last executing test programs: 478.694822ms ago: executing program 2 (id=149): openat(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/checkreqprot', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/checkreqprot', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/checkreqprot', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/selinux/checkreqprot', 0x800, 0x0) 468.559852ms ago: executing program 2 (id=151): openat(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/status', 0x0, 0x0) 403.539435ms ago: executing program 2 (id=156): chdir(&(0x7f0000000000)) 350.352745ms ago: executing program 2 (id=159): socket$inet_udplite(0x2, 0x2, 0x88) 163.673892ms ago: executing program 1 (id=173): munmap(0x0, 0x0) 163.54361ms ago: executing program 3 (id=174): openat(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/sync/info', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/sync/info', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/sync/info', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/sync/info', 0x800, 0x0) 163.33279ms ago: executing program 0 (id=175): shmdt(0x0) 163.251831ms ago: executing program 1 (id=176): mq_notify(0xffffffffffffffff, &(0x7f0000000000)) 163.134027ms ago: executing program 3 (id=177): socket$qrtr(0x2a, 0x2, 0x0) 155.266532ms ago: executing program 0 (id=178): socket$kcm(0x29, 0x2, 0x0) 136.368231ms ago: executing program 1 (id=179): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vtpmx', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vtpmx', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vtpmx', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vtpmx', 0x800, 0x0) 79.678107ms ago: executing program 3 (id=180): eventfd(0x0) 79.533076ms ago: executing program 0 (id=181): io_getevents(0x0, 0x0, 0x0, &(0x7f0000000000), 0x0) 79.442325ms ago: executing program 1 (id=182): mq_unlink(&(0x7f0000000000)) 79.404966ms ago: executing program 0 (id=183): waitid(0x0, 0x0, 0x0, 0x0, 0x0) 79.200726ms ago: executing program 3 (id=184): socket$l2tp(0x2, 0x2, 0x73) 75.976352ms ago: executing program 2 (id=185): uselib(0x0) 64.185062ms ago: executing program 1 (id=186): socket$inet6(0xa, 0x1, 0x0) 11.686991ms ago: executing program 0 (id=187): syz_open_dev$midi(&(0x7f0000000040), 0x0, 0x0) syz_open_dev$midi(&(0x7f0000000080), 0x0, 0x1) syz_open_dev$midi(&(0x7f00000000c0), 0x0, 0x2) syz_open_dev$midi(&(0x7f0000000100), 0x0, 0x800) syz_open_dev$midi(&(0x7f0000000140), 0x1, 0x0) syz_open_dev$midi(&(0x7f0000000180), 0x1, 0x1) syz_open_dev$midi(&(0x7f00000001c0), 0x1, 0x2) syz_open_dev$midi(&(0x7f0000000200), 0x1, 0x800) syz_open_dev$midi(&(0x7f0000000240), 0x2, 0x0) syz_open_dev$midi(&(0x7f0000000280), 0x2, 0x1) syz_open_dev$midi(&(0x7f00000002c0), 0x2, 0x2) syz_open_dev$midi(&(0x7f0000000300), 0x2, 0x800) syz_open_dev$midi(&(0x7f0000000340), 0x3, 0x0) syz_open_dev$midi(&(0x7f0000000380), 0x3, 0x1) syz_open_dev$midi(&(0x7f00000003c0), 0x3, 0x2) syz_open_dev$midi(&(0x7f0000000400), 0x3, 0x800) syz_open_dev$midi(&(0x7f0000000440), 0x4, 0x0) syz_open_dev$midi(&(0x7f0000000480), 0x4, 0x1) syz_open_dev$midi(&(0x7f00000004c0), 0x4, 0x2) syz_open_dev$midi(&(0x7f0000000500), 0x4, 0x800) 11.529899ms ago: executing program 3 (id=188): openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/pfkey', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey', 0x800, 0x0) 11.471473ms ago: executing program 2 (id=189): socket$inet_dccp(0x2, 0x6, 0x0) 11.343277ms ago: executing program 1 (id=190): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse', 0x2, 0x0) 8.897749ms ago: executing program 3 (id=191): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm', 0x800, 0x0) 0s ago: executing program 0 (id=192): sched_getattr(0x0, &(0x7f0000000000), 0x0, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.177' (ED25519) to the list of known hosts. [ 65.554984][ T5827] cgroup: Unknown subsys name 'net' [ 65.642807][ T5827] cgroup: Unknown subsys name 'cpuset' [ 65.652276][ T5827] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 67.075323][ T5827] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 71.513183][ T1316] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.520259][ T1316] ieee802154 phy1 wpan1: encryption failed: -22 [ 78.845111][ T6050] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000046: 0000 [#1] SMP KASAN PTI [ 78.857571][ T6050] KASAN: null-ptr-deref in range [0x0000000000000230-0x0000000000000237] [ 78.867241][ T6050] CPU: 1 UID: 0 PID: 6050 Comm: syz.1.190 Not tainted syzkaller #0 PREEMPT(full) [ 78.876786][ T6050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 78.887095][ T6050] RIP: 0010:fuse_dev_alloc_install+0x39/0x80 [ 78.893557][ T6050] Code: e8 bc f8 ff ff 48 89 c3 48 85 c0 74 47 e8 1f 8f 7f fe 49 8d be 30 02 00 00 48 89 f8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 74 05 e8 ac b7 e9 fe 49 8b 96 30 02 00 00 49 c7 86 30 [ 78.913950][ T6050] RSP: 0018:ffffc90004737710 EFLAGS: 00010202 [ 78.920118][ T6050] RAX: 0000000000000046 RBX: ffff888023792600 RCX: dffffc0000000000 [ 78.928578][ T6050] RDX: 0000000000000000 RSI: ffffffff8e316c42 RDI: 0000000000000230 [ 78.937253][ T6050] RBP: ffff888029201890 R08: ffffffff9074e1f7 R09: 1ffffffff20e9c3e [ 78.945581][ T6050] R10: dffffc0000000000 R11: fffffbfff20e9c3f R12: ffff88802a6ed040 [ 78.953912][ T6050] R13: ffff88802a6ed010 R14: 0000000000000000 R15: ffff88802a6ed000 [ 78.962216][ T6050] FS: 0000555569d2f500(0000) GS:ffff888124edc000(0000) knlGS:0000000000000000 [ 78.971753][ T6050] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 78.978678][ T6050] CR2: 000055558396d8c8 CR3: 0000000078912000 CR4: 00000000003526f0 [ 78.987255][ T6050] Call Trace: [ 78.990709][ T6050] [ 78.993718][ T6050] cuse_channel_open+0x107/0x7c0 [ 78.999136][ T6050] ? __pfx_cuse_channel_open+0x10/0x10 [ 79.004840][ T6050] misc_open+0x2d5/0x350 [ 79.009252][ T6050] chrdev_open+0x4cd/0x5e0 [ 79.014003][ T6050] ? __pfx_chrdev_open+0x10/0x10 [ 79.019015][ T6050] ? fsnotify_open_perm_and_set_mode+0x135/0x6d0 [ 79.025466][ T6050] ? __pfx_chrdev_open+0x10/0x10 [ 79.030397][ T6050] do_dentry_open+0x785/0x14e0 [ 79.035337][ T6050] vfs_open+0x3b/0x340 [ 79.039485][ T6050] ? path_openat+0x2df0/0x3860 [ 79.044235][ T6050] path_openat+0x2e08/0x3860 [ 79.048811][ T6050] ? __pfx_stack_trace_save+0x10/0x10 [ 79.054350][ T6050] ? stack_depot_save_flags+0x33/0x810 [ 79.059898][ T6050] ? __pfx_path_openat+0x10/0x10 [ 79.065128][ T6050] ? __x64_sys_openat+0x138/0x170 [ 79.070229][ T6050] ? __lock_acquire+0x6b5/0x2cf0 [ 79.075243][ T6050] do_file_open+0x23e/0x4a0 [ 79.079994][ T6050] ? __pfx_do_file_open+0x10/0x10 [ 79.085098][ T6050] ? _raw_spin_unlock+0x28/0x50 [ 79.090111][ T6050] ? alloc_fd+0x64b/0x6c0 [ 79.094621][ T6050] do_sys_openat2+0x113/0x200 [ 79.099310][ T6050] ? __pfx_do_sys_openat2+0x10/0x10 [ 79.104745][ T6050] __x64_sys_openat+0x138/0x170 [ 79.109764][ T6050] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 79.116005][ T6050] do_syscall_64+0x15f/0xf80 [ 79.120597][ T6050] ? trace_irq_disable+0x3b/0x140 [ 79.125718][ T6050] ? clear_bhb_loop+0x40/0x90 [ 79.130564][ T6050] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 79.136530][ T6050] RIP: 0033:0x7f1f01d9c819 [ 79.141044][ T6050] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 79.160910][ T6050] RSP: 002b:00007ffd2b3a4a18 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 79.169491][ T6050] RAX: ffffffffffffffda RBX: 00007f1f02015fa0 RCX: 00007f1f01d9c819 [ 79.177802][ T6050] RDX: 0000000000000002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 79.185786][ T6050] RBP: 00007f1f01e32c91 R08: 0000000000000000 R09: 0000000000000000 [ 79.193935][ T6050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 79.202076][ T6050] R13: 00007f1f02015fac R14: 00007f1f02015fa0 R15: 00007f1f02015fa0 [ 79.210227][ T6050] [ 79.213236][ T6050] Modules linked in: [ 79.217975][ T6050] ---[ end trace 0000000000000000 ]--- SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 79.593202][ T6050] RIP: 0010:fuse_dev_alloc_install+0x39/0x80 [ 79.610551][ T6050] Code: e8 bc f8 ff ff 48 89 c3 48 85 c0 74 47 e8 1f 8f 7f fe 49 8d be 30 02 00 00 48 89 f8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 74 05 e8 ac b7 e9 fe 49 8b 96 30 02 00 00 49 c7 86 30 [ 79.663763][ T6050] RSP: 0018:ffffc90004737710 EFLAGS: 00010202 [ 79.677483][ T6050] RAX: 0000000000000046 RBX: ffff888023792600 RCX: dffffc0000000000 [ 79.708405][ T6050] RDX: 0000000000000000 RSI: ffffffff8e316c42 RDI: 0000000000000230 [ 79.717208][ T6050] RBP: ffff888029201890 R08: ffffffff9074e1f7 R09: 1ffffffff20e9c3e [ 79.730362][ T6050] R10: dffffc0000000000 R11: fffffbfff20e9c3f R12: ffff88802a6ed040 [ 79.740797][ T6050] R13: ffff88802a6ed010 R14: 0000000000000000 R15: ffff88802a6ed000 [ 79.748894][ T6050] FS: 0000555569d2f500(0000) GS:ffff888124edc000(0000) knlGS:0000000000000000 [ 79.758288][ T6050] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 79.765307][ T6050] CR2: 0000560f9636af20 CR3: 0000000078912000 CR4: 00000000003526f0 [ 79.774235][ T6050] Kernel panic - not syncing: Fatal exception [ 79.780984][ T6050] Kernel Offset: disabled [ 79.785312][ T6050] Rebooting in 86400 seconds..