last executing test programs:
2m35.204995333s ago: executing program 1 (id=1747):
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x88)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
shutdown$auto(0x200000003, 0x2)
2m34.851396766s ago: executing program 1 (id=1750):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x31, 0x8000, 0x1ffde, 0x1, 0x2, 0x1, 0x9, 0x3, 0x5, 0x8, 0x3002, 0x9, 0xb, 0x80010002, 0x80, 0xd8f9, 0x6, 0x7, 0x2, 0x203, 0x400, 0x84, 0x0, 0x0, 0x0, 0x800, 0x0, [0x0, 0x0, 0x0, 0x0, 0xd, 0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xeff, 0x0, 0xffffffffffffffff, 0x0, 0x1000, 0x4]}, 0x1fe, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x24008000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r0 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0xfc, &(0x7f0000000100)={0x0, 0xfc6}, 0x2, 0x0, 0x7, 0x3}, 0x800}, 0x7, 0x4008)
2m34.484045097s ago: executing program 1 (id=1752):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mtdblock0\x00', 0x14fe02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
futex$auto(0x0, 0x85, 0x38, 0x0, 0x0, 0x80800005)
r0 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0)
ioctl$auto_BLKPG2(r0, 0x1269, 0x0)
ioctl$auto_MEMGETINFO(r0, 0x80204d01, 0x0)
2m34.102239129s ago: executing program 1 (id=1756):
r0 = socket(0x10, 0x2, 0xc)
r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="ed03667ddcd6d026df250a00000a00000200252f00e2a85c41e75a02715b2d0000000100df"], 0x51}, 0x1, 0x0, 0x0, 0x24050803}, 0x10004010)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
2m33.370341884s ago: executing program 1 (id=1760):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)
madvise$auto(0x0, 0x200204, 0x15)
2m33.069919032s ago: executing program 1 (id=1763):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002a40), r0)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f00000050c0)={0x0, 0x0, &(0x7f0000005080)={&(0x7f0000002a80)={0x14, r1, 0x1, 0x70bd26, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), r2)
sendmsg$auto_NFSD_CMD_VERSION_SET(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)={0x18, r3, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@NFSD_A_SERVER_PROTO_VERSION={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x24000001}, 0x844)
2m17.868167777s ago: executing program 32 (id=1763):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002a40), r0)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f00000050c0)={0x0, 0x0, &(0x7f0000005080)={&(0x7f0000002a80)={0x14, r1, 0x1, 0x70bd26, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), r2)
sendmsg$auto_NFSD_CMD_VERSION_SET(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)={0x18, r3, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@NFSD_A_SERVER_PROTO_VERSION={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x24000001}, 0x844)
2m10.666534957s ago: executing program 2 (id=1856):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x7, 0xc, 0x940, 0x1ffde, 0x7, 0x6, 0x3ff, 0x9, 0x1, 0x2, 0x7, 0x9, 0x8, 0x8, 0x407, 0x5, 0x7, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0xe3a]}, 0x400, 0x81)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="f2000000", @ANYBLOB='p\x00', @ANYRES16], 0x1ac}, 0x1, 0x0, 0x0, 0x24040840}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
2m10.409253727s ago: executing program 2 (id=1859):
r0 = inotify_init1$auto(0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)={0x1c, r2, 0x27c9d9d5b13b6c03, 0x70bd25, 0x25dfdbfd, {}, [@HWSIM_ATTR_IFTYPE_SUPPORT={0x8, 0x17, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x404c884}, 0x64004890)
sendmsg$auto_HWSIM_CMD_GET_RADIO(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r2, 0x4, 0x70bd28, 0x25dfdbfd, {}, [@HWSIM_ATTR_FREQ={0x8, 0x13, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4008001}, 0x20000010)
write$auto_tracing_saved_cmdlines_size_fops_trace(r0, &(0x7f0000000100)="f9afb7060d6f9d4d1e7db9f71997b989917ca3c2b9667641a77bba23032ed46c11acf245282f8a15902288da058eefbc6856582291d65d83beb38ec56043e0f9b6dfab65541c18ea04261fe9", 0x4c)
2m10.075191464s ago: executing program 2 (id=1861):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x8000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x89fc, &(0x7f0000000000)={'tunl0\x00'})
r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0)
ioctl$auto(r2, 0xc0045520, r0)
2m9.941011356s ago: executing program 2 (id=1863):
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
io_uring_setup$auto(0x2, 0x0)
r1 = epoll_create$auto(0x6)
epoll_ctl$auto(r1, 0x1, r0, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
2m9.735316908s ago: executing program 2 (id=1865):
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)='nfsd\x00', 0x7, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x40000, 0x0)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
2m9.640332434s ago: executing program 2 (id=1866):
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x20009, 0xdc, 0xeb1, 0x401, 0x8000)
io_uring_register$auto(0x100000001, 0x14, 0x0, 0x5)
1m54.442763447s ago: executing program 33 (id=1866):
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x20009, 0xdc, 0xeb1, 0x401, 0x8000)
io_uring_register$auto(0x100000001, 0x14, 0x0, 0x5)
1m44.414234874s ago: executing program 0 (id=2082):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x12, 0x93f, 0x1fee1, 0x3, 0x6, 0xfffffffffffffffe, 0x9, 0x5, 0x8005, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x8, 0x4, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, [0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x1, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x1000000000000, 0xfffffffffffffffc, 0x0, 0x7fffffffffff, 0x9, 0x3, 0x0, 0x10, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0x1fe, 0x82)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x2000000, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
1m44.150032895s ago: executing program 0 (id=2093):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
shutdown$auto(r0, 0x3)
1m42.936581692s ago: executing program 0 (id=2095):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0x10, 0x2, 0x14)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14af"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
1m42.697027374s ago: executing program 0 (id=2097):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0xa, 0x3, 0x3a)
bind$auto(0x3, &(0x7f0000000040)=@tipc=@nameseq={0x1e, 0x1, 0x0, {0x43, 0x4, 0x3}}, 0x6a)
r0 = getpid()
process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000040), 0xffffffff}, 0x6, 0x0)
setsockopt$auto(0x400000000000003, 0x29, 0xca, 0x0, 0x567)
1m42.435038575s ago: executing program 0 (id=2099):
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
r0 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0)
lseek$auto(r0, 0x9, 0x0)
getdents$auto(r0, 0x0, 0x62d4)
1m42.249326081s ago: executing program 0 (id=2102):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
chmod$auto(0x0, 0x116)
1m34.810676441s ago: executing program 3 (id=2158):
mmap$auto(0x0, 0x428, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xffffeffe, 0x2)
io_uring_setup$auto(0x7, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x181902, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x1e, &(0x7f0000000180), 0x1)
1m34.65147112s ago: executing program 3 (id=2159):
mmap$auto(0x0, 0x402000a, 0xffffffffffffffff, 0x400eb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
fanotify_init$auto(0x5, 0x2000000000002)
io_uring_setup$auto(0x1, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
1m34.568791969s ago: executing program 3 (id=2160):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x6)
getsockopt$auto(0x6, 0x29, 0x4e, 0x0, 0x0)
1m34.493978095s ago: executing program 3 (id=2161):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mtdblock0\x00', 0x14fe02, 0x0)
mmap$auto(0x0, 0x9, 0x7, 0x8000000008011, 0x3, 0x8000)
mprotect$auto(0x200000000000, 0x806122, 0xc)
sched_setscheduler$auto(0x0, 0x5, &(0x7f0000000040)={0x2})
ioprio_set$auto(0x2, 0x800000000, 0x8)
read$auto(0x3, 0x0, 0xfffffdef)
1m34.399545197s ago: executing program 3 (id=2162):
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
r0 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_FS_IOC_SETFLAGS(r0, 0x40086602, 0x4)
1m34.320435545s ago: executing program 3 (id=2163):
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
socket(0x2, 0x1, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x29, 0x2, 0x0)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
sendfile$auto(0x6, 0x3, 0x0, 0xfffffdef)
1m27.205796568s ago: executing program 34 (id=2102):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
chmod$auto(0x0, 0x116)
1m19.267410302s ago: executing program 35 (id=2163):
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
socket(0x2, 0x1, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x29, 0x2, 0x0)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
sendfile$auto(0x6, 0x3, 0x0, 0xfffffdef)
22.728297991s ago: executing program 6 (id=2551):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket(0xa, 0x3, 0x3b)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000580)='/proc/thread-self/net/raw6\x00', 0x500, 0x0)
ioctl$auto_VHOST_SET_VRING_CALL(0xffffffffffffffff, 0x4008af21, 0x0)
syz_genetlink_get_family_id$auto_wireguard(&(0x7f00000001c0), 0xffffffffffffffff)
pread64$auto(r0, 0x0, 0x206, 0x14a)
22.543282981s ago: executing program 6 (id=2552):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
sendmsg$auto_GTP_CMD_ECHOREQ(0xffffffffffffffff, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000000040)=ANY=[@ANYBLOB="2c0800ab", @ANYRES16, @ANYBLOB="01002abd7000fddbdf25030000000800040000000000080002000d000000080001"], 0x2c}, 0x1, 0x0, 0x0, 0x90}, 0x80)
mq_timedsend$auto(0xffffffffffffffff, &(0x7f0000000040)='@*!:}\xc1-.!\\u\x95E\x97\',-\x00', 0x2, 0x4, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1800"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc8}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x1f00)
22.352325931s ago: executing program 6 (id=2555):
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), 0xffffffffffffffff)
r0 = socket(0x25, 0x1, 0x0)
sendto$auto(r0, 0x0, 0x0, 0x0, 0x0, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
prctl$auto(0x43, 0xe, 0x0, 0x0, 0x0)
prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0)
21.429768146s ago: executing program 6 (id=2559):
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x15)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="120079ed7afb0577d813a9ef9b57e0101b277c8b93c7599a3ef33fec310e7a429d2561acca140020c065506d65c5f037f5a4a21739a260fbf4dc9e15fa7e40def81cb2fcfa92ed70344e299ddcf91f2bdf16ace9757d3b805621798d324878d60972c54f0d5f33c8562d578df52a2ccfe6e62fb4d67403583c0c2a82bd10ab23fa7b6bc899abfd5085bc049c"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
21.251014359s ago: executing program 6 (id=2561):
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x4000b, 0x7, 0x9b72, 0x7, 0x28000)
socket(0x2, 0x1, 0x106)
mount$auto(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8003)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
pivot_root$auto(&(0x7f0000000040)='..\x00', &(0x7f0000000080)='.\x00')
21.021270655s ago: executing program 6 (id=2562):
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0)
sendmsg$auto_WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x14, 0x0, 0x1, 0x60bd29, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20000811}, 0x810)
r0 = getpid()
process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000005246}, 0xa, 0x0)
ioctl$auto(0x3, 0x400454ca, 0x38)
write$auto(0x3, 0x0, 0xfdef)
5.565415978s ago: executing program 36 (id=2562):
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0)
sendmsg$auto_WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x14, 0x0, 0x1, 0x60bd29, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20000811}, 0x810)
r0 = getpid()
process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000005246}, 0xa, 0x0)
ioctl$auto(0x3, 0x400454ca, 0x38)
write$auto(0x3, 0x0, 0xfdef)
4.020094958s ago: executing program 7 (id=2723):
mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x26, 0x80805, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
ioctl$auto(0x3, 0xff07, 0x0)
3.88538174s ago: executing program 5 (id=2725):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x6, 0xc, 0x0, 0x0, 0x526)
r0 = gettid()
futex$auto(0x0, 0x6, 0x6, 0x0, 0x0, 0x80)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
kill$auto(r0, 0x11)
3.831729503s ago: executing program 7 (id=2726):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/usb/drivers/conex/uevent\x00', 0x464002, 0x0)
r0 = getpid()
process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
r1 = socket(0xa, 0x1, 0x84)
setsockopt$auto(r1, 0x0, 0x40, 0x0, 0x6f7250c4)
3.409394741s ago: executing program 7 (id=2727):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
r0 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000)
recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0x3, &(0x7f0000000080)={0x0, 0x7fff}, 0x5, 0x0, 0x100000000, 0x8}, 0x209}, 0x40, 0x10, 0x0)
write$auto_proc_clear_refs_operations_internal(r0, 0x0, 0xffffff4b)
mprotect$auto(0x110c230000, 0x1, 0x2)
2.736293064s ago: executing program 5 (id=2729):
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)={0x24, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {}, [@BATADV_ATTR_THROUGHPUT={0x8, 0x1a, 0x800}, @BATADV_ATTR_TPMETER_COOKIE={0x8, 0xd, 0xa}]}, 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x24008010)
r0 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004c18}, 0x810)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="14080000", @ANYRES16=0x0, @ANYRES8=r0], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' '], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
2.694957829s ago: executing program 4 (id=2730):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
r0 = gettid()
rt_tgsigqueueinfo$auto(r0, 0x0, 0x8, &(0x7f0000000100)={@siginfo_0_0={0x7, 0xcc, 0x2, @_sigchld={r0, 0x0, 0x401, 0x5, 0x3}}})
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40)
execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)=&(0x7f0000000080)='\xac\x00', &(0x7f0000000000)=&(0x7f0000000200)=' ')
2.427677502s ago: executing program 4 (id=2731):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r0 = socketpair$auto(0x1, 0x5, 0x0, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x8001, 0x0)
mmap$auto(0x0, 0x7, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x4000000008000)
capset$auto(&(0x7f0000000180)={0x19980330}, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
ioctl$auto(r1, 0x5393, r0)
2.371613066s ago: executing program 5 (id=2732):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/rpc/auth.unix.ip/content\x00', 0x2000, 0x0)
pread64$auto(r0, 0x0, 0xf42c, 0x38)
io_uring_register$auto_IORING_REGISTER_SYNC_CANCEL(r0, 0x18, 0x0, 0x7)
madvise$auto(0x0, 0xffffff7fffff0005, 0x8)
getpid()
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/mtd/mtd0/mtdblock0/trace/act_mask\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000008c0)=""/61, 0x3d)
2.154371479s ago: executing program 7 (id=2733):
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x8000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
ioctl$auto(r0, 0x2275, 0xdd)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
openat$auto_dmaengine_summary_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
1.963737626s ago: executing program 5 (id=2734):
r0 = socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
ustat$auto(0x801, 0x0)
sendmsg$auto(r0, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
1.815955938s ago: executing program 4 (id=2735):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r0 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r0, 0x107, 0xf, 0x0, 0x6)
bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_5={@target_fd=0x5, 0x7f, 0x9c, 0x7b2, 0x1, @relative_fd=0x2, 0x80}, 0x96)
capset$auto(0x0, &(0x7f0000000000)={0x80000001, 0x6, 0x5c})
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={0x0, 0x7}, 0x5, 0x0, 0x5, 0x1}, 0x5}, 0x4, 0x100)
1.576869496s ago: executing program 4 (id=2736):
mmap$auto(0x0, 0xe983, 0xde, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
clone$auto(0x20003b46, 0x7, 0x0, 0x0, 0x2)
ioctl$auto(0x3, 0xc060ff0b, r0)
1.453231456s ago: executing program 4 (id=2737):
openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
read$auto(0x3, 0x0, 0x80)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x82000, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
ioctl$auto(0x3, 0x40505330, 0x38)
1.325689723s ago: executing program 5 (id=2738):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3}, 0x55)
sendmsg$auto_NFC_CMD_SE_IO(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x408d4}, 0x0)
getsockopt$auto(r0, 0x6, 0x23, 0x0, &(0x7f0000000100)=0x10)
sendmmsg$auto(r0, 0x0, 0x80000001, 0xff)
877.100322ms ago: executing program 7 (id=2739):
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000)
sysfs$auto(0x2, 0x5, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
socket(0xa, 0x5, 0x0)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
fsopen$auto(0x0, 0x1)
258.489271ms ago: executing program 4 (id=2740):
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x84)
113.674871ms ago: executing program 7 (id=2741):
r0 = socket(0x10, 0x2, 0x6)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
set_mempolicy$auto(0x1, 0x0, 0x1)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/mm/hugepages/hugepages-2048kB/nr_hugepages_mempolicy\x00', 0xa001, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_fastopen_blackhole_timeout_sec\x00', 0x0, 0x0)
sendfile$auto(r0, r1, 0x0, 0x3)
0s ago: executing program 5 (id=2742):
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x80100, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x406, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x1)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_LIST(r0, 0xc0505510, 0x0)
ioctl$auto(0xffffffffffffffff, 0x4b66, 0x1)
kernel console output (not intermixed with test programs):
64_sys_pipe+0x33/0x50
[ 289.275413][ T9205] do_syscall_64+0x106/0xf80
[ 289.275455][ T9205] ? clear_bhb_loop+0x40/0x90
[ 289.275497][ T9205] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 289.275533][ T9205] RIP: 0033:0x7f1a81d9c799
[ 289.275561][ T9205] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 289.275595][ T9205] RSP: 002b:00007f1a82cc7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000016
[ 289.275629][ T9205] RAX: ffffffffffffffda RBX: 00007f1a82015fa0 RCX: 00007f1a81d9c799
[ 289.275650][ T9205] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 289.275670][ T9205] RBP: 00007f1a81e32bd9 R08: 0000000000000000 R09: 0000000000000000
[ 289.275691][ T9205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 289.275711][ T9205] R13: 00007f1a82016038 R14: 00007f1a82015fa0 R15: 00007ffea4260278
[ 289.275756][ T9205]
[ 290.501229][ T9235] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1217'.
[ 291.773714][ T9269] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1228'.
[ 291.807474][ T9268] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1229'.
[ 291.884862][ T9260] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1225'.
[ 292.451856][ T9288] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1235'.
[ 293.172300][ T9308] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1243'.
[ 294.775400][ T9346] netlink: 74 bytes leftover after parsing attributes in process `syz.2.1252'.
[ 297.297724][ T9412] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1271'.
[ 298.699818][ T9442] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[ 298.745696][ T9442] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[ 298.880406][ T9447] netlink: 'syz.1.1283': attribute type 1 has an invalid length.
[ 300.946726][ T9502] netlink: 114 bytes leftover after parsing attributes in process `syz.3.1303'.
[ 301.740167][ T9509] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1306'.
[ 303.020280][ T9550] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1322'.
[ 303.518494][ T9561] FAULT_INJECTION: forcing a failure.
[ 303.518494][ T9561] name failslab, interval 1, probability 0, space 0, times 0
[ 303.545171][ T9561] CPU: 1 UID: 0 PID: 9561 Comm: syz.2.1324 Not tainted syzkaller #0 PREEMPT(full)
[ 303.545215][ T9561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 303.545235][ T9561] Call Trace:
[ 303.545246][ T9561]
[ 303.545258][ T9561] dump_stack_lvl+0x100/0x190
[ 303.545316][ T9561] should_fail_ex.cold+0x5/0xa
[ 303.545357][ T9561] should_failslab+0xc2/0x120
[ 303.545392][ T9561] __kmalloc_cache_noprof+0x7a/0x6f0
[ 303.545438][ T9561] ? single_open+0x4d/0x1d0
[ 303.545480][ T9561] ? __pfx___debugfs_file_get+0x10/0x10
[ 303.545522][ T9561] ? find_held_lock+0x2b/0x80
[ 303.545557][ T9561] ? __pfx_edid_show+0x10/0x10
[ 303.545610][ T9561] ? __pfx_edid_open+0x10/0x10
[ 303.545657][ T9561] single_open+0x4d/0x1d0
[ 303.545704][ T9561] full_proxy_open_regular+0x1b6/0x370
[ 303.545755][ T9561] do_dentry_open+0x6d8/0x1660
[ 303.545788][ T9561] ? __pfx_full_proxy_open_regular+0x10/0x10
[ 303.545846][ T9561] vfs_open+0x82/0x3f0
[ 303.545894][ T9561] path_openat+0x208c/0x31a0
[ 303.545943][ T9561] ? __pfx_path_openat+0x10/0x10
[ 303.546004][ T9561] do_file_open+0x20e/0x430
[ 303.546040][ T9561] ? __pfx_do_file_open+0x10/0x10
[ 303.546105][ T9561] ? alloc_fd+0x476/0x790
[ 303.546142][ T9561] ? do_getname+0x191/0x390
[ 303.546189][ T9561] do_sys_openat2+0x10d/0x1e0
[ 303.546233][ T9561] ? __pfx_do_sys_openat2+0x10/0x10
[ 303.546280][ T9561] ? do_raw_spin_lock+0x128/0x260
[ 303.546338][ T9561] __x64_sys_openat+0x12d/0x210
[ 303.546384][ T9561] ? __pfx___x64_sys_openat+0x10/0x10
[ 303.546443][ T9561] do_syscall_64+0x106/0xf80
[ 303.546483][ T9561] ? clear_bhb_loop+0x40/0x90
[ 303.546527][ T9561] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 303.546560][ T9561] RIP: 0033:0x7f5b76f9c799
[ 303.546589][ T9561] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 303.546623][ T9561] RSP: 002b:00007f5b77dee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 303.546657][ T9561] RAX: ffffffffffffffda RBX: 00007f5b77216090 RCX: 00007f5b76f9c799
[ 303.546679][ T9561] RDX: 0000000000002082 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 303.546700][ T9561] RBP: 00007f5b77032bd9 R08: 0000000000000000 R09: 0000000000000000
[ 303.546720][ T9561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 303.546741][ T9561] R13: 00007f5b77216128 R14: 00007f5b77216090 R15: 00007ffc46140698
[ 303.546786][ T9561]
[ 306.909648][ T9632] netlink: 'syz.0.1358': attribute type 4 has an invalid length.
[ 306.919310][ T9632] netlink: 314 bytes leftover after parsing attributes in process `syz.0.1358'.
[ 307.420792][ T9650] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1356'.
[ 307.624712][ T9658] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1361'.
[ 309.560553][ T9708] netlink: 74 bytes leftover after parsing attributes in process `syz.2.1376'.
[ 309.806554][ T9715] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1378'.
[ 310.095246][ T9723] netlink: 'syz.0.1380': attribute type 1 has an invalid length.
[ 310.644767][ T5835] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5
[ 312.548992][ T9772] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1398'.
[ 312.758174][ T9779] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1402'.
[ 313.887515][ T9801] FAULT_INJECTION: forcing a failure.
[ 313.887515][ T9801] name failslab, interval 1, probability 0, space 0, times 0
[ 313.914325][ T9801] CPU: 0 UID: 0 PID: 9801 Comm: syz.2.1410 Not tainted syzkaller #0 PREEMPT(full)
[ 313.914396][ T9801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 313.914418][ T9801] Call Trace:
[ 313.914429][ T9801]
[ 313.914441][ T9801] dump_stack_lvl+0x100/0x190
[ 313.914500][ T9801] should_fail_ex.cold+0x5/0xa
[ 313.914542][ T9801] should_failslab+0xc2/0x120
[ 313.914577][ T9801] __kmalloc_cache_noprof+0x7a/0x6f0
[ 313.914621][ T9801] ? __v4l2_subdev_state_alloc+0x53/0x410
[ 313.914684][ T9801] __v4l2_subdev_state_alloc+0x53/0x410
[ 313.914748][ T9801] subdev_open+0xa6/0x510
[ 313.914807][ T9801] v4l2_open+0x1d2/0x490
[ 313.914871][ T9801] ? __pfx_v4l2_open+0x10/0x10
[ 313.914918][ T9801] chrdev_open+0x234/0x6a0
[ 313.914952][ T9801] ? __pfx_apparmor_file_open+0x10/0x10
[ 313.915004][ T9801] ? __pfx_chrdev_open+0x10/0x10
[ 313.915042][ T9801] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 313.915091][ T9801] do_dentry_open+0x6d8/0x1660
[ 313.915125][ T9801] ? __pfx_chrdev_open+0x10/0x10
[ 313.915171][ T9801] vfs_open+0x82/0x3f0
[ 313.915220][ T9801] path_openat+0x208c/0x31a0
[ 313.915270][ T9801] ? __pfx_path_openat+0x10/0x10
[ 313.915312][ T9801] ? stack_trace_save+0x8e/0xc0
[ 313.915346][ T9801] ? __pfx_stack_trace_save+0x10/0x10
[ 313.915387][ T9801] do_file_open+0x20e/0x430
[ 313.915426][ T9801] ? __pfx_do_file_open+0x10/0x10
[ 313.915496][ T9801] ? find_held_lock+0x2b/0x80
[ 313.915530][ T9801] ? __might_fault+0xc5/0x140
[ 313.915578][ T9801] ? __might_fault+0xc5/0x140
[ 313.915633][ T9801] file_open_name+0x198/0x3b0
[ 313.915679][ T9801] ? __pfx_file_open_name+0x10/0x10
[ 313.915733][ T9801] ? do_getname+0x191/0x390
[ 313.915779][ T9801] acct_on+0xa4/0x9e0
[ 313.915831][ T9801] ? __pfx_acct_on+0x10/0x10
[ 313.915890][ T9801] ? bpf_lsm_capable+0x9/0x10
[ 313.915926][ T9801] ? security_capable+0x80/0x260
[ 313.915980][ T9801] __x64_sys_acct+0x81/0x1e0
[ 313.916030][ T9801] ? lockdep_hardirqs_on+0x78/0x100
[ 313.916074][ T9801] do_syscall_64+0x106/0xf80
[ 313.916114][ T9801] ? clear_bhb_loop+0x40/0x90
[ 313.916159][ T9801] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 313.916196][ T9801] RIP: 0033:0x7f5b76f9c799
[ 313.916224][ T9801] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 313.916258][ T9801] RSP: 002b:00007f5b77e0f028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3
[ 313.916291][ T9801] RAX: ffffffffffffffda RBX: 00007f5b77215fa0 RCX: 00007f5b76f9c799
[ 313.916314][ T9801] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000100
[ 313.916335][ T9801] RBP: 00007f5b77032bd9 R08: 0000000000000000 R09: 0000000000000000
[ 313.916356][ T9801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 313.916376][ T9801] R13: 00007f5b77216038 R14: 00007f5b77215fa0 R15: 00007ffc46140698
[ 313.916423][ T9801]
[ 314.918553][ T9824] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1419'.
[ 315.318819][ T9837] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1425'.
[ 317.428694][ T9878] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1439'.
[ 317.820610][ T9882] FAULT_INJECTION: forcing a failure.
[ 317.820610][ T9882] name fail_futex, interval 1, probability 0, space 0, times 0
[ 317.834028][ T9882] CPU: 0 UID: 0 PID: 9882 Comm: syz.2.1441 Not tainted syzkaller #0 PREEMPT(full)
[ 317.834073][ T9882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 317.834095][ T9882] Call Trace:
[ 317.834105][ T9882]
[ 317.834117][ T9882] dump_stack_lvl+0x100/0x190
[ 317.834177][ T9882] should_fail_ex.cold+0x5/0xa
[ 317.834216][ T9882] should_fail_futex+0x4c/0x60
[ 317.834257][ T9882] futex_lock_pi_atomic+0xe7/0xaf0
[ 317.834317][ T9882] futex_lock_pi+0x246/0x7b0
[ 317.834373][ T9882] ? __pfx_futex_lock_pi+0x10/0x10
[ 317.834427][ T9882] ? __pfx___futex_wait+0x10/0x10
[ 317.834479][ T9882] ? lockdep_hardirqs_on+0x78/0x100
[ 317.834556][ T9882] ? __pfx_futex_wake_mark+0x10/0x10
[ 317.834617][ T9882] ? ksys_write+0x190/0x250
[ 317.834647][ T9882] ? ksys_write+0x190/0x250
[ 317.834685][ T9882] do_futex+0x18a/0x350
[ 317.834728][ T9882] ? __pfx_do_futex+0x10/0x10
[ 317.834783][ T9882] __x64_sys_futex+0x34f/0x4d0
[ 317.834831][ T9882] ? fput+0x79/0x100
[ 317.834868][ T9882] ? __pfx___x64_sys_futex+0x10/0x10
[ 317.834911][ T9882] ? ksys_write+0x1ac/0x250
[ 317.834948][ T9882] ? __pfx_ksys_write+0x10/0x10
[ 317.834991][ T9882] do_syscall_64+0x106/0xf80
[ 317.835031][ T9882] ? clear_bhb_loop+0x40/0x90
[ 317.835076][ T9882] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 317.835111][ T9882] RIP: 0033:0x7f5b76f9c799
[ 317.835138][ T9882] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 317.835170][ T9882] RSP: 002b:00007f5b77e0f028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 317.835203][ T9882] RAX: ffffffffffffffda RBX: 00007f5b77215fa0 RCX: 00007f5b76f9c799
[ 317.835225][ T9882] RDX: 000000000000001f RSI: 0000000000000006 RDI: 0000000000000000
[ 317.835244][ T9882] RBP: 00007f5b77032bd9 R08: 0000000000000000 R09: 000000008000fff5
[ 317.835265][ T9882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 317.835284][ T9882] R13: 00007f5b77216038 R14: 00007f5b77215fa0 R15: 00007ffc46140698
[ 317.835328][ T9882]
[ 319.623925][ T9926] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1461'.
[ 321.893864][T10000] device-mapper: ioctl: Unable to rename non-existent device, to uuid „
[ 322.474915][T10011] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1493'.
[ 322.846843][T10021] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1498'.
[ 323.039307][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 323.045886][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 323.752723][ T31] audit: type=1804 audit(1773015056.020:3): pid=10040 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1503" name="/newroot/375/file0" dev="tmpfs" ino=1920 res=1 errno=0
[ 323.803425][ T31] audit: type=1804 audit(1773015056.040:4): pid=10043 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.1503" name="/newroot/375/file0" dev="tmpfs" ino=1920 res=1 errno=0
[ 324.204818][T10047] zswap: compressor not available
[ 326.628978][ T5835] Bluetooth: hci2: unexpected event 0x03 length: 725 > 11
[ 329.242936][T10156] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 329.842720][T10163] CIFS: VFS: Unsupported security flags: 0x110
[ 329.925389][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[ 330.085312][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[ 330.096649][T10165] vivid-007: ================= START STATUS =================
[ 330.161405][T10165] vivid-007: Generate PTS: true
[ 330.187964][T10165] vivid-007: Generate SCR: true
[ 330.216183][T10165] tpg source WxH: 320x240 (Y'CbCr)
[ 330.221420][T10165] tpg field: 1
[ 330.224887][T10165] tpg crop: (0,0)/320x240
[ 330.285387][T10165] tpg compose: (0,0)/320x240
[ 330.323202][T10165] tpg colorspace: 8
[ 330.345178][T10165] tpg transfer function: 0/0
[ 330.349841][T10165] tpg Y'CbCr encoding: 0/0
[ 330.354297][T10165] tpg quantization: 0/0
[ 330.373307][T10165] tpg RGB range: 0/2
[ 330.377604][T10165] vivid-007: ================== END STATUS ==================
[ 330.390348][T10173] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1550'.
[ 330.875706][T10188] netlink: 'syz.0.1555': attribute type 1 has an invalid length.
[ 330.883514][T10188] netlink: 322 bytes leftover after parsing attributes in process `syz.0.1555'.
[ 330.914870][T10188] netlink: 'syz.0.1555': attribute type 1 has an invalid length.
[ 330.945378][T10188] netlink: 322 bytes leftover after parsing attributes in process `syz.0.1555'.
[ 332.307100][T10220] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1566'.
[ 333.006295][T10233] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1573'.
[ 338.066047][T10298] binder: 10297:10298 unknown command 49
[ 338.071922][T10298] binder: 10297:10298 ioctl c0306201 0 returned -22
[ 338.928182][T10312] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1598'.
[ 339.021304][T10315] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1599'.
[ 339.276096][T10318] nbd: socks must be embedded in a SOCK_ITEM attr
[ 339.298367][T10318] block nbd0: shutting down sockets
[ 339.742654][T10327] vivid-007: ================= START STATUS =================
[ 339.785249][T10327] vivid-007: Generate PTS: true
[ 339.790210][T10327] vivid-007: Generate SCR: true
[ 339.815685][T10327] tpg source WxH: 320x240 (Y'CbCr)
[ 339.820875][T10327] tpg field: 1
[ 339.824276][T10327] tpg crop: (0,0)/320x240
[ 339.863675][T10327] tpg compose: (0,0)/320x240
[ 339.884659][T10327] tpg colorspace: 8
[ 339.907424][T10327] tpg transfer function: 0/0
[ 339.912134][T10327] tpg Y'CbCr encoding: 0/0
[ 339.933936][T10327] tpg quantization: 0/0
[ 339.955116][T10327] tpg RGB range: 0/2
[ 339.959083][T10327] vivid-007: ================== END STATUS ==================
[ 341.526584][ T31] audit: type=1326 audit(1773015073.790:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10367 comm="syz.0.1613" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe5f2b9c799 code=0x0
[ 342.115582][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[ 342.154368][T10378] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 342.755639][T10393] vivid-007: ================= START STATUS =================
[ 342.778674][T10393] vivid-007: Generate PTS: true
[ 342.783637][T10393] vivid-007: Generate SCR: true
[ 342.815199][T10393] tpg source WxH: 320x240 (Y'CbCr)
[ 342.821568][T10393] tpg field: 1
[ 342.824997][T10393] tpg crop: (0,0)/320x240
[ 342.845014][T10395] Format for adding new port is "id [perm_addr]" (uint MAC).
[ 342.857388][T10393] tpg compose: (0,0)/320x240
[ 342.862049][T10393] tpg colorspace: 8
[ 342.876202][T10393] tpg transfer function: 0/0
[ 342.880860][T10393] tpg Y'CbCr encoding: 0/0
[ 342.893218][T10393] tpg quantization: 0/0
[ 342.902887][T10393] tpg RGB range: 0/2
[ 342.915282][T10393] vivid-007: ================== END STATUS ==================
[ 344.255670][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[ 344.265541][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[ 344.274615][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[ 344.562019][T10423] futex_wake_op: syz.1.1634 tries to shift op by -2048; fix this program
[ 345.168767][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[ 345.653002][T10441] futex_wake_op: syz.2.1642 tries to shift op by -2048; fix this program
[ 345.661697][T10441] futex_wake_op: syz.2.1642 tries to shift op by -2048; fix this program
[ 345.711521][T10443] 0x000000000001-0x000000020000 : ""
[ 345.766630][T10443] ftl_cs: FTL header corrupt!
[ 346.014592][T10447] ERROR: Out of memory at tomoyo_memory_ok.
[ 346.350175][T10459] veth1_to_batadv: entered promiscuous mode
[ 346.415643][T10458] veth1_to_batadv: left promiscuous mode
[ 347.199494][T10478] vhci_hcd vhci_hcd.0: default hub control req: 0000 v0000 i0000 l0
[ 348.365989][T10512] nbd: socks must be embedded in a SOCK_ITEM attr
[ 348.373815][T10512] block nbd0: shutting down sockets
[ 350.083491][T10558] FAULT_INJECTION: forcing a failure.
[ 350.083491][T10558] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 350.098472][T10558] CPU: 1 UID: 0 PID: 10558 Comm: syz.1.1694 Not tainted syzkaller #0 PREEMPT(full)
[ 350.098513][T10558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 350.098533][T10558] Call Trace:
[ 350.098544][T10558]
[ 350.098556][T10558] dump_stack_lvl+0x100/0x190
[ 350.098686][T10558] should_fail_ex.cold+0x5/0xa
[ 350.098737][T10558] ? prepare_alloc_pages+0x16d/0x5f0
[ 350.098798][T10558] should_fail_alloc_page+0xeb/0x140
[ 350.098849][T10558] prepare_alloc_pages+0x1f0/0x5f0
[ 350.098889][T10558] __alloc_frozen_pages_noprof+0x19a/0x2ba0
[ 350.098942][T10558] ? reacquire_held_locks+0xce/0x1e0
[ 350.098999][T10558] ? folio_lock_anon_vma_read+0x348/0xe30
[ 350.099043][T10558] ? folio_lock_anon_vma_read+0x348/0xe30
[ 350.099093][T10558] ? __up_read+0x2c5/0x700
[ 350.099136][T10558] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 350.099179][T10558] ? __pfx___up_read+0x10/0x10
[ 350.099219][T10558] ? rmap_walk_anon+0x561/0x870
[ 350.099286][T10558] __folio_alloc_noprof+0x13/0x2f0
[ 350.099329][T10558] alloc_migration_target+0x1d7/0x6d0
[ 350.099366][T10558] migrate_pages_batch+0x4f2/0x4530
[ 350.099402][T10558] ? __pfx_alloc_migration_target+0x10/0x10
[ 350.099447][T10558] ? walk_pgd_range+0x1115/0x1eb0
[ 350.099491][T10558] ? __pfx_migrate_pages_batch+0x10/0x10
[ 350.099551][T10558] migrate_pages_sync+0x12c/0x880
[ 350.099589][T10558] ? __pfx_alloc_migration_target+0x10/0x10
[ 350.099631][T10558] ? __pfx_migrate_pages_sync+0x10/0x10
[ 350.099663][T10558] ? __pfx_queue_pages_test_walk+0x10/0x10
[ 350.099704][T10558] ? walk_page_range_mm_unsafe+0x32c/0xa10
[ 350.099755][T10558] migrate_pages+0x1aae/0x28a0
[ 350.099794][T10558] ? __pfx_alloc_migration_target+0x10/0x10
[ 350.099836][T10558] ? __pfx_migrate_pages+0x10/0x10
[ 350.099871][T10558] ? queue_pages_range+0x11e/0x180
[ 350.099917][T10558] ? __up_read+0x2c5/0x700
[ 350.099959][T10558] ? __pfx___up_read+0x10/0x10
[ 350.099997][T10558] ? do_migrate_pages+0x451/0x740
[ 350.100027][T10558] ? do_migrate_pages+0x451/0x740
[ 350.100071][T10558] do_migrate_pages+0x488/0x740
[ 350.100112][T10558] ? __pfx_do_migrate_pages+0x10/0x10
[ 350.100149][T10558] ? rcu_is_watching+0x12/0xc0
[ 350.100213][T10558] ? cap_capable+0x107/0x460
[ 350.100360][T10558] ? get_task_mm+0xc2/0xf0
[ 350.100405][T10558] ? security_capable+0xbd/0x260
[ 350.100493][T10558] kernel_migrate_pages+0x560/0x700
[ 350.100527][T10558] ? __pfx_kernel_migrate_pages+0x10/0x10
[ 350.100558][T10558] ? xfd_validate_state+0x129/0x190
[ 350.100622][T10558] __x64_sys_migrate_pages+0x96/0x100
[ 350.100654][T10558] ? lockdep_hardirqs_on+0x78/0x100
[ 350.100775][T10558] do_syscall_64+0x106/0xf80
[ 350.100834][T10558] ? clear_bhb_loop+0x40/0x90
[ 350.100882][T10558] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 350.100913][T10558] RIP: 0033:0x7f1a81d9c799
[ 350.100938][T10558] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 350.100970][T10558] RSP: 002b:00007f1a82cc7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000100
[ 350.100998][T10558] RAX: ffffffffffffffda RBX: 00007f1a82015fa0 RCX: 00007f1a81d9c799
[ 350.101018][T10558] RDX: 0000200000000100 RSI: 000000000000000a RDI: 0000000000000000
[ 350.101037][T10558] RBP: 00007f1a81e32bd9 R08: 0000000000000000 R09: 0000000000000000
[ 350.101054][T10558] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000000
[ 350.101084][T10558] R13: 00007f1a82016038 R14: 00007f1a82015fa0 R15: 00007ffea4260278
[ 350.101123][T10558]
[ 350.448676][T10560] nbd: socks must be embedded in a SOCK_ITEM attr
[ 350.455494][T10560] block nbd0: shutting down sockets
[ 352.804065][T10639] futex_wake_op: syz.0.1718 tries to shift op by -2048; fix this program
[ 352.812848][T10639] futex_wake_op: syz.0.1718 tries to shift op by -2048; fix this program
[ 352.828820][T10639] 0x001c00000000-0x100002c00000200 : ""
[ 352.834558][T10639] mtd: partition "" is out of reach -- disabled
[ 352.856134][T10639] ftl_cs: FTL header not found.
[ 353.062774][T10641] ERROR: Out of memory at tomoyo_memory_ok.
[ 353.316035][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[ 354.501002][T10678] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1731'.
[ 354.677768][T10684] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1731'.
[ 355.388962][T10706] FAULT_INJECTION: forcing a failure.
[ 355.388962][T10706] name failslab, interval 1, probability 0, space 0, times 0
[ 355.402052][T10706] CPU: 0 UID: 0 PID: 10706 Comm: syz.1.1743 Not tainted syzkaller #0 PREEMPT(full)
[ 355.402099][T10706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 355.402118][T10706] Call Trace:
[ 355.402127][T10706]
[ 355.402138][T10706] dump_stack_lvl+0x100/0x190
[ 355.402189][T10706] should_fail_ex.cold+0x5/0xa
[ 355.402223][T10706] should_failslab+0xc2/0x120
[ 355.402253][T10706] kmem_cache_alloc_noprof+0x7b/0x6e0
[ 355.402296][T10706] ? __send_signal_locked+0x155/0x12d0
[ 355.402348][T10706] __send_signal_locked+0x155/0x12d0
[ 355.402399][T10706] group_send_sig_info+0x2a4/0x300
[ 355.402463][T10706] ? __pfx_group_send_sig_info+0x10/0x10
[ 355.402506][T10706] ? kill_pid_info_type+0x1a/0x290
[ 355.402536][T10706] kill_pid_info_type+0x92/0x290
[ 355.402572][T10706] kill_proc_info+0x6f/0x1b0
[ 355.402606][T10706] kill_something_info+0x2a0/0x310
[ 355.402645][T10706] __x64_sys_kill+0x1c4/0x250
[ 355.402680][T10706] ? __pfx___x64_sys_kill+0x10/0x10
[ 355.402730][T10706] do_syscall_64+0x106/0xf80
[ 355.402765][T10706] ? clear_bhb_loop+0x40/0x90
[ 355.402800][T10706] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 355.402829][T10706] RIP: 0033:0x7f1a81d9c799
[ 355.402853][T10706] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 355.402881][T10706] RSP: 002b:00007f1a82cc7028 EFLAGS: 00000246 ORIG_RAX: 000000000000003e
[ 355.402909][T10706] RAX: ffffffffffffffda RBX: 00007f1a82015fa0 RCX: 00007f1a81d9c799
[ 355.402927][T10706] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000464
[ 355.402944][T10706] RBP: 00007f1a81e32bd9 R08: 0000000000000000 R09: 0000000000000000
[ 355.402961][T10706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 355.402978][T10706] R13: 00007f1a82016038 R14: 00007f1a82015fa0 R15: 00007ffea4260278
[ 355.403014][T10706]
[ 356.303139][T10727] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1749'.
[ 356.312566][T10725] futex_wake_op: syz.0.1748 tries to shift op by -2048; fix this program
[ 356.416196][T10728] size and base must be multiples of 4 kiB
[ 356.422086][T10728] CPU: 1 UID: 0 PID: 10728 Comm: syz.0.1748 Not tainted syzkaller #0 PREEMPT(full)
[ 356.422127][T10728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 356.422146][T10728] Call Trace:
[ 356.422157][T10728]
[ 356.422171][T10728] dump_stack_lvl+0x100/0x190
[ 356.422229][T10728] mtrr_add.cold+0x74/0x87
[ 356.422269][T10728] mtrr_ioctl+0x25a/0xcf0
[ 356.422338][T10728] ? __pfx_mtrr_ioctl+0x10/0x10
[ 356.422393][T10728] ? find_held_lock+0x2b/0x80
[ 356.422435][T10728] ? __fget_files+0x21f/0x3d0
[ 356.422480][T10728] ? __pfx_mtrr_ioctl+0x10/0x10
[ 356.422526][T10728] proc_reg_unlocked_ioctl+0x229/0x320
[ 356.422607][T10728] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[ 356.422662][T10728] __x64_sys_ioctl+0x18e/0x210
[ 356.422721][T10728] do_syscall_64+0x106/0xf80
[ 356.422762][T10728] ? clear_bhb_loop+0x40/0x90
[ 356.422805][T10728] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 356.422839][T10728] RIP: 0033:0x7fe5f2b9c799
[ 356.422868][T10728] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 356.422901][T10728] RSP: 002b:00007fe5f39df028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 356.422941][T10728] RAX: ffffffffffffffda RBX: 00007fe5f2e16090 RCX: 00007fe5f2b9c799
[ 356.422963][T10728] RDX: 0000000000000000 RSI: 0000000040104d01 RDI: 0000000000000000
[ 356.422984][T10728] RBP: 00007fe5f2c32bd9 R08: 0000000000000000 R09: 0000000000000000
[ 356.423004][T10728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 356.423025][T10728] R13: 00007fe5f2e16128 R14: 00007fe5f2e16090 R15: 00007ffdf8a045c8
[ 356.423069][T10728]
[ 356.666262][T10735] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1750'.
[ 356.762811][T10738] futex_wake_op: syz.1.1752 tries to shift op by -2048; fix this program
[ 356.775873][T10738] futex_wake_op: syz.1.1752 tries to shift op by -2048; fix this program
[ 356.787431][T10738] 0x001c00000000-0x100002c00000200 : ""
[ 356.793113][T10738] mtd: partition "" is out of reach -- disabled
[ 356.818423][T10738] ftl_cs: FTL header not found.
[ 357.065847][T10742] ERROR: Out of memory at tomoyo_memory_ok.
[ 357.237040][T10752] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1756'.
[ 357.362547][T10758] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1756'.
[ 358.583566][T10778] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1765'.
[ 358.609950][T10780] futex_wake_op: syz.3.1766 tries to shift op by -2048; fix this program
[ 358.626376][T10780] futex_wake_op: syz.3.1766 tries to shift op by -2048; fix this program
[ 358.652275][T10780] 0x001c00000000-0x100002c00000200 : ""
[ 358.665141][T10780] mtd: partition "" is out of reach -- disabled
[ 358.685445][T10780] ftl_cs: FTL header not found.
[ 358.833702][T10784] ERROR: Out of memory at tomoyo_memory_ok.
[ 359.321516][T10799] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1774'.
[ 359.480682][T10805] dyndbg: expected <4096 bytes into control
[ 359.671478][T10815] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1782'.
[ 359.808044][ T5835] block nbd0: Receive control failed (result -32)
[ 360.176047][T10829] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1790'.
[ 361.620924][T10855] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1797'.
[ 361.725661][T10857] futex_wake_op: syz.0.1799 tries to shift op by -2048; fix this program
[ 361.734312][T10857] futex_wake_op: syz.0.1799 tries to shift op by -2048; fix this program
[ 361.750836][T10857] 0x001c00000000-0x100002c00000200 : ""
[ 361.756651][T10857] mtd: partition "" is out of reach -- disabled
[ 361.768034][T10861] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1800'.
[ 361.779110][T10857] ftl_cs: FTL header not found.
[ 361.933920][T10864] ERROR: Out of memory at tomoyo_memory_ok.
[ 361.986550][T10867] ubi0: attaching mtd1
[ 361.992031][T10867] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[ 373.639547][ T5836] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 373.655396][ T5836] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 373.664295][ T5836] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 373.672613][ T5836] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 373.680432][ T5836] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 373.705312][T10873] syz.0.1810 uses obsolete (PF_INET,SOCK_PACKET)
[ 374.126130][T10891] netlink: 206 bytes leftover after parsing attributes in process `syz.2.1807'.
[ 374.309239][T10880] chnl_net:caif_netlink_parms(): no params data found
[ 374.441499][T10880] bridge0: port 1(bridge_slave_0) entered blocking state
[ 374.465309][T10880] bridge0: port 1(bridge_slave_0) entered disabled state
[ 374.472704][T10880] bridge_slave_0: entered allmulticast mode
[ 374.482626][T10880] bridge_slave_0: entered promiscuous mode
[ 374.508800][T10880] bridge0: port 2(bridge_slave_1) entered blocking state
[ 374.525274][T10880] bridge0: port 2(bridge_slave_1) entered disabled state
[ 374.532561][T10880] bridge_slave_1: entered allmulticast mode
[ 374.545208][T10880] bridge_slave_1: entered promiscuous mode
[ 374.594838][T10880] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 374.612781][T10880] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 374.658767][T10880] team0: Port device team_slave_0 added
[ 374.668836][T10880] team0: Port device team_slave_1 added
[ 374.714822][T10880] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 374.727386][T10880] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 374.755567][T10880] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 374.768898][T10880] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 374.776223][T10880] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 374.806682][T10880] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 374.881031][T10880] hsr_slave_0: entered promiscuous mode
[ 374.887946][T10880] hsr_slave_1: entered promiscuous mode
[ 374.894459][T10880] debugfs: 'hsr0' already exists in 'hsr'
[ 374.903968][T10880] Cannot create hsr debugfs directory
[ 374.997823][T10899] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1811'.
[ 375.024252][T10899] mac80211_hwsim hwsim9 wlan1: entered promiscuous mode
[ 375.039903][T10899] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[ 375.462220][T10880] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 375.519290][T10880] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 375.554393][T10880] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 375.634250][T10880] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 375.765621][ T5836] Bluetooth: hci4: command tx timeout
[ 376.036090][T10880] 8021q: adding VLAN 0 to HW filter on device bond0
[ 376.081970][T10880] 8021q: adding VLAN 0 to HW filter on device team0
[ 376.114394][ T1098] bridge0: port 1(bridge_slave_0) entered blocking state
[ 376.121658][ T1098] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 376.183165][ T1098] bridge0: port 2(bridge_slave_1) entered blocking state
[ 376.190420][ T1098] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 376.603324][T10880] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 376.612973][T10946] FAULT_INJECTION: forcing a failure.
[ 376.612973][T10946] name failslab, interval 1, probability 0, space 0, times 0
[ 376.655744][T10946] CPU: 0 UID: 0 PID: 10946 Comm: syz.2.1824 Tainted: G L syzkaller #0 PREEMPT(full)
[ 376.655800][T10946] Tainted: [L]=SOFTLOCKUP
[ 376.655812][T10946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 376.655836][T10946] Call Trace:
[ 376.655847][T10946]
[ 376.655868][T10946] dump_stack_lvl+0x100/0x190
[ 376.655924][T10946] should_fail_ex.cold+0x5/0xa
[ 376.655966][T10946] should_failslab+0xc2/0x120
[ 376.656002][T10946] __kmalloc_cache_noprof+0x7a/0x6f0
[ 376.656047][T10946] ? landlock_init_hierarchy_log+0xa9/0x820
[ 376.656171][T10946] landlock_init_hierarchy_log+0xa9/0x820
[ 376.656222][T10946] landlock_merge_ruleset+0x67b/0x830
[ 376.656304][T10946] ? prepare_creds+0x5ee/0x950
[ 376.656363][T10946] __do_sys_landlock_restrict_self+0x2a6/0x9e0
[ 376.656424][T10946] do_syscall_64+0x106/0xf80
[ 376.656465][T10946] ? clear_bhb_loop+0x40/0x90
[ 376.656509][T10946] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 376.656544][T10946] RIP: 0033:0x7f5b76f9c799
[ 376.656572][T10946] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 376.656605][T10946] RSP: 002b:00007f5b77e0f028 EFLAGS: 00000246 ORIG_RAX: 00000000000001be
[ 376.656644][T10946] RAX: ffffffffffffffda RBX: 00007f5b77215fa0 RCX: 00007f5b76f9c799
[ 376.656667][T10946] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000003
[ 376.656687][T10946] RBP: 00007f5b77032bd9 R08: 0000000000000000 R09: 0000000000000000
[ 376.656707][T10946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 376.656726][T10946] R13: 00007f5b77216038 R14: 00007f5b77215fa0 R15: 00007ffc46140698
[ 376.656767][T10946]
[ 377.374162][T10880] veth0_vlan: entered promiscuous mode
[ 377.393038][T10880] veth1_vlan: entered promiscuous mode
[ 377.491479][T10880] veth0_macvtap: entered promiscuous mode
[ 377.521445][T10880] veth1_macvtap: entered promiscuous mode
[ 377.549040][T10880] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 377.574067][T10880] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 377.613797][ T1098] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 377.633211][ T1098] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 377.654680][ T1098] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 377.682824][ T1098] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 377.830908][ T1098] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 377.838873][ T5836] Bluetooth: hci4: command tx timeout
[ 377.870527][ T1098] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 377.929020][ T1098] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 377.945444][ T1098] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 379.924753][ T5836] Bluetooth: hci4: command tx timeout
[ 380.390884][T11037] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1854'.
[ 380.646733][T11043] netlink: 218 bytes leftover after parsing attributes in process `syz.2.1856'.
[ 381.694390][T11070] netlink: zone id is out of range
[ 381.699613][T11070] netlink: zone id is out of range
[ 381.716526][T11070] netlink: zone id is out of range
[ 381.724292][T11070] netlink: zone id is out of range
[ 381.754333][T11070] netlink: set zone limit has 8 unknown bytes
[ 381.828895][T11070] netlink: zone id is out of range
[ 381.834117][T11070] netlink: zone id is out of range
[ 381.850506][T11073] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1869'.
[ 381.861716][T11070] netlink: zone id is out of range
[ 381.871207][T11070] netlink: zone id is out of range
[ 381.880465][T11073] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1869'.
[ 381.914498][T11070] netlink: set zone limit has 8 unknown bytes
[ 381.995545][ T5836] Bluetooth: hci4: command tx timeout
[ 384.479175][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 384.485640][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 384.547178][T11136] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1894'.
[ 384.556310][T11136] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 384.563735][T11136] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 384.573419][T11136] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 384.582187][T11136] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 385.897865][T11167] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1905'.
[ 386.869947][T11199] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1919'.
[ 386.902949][T11199] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 386.916243][T11199] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 386.926828][T11199] bond0 (unregistering): Released all slaves
[ 386.995695][T11197] sctp: [Deprecated]: syz.4.1917 (pid 11197) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 386.995695][T11197] Use struct sctp_sack_info instead
[ 387.353775][T11213] sd 0:0:1:0: PR command failed: 1026
[ 387.359540][T11213] sd 0:0:1:0: Sense Key : Illegal Request [current]
[ 387.366902][T11213] sd 0:0:1:0: Add. Sense: Invalid command operation code
[ 388.376529][T11229] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1929'.
[ 388.389174][T11229] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1929'.
[ 389.429421][T11246] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1936'.
[ 390.083759][T11258] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1940'.
[ 390.126134][T11267] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1944'.
[ 390.435892][T11276] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1947'.
[ 390.487622][T11277] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1947'.
[ 391.332550][T11293] FAULT_INJECTION: forcing a failure.
[ 391.332550][T11293] name failslab, interval 1, probability 0, space 0, times 0
[ 391.363333][T11293] CPU: 1 UID: 0 PID: 11293 Comm: syz.4.1954 Tainted: G L syzkaller #0 PREEMPT(full)
[ 391.363386][T11293] Tainted: [L]=SOFTLOCKUP
[ 391.363399][T11293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 391.363419][T11293] Call Trace:
[ 391.363429][T11293]
[ 391.363442][T11293] dump_stack_lvl+0x100/0x190
[ 391.363500][T11293] should_fail_ex.cold+0x5/0xa
[ 391.363551][T11293] ? lsm_blob_alloc+0x68/0x90
[ 391.363592][T11293] should_failslab+0xc2/0x120
[ 391.363629][T11293] __kmalloc_noprof+0xe0/0x850
[ 391.363682][T11293] ? trace_kmem_cache_alloc+0xf3/0x120
[ 391.363724][T11293] lsm_blob_alloc+0x68/0x90
[ 391.363767][T11293] security_prepare_creds+0x2d/0x290
[ 391.363807][T11293] prepare_creds+0x5d6/0x950
[ 391.363864][T11293] __do_sys_capset+0x270/0x460
[ 391.363897][T11293] ? __pfx___do_sys_capset+0x10/0x10
[ 391.363933][T11293] ? __x64_sys_futex+0x358/0x4d0
[ 391.364013][T11293] ? __pfx_ksys_mmap_pgoff+0x10/0x10
[ 391.364052][T11293] ? xfd_validate_state+0x129/0x190
[ 391.364114][T11293] do_syscall_64+0x106/0xf80
[ 391.364158][T11293] ? clear_bhb_loop+0x40/0x90
[ 391.364200][T11293] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 391.364235][T11293] RIP: 0033:0x7f952ef9c799
[ 391.364263][T11293] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 391.364296][T11293] RSP: 002b:00007f952fdc4028 EFLAGS: 00000246 ORIG_RAX: 000000000000007e
[ 391.364329][T11293] RAX: ffffffffffffffda RBX: 00007f952f215fa0 RCX: 00007f952ef9c799
[ 391.364351][T11293] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000200
[ 391.364373][T11293] RBP: 00007f952f032bd9 R08: 0000000000000000 R09: 0000000000000000
[ 391.364393][T11293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 391.364413][T11293] R13: 00007f952f216038 R14: 00007f952f215fa0 R15: 00007ffd47d8e2b8
[ 391.364457][T11293]
[ 391.669947][T11297] netlink: 350 bytes leftover after parsing attributes in process `syz.3.1955'.
[ 392.469080][T11321] FAULT_INJECTION: forcing a failure.
[ 392.469080][T11321] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 392.492714][T11321] CPU: 1 UID: 0 PID: 11321 Comm: syz.4.1965 Tainted: G L syzkaller #0 PREEMPT(full)
[ 392.492764][T11321] Tainted: [L]=SOFTLOCKUP
[ 392.492776][T11321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 392.492795][T11321] Call Trace:
[ 392.492804][T11321]
[ 392.492816][T11321] dump_stack_lvl+0x100/0x190
[ 392.492867][T11321] should_fail_ex.cold+0x5/0xa
[ 392.492896][T11321] ? prepare_alloc_pages+0x16d/0x5f0
[ 392.492932][T11321] should_fail_alloc_page+0xeb/0x140
[ 392.492964][T11321] prepare_alloc_pages+0x1f0/0x5f0
[ 392.493004][T11321] __alloc_frozen_pages_noprof+0x19a/0x2ba0
[ 392.493049][T11321] ? print_kernel_ident+0x11/0x40
[ 392.493076][T11321] ? is_bpf_text_address+0x8a/0x1a0
[ 392.493166][T11321] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 392.493206][T11321] ? kernel_text_address+0x8d/0x100
[ 392.493254][T11321] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 392.493310][T11321] ? preempt_schedule_irq+0x7b/0x90
[ 392.493407][T11321] ? irqentry_exit+0x180/0x670
[ 392.493455][T11321] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 392.493513][T11321] ? policy_nodemask+0xed/0x4f0
[ 392.493546][T11321] alloc_pages_mpol+0x1fb/0x550
[ 392.493578][T11321] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 392.493617][T11321] alloc_pages_noprof+0x131/0x390
[ 392.493649][T11321] kimage_alloc_pages+0x72/0x380
[ 392.493701][T11321] kimage_alloc_control_pages+0x157/0xa20
[ 392.493740][T11321] ? __pfx_kimage_alloc_control_pages+0x10/0x10
[ 392.493781][T11321] do_kexec_load+0x275/0x810
[ 392.493816][T11321] ? __pfx_do_kexec_load+0x10/0x10
[ 392.493850][T11321] ? _copy_from_user+0x59/0xd0
[ 392.493933][T11321] __x64_sys_kexec_load+0x1bf/0x230
[ 392.493987][T11321] do_syscall_64+0x106/0xf80
[ 392.494023][T11321] ? clear_bhb_loop+0x40/0x90
[ 392.494060][T11321] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 392.494090][T11321] RIP: 0033:0x7f952ef9c799
[ 392.494114][T11321] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 392.494143][T11321] RSP: 002b:00007f952fdc4028 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 392.494171][T11321] RAX: ffffffffffffffda RBX: 00007f952f215fa0 RCX: 00007f952ef9c799
[ 392.494191][T11321] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000ffffffff
[ 392.494210][T11321] RBP: 00007f952f032bd9 R08: 0000000000000000 R09: 0000000000000000
[ 392.494228][T11321] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000
[ 392.494246][T11321] R13: 00007f952f216038 R14: 00007f952f215fa0 R15: 00007ffd47d8e2b8
[ 392.494290][T11321]
[ 392.809100][T11321] kexec: Could not allocate control_code_buffer
[ 394.132453][T11356] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1977'.
[ 395.220494][T11374] Zero length message leads to an empty skb
[ 395.675018][T11382] netlink: 25 bytes leftover after parsing attributes in process `syz.3.1988'.
[ 395.792422][T11388] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1990'.
[ 395.927773][T11388] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1990'.
[ 396.969098][ T5835] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 396.978685][ T5835] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 396.986822][ T5835] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 396.994848][ T5835] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 397.002739][ T5835] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 397.426261][T11422] ptp ptp0: new virtual clock ptp1
[ 397.434069][T11422] ptp ptp0: guarantee physical clock free running
[ 397.443529][T11422] ptp ptp0: delete virtual clock ptp1
[ 397.466422][T11422] ptp ptp0: only physical clock in use now
[ 397.652906][T11411] chnl_net:caif_netlink_parms(): no params data found
[ 397.982137][T11442] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[ 398.020747][T11411] bridge0: port 1(bridge_slave_0) entered blocking state
[ 398.020839][T11411] bridge0: port 1(bridge_slave_0) entered disabled state
[ 398.020954][T11411] bridge_slave_0: entered allmulticast mode
[ 398.022399][T11411] bridge_slave_0: entered promiscuous mode
[ 398.026561][T11411] bridge0: port 2(bridge_slave_1) entered blocking state
[ 398.026733][T11411] bridge0: port 2(bridge_slave_1) entered disabled state
[ 398.026889][T11411] bridge_slave_1: entered allmulticast mode
[ 398.029078][T11411] bridge_slave_1: entered promiscuous mode
[ 398.074854][T11411] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 398.094623][T11411] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 398.250187][T11411] team0: Port device team_slave_0 added
[ 398.260332][T11411] team0: Port device team_slave_1 added
[ 398.313523][T11411] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 398.326605][T11411] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 398.355790][T11411] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 398.420920][T11411] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 398.428072][T11411] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 398.456985][T11411] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 398.562674][T11411] hsr_slave_0: entered promiscuous mode
[ 398.569747][T11411] hsr_slave_1: entered promiscuous mode
[ 398.576981][T11411] debugfs: 'hsr0' already exists in 'hsr'
[ 398.582757][T11411] Cannot create hsr debugfs directory
[ 399.036227][ T5835] Bluetooth: hci5: command tx timeout
[ 399.069864][T11411] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 399.085867][T11411] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 399.097844][T11411] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 399.112058][T11411] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 399.272372][T11411] 8021q: adding VLAN 0 to HW filter on device bond0
[ 399.303465][T11411] 8021q: adding VLAN 0 to HW filter on device team0
[ 399.322618][ T1108] bridge0: port 1(bridge_slave_0) entered blocking state
[ 399.329863][ T1108] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 399.367086][ T49] bridge0: port 2(bridge_slave_1) entered blocking state
[ 399.374315][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 399.845747][T11411] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 399.966804][T11498] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2025'.
[ 400.417030][T11512] mmap: syz.4.2027 (11512) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[ 400.504454][T11411] veth0_vlan: entered promiscuous mode
[ 400.557593][T11411] veth1_vlan: entered promiscuous mode
[ 400.689432][T11411] veth0_macvtap: entered promiscuous mode
[ 400.724740][T11411] veth1_macvtap: entered promiscuous mode
[ 400.748860][T11519] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[ 400.809095][T11411] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 400.847468][T11411] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 400.888905][ T1331] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 400.919973][ T1331] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 400.959534][ T1331] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 401.013049][ T1331] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 401.116187][ T5835] Bluetooth: hci5: command tx timeout
[ 401.265247][ T1331] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 401.273143][ T1331] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 401.343560][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 401.369648][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 401.478268][T11411] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 402.234215][T11550] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2044'.
[ 402.589216][T11561] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2047'.
[ 403.198330][ T5835] Bluetooth: hci5: command tx timeout
[ 403.313156][T11571] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2051'.
[ 404.187445][ T5835] Bluetooth: hci5: unexpected event 0x3e length: 726 > 260
[ 404.187495][ T5835] Bluetooth: hci5: unexpected subevent 0x0d length: 725 > 260
[ 404.202794][ T5835] Bluetooth: hci5: Unknown advertising packet type: 0x7f
[ 404.202865][ T5835] Bluetooth: hci5: Unknown advertising packet type: 0x14
[ 404.213438][ T5835] Bluetooth: hci5: Unknown advertising packet type: 0x14
[ 404.220791][ T5835] Bluetooth: hci5: Unknown advertising packet type: 0x14
[ 404.228298][ T5835] Bluetooth: hci5: Unknown advertising packet type: 0x72
[ 404.235850][ T5835] Bluetooth: hci5: Unknown advertising packet type: 0x14
[ 404.243165][ T5835] Bluetooth: hci5: Malformed LE Event: 0x0d
[ 405.275473][ T5835] Bluetooth: hci5: command tx timeout
[ 405.572197][T11613] netlink: 334 bytes leftover after parsing attributes in process `syz.4.2067'.
[ 406.124511][T11629] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2074'.
[ 406.327639][T11635] input: j�J�Ǹ-¶š9ã%vø“û¨lÐQ J86Ö�‘ as /devices/virtual/input/input5
[ 406.392204][ T5179] ERROR: Out of memory at tomoyo_memory_ok.
[ 406.443865][T11639] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2077'.
[ 406.896480][T11653] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2082'.
[ 407.863244][T11671] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2087'.
[ 408.318470][T11685] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2095'.
[ 408.385244][T11685] netlink: 354 bytes leftover after parsing attributes in process `syz.0.2095'.
[ 408.670991][T11692] pim6reg: entered allmulticast mode
[ 410.763089][T11731] netlink: 3 bytes leftover after parsing attributes in process `syz.5.2121'.
[ 412.837983][T11787] netlink: 346 bytes leftover after parsing attributes in process `syz.5.2136'.
[ 413.354725][T11803] HfR: entered promiscuous mode
[ 413.424302][T11803] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2141'.
[ 413.460149][T11803] HfR: left promiscuous mode
[ 413.738493][T11809] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2143'.
[ 413.944030][T11813] random: crng reseeded on system resumption
[ 415.529654][T11839] zswap: compressor not available
[ 416.019561][T11845] netlink: 'syz.3.2154': attribute type 19 has an invalid length.
[ 416.035383][T11845] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2154'.
[ 417.278741][T11876] block nbd8: shutting down sockets
[ 417.505675][T11882] random: crng reseeded on system resumption
[ 417.750134][T11887] ACPI: button: Initial lid state set to 'ignore'
[ 418.016154][T11891] FAULT_INJECTION: forcing a failure.
[ 418.016154][T11891] name failslab, interval 1, probability 0, space 0, times 0
[ 418.045206][T11891] CPU: 0 UID: 0 PID: 11891 Comm: syz.5.2171 Tainted: G L syzkaller #0 PREEMPT(full)
[ 418.045254][T11891] Tainted: [L]=SOFTLOCKUP
[ 418.045266][T11891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 418.045286][T11891] Call Trace:
[ 418.045297][T11891]
[ 418.045309][T11891] dump_stack_lvl+0x100/0x190
[ 418.045367][T11891] should_fail_ex.cold+0x5/0xa
[ 418.045405][T11891] ? memcg_list_lru_alloc+0x4ec/0x740
[ 418.045458][T11891] should_failslab+0xc2/0x120
[ 418.045489][T11891] __kmalloc_noprof+0xe0/0x850
[ 418.045534][T11891] ? path_openat+0xf95/0x31a0
[ 418.045569][T11891] memcg_list_lru_alloc+0x4ec/0x740
[ 418.045632][T11891] ? __pfx_memcg_list_lru_alloc+0x10/0x10
[ 418.045678][T11891] ? rcu_read_unlock+0x17/0x60
[ 418.045720][T11891] ? get_mem_cgroup_from_objcg+0xd3/0x330
[ 418.045768][T11891] __memcg_slab_post_alloc_hook+0x130/0x990
[ 418.045810][T11891] ? kasan_save_track+0x14/0x30
[ 418.045859][T11891] kmem_cache_alloc_lru_noprof+0x592/0x6e0
[ 418.045905][T11891] ? alloc_inode+0x183/0x250
[ 418.045951][T11891] alloc_inode+0x183/0x250
[ 418.045990][T11891] path_from_stashed+0x25b/0x750
[ 418.046022][T11891] ? do_raw_spin_unlock+0x145/0x1e0
[ 418.046072][T11891] ns_get_path+0x60/0x80
[ 418.046102][T11891] proc_ns_get_link+0x121/0x230
[ 418.046149][T11891] ? __pfx_proc_ns_get_link+0x10/0x10
[ 418.046203][T11891] ? atime_needs_update+0x8b/0x6b0
[ 418.046255][T11891] pick_link+0xd17/0x13c0
[ 418.046303][T11891] ? __pfx_proc_ns_get_link+0x10/0x10
[ 418.046356][T11891] step_into_slowpath+0x9ba/0xf90
[ 418.046414][T11891] ? __pfx_step_into_slowpath+0x10/0x10
[ 418.046466][T11891] ? find_held_lock+0x2b/0x80
[ 418.046510][T11891] path_openat+0xf95/0x31a0
[ 418.046559][T11891] ? __pfx_path_openat+0x10/0x10
[ 418.046609][T11891] do_file_open+0x20e/0x430
[ 418.046652][T11891] ? __pfx_do_file_open+0x10/0x10
[ 418.046709][T11891] ? alloc_fd+0x476/0x790
[ 418.046742][T11891] ? do_getname+0x191/0x390
[ 418.046784][T11891] do_sys_openat2+0x10d/0x1e0
[ 418.046824][T11891] ? __pfx_do_sys_openat2+0x10/0x10
[ 418.046866][T11891] ? __fget_files+0x21f/0x3d0
[ 418.046902][T11891] __x64_sys_openat+0x12d/0x210
[ 418.046942][T11891] ? __pfx___x64_sys_openat+0x10/0x10
[ 418.046996][T11891] do_syscall_64+0x106/0xf80
[ 418.047031][T11891] ? clear_bhb_loop+0x40/0x90
[ 418.047068][T11891] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 418.047100][T11891] RIP: 0033:0x7fd1b8d5cfce
[ 418.047124][T11891] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 418.047158][T11891] RSP: 002b:00007fd1b9beeec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 418.047191][T11891] RAX: ffffffffffffffda RBX: 00007fd1b9bef6c0 RCX: 00007fd1b8d5cfce
[ 418.047214][T11891] RDX: 0000000000000002 RSI: 00007fd1b9beef90 RDI: ffffffffffffff9c
[ 418.047235][T11891] RBP: 00007fd1b8e32bd9 R08: 0000000000000000 R09: 0000000000000000
[ 418.047255][T11891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 418.047276][T11891] R13: 00007fd1b9016038 R14: 00007fd1b9015fa0 R15: 00007ffd65efdd08
[ 418.047320][T11891]
[ 418.780993][T11902] netlink: 302 bytes leftover after parsing attributes in process `syz.4.2174'.
[ 418.932297][T11904] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2176'.
[ 419.333333][T11913] zswap: compressor not available
[ 422.350118][T11967] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2199'.
[ 424.345192][T12000] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 424.405212][ T5836] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 424.423742][ T5836] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 424.432581][ T5836] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 424.443478][ T5836] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 424.454103][ T5836] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 425.103250][T12001] chnl_net:caif_netlink_parms(): no params data found
[ 425.268954][T12001] bridge0: port 1(bridge_slave_0) entered blocking state
[ 425.276412][T12001] bridge0: port 1(bridge_slave_0) entered disabled state
[ 425.296688][T12001] bridge_slave_0: entered allmulticast mode
[ 425.309994][T12001] bridge_slave_0: entered promiscuous mode
[ 425.330737][T12001] bridge0: port 2(bridge_slave_1) entered blocking state
[ 425.339481][T12001] bridge0: port 2(bridge_slave_1) entered disabled state
[ 425.346832][T12001] bridge_slave_1: entered allmulticast mode
[ 425.354890][T12001] bridge_slave_1: entered promiscuous mode
[ 425.403668][T12001] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 425.417712][T12001] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 425.581088][T12001] team0: Port device team_slave_0 added
[ 425.610861][T12001] team0: Port device team_slave_1 added
[ 425.631720][T12017] FAULT_INJECTION: forcing a failure.
[ 425.631720][T12017] name fail_futex, interval 1, probability 0, space 0, times 0
[ 425.661801][T12018] netlink: 326 bytes leftover after parsing attributes in process `syz.5.2215'.
[ 425.699441][T12017] CPU: 1 UID: 0 PID: 12017 Comm: syz.4.2214 Tainted: G L syzkaller #0 PREEMPT(full)
[ 425.699495][T12017] Tainted: [L]=SOFTLOCKUP
[ 425.699508][T12017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 425.699529][T12017] Call Trace:
[ 425.699540][T12017]
[ 425.699552][T12017] dump_stack_lvl+0x100/0x190
[ 425.699615][T12017] should_fail_ex.cold+0x5/0xa
[ 425.699656][T12017] get_futex_key+0x1d2/0x1620
[ 425.699702][T12017] ? __pfx_get_futex_key+0x10/0x10
[ 425.699745][T12017] ? __might_fault+0x111/0x140
[ 425.699802][T12017] ? __get_user_nocheck_8+0x20/0x20
[ 425.699845][T12017] futex_wait_setup+0x83/0x510
[ 425.699918][T12017] __futex_wait+0x19f/0x300
[ 425.699975][T12017] ? __pfx___futex_wait+0x10/0x10
[ 425.700034][T12017] ? __pfx_futex_wake_mark+0x10/0x10
[ 425.700092][T12017] ? futex_hash+0x2c5/0x380
[ 425.700145][T12017] futex_wait+0xed/0x380
[ 425.700199][T12017] ? __pfx_futex_wait+0x10/0x10
[ 425.700264][T12017] ? __asan_memset+0x23/0x50
[ 425.700320][T12017] do_futex+0x1ef/0x350
[ 425.700365][T12017] ? __pfx_do_futex+0x10/0x10
[ 425.700420][T12017] __x64_sys_futex+0x34f/0x4d0
[ 425.700470][T12017] ? __pfx___x64_sys_futex+0x10/0x10
[ 425.700539][T12017] do_syscall_64+0x106/0xf80
[ 425.700582][T12017] ? clear_bhb_loop+0x40/0x90
[ 425.700624][T12017] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 425.700660][T12017] RIP: 0033:0x7f952ef9c799
[ 425.700689][T12017] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 425.700723][T12017] RSP: 002b:00007f952fda30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 425.700755][T12017] RAX: ffffffffffffffda RBX: 00007f952f216098 RCX: 00007f952ef9c799
[ 425.700777][T12017] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f952f216098
[ 425.700805][T12017] RBP: 00007f952f216090 R08: 0000000000000000 R09: 0000000000000000
[ 425.700826][T12017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 425.700846][T12017] R13: 00007f952f216128 R14: 00007ffd47d8e1d0 R15: 00007ffd47d8e2b8
[ 425.700890][T12017]
[ 425.986583][T12001] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 425.994635][T12001] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 426.020813][T12001] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 426.033934][T12001] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 426.041086][T12001] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 426.067037][T12001] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 426.232997][T12001] hsr_slave_0: entered promiscuous mode
[ 426.242841][T12001] hsr_slave_1: entered promiscuous mode
[ 426.249815][T12001] debugfs: 'hsr0' already exists in 'hsr'
[ 426.266469][T12001] Cannot create hsr debugfs directory
[ 426.275593][T12020] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2216'.
[ 426.555597][ T5835] Bluetooth: hci6: command tx timeout
[ 427.107800][T12001] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 427.156586][T12001] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 427.211301][T12001] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 427.293146][T12001] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 427.573241][T12001] 8021q: adding VLAN 0 to HW filter on device bond0
[ 427.598436][T12039] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2221'.
[ 427.640171][T12001] 8021q: adding VLAN 0 to HW filter on device team0
[ 427.664645][ T20] bridge0: port 1(bridge_slave_0) entered blocking state
[ 427.671887][ T20] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 427.721898][ T49] bridge0: port 2(bridge_slave_1) entered blocking state
[ 427.729130][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 428.545699][T12001] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 428.635456][ T5835] Bluetooth: hci6: command tx timeout
[ 429.266627][T12001] veth0_vlan: entered promiscuous mode
[ 429.293009][T12001] veth1_vlan: entered promiscuous mode
[ 429.328298][T12001] veth0_macvtap: entered promiscuous mode
[ 429.339722][T12001] veth1_macvtap: entered promiscuous mode
[ 429.362069][T12001] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 429.401817][T12001] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 429.457725][ T1098] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 429.489595][ T1098] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 429.516861][ T1098] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 429.538935][ T1098] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 429.778560][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 429.826652][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 429.954711][T12029] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 429.976314][T12029] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 430.716297][ T5835] Bluetooth: hci6: command tx timeout
[ 432.221675][ T5836] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 432.233238][ T5836] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 432.243224][ T5836] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 432.265586][ T5836] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 432.274785][ T5836] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 432.805085][ T5836] Bluetooth: hci6: command tx timeout
[ 432.818122][T12121] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 432.832919][T12121] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 432.851669][T12121] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 432.858828][T12121] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 432.870623][T12121] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 432.889052][T12121] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 432.908619][T12121] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 432.919610][T12121] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 432.937697][T12121] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 432.951086][T12121] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 433.000900][T12121] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 433.017402][T12121] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 433.040334][T12121] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 433.068998][T12121] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 433.088776][T12121] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 433.100403][T12121] Bluetooth: hci6: Opcode 0x0406 failed: -4
[ 433.114641][T12121] Bluetooth: hci6: Opcode 0x0406 failed: -4
[ 433.158001][T12121] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 433.187011][T12121] Bluetooth: hci7: Opcode 0x0406 failed: -4
[ 433.233972][T12121] Bluetooth: hci7: Opcode 0x0406 failed: -4
[ 433.351299][T12129] FAULT_INJECTION: forcing a failure.
[ 433.351299][T12129] name failslab, interval 1, probability 0, space 0, times 0
[ 433.383711][T12129] CPU: 1 UID: 0 PID: 12129 Comm: syz.4.2249 Tainted: G L syzkaller #0 PREEMPT(full)
[ 433.383760][T12129] Tainted: [L]=SOFTLOCKUP
[ 433.383770][T12129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 433.383788][T12129] Call Trace:
[ 433.383797][T12129]
[ 433.383808][T12129] dump_stack_lvl+0x100/0x190
[ 433.383857][T12129] should_fail_ex.cold+0x5/0xa
[ 433.383890][T12129] ? memcg_list_lru_alloc+0x4ec/0x740
[ 433.383934][T12129] should_failslab+0xc2/0x120
[ 433.383963][T12129] __kmalloc_noprof+0xe0/0x850
[ 433.384007][T12129] ? path_openat+0xf95/0x31a0
[ 433.384040][T12129] memcg_list_lru_alloc+0x4ec/0x740
[ 433.384095][T12129] ? __pfx_memcg_list_lru_alloc+0x10/0x10
[ 433.384137][T12129] ? rcu_read_unlock+0x17/0x60
[ 433.384200][T12129] ? get_mem_cgroup_from_objcg+0xd3/0x330
[ 433.384264][T12129] __memcg_slab_post_alloc_hook+0x130/0x990
[ 433.384315][T12129] ? kasan_save_track+0x14/0x30
[ 433.384364][T12129] kmem_cache_alloc_lru_noprof+0x592/0x6e0
[ 433.384408][T12129] ? alloc_inode+0x183/0x250
[ 433.384475][T12129] alloc_inode+0x183/0x250
[ 433.384512][T12129] path_from_stashed+0x25b/0x750
[ 433.384548][T12129] ? do_raw_spin_unlock+0x145/0x1e0
[ 433.384611][T12129] ns_get_path+0x60/0x80
[ 433.384640][T12129] proc_ns_get_link+0x121/0x230
[ 433.384681][T12129] ? __pfx_proc_ns_get_link+0x10/0x10
[ 433.384724][T12129] ? atime_needs_update+0x8b/0x6b0
[ 433.384768][T12129] pick_link+0xd17/0x13c0
[ 433.384809][T12129] ? __pfx_proc_ns_get_link+0x10/0x10
[ 433.384853][T12129] step_into_slowpath+0x9ba/0xf90
[ 433.384902][T12129] ? __pfx_step_into_slowpath+0x10/0x10
[ 433.384964][T12129] ? find_held_lock+0x2b/0x80
[ 433.385003][T12129] path_openat+0xf95/0x31a0
[ 433.385047][T12129] ? __pfx_path_openat+0x10/0x10
[ 433.385097][T12129] do_file_open+0x20e/0x430
[ 433.385136][T12129] ? __pfx_do_file_open+0x10/0x10
[ 433.385201][T12129] ? alloc_fd+0x476/0x790
[ 433.385238][T12129] ? do_getname+0x191/0x390
[ 433.385285][T12129] do_sys_openat2+0x10d/0x1e0
[ 433.385330][T12129] ? __pfx_do_sys_openat2+0x10/0x10
[ 433.385376][T12129] ? __fget_files+0x21f/0x3d0
[ 433.385409][T12129] __x64_sys_openat+0x12d/0x210
[ 433.385448][T12129] ? __pfx___x64_sys_openat+0x10/0x10
[ 433.385499][T12129] do_syscall_64+0x106/0xf80
[ 433.385534][T12129] ? clear_bhb_loop+0x40/0x90
[ 433.385579][T12129] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 433.385610][T12129] RIP: 0033:0x7f952ef5cfce
[ 433.385634][T12129] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 433.385664][T12129] RSP: 002b:00007f952fdc3ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 433.385692][T12129] RAX: ffffffffffffffda RBX: 00007f952fdc46c0 RCX: 00007f952ef5cfce
[ 433.385712][T12129] RDX: 0000000000000002 RSI: 00007f952fdc3f90 RDI: ffffffffffffff9c
[ 433.385730][T12129] RBP: 00007f952f032bd9 R08: 0000000000000000 R09: 0000000000000000
[ 433.385749][T12129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 433.385766][T12129] R13: 00007f952f216038 R14: 00007f952f215fa0 R15: 00007ffd47d8e2b8
[ 433.385802][T12129]
[ 433.867773][T12114] chnl_net:caif_netlink_parms(): no params data found
[ 434.064169][T12114] bridge0: port 1(bridge_slave_0) entered blocking state
[ 434.073313][T12114] bridge0: port 1(bridge_slave_0) entered disabled state
[ 434.081208][T12114] bridge_slave_0: entered allmulticast mode
[ 434.092877][T12114] bridge_slave_0: entered promiscuous mode
[ 434.102241][T12114] bridge0: port 2(bridge_slave_1) entered blocking state
[ 434.109781][T12114] bridge0: port 2(bridge_slave_1) entered disabled state
[ 434.117287][T12114] bridge_slave_1: entered allmulticast mode
[ 434.126611][T12114] bridge_slave_1: entered promiscuous mode
[ 434.173032][T12114] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 434.192556][T12114] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 434.404281][T12114] team0: Port device team_slave_0 added
[ 434.471622][T12114] team0: Port device team_slave_1 added
[ 434.618519][T12114] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 434.645599][T12114] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 434.717373][T12114] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 434.760069][T12114] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 434.780243][T12114] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 434.825849][T12148] FAULT_INJECTION: forcing a failure.
[ 434.825849][T12148] name failslab, interval 1, probability 0, space 0, times 0
[ 434.862864][T12114] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 434.875297][T12148] CPU: 0 UID: 0 PID: 12148 Comm: syz.6.2256 Tainted: G L syzkaller #0 PREEMPT(full)
[ 434.875340][T12148] Tainted: [L]=SOFTLOCKUP
[ 434.875350][T12148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 434.875365][T12148] Call Trace:
[ 434.875374][T12148]
[ 434.875384][T12148] dump_stack_lvl+0x100/0x190
[ 434.875433][T12148] should_fail_ex.cold+0x5/0xa
[ 434.875467][T12148] should_failslab+0xc2/0x120
[ 434.875496][T12148] __kmalloc_cache_noprof+0x7a/0x6f0
[ 434.875531][T12148] ? wakeup_source_device_create+0x46/0x2e0
[ 434.875690][T12148] wakeup_source_device_create+0x46/0x2e0
[ 434.875738][T12148] wakeup_source_sysfs_add+0x1c/0x90
[ 434.875784][T12148] wakeup_source_register+0x154/0x3e0
[ 434.875826][T12148] ep_create_wakeup_source+0x1df/0x2e0
[ 434.875887][T12148] ? __pfx_ep_create_wakeup_source+0x10/0x10
[ 434.875943][T12148] ? do_epoll_ctl+0x1012/0x36a0
[ 434.875981][T12148] ? do_epoll_ctl+0x1012/0x36a0
[ 434.876019][T12148] do_epoll_ctl+0x1eee/0x36a0
[ 434.876066][T12148] ? __pfx_do_epoll_ctl+0x10/0x10
[ 434.876097][T12148] ? find_held_lock+0x2b/0x80
[ 434.876127][T12148] ? __might_fault+0xc5/0x140
[ 434.876198][T12148] ? __might_fault+0xc5/0x140
[ 434.876262][T12148] ? __x64_sys_epoll_ctl+0x15c/0x1e0
[ 434.876295][T12148] __x64_sys_epoll_ctl+0x15c/0x1e0
[ 434.876331][T12148] ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[ 434.876379][T12148] do_syscall_64+0x106/0xf80
[ 434.876420][T12148] ? clear_bhb_loop+0x40/0x90
[ 434.876464][T12148] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 434.876499][T12148] RIP: 0033:0x7fdcfb39c799
[ 434.876526][T12148] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 434.876558][T12148] RSP: 002b:00007fdcfc190028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[ 434.876598][T12148] RAX: ffffffffffffffda RBX: 00007fdcfb615fa0 RCX: 00007fdcfb39c799
[ 434.876622][T12148] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004
[ 434.876643][T12148] RBP: 00007fdcfb432bd9 R08: 0000000000000000 R09: 0000000000000000
[ 434.876663][T12148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 434.876683][T12148] R13: 00007fdcfb616038 R14: 00007fdcfb615fa0 R15: 00007ffd3cca2ba8
[ 434.876729][T12148]
[ 434.877236][ T5836] Bluetooth: hci1: command 0x0406 tx timeout
[ 434.908928][ T5835] Bluetooth: hci0: command 0x0406 tx timeout
[ 434.967350][ T5836] Bluetooth: hci4: command 0x0c1a tx timeout
[ 434.987096][ T5835] Bluetooth: hci3: command 0x0406 tx timeout
[ 434.993006][ T51] Bluetooth: hci2: command 0x0406 tx timeout
[ 435.046796][ T8425] Bluetooth: hci5: command 0x0c1a tx timeout
[ 435.126468][ T51] Bluetooth: hci6: command 0x0c1a tx timeout
[ 435.195514][ T51] Bluetooth: hci7: command 0x041b tx timeout
[ 435.280539][T12114] hsr_slave_0: entered promiscuous mode
[ 435.303584][T12114] hsr_slave_1: entered promiscuous mode
[ 435.323949][T12114] debugfs: 'hsr0' already exists in 'hsr'
[ 435.354459][T12114] Cannot create hsr debugfs directory
[ 435.763986][T12162] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2262'.
[ 435.788071][T12162] netlink: 25 bytes leftover after parsing attributes in process `syz.5.2262'.
[ 436.143125][T12114] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 436.183851][T12114] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 436.230685][T12114] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 436.271750][T12114] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 436.641141][T12114] 8021q: adding VLAN 0 to HW filter on device bond0
[ 436.717327][T12114] 8021q: adding VLAN 0 to HW filter on device team0
[ 436.756496][ T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 436.763758][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 436.830542][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 436.837823][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 436.958151][ T51] Bluetooth: hci1: command 0x0406 tx timeout
[ 437.037103][ T51] Bluetooth: hci3: command 0x0406 tx timeout
[ 437.037114][ T8425] Bluetooth: hci0: command 0x0406 tx timeout
[ 437.112687][T12186] netlink: 21 bytes leftover after parsing attributes in process `syz.4.2269'.
[ 437.125257][ T51] Bluetooth: hci2: command 0x0406 tx timeout
[ 437.126462][ T8425] Bluetooth: hci4: command 0x0c1a tx timeout
[ 437.195280][ T8425] Bluetooth: hci5: command 0x0c1a tx timeout
[ 437.201397][ T8425] Bluetooth: hci6: command 0x0c1a tx timeout
[ 437.285235][ T51] Bluetooth: hci7: command 0x041b tx timeout
[ 437.786416][T12200] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2273'.
[ 437.895539][T12114] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 438.959915][T12114] veth0_vlan: entered promiscuous mode
[ 438.987331][T12114] veth1_vlan: entered promiscuous mode
[ 439.187871][T12114] veth0_macvtap: entered promiscuous mode
[ 439.198932][ T51] Bluetooth: hci4: command 0x0c1a tx timeout
[ 439.219556][T12114] veth1_macvtap: entered promiscuous mode
[ 439.242723][T12114] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 439.255338][T12114] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 439.276333][ T51] Bluetooth: hci6: command 0x0c1a tx timeout
[ 439.282410][ T51] Bluetooth: hci5: command 0x0c1a tx timeout
[ 439.299334][ T49] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 439.334238][ T49] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 439.355482][ T51] Bluetooth: hci7: command 0x041b tx timeout
[ 439.398640][ T49] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 439.448020][ T49] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 439.772917][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 439.791240][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 440.074217][T12226] zswap: compressor û not available
[ 440.334966][ T1331] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 440.343361][ T1331] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 440.459590][T12236] netlink: 'syz.5.2283': attribute type 27 has an invalid length.
[ 440.506425][T12236] netlink: 334 bytes leftover after parsing attributes in process `syz.5.2283'.
[ 441.436976][ T51] Bluetooth: hci7: command 0x041b tx timeout
[ 442.526428][T12274] netlink: 334 bytes leftover after parsing attributes in process `syz.4.2296'.
[ 443.515937][ T51] Bluetooth: hci7: command 0x041b tx timeout
[ 445.595208][ T51] Bluetooth: hci7: command 0x041b tx timeout
[ 445.663456][T12318] netlink: 146 bytes leftover after parsing attributes in process `syz.4.2310'.
[ 445.928508][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 445.934878][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 447.148158][T12352] process 'syz.4.2317' launched '/dev/fd/6' with NULL argv: empty string added
[ 448.678895][T12372] FAULT_INJECTION: forcing a failure.
[ 448.678895][T12372] name failslab, interval 1, probability 0, space 0, times 0
[ 448.765457][T12372] CPU: 0 UID: 0 PID: 12372 Comm: syz.5.2322 Tainted: G L syzkaller #0 PREEMPT(full)
[ 448.765511][T12372] Tainted: [L]=SOFTLOCKUP
[ 448.765523][T12372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 448.765542][T12372] Call Trace:
[ 448.765553][T12372]
[ 448.765565][T12372] dump_stack_lvl+0x100/0x190
[ 448.765620][T12372] should_fail_ex.cold+0x5/0xa
[ 448.765657][T12372] ? constrain_params_by_rules+0x175/0xcc0
[ 448.765799][T12372] should_failslab+0xc2/0x120
[ 448.765834][T12372] __kmalloc_noprof+0xe0/0x850
[ 448.765906][T12372] constrain_params_by_rules+0x175/0xcc0
[ 448.765945][T12372] ? arch_stack_walk+0xa6/0xf0
[ 448.765995][T12372] ? __pfx_constrain_params_by_rules+0x10/0x10
[ 448.766034][T12372] ? stack_trace_save+0x8e/0xc0
[ 448.766073][T12372] ? kfree+0x1f6/0x6b0
[ 448.766111][T12372] ? snd_pcm_hw_param_near.constprop.0+0x573/0x850
[ 448.766239][T12372] ? snd_pcm_oss_make_ready_locked+0xb7/0x130
[ 448.766293][T12372] ? snd_pcm_oss_read+0x3d4/0x730
[ 448.766323][T12372] ? vfs_read+0x1e4/0xb30
[ 448.766391][T12372] ? ksys_read+0x12a/0x250
[ 448.766441][T12372] ? do_syscall_64+0x106/0xf80
[ 448.766489][T12372] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 448.766525][T12372] ? snd_interval_refine+0x2d0/0x580
[ 448.766607][T12372] snd_pcm_hw_refine+0x7e7/0xad0
[ 448.766654][T12372] ? __pfx_snd_pcm_hw_refine+0x10/0x10
[ 448.766720][T12372] snd_pcm_hw_param_last+0x2b2/0x660
[ 448.766786][T12372] snd_pcm_hw_param_near.constprop.0+0x546/0x850
[ 448.766850][T12372] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[ 448.766909][T12372] ? calc_src_frames.isra.0+0x17c/0x1c0
[ 448.766954][T12372] snd_pcm_oss_change_params_locked+0x193a/0x39f0
[ 448.767034][T12372] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[ 448.767126][T12372] snd_pcm_oss_make_ready_locked+0xb7/0x130
[ 448.767186][T12372] snd_pcm_oss_read+0x3d4/0x730
[ 448.767225][T12372] ? __pfx_snd_pcm_oss_read+0x10/0x10
[ 448.767260][T12372] vfs_read+0x1e4/0xb30
[ 448.767334][T12372] ? __pfx_vfs_read+0x10/0x10
[ 448.767384][T12372] ? find_held_lock+0x2b/0x80
[ 448.767415][T12372] ? __fget_files+0x215/0x3d0
[ 448.767444][T12372] ? __fget_files+0x215/0x3d0
[ 448.767490][T12372] ? __fget_files+0x21f/0x3d0
[ 448.767533][T12372] ksys_read+0x12a/0x250
[ 448.767595][T12372] ? __pfx_ksys_read+0x10/0x10
[ 448.767663][T12372] do_syscall_64+0x106/0xf80
[ 448.767705][T12372] ? clear_bhb_loop+0x40/0x90
[ 448.767749][T12372] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 448.767785][T12372] RIP: 0033:0x7fd1b8d9c799
[ 448.767814][T12372] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 448.767849][T12372] RSP: 002b:00007fd1b9bef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 448.767881][T12372] RAX: ffffffffffffffda RBX: 00007fd1b9015fa0 RCX: 00007fd1b8d9c799
[ 448.767904][T12372] RDX: 0000000000008080 RSI: 0000000000000000 RDI: 0000000000000003
[ 448.767924][T12372] RBP: 00007fd1b8e32bd9 R08: 0000000000000000 R09: 0000000000000000
[ 448.767944][T12372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 448.767964][T12372] R13: 00007fd1b9016038 R14: 00007fd1b9015fa0 R15: 00007ffd65efdd08
[ 448.768008][T12372]
[ 449.348221][T12384] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2324'.
[ 449.563618][T12387] netlink: 334 bytes leftover after parsing attributes in process `syz.7.2326'.
[ 450.112100][T12394] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2328'.
[ 451.526580][T12411] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 452.815520][T12427] netlink: 'syz.5.2340': attribute type 16 has an invalid length.
[ 452.855166][T12427] netlink: 306 bytes leftover after parsing attributes in process `syz.5.2340'.
[ 453.656372][T12441] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 455.763581][T12464] netlink: 350 bytes leftover after parsing attributes in process `syz.7.2353'.
[ 457.344085][T12485] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2363'.
[ 457.380102][T12485] netlink: 13 bytes leftover after parsing attributes in process `syz.6.2363'.
[ 457.582382][T12493] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2364'.
[ 458.816014][T12507] netlink: 146 bytes leftover after parsing attributes in process `syz.4.2368'.
[ 459.388008][T12520] netlink: 'syz.4.2373': attribute type 4 has an invalid length.
[ 459.577109][T12522] FAULT_INJECTION: forcing a failure.
[ 459.577109][T12522] name failslab, interval 1, probability 0, space 0, times 0
[ 459.655218][T12522] CPU: 1 UID: 0 PID: 12522 Comm: syz.6.2375 Tainted: G L syzkaller #0 PREEMPT(full)
[ 459.655270][T12522] Tainted: [L]=SOFTLOCKUP
[ 459.655281][T12522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 459.655301][T12522] Call Trace:
[ 459.655312][T12522]
[ 459.655325][T12522] dump_stack_lvl+0x100/0x190
[ 459.655382][T12522] should_fail_ex.cold+0x5/0xa
[ 459.655421][T12522] should_failslab+0xc2/0x120
[ 459.655458][T12522] __kmalloc_cache_noprof+0x7a/0x6f0
[ 459.655504][T12522] ? snd_virmidi_output_open+0xc4/0x670
[ 459.655673][T12522] snd_virmidi_output_open+0xc4/0x670
[ 459.655730][T12522] open_substream+0x480/0x9e0
[ 459.655770][T12522] rawmidi_open_priv+0x595/0x6f0
[ 459.655815][T12522] snd_rawmidi_open+0x4c9/0xba0
[ 459.655862][T12522] ? __pfx_snd_rawmidi_open+0x10/0x10
[ 459.655903][T12522] ? __pfx_default_wake_function+0x10/0x10
[ 459.655940][T12522] ? soundcore_open+0x231/0x5a0
[ 459.656020][T12522] ? soundcore_open+0x231/0x5a0
[ 459.656074][T12522] ? __pfx_snd_rawmidi_open+0x10/0x10
[ 459.656116][T12522] soundcore_open+0x2e3/0x5a0
[ 459.656169][T12522] ? __pfx_soundcore_open+0x10/0x10
[ 459.656219][T12522] chrdev_open+0x234/0x6a0
[ 459.656258][T12522] ? __pfx_chrdev_open+0x10/0x10
[ 459.656297][T12522] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 459.656344][T12522] do_dentry_open+0x6d8/0x1660
[ 459.656377][T12522] ? __pfx_chrdev_open+0x10/0x10
[ 459.656421][T12522] vfs_open+0x82/0x3f0
[ 459.656469][T12522] path_openat+0x208c/0x31a0
[ 459.656520][T12522] ? __pfx_path_openat+0x10/0x10
[ 459.656572][T12522] do_file_open+0x20e/0x430
[ 459.656609][T12522] ? __pfx_do_file_open+0x10/0x10
[ 459.656677][T12522] ? alloc_fd+0x476/0x790
[ 459.656714][T12522] ? do_getname+0x191/0x390
[ 459.656760][T12522] do_sys_openat2+0x10d/0x1e0
[ 459.656806][T12522] ? __pfx_do_sys_openat2+0x10/0x10
[ 459.656855][T12522] ? __fget_files+0x21f/0x3d0
[ 459.656895][T12522] __x64_sys_openat+0x12d/0x210
[ 459.656942][T12522] ? __pfx___x64_sys_openat+0x10/0x10
[ 459.657013][T12522] do_syscall_64+0x106/0xf80
[ 459.657054][T12522] ? clear_bhb_loop+0x40/0x90
[ 459.657096][T12522] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 459.657132][T12522] RIP: 0033:0x7fdcfb39c799
[ 459.657160][T12522] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 459.657195][T12522] RSP: 002b:00007fdcfc190028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 459.657228][T12522] RAX: ffffffffffffffda RBX: 00007fdcfb615fa0 RCX: 00007fdcfb39c799
[ 459.657251][T12522] RDX: 0000000000060c01 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 459.657273][T12522] RBP: 00007fdcfb432bd9 R08: 0000000000000000 R09: 0000000000000000
[ 459.657294][T12522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 459.657313][T12522] R13: 00007fdcfb616038 R14: 00007fdcfb615fa0 R15: 00007ffd3cca2ba8
[ 459.657358][T12522]
[ 460.446536][T12534] syz.5.2380 uses obsolete (PF_INET,SOCK_PACKET)
[ 460.866688][T12543] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 461.292718][T12554] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2388'.
[ 461.699213][T12565] FAULT_INJECTION: forcing a failure.
[ 461.699213][T12565] name failslab, interval 1, probability 0, space 0, times 0
[ 461.759492][T12565] CPU: 1 UID: 0 PID: 12565 Comm: syz.5.2392 Tainted: G L syzkaller #0 PREEMPT(full)
[ 461.759544][T12565] Tainted: [L]=SOFTLOCKUP
[ 461.759556][T12565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 461.759576][T12565] Call Trace:
[ 461.759586][T12565]
[ 461.759598][T12565] dump_stack_lvl+0x100/0x190
[ 461.759655][T12565] should_fail_ex.cold+0x5/0xa
[ 461.759695][T12565] should_failslab+0xc2/0x120
[ 461.759739][T12565] kmem_cache_alloc_lru_noprof+0x80/0x6e0
[ 461.759792][T12565] ? mqueue_alloc_inode+0x25/0x50
[ 461.759935][T12565] ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 461.759989][T12565] ? __pfx_mqueue_alloc_inode+0x10/0x10
[ 461.760038][T12565] mqueue_alloc_inode+0x25/0x50
[ 461.760083][T12565] alloc_inode+0x68/0x250
[ 461.760127][T12565] new_inode+0x22/0x1c0
[ 461.760176][T12565] mqueue_get_inode+0x2e/0xe00
[ 461.760219][T12565] ? sget_fc+0x801/0xc70
[ 461.760272][T12565] ? __pfx_mqueue_fill_super+0x10/0x10
[ 461.760315][T12565] mqueue_fill_super+0x14d/0x260
[ 461.760361][T12565] get_tree_nodev+0xdd/0x190
[ 461.760416][T12565] mqueue_get_tree+0xf1/0x130
[ 461.760461][T12565] vfs_get_tree+0x92/0x320
[ 461.760520][T12565] fc_mount_longterm+0x1a/0x270
[ 461.760576][T12565] mq_init_ns+0x482/0x820
[ 461.760630][T12565] copy_ipcs+0x3dd/0x7e0
[ 461.760684][T12565] create_new_namespaces+0x20a/0xac0
[ 461.760742][T12565] ? security_capable+0x80/0x260
[ 461.760813][T12565] unshare_nsproxy_namespaces+0xc3/0x1f0
[ 461.760854][T12565] ksys_unshare+0x473/0xad0
[ 461.760900][T12565] ? __pfx_ksys_unshare+0x10/0x10
[ 461.760957][T12565] __x64_sys_unshare+0x31/0x40
[ 461.760999][T12565] do_syscall_64+0x106/0xf80
[ 461.761041][T12565] ? clear_bhb_loop+0x40/0x90
[ 461.761084][T12565] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 461.761120][T12565] RIP: 0033:0x7fd1b8d9c799
[ 461.761149][T12565] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 461.761183][T12565] RSP: 002b:00007fd1b9bef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 461.761216][T12565] RAX: ffffffffffffffda RBX: 00007fd1b9015fa0 RCX: 00007fd1b8d9c799
[ 461.761237][T12565] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c000000
[ 461.761259][T12565] RBP: 00007fd1b8e32bd9 R08: 0000000000000000 R09: 0000000000000000
[ 461.761280][T12565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 461.761301][T12565] R13: 00007fd1b9016038 R14: 00007fd1b9015fa0 R15: 00007ffd65efdd08
[ 461.761346][T12565]
[ 462.509345][T12577] netlink: 334 bytes leftover after parsing attributes in process `syz.7.2395'.
[ 462.796524][T12583] netlink: 'syz.4.2400': attribute type 27 has an invalid length.
[ 462.828563][T12583] netlink: 334 bytes leftover after parsing attributes in process `syz.4.2400'.
[ 464.827192][T12610] netlink: 334 bytes leftover after parsing attributes in process `syz.7.2408'.
[ 465.653169][T12618] FAULT_INJECTION: forcing a failure.
[ 465.653169][T12618] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 465.705204][T12618] CPU: 0 UID: 0 PID: 12618 Comm: syz.6.2413 Tainted: G L syzkaller #0 PREEMPT(full)
[ 465.705256][T12618] Tainted: [L]=SOFTLOCKUP
[ 465.705269][T12618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 465.705288][T12618] Call Trace:
[ 465.705299][T12618]
[ 465.705311][T12618] dump_stack_lvl+0x100/0x190
[ 465.705366][T12618] should_fail_ex.cold+0x5/0xa
[ 465.705410][T12618] ? prepare_alloc_pages+0x16d/0x5f0
[ 465.705452][T12618] should_fail_alloc_page+0xeb/0x140
[ 465.705491][T12618] prepare_alloc_pages+0x1f0/0x5f0
[ 465.705534][T12618] __alloc_frozen_pages_noprof+0x19a/0x2ba0
[ 465.705590][T12618] ? get_page_from_freelist+0x111d/0x3140
[ 465.705650][T12618] ? __pfx___might_resched+0x10/0x10
[ 465.705697][T12618] ? prepare_alloc_pages+0x16d/0x5f0
[ 465.705733][T12618] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 465.705790][T12618] ? rcu_is_watching+0x12/0xc0
[ 465.705840][T12618] ? trace_mm_page_alloc+0x17a/0x1d0
[ 465.705882][T12618] ? is_bpf_text_address+0x8a/0x1a0
[ 465.705951][T12618] ? is_bpf_text_address+0x8a/0x1a0
[ 465.706003][T12618] ? bpf_ksym_find+0x124/0x1c0
[ 465.706045][T12618] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 465.706083][T12618] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 465.706142][T12618] ? policy_nodemask+0xed/0x4f0
[ 465.706182][T12618] alloc_pages_mpol+0x1fb/0x550
[ 465.706219][T12618] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 465.706266][T12618] alloc_pages_noprof+0x131/0x390
[ 465.706304][T12618] kimage_alloc_pages+0x72/0x380
[ 465.706365][T12618] kimage_alloc_control_pages+0x157/0xa20
[ 465.706418][T12618] ? policy_nodemask+0x70/0x4f0
[ 465.706481][T12618] ? __pfx_kimage_alloc_control_pages+0x10/0x10
[ 465.706517][T12618] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 465.706564][T12618] alloc_pgt_page+0x17/0xb0
[ 465.706608][T12618] machine_kexec_prepare+0x1a7/0x14d0
[ 465.706667][T12618] ? __pfx_machine_kexec_prepare+0x10/0x10
[ 465.706718][T12618] ? __pfx_alloc_pgt_page+0x10/0x10
[ 465.706766][T12618] ? __pfx_kimage_alloc_control_pages+0x10/0x10
[ 465.706814][T12618] do_kexec_load+0x32c/0x810
[ 465.706855][T12618] ? __pfx_do_kexec_load+0x10/0x10
[ 465.706894][T12618] ? _copy_from_user+0x59/0xd0
[ 465.706934][T12618] __x64_sys_kexec_load+0x1bf/0x230
[ 465.706975][T12618] do_syscall_64+0x106/0xf80
[ 465.707018][T12618] ? clear_bhb_loop+0x40/0x90
[ 465.707062][T12618] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 465.707097][T12618] RIP: 0033:0x7fdcfb39c799
[ 465.707124][T12618] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 465.707158][T12618] RSP: 002b:00007fdcfc190028 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 465.707190][T12618] RAX: ffffffffffffffda RBX: 00007fdcfb615fa0 RCX: 00007fdcfb39c799
[ 465.707212][T12618] RDX: 0000200000000080 RSI: 0000000000000002 RDI: 00000000ffffffff
[ 465.707234][T12618] RBP: 00007fdcfb432bd9 R08: 0000000000000000 R09: 0000000000000000
[ 465.707254][T12618] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000
[ 465.707274][T12618] R13: 00007fdcfb616038 R14: 00007fdcfb615fa0 R15: 00007ffd3cca2ba8
[ 465.707318][T12618]
[ 466.074547][T12614] ERROR: Out of memory at tomoyo_memory_ok.
[ 466.667121][T12626] netlink: 'syz.6.2415': attribute type 29 has an invalid length.
[ 466.702364][T12626] netlink: 334 bytes leftover after parsing attributes in process `syz.6.2415'.
[ 466.742216][T12630] netlink: 322 bytes leftover after parsing attributes in process `syz.5.2417'.
[ 468.202796][T12653] netlink: 330 bytes leftover after parsing attributes in process `syz.7.2425'.
[ 468.305936][T12655] mkiss: ax0: crc mode is auto.
[ 469.305826][T12668] FAULT_INJECTION: forcing a failure.
[ 469.305826][T12668] name failslab, interval 1, probability 0, space 0, times 0
[ 469.425147][T12668] CPU: 1 UID: 0 PID: 12668 Comm: syz.4.2431 Tainted: G L syzkaller #0 PREEMPT(full)
[ 469.425201][T12668] Tainted: [L]=SOFTLOCKUP
[ 469.425214][T12668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 469.425234][T12668] Call Trace:
[ 469.425244][T12668]
[ 469.425256][T12668] dump_stack_lvl+0x100/0x190
[ 469.425314][T12668] should_fail_ex.cold+0x5/0xa
[ 469.425353][T12668] should_failslab+0xc2/0x120
[ 469.425388][T12668] kmem_cache_alloc_noprof+0x7b/0x6e0
[ 469.425436][T12668] ? security_file_alloc+0x34/0x2c0
[ 469.425471][T12668] ? trace_kmem_cache_alloc+0xf3/0x120
[ 469.425513][T12668] security_file_alloc+0x34/0x2c0
[ 469.425548][T12668] init_file+0x95/0x480
[ 469.425589][T12668] alloc_empty_file+0x73/0x1c0
[ 469.425632][T12668] alloc_file_pseudo+0x13a/0x230
[ 469.425676][T12668] ? __pfx_alloc_file_pseudo+0x10/0x10
[ 469.425718][T12668] ? tipc_sk_finish_conn+0x600/0x7a0
[ 469.425792][T12668] sock_alloc_file+0x50/0x210
[ 469.425861][T12668] __sys_socketpair+0x321/0x5b0
[ 469.425897][T12668] ? __pfx___sys_socketpair+0x10/0x10
[ 469.425929][T12668] ? __pfx_ksys_mmap_pgoff+0x10/0x10
[ 469.425966][T12668] ? xfd_validate_state+0x129/0x190
[ 469.426026][T12668] __x64_sys_socketpair+0x96/0x100
[ 469.426060][T12668] ? lockdep_hardirqs_on+0x78/0x100
[ 469.426122][T12668] do_syscall_64+0x106/0xf80
[ 469.426161][T12668] ? clear_bhb_loop+0x40/0x90
[ 469.426204][T12668] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 469.426240][T12668] RIP: 0033:0x7f952ef9c799
[ 469.426269][T12668] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 469.426303][T12668] RSP: 002b:00007f952fdc4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[ 469.426338][T12668] RAX: ffffffffffffffda RBX: 00007f952f215fa0 RCX: 00007f952ef9c799
[ 469.426360][T12668] RDX: 8000000000000000 RSI: 0000000000000005 RDI: 000000000000001e
[ 469.426381][T12668] RBP: 00007f952f032bd9 R08: 0000000000000000 R09: 0000000000000000
[ 469.426402][T12668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 469.426422][T12668] R13: 00007f952f216038 R14: 00007f952f215fa0 R15: 00007ffd47d8e2b8
[ 469.426467][T12668]
[ 469.873789][T12672] phram: not enough arguments
[ 471.270263][T12689] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2440'.
[ 471.303854][T12689] netlink: 'syz.7.2440': attribute type 7 has an invalid length.
[ 474.027637][T12750] netlink: 330 bytes leftover after parsing attributes in process `syz.7.2459'.
[ 474.398998][T12759] FAULT_INJECTION: forcing a failure.
[ 474.398998][T12759] name failslab, interval 1, probability 0, space 0, times 0
[ 474.443595][T12759] CPU: 1 UID: 0 PID: 12759 Comm: syz.7.2461 Tainted: G L syzkaller #0 PREEMPT(full)
[ 474.443650][T12759] Tainted: [L]=SOFTLOCKUP
[ 474.443662][T12759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 474.443682][T12759] Call Trace:
[ 474.443694][T12759]
[ 474.443706][T12759] dump_stack_lvl+0x100/0x190
[ 474.443765][T12759] should_fail_ex.cold+0x5/0xa
[ 474.443814][T12759] ? drm_atomic_state_init+0x190/0x490
[ 474.443948][T12759] should_failslab+0xc2/0x120
[ 474.443985][T12759] __kmalloc_noprof+0xe0/0x850
[ 474.444047][T12759] drm_atomic_state_init+0x190/0x490
[ 474.444083][T12759] ? kasan_save_track+0x14/0x30
[ 474.444139][T12759] drm_atomic_state_alloc+0xd3/0x120
[ 474.444177][T12759] drm_client_modeset_commit_atomic+0xcc/0x7e0
[ 474.444279][T12759] ? trace_contention_end+0x140/0x180
[ 474.444329][T12759] ? __mutex_lock+0x26a/0x1b90
[ 474.444375][T12759] ? __mutex_lock+0x26a/0x1b90
[ 474.444418][T12759] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[ 474.444464][T12759] ? drm_master_internal_acquire+0x21/0x80
[ 474.444616][T12759] drm_client_modeset_commit_locked+0x14d/0x580
[ 474.444669][T12759] drm_client_modeset_commit+0x4f/0x80
[ 474.444713][T12759] __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[ 474.444801][T12759] drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[ 474.444858][T12759] drm_fbdev_client_restore+0x1b/0x30
[ 474.444941][T12759] ? __pfx_drm_fbdev_client_restore+0x10/0x10
[ 474.444999][T12759] drm_client_dev_restore+0x205/0x2a0
[ 474.445049][T12759] drm_release+0x2c6/0x360
[ 474.445138][T12759] ? __pfx_drm_release+0x10/0x10
[ 474.445174][T12759] __fput+0x3ff/0xb40
[ 474.445227][T12759] task_work_run+0x150/0x240
[ 474.445279][T12759] ? __pfx_task_work_run+0x10/0x10
[ 474.445340][T12759] exit_to_user_mode_loop+0x100/0x4a0
[ 474.445391][T12759] do_syscall_64+0x668/0xf80
[ 474.445432][T12759] ? clear_bhb_loop+0x40/0x90
[ 474.445474][T12759] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 474.445511][T12759] RIP: 0033:0x7fb927b9c799
[ 474.445539][T12759] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 474.445591][T12759] RSP: 002b:00007fb928b0a028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 474.445626][T12759] RAX: 0000000000000000 RBX: 00007fb927e15fa0 RCX: 00007fb927b9c799
[ 474.445648][T12759] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[ 474.445668][T12759] RBP: 00007fb927c32bd9 R08: 0000000000000000 R09: 0000000000000000
[ 474.445688][T12759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 474.445710][T12759] R13: 00007fb927e16038 R14: 00007fb927e15fa0 R15: 00007ffebb70ab68
[ 474.445757][T12759]
[ 474.982989][T12762] FAULT_INJECTION: forcing a failure.
[ 474.982989][T12762] name failslab, interval 1, probability 0, space 0, times 0
[ 475.076421][T12762] CPU: 0 UID: 0 PID: 12762 Comm: syz.4.2462 Tainted: G L syzkaller #0 PREEMPT(full)
[ 475.076475][T12762] Tainted: [L]=SOFTLOCKUP
[ 475.076486][T12762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 475.076507][T12762] Call Trace:
[ 475.076517][T12762]
[ 475.076530][T12762] dump_stack_lvl+0x100/0x190
[ 475.076587][T12762] should_fail_ex.cold+0x5/0xa
[ 475.076626][T12762] should_failslab+0xc2/0x120
[ 475.076661][T12762] __kmalloc_cache_noprof+0x7a/0x6f0
[ 475.076706][T12762] ? mtdchar_open+0x1e5/0x340
[ 475.076759][T12762] ? find_held_lock+0x2b/0x80
[ 475.076792][T12762] ? chrdev_open+0x10b/0x6a0
[ 475.076833][T12762] mtdchar_open+0x1e5/0x340
[ 475.076887][T12762] ? __pfx_mtdchar_open+0x10/0x10
[ 475.076938][T12762] chrdev_open+0x234/0x6a0
[ 475.076972][T12762] ? __pfx_apparmor_file_open+0x10/0x10
[ 475.077110][T12762] ? __pfx_chrdev_open+0x10/0x10
[ 475.077148][T12762] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 475.077195][T12762] do_dentry_open+0x6d8/0x1660
[ 475.077228][T12762] ? __pfx_chrdev_open+0x10/0x10
[ 475.077281][T12762] vfs_open+0x82/0x3f0
[ 475.077331][T12762] path_openat+0x208c/0x31a0
[ 475.077412][T12762] ? __pfx_path_openat+0x10/0x10
[ 475.077462][T12762] do_file_open+0x20e/0x430
[ 475.077501][T12762] ? __pfx_do_file_open+0x10/0x10
[ 475.077566][T12762] ? alloc_fd+0x476/0x790
[ 475.077605][T12762] ? do_getname+0x191/0x390
[ 475.077657][T12762] do_sys_openat2+0x10d/0x1e0
[ 475.077702][T12762] ? __pfx_do_sys_openat2+0x10/0x10
[ 475.077751][T12762] ? __fget_files+0x21f/0x3d0
[ 475.077791][T12762] __x64_sys_openat+0x12d/0x210
[ 475.077837][T12762] ? __pfx___x64_sys_openat+0x10/0x10
[ 475.077900][T12762] do_syscall_64+0x106/0xf80
[ 475.077942][T12762] ? clear_bhb_loop+0x40/0x90
[ 475.077985][T12762] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 475.078021][T12762] RIP: 0033:0x7f952ef9c799
[ 475.078050][T12762] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 475.078083][T12762] RSP: 002b:00007f952fdc4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 475.078117][T12762] RAX: ffffffffffffffda RBX: 00007f952f215fa0 RCX: 00007f952ef9c799
[ 475.078139][T12762] RDX: 0000000000002c00 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 475.078161][T12762] RBP: 00007f952f032bd9 R08: 0000000000000000 R09: 0000000000000000
[ 475.078182][T12762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 475.078203][T12762] R13: 00007f952f216038 R14: 00007f952f215fa0 R15: 00007ffd47d8e2b8
[ 475.078256][T12762]
[ 475.611188][T12776] netlink: 342 bytes leftover after parsing attributes in process `syz.7.2464'.
[ 475.696374][T12776] netlink: 342 bytes leftover after parsing attributes in process `syz.7.2464'.
[ 479.247767][T12842] netlink: 146 bytes leftover after parsing attributes in process `syz.7.2491'.
[ 480.798276][T12867] Process accounting resumed
[ 481.845359][T12884] bond0: option all_slaves_active: invalid value (7)
[ 482.725890][T12894] FAULT_INJECTION: forcing a failure.
[ 482.725890][T12894] name failslab, interval 1, probability 0, space 0, times 0
[ 482.778134][T12894] CPU: 1 UID: 0 PID: 12894 Comm: syz.6.2511 Tainted: G L syzkaller #0 PREEMPT(full)
[ 482.778190][T12894] Tainted: [L]=SOFTLOCKUP
[ 482.778202][T12894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 482.778221][T12894] Call Trace:
[ 482.778231][T12894]
[ 482.778243][T12894] dump_stack_lvl+0x100/0x190
[ 482.778328][T12894] should_fail_ex.cold+0x5/0xa
[ 482.778370][T12894] ? drm_atomic_state_init+0xf4/0x490
[ 482.778408][T12894] should_failslab+0xc2/0x120
[ 482.778454][T12894] __kmalloc_noprof+0xe0/0x850
[ 482.778519][T12894] drm_atomic_state_init+0xf4/0x490
[ 482.778553][T12894] ? kasan_save_track+0x14/0x30
[ 482.778611][T12894] drm_atomic_state_alloc+0xd3/0x120
[ 482.778648][T12894] drm_client_modeset_commit_atomic+0xcc/0x7e0
[ 482.778693][T12894] ? trace_contention_end+0x140/0x180
[ 482.778742][T12894] ? __mutex_lock+0x26a/0x1b90
[ 482.778789][T12894] ? __mutex_lock+0x26a/0x1b90
[ 482.778831][T12894] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[ 482.778876][T12894] ? drm_master_internal_acquire+0x21/0x80
[ 482.778957][T12894] drm_client_modeset_commit_locked+0x14d/0x580
[ 482.779009][T12894] drm_client_modeset_commit+0x4f/0x80
[ 482.779053][T12894] __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[ 482.779102][T12894] drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[ 482.779153][T12894] drm_fbdev_client_restore+0x1b/0x30
[ 482.779210][T12894] ? __pfx_drm_fbdev_client_restore+0x10/0x10
[ 482.779265][T12894] drm_client_dev_restore+0x205/0x2a0
[ 482.779315][T12894] drm_release+0x2c6/0x360
[ 482.779354][T12894] ? __pfx_drm_release+0x10/0x10
[ 482.779392][T12894] __fput+0x3ff/0xb40
[ 482.779451][T12894] task_work_run+0x150/0x240
[ 482.779504][T12894] ? __pfx_task_work_run+0x10/0x10
[ 482.779567][T12894] exit_to_user_mode_loop+0x100/0x4a0
[ 482.779617][T12894] do_syscall_64+0x668/0xf80
[ 482.779657][T12894] ? clear_bhb_loop+0x40/0x90
[ 482.779701][T12894] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 482.779736][T12894] RIP: 0033:0x7fdcfb39c799
[ 482.779766][T12894] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 482.779799][T12894] RSP: 002b:00007fdcfc190028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 482.779831][T12894] RAX: 0000000000000000 RBX: 00007fdcfb615fa0 RCX: 00007fdcfb39c799
[ 482.779852][T12894] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[ 482.779872][T12894] RBP: 00007fdcfb432bd9 R08: 0000000000000000 R09: 0000000000000000
[ 482.779892][T12894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 482.779912][T12894] R13: 00007fdcfb616038 R14: 00007fdcfb615fa0 R15: 00007ffd3cca2ba8
[ 482.779958][T12894]
[ 484.981303][T12928] netlink: 334 bytes leftover after parsing attributes in process `syz.5.2524'.
[ 485.841360][T12943] netlink: 302 bytes leftover after parsing attributes in process `syz.5.2531'.
[ 487.172914][T12974] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2541'.
[ 487.930814][T12987] FAULT_INJECTION: forcing a failure.
[ 487.930814][T12987] name failslab, interval 1, probability 0, space 0, times 0
[ 487.943596][T12987] CPU: 1 UID: 0 PID: 12987 Comm: syz.5.2545 Tainted: G L syzkaller #0 PREEMPT(full)
[ 487.943651][T12987] Tainted: [L]=SOFTLOCKUP
[ 487.943664][T12987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 487.943684][T12987] Call Trace:
[ 487.943696][T12987]
[ 487.943710][T12987] dump_stack_lvl+0x100/0x190
[ 487.943769][T12987] should_fail_ex.cold+0x5/0xa
[ 487.943811][T12987] should_failslab+0xc2/0x120
[ 487.943847][T12987] __kmalloc_cache_noprof+0x7a/0x6f0
[ 487.943893][T12987] ? nci_hci_allocate+0x45/0x330
[ 487.944025][T12987] ? mutex_init_lockep+0x110/0x150
[ 487.944079][T12987] nci_hci_allocate+0x45/0x330
[ 487.944119][T12987] nci_allocate_device+0x26f/0x410
[ 487.944220][T12987] virtual_ncidev_open+0x6f/0x220
[ 487.944300][T12987] ? __pfx_virtual_ncidev_open+0x10/0x10
[ 487.944339][T12987] misc_open+0x26d/0x450
[ 487.944376][T12987] ? __pfx_misc_open+0x10/0x10
[ 487.944407][T12987] chrdev_open+0x234/0x6a0
[ 487.944450][T12987] ? __pfx_apparmor_file_open+0x10/0x10
[ 487.944503][T12987] ? __pfx_chrdev_open+0x10/0x10
[ 487.944541][T12987] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 487.944587][T12987] do_dentry_open+0x6d8/0x1660
[ 487.944621][T12987] ? __pfx_chrdev_open+0x10/0x10
[ 487.944667][T12987] vfs_open+0x82/0x3f0
[ 487.944715][T12987] path_openat+0x208c/0x31a0
[ 487.944765][T12987] ? __pfx_path_openat+0x10/0x10
[ 487.944816][T12987] do_file_open+0x20e/0x430
[ 487.944856][T12987] ? __pfx_do_file_open+0x10/0x10
[ 487.944923][T12987] ? alloc_fd+0x476/0x790
[ 487.944961][T12987] ? do_getname+0x191/0x390
[ 487.945010][T12987] do_sys_openat2+0x10d/0x1e0
[ 487.945055][T12987] ? __pfx_do_sys_openat2+0x10/0x10
[ 487.945112][T12987] __x64_sys_openat+0x12d/0x210
[ 487.945160][T12987] ? __pfx___x64_sys_openat+0x10/0x10
[ 487.945223][T12987] do_syscall_64+0x106/0xf80
[ 487.945263][T12987] ? clear_bhb_loop+0x40/0x90
[ 487.945305][T12987] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 487.945342][T12987] RIP: 0033:0x7fd1b8d9c799
[ 487.945369][T12987] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 487.945403][T12987] RSP: 002b:00007fd1b9bef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 487.945443][T12987] RAX: ffffffffffffffda RBX: 00007fd1b9015fa0 RCX: 00007fd1b8d9c799
[ 487.945465][T12987] RDX: 0000000000000002 RSI: 0000200000000040 RDI: ffffffffffffff9c
[ 487.945487][T12987] RBP: 00007fd1b8e32bd9 R08: 0000000000000000 R09: 0000000000000000
[ 487.945508][T12987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 487.945528][T12987] R13: 00007fd1b9016038 R14: 00007fd1b9015fa0 R15: 00007ffd65efdd08
[ 487.945573][T12987]
[ 488.736864][T13000] netlink: 326 bytes leftover after parsing attributes in process `syz.6.2552'.
[ 489.613181][ T51] Bluetooth: hci7: unexpected event 0x3e length: 726 > 260
[ 489.613219][ T51] Bluetooth: hci7: unexpected subevent 0x0e length: 725 > 15
[ 489.628517][ T51] Bluetooth: hci7: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[ 489.858918][T13020] netlink: 146 bytes leftover after parsing attributes in process `syz.6.2559'.
[ 490.311287][T13029] netlink: 110 bytes leftover after parsing attributes in process `syz.5.2564'.
[ 492.199793][T13066] netlink: 330 bytes leftover after parsing attributes in process `syz.5.2579'.
[ 492.876322][T13085] �: renamed from bond0 (while UP)
[ 493.594941][T13092] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size
[ 494.222162][T13114] mkiss: ax0: crc mode is auto.
[ 494.631983][T13127] FAULT_INJECTION: forcing a failure.
[ 494.631983][T13127] name failslab, interval 1, probability 0, space 0, times 0
[ 494.656475][T13127] CPU: 1 UID: 0 PID: 13127 Comm: syz.5.2603 Tainted: G L syzkaller #0 PREEMPT(full)
[ 494.656530][T13127] Tainted: [L]=SOFTLOCKUP
[ 494.656542][T13127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 494.656562][T13127] Call Trace:
[ 494.656572][T13127]
[ 494.656585][T13127] dump_stack_lvl+0x100/0x190
[ 494.656642][T13127] should_fail_ex.cold+0x5/0xa
[ 494.656683][T13127] ? tomoyo_realpath_from_path+0xb6/0x690
[ 494.656794][T13127] should_failslab+0xc2/0x120
[ 494.656830][T13127] __kmalloc_noprof+0xe0/0x850
[ 494.656891][T13127] tomoyo_realpath_from_path+0xb6/0x690
[ 494.656942][T13127] tomoyo_path_perm+0x276/0x460
[ 494.657058][T13127] ? tomoyo_path_perm+0x262/0x460
[ 494.657116][T13127] ? __pfx_tomoyo_path_perm+0x10/0x10
[ 494.657188][T13127] ? futex_wake+0x456/0x530
[ 494.657265][T13127] ? __fget_files+0x21f/0x3d0
[ 494.657306][T13127] security_inode_getattr+0x116/0x280
[ 494.657365][T13127] vfs_fstat+0x4b/0xe0
[ 494.657406][T13127] __do_sys_newfstat+0x8b/0x110
[ 494.657448][T13127] ? __pfx___do_sys_newfstat+0x10/0x10
[ 494.657527][T13127] do_syscall_64+0x106/0xf80
[ 494.657569][T13127] ? clear_bhb_loop+0x40/0x90
[ 494.657613][T13127] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 494.657646][T13127] RIP: 0033:0x7fd1b8d9c799
[ 494.657674][T13127] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 494.657708][T13127] RSP: 002b:00007fd1b9bef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000005
[ 494.657749][T13127] RAX: ffffffffffffffda RBX: 00007fd1b9015fa0 RCX: 00007fd1b8d9c799
[ 494.657771][T13127] RDX: 0000000000000000 RSI: 0000200000000340 RDI: 0000000000000004
[ 494.657792][T13127] RBP: 00007fd1b8e32bd9 R08: 0000000000000000 R09: 0000000000000000
[ 494.657813][T13127] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 494.657833][T13127] R13: 00007fd1b9016038 R14: 00007fd1b9015fa0 R15: 00007ffd65efdd08
[ 494.657878][T13127]
[ 494.657901][T13127] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 494.980317][T13134] netlink: 334 bytes leftover after parsing attributes in process `syz.5.2605'.
[ 495.279499][T13144] netlink: 338 bytes leftover after parsing attributes in process `syz.7.2611'.
[ 496.120681][T13173] netlink: 'syz.7.2623': attribute type 33 has an invalid length.
[ 496.132611][T13173] netlink: 322 bytes leftover after parsing attributes in process `syz.7.2623'.
[ 496.146236][T13173] netlink: 'syz.7.2623': attribute type 33 has an invalid length.
[ 496.154159][T13173] netlink: 322 bytes leftover after parsing attributes in process `syz.7.2623'.
[ 497.442861][T13210] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2637'.
[ 497.459408][T13210] netlink: 5 bytes leftover after parsing attributes in process `syz.7.2637'.
[ 497.472427][T13210] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2637'.
[ 497.662904][T13216] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2641'.
[ 499.547609][T13252] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2652'.
[ 500.165408][T13270] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 500.175351][T13270] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 500.191946][T13270] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 500.201888][T13270] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 500.225314][T13270] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 500.231554][T13270] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 500.239168][T13270] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 500.256678][T13270] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 501.181527][T13308] ERROR: Out of memory at tomoyo_memory_ok.
[ 501.336859][T13315] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2677'.
[ 501.697203][T13323] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 501.729522][T13325] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2681'.
[ 502.156005][ T51] Bluetooth: hci0: command 0x0406 tx timeout
[ 502.238425][ T51] Bluetooth: hci5: command 0x0c1a tx timeout
[ 502.243718][ T8425] Bluetooth: hci4: command 0x0c1a tx timeout
[ 502.244538][ T5836] Bluetooth: hci3: command 0x0406 tx timeout
[ 502.253319][ T5835] Bluetooth: hci2: command 0x0406 tx timeout
[ 502.256665][ T51] Bluetooth: hci1: command 0x0406 tx timeout
[ 502.315111][ T51] Bluetooth: hci7: command 0x041b tx timeout
[ 502.319206][T13338] netlink: 334 bytes leftover after parsing attributes in process `syz.4.2687'.
[ 502.321197][ T51] Bluetooth: hci6: command 0x0c1a tx timeout
[ 502.901340][ T31] audit: type=1800 audit(1773015235.170:6): pid=13355 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2693" name="dbroot" dev="configfs" ino=77412 res=0 errno=0
[ 502.930899][T13355] db_root: cannot open: 0
[ 503.252960][T13365] FAULT_INJECTION: forcing a failure.
[ 503.252960][T13365] name failslab, interval 1, probability 0, space 0, times 0
[ 503.270969][T13365] CPU: 1 UID: 0 PID: 13365 Comm: syz.5.2698 Tainted: G L syzkaller #0 PREEMPT(full)
[ 503.271025][T13365] Tainted: [L]=SOFTLOCKUP
[ 503.271038][T13365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 503.271058][T13365] Call Trace:
[ 503.271068][T13365]
[ 503.271081][T13365] dump_stack_lvl+0x100/0x190
[ 503.271139][T13365] should_fail_ex.cold+0x5/0xa
[ 503.271179][T13365] should_failslab+0xc2/0x120
[ 503.271214][T13365] __kmalloc_cache_noprof+0x7a/0x6f0
[ 503.271259][T13365] ? ring_buffer_read_start+0x149/0x460
[ 503.271320][T13365] ring_buffer_read_start+0x149/0x460
[ 503.271371][T13365] ? __pfx_ring_buffer_read_start+0x10/0x10
[ 503.271421][T13365] ? lockdep_init_map_type+0x5c/0x250
[ 503.271470][T13365] ? ring_buffer_overruns+0x14e/0x1a0
[ 503.271517][T13365] tracing_open+0x9cd/0xef0
[ 503.271564][T13365] do_dentry_open+0x6d8/0x1660
[ 503.271597][T13365] ? __pfx_tracing_open+0x10/0x10
[ 503.271648][T13365] vfs_open+0x82/0x3f0
[ 503.271696][T13365] path_openat+0x208c/0x31a0
[ 503.271746][T13365] ? __pfx_path_openat+0x10/0x10
[ 503.271798][T13365] do_file_open+0x20e/0x430
[ 503.271835][T13365] ? __pfx_do_file_open+0x10/0x10
[ 503.271910][T13365] ? alloc_fd+0x476/0x790
[ 503.271962][T13365] ? do_getname+0x191/0x390
[ 503.272009][T13365] do_sys_openat2+0x10d/0x1e0
[ 503.272054][T13365] ? __pfx_do_sys_openat2+0x10/0x10
[ 503.272102][T13365] ? __fget_files+0x21f/0x3d0
[ 503.272143][T13365] __x64_sys_openat+0x12d/0x210
[ 503.272190][T13365] ? __pfx___x64_sys_openat+0x10/0x10
[ 503.272253][T13365] do_syscall_64+0x106/0xf80
[ 503.272294][T13365] ? clear_bhb_loop+0x40/0x90
[ 503.272338][T13365] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 503.272372][T13365] RIP: 0033:0x7fd1b8d9c799
[ 503.272400][T13365] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 503.272435][T13365] RSP: 002b:00007fd1b9bef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 503.272468][T13365] RAX: ffffffffffffffda RBX: 00007fd1b9015fa0 RCX: 00007fd1b8d9c799
[ 503.272490][T13365] RDX: 1a6b75d638929210 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 503.272513][T13365] RBP: 00007fd1b8e32bd9 R08: 0000000000000000 R09: 0000000000000000
[ 503.272533][T13365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 503.272553][T13365] R13: 00007fd1b9016038 R14: 00007fd1b9015fa0 R15: 00007ffd65efdd08
[ 503.272598][T13365]
[ 504.292049][T13392] netlink: 334 bytes leftover after parsing attributes in process `syz.4.2707'.
[ 504.497261][T13394] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2708'.
[ 504.671418][T13396] netlink: 146 bytes leftover after parsing attributes in process `syz.5.2709'.
[ 505.042898][T13402] FAULT_INJECTION: forcing a failure.
[ 505.042898][T13402] name failslab, interval 1, probability 0, space 0, times 0
[ 505.070089][T13402] CPU: 1 UID: 0 PID: 13402 Comm: syz.5.2711 Tainted: G L syzkaller #0 PREEMPT(full)
[ 505.070145][T13402] Tainted: [L]=SOFTLOCKUP
[ 505.070158][T13402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 505.070178][T13402] Call Trace:
[ 505.070190][T13402]
[ 505.070202][T13402] dump_stack_lvl+0x100/0x190
[ 505.070273][T13402] should_fail_ex.cold+0x5/0xa
[ 505.070315][T13402] should_failslab+0xc2/0x120
[ 505.070352][T13402] __kmalloc_cache_noprof+0x7a/0x6f0
[ 505.070399][T13402] ? wakeup_source_device_create+0x46/0x2e0
[ 505.070469][T13402] wakeup_source_device_create+0x46/0x2e0
[ 505.070530][T13402] wakeup_source_sysfs_add+0x1c/0x90
[ 505.070588][T13402] wakeup_source_register+0x154/0x3e0
[ 505.070639][T13402] ep_create_wakeup_source+0x1df/0x2e0
[ 505.070700][T13402] ? __pfx_ep_create_wakeup_source+0x10/0x10
[ 505.070764][T13402] ? do_epoll_ctl+0x1012/0x36a0
[ 505.070798][T13402] ? do_epoll_ctl+0x1012/0x36a0
[ 505.070844][T13402] do_epoll_ctl+0x1eee/0x36a0
[ 505.070896][T13402] ? __pfx_do_epoll_ctl+0x10/0x10
[ 505.070931][T13402] ? find_held_lock+0x2b/0x80
[ 505.070964][T13402] ? __might_fault+0xc5/0x140
[ 505.071011][T13402] ? __might_fault+0xc5/0x140
[ 505.071075][T13402] ? __x64_sys_epoll_ctl+0x15c/0x1e0
[ 505.071111][T13402] __x64_sys_epoll_ctl+0x15c/0x1e0
[ 505.071150][T13402] ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[ 505.071200][T13402] do_syscall_64+0x106/0xf80
[ 505.071252][T13402] ? clear_bhb_loop+0x40/0x90
[ 505.071294][T13402] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 505.071328][T13402] RIP: 0033:0x7fd1b8d9c799
[ 505.071353][T13402] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 505.071386][T13402] RSP: 002b:00007fd1b9bef028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[ 505.071417][T13402] RAX: ffffffffffffffda RBX: 00007fd1b9015fa0 RCX: 00007fd1b8d9c799
[ 505.071439][T13402] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004
[ 505.071457][T13402] RBP: 00007fd1b8e32bd9 R08: 0000000000000000 R09: 0000000000000000
[ 505.071479][T13402] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 505.071498][T13402] R13: 00007fd1b9016038 R14: 00007fd1b9015fa0 R15: 00007ffd65efdd08
[ 505.071541][T13402]
[ 505.964357][T13414] syz.5.2716 (13414): /proc/13413/oom_adj is deprecated, please use /proc/13413/oom_score_adj instead.
[ 506.036921][ T5836] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 506.047711][ T5836] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 506.065228][ T5836] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 506.086087][ T5836] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 506.105199][ T5836] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 506.542123][T13422] netlink: 334 bytes leftover after parsing attributes in process `syz.4.2718'.
[ 506.700692][T13415] chnl_net:caif_netlink_parms(): no params data found
[ 506.973308][T13415] bridge0: port 1(bridge_slave_0) entered blocking state
[ 507.017444][T13415] bridge0: port 1(bridge_slave_0) entered disabled state
[ 507.024782][T13415] bridge_slave_0: entered allmulticast mode
[ 507.090261][T13415] bridge_slave_0: entered promiscuous mode
[ 507.114926][T13415] bridge0: port 2(bridge_slave_1) entered blocking state
[ 507.133383][T13415] bridge0: port 2(bridge_slave_1) entered disabled state
[ 507.151293][T13415] bridge_slave_1: entered allmulticast mode
[ 507.169837][T13415] bridge_slave_1: entered promiscuous mode
[ 507.262490][T13415] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 507.301011][T13415] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 507.361057][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 507.367480][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 507.433017][T13415] team0: Port device team_slave_0 added
[ 507.454023][T13415] team0: Port device team_slave_1 added
[ 507.542116][T13415] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 507.555016][T13415] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 507.625089][T13415] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 507.653395][T13415] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 507.685054][T13415] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 507.742833][T13415] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 507.883942][T13415] hsr_slave_0: entered promiscuous mode
[ 507.897522][T13415] hsr_slave_1: entered promiscuous mode
[ 507.907472][T13415] debugfs: 'hsr0' already exists in 'hsr'
[ 507.919020][T13415] Cannot create hsr debugfs directory
[ 508.157056][ T51] Bluetooth: hci8: command tx timeout
[ 508.366391][T13455] netlink: 'syz.4.2728': attribute type 1 has an invalid length.
[ 508.374798][T13455] netlink: 318 bytes leftover after parsing attributes in process `syz.4.2728'.
[ 508.509245][T13415] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 508.558957][T13415] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 508.613172][T13415] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 508.627522][T13457] ERROR: Out of memory at tomoyo_memory_ok.
[ 508.635788][T13459] netlink: 334 bytes leftover after parsing attributes in process `syz.5.2729'.
[ 508.657172][T13457] ERROR: Domain ' /sbin/init /etc/init.d/rcS /etc/init.d/S50sshd /sbin/start-stop-daemon /usr/sbin/sshd /usr/libexec/sshd-session /bin/sh /root/syz-executor /root/syz-executor /newroot/248/file0' not defined.
[ 508.657484][T13415] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 509.030959][T13415] 8021q: adding VLAN 0 to HW filter on device bond0
[ 509.074915][T13463] capability: warning: `syz.4.2731' uses 32-bit capabilities (legacy support in use)
[ 509.108662][T13415] 8021q: adding VLAN 0 to HW filter on device team0
[ 509.128066][ T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 509.135295][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 509.213373][T12029] bridge0: port 2(bridge_slave_1) entered blocking state
[ 509.220590][T12029] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 510.061427][T13415] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 510.235905][ T51] Bluetooth: hci8: command tx timeout
[ 510.617996][T13502] FAULT_INJECTION: forcing a failure.
[ 510.617996][T13502] name failslab, interval 1, probability 0, space 0, times 0
[ 510.695227][T13502] CPU: 0 UID: 0 PID: 13502 Comm: syz.7.2739 Tainted: G L syzkaller #0 PREEMPT(full)
[ 510.695281][T13502] Tainted: [L]=SOFTLOCKUP
[ 510.695293][T13502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 510.695313][T13502] Call Trace:
[ 510.695323][T13502]
[ 510.695336][T13502] dump_stack_lvl+0x100/0x190
[ 510.695393][T13502] should_fail_ex.cold+0x5/0xa
[ 510.695434][T13502] should_failslab+0xc2/0x120
[ 510.695469][T13502] kmem_cache_alloc_lru_noprof+0x80/0x6e0
[ 510.695523][T13502] ? __d_alloc+0x34/0xa80
[ 510.695570][T13502] __d_alloc+0x34/0xa80
[ 510.695623][T13502] d_alloc_pseudo+0x1c/0xc0
[ 510.695671][T13502] alloc_file_pseudo+0xcf/0x230
[ 510.695716][T13502] ? __pfx_alloc_file_pseudo+0x10/0x10
[ 510.695763][T13502] ? _raw_spin_unlock+0x28/0x50
[ 510.695878][T13502] ? alloc_fd+0x476/0x790
[ 510.695914][T13502] __anon_inode_getfile+0xe8/0x280
[ 510.695960][T13502] __anon_inode_getfd+0x5c/0xe0
[ 510.696005][T13502] __x64_sys_fsopen+0x190/0x220
[ 510.696053][T13502] do_syscall_64+0x106/0xf80
[ 510.696094][T13502] ? clear_bhb_loop+0x40/0x90
[ 510.696136][T13502] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 510.696172][T13502] RIP: 0033:0x7fb927b9c799
[ 510.696200][T13502] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 510.696234][T13502] RSP: 002b:00007fb928ae9028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae
[ 510.696266][T13502] RAX: ffffffffffffffda RBX: 00007fb927e16090 RCX: 00007fb927b9c799
[ 510.696289][T13502] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 510.696309][T13502] RBP: 00007fb927c32bd9 R08: 0000000000000000 R09: 0000000000000000
[ 510.696329][T13502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 510.696349][T13502] R13: 00007fb927e16128 R14: 00007fb927e16090 R15: 00007ffebb70ab68
[ 510.696393][T13502]
[ 510.980470][T13505] Console: switching to colour VGA+ 80x25
[ 511.196742][ T32] INFO: task syz.1.1763:10774 blocked for more than 143 seconds.
[ 511.196781][ T32] Tainted: G L syzkaller #0
[ 511.196803][ T32] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 511.196818][ T32] task:syz.1.1763 state:D stack:27464 pid:10774 tgid:10771 ppid:5833 task_flags:0x400140 flags:0x00080002
[ 511.196937][ T32] Call Trace:
[ 511.196985][ T32]
[ 511.197005][ T32] __schedule+0xfee/0x6120
[ 511.197050][ T32] ? __lock_acquire+0x4a5/0x2630
[ 511.197115][ T32] ? __pfx___schedule+0x10/0x10
[ 511.197151][ T32] ? find_held_lock+0x2b/0x80
[ 511.197185][ T32] ? schedule+0x2bf/0x390
[ 511.197228][ T32] schedule+0xdd/0x390
[ 511.197265][ T32] schedule_preempt_disabled+0x13/0x30
[ 511.197304][ T32] __mutex_lock+0xc9a/0x1b90
[ 511.197353][ T32] ? nfsd_nl_version_set_doit+0xc4/0x7a0
[ 511.197434][ T32] ? __pfx___mutex_lock+0x10/0x10
[ 511.197494][ T32] ? __pfx___nla_validate_parse+0x10/0x10
[ 511.197620][ T32] ? nfsd_nl_version_set_doit+0xc4/0x7a0
[ 511.197655][ T32] nfsd_nl_version_set_doit+0xc4/0x7a0
[ 511.197695][ T32] ? __pfx_nfsd_nl_version_set_doit+0x10/0x10
[ 511.197739][ T32] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280
[ 511.197798][ T32] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280
[ 511.197861][ T32] genl_family_rcv_msg_doit+0x214/0x300
[ 511.197917][ T32] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 511.197970][ T32] ? genl_get_cmd+0x3ef/0x720
[ 511.198031][ T32] ? bpf_lsm_capable+0x9/0x10
[ 511.198077][ T32] ? security_capable+0x80/0x260
[ 511.198134][ T32] genl_rcv_msg+0x560/0x800
[ 511.198193][ T32] ? __pfx_genl_rcv_msg+0x10/0x10
[ 511.198246][ T32] ? __pfx_nfsd_nl_version_set_doit+0x10/0x10
[ 511.198301][ T32] netlink_rcv_skb+0x159/0x420
[ 511.198348][ T32] ? __pfx_genl_rcv_msg+0x10/0x10
[ 511.198402][ T32] ? __pfx_netlink_rcv_skb+0x10/0x10
[ 511.198467][ T32] ? netlink_deliver_tap+0x1ae/0xcc0
[ 511.198519][ T32] genl_rcv+0x28/0x40
[ 511.198565][ T32] netlink_unicast+0x5aa/0x870
[ 511.198626][ T32] ? __pfx_netlink_unicast+0x10/0x10
[ 511.198671][ T32] ? __pfx___might_resched+0x10/0x10
[ 511.198720][ T32] ? __lock_acquire+0x4a5/0x2630
[ 511.198774][ T32] netlink_sendmsg+0x8b0/0xda0
[ 511.198828][ T32] ? __pfx_netlink_sendmsg+0x10/0x10
[ 511.198871][ T32] ? __import_iovec+0x1d2/0x640
[ 511.198946][ T32] ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 511.199002][ T32] ____sys_sendmsg+0x9e1/0xb70
[ 511.199052][ T32] ? __pfx_netlink_sendmsg+0x10/0x10
[ 511.199102][ T32] ? __pfx_____sys_sendmsg+0x10/0x10
[ 511.199160][ T32] ? try_to_wake_up+0x644/0x1a80
[ 511.199205][ T32] ___sys_sendmsg+0x190/0x1e0
[ 511.199262][ T32] ? __pfx____sys_sendmsg+0x10/0x10
[ 511.199314][ T32] ? futex_private_hash_put+0x107/0x1c0
[ 511.199406][ T32] __sys_sendmsg+0x170/0x220
[ 511.199453][ T32] ? __pfx___sys_sendmsg+0x10/0x10
[ 511.199494][ T32] ? __x64_sys_futex+0x34f/0x4d0
[ 511.199564][ T32] do_syscall_64+0x106/0xf80
[ 511.199606][ T32] ? clear_bhb_loop+0x40/0x90
[ 511.199657][ T32] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 511.199695][ T32] RIP: 0033:0x7f1a81d9c799
[ 511.199723][ T32] RSP: 002b:00007f1a82ca6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 511.199758][ T32] RAX: ffffffffffffffda RBX: 00007f1a82016090 RCX: 00007f1a81d9c799
[ 511.199782][ T32] RDX: 0000000000000844 RSI: 00002000000004c0 RDI: 0000000000000004
[ 511.199805][ T32] RBP: 00007f1a81e32bd9 R08: 0000000000000000 R09: 0000000000000000
[ 511.199828][ T32] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 511.199850][ T32] R13: 00007f1a82016128 R14: 00007f1a82016090 R15: 00007ffea4260278
[ 511.199897][ T32]
[ 511.199950][ T32]
[ 511.199950][ T32] Showing all locks held in the system:
[ 511.199970][ T32] 3 locks held by kworker/1:0/25:
[ 511.199991][ T32] #0: ffff88813fe63148 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x1287/0x1920
[ 511.200096][ T32] #1: ffffc900001f7d08 ((work_completion)(&data->fib_event_work)){+.+.}-{0:0}, at: process_one_work+0x93c/0x1920
[ 511.200201][ T32] #2: ffff88807c871240 (&data->fib_lock){+.+.}-{4:4}, at: nsim_fib_event_work+0x1b8/0x63b0
[ 511.200385][ T32] 1 lock held by khungtaskd/32:
[ 511.200406][ T32] #0: ffffffff8e7e7420 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x3d/0x184
[ 511.200531][ T32] 1 lock held by udevd/5194:
[ 511.200552][ T32] 2 locks held by getty/5585:
[ 511.200571][ T32] #0: ffff888038c5a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[ 511.200703][ T32] #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x419/0x1500
[ 511.200831][ T32] 2 locks held by syz-executor/5828:
[ 511.200850][ T32] #0: ffff88802f10a0e0 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[ 511.200960][ T32] #1: ffffffff8ec57888 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 511.201061][ T32] 2 locks held by syz-executor/5831:
[ 511.201080][ T32] #0: ffff88804f7c40e0 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[ 511.201187][ T32] #1: ffffffff8ec57888 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 511.201289][ T32] 2 locks held by syz-executor/5837:
[ 511.201309][ T32] #0: ffff88807db460e0 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[ 511.201424][ T32] #1: ffffffff8ec57888 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 511.201529][ T32] 3 locks held by kworker/1:5/5946:
[ 511.201549][ T32] #0: ffff88813fe63148 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x1287/0x1920
[ 511.201659][ T32] #1: ffffc90004927d08 ((work_completion)(&helper->damage_work)){+.+.}-{0:0}, at: process_one_work+0x93c/0x1920
[ 511.201763][ T32] #2: ffff888026fb1a80 (&helper->lock){+.+.}-{4:4}, at: drm_fb_helper_damage_work+0x159/0x640
[ 511.201872][ T32] 2 locks held by syz.1.1763/10772:
[ 511.201893][ T32] #0: ffffffff906bf7d0 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[ 511.201992][ T32] #1: ffffffff8ec57888 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0xd5/0x1a80
[ 511.202081][ T32] 2 locks held by syz.1.1763/10774:
[ 511.202101][ T32] #0: ffffffff906bf7d0 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[ 511.202199][ T32] #1: ffffffff8ec57888 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_version_set_doit+0xc4/0x7a0
[ 511.202288][ T32] 8 locks held by syz-executor/11411:
[ 511.202309][ T32] 2 locks held by syz-executor/12001:
[ 511.202329][ T32] #0: ffff8880266b80e0 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[ 511.202437][ T32] #1: ffffffff8ec57888 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 511.202539][ T32] 2 locks held by kworker/u8:0/12029:
[ 511.202559][ T32] #0: ffff88813fea4948 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x1287/0x1920
[ 511.209570][ T32] #1: ffffc90004e5fd08 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x93c/0x1920
[ 511.209693][ T32] 7 locks held by syz-executor/12114:
[ 511.209716][ T32] 2 locks held by syz.7.2723/13441:
[ 511.209738][ T32] 3 locks held by syz.4.2736/13485:
[ 511.209759][ T32] 5 locks held by syz.4.2740/13505:
[ 511.209779][ T32] 2 locks held by modprobe/13506:
[ 511.209800][ T32]
[ 511.209809][ T32] =============================================
[ 511.209809][ T32]
[ 511.209833][ T32] NMI backtrace for cpu 0
[ 511.209856][ T32] CPU: 0 UID: 0 PID: 32 Comm: khungtaskd Tainted: G L syzkaller #0 PREEMPT(full)
[ 511.209898][ T32] Tainted: [L]=SOFTLOCKUP
[ 511.209908][ T32] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 511.209927][ T32] Call Trace:
[ 511.209937][ T32]
[ 511.209948][ T32] dump_stack_lvl+0x100/0x190
[ 511.209995][ T32] nmi_cpu_backtrace.cold+0x12d/0x151
[ 511.210048][ T32] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 511.210095][ T32] nmi_trigger_cpumask_backtrace+0x1d7/0x230
[ 511.210234][ T32] sys_info+0x141/0x190
[ 511.210280][ T32] watchdog+0xd25/0x1050
[ 511.210323][ T32] ? __pfx_watchdog+0x10/0x10
[ 511.210354][ T32] ? __kthread_parkme+0x18c/0x230
[ 511.210394][ T32] ? kthread+0x13a/0x450
[ 511.210432][ T32] ? __pfx_watchdog+0x10/0x10
[ 511.210458][ T32] kthread+0x370/0x450
[ 511.210499][ T32] ? __pfx_kthread+0x10/0x10
[ 511.210543][ T32] ret_from_fork+0x754/0xd80
[ 511.210594][ T32] ? __pfx_ret_from_fork+0x10/0x10
[ 511.210652][ T32] ? __switch_to+0x7b4/0x1120
[ 511.210687][ T32] ? __pfx_kthread+0x10/0x10
[ 511.210731][ T32] ret_from_fork_asm+0x1a/0x30
[ 511.210785][ T32]
[ 511.210796][ T32] Sending NMI from CPU 0 to CPUs 1:
[ 511.210836][ C1] NMI backtrace for cpu 1
[ 511.210855][ C1] CPU: 1 UID: 0 PID: 12114 Comm: syz-executor Tainted: G L syzkaller #0 PREEMPT(full)
[ 511.210891][ C1] Tainted: [L]=SOFTLOCKUP
[ 511.210900][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 511.210915][ C1] RIP: 0010:__nr_to_section+0x4d/0xe0
[ 511.210958][ C1] Code: 9b 48 ba 00 00 00 00 00 fc ff df 48 c1 e8 03 80 3c 10 00 0f 85 87 00 00 00 4c 8b 25 2d 6b 9e 18 4d 85 e4 74 68 e8 03 ae 87 ff <49> 8d 2c ec 48 b8 00 00 00 00 00 fc ff df 48 89 ea 48 c1 ea 03 80
[ 511.210983][ C1] RSP: 0018:ffffc900048c7460 EFLAGS: 00000293
[ 511.211003][ C1] RAX: 0000000000000000 RBX: 0000000000000008 RCX: ffffffff82806893
[ 511.211019][ C1] RDX: ffff888029d21e80 RSI: ffffffff8280683d RDI: ffff888029d21e80
[ 511.211036][ C1] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000fff
[ 511.211051][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88823ffe3000
[ 511.211067][ C1] R13: 0000000000000001 R14: dffffc0000000000 R15: 0000000000000000
[ 511.211083][ C1] FS: 000055555af03500(0000) GS:ffff88812444d000(0000) knlGS:0000000000000000
[ 511.211117][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 511.211134][ C1] CR2: 00007fd1b9b456b8 CR3: 000000001297a000 CR4: 00000000003526f0
[ 511.211151][ C1] Call Trace:
[ 511.211158][ C1]
[ 511.211168][ C1] page_table_check_set+0x3b/0xa10
[ 511.211214][ C1] __page_table_check_ptes_set+0x27a/0x4e0
[ 511.211240][ C1] ? __pfx___page_table_check_ptes_set+0x10/0x10
[ 511.211265][ C1] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 511.211308][ C1] copy_page_range+0x2676/0x6570
[ 511.211363][ C1] ? __pfx_copy_page_range+0x10/0x10
[ 511.211402][ C1] ? __pfx___might_resched+0x10/0x10
[ 511.211446][ C1] ? up_write+0x290/0x4f0
[ 511.211484][ C1] dup_mmap+0xd25/0x2180
[ 511.211519][ C1] ? __pfx_dup_mmap+0x10/0x10
[ 511.211547][ C1] ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 511.211579][ C1] ? __lock_acquire+0x4a5/0x2630
[ 511.211611][ C1] ? find_held_lock+0x2b/0x80
[ 511.211634][ C1] ? __percpu_counter_init_many+0x2bc/0x3b0
[ 511.211728][ C1] copy_process+0x73d7/0x7a10
[ 511.211767][ C1] ? __pfx_copy_process+0x10/0x10
[ 511.211795][ C1] ? do_raw_spin_lock+0x128/0x260
[ 511.211839][ C1] kernel_clone+0xfc/0x9a0
[ 511.211868][ C1] ? __pfx_kernel_clone+0x10/0x10
[ 511.211896][ C1] ? __lock_acquire+0x4a5/0x2630
[ 511.211932][ C1] ? find_held_lock+0x2b/0x80
[ 511.211954][ C1] ? __might_fault+0xc5/0x140
[ 511.211991][ C1] __do_sys_clone+0xd9/0x120
[ 511.212020][ C1] ? __pfx___do_sys_clone+0x10/0x10
[ 511.212065][ C1] do_syscall_64+0x106/0xf80
[ 511.212094][ C1] ? clear_bhb_loop+0x40/0x90
[ 511.212130][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 511.212156][ C1] RIP: 0033:0x7fb927bc5212
[ 511.212175][ C1] Code: 89 e7 e8 71 8b f7 ff 45 31 c0 31 d2 31 f6 64 48 8b 04 25 10 00 00 00 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 89 c5 85 c0 75 3b 64 48 8b 04 25 10 00 00
[ 511.212200][ C1] RSP: 002b:00007ffebb70ad80 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 511.212223][ C1] RAX: ffffffffffffffda RBX: 00007ffebb70ad80 RCX: 00007fb927bc5212
[ 511.212240][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 511.212256][ C1] RBP: 00007ffebb70af0c R08: 0000000000000000 R09: 0000000000000001
[ 511.212271][ C1] R10: 000055555af037d0 R11: 0000000000000246 R12: 0000000000000001
[ 511.212287][ C1] R13: 00000000000927c0 R14: 000000000007ca60 R15: 00007ffebb70af60
[ 511.212313][ C1]
[ 511.212841][ T32] Kernel panic - not syncing: hung_task: blocked tasks
[ 511.212866][ T32] CPU: 0 UID: 0 PID: 32 Comm: khungtaskd Tainted: G L syzkaller #0 PREEMPT(full)
[ 511.212911][ T32] Tainted: [L]=SOFTLOCKUP
[ 511.212924][ T32] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 511.212944][ T32] Call Trace:
[ 511.212955][ T32]
[ 511.212968][ T32] dump_stack_lvl+0x100/0x190
[ 511.213018][ T32] vpanic+0x552/0x970
[ 511.213050][ T32] ? __pfx_vpanic+0x10/0x10
[ 511.213083][ T32] ? nmi_trigger_cpumask_backtrace+0x182/0x230
[ 511.213137][ T32] ? rcu_is_watching+0x12/0xc0
[ 511.213194][ T32] panic+0xd1/0xe0
[ 511.213225][ T32] ? __pfx_panic+0x10/0x10
[ 511.213261][ T32] ? wq_watchdog_touch+0xec/0x1a0
[ 511.213304][ T32] ? nmi_trigger_cpumask_backtrace+0x1be/0x230
[ 511.213357][ T32] ? watchdog.cold+0x198/0x1ca
[ 511.213393][ T32] ? watchdog+0xd35/0x1050
[ 511.213427][ T32] watchdog.cold+0x1a9/0x1ca
[ 511.213476][ T32] ? __pfx_watchdog+0x10/0x10
[ 511.213508][ T32] ? __kthread_parkme+0x18c/0x230
[ 511.213567][ T32] ? kthread+0x13a/0x450
[ 511.213606][ T32] ? __pfx_watchdog+0x10/0x10
[ 511.213645][ T32] kthread+0x370/0x450
[ 511.213686][ T32] ? __pfx_kthread+0x10/0x10
[ 511.213731][ T32] ret_from_fork+0x754/0xd80
[ 511.213782][ T32] ? __pfx_ret_from_fork+0x10/0x10
[ 511.213835][ T32] ? __switch_to+0x7b4/0x1120
[ 511.213871][ T32] ? __pfx_kthread+0x10/0x10
[ 511.213917][ T32] ret_from_fork_asm+0x1a/0x30
[ 511.213972][ T32]
[ 511.214554][ T32] Kernel Offset: disabled