last executing test programs: 10.588711683s ago: executing program 3 (id=2045): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) sendto$auto(0x3, 0x0, 0x2000f, 0x101, &(0x7f0000000000)=@in={0x2, 0x4e22, @rand_addr=0x64010100}, 0x1c) poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108) listen$auto(0x3, 0x81) accept$auto(0x3, 0x0, 0x0) 9.599535317s ago: executing program 3 (id=2059): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/bus/pci/drivers/vmwgfx/new_id\x00', 0xa001, 0x0) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) r0 = socket(0x15, 0x5, 0x0) setsockopt$auto(r0, 0x114, 0x6, 0x0, 0x8000002) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x4, 0xd3e, 0x1, 0x8, 0x3, 0x20000000f1f, 0x10001, 0x0, 0x8000000000000000, 0x80000001, 0x9, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) 9.473733965s ago: executing program 3 (id=2060): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) sigaltstack$auto(0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) modify_ldt$auto(0xb, 0x0, 0xdb) 5.667620917s ago: executing program 1 (id=2078): mmap$auto(0x0, 0x20009, 0x5, 0xeb2, 0x8, 0x1008000) r0 = socket(0x10, 0x2, 0x0) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid_for_children\x00') sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) read$auto(0x3, 0x0, 0x7fffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x8af}, 0x1, 0x0, 0x0, 0x9}, 0x5}, 0x3, 0x4) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, 0x0, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) 5.502442992s ago: executing program 1 (id=2080): close_range$auto(0x0, 0x5, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x60580, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) clone$auto(0x20003b4a, 0x8, 0x0, 0x0, 0x7) write$auto(r0, 0x0, 0xe) 5.393096814s ago: executing program 1 (id=2081): r0 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x4, 0x8000000000001, 0x5}, 0x9, 0x0) landlock_restrict_self$auto(r0, 0x7) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0xdaa0, 0x1, 0x8}, 0x9, 0x0) landlock_restrict_self$auto(r1, 0x0) openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/config/target/dbroot\x00', 0x109103, 0x0) 5.069025846s ago: executing program 1 (id=2084): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) io_uring_setup$auto(0x86, 0x0) sendmsg$auto_IEEE802154_LLSEC_LIST_SECLEVEL(0xffffffffffffffff, 0x0, 0x4004820) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0xffffffffffffffff) ioctl$auto(0x3, 0xc208ae62, 0x38) 4.557771256s ago: executing program 2 (id=2085): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) set_mempolicy$auto(0x2005, &(0x7f0000000080)=0x87e, 0x4) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r0 = getpid() r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x40, 0x0) read$auto(r1, 0x0, 0x2000e1d) process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xbff}, 0x40000000001, &(0x7f0000000180)={0x0, 0x40000000001243}, 0xa, 0x0) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) 3.862674364s ago: executing program 3 (id=2087): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r0, 0x4b44, 0x7) r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000080), 0x40, 0x0) sysfs$auto(0x2, 0x10000000000002d, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r1, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, 0x6) ioctl$auto_IOCTL_VMCI_CTX_ADD_NOTIFICATION(r1, 0x7af, 0x0) 3.665773676s ago: executing program 3 (id=2088): mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) syz_clone3(&(0x7f00000004c0)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) r0 = socket(0x1d, 0x2, 0x6) r1 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'vcan0\x00', 0x0}) bind$auto(r0, &(0x7f0000000040)=@can={0x1d, r2, 0xfd}, 0x6a) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x21}}, 0x40) sendmsg$auto_NL80211_CMD_SET_WIPHY(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)={0x14, 0x0, 0x200, 0x70bd2b, 0x25dfdbfb}, 0x14}, 0x1, 0x3f000000, 0x0, 0x40480c0}, 0x40000) 3.569545271s ago: executing program 1 (id=2089): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) mkdir$auto(0x0, 0x353) 3.467700958s ago: executing program 2 (id=2090): openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/midiC2D0\x00', 0x200003, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x0, 0x10000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x1000) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x5) 3.02927476s ago: executing program 2 (id=2092): mmap$auto(0x0, 0x400005, 0xffffffffffeffffe, 0x9b72, 0xc76, 0x8000) r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) poll$auto(&(0x7f0000000180)={r0, 0xfff7, 0x9816}, 0x7f, 0x9) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r3, 0x0, 0x20) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x0) 1.476390769s ago: executing program 0 (id=2097): mmap$auto(0x0, 0x2, 0xdf, 0xeb1, 0x401, 0x8000) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') getcwd$auto(0x0, 0xffffffffffffffff) unlinkat$auto(0xffffffffffffffff, 0x0, 0x200) mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) open(0x0, 0x261c2, 0x84) 1.365721514s ago: executing program 0 (id=2098): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x200000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x2020009, 0x3, 0x200000000eb1, 0xffffffffffffffff, 0x8000) 1.009570679s ago: executing program 0 (id=2099): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0xa, 0x0) r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0) ioctl$auto_RTC_UIE_ON(r0, 0x7003, 0x0) readv$auto(r0, &(0x7f00000002c0)={0x0, 0x8001}, 0x101) 740.726483ms ago: executing program 1 (id=2100): mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) ustat$auto(0x801, 0x0) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r1, &(0x7f0000000180)='7\x00\\\xa0\x04|4\x00\x00\x03\x00\x00\x00\x10\x01\x00\x00\x00\x00\x00\x00\x00\x00rRVr\xc4O\xdc1\x9b%\x10Z\'\xb9\'\xa3stC=\x85\xc6\xf6\x13 \xeb\xff%\x11\x82\x05\xdfV\x02\xca&\xd8$<\xab&\xc8B-\xcc\x15\x04&\x13;\xfe\xbdQ\xaa\x16o\x1f\xc7\x94\xa3\xc9\x9a\xe1d\xf5\n\xe2\x88\x84\vT?\x98\xa2\x00'/206, 0x5) connect$auto(0x3, 0x0, 0x2) recvmmsg$auto(r0, 0x0, 0xfffffff9, 0x10, 0x0) 714.369217ms ago: executing program 2 (id=2101): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x86, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x200, 0x1) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0) fanotify_init$auto(0x5, 0x2000000000002) socket(0x26, 0x80805, 0x0) bind$auto(0x3, 0x0, 0x6a) 672.048795ms ago: executing program 3 (id=2102): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) 560.135674ms ago: executing program 0 (id=2103): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16, @ANYBLOB="010027bd7000fddbdf251900000210000000000000de1390000200776c616e"], 0x34}, 0x1, 0x0, 0x0, 0x20040840}, 0x40000) r1 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0) recvfrom$auto(0x3, 0x0, 0x800000000e, 0xfffff4a4, 0x0, 0xfffffffffffffffd) ioctl$auto(r1, 0x3b8f, 0x38) 507.821611ms ago: executing program 2 (id=2104): close_range$auto(0x2, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/damon_reclaim/parameters/enabled\x00', 0x1eb842, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x2000000000008000) r0 = open(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x101840, 0x33903f3ada88772b) ptrace$auto_ARCH_MAP_VDSO_32(0x81, 0x0, 0x686, 0x2002) read$auto(r0, 0x0, 0x1) write$auto(0x3, 0x0, 0xffd8) 399.298711ms ago: executing program 0 (id=2105): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0x5, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) connect$auto(0x3, 0x0, 0x10) 59.87364ms ago: executing program 2 (id=2106): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x1c, 0x0, 0x300, 0x70bd29, 0x25dfdbfb, {0x2, 0x0, 0x14}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r1}]}, 0x1c}, 0x1, 0x1400, 0x0, 0x40884}, 0x1) r2 = socket(0xa, 0x5, 0x84) sendto$auto(r2, 0x0, 0x401, 0x101, &(0x7f0000000000)=@generic={0xa, "000000000000fe8000"}, 0x1f) 0s ago: executing program 0 (id=2107): r0 = openat$auto_ftrace_formats_fops_trace_printk(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/printk_formats\x00', 0x109000, 0x0) fstat$auto(r0, &(0x7f0000000040)={0x49ef, 0xa, 0xc, 0x5, 0x0, 0xee00, 0x0, 0xb6, 0x586d, 0x1c3084ec, 0x0, 0x7, 0x4, 0x4d, 0x6, 0x7fff, 0x9}) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) fcntl$auto_F_OFD_GETLK(r1, 0x24, 0x80) kernel console output (not intermixed with test programs): EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 228.367238][ T9224] RAX: ffffffffffffffda RBX: 00007f124ec15fa0 RCX: 00007f124e99c799 [ 228.367257][ T9224] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 228.367275][ T9224] RBP: 00007f124ea32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 228.367300][ T9224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 228.367317][ T9224] R13: 00007f124ec16038 R14: 00007f124ec15fa0 R15: 00007fff5f5f6128 [ 228.367357][ T9224] [ 231.795823][ T9305] kvm: kvm [9304]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x40000004) [ 232.443696][ T9336] netlink: 'syz.3.1229': attribute type 27 has an invalid length. [ 232.451598][ T9336] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1229'. [ 232.940379][ T9356] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1238'. [ 233.627736][ T9379] netlink: 'syz.3.1248': attribute type 4 has an invalid length. [ 233.651817][ T9379] netlink: 314 bytes leftover after parsing attributes in process `syz.3.1248'. [ 235.690167][ T9425] netlink: 'syz.3.1262': attribute type 4 has an invalid length. [ 235.703418][ T9425] netlink: 'syz.3.1262': attribute type 4 has an invalid length. [ 236.089081][ T9439] netlink: 198 bytes leftover after parsing attributes in process `syz.2.1267'. [ 236.196756][ T9442] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1269'. [ 236.220206][ T9442] hsr_slave_0: left promiscuous mode [ 236.238820][ T9442] hsr_slave_1: left promiscuous mode [ 236.837342][ T9460] zswap: compressor not available [ 237.219163][ T9477] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1282'. [ 237.995030][ T9499] mkiss: ax0: crc mode is auto. [ 238.127653][ T9503] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1291'. [ 238.398109][ T9515] netlink: 'syz.2.1294': attribute type 27 has an invalid length. [ 238.423301][ T9515] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1294'. [ 238.641836][ T9522] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1298'. [ 239.477438][ T9545] FAULT_INJECTION: forcing a failure. [ 239.477438][ T9545] name failslab, interval 1, probability 0, space 0, times 0 [ 239.509460][ T9545] CPU: 1 UID: 0 PID: 9545 Comm: syz.2.1306 Tainted: G L syzkaller #0 PREEMPT(full) [ 239.509507][ T9545] Tainted: [L]=SOFTLOCKUP [ 239.509528][ T9545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 239.509545][ T9545] Call Trace: [ 239.509554][ T9545] [ 239.509565][ T9545] dump_stack_lvl+0x100/0x190 [ 239.509614][ T9545] should_fail_ex.cold+0x5/0xa [ 239.509648][ T9545] ? ring_buffer_read_start+0x1b9/0x460 [ 239.509690][ T9545] should_failslab+0xc2/0x120 [ 239.509720][ T9545] __kmalloc_noprof+0xe0/0x850 [ 239.509771][ T9545] ring_buffer_read_start+0x1b9/0x460 [ 239.509814][ T9545] ? __pfx_ring_buffer_read_start+0x10/0x10 [ 239.509854][ T9545] ? lockdep_init_map_type+0x5c/0x250 [ 239.509894][ T9545] ? ring_buffer_overruns+0x14e/0x1a0 [ 239.509933][ T9545] tracing_open+0x9cd/0xef0 [ 239.509974][ T9545] do_dentry_open+0x6d8/0x1660 [ 239.510003][ T9545] ? __pfx_tracing_open+0x10/0x10 [ 239.510045][ T9545] vfs_open+0x82/0x3f0 [ 239.510086][ T9545] path_openat+0x208c/0x31a0 [ 239.510130][ T9545] ? __pfx_path_openat+0x10/0x10 [ 239.510173][ T9545] do_file_open+0x20e/0x430 [ 239.510206][ T9545] ? __pfx_do_file_open+0x10/0x10 [ 239.510263][ T9545] ? alloc_fd+0x476/0x790 [ 239.510295][ T9545] ? do_getname+0x191/0x390 [ 239.510333][ T9545] do_sys_openat2+0x10d/0x1e0 [ 239.510371][ T9545] ? __pfx_do_sys_openat2+0x10/0x10 [ 239.510410][ T9545] ? __fget_files+0x21f/0x3d0 [ 239.510443][ T9545] __x64_sys_openat+0x12d/0x210 [ 239.510480][ T9545] ? __pfx___x64_sys_openat+0x10/0x10 [ 239.510545][ T9545] do_syscall_64+0x106/0xf80 [ 239.510580][ T9545] ? clear_bhb_loop+0x40/0x90 [ 239.510616][ T9545] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.510647][ T9545] RIP: 0033:0x7f8b4939c799 [ 239.510672][ T9545] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 239.510699][ T9545] RSP: 002b:00007f8b475ee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 239.510727][ T9545] RAX: ffffffffffffffda RBX: 00007f8b49615fa0 RCX: 00007f8b4939c799 [ 239.510746][ T9545] RDX: 1a6b75d638929210 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 239.510766][ T9545] RBP: 00007f8b49432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 239.510783][ T9545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 239.510800][ T9545] R13: 00007f8b49616038 R14: 00007f8b49615fa0 R15: 00007ffc934aa338 [ 239.510840][ T9545] [ 240.079584][ T9552] FAULT_INJECTION: forcing a failure. [ 240.079584][ T9552] name failslab, interval 1, probability 0, space 0, times 0 [ 240.093499][ T9552] CPU: 1 UID: 0 PID: 9552 Comm: syz.2.1309 Tainted: G L syzkaller #0 PREEMPT(full) [ 240.093546][ T9552] Tainted: [L]=SOFTLOCKUP [ 240.093556][ T9552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 240.093575][ T9552] Call Trace: [ 240.093584][ T9552] [ 240.093594][ T9552] dump_stack_lvl+0x100/0x190 [ 240.093640][ T9552] should_fail_ex.cold+0x5/0xa [ 240.093673][ T9552] should_failslab+0xc2/0x120 [ 240.093703][ T9552] __kmalloc_cache_noprof+0x7a/0x6f0 [ 240.093739][ T9552] ? mtdchar_open+0x1e5/0x340 [ 240.093778][ T9552] ? find_held_lock+0x2b/0x80 [ 240.093804][ T9552] ? chrdev_open+0x10b/0x6a0 [ 240.093836][ T9552] mtdchar_open+0x1e5/0x340 [ 240.093877][ T9552] ? __pfx_mtdchar_open+0x10/0x10 [ 240.093918][ T9552] chrdev_open+0x234/0x6a0 [ 240.093943][ T9552] ? __pfx_apparmor_file_open+0x10/0x10 [ 240.093985][ T9552] ? __pfx_chrdev_open+0x10/0x10 [ 240.094016][ T9552] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 240.094063][ T9552] do_dentry_open+0x6d8/0x1660 [ 240.094089][ T9552] ? __pfx_chrdev_open+0x10/0x10 [ 240.094126][ T9552] vfs_open+0x82/0x3f0 [ 240.094164][ T9552] path_openat+0x208c/0x31a0 [ 240.094205][ T9552] ? __pfx_path_openat+0x10/0x10 [ 240.094244][ T9552] do_file_open+0x20e/0x430 [ 240.094275][ T9552] ? __pfx_do_file_open+0x10/0x10 [ 240.094330][ T9552] ? alloc_fd+0x476/0x790 [ 240.094360][ T9552] ? do_getname+0x191/0x390 [ 240.094397][ T9552] do_sys_openat2+0x10d/0x1e0 [ 240.094432][ T9552] ? __pfx_do_sys_openat2+0x10/0x10 [ 240.094469][ T9552] ? __fget_files+0x21f/0x3d0 [ 240.094503][ T9552] __x64_sys_openat+0x12d/0x210 [ 240.094539][ T9552] ? __pfx___x64_sys_openat+0x10/0x10 [ 240.094585][ T9552] do_syscall_64+0x106/0xf80 [ 240.094619][ T9552] ? clear_bhb_loop+0x40/0x90 [ 240.094656][ T9552] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 240.094685][ T9552] RIP: 0033:0x7f8b4939c799 [ 240.094710][ T9552] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 240.094737][ T9552] RSP: 002b:00007f8b475ee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 240.094772][ T9552] RAX: ffffffffffffffda RBX: 00007f8b49615fa0 RCX: 00007f8b4939c799 [ 240.094792][ T9552] RDX: 0000000000002c00 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 240.094811][ T9552] RBP: 00007f8b49432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 240.094829][ T9552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 240.094847][ T9552] R13: 00007f8b49616038 R14: 00007f8b49615fa0 R15: 00007ffc934aa338 [ 240.094886][ T9552] [ 242.122869][ T9592] Invalid ELF header magic: != ELF [ 245.310696][ T9684] futex_wake_op: syz.2.1359 tries to shift op by -2048; fix this program [ 245.968207][ T9714] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1368'. [ 246.082294][ T9718] FAULT_INJECTION: forcing a failure. [ 246.082294][ T9718] name failslab, interval 1, probability 0, space 0, times 0 [ 246.106279][ T9718] CPU: 1 UID: 0 PID: 9718 Comm: syz.3.1369 Tainted: G L syzkaller #0 PREEMPT(full) [ 246.106332][ T9718] Tainted: [L]=SOFTLOCKUP [ 246.106342][ T9718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 246.106359][ T9718] Call Trace: [ 246.106368][ T9718] [ 246.106379][ T9718] dump_stack_lvl+0x100/0x190 [ 246.106427][ T9718] should_fail_ex.cold+0x5/0xa [ 246.106461][ T9718] should_failslab+0xc2/0x120 [ 246.106492][ T9718] __kmalloc_cache_noprof+0x7a/0x6f0 [ 246.106529][ T9718] ? mon_text_open+0xe3/0x510 [ 246.106575][ T9718] ? __pfx_mon_text_open+0x10/0x10 [ 246.106614][ T9718] mon_text_open+0xe3/0x510 [ 246.106651][ T9718] ? __pfx_mon_text_open+0x10/0x10 [ 246.106685][ T9718] ? __debugfs_file_get+0x1fc/0x860 [ 246.106715][ T9718] ? __pfx___debugfs_file_get+0x10/0x10 [ 246.106743][ T9718] ? __pfx_apparmor_file_open+0x10/0x10 [ 246.106773][ T9718] ? lockdown_is_locked_down+0x3d/0x140 [ 246.106800][ T9718] ? bpf_lsm_locked_down+0x9/0x10 [ 246.106828][ T9718] ? __pfx_mon_text_open+0x10/0x10 [ 246.106859][ T9718] full_proxy_open_regular+0x1b6/0x370 [ 246.106892][ T9718] do_dentry_open+0x6d8/0x1660 [ 246.106915][ T9718] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 246.106957][ T9718] vfs_open+0x82/0x3f0 [ 246.106990][ T9718] path_openat+0x208c/0x31a0 [ 246.107025][ T9718] ? __pfx_path_openat+0x10/0x10 [ 246.107060][ T9718] do_file_open+0x20e/0x430 [ 246.107086][ T9718] ? __pfx_do_file_open+0x10/0x10 [ 246.107136][ T9718] ? alloc_fd+0x476/0x790 [ 246.107169][ T9718] ? do_getname+0x191/0x390 [ 246.107205][ T9718] do_sys_openat2+0x10d/0x1e0 [ 246.107238][ T9718] ? __pfx_do_sys_openat2+0x10/0x10 [ 246.107269][ T9718] ? __fget_files+0x21f/0x3d0 [ 246.107298][ T9718] __x64_sys_openat+0x12d/0x210 [ 246.107342][ T9718] ? __pfx___x64_sys_openat+0x10/0x10 [ 246.107391][ T9718] do_syscall_64+0x106/0xf80 [ 246.107423][ T9718] ? clear_bhb_loop+0x40/0x90 [ 246.107457][ T9718] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 246.107486][ T9718] RIP: 0033:0x7ff170b9c799 [ 246.107510][ T9718] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 246.107537][ T9718] RSP: 002b:00007ff16edee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 246.107565][ T9718] RAX: ffffffffffffffda RBX: 00007ff170e15fa0 RCX: 00007ff170b9c799 [ 246.107585][ T9718] RDX: 0000000000080080 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 246.107603][ T9718] RBP: 00007ff170c32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 246.107620][ T9718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 246.107637][ T9718] R13: 00007ff170e16038 R14: 00007ff170e15fa0 R15: 00007ffd5af3dab8 [ 246.107676][ T9718] [ 247.366298][ T9756] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1385'. [ 247.814206][ T9774] netlink: 'syz.2.1391': attribute type 27 has an invalid length. [ 247.832404][ T9774] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1391'. [ 248.479435][ T9797] mmap: syz.3.1399 (9797) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 248.516854][ T9797] bridge0: port 3(netdevsim1) entered blocking state [ 248.525305][ T9797] bridge0: port 3(netdevsim1) entered disabled state [ 248.532224][ T9797] netdevsim netdevsim3 netdevsim1: entered allmulticast mode [ 248.543394][ T9797] netdevsim netdevsim3 netdevsim1: entered promiscuous mode [ 248.552655][ T9797] bridge0: port 3(netdevsim1) entered blocking state [ 248.559741][ T9797] bridge0: port 3(netdevsim1) entered forwarding state [ 249.442872][ T9803] FAULT_INJECTION: forcing a failure. [ 249.442872][ T9803] name failslab, interval 1, probability 0, space 0, times 0 [ 249.503755][ T9803] CPU: 1 UID: 0 PID: 9803 Comm: syz.3.1401 Tainted: G L syzkaller #0 PREEMPT(full) [ 249.503806][ T9803] Tainted: [L]=SOFTLOCKUP [ 249.503816][ T9803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 249.503834][ T9803] Call Trace: [ 249.503843][ T9803] [ 249.503854][ T9803] dump_stack_lvl+0x100/0x190 [ 249.503901][ T9803] should_fail_ex.cold+0x5/0xa [ 249.503933][ T9803] should_failslab+0xc2/0x120 [ 249.503964][ T9803] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 249.504006][ T9803] ? mpol_new+0x11b/0x2d0 [ 249.504056][ T9803] mpol_new+0x11b/0x2d0 [ 249.504100][ T9803] do_mbind+0x210/0xfd0 [ 249.504144][ T9803] ? __pfx_do_mbind+0x10/0x10 [ 249.504182][ T9803] ? __lock_acquire+0x4a5/0x2630 [ 249.504235][ T9803] ? __pfx_get_nodes+0x10/0x10 [ 249.504275][ T9803] ? find_held_lock+0x2b/0x80 [ 249.504311][ T9803] kernel_mbind+0x1b7/0x200 [ 249.504349][ T9803] ? __pfx_kernel_mbind+0x10/0x10 [ 249.504395][ T9803] do_syscall_64+0x106/0xf80 [ 249.504436][ T9803] ? clear_bhb_loop+0x40/0x90 [ 249.504472][ T9803] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 249.504502][ T9803] RIP: 0033:0x7ff170b9c799 [ 249.504525][ T9803] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 249.504553][ T9803] RSP: 002b:00007ff16edee028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 249.504580][ T9803] RAX: ffffffffffffffda RBX: 00007ff170e15fa0 RCX: 00007ff170b9c799 [ 249.504599][ T9803] RDX: 0000000000000004 RSI: 00000000002091d2 RDI: 0000000000000000 [ 249.504616][ T9803] RBP: 00007ff170c32bd9 R08: 0000000000000006 R09: 0000000000000002 [ 249.504633][ T9803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 249.504650][ T9803] R13: 00007ff170e16038 R14: 00007ff170e15fa0 R15: 00007ffd5af3dab8 [ 249.504688][ T9803] [ 250.378405][ T9831] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1420'. [ 250.394064][ T9831] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1420'. [ 251.411536][ T9858] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1422'. [ 251.776810][ T9869] netlink: 'syz.0.1435': attribute type 4 has an invalid length. [ 251.778567][ T9871] netlink: 'syz.1.1428': attribute type 1 has an invalid length. [ 251.792451][ T9871] netlink: 314 bytes leftover after parsing attributes in process `syz.1.1428'. [ 252.197102][ T9886] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1433'. [ 252.620391][ T9895] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1437'. [ 252.764637][ T9897] futex_wake_op: syz.3.1439 tries to shift op by -2048; fix this program [ 252.952496][ T9907] netlink: 234 bytes leftover after parsing attributes in process `syz.3.1442'. [ 254.526447][ T9938] Invalid ELF header magic: != ELF [ 256.068078][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.074655][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 257.776917][T10010] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1483'. [ 258.820265][T10006] Process accounting paused [ 259.231654][T10039] FAULT_INJECTION: forcing a failure. [ 259.231654][T10039] name failslab, interval 1, probability 0, space 0, times 0 [ 259.306789][T10039] CPU: 0 UID: 0 PID: 10039 Comm: syz.3.1491 Tainted: G L syzkaller #0 PREEMPT(full) [ 259.306837][T10039] Tainted: [L]=SOFTLOCKUP [ 259.306848][T10039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 259.306864][T10039] Call Trace: [ 259.306874][T10039] [ 259.306885][T10039] dump_stack_lvl+0x100/0x190 [ 259.306932][T10039] should_fail_ex.cold+0x5/0xa [ 259.306963][T10039] ? __register_sysctl_table+0xbe4/0x1650 [ 259.307008][T10039] should_failslab+0xc2/0x120 [ 259.307037][T10039] __kmalloc_noprof+0xe0/0x850 [ 259.307084][T10039] __register_sysctl_table+0xbe4/0x1650 [ 259.307135][T10039] ? __pfx___register_sysctl_table+0x10/0x10 [ 259.307179][T10039] ? rcu_is_cpu_rrupt_from_idle+0x1b1/0x270 [ 259.307226][T10039] ? __asan_memcpy+0x3c/0x60 [ 259.307268][T10039] register_pidns_sysctls+0x11d/0x1c0 [ 259.307308][T10039] ? __ns_common_init+0x299/0x4b0 [ 259.307343][T10039] copy_pid_ns+0x680/0x10a0 [ 259.307378][T10039] ? __pfx_copy_pid_ns+0x10/0x10 [ 259.307412][T10039] ? rcu_is_watching+0x12/0xc0 [ 259.307466][T10039] ? copy_mnt_ns+0x106/0xc30 [ 259.307499][T10039] ? create_new_namespaces+0x30/0xac0 [ 259.307537][T10039] create_new_namespaces+0x2aa/0xac0 [ 259.307576][T10039] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 259.307610][T10039] ksys_unshare+0x473/0xad0 [ 259.307648][T10039] ? __pfx_ksys_unshare+0x10/0x10 [ 259.307697][T10039] __x64_sys_unshare+0x31/0x40 [ 259.307731][T10039] do_syscall_64+0x106/0xf80 [ 259.307765][T10039] ? clear_bhb_loop+0x40/0x90 [ 259.307800][T10039] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 259.307830][T10039] RIP: 0033:0x7ff170b9c799 [ 259.307856][T10039] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 259.307883][T10039] RSP: 002b:00007ff16edee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 259.307908][T10039] RAX: ffffffffffffffda RBX: 00007ff170e15fa0 RCX: 00007ff170b9c799 [ 259.307929][T10039] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080 [ 259.307945][T10039] RBP: 00007ff170c32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 259.307963][T10039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 259.307980][T10039] R13: 00007ff170e16038 R14: 00007ff170e15fa0 R15: 00007ffd5af3dab8 [ 259.308020][T10039] [ 259.308137][T10039] sysctl could not get directory: /kernel -12 [ 260.455766][T10068] netlink: 346 bytes leftover after parsing attributes in process `syz.1.1500'. [ 261.607724][T10102] netlink: 'syz.2.1512': attribute type 4 has an invalid length. [ 261.615789][T10102] netlink: 314 bytes leftover after parsing attributes in process `syz.2.1512'. [ 261.936878][T10114] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input5 [ 262.588274][T10137] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 263.451126][T10153] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1529'. [ 264.366383][T10181] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1540'. [ 264.406194][T10181] netlink: 354 bytes leftover after parsing attributes in process `syz.0.1540'. [ 265.457330][T10204] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1553'. [ 265.510845][T10200] netlink: 'syz.3.1546': attribute type 4 has an invalid length. [ 265.526888][T10200] netlink: 314 bytes leftover after parsing attributes in process `syz.3.1546'. [ 266.808314][T10223] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1554'. [ 266.836300][T10223] veth1_macvtap: entered allmulticast mode [ 267.153138][T10233] netlink: 'syz.1.1559': attribute type 4 has an invalid length. [ 267.161189][T10233] netlink: 314 bytes leftover after parsing attributes in process `syz.1.1559'. [ 270.263031][T10318] mkiss: ax0: crc mode is auto. [ 271.159552][T10325] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1590'. [ 272.380744][T10360] FAULT_INJECTION: forcing a failure. [ 272.380744][T10360] name failslab, interval 1, probability 0, space 0, times 0 [ 272.412696][T10360] CPU: 1 UID: 0 PID: 10360 Comm: syz.2.1603 Tainted: G L syzkaller #0 PREEMPT(full) [ 272.412739][T10360] Tainted: [L]=SOFTLOCKUP [ 272.412749][T10360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 272.412766][T10360] Call Trace: [ 272.412775][T10360] [ 272.412786][T10360] dump_stack_lvl+0x100/0x190 [ 272.412835][T10360] should_fail_ex.cold+0x5/0xa [ 272.412867][T10360] ? snd_pcm_plugin_build+0x64/0x650 [ 272.412896][T10360] should_failslab+0xc2/0x120 [ 272.412923][T10360] __kmalloc_noprof+0xe0/0x850 [ 272.412962][T10360] ? snd_pcm_hw_params+0x262/0x1cb0 [ 272.413000][T10360] snd_pcm_plugin_build+0x64/0x650 [ 272.413033][T10360] snd_pcm_plugin_build_io+0x207/0x5f0 [ 272.413066][T10360] ? __pfx_snd_pcm_plugin_build_io+0x10/0x10 [ 272.413099][T10360] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 272.413156][T10360] snd_pcm_oss_change_params_locked+0x2eb3/0x39f0 [ 272.413240][T10360] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 272.413284][T10360] ? task_work_add+0x201/0x3b0 [ 272.413323][T10360] ? __pfx___mutex_lock+0x10/0x10 [ 272.413380][T10360] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 272.413430][T10360] snd_pcm_oss_sync+0x265/0x840 [ 272.413464][T10360] snd_pcm_oss_release+0x238/0x300 [ 272.413491][T10360] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 272.413518][T10360] __fput+0x3ff/0xb40 [ 272.413568][T10360] task_work_run+0x150/0x240 [ 272.413606][T10360] ? __pfx_task_work_run+0x10/0x10 [ 272.413655][T10360] exit_to_user_mode_loop+0x100/0x4a0 [ 272.413695][T10360] do_syscall_64+0x668/0xf80 [ 272.413729][T10360] ? clear_bhb_loop+0x40/0x90 [ 272.413766][T10360] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 272.413795][T10360] RIP: 0033:0x7f8b4939c799 [ 272.413820][T10360] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 272.413848][T10360] RSP: 002b:00007f8b475ee028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 272.413876][T10360] RAX: 0000000000000000 RBX: 00007f8b49615fa0 RCX: 00007f8b4939c799 [ 272.413896][T10360] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 272.413913][T10360] RBP: 00007f8b49432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 272.413930][T10360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 272.413946][T10360] R13: 00007f8b49616038 R14: 00007f8b49615fa0 R15: 00007ffc934aa338 [ 272.413985][T10360] [ 272.934587][T10369] smpboot: CPU 1 is now offline [ 273.282397][T10382] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1612'. [ 273.595992][T10366] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 273.620299][T10366] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 273.673400][T10366] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 273.696298][T10366] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 273.719710][T10366] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 273.738833][T10366] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 273.760513][T10366] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 273.777694][T10366] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 274.728245][T10410] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1620'. [ 275.195175][ T51] Bluetooth: hci0: command 0x0406 tx timeout [ 275.463843][T10426] FAULT_INJECTION: forcing a failure. [ 275.463843][T10426] name failslab, interval 1, probability 0, space 0, times 0 [ 275.532991][T10426] CPU: 0 UID: 0 PID: 10426 Comm: syz.0.1627 Tainted: G L syzkaller #0 PREEMPT(full) [ 275.533020][T10426] Tainted: [L]=SOFTLOCKUP [ 275.533025][T10426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 275.533035][T10426] Call Trace: [ 275.533040][T10426] [ 275.533046][T10426] dump_stack_lvl+0x100/0x190 [ 275.533074][T10426] should_fail_ex.cold+0x5/0xa [ 275.533093][T10426] should_failslab+0xc2/0x120 [ 275.533108][T10426] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 275.533129][T10426] ? security_inode_alloc+0x3b/0x2c0 [ 275.533151][T10426] ? lockdep_init_map_type+0x5c/0x250 [ 275.533173][T10426] security_inode_alloc+0x3b/0x2c0 [ 275.533203][T10426] inode_init_always_gfp+0xced/0x1040 [ 275.533223][T10426] alloc_inode+0x8e/0x250 [ 275.533242][T10426] new_inode+0x22/0x1c0 [ 275.533263][T10426] configfs_new_inode+0x24/0x4a0 [ 275.533287][T10426] configfs_create+0xd9/0x370 [ 275.533310][T10426] configfs_lookup+0x38f/0x780 [ 275.533328][T10426] lookup_open.isra.0+0x631/0x11b0 [ 275.533354][T10426] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 275.533386][T10426] ? mnt_get_write_access+0x1e9/0x2f0 [ 275.533408][T10426] path_openat+0xa98/0x31a0 [ 275.533430][T10426] ? __pfx_path_openat+0x10/0x10 [ 275.533452][T10426] do_file_open+0x20e/0x430 [ 275.533468][T10426] ? __pfx_do_file_open+0x10/0x10 [ 275.533498][T10426] ? alloc_fd+0x476/0x790 [ 275.533514][T10426] ? do_getname+0x191/0x390 [ 275.533533][T10426] do_sys_openat2+0x10d/0x1e0 [ 275.533552][T10426] ? __pfx_do_sys_openat2+0x10/0x10 [ 275.533571][T10426] ? __x64_sys_close_range+0x2d9/0x5d0 [ 275.533592][T10426] __x64_sys_openat+0x12d/0x210 [ 275.533611][T10426] ? __pfx___x64_sys_openat+0x10/0x10 [ 275.533637][T10426] do_syscall_64+0x106/0xf80 [ 275.533654][T10426] ? clear_bhb_loop+0x40/0x90 [ 275.533672][T10426] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.533688][T10426] RIP: 0033:0x7f124e99c799 [ 275.533701][T10426] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 275.533715][T10426] RSP: 002b:00007f124f7e3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 275.533730][T10426] RAX: ffffffffffffffda RBX: 00007f124ec15fa0 RCX: 00007f124e99c799 [ 275.533740][T10426] RDX: 0000000000109103 RSI: 0000200000001280 RDI: ffffffffffffff9c [ 275.533749][T10426] RBP: 00007f124ea32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 275.533758][T10426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 275.533766][T10426] R13: 00007f124ec16038 R14: 00007f124ec15fa0 R15: 00007fff5f5f6128 [ 275.533786][T10426] [ 276.140884][ T51] Bluetooth: hci2: command 0x0406 tx timeout [ 276.146934][ T51] Bluetooth: hci1: command 0x0406 tx timeout [ 276.153067][ T51] Bluetooth: hci3: command 0x0406 tx timeout [ 277.274639][ T5144] Bluetooth: hci0: command 0x0406 tx timeout [ 277.538970][T10473] : entered promiscuous mode [ 278.234508][ T5144] Bluetooth: hci3: command 0x0406 tx timeout [ 278.241219][ T51] Bluetooth: hci1: command 0x0406 tx timeout [ 278.247759][ T5823] Bluetooth: hci2: command 0x0406 tx timeout [ 279.862168][T10534] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1651'. [ 279.862542][T10534] netlink: 25 bytes leftover after parsing attributes in process `syz.3.1651'. [ 280.192046][T10528] mkiss: ax0: crc mode is auto. [ 281.645259][ T5144] Bluetooth: hci3: unexpected event 0x06 length: 435 > 3 [ 284.190102][T10609] FAULT_INJECTION: forcing a failure. [ 284.190102][T10609] name failslab, interval 1, probability 0, space 0, times 0 [ 284.297930][T10609] CPU: 0 UID: 0 PID: 10609 Comm: syz.3.1673 Tainted: G L syzkaller #0 PREEMPT(full) [ 284.297958][T10609] Tainted: [L]=SOFTLOCKUP [ 284.297964][T10609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 284.297974][T10609] Call Trace: [ 284.297979][T10609] [ 284.297986][T10609] dump_stack_lvl+0x100/0x190 [ 284.298014][T10609] should_fail_ex.cold+0x5/0xa [ 284.298033][T10609] should_failslab+0xc2/0x120 [ 284.298049][T10609] __kvmalloc_node_noprof+0xfa/0xa00 [ 284.298072][T10609] ? proc_sys_call_handler+0x2c7/0x5a0 [ 284.298099][T10609] proc_sys_call_handler+0x2c7/0x5a0 [ 284.298123][T10609] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 284.298151][T10609] vfs_write+0x6ac/0x1070 [ 284.298174][T10609] ? __pfx_proc_sys_write+0x10/0x10 [ 284.298197][T10609] ? __pfx_vfs_write+0x10/0x10 [ 284.298239][T10609] ksys_write+0x12a/0x250 [ 284.298253][T10609] ? __pfx_ksys_write+0x10/0x10 [ 284.298273][T10609] do_syscall_64+0x106/0xf80 [ 284.298291][T10609] ? clear_bhb_loop+0x40/0x90 [ 284.298309][T10609] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 284.298325][T10609] RIP: 0033:0x7ff170b9c799 [ 284.298338][T10609] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 284.298353][T10609] RSP: 002b:00007ff16edee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 284.298367][T10609] RAX: ffffffffffffffda RBX: 00007ff170e15fa0 RCX: 00007ff170b9c799 [ 284.298377][T10609] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 284.298386][T10609] RBP: 00007ff170c32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 284.298394][T10609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 284.298403][T10609] R13: 00007ff170e16038 R14: 00007ff170e15fa0 R15: 00007ffd5af3dab8 [ 284.298423][T10609] [ 287.029702][T10638] FAULT_INJECTION: forcing a failure. [ 287.029702][T10638] name failslab, interval 1, probability 0, space 0, times 0 [ 287.076633][T10638] CPU: 0 UID: 0 PID: 10638 Comm: syz.2.1682 Tainted: G L syzkaller #0 PREEMPT(full) [ 287.076661][T10638] Tainted: [L]=SOFTLOCKUP [ 287.076667][T10638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 287.076677][T10638] Call Trace: [ 287.076682][T10638] [ 287.076689][T10638] dump_stack_lvl+0x100/0x190 [ 287.076716][T10638] should_fail_ex.cold+0x5/0xa [ 287.076735][T10638] should_failslab+0xc2/0x120 [ 287.076751][T10638] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 287.076772][T10638] ? do_epoll_ctl+0xc6c/0x36a0 [ 287.076788][T10638] ? percpu_counter_add_batch+0xb9/0x230 [ 287.076814][T10638] do_epoll_ctl+0xc6c/0x36a0 [ 287.076829][T10638] ? io_uring_setup+0xd7/0x160 [ 287.076846][T10638] ? ksys_write+0x190/0x250 [ 287.076866][T10638] ? __pfx_do_epoll_ctl+0x10/0x10 [ 287.076881][T10638] ? find_held_lock+0x2b/0x80 [ 287.076894][T10638] ? __might_fault+0xc5/0x140 [ 287.076915][T10638] ? __might_fault+0xc5/0x140 [ 287.076941][T10638] ? __x64_sys_epoll_ctl+0x15c/0x1e0 [ 287.076956][T10638] __x64_sys_epoll_ctl+0x15c/0x1e0 [ 287.076972][T10638] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 287.076995][T10638] do_syscall_64+0x106/0xf80 [ 287.077012][T10638] ? clear_bhb_loop+0x40/0x90 [ 287.077031][T10638] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.077046][T10638] RIP: 0033:0x7f8b4939c799 [ 287.077059][T10638] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 287.077074][T10638] RSP: 002b:00007f8b475ee028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 287.077089][T10638] RAX: ffffffffffffffda RBX: 00007f8b49615fa0 RCX: 00007f8b4939c799 [ 287.077099][T10638] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004 [ 287.077108][T10638] RBP: 00007f8b49432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 287.077117][T10638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 287.077125][T10638] R13: 00007f8b49616038 R14: 00007f8b49615fa0 R15: 00007ffc934aa338 [ 287.077144][T10638] [ 287.888964][T10644] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1684'. [ 289.767834][T10681] GUP no longer grows the stack in syz.3.1699 (10681): 14000-41000 (4000) [ 289.807765][T10681] CPU: 0 UID: 0 PID: 10681 Comm: syz.3.1699 Tainted: G L syzkaller #0 PREEMPT(full) [ 289.807793][T10681] Tainted: [L]=SOFTLOCKUP [ 289.807799][T10681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 289.807808][T10681] Call Trace: [ 289.807813][T10681] [ 289.807820][T10681] dump_stack_lvl+0x100/0x190 [ 289.807848][T10681] gup_vma_lookup.cold+0x83/0x96 [ 289.807871][T10681] __get_user_pages+0x241/0x34d0 [ 289.807893][T10681] ? down_read_killable+0x30e/0x4c0 [ 289.807914][T10681] ? __lock_acquire+0x4a5/0x2630 [ 289.807935][T10681] ? __pfx___get_user_pages+0x10/0x10 [ 289.807956][T10681] __gup_longterm_locked+0x87d/0x16f0 [ 289.807979][T10681] ? __pfx___gup_longterm_locked+0x10/0x10 [ 289.807997][T10681] ? try_get_folio+0x262/0x750 [ 289.808011][T10681] ? find_held_lock+0x2b/0x80 [ 289.808025][T10681] ? sanity_check_pinned_pages+0x5f6/0x1250 [ 289.808044][T10681] gup_fast_fallback+0x18c6/0x2460 [ 289.808074][T10681] ? __pfx_gup_fast_fallback+0x10/0x10 [ 289.808092][T10681] ? __lock_acquire+0x4a5/0x2630 [ 289.808109][T10681] ? bio_associate_blkg_from_css+0xe33/0x13f0 [ 289.808126][T10681] ? bio_associate_blkg+0x10c/0x2a0 [ 289.808143][T10681] ? pcpu_block_update+0x20b/0x690 [ 289.808164][T10681] pin_user_pages_fast+0xa7/0xf0 [ 289.808181][T10681] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 289.808199][T10681] ? find_held_lock+0x2b/0x80 [ 289.808212][T10681] ? __debug_object_init+0x2de/0x3d0 [ 289.808232][T10681] ? __debug_object_init+0x2de/0x3d0 [ 289.808254][T10681] iov_iter_extract_pages+0xa0d/0x1ef0 [ 289.808275][T10681] ? __lock_acquire+0x4a5/0x2630 [ 289.808293][T10681] ? __pfx_iov_iter_extract_pages+0x10/0x10 [ 289.808311][T10681] ? __lock_acquire+0x4a5/0x2630 [ 289.808333][T10681] iov_iter_extract_bvecs+0x10e/0xf40 [ 289.808352][T10681] ? find_held_lock+0x2b/0x80 [ 289.808365][T10681] ? bio_associate_blkg_from_css+0x394/0x13f0 [ 289.808384][T10681] ? __pfx_iov_iter_extract_bvecs+0x10/0x10 [ 289.808400][T10681] ? bio_associate_blkg_from_css+0x550/0x13f0 [ 289.808422][T10681] bio_iov_iter_get_pages+0x26a/0x970 [ 289.808451][T10681] __blkdev_direct_IO_simple+0x3a7/0x890 [ 289.808474][T10681] ? __pfx___blkdev_direct_IO_simple+0x10/0x10 [ 289.808509][T10681] ? ktime_get_coarse_real_ts64_mg+0x249/0x300 [ 289.808527][T10681] ? ktime_get_coarse_real_ts64_mg+0x1e0/0x300 [ 289.808549][T10681] blkdev_direct_IO+0xc76/0x1fb0 [ 289.808576][T10681] ? __pfx_blkdev_direct_IO+0x10/0x10 [ 289.808593][T10681] ? rcu_is_watching+0x12/0xc0 [ 289.808614][T10681] ? __mark_inode_dirty+0x55c/0x1790 [ 289.808634][T10681] ? filemap_check_errors+0xa9/0x150 [ 289.808656][T10681] blkdev_write_iter+0x703/0xd70 [ 289.808689][T10681] vfs_write+0x6ac/0x1070 [ 289.808712][T10681] ? __pfx_blkdev_write_iter+0x10/0x10 [ 289.808741][T10681] ? __pfx_vfs_write+0x10/0x10 [ 289.808762][T10681] ? find_held_lock+0x2b/0x80 [ 289.808789][T10681] ksys_write+0x12a/0x250 [ 289.808802][T10681] ? __pfx_ksys_write+0x10/0x10 [ 289.808823][T10681] do_syscall_64+0x106/0xf80 [ 289.808840][T10681] ? clear_bhb_loop+0x40/0x90 [ 289.808858][T10681] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 289.808874][T10681] RIP: 0033:0x7ff170b9c799 [ 289.808888][T10681] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 289.808902][T10681] RSP: 002b:00007ff16edee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 289.808916][T10681] RAX: ffffffffffffffda RBX: 00007ff170e15fa0 RCX: 00007ff170b9c799 [ 289.808927][T10681] RDX: 000000000010007c RSI: 0000000000000000 RDI: 0000000000000003 [ 289.808935][T10681] RBP: 00007ff170c32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 289.808944][T10681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 289.808954][T10681] R13: 00007ff170e16038 R14: 00007ff170e15fa0 R15: 00007ffd5af3dab8 [ 289.808974][T10681] [ 290.442532][T10499] Process accounting resumed [ 291.343643][T10685] zswap: compressor not available [ 291.372912][T10691] Setting dangerous option i915.mitigations - tainting kernel [ 291.404327][T10689] Setting dangerous option i915.mitigations - tainting kernel [ 291.486751][T10697] random: crng reseeded on system resumption [ 291.496225][T10697] FAULT_INJECTION: forcing a failure. [ 291.496225][T10697] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 291.530312][T10697] CPU: 0 UID: 0 PID: 10697 Comm: syz.1.1703 Tainted: G U L syzkaller #0 PREEMPT(full) [ 291.530340][T10697] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 291.530347][T10697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 291.530356][T10697] Call Trace: [ 291.530362][T10697] [ 291.530368][T10697] dump_stack_lvl+0x100/0x190 [ 291.530394][T10697] should_fail_ex.cold+0x5/0xa [ 291.530410][T10697] ? prepare_alloc_pages+0x16d/0x5f0 [ 291.530428][T10697] should_fail_alloc_page+0xeb/0x140 [ 291.530445][T10697] prepare_alloc_pages+0x1f0/0x5f0 [ 291.530465][T10697] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 291.530489][T10697] ? __alloc_frozen_pages_noprof+0x2b1/0x2ba0 [ 291.530515][T10697] ? mark_held_locks+0x40/0x70 [ 291.530539][T10697] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 291.530562][T10697] ? lockdep_hardirqs_on+0x78/0x100 [ 291.530580][T10697] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 291.530602][T10697] ? stack_depot_save_flags+0x479/0x9d0 [ 291.530618][T10697] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 291.530642][T10697] ? kasan_save_stack+0x3f/0x50 [ 291.530663][T10697] ? kasan_save_stack+0x30/0x50 [ 291.530683][T10697] ? kasan_save_track+0x14/0x30 [ 291.530709][T10697] ? do_sys_openat2+0x10d/0x1e0 [ 291.530727][T10697] ? __x64_sys_openat+0x12d/0x210 [ 291.530745][T10697] ? do_syscall_64+0x106/0xf80 [ 291.530761][T10697] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 291.530777][T10697] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 291.530803][T10697] ? policy_nodemask+0xed/0x4f0 [ 291.530820][T10697] alloc_pages_mpol+0x1fb/0x550 [ 291.530836][T10697] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 291.530852][T10697] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 291.530870][T10697] alloc_pages_noprof+0x131/0x390 [ 291.530887][T10697] get_zeroed_page_noprof+0x18/0xb0 [ 291.530903][T10697] get_image_page+0x18/0x1a0 [ 291.530925][T10697] alloc_rtree_node+0x3c/0xb0 [ 291.530948][T10697] memory_bm_create+0x65e/0xba0 [ 291.530979][T10697] create_basic_memory_bitmaps+0xbd/0x350 [ 291.530997][T10697] snapshot_open+0x230/0x2a0 [ 291.531014][T10697] ? __pfx_snapshot_open+0x10/0x10 [ 291.531031][T10697] misc_open+0x26d/0x450 [ 291.531045][T10697] ? __pfx_misc_open+0x10/0x10 [ 291.531058][T10697] chrdev_open+0x234/0x6a0 [ 291.531073][T10697] ? __pfx_apparmor_file_open+0x10/0x10 [ 291.531094][T10697] ? __pfx_chrdev_open+0x10/0x10 [ 291.531110][T10697] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 291.531130][T10697] do_dentry_open+0x6d8/0x1660 [ 291.531144][T10697] ? __pfx_chrdev_open+0x10/0x10 [ 291.531164][T10697] vfs_open+0x82/0x3f0 [ 291.531200][T10697] path_openat+0x208c/0x31a0 [ 291.531222][T10697] ? __pfx_path_openat+0x10/0x10 [ 291.531246][T10697] do_file_open+0x20e/0x430 [ 291.531263][T10697] ? __pfx_do_file_open+0x10/0x10 [ 291.531293][T10697] ? alloc_fd+0x476/0x790 [ 291.531310][T10697] ? do_getname+0x191/0x390 [ 291.531330][T10697] do_sys_openat2+0x10d/0x1e0 [ 291.531349][T10697] ? __pfx_do_sys_openat2+0x10/0x10 [ 291.531369][T10697] ? find_held_lock+0x2b/0x80 [ 291.531388][T10697] __x64_sys_openat+0x12d/0x210 [ 291.531407][T10697] ? __pfx___x64_sys_openat+0x10/0x10 [ 291.531434][T10697] do_syscall_64+0x106/0xf80 [ 291.531450][T10697] ? clear_bhb_loop+0x40/0x90 [ 291.531468][T10697] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 291.531483][T10697] RIP: 0033:0x7fd8f579c799 [ 291.531497][T10697] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 291.531512][T10697] RSP: 002b:00007fd8f65bb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 291.531527][T10697] RAX: ffffffffffffffda RBX: 00007fd8f5a15fa0 RCX: 00007fd8f579c799 [ 291.531538][T10697] RDX: 0000000000008001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 291.531552][T10697] RBP: 00007fd8f5832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 291.531562][T10697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 291.531571][T10697] R13: 00007fd8f5a16038 R14: 00007fd8f5a15fa0 R15: 00007fffc30bc1c8 [ 291.531591][T10697] [ 292.096561][T10705] nfs: Unknown parameter 'm?LH>「^eko}* ' [ 292.104664][T10705] FAULT_INJECTION: forcing a failure. [ 292.104664][T10705] name failslab, interval 1, probability 0, space 0, times 0 [ 292.117701][T10705] CPU: 0 UID: 0 PID: 10705 Comm: syz.1.1705 Tainted: G U L syzkaller #0 PREEMPT(full) [ 292.117729][T10705] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 292.117735][T10705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 292.117745][T10705] Call Trace: [ 292.117752][T10705] [ 292.117758][T10705] dump_stack_lvl+0x100/0x190 [ 292.117785][T10705] should_fail_ex.cold+0x5/0xa [ 292.117804][T10705] should_failslab+0xc2/0x120 [ 292.117820][T10705] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 292.117842][T10705] ? __pmd_alloc+0xbf/0x9c0 [ 292.117863][T10705] __pmd_alloc+0xbf/0x9c0 [ 292.117882][T10705] move_page_tables+0x3224/0x4500 [ 292.117904][T10705] ? __pfx_copy_vma+0x10/0x10 [ 292.117931][T10705] ? __pfx_move_page_tables+0x10/0x10 [ 292.117962][T10705] ? finish_task_switch.isra.0+0x200/0xb80 [ 292.117981][T10705] copy_vma_and_data+0x25c/0x7c0 [ 292.118003][T10705] ? __pfx_copy_vma_and_data+0x10/0x10 [ 292.118032][T10705] ? __vma_start_write+0x17f/0x280 [ 292.118050][T10705] ? __pfx___vma_start_write+0x10/0x10 [ 292.118067][T10705] ? __pfx_arch_get_unmapped_area_topdown+0x10/0x10 [ 292.118103][T10705] move_vma+0x51b/0x1890 [ 292.118126][T10705] ? __pfx_move_vma+0x10/0x10 [ 292.118148][T10705] ? thp_get_unmapped_area_vmflags+0x27f/0x2d0 [ 292.118169][T10705] ? cap_mmap_addr+0x4b/0x120 [ 292.118188][T10705] ? bpf_lsm_mmap_addr+0x9/0x30 [ 292.118210][T10705] ? security_mmap_addr+0x71/0x1e0 [ 292.118226][T10705] ? __get_unmapped_area+0x255/0x3e0 [ 292.118245][T10705] ? vrm_set_new_addr+0x204/0x290 [ 292.118266][T10705] mremap_to+0x1b7/0x450 [ 292.118287][T10705] do_mremap+0xb76/0x2130 [ 292.118316][T10705] ? __pfx_do_mremap+0x10/0x10 [ 292.118341][T10705] ? ksys_write+0x190/0x250 [ 292.118359][T10705] __do_sys_mremap+0x126/0x170 [ 292.118382][T10705] ? __pfx___do_sys_mremap+0x10/0x10 [ 292.118408][T10705] ? __x64_sys_futex+0x34f/0x4d0 [ 292.118438][T10705] do_syscall_64+0x106/0xf80 [ 292.118455][T10705] ? clear_bhb_loop+0x40/0x90 [ 292.118473][T10705] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 292.118489][T10705] RIP: 0033:0x7fd8f579c799 [ 292.118503][T10705] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 292.118517][T10705] RSP: 002b:00007fd8f65bb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 292.118531][T10705] RAX: ffffffffffffffda RBX: 00007fd8f5a15fa0 RCX: 00007fd8f579c799 [ 292.118542][T10705] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 000000110c231000 [ 292.118551][T10705] RBP: 00007fd8f5832bd9 R08: 0000000100000000 R09: 0000000000000000 [ 292.118561][T10705] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000 [ 292.118569][T10705] R13: 00007fd8f5a16038 R14: 00007fd8f5a15fa0 R15: 00007fffc30bc1c8 [ 292.118589][T10705] [ 293.262557][T10723] FAULT_INJECTION: forcing a failure. [ 293.262557][T10723] name failslab, interval 1, probability 0, space 0, times 0 [ 293.321342][T10723] CPU: 0 UID: 0 PID: 10723 Comm: syz.0.1713 Tainted: G U L syzkaller #0 PREEMPT(full) [ 293.321371][T10723] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 293.321377][T10723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 293.321386][T10723] Call Trace: [ 293.321392][T10723] [ 293.321398][T10723] dump_stack_lvl+0x100/0x190 [ 293.321426][T10723] should_fail_ex.cold+0x5/0xa [ 293.321445][T10723] should_failslab+0xc2/0x120 [ 293.321461][T10723] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 293.321483][T10723] ? __kernfs_new_node+0xd2/0x960 [ 293.321507][T10723] __kernfs_new_node+0xd2/0x960 [ 293.321530][T10723] ? __pfx___kernfs_new_node+0x10/0x10 [ 293.321555][T10723] ? find_held_lock+0x2b/0x80 [ 293.321568][T10723] ? kernfs_root+0xee/0x2a0 [ 293.321586][T10723] ? kernfs_root+0xee/0x2a0 [ 293.321610][T10723] kernfs_new_node+0x11b/0x1a0 [ 293.321635][T10723] __kernfs_create_file+0x53/0x350 [ 293.321654][T10723] sysfs_add_file_mode_ns+0x207/0x3c0 [ 293.321678][T10723] internal_create_group+0x593/0xf40 [ 293.321703][T10723] ? __pfx_internal_create_group+0x10/0x10 [ 293.321727][T10723] ? kernfs_create_link+0x1bd/0x240 [ 293.321746][T10723] internal_create_groups+0x9d/0x150 [ 293.321769][T10723] device_add+0x7c8/0x1950 [ 293.321793][T10723] ? __pfx_device_add+0x10/0x10 [ 293.321808][T10723] ? lockdep_init_map_type+0x5c/0x250 [ 293.321828][T10723] ? __init_waitqueue_head+0xca/0x150 [ 293.321855][T10723] netdev_register_kobject+0x1a9/0x3d0 [ 293.321880][T10723] register_netdevice+0x12e0/0x2210 [ 293.321902][T10723] ? idr_alloc+0xdd/0x130 [ 293.321918][T10723] ? __pfx_register_netdevice+0x10/0x10 [ 293.321936][T10723] ? net_generic+0xea/0x2a0 [ 293.321957][T10723] ppp_dev_configure+0x986/0xcb0 [ 293.321979][T10723] ppp_ioctl+0x985/0x2800 [ 293.321998][T10723] ? find_held_lock+0x2b/0x80 [ 293.322012][T10723] ? __pfx_ppp_ioctl+0x10/0x10 [ 293.322032][T10723] ? __fget_files+0x21f/0x3d0 [ 293.322048][T10723] ? __pfx_ppp_ioctl+0x10/0x10 [ 293.322066][T10723] __x64_sys_ioctl+0x18e/0x210 [ 293.322088][T10723] do_syscall_64+0x106/0xf80 [ 293.322104][T10723] ? clear_bhb_loop+0x40/0x90 [ 293.322122][T10723] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 293.322137][T10723] RIP: 0033:0x7f124e99c799 [ 293.322151][T10723] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 293.322165][T10723] RSP: 002b:00007f124f7e3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 293.322180][T10723] RAX: ffffffffffffffda RBX: 00007f124ec15fa0 RCX: 00007f124e99c799 [ 293.322190][T10723] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000005 [ 293.322199][T10723] RBP: 00007f124ea32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 293.322208][T10723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 293.322217][T10723] R13: 00007f124ec16038 R14: 00007f124ec15fa0 R15: 00007fff5f5f6128 [ 293.322238][T10723] [ 294.289758][T10729] FAULT_INJECTION: forcing a failure. [ 294.289758][T10729] name failslab, interval 1, probability 0, space 0, times 0 [ 294.349668][T10729] CPU: 0 UID: 0 PID: 10729 Comm: syz.3.1715 Tainted: G U L syzkaller #0 PREEMPT(full) [ 294.349698][T10729] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 294.349706][T10729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 294.349719][T10729] Call Trace: [ 294.349726][T10729] [ 294.349733][T10729] dump_stack_lvl+0x100/0x190 [ 294.349761][T10729] should_fail_ex.cold+0x5/0xa [ 294.349780][T10729] should_failslab+0xc2/0x120 [ 294.349796][T10729] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 294.349818][T10729] ? vm_area_dup+0x27/0x8e0 [ 294.349841][T10729] vm_area_dup+0x27/0x8e0 [ 294.349865][T10729] __split_vma+0x18c/0xd90 [ 294.349887][T10729] ? __pfx___split_vma+0x10/0x10 [ 294.349911][T10729] ? __pfx_mas_prev+0x10/0x10 [ 294.349935][T10729] vms_gather_munmap_vmas+0x39f/0x1500 [ 294.349955][T10729] ? find_held_lock+0x2b/0x80 [ 294.349973][T10729] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 294.349993][T10729] ? move_page_tables+0xe1d/0x4500 [ 294.350024][T10729] do_vmi_align_munmap+0x287/0x5f0 [ 294.350048][T10729] ? __pfx_do_vmi_align_munmap+0x10/0x10 [ 294.350095][T10729] do_vmi_munmap+0x1f8/0x3e0 [ 294.350117][T10729] move_vma+0xd99/0x1890 [ 294.350141][T10729] ? __pfx_move_vma+0x10/0x10 [ 294.350162][T10729] ? mm_get_unmapped_area_vmflags+0xd7/0x130 [ 294.350186][T10729] ? vrm_set_new_addr+0x204/0x290 [ 294.350215][T10729] mremap_to+0x1b7/0x450 [ 294.350237][T10729] do_mremap+0xb76/0x2130 [ 294.350267][T10729] ? __pfx_do_mremap+0x10/0x10 [ 294.350291][T10729] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 294.350321][T10729] __do_sys_mremap+0x126/0x170 [ 294.350342][T10729] ? __pfx___do_sys_mremap+0x10/0x10 [ 294.350368][T10729] ? __x64_sys_futex+0x34f/0x4d0 [ 294.350398][T10729] do_syscall_64+0x106/0xf80 [ 294.350415][T10729] ? clear_bhb_loop+0x40/0x90 [ 294.350433][T10729] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 294.350448][T10729] RIP: 0033:0x7ff170b9c799 [ 294.350463][T10729] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 294.350477][T10729] RSP: 002b:00007ff16edcd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 294.350492][T10729] RAX: ffffffffffffffda RBX: 00007ff170e16090 RCX: 00007ff170b9c799 [ 294.350502][T10729] RDX: 0000000000000037 RSI: 0000000000000008 RDI: 0000200000001000 [ 294.350512][T10729] RBP: 00007ff170c32bd9 R08: 000000110c230000 R09: 0000000000000000 [ 294.350521][T10729] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 294.350530][T10729] R13: 00007ff170e16128 R14: 00007ff170e16090 R15: 00007ffd5af3dab8 [ 294.350552][T10729] [ 295.400294][T10741] veth1_to_batadv: entered promiscuous mode [ 295.444159][T10743] FAULT_INJECTION: forcing a failure. [ 295.444159][T10743] name failslab, interval 1, probability 0, space 0, times 0 [ 295.469984][T10741] veth1_to_batadv: left promiscuous mode [ 295.489113][T10743] CPU: 0 UID: 0 PID: 10743 Comm: syz.0.1722 Tainted: G U L syzkaller #0 PREEMPT(full) [ 295.489141][T10743] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 295.489148][T10743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 295.489158][T10743] Call Trace: [ 295.489163][T10743] [ 295.489170][T10743] dump_stack_lvl+0x100/0x190 [ 295.489198][T10743] should_fail_ex.cold+0x5/0xa [ 295.489216][T10743] ? vkms_crtc_atomic_check+0x38a/0x7c0 [ 295.489231][T10743] should_failslab+0xc2/0x120 [ 295.489248][T10743] __kmalloc_noprof+0xe0/0x850 [ 295.489269][T10743] ? drm_atomic_add_affected_planes+0x32b/0x3f0 [ 295.489291][T10743] vkms_crtc_atomic_check+0x38a/0x7c0 [ 295.489311][T10743] ? __pfx_vkms_crtc_atomic_check+0x10/0x10 [ 295.489325][T10743] drm_atomic_helper_check_planes+0x4dc/0x900 [ 295.489347][T10743] drm_atomic_helper_check+0xae/0x190 [ 295.489365][T10743] vkms_atomic_check+0x1d9/0x250 [ 295.489386][T10743] ? __pfx_vkms_atomic_check+0x10/0x10 [ 295.489407][T10743] drm_atomic_check_only+0x19ea/0x31b0 [ 295.489433][T10743] drm_atomic_commit+0x132/0x300 [ 295.489447][T10743] ? __pfx_drm_atomic_commit+0x10/0x10 [ 295.489462][T10743] ? __pfx___drm_printfn_info+0x10/0x10 [ 295.489481][T10743] ? drm_client_rotation+0x451/0x6a0 [ 295.489502][T10743] drm_client_modeset_commit_atomic+0x6a6/0x7e0 [ 295.489525][T10743] ? __mutex_lock+0x26a/0x1b90 [ 295.489544][T10743] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 295.489563][T10743] ? drm_master_internal_acquire+0x21/0x80 [ 295.489598][T10743] drm_client_modeset_commit_locked+0x14d/0x580 [ 295.489619][T10743] drm_client_modeset_commit+0x4f/0x80 [ 295.489639][T10743] __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160 [ 295.489660][T10743] drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0 [ 295.489680][T10743] drm_fbdev_client_restore+0x1b/0x30 [ 295.489703][T10743] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 295.489725][T10743] drm_client_dev_restore+0x205/0x2a0 [ 295.489747][T10743] drm_release+0x2c6/0x360 [ 295.489763][T10743] ? __pfx_drm_release+0x10/0x10 [ 295.489779][T10743] __fput+0x3ff/0xb40 [ 295.489801][T10743] task_work_run+0x150/0x240 [ 295.489822][T10743] ? __pfx_task_work_run+0x10/0x10 [ 295.489848][T10743] exit_to_user_mode_loop+0x100/0x4a0 [ 295.489870][T10743] do_syscall_64+0x668/0xf80 [ 295.489888][T10743] ? clear_bhb_loop+0x40/0x90 [ 295.489906][T10743] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 295.489921][T10743] RIP: 0033:0x7f124e99c799 [ 295.489934][T10743] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 295.489949][T10743] RSP: 002b:00007f124f7e3028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 295.489964][T10743] RAX: 0000000000000000 RBX: 00007f124ec15fa0 RCX: 00007f124e99c799 [ 295.489973][T10743] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 295.489982][T10743] RBP: 00007f124ea32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 295.489991][T10743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 295.490000][T10743] R13: 00007f124ec16038 R14: 00007f124ec15fa0 R15: 00007fff5f5f6128 [ 295.490021][T10743] [ 296.068022][T10745] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1724'. [ 297.184179][T10767] FAULT_INJECTION: forcing a failure. [ 297.184179][T10767] name failslab, interval 1, probability 0, space 0, times 0 [ 297.249140][T10767] CPU: 0 UID: 0 PID: 10767 Comm: syz.2.1732 Tainted: G U L syzkaller #0 PREEMPT(full) [ 297.249171][T10767] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 297.249176][T10767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 297.249186][T10767] Call Trace: [ 297.249192][T10767] [ 297.249199][T10767] dump_stack_lvl+0x100/0x190 [ 297.249227][T10767] should_fail_ex.cold+0x5/0xa [ 297.249246][T10767] ? vkms_crtc_atomic_check+0x38a/0x7c0 [ 297.249262][T10767] should_failslab+0xc2/0x120 [ 297.249278][T10767] __kmalloc_noprof+0xe0/0x850 [ 297.249300][T10767] ? drm_atomic_add_affected_planes+0x32b/0x3f0 [ 297.249320][T10767] vkms_crtc_atomic_check+0x38a/0x7c0 [ 297.249340][T10767] ? __pfx_vkms_crtc_atomic_check+0x10/0x10 [ 297.249355][T10767] drm_atomic_helper_check_planes+0x4dc/0x900 [ 297.249377][T10767] drm_atomic_helper_check+0xae/0x190 [ 297.249395][T10767] vkms_atomic_check+0x1d9/0x250 [ 297.249419][T10767] ? __pfx_vkms_atomic_check+0x10/0x10 [ 297.249440][T10767] drm_atomic_check_only+0x19ea/0x31b0 [ 297.249466][T10767] drm_atomic_commit+0x132/0x300 [ 297.249481][T10767] ? __pfx_drm_atomic_commit+0x10/0x10 [ 297.249495][T10767] ? __pfx___drm_printfn_info+0x10/0x10 [ 297.249514][T10767] ? drm_client_rotation+0x451/0x6a0 [ 297.249535][T10767] drm_client_modeset_commit_atomic+0x6a6/0x7e0 [ 297.249559][T10767] ? __mutex_lock+0x26a/0x1b90 [ 297.249577][T10767] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 297.249596][T10767] ? drm_master_internal_acquire+0x21/0x80 [ 297.249633][T10767] drm_client_modeset_commit_locked+0x14d/0x580 [ 297.249655][T10767] drm_client_modeset_commit+0x4f/0x80 [ 297.249675][T10767] __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160 [ 297.249697][T10767] drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0 [ 297.249717][T10767] drm_fbdev_client_restore+0x1b/0x30 [ 297.249740][T10767] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 297.249762][T10767] drm_client_dev_restore+0x205/0x2a0 [ 297.249783][T10767] drm_release+0x2c6/0x360 [ 297.249800][T10767] ? __pfx_drm_release+0x10/0x10 [ 297.249815][T10767] __fput+0x3ff/0xb40 [ 297.249838][T10767] task_work_run+0x150/0x240 [ 297.249860][T10767] ? __pfx_task_work_run+0x10/0x10 [ 297.249886][T10767] exit_to_user_mode_loop+0x100/0x4a0 [ 297.249916][T10767] do_syscall_64+0x668/0xf80 [ 297.249934][T10767] ? clear_bhb_loop+0x40/0x90 [ 297.249953][T10767] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 297.249968][T10767] RIP: 0033:0x7f8b4939c799 [ 297.249981][T10767] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 297.249995][T10767] RSP: 002b:00007f8b475ee028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 297.250010][T10767] RAX: 0000000000000000 RBX: 00007f8b49615fa0 RCX: 00007f8b4939c799 [ 297.250019][T10767] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 297.250028][T10767] RBP: 00007f8b49432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 297.250036][T10767] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 297.250045][T10767] R13: 00007f8b49616038 R14: 00007f8b49615fa0 R15: 00007ffc934aa338 [ 297.250067][T10767] [ 298.336885][T10781] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1737'. [ 298.927262][T10799] : entered promiscuous mode [ 299.400381][T10790] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 299.408383][T10790] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 299.415052][T10790] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 299.421290][T10790] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 299.775250][T10812] sp0: Synchronizing with TNC [ 299.780050][T10820] veth1_to_batadv: entered promiscuous mode [ 299.834530][T10820] veth1_to_batadv: left promiscuous mode [ 300.990330][T10851] FAULT_INJECTION: forcing a failure. [ 300.990330][T10851] name failslab, interval 1, probability 0, space 0, times 0 [ 301.031309][T10851] CPU: 0 UID: 0 PID: 10851 Comm: syz.2.1760 Tainted: G U L syzkaller #0 PREEMPT(full) [ 301.031339][T10851] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 301.031345][T10851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 301.031354][T10851] Call Trace: [ 301.031360][T10851] [ 301.031366][T10851] dump_stack_lvl+0x100/0x190 [ 301.031394][T10851] should_fail_ex.cold+0x5/0xa [ 301.031413][T10851] ? lsm_blob_alloc+0x68/0x90 [ 301.031430][T10851] should_failslab+0xc2/0x120 [ 301.031446][T10851] __kmalloc_noprof+0xe0/0x850 [ 301.031468][T10851] ? trace_kmem_cache_alloc+0xf3/0x120 [ 301.031487][T10851] lsm_blob_alloc+0x68/0x90 [ 301.031505][T10851] security_sk_alloc+0x2d/0x290 [ 301.031527][T10851] sk_prot_alloc+0x1d1/0x2a0 [ 301.031550][T10851] sk_alloc+0x36/0xe80 [ 301.031567][T10851] inet6_create+0x385/0x12b0 [ 301.031587][T10851] ? inet6_create+0x7f/0x12b0 [ 301.031606][T10851] __sock_create+0x339/0x860 [ 301.031643][T10851] udp_sock_create6+0xc7/0x6a0 [ 301.031664][T10851] ? __pfx_udp_sock_create6+0x10/0x10 [ 301.031686][T10851] ? crng_make_state+0x477/0x6c0 [ 301.031707][T10851] ? lockdep_hardirqs_on+0x78/0x100 [ 301.031725][T10851] ? crng_make_state+0x2b0/0x6c0 [ 301.031748][T10851] rxrpc_open_socket+0x206/0x6b0 [ 301.031770][T10851] ? __pfx_rxrpc_open_socket+0x10/0x10 [ 301.031802][T10851] ? rcu_is_watching+0x12/0xc0 [ 301.031827][T10851] rxrpc_lookup_local+0xac7/0x1220 [ 301.031851][T10851] ? __pfx_rxrpc_lookup_local+0x10/0x10 [ 301.031875][T10851] ? __local_bh_enable_ip+0x9e/0x120 [ 301.031893][T10851] rxrpc_sendmsg+0x34a/0x680 [ 301.031910][T10851] sock_write_iter+0x524/0x5a0 [ 301.031931][T10851] ? __pfx_rxrpc_sendmsg+0x10/0x10 [ 301.031945][T10851] ? __pfx_sock_write_iter+0x10/0x10 [ 301.031972][T10851] ? bpf_lsm_file_permission+0x9/0x10 [ 301.031994][T10851] ? security_file_permission+0x76/0x210 [ 301.032010][T10851] ? rw_verify_area+0xce/0x6d0 [ 301.032032][T10851] vfs_write+0x6ac/0x1070 [ 301.032055][T10851] ? __pfx_sock_write_iter+0x10/0x10 [ 301.032078][T10851] ? __pfx_vfs_write+0x10/0x10 [ 301.032098][T10851] ? find_held_lock+0x2b/0x80 [ 301.032124][T10851] ksys_write+0x1f8/0x250 [ 301.032137][T10851] ? __pfx_ksys_write+0x10/0x10 [ 301.032156][T10851] do_syscall_64+0x106/0xf80 [ 301.032173][T10851] ? clear_bhb_loop+0x40/0x90 [ 301.032191][T10851] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 301.032206][T10851] RIP: 0033:0x7f8b4939c799 [ 301.032220][T10851] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 301.032234][T10851] RSP: 002b:00007f8b475ee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 301.032249][T10851] RAX: ffffffffffffffda RBX: 00007f8b49615fa0 RCX: 00007f8b4939c799 [ 301.032259][T10851] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 301.032269][T10851] RBP: 00007f8b49432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 301.032279][T10851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 301.032288][T10851] R13: 00007f8b49616038 R14: 00007f8b49615fa0 R15: 00007ffc934aa338 [ 301.032308][T10851] [ 301.475780][T10860] netlink: 'syz.2.1763': attribute type 20 has an invalid length. [ 301.483659][T10860] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1763'. [ 301.492699][T10860] IPv6: NLM_F_CREATE should be specified when creating new route [ 301.706722][ T5144] Bluetooth: hci3: command 0x0406 tx timeout [ 301.712836][ T5144] Bluetooth: hci2: command 0x0406 tx timeout [ 301.719183][ T5144] Bluetooth: hci1: command 0x0406 tx timeout [ 301.806936][T10857] zswap: compressor not available [ 302.049445][T10843] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 302.066996][T10843] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 302.093508][T10843] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 302.113716][T10843] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 302.277213][ C0] vcan0: j1939_tp_rxtimer: 0xffff888028fd8800: rx timeout, send abort [ 302.286899][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888028fd8800: 0x0ffff: (3) A timeout occurred and this is the connection abort to close the session. [ 302.564335][ T5823] Bluetooth: hci0: command 0x0406 tx timeout [ 304.085229][ T5823] Bluetooth: hci1: command 0x0406 tx timeout [ 304.164886][ T5823] Bluetooth: hci3: command 0x0406 tx timeout [ 304.170921][ T5144] Bluetooth: hci2: command 0x0406 tx timeout [ 304.261117][T10925] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1786'. [ 304.521468][T10927] sp0: Synchronizing with TNC [ 304.754816][T10936] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1789'. [ 304.786442][T10936] IPv6: Can't replace route, no match found [ 305.856780][T10970] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1799'. [ 306.414881][T10981] ima: policy update failed [ 306.425591][ T29] audit: type=1802 audit(1772989472.984:6): pid=10981 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1805" res=0 errno=0 [ 307.145669][ T29] audit: type=1800 audit(1772989473.704:7): pid=10998 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1810" name="members" dev="configfs" ino=33476 res=0 errno=0 [ 308.361649][T11014] sp0: Synchronizing with TNC [ 308.879259][T11037] FAULT_INJECTION: forcing a failure. [ 308.879259][T11037] name failslab, interval 1, probability 0, space 0, times 0 [ 308.926892][T11037] CPU: 0 UID: 0 PID: 11037 Comm: syz.3.1819 Tainted: G U L syzkaller #0 PREEMPT(full) [ 308.926922][T11037] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 308.926928][T11037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 308.926937][T11037] Call Trace: [ 308.926942][T11037] [ 308.926949][T11037] dump_stack_lvl+0x100/0x190 [ 308.926977][T11037] should_fail_ex.cold+0x5/0xa [ 308.926996][T11037] should_failslab+0xc2/0x120 [ 308.927012][T11037] __kmalloc_cache_noprof+0x7a/0x6f0 [ 308.927031][T11037] ? snd_seq_fifo_new+0x42/0x270 [ 308.927048][T11037] ? _raw_spin_unlock_irq+0x2e/0x50 [ 308.927066][T11037] ? __pfx_snd_seq_open+0x10/0x10 [ 308.927087][T11037] snd_seq_fifo_new+0x42/0x270 [ 308.927103][T11037] snd_seq_open+0x3fe/0x590 [ 308.927123][T11037] ? __pfx_snd_seq_open+0x10/0x10 [ 308.927144][T11037] snd_open+0x22d/0x4c0 [ 308.927166][T11037] ? __pfx_snd_open+0x10/0x10 [ 308.927187][T11037] chrdev_open+0x234/0x6a0 [ 308.927201][T11037] ? __pfx_apparmor_file_open+0x10/0x10 [ 308.927223][T11037] ? __pfx_chrdev_open+0x10/0x10 [ 308.927239][T11037] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 308.927258][T11037] do_dentry_open+0x6d8/0x1660 [ 308.927273][T11037] ? __pfx_chrdev_open+0x10/0x10 [ 308.927292][T11037] vfs_open+0x82/0x3f0 [ 308.927312][T11037] path_openat+0x208c/0x31a0 [ 308.927334][T11037] ? __pfx_path_openat+0x10/0x10 [ 308.927356][T11037] do_file_open+0x20e/0x430 [ 308.927373][T11037] ? __pfx_do_file_open+0x10/0x10 [ 308.927401][T11037] ? alloc_fd+0x476/0x790 [ 308.927418][T11037] ? do_getname+0x191/0x390 [ 308.927437][T11037] do_sys_openat2+0x10d/0x1e0 [ 308.927455][T11037] ? __pfx_do_sys_openat2+0x10/0x10 [ 308.927481][T11037] __x64_sys_openat+0x12d/0x210 [ 308.927500][T11037] ? __pfx___x64_sys_openat+0x10/0x10 [ 308.927526][T11037] do_syscall_64+0x106/0xf80 [ 308.927543][T11037] ? clear_bhb_loop+0x40/0x90 [ 308.927561][T11037] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 308.927576][T11037] RIP: 0033:0x7ff170b9c799 [ 308.927589][T11037] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 308.927603][T11037] RSP: 002b:00007ff16edee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 308.927617][T11037] RAX: ffffffffffffffda RBX: 00007ff170e15fa0 RCX: 00007ff170b9c799 [ 308.927627][T11037] RDX: 00000000001e3800 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 308.927637][T11037] RBP: 00007ff170c32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 308.927654][T11037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 308.927663][T11037] R13: 00007ff170e16038 R14: 00007ff170e15fa0 R15: 00007ffd5af3dab8 [ 308.927684][T11037] [ 310.028333][T11042] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1820'. [ 310.535393][T11059] FAULT_INJECTION: forcing a failure. [ 310.535393][T11059] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 310.613443][T11059] CPU: 0 UID: 0 PID: 11059 Comm: syz.2.1828 Tainted: G U L syzkaller #0 PREEMPT(full) [ 310.613481][T11059] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 310.613487][T11059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 310.613496][T11059] Call Trace: [ 310.613502][T11059] [ 310.613508][T11059] dump_stack_lvl+0x100/0x190 [ 310.613536][T11059] should_fail_ex.cold+0x5/0xa [ 310.613551][T11059] ? prepare_alloc_pages+0x16d/0x5f0 [ 310.613569][T11059] should_fail_alloc_page+0xeb/0x140 [ 310.613586][T11059] prepare_alloc_pages+0x1f0/0x5f0 [ 310.613605][T11059] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 310.613630][T11059] ? rcu_is_watching+0x12/0xc0 [ 310.613651][T11059] ? trace_mm_page_alloc+0x17a/0x1d0 [ 310.613668][T11059] ? __alloc_frozen_pages_noprof+0x2b1/0x2ba0 [ 310.613689][T11059] ? stack_depot_save_flags+0x479/0x9d0 [ 310.613707][T11059] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 310.613728][T11059] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 310.613747][T11059] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 310.613763][T11059] ? stack_depot_save_flags+0x479/0x9d0 [ 310.613782][T11059] ? kasan_save_stack+0x3f/0x50 [ 310.613808][T11059] ? kasan_save_track+0x14/0x30 [ 310.613830][T11059] ? kmem_cache_alloc_node_noprof+0x25a/0x6f0 [ 310.613850][T11059] ? alloc_vmap_area+0x186c/0x2bd0 [ 310.613864][T11059] ? __get_vm_area_node+0x1ca/0x330 [ 310.613881][T11059] ? __vmalloc_node_range_noprof+0x213/0x1530 [ 310.613906][T11059] ? __kvmalloc_node_noprof+0x3de/0xa00 [ 310.613928][T11059] ? __do_sys_listmount+0x289/0xee0 [ 310.613953][T11059] ? do_syscall_64+0x106/0xf80 [ 310.613972][T11059] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 310.613997][T11059] alloc_pages_bulk_noprof+0x782/0x1490 [ 310.614029][T11059] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 310.614061][T11059] ? alloc_pages_noprof+0x233/0x390 [ 310.614077][T11059] __kasan_populate_vmalloc+0xf0/0x210 [ 310.614103][T11059] alloc_vmap_area+0x95d/0x2bd0 [ 310.614125][T11059] ? __pfx_alloc_vmap_area+0x10/0x10 [ 310.614145][T11059] __get_vm_area_node+0x1ca/0x330 [ 310.614165][T11059] __vmalloc_node_range_noprof+0x213/0x1530 [ 310.614184][T11059] ? __do_sys_listmount+0x289/0xee0 [ 310.614210][T11059] ? __do_sys_listmount+0x289/0xee0 [ 310.614236][T11059] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 310.614258][T11059] ? rcu_is_watching+0x12/0xc0 [ 310.614283][T11059] __kvmalloc_node_noprof+0x3de/0xa00 [ 310.614305][T11059] ? __do_sys_listmount+0x289/0xee0 [ 310.614325][T11059] ? __do_sys_listmount+0x289/0xee0 [ 310.614345][T11059] ? _copy_from_user+0x59/0xd0 [ 310.614359][T11059] ? copy_mnt_id_req+0x1b1/0x350 [ 310.614379][T11059] __do_sys_listmount+0x289/0xee0 [ 310.614400][T11059] ? __pfx_do_futex+0x10/0x10 [ 310.614420][T11059] ? __fget_files+0x21f/0x3d0 [ 310.614434][T11059] ? __pfx___do_sys_listmount+0x10/0x10 [ 310.614468][T11059] do_syscall_64+0x106/0xf80 [ 310.614492][T11059] ? clear_bhb_loop+0x40/0x90 [ 310.614511][T11059] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 310.614527][T11059] RIP: 0033:0x7f8b4939c799 [ 310.614541][T11059] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 310.614555][T11059] RSP: 002b:00007f8b475ee028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 310.614570][T11059] RAX: ffffffffffffffda RBX: 00007f8b49615fa0 RCX: 00007f8b4939c799 [ 310.614580][T11059] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000080 [ 310.614589][T11059] RBP: 00007f8b49432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 310.614598][T11059] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 310.614606][T11059] R13: 00007f8b49616038 R14: 00007f8b49615fa0 R15: 00007ffc934aa338 [ 310.614626][T11059] [ 310.615510][T11059] syz.2.1828: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 312.225168][T11059] CPU: 0 UID: 0 PID: 11059 Comm: syz.2.1828 Tainted: G U L syzkaller #0 PREEMPT(full) [ 312.225197][T11059] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 312.225202][T11059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 312.225212][T11059] Call Trace: [ 312.225217][T11059] [ 312.225223][T11059] dump_stack_lvl+0x100/0x190 [ 312.225249][T11059] warn_alloc.cold+0x95/0x1c1 [ 312.225274][T11059] ? __pfx_warn_alloc+0x10/0x10 [ 312.225297][T11059] ? lockdep_hardirqs_on+0x78/0x100 [ 312.225317][T11059] ? __get_vm_area_node+0x2c5/0x330 [ 312.225338][T11059] ? __get_vm_area_node+0x208/0x330 [ 312.225358][T11059] __vmalloc_node_range_noprof+0xbf4/0x1530 [ 312.225382][T11059] ? __do_sys_listmount+0x289/0xee0 [ 312.225415][T11059] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 312.225438][T11059] ? rcu_is_watching+0x12/0xc0 [ 312.225464][T11059] __kvmalloc_node_noprof+0x3de/0xa00 [ 312.225492][T11059] ? __do_sys_listmount+0x289/0xee0 [ 312.225516][T11059] ? __do_sys_listmount+0x289/0xee0 [ 312.225536][T11059] ? _copy_from_user+0x59/0xd0 [ 312.225550][T11059] ? copy_mnt_id_req+0x1b1/0x350 [ 312.225571][T11059] __do_sys_listmount+0x289/0xee0 [ 312.225592][T11059] ? __pfx_do_futex+0x10/0x10 [ 312.225613][T11059] ? __fget_files+0x21f/0x3d0 [ 312.225627][T11059] ? __pfx___do_sys_listmount+0x10/0x10 [ 312.225661][T11059] do_syscall_64+0x106/0xf80 [ 312.225678][T11059] ? clear_bhb_loop+0x40/0x90 [ 312.225696][T11059] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 312.225711][T11059] RIP: 0033:0x7f8b4939c799 [ 312.225725][T11059] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 312.225740][T11059] RSP: 002b:00007f8b475ee028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 312.225755][T11059] RAX: ffffffffffffffda RBX: 00007f8b49615fa0 RCX: 00007f8b4939c799 [ 312.225765][T11059] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000080 [ 312.225774][T11059] RBP: 00007f8b49432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 312.225782][T11059] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 312.225791][T11059] R13: 00007f8b49616038 R14: 00007f8b49615fa0 R15: 00007ffc934aa338 [ 312.225811][T11059] [ 312.228064][T11059] Mem-Info: [ 313.131862][T11059] active_anon:16523 inactive_anon:103 isolated_anon:0 [ 313.131862][T11059] active_file:13987 inactive_file:40068 isolated_file:0 [ 313.131862][T11059] unevictable:768 dirty:447 writeback:0 [ 313.131862][T11059] slab_reclaimable:11025 slab_unreclaimable:91925 [ 313.131862][T11059] mapped:31738 shmem:9186 pagetables:1281 [ 313.131862][T11059] sec_pagetables:0 bounce:0 [ 313.131862][T11059] kernel_misc_reclaimable:0 [ 313.131862][T11059] free:1312281 free_pcp:16561 free_cma:0 [ 313.353170][T11059] Node 0 active_anon:67476kB inactive_anon:412kB active_file:57120kB inactive_file:160060kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:128088kB dirty:1824kB writeback:0kB shmem:36396kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11520kB pagetables:5172kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 313.526568][T11059] Node 1 active_anon:0kB inactive_anon:0kB active_file:96kB inactive_file:212kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:96kB dirty:8kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:64kB pagetables:164kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 313.631177][T11106] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1845'. [ 313.655668][T11105] random: crng reseeded on system resumption [ 313.669401][T11059] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 313.814907][T11059] lowmem_reserve[]: 0 2477 2478 2478 2478 [ 313.841222][T11059] Node 0 DMA32 free:1312664kB boost:0kB min:34056kB low:42568kB high:51080kB reserved_highatomic:0KB free_highatomic:0KB active_anon:72728kB inactive_anon:412kB active_file:57172kB inactive_file:162108kB unevictable:1536kB writepending:1824kB zspages:0kB present:3129332kB managed:2537428kB mlocked:0kB bounce:0kB free_pcp:41468kB local_pcp:41468kB free_cma:0kB [ 314.010400][T11059] lowmem_reserve[]: 0 0 1 1 1 [ 314.015143][T11059] Node 0 Normal free:8kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1060kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:16kB free_cma:0kB [ 314.123913][T11114] FAULT_INJECTION: forcing a failure. [ 314.123913][T11114] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 314.172881][T11059] lowmem_reserve[]: 0 0 0 0 0 [ 314.177780][T11114] CPU: 0 UID: 0 PID: 11114 Comm: syz.3.1848 Tainted: G U L syzkaller #0 PREEMPT(full) [ 314.177806][T11114] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 314.177813][T11114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 314.177822][T11114] Call Trace: [ 314.177828][T11114] [ 314.177834][T11114] dump_stack_lvl+0x100/0x190 [ 314.177861][T11114] should_fail_ex.cold+0x5/0xa [ 314.177876][T11114] ? prepare_alloc_pages+0x16d/0x5f0 [ 314.177895][T11114] should_fail_alloc_page+0xeb/0x140 [ 314.177913][T11114] prepare_alloc_pages+0x1f0/0x5f0 [ 314.177932][T11114] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 314.177958][T11114] ? cpa_flush+0x19c/0x980 [ 314.177972][T11114] ? __lock_acquire+0x4a5/0x2630 [ 314.177990][T11114] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 314.178012][T11114] ? pgprot2cachemode+0x9a/0x130 [ 314.178031][T11114] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 314.178062][T11114] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 314.178087][T11114] ? policy_nodemask+0xed/0x4f0 [ 314.178101][T11114] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 314.178125][T11114] ? policy_nodemask+0xed/0x4f0 [ 314.178141][T11114] alloc_pages_mpol+0x1fb/0x550 [ 314.178157][T11114] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 314.178174][T11114] ? alloc_pages_noprof+0x233/0x390 [ 314.178191][T11114] alloc_pages_noprof+0x131/0x390 [ 314.178208][T11114] kimage_alloc_pages+0x72/0x380 [ 314.178275][T11114] kimage_alloc_page+0x232/0x910 [ 314.178303][T11114] kimage_load_segment+0x507/0xde0 [ 314.178324][T11114] do_kexec_load+0x58d/0x810 [ 314.178341][T11114] ? __pfx_do_kexec_load+0x10/0x10 [ 314.178359][T11114] ? _copy_from_user+0x59/0xd0 [ 314.178376][T11114] __x64_sys_kexec_load+0x1bf/0x230 [ 314.178393][T11114] do_syscall_64+0x106/0xf80 [ 314.178411][T11114] ? clear_bhb_loop+0x40/0x90 [ 314.178429][T11114] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 314.178445][T11114] RIP: 0033:0x7ff170b9c799 [ 314.178458][T11114] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 314.178473][T11114] RSP: 002b:00007ff16edee028 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6 [ 314.178487][T11114] RAX: ffffffffffffffda RBX: 00007ff170e15fa0 RCX: 00007ff170b9c799 [ 314.178497][T11114] RDX: 0000200000000080 RSI: 0000000000000002 RDI: 00000000ffffffff [ 314.178507][T11114] RBP: 00007ff170c32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 314.178515][T11114] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 314.178524][T11114] R13: 00007ff170e16038 R14: 00007ff170e15fa0 R15: 00007ffd5af3dab8 [ 314.178544][T11114] [ 314.710126][T11059] Node 1 Normal free:3913276kB boost:0kB min:55828kB low:69784kB high:83740kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:96kB inactive_file:212kB unevictable:1536kB writepending:8kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:23076kB local_pcp:23076kB free_cma:0kB [ 314.780173][T11059] lowmem_reserve[]: 0 0 0 0 0 [ 314.790195][T11059] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 314.813044][T11059] Node 0 DMA32: 1258*4kB (UM) 1503*8kB (UM) 793*16kB (UME) 352*32kB (UME) 178*64kB (UM) 377*128kB (UME) 221*256kB (UM) 144*512kB (UME) 65*1024kB (UM) 26*2048kB (UME) 223*4096kB (UM) = 1264176kB [ 314.870217][T11059] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 314.909362][T11059] Node 1 Normal: 7*4kB (UM) 12*8kB (UM) 18*16kB (UM) 9*32kB (UM) 6*64kB (UM) 10*128kB (UM) 5*256kB (UM) 6*512kB (UM) 3*1024kB (UM) 2*2048kB (UM) 952*4096kB (M) = 3913276kB [ 314.958271][T11059] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 314.988611][T11059] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 315.020282][T11059] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 315.049797][T11059] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 315.089937][T11059] 76848 total pagecache pages [ 315.105179][T11059] 41 pages in swap cache [ 315.122556][T11059] Free swap = 124860kB [ 315.131767][T11059] Total swap = 124996kB [ 315.150384][T11059] 2097051 pages RAM [ 315.160369][T11059] 0 pages HighMem/MovableOnly [ 315.175865][T11059] 430814 pages reserved [ 315.202365][T11059] 0 pages cma reserved [ 316.945340][T11151] netlink: 354 bytes leftover after parsing attributes in process `syz.2.1862'. [ 317.101904][T11153] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1863'. [ 317.154592][T11153] netlink: 25 bytes leftover after parsing attributes in process `syz.1.1863'. [ 317.460463][T11150] serio: Serial port ttyS2 [ 317.535046][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.541766][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.050793][ T5823] block nbd0: Receive control failed (result -32) [ 318.337387][T11174] pci 0000:00:00.0: MSI/MSI-X allowed for future drivers [ 318.691750][T11184] raw_sendmsg: syz.2.1874 forgot to set AF_INET. Fix it! [ 319.233077][T11200] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1880'. [ 319.248153][T11199] sp0: Synchronizing with TNC [ 319.628039][T11212] netlink: 'syz.1.1884': attribute type 16 has an invalid length. [ 319.662669][T11212] netlink: 50 bytes leftover after parsing attributes in process `syz.1.1884'. [ 319.722333][T11212] netlink: 'syz.1.1884': attribute type 16 has an invalid length. [ 319.744825][T11212] netlink: 50 bytes leftover after parsing attributes in process `syz.1.1884'. [ 321.437661][T11219] Process accounting paused [ 322.119518][ T5823] block nbd1: Receive control failed (result -32) [ 322.617837][T11277] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1903'. [ 323.065585][T11288] random: crng reseeded on system resumption [ 323.460230][T11285] zswap: compressor not available [ 325.056050][T11338] nvme_fabrics: missing parameter 'transport=%s' [ 325.080989][T11338] nvme_fabrics: missing parameter 'nqn=%s' [ 325.221335][T11342] nvme_fabrics: missing parameter 'transport=%s' [ 325.247677][T11342] nvme_fabrics: missing parameter 'nqn=%s' [ 325.822784][T11363] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1935'. [ 325.877009][T11363] bridge0: port 2(bridge_slave_1) entered disabled state [ 325.885111][T11363] bridge0: port 1(bridge_slave_0) entered disabled state [ 325.910706][T11366] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1936'. [ 327.204233][T11398] FAULT_INJECTION: forcing a failure. [ 327.204233][T11398] name failslab, interval 1, probability 0, space 0, times 0 [ 327.233719][T11401] FAULT_INJECTION: forcing a failure. [ 327.233719][T11401] name failslab, interval 1, probability 0, space 0, times 0 [ 327.283385][T11398] CPU: 0 UID: 0 PID: 11398 Comm: syz.2.1941 Tainted: G U L syzkaller #0 PREEMPT(full) [ 327.283414][T11398] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 327.283421][T11398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 327.283430][T11398] Call Trace: [ 327.283436][T11398] [ 327.283442][T11398] dump_stack_lvl+0x100/0x190 [ 327.283470][T11398] should_fail_ex.cold+0x5/0xa [ 327.283488][T11398] should_failslab+0xc2/0x120 [ 327.283504][T11398] __kmalloc_cache_noprof+0x7a/0x6f0 [ 327.283524][T11398] ? ovs_ct_limit_cmd_set+0x30a/0xa70 [ 327.283548][T11398] ovs_ct_limit_cmd_set+0x30a/0xa70 [ 327.283572][T11398] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 327.283593][T11398] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280 [ 327.283617][T11398] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280 [ 327.283643][T11398] genl_family_rcv_msg_doit+0x214/0x300 [ 327.283666][T11398] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 327.283687][T11398] ? genl_get_cmd+0x3ef/0x720 [ 327.283711][T11398] ? bpf_lsm_capable+0x9/0x10 [ 327.283726][T11398] ? security_capable+0x80/0x260 [ 327.283747][T11398] ? ns_capable+0xd2/0xf0 [ 327.283763][T11398] genl_rcv_msg+0x560/0x800 [ 327.283793][T11398] ? __pfx_genl_rcv_msg+0x10/0x10 [ 327.283816][T11398] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 327.283844][T11398] netlink_rcv_skb+0x159/0x420 [ 327.283864][T11398] ? __pfx_genl_rcv_msg+0x10/0x10 [ 327.283887][T11398] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 327.283914][T11398] ? netlink_deliver_tap+0x1ae/0xcc0 [ 327.283935][T11398] genl_rcv+0x28/0x40 [ 327.283954][T11398] netlink_unicast+0x5aa/0x870 [ 327.283976][T11398] ? __pfx_netlink_unicast+0x10/0x10 [ 327.283994][T11398] ? __asan_memset+0x23/0x50 [ 327.284013][T11398] ? __build_skb_around+0x278/0x390 [ 327.284029][T11398] ? is_vmalloc_addr+0x86/0xa0 [ 327.284051][T11398] netlink_sendmsg+0x8b0/0xda0 [ 327.284073][T11398] ? __pfx_netlink_sendmsg+0x10/0x10 [ 327.284091][T11398] ? __import_iovec+0x1d2/0x640 [ 327.284108][T11398] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 327.284131][T11398] ____sys_sendmsg+0x9e1/0xb70 [ 327.284152][T11398] ? __pfx_netlink_sendmsg+0x10/0x10 [ 327.284173][T11398] ? __pfx_____sys_sendmsg+0x10/0x10 [ 327.284199][T11398] ? __pfx_futex_wake_mark+0x10/0x10 [ 327.284223][T11398] ___sys_sendmsg+0x190/0x1e0 [ 327.284247][T11398] ? __pfx____sys_sendmsg+0x10/0x10 [ 327.284292][T11398] __sys_sendmsg+0x170/0x220 [ 327.284310][T11398] ? __pfx___sys_sendmsg+0x10/0x10 [ 327.284327][T11398] ? __x64_sys_futex+0x34f/0x4d0 [ 327.284356][T11398] do_syscall_64+0x106/0xf80 [ 327.284373][T11398] ? clear_bhb_loop+0x40/0x90 [ 327.284391][T11398] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 327.284407][T11398] RIP: 0033:0x7f8b4939c799 [ 327.284420][T11398] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 327.284435][T11398] RSP: 002b:00007f8b475ee028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 327.284449][T11398] RAX: ffffffffffffffda RBX: 00007f8b49615fa0 RCX: 00007f8b4939c799 [ 327.284459][T11398] RDX: 0000000000000004 RSI: 0000200000000100 RDI: 0000000000000005 [ 327.284468][T11398] RBP: 00007f8b49432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 327.284477][T11398] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 327.284486][T11398] R13: 00007f8b49616038 R14: 00007f8b49615fa0 R15: 00007ffc934aa338 [ 327.284507][T11398] [ 327.768542][T11401] CPU: 0 UID: 0 PID: 11401 Comm: syz.3.1942 Tainted: G U L syzkaller #0 PREEMPT(full) [ 327.768572][T11401] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 327.768577][T11401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 327.768586][T11401] Call Trace: [ 327.768592][T11401] [ 327.768599][T11401] dump_stack_lvl+0x100/0x190 [ 327.768625][T11401] should_fail_ex.cold+0x5/0xa [ 327.768644][T11401] should_failslab+0xc2/0x120 [ 327.768660][T11401] __kmalloc_cache_noprof+0x7a/0x6f0 [ 327.768679][T11401] ? drm_atomic_helper_connector_duplicate_state+0x72/0xd0 [ 327.768707][T11401] drm_atomic_helper_connector_duplicate_state+0x72/0xd0 [ 327.768729][T11401] drm_atomic_get_connector_state+0x401/0x8f0 [ 327.768759][T11401] drm_atomic_add_affected_connectors+0x2e0/0x3f0 [ 327.768786][T11401] ? __pfx_drm_atomic_add_affected_connectors+0x10/0x10 [ 327.768819][T11401] ? modeset_lock+0x114/0x6d0 [ 327.768847][T11401] __drm_atomic_helper_set_config+0x5f6/0xee0 [ 327.768876][T11401] ? __pfx___drm_atomic_helper_set_config+0x10/0x10 [ 327.768905][T11401] ? drm_client_rotation+0x451/0x6a0 [ 327.768925][T11401] drm_client_modeset_commit_atomic+0x53d/0x7e0 [ 327.768948][T11401] ? __mutex_lock+0x26a/0x1b90 [ 327.768967][T11401] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 327.768985][T11401] ? drm_master_internal_acquire+0x21/0x80 [ 327.769022][T11401] drm_client_modeset_commit_locked+0x14d/0x580 [ 327.769044][T11401] drm_client_modeset_commit+0x4f/0x80 [ 327.769063][T11401] __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160 [ 327.769085][T11401] drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0 [ 327.769105][T11401] drm_fbdev_client_restore+0x1b/0x30 [ 327.769128][T11401] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 327.769150][T11401] drm_client_dev_restore+0x205/0x2a0 [ 327.769172][T11401] drm_release+0x2c6/0x360 [ 327.769188][T11401] ? __pfx_drm_release+0x10/0x10 [ 327.769204][T11401] __fput+0x3ff/0xb40 [ 327.769226][T11401] task_work_run+0x150/0x240 [ 327.769247][T11401] ? __pfx_task_work_run+0x10/0x10 [ 327.769274][T11401] exit_to_user_mode_loop+0x100/0x4a0 [ 327.769295][T11401] do_syscall_64+0x668/0xf80 [ 327.769312][T11401] ? clear_bhb_loop+0x40/0x90 [ 327.769331][T11401] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 327.769347][T11401] RIP: 0033:0x7ff170b9c799 [ 327.769361][T11401] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 327.769376][T11401] RSP: 002b:00007ff16edee028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 327.769390][T11401] RAX: 0000000000000000 RBX: 00007ff170e15fa0 RCX: 00007ff170b9c799 [ 327.769400][T11401] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 327.769409][T11401] RBP: 00007ff170c32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 327.769418][T11401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 327.769427][T11401] R13: 00007ff170e16038 R14: 00007ff170e15fa0 R15: 00007ffd5af3dab8 [ 327.769449][T11401] [ 328.106087][T11407] FAULT_INJECTION: forcing a failure. [ 328.106087][T11407] name failslab, interval 1, probability 0, space 0, times 0 [ 328.106116][T11407] CPU: 0 UID: 0 PID: 11407 Comm: syz.2.1944 Tainted: G U L syzkaller #0 PREEMPT(full) [ 328.106141][T11407] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 328.106147][T11407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 328.106155][T11407] Call Trace: [ 328.106160][T11407] [ 328.106166][T11407] dump_stack_lvl+0x100/0x190 [ 328.106192][T11407] should_fail_ex.cold+0x5/0xa [ 328.106211][T11407] should_failslab+0xc2/0x120 [ 328.106227][T11407] __kmalloc_cache_noprof+0x7a/0x6f0 [ 328.106246][T11407] ? mqueue_init_fs_context+0x4b/0x690 [ 328.106280][T11407] mqueue_init_fs_context+0x4b/0x690 [ 328.106307][T11407] alloc_fs_context+0x60c/0xf40 [ 328.106327][T11407] mq_init_ns+0x16e/0x820 [ 328.106349][T11407] copy_ipcs+0x3dd/0x7e0 [ 328.106371][T11407] create_new_namespaces+0x20a/0xac0 [ 328.106386][T11407] ? security_capable+0x80/0x260 [ 328.106408][T11407] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 328.106426][T11407] ksys_unshare+0x473/0xad0 [ 328.106445][T11407] ? __pfx_ksys_unshare+0x10/0x10 [ 328.106469][T11407] __x64_sys_unshare+0x31/0x40 [ 328.106486][T11407] do_syscall_64+0x106/0xf80 [ 328.106503][T11407] ? clear_bhb_loop+0x40/0x90 [ 328.106521][T11407] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 328.106536][T11407] RIP: 0033:0x7f8b4939c799 [ 328.106549][T11407] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 328.106564][T11407] RSP: 002b:00007f8b475ee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 328.106578][T11407] RAX: ffffffffffffffda RBX: 00007f8b49615fa0 RCX: 00007f8b4939c799 [ 328.106588][T11407] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c000000 [ 328.106596][T11407] RBP: 00007f8b49432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 328.106605][T11407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 328.106614][T11407] R13: 00007f8b49616038 R14: 00007f8b49615fa0 R15: 00007ffc934aa338 [ 328.106633][T11407] [ 328.951320][T11426] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1953'. [ 328.963408][T11426] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1953'. [ 329.586010][T11447] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1958'. [ 329.815027][T11453] FAULT_INJECTION: forcing a failure. [ 329.815027][T11453] name failslab, interval 1, probability 0, space 0, times 0 [ 329.917940][T11453] CPU: 0 UID: 0 PID: 11453 Comm: syz.1.1960 Tainted: G U L syzkaller #0 PREEMPT(full) [ 329.917969][T11453] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 329.917975][T11453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 329.917984][T11453] Call Trace: [ 329.917990][T11453] [ 329.917997][T11453] dump_stack_lvl+0x100/0x190 [ 329.918024][T11453] should_fail_ex.cold+0x5/0xa [ 329.918044][T11453] should_failslab+0xc2/0x120 [ 329.918059][T11453] __kmalloc_cache_noprof+0x7a/0x6f0 [ 329.918079][T11453] ? drm_atomic_state_alloc+0xb8/0x120 [ 329.918100][T11453] drm_atomic_state_alloc+0xb8/0x120 [ 329.918116][T11453] drm_client_modeset_commit_atomic+0xcc/0x7e0 [ 329.918136][T11453] ? trace_contention_end+0x140/0x180 [ 329.918156][T11453] ? __mutex_lock+0x26a/0x1b90 [ 329.918177][T11453] ? __mutex_lock+0x26a/0x1b90 [ 329.918195][T11453] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 329.918214][T11453] ? drm_master_internal_acquire+0x21/0x80 [ 329.918250][T11453] drm_client_modeset_commit_locked+0x14d/0x580 [ 329.918272][T11453] drm_client_modeset_commit+0x4f/0x80 [ 329.918291][T11453] __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160 [ 329.918313][T11453] drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0 [ 329.918333][T11453] drm_fbdev_client_restore+0x1b/0x30 [ 329.918355][T11453] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 329.918377][T11453] drm_client_dev_restore+0x205/0x2a0 [ 329.918399][T11453] drm_release+0x2c6/0x360 [ 329.918415][T11453] ? __pfx_drm_release+0x10/0x10 [ 329.918431][T11453] __fput+0x3ff/0xb40 [ 329.918461][T11453] task_work_run+0x150/0x240 [ 329.918485][T11453] ? __pfx_task_work_run+0x10/0x10 [ 329.918512][T11453] exit_to_user_mode_loop+0x100/0x4a0 [ 329.918534][T11453] do_syscall_64+0x668/0xf80 [ 329.918551][T11453] ? clear_bhb_loop+0x40/0x90 [ 329.918570][T11453] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 329.918585][T11453] RIP: 0033:0x7fd8f579c799 [ 329.918599][T11453] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 329.918613][T11453] RSP: 002b:00007fd8f65bb028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 329.918628][T11453] RAX: 0000000000000000 RBX: 00007fd8f5a15fa0 RCX: 00007fd8f579c799 [ 329.918638][T11453] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 329.918646][T11453] RBP: 00007fd8f5832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 329.918655][T11453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 329.918663][T11453] R13: 00007fd8f5a16038 R14: 00007fd8f5a15fa0 R15: 00007fffc30bc1c8 [ 329.918685][T11453] [ 330.208648][T11458] FAULT_INJECTION: forcing a failure. [ 330.208648][T11458] name failslab, interval 1, probability 0, space 0, times 0 [ 330.221359][T11458] CPU: 0 UID: 0 PID: 11458 Comm: syz.3.1963 Tainted: G U L syzkaller #0 PREEMPT(full) [ 330.221387][T11458] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 330.221393][T11458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 330.221403][T11458] Call Trace: [ 330.221409][T11458] [ 330.221415][T11458] dump_stack_lvl+0x100/0x190 [ 330.221448][T11458] should_fail_ex.cold+0x5/0xa [ 330.221467][T11458] ? alloc_pipe_info+0x1ec/0x590 [ 330.221481][T11458] should_failslab+0xc2/0x120 [ 330.221497][T11458] __kmalloc_noprof+0xe0/0x850 [ 330.221522][T11458] alloc_pipe_info+0x1ec/0x590 [ 330.221539][T11458] splice_direct_to_actor+0x78f/0xa30 [ 330.221555][T11458] ? __lock_acquire+0x4a5/0x2630 [ 330.221573][T11458] ? __pfx_direct_splice_actor+0x10/0x10 [ 330.221597][T11458] ? __pfx_aa_file_perm+0x10/0x10 [ 330.221615][T11458] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 330.221636][T11458] do_splice_direct+0x174/0x240 [ 330.221652][T11458] ? __pfx_do_splice_direct+0x10/0x10 [ 330.221667][T11458] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 330.221692][T11458] ? rw_verify_area+0xce/0x6d0 [ 330.221715][T11458] do_sendfile+0xadc/0xe20 [ 330.221740][T11458] ? __pfx_do_sendfile+0x10/0x10 [ 330.221760][T11458] ? apparmor_capable+0x1d7/0x4d0 [ 330.221783][T11458] ? __x64_sys_futex+0x34f/0x4d0 [ 330.221801][T11458] ? __x64_sys_futex+0x358/0x4d0 [ 330.221821][T11458] __x64_sys_sendfile64+0x1d8/0x220 [ 330.221838][T11458] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 330.221860][T11458] do_syscall_64+0x106/0xf80 [ 330.221877][T11458] ? clear_bhb_loop+0x40/0x90 [ 330.221895][T11458] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 330.221911][T11458] RIP: 0033:0x7ff170b9c799 [ 330.221924][T11458] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 330.221939][T11458] RSP: 002b:00007ff16edee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 330.221953][T11458] RAX: ffffffffffffffda RBX: 00007ff170e15fa0 RCX: 00007ff170b9c799 [ 330.221963][T11458] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000005 [ 330.221972][T11458] RBP: 00007ff170c32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 330.221981][T11458] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 330.221990][T11458] R13: 00007ff170e16038 R14: 00007ff170e15fa0 R15: 00007ffd5af3dab8 [ 330.222010][T11458] [ 330.977041][T11469] FAULT_INJECTION: forcing a failure. [ 330.977041][T11469] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 331.062900][T11469] CPU: 0 UID: 0 PID: 11469 Comm: syz.3.1966 Tainted: G U L syzkaller #0 PREEMPT(full) [ 331.062930][T11469] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 331.062936][T11469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 331.062945][T11469] Call Trace: [ 331.062950][T11469] [ 331.062957][T11469] dump_stack_lvl+0x100/0x190 [ 331.062984][T11469] should_fail_ex.cold+0x5/0xa [ 331.063002][T11469] _copy_to_iter+0x5a4/0x1720 [ 331.063030][T11469] ? __pfx__copy_to_iter+0x10/0x10 [ 331.063054][T11469] ? folio_mark_accessed+0xf3/0x1040 [ 331.063077][T11469] ? __pfx_filemap_get_pages+0x10/0x10 [ 331.063099][T11469] ? __pfx_folio_mark_accessed+0x10/0x10 [ 331.063125][T11469] copy_page_to_iter+0x12a/0x1e0 [ 331.063150][T11469] filemap_read+0x7a9/0x10a0 [ 331.063180][T11469] ? __pfx_filemap_read+0x10/0x10 [ 331.063216][T11469] ? __pfx_down_read+0x10/0x10 [ 331.063237][T11469] ? futex_unqueue+0x133/0x2c0 [ 331.063254][T11469] ? __pfx_aa_file_perm+0x10/0x10 [ 331.063275][T11469] blkdev_read_iter+0x2c4/0x4f0 [ 331.063297][T11469] do_iter_readv_writev+0x60d/0x920 [ 331.063320][T11469] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 331.063344][T11469] ? bpf_lsm_file_permission+0x9/0x10 [ 331.063366][T11469] ? security_file_permission+0x76/0x210 [ 331.063382][T11469] ? rw_verify_area+0xce/0x6d0 [ 331.063404][T11469] vfs_readv+0x4d3/0x8d0 [ 331.063430][T11469] ? __pfx_vfs_readv+0x10/0x10 [ 331.063463][T11469] ? __fget_files+0x21f/0x3d0 [ 331.063482][T11469] ? do_readv+0x13e/0x340 [ 331.063501][T11469] do_readv+0x13e/0x340 [ 331.063522][T11469] ? __pfx_do_readv+0x10/0x10 [ 331.063542][T11469] ? xfd_validate_state+0x129/0x190 [ 331.063566][T11469] __x64_sys_preadv2+0x11f/0x160 [ 331.063583][T11469] do_syscall_64+0x106/0xf80 [ 331.063600][T11469] ? clear_bhb_loop+0x40/0x90 [ 331.063618][T11469] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 331.063633][T11469] RIP: 0033:0x7ff170b9c799 [ 331.063646][T11469] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 331.063661][T11469] RSP: 002b:00007ff16edee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000147 [ 331.063675][T11469] RAX: ffffffffffffffda RBX: 00007ff170e15fa0 RCX: 00007ff170b9c799 [ 331.063685][T11469] RDX: 0000000000000006 RSI: 0000200000000080 RDI: 0000000000000006 [ 331.063695][T11469] RBP: 00007ff170c32bd9 R08: 0000000000000004 R09: 000000000000002e [ 331.063703][T11469] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 331.063713][T11469] R13: 00007ff170e16038 R14: 00007ff170e15fa0 R15: 00007ffd5af3dab8 [ 331.063734][T11469] [ 331.967027][T11487] netlink: 'syz.3.1970': attribute type 11 has an invalid length. [ 332.088066][T11487] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE r҄y*"l-y– [ 332.779881][T11506] netlink: 'syz.2.1977': attribute type 21 has an invalid length. [ 332.823953][T11506] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1977'. [ 333.291574][T11518] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1980'. [ 333.359505][T11518] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1980'. [ 333.423391][T11518] netlink: 210 bytes leftover after parsing attributes in process `syz.0.1980'. [ 333.651456][T11513] zswap: compressor not available [ 334.440079][T11546] vivid-007: ================= START STATUS ================= [ 334.468915][T11546] vivid-007: Generate PTS: true [ 334.484638][T11546] vivid-007: Generate SCR: true [ 334.501215][T11546] tpg source WxH: 320x240 (Y'CbCr) [ 334.517653][T11546] tpg field: 1 [ 334.552815][T11546] tpg crop: (0,0)/320x240 [ 334.589442][T11546] tpg compose: (0,0)/320x240 [ 334.640295][T11546] tpg colorspace: 8 [ 334.655520][T11546] tpg transfer function: 0/0 [ 334.685234][T11546] tpg Y'CbCr encoding: 0/0 [ 334.722994][T11546] tpg quantization: 0/0 [ 334.741442][T11546] tpg RGB range: 0/2 [ 334.761721][T11546] vivid-007: ================== END STATUS ================== [ 335.402544][T11563] FAULT_INJECTION: forcing a failure. [ 335.402544][T11563] name failslab, interval 1, probability 0, space 0, times 0 [ 335.489445][T11563] CPU: 0 UID: 0 PID: 11563 Comm: syz.0.1992 Tainted: G U L syzkaller #0 PREEMPT(full) [ 335.489478][T11563] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 335.489484][T11563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 335.489494][T11563] Call Trace: [ 335.489500][T11563] [ 335.489506][T11563] dump_stack_lvl+0x100/0x190 [ 335.489534][T11563] should_fail_ex.cold+0x5/0xa [ 335.489553][T11563] ? alloc_pipe_info+0x1ec/0x590 [ 335.489568][T11563] should_failslab+0xc2/0x120 [ 335.489583][T11563] __kmalloc_noprof+0xe0/0x850 [ 335.489609][T11563] alloc_pipe_info+0x1ec/0x590 [ 335.489625][T11563] create_pipe_files+0x8c/0x970 [ 335.489643][T11563] do_pipe2+0xbd/0x1e0 [ 335.489658][T11563] ? __pfx_do_pipe2+0x10/0x10 [ 335.489672][T11563] ? xfd_validate_state+0x129/0x190 [ 335.489698][T11563] __x64_sys_pipe2+0x54/0x80 [ 335.489713][T11563] do_syscall_64+0x106/0xf80 [ 335.489730][T11563] ? clear_bhb_loop+0x40/0x90 [ 335.489749][T11563] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 335.489764][T11563] RIP: 0033:0x7f124e99c799 [ 335.489777][T11563] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 335.489791][T11563] RSP: 002b:00007f124f7e3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000125 [ 335.489806][T11563] RAX: ffffffffffffffda RBX: 00007f124ec15fa0 RCX: 00007f124e99c799 [ 335.489816][T11563] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 0000000000000000 [ 335.489825][T11563] RBP: 00007f124ea32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 335.489840][T11563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 335.489848][T11563] R13: 00007f124ec16038 R14: 00007f124ec15fa0 R15: 00007fff5f5f6128 [ 335.489867][T11563] [ 336.003409][T11568] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1994'. [ 336.227883][T11565] zswap: compressor not available [ 336.461107][ T29] audit: type=1800 audit(1772989502.999:8): pid=11577 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1997" name="lu_gp_id" dev="configfs" ino=36312 res=0 errno=0 [ 336.808064][T11583] FAULT_INJECTION: forcing a failure. [ 336.808064][T11583] name failslab, interval 1, probability 0, space 0, times 0 [ 336.881267][T11583] CPU: 0 UID: 0 PID: 11583 Comm: syz.1.2000 Tainted: G U L syzkaller #0 PREEMPT(full) [ 336.881295][T11583] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 336.881301][T11583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 336.881310][T11583] Call Trace: [ 336.881316][T11583] [ 336.881323][T11583] dump_stack_lvl+0x100/0x190 [ 336.881350][T11583] should_fail_ex.cold+0x5/0xa [ 336.881368][T11583] ? lsm_blob_alloc+0x68/0x90 [ 336.881386][T11583] should_failslab+0xc2/0x120 [ 336.881401][T11583] __kmalloc_noprof+0xe0/0x850 [ 336.881423][T11583] ? trace_kmem_cache_alloc+0xf3/0x120 [ 336.881442][T11583] lsm_blob_alloc+0x68/0x90 [ 336.881460][T11583] security_prepare_creds+0x2d/0x290 [ 336.881478][T11583] prepare_creds+0x5d6/0x950 [ 336.881501][T11583] __do_sys_capset+0x270/0x460 [ 336.881515][T11583] ? __pfx___do_sys_capset+0x10/0x10 [ 336.881531][T11583] ? __x64_sys_futex+0x358/0x4d0 [ 336.881550][T11583] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 336.881565][T11583] ? xfd_validate_state+0x129/0x190 [ 336.881593][T11583] do_syscall_64+0x106/0xf80 [ 336.881610][T11583] ? clear_bhb_loop+0x40/0x90 [ 336.881628][T11583] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 336.881643][T11583] RIP: 0033:0x7fd8f579c799 [ 336.881657][T11583] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 336.881672][T11583] RSP: 002b:00007fd8f65bb028 EFLAGS: 00000246 ORIG_RAX: 000000000000007e [ 336.881686][T11583] RAX: ffffffffffffffda RBX: 00007fd8f5a15fa0 RCX: 00007fd8f579c799 [ 336.881696][T11583] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000200 [ 336.881705][T11583] RBP: 00007fd8f5832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 336.881714][T11583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 336.881730][T11583] R13: 00007fd8f5a16038 R14: 00007fd8f5a15fa0 R15: 00007fffc30bc1c8 [ 336.881750][T11583] [ 337.256015][T11595] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2005'. [ 337.266439][T11595] netlink: 13 bytes leftover after parsing attributes in process `syz.3.2005'. [ 337.560968][T11603] FAULT_INJECTION: forcing a failure. [ 337.560968][T11603] name failslab, interval 1, probability 0, space 0, times 0 [ 337.640807][T11603] CPU: 0 UID: 0 PID: 11603 Comm: syz.2.2008 Tainted: G U L syzkaller #0 PREEMPT(full) [ 337.640836][T11603] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 337.640842][T11603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 337.640852][T11603] Call Trace: [ 337.640858][T11603] [ 337.640864][T11603] dump_stack_lvl+0x100/0x190 [ 337.640892][T11603] should_fail_ex.cold+0x5/0xa [ 337.640911][T11603] ? alloc_pipe_info+0x1ec/0x590 [ 337.640925][T11603] should_failslab+0xc2/0x120 [ 337.640941][T11603] __kmalloc_noprof+0xe0/0x850 [ 337.640966][T11603] alloc_pipe_info+0x1ec/0x590 [ 337.640983][T11603] create_pipe_files+0x8c/0x970 [ 337.641001][T11603] do_pipe2+0xbd/0x1e0 [ 337.641016][T11603] ? __pfx_do_pipe2+0x10/0x10 [ 337.641035][T11603] ? xfd_validate_state+0x129/0x190 [ 337.641061][T11603] __x64_sys_pipe2+0x54/0x80 [ 337.641076][T11603] do_syscall_64+0x106/0xf80 [ 337.641094][T11603] ? clear_bhb_loop+0x40/0x90 [ 337.641112][T11603] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 337.641127][T11603] RIP: 0033:0x7f8b4939c799 [ 337.641141][T11603] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 337.641156][T11603] RSP: 002b:00007f8b475ee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000125 [ 337.641171][T11603] RAX: ffffffffffffffda RBX: 00007f8b49615fa0 RCX: 00007f8b4939c799 [ 337.641181][T11603] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 0000000000000000 [ 337.641190][T11603] RBP: 00007f8b49432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 337.641198][T11603] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 337.641207][T11603] R13: 00007f8b49616038 R14: 00007f8b49615fa0 R15: 00007ffc934aa338 [ 337.641226][T11603] [ 338.509610][T11619] synth uevent: /devices/virtual/net/lowpan0: unknown uevent action string [ 338.540277][T11619] net lowpan0: uevent: failed to send synthetic uevent: -22 [ 338.840124][ T85] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 340.462011][T11659] netlink: 146 bytes leftover after parsing attributes in process `syz.3.2026'. [ 343.070192][T11689] FAULT_INJECTION: forcing a failure. [ 343.070192][T11689] name failslab, interval 1, probability 0, space 0, times 0 [ 343.104533][T11689] CPU: 0 UID: 0 PID: 11689 Comm: syz.1.2035 Tainted: G U L syzkaller #0 PREEMPT(full) [ 343.104562][T11689] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 343.104568][T11689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 343.104576][T11689] Call Trace: [ 343.104582][T11689] [ 343.104588][T11689] dump_stack_lvl+0x100/0x190 [ 343.104614][T11689] should_fail_ex.cold+0x5/0xa [ 343.104632][T11689] should_failslab+0xc2/0x120 [ 343.104648][T11689] __kmalloc_cache_noprof+0x7a/0x6f0 [ 343.104669][T11689] ? alloc_pipe_info+0x10e/0x590 [ 343.104684][T11689] ? security_inode_alloc+0xcf/0x2c0 [ 343.104708][T11689] alloc_pipe_info+0x10e/0x590 [ 343.104725][T11689] create_pipe_files+0x8c/0x970 [ 343.104742][T11689] do_pipe2+0xbd/0x1e0 [ 343.104757][T11689] ? __pfx_do_pipe2+0x10/0x10 [ 343.104780][T11689] __x64_sys_pipe+0x33/0x50 [ 343.104795][T11689] do_syscall_64+0x106/0xf80 [ 343.104812][T11689] ? clear_bhb_loop+0x40/0x90 [ 343.104830][T11689] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 343.104844][T11689] RIP: 0033:0x7fd8f579c799 [ 343.104858][T11689] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 343.104876][T11689] RSP: 002b:00007fd8f65bb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 343.104891][T11689] RAX: ffffffffffffffda RBX: 00007fd8f5a15fa0 RCX: 00007fd8f579c799 [ 343.104901][T11689] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 343.104910][T11689] RBP: 00007fd8f5832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 343.104920][T11689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 343.104928][T11689] R13: 00007fd8f5a16038 R14: 00007fd8f5a15fa0 R15: 00007fffc30bc1c8 [ 343.104948][T11689] [ 343.311437][T11693] netlink: 146 bytes leftover after parsing attributes in process `syz.0.2037'. [ 343.777096][T11714] FAULT_INJECTION: forcing a failure. [ 343.777096][T11714] name failslab, interval 1, probability 0, space 0, times 0 [ 343.791701][ T5823] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 343.877315][T11714] CPU: 0 UID: 0 PID: 11714 Comm: syz.0.2043 Tainted: G U L syzkaller #0 PREEMPT(full) [ 343.877345][T11714] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 343.877351][T11714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 343.877360][T11714] Call Trace: [ 343.877365][T11714] [ 343.877371][T11714] dump_stack_lvl+0x100/0x190 [ 343.877398][T11714] should_fail_ex.cold+0x5/0xa [ 343.877417][T11714] should_failslab+0xc2/0x120 [ 343.877433][T11714] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 343.877454][T11714] ? alloc_empty_file+0x55/0x1c0 [ 343.877475][T11714] alloc_empty_file+0x55/0x1c0 [ 343.877493][T11714] dentry_open+0x46/0xd0 [ 343.877511][T11714] ima_calc_file_hash+0x2ad/0x480 [ 343.877535][T11714] ima_collect_measurement+0x887/0xa40 [ 343.877556][T11714] ? ima_file_check+0xcc/0x120 [ 343.877580][T11714] ? __pfx_ima_collect_measurement+0x10/0x10 [ 343.877603][T11714] ? lock_acquire+0x1cf/0x380 [ 343.877634][T11714] ? process_measurement+0x5ab/0x2350 [ 343.877654][T11714] ? is_bad_inode+0xd/0x40 [ 343.877674][T11714] ? xattr_resolve_name+0x27d/0x3f0 [ 343.877700][T11714] ? vfs_getxattr_alloc+0xec/0x350 [ 343.877719][T11714] ? ima_get_hash_algo+0x22d/0x400 [ 343.877737][T11714] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 343.877759][T11714] ? process_measurement+0xdfe/0x2350 [ 343.877777][T11714] process_measurement+0xdfe/0x2350 [ 343.877804][T11714] ? __pfx_process_measurement+0x10/0x10 [ 343.877848][T11714] ? mutex_init_lockep+0x110/0x150 [ 343.877868][T11714] ? seq_open+0x116/0x170 [ 343.877886][T11714] ? inode_to_bdi+0x9e/0x160 [ 343.877902][T11714] ima_file_check+0xcc/0x120 [ 343.877923][T11714] ? __pfx_ima_file_check+0x10/0x10 [ 343.877947][T11714] security_file_post_open+0xc4/0x210 [ 343.877971][T11714] path_openat+0x1418/0x31a0 [ 343.877993][T11714] ? __pfx_path_openat+0x10/0x10 [ 343.878015][T11714] do_file_open+0x20e/0x430 [ 343.878039][T11714] ? __pfx_do_file_open+0x10/0x10 [ 343.878069][T11714] ? alloc_fd+0x476/0x790 [ 343.878086][T11714] ? do_getname+0x191/0x390 [ 343.878107][T11714] do_sys_openat2+0x10d/0x1e0 [ 343.878126][T11714] ? __pfx_do_sys_openat2+0x10/0x10 [ 343.878153][T11714] __x64_sys_openat+0x12d/0x210 [ 343.878173][T11714] ? __pfx___x64_sys_openat+0x10/0x10 [ 343.878199][T11714] do_syscall_64+0x106/0xf80 [ 343.878217][T11714] ? clear_bhb_loop+0x40/0x90 [ 343.878235][T11714] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 343.878250][T11714] RIP: 0033:0x7f124e99c799 [ 343.878264][T11714] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 343.878278][T11714] RSP: 002b:00007f124f7e3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 343.878293][T11714] RAX: ffffffffffffffda RBX: 00007f124ec15fa0 RCX: 00007f124e99c799 [ 343.878303][T11714] RDX: 0000000000020803 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 343.878314][T11714] RBP: 00007f124ea32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 343.878323][T11714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 343.878332][T11714] R13: 00007f124ec16038 R14: 00007f124ec15fa0 R15: 00007fff5f5f6128 [ 343.878351][T11714] [ 343.880559][ T29] audit: type=1800 audit(1772989510.416:9): pid=11714 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2043" name="set_event_notrace_pid" dev="tracefs" ino=13 res=0 errno=0 [ 346.307535][T11774] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2063'. [ 346.679944][T11777] FAULT_INJECTION: forcing a failure. [ 346.679944][T11777] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 346.743595][T11777] CPU: 0 UID: 0 PID: 11777 Comm: syz.0.2065 Tainted: G U L syzkaller #0 PREEMPT(full) [ 346.743626][T11777] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 346.743632][T11777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 346.743641][T11777] Call Trace: [ 346.743647][T11777] [ 346.743653][T11777] dump_stack_lvl+0x100/0x190 [ 346.743681][T11777] should_fail_ex.cold+0x5/0xa [ 346.743697][T11777] ? prepare_alloc_pages+0x16d/0x5f0 [ 346.743723][T11777] should_fail_alloc_page+0xeb/0x140 [ 346.743740][T11777] prepare_alloc_pages+0x1f0/0x5f0 [ 346.743761][T11777] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 346.743784][T11777] ? rcu_is_watching+0x12/0xc0 [ 346.743806][T11777] ? trace_mm_page_alloc+0x17a/0x1d0 [ 346.743823][T11777] ? __alloc_frozen_pages_noprof+0x2b1/0x2ba0 [ 346.743844][T11777] ? vhost_dev_set_owner+0x190/0xa30 [ 346.743863][T11777] ? stack_trace_save+0x8e/0xc0 [ 346.743877][T11777] ? __pfx_stack_trace_save+0x10/0x10 [ 346.743891][T11777] ? stack_depot_save_flags+0x27/0x9d0 [ 346.743908][T11777] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 346.743932][T11777] ? vhost_dev_set_owner+0x190/0xa30 [ 346.743948][T11777] ? kasan_save_stack+0x3f/0x50 [ 346.743969][T11777] ? kasan_save_stack+0x30/0x50 [ 346.743989][T11777] ? kasan_save_track+0x14/0x30 [ 346.744010][T11777] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 346.744031][T11777] ? vhost_dev_ioctl+0x521/0xe20 [ 346.744049][T11777] ? vhost_vsock_dev_ioctl+0x320/0xb60 [ 346.744076][T11777] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 346.744100][T11777] ? policy_nodemask+0xed/0x4f0 [ 346.744117][T11777] alloc_pages_mpol+0x1fb/0x550 [ 346.744134][T11777] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 346.744149][T11777] ? find_held_lock+0x2b/0x80 [ 346.744162][T11777] ? rcu_read_unlock+0x17/0x60 [ 346.744180][T11777] ? vhost_dev_set_owner+0x330/0xa30 [ 346.744197][T11777] ___kmalloc_large_node+0x104/0x150 [ 346.744216][T11777] __kmalloc_large_node_noprof+0x1c/0x70 [ 346.744235][T11777] __kmalloc_noprof+0x5be/0x850 [ 346.744259][T11777] vhost_dev_set_owner+0x330/0xa30 [ 346.744284][T11777] vhost_dev_ioctl+0x521/0xe20 [ 346.744304][T11777] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 346.744329][T11777] ? __pfx_vhost_dev_ioctl+0x10/0x10 [ 346.744356][T11777] vhost_vsock_dev_ioctl+0x320/0xb60 [ 346.744375][T11777] ? __fget_files+0x215/0x3d0 [ 346.744388][T11777] ? hook_file_ioctl_common+0x146/0x410 [ 346.744412][T11777] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 346.744434][T11777] ? __fget_files+0x21f/0x3d0 [ 346.744450][T11777] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 346.744472][T11777] __x64_sys_ioctl+0x18e/0x210 [ 346.744494][T11777] do_syscall_64+0x106/0xf80 [ 346.744512][T11777] ? clear_bhb_loop+0x40/0x90 [ 346.744530][T11777] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 346.744545][T11777] RIP: 0033:0x7f124e99c799 [ 346.744559][T11777] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 346.744573][T11777] RSP: 002b:00007f124f7e3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 346.744588][T11777] RAX: ffffffffffffffda RBX: 00007f124ec15fa0 RCX: 00007f124e99c799 [ 346.744598][T11777] RDX: 0000000000000000 RSI: 000000000000af01 RDI: 0000000000000003 [ 346.744607][T11777] RBP: 00007f124ea32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 346.744616][T11777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 346.744625][T11777] R13: 00007f124ec16038 R14: 00007f124ec15fa0 R15: 00007fff5f5f6128 [ 346.744646][T11777] [ 347.949627][T11803] netlink: 'syz.2.2073': attribute type 19 has an invalid length. [ 347.981932][T11803] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2073'. [ 349.767651][ T29] audit: type=1800 audit(1772989516.243:10): pid=11826 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2081" name="dbroot" dev="configfs" ino=37466 res=0 errno=0 [ 349.804164][T11824] FAULT_INJECTION: forcing a failure. [ 349.804164][T11824] name failslab, interval 1, probability 0, space 0, times 0 [ 349.858946][T11824] CPU: 0 UID: 0 PID: 11824 Comm: syz.2.2082 Tainted: G U L syzkaller #0 PREEMPT(full) [ 349.858976][T11824] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 349.858983][T11824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 349.858991][T11824] Call Trace: [ 349.858997][T11824] [ 349.859003][T11824] dump_stack_lvl+0x100/0x190 [ 349.859030][T11824] should_fail_ex.cold+0x5/0xa [ 349.859048][T11824] should_failslab+0xc2/0x120 [ 349.859064][T11824] __kmalloc_cache_noprof+0x7a/0x6f0 [ 349.859084][T11824] ? wakeup_source_device_create+0x46/0x2e0 [ 349.859113][T11824] wakeup_source_device_create+0x46/0x2e0 [ 349.859137][T11824] wakeup_source_sysfs_add+0x1c/0x90 [ 349.859160][T11824] wakeup_source_register+0x154/0x3e0 [ 349.859182][T11824] ep_create_wakeup_source+0x1df/0x2e0 [ 349.859206][T11824] ? __pfx_ep_create_wakeup_source+0x10/0x10 [ 349.859232][T11824] ? do_epoll_ctl+0x1012/0x36a0 [ 349.859246][T11824] ? do_epoll_ctl+0x1012/0x36a0 [ 349.859265][T11824] do_epoll_ctl+0x1eee/0x36a0 [ 349.859288][T11824] ? __pfx_do_epoll_ctl+0x10/0x10 [ 349.859301][T11824] ? find_held_lock+0x2b/0x80 [ 349.859315][T11824] ? __might_fault+0xc5/0x140 [ 349.859334][T11824] ? __might_fault+0xc5/0x140 [ 349.859371][T11824] ? __x64_sys_epoll_ctl+0x15c/0x1e0 [ 349.859386][T11824] __x64_sys_epoll_ctl+0x15c/0x1e0 [ 349.859403][T11824] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 349.859424][T11824] do_syscall_64+0x106/0xf80 [ 349.859442][T11824] ? clear_bhb_loop+0x40/0x90 [ 349.859461][T11824] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 349.859475][T11824] RIP: 0033:0x7f8b4939c799 [ 349.859488][T11824] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 349.859503][T11824] RSP: 002b:00007f8b475ee028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 349.859518][T11824] RAX: ffffffffffffffda RBX: 00007f8b49615fa0 RCX: 00007f8b4939c799 [ 349.859529][T11824] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004 [ 349.859537][T11824] RBP: 00007f8b49432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 349.859546][T11824] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 349.859554][T11824] R13: 00007f8b49616038 R14: 00007f8b49615fa0 R15: 00007ffc934aa338 [ 349.859574][T11824] [ 351.545733][T11836] Process accounting resumed [ 352.080170][T11860] FAULT_INJECTION: forcing a failure. [ 352.080170][T11860] name failslab, interval 1, probability 0, space 0, times 0 [ 352.135927][T11860] CPU: 0 UID: 0 PID: 11860 Comm: syz.0.2093 Tainted: G U L syzkaller #0 PREEMPT(full) [ 352.135956][T11860] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 352.135962][T11860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 352.135979][T11860] Call Trace: [ 352.136012][T11860] [ 352.136019][T11860] dump_stack_lvl+0x100/0x190 [ 352.136096][T11860] should_fail_ex.cold+0x5/0xa [ 352.136132][T11860] should_failslab+0xc2/0x120 [ 352.136165][T11860] __kmalloc_cache_noprof+0x7a/0x6f0 [ 352.136194][T11860] ? kobject_create_and_add+0x46/0xc0 [ 352.136296][T11860] kobject_create_and_add+0x46/0xc0 [ 352.136320][T11860] __add_disk+0x66f/0xe40 [ 352.136388][T11860] ? find_held_lock+0x2b/0x80 [ 352.136418][T11860] add_disk_fwnode+0x3d4/0x5c0 [ 352.136442][T11860] zram_add+0x4d2/0x610 [ 352.136501][T11860] ? __pfx_zram_add+0x10/0x10 [ 352.136531][T11860] ? find_held_lock+0x2b/0x80 [ 352.136544][T11860] ? sysfs_file_kobj+0xe4/0x290 [ 352.136582][T11860] ? __pfx_hot_add_show+0x10/0x10 [ 352.136599][T11860] hot_add_show+0x21/0x80 [ 352.136615][T11860] class_attr_show+0x72/0xa0 [ 352.136686][T11860] ? __pfx_class_attr_show+0x10/0x10 [ 352.136708][T11860] sysfs_kf_seq_show+0x217/0x3a0 [ 352.136731][T11860] seq_read_iter+0x32f/0x1270 [ 352.136768][T11860] kernfs_fop_read_iter+0x46c/0x610 [ 352.136785][T11860] ? rw_verify_area+0xce/0x6d0 [ 352.136809][T11860] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 352.136827][T11860] vfs_read+0x825/0xb30 [ 352.136851][T11860] ? __pfx_vfs_read+0x10/0x10 [ 352.136889][T11860] ksys_read+0x12a/0x250 [ 352.136917][T11860] ? __pfx_ksys_read+0x10/0x10 [ 352.136946][T11860] do_syscall_64+0x106/0xf80 [ 352.136991][T11860] ? clear_bhb_loop+0x40/0x90 [ 352.137018][T11860] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 352.137034][T11860] RIP: 0033:0x7f124e99c799 [ 352.137048][T11860] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 352.137063][T11860] RSP: 002b:00007f124f7e3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 352.137112][T11860] RAX: ffffffffffffffda RBX: 00007f124ec15fa0 RCX: 00007f124e99c799 [ 352.137123][T11860] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000005 [ 352.137132][T11860] RBP: 00007f124ea32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 352.137142][T11860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 352.137151][T11860] R13: 00007f124ec16038 R14: 00007f124ec15fa0 R15: 00007fff5f5f6128 [ 352.137172][T11860] [ 352.691420][T11858] FAULT_INJECTION: forcing a failure. [ 352.691420][T11858] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 352.719272][T11858] CPU: 0 UID: 0 PID: 11858 Comm: syz.2.2092 Tainted: G U L syzkaller #0 PREEMPT(full) [ 352.719303][T11858] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 352.719310][T11858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 352.719319][T11858] Call Trace: [ 352.719325][T11858] [ 352.719331][T11858] dump_stack_lvl+0x100/0x190 [ 352.719360][T11858] should_fail_ex.cold+0x5/0xa [ 352.719377][T11858] ? prepare_alloc_pages+0x16d/0x5f0 [ 352.719396][T11858] should_fail_alloc_page+0xeb/0x140 [ 352.719413][T11858] prepare_alloc_pages+0x1f0/0x5f0 [ 352.719433][T11858] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 352.719456][T11858] ? rcu_is_watching+0x12/0xc0 [ 352.719506][T11858] ? trace_mm_page_alloc+0x17a/0x1d0 [ 352.719524][T11858] ? __alloc_frozen_pages_noprof+0x2b1/0x2ba0 [ 352.719546][T11858] ? vhost_dev_set_owner+0x190/0xa30 [ 352.719633][T11858] ? stack_trace_save+0x8e/0xc0 [ 352.719655][T11858] ? __pfx_stack_trace_save+0x10/0x10 [ 352.719670][T11858] ? stack_depot_save_flags+0x27/0x9d0 [ 352.719723][T11858] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 352.719748][T11858] ? vhost_dev_set_owner+0x190/0xa30 [ 352.719766][T11858] ? kasan_save_stack+0x3f/0x50 [ 352.719788][T11858] ? kasan_save_stack+0x30/0x50 [ 352.719809][T11858] ? kasan_save_track+0x14/0x30 [ 352.719830][T11858] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 352.719851][T11858] ? vhost_dev_ioctl+0x521/0xe20 [ 352.719870][T11858] ? vhost_vsock_dev_ioctl+0x320/0xb60 [ 352.719919][T11858] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 352.719952][T11858] ? policy_nodemask+0xed/0x4f0 [ 352.719969][T11858] alloc_pages_mpol+0x1fb/0x550 [ 352.719985][T11858] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 352.720001][T11858] ? find_held_lock+0x2b/0x80 [ 352.720015][T11858] ? rcu_read_unlock+0x17/0x60 [ 352.720033][T11858] ? vhost_dev_set_owner+0x330/0xa30 [ 352.720050][T11858] ___kmalloc_large_node+0x104/0x150 [ 352.720069][T11858] __kmalloc_large_node_noprof+0x1c/0x70 [ 352.720095][T11858] __kmalloc_noprof+0x5be/0x850 [ 352.720122][T11858] vhost_dev_set_owner+0x330/0xa30 [ 352.720147][T11858] vhost_dev_ioctl+0x521/0xe20 [ 352.720167][T11858] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 352.720192][T11858] ? __pfx_vhost_dev_ioctl+0x10/0x10 [ 352.720219][T11858] vhost_vsock_dev_ioctl+0x320/0xb60 [ 352.720239][T11858] ? __fget_files+0x215/0x3d0 [ 352.720251][T11858] ? hook_file_ioctl_common+0x146/0x410 [ 352.720322][T11858] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 352.720345][T11858] ? __fget_files+0x21f/0x3d0 [ 352.720362][T11858] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 352.720391][T11858] __x64_sys_ioctl+0x18e/0x210 [ 352.720415][T11858] do_syscall_64+0x106/0xf80 [ 352.720432][T11858] ? clear_bhb_loop+0x40/0x90 [ 352.720452][T11858] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 352.720467][T11858] RIP: 0033:0x7f8b4939c799 [ 352.720482][T11858] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 352.720497][T11858] RSP: 002b:00007f8b475ee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 352.720512][T11858] RAX: ffffffffffffffda RBX: 00007f8b49615fa0 RCX: 00007f8b4939c799 [ 352.720522][T11858] RDX: 0000000000000000 RSI: 000000000000af01 RDI: 0000000000000003 [ 352.720535][T11858] RBP: 00007f8b49432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 352.720544][T11858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 352.720552][T11858] R13: 00007f8b49616038 R14: 00007f8b49615fa0 R15: 00007ffc934aa338 [ 352.720572][T11858] [ 355.042162][T11822] ------------[ cut here ]------------ [ 355.047674][T11822] ODEBUG: free active (active state 0) object: ffff88807e1cd460 object type: timer_list hint: hci_devcd_timeout+0x0/0x2e0 [ 355.060581][T11822] WARNING: lib/debugobjects.c:629 at debug_print_object+0x18e/0x2a0, CPU#0: syz.1.2080/11822 [ 355.070952][T11822] Modules linked in: [ 355.074846][T11822] CPU: 0 UID: 0 PID: 11822 Comm: syz.1.2080 Tainted: G U L syzkaller #0 PREEMPT(full) [ 355.085842][T11822] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 355.091037][T11822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 355.101151][T11822] RIP: 0010:debug_print_object+0x19b/0x2a0 [ 355.106970][T11822] Code: b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 4f 48 8d 3d a2 6c e8 0b 41 56 48 8b 14 dd e0 0a 1b 8c 4c 89 e6 <67> 48 0f b9 3a 58 83 05 ec 0d de 0b 01 48 83 c4 18 5b 5d 41 5c 41 [ 355.128250][T11822] RSP: 0018:ffffc900035d7748 EFLAGS: 00010246 [ 355.135059][T11822] RAX: dffffc0000000000 RBX: 0000000000000003 RCX: 0000000000000000 [ 355.143137][T11822] RDX: ffffffff8c1b0a20 RSI: ffffffff8c1b0640 RDI: ffffffff90e43f90 [ 355.151303][T11822] RBP: 0000000000000001 R08: ffff88807e1cd460 R09: ffffffff8bb2b860 [ 355.159605][T11822] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8c1b0640 [ 355.167638][T11822] R13: ffffffff8bb2b8a0 R14: ffffffff8a95d880 R15: ffffc900035d7848 [ 355.175785][T11822] FS: 0000000000000000(0000) GS:ffff88812434d000(0000) knlGS:0000000000000000 [ 355.184800][T11822] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 355.191401][T11822] CR2: 0000001b30c17ff8 CR3: 000000007dd78000 CR4: 00000000003526f0 [ 355.199377][T11822] Call Trace: [ 355.202676][T11822] [ 355.205591][T11822] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 355.211063][T11822] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 355.216928][T11822] debug_check_no_obj_freed+0x4da/0x630 [ 355.222614][T11822] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 355.229635][T11822] ? __page_table_check_zero+0x333/0x410 [ 355.236042][T11822] ? __page_table_check_zero+0x338/0x410 [ 355.241706][T11822] __free_frozen_pages+0x392/0x10d0 [ 355.246956][T11822] hci_release_dev+0x4ef/0x630 [ 355.251946][T11822] ? __pfx_hci_release_dev+0x10/0x10 [ 355.257227][T11822] ? device_release+0x69/0x240 [ 355.262095][T11822] ? rcu_is_watching+0x12/0xc0 [ 355.266861][T11822] ? device_release+0x69/0x240 [ 355.271647][T11822] ? kfree+0x2ec/0x6b0 [ 355.275829][T11822] bt_host_release+0x6a/0xb0 [ 355.280527][T11822] ? __pfx_bt_host_release+0x10/0x10 [ 355.285801][T11822] device_release+0xa4/0x240 [ 355.290424][T11822] kobject_put+0x1f7/0x640 [ 355.294847][T11822] put_device+0x1f/0x30 [ 355.299003][T11822] vhci_release+0x185/0x230 [ 355.303604][T11822] ? __pfx_vhci_release+0x10/0x10 [ 355.308638][T11822] __fput+0x3ff/0xb40 [ 355.312985][T11822] task_work_run+0x150/0x240 [ 355.317585][T11822] ? __pfx_task_work_run+0x10/0x10 [ 355.322727][T11822] do_exit+0x8b8/0x2b60 [ 355.326919][T11822] ? __pfx_do_exit+0x10/0x10 [ 355.332429][T11822] ? __pfx_proc_coredump_connector+0x10/0x10 [ 355.338465][T11822] do_group_exit+0xd5/0x2a0 [ 355.343659][T11822] get_signal+0x1ec7/0x21e0 [ 355.348168][T11822] ? __pfx_get_signal+0x10/0x10 [ 355.353046][T11822] ? bad_area_access_error+0xab/0x1d0 [ 355.358421][T11822] ? fixup_vdso_exception+0x2d1/0x370 [ 355.363842][T11822] arch_do_signal_or_restart+0x91/0x770 [ 355.369411][T11822] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 355.375622][T11822] ? do_user_addr_fault+0x8d6/0x12f0 [ 355.380945][T11822] irqentry_exit+0x1f8/0x670 [ 355.385593][T11822] asm_exc_page_fault+0x26/0x30 [ 355.390932][T11822] RIP: 0033:0x0 [ 355.394564][T11822] Code: Unable to access opcode bytes at 0xffffffffffffffd6. [ 355.401960][T11822] RSP: 002b:0000000000000010 EFLAGS: 00010217 [ 355.408009][T11822] RAX: 0000000000000000 RBX: 00007fd8f5a15fa0 RCX: 00007fd8f579c799 [ 355.416009][T11822] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000020003b4a [ 355.424068][T11822] RBP: 00007fd8f5832bd9 R08: 0000000000000007 R09: 0000000000000000 [ 355.432058][T11822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 355.441068][T11822] R13: 00007fd8f5a16038 R14: 00007fd8f5a15fa0 R15: 00007fffc30bc1c8 [ 355.449899][T11822] [ 355.452991][T11822] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 355.460263][T11822] CPU: 0 UID: 0 PID: 11822 Comm: syz.1.2080 Tainted: G U L syzkaller #0 PREEMPT(full) [ 355.471189][T11822] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 355.476367][T11822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 355.486407][T11822] Call Trace: [ 355.489671][T11822] [ 355.492674][T11822] dump_stack_lvl+0x100/0x190 [ 355.497346][T11822] vpanic+0x552/0x970 [ 355.501314][T11822] ? __pfx_vpanic+0x10/0x10 [ 355.505804][T11822] panic+0xd1/0xe0 [ 355.509507][T11822] ? __pfx_panic+0x10/0x10 [ 355.513913][T11822] ? check_panic_on_warn+0x1f/0x90 [ 355.519033][T11822] check_panic_on_warn.cold+0x19/0x34 [ 355.524409][T11822] ? debug_print_object+0x18e/0x2a0 [ 355.529614][T11822] __warn.cold+0x191/0x348 [ 355.534018][T11822] __report_bug+0x296/0x3d0 [ 355.538578][T11822] ? debug_print_object+0x18e/0x2a0 [ 355.543765][T11822] ? __pfx___report_bug+0x10/0x10 [ 355.548794][T11822] ? __lock_acquire+0x4a5/0x2630 [ 355.553724][T11822] report_bug_entry+0xe1/0x290 [ 355.558472][T11822] ? debug_print_object+0x19b/0x2a0 [ 355.563656][T11822] handle_bug+0x1cd/0x2a0 [ 355.567991][T11822] exc_invalid_op+0x17/0x50 [ 355.572493][T11822] asm_exc_invalid_op+0x1a/0x20 [ 355.577329][T11822] RIP: 0010:debug_print_object+0x19b/0x2a0 [ 355.583124][T11822] Code: b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 4f 48 8d 3d a2 6c e8 0b 41 56 48 8b 14 dd e0 0a 1b 8c 4c 89 e6 <67> 48 0f b9 3a 58 83 05 ec 0d de 0b 01 48 83 c4 18 5b 5d 41 5c 41 [ 355.602717][T11822] RSP: 0018:ffffc900035d7748 EFLAGS: 00010246 [ 355.608769][T11822] RAX: dffffc0000000000 RBX: 0000000000000003 RCX: 0000000000000000 [ 355.616722][T11822] RDX: ffffffff8c1b0a20 RSI: ffffffff8c1b0640 RDI: ffffffff90e43f90 [ 355.624674][T11822] RBP: 0000000000000001 R08: ffff88807e1cd460 R09: ffffffff8bb2b860 [ 355.632625][T11822] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8c1b0640 [ 355.640573][T11822] R13: ffffffff8bb2b8a0 R14: ffffffff8a95d880 R15: ffffc900035d7848 [ 355.648525][T11822] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 355.653979][T11822] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 355.659419][T11822] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 355.665213][T11822] debug_check_no_obj_freed+0x4da/0x630 [ 355.670859][T11822] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 355.676930][T11822] ? __page_table_check_zero+0x333/0x410 [ 355.682899][T11822] ? __page_table_check_zero+0x338/0x410 [ 355.688519][T11822] __free_frozen_pages+0x392/0x10d0 [ 355.693711][T11822] hci_release_dev+0x4ef/0x630 [ 355.698470][T11822] ? __pfx_hci_release_dev+0x10/0x10 [ 355.703742][T11822] ? device_release+0x69/0x240 [ 355.708489][T11822] ? rcu_is_watching+0x12/0xc0 [ 355.713242][T11822] ? device_release+0x69/0x240 [ 355.717990][T11822] ? kfree+0x2ec/0x6b0 [ 355.722049][T11822] bt_host_release+0x6a/0xb0 [ 355.726625][T11822] ? __pfx_bt_host_release+0x10/0x10 [ 355.731894][T11822] device_release+0xa4/0x240 [ 355.736469][T11822] kobject_put+0x1f7/0x640 [ 355.740879][T11822] put_device+0x1f/0x30 [ 355.745020][T11822] vhci_release+0x185/0x230 [ 355.749511][T11822] ? __pfx_vhci_release+0x10/0x10 [ 355.754538][T11822] __fput+0x3ff/0xb40 [ 355.758524][T11822] task_work_run+0x150/0x240 [ 355.763111][T11822] ? __pfx_task_work_run+0x10/0x10 [ 355.768319][T11822] do_exit+0x8b8/0x2b60 [ 355.772479][T11822] ? __pfx_do_exit+0x10/0x10 [ 355.777062][T11822] ? __pfx_proc_coredump_connector+0x10/0x10 [ 355.783038][T11822] do_group_exit+0xd5/0x2a0 [ 355.787534][T11822] get_signal+0x1ec7/0x21e0 [ 355.792044][T11822] ? __pfx_get_signal+0x10/0x10 [ 355.796890][T11822] ? bad_area_access_error+0xab/0x1d0 [ 355.802264][T11822] ? fixup_vdso_exception+0x2d1/0x370 [ 355.807634][T11822] arch_do_signal_or_restart+0x91/0x770 [ 355.813192][T11822] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 355.819344][T11822] ? do_user_addr_fault+0x8d6/0x12f0 [ 355.824623][T11822] irqentry_exit+0x1f8/0x670 [ 355.829202][T11822] asm_exc_page_fault+0x26/0x30 [ 355.834038][T11822] RIP: 0033:0x0 [ 355.837477][T11822] Code: Unable to access opcode bytes at 0xffffffffffffffd6. [ 355.844820][T11822] RSP: 002b:0000000000000010 EFLAGS: 00010217 [ 355.850865][T11822] RAX: 0000000000000000 RBX: 00007fd8f5a15fa0 RCX: 00007fd8f579c799 [ 355.858816][T11822] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000020003b4a [ 355.866772][T11822] RBP: 00007fd8f5832bd9 R08: 0000000000000007 R09: 0000000000000000 [ 355.874732][T11822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 355.882686][T11822] R13: 00007fd8f5a16038 R14: 00007fd8f5a15fa0 R15: 00007fffc30bc1c8 [ 355.890661][T11822] [ 355.893734][T11822] Kernel Offset: disabled [ 355.898046][T11822] Rebooting in 86400 seconds..