90 [ 730.818235][ T1653] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 730.818252][ T1653] RIP: 0033:0x7f073d19c799 [ 730.818264][ T1653] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 730.818279][ T1653] RSP: 002b:00007f073e05e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000069 [ 730.818294][ T1653] RAX: ffffffffffffffda RBX: 00007f073d415fa0 RCX: 00007f073d19c799 [ 730.818304][ T1653] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 730.818314][ T1653] RBP: 00007f073d232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 730.818323][ T1653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 730.818332][ T1653] R13: 00007f073d416038 R14: 00007f073d415fa0 R15: 00007fff1920b9e8 [ 730.818352][ T1653] [ 734.059782][ T1747] netlink: 12 bytes leftover after parsing attributes in process `syz.2.13113'. [ 734.277731][ T1754] bridge0: port 4(batadv0) entered blocking state [ 734.337616][ T1754] bridge0: port 4(batadv0) entered disabled state [ 734.402467][ T1754] batadv0: entered allmulticast mode [ 734.463634][ T1754] batadv0: entered promiscuous mode [ 734.510592][ T1754] bridge0: port 4(batadv0) entered blocking state [ 734.517138][ T1754] bridge0: port 4(batadv0) entered forwarding state [ 734.840307][T14462] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 734.850709][T14462] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 734.949012][ T1772] netlink: 334 bytes leftover after parsing attributes in process `syz.2.13126'. [ 737.061283][ T1829] FAULT_INJECTION: forcing a failure. [ 737.061283][ T1829] name failslab, interval 1, probability 0, space 0, times 0 [ 737.168341][ T1829] CPU: 0 UID: 0 PID: 1829 Comm: syz.0.13152 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 737.168382][ T1829] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 737.168392][ T1829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 737.168402][ T1829] Call Trace: [ 737.168408][ T1829] [ 737.168414][ T1829] dump_stack_lvl+0x100/0x190 [ 737.168441][ T1829] should_fail_ex.cold+0x5/0xa [ 737.168461][ T1829] should_failslab+0xc2/0x120 [ 737.168477][ T1829] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 737.168500][ T1829] ? key_alloc+0x423/0x1310 [ 737.168515][ T1829] ? kmem_cache_alloc_noprof+0x292/0x6e0 [ 737.168540][ T1829] kmemdup_noprof+0x29/0x60 [ 737.168563][ T1829] key_alloc+0x423/0x1310 [ 737.168585][ T1829] ? __pfx_key_alloc+0x10/0x10 [ 737.168604][ T1829] keyring_alloc+0x44/0xc0 [ 737.168630][ T1829] install_session_keyring_to_cred+0x190/0x230 [ 737.168656][ T1829] join_session_keyring+0x1bc/0x350 [ 737.168680][ T1829] lookup_user_key+0x32f/0x1300 [ 737.168705][ T1829] ? __pfx_lookup_user_key+0x10/0x10 [ 737.168732][ T1829] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 737.168757][ T1829] ? __pfx_msgctl_down+0x10/0x10 [ 737.168860][ T1829] keyctl_get_persistent+0x197/0x8b0 [ 737.168879][ T1829] ? __pfx_keyctl_get_persistent+0x10/0x10 [ 737.168898][ T1829] ? __x64_sys_futex+0x34f/0x4d0 [ 737.168916][ T1829] ? __x64_sys_futex+0x358/0x4d0 [ 737.168936][ T1829] ? xfd_validate_state+0x129/0x190 [ 737.168961][ T1829] __do_sys_keyctl+0x3b2/0x5a0 [ 737.168983][ T1829] do_syscall_64+0x106/0xf80 [ 737.169001][ T1829] ? clear_bhb_loop+0x40/0x90 [ 737.169020][ T1829] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 737.169036][ T1829] RIP: 0033:0x7fc71879c799 [ 737.169050][ T1829] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 737.169065][ T1829] RSP: 002b:00007fc71958d028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 737.169080][ T1829] RAX: ffffffffffffffda RBX: 00007fc718a15fa0 RCX: 00007fc71879c799 [ 737.169089][ T1829] RDX: 7ffffffffffffffd RSI: 0000000000000000 RDI: 0000000000000016 [ 737.169099][ T1829] RBP: 00007fc718832bd9 R08: 0004000000000000 R09: 0000000000000000 [ 737.169108][ T1829] R10: 00000000000099a5 R11: 0000000000000246 R12: 0000000000000000 [ 737.169118][ T1829] R13: 00007fc718a16038 R14: 00007fc718a15fa0 R15: 00007fff7d9901d8 [ 737.169137][ T1829] [ 737.582007][ T1814] kexec: Could not allocate control_code_buffer [ 738.194940][ T1846] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13160'. [ 740.750501][ T1892] syz.2.13179 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 740.870600][ T1892] CPU: 0 UID: 0 PID: 1892 Comm: syz.2.13179 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 740.870635][ T1892] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 740.870644][ T1892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 740.870652][ T1892] Call Trace: [ 740.870657][ T1892] [ 740.870663][ T1892] dump_stack_lvl+0x100/0x190 [ 740.870690][ T1892] dump_header+0xfb/0x606 [ 740.870707][ T1892] oom_kill_process.cold+0xd/0x330 [ 740.870724][ T1892] out_of_memory+0x340/0x14f0 [ 740.870750][ T1892] ? __pfx_out_of_memory+0x10/0x10 [ 740.870783][ T1892] mem_cgroup_out_of_memory+0xc6/0x130 [ 740.870803][ T1892] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 740.870820][ T1892] ? find_held_lock+0x2b/0x80 [ 740.870838][ T1892] ? do_raw_spin_unlock+0x145/0x1e0 [ 740.870864][ T1892] ? _raw_spin_unlock+0x28/0x50 [ 740.870881][ T1892] try_charge_memcg+0x652/0xc90 [ 740.870900][ T1892] ? __pfx_try_charge_memcg+0x10/0x10 [ 740.870919][ T1892] ? find_held_lock+0x2b/0x80 [ 740.870931][ T1892] ? rcu_read_unlock+0x17/0x60 [ 740.870945][ T1892] ? rcu_read_unlock+0x17/0x60 [ 740.870962][ T1892] charge_memcg+0xa6/0x280 [ 740.870976][ T1892] mem_cgroup_swapin_charge_folio+0xeb/0x470 [ 740.870996][ T1892] __swap_cache_prepare_and_add+0x528/0x9e0 [ 740.871024][ T1892] ? __pfx___swap_cache_prepare_and_add+0x10/0x10 [ 740.871043][ T1892] ? __pfx_swap_entry_swapped+0x10/0x10 [ 740.871062][ T1892] swap_cache_alloc_folio+0x1cb/0x300 [ 740.871082][ T1892] ? __pfx_swap_cache_alloc_folio+0x10/0x10 [ 740.871104][ T1892] ? __lock_acquire+0x4a5/0x2630 [ 740.871124][ T1892] swap_cluster_readahead+0x411/0x770 [ 740.871148][ T1892] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 740.871168][ T1892] ? do_raw_spin_lock+0x128/0x260 [ 740.871187][ T1892] ? __pfx_find_held_lock+0x10/0x10 [ 740.871201][ T1892] ? move_cluster+0x1f7/0x570 [ 740.871229][ T1892] ? get_vma_policy+0x23f/0x3b0 [ 740.871246][ T1892] swapin_readahead+0x160/0x12c0 [ 740.871271][ T1892] ? __pfx_swapin_readahead+0x10/0x10 [ 740.871289][ T1892] ? find_held_lock+0x2b/0x80 [ 740.871302][ T1892] ? swap_table_get+0x103/0x2c0 [ 740.871318][ T1892] ? swap_table_get+0x103/0x2c0 [ 740.871339][ T1892] ? swap_table_get+0x10d/0x2c0 [ 740.871357][ T1892] ? swap_cache_get_folio+0x1ae/0x600 [ 740.871376][ T1892] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 740.871394][ T1892] ? __pfx_get_swap_device+0x10/0x10 [ 740.871420][ T1892] ? do_swap_page+0xb2e/0x68e0 [ 740.871438][ T1892] do_swap_page+0xb2e/0x68e0 [ 740.871466][ T1892] ? __pfx_do_swap_page+0x10/0x10 [ 740.871489][ T1892] ? rcu_is_watching+0x12/0xc0 [ 740.871510][ T1892] ? __pte_offset_map+0x179/0x310 [ 740.871536][ T1892] __handle_mm_fault+0x18c1/0x2b60 [ 740.871558][ T1892] ? reacquire_held_locks+0xce/0x1e0 [ 740.871576][ T1892] ? __pfx___handle_mm_fault+0x10/0x10 [ 740.871597][ T1892] ? lock_vma_under_rcu+0x17c/0x590 [ 740.871628][ T1892] handle_mm_fault+0x36d/0xa20 [ 740.871650][ T1892] do_user_addr_fault+0x5a3/0x12f0 [ 740.871678][ T1892] exc_page_fault+0x6f/0xd0 [ 740.871696][ T1892] asm_exc_page_fault+0x26/0x30 [ 740.871710][ T1892] RIP: 0033:0x7f073d19c7b2 [ 740.871723][ T1892] Code: d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 83 c8 ff 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 54 41 89 d4 55 48 89 [ 740.871736][ T1892] RSP: 002b:00007fff1920bb48 EFLAGS: 00010286 [ 740.871748][ T1892] RAX: ffffffffffffffff RBX: 00000000000b4c0f RCX: ffffffffffffffe8 [ 740.871764][ T1892] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f073d415fac [ 740.871773][ T1892] RBP: 0000000000000032 R08: 0000000000000000 R09: 0000000000000000 [ 740.871781][ T1892] R10: 00007fff1920bc50 R11: 0000000000000246 R12: 00007fff1920bc70 [ 740.871790][ T1892] R13: 00007f073d415fac R14: 00000000000b4c41 R15: 00007fff1920bc50 [ 740.871809][ T1892] [ 740.874344][ T1892] memory: usage 2812kB, limit 3072kB, failcnt 135771 [ 742.370369][ T1892] memory+swap: usage 3456kB, limit 9007199254740988kB, failcnt 0 [ 742.413344][ T1892] kmem: usage 2672kB, limit 9007199254740988kB, failcnt 0 [ 742.435585][ T1892] Memory cgroup stats for /syz2: [ 742.435705][ T1892] cache 0 [ 742.461117][ T1892] rss 24576 [ 742.483772][ T1892] rss_huge 0 [ 742.496657][ T1892] shmem 0 [ 742.499608][ T1892] mapped_file 0 [ 742.530705][ T1892] dirty 0 [ 742.533674][ T1892] writeback 4096 [ 742.537198][ T1892] workingset_refault_anon 15759 [ 742.582610][ T1892] workingset_refault_file 31570 [ 742.607278][ T1892] swap 651264 [ 742.624441][ T1892] swapcached 450166784 [ 742.629652][ T1936] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock [ 742.656158][ T1892] pgpgin 310118 [ 742.666208][ T1892] pgpgout 323102 [ 742.677760][ T1892] pgfault 434241 [ 742.703133][ T1892] pgmajfault 9516 [ 742.706789][ T1892] inactive_anon 8192 [ 742.754561][ T1892] active_anon 28672 [ 742.775495][ T1892] inactive_file 0 [ 742.779172][ T1892] active_file 0 [ 742.805256][ T1892] unevictable 0 [ 742.808734][ T1892] hierarchical_memory_limit 3145728 [ 742.846586][ T1892] hierarchical_memsw_limit 9223372036854771712 [ 742.881062][ T1892] total_cache 0 [ 742.884541][ T1892] total_rss 24576 [ 742.888173][ T1892] total_rss_huge 0 [ 742.921225][ T1892] total_shmem 0 [ 742.924964][ T1892] total_mapped_file 0 [ 742.928925][ T1892] total_dirty 0 [ 742.981619][ T1892] total_writeback 4096 [ 742.985717][ T1892] total_workingset_refault_anon 15759 [ 743.021047][ T1892] total_workingset_refault_file 31570 [ 743.026451][ T1892] total_swap 651264 [ 743.060170][ T1892] total_swapcached 450166784 [ 743.064798][ T1892] total_pgpgin 310118 [ 743.108658][ T1892] total_pgpgout 323102 [ 743.118938][ T1892] total_pgfault 434241 [ 743.140493][ T1892] total_pgmajfault 9516 [ 743.160579][ T1892] total_inactive_anon 8192 [ 743.165019][ T1892] total_active_anon 28672 [ 743.169345][ T1892] total_inactive_file 0 [ 743.240152][ T1892] total_active_file 0 [ 743.244157][ T1892] total_unevictable 0 [ 743.248118][ T1892] anon_cost 947 [ 743.305456][ T1892] file_cost 0 [ 743.308763][ T1892] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.13179,pid=1892,uid=0 [ 743.410178][ T1892] Memory cgroup out of memory: Killed process 1892 (syz.2.13179) total-vm:102224kB, anon-rss:1256kB, file-rss:22036kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000 [ 743.580206][ T1884] syz.1.13172 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 743.668637][T14457] Bluetooth: hci3: unexpected event 0x03 length: 43 > 11 [ 743.748753][ T1884] CPU: 0 UID: 0 PID: 1884 Comm: syz.1.13172 Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 743.748788][ T1884] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 743.748797][ T1884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 743.748805][ T1884] Call Trace: [ 743.748810][ T1884] [ 743.748816][ T1884] dump_stack_lvl+0x100/0x190 [ 743.748842][ T1884] dump_header+0xfb/0x606 [ 743.748859][ T1884] oom_kill_process.cold+0xd/0x330 [ 743.748876][ T1884] out_of_memory+0x340/0x14f0 [ 743.748903][ T1884] ? __pfx_out_of_memory+0x10/0x10 [ 743.748928][ T1884] mem_cgroup_out_of_memory+0xc6/0x130 [ 743.748949][ T1884] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 743.748966][ T1884] ? find_held_lock+0x2b/0x80 [ 743.748983][ T1884] ? do_raw_spin_unlock+0x145/0x1e0 [ 743.749004][ T1884] ? _raw_spin_unlock+0x28/0x50 [ 743.749020][ T1884] try_charge_memcg+0x652/0xc90 [ 743.749039][ T1884] ? __pfx_try_charge_memcg+0x10/0x10 [ 743.749057][ T1884] ? find_held_lock+0x2b/0x80 [ 743.749069][ T1884] ? rcu_read_unlock+0x17/0x60 [ 743.749084][ T1884] ? rcu_read_unlock+0x17/0x60 [ 743.749100][ T1884] charge_memcg+0xa6/0x280 [ 743.749114][ T1884] mem_cgroup_swapin_charge_folio+0xeb/0x470 [ 743.749134][ T1884] __swap_cache_prepare_and_add+0x528/0x9e0 [ 743.749163][ T1884] ? __pfx___swap_cache_prepare_and_add+0x10/0x10 [ 743.749182][ T1884] ? __pfx_swap_entry_swapped+0x10/0x10 [ 743.749201][ T1884] swap_cache_alloc_folio+0x1cb/0x300 [ 743.749223][ T1884] ? __pfx_swap_cache_alloc_folio+0x10/0x10 [ 743.749244][ T1884] ? __lock_acquire+0x4a5/0x2630 [ 743.749264][ T1884] swap_cluster_readahead+0x411/0x770 [ 743.749289][ T1884] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 743.749308][ T1884] ? do_raw_spin_lock+0x128/0x260 [ 743.749327][ T1884] ? __pfx_find_held_lock+0x10/0x10 [ 743.749341][ T1884] ? move_cluster+0x1f7/0x570 [ 743.749369][ T1884] ? get_vma_policy+0x23f/0x3b0 [ 743.749387][ T1884] swapin_readahead+0x160/0x12c0 [ 743.749413][ T1884] ? __pfx_swapin_readahead+0x10/0x10 [ 743.749431][ T1884] ? find_held_lock+0x2b/0x80 [ 743.749443][ T1884] ? swap_table_get+0x103/0x2c0 [ 743.749460][ T1884] ? swap_table_get+0x103/0x2c0 [ 743.749481][ T1884] ? swap_table_get+0x10d/0x2c0 [ 743.749500][ T1884] ? swap_cache_get_folio+0x1ae/0x600 [ 743.749519][ T1884] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 743.749537][ T1884] ? __pfx_get_swap_device+0x10/0x10 [ 743.749563][ T1884] ? do_swap_page+0xb2e/0x68e0 [ 743.749581][ T1884] do_swap_page+0xb2e/0x68e0 [ 743.749608][ T1884] ? __pfx_do_swap_page+0x10/0x10 [ 743.749631][ T1884] ? rcu_is_watching+0x12/0xc0 [ 743.749652][ T1884] ? __pte_offset_map+0x179/0x310 [ 743.749684][ T1884] __handle_mm_fault+0x18c1/0x2b60 [ 743.749707][ T1884] ? reacquire_held_locks+0xce/0x1e0 [ 743.749725][ T1884] ? __pfx___handle_mm_fault+0x10/0x10 [ 743.749747][ T1884] ? lock_vma_under_rcu+0x17c/0x590 [ 743.749777][ T1884] handle_mm_fault+0x36d/0xa20 [ 743.749800][ T1884] do_user_addr_fault+0x5a3/0x12f0 [ 743.749829][ T1884] exc_page_fault+0x6f/0xd0 [ 743.749846][ T1884] asm_exc_page_fault+0x26/0x30 [ 743.749861][ T1884] RIP: 0033:0x7f329966934c [ 743.749873][ T1884] Code: fe ff 48 89 c6 48 83 f8 09 0f 87 12 12 00 00 66 0f ef c0 4c 8d a4 24 70 01 00 00 49 89 c7 48 c7 84 24 b0 01 00 00 00 00 00 00 <0f> 29 84 24 70 01 00 00 4d 8d 34 c4 0f 29 84 24 80 01 00 00 0f 29 [ 743.749887][ T1884] RSP: 002b:00007ffd2c76ee80 EFLAGS: 00010297 [ 743.749899][ T1884] RAX: 0000000000000005 RBX: 00007ffd2c76ef60 RCX: 0000000000000000 [ 743.749908][ T1884] RDX: 0000001b32c20050 RSI: 0000000000000005 RDI: 00007ffd2c76ef60 [ 743.749916][ T1884] RBP: 0000000000001b54 R08: 0000001b33020000 R09: 000000000000000a [ 743.749925][ T1884] R10: 0000000000000005 R11: 0000000000000000 R12: 00007ffd2c76eff0 [ 743.749933][ T1884] R13: 00007f3299a15fac R14: 00000000000b50e2 R15: 0000000000000005 [ 743.749952][ T1884] [ 743.749958][ T1884] memory: usage 3072kB, limit 3072kB, failcnt 198365 [ 744.821757][ T1998] bridge0: port 5(veth0_to_bridge) entered blocking state [ 744.828942][ T1998] bridge0: port 5(veth0_to_bridge) entered disabled state [ 744.860967][ T1998] veth0_to_bridge: entered allmulticast mode [ 744.950707][ T1998] veth0_to_bridge: entered promiscuous mode [ 744.983970][ T1998] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 745.053728][ T1998] bridge0: port 5(veth0_to_bridge) entered blocking state [ 745.060990][ T1998] bridge0: port 5(veth0_to_bridge) entered forwarding state [ 746.030959][ T2025] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13224'. [ 747.375868][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.383722][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 749.174241][ T2111] sctp: [Deprecated]: syz.3.13264 (pid 2111) Use of struct sctp_assoc_value in delayed_ack socket option. [ 749.174241][ T2111] Use struct sctp_sack_info instead [ 749.508145][ T1884] memory+swap: usage 119188kB, limit 9007199254740988kB, failcnt 0 [ 749.674491][ T1884] kmem: usage 2836kB, limit 9007199254740988kB, failcnt 0 [ 749.810151][ T1884] Memory cgroup stats for /syz1: [ 749.810262][ T1884] cache 241664 [ 749.897668][ T1884] rss 0 [ 749.968094][ T1884] rss_huge 0 [ 750.031591][ T1884] shmem 4096 [ 750.034849][ T1884] mapped_file 16384 [ 750.038638][ T1884] dirty 0 [ 750.235299][ T1884] writeback 0 [ 750.238604][ T1884] workingset_refault_anon 11441 [ 750.366562][ T1884] workingset_refault_file 57356 [ 750.442975][ T1884] swap 119209984 [ 750.546901][ T1884] swapcached 759726080 [ 750.594181][ T1884] pgpgin 415454 [ 750.680117][ T1884] pgpgout 415900 [ 750.683688][ T1884] pgfault 445004 [ 750.788093][ T1884] pgmajfault 6575 [ 750.881929][ T1884] inactive_anon 4096 [ 750.956250][ T1884] active_anon 0 [ 751.006074][ T1884] inactive_file 86016 [ 751.100705][ T1884] active_file 4096 [ 751.104448][ T1884] unevictable 0 [ 751.107889][ T1884] hierarchical_memory_limit 3145728 [ 751.340080][ T1884] hierarchical_memsw_limit 9223372036854771712 [ 751.426387][ T1884] total_cache 241664 [ 751.483932][ T1884] total_rss 0 [ 751.620695][ T1884] total_rss_huge 0 [ 751.648549][ T1884] total_shmem 4096 [ 751.718756][ T1884] total_mapped_file 16384 [ 751.784191][ T1884] total_dirty 0 [ 751.890145][ T1884] total_writeback 0 [ 751.894182][ T1884] total_workingset_refault_anon 11441 [ 751.899540][ T1884] total_workingset_refault_file 57356 [ 752.163146][ T1884] total_swap 119209984 [ 752.244191][ T1884] total_swapcached 759726080 [ 752.340898][ T1884] total_pgpgin 415454 [ 752.452717][ T1884] total_pgpgout 415900 [ 752.456834][ T1884] total_pgfault 445004 [ 752.590157][ T1884] total_pgmajfault 6575 [ 752.675730][ T1884] total_inactive_anon 4096 [ 752.759989][ T1884] total_active_anon 0 [ 752.764290][ T1884] total_inactive_file 86016 [ 752.949470][ T1884] total_active_file 4096 [ 752.986561][ T1884] total_unevictable 0 [ 753.036024][ T1884] anon_cost 1250 [ 753.039612][ T1884] file_cost 19 [ 753.287120][ T1884] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.12991,pid=1452,uid=0 [ 753.501883][ T1884] Memory cgroup out of memory: Killed process 1452 (syz.1.12991) total-vm:137172kB, anon-rss:1228kB, file-rss:54828kB, shmem-rss:0kB, UID:0 pgtables:256kB oom_score_adj:1000 [ 755.027560][ T29] audit: type=1804 audit(4294967301.230:40): pid=2284 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.13341" name="file0" dev="tmpfs" ino=18713 res=1 errno=0 [ 755.202328][ T29] audit: type=1800 audit(4294967301.420:41): pid=2287 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.13342" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 756.440801][ T2327] openvswitch: netlink: IP tunnel TTL not specified. [ 756.931584][ T2341] ovs_?: entered promiscuous mode [ 757.441911][ T2363] netlink: 350 bytes leftover after parsing attributes in process `syz.3.13374'. [ 761.002214][ T2466] netlink: 16 bytes leftover after parsing attributes in process `syz.3.13415'. [ 762.064045][ T2499] netlink: 'syz.0.13426': attribute type 1 has an invalid length. [ 765.167317][ T2648] netlink: 206 bytes leftover after parsing attributes in process `syz.3.13480'. [ 765.236881][ T2643] zswap: compressor not available [ 765.378499][ T2659] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13484'. [ 765.682222][ T2677] netlink: 342 bytes leftover after parsing attributes in process `syz.1.13490'. [ 766.496852][ T2724] overlayfs: missing 'lowerdir' [ 772.990053][ C0] sched: DL replenish lagged too much [ 808.925342][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 808.938868][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 873.069971][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 873.076951][ C0] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P2740/1:b..l [ 873.085450][ C0] rcu: (detected by 0, t=10502 jiffies, g=175217, q=656 ncpus=1) [ 873.093238][ C0] task:syz.1.13514 state:R running task stack:23408 pid:2740 tgid:2738 ppid:6005 task_flags:0x400940 flags:0x00080000 [ 873.108095][ C0] Call Trace: [ 873.111370][ C0] [ 873.114290][ C0] __schedule+0xfee/0x6120 [ 873.118699][ C0] ? arch_stack_walk+0xa6/0xf0 [ 873.123455][ C0] ? __pfx___schedule+0x10/0x10 [ 873.128314][ C0] ? mark_held_locks+0x40/0x70 [ 873.133068][ C0] preempt_schedule_irq+0x50/0x90 [ 873.138080][ C0] irqentry_exit+0x17b/0x670 [ 873.142662][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 873.148627][ C0] RIP: 0010:lock_acquire+0x5e/0x380 [ 873.153809][ C0] Code: 05 bb e9 28 12 83 f8 07 0f 87 f0 00 00 00 48 0f a3 05 86 59 f5 0e 0f 82 c2 02 00 00 8b 35 4e 8d f5 0e 85 f6 0f 85 dd 00 00 00 <48> 8b 44 24 30 65 48 2b 05 5d e9 28 12 0f 85 02 03 00 00 48 83 c4 [ 873.173489][ C0] RSP: 0018:ffffc900059163f0 EFLAGS: 00000206 [ 873.179544][ C0] RAX: 0000000000000046 RBX: 0000000000000000 RCX: 0000000000000001 [ 873.187525][ C0] RDX: 0000000000000000 RSI: ffffffff8de55850 RDI: ffffffff8c1af520 [ 873.195480][ C0] RBP: ffffffff8e7e9220 R08: 0000000028bf3b1f R09: 0000000000000007 [ 873.203439][ C0] R10: 0000000000000200 R11: 0000000000000000 R12: 0000000000000002 [ 873.211391][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 873.219374][ C0] ? unwind_next_frame+0x3c8/0x1ea0 [ 873.224579][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 873.230719][ C0] unwind_next_frame+0xd1/0x1ea0 [ 873.235639][ C0] ? unwind_next_frame+0xbd/0x1ea0 [ 873.240739][ C0] ? stack_trace_save+0x8e/0xc0 [ 873.245570][ C0] ? __unwind_start+0x3d1/0x7f0 [ 873.250422][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 873.256581][ C0] arch_stack_walk+0x94/0xf0 [ 873.261175][ C0] ? stack_trace_save+0x8e/0xc0 [ 873.266018][ C0] stack_trace_save+0x8e/0xc0 [ 873.270677][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 873.276029][ C0] ? __lock_acquire+0x4a5/0x2630 [ 873.280953][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 873.286740][ C0] ? lockdep_hardirqs_on+0x78/0x100 [ 873.291918][ C0] save_stack+0x162/0x1e0 [ 873.296241][ C0] ? __pfx_save_stack+0x10/0x10 [ 873.301086][ C0] ? page_ext_put+0x3e/0xd0 [ 873.305580][ C0] __reset_page_owner+0x84/0x190 [ 873.310508][ C0] free_unref_folios+0xaea/0x1790 [ 873.315532][ C0] ? _raw_spin_unlock_bh+0x10/0x30 [ 873.320661][ C0] shrink_folio_list+0x2f10/0x6000 [ 873.325770][ C0] ? __pfx_shrink_folio_list+0x10/0x10 [ 873.331215][ C0] ? trace_mm_vmscan_lru_isolate+0x87/0x250 [ 873.337100][ C0] ? isolate_folios+0x1929/0x39c0 [ 873.342111][ C0] ? isolate_folios+0x19ce/0x39c0 [ 873.347147][ C0] ? mark_held_locks+0x40/0x70 [ 873.351899][ C0] evict_folios+0x7fa/0x1e90 [ 873.356485][ C0] ? __pfx_evict_folios+0x10/0x10 [ 873.361521][ C0] ? folios_put_refs+0x66d/0x840 [ 873.366450][ C0] ? __pfx_folios_put_refs+0x10/0x10 [ 873.371726][ C0] ? mem_cgroup_get_nr_swap_pages+0x20/0x120 [ 873.377721][ C0] try_to_shrink_lruvec+0x57e/0x990 [ 873.382931][ C0] ? mlock_drain_local+0x254/0x4e0 [ 873.388030][ C0] ? __pfx_try_to_shrink_lruvec+0x10/0x10 [ 873.393744][ C0] ? set_mm_walk+0xee/0x270 [ 873.398232][ C0] shrink_lruvec+0x319/0x2a50 [ 873.402897][ C0] ? find_held_lock+0x2b/0x80 [ 873.407558][ C0] ? xa_load+0x149/0x2c0 [ 873.411786][ C0] ? xa_load+0x149/0x2c0 [ 873.416015][ C0] ? __lock_acquire+0x4a5/0x2630 [ 873.421111][ C0] ? xa_load+0x153/0x2c0 [ 873.425339][ C0] ? __pfx_xa_load+0x10/0x10 [ 873.429920][ C0] ? __pfx_shrink_lruvec+0x10/0x10 [ 873.435022][ C0] ? find_held_lock+0x2b/0x80 [ 873.439680][ C0] ? do_shrink_slab+0xcdd/0x11e0 [ 873.444607][ C0] ? do_shrink_slab+0xcdd/0x11e0 [ 873.449543][ C0] ? shrink_slab+0x677/0x12b0 [ 873.454216][ C0] ? __pfx___might_resched+0x10/0x10 [ 873.459491][ C0] ? page_counter_calculate_protection+0x344/0x730 [ 873.465987][ C0] ? mem_cgroup_iter+0x37b/0x710 [ 873.470916][ C0] shrink_node+0x8e7/0x3e20 [ 873.475420][ C0] ? __pfx_shrink_node+0x10/0x10 [ 873.480348][ C0] ? __pfx___might_resched+0x10/0x10 [ 873.485626][ C0] ? prepare_alloc_pages+0x16d/0x5f0 [ 873.490902][ C0] ? rcu_is_watching+0x12/0xc0 [ 873.495680][ C0] ? do_try_to_free_pages+0x340/0x1870 [ 873.501149][ C0] do_try_to_free_pages+0x340/0x1870 [ 873.506453][ C0] ? __pfx_do_try_to_free_pages+0x10/0x10 [ 873.512177][ C0] ? do_raw_spin_lock+0x128/0x260 [ 873.517197][ C0] try_to_free_mem_cgroup_pages+0x2b2/0x820 [ 873.523084][ C0] ? __pfx_try_to_free_mem_cgroup_pages+0x10/0x10 [ 873.529502][ C0] ? psi_memstall_enter+0x21f/0x330 [ 873.534686][ C0] ? lockdep_hardirqs_on+0x78/0x100 [ 873.539869][ C0] ? psi_memstall_enter+0x21f/0x330 [ 873.545057][ C0] try_charge_memcg+0x3e3/0xc90 [ 873.549895][ C0] ? __pfx_try_charge_memcg+0x10/0x10 [ 873.555251][ C0] ? find_held_lock+0x2b/0x80 [ 873.559913][ C0] ? rcu_read_unlock+0x17/0x60 [ 873.564664][ C0] ? rcu_read_unlock+0x17/0x60 [ 873.569419][ C0] charge_memcg+0xa6/0x280 [ 873.573819][ C0] __mem_cgroup_charge+0x2b/0x1e0 [ 873.578831][ C0] do_anonymous_page+0xb62/0x1fb0 [ 873.583849][ C0] __handle_mm_fault+0x1d42/0x2b60 [ 873.588954][ C0] ? __pfx___handle_mm_fault+0x10/0x10 [ 873.594405][ C0] ? pte_offset_map_lock+0x174/0x320 [ 873.599677][ C0] ? find_held_lock+0x2b/0x80 [ 873.604361][ C0] ? follow_page_pte+0x5b3/0x1400 [ 873.609377][ C0] handle_mm_fault+0x36d/0xa20 [ 873.614133][ C0] __get_user_pages+0xf9c/0x34d0 [ 873.619065][ C0] ? __pfx___get_user_pages+0x10/0x10 [ 873.624423][ C0] populate_vma_page_range+0x267/0x3f0 [ 873.629868][ C0] ? __pfx_populate_vma_page_range+0x10/0x10 [ 873.635831][ C0] ? __pfx_find_vma_intersection+0x10/0x10 [ 873.641621][ C0] ? do_mmap+0x93f/0x12f0 [ 873.645934][ C0] __mm_populate+0x107/0x3a0 [ 873.650512][ C0] ? __pfx___mm_populate+0x10/0x10 [ 873.655608][ C0] ? up_write+0x290/0x4f0 [ 873.659928][ C0] vm_mmap_pgoff+0x37f/0x470 [ 873.664512][ C0] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 873.669615][ C0] ksys_mmap_pgoff+0xe1/0x650 [ 873.674278][ C0] ? kcov_ioctl+0x16a/0x720 [ 873.678770][ C0] ? kfree+0x2ec/0x6b0 [ 873.682823][ C0] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 873.688091][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 873.693888][ C0] __x64_sys_mmap+0x125/0x190 [ 873.698560][ C0] do_syscall_64+0x106/0xf80 [ 873.703135][ C0] ? clear_bhb_loop+0x40/0x90 [ 873.707796][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 873.713674][ C0] RIP: 0033:0x7f329979c799 [ 873.718079][ C0] RSP: 002b:00007f329a5e0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 873.726472][ C0] RAX: ffffffffffffffda RBX: 00007f3299a15fa0 RCX: 00007f329979c799 [ 873.734430][ C0] RDX: 00000000000000df RSI: 0000000000400007 RDI: 0000000000000000 [ 873.742382][ C0] RBP: 00007f3299832bd9 R08: ffffffffffffffff R09: 0000000000000000 [ 873.750335][ C0] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 873.758304][ C0] R13: 00007f3299a16038 R14: 00007f3299a15fa0 R15: 00007ffd2c76ed18 [ 873.766269][ C0] [ 873.769288][ C0] rcu: rcu_preempt kthread starved for 519 jiffies! g175217 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 873.780375][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 873.790323][ C0] rcu: RCU grace-period kthread stack dump: [ 873.796190][ C0] task:rcu_preempt state:R running task stack:27976 pid:16 tgid:16 ppid:2 task_flags:0x208040 flags:0x00080000 [ 873.809655][ C0] Call Trace: [ 873.812918][ C0] [ 873.815839][ C0] __schedule+0xfee/0x6120 [ 873.820241][ C0] ? __lock_acquire+0x4a5/0x2630 [ 873.825172][ C0] ? __pfx___schedule+0x10/0x10 [ 873.830005][ C0] ? find_held_lock+0x2b/0x80 [ 873.834665][ C0] ? schedule+0x2bf/0x390 [ 873.838980][ C0] schedule+0xdd/0x390 [ 873.843032][ C0] schedule_timeout+0x127/0x280 [ 873.847872][ C0] ? __pfx_schedule_timeout+0x10/0x10 [ 873.853234][ C0] ? __pfx_process_timeout+0x10/0x10 [ 873.858519][ C0] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 873.864308][ C0] ? prepare_to_swait_event+0xdf/0x4a0 [ 873.869755][ C0] rcu_gp_fqs_loop+0x1a9/0x900 [ 873.874518][ C0] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 873.879792][ C0] ? __pfx_rcu_gp_init+0x10/0x10 [ 873.884745][ C0] ? __pfx_rcu_gp_cleanup+0x10/0x10 [ 873.889928][ C0] ? rcu_is_watching+0x12/0xc0 [ 873.894681][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 873.900497][ C0] rcu_gp_kthread+0x179/0x230 [ 873.905164][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 873.910368][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 873.916166][ C0] ? __kthread_parkme+0x18c/0x230 [ 873.921179][ C0] ? kthread+0x13a/0x450 [ 873.925407][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 873.930587][ C0] kthread+0x370/0x450 [ 873.934640][ C0] ? __pfx_kthread+0x10/0x10 [ 873.939217][ C0] ret_from_fork+0x754/0xd80 [ 873.943798][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 873.948900][ C0] ? __switch_to+0x7b4/0x1120 [ 873.953581][ C0] ? __pfx_kthread+0x10/0x10 [ 873.958162][ C0] ret_from_fork_asm+0x1a/0x30 [ 873.962931][ C0] [ 873.966019][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 873.972325][ C0] CPU: 0 UID: 0 PID: 3407 Comm: kworker/R-bat_e Tainted: G U W I L XTNJ syzkaller #0 PREEMPT(full) [ 873.983598][ C0] Tainted: [U]=USER, [W]=WARN, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 873.995803][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 874.005861][ C0] Workqueue: bat_events batadv_dat_purge [ 874.011595][ C0] RIP: 0010:lock_is_held_type+0x17/0x140 [ 874.017213][ C0] Code: 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 8b 0d ba a5 4c 05 b8 ff ff ff ff 85 c9 0f 84 ed 00 00 00 <65> 8b 15 4a 49 80 08 85 d2 0f 85 de 00 00 00 41 57 41 56 41 55 41 [ 874.036805][ C0] RSP: 0018:ffffc90000006f58 EFLAGS: 00000202 [ 874.042856][ C0] RAX: 00000000ffffffff RBX: ffff888075d42000 RCX: 0000000000000001 [ 874.050807][ C0] RDX: 0000000000000001 RSI: 00000000ffffffff RDI: ffffffff8e7e9220 [ 874.058760][ C0] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000 [ 874.066714][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888069bed100 [ 874.074666][ C0] R13: dffffc0000000000 R14: ffff888075d42000 R15: 0000000000000000 [ 874.082618][ C0] FS: 0000000000000000(0000) GS:ffff88812434c000(0000) knlGS:0000000000000000 [ 874.091532][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 874.098098][ C0] CR2: 00007fff1920ac6c CR3: 000000007cce6000 CR4: 00000000003526f0 [ 874.106054][ C0] Call Trace: [ 874.109314][ C0] [ 874.112139][ C0] dev_nit_active_rcu+0x15/0x130 [ 874.117070][ C0] dev_hard_start_xmit+0x2d1/0x7d0 [ 874.122181][ C0] __dev_queue_xmit+0x32c1/0x4800 [ 874.127199][ C0] ? lock_acquire+0x1cf/0x380 [ 874.131869][ C0] ? __pfx___dev_queue_xmit+0x10/0x10 [ 874.137232][ C0] ? __local_bh_enable_ip+0x9e/0x120 [ 874.142501][ C0] ? __pfx_warn_bogus_irq_restore+0x10/0x10 [ 874.148381][ C0] ? __local_bh_enable_ip+0x9e/0x120 [ 874.153666][ C0] ? ebt_do_table+0x1938/0x2250 [ 874.158553][ C0] ? br_nf_post_routing+0x5f9/0x16a0 [ 874.163835][ C0] ? find_held_lock+0x2b/0x80 [ 874.168541][ C0] ? __pfx_br_nf_post_routing+0x10/0x10 [ 874.174095][ C0] ? __pfx_ebt_do_table+0x10/0x10 [ 874.179116][ C0] ? mark_held_locks+0x40/0x70 [ 874.183892][ C0] ? lock_acquire+0x1cf/0x380 [ 874.188555][ C0] ? find_held_lock+0x2b/0x80 [ 874.193215][ C0] br_dev_queue_push_xmit+0x360/0x550 [ 874.198664][ C0] br_forward_finish+0x102/0x4d0 [ 874.203591][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 874.209046][ C0] ? __pfx_br_dev_queue_push_xmit+0x10/0x10 [ 874.214933][ C0] ? nf_hook_slow+0x167/0x220 [ 874.219657][ C0] br_nf_hook_thresh+0x30d/0x420 [ 874.224613][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 874.230065][ C0] ? __pfx_br_nf_hook_thresh+0x10/0x10 [ 874.235509][ C0] ? nf_hook+0x330/0x7a0 [ 874.239735][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 874.245181][ C0] ? lock_acquire+0x1cf/0x380 [ 874.249847][ C0] br_nf_forward_finish+0x693/0xb30 [ 874.255030][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 874.260483][ C0] br_nf_forward+0x157a/0x19f0 [ 874.265237][ C0] nf_hook_slow+0xbf/0x220 [ 874.269671][ C0] __br_forward+0x2f6/0x970 [ 874.274167][ C0] ? __pfx___br_forward+0x10/0x10 [ 874.279181][ C0] ? __asan_memcpy+0x3c/0x60 [ 874.283766][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 874.289213][ C0] ? __skb_clone+0x570/0x760 [ 874.293790][ C0] maybe_deliver+0xf0/0x180 [ 874.298283][ C0] br_flood+0x193/0x650 [ 874.302434][ C0] br_handle_frame_finish+0xf57/0x1f00 [ 874.307881][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 874.313760][ C0] ? find_held_lock+0x2b/0x80 [ 874.318418][ C0] ? net_generic+0xea/0x2a0 [ 874.322905][ C0] ? net_generic+0xea/0x2a0 [ 874.327392][ C0] ? net_generic+0xf4/0x2a0 [ 874.331897][ C0] ? br_nf_pre_routing+0x7a3/0x1510 [ 874.337097][ C0] br_handle_frame+0x977/0x1520 [ 874.341936][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 874.347207][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 874.353086][ C0] ? kasan_quarantine_put+0x104/0x240 [ 874.358449][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 874.363803][ C0] __netif_receive_skb_core.constprop.0+0x6c5/0x3550 [ 874.370472][ C0] ? skb_release_data+0x7a0/0x9d0 [ 874.375501][ C0] ? kfree_skbmem+0x19f/0x210 [ 874.380173][ C0] ? dst_release+0x9a/0x330 [ 874.384755][ C0] ? arp_process+0x237/0x2440 [ 874.389422][ C0] ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10 [ 874.396548][ C0] ? __pfx_arp_process+0x10/0x10 [ 874.401497][ C0] ? __pfx_arp_process+0x10/0x10 [ 874.406423][ C0] ? __pfx_nf_hook.constprop.0+0x10/0x10 [ 874.412045][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 874.417841][ C0] ? __lock_acquire+0x4a5/0x2630 [ 874.422766][ C0] ? process_backlog+0x32a/0x1580 [ 874.427770][ C0] __netif_receive_skb_one_core+0xb0/0x1e0 [ 874.433567][ C0] ? __pfx___netif_receive_skb_one_core+0x10/0x10 [ 874.439979][ C0] ? lock_acquire+0x1cf/0x380 [ 874.444647][ C0] ? process_backlog+0x32a/0x1580 [ 874.449655][ C0] ? process_backlog+0x32a/0x1580 [ 874.454659][ C0] __netif_receive_skb+0x1f/0x120 [ 874.459679][ C0] process_backlog+0x37a/0x1580 [ 874.464536][ C0] __napi_poll.constprop.0+0xaf/0x450 [ 874.469911][ C0] net_rx_action+0xa40/0xf20 [ 874.474502][ C0] ? __pfx_net_rx_action+0x10/0x10 [ 874.479600][ C0] ? mark_held_locks+0x40/0x70 [ 874.484352][ C0] ? lockdep_hardirqs_on+0x78/0x100 [ 874.489536][ C0] ? tmigr_handle_remote+0x132/0x380 [ 874.494821][ C0] ? run_timer_base+0x121/0x190 [ 874.499657][ C0] ? __pfx_run_timer_base+0x10/0x10 [ 874.504845][ C0] handle_softirqs+0x1eb/0x9e0 [ 874.509603][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 874.514874][ C0] ? __batadv_dat_purge.part.0+0x294/0x3c0 [ 874.520675][ C0] ? __pfx_batadv_dat_to_purge+0x10/0x10 [ 874.526298][ C0] do_softirq+0xac/0xe0 [ 874.530440][ C0] [ 874.533353][ C0] [ 874.536265][ C0] __local_bh_enable_ip+0xf8/0x120 [ 874.541362][ C0] __batadv_dat_purge.part.0+0x294/0x3c0 [ 874.546988][ C0] batadv_dat_purge+0x4b/0xa0 [ 874.551654][ C0] process_one_work+0x9d7/0x1920 [ 874.556591][ C0] ? __pfx_process_one_work+0x10/0x10 [ 874.561956][ C0] ? __pfx_batadv_dat_purge+0x10/0x10 [ 874.567338][ C0] rescuer_thread+0x902/0x1490 [ 874.572097][ C0] ? rescuer_thread+0x23d/0x1490 [ 874.577020][ C0] ? rescuer_thread+0x118/0x1490 [ 874.581946][ C0] ? __pfx_rescuer_thread+0x10/0x10 [ 874.587133][ C0] ? __kthread_parkme+0x18c/0x230 [ 874.592154][ C0] ? kthread+0x13a/0x450 [ 874.596382][ C0] ? __pfx_rescuer_thread+0x10/0x10 [ 874.601567][ C0] kthread+0x370/0x450 [ 874.605627][ C0] ? __pfx_kthread+0x10/0x10 [ 874.610202][ C0] ret_from_fork+0x754/0xd80 [ 874.614781][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 874.619884][ C0] ? __switch_to+0x7b4/0x1120 [ 874.624558][ C0] ? __pfx_kthread+0x10/0x10 [ 874.629141][ C0] ret_from_fork_asm+0x1a/0x30 [ 874.633899][ C0] [ 875.613315][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 875.626710][ T1299] ieee802154 phy1 wpan1: encryption failed: -22