last executing test programs: 1m57.647336734s ago: executing program 0 (id=8785): mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) waitid$auto(0x8, 0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000180)={{0xfffffffffffffff7, 0x7fffffff}, {0x4, 0xb9b3}, 0x4, 0x5, 0x1, 0x3, 0x0, 0xc7, 0x80000000, 0x7, 0xb7, 0x5d9, 0x7, 0x7ff, 0x2055}) r0 = getpid() process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0) ioctl$auto(0x3, 0xc0585605, 0x38) 1m57.441357874s ago: executing program 0 (id=8787): sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xffffffffffffffff, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x3, 0x3a) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffff}, 0x1, 0x0, 0x0, 0x9}, 0x100007}, 0x3, 0x0) 1m57.284673615s ago: executing program 0 (id=8791): mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) write$auto_nsim_pp_hold_fops_netdev(0xffffffffffffffff, &(0x7f0000000040)="c86933a7ea8c66e3759f8521571edbcd5939d73036bdf1c974d78158921b84443083815accf4c2bab128bbdc82dea2cb06b53df1eeef7dc6f25108d1a9ead325e06e3ea067830bf1fcda", 0x4a) r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r1 = getpid() process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000040)="8c9700089d1b208365d5b5d112dbab029ed13881d2f2c7ba2eb01c3db79f77fdc2bb50c64a925009dff4cd1aca925c57100112d88f73348a54396800ed598a0e5500d7c0cbb6b1e91d", 0x40000000001243}, 0x4, 0x0) ioctl$auto(r0, 0x400454ca, 0x38) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0xfffffffffffffffd, 0xb, 0xa, 0x40007fff, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x5e, 0x80000001, 0x7, 0x2, 0x93, 0x400000001, 0x2]}, 0x0) writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3) 1m56.975498318s ago: executing program 0 (id=8793): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) mkdir$auto(0x0, 0x353) 1m56.60013613s ago: executing program 0 (id=8796): r0 = socket(0xa, 0x801, 0x84) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)={0x14, 0x0, 0x4, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x80) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000001bc0), r1) r2 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000004a80), r1) sendmsg$auto_NET_SHAPER_CMD_SET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x20, r2, 0x1, 0x70bd2a, 0x25dfdbfe, {}, [@NET_SHAPER_A_HANDLE={0xc, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x946d}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x200000c0) 1m56.060755519s ago: executing program 0 (id=8801): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3) arch_prctl$auto_ARCH_SHSTK_UNLOCK(0x5004, 0xc) socketpair$auto(0x1e, 0x9, 0x8000000000000000, 0x0) memfd_secret$auto(0x0) 1m55.731125342s ago: executing program 32 (id=8801): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3) arch_prctl$auto_ARCH_SHSTK_UNLOCK(0x5004, 0xc) socketpair$auto(0x1e, 0x9, 0x8000000000000000, 0x0) memfd_secret$auto(0x0) 3.077766351s ago: executing program 1 (id=9682): io_uring_register$auto_IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, &(0x7f0000000280), 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x82080, 0x0) sysfs$auto(0x2, 0x40, 0x0) socketpair$auto(0x1b, 0x2, 0x80, 0x0) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x8, 0x8) unshare$auto(0x40000080) mmap$auto(0x0, 0x2000d, 0x3, 0xeb1, 0x404, 0x100010008000) io_uring_setup$auto(0x1, 0x0) 2.4849836s ago: executing program 1 (id=9685): mmap$auto(0x0, 0x9c, 0xdf, 0xffffffffffffffff, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) fanotify_init$auto(0x65, 0x2) pipe$auto(0x0) dup2$auto(0x5, 0x4) write$auto(0x6, 0x0, 0x100000001) splice$auto(0x4, 0x0, r0, 0x0, 0x10000, 0x7) 2.30688055s ago: executing program 4 (id=9689): mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) r0 = syz_clone(0x4001000, 0x0, 0x0, 0x0, 0x0, 0x0) socket(0xa, 0x3, 0x3b) socket(0xa, 0x3, 0x3b) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x8a240, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0x8d, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x4000008000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) wait4$auto(r0, 0x0, 0x80000001, 0x0) 1.867945821s ago: executing program 3 (id=9692): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000010c0), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000000100)={0xdd, 0x0, [{0x8ff, 0x4, 0x20000003}]}) 1.849300142s ago: executing program 2 (id=9693): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0xb, 0xd, 0xfffffffd, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x88000, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) ioctl$auto_TCFLSH2(r0, 0x8926, 0x0) 1.712181758s ago: executing program 3 (id=9694): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/input/event0\x00', 0x3496c2, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x9000aea4, &(0x7f0000000040)={0x7}) 1.560476552s ago: executing program 2 (id=9695): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x0, 0xfffffffffffff001, 0x2) socket(0x11, 0x80003, 0x300) socket(0x29, 0x5, 0x0) open(&(0x7f0000000580)='./cgroup\x00', 0x200300, 0xb5d1af1605322d50) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x0, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) 1.55132281s ago: executing program 3 (id=9696): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/input/event0\x00', 0x3496c2, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x8090ae81, &(0x7f0000000040)={0x7}) 1.495042579s ago: executing program 1 (id=9697): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x5, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0xdd, 0x0, [{0x40000083, 0x402}]}) 1.380752198s ago: executing program 2 (id=9698): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4188aea7, &(0x7f00000000c0)={0x2, 0x0, [{0x0, 0x9, 0x1}]}) 1.367499673s ago: executing program 3 (id=9699): mmap$auto(0x0, 0x202000a, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='U'], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc6}, 0x1, 0x0, 0x2, 0xd}, 0xd69}, 0x3, 0x0) 1.343479264s ago: executing program 4 (id=9700): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0x2, 0x0, [{0x560, 0x97, 0xa80}]}) 1.197317161s ago: executing program 3 (id=9701): bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x2, 0x4, 0x3, 0x2, 0x8, 0x3, 0xe3, 0x400000000a, 0x200000003}, 0x6f1) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0x400000000e31, 0xffffffffffffffff, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) pread64$auto(r1, 0x0, 0xd, 0x6e9) getrandom$auto(0x0, 0x6000000, 0x3) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84L\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xff\a\x00\x00\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x19, 0x4, 0x4, 0x880b, 0x8, 0xd, 0x66b, 0x4, 0x7ff}, 0x6f4) 1.196364122s ago: executing program 1 (id=9709): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4138ae84, 0x0) 1.12982011s ago: executing program 2 (id=9702): mmap$auto(0x0, 0x20009, 0x4000000000db, 0xeb1, 0x400, 0x8000) close_range$auto(0x0, 0x5, 0x0) inotify_init1$auto(0x800) pipe$auto(0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto(0x3, 0x40106f52, r0) 1.058675637s ago: executing program 4 (id=9703): openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x208840, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x60980, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x1, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000003c0)={0x2, 0x0, [{0x11, 0xe3, 0xe}]}) 985.522123ms ago: executing program 1 (id=9704): r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f00000000c0)={0x1, "e6c26c22ab89af11056b0001ac097e0a0728d9300000c500", @inferred=0xffffffffffffffff}) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) r5 = getpid() sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000840)=ANY=[@ANYRESHEX=r0, @ANYRESOCT=r2, @ANYRESHEX=r1, @ANYRESOCT=r0, @ANYRES64=r5, @ANYRESHEX=r0, @ANYRES16=r0, @ANYRES64=r2], 0x14}, 0x1, 0x0, 0x0, 0x24044024}, 0x800) process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r2, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x30, r3, 0x1, 0x70bd27, 0x25dfdbfa, {}, [@ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}, @ETHTOOL_A_COALESCE_USE_CQE_MODE_RX={0x5, 0x19, 0x1}, @ETHTOOL_A_COALESCE_TX_USECS_HIGH={0x8, 0x15, 0xb1}]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x800) 942.757646ms ago: executing program 2 (id=9705): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) close_range$auto(0x2, 0xa, 0x0) openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/uprobe_events\x00', 0x2102, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC2\x00', 0x2584, 0x0) ioctl$auto(0x3, 0x40045542, 0xb551) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/midi2\x00', 0x103, 0x0) close_range$auto(0x2, 0x8, 0x0) 763.007638ms ago: executing program 2 (id=9706): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) listmount$auto(&(0x7f0000000100)={0xba, @raw, 0xffffffffffffffff, 0xfffffffffffffff7}, 0x0, 0xf4240, 0x0) close_range$auto(0x2, 0x8, 0x0) 757.160934ms ago: executing program 4 (id=9707): socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd5/queue/write_zeroes_max_bytes\x00', 0x0, 0x0) socket(0x2, 0x3, 0xa) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0) sendfile$auto(0x3, r0, 0x0, 0x400000000006) shutdown$auto(0x200000003, 0x2) 478.734266ms ago: executing program 4 (id=9708): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000000040)={0xdb, 0x0, [{0x4000000e, 0x3fd, 0x4}]}) 478.058579ms ago: executing program 1 (id=9710): kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x2aa7, 0x6c0000c000, 0xc000}, 0x4) unshare$auto(0x40000080) write$auto(0xca, 0x0, 0x7f) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x4000804) lstat$auto(0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_VENDOR(r0, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000001700)={0x14, r1, 0x705, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x80) 53.469061ms ago: executing program 4 (id=9711): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000010c0), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000001100)={0xdd, 0x0, [{0x26d, 0x4, 0x20000000}]}) 0s ago: executing program 3 (id=9712): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1400, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0) ioctl$auto_tracing_buffers_fops_trace(r0, 0x5220, 0x0) ioctl$auto(0xffffffffffffffff, 0xc0585611, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x1e1) kernel console output (not intermixed with test programs): ibute type 27 has an invalid length. [ 1049.525771][T27547] netlink: 334 bytes leftover after parsing attributes in process `syz.1.8444'. [ 1050.990958][T27568] sp0: Synchronizing with TNC [ 1052.453217][T25858] Bluetooth: hci2: unexpected event 0x1c length: 725 > 5 [ 1054.550316][T27656] FAULT_INJECTION: forcing a failure. [ 1054.550316][T27656] name failslab, interval 1, probability 0, space 0, times 0 [ 1054.580319][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1054.608463][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1054.708029][T27656] CPU: 0 UID: 0 PID: 27656 Comm: syz.1.8474 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1054.708072][T27656] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1054.708083][T27656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1054.708099][T27656] Call Trace: [ 1054.708107][T27656] [ 1054.708117][T27656] dump_stack_lvl+0x100/0x190 [ 1054.708159][T27656] should_fail_ex.cold+0x5/0xa [ 1054.708200][T27656] should_failslab+0xc2/0x120 [ 1054.708239][T27656] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1054.708271][T27656] ? vm_area_dup+0x27/0x8e0 [ 1054.708297][T27656] ? __vma_start_write+0x17f/0x280 [ 1054.708329][T27656] vm_area_dup+0x27/0x8e0 [ 1054.708359][T27656] dup_mmap+0x6c9/0x1db0 [ 1054.708393][T27656] ? __pfx_dup_mmap+0x10/0x10 [ 1054.708415][T27656] ? rcu_is_watching+0x12/0xc0 [ 1054.708469][T27656] copy_process+0x73d1/0x7a10 [ 1054.708512][T27656] ? __pfx_copy_process+0x10/0x10 [ 1054.708554][T27656] kernel_clone+0xfc/0x9a0 [ 1054.708579][T27656] ? __pfx_futex_wait+0x10/0x10 [ 1054.708616][T27656] ? __pfx_kernel_clone+0x10/0x10 [ 1054.708659][T27656] __do_sys_clone+0xd9/0x120 [ 1054.708688][T27656] ? __pfx___do_sys_clone+0x10/0x10 [ 1054.708740][T27656] do_syscall_64+0x106/0xf80 [ 1054.708772][T27656] ? clear_bhb_loop+0x40/0x90 [ 1054.708802][T27656] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1054.708828][T27656] RIP: 0033:0x7f110c59bf79 [ 1054.708848][T27656] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1054.708873][T27656] RSP: 002b:00007f110d412fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1054.708898][T27656] RAX: ffffffffffffffda RBX: 00007f110c815fa0 RCX: 00007f110c59bf79 [ 1054.708914][T27656] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000004001000 [ 1054.708930][T27656] RBP: 00007f110c6327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1054.708945][T27656] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 1054.708960][T27656] R13: 00007f110c816038 R14: 00007f110c815fa0 R15: 00007ffe11fd96b8 [ 1054.708999][T27656] [ 1056.613156][T27689] netlink: 'syz.0.8485': attribute type 4 has an invalid length. [ 1057.318356][T27703] ERROR: Out of memory at tomoyo_memory_ok. [ 1058.256509][T27732] sp0: Synchronizing with TNC [ 1058.351525][T27738] netlink: 338 bytes leftover after parsing attributes in process `syz.3.8503'. [ 1058.415948][T27738] netlink: 342 bytes leftover after parsing attributes in process `syz.3.8503'. [ 1061.830111][T27800] netlink: 330 bytes leftover after parsing attributes in process `syz.0.8524'. [ 1062.214726][T27796] netlink: 'syz.2.8522': attribute type 4 has an invalid length. [ 1062.250007][T27805] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 1062.302537][T27796] netlink: 314 bytes leftover after parsing attributes in process `syz.2.8522'. [ 1063.501592][T27843] netlink: 234 bytes leftover after parsing attributes in process `syz.2.8538'. [ 1064.516547][T27873] netlink: 334 bytes leftover after parsing attributes in process `syz.2.8549'. [ 1065.543716][T27891] ERROR: Out of memory at tomoyo_memory_ok. [ 1066.229662][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 1066.239282][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 1066.248369][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 1066.257365][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 1066.832092][T27910] netlink: 234 bytes leftover after parsing attributes in process `syz.3.8564'. [ 1066.939187][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 1067.800490][T27937] netlink: 342 bytes leftover after parsing attributes in process `syz.2.8571'. [ 1067.809911][T27937] IPv6: NLM_F_CREATE should be specified when creating new route [ 1067.818012][T27937] IPv6: Can't replace route, no match found [ 1067.881055][T27937] netlink: 342 bytes leftover after parsing attributes in process `syz.2.8571'. [ 1067.903548][T27937] IPv6: Can't replace route, no match found [ 1067.958983][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 1068.512552][T27946] ERROR: Out of memory at tomoyo_memory_ok. [ 1068.545042][T27949] FAULT_INJECTION: forcing a failure. [ 1068.545042][T27949] name failslab, interval 1, probability 0, space 0, times 0 [ 1068.579057][T27949] CPU: 0 UID: 0 PID: 27949 Comm: syz.3.8576 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1068.579115][T27949] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1068.579129][T27949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1068.579150][T27949] Call Trace: [ 1068.579162][T27949] [ 1068.579176][T27949] dump_stack_lvl+0x100/0x190 [ 1068.579234][T27949] should_fail_ex.cold+0x5/0xa [ 1068.579276][T27949] should_failslab+0xc2/0x120 [ 1068.579331][T27949] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1068.579371][T27949] ? pty_common_install+0xdf/0xb30 [ 1068.579428][T27949] pty_common_install+0xdf/0xb30 [ 1068.579481][T27949] ? __pfx_pty_unix98_install+0x10/0x10 [ 1068.579533][T27949] tty_init_dev.part.0+0x9e/0x470 [ 1068.579597][T27949] tty_init_dev+0x60/0x80 [ 1068.579657][T27949] ptmx_open+0x15e/0x3c0 [ 1068.579701][T27949] ? __pfx_ptmx_open+0x10/0x10 [ 1068.579745][T27949] chrdev_open+0x234/0x6a0 [ 1068.579799][T27949] ? __pfx_apparmor_file_open+0x10/0x10 [ 1068.579836][T27949] ? __pfx_chrdev_open+0x10/0x10 [ 1068.579893][T27949] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1068.579977][T27949] do_dentry_open+0x6d8/0x1660 [ 1068.580037][T27949] ? __pfx_chrdev_open+0x10/0x10 [ 1068.580096][T27949] vfs_open+0x82/0x3f0 [ 1068.580134][T27949] path_openat+0x208c/0x31a0 [ 1068.580197][T27949] ? __pfx_path_openat+0x10/0x10 [ 1068.580279][T27949] do_file_open+0x20e/0x430 [ 1068.580334][T27949] ? __pfx_do_file_open+0x10/0x10 [ 1068.580416][T27949] ? alloc_fd+0x476/0x790 [ 1068.580470][T27949] ? do_getname+0x191/0x390 [ 1068.580509][T27949] do_sys_openat2+0x10d/0x1e0 [ 1068.580549][T27949] ? __pfx_do_sys_openat2+0x10/0x10 [ 1068.580589][T27949] ? find_held_lock+0x2b/0x80 [ 1068.580655][T27949] __x64_sys_openat+0x12d/0x210 [ 1068.580694][T27949] ? __pfx___x64_sys_openat+0x10/0x10 [ 1068.580756][T27949] do_syscall_64+0x106/0xf80 [ 1068.580822][T27949] ? clear_bhb_loop+0x40/0x90 [ 1068.580868][T27949] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1068.580913][T27949] RIP: 0033:0x7fd18599bf79 [ 1068.580942][T27949] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1068.580979][T27949] RSP: 002b:00007fd1867dd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1068.581012][T27949] RAX: ffffffffffffffda RBX: 00007fd185c15fa0 RCX: 00007fd18599bf79 [ 1068.581036][T27949] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 1068.581058][T27949] RBP: 00007fd185a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1068.581080][T27949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1068.581100][T27949] R13: 00007fd185c16038 R14: 00007fd185c15fa0 R15: 00007ffea075c258 [ 1068.581145][T27949] [ 1069.154955][T27958] netlink: 'syz.3.8580': attribute type 19 has an invalid length. [ 1069.189690][T27958] netlink: 334 bytes leftover after parsing attributes in process `syz.3.8580'. [ 1069.301059][T27960] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8581'. [ 1069.329099][T27960] netlink: 354 bytes leftover after parsing attributes in process `syz.2.8581'. [ 1069.826721][T27968] smpboot: CPU 1 is now offline [ 1069.988706][T27972] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 1070.346293][T27987] netlink: 'syz.3.8591': attribute type 16 has an invalid length. [ 1070.361414][T27987] netlink: 50 bytes leftover after parsing attributes in process `syz.3.8591'. [ 1070.379074][T27987] netlink: 'syz.3.8591': attribute type 16 has an invalid length. [ 1070.430950][T27987] netlink: 50 bytes leftover after parsing attributes in process `syz.3.8591'. [ 1070.735794][T27994] netlink: 342 bytes leftover after parsing attributes in process `syz.3.8593'. [ 1071.707665][T28016] FAULT_INJECTION: forcing a failure. [ 1071.707665][T28016] name failslab, interval 1, probability 0, space 0, times 0 [ 1071.750682][T28016] CPU: 0 UID: 0 PID: 28016 Comm: syz.2.8602 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1071.750742][T28016] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1071.750756][T28016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1071.750779][T28016] Call Trace: [ 1071.750791][T28016] [ 1071.750805][T28016] dump_stack_lvl+0x100/0x190 [ 1071.750863][T28016] should_fail_ex.cold+0x5/0xa [ 1071.750904][T28016] ? constrain_params_by_rules+0x175/0xcc0 [ 1071.750956][T28016] should_failslab+0xc2/0x120 [ 1071.751016][T28016] __kmalloc_noprof+0xe0/0x850 [ 1071.751066][T28016] ? lockdep_hardirqs_on+0x78/0x100 [ 1071.751120][T28016] constrain_params_by_rules+0x175/0xcc0 [ 1071.751177][T28016] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 1071.751222][T28016] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 1071.751271][T28016] ? snd_interval_refine+0x2d0/0x580 [ 1071.751316][T28016] snd_pcm_hw_refine+0x7e7/0xad0 [ 1071.751357][T28016] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 1071.751398][T28016] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 1071.751439][T28016] ? snd_pcm_hw_param_value+0x27b/0x5b0 [ 1071.751473][T28016] snd_pcm_hw_param_first+0x2b0/0x680 [ 1071.751511][T28016] snd_pcm_hw_params+0x496/0x1cb0 [ 1071.751554][T28016] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 1071.751593][T28016] ? snd_pcm_hw_param_near.constprop.0+0x578/0x850 [ 1071.751658][T28016] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 1071.751719][T28016] snd_pcm_kernel_ioctl+0x167/0x2e0 [ 1071.751759][T28016] snd_pcm_oss_change_params_locked+0x1973/0x39f0 [ 1071.751808][T28016] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 1071.751845][T28016] ? __pfx___mutex_lock+0x10/0x10 [ 1071.751906][T28016] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 1071.751940][T28016] snd_pcm_oss_sync+0x265/0x840 [ 1071.751975][T28016] snd_pcm_oss_release+0x238/0x300 [ 1071.752007][T28016] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 1071.752039][T28016] __fput+0x3ff/0xb40 [ 1071.752075][T28016] task_work_run+0x150/0x240 [ 1071.752118][T28016] ? __pfx_task_work_run+0x10/0x10 [ 1071.752169][T28016] exit_to_user_mode_loop+0x100/0x4a0 [ 1071.752210][T28016] do_syscall_64+0x668/0xf80 [ 1071.752248][T28016] ? clear_bhb_loop+0x40/0x90 [ 1071.752285][T28016] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1071.752315][T28016] RIP: 0033:0x7f7d0839bf79 [ 1071.752341][T28016] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1071.752371][T28016] RSP: 002b:00007f7d09309028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 1071.752400][T28016] RAX: 0000000000000000 RBX: 00007f7d08615fa0 RCX: 00007f7d0839bf79 [ 1071.752419][T28016] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 1071.752437][T28016] RBP: 00007f7d084327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1071.752455][T28016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1071.752472][T28016] R13: 00007f7d08616038 R14: 00007f7d08615fa0 R15: 00007fff0ed91f78 [ 1071.752510][T28016] [ 1072.470096][T28012] smpboot: CPU 1 is now offline [ 1073.172565][T28033] netlink: 28 bytes leftover after parsing attributes in process `syz.0.8607'. [ 1073.584059][T28035] FAULT_INJECTION: forcing a failure. [ 1073.584059][T28035] name failslab, interval 1, probability 0, space 0, times 0 [ 1073.651577][T28035] CPU: 0 UID: 0 PID: 28035 Comm: syz.1.8617 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1073.651630][T28035] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1073.651640][T28035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1073.651655][T28035] Call Trace: [ 1073.651664][T28035] [ 1073.651675][T28035] dump_stack_lvl+0x100/0x190 [ 1073.651717][T28035] should_fail_ex.cold+0x5/0xa [ 1073.651745][T28035] should_failslab+0xc2/0x120 [ 1073.652002][T28035] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1073.652039][T28035] ? copy_mount_options+0x55/0x190 [ 1073.652074][T28035] copy_mount_options+0x55/0x190 [ 1073.652104][T28035] __x64_sys_mount+0x1ab/0x310 [ 1073.652136][T28035] ? __pfx___x64_sys_mount+0x10/0x10 [ 1073.652175][T28035] do_syscall_64+0x106/0xf80 [ 1073.652209][T28035] ? clear_bhb_loop+0x40/0x90 [ 1073.652241][T28035] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1073.652268][T28035] RIP: 0033:0x7f110c59bf79 [ 1073.652290][T28035] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1073.652325][T28035] RSP: 002b:00007f110d413028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1073.652350][T28035] RAX: ffffffffffffffda RBX: 00007f110c815fa0 RCX: 00007f110c59bf79 [ 1073.652368][T28035] RDX: 0000200000000240 RSI: 0000000000000000 RDI: 0000200000000180 [ 1073.652385][T28035] RBP: 00007f110c6327e0 R08: 0000200000000280 R09: 0000000000000000 [ 1073.652402][T28035] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 1073.652417][T28035] R13: 00007f110c816038 R14: 00007f110c815fa0 R15: 00007ffe11fd96b8 [ 1073.652450][T28035] [ 1075.111538][T28061] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 1076.658006][T28118] ERROR: Out of memory at tomoyo_memory_ok. [ 1076.745857][T28115] ERROR: Out of memory at tomoyo_memory_ok. [ 1076.756359][T28121] netlink: 346 bytes leftover after parsing attributes in process `syz.2.8635'. [ 1077.339788][T28148] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8642'. [ 1077.380275][T28148] netlink: 25 bytes leftover after parsing attributes in process `syz.1.8642'. [ 1079.173408][T28188] netlink: 326 bytes leftover after parsing attributes in process `syz.3.8655'. [ 1079.458658][T28186] Process accounting paused [ 1079.622255][T28204] ERROR: Out of memory at tomoyo_memory_ok. [ 1080.046892][T28213] input: f¬ as /devices/virtual/input/input18 [ 1080.825579][T28211] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1080.837402][T28211] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1080.843715][T28211] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1080.853502][T28211] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1082.105755][T25858] Bluetooth: hci2: command 0x0406 tx timeout [ 1082.331100][T28258] netlink: 338 bytes leftover after parsing attributes in process `syz.0.8676'. [ 1082.522571][T28263] input: f¬ as /devices/virtual/input/input19 [ 1082.906167][T25858] Bluetooth: hci0: command 0x0406 tx timeout [ 1082.912319][ T5833] Bluetooth: hci3: command 0x0406 tx timeout [ 1082.918745][ T5833] Bluetooth: hci1: command 0x0406 tx timeout [ 1083.294467][T28262] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1083.307001][T28262] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1083.315547][T28262] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1083.337800][T28262] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1083.567454][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 1084.333210][T28289] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8686'. [ 1084.590020][T25858] Bluetooth: hci2: command 0x0406 tx timeout [ 1084.643120][T28292] netlink: 17 bytes leftover after parsing attributes in process `syz.3.8686'. [ 1084.817959][T28296] syz.1.8687 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 1085.387468][T25858] Bluetooth: hci3: command 0x0406 tx timeout [ 1085.389253][T28268] Bluetooth: hci0: command 0x0406 tx timeout [ 1085.393882][ T5833] Bluetooth: hci1: command 0x0406 tx timeout [ 1085.492978][T28313] input: f¬ as /devices/virtual/input/input20 [ 1086.169773][T28306] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1086.180837][T28306] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1086.187216][T28306] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1086.193847][T28306] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1086.403065][T28333] netlink: 'syz.2.8700': attribute type 20 has an invalid length. [ 1086.415716][T28333] netlink: 330 bytes leftover after parsing attributes in process `syz.2.8700'. [ 1086.653265][T28334] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8699'. [ 1086.734506][T28346] netlink: 'syz.0.8704': attribute type 1 has an invalid length. [ 1086.754272][T28346] netlink: 314 bytes leftover after parsing attributes in process `syz.0.8704'. [ 1087.175615][T28364] FAULT_INJECTION: forcing a failure. [ 1087.175615][T28364] name failslab, interval 1, probability 0, space 0, times 0 [ 1087.207356][T28364] CPU: 0 UID: 0 PID: 28364 Comm: syz.3.8711 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1087.207417][T28364] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1087.207431][T28364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1087.207451][T28364] Call Trace: [ 1087.207462][T28364] [ 1087.207475][T28364] dump_stack_lvl+0x100/0x190 [ 1087.207531][T28364] should_fail_ex.cold+0x5/0xa [ 1087.207571][T28364] ? lsm_blob_alloc+0x68/0x90 [ 1087.207621][T28364] should_failslab+0xc2/0x120 [ 1087.207676][T28364] __kmalloc_noprof+0xe0/0x850 [ 1087.207722][T28364] ? trace_kmem_cache_alloc+0xf3/0x120 [ 1087.207796][T28364] lsm_blob_alloc+0x68/0x90 [ 1087.207849][T28364] security_sk_alloc+0x2d/0x290 [ 1087.207889][T28364] sk_prot_alloc+0x1d1/0x2a0 [ 1087.207947][T28364] sk_alloc+0x36/0xe80 [ 1087.208002][T28364] inet6_create+0x385/0x12b0 [ 1087.208052][T28364] ? inet6_create+0x7f/0x12b0 [ 1087.208118][T28364] __sock_create+0x339/0x860 [ 1087.208185][T28364] udp_sock_create6+0xc7/0x6a0 [ 1087.208248][T28364] ? __pfx_udp_sock_create6+0x10/0x10 [ 1087.208303][T28364] ? crng_make_state+0x477/0x6c0 [ 1087.208337][T28364] ? lockdep_hardirqs_on+0x78/0x100 [ 1087.208382][T28364] ? crng_make_state+0x2b0/0x6c0 [ 1087.208422][T28364] rxrpc_open_socket+0x206/0x6b0 [ 1087.208478][T28364] ? __pfx_rxrpc_open_socket+0x10/0x10 [ 1087.208554][T28364] ? rcu_is_watching+0x12/0xc0 [ 1087.208612][T28364] rxrpc_lookup_local+0xac7/0x1220 [ 1087.208656][T28364] ? __pfx_rxrpc_lookup_local+0x10/0x10 [ 1087.208697][T28364] ? __local_bh_enable_ip+0x9e/0x120 [ 1087.208738][T28364] rxrpc_sendmsg+0x34a/0x680 [ 1087.208792][T28364] sock_write_iter+0x566/0x610 [ 1087.208848][T28364] ? __pfx_sock_write_iter+0x10/0x10 [ 1087.208915][T28364] ? bpf_lsm_file_permission+0x9/0x10 [ 1087.208963][T28364] ? security_file_permission+0x76/0x210 [ 1087.209011][T28364] ? rw_verify_area+0xce/0x6d0 [ 1087.209059][T28364] vfs_write+0x6ac/0x1070 [ 1087.209107][T28364] ? __pfx_sock_write_iter+0x10/0x10 [ 1087.209166][T28364] ? __pfx_vfs_write+0x10/0x10 [ 1087.209210][T28364] ? find_held_lock+0x2b/0x80 [ 1087.209290][T28364] ksys_write+0x1f8/0x250 [ 1087.209338][T28364] ? __pfx_ksys_write+0x10/0x10 [ 1087.209396][T28364] do_syscall_64+0x106/0xf80 [ 1087.209443][T28364] ? clear_bhb_loop+0x40/0x90 [ 1087.209485][T28364] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1087.209522][T28364] RIP: 0033:0x7fd18599bf79 [ 1087.209551][T28364] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1087.209585][T28364] RSP: 002b:00007fd1867dd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1087.209619][T28364] RAX: ffffffffffffffda RBX: 00007fd185c15fa0 RCX: 00007fd18599bf79 [ 1087.209642][T28364] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 1087.209662][T28364] RBP: 00007fd185a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1087.209682][T28364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1087.209702][T28364] R13: 00007fd185c16038 R14: 00007fd185c15fa0 R15: 00007ffea075c258 [ 1087.209762][T28364] [ 1087.468865][T28268] Bluetooth: hci2: command 0x0406 tx timeout [ 1088.189097][T28268] Bluetooth: hci3: command 0x0406 tx timeout [ 1088.195249][T25858] Bluetooth: hci1: command 0x0406 tx timeout [ 1088.243306][T28376] sp0: Synchronizing with TNC [ 1088.268777][T28268] Bluetooth: hci0: command 0x0406 tx timeout [ 1088.874871][T28392] netlink: 12 bytes leftover after parsing attributes in process `syz.0.8719'. [ 1089.780015][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 1089.790155][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 1089.817732][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 1090.826316][T28443] ERROR: Out of memory at tomoyo_memory_ok. [ 1090.883801][T28447] FAULT_INJECTION: forcing a failure. [ 1090.883801][T28447] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1090.940068][T28447] CPU: 1 UID: 0 PID: 28447 Comm: syz.1.8735 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1090.940125][T28447] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1090.940138][T28447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1090.940157][T28447] Call Trace: [ 1090.940166][T28447] [ 1090.940177][T28447] dump_stack_lvl+0x100/0x190 [ 1090.940227][T28447] should_fail_ex.cold+0x5/0xa [ 1090.940256][T28447] ? prepare_alloc_pages+0x16d/0x5f0 [ 1090.940315][T28447] should_fail_alloc_page+0xeb/0x140 [ 1090.940363][T28447] prepare_alloc_pages+0x1f0/0x5f0 [ 1090.940415][T28447] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 1090.940464][T28447] ? __lock_acquire+0x4a5/0x2630 [ 1090.940498][T28447] ? css_rstat_updated+0x1ce/0x5a0 [ 1090.940530][T28447] ? __pfx_css_rstat_updated+0x10/0x10 [ 1090.940558][T28447] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1090.940604][T28447] ? rcu_is_watching+0x12/0xc0 [ 1090.940651][T28447] ? __lock_acquire+0x4a5/0x2630 [ 1090.940686][T28447] ? __lock_acquire+0x4a5/0x2630 [ 1090.940719][T28447] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1090.940766][T28447] ? policy_nodemask+0xed/0x4f0 [ 1090.940812][T28447] alloc_pages_mpol+0x1fb/0x550 [ 1090.940857][T28447] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1090.940901][T28447] ? find_held_lock+0x2b/0x80 [ 1090.940944][T28447] ? filemap_get_entry+0x1a7/0x3b0 [ 1090.940982][T28447] ? filemap_get_entry+0x1a7/0x3b0 [ 1090.941025][T28447] folio_alloc_noprof+0x22/0x330 [ 1090.941054][T28447] filemap_alloc_folio_noprof.part.0+0x377/0x450 [ 1090.941084][T28447] ? __pfx_filemap_get_entry+0x10/0x10 [ 1090.941123][T28447] ? filemap_add_folio+0x114/0x690 [ 1090.941162][T28447] ? __pfx_filemap_alloc_folio_noprof.part.0+0x10/0x10 [ 1090.941197][T28447] ? rcu_is_watching+0x12/0xc0 [ 1090.941242][T28447] __filemap_get_folio_mpol+0x6a4/0xe70 [ 1090.941296][T28447] ioctx_alloc+0x7a0/0x21e0 [ 1090.941354][T28447] ? __pfx_ioctx_alloc+0x10/0x10 [ 1090.941408][T28447] __x64_sys_io_setup+0xc9/0x220 [ 1090.941456][T28447] do_syscall_64+0x106/0xf80 [ 1090.941493][T28447] ? clear_bhb_loop+0x40/0x90 [ 1090.941528][T28447] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1090.941557][T28447] RIP: 0033:0x7f110c59bf79 [ 1090.941581][T28447] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1090.941609][T28447] RSP: 002b:00007f110d413028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 1090.941636][T28447] RAX: ffffffffffffffda RBX: 00007f110c815fa0 RCX: 00007f110c59bf79 [ 1090.941656][T28447] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ffff [ 1090.941673][T28447] RBP: 00007f110c6327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1090.941691][T28447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1090.941708][T28447] R13: 00007f110c816038 R14: 00007f110c815fa0 R15: 00007ffe11fd96b8 [ 1090.941744][T28447] [ 1091.428458][T28453] netlink: 334 bytes leftover after parsing attributes in process `syz.0.8736'. [ 1091.482320][T28455] netlink: 346 bytes leftover after parsing attributes in process `syz.1.8737'. [ 1092.727872][T28477] netlink: 'syz.2.8745': attribute type 21 has an invalid length. [ 1092.736098][T28477] netlink: 334 bytes leftover after parsing attributes in process `syz.2.8745'. [ 1094.063570][T28510] netlink: 504 bytes leftover after parsing attributes in process `syz.0.8759'. [ 1094.076724][T28513] netlink: 342 bytes leftover after parsing attributes in process `syz.1.8760'. [ 1094.086301][T28513] IPv6: NLM_F_CREATE should be specified when creating new route [ 1094.094470][T28513] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 1094.101783][T28513] IPv6: NLM_F_CREATE should be set when creating new route [ 1094.109047][T28513] IPv6: NLM_F_CREATE should be set when creating new route [ 1094.120425][T28514] netlink: 504 bytes leftover after parsing attributes in process `syz.0.8759'. [ 1094.964733][T28537] CIFS: VFS: Invalid SecurityFlags: 0 [ 1094.964733][T28537] [ 1095.573548][T28552] netlink: 330 bytes leftover after parsing attributes in process `syz.3.8771'. [ 1096.440005][T28565] blktrace: Concurrent blktraces are not allowed on sda1 [ 1097.573799][T28593] netlink: 146 bytes leftover after parsing attributes in process `syz.1.8786'. [ 1099.324042][T28631] FAULT_INJECTION: forcing a failure. [ 1099.324042][T28631] name failslab, interval 1, probability 0, space 0, times 0 [ 1099.366201][T28631] CPU: 0 UID: 0 PID: 28631 Comm: syz.2.8804 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1099.366261][T28631] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1099.366277][T28631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1099.366299][T28631] Call Trace: [ 1099.366310][T28631] [ 1099.366325][T28631] dump_stack_lvl+0x100/0x190 [ 1099.366384][T28631] should_fail_ex.cold+0x5/0xa [ 1099.366417][T28631] should_failslab+0xc2/0x120 [ 1099.366464][T28631] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1099.366498][T28631] ? snd_seq_fifo_new+0x42/0x270 [ 1099.366533][T28631] ? _raw_spin_unlock_irq+0x2e/0x50 [ 1099.366573][T28631] ? __pfx_snd_seq_open+0x10/0x10 [ 1099.366616][T28631] snd_seq_fifo_new+0x42/0x270 [ 1099.366651][T28631] snd_seq_open+0x3fe/0x590 [ 1099.366693][T28631] ? __pfx_snd_seq_open+0x10/0x10 [ 1099.366733][T28631] snd_open+0x22d/0x4c0 [ 1099.366780][T28631] ? __pfx_snd_open+0x10/0x10 [ 1099.366834][T28631] chrdev_open+0x234/0x6a0 [ 1099.366879][T28631] ? __pfx_apparmor_file_open+0x10/0x10 [ 1099.366910][T28631] ? __pfx_chrdev_open+0x10/0x10 [ 1099.366955][T28631] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1099.367009][T28631] do_dentry_open+0x6d8/0x1660 [ 1099.367051][T28631] ? __pfx_chrdev_open+0x10/0x10 [ 1099.367103][T28631] vfs_open+0x82/0x3f0 [ 1099.367137][T28631] path_openat+0x208c/0x31a0 [ 1099.367193][T28631] ? __pfx_path_openat+0x10/0x10 [ 1099.367249][T28631] do_file_open+0x20e/0x430 [ 1099.367294][T28631] ? __pfx_do_file_open+0x10/0x10 [ 1099.367363][T28631] ? alloc_fd+0x476/0x790 [ 1099.367408][T28631] ? do_getname+0x191/0x390 [ 1099.367440][T28631] do_sys_openat2+0x10d/0x1e0 [ 1099.367472][T28631] ? __pfx_do_sys_openat2+0x10/0x10 [ 1099.367516][T28631] __x64_sys_openat+0x12d/0x210 [ 1099.367549][T28631] ? __pfx___x64_sys_openat+0x10/0x10 [ 1099.367597][T28631] do_syscall_64+0x106/0xf80 [ 1099.367635][T28631] ? clear_bhb_loop+0x40/0x90 [ 1099.367671][T28631] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1099.367701][T28631] RIP: 0033:0x7f7d0839bf79 [ 1099.367726][T28631] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1099.367756][T28631] RSP: 002b:00007f7d09309028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1099.367787][T28631] RAX: ffffffffffffffda RBX: 00007f7d08615fa0 RCX: 00007f7d0839bf79 [ 1099.367808][T28631] RDX: 00000000001e3800 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1099.367835][T28631] RBP: 00007f7d084327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1099.367854][T28631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1099.367872][T28631] R13: 00007f7d08616038 R14: 00007f7d08615fa0 R15: 00007fff0ed91f78 [ 1099.367912][T28631] [ 1099.404045][T28635] netlink: 146 bytes leftover after parsing attributes in process `syz.3.8805'. [ 1100.060629][T25858] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1100.071346][T25858] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1100.080323][T25858] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1100.090156][T25858] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1100.099836][T25858] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1100.587289][T28646] chnl_net:caif_netlink_parms(): no params data found [ 1100.732594][T28646] bridge0: port 1(bridge_slave_0) entered blocking state [ 1100.745307][T28646] bridge0: port 1(bridge_slave_0) entered disabled state [ 1100.753237][T28646] bridge_slave_0: entered allmulticast mode [ 1100.761776][T28646] bridge_slave_0: entered promiscuous mode [ 1100.771810][T28646] bridge0: port 2(bridge_slave_1) entered blocking state [ 1100.780983][T28646] bridge0: port 2(bridge_slave_1) entered disabled state [ 1100.789017][T28646] bridge_slave_1: entered allmulticast mode [ 1100.798552][T28646] bridge_slave_1: entered promiscuous mode [ 1100.844870][T28646] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1100.859007][T28646] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1100.909985][T28646] team0: Port device team_slave_0 added [ 1100.920223][T28646] team0: Port device team_slave_1 added [ 1100.965242][T28646] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1100.972260][T28646] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1101.036405][T28646] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1101.051173][T28646] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1101.065727][T28646] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1101.105373][T28646] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1101.247358][T28646] hsr_slave_0: entered promiscuous mode [ 1101.254403][T28646] hsr_slave_1: entered promiscuous mode [ 1101.262548][T28646] debugfs: 'hsr0' already exists in 'hsr' [ 1101.268528][T28646] Cannot create hsr debugfs directory [ 1101.294041][T28668] netlink: 146 bytes leftover after parsing attributes in process `syz.3.8814'. [ 1101.757151][T28681] FAULT_INJECTION: forcing a failure. [ 1101.757151][T28681] name failslab, interval 1, probability 0, space 0, times 0 [ 1101.770712][T28681] CPU: 1 UID: 0 PID: 28681 Comm: syz.1.8819 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1101.770771][T28681] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1101.770785][T28681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1101.770821][T28681] Call Trace: [ 1101.770831][T28681] [ 1101.770844][T28681] dump_stack_lvl+0x100/0x190 [ 1101.770902][T28681] should_fail_ex.cold+0x5/0xa [ 1101.770941][T28681] should_failslab+0xc2/0x120 [ 1101.770995][T28681] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1101.771035][T28681] ? snd_seq_fifo_new+0x42/0x270 [ 1101.771073][T28681] ? _raw_spin_unlock_irq+0x2e/0x50 [ 1101.771116][T28681] ? __pfx_snd_seq_open+0x10/0x10 [ 1101.771165][T28681] snd_seq_fifo_new+0x42/0x270 [ 1101.771202][T28681] snd_seq_open+0x3fe/0x590 [ 1101.771251][T28681] ? __pfx_snd_seq_open+0x10/0x10 [ 1101.771301][T28681] snd_open+0x22d/0x4c0 [ 1101.771357][T28681] ? __pfx_snd_open+0x10/0x10 [ 1101.771410][T28681] chrdev_open+0x234/0x6a0 [ 1101.771474][T28681] ? __pfx_apparmor_file_open+0x10/0x10 [ 1101.771511][T28681] ? __pfx_chrdev_open+0x10/0x10 [ 1101.771565][T28681] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1101.771620][T28681] do_dentry_open+0x6d8/0x1660 [ 1101.771669][T28681] ? __pfx_chrdev_open+0x10/0x10 [ 1101.771728][T28681] vfs_open+0x82/0x3f0 [ 1101.771768][T28681] path_openat+0x208c/0x31a0 [ 1101.771834][T28681] ? __pfx_path_openat+0x10/0x10 [ 1101.771900][T28681] do_file_open+0x20e/0x430 [ 1101.771953][T28681] ? __pfx_do_file_open+0x10/0x10 [ 1101.772033][T28681] ? alloc_fd+0x476/0x790 [ 1101.772087][T28681] ? do_getname+0x191/0x390 [ 1101.772129][T28681] do_sys_openat2+0x10d/0x1e0 [ 1101.772166][T28681] ? __pfx_do_sys_openat2+0x10/0x10 [ 1101.772214][T28681] __x64_sys_openat+0x12d/0x210 [ 1101.772254][T28681] ? __pfx___x64_sys_openat+0x10/0x10 [ 1101.772308][T28681] do_syscall_64+0x106/0xf80 [ 1101.772354][T28681] ? clear_bhb_loop+0x40/0x90 [ 1101.772399][T28681] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1101.772446][T28681] RIP: 0033:0x7f110c59bf79 [ 1101.772476][T28681] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1101.772515][T28681] RSP: 002b:00007f110d413028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1101.772548][T28681] RAX: ffffffffffffffda RBX: 00007f110c815fa0 RCX: 00007f110c59bf79 [ 1101.772573][T28681] RDX: 00000000001e3800 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1101.772596][T28681] RBP: 00007f110c6327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1101.772620][T28681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1101.772641][T28681] R13: 00007f110c816038 R14: 00007f110c815fa0 R15: 00007ffe11fd96b8 [ 1101.772688][T28681] [ 1102.083140][T28646] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 1102.105472][T28646] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 1102.189680][T28646] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 1102.205834][T25858] Bluetooth: hci2: command tx timeout [ 1102.252897][T28646] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 1102.269244][T28682] ERROR: Out of memory at tomoyo_memory_ok. [ 1102.406015][T28693] futex_wake_op: syz.1.8820 tries to shift op by -2048; fix this program [ 1102.430581][T28693] futex_wake_op: syz.1.8820 tries to shift op by -2048; fix this program [ 1102.450523][T28693] 0x000000000001-0x000000020000 : "" [ 1102.460961][T28693] ftl_cs: FTL header corrupt! [ 1102.669284][T28694] ERROR: Out of memory at tomoyo_memory_ok. [ 1102.936149][T28646] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1102.991849][T28646] 8021q: adding VLAN 0 to HW filter on device team0 [ 1103.042386][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 1103.049644][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1103.080122][ T3031] bridge0: port 2(bridge_slave_1) entered blocking state [ 1103.087457][ T3031] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1103.628477][T28721] FAULT_INJECTION: forcing a failure. [ 1103.628477][T28721] name failslab, interval 1, probability 0, space 0, times 0 [ 1103.677190][T28646] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1103.687666][T28721] CPU: 1 UID: 0 PID: 28721 Comm: syz.1.8829 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1103.687729][T28721] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1103.687745][T28721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1103.687767][T28721] Call Trace: [ 1103.687779][T28721] [ 1103.687793][T28721] dump_stack_lvl+0x100/0x190 [ 1103.687851][T28721] should_fail_ex.cold+0x5/0xa [ 1103.687893][T28721] should_failslab+0xc2/0x120 [ 1103.687949][T28721] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1103.687995][T28721] ? __anon_vma_prepare+0x344/0x5e0 [ 1103.688045][T28721] __anon_vma_prepare+0x344/0x5e0 [ 1103.688084][T28721] ? __pfx___pte_alloc+0x10/0x10 [ 1103.688142][T28721] __vmf_anon_prepare+0x11f/0x250 [ 1103.688204][T28721] do_anonymous_page+0x552/0x1fb0 [ 1103.688255][T28721] ? do_raw_spin_unlock+0x145/0x1e0 [ 1103.688309][T28721] ? __pmd_alloc+0x6aa/0x9c0 [ 1103.688348][T28721] __handle_mm_fault+0x1d42/0x2b60 [ 1103.688397][T28721] ? mt_find+0x45e/0x8e0 [ 1103.688450][T28721] ? __pfx___handle_mm_fault+0x10/0x10 [ 1103.688489][T28721] ? __pfx_mt_find+0x10/0x10 [ 1103.688574][T28721] handle_mm_fault+0x36d/0xa20 [ 1103.688625][T28721] __get_user_pages+0xf9c/0x34d0 [ 1103.688697][T28721] ? __pfx___get_user_pages+0x10/0x10 [ 1103.688767][T28721] populate_vma_page_range+0x267/0x3f0 [ 1103.688806][T28721] ? __pfx_populate_vma_page_range+0x10/0x10 [ 1103.688843][T28721] ? __pfx_find_vma_intersection+0x10/0x10 [ 1103.688901][T28721] ? do_mmap+0x93f/0x12f0 [ 1103.688962][T28721] __mm_populate+0x107/0x3a0 [ 1103.689000][T28721] ? __pfx___mm_populate+0x10/0x10 [ 1103.689040][T28721] ? up_write+0x290/0x4f0 [ 1103.689092][T28721] vm_mmap_pgoff+0x37f/0x470 [ 1103.689156][T28721] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1103.689212][T28721] ? __pfx___might_resched+0x10/0x10 [ 1103.689268][T28721] ? blkcg_maybe_throttle_current+0x5df/0xeb0 [ 1103.689330][T28721] ? __x64_sys_futex+0x34f/0x4d0 [ 1103.689371][T28721] ? __x64_sys_futex+0x358/0x4d0 [ 1103.689419][T28721] ksys_mmap_pgoff+0x7d/0x5b0 [ 1103.689480][T28721] __x64_sys_mmap+0x125/0x190 [ 1103.689538][T28721] do_syscall_64+0x106/0xf80 [ 1103.689583][T28721] ? clear_bhb_loop+0x40/0x90 [ 1103.689626][T28721] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1103.689664][T28721] RIP: 0033:0x7f110c59bf79 [ 1103.689693][T28721] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1103.689729][T28721] RSP: 002b:00007f110d413028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1103.689763][T28721] RAX: ffffffffffffffda RBX: 00007f110c815fa0 RCX: 00007f110c59bf79 [ 1103.689788][T28721] RDX: 00000000000000df RSI: 0000000000040009 RDI: 0000000000000000 [ 1103.689809][T28721] RBP: 00007f110c6327e0 R08: 0000000000000007 R09: 0000000000028000 [ 1103.689830][T28721] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 1103.689851][T28721] R13: 00007f110c816038 R14: 00007f110c815fa0 R15: 00007ffe11fd96b8 [ 1103.689896][T28721] [ 1104.277215][T25858] Bluetooth: hci2: command tx timeout [ 1104.322712][T28732] netlink: 146 bytes leftover after parsing attributes in process `syz.3.8831'. [ 1104.586335][T28646] veth0_vlan: entered promiscuous mode [ 1104.620836][T28646] veth1_vlan: entered promiscuous mode [ 1104.715266][T28646] veth0_macvtap: entered promiscuous mode [ 1104.744235][T28646] veth1_macvtap: entered promiscuous mode [ 1104.812010][T28646] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1104.847264][T28646] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1104.892841][ T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1104.901840][ T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1104.945204][ T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1104.968490][ T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1105.251030][T28326] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1105.277248][T28326] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1105.360573][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1105.383495][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1106.241784][T28763] FAULT_INJECTION: forcing a failure. [ 1106.241784][T28763] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1106.295208][T28763] CPU: 0 UID: 0 PID: 28763 Comm: syz.1.8841 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1106.295268][T28763] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1106.295283][T28763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1106.295303][T28763] Call Trace: [ 1106.295315][T28763] [ 1106.295329][T28763] dump_stack_lvl+0x100/0x190 [ 1106.295388][T28763] should_fail_ex.cold+0x5/0xa [ 1106.295430][T28763] _copy_from_user+0x2e/0xd0 [ 1106.295474][T28763] do_handle_open+0x60e/0xce0 [ 1106.295531][T28763] ? __pfx_do_handle_open+0x10/0x10 [ 1106.295581][T28763] ? __x64_sys_futex+0x34f/0x4d0 [ 1106.295631][T28763] ? xfd_validate_state+0x129/0x190 [ 1106.295696][T28763] ? do_syscall_64+0x106/0xf80 [ 1106.295742][T28763] do_syscall_64+0x106/0xf80 [ 1106.295787][T28763] ? clear_bhb_loop+0x40/0x90 [ 1106.295832][T28763] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1106.295869][T28763] RIP: 0033:0x7f110c59bf79 [ 1106.295898][T28763] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1106.295933][T28763] RSP: 002b:00007f110d413028 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 1106.295967][T28763] RAX: ffffffffffffffda RBX: 00007f110c815fa0 RCX: 00007f110c59bf79 [ 1106.295990][T28763] RDX: 0000000000000002 RSI: 0000200000000040 RDI: 0000000000000005 [ 1106.296012][T28763] RBP: 00007f110c6327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1106.296033][T28763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1106.296053][T28763] R13: 00007f110c816038 R14: 00007f110c815fa0 R15: 00007ffe11fd96b8 [ 1106.296106][T28763] [ 1106.467611][T25858] Bluetooth: hci2: command tx timeout [ 1108.519616][T28268] Bluetooth: hci2: command tx timeout [ 1109.482707][ C0] vcan0: j1939_tp_rxtimer: 0xffff888033a3c400: rx timeout, send abort [ 1109.493725][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888033a3c400: 0x0ffff: (3) A timeout occurred and this is the connection abort to close the session. [ 1109.662214][T28806] FAULT_INJECTION: forcing a failure. [ 1109.662214][T28806] name failslab, interval 1, probability 0, space 0, times 0 [ 1109.689568][T28806] CPU: 1 UID: 0 PID: 28806 Comm: syz.1.8858 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1109.689628][T28806] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1109.689642][T28806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1109.689664][T28806] Call Trace: [ 1109.689676][T28806] [ 1109.689690][T28806] dump_stack_lvl+0x100/0x190 [ 1109.689746][T28806] should_fail_ex.cold+0x5/0xa [ 1109.689787][T28806] should_failslab+0xc2/0x120 [ 1109.689843][T28806] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 1109.689891][T28806] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 1109.689947][T28806] hugetlbfs_alloc_inode+0x8c/0x1d0 [ 1109.689992][T28806] ? __pfx_hugetlbfs_alloc_inode+0x10/0x10 [ 1109.690049][T28806] alloc_inode+0x68/0x250 [ 1109.690090][T28806] new_inode+0x22/0x1c0 [ 1109.690132][T28806] hugetlbfs_get_inode+0x313/0x750 [ 1109.690180][T28806] ? do_raw_spin_unlock+0x145/0x1e0 [ 1109.690235][T28806] hugetlb_file_setup+0x15b/0x5b0 [ 1109.690289][T28806] memfd_alloc_file+0x61/0x580 [ 1109.690335][T28806] __do_sys_memfd_create+0x23c/0x3d0 [ 1109.690381][T28806] do_syscall_64+0x106/0xf80 [ 1109.690427][T28806] ? clear_bhb_loop+0x40/0x90 [ 1109.690472][T28806] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1109.690511][T28806] RIP: 0033:0x7f110c59bf79 [ 1109.690541][T28806] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1109.690575][T28806] RSP: 002b:00007f110d413028 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1109.690608][T28806] RAX: ffffffffffffffda RBX: 00007f110c815fa0 RCX: 00007f110c59bf79 [ 1109.690632][T28806] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000200000000300 [ 1109.690653][T28806] RBP: 00007f110c6327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1109.690674][T28806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1109.690695][T28806] R13: 00007f110c816038 R14: 00007f110c815fa0 R15: 00007ffe11fd96b8 [ 1109.690739][T28806] [ 1110.468740][T28822] netlink: 342 bytes leftover after parsing attributes in process `syz.2.8864'. [ 1110.482054][T28822] netlink: 342 bytes leftover after parsing attributes in process `syz.2.8864'. [ 1111.558834][T28835] zswap: compressor not available [ 1113.051362][T28862] zswap: compressor not available [ 1113.068614][T28870] random: crng reseeded on system resumption [ 1113.088012][T28870] FAULT_INJECTION: forcing a failure. [ 1113.088012][T28870] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1113.127485][T28870] CPU: 1 UID: 0 PID: 28870 Comm: syz.1.8880 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1113.127556][T28870] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1113.127571][T28870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1113.127593][T28870] Call Trace: [ 1113.127606][T28870] [ 1113.127620][T28870] dump_stack_lvl+0x100/0x190 [ 1113.127680][T28870] should_fail_ex.cold+0x5/0xa [ 1113.127714][T28870] ? prepare_alloc_pages+0x16d/0x5f0 [ 1113.127776][T28870] should_fail_alloc_page+0xeb/0x140 [ 1113.127834][T28870] prepare_alloc_pages+0x1f0/0x5f0 [ 1113.127899][T28870] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 1113.127949][T28870] ? __alloc_frozen_pages_noprof+0x2b1/0x2ba0 [ 1113.128012][T28870] ? stack_trace_save+0x8e/0xc0 [ 1113.128071][T28870] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1113.128117][T28870] ? stack_depot_save_flags+0x27/0x9d0 [ 1113.128164][T28870] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1113.128216][T28870] ? kasan_save_stack+0x3f/0x50 [ 1113.128261][T28870] ? kasan_save_stack+0x30/0x50 [ 1113.128306][T28870] ? kasan_save_track+0x14/0x30 [ 1113.128363][T28870] ? do_sys_openat2+0x10d/0x1e0 [ 1113.128402][T28870] ? __x64_sys_openat+0x12d/0x210 [ 1113.128438][T28870] ? do_syscall_64+0x106/0xf80 [ 1113.128484][T28870] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1113.128533][T28870] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1113.128591][T28870] ? policy_nodemask+0xed/0x4f0 [ 1113.128649][T28870] alloc_pages_mpol+0x1fb/0x550 [ 1113.128704][T28870] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1113.128761][T28870] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1113.128822][T28870] alloc_pages_noprof+0x131/0x390 [ 1113.128878][T28870] get_zeroed_page_noprof+0x18/0xb0 [ 1113.128934][T28870] get_image_page+0x18/0x1a0 [ 1113.128989][T28870] alloc_rtree_node+0x3c/0xb0 [ 1113.129044][T28870] memory_bm_create+0x65e/0xba0 [ 1113.129118][T28870] create_basic_memory_bitmaps+0xbd/0x350 [ 1113.129183][T28870] snapshot_open+0x230/0x2a0 [ 1113.129220][T28870] ? __pfx_snapshot_open+0x10/0x10 [ 1113.129260][T28870] misc_open+0x26d/0x450 [ 1113.129302][T28870] ? __pfx_misc_open+0x10/0x10 [ 1113.129342][T28870] chrdev_open+0x234/0x6a0 [ 1113.129394][T28870] ? __pfx_apparmor_file_open+0x10/0x10 [ 1113.129432][T28870] ? __pfx_chrdev_open+0x10/0x10 [ 1113.129488][T28870] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1113.129571][T28870] do_dentry_open+0x6d8/0x1660 [ 1113.129621][T28870] ? __pfx_chrdev_open+0x10/0x10 [ 1113.129683][T28870] vfs_open+0x82/0x3f0 [ 1113.129725][T28870] path_openat+0x208c/0x31a0 [ 1113.129788][T28870] ? __pfx_path_openat+0x10/0x10 [ 1113.129855][T28870] do_file_open+0x20e/0x430 [ 1113.129910][T28870] ? __pfx_do_file_open+0x10/0x10 [ 1113.129990][T28870] ? alloc_fd+0x476/0x790 [ 1113.130044][T28870] ? do_getname+0x191/0x390 [ 1113.130083][T28870] do_sys_openat2+0x10d/0x1e0 [ 1113.130122][T28870] ? __pfx_do_sys_openat2+0x10/0x10 [ 1113.130162][T28870] ? find_held_lock+0x2b/0x80 [ 1113.130225][T28870] __x64_sys_openat+0x12d/0x210 [ 1113.130265][T28870] ? __pfx___x64_sys_openat+0x10/0x10 [ 1113.130320][T28870] do_syscall_64+0x106/0xf80 [ 1113.130365][T28870] ? clear_bhb_loop+0x40/0x90 [ 1113.130409][T28870] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1113.130445][T28870] RIP: 0033:0x7f110c59bf79 [ 1113.130475][T28870] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1113.130517][T28870] RSP: 002b:00007f110d413028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1113.130550][T28870] RAX: ffffffffffffffda RBX: 00007f110c815fa0 RCX: 00007f110c59bf79 [ 1113.130573][T28870] RDX: 0000000000008001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1113.130594][T28870] RBP: 00007f110c6327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1113.130615][T28870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1113.130634][T28870] R13: 00007f110c816038 R14: 00007f110c815fa0 R15: 00007ffe11fd96b8 [ 1113.130678][T28870] [ 1113.786502][T28873] ERROR: Out of memory at tomoyo_memory_ok. [ 1114.809412][T28895] FAULT_INJECTION: forcing a failure. [ 1114.809412][T28895] name failslab, interval 1, probability 0, space 0, times 0 [ 1114.843060][T28895] CPU: 1 UID: 0 PID: 28895 Comm: syz.3.8889 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1114.843118][T28895] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1114.843133][T28895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1114.843153][T28895] Call Trace: [ 1114.843165][T28895] [ 1114.843179][T28895] dump_stack_lvl+0x100/0x190 [ 1114.843242][T28895] should_fail_ex.cold+0x5/0xa [ 1114.843284][T28895] should_failslab+0xc2/0x120 [ 1114.843339][T28895] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1114.843385][T28895] ? vm_area_dup+0x27/0x8e0 [ 1114.843421][T28895] ? __vma_start_write+0x17f/0x280 [ 1114.843470][T28895] vm_area_dup+0x27/0x8e0 [ 1114.843514][T28895] dup_mmap+0x6c9/0x1db0 [ 1114.843566][T28895] ? __pfx_dup_mmap+0x10/0x10 [ 1114.843598][T28895] ? rcu_is_watching+0x12/0xc0 [ 1114.843678][T28895] copy_process+0x73d1/0x7a10 [ 1114.843749][T28895] ? __pfx_copy_process+0x10/0x10 [ 1114.843791][T28895] ? find_held_lock+0x2b/0x80 [ 1114.843866][T28895] kernel_clone+0xfc/0x9a0 [ 1114.843904][T28895] ? __pfx_futex_wait+0x10/0x10 [ 1114.843957][T28895] ? __pfx_kernel_clone+0x10/0x10 [ 1114.844029][T28895] __do_sys_clone+0xd9/0x120 [ 1114.844071][T28895] ? __pfx___do_sys_clone+0x10/0x10 [ 1114.844149][T28895] do_syscall_64+0x106/0xf80 [ 1114.844195][T28895] ? clear_bhb_loop+0x40/0x90 [ 1114.844244][T28895] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1114.844281][T28895] RIP: 0033:0x7fd18599bf79 [ 1114.844310][T28895] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1114.844345][T28895] RSP: 002b:00007fd1867dcfd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1114.844379][T28895] RAX: ffffffffffffffda RBX: 00007fd185c15fa0 RCX: 00007fd18599bf79 [ 1114.844401][T28895] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000004001000 [ 1114.844421][T28895] RBP: 00007fd185a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1114.844443][T28895] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 1114.844464][T28895] R13: 00007fd185c16038 R14: 00007fd185c15fa0 R15: 00007ffea075c258 [ 1114.844509][T28895] [ 1116.057267][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1116.064039][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1116.640504][T28931] netlink: 330 bytes leftover after parsing attributes in process `syz.3.8901'. [ 1116.832571][T28937] netlink: 146 bytes leftover after parsing attributes in process `syz.3.8905'. [ 1116.873293][T28935] netlink: 334 bytes leftover after parsing attributes in process `syz.1.8904'. [ 1116.889091][T28939] netlink: 322 bytes leftover after parsing attributes in process `syz.2.8906'. [ 1117.018632][T28942] netlink: 186 bytes leftover after parsing attributes in process `syz.3.8908'. [ 1117.052684][T28947] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8910'. [ 1117.072198][T28947] netlink: 25 bytes leftover after parsing attributes in process `syz.2.8910'. [ 1117.500890][T28958] FAULT_INJECTION: forcing a failure. [ 1117.500890][T28958] name failslab, interval 1, probability 0, space 0, times 0 [ 1117.643511][T28958] CPU: 1 UID: 0 PID: 28958 Comm: syz.4.8913 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1117.643571][T28958] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1117.643586][T28958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1117.643609][T28958] Call Trace: [ 1117.643621][T28958] [ 1117.643635][T28958] dump_stack_lvl+0x100/0x190 [ 1117.643693][T28958] should_fail_ex.cold+0x5/0xa [ 1117.643736][T28958] should_failslab+0xc2/0x120 [ 1117.643791][T28958] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1117.643833][T28958] ? snd_timer_user_open+0x6b/0x180 [ 1117.643880][T28958] ? __pfx_snd_timer_user_open+0x10/0x10 [ 1117.643921][T28958] snd_timer_user_open+0x6b/0x180 [ 1117.643962][T28958] snd_open+0x22d/0x4c0 [ 1117.644020][T28958] ? __pfx_snd_open+0x10/0x10 [ 1117.644078][T28958] chrdev_open+0x234/0x6a0 [ 1117.644131][T28958] ? __pfx_apparmor_file_open+0x10/0x10 [ 1117.644178][T28958] ? __pfx_chrdev_open+0x10/0x10 [ 1117.644237][T28958] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1117.644301][T28958] do_dentry_open+0x6d8/0x1660 [ 1117.644352][T28958] ? __pfx_chrdev_open+0x10/0x10 [ 1117.644414][T28958] vfs_open+0x82/0x3f0 [ 1117.644463][T28958] path_openat+0x208c/0x31a0 [ 1117.644533][T28958] ? __pfx_path_openat+0x10/0x10 [ 1117.644602][T28958] do_file_open+0x20e/0x430 [ 1117.644659][T28958] ? __pfx_do_file_open+0x10/0x10 [ 1117.644744][T28958] ? alloc_fd+0x476/0x790 [ 1117.644801][T28958] ? do_getname+0x191/0x390 [ 1117.644841][T28958] do_sys_openat2+0x10d/0x1e0 [ 1117.644881][T28958] ? __pfx_do_sys_openat2+0x10/0x10 [ 1117.644924][T28958] ? __fget_files+0x21f/0x3d0 [ 1117.644984][T28958] __x64_sys_openat+0x12d/0x210 [ 1117.645024][T28958] ? __pfx___x64_sys_openat+0x10/0x10 [ 1117.645081][T28958] do_syscall_64+0x106/0xf80 [ 1117.645127][T28958] ? clear_bhb_loop+0x40/0x90 [ 1117.645186][T28958] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1117.645224][T28958] RIP: 0033:0x7f5c3479bf79 [ 1117.645254][T28958] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1117.645288][T28958] RSP: 002b:00007f5c3563a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1117.645326][T28958] RAX: ffffffffffffffda RBX: 00007f5c34a15fa0 RCX: 00007f5c3479bf79 [ 1117.645350][T28958] RDX: 0000000000000000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 1117.645371][T28958] RBP: 00007f5c348327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1117.645392][T28958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1117.645413][T28958] R13: 00007f5c34a16038 R14: 00007f5c34a15fa0 R15: 00007ffde4f31748 [ 1117.645457][T28958] [ 1118.406283][T28969] FAULT_INJECTION: forcing a failure. [ 1118.406283][T28969] name failslab, interval 1, probability 0, space 0, times 0 [ 1118.419388][T28969] CPU: 0 UID: 0 PID: 28969 Comm: syz.3.8918 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1118.419445][T28969] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1118.419460][T28969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1118.419482][T28969] Call Trace: [ 1118.419493][T28969] [ 1118.419506][T28969] dump_stack_lvl+0x100/0x190 [ 1118.419561][T28969] should_fail_ex.cold+0x5/0xa [ 1118.419601][T28969] should_failslab+0xc2/0x120 [ 1118.419653][T28969] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1118.419698][T28969] ? security_inode_alloc+0x3b/0x2c0 [ 1118.419736][T28969] ? lockdep_init_map_type+0x5c/0x250 [ 1118.419785][T28969] security_inode_alloc+0x3b/0x2c0 [ 1118.419821][T28969] inode_init_always_gfp+0xced/0x1040 [ 1118.419879][T28969] alloc_inode+0x8e/0x250 [ 1118.419918][T28969] path_from_stashed+0x25b/0x750 [ 1118.419968][T28969] ? do_raw_spin_unlock+0x145/0x1e0 [ 1118.420024][T28969] ns_get_path+0x60/0x80 [ 1118.420076][T28969] proc_ns_get_link+0x121/0x230 [ 1118.420157][T28969] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1118.420207][T28969] ? atime_needs_update+0x8b/0x6b0 [ 1118.420262][T28969] pick_link+0xd17/0x13c0 [ 1118.420306][T28969] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1118.420349][T28969] step_into_slowpath+0x9ba/0xf90 [ 1118.420402][T28969] ? __pfx_step_into_slowpath+0x10/0x10 [ 1118.420448][T28969] ? find_held_lock+0x2b/0x80 [ 1118.420518][T28969] path_openat+0xf95/0x31a0 [ 1118.420586][T28969] ? __pfx_path_openat+0x10/0x10 [ 1118.420662][T28969] do_file_open+0x20e/0x430 [ 1118.420720][T28969] ? __pfx_do_file_open+0x10/0x10 [ 1118.420802][T28969] ? alloc_fd+0x476/0x790 [ 1118.420859][T28969] ? do_getname+0x191/0x390 [ 1118.420899][T28969] do_sys_openat2+0x10d/0x1e0 [ 1118.420939][T28969] ? __pfx_do_sys_openat2+0x10/0x10 [ 1118.420995][T28969] __x64_sys_openat+0x12d/0x210 [ 1118.421037][T28969] ? __pfx___x64_sys_openat+0x10/0x10 [ 1118.421082][T28969] ? do_user_addr_fault+0x8d6/0x12f0 [ 1118.421164][T28969] do_syscall_64+0x106/0xf80 [ 1118.421212][T28969] ? clear_bhb_loop+0x40/0x90 [ 1118.421257][T28969] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1118.421292][T28969] RIP: 0033:0x7fd18595c84e [ 1118.421321][T28969] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1118.421368][T28969] RSP: 002b:00007fd1867dcec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1118.421401][T28969] RAX: ffffffffffffffda RBX: 00007fd1867dd6c0 RCX: 00007fd18595c84e [ 1118.421425][T28969] RDX: 0000000000000002 RSI: 00007fd1867dcf90 RDI: ffffffffffffff9c [ 1118.421446][T28969] RBP: 00007fd185a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1118.421466][T28969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1118.421486][T28969] R13: 00007fd185c16038 R14: 00007fd185c15fa0 R15: 00007ffea075c258 [ 1118.421530][T28969] [ 1119.291316][T28989] netlink: 334 bytes leftover after parsing attributes in process `syz.1.8924'. [ 1119.527088][T28992] netlink: 330 bytes leftover after parsing attributes in process `syz.1.8925'. [ 1121.033833][T29009] netlink: 318 bytes leftover after parsing attributes in process `syz.4.8931'. [ 1122.867585][T29053] netlink: 342 bytes leftover after parsing attributes in process `syz.4.8948'. [ 1123.749168][T29077] FAULT_INJECTION: forcing a failure. [ 1123.749168][T29077] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1123.775566][T29077] CPU: 1 UID: 0 PID: 29077 Comm: syz.4.8957 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1123.775626][T29077] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1123.775642][T29077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1123.775663][T29077] Call Trace: [ 1123.775675][T29077] [ 1123.775688][T29077] dump_stack_lvl+0x100/0x190 [ 1123.775760][T29077] should_fail_ex.cold+0x5/0xa [ 1123.775795][T29077] ? prepare_alloc_pages+0x16d/0x5f0 [ 1123.775857][T29077] should_fail_alloc_page+0xeb/0x140 [ 1123.775915][T29077] prepare_alloc_pages+0x1f0/0x5f0 [ 1123.775981][T29077] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 1123.776041][T29077] ? kasan_save_stack+0x3f/0x50 [ 1123.776088][T29077] ? kasan_save_stack+0x30/0x50 [ 1123.776133][T29077] ? kasan_save_track+0x14/0x30 [ 1123.776178][T29077] ? __kasan_slab_alloc+0x89/0x90 [ 1123.776227][T29077] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1123.776272][T29077] ? ptlock_alloc+0x1f/0x70 [ 1123.776310][T29077] ? pte_alloc_one+0x84/0x3e0 [ 1123.776345][T29077] ? __pte_alloc+0x6d/0x3f0 [ 1123.776399][T29077] ? copy_page_range+0x3e51/0x6570 [ 1123.776434][T29077] ? dup_mmap+0xc00/0x1db0 [ 1123.776464][T29077] ? copy_process+0x73d1/0x7a10 [ 1123.776501][T29077] ? kernel_clone+0xfc/0x9a0 [ 1123.776537][T29077] ? __do_sys_clone+0xd9/0x120 [ 1123.776577][T29077] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1123.776635][T29077] ? look_up_lock_class+0x55/0x120 [ 1123.776699][T29077] ? look_up_lock_class+0x55/0x120 [ 1123.776747][T29077] ? register_lock_class+0x40/0x560 [ 1123.776794][T29077] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1123.776851][T29077] ? policy_nodemask+0xed/0x4f0 [ 1123.776909][T29077] alloc_pages_mpol+0x1fb/0x550 [ 1123.776962][T29077] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1123.777027][T29077] alloc_pages_noprof+0x131/0x390 [ 1123.777083][T29077] pte_alloc_one+0x1e/0x3e0 [ 1123.777123][T29077] __pte_alloc+0x6d/0x3f0 [ 1123.777174][T29077] ? __pfx___pte_alloc+0x10/0x10 [ 1123.777227][T29077] ? __pfx___might_resched+0x10/0x10 [ 1123.777274][T29077] ? copy_page_range+0x1e9d/0x6570 [ 1123.777321][T29077] copy_page_range+0x3e51/0x6570 [ 1123.777407][T29077] ? __pfx_copy_page_range+0x10/0x10 [ 1123.777462][T29077] ? __pfx___might_resched+0x10/0x10 [ 1123.777527][T29077] ? up_write+0x290/0x4f0 [ 1123.777578][T29077] dup_mmap+0xc00/0x1db0 [ 1123.777628][T29077] ? __pfx_dup_mmap+0x10/0x10 [ 1123.777659][T29077] ? rcu_is_watching+0x12/0xc0 [ 1123.777741][T29077] copy_process+0x73d1/0x7a10 [ 1123.777797][T29077] ? __pfx_copy_process+0x10/0x10 [ 1123.777859][T29077] kernel_clone+0xfc/0x9a0 [ 1123.777897][T29077] ? __pfx_futex_wait+0x10/0x10 [ 1123.777949][T29077] ? __pfx_kernel_clone+0x10/0x10 [ 1123.778003][T29077] __do_sys_clone+0xd9/0x120 [ 1123.778037][T29077] ? __pfx___do_sys_clone+0x10/0x10 [ 1123.778100][T29077] do_syscall_64+0x106/0xf80 [ 1123.778137][T29077] ? clear_bhb_loop+0x40/0x90 [ 1123.778174][T29077] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1123.778203][T29077] RIP: 0033:0x7f5c3479bf79 [ 1123.778229][T29077] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1123.778260][T29077] RSP: 002b:00007f5c35639fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1123.778289][T29077] RAX: ffffffffffffffda RBX: 00007f5c34a15fa0 RCX: 00007f5c3479bf79 [ 1123.778310][T29077] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000004001000 [ 1123.778329][T29077] RBP: 00007f5c348327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1123.778349][T29077] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 1123.778367][T29077] R13: 00007f5c34a16038 R14: 00007f5c34a15fa0 R15: 00007ffde4f31748 [ 1123.778407][T29077] [ 1125.464353][T29111] ERROR: Out of memory at tomoyo_memory_ok. [ 1127.530367][T29160] netlink: 338 bytes leftover after parsing attributes in process `syz.2.8984'. [ 1127.566501][T29160] bridge0: port 2(bridge_slave_1) entered disabled state [ 1127.574135][T29160] bridge0: port 1(bridge_slave_0) entered disabled state [ 1128.839879][T29196] netlink: 21 bytes leftover after parsing attributes in process `syz.1.8996'. [ 1129.765834][T29208] netlink: 342 bytes leftover after parsing attributes in process `syz.4.9000'. [ 1130.146306][T29214] FAULT_INJECTION: forcing a failure. [ 1130.146306][T29214] name failslab, interval 1, probability 0, space 0, times 0 [ 1130.160353][T29214] CPU: 1 UID: 0 PID: 29214 Comm: syz.3.9004 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1130.160413][T29214] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1130.160427][T29214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1130.160447][T29214] Call Trace: [ 1130.160460][T29214] [ 1130.160474][T29214] dump_stack_lvl+0x100/0x190 [ 1130.160536][T29214] should_fail_ex.cold+0x5/0xa [ 1130.160579][T29214] should_failslab+0xc2/0x120 [ 1130.160636][T29214] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1130.160684][T29214] ? vm_area_alloc+0x1f/0x160 [ 1130.160723][T29214] ? vma_merge_new_range+0x38b/0xa30 [ 1130.160765][T29214] ? __sanitizer_cov_trace_switch+0x10/0x90 [ 1130.160829][T29214] vm_area_alloc+0x1f/0x160 [ 1130.160871][T29214] __mmap_region+0x1027/0x2760 [ 1130.160923][T29214] ? __pfx___mmap_region+0x10/0x10 [ 1130.161014][T29214] ? finish_task_switch.isra.0+0x205/0xb80 [ 1130.161051][T29214] ? lockdep_hardirqs_on+0x78/0x100 [ 1130.161100][T29214] ? finish_task_switch.isra.0+0x205/0xb80 [ 1130.161217][T29214] ? rcu_is_watching+0x12/0xc0 [ 1130.161279][T29214] ? cap_capable+0x107/0x460 [ 1130.161346][T29214] mmap_region+0x180/0x3e0 [ 1130.161401][T29214] do_mmap+0xc63/0x12f0 [ 1130.161465][T29214] ? __pfx_do_mmap+0x10/0x10 [ 1130.161522][T29214] ? __pfx_down_write_killable+0x10/0x10 [ 1130.161600][T29214] vm_mmap_pgoff+0x29e/0x470 [ 1130.161667][T29214] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1130.161736][T29214] ? __x64_sys_futex+0x34f/0x4d0 [ 1130.161779][T29214] ? __x64_sys_futex+0x358/0x4d0 [ 1130.161828][T29214] ksys_mmap_pgoff+0x7d/0x5b0 [ 1130.161890][T29214] __x64_sys_mmap+0x125/0x190 [ 1130.161949][T29214] do_syscall_64+0x106/0xf80 [ 1130.161997][T29214] ? clear_bhb_loop+0x40/0x90 [ 1130.162042][T29214] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1130.162079][T29214] RIP: 0033:0x7fd18599bf79 [ 1130.162111][T29214] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1130.162148][T29214] RSP: 002b:00007fd1867dd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1130.162183][T29214] RAX: ffffffffffffffda RBX: 00007fd185c15fa0 RCX: 00007fd18599bf79 [ 1130.162207][T29214] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000 [ 1130.162229][T29214] RBP: 00007fd185a327e0 R08: fffffffffffffffa R09: 0000000000008000 [ 1130.162252][T29214] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 1130.162282][T29214] R13: 00007fd185c16038 R14: 00007fd185c15fa0 R15: 00007ffea075c258 [ 1130.162328][T29214] [ 1130.711771][T29225] ima: policy update failed [ 1130.716742][ T29] audit: type=1802 audit(1771262635.872:27): pid=29225 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.9008" res=0 errno=0 [ 1132.143012][T29258] ERROR: Out of memory at tomoyo_memory_ok. [ 1132.741456][T29270] FAULT_INJECTION: forcing a failure. [ 1132.741456][T29270] name failslab, interval 1, probability 0, space 0, times 0 [ 1132.781098][T29270] CPU: 1 UID: 0 PID: 29270 Comm: syz.4.9024 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1132.781152][T29270] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1132.781165][T29270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1132.781188][T29270] Call Trace: [ 1132.781200][T29270] [ 1132.781213][T29270] dump_stack_lvl+0x100/0x190 [ 1132.781271][T29270] should_fail_ex.cold+0x5/0xa [ 1132.781312][T29270] ? memcg_list_lru_alloc+0x4ec/0x740 [ 1132.781360][T29270] should_failslab+0xc2/0x120 [ 1132.781416][T29270] __kmalloc_noprof+0xe0/0x850 [ 1132.781463][T29270] ? path_openat+0xf95/0x31a0 [ 1132.781522][T29270] memcg_list_lru_alloc+0x4ec/0x740 [ 1132.781581][T29270] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 1132.781628][T29270] ? rcu_read_unlock+0x17/0x60 [ 1132.781695][T29270] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 1132.781746][T29270] __memcg_slab_post_alloc_hook+0x12f/0x9a0 [ 1132.781814][T29270] ? kasan_save_track+0x14/0x30 [ 1132.781867][T29270] kmem_cache_alloc_lru_noprof+0x592/0x6e0 [ 1132.781914][T29270] ? alloc_inode+0x183/0x250 [ 1132.781961][T29270] alloc_inode+0x183/0x250 [ 1132.781999][T29270] path_from_stashed+0x25b/0x750 [ 1132.782054][T29270] ? do_raw_spin_unlock+0x145/0x1e0 [ 1132.782122][T29270] ns_get_path+0x60/0x80 [ 1132.782175][T29270] proc_ns_get_link+0x121/0x230 [ 1132.782211][T29270] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1132.782252][T29270] ? atime_needs_update+0x8b/0x6b0 [ 1132.782299][T29270] pick_link+0xd17/0x13c0 [ 1132.782342][T29270] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1132.782384][T29270] step_into_slowpath+0x9ba/0xf90 [ 1132.782438][T29270] ? __pfx_step_into_slowpath+0x10/0x10 [ 1132.782483][T29270] ? find_held_lock+0x2b/0x80 [ 1132.782552][T29270] path_openat+0xf95/0x31a0 [ 1132.782617][T29270] ? __pfx_path_openat+0x10/0x10 [ 1132.782686][T29270] do_file_open+0x20e/0x430 [ 1132.782742][T29270] ? __pfx_do_file_open+0x10/0x10 [ 1132.782826][T29270] ? alloc_fd+0x476/0x790 [ 1132.782882][T29270] ? do_getname+0x191/0x390 [ 1132.782923][T29270] do_sys_openat2+0x10d/0x1e0 [ 1132.782961][T29270] ? __pfx_do_sys_openat2+0x10/0x10 [ 1132.783016][T29270] __x64_sys_openat+0x12d/0x210 [ 1132.783057][T29270] ? __pfx___x64_sys_openat+0x10/0x10 [ 1132.783110][T29270] ? do_user_addr_fault+0x8d6/0x12f0 [ 1132.783176][T29270] do_syscall_64+0x106/0xf80 [ 1132.783222][T29270] ? clear_bhb_loop+0x40/0x90 [ 1132.783266][T29270] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1132.783303][T29270] RIP: 0033:0x7f5c3475c84e [ 1132.783333][T29270] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1132.783369][T29270] RSP: 002b:00007f5c35639ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1132.783404][T29270] RAX: ffffffffffffffda RBX: 00007f5c3563a6c0 RCX: 00007f5c3475c84e [ 1132.783428][T29270] RDX: 0000000000000002 RSI: 00007f5c35639f90 RDI: ffffffffffffff9c [ 1132.783450][T29270] RBP: 00007f5c348327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1132.783471][T29270] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1132.783492][T29270] R13: 00007f5c34a16038 R14: 00007f5c34a15fa0 R15: 00007ffde4f31748 [ 1132.783536][T29270] [ 1133.490376][T29277] netlink: 28 bytes leftover after parsing attributes in process `syz.4.9026'. [ 1134.544306][T29297] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 1134.634235][T29302] netlink: 'syz.2.9036': attribute type 4 has an invalid length. [ 1134.642268][T29302] netlink: 314 bytes leftover after parsing attributes in process `syz.2.9036'. [ 1134.651612][T29302] IPv6: Can't replace route, no match found [ 1134.974497][T29311] netlink: 'syz.1.9040': attribute type 33 has an invalid length. [ 1135.332720][T29323] netlink: 21 bytes leftover after parsing attributes in process `syz.2.9044'. [ 1135.757745][T29325] sd 0:0:1:0: device reset [ 1136.106785][T29347] netlink: 326 bytes leftover after parsing attributes in process `syz.4.9050'. [ 1136.152064][T29347] bridge0: port 2(bridge_slave_1) entered disabled state [ 1136.160170][T29347] bridge0: port 1(bridge_slave_0) entered disabled state [ 1136.524258][T29357] netlink: 338 bytes leftover after parsing attributes in process `syz.1.9053'. [ 1136.653426][T29359] ERROR: Out of memory at tomoyo_memory_ok. [ 1136.825129][T29364] sp0: Synchronizing with TNC [ 1137.468714][T29395] netlink: 'syz.4.9061': attribute type 1 has an invalid length. [ 1137.496732][T29395] netlink: 'syz.4.9061': attribute type 6 has an invalid length. [ 1137.924287][T29408] netlink: 'syz.4.9065': attribute type 10 has an invalid length. [ 1137.932293][T29408] netlink: 330 bytes leftover after parsing attributes in process `syz.4.9065'. [ 1137.989721][T29410] binder: 29409:29410 ioctl c0306201 2000000000c0 returned -14 [ 1138.002331][T29412] FAULT_INJECTION: forcing a failure. [ 1138.002331][T29412] name failslab, interval 1, probability 0, space 0, times 0 [ 1138.033110][T29412] CPU: 1 UID: 0 PID: 29412 Comm: syz.1.9068 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1138.033167][T29412] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1138.033182][T29412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1138.033204][T29412] Call Trace: [ 1138.033216][T29412] [ 1138.033229][T29412] dump_stack_lvl+0x100/0x190 [ 1138.033287][T29412] should_fail_ex.cold+0x5/0xa [ 1138.033330][T29412] should_failslab+0xc2/0x120 [ 1138.033384][T29412] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1138.033431][T29412] ? security_file_alloc+0x34/0x2c0 [ 1138.033477][T29412] ? trace_kmem_cache_alloc+0xf3/0x120 [ 1138.033544][T29412] security_file_alloc+0x34/0x2c0 [ 1138.033590][T29412] init_file+0x95/0x480 [ 1138.033624][T29412] alloc_empty_file+0x73/0x1c0 [ 1138.033662][T29412] path_openat+0xe8/0x31a0 [ 1138.033708][T29412] ? kasan_save_stack+0x3f/0x50 [ 1138.033754][T29412] ? kasan_save_stack+0x30/0x50 [ 1138.033799][T29412] ? kasan_save_track+0x14/0x30 [ 1138.033845][T29412] ? __kasan_slab_alloc+0x89/0x90 [ 1138.033902][T29412] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1138.033947][T29412] ? do_getname+0x35/0x390 [ 1138.033982][T29412] ? do_sys_openat2+0xc5/0x1e0 [ 1138.034020][T29412] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1138.034063][T29412] ? __pfx_path_openat+0x10/0x10 [ 1138.034131][T29412] do_file_open+0x20e/0x430 [ 1138.034188][T29412] ? __pfx_do_file_open+0x10/0x10 [ 1138.034272][T29412] ? alloc_fd+0x476/0x790 [ 1138.034326][T29412] ? do_getname+0x191/0x390 [ 1138.034367][T29412] do_sys_openat2+0x10d/0x1e0 [ 1138.034407][T29412] ? __pfx_do_sys_openat2+0x10/0x10 [ 1138.034462][T29412] __x64_sys_openat+0x12d/0x210 [ 1138.034504][T29412] ? __pfx___x64_sys_openat+0x10/0x10 [ 1138.034548][T29412] ? do_user_addr_fault+0x8d6/0x12f0 [ 1138.034615][T29412] do_syscall_64+0x106/0xf80 [ 1138.034663][T29412] ? clear_bhb_loop+0x40/0x90 [ 1138.034707][T29412] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1138.034745][T29412] RIP: 0033:0x7f110c55c84e [ 1138.034774][T29412] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1138.034809][T29412] RSP: 002b:00007f110d412ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1138.034843][T29412] RAX: ffffffffffffffda RBX: 00007f110d4136c0 RCX: 00007f110c55c84e [ 1138.034867][T29412] RDX: 0000000000000002 RSI: 00007f110d412f90 RDI: ffffffffffffff9c [ 1138.034895][T29412] RBP: 00007f110c6327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1138.034917][T29412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1138.034937][T29412] R13: 00007f110c816038 R14: 00007f110c815fa0 R15: 00007ffe11fd96b8 [ 1138.034981][T29412] [ 1138.420743][T29418] i2c i2c-0: Invalid 7-bit I2C address 0x00 [ 1139.549387][T29449] netlink: 330 bytes leftover after parsing attributes in process `syz.4.9081'. [ 1139.864976][T29455] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9084'. [ 1139.890104][T29455] netlink: 13 bytes leftover after parsing attributes in process `syz.3.9084'. [ 1141.173545][T29488] netlink: 354 bytes leftover after parsing attributes in process `syz.2.9098'. [ 1143.401651][T29539] netlink: 326 bytes leftover after parsing attributes in process `syz.1.9116'. [ 1143.426160][T29539] bridge0: port 2(bridge_slave_1) entered disabled state [ 1143.433681][T29539] bridge0: port 1(bridge_slave_0) entered disabled state [ 1143.921681][T29554] FAULT_INJECTION: forcing a failure. [ 1143.921681][T29554] name failslab, interval 1, probability 0, space 0, times 0 [ 1143.944786][T29554] CPU: 1 UID: 0 PID: 29554 Comm: syz.1.9122 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1143.944844][T29554] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1143.944859][T29554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1143.944881][T29554] Call Trace: [ 1143.944894][T29554] [ 1143.944907][T29554] dump_stack_lvl+0x100/0x190 [ 1143.944966][T29554] should_fail_ex.cold+0x5/0xa [ 1143.945008][T29554] should_failslab+0xc2/0x120 [ 1143.945063][T29554] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1143.945104][T29554] ? try_delay_free_filter+0xcc/0x2b0 [ 1143.945165][T29554] try_delay_free_filter+0xcc/0x2b0 [ 1143.945218][T29554] apply_event_filter+0x31d/0x500 [ 1143.945271][T29554] ? __pfx_apply_event_filter+0x10/0x10 [ 1143.945336][T29554] event_filter_write+0x16d/0x290 [ 1143.945376][T29554] vfs_write+0x2aa/0x1070 [ 1143.945426][T29554] ? __pfx_event_filter_write+0x10/0x10 [ 1143.945476][T29554] ? __pfx_vfs_write+0x10/0x10 [ 1143.945526][T29554] ? __fget_files+0x215/0x3d0 [ 1143.945585][T29554] ? __fget_files+0x21f/0x3d0 [ 1143.945648][T29554] ksys_write+0x12a/0x250 [ 1143.945697][T29554] ? __pfx_ksys_write+0x10/0x10 [ 1143.945760][T29554] do_syscall_64+0x106/0xf80 [ 1143.945806][T29554] ? clear_bhb_loop+0x40/0x90 [ 1143.945851][T29554] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1143.945888][T29554] RIP: 0033:0x7f110c59bf79 [ 1143.945919][T29554] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1143.945956][T29554] RSP: 002b:00007f110d413028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1143.945990][T29554] RAX: ffffffffffffffda RBX: 00007f110c815fa0 RCX: 00007f110c59bf79 [ 1143.946013][T29554] RDX: 00000000000005c8 RSI: 0000000000000000 RDI: 0000000000000003 [ 1143.946033][T29554] RBP: 00007f110c6327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1143.946055][T29554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1143.946074][T29554] R13: 00007f110c816038 R14: 00007f110c815fa0 R15: 00007ffe11fd96b8 [ 1143.946120][T29554] [ 1144.335838][T29562] netlink: 4 bytes leftover after parsing attributes in process `syz.2.9125'. [ 1144.409021][T29562] netlink: 354 bytes leftover after parsing attributes in process `syz.2.9125'. [ 1144.844774][T29570] netlink: 28 bytes leftover after parsing attributes in process `syz.4.9128'. [ 1144.854878][T29570] ipvlan0: entered promiscuous mode [ 1144.860273][T29570] ipvlan0: entered allmulticast mode [ 1144.880010][T29570] veth0_vlan: entered allmulticast mode [ 1144.898042][T29572] netlink: 342 bytes leftover after parsing attributes in process `syz.2.9129'. [ 1145.760002][T29597] netlink: 354 bytes leftover after parsing attributes in process `syz.4.9142'. [ 1145.884382][T29602] netlink: 12 bytes leftover after parsing attributes in process `syz.4.9144'. [ 1147.845148][T29633] ERROR: Out of memory at tomoyo_memory_ok. [ 1149.180653][T29653] FAULT_INJECTION: forcing a failure. [ 1149.180653][T29653] name failslab, interval 1, probability 0, space 0, times 0 [ 1149.214688][T29653] CPU: 1 UID: 0 PID: 29653 Comm: syz.3.9162 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1149.214748][T29653] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1149.214763][T29653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1149.214796][T29653] Call Trace: [ 1149.214808][T29653] [ 1149.214821][T29653] dump_stack_lvl+0x100/0x190 [ 1149.214877][T29653] should_fail_ex.cold+0x5/0xa [ 1149.214916][T29653] ? sk_prot_alloc+0x10b/0x2a0 [ 1149.214969][T29653] should_failslab+0xc2/0x120 [ 1149.215024][T29653] __kmalloc_noprof+0xe0/0x850 [ 1149.215082][T29653] sk_prot_alloc+0x10b/0x2a0 [ 1149.215141][T29653] sk_alloc+0x36/0xe80 [ 1149.215185][T29653] tap_open+0x2ed/0x1180 [ 1149.215231][T29653] ? __pfx_tap_open+0x10/0x10 [ 1149.215270][T29653] chrdev_open+0x234/0x6a0 [ 1149.215322][T29653] ? __pfx_apparmor_file_open+0x10/0x10 [ 1149.215359][T29653] ? __pfx_chrdev_open+0x10/0x10 [ 1149.215414][T29653] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1149.215478][T29653] do_dentry_open+0x6d8/0x1660 [ 1149.215530][T29653] ? __pfx_chrdev_open+0x10/0x10 [ 1149.215593][T29653] vfs_open+0x82/0x3f0 [ 1149.215634][T29653] path_openat+0x208c/0x31a0 [ 1149.215700][T29653] ? __pfx_path_openat+0x10/0x10 [ 1149.215778][T29653] do_file_open+0x20e/0x430 [ 1149.215835][T29653] ? __pfx_do_file_open+0x10/0x10 [ 1149.215920][T29653] ? alloc_fd+0x476/0x790 [ 1149.215975][T29653] ? do_getname+0x191/0x390 [ 1149.216016][T29653] do_sys_openat2+0x10d/0x1e0 [ 1149.216056][T29653] ? __pfx_do_sys_openat2+0x10/0x10 [ 1149.216096][T29653] ? find_held_lock+0x2b/0x80 [ 1149.216149][T29653] ? __fget_files+0x215/0x3d0 [ 1149.216207][T29653] __x64_sys_openat+0x12d/0x210 [ 1149.216248][T29653] ? __pfx___x64_sys_openat+0x10/0x10 [ 1149.216305][T29653] do_syscall_64+0x106/0xf80 [ 1149.216351][T29653] ? clear_bhb_loop+0x40/0x90 [ 1149.216395][T29653] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1149.216433][T29653] RIP: 0033:0x7fd18599bf79 [ 1149.216464][T29653] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1149.216499][T29653] RSP: 002b:00007fd1867dd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1149.216534][T29653] RAX: ffffffffffffffda RBX: 00007fd185c15fa0 RCX: 00007fd18599bf79 [ 1149.216557][T29653] RDX: 0000000000000801 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1149.216579][T29653] RBP: 00007fd185a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1149.216600][T29653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1149.216620][T29653] R13: 00007fd185c16038 R14: 00007fd185c15fa0 R15: 00007ffea075c258 [ 1149.216667][T29653] [ 1150.010255][T29674] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1150.752746][T29685] ERROR: Out of memory at tomoyo_memory_ok. [ 1151.489223][T29701] ERROR: Out of memory at tomoyo_memory_ok. [ 1151.669465][ T29] audit: type=1800 audit(1771263679.818:28): pid=29707 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.9183" name="dbroot" dev="configfs" ino=104080 res=0 errno=0 [ 1151.896281][T29710] netlink: 314 bytes leftover after parsing attributes in process `syz.1.9192'. [ 1152.966453][T29739] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9195'. [ 1153.018613][T29741] netlink: 25 bytes leftover after parsing attributes in process `syz.3.9195'. [ 1153.977938][T29763] netlink: 28 bytes leftover after parsing attributes in process `syz.1.9204'. [ 1154.014932][T29763] ipvlan0: entered promiscuous mode [ 1154.023654][T29763] ipvlan0: entered allmulticast mode [ 1154.033835][T29763] veth0_vlan: entered allmulticast mode [ 1154.450620][T29772] [U] [ 1154.453597][T29772] [U] [ 1154.456361][T29772] [U] [ 1154.459127][T29772] [U] [ 1154.465468][T29772] [U] [ 1154.468246][T29772] [U] [ 1154.471008][T29772] [U] [ 1154.473768][T29772] [U] [ 1154.482079][T29770] [U] [ 1154.680218][T29773] sp0: Synchronizing with TNC [ 1155.027476][T29785] netlink: 186 bytes leftover after parsing attributes in process `syz.2.9211'. [ 1155.112447][T29781] netlink: 342 bytes leftover after parsing attributes in process `syz.1.9210'. [ 1156.726211][T29831] netlink: 'syz.3.9229': attribute type 5 has an invalid length. [ 1156.734137][T29831] netlink: 314 bytes leftover after parsing attributes in process `syz.3.9229'. [ 1157.191427][T29841] netlink: 'syz.3.9234': attribute type 1 has an invalid length. [ 1157.209644][T29841] netlink: 306 bytes leftover after parsing attributes in process `syz.3.9234'. [ 1157.305222][T29843] netlink: 146 bytes leftover after parsing attributes in process `syz.3.9235'. [ 1159.071306][T29870] ERROR: Out of memory at tomoyo_memory_ok. [ 1159.675176][T29883] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1159.684017][T29881] ERROR: Out of memory at tomoyo_memory_ok. [ 1159.694132][T29883] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1159.711696][T29883] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1159.737094][T29883] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1159.752367][T29883] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 1159.779307][T29883] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 1160.006476][T29891] netlink: 342 bytes leftover after parsing attributes in process `syz.1.9251'. [ 1160.141360][T29895] binder: 29893:29895 ioctl 40046210 0 returned -14 [ 1160.179452][T29896] mkiss: ax0: crc mode is auto. [ 1160.369131][T29903] netlink: 346 bytes leftover after parsing attributes in process `syz.2.9259'. [ 1161.729398][T29935] FAULT_INJECTION: forcing a failure. [ 1161.729398][T29935] name failslab, interval 1, probability 0, space 0, times 0 [ 1161.745691][T28268] Bluetooth: hci2: command 0x0c1a tx timeout [ 1161.748076][T25858] Bluetooth: hci0: command 0x0406 tx timeout [ 1161.752037][ T5833] Bluetooth: hci3: command 0x0406 tx timeout [ 1161.758406][T25858] Bluetooth: hci1: command 0x0406 tx timeout [ 1161.771928][T29935] CPU: 0 UID: 0 PID: 29935 Comm: syz.1.9272 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1161.771984][T29935] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1161.771999][T29935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1161.772021][T29935] Call Trace: [ 1161.772033][T29935] [ 1161.772047][T29935] dump_stack_lvl+0x100/0x190 [ 1161.772113][T29935] should_fail_ex.cold+0x5/0xa [ 1161.772157][T29935] should_failslab+0xc2/0x120 [ 1161.772214][T29935] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 1161.772262][T29935] ? __d_alloc+0x34/0xa80 [ 1161.772316][T29935] ? make_vfsgid+0xf1/0x140 [ 1161.772363][T29935] __d_alloc+0x34/0xa80 [ 1161.772417][T29935] ? bpf_lsm_inode_permission+0x9/0x10 [ 1161.772478][T29935] d_alloc+0x4a/0x1e0 [ 1161.772542][T29935] vfs_tmpfile+0x148/0x9a0 [ 1161.772604][T29935] path_openat+0x164e/0x31a0 [ 1161.772654][T29935] ? kasan_save_stack+0x3f/0x50 [ 1161.772699][T29935] ? kasan_save_stack+0x30/0x50 [ 1161.772745][T29935] ? __kasan_slab_alloc+0x89/0x90 [ 1161.772791][T29935] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1161.772834][T29935] ? do_getname+0x35/0x390 [ 1161.772874][T29935] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1161.772916][T29935] ? __pfx_path_openat+0x10/0x10 [ 1161.772981][T29935] do_file_open+0x20e/0x430 [ 1161.773036][T29935] ? __pfx_do_file_open+0x10/0x10 [ 1161.773124][T29935] ? _raw_spin_unlock+0x28/0x50 [ 1161.773165][T29935] ? alloc_fd+0x476/0x790 [ 1161.773224][T29935] do_sys_openat2+0x10d/0x1e0 [ 1161.773263][T29935] ? __pfx_do_sys_openat2+0x10/0x10 [ 1161.773303][T29935] ? __fget_files+0x21f/0x3d0 [ 1161.773359][T29935] __x64_sys_open+0xfe/0x1d0 [ 1161.773415][T29935] ? __pfx___x64_sys_open+0x10/0x10 [ 1161.773470][T29935] do_syscall_64+0x106/0xf80 [ 1161.773514][T29935] ? clear_bhb_loop+0x40/0x90 [ 1161.773557][T29935] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1161.773594][T29935] RIP: 0033:0x7f110c59bf79 [ 1161.773624][T29935] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1161.773660][T29935] RSP: 002b:00007f110d413028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 1161.773693][T29935] RAX: ffffffffffffffda RBX: 00007f110c815fa0 RCX: 00007f110c59bf79 [ 1161.773716][T29935] RDX: 0000000000000408 RSI: 0000000000591002 RDI: 0000200000000100 [ 1161.773738][T29935] RBP: 00007f110c6327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1161.773758][T29935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1161.773777][T29935] R13: 00007f110c816038 R14: 00007f110c815fa0 R15: 00007ffe11fd96b8 [ 1161.773822][T29935] [ 1162.321866][T29945] FAULT_INJECTION: forcing a failure. [ 1162.321866][T29945] name failslab, interval 1, probability 0, space 0, times 0 [ 1162.338557][T29945] CPU: 0 UID: 0 PID: 29945 Comm: syz.1.9274 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1162.338610][T29945] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1162.338622][T29945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1162.338641][T29945] Call Trace: [ 1162.338651][T29945] [ 1162.338662][T29945] dump_stack_lvl+0x100/0x190 [ 1162.338711][T29945] should_fail_ex.cold+0x5/0xa [ 1162.338743][T29945] ? lsm_blob_alloc+0x68/0x90 [ 1162.338783][T29945] should_failslab+0xc2/0x120 [ 1162.338828][T29945] __kmalloc_noprof+0xe0/0x850 [ 1162.338864][T29945] ? trace_kmalloc+0x101/0x130 [ 1162.338912][T29945] lsm_blob_alloc+0x68/0x90 [ 1162.338953][T29945] security_sk_alloc+0x2d/0x290 [ 1162.338984][T29945] sk_prot_alloc+0x12a/0x2a0 [ 1162.339030][T29945] sk_alloc+0x36/0xe80 [ 1162.339072][T29945] xsk_create+0x117/0x760 [ 1162.339123][T29945] __sock_create+0x339/0x860 [ 1162.339176][T29945] __sys_socket+0x14d/0x260 [ 1162.339206][T29945] ? __pfx___sys_socket+0x10/0x10 [ 1162.339252][T29945] __x64_sys_socket+0x72/0xb0 [ 1162.339285][T29945] ? lockdep_hardirqs_on+0x78/0x100 [ 1162.339330][T29945] do_syscall_64+0x106/0xf80 [ 1162.339374][T29945] ? clear_bhb_loop+0x40/0x90 [ 1162.339416][T29945] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1162.339452][T29945] RIP: 0033:0x7f110c59bf79 [ 1162.339481][T29945] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1162.339515][T29945] RSP: 002b:00007f110d413028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 1162.339548][T29945] RAX: ffffffffffffffda RBX: 00007f110c815fa0 RCX: 00007f110c59bf79 [ 1162.339571][T29945] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 000000000000002c [ 1162.339591][T29945] RBP: 00007f110c6327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1162.339612][T29945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1162.339632][T29945] R13: 00007f110c816038 R14: 00007f110c815fa0 R15: 00007ffe11fd96b8 [ 1162.339676][T29945] [ 1162.968341][T29954] kvm: kvm [29953]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x4000000e) = 0x4 [ 1163.059612][T29959] binder: 29958:29959 ioctl 40046210 0 returned -14 [ 1163.536318][T29966] zswap: compressor û not available [ 1163.826682][T29936] Bluetooth: hci2: command 0x0c1a tx timeout [ 1164.238653][T29986] sp0: Synchronizing with TNC [ 1164.449544][T30000] netlink: 54 bytes leftover after parsing attributes in process `syz.2.9294'. [ 1164.638662][T30003] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1164.656772][T30003] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1164.666206][T30003] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1164.675959][T30003] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1165.022997][T30014] netlink: 25 bytes leftover after parsing attributes in process `syz.4.9300'. [ 1165.289183][T30026] netlink: 342 bytes leftover after parsing attributes in process `syz.3.9304'. [ 1165.296001][T30028] netlink: 330 bytes leftover after parsing attributes in process `syz.1.9305'. [ 1165.307883][T30028] –õ\­: renamed from lo [ 1166.120689][T30045] zswap: compressor  not available [ 1166.707975][T29936] Bluetooth: hci2: command 0x0c1a tx timeout [ 1166.714110][ T5840] Bluetooth: hci0: command 0x0406 tx timeout [ 1166.714147][T25858] Bluetooth: hci3: command 0x0406 tx timeout [ 1166.724170][ T5833] Bluetooth: hci1: command 0x0406 tx timeout [ 1170.250120][T30127] ERROR: Out of memory at tomoyo_memory_ok. [ 1171.140853][T30137] ERROR: Out of memory at tomoyo_memory_ok. [ 1171.150687][T30135] netlink: 290 bytes leftover after parsing attributes in process `syz.1.9342'. [ 1171.361245][T30140] FAULT_INJECTION: forcing a failure. [ 1171.361245][T30140] name failslab, interval 1, probability 0, space 0, times 0 [ 1171.440702][T30140] CPU: 1 UID: 0 PID: 30140 Comm: syz.2.9344 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1171.440760][T30140] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1171.440774][T30140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1171.440795][T30140] Call Trace: [ 1171.440807][T30140] [ 1171.440821][T30140] dump_stack_lvl+0x100/0x190 [ 1171.440879][T30140] should_fail_ex.cold+0x5/0xa [ 1171.440921][T30140] should_failslab+0xc2/0x120 [ 1171.440976][T30140] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 1171.441036][T30140] ? sctp_sysctl_net_register+0x30/0x200 [ 1171.441101][T30140] ? __pfx_sctp_defaults_init+0x10/0x10 [ 1171.441152][T30140] kmemdup_noprof+0x29/0x60 [ 1171.441203][T30140] sctp_sysctl_net_register+0x30/0x200 [ 1171.441256][T30140] ? __pfx_sctp_defaults_init+0x10/0x10 [ 1171.441304][T30140] sctp_defaults_init+0x6d2/0xd90 [ 1171.441354][T30140] ? __pfx_sctp_defaults_init+0x10/0x10 [ 1171.441404][T30140] ops_init+0x1e2/0x5f0 [ 1171.441457][T30140] setup_net+0x118/0x3a0 [ 1171.441506][T30140] ? __pfx_setup_net+0x10/0x10 [ 1171.441551][T30140] ? lockdep_init_map_type+0x5c/0x250 [ 1171.441597][T30140] ? mutex_init_lockep+0x110/0x150 [ 1171.441649][T30140] copy_net_ns+0x46f/0x7c0 [ 1171.441706][T30140] create_new_namespaces+0x3ea/0xac0 [ 1171.441781][T30140] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1171.441822][T30140] ksys_unshare+0x455/0xab0 [ 1171.441867][T30140] ? __pfx_ksys_unshare+0x10/0x10 [ 1171.441927][T30140] __x64_sys_unshare+0x31/0x40 [ 1171.441970][T30140] do_syscall_64+0x106/0xf80 [ 1171.442016][T30140] ? clear_bhb_loop+0x40/0x90 [ 1171.442060][T30140] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1171.442106][T30140] RIP: 0033:0x7f7d0839bf79 [ 1171.442135][T30140] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1171.442171][T30140] RSP: 002b:00007f7d09309028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1171.442205][T30140] RAX: ffffffffffffffda RBX: 00007f7d08615fa0 RCX: 00007f7d0839bf79 [ 1171.442229][T30140] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1171.442249][T30140] RBP: 00007f7d084327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1171.442269][T30140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1171.442290][T30140] R13: 00007f7d08616038 R14: 00007f7d08615fa0 R15: 00007fff0ed91f78 [ 1171.442334][T30140] [ 1172.320850][T30155] futex_wake_op: syz.4.9349 tries to shift op by -2048; fix this program [ 1172.350134][T30155] futex_wake_op: syz.4.9349 tries to shift op by -2048; fix this program [ 1173.028967][T30166] netlink: 146 bytes leftover after parsing attributes in process `syz.4.9353'. [ 1173.498283][T30178] netlink: 330 bytes leftover after parsing attributes in process `syz.2.9356'. [ 1173.813630][T30190] netlink: 326 bytes leftover after parsing attributes in process `syz.3.9363'. [ 1173.969645][T30183] FAULT_INJECTION: forcing a failure. [ 1173.969645][T30183] name failslab, interval 1, probability 0, space 0, times 0 [ 1173.986911][T30193] netlink: 342 bytes leftover after parsing attributes in process `syz.3.9365'. [ 1174.004674][T30193] netlink: 150 bytes leftover after parsing attributes in process `syz.3.9365'. [ 1174.010138][T30183] CPU: 1 UID: 0 PID: 30183 Comm: syz.4.9360 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1174.010281][T30183] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1174.010320][T30183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1174.010385][T30183] Call Trace: [ 1174.010421][T30183] [ 1174.010460][T30183] dump_stack_lvl+0x100/0x190 [ 1174.010608][T30183] should_fail_ex.cold+0x5/0xa [ 1174.010708][T30183] should_failslab+0xc2/0x120 [ 1174.010831][T30183] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 1174.010947][T30183] ? __d_alloc+0x34/0xa80 [ 1174.011062][T30183] ? __pfx_inode_set_ctime_to_ts+0x10/0x10 [ 1174.011195][T30183] ? lockdep_hardirqs_on+0x78/0x100 [ 1174.011327][T30183] __d_alloc+0x34/0xa80 [ 1174.011456][T30183] d_alloc+0x4a/0x1e0 [ 1174.011610][T30183] d_alloc_name+0x83/0xb0 [ 1174.011743][T30183] ? __pfx_d_alloc_name+0x10/0x10 [ 1174.011913][T30183] ? dput.part.0+0xdd/0x570 [ 1174.012011][T30183] simple_fill_super+0x4c3/0x680 [ 1174.012152][T30183] ? __pfx_nfsd_fill_super+0x10/0x10 [ 1174.012266][T30183] nfsd_fill_super+0x98/0x560 [ 1174.012372][T30183] ? __pfx_set_anon_super_fc+0x10/0x10 [ 1174.012478][T30183] ? __pfx_nfsd_fill_super+0x10/0x10 [ 1174.012594][T30183] get_tree_keyed+0x10e/0x1d0 [ 1174.012720][T30183] vfs_get_tree+0x92/0x320 [ 1174.012835][T30183] path_mount+0x7d0/0x23d0 [ 1174.012929][T30183] ? __pfx_path_mount+0x10/0x10 [ 1174.013002][T30183] ? lockdep_hardirqs_on+0x78/0x100 [ 1174.013119][T30183] ? putname+0xb1/0x110 [ 1174.013270][T30183] ? kmem_cache_free+0x124/0x6a0 [ 1174.013382][T30183] ? __x64_sys_mount+0x293/0x310 [ 1174.013476][T30183] __x64_sys_mount+0x293/0x310 [ 1174.013565][T30183] ? __pfx___x64_sys_mount+0x10/0x10 [ 1174.013677][T30183] do_syscall_64+0x106/0xf80 [ 1174.013766][T30183] ? clear_bhb_loop+0x40/0x90 [ 1174.013806][T30183] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1174.013843][T30183] RIP: 0033:0x7f5c3479bf79 [ 1174.013870][T30183] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1174.013902][T30183] RSP: 002b:00007f5c3563a028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1174.013935][T30183] RAX: ffffffffffffffda RBX: 00007f5c34a15fa0 RCX: 00007f5c3479bf79 [ 1174.013957][T30183] RDX: 0000200000000140 RSI: 0000000000000000 RDI: 0000000000000000 [ 1174.013977][T30183] RBP: 00007f5c348327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1174.013996][T30183] R10: 000000000000000f R11: 0000000000000246 R12: 0000000000000000 [ 1174.014016][T30183] R13: 00007f5c34a16038 R14: 00007f5c34a15fa0 R15: 00007ffde4f31748 [ 1174.014059][T30183] [ 1175.166155][T30212] kvm: user requested TSC rate below hardware speed [ 1176.209936][T30232] FAULT_INJECTION: forcing a failure. [ 1176.209936][T30232] name failslab, interval 1, probability 0, space 0, times 0 [ 1176.222795][T30232] CPU: 1 UID: 0 PID: 30232 Comm: syz.2.9381 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1176.222852][T30232] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1176.222865][T30232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1176.222887][T30232] Call Trace: [ 1176.222898][T30232] [ 1176.222912][T30232] dump_stack_lvl+0x100/0x190 [ 1176.222966][T30232] should_fail_ex.cold+0x5/0xa [ 1176.223014][T30232] should_failslab+0xc2/0x120 [ 1176.223069][T30232] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1176.223108][T30232] ? ovs_ct_limit_cmd_set+0x30a/0xa70 [ 1176.223164][T30232] ovs_ct_limit_cmd_set+0x30a/0xa70 [ 1176.223215][T30232] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 1176.223262][T30232] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290 [ 1176.223313][T30232] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290 [ 1176.223368][T30232] genl_family_rcv_msg_doit+0x214/0x300 [ 1176.223419][T30232] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 1176.223468][T30232] ? genl_get_cmd+0x3ef/0x720 [ 1176.223518][T30232] ? bpf_lsm_capable+0x9/0x10 [ 1176.223562][T30232] ? security_capable+0x80/0x260 [ 1176.223610][T30232] ? ns_capable+0xd2/0xf0 [ 1176.223659][T30232] genl_rcv_msg+0x560/0x800 [ 1176.223708][T30232] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1176.223758][T30232] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 1176.223806][T30232] ? __lock_acquire+0x4a5/0x2630 [ 1176.223846][T30232] netlink_rcv_skb+0x159/0x420 [ 1176.223887][T30232] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1176.223935][T30232] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1176.223996][T30232] ? netlink_deliver_tap+0x1ae/0xcc0 [ 1176.224041][T30232] genl_rcv+0x28/0x40 [ 1176.224082][T30232] netlink_unicast+0x5aa/0x870 [ 1176.224129][T30232] ? __pfx_netlink_unicast+0x10/0x10 [ 1176.224169][T30232] ? __asan_memset+0x23/0x50 [ 1176.224204][T30232] ? __build_skb_around+0x278/0x390 [ 1176.224236][T30232] ? is_vmalloc_addr+0x86/0xa0 [ 1176.224274][T30232] netlink_sendmsg+0x8b0/0xda0 [ 1176.224321][T30232] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1176.224360][T30232] ? __import_iovec+0x1d2/0x640 [ 1176.224399][T30232] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 1176.224451][T30232] ____sys_sendmsg+0xa54/0xc30 [ 1176.224501][T30232] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1176.224555][T30232] ? __pfx_futex_wake_mark+0x10/0x10 [ 1176.224601][T30232] ___sys_sendmsg+0x190/0x1e0 [ 1176.224631][T30232] ? __pfx____sys_sendmsg+0x10/0x10 [ 1176.224689][T30232] ? do_futex+0x192/0x350 [ 1176.224730][T30232] __sys_sendmsg+0x170/0x220 [ 1176.224768][T30232] ? __pfx___sys_sendmsg+0x10/0x10 [ 1176.224806][T30232] ? __x64_sys_futex+0x34f/0x4d0 [ 1176.224860][T30232] do_syscall_64+0x106/0xf80 [ 1176.224898][T30232] ? clear_bhb_loop+0x40/0x90 [ 1176.224934][T30232] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1176.224964][T30232] RIP: 0033:0x7f7d0839bf79 [ 1176.224995][T30232] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1176.225025][T30232] RSP: 002b:00007f7d09309028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1176.225055][T30232] RAX: ffffffffffffffda RBX: 00007f7d08615fa0 RCX: 00007f7d0839bf79 [ 1176.225077][T30232] RDX: 0000000000000004 RSI: 0000200000000100 RDI: 0000000000000000 [ 1176.225096][T30232] RBP: 00007f7d084327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1176.225114][T30232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1176.225131][T30232] R13: 00007f7d08616038 R14: 00007f7d08615fa0 R15: 00007fff0ed91f78 [ 1176.225167][T30232] [ 1177.088970][T30243] FAULT_INJECTION: forcing a failure. [ 1177.088970][T30243] name failslab, interval 1, probability 0, space 0, times 0 [ 1177.127342][T30243] CPU: 0 UID: 0 PID: 30243 Comm: syz.2.9386 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1177.127405][T30243] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1177.127419][T30243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1177.127441][T30243] Call Trace: [ 1177.127453][T30243] [ 1177.127467][T30243] dump_stack_lvl+0x100/0x190 [ 1177.127526][T30243] should_fail_ex.cold+0x5/0xa [ 1177.127567][T30243] should_failslab+0xc2/0x120 [ 1177.127623][T30243] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1177.127663][T30243] ? seq_create_client1+0x4d/0x640 [ 1177.127722][T30243] ? __pfx_snd_seq_open+0x10/0x10 [ 1177.127773][T30243] seq_create_client1+0x4d/0x640 [ 1177.127830][T30243] ? __pfx_snd_seq_open+0x10/0x10 [ 1177.127882][T30243] snd_seq_open+0x59/0x590 [ 1177.127936][T30243] ? __pfx_snd_seq_open+0x10/0x10 [ 1177.127992][T30243] snd_open+0x22d/0x4c0 [ 1177.128050][T30243] ? __pfx_snd_open+0x10/0x10 [ 1177.128107][T30243] chrdev_open+0x234/0x6a0 [ 1177.128159][T30243] ? __pfx_apparmor_file_open+0x10/0x10 [ 1177.128196][T30243] ? __pfx_chrdev_open+0x10/0x10 [ 1177.128251][T30243] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1177.128315][T30243] do_dentry_open+0x6d8/0x1660 [ 1177.128367][T30243] ? __pfx_chrdev_open+0x10/0x10 [ 1177.128431][T30243] vfs_open+0x82/0x3f0 [ 1177.128473][T30243] path_openat+0x208c/0x31a0 [ 1177.128541][T30243] ? __pfx_path_openat+0x10/0x10 [ 1177.128612][T30243] do_file_open+0x20e/0x430 [ 1177.128668][T30243] ? __pfx_do_file_open+0x10/0x10 [ 1177.128753][T30243] ? alloc_fd+0x476/0x790 [ 1177.128809][T30243] ? do_getname+0x191/0x390 [ 1177.128850][T30243] do_sys_openat2+0x10d/0x1e0 [ 1177.128889][T30243] ? __pfx_do_sys_openat2+0x10/0x10 [ 1177.128945][T30243] __x64_sys_openat+0x12d/0x210 [ 1177.128992][T30243] ? __pfx___x64_sys_openat+0x10/0x10 [ 1177.129074][T30243] do_syscall_64+0x106/0xf80 [ 1177.129122][T30243] ? clear_bhb_loop+0x40/0x90 [ 1177.129166][T30243] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1177.129203][T30243] RIP: 0033:0x7f7d0839bf79 [ 1177.129234][T30243] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1177.129270][T30243] RSP: 002b:00007f7d09309028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1177.129305][T30243] RAX: ffffffffffffffda RBX: 00007f7d08615fa0 RCX: 00007f7d0839bf79 [ 1177.129329][T30243] RDX: 00000000001e3800 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1177.129352][T30243] RBP: 00007f7d084327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1177.129373][T30243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1177.129394][T30243] R13: 00007f7d08616038 R14: 00007f7d08615fa0 R15: 00007fff0ed91f78 [ 1177.129439][T30243] [ 1177.512889][T30249] netlink: 346 bytes leftover after parsing attributes in process `syz.4.9388'. [ 1177.541595][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1177.553319][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1177.845656][T30258] netlink: 17 bytes leftover after parsing attributes in process `syz.3.9393'. [ 1180.740328][T30327] netlink: 342 bytes leftover after parsing attributes in process `syz.4.9418'. [ 1180.749917][T30327] IPv6: NLM_F_REPLACE set, but no existing node found! [ 1181.398968][T30342] ERROR: Out of memory at tomoyo_memory_ok. [ 1184.667782][T30431] netlink: 12 bytes leftover after parsing attributes in process `syz.1.9460'. [ 1184.716401][T30429] sd 0:0:1:0: PR command failed: 1026 [ 1184.733003][T30429] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 1184.747168][T30429] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 1185.424524][T30450] netlink: 342 bytes leftover after parsing attributes in process `syz.3.9465'. [ 1185.458687][T30450] netlink: 214 bytes leftover after parsing attributes in process `syz.3.9465'. [ 1185.545778][T30452] random: crng reseeded on system resumption [ 1185.997760][T30471] netlink: 354 bytes leftover after parsing attributes in process `syz.1.9474'. [ 1186.709861][T30488] netlink: 330 bytes leftover after parsing attributes in process `syz.2.9480'. [ 1186.806601][T30486] netlink: 342 bytes leftover after parsing attributes in process `syz.3.9479'. [ 1186.831260][T30486] netlink: 'syz.3.9479': attribute type 2 has an invalid length. [ 1186.839724][T30486] netlink: 'syz.3.9479': attribute type 3 has an invalid length. [ 1186.847504][T30486] netlink: 222 bytes leftover after parsing attributes in process `syz.3.9479'. [ 1187.273379][T30500] netlink: 'syz.2.9484': attribute type 1 has an invalid length. [ 1187.288326][T30500] netlink: 314 bytes leftover after parsing attributes in process `syz.2.9484'. [ 1187.345976][T30503] netlink: 334 bytes leftover after parsing attributes in process `syz.1.9485'. [ 1188.039307][T30533] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1188.216440][T30537] netlink: 146 bytes leftover after parsing attributes in process `syz.3.9500'. [ 1190.041214][T30582] kvm: kvm [30581]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x40000085) [ 1190.241844][T30588] sg_write: data in/out 100663260/90 bytes for SCSI command 0x0-- guessing data in; [ 1190.241844][T30588] program syz.1.9519 not setting count and/or reply_len properly [ 1190.597734][T30599] netlink: 4 bytes leftover after parsing attributes in process `syz.2.9523'. [ 1190.624626][T30599] netlink: 25 bytes leftover after parsing attributes in process `syz.2.9523'. [ 1191.003230][T30612] netlink: 342 bytes leftover after parsing attributes in process `syz.1.9529'. [ 1191.041215][T30612] netlink: 146 bytes leftover after parsing attributes in process `syz.1.9529'. [ 1191.796233][T30634] FAULT_INJECTION: forcing a failure. [ 1191.796233][T30634] name failslab, interval 1, probability 0, space 0, times 0 [ 1191.809975][T30634] CPU: 1 UID: 0 PID: 30634 Comm: syz.4.9536 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1191.810034][T30634] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1191.810049][T30634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1191.810070][T30634] Call Trace: [ 1191.810082][T30634] [ 1191.810097][T30634] dump_stack_lvl+0x100/0x190 [ 1191.810157][T30634] should_fail_ex.cold+0x5/0xa [ 1191.810198][T30634] should_failslab+0xc2/0x120 [ 1191.810252][T30634] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1191.810291][T30634] ? tipc_sub_subscribe+0x15c/0x730 [ 1191.810340][T30634] ? find_held_lock+0x2b/0x80 [ 1191.810406][T30634] tipc_sub_subscribe+0x15c/0x730 [ 1191.810458][T30634] tipc_conn_rcv_sub+0x21e/0x3d0 [ 1191.810504][T30634] tipc_topsrv_kern_subscr+0x20b/0x3c0 [ 1191.810553][T30634] ? __pfx_tipc_topsrv_kern_subscr+0x10/0x10 [ 1191.810601][T30634] ? net_generic+0xea/0x2a0 [ 1191.810651][T30634] tipc_group_create+0x4ab/0x660 [ 1191.810703][T30634] tipc_setsockopt+0x611/0xe30 [ 1191.810764][T30634] ? __pfx_tipc_setsockopt+0x10/0x10 [ 1191.810845][T30634] ? __pfx_tipc_setsockopt+0x10/0x10 [ 1191.810903][T30634] do_sock_setsockopt+0xf3/0x1d0 [ 1191.810964][T30634] __sys_setsockopt+0x119/0x190 [ 1191.811016][T30634] __x64_sys_setsockopt+0xbd/0x160 [ 1191.811060][T30634] ? do_syscall_64+0x95/0xf80 [ 1191.811106][T30634] ? lockdep_hardirqs_on+0x78/0x100 [ 1191.811152][T30634] do_syscall_64+0x106/0xf80 [ 1191.811196][T30634] ? clear_bhb_loop+0x40/0x90 [ 1191.811241][T30634] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1191.811279][T30634] RIP: 0033:0x7f5c3479bf79 [ 1191.811309][T30634] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1191.811345][T30634] RSP: 002b:00007f5c3563a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 1191.811380][T30634] RAX: ffffffffffffffda RBX: 00007f5c34a15fa0 RCX: 00007f5c3479bf79 [ 1191.811403][T30634] RDX: 0000000000000087 RSI: 000000000000010f RDI: 0000000000000003 [ 1191.811423][T30634] RBP: 00007f5c348327e0 R08: 0000000000000014 R09: 0000000000000000 [ 1191.811445][T30634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1191.811465][T30634] R13: 00007f5c34a16038 R14: 00007f5c34a15fa0 R15: 00007ffde4f31748 [ 1191.811511][T30634] [ 1192.043941][T30634] tipc: Subscription rejected, no memory [ 1192.573089][T30643] ERROR: Out of memory at tomoyo_memory_ok. [ 1195.074028][T30696] netlink: 146 bytes leftover after parsing attributes in process `syz.4.9562'. [ 1196.048860][T30720] FAULT_INJECTION: forcing a failure. [ 1196.048860][T30720] name failslab, interval 1, probability 0, space 0, times 0 [ 1196.072057][T30720] CPU: 1 UID: 0 PID: 30720 Comm: syz.3.9572 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1196.072117][T30720] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1196.072131][T30720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1196.072153][T30720] Call Trace: [ 1196.072165][T30720] [ 1196.072179][T30720] dump_stack_lvl+0x100/0x190 [ 1196.072237][T30720] should_fail_ex.cold+0x5/0xa [ 1196.072278][T30720] should_failslab+0xc2/0x120 [ 1196.072342][T30720] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1196.072380][T30720] ? alloc_pipe_info+0x10e/0x590 [ 1196.072437][T30720] ? security_inode_alloc+0xcf/0x2c0 [ 1196.072471][T30720] alloc_pipe_info+0x10e/0x590 [ 1196.072551][T30720] create_pipe_files+0x8c/0x970 [ 1196.072608][T30720] do_pipe2+0xbd/0x1e0 [ 1196.072659][T30720] ? __pfx_do_pipe2+0x10/0x10 [ 1196.072722][T30720] __x64_sys_pipe+0x33/0x50 [ 1196.072775][T30720] do_syscall_64+0x106/0xf80 [ 1196.072824][T30720] ? clear_bhb_loop+0x40/0x90 [ 1196.072856][T30720] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1196.072883][T30720] RIP: 0033:0x7fd18599bf79 [ 1196.072904][T30720] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1196.072930][T30720] RSP: 002b:00007fd1867dd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 1196.072955][T30720] RAX: ffffffffffffffda RBX: 00007fd185c15fa0 RCX: 00007fd18599bf79 [ 1196.072972][T30720] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1196.072988][T30720] RBP: 00007fd185a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1196.073004][T30720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1196.073019][T30720] R13: 00007fd185c16038 R14: 00007fd185c15fa0 R15: 00007ffea075c258 [ 1196.073051][T30720] [ 1196.454658][T30723] netlink: 'syz.2.9573': attribute type 33 has an invalid length. [ 1196.463067][T30723] netlink: 322 bytes leftover after parsing attributes in process `syz.2.9573'. [ 1198.344942][T30772] FAULT_INJECTION: forcing a failure. [ 1198.344942][T30772] name failslab, interval 1, probability 0, space 0, times 0 [ 1198.358184][T30772] CPU: 1 UID: 0 PID: 30772 Comm: syz.4.9594 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1198.358249][T30772] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1198.358261][T30772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1198.358279][T30772] Call Trace: [ 1198.358288][T30772] [ 1198.358300][T30772] dump_stack_lvl+0x100/0x190 [ 1198.358349][T30772] should_fail_ex.cold+0x5/0xa [ 1198.358383][T30772] ? process_preds+0x4bc/0x1e10 [ 1198.358420][T30772] should_failslab+0xc2/0x120 [ 1198.358463][T30772] __kmalloc_noprof+0xe0/0x850 [ 1198.358508][T30772] process_preds+0x4bc/0x1e10 [ 1198.358553][T30772] ? create_filter_start.constprop.0+0x134/0x310 [ 1198.358598][T30772] create_filter+0x140/0x210 [ 1198.358638][T30772] ? __pfx_create_filter+0x10/0x10 [ 1198.358680][T30772] ? find_held_lock+0x2b/0x80 [ 1198.358728][T30772] apply_event_filter+0x220/0x500 [ 1198.358768][T30772] ? __pfx_apply_event_filter+0x10/0x10 [ 1198.358817][T30772] event_filter_write+0x16d/0x290 [ 1198.358849][T30772] vfs_write+0x2aa/0x1070 [ 1198.358888][T30772] ? __pfx_event_filter_write+0x10/0x10 [ 1198.358921][T30772] ? __pfx_vfs_write+0x10/0x10 [ 1198.358959][T30772] ? __fget_files+0x215/0x3d0 [ 1198.359006][T30772] ? __fget_files+0x21f/0x3d0 [ 1198.359054][T30772] ksys_write+0x12a/0x250 [ 1198.359103][T30772] ? __pfx_ksys_write+0x10/0x10 [ 1198.359154][T30772] do_syscall_64+0x106/0xf80 [ 1198.359192][T30772] ? clear_bhb_loop+0x40/0x90 [ 1198.359227][T30772] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1198.359257][T30772] RIP: 0033:0x7f5c3479bf79 [ 1198.359281][T30772] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1198.359311][T30772] RSP: 002b:00007f5c3563a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1198.359339][T30772] RAX: ffffffffffffffda RBX: 00007f5c34a15fa0 RCX: 00007f5c3479bf79 [ 1198.359359][T30772] RDX: 00000000000005c8 RSI: 0000000000000000 RDI: 0000000000000003 [ 1198.359376][T30772] RBP: 00007f5c348327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1198.359394][T30772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1198.359411][T30772] R13: 00007f5c34a16038 R14: 00007f5c34a15fa0 R15: 00007ffde4f31748 [ 1198.359448][T30772] [ 1198.388000][T30769] ptrace attach of "./syz-executor exec"[15103] was attempted by "                                                                                                                                                                                                                                                [ 1200.205894][T30805] FAULT_INJECTION: forcing a failure. [ 1200.205894][T30805] name failslab, interval 1, probability 0, space 0, times 0 [ 1200.330027][T30805] CPU: 0 UID: 0 PID: 30805 Comm: syz.1.9606 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1200.330087][T30805] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1200.330101][T30805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1200.330122][T30805] Call Trace: [ 1200.330134][T30805] [ 1200.330148][T30805] dump_stack_lvl+0x100/0x190 [ 1200.330207][T30805] should_fail_ex.cold+0x5/0xa [ 1200.330247][T30805] should_failslab+0xc2/0x120 [ 1200.330299][T30805] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 1200.330354][T30805] ? v9fs_init_fs_context+0xf1/0x590 [ 1200.330399][T30805] kstrdup+0x51/0xe0 [ 1200.330451][T30805] v9fs_init_fs_context+0xf1/0x590 [ 1200.330488][T30805] alloc_fs_context+0x60c/0xf40 [ 1200.330553][T30805] __x64_sys_fsopen+0xed/0x220 [ 1200.330594][T30805] do_syscall_64+0x106/0xf80 [ 1200.330641][T30805] ? clear_bhb_loop+0x40/0x90 [ 1200.330685][T30805] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1200.330723][T30805] RIP: 0033:0x7f110c59bf79 [ 1200.330754][T30805] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1200.330790][T30805] RSP: 002b:00007f110d413028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae [ 1200.330825][T30805] RAX: ffffffffffffffda RBX: 00007f110c815fa0 RCX: 00007f110c59bf79 [ 1200.330849][T30805] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 1200.330869][T30805] RBP: 00007f110c6327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1200.330891][T30805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1200.330923][T30805] R13: 00007f110c816038 R14: 00007f110c815fa0 R15: 00007ffe11fd96b8 [ 1200.330971][T30805] [ 1201.607357][T30822] netlink: 25 bytes leftover after parsing attributes in process `syz.2.9612'. [ 1201.699287][T30824] random: crng reseeded on system resumption [ 1201.758668][T30824] RDS: rds_bind could not find a transport for fe80::736d:2f73:7461:626c, load rds_tcp or rds_rdma? [ 1202.167607][T30835] sd 0:0:1:0: PR command failed: 1026 [ 1202.193580][T30835] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 1202.225776][T30835] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 1202.343279][T30845] sp0: Synchronizing with TNC [ 1202.619023][T30846] zswap: compressor û not available [ 1203.429366][T30865] FAULT_INJECTION: forcing a failure. [ 1203.429366][T30865] name failslab, interval 1, probability 0, space 0, times 0 [ 1203.497482][T30865] CPU: 1 UID: 0 PID: 30865 Comm: syz.2.9626 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1203.497541][T30865] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1203.497556][T30865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1203.497577][T30865] Call Trace: [ 1203.497589][T30865] [ 1203.497603][T30865] dump_stack_lvl+0x100/0x190 [ 1203.497663][T30865] should_fail_ex.cold+0x5/0xa [ 1203.497704][T30865] should_failslab+0xc2/0x120 [ 1203.497761][T30865] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1203.497809][T30865] ? __kernfs_new_node+0xd2/0x960 [ 1203.497847][T30865] ? kstrdup+0xb3/0xe0 [ 1203.497902][T30865] __kernfs_new_node+0xd2/0x960 [ 1203.497937][T30865] ? path_openat+0x208c/0x31a0 [ 1203.497997][T30865] ? do_file_open+0x20e/0x430 [ 1203.498051][T30865] ? do_syscall_64+0x106/0xf80 [ 1203.498097][T30865] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1203.498137][T30865] ? __pfx___kernfs_new_node+0x10/0x10 [ 1203.498186][T30865] ? find_held_lock+0x2b/0x80 [ 1203.498252][T30865] ? kernfs_root+0xee/0x2a0 [ 1203.498285][T30865] ? kernfs_root+0xee/0x2a0 [ 1203.498330][T30865] kernfs_new_node+0x11b/0x1a0 [ 1203.498378][T30865] kernfs_create_dir_ns+0x4c/0x1a0 [ 1203.498444][T30865] sysfs_create_dir_ns+0x13a/0x2b0 [ 1203.498495][T30865] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 1203.498527][T30865] ? find_held_lock+0x2b/0x80 [ 1203.498579][T30865] ? kobject_add_internal+0x25f/0x930 [ 1203.498632][T30865] ? kobject_add_internal+0x25f/0x930 [ 1203.498690][T30865] ? do_raw_spin_unlock+0x145/0x1e0 [ 1203.498742][T30865] kobject_add_internal+0x2c8/0x930 [ 1203.498804][T30865] kobject_init_and_add+0x121/0x180 [ 1203.498862][T30865] ? __pfx_kobject_init_and_add+0x10/0x10 [ 1203.498916][T30865] ? kernfs_remove_by_name_ns+0xb9/0xf0 [ 1203.498970][T30865] ? up_write+0x290/0x4f0 [ 1203.499033][T30865] sysfs_slab_add+0x18f/0x1f0 [ 1203.499086][T30865] do_kmem_cache_create+0x472/0x540 [ 1203.499146][T30865] __kmem_cache_create_args+0x386/0x420 [ 1203.499195][T30865] mon_text_open+0x333/0x510 [ 1203.499237][T30865] ? __pfx_mon_text_open+0x10/0x10 [ 1203.499276][T30865] ? __pfx_mon_text_ctor+0x10/0x10 [ 1203.499330][T30865] ? __pfx_apparmor_file_open+0x10/0x10 [ 1203.499366][T30865] ? lockdown_is_locked_down+0x3d/0x140 [ 1203.499423][T30865] ? bpf_lsm_locked_down+0x9/0x10 [ 1203.499483][T30865] ? __pfx_mon_text_open+0x10/0x10 [ 1203.499517][T30865] full_proxy_open_regular+0x1b6/0x370 [ 1203.499581][T30865] do_dentry_open+0x6d8/0x1660 [ 1203.499633][T30865] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 1203.499704][T30865] vfs_open+0x82/0x3f0 [ 1203.499746][T30865] path_openat+0x208c/0x31a0 [ 1203.499816][T30865] ? __pfx_path_openat+0x10/0x10 [ 1203.499886][T30865] do_file_open+0x20e/0x430 [ 1203.499943][T30865] ? __pfx_do_file_open+0x10/0x10 [ 1203.500035][T30865] ? alloc_fd+0x476/0x790 [ 1203.500092][T30865] ? do_getname+0x191/0x390 [ 1203.500133][T30865] do_sys_openat2+0x10d/0x1e0 [ 1203.500174][T30865] ? __pfx_do_sys_openat2+0x10/0x10 [ 1203.500218][T30865] ? __fget_files+0x21f/0x3d0 [ 1203.500277][T30865] __x64_sys_openat+0x12d/0x210 [ 1203.500319][T30865] ? __pfx___x64_sys_openat+0x10/0x10 [ 1203.500377][T30865] do_syscall_64+0x106/0xf80 [ 1203.500424][T30865] ? clear_bhb_loop+0x40/0x90 [ 1203.500467][T30865] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1203.500504][T30865] RIP: 0033:0x7f7d0839bf79 [ 1203.500536][T30865] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1203.500571][T30865] RSP: 002b:00007f7d09309028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1203.500606][T30865] RAX: ffffffffffffffda RBX: 00007f7d08615fa0 RCX: 00007f7d0839bf79 [ 1203.500629][T30865] RDX: 0000000000040000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1203.500652][T30865] RBP: 00007f7d084327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1203.500673][T30865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1203.500694][T30865] R13: 00007f7d08616038 R14: 00007f7d08615fa0 R15: 00007fff0ed91f78 [ 1203.500741][T30865] [ 1203.657646][T30865] kobject: kobject_add_internal failed for mon_text_ffff888035de1000 (error: -12 parent: slab) [ 1203.962356][T30865] SLUB: Unable to add cache mon_text_ffff888035de1000 to sysfs [ 1204.072181][T30868] ERROR: Out of memory at tomoyo_memory_ok. [ 1204.574738][T30880] netlink: 248 bytes leftover after parsing attributes in process `syz.4.9631'. [ 1205.420792][T30882] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1205.429774][T30882] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1205.436159][T30882] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1205.443288][T30882] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1206.730007][ T5840] Bluetooth: hci1: command 0x0406 tx timeout [ 1206.817453][T30918] mkiss: ax0: crc mode is auto. [ 1207.449261][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout [ 1207.449282][ T5833] Bluetooth: hci0: command 0x0406 tx timeout [ 1207.449372][ T5833] Bluetooth: hci3: command 0x0406 tx timeout [ 1207.776089][T30930] serio: Serial port pty6 [ 1208.245413][T30945] netlink: 25 bytes leftover after parsing attributes in process `syz.4.9652'. [ 1208.701036][T30952] random: crng reseeded on system resumption [ 1208.767215][T30952] FAULT_INJECTION: forcing a failure. [ 1208.767215][T30952] name failslab, interval 1, probability 0, space 0, times 0 [ 1208.789013][T30952] CPU: 1 UID: 0 PID: 30952 Comm: syz.4.9655 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1208.789077][T30952] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1208.789092][T30952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1208.789115][T30952] Call Trace: [ 1208.789127][T30952] [ 1208.789141][T30952] dump_stack_lvl+0x100/0x190 [ 1208.789203][T30952] should_fail_ex.cold+0x5/0xa [ 1208.789250][T30952] should_failslab+0xc2/0x120 [ 1208.789314][T30952] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1208.789356][T30952] ? create_basic_memory_bitmaps+0x9d/0x350 [ 1208.789416][T30952] ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10 [ 1208.789473][T30952] create_basic_memory_bitmaps+0x9d/0x350 [ 1208.789538][T30952] snapshot_open+0x230/0x2a0 [ 1208.789576][T30952] ? __pfx_snapshot_open+0x10/0x10 [ 1208.789616][T30952] misc_open+0x26d/0x450 [ 1208.789660][T30952] ? __pfx_misc_open+0x10/0x10 [ 1208.789701][T30952] chrdev_open+0x234/0x6a0 [ 1208.789755][T30952] ? __pfx_apparmor_file_open+0x10/0x10 [ 1208.789792][T30952] ? __pfx_chrdev_open+0x10/0x10 [ 1208.789849][T30952] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1208.789913][T30952] do_dentry_open+0x6d8/0x1660 [ 1208.789965][T30952] ? __pfx_chrdev_open+0x10/0x10 [ 1208.790029][T30952] vfs_open+0x82/0x3f0 [ 1208.790072][T30952] path_openat+0x208c/0x31a0 [ 1208.790141][T30952] ? __pfx_path_openat+0x10/0x10 [ 1208.790211][T30952] do_file_open+0x20e/0x430 [ 1208.790267][T30952] ? __pfx_do_file_open+0x10/0x10 [ 1208.790359][T30952] ? alloc_fd+0x476/0x790 [ 1208.790416][T30952] ? do_getname+0x191/0x390 [ 1208.790458][T30952] do_sys_openat2+0x10d/0x1e0 [ 1208.790499][T30952] ? __pfx_do_sys_openat2+0x10/0x10 [ 1208.790542][T30952] ? __fget_files+0x21f/0x3d0 [ 1208.790601][T30952] __x64_sys_openat+0x12d/0x210 [ 1208.790642][T30952] ? __pfx___x64_sys_openat+0x10/0x10 [ 1208.790700][T30952] do_syscall_64+0x106/0xf80 [ 1208.790746][T30952] ? clear_bhb_loop+0x40/0x90 [ 1208.790792][T30952] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1208.790830][T30952] RIP: 0033:0x7f5c3479bf79 [ 1208.790859][T30952] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1208.790894][T30952] RSP: 002b:00007f5c3563a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1208.790929][T30952] RAX: ffffffffffffffda RBX: 00007f5c34a15fa0 RCX: 00007f5c3479bf79 [ 1208.790953][T30952] RDX: 0000000000101001 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1208.790975][T30952] RBP: 00007f5c348327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1208.790996][T30952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1208.791017][T30952] R13: 00007f5c34a16038 R14: 00007f5c34a15fa0 R15: 00007ffde4f31748 [ 1208.791063][T30952] [ 1209.572401][T30963] futex_wake_op: syz.4.9658 tries to shift op by -1; fix this program [ 1209.835017][T30973] Loading of unsigned module is rejected [ 1210.237870][T30978] sp0: Synchronizing with TNC [ 1210.922436][T30993] netlink: 'syz.2.9668': attribute type 1 has an invalid length. [ 1210.940098][T30993] netlink: 306 bytes leftover after parsing attributes in process `syz.2.9668'. [ 1210.955992][T30993] netlink: 'syz.2.9668': attribute type 1 has an invalid length. [ 1210.966365][T30993] netlink: 306 bytes leftover after parsing attributes in process `syz.2.9668'. [ 1210.977037][T30992] netlink: 146 bytes leftover after parsing attributes in process `syz.4.9669'. [ 1211.456934][T31003] netlink: 252 bytes leftover after parsing attributes in process `syz.4.9672'. [ 1211.484881][T31003] unsupported nla_type 65535 [ 1211.644187][T31008] netlink: 342 bytes leftover after parsing attributes in process `syz.2.9675'. [ 1211.783414][T31012] netlink: 25 bytes leftover after parsing attributes in process `syz.3.9676'. [ 1211.919403][T31018] mkiss: ax0: crc mode is auto. [ 1213.043063][T31053] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1213.300405][T31061] mkiss: ax0: crc mode is auto. [ 1213.714503][T31074] netlink: 346 bytes leftover after parsing attributes in process `syz.3.9699'. [ 1214.000926][T31084] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1214.491436][T31097] zswap: compressor not available [ 1214.733413][T31108] kvm: kvm [31106]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x4000000e) = 0x4 [ 1215.051571][T31113] ------------[ cut here ]------------ [ 1215.058098][T31113] Reader on commit with 4758 missed events [ 1215.058139][T31113] WARNING: kernel/trace/ring_buffer.c:7409 at ring_buffer_map_get_reader+0x63c/0x880, CPU#1: syz.3.9712/31113 [ 1215.075720][T31113] Modules linked in: [ 1215.080579][T31113] CPU: 1 UID: 0 PID: 31113 Comm: syz.3.9712 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1215.091695][T31113] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1215.096940][T31113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1215.107068][T31113] RIP: 0010:ring_buffer_map_get_reader+0x63f/0x880 [ 1215.113648][T31113] Code: 48 c1 ea 03 80 3c 02 00 0f 85 4f 02 00 00 4c 3b a3 a0 00 00 00 0f 85 7b 19 17 ff e8 5b d7 fb ff 48 8d 3d 04 11 d1 0e 4c 89 fe <67> 48 0f b9 3a e9 e0 fc ff ff 4c 8b 7c 24 58 4c 8b 74 24 60 e8 38 [ 1215.133416][T31113] RSP: 0018:ffffc9000553fd90 EFLAGS: 00010083 [ 1215.139528][T31113] RAX: 00000000000007ba RBX: ffff88813fe9d000 RCX: ffffc9000697a000 [ 1215.147539][T31113] RDX: 0000000000080000 RSI: 0000000000001296 RDI: ffffffff90dd3190 [ 1215.155552][T31113] RBP: ffff888033bebb00 R08: 0000000000000007 R09: 0000000000000000 [ 1215.163554][T31113] R10: 0000000000001296 R11: ffff88813fe9d0b0 R12: ffff888033bebb00 [ 1215.171592][T31113] R13: dffffc0000000000 R14: ffff88813fe9d0a8 R15: 0000000000001296 [ 1215.179606][T31113] FS: 00007fd1867dd6c0(0000) GS:ffff88812445a000(0000) knlGS:0000000000000000 [ 1215.188581][T31113] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1215.195303][T31113] CR2: 0000001b31007ff8 CR3: 00000000714ec000 CR4: 00000000003526f0 [ 1215.203331][T31113] Call Trace: [ 1215.206638][T31113] [ 1215.209618][T31113] ? __pfx_ring_buffer_map_get_reader+0x10/0x10 [ 1215.215921][T31113] ? __fget_files+0x21f/0x3d0 [ 1215.220655][T31113] tracing_buffers_ioctl+0x30d/0x400 [ 1215.225991][T31113] ? __pfx_tracing_buffers_ioctl+0x10/0x10 [ 1215.231856][T31113] __x64_sys_ioctl+0x18e/0x210 [ 1215.236667][T31113] do_syscall_64+0x106/0xf80 [ 1215.241320][T31113] ? clear_bhb_loop+0x40/0x90 [ 1215.246058][T31113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1215.252002][T31113] RIP: 0033:0x7fd18599bf79 [ 1215.256459][T31113] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1215.276107][T31113] RSP: 002b:00007fd1867dd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1215.284563][T31113] RAX: ffffffffffffffda RBX: 00007fd185c15fa0 RCX: 00007fd18599bf79 [ 1215.292579][T31113] RDX: 0000000000000000 RSI: 0000000000005220 RDI: 0000000000000002 [ 1215.300603][T31113] RBP: 00007fd185a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1215.308626][T31113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1215.316728][T31113] R13: 00007fd185c16038 R14: 00007fd185c15fa0 R15: 00007ffea075c258 [ 1215.324803][T31113] [ 1215.327853][T31113] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1215.335173][T31113] CPU: 1 UID: 0 PID: 31113 Comm: syz.3.9712 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1215.346199][T31113] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1215.351414][T31113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1215.361507][T31113] Call Trace: [ 1215.364814][T31113] [ 1215.367777][T31113] dump_stack_lvl+0x100/0x190 [ 1215.372521][T31113] vpanic+0x552/0x970 [ 1215.376548][T31113] ? __pfx_vpanic+0x10/0x10 [ 1215.381095][T31113] panic+0xd1/0xe0 [ 1215.384853][T31113] ? __pfx_panic+0x10/0x10 [ 1215.389318][T31113] check_panic_on_warn.cold+0x19/0x34 [ 1215.394726][T31113] ? ring_buffer_map_get_reader+0x63c/0x880 [ 1215.400680][T31113] __warn.cold+0x191/0x348 [ 1215.405142][T31113] __report_bug+0x296/0x3d0 [ 1215.409694][T31113] ? ring_buffer_map_get_reader+0x63c/0x880 [ 1215.415647][T31113] ? __pfx___report_bug+0x10/0x10 [ 1215.420709][T31113] ? rcu_is_watching+0x12/0xc0 [ 1215.425542][T31113] ? rb_set_head_page+0x1e6/0x2f0 [ 1215.430620][T31113] report_bug_entry+0xe1/0x290 [ 1215.435429][T31113] ? ring_buffer_map_get_reader+0x63f/0x880 [ 1215.441470][T31113] handle_bug+0x1c9/0x2a0 [ 1215.446031][T31113] exc_invalid_op+0x17/0x50 [ 1215.450588][T31113] asm_exc_invalid_op+0x1a/0x20 [ 1215.455489][T31113] RIP: 0010:ring_buffer_map_get_reader+0x63f/0x880 [ 1215.462162][T31113] Code: 48 c1 ea 03 80 3c 02 00 0f 85 4f 02 00 00 4c 3b a3 a0 00 00 00 0f 85 7b 19 17 ff e8 5b d7 fb ff 48 8d 3d 04 11 d1 0e 4c 89 fe <67> 48 0f b9 3a e9 e0 fc ff ff 4c 8b 7c 24 58 4c 8b 74 24 60 e8 38 [ 1215.481818][T31113] RSP: 0018:ffffc9000553fd90 EFLAGS: 00010083 [ 1215.487920][T31113] RAX: 00000000000007ba RBX: ffff88813fe9d000 RCX: ffffc9000697a000 [ 1215.496104][T31113] RDX: 0000000000080000 RSI: 0000000000001296 RDI: ffffffff90dd3190 [ 1215.504117][T31113] RBP: ffff888033bebb00 R08: 0000000000000007 R09: 0000000000000000 [ 1215.512134][T31113] R10: 0000000000001296 R11: ffff88813fe9d0b0 R12: ffff888033bebb00 [ 1215.520162][T31113] R13: dffffc0000000000 R14: ffff88813fe9d0a8 R15: 0000000000001296 [ 1215.528209][T31113] ? __pfx_ring_buffer_map_get_reader+0x10/0x10 [ 1215.534518][T31113] ? __fget_files+0x21f/0x3d0 [ 1215.539250][T31113] tracing_buffers_ioctl+0x30d/0x400 [ 1215.544578][T31113] ? __pfx_tracing_buffers_ioctl+0x10/0x10 [ 1215.550429][T31113] __x64_sys_ioctl+0x18e/0x210 [ 1215.555239][T31113] do_syscall_64+0x106/0xf80 [ 1215.559884][T31113] ? clear_bhb_loop+0x40/0x90 [ 1215.564601][T31113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1215.570526][T31113] RIP: 0033:0x7fd18599bf79 [ 1215.574976][T31113] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1215.594627][T31113] RSP: 002b:00007fd1867dd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1215.603079][T31113] RAX: ffffffffffffffda RBX: 00007fd185c15fa0 RCX: 00007fd18599bf79 [ 1215.611084][T31113] RDX: 0000000000000000 RSI: 0000000000005220 RDI: 0000000000000002 [ 1215.619088][T31113] RBP: 00007fd185a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1215.627105][T31113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1215.635209][T31113] R13: 00007fd185c16038 R14: 00007fd185c15fa0 R15: 00007ffea075c258 [ 1215.643246][T31113] [ 1215.646872][T31113] Kernel Offset: disabled [ 1215.651393][T31113] Rebooting in 86400 seconds..