last executing test programs: 12.043095268s ago: executing program 1 (id=2324): ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00'}) r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) r1 = ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000080)=0x77) write$auto(r0, &(0x7f0000000000)='/dev/fb0\x00', 0x4) r2 = socket(0x11, 0x3, 0x9) sendmmsg$auto(r2, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200), 0x49}, 0x5, &(0x7f0000000180), 0x5, 0xe}, 0x5}, 0x2, 0x100) ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000080)) fcntl$auto_F_CREATED_QUERY(r1, 0x404, 0xa6d8) 11.301615672s ago: executing program 1 (id=2326): mkdir$auto(0x0, 0x9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) utimensat$auto(0xffffffffffffffff, 0x0, 0x0, 0x7f) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x7fff, 0x2) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000000140)='\t', 0x1) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/apparmor/parameters/mode\x00', 0x121102, 0x0) read$auto(r1, &(0x7f0000000100)='!U\x10', 0x7fff) 10.846780938s ago: executing program 1 (id=2332): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_ovs_ct_limit(0x0, 0xffffffffffffffff) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0) read$auto(r0, 0x0, 0x80000000) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x9}, 0x5) connect$auto(r1, 0x0, 0x1) symlink$auto(0x0, 0x0) 10.359853017s ago: executing program 1 (id=2337): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) mkdir$auto(0x0, 0x353) 10.060738527s ago: executing program 1 (id=2340): mmap$auto(0x0, 0x4, 0x4200000000df, 0x40eb1, 0x401, 0x300000000000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2, 0x1, 0x84) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) setsockopt$auto(0x3, 0x84, 0x17, 0x0, 0x27) setsockopt$auto(0x3, 0x10000000084, 0x19, 0x0, 0x8) 9.65837002s ago: executing program 1 (id=2343): sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x2) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto_KVM_GET_MSRS(r0, 0x4068aea3, &(0x7f0000000080)={0xc0}) 9.424416466s ago: executing program 32 (id=2343): sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x2) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto_KVM_GET_MSRS(r0, 0x4068aea3, &(0x7f0000000080)={0xc0}) 9.418417906s ago: executing program 0 (id=2346): mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) madvise$auto_MADV_GUARD_INSTALL(0x0, 0x2021000, 0x66) mremap$auto(0x1ff000, 0xff, 0x843, 0x3, 0xfffff000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1ff000) r0 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x481, 0x0) pwrite64$auto(r0, 0x0, 0x400000, 0xc) write$auto(0x1, 0x0, 0x80000000) 8.548212882s ago: executing program 0 (id=2350): socket(0x2, 0x1, 0x0) socket(0x18, 0xa, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop15\x00', 0x6600, 0x0) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0) write$auto(0x3, 0x0, 0xffd6) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f00000000c0)) mmap$auto(0x0, 0x8, 0x1000000016, 0x13, 0x3, 0x400180000000) 8.491611245s ago: executing program 3 (id=2351): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/v4l-subdev0\x00', 0x0, 0x0) r1 = getpid() select$auto(0x1, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x5, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x9, 0x7ffffffd, 0x7, 0x1, 0x9, 0x1, 0x1]}, 0x0) process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x800000001, &(0x7f0000000280)={&(0x7f0000000080), 0x1ffffffff}, 0x6, 0x0) ioctl$auto(0x3, 0xc0585605, r0) 8.211354539s ago: executing program 0 (id=2353): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/usb/usbmon/0u\x00', 0x22202, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) capset$auto(0x0, 0x0) write$auto(0x3, 0x0, 0x7fffffff) madvise$auto(0x0, 0xffffffffffff0001, 0x15) pread64$auto(0xffffffffffffffff, 0x0, 0xf42c, 0x1000000000400) madvise$auto(0x0, 0xffffffffffff0005, 0x19) 7.440986084s ago: executing program 3 (id=2355): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x812, 0x0, 0x9, 0x0, 0x1f, 0xfffffffd}, 0x10001}, 0x5, 0x20000000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) connect$auto(0x3, 0x0, 0x55) 7.415141242s ago: executing program 2 (id=2356): r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x244b00, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto(0x3, 0xae41, r0) ioctl$auto_KVM_CREATE_VM(r1, 0xae80, 0x0) 7.116685818s ago: executing program 2 (id=2357): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) statx$auto(0xffffffffffffffff, 0x0, 0x2, 0x4, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) statmount$auto(&(0x7f0000000040)={0x1f, @raw, 0x80000002, 0x800, 0x8}, 0x0, 0x7ffffffff000, 0x0) 6.562288823s ago: executing program 3 (id=2358): close_range$auto(0x0, 0x5, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x60580, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) clone$auto(0x20003b4a, 0x8, 0x0, 0x0, 0x7) write$auto(r0, 0x0, 0xe) 6.348182404s ago: executing program 3 (id=2359): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="010027bd7000fddbdf250a"], 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010) r0 = socket(0x29, 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x6}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r0, 0x89ff, 0x24) 5.831108882s ago: executing program 0 (id=2360): r0 = socket$nl_generic(0x10, 0x3, 0x10) write$auto_seq_oss_f_ops_seq_oss(0xffffffffffffffff, &(0x7f0000000040)="5f74ab2fc43781e047140a5cbc3ac5229b90633d9cddda9efb1f2c3d5d1e63f3fb5acf079b9336319d009cb514679a42eaca52b81c166d19625d173c26ece6542f2fb29712f4fb9072fc432b4cf3e6f5a7f3c9f91ee88ba5fa11d48fd3658e8f44f8423b4cd02bbec912ed34f9f4b19b03d4c62b24ede44c0c76c34edf7bde061903c2ee4c64110ac668239fa53ba42933ae74c3d173663248ff0945dd2e405e0d378b5a8e4643a7bc3b35a7248431450ca8901467ea6dc5d86de1e90f869f6a04ac10043676f3b2c7f1339b2d7468133fb8447d17846b6b78079ecc31d7d0f74caa4a3db1ac4d312bfdb34bd331f1f771a2396108561a52153d63a7b2a3a077a7e4c1a22bcb23e1f3e511fee310baa67904d2aad4d6671e8b77c7720e37e84e0efecb60a35f188cbe8b8b2fb3967b78aa482aabb103f23083baa9b2ae653731d5993db4054233dea4af25795e12eb4d6b046bdeea6adce8626e0def15dd32b0ec16a8", 0x163) r1 = socket(0x10, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000003b40)={'xfrm0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000226bd7000fedbdf25030000000800030000020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a000500000000000000000008000200", @ANYRES32], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x4000) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYRES16=r2], 0x1ac}}, 0x40001) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4040044}, 0x40000) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x60, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000080), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 5.206708302s ago: executing program 2 (id=2361): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x8, 0x0) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r0) recvmmsg$auto(r0, 0x0, 0x7ffff670, 0x12000002, 0x0) 5.067970834s ago: executing program 3 (id=2362): mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = open(&(0x7f0000000100)='.\x00', 0x595082, 0x0) write$auto(r0, 0x0, 0xfffffdf1) fcntl$auto_F_ADD_SEALS(r0, 0x409, 0x9) linkat$auto(r0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) fsetxattr$auto(r0, &(0x7f0000000180)=':\xbf+<\x8a}\x00\xeb\xfa\xe6\x8d\x02\\VD\x04\x00\x00\x00*\x80\xa4\xf4vql\xa9\x05o\xf7\x9e\xfd\xf7\x00\x00\x00\x00H_/Z>n\xf5F\xbf\xd3\xefi\x91\x88\x1daIu7\xef!\xd0\x04\xdes\xfe`\xf5e;4\xbek\xf9\xec%\xbc\xd4\xfc`\xb9\n\xb5\xa5V\x98\x14]\x8a\x03\xd9', 0x0, 0x7bd, 0x1) mprotect$auto(0x0, 0x8000000000000001, 0x8) 4.665808889s ago: executing program 0 (id=2363): close_range$auto(0x2, 0x8, 0x0) socket(0x2c, 0x3, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x1cb602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) pipe$auto(0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) 4.665704527s ago: executing program 2 (id=2364): mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffff6, 0x8000) capset$auto(&(0x7f0000000180)={0x19980330}, 0x0) openat$auto_msr_fops_msr(0xffffffffffffff9c, 0x0, 0x100000, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa) 4.309910383s ago: executing program 2 (id=2365): r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x0, 0x0) r1 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000001140)='/dev/psaux\x00', 0x42000, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7ffffffc, 0x8, 0x3000, 0x6, 0x7, 0x400b, r1, [], {0x6, 0x6, 0x8c48, 0x29a, 0x9, 0x80, 0x104, 0x6, 0x4}, {0x100, 0x1, 0x101, 0x85, 0x2, 0x24, 0xfe000000, 0x8, 0x3}}) select$auto(0xe, 0x0, 0x0, &(0x7f0000000580)={[0x1ff, 0x8000000002008000, 0xd, 0x1, 0x200948d, 0x3, 0x10015f4da0e, 0xd, 0x7, 0x406, 0x7f, 0x8, 0x6d3e, 0xc, 0xcf, 0x2]}, 0x0) write$auto(r0, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9) 6.691331ms ago: executing program 4 (id=2345): r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x5) ioctl$auto_BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f00000001c0)={0x100000000, 0x1, {0x2, @usage=0x1, 0x7fffffffffffffff, 0x63d, 0x8, 0x1, 0x7, 0xfffffffffffffff7, 0x7, @limit=0x1000, 0xffff}, {0x8, @usage=0x5, 0x400, 0x1ff, 0x8, 0x5, 0xffffffffffffff85, 0x7, 0x80, @btrfs_balance_args_9_1={0x8, 0xd86}, 0x2, 0x2}, {0xedcf, @usage=0x8, 0xa66, 0x0, 0x5, 0x4, 0x5, 0x80000000, 0x1, @limit=0x6, 0x8, 0x7}, {0xfffffffeffffffff, 0x532, 0x3}}) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r1 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x6, 0x50b301a, 0x0, 0x2c, 0x0, 0x2}) 4.048792ms ago: executing program 0 (id=2373): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) mkdir$auto(0x0, 0x353) 1.702275ms ago: executing program 2 (id=2374): mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) recvmmsg$auto(0x3, 0x0, 0xfffe, 0x52, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0) sendfile$auto(0x3, r1, 0x0, 0x400000000006) mmap$auto(0x0, 0x4020009, 0xdc, 0xeb2, 0xffffffffffffffff, 0x8000) 0s ago: executing program 3 (id=2375): mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x4, 0x8000) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010028bd7000ffdbdf25050000000c00010002000000000000000c00010004"], 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0xd0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060007000100000008000200", @ANYRES32=0x0, @ANYBLOB="0c001a"], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x48080) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="1100"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) kernel console output (not intermixed with test programs): 174] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 262.709490][T10174] RSP: 002b:00007feaa4136028 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 262.709517][T10174] RAX: ffffffffffffffda RBX: 00007feaa3415fa0 RCX: 00007feaa319c799 [ 262.709535][T10174] RDX: 0000000000000066 RSI: 0000200000000040 RDI: 0000000000000003 [ 262.709552][T10174] RBP: 00007feaa3232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 262.709569][T10174] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 262.709585][T10174] R13: 00007feaa3416038 R14: 00007feaa3415fa0 R15: 00007ffde90e78d8 [ 262.709623][T10174] [ 262.709646][T10174] tipc: Failed to bind to 64,0,2 [ 264.142509][T10203] [U] [ 264.145260][T10203] [U] [ 264.147966][T10203] [U] [ 264.150672][T10203] [U] [ 264.185889][T10203] [U] [ 264.188628][T10203] [U] [ 264.191343][T10203] [U] [ 264.194058][T10203] [U] [ 264.210133][T10203] [U] [ 264.212875][T10203] [U] [ 264.215584][T10203] [U] [ 264.218298][T10203] [U] [ 264.225443][T10203] [U] [ 264.228179][T10203] [U] [ 264.230900][T10203] [U] [ 264.233617][T10203] [U] [ 264.240507][T10208] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1514'. [ 264.276128][T10203] [U] [ 264.278867][T10203] [U] [ 264.281571][T10203] [U] [ 264.284285][T10203] [U] [ 264.307246][T10203] [U] [ 264.309989][T10203] [U] [ 264.312697][T10203] [U] [ 264.315405][T10203] [U] [ 264.345261][T10203] [U] [ 264.348008][T10203] [U] [ 264.350716][T10203] [U] [ 264.353422][T10203] [U] [ 264.359002][T10203] [U] [ 264.361727][T10203] [U] [ 264.364439][T10203] [U] [ 264.367141][T10203] [U] [ 264.381559][T10203] [U] [ 264.384301][T10203] [U] [ 264.387007][T10203] [U] [ 264.389718][T10203] [U] [ 264.416370][T10203] [U] [ 264.419116][T10203] [U] [ 264.421825][T10203] [U] [ 264.424534][T10203] [U] [ 264.433407][T10203] [U] [ 264.436140][T10203] [U] [ 264.438859][T10203] [U] [ 264.441573][T10203] [U] [ 264.446323][T10203] [U] [ 264.449042][T10203] [U] [ 264.451748][T10203] [U] [ 264.454455][T10203] [U] [ 264.462701][T10203] [U] [ 264.465432][T10203] [U] [ 264.468141][T10203] [U] [ 264.470855][T10203] [U] [ 264.478129][T10203] [U] [ 264.480856][T10203] [U] [ 264.483566][T10203] [U] [ 264.486278][T10203] [U] [ 264.490699][T10203] [U] [ 264.493427][T10203] [U] [ 264.496139][T10203] [U] [ 264.498839][T10203] [U] [ 264.511447][T10203] [U] [ 264.514199][T10203] [U] [ 264.516905][T10203] [U] [ 264.519609][T10203] [U] [ 264.524061][T10203] [U] [ 264.526782][T10203] [U] [ 264.529486][T10203] [U] [ 264.532198][T10203] [U] [ 264.535758][T10203] [U] [ 264.538480][T10203] [U] [ 264.541193][T10203] [U] [ 264.543900][T10203] [U] [ 264.548779][T10203] [U] [ 264.551496][T10203] [U] [ 264.554209][T10203] [U] [ 264.556915][T10203] [U] [ 264.561237][T10203] [U] [ 264.563953][T10203] [U] [ 264.566661][T10203] [U] [ 264.569365][T10203] [U] [ 264.594964][T10203] [U] [ 264.597711][T10203] [U] [ 264.600427][T10203] [U] [ 264.603138][T10203] [U] [ 264.625527][T10203] [U] [ 264.628272][T10203] [U] [ 264.630986][T10203] [U] [ 264.633691][T10203] [U] [ 264.665029][T10203] [U] [ 264.667779][T10203] [U] [ 264.670492][T10203] [U] [ 264.673207][T10203] [U] [ 264.684816][T10203] [U] [ 264.687548][T10203] [U] [ 264.690275][T10203] [U] [ 264.692991][T10203] [U] [ 264.714976][T10203] [U] [ 264.717719][T10203] [U] [ 264.720432][T10203] [U] [ 264.723159][T10203] [U] [ 264.745351][T10203] [U] [ 264.748084][T10203] [U] [ 264.750797][T10203] [U] [ 264.753505][T10203] [U] [ 264.775034][T10203] [U] [ 264.777777][T10203] [U] [ 264.780475][T10203] [U] [ 264.783179][T10203] [U] [ 264.788906][T10203] [U] [ 264.791637][T10203] [U] [ 264.794350][T10203] [U] [ 264.797061][T10203] [U] [ 264.804245][T10203] [U] [ 264.806967][T10203] [U] [ 264.809677][T10203] [U] [ 264.812394][T10203] [U] [ 264.819655][T10203] [U] [ 264.822386][T10203] [U] [ 264.825093][T10203] [U] [ 264.827800][T10203] [U] [ 264.834991][T10217] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1517'. [ 264.846487][T10203] [U] [ 264.849211][T10203] [U] [ 264.851916][T10203] [U] [ 264.854622][T10203] [U] [ 264.862722][T10203] [U] [ 264.865449][T10203] [U] [ 264.868157][T10203] [U] [ 264.870861][T10203] [U] [ 264.873571][T10203] [U] [ 264.915474][T10203] [U] [ 264.918210][T10203] [U] [ 264.920916][T10203] [U] [ 264.923623][T10203] [U] [ 264.949448][T10203] [U] [ 264.952224][T10203] [U] [ 264.954937][T10203] [U] [ 264.957640][T10203] [U] [ 264.991716][T10203] [U] [ 264.994465][T10203] [U] [ 264.997181][T10203] [U] [ 264.999888][T10203] [U] [ 265.016667][T10203] [U] [ 265.019406][T10203] [U] [ 265.022118][T10203] [U] [ 265.024815][T10203] [U] [ 265.050592][T10203] [U] [ 265.272622][T10234] overlayfs: missing 'lowerdir' [ 265.322544][T10236] FAULT_INJECTION: forcing a failure. [ 265.322544][T10236] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 265.336066][T10236] CPU: 0 UID: 0 PID: 10236 Comm: syz.2.1523 Tainted: G U L syzkaller #0 PREEMPT(full) [ 265.336112][T10236] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 265.336123][T10236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 265.336141][T10236] Call Trace: [ 265.336150][T10236] [ 265.336160][T10236] dump_stack_lvl+0x100/0x190 [ 265.336209][T10236] should_fail_ex.cold+0x5/0xa [ 265.336243][T10236] _copy_to_user+0x32/0xd0 [ 265.336290][T10236] usbdev_read+0x5f2/0x790 [ 265.336329][T10236] ? __pfx___might_resched+0x10/0x10 [ 265.336379][T10236] ? __pfx_usbdev_read+0x10/0x10 [ 265.336427][T10236] ? bpf_lsm_file_permission+0x9/0x10 [ 265.336470][T10236] ? security_file_permission+0x76/0x210 [ 265.336516][T10236] ? rw_verify_area+0xce/0x6d0 [ 265.336554][T10236] ? __pfx_usbdev_read+0x10/0x10 [ 265.336593][T10236] vfs_read+0x1e4/0xb30 [ 265.336638][T10236] ? __pfx_vfs_read+0x10/0x10 [ 265.336674][T10236] ? find_held_lock+0x2b/0x80 [ 265.336699][T10236] ? __fget_files+0x215/0x3d0 [ 265.336739][T10236] ? __fget_files+0x215/0x3d0 [ 265.336786][T10236] ? __fget_files+0x21f/0x3d0 [ 265.336837][T10236] ksys_read+0x12a/0x250 [ 265.336877][T10236] ? __pfx_ksys_read+0x10/0x10 [ 265.336928][T10236] do_syscall_64+0x106/0xf80 [ 265.336959][T10236] ? clear_bhb_loop+0x40/0x90 [ 265.336997][T10236] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 265.337026][T10236] RIP: 0033:0x7fd0a5b9c799 [ 265.337050][T10236] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 265.337077][T10236] RSP: 002b:00007fd0a69af028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 265.337103][T10236] RAX: ffffffffffffffda RBX: 00007fd0a5e15fa0 RCX: 00007fd0a5b9c799 [ 265.337122][T10236] RDX: 000000000000007f RSI: 0000000000000000 RDI: 0000000000000005 [ 265.337139][T10236] RBP: 00007fd0a5c32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 265.337156][T10236] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 265.337172][T10236] R13: 00007fd0a5e16038 R14: 00007fd0a5e15fa0 R15: 00007ffd0c4c9748 [ 265.337211][T10236] [ 265.808632][T10247] netlink: 322 bytes leftover after parsing attributes in process `syz.1.1529'. [ 266.235209][T10259] FAULT_INJECTION: forcing a failure. [ 266.235209][T10259] name failslab, interval 1, probability 0, space 0, times 0 [ 266.269743][T10259] CPU: 1 UID: 0 PID: 10259 Comm: syz.0.1534 Tainted: G U L syzkaller #0 PREEMPT(full) [ 266.269792][T10259] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 266.269801][T10259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 266.269817][T10259] Call Trace: [ 266.269826][T10259] [ 266.269837][T10259] dump_stack_lvl+0x100/0x190 [ 266.269884][T10259] should_fail_ex.cold+0x5/0xa [ 266.269918][T10259] ? fib6_info_alloc+0x40/0x160 [ 266.269949][T10259] should_failslab+0xc2/0x120 [ 266.269977][T10259] __kmalloc_noprof+0xe0/0x850 [ 266.270028][T10259] fib6_info_alloc+0x40/0x160 [ 266.270062][T10259] ip6_route_info_create+0x14c/0xad0 [ 266.270094][T10259] ? addrconf_add_mroute+0x102/0x350 [ 266.270127][T10259] ip6_route_add+0x4b/0x1d0 [ 266.270171][T10259] addrconf_add_mroute+0x1de/0x350 [ 266.270200][T10259] ? __pfx_addrconf_add_mroute+0x10/0x10 [ 266.270274][T10259] addrconf_add_dev+0x14e/0x1a0 [ 266.270308][T10259] addrconf_init_auto_addrs+0x10e/0x780 [ 266.270345][T10259] addrconf_sysctl_addr_gen_mode+0x7ee/0xe50 [ 266.270388][T10259] ? __pfx_addrconf_sysctl_addr_gen_mode+0x10/0x10 [ 266.270435][T10259] ? __kvmalloc_node_noprof+0x37b/0xa00 [ 266.270475][T10259] ? proc_sys_call_handler+0x2c7/0x5a0 [ 266.270527][T10259] proc_sys_call_handler+0x47f/0x5a0 [ 266.270570][T10259] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 266.270612][T10259] ? splice_from_pipe_next+0x1ec/0x5a0 [ 266.270666][T10259] iter_file_splice_write+0x830/0x10a0 [ 266.270730][T10259] ? __pfx_iter_file_splice_write+0x10/0x10 [ 266.270783][T10259] ? __pfx_copy_splice_read+0x10/0x10 [ 266.270846][T10259] ? __pfx_iter_file_splice_write+0x10/0x10 [ 266.270894][T10259] direct_splice_actor+0x192/0x6c0 [ 266.270941][T10259] splice_direct_to_actor+0x345/0xa30 [ 266.270987][T10259] ? __pfx_direct_splice_actor+0x10/0x10 [ 266.271038][T10259] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 266.271094][T10259] do_splice_direct+0x174/0x240 [ 266.271139][T10259] ? __pfx_do_splice_direct+0x10/0x10 [ 266.271184][T10259] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 266.271239][T10259] ? rw_verify_area+0xce/0x6d0 [ 266.271283][T10259] do_sendfile+0xadc/0xe20 [ 266.271332][T10259] ? __pfx_do_sendfile+0x10/0x10 [ 266.271378][T10259] ? __x64_sys_futex+0x34f/0x4d0 [ 266.271413][T10259] ? __x64_sys_futex+0x358/0x4d0 [ 266.271453][T10259] __x64_sys_sendfile64+0x1d8/0x220 [ 266.271486][T10259] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 266.271528][T10259] do_syscall_64+0x106/0xf80 [ 266.271560][T10259] ? clear_bhb_loop+0x40/0x90 [ 266.271596][T10259] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 266.271625][T10259] RIP: 0033:0x7f4c1419c799 [ 266.271650][T10259] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 266.271679][T10259] RSP: 002b:00007f4c15031028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 266.271707][T10259] RAX: ffffffffffffffda RBX: 00007f4c14415fa0 RCX: 00007f4c1419c799 [ 266.271727][T10259] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004 [ 266.271745][T10259] RBP: 00007f4c14232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 266.271761][T10259] R10: 0000000000004a00 R11: 0000000000000246 R12: 0000000000000000 [ 266.271778][T10259] R13: 00007f4c14416038 R14: 00007f4c14415fa0 R15: 00007ffdd1a85b18 [ 266.271818][T10259] [ 266.776837][T10262] netlink: 'syz.3.1536': attribute type 1 has an invalid length. [ 266.784657][T10262] netlink: 314 bytes leftover after parsing attributes in process `syz.3.1536'. [ 267.570076][T10280] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1542'. [ 267.672851][T10286] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1545'. [ 268.082832][T10302] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1550'. [ 268.113563][T10302] bridge0: port 2(bridge_slave_1) entered disabled state [ 268.122233][T10302] bridge0: port 1(bridge_slave_0) entered disabled state [ 269.059109][T10319] syz_tun: mtu greater than device maximum [ 269.919948][T10331] mkiss: ax0: crc mode is auto. [ 270.790549][T10352] nfs: Unknown parameter 'm?LH>「^eko}* ' [ 270.823843][T10352] FAULT_INJECTION: forcing a failure. [ 270.823843][T10352] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 270.858849][T10352] CPU: 0 UID: 0 PID: 10352 Comm: syz.2.1567 Tainted: G U L syzkaller #0 PREEMPT(full) [ 270.858896][T10352] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 270.858907][T10352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 270.858925][T10352] Call Trace: [ 270.858933][T10352] [ 270.858944][T10352] dump_stack_lvl+0x100/0x190 [ 270.858990][T10352] should_fail_ex.cold+0x5/0xa [ 270.859018][T10352] ? prepare_alloc_pages+0x16d/0x5f0 [ 270.859051][T10352] should_fail_alloc_page+0xeb/0x140 [ 270.859082][T10352] prepare_alloc_pages+0x1f0/0x5f0 [ 270.859113][T10352] ? arch_stack_walk+0xa6/0xf0 [ 270.859143][T10352] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 270.859193][T10352] ? stack_trace_save+0x8e/0xc0 [ 270.859220][T10352] ? __pfx_stack_trace_save+0x10/0x10 [ 270.859249][T10352] ? stack_depot_save_flags+0x27/0x9d0 [ 270.859305][T10352] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 270.859345][T10352] ? kasan_save_stack+0x3f/0x50 [ 270.859384][T10352] ? kasan_save_stack+0x30/0x50 [ 270.859424][T10352] ? __kasan_slab_alloc+0x89/0x90 [ 270.859466][T10352] ? __pmd_alloc+0xbf/0x9c0 [ 270.859494][T10352] ? move_page_tables+0x3224/0x4500 [ 270.859530][T10352] ? copy_vma_and_data+0x25c/0x7c0 [ 270.859562][T10352] ? move_vma+0x51b/0x1890 [ 270.859594][T10352] ? mremap_to+0x1b7/0x450 [ 270.859628][T10352] ? do_mremap+0xb76/0x2130 [ 270.859662][T10352] ? __do_sys_mremap+0x126/0x170 [ 270.859697][T10352] ? do_syscall_64+0x106/0xf80 [ 270.859728][T10352] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 270.859772][T10352] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 270.859826][T10352] ? policy_nodemask+0xed/0x4f0 [ 270.859857][T10352] alloc_pages_mpol+0x1fb/0x550 [ 270.859887][T10352] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 270.859927][T10352] alloc_pages_noprof+0x131/0x390 [ 270.859955][T10352] pte_alloc_one+0x1e/0x3e0 [ 270.859985][T10352] __pte_alloc+0x6d/0x3f0 [ 270.860011][T10352] ? __pfx___pte_alloc+0x10/0x10 [ 270.860039][T10352] ? _raw_spin_unlock+0x28/0x50 [ 270.860065][T10352] ? __pmd_alloc+0x6aa/0x9c0 [ 270.860099][T10352] move_page_tables+0x257e/0x4500 [ 270.860140][T10352] ? __pfx_copy_vma+0x10/0x10 [ 270.860192][T10352] ? __pfx_move_page_tables+0x10/0x10 [ 270.860259][T10352] copy_vma_and_data+0x25c/0x7c0 [ 270.860300][T10352] ? __pfx_copy_vma_and_data+0x10/0x10 [ 270.860354][T10352] ? __vma_start_write+0x17f/0x280 [ 270.860387][T10352] ? __pfx___vma_start_write+0x10/0x10 [ 270.860419][T10352] ? __pfx_arch_get_unmapped_area_topdown+0x10/0x10 [ 270.860474][T10352] move_vma+0x51b/0x1890 [ 270.860517][T10352] ? __pfx_move_vma+0x10/0x10 [ 270.860556][T10352] ? thp_get_unmapped_area_vmflags+0x27f/0x2d0 [ 270.860593][T10352] ? cap_mmap_addr+0x4b/0x120 [ 270.860627][T10352] ? bpf_lsm_mmap_addr+0x9/0x30 [ 270.860666][T10352] ? security_mmap_addr+0x71/0x1e0 [ 270.860688][T10352] ? __get_unmapped_area+0x255/0x3e0 [ 270.860723][T10352] ? vrm_set_new_addr+0x204/0x290 [ 270.860769][T10352] mremap_to+0x1b7/0x450 [ 270.860816][T10352] do_mremap+0xb76/0x2130 [ 270.860872][T10352] ? __pfx_do_mremap+0x10/0x10 [ 270.860920][T10352] ? ksys_write+0x190/0x250 [ 270.860967][T10352] __do_sys_mremap+0x126/0x170 [ 270.861003][T10352] ? __pfx___do_sys_mremap+0x10/0x10 [ 270.861048][T10352] ? __x64_sys_futex+0x34f/0x4d0 [ 270.861101][T10352] do_syscall_64+0x106/0xf80 [ 270.861130][T10352] ? clear_bhb_loop+0x40/0x90 [ 270.861164][T10352] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 270.861193][T10352] RIP: 0033:0x7fd0a5b9c799 [ 270.861220][T10352] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 270.861248][T10352] RSP: 002b:00007fd0a69af028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 270.861277][T10352] RAX: ffffffffffffffda RBX: 00007fd0a5e15fa0 RCX: 00007fd0a5b9c799 [ 270.861297][T10352] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 000000110c231000 [ 270.861315][T10352] RBP: 00007fd0a5c32bd9 R08: 0000000100000000 R09: 0000000000000000 [ 270.861334][T10352] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000 [ 270.861352][T10352] R13: 00007fd0a5e16038 R14: 00007fd0a5e15fa0 R15: 00007ffd0c4c9748 [ 270.861392][T10352] [ 270.987854][T10354] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1568'. [ 273.007622][T10395] FAULT_INJECTION: forcing a failure. [ 273.007622][T10395] name fail_futex, interval 1, probability 0, space 0, times 1 [ 273.039354][T10395] CPU: 1 UID: 0 PID: 10395 Comm: syz.2.1582 Tainted: G U L syzkaller #0 PREEMPT(full) [ 273.039404][T10395] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 273.039415][T10395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 273.039433][T10395] Call Trace: [ 273.039442][T10395] [ 273.039453][T10395] dump_stack_lvl+0x100/0x190 [ 273.039500][T10395] should_fail_ex.cold+0x5/0xa [ 273.039541][T10395] get_futex_key+0x1d2/0x1620 [ 273.039581][T10395] ? __pfx_get_futex_key+0x10/0x10 [ 273.039629][T10395] futex_wake+0xea/0x530 [ 273.039675][T10395] ? __pfx_futex_wake+0x10/0x10 [ 273.039721][T10395] ? putname+0xb1/0x110 [ 273.039747][T10395] ? kmem_cache_free+0x124/0x6a0 [ 273.039791][T10395] do_futex+0x32b/0x350 [ 273.039827][T10395] ? __pfx_do_futex+0x10/0x10 [ 273.039860][T10395] ? __pfx_do_sys_openat2+0x10/0x10 [ 273.039905][T10395] __x64_sys_futex+0x34f/0x4d0 [ 273.039942][T10395] ? __x64_sys_openat+0x12d/0x210 [ 273.039978][T10395] ? __pfx___x64_sys_futex+0x10/0x10 [ 273.040028][T10395] do_syscall_64+0x106/0xf80 [ 273.040060][T10395] ? clear_bhb_loop+0x40/0x90 [ 273.040095][T10395] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 273.040124][T10395] RIP: 0033:0x7fd0a5b9c799 [ 273.040148][T10395] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 273.040176][T10395] RSP: 002b:00007fd0a69af0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 273.040203][T10395] RAX: ffffffffffffffda RBX: 00007fd0a5e15fa8 RCX: 00007fd0a5b9c799 [ 273.040223][T10395] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fd0a5e15fac [ 273.040241][T10395] RBP: 00007fd0a5e15fa0 R08: 0000000000000000 R09: 0000000000000000 [ 273.040259][T10395] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 273.040276][T10395] R13: 00007fd0a5e16038 R14: 00007ffd0c4c9660 R15: 00007ffd0c4c9748 [ 273.040307][T10395] [ 274.557131][T10434] random: crng reseeded on system resumption [ 274.695016][T10434] hub 1-0:1.0: USB hub found [ 274.721894][T10434] hub 1-0:1.0: 1 port detected [ 275.334613][T10452] process 'syz.3.1599' launched ':,' with NULL argv: empty string added [ 275.348637][T10450] FAULT_INJECTION: forcing a failure. [ 275.348637][T10450] name failslab, interval 1, probability 0, space 0, times 0 [ 275.361525][T10450] CPU: 1 UID: 0 PID: 10450 Comm: syz.0.1598 Tainted: G U L syzkaller #0 PREEMPT(full) [ 275.361572][T10450] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 275.361583][T10450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 275.361599][T10450] Call Trace: [ 275.361608][T10450] [ 275.361619][T10450] dump_stack_lvl+0x100/0x190 [ 275.361667][T10450] should_fail_ex.cold+0x5/0xa [ 275.361701][T10450] should_failslab+0xc2/0x120 [ 275.361727][T10450] __kmalloc_cache_noprof+0x7a/0x6f0 [ 275.361757][T10450] ? tipc_service_create+0xb1/0x340 [ 275.361798][T10450] tipc_service_create+0xb1/0x340 [ 275.361828][T10450] ? tipc_service_find+0x161/0x1c0 [ 275.361863][T10450] tipc_nametbl_insert_publ+0xeca/0x1570 [ 275.361916][T10450] tipc_nametbl_publish+0x137/0x260 [ 275.361956][T10450] tipc_sk_publish+0x1d8/0x430 [ 275.361991][T10450] ? __pfx_tipc_sk_publish+0x10/0x10 [ 275.362027][T10450] ? __local_bh_enable_ip+0x9e/0x120 [ 275.362060][T10450] tipc_sk_bind+0x16f/0x380 [ 275.362096][T10450] tipc_bind+0x18d/0x280 [ 275.362130][T10450] __sys_bind+0x1a9/0x260 [ 275.362171][T10450] ? __pfx___sys_bind+0x10/0x10 [ 275.362230][T10450] __x64_sys_bind+0x72/0xb0 [ 275.362276][T10450] ? lockdep_hardirqs_on+0x78/0x100 [ 275.362307][T10450] do_syscall_64+0x106/0xf80 [ 275.362337][T10450] ? clear_bhb_loop+0x40/0x90 [ 275.362371][T10450] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.362400][T10450] RIP: 0033:0x7f4c1419c799 [ 275.362423][T10450] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 275.362450][T10450] RSP: 002b:00007f4c15031028 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 275.362477][T10450] RAX: ffffffffffffffda RBX: 00007f4c14415fa0 RCX: 00007f4c1419c799 [ 275.362495][T10450] RDX: 0000000000000066 RSI: 0000200000000040 RDI: 0000000000000003 [ 275.362511][T10450] RBP: 00007f4c14232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 275.362527][T10450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 275.362543][T10450] R13: 00007f4c14416038 R14: 00007f4c14415fa0 R15: 00007ffdd1a85b18 [ 275.362579][T10450] [ 275.362590][T10450] tipc: Service creation failed, no memory [ 275.966956][T10475] netlink: 222 bytes leftover after parsing attributes in process `syz.1.1607'. [ 276.067615][T10478] netlink: 318 bytes leftover after parsing attributes in process `syz.2.1608'. [ 276.287525][T10487] FAULT_INJECTION: forcing a failure. [ 276.287525][T10487] name failslab, interval 1, probability 0, space 0, times 0 [ 276.303552][T10487] CPU: 1 UID: 0 PID: 10487 Comm: syz.0.1612 Tainted: G U L syzkaller #0 PREEMPT(full) [ 276.303597][T10487] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 276.303607][T10487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 276.303622][T10487] Call Trace: [ 276.303630][T10487] [ 276.303639][T10487] dump_stack_lvl+0x100/0x190 [ 276.303685][T10487] should_fail_ex.cold+0x5/0xa [ 276.303718][T10487] should_failslab+0xc2/0x120 [ 276.303745][T10487] __kmalloc_cache_noprof+0x7a/0x6f0 [ 276.303779][T10487] ? snd_seq_fifo_new+0x42/0x270 [ 276.303808][T10487] ? _raw_spin_unlock_irq+0x2e/0x50 [ 276.303839][T10487] ? __pfx_snd_seq_open+0x10/0x10 [ 276.303872][T10487] snd_seq_fifo_new+0x42/0x270 [ 276.303898][T10487] snd_seq_open+0x3fe/0x590 [ 276.303930][T10487] ? __pfx_snd_seq_open+0x10/0x10 [ 276.303960][T10487] snd_open+0x22d/0x4c0 [ 276.303994][T10487] ? __pfx_snd_open+0x10/0x10 [ 276.304029][T10487] chrdev_open+0x234/0x6a0 [ 276.304051][T10487] ? __pfx_apparmor_file_open+0x10/0x10 [ 276.304085][T10487] ? __pfx_chrdev_open+0x10/0x10 [ 276.304110][T10487] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 276.304158][T10487] do_dentry_open+0x6d8/0x1660 [ 276.304207][T10487] ? __pfx_chrdev_open+0x10/0x10 [ 276.304242][T10487] vfs_open+0x82/0x3f0 [ 276.304280][T10487] path_openat+0x208c/0x31a0 [ 276.304318][T10487] ? __pfx_path_openat+0x10/0x10 [ 276.304355][T10487] do_file_open+0x20e/0x430 [ 276.304384][T10487] ? __pfx_do_file_open+0x10/0x10 [ 276.304434][T10487] ? alloc_fd+0x476/0x790 [ 276.304477][T10487] ? do_getname+0x191/0x390 [ 276.304516][T10487] do_sys_openat2+0x10d/0x1e0 [ 276.304549][T10487] ? __pfx_do_sys_openat2+0x10/0x10 [ 276.304596][T10487] __x64_sys_openat+0x12d/0x210 [ 276.304631][T10487] ? __pfx___x64_sys_openat+0x10/0x10 [ 276.304675][T10487] do_syscall_64+0x106/0xf80 [ 276.304704][T10487] ? clear_bhb_loop+0x40/0x90 [ 276.304736][T10487] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 276.304765][T10487] RIP: 0033:0x7f4c1419c799 [ 276.304789][T10487] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 276.304815][T10487] RSP: 002b:00007f4c15031028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 276.304841][T10487] RAX: ffffffffffffffda RBX: 00007f4c14415fa0 RCX: 00007f4c1419c799 [ 276.304859][T10487] RDX: 00000000001e3800 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 276.304877][T10487] RBP: 00007f4c14232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 276.304892][T10487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 276.304907][T10487] R13: 00007f4c14416038 R14: 00007f4c14415fa0 R15: 00007ffdd1a85b18 [ 276.304942][T10487] [ 277.201894][T10509] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1625'. [ 278.184991][T10541] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1633'. [ 278.520210][T10554] FAULT_INJECTION: forcing a failure. [ 278.520210][T10554] name failslab, interval 1, probability 0, space 0, times 0 [ 278.543633][T10554] CPU: 0 UID: 0 PID: 10554 Comm: syz.1.1638 Tainted: G U L syzkaller #0 PREEMPT(full) [ 278.543682][T10554] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 278.543694][T10554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 278.543710][T10554] Call Trace: [ 278.543719][T10554] [ 278.543730][T10554] dump_stack_lvl+0x100/0x190 [ 278.543775][T10554] should_fail_ex.cold+0x5/0xa [ 278.543807][T10554] should_failslab+0xc2/0x120 [ 278.543836][T10554] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 278.543879][T10554] ? snd_pcm_hw_rule_add+0x3b3/0x510 [ 278.543932][T10554] krealloc_node_align_noprof+0x30a/0x3e0 [ 278.543975][T10554] ? __split_page_owner+0x1f9/0x350 [ 278.544023][T10554] snd_pcm_hw_rule_add+0x3b3/0x510 [ 278.544062][T10554] ? __pfx_snd_pcm_hw_rule_format+0x10/0x10 [ 278.544108][T10554] ? __pfx_snd_pcm_hw_rule_add+0x10/0x10 [ 278.544146][T10554] ? mutex_init_lockep+0x110/0x150 [ 278.544183][T10554] ? snd_pcm_attach_substream+0x29b/0xd60 [ 278.544219][T10554] snd_pcm_open_substream+0x54a/0x1850 [ 278.544252][T10554] ? __pfx_snd_pcm_open_substream+0x10/0x10 [ 278.544281][T10554] ? rcu_is_watching+0x12/0xc0 [ 278.544325][T10554] snd_pcm_open+0x2a3/0x710 [ 278.544357][T10554] ? __pfx_snd_pcm_open+0x10/0x10 [ 278.544389][T10554] ? __pfx_default_wake_function+0x10/0x10 [ 278.544425][T10554] ? __pfx_snd_pcm_playback_open+0x10/0x10 [ 278.544454][T10554] snd_pcm_playback_open+0x86/0xe0 [ 278.544483][T10554] snd_open+0x22d/0x4c0 [ 278.544521][T10554] ? __pfx_snd_open+0x10/0x10 [ 278.544556][T10554] chrdev_open+0x234/0x6a0 [ 278.544584][T10554] ? __pfx_chrdev_open+0x10/0x10 [ 278.544611][T10554] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 278.544664][T10554] do_dentry_open+0x6d8/0x1660 [ 278.544703][T10554] ? __pfx_chrdev_open+0x10/0x10 [ 278.544738][T10554] vfs_open+0x82/0x3f0 [ 278.544774][T10554] path_openat+0x208c/0x31a0 [ 278.544812][T10554] ? __pfx_path_openat+0x10/0x10 [ 278.544852][T10554] do_file_open+0x20e/0x430 [ 278.544882][T10554] ? __pfx_do_file_open+0x10/0x10 [ 278.544944][T10554] ? alloc_fd+0x476/0x790 [ 278.544992][T10554] ? do_getname+0x191/0x390 [ 278.545027][T10554] do_sys_openat2+0x10d/0x1e0 [ 278.545059][T10554] ? __pfx_do_sys_openat2+0x10/0x10 [ 278.545106][T10554] __x64_sys_openat+0x12d/0x210 [ 278.545140][T10554] ? __pfx___x64_sys_openat+0x10/0x10 [ 278.545191][T10554] do_syscall_64+0x106/0xf80 [ 278.545220][T10554] ? clear_bhb_loop+0x40/0x90 [ 278.545255][T10554] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 278.545283][T10554] RIP: 0033:0x7fe97ab9c799 [ 278.545304][T10554] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 278.545331][T10554] RSP: 002b:00007fe97b983028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 278.545357][T10554] RAX: ffffffffffffffda RBX: 00007fe97ae15fa0 RCX: 00007fe97ab9c799 [ 278.545376][T10554] RDX: 0000000000040002 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 278.545393][T10554] RBP: 00007fe97ac32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 278.545410][T10554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 278.545426][T10554] R13: 00007fe97ae16038 R14: 00007fe97ae15fa0 R15: 00007ffe3d401798 [ 278.545465][T10554] [ 279.026679][T10562] random: crng reseeded on system resumption [ 279.126933][T10562] FAULT_INJECTION: forcing a failure. [ 279.126933][T10562] name failslab, interval 1, probability 0, space 0, times 0 [ 279.170780][T10562] CPU: 1 UID: 0 PID: 10562 Comm: syz.0.1641 Tainted: G U L syzkaller #0 PREEMPT(full) [ 279.170830][T10562] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 279.170841][T10562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 279.170858][T10562] Call Trace: [ 279.170866][T10562] [ 279.170878][T10562] dump_stack_lvl+0x100/0x190 [ 279.170925][T10562] should_fail_ex.cold+0x5/0xa [ 279.170959][T10562] should_failslab+0xc2/0x120 [ 279.170987][T10562] __kmalloc_cache_noprof+0x7a/0x6f0 [ 279.171021][T10562] ? memory_bm_create+0x14d/0xba0 [ 279.171078][T10562] memory_bm_create+0x14d/0xba0 [ 279.171138][T10562] create_basic_memory_bitmaps+0x10b/0x350 [ 279.171174][T10562] snapshot_open+0x230/0x2a0 [ 279.171205][T10562] ? __pfx_snapshot_open+0x10/0x10 [ 279.171238][T10562] misc_open+0x26d/0x450 [ 279.171280][T10562] ? __pfx_misc_open+0x10/0x10 [ 279.171319][T10562] chrdev_open+0x234/0x6a0 [ 279.171345][T10562] ? __pfx_apparmor_file_open+0x10/0x10 [ 279.171383][T10562] ? __pfx_chrdev_open+0x10/0x10 [ 279.171411][T10562] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 279.171464][T10562] do_dentry_open+0x6d8/0x1660 [ 279.171507][T10562] ? __pfx_chrdev_open+0x10/0x10 [ 279.171542][T10562] vfs_open+0x82/0x3f0 [ 279.171578][T10562] path_openat+0x208c/0x31a0 [ 279.171625][T10562] ? __pfx_path_openat+0x10/0x10 [ 279.171665][T10562] do_file_open+0x20e/0x430 [ 279.171692][T10562] ? __pfx_do_file_open+0x10/0x10 [ 279.171741][T10562] ? alloc_fd+0x476/0x790 [ 279.171786][T10562] ? do_getname+0x191/0x390 [ 279.171820][T10562] do_sys_openat2+0x10d/0x1e0 [ 279.171854][T10562] ? __pfx_do_sys_openat2+0x10/0x10 [ 279.171886][T10562] ? find_held_lock+0x2b/0x80 [ 279.171921][T10562] __x64_sys_openat+0x12d/0x210 [ 279.171956][T10562] ? __pfx___x64_sys_openat+0x10/0x10 [ 279.172002][T10562] do_syscall_64+0x106/0xf80 [ 279.172031][T10562] ? clear_bhb_loop+0x40/0x90 [ 279.172064][T10562] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 279.172092][T10562] RIP: 0033:0x7f4c1419c799 [ 279.172116][T10562] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 279.172143][T10562] RSP: 002b:00007f4c15031028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 279.172170][T10562] RAX: ffffffffffffffda RBX: 00007f4c14415fa0 RCX: 00007f4c1419c799 [ 279.172189][T10562] RDX: 0000000000008001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 279.172208][T10562] RBP: 00007f4c14232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 279.172225][T10562] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 279.172243][T10562] R13: 00007f4c14416038 R14: 00007f4c14415fa0 R15: 00007ffdd1a85b18 [ 279.172282][T10562] [ 280.264013][T10587] FAULT_INJECTION: forcing a failure. [ 280.264013][T10587] name failslab, interval 1, probability 0, space 0, times 0 [ 280.303162][T10587] CPU: 1 UID: 0 PID: 10587 Comm: syz.1.1656 Tainted: G U L syzkaller #0 PREEMPT(full) [ 280.303211][T10587] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 280.303222][T10587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 280.303237][T10587] Call Trace: [ 280.303246][T10587] [ 280.303256][T10587] dump_stack_lvl+0x100/0x190 [ 280.303299][T10587] should_fail_ex.cold+0x5/0xa [ 280.303330][T10587] ? anon_vma_name_alloc+0x58/0x100 [ 280.303357][T10587] should_failslab+0xc2/0x120 [ 280.303384][T10587] __kmalloc_noprof+0xe0/0x850 [ 280.303424][T10587] anon_vma_name_alloc+0x58/0x100 [ 280.303454][T10587] set_anon_vma_name+0x214/0x4c0 [ 280.303483][T10587] ? __pfx_set_anon_vma_name+0x10/0x10 [ 280.303510][T10587] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 280.303559][T10587] ? cap_task_prctl+0x104/0xa50 [ 280.303595][T10587] ? static_key_count+0x5a/0x70 [ 280.303619][T10587] ? security_task_prctl+0x11c/0x160 [ 280.303652][T10587] __do_sys_prctl+0xdb5/0x2330 [ 280.303687][T10587] ? __pfx___do_sys_prctl+0x10/0x10 [ 280.303730][T10587] do_syscall_64+0x106/0xf80 [ 280.303756][T10587] ? clear_bhb_loop+0x40/0x90 [ 280.303785][T10587] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 280.303809][T10587] RIP: 0033:0x7fe97ab9c799 [ 280.303829][T10587] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 280.303853][T10587] RSP: 002b:00007fe97b983028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 280.303876][T10587] RAX: ffffffffffffffda RBX: 00007fe97ae15fa0 RCX: 00007fe97ab9c799 [ 280.303892][T10587] RDX: 0000000000009000 RSI: 0000000000000000 RDI: 0000000053564d41 [ 280.303907][T10587] RBP: 00007fe97ac32bd9 R08: 0000000000000002 R09: 0000000000000000 [ 280.303922][T10587] R10: 0000000000008002 R11: 0000000000000246 R12: 0000000000000000 [ 280.303936][T10587] R13: 00007fe97ae16038 R14: 00007fe97ae15fa0 R15: 00007ffe3d401798 [ 280.303971][T10587] [ 280.313381][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 280.612991][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 280.622962][ T0] NOHZ tick-stop error: local softirq work is pending, handler #20a!!! [ 280.751083][T10599] input: f as /devices/virtual/input/input5 [ 281.529920][T10595] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 281.556122][T10595] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 281.583078][T10595] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 281.589290][T10595] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 281.617168][T10595] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 281.627318][T10609] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1650'. [ 281.637016][T10595] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 281.660969][T10595] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 281.671220][T10595] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 282.365738][T10630] netlink: 'syz.2.1659': attribute type 27 has an invalid length. [ 282.374708][T10630] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1659'. [ 282.793688][ T5832] Bluetooth: hci0: command 0x0406 tx timeout [ 282.958765][T10645] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1665'. [ 283.595839][ T5832] Bluetooth: hci1: command 0x0406 tx timeout [ 283.674765][ T5832] Bluetooth: hci2: command 0x0406 tx timeout [ 283.680888][ T5832] Bluetooth: hci3: command 0x0406 tx timeout [ 283.701243][T10660] zswap: compressor not available [ 284.115582][T10672] ima: policy update failed [ 284.121493][ T29] audit: type=1802 audit(1772305675.229:5): pid=10672 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1672" res=0 errno=0 [ 284.895284][ T5832] Bluetooth: hci0: command 0x0406 tx timeout [ 285.356591][T10697] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1679'. [ 285.676692][ T5832] Bluetooth: hci1: command 0x0406 tx timeout [ 285.760231][ T5832] Bluetooth: hci2: command 0x0406 tx timeout [ 285.766377][ T51] Bluetooth: hci3: command 0x0406 tx timeout [ 286.093246][T10714] blktrace: Concurrent blktraces are not allowed on sda1 [ 286.097049][T10712] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1683'. [ 286.647154][T10720] mkiss: ax0: crc mode is auto. [ 286.658178][T10730] FAULT_INJECTION: forcing a failure. [ 286.658178][T10730] name failslab, interval 1, probability 0, space 0, times 0 [ 286.679916][T10730] CPU: 1 UID: 0 PID: 10730 Comm: syz.1.1688 Tainted: G U L syzkaller #0 PREEMPT(full) [ 286.679963][T10730] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 286.679974][T10730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 286.679991][T10730] Call Trace: [ 286.680000][T10730] [ 286.680010][T10730] dump_stack_lvl+0x100/0x190 [ 286.680057][T10730] should_fail_ex.cold+0x5/0xa [ 286.680091][T10730] should_failslab+0xc2/0x120 [ 286.680119][T10730] __kmalloc_cache_noprof+0x7a/0x6f0 [ 286.680153][T10730] ? ring_buffer_read_start+0x149/0x460 [ 286.680202][T10730] ring_buffer_read_start+0x149/0x460 [ 286.680242][T10730] ? __pfx_ring_buffer_read_start+0x10/0x10 [ 286.680280][T10730] ? lockdep_init_map_type+0x5c/0x250 [ 286.680317][T10730] ? ring_buffer_overruns+0x14e/0x1a0 [ 286.680354][T10730] tracing_open+0x9cd/0xef0 [ 286.680394][T10730] do_dentry_open+0x6d8/0x1660 [ 286.680436][T10730] ? __pfx_tracing_open+0x10/0x10 [ 286.680478][T10730] vfs_open+0x82/0x3f0 [ 286.680516][T10730] path_openat+0x208c/0x31a0 [ 286.680556][T10730] ? __pfx_path_openat+0x10/0x10 [ 286.680598][T10730] do_file_open+0x20e/0x430 [ 286.680628][T10730] ? __pfx_do_file_open+0x10/0x10 [ 286.680684][T10730] ? alloc_fd+0x476/0x790 [ 286.680730][T10730] ? do_getname+0x191/0x390 [ 286.680767][T10730] do_sys_openat2+0x10d/0x1e0 [ 286.680800][T10730] ? __pfx_do_sys_openat2+0x10/0x10 [ 286.680837][T10730] ? __fget_files+0x21f/0x3d0 [ 286.680894][T10730] __x64_sys_openat+0x12d/0x210 [ 286.680930][T10730] ? __pfx___x64_sys_openat+0x10/0x10 [ 286.680981][T10730] do_syscall_64+0x106/0xf80 [ 286.681011][T10730] ? clear_bhb_loop+0x40/0x90 [ 286.681046][T10730] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.681075][T10730] RIP: 0033:0x7fe97ab9c799 [ 286.681098][T10730] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 286.681124][T10730] RSP: 002b:00007fe97b983028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 286.681151][T10730] RAX: ffffffffffffffda RBX: 00007fe97ae15fa0 RCX: 00007fe97ab9c799 [ 286.681170][T10730] RDX: 1a6b75d638929210 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 286.681188][T10730] RBP: 00007fe97ac32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 286.681205][T10730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 286.681222][T10730] R13: 00007fe97ae16038 R14: 00007fe97ae15fa0 R15: 00007ffe3d401798 [ 286.681260][T10730] [ 287.184425][T10734] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1689'. [ 287.576259][T10742] nvme_fabrics: missing parameter 'transport=%s' [ 287.593097][T10742] nvme_fabrics: missing parameter 'nqn=%s' [ 287.743919][T10751] nvme_fabrics: missing parameter 'transport=%s' [ 287.760763][T10751] nvme_fabrics: missing parameter 'nqn=%s' [ 289.083159][T10777] mkiss: ax0: crc mode is auto. [ 289.116308][T10782] random: crng reseeded on system resumption [ 289.181466][T10782] hub 1-0:1.0: USB hub found [ 289.186851][T10782] hub 1-0:1.0: 1 port detected [ 289.658236][T10789] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1703'. [ 291.798242][T10825] mkiss: ax0: crc mode is auto. [ 292.573414][T10842] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1720'. [ 292.602430][T10846] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1721'. [ 292.615069][T10846] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1721'. [ 292.779829][ C1] vcan0: j1939_tp_rxtimer: 0xffff88807ce2dc00: rx timeout, send abort [ 292.788206][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88807ce2dc00: 0x0ffff: (3) A timeout occurred and this is the connection abort to close the session. [ 293.100259][T10856] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1734'. [ 293.372311][T10868] random: crng reseeded on system resumption [ 293.427900][T10868] hub 1-0:1.0: USB hub found [ 293.446020][T10868] hub 1-0:1.0: 1 port detected [ 295.199927][T10908] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1742'. [ 295.586855][T10917] type: 65536 invalid [ 295.593375][T10914] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1746'. [ 295.815852][T10926] FAULT_INJECTION: forcing a failure. [ 295.815852][T10926] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 295.835867][T10926] CPU: 0 UID: 0 PID: 10926 Comm: syz.2.1749 Tainted: G U L syzkaller #0 PREEMPT(full) [ 295.835912][T10926] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 295.835927][T10926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 295.835941][T10926] Call Trace: [ 295.835951][T10926] [ 295.835960][T10926] dump_stack_lvl+0x100/0x190 [ 295.836002][T10926] should_fail_ex.cold+0x5/0xa [ 295.836026][T10926] ? prepare_alloc_pages+0x16d/0x5f0 [ 295.836055][T10926] should_fail_alloc_page+0xeb/0x140 [ 295.836082][T10926] prepare_alloc_pages+0x1f0/0x5f0 [ 295.836113][T10926] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 295.836148][T10926] ? rcu_is_watching+0x12/0xc0 [ 295.836187][T10926] ? __lock_acquire+0x4a5/0x2630 [ 295.836234][T10926] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 295.836273][T10926] ? do_raw_spin_lock+0x128/0x260 [ 295.836309][T10926] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 295.836344][T10926] ? find_held_lock+0x2b/0x80 [ 295.836376][T10926] ? __lock_acquire+0x4a5/0x2630 [ 295.836406][T10926] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 295.836446][T10926] ? policy_nodemask+0xed/0x4f0 [ 295.836472][T10926] alloc_pages_mpol+0x1fb/0x550 [ 295.836496][T10926] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 295.836520][T10926] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 295.836554][T10926] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 295.836595][T10926] folio_alloc_mpol_noprof+0x36/0x340 [ 295.836625][T10926] shmem_alloc_folio+0x135/0x160 [ 295.836655][T10926] shmem_alloc_and_add_folio+0x371/0xd40 [ 295.836696][T10926] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 295.836733][T10926] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 295.836775][T10926] shmem_get_folio_gfp+0x6ab/0x1900 [ 295.836812][T10926] ? find_held_lock+0x2b/0x80 [ 295.836835][T10926] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 295.836871][T10926] ? ktime_get_coarse_real_ts64_mg+0x235/0x300 [ 295.836901][T10926] ? lockdep_hardirqs_on+0x78/0x100 [ 295.836933][T10926] shmem_fault+0x1f9/0xa20 [ 295.836966][T10926] ? __lock_acquire+0x4a5/0x2630 [ 295.836995][T10926] ? __pfx_shmem_fault+0x10/0x10 [ 295.837030][T10926] ? __up_read+0x2c5/0x700 [ 295.837074][T10926] ? __pfx_filemap_map_pages+0x10/0x10 [ 295.837106][T10926] __do_fault+0x10d/0x550 [ 295.837145][T10926] ? __pfx_filemap_map_pages+0x10/0x10 [ 295.837177][T10926] do_fault+0x2db/0x1950 [ 295.837222][T10926] __handle_mm_fault+0x180f/0x2b60 [ 295.837264][T10926] ? __pfx___handle_mm_fault+0x10/0x10 [ 295.837302][T10926] ? pte_offset_map_lock+0x174/0x320 [ 295.837341][T10926] ? find_held_lock+0x2b/0x80 [ 295.837374][T10926] ? follow_page_pte+0x5b3/0x1400 [ 295.837410][T10926] handle_mm_fault+0x36d/0xa20 [ 295.837446][T10926] __get_user_pages+0xf9c/0x34d0 [ 295.837480][T10926] ? down_read_killable+0x30e/0x4c0 [ 295.837514][T10926] ? __pfx___get_user_pages+0x10/0x10 [ 295.837550][T10926] faultin_page_range+0x1f1/0x9e0 [ 295.837584][T10926] madvise_do_behavior+0x354/0x510 [ 295.837614][T10926] ? __pfx_madvise_do_behavior+0x10/0x10 [ 295.837649][T10926] ? __call_rcu_common.constprop.0+0x3f0/0x9b0 [ 295.837689][T10926] do_madvise+0x195/0x240 [ 295.837714][T10926] ? __pfx_do_madvise+0x10/0x10 [ 295.837739][T10926] ? do_futex+0x192/0x350 [ 295.837775][T10926] ? blkcg_maybe_throttle_current+0x5df/0xeb0 [ 295.837827][T10926] __x64_sys_madvise+0xa9/0x110 [ 295.837853][T10926] ? lockdep_hardirqs_on+0x78/0x100 [ 295.837880][T10926] do_syscall_64+0x106/0xf80 [ 295.837905][T10926] ? clear_bhb_loop+0x40/0x90 [ 295.837936][T10926] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 295.837962][T10926] RIP: 0033:0x7fd0a5b9c799 [ 295.837983][T10926] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 295.838007][T10926] RSP: 002b:00007fd0a69af028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 295.838030][T10926] RAX: ffffffffffffffda RBX: 00007fd0a5e15fa0 RCX: 00007fd0a5b9c799 [ 295.838047][T10926] RDX: 0000000000000017 RSI: 00000000002003f0 RDI: 0000000000000000 [ 295.838062][T10926] RBP: 00007fd0a5c32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 295.838078][T10926] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 295.838093][T10926] R13: 00007fd0a5e16038 R14: 00007fd0a5e15fa0 R15: 00007ffd0c4c9748 [ 295.838126][T10926] [ 297.895885][T10961] FAULT_INJECTION: forcing a failure. [ 297.895885][T10961] name failslab, interval 1, probability 0, space 0, times 0 [ 297.931368][T10961] CPU: 0 UID: 0 PID: 10961 Comm: syz.0.1760 Tainted: G U L syzkaller #0 PREEMPT(full) [ 297.931417][T10961] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 297.931428][T10961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 297.931446][T10961] Call Trace: [ 297.931455][T10961] [ 297.931465][T10961] dump_stack_lvl+0x100/0x190 [ 297.931512][T10961] should_fail_ex.cold+0x5/0xa [ 297.931546][T10961] should_failslab+0xc2/0x120 [ 297.931573][T10961] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 297.931613][T10961] ? security_inode_alloc+0x3b/0x2c0 [ 297.931653][T10961] ? lockdep_init_map_type+0x5c/0x250 [ 297.931698][T10961] security_inode_alloc+0x3b/0x2c0 [ 297.931747][T10961] inode_init_always_gfp+0xced/0x1040 [ 297.931799][T10961] alloc_inode+0x8e/0x250 [ 297.931833][T10961] new_inode+0x22/0x1c0 [ 297.931871][T10961] configfs_new_inode+0x24/0x4a0 [ 297.931912][T10961] configfs_create+0xd9/0x370 [ 297.931956][T10961] configfs_lookup+0x38f/0x780 [ 297.932003][T10961] lookup_open.isra.0+0x631/0x11b0 [ 297.932050][T10961] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 297.932109][T10961] ? mnt_get_write_access+0x1e9/0x2f0 [ 297.932151][T10961] path_openat+0xa98/0x31a0 [ 297.932189][T10961] ? __pfx_path_openat+0x10/0x10 [ 297.932230][T10961] do_file_open+0x20e/0x430 [ 297.932260][T10961] ? __pfx_do_file_open+0x10/0x10 [ 297.932314][T10961] ? alloc_fd+0x476/0x790 [ 297.932359][T10961] ? do_getname+0x191/0x390 [ 297.932394][T10961] do_sys_openat2+0x10d/0x1e0 [ 297.932429][T10961] ? __pfx_do_sys_openat2+0x10/0x10 [ 297.932466][T10961] ? __x64_sys_close_range+0x2d9/0x5d0 [ 297.932504][T10961] __x64_sys_openat+0x12d/0x210 [ 297.932539][T10961] ? __pfx___x64_sys_openat+0x10/0x10 [ 297.932587][T10961] do_syscall_64+0x106/0xf80 [ 297.932618][T10961] ? clear_bhb_loop+0x40/0x90 [ 297.932653][T10961] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 297.932682][T10961] RIP: 0033:0x7f4c1419c799 [ 297.932706][T10961] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 297.932740][T10961] RSP: 002b:00007f4c15031028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 297.932768][T10961] RAX: ffffffffffffffda RBX: 00007f4c14415fa0 RCX: 00007f4c1419c799 [ 297.932788][T10961] RDX: 0000000000109103 RSI: 0000200000001280 RDI: ffffffffffffff9c [ 297.932807][T10961] RBP: 00007f4c14232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 297.932825][T10961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 297.932843][T10961] R13: 00007f4c14416038 R14: 00007f4c14415fa0 R15: 00007ffdd1a85b18 [ 297.932880][T10961] [ 298.354792][T10971] FAULT_INJECTION: forcing a failure. [ 298.354792][T10971] name failslab, interval 1, probability 0, space 0, times 0 [ 298.368479][T10971] CPU: 0 UID: 0 PID: 10971 Comm: syz.0.1765 Tainted: G U L syzkaller #0 PREEMPT(full) [ 298.368526][T10971] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 298.368536][T10971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 298.368552][T10971] Call Trace: [ 298.368561][T10971] [ 298.368571][T10971] dump_stack_lvl+0x100/0x190 [ 298.368629][T10971] should_fail_ex.cold+0x5/0xa [ 298.368663][T10971] should_failslab+0xc2/0x120 [ 298.368688][T10971] __kmalloc_cache_noprof+0x7a/0x6f0 [ 298.368720][T10971] ? v9fs_get_tree+0x9c/0xb50 [ 298.368757][T10971] v9fs_get_tree+0x9c/0xb50 [ 298.368785][T10971] ? rcu_is_watching+0x12/0xc0 [ 298.368824][T10971] ? __pfx_v9fs_get_tree+0x10/0x10 [ 298.368854][T10971] ? bpf_lsm_capable+0x9/0x10 [ 298.368881][T10971] ? security_capable+0x80/0x260 [ 298.368930][T10971] vfs_get_tree+0x92/0x320 [ 298.368968][T10971] vfs_cmd_create+0xd7/0x2a0 [ 298.369005][T10971] __do_sys_fsconfig+0x55a/0xcb0 [ 298.369043][T10971] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 298.369096][T10971] do_syscall_64+0x106/0xf80 [ 298.369128][T10971] ? clear_bhb_loop+0x40/0x90 [ 298.369164][T10971] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 298.369192][T10971] RIP: 0033:0x7f4c1419c799 [ 298.369216][T10971] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 298.369243][T10971] RSP: 002b:00007f4c15031028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 298.369273][T10971] RAX: ffffffffffffffda RBX: 00007f4c14415fa0 RCX: 00007f4c1419c799 [ 298.369292][T10971] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003 [ 298.369308][T10971] RBP: 00007f4c14232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 298.369325][T10971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 298.369341][T10971] R13: 00007f4c14416038 R14: 00007f4c14415fa0 R15: 00007ffdd1a85b18 [ 298.369381][T10971] [ 298.418544][ T5832] Bluetooth: hci2: unexpected event 0x06 length: 435 > 3 [ 298.900392][T10991] FAULT_INJECTION: forcing a failure. [ 298.900392][T10991] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 298.922089][T10983] FAULT_INJECTION: forcing a failure. [ 298.922089][T10983] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 298.944294][T10983] CPU: 0 UID: 0 PID: 10983 Comm: syz.1.1772 Tainted: G U L syzkaller #0 PREEMPT(full) [ 298.944340][T10983] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 298.944350][T10983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 298.944367][T10983] Call Trace: [ 298.944375][T10983] [ 298.944386][T10983] dump_stack_lvl+0x100/0x190 [ 298.944430][T10983] should_fail_ex.cold+0x5/0xa [ 298.944462][T10983] _copy_to_iter+0x5a4/0x1720 [ 298.944513][T10983] ? __pfx__copy_to_iter+0x10/0x10 [ 298.944555][T10983] ? folio_mark_accessed+0xf3/0x1040 [ 298.944595][T10983] ? __pfx_filemap_get_pages+0x10/0x10 [ 298.944636][T10983] ? __pfx_folio_mark_accessed+0x10/0x10 [ 298.944682][T10983] copy_page_to_iter+0x12a/0x1e0 [ 298.944725][T10983] filemap_read+0x7a9/0x10a0 [ 298.944780][T10983] ? __pfx_filemap_read+0x10/0x10 [ 298.944850][T10983] ? __pfx_down_read+0x10/0x10 [ 298.944888][T10983] ? futex_unqueue+0x133/0x2c0 [ 298.944921][T10983] ? __pfx_aa_file_perm+0x10/0x10 [ 298.944955][T10983] blkdev_read_iter+0x2c4/0x4f0 [ 298.944994][T10983] do_iter_readv_writev+0x60d/0x920 [ 298.945036][T10983] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 298.945080][T10983] ? bpf_lsm_file_permission+0x9/0x10 [ 298.945118][T10983] ? security_file_permission+0x76/0x210 [ 298.945161][T10983] ? rw_verify_area+0xce/0x6d0 [ 298.945200][T10983] vfs_readv+0x4d3/0x8d0 [ 298.945252][T10983] ? __pfx_vfs_readv+0x10/0x10 [ 298.945316][T10983] ? __fget_files+0x21f/0x3d0 [ 298.945368][T10983] ? do_readv+0x13e/0x340 [ 298.945403][T10983] do_readv+0x13e/0x340 [ 298.945441][T10983] ? __pfx_do_readv+0x10/0x10 [ 298.945478][T10983] ? xfd_validate_state+0x129/0x190 [ 298.945525][T10983] __x64_sys_preadv2+0x11f/0x160 [ 298.945556][T10983] do_syscall_64+0x106/0xf80 [ 298.945586][T10983] ? clear_bhb_loop+0x40/0x90 [ 298.945622][T10983] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 298.945651][T10983] RIP: 0033:0x7fe97ab9c799 [ 298.945674][T10983] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 298.945701][T10983] RSP: 002b:00007fe97b983028 EFLAGS: 00000246 ORIG_RAX: 0000000000000147 [ 298.945728][T10983] RAX: ffffffffffffffda RBX: 00007fe97ae15fa0 RCX: 00007fe97ab9c799 [ 298.945747][T10983] RDX: 0000000000000006 RSI: 0000200000000080 RDI: 0000000000000006 [ 298.945763][T10983] RBP: 00007fe97ac32bd9 R08: 0000000000000004 R09: 000000000000002e [ 298.945780][T10983] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 298.945798][T10983] R13: 00007fe97ae16038 R14: 00007fe97ae15fa0 R15: 00007ffe3d401798 [ 298.945841][T10983] [ 298.948562][T10991] CPU: 0 UID: 0 PID: 10991 Comm: syz.0.1782 Tainted: G U L syzkaller #0 PREEMPT(full) [ 298.948609][T10991] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 298.948620][T10991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 298.948635][T10991] Call Trace: [ 298.948644][T10991] [ 298.948654][T10991] dump_stack_lvl+0x100/0x190 [ 298.948693][T10991] should_fail_ex.cold+0x5/0xa [ 298.948716][T10991] ? prepare_alloc_pages+0x16d/0x5f0 [ 298.948745][T10991] should_fail_alloc_page+0xeb/0x140 [ 298.948772][T10991] prepare_alloc_pages+0x1f0/0x5f0 [ 298.948797][T10991] ? unwind_get_return_address+0x59/0xa0 [ 298.948831][T10991] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 298.948876][T10991] ? stack_trace_save+0x8e/0xc0 [ 298.948900][T10991] ? __pfx_stack_trace_save+0x10/0x10 [ 298.948925][T10991] ? stack_depot_save_flags+0x27/0x9d0 [ 298.948963][T10991] ? find_held_lock+0x2b/0x80 [ 298.948986][T10991] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 298.949023][T10991] ? kasan_save_stack+0x3f/0x50 [ 298.949056][T10991] ? kasan_save_track+0x14/0x30 [ 298.949088][T10991] ? __kasan_slab_alloc+0x89/0x90 [ 298.949122][T10991] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 298.949154][T10991] ? security_inode_alloc+0x3b/0x2c0 [ 298.949189][T10991] ? inode_init_always_gfp+0xced/0x1040 [ 298.949225][T10991] ? alloc_inode+0x8e/0x250 [ 298.949250][T10991] ? sock_alloc+0x44/0x280 [ 298.949278][T10991] ? __sock_create+0xc2/0x860 [ 298.949308][T10991] ? __sys_socket+0x14d/0x260 [ 298.949353][T10991] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 298.949392][T10991] ? policy_nodemask+0xed/0x4f0 [ 298.949418][T10991] alloc_pages_mpol+0x1fb/0x550 [ 298.949443][T10991] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 298.949474][T10991] ? sk_prot_alloc+0x10b/0x2a0 [ 298.949503][T10991] ___kmalloc_large_node+0x104/0x150 [ 298.949532][T10991] __kmalloc_large_node_noprof+0x1c/0x70 [ 298.949561][T10991] __kmalloc_noprof+0x5be/0x850 [ 298.949600][T10991] sk_prot_alloc+0x10b/0x2a0 [ 298.949634][T10991] sk_alloc+0x36/0xe80 [ 298.949659][T10991] can_create+0x1e5/0x630 [ 298.949689][T10991] __sock_create+0x339/0x860 [ 298.949727][T10991] __sys_socket+0x14d/0x260 [ 298.949762][T10991] ? __pfx___sys_socket+0x10/0x10 [ 298.949807][T10991] __x64_sys_socket+0x72/0xb0 [ 298.949845][T10991] ? lockdep_hardirqs_on+0x78/0x100 [ 298.949872][T10991] do_syscall_64+0x106/0xf80 [ 298.949899][T10991] ? clear_bhb_loop+0x40/0x90 [ 298.949928][T10991] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 298.949953][T10991] RIP: 0033:0x7f4c1419c799 [ 298.949972][T10991] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 298.949996][T10991] RSP: 002b:00007f4c15031028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 298.950019][T10991] RAX: ffffffffffffffda RBX: 00007f4c14415fa0 RCX: 00007f4c1419c799 [ 298.950035][T10991] RDX: 0000000000000006 RSI: 0000000000000002 RDI: 000000000000001d [ 298.950049][T10991] RBP: 00007f4c14232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 298.950064][T10991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 298.950079][T10991] R13: 00007f4c14416038 R14: 00007f4c14415fa0 R15: 00007ffdd1a85b18 [ 298.950112][T10991] [ 299.802447][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 299.839762][T11001] syz.2.1776 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 299.972715][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 299.981204][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 299.989719][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 301.513617][T11048] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1794'. [ 301.781503][T11057] FAULT_INJECTION: forcing a failure. [ 301.781503][T11057] name failslab, interval 1, probability 0, space 0, times 0 [ 301.803287][T11057] CPU: 1 UID: 0 PID: 11057 Comm: syz.2.1799 Tainted: G U L syzkaller #0 PREEMPT(full) [ 301.803336][T11057] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 301.803347][T11057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 301.803370][T11057] Call Trace: [ 301.803380][T11057] [ 301.803390][T11057] dump_stack_lvl+0x100/0x190 [ 301.803438][T11057] should_fail_ex.cold+0x5/0xa [ 301.803470][T11057] ? tomoyo_encode2+0xfb/0x3c0 [ 301.803497][T11057] should_failslab+0xc2/0x120 [ 301.803524][T11057] __kmalloc_noprof+0xe0/0x850 [ 301.803562][T11057] ? d_absolute_path+0x136/0x1b0 [ 301.803603][T11057] tomoyo_encode2+0xfb/0x3c0 [ 301.803638][T11057] tomoyo_encode+0x29/0x50 [ 301.803665][T11057] tomoyo_realpath_from_path+0x18c/0x690 [ 301.803704][T11057] tomoyo_check_open_permission+0x2af/0x3c0 [ 301.803748][T11057] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 301.803825][T11057] ? do_raw_spin_lock+0x128/0x260 [ 301.803867][T11057] ? path_get+0x61/0x80 [ 301.803900][T11057] tomoyo_file_open+0x6b/0x90 [ 301.803935][T11057] security_file_open+0xb5/0x1e0 [ 301.803963][T11057] do_dentry_open+0x5aa/0x1660 [ 301.804008][T11057] ? security_inode_permission+0xbf/0x250 [ 301.804055][T11057] vfs_open+0x82/0x3f0 [ 301.804092][T11057] path_openat+0x208c/0x31a0 [ 301.804131][T11057] ? __pfx_path_openat+0x10/0x10 [ 301.804172][T11057] do_file_open+0x20e/0x430 [ 301.804202][T11057] ? __pfx_do_file_open+0x10/0x10 [ 301.804256][T11057] ? alloc_fd+0x476/0x790 [ 301.804303][T11057] ? do_getname+0x191/0x390 [ 301.804338][T11057] do_sys_openat2+0x10d/0x1e0 [ 301.804381][T11057] ? __pfx_do_sys_openat2+0x10/0x10 [ 301.804418][T11057] ? __fget_files+0x21f/0x3d0 [ 301.804469][T11057] __x64_sys_openat+0x12d/0x210 [ 301.804504][T11057] ? __pfx___x64_sys_openat+0x10/0x10 [ 301.804553][T11057] do_syscall_64+0x106/0xf80 [ 301.804583][T11057] ? clear_bhb_loop+0x40/0x90 [ 301.804617][T11057] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 301.804645][T11057] RIP: 0033:0x7fd0a5b9c799 [ 301.804668][T11057] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 301.804696][T11057] RSP: 002b:00007fd0a69af028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 301.804722][T11057] RAX: ffffffffffffffda RBX: 00007fd0a5e15fa0 RCX: 00007fd0a5b9c799 [ 301.804741][T11057] RDX: 0000000000020000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 301.804759][T11057] RBP: 00007fd0a5c32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 301.804776][T11057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 301.804793][T11057] R13: 00007fd0a5e16038 R14: 00007fd0a5e15fa0 R15: 00007ffd0c4c9748 [ 301.804832][T11057] [ 301.804861][T11057] ERROR: Out of memory at tomoyo_realpath_from_path. [ 301.899193][T11059] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1800'. [ 302.093610][T11059] macsec0: entered promiscuous mode [ 302.118190][T11059] macsec0: entered allmulticast mode [ 302.145479][T11059] veth1_macvtap: entered allmulticast mode [ 302.154756][T11061] pci 0000:00:00.0: MSI/MSI-X allowed for future drivers [ 302.178495][T11065] netlink: 504 bytes leftover after parsing attributes in process `syz.2.1802'. [ 302.209409][T11065] netlink: 504 bytes leftover after parsing attributes in process `syz.2.1802'. [ 302.868719][T11083] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1808'. [ 302.880737][T11083] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1808'. [ 304.732837][T11133] FAULT_INJECTION: forcing a failure. [ 304.732837][T11133] name failslab, interval 1, probability 0, space 0, times 0 [ 304.779078][T11133] CPU: 0 UID: 0 PID: 11133 Comm: syz.2.1823 Tainted: G U L syzkaller #0 PREEMPT(full) [ 304.779127][T11133] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 304.779139][T11133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 304.779156][T11133] Call Trace: [ 304.779165][T11133] [ 304.779177][T11133] dump_stack_lvl+0x100/0x190 [ 304.779230][T11133] should_fail_ex.cold+0x5/0xa [ 304.779264][T11133] should_failslab+0xc2/0x120 [ 304.779292][T11133] __kmalloc_cache_noprof+0x7a/0x6f0 [ 304.779327][T11133] ? ovs_ct_limit_cmd_set+0x30a/0xa70 [ 304.779372][T11133] ovs_ct_limit_cmd_set+0x30a/0xa70 [ 304.779416][T11133] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 304.779454][T11133] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280 [ 304.779496][T11133] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280 [ 304.779545][T11133] genl_family_rcv_msg_doit+0x214/0x300 [ 304.779590][T11133] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 304.779630][T11133] ? genl_get_cmd+0x3ef/0x720 [ 304.779674][T11133] ? bpf_lsm_capable+0x9/0x10 [ 304.779700][T11133] ? security_capable+0x80/0x260 [ 304.779737][T11133] ? ns_capable+0xd2/0xf0 [ 304.779767][T11133] genl_rcv_msg+0x560/0x800 [ 304.779826][T11133] ? __pfx_genl_rcv_msg+0x10/0x10 [ 304.779867][T11133] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 304.779919][T11133] netlink_rcv_skb+0x159/0x420 [ 304.779955][T11133] ? __pfx_genl_rcv_msg+0x10/0x10 [ 304.779994][T11133] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 304.780044][T11133] ? netlink_deliver_tap+0x1ae/0xcc0 [ 304.780082][T11133] genl_rcv+0x28/0x40 [ 304.780121][T11133] netlink_unicast+0x5aa/0x870 [ 304.780161][T11133] ? __pfx_netlink_unicast+0x10/0x10 [ 304.780194][T11133] ? __asan_memset+0x23/0x50 [ 304.780236][T11133] ? __build_skb_around+0x278/0x390 [ 304.780281][T11133] ? is_vmalloc_addr+0x86/0xa0 [ 304.780323][T11133] netlink_sendmsg+0x8b0/0xda0 [ 304.780365][T11133] ? __pfx_netlink_sendmsg+0x10/0x10 [ 304.780399][T11133] ? __import_iovec+0x1d2/0x640 [ 304.780447][T11133] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 304.780490][T11133] ____sys_sendmsg+0xa54/0xc30 [ 304.780533][T11133] ? __pfx_____sys_sendmsg+0x10/0x10 [ 304.780578][T11133] ? try_to_wake_up+0x644/0x1a80 [ 304.780613][T11133] ___sys_sendmsg+0x190/0x1e0 [ 304.780655][T11133] ? __pfx____sys_sendmsg+0x10/0x10 [ 304.780695][T11133] ? futex_private_hash_put+0x107/0x1c0 [ 304.780770][T11133] __sys_sendmsg+0x170/0x220 [ 304.780802][T11133] ? __pfx___sys_sendmsg+0x10/0x10 [ 304.780833][T11133] ? __x64_sys_futex+0x34f/0x4d0 [ 304.780890][T11133] do_syscall_64+0x106/0xf80 [ 304.780920][T11133] ? clear_bhb_loop+0x40/0x90 [ 304.780954][T11133] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 304.780982][T11133] RIP: 0033:0x7fd0a5b9c799 [ 304.781006][T11133] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 304.781034][T11133] RSP: 002b:00007fd0a69af028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 304.781061][T11133] RAX: ffffffffffffffda RBX: 00007fd0a5e15fa0 RCX: 00007fd0a5b9c799 [ 304.781080][T11133] RDX: 0000000000000004 RSI: 0000200000000100 RDI: 0000000000000005 [ 304.781098][T11133] RBP: 00007fd0a5c32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 304.781115][T11133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 304.781132][T11133] R13: 00007fd0a5e16038 R14: 00007fd0a5e15fa0 R15: 00007ffd0c4c9748 [ 304.781171][T11133] [ 305.526590][T11144] lowpan0: mtu less than device minimum [ 305.536017][T11142] FAULT_INJECTION: forcing a failure. [ 305.536017][T11142] name failslab, interval 1, probability 0, space 0, times 0 [ 305.550518][T11142] CPU: 1 UID: 0 PID: 11142 Comm: syz.1.1826 Tainted: G U L syzkaller #0 PREEMPT(full) [ 305.550545][T11142] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 305.550551][T11142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 305.550560][T11142] Call Trace: [ 305.550566][T11142] [ 305.550572][T11142] dump_stack_lvl+0x100/0x190 [ 305.550599][T11142] should_fail_ex.cold+0x5/0xa [ 305.550618][T11142] should_failslab+0xc2/0x120 [ 305.550633][T11142] __kmalloc_cache_noprof+0x7a/0x6f0 [ 305.550651][T11142] ? copy_mount_options+0x55/0x190 [ 305.550673][T11142] copy_mount_options+0x55/0x190 [ 305.550692][T11142] __x64_sys_mount+0x1ab/0x310 [ 305.550709][T11142] ? __pfx___x64_sys_mount+0x10/0x10 [ 305.550735][T11142] do_syscall_64+0x106/0xf80 [ 305.550752][T11142] ? clear_bhb_loop+0x40/0x90 [ 305.550770][T11142] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 305.550785][T11142] RIP: 0033:0x7fe97ab9c799 [ 305.550799][T11142] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 305.550813][T11142] RSP: 002b:00007fe97b983028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 305.550828][T11142] RAX: ffffffffffffffda RBX: 00007fe97ae15fa0 RCX: 00007fe97ab9c799 [ 305.550838][T11142] RDX: 0000200000000240 RSI: 0000000000000000 RDI: 0000200000000180 [ 305.550847][T11142] RBP: 00007fe97ac32bd9 R08: 0000200000000280 R09: 0000000000000000 [ 305.550861][T11142] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 305.550869][T11142] R13: 00007fe97ae16038 R14: 00007fe97ae15fa0 R15: 00007ffe3d401798 [ 305.550888][T11142] [ 306.042668][T11154] netlink: 'syz.3.1831': attribute type 20 has an invalid length. [ 306.051384][T11154] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1831'. [ 306.127250][T11156] FAULT_INJECTION: forcing a failure. [ 306.127250][T11156] name failslab, interval 1, probability 0, space 0, times 0 [ 306.160053][T11156] CPU: 1 UID: 0 PID: 11156 Comm: syz.1.1832 Tainted: G U L syzkaller #0 PREEMPT(full) [ 306.160108][T11156] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 306.160120][T11156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 306.160137][T11156] Call Trace: [ 306.160147][T11156] [ 306.160163][T11156] dump_stack_lvl+0x100/0x190 [ 306.160210][T11156] should_fail_ex.cold+0x5/0xa [ 306.160245][T11156] should_failslab+0xc2/0x120 [ 306.160272][T11156] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 306.160314][T11156] ? mqueue_alloc_inode+0x25/0x50 [ 306.160348][T11156] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 306.160388][T11156] ? __pfx_mqueue_alloc_inode+0x10/0x10 [ 306.160423][T11156] mqueue_alloc_inode+0x25/0x50 [ 306.160456][T11156] alloc_inode+0x68/0x250 [ 306.160491][T11156] new_inode+0x22/0x1c0 [ 306.160529][T11156] mqueue_get_inode+0x2e/0xe00 [ 306.160564][T11156] ? sget_fc+0x801/0xc70 [ 306.160604][T11156] ? __pfx_mqueue_fill_super+0x10/0x10 [ 306.160637][T11156] mqueue_fill_super+0x14d/0x260 [ 306.160673][T11156] get_tree_nodev+0xdd/0x190 [ 306.160714][T11156] mqueue_get_tree+0xf1/0x130 [ 306.160748][T11156] vfs_get_tree+0x92/0x320 [ 306.160784][T11156] fc_mount_longterm+0x1a/0x270 [ 306.160824][T11156] mq_init_ns+0x482/0x820 [ 306.160867][T11156] copy_ipcs+0x3dd/0x7e0 [ 306.160909][T11156] create_new_namespaces+0x20a/0xac0 [ 306.160940][T11156] ? security_capable+0x80/0x260 [ 306.160981][T11156] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 306.161015][T11156] ksys_unshare+0x473/0xad0 [ 306.161077][T11156] ? __pfx_ksys_unshare+0x10/0x10 [ 306.161127][T11156] __x64_sys_unshare+0x31/0x40 [ 306.161162][T11156] do_syscall_64+0x106/0xf80 [ 306.161194][T11156] ? clear_bhb_loop+0x40/0x90 [ 306.161229][T11156] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 306.161259][T11156] RIP: 0033:0x7fe97ab9c799 [ 306.161283][T11156] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 306.161311][T11156] RSP: 002b:00007fe978df6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 306.161340][T11156] RAX: ffffffffffffffda RBX: 00007fe97ae16090 RCX: 00007fe97ab9c799 [ 306.161359][T11156] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c000000 [ 306.161377][T11156] RBP: 00007fe97ac32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 306.161395][T11156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 306.161413][T11156] R13: 00007fe97ae16128 R14: 00007fe97ae16090 R15: 00007ffe3d401798 [ 306.161453][T11156] [ 309.193167][T11221] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input6 [ 309.848643][T11245] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1862'. [ 309.859154][T11245] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1862'. [ 311.940625][T11288] FAULT_INJECTION: forcing a failure. [ 311.940625][T11288] name failslab, interval 1, probability 0, space 0, times 0 [ 311.988970][T11288] CPU: 1 UID: 0 PID: 11288 Comm: syz.0.1875 Tainted: G U L syzkaller #0 PREEMPT(full) [ 311.989019][T11288] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 311.989030][T11288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 311.989049][T11288] Call Trace: [ 311.989059][T11288] [ 311.989069][T11288] dump_stack_lvl+0x100/0x190 [ 311.989117][T11288] should_fail_ex.cold+0x5/0xa [ 311.989152][T11288] should_failslab+0xc2/0x120 [ 311.989182][T11288] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 311.989221][T11288] ? __kernfs_new_node+0xd2/0x960 [ 311.989266][T11288] __kernfs_new_node+0xd2/0x960 [ 311.989307][T11288] ? __pfx___kernfs_new_node+0x10/0x10 [ 311.989354][T11288] ? find_held_lock+0x2b/0x80 [ 311.989380][T11288] ? kernfs_root+0xee/0x2a0 [ 311.989415][T11288] ? kernfs_root+0xee/0x2a0 [ 311.989459][T11288] kernfs_new_node+0x11b/0x1a0 [ 311.989512][T11288] __kernfs_create_file+0x53/0x350 [ 311.989547][T11288] sysfs_add_file_mode_ns+0x207/0x3c0 [ 311.989593][T11288] internal_create_group+0x593/0xf40 [ 311.989642][T11288] ? __pfx_internal_create_group+0x10/0x10 [ 311.989690][T11288] ? kernfs_create_link+0x1bd/0x240 [ 311.989727][T11288] internal_create_groups+0x9d/0x150 [ 311.989768][T11288] device_add+0x7c8/0x1950 [ 311.989819][T11288] ? __pfx_device_add+0x10/0x10 [ 311.989861][T11288] ? lockdep_init_map_type+0x5c/0x250 [ 311.989898][T11288] ? __init_waitqueue_head+0xca/0x150 [ 311.989948][T11288] netdev_register_kobject+0x1a9/0x3d0 [ 311.989989][T11288] register_netdevice+0x12e0/0x2210 [ 311.990027][T11288] ? idr_alloc+0xdd/0x130 [ 311.990054][T11288] ? __pfx_register_netdevice+0x10/0x10 [ 311.990084][T11288] ? net_generic+0xea/0x2a0 [ 311.990120][T11288] ppp_dev_configure+0x986/0xcb0 [ 311.990158][T11288] ppp_ioctl+0x985/0x2800 [ 311.990191][T11288] ? find_held_lock+0x2b/0x80 [ 311.990217][T11288] ? __pfx_ppp_ioctl+0x10/0x10 [ 311.990254][T11288] ? __fget_files+0x21f/0x3d0 [ 311.990302][T11288] ? __pfx_ppp_ioctl+0x10/0x10 [ 311.990334][T11288] __x64_sys_ioctl+0x18e/0x210 [ 311.990375][T11288] do_syscall_64+0x106/0xf80 [ 311.990406][T11288] ? clear_bhb_loop+0x40/0x90 [ 311.990442][T11288] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 311.990471][T11288] RIP: 0033:0x7f4c1419c799 [ 311.990496][T11288] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 311.990532][T11288] RSP: 002b:00007f4c15031028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 311.990560][T11288] RAX: ffffffffffffffda RBX: 00007f4c14415fa0 RCX: 00007f4c1419c799 [ 311.990580][T11288] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000005 [ 311.990597][T11288] RBP: 00007f4c14232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 311.990614][T11288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 311.990631][T11288] R13: 00007f4c14416038 R14: 00007f4c14415fa0 R15: 00007ffdd1a85b18 [ 311.990671][T11288] [ 312.023064][T11298] FAULT_INJECTION: forcing a failure. [ 312.023064][T11298] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 312.311114][T11298] CPU: 0 UID: 0 PID: 11298 Comm: syz.1.1881 Tainted: G U L syzkaller #0 PREEMPT(full) [ 312.311157][T11298] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 312.311168][T11298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 312.311183][T11298] Call Trace: [ 312.311192][T11298] [ 312.311202][T11298] dump_stack_lvl+0x100/0x190 [ 312.311244][T11298] should_fail_ex.cold+0x5/0xa [ 312.311275][T11298] _copy_from_user+0x2e/0xd0 [ 312.311313][T11298] memdup_user+0x6b/0xe0 [ 312.311350][T11298] strndup_user+0x78/0xe0 [ 312.311392][T11298] __x64_sys_mount+0x17f/0x310 [ 312.311429][T11298] ? __pfx___x64_sys_mount+0x10/0x10 [ 312.311466][T11298] do_syscall_64+0x106/0xf80 [ 312.311493][T11298] ? clear_bhb_loop+0x40/0x90 [ 312.311524][T11298] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 312.311551][T11298] RIP: 0033:0x7fe97ab9c799 [ 312.311573][T11298] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 312.311604][T11298] RSP: 002b:00007fe97b983028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 312.311628][T11298] RAX: ffffffffffffffda RBX: 00007fe97ae15fa0 RCX: 00007fe97ab9c799 [ 312.311646][T11298] RDX: 0000200000000240 RSI: 0000000000000000 RDI: 0000200000000180 [ 312.311663][T11298] RBP: 00007fe97ac32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 312.311679][T11298] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 312.311696][T11298] R13: 00007fe97ae16038 R14: 00007fe97ae15fa0 R15: 00007ffe3d401798 [ 312.311732][T11298] [ 313.130763][T11329] FAULT_INJECTION: forcing a failure. [ 313.130763][T11329] name failslab, interval 1, probability 0, space 0, times 0 [ 313.170320][T11329] CPU: 1 UID: 0 PID: 11329 Comm: syz.3.1892 Tainted: G U L syzkaller #0 PREEMPT(full) [ 313.170368][T11329] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 313.170379][T11329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 313.170394][T11329] Call Trace: [ 313.170402][T11329] [ 313.170413][T11329] dump_stack_lvl+0x100/0x190 [ 313.170463][T11329] should_fail_ex.cold+0x5/0xa [ 313.170495][T11329] should_failslab+0xc2/0x120 [ 313.170522][T11329] __kmalloc_cache_noprof+0x7a/0x6f0 [ 313.170557][T11329] ? alloc_pipe_info+0x10e/0x590 [ 313.170582][T11329] ? security_inode_alloc+0xcf/0x2c0 [ 313.170622][T11329] alloc_pipe_info+0x10e/0x590 [ 313.170653][T11329] create_pipe_files+0x8c/0x970 [ 313.170683][T11329] do_pipe2+0xbd/0x1e0 [ 313.170708][T11329] ? __pfx_do_pipe2+0x10/0x10 [ 313.170746][T11329] __x64_sys_pipe+0x33/0x50 [ 313.170771][T11329] do_syscall_64+0x106/0xf80 [ 313.170803][T11329] ? clear_bhb_loop+0x40/0x90 [ 313.170837][T11329] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 313.170865][T11329] RIP: 0033:0x7feaa319c799 [ 313.170888][T11329] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 313.170916][T11329] RSP: 002b:00007feaa4136028 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 313.170942][T11329] RAX: ffffffffffffffda RBX: 00007feaa3415fa0 RCX: 00007feaa319c799 [ 313.170961][T11329] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 313.170977][T11329] RBP: 00007feaa3232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 313.170994][T11329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 313.171010][T11329] R13: 00007feaa3416038 R14: 00007feaa3415fa0 R15: 00007ffde90e78d8 [ 313.171048][T11329] [ 313.432475][T11331] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1893'. [ 313.549837][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805b31a800: rx timeout, send abort [ 313.558448][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88805b31a800: 0x0ffff: (3) A timeout occurred and this is the connection abort to close the session. [ 313.781514][T11345] FAULT_INJECTION: forcing a failure. [ 313.781514][T11345] name failslab, interval 1, probability 0, space 0, times 0 [ 313.799318][T11345] CPU: 1 UID: 0 PID: 11345 Comm: syz.2.1897 Tainted: G U L syzkaller #0 PREEMPT(full) [ 313.799370][T11345] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 313.799381][T11345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 313.799397][T11345] Call Trace: [ 313.799406][T11345] [ 313.799417][T11345] dump_stack_lvl+0x100/0x190 [ 313.799463][T11345] should_fail_ex.cold+0x5/0xa [ 313.799497][T11345] should_failslab+0xc2/0x120 [ 313.799525][T11345] __kmalloc_cache_noprof+0x7a/0x6f0 [ 313.799555][T11345] ? trace_pid_list_alloc+0x232/0x480 [ 313.799592][T11345] ? lockdep_init_map_type+0x5c/0x250 [ 313.799631][T11345] trace_pid_list_alloc+0x232/0x480 [ 313.799678][T11345] trace_pid_write+0x110/0x460 [ 313.799718][T11345] ? __pfx_trace_pid_write+0x10/0x10 [ 313.799773][T11345] event_pid_write.isra.0+0x1e4/0x800 [ 313.799800][T11345] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 313.799830][T11345] vfs_write+0x2aa/0x1070 [ 313.799853][T11345] ? __pfx_ftrace_event_npid_write+0x10/0x10 [ 313.799877][T11345] ? __pfx_vfs_write+0x10/0x10 [ 313.799898][T11345] ? __fget_files+0x215/0x3d0 [ 313.799924][T11345] ? __fget_files+0x21f/0x3d0 [ 313.799951][T11345] ksys_write+0x12a/0x250 [ 313.799972][T11345] ? __pfx_ksys_write+0x10/0x10 [ 313.800008][T11345] do_syscall_64+0x106/0xf80 [ 313.800026][T11345] ? clear_bhb_loop+0x40/0x90 [ 313.800044][T11345] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 313.800060][T11345] RIP: 0033:0x7fd0a5b9c799 [ 313.800074][T11345] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 313.800089][T11345] RSP: 002b:00007fd0a69af028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 313.800104][T11345] RAX: ffffffffffffffda RBX: 00007fd0a5e15fa0 RCX: 00007fd0a5b9c799 [ 313.800114][T11345] RDX: 00000000000005c8 RSI: 0000000000000000 RDI: 0000000000000003 [ 313.800123][T11345] RBP: 00007fd0a5c32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 313.800131][T11345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 313.800140][T11345] R13: 00007fd0a5e16038 R14: 00007fd0a5e15fa0 R15: 00007ffd0c4c9748 [ 313.800161][T11345] [ 314.378757][T11357] FAULT_INJECTION: forcing a failure. [ 314.378757][T11357] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 314.416179][T11357] CPU: 1 UID: 0 PID: 11357 Comm: syz.3.1901 Tainted: G U L syzkaller #0 PREEMPT(full) [ 314.416230][T11357] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 314.416242][T11357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 314.416258][T11357] Call Trace: [ 314.416267][T11357] [ 314.416277][T11357] dump_stack_lvl+0x100/0x190 [ 314.416323][T11357] should_fail_ex.cold+0x5/0xa [ 314.416356][T11357] _copy_to_iter+0x5a4/0x1720 [ 314.416404][T11357] ? __pfx__copy_to_iter+0x10/0x10 [ 314.416449][T11357] ? folio_mark_accessed+0xf3/0x1040 [ 314.416488][T11357] ? __pfx_filemap_get_pages+0x10/0x10 [ 314.416525][T11357] ? __pfx_folio_mark_accessed+0x10/0x10 [ 314.416571][T11357] copy_page_to_iter+0x12a/0x1e0 [ 314.416618][T11357] filemap_read+0x7a9/0x10a0 [ 314.416675][T11357] ? __pfx_filemap_read+0x10/0x10 [ 314.416739][T11357] ? __pfx_down_read+0x10/0x10 [ 314.416776][T11357] ? futex_unqueue+0x133/0x2c0 [ 314.416810][T11357] ? __pfx_aa_file_perm+0x10/0x10 [ 314.416845][T11357] blkdev_read_iter+0x2c4/0x4f0 [ 314.416885][T11357] do_iter_readv_writev+0x60d/0x920 [ 314.416927][T11357] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 314.416985][T11357] ? bpf_lsm_file_permission+0x9/0x10 [ 314.417027][T11357] ? security_file_permission+0x76/0x210 [ 314.417081][T11357] ? rw_verify_area+0xce/0x6d0 [ 314.417122][T11357] vfs_readv+0x4d3/0x8d0 [ 314.417171][T11357] ? __pfx_vfs_readv+0x10/0x10 [ 314.417235][T11357] ? __fget_files+0x21f/0x3d0 [ 314.417286][T11357] ? do_readv+0x13e/0x340 [ 314.417321][T11357] do_readv+0x13e/0x340 [ 314.417359][T11357] ? __pfx_do_readv+0x10/0x10 [ 314.417395][T11357] ? xfd_validate_state+0x129/0x190 [ 314.417443][T11357] __x64_sys_preadv2+0x11f/0x160 [ 314.417473][T11357] do_syscall_64+0x106/0xf80 [ 314.417503][T11357] ? clear_bhb_loop+0x40/0x90 [ 314.417538][T11357] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 314.417566][T11357] RIP: 0033:0x7feaa319c799 [ 314.417589][T11357] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 314.417617][T11357] RSP: 002b:00007feaa4115028 EFLAGS: 00000246 ORIG_RAX: 0000000000000147 [ 314.417644][T11357] RAX: ffffffffffffffda RBX: 00007feaa3416090 RCX: 00007feaa319c799 [ 314.417663][T11357] RDX: 0000000000000006 RSI: 0000200000000080 RDI: 0000000000000006 [ 314.417681][T11357] RBP: 00007feaa3232bd9 R08: 0000000000000004 R09: 000000000000002e [ 314.417699][T11357] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 314.417717][T11357] R13: 00007feaa3416128 R14: 00007feaa3416090 R15: 00007ffde90e78d8 [ 314.417755][T11357] [ 315.306340][T11381] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1908'. [ 316.214669][T11402] netlink: 'syz.2.1916': attribute type 4 has an invalid length. [ 316.819927][T11415] FAULT_INJECTION: forcing a failure. [ 316.819927][T11415] name fail_futex, interval 1, probability 0, space 0, times 0 [ 316.834612][T11415] CPU: 1 UID: 0 PID: 11415 Comm: syz.3.1921 Tainted: G U L syzkaller #0 PREEMPT(full) [ 316.834659][T11415] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 316.834670][T11415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 316.834688][T11415] Call Trace: [ 316.834697][T11415] [ 316.834709][T11415] dump_stack_lvl+0x100/0x190 [ 316.834761][T11415] should_fail_ex.cold+0x5/0xa [ 316.834790][T11415] ? do_handle_open+0xb1b/0xce0 [ 316.834824][T11415] get_futex_key+0x1d2/0x1620 [ 316.834862][T11415] ? __pfx_get_futex_key+0x10/0x10 [ 316.834909][T11415] futex_wake+0xea/0x530 [ 316.834959][T11415] ? __pfx_futex_wake+0x10/0x10 [ 316.835010][T11415] ? kasan_quarantine_put+0x104/0x240 [ 316.835050][T11415] ? lockdep_hardirqs_on+0x78/0x100 [ 316.835085][T11415] do_futex+0x32b/0x350 [ 316.835121][T11415] ? __pfx_do_futex+0x10/0x10 [ 316.835158][T11415] ? mntput+0x70/0xa0 [ 316.835196][T11415] ? do_handle_open+0x2ca/0xce0 [ 316.835227][T11415] __x64_sys_futex+0x34f/0x4d0 [ 316.835265][T11415] ? __pfx___x64_sys_futex+0x10/0x10 [ 316.835314][T11415] do_syscall_64+0x106/0xf80 [ 316.835344][T11415] ? clear_bhb_loop+0x40/0x90 [ 316.835379][T11415] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 316.835407][T11415] RIP: 0033:0x7feaa319c799 [ 316.835431][T11415] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 316.835458][T11415] RSP: 002b:00007feaa41360e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 316.835485][T11415] RAX: ffffffffffffffda RBX: 00007feaa3415fa8 RCX: 00007feaa319c799 [ 316.835504][T11415] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007feaa3415fac [ 316.835522][T11415] RBP: 00007feaa3415fa0 R08: 0000000000000000 R09: 0000000000000000 [ 316.835539][T11415] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 316.835555][T11415] R13: 00007feaa3416038 R14: 00007ffde90e77f0 R15: 00007ffde90e78d8 [ 316.835592][T11415] [ 317.135588][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.142010][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.953197][T11438] : entered promiscuous mode [ 318.331994][T11444] FAULT_INJECTION: forcing a failure. [ 318.331994][T11444] name failslab, interval 1, probability 0, space 0, times 0 [ 318.411619][T11444] CPU: 0 UID: 0 PID: 11444 Comm: syz.1.1927 Tainted: G U L syzkaller #0 PREEMPT(full) [ 318.411669][T11444] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 318.411680][T11444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 318.411697][T11444] Call Trace: [ 318.411706][T11444] [ 318.411717][T11444] dump_stack_lvl+0x100/0x190 [ 318.411772][T11444] should_fail_ex.cold+0x5/0xa [ 318.411807][T11444] should_failslab+0xc2/0x120 [ 318.411835][T11444] __kmalloc_cache_noprof+0x7a/0x6f0 [ 318.411869][T11444] ? drm_atomic_state_alloc+0xb8/0x120 [ 318.411922][T11444] drm_atomic_state_alloc+0xb8/0x120 [ 318.411969][T11444] drm_client_modeset_commit_atomic+0xcc/0x7e0 [ 318.412004][T11444] ? trace_contention_end+0x140/0x180 [ 318.412043][T11444] ? __mutex_lock+0x26a/0x1b90 [ 318.412075][T11444] ? __mutex_lock+0x26a/0x1b90 [ 318.412106][T11444] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 318.412139][T11444] ? drm_master_internal_acquire+0x21/0x80 [ 318.412205][T11444] drm_client_modeset_commit_locked+0x14d/0x580 [ 318.412244][T11444] drm_client_modeset_commit+0x4f/0x80 [ 318.412277][T11444] __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160 [ 318.412315][T11444] drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0 [ 318.412350][T11444] drm_fbdev_client_restore+0x1b/0x30 [ 318.412392][T11444] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 318.412433][T11444] drm_client_dev_restore+0x205/0x2a0 [ 318.412472][T11444] drm_release+0x2c6/0x360 [ 318.412502][T11444] ? __pfx_drm_release+0x10/0x10 [ 318.412529][T11444] __fput+0x3ff/0xb40 [ 318.412569][T11444] task_work_run+0x150/0x240 [ 318.412610][T11444] ? __pfx_task_work_run+0x10/0x10 [ 318.412660][T11444] exit_to_user_mode_loop+0x100/0x4a0 [ 318.412700][T11444] do_syscall_64+0x668/0xf80 [ 318.412731][T11444] ? clear_bhb_loop+0x40/0x90 [ 318.412775][T11444] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 318.412804][T11444] RIP: 0033:0x7fe97ab9c799 [ 318.412827][T11444] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 318.412856][T11444] RSP: 002b:00007fe97b983028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 318.412883][T11444] RAX: 0000000000000000 RBX: 00007fe97ae15fa0 RCX: 00007fe97ab9c799 [ 318.412901][T11444] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 318.412917][T11444] RBP: 00007fe97ac32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 318.412934][T11444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 318.412951][T11444] R13: 00007fe97ae16038 R14: 00007fe97ae15fa0 R15: 00007ffe3d401798 [ 318.412992][T11444] [ 320.533533][ T29] audit: type=1800 audit(1772305711.631:6): pid=11505 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1950" name="lu_gp_id" dev="configfs" ino=37299 res=0 errno=0 [ 320.559604][T11503] FAULT_INJECTION: forcing a failure. [ 320.559604][T11503] name failslab, interval 1, probability 0, space 0, times 0 [ 320.573868][T11503] CPU: 1 UID: 0 PID: 11503 Comm: syz.0.1948 Tainted: G U L syzkaller #0 PREEMPT(full) [ 320.573913][T11503] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 320.573923][T11503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 320.573940][T11503] Call Trace: [ 320.573948][T11503] [ 320.573958][T11503] dump_stack_lvl+0x100/0x190 [ 320.574003][T11503] should_fail_ex.cold+0x5/0xa [ 320.574035][T11503] should_failslab+0xc2/0x120 [ 320.574063][T11503] __kmalloc_cache_noprof+0x7a/0x6f0 [ 320.574095][T11503] ? ovs_ct_limit_cmd_set+0x30a/0xa70 [ 320.574140][T11503] ovs_ct_limit_cmd_set+0x30a/0xa70 [ 320.574184][T11503] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 320.574222][T11503] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280 [ 320.574263][T11503] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280 [ 320.574309][T11503] genl_family_rcv_msg_doit+0x214/0x300 [ 320.574351][T11503] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 320.574387][T11503] ? genl_get_cmd+0x3ef/0x720 [ 320.574426][T11503] ? bpf_lsm_capable+0x9/0x10 [ 320.574450][T11503] ? security_capable+0x80/0x260 [ 320.574486][T11503] ? ns_capable+0xd2/0xf0 [ 320.574518][T11503] genl_rcv_msg+0x560/0x800 [ 320.574556][T11503] ? __pfx_genl_rcv_msg+0x10/0x10 [ 320.574605][T11503] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 320.574655][T11503] netlink_rcv_skb+0x159/0x420 [ 320.574690][T11503] ? __pfx_genl_rcv_msg+0x10/0x10 [ 320.574730][T11503] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 320.574780][T11503] ? netlink_deliver_tap+0x1ae/0xcc0 [ 320.574817][T11503] genl_rcv+0x28/0x40 [ 320.574848][T11503] netlink_unicast+0x5aa/0x870 [ 320.574886][T11503] ? __pfx_netlink_unicast+0x10/0x10 [ 320.574916][T11503] ? __asan_memset+0x23/0x50 [ 320.574946][T11503] ? __build_skb_around+0x278/0x390 [ 320.574989][T11503] ? is_vmalloc_addr+0x86/0xa0 [ 320.575028][T11503] netlink_sendmsg+0x8b0/0xda0 [ 320.575070][T11503] ? __pfx_netlink_sendmsg+0x10/0x10 [ 320.575103][T11503] ? __import_iovec+0x1d2/0x640 [ 320.575149][T11503] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 320.575193][T11503] ____sys_sendmsg+0xa54/0xc30 [ 320.575235][T11503] ? __pfx_____sys_sendmsg+0x10/0x10 [ 320.575281][T11503] ? try_to_wake_up+0x644/0x1a80 [ 320.575316][T11503] ___sys_sendmsg+0x190/0x1e0 [ 320.575370][T11503] ? __pfx____sys_sendmsg+0x10/0x10 [ 320.575419][T11503] ? futex_private_hash_put+0x107/0x1c0 [ 320.575498][T11503] __sys_sendmsg+0x170/0x220 [ 320.575529][T11503] ? __pfx___sys_sendmsg+0x10/0x10 [ 320.575568][T11503] ? __x64_sys_futex+0x34f/0x4d0 [ 320.575629][T11503] do_syscall_64+0x106/0xf80 [ 320.575659][T11503] ? clear_bhb_loop+0x40/0x90 [ 320.575695][T11503] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 320.575724][T11503] RIP: 0033:0x7f4c1419c799 [ 320.575748][T11503] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 320.575777][T11503] RSP: 002b:00007f4c15031028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 320.575804][T11503] RAX: ffffffffffffffda RBX: 00007f4c14415fa0 RCX: 00007f4c1419c799 [ 320.575822][T11503] RDX: 0000000000000004 RSI: 0000200000000100 RDI: 0000000000000005 [ 320.575839][T11503] RBP: 00007f4c14232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 320.575856][T11503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 320.575873][T11503] R13: 00007f4c14416038 R14: 00007f4c14415fa0 R15: 00007ffdd1a85b18 [ 320.575912][T11503] [ 321.792803][T11526] FAULT_INJECTION: forcing a failure. [ 321.792803][T11526] name failslab, interval 1, probability 0, space 0, times 0 [ 321.834581][T11526] CPU: 0 UID: 0 PID: 11526 Comm: syz.3.1956 Tainted: G U L syzkaller #0 PREEMPT(full) [ 321.834632][T11526] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 321.834644][T11526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 321.834661][T11526] Call Trace: [ 321.834670][T11526] [ 321.834681][T11526] dump_stack_lvl+0x100/0x190 [ 321.834727][T11526] should_fail_ex.cold+0x5/0xa [ 321.834760][T11526] should_failslab+0xc2/0x120 [ 321.834788][T11526] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 321.834829][T11526] ? locks_get_lock_context+0x94/0x640 [ 321.834876][T11526] locks_get_lock_context+0x94/0x640 [ 321.834920][T11526] posix_lock_inode+0xcc/0x2440 [ 321.834978][T11526] ? __pfx_posix_lock_inode+0x10/0x10 [ 321.835032][T11526] vfs_lock_file+0xfb/0x150 [ 321.835076][T11526] fcntl_setlk+0x782/0xe40 [ 321.835109][T11526] ? __pfx_fcntl_setlk+0x10/0x10 [ 321.835151][T11526] ? rep_movs_alternative+0x30/0x90 [ 321.835236][T11526] do_fcntl+0xf39/0x1670 [ 321.835273][T11526] ? __pfx_do_fcntl+0x10/0x10 [ 321.835304][T11526] ? __fget_files+0x215/0x3d0 [ 321.835358][T11526] ? tomoyo_file_fcntl+0x6c/0xc0 [ 321.835398][T11526] __x64_sys_fcntl+0x163/0x200 [ 321.835437][T11526] do_syscall_64+0x106/0xf80 [ 321.835467][T11526] ? clear_bhb_loop+0x40/0x90 [ 321.835501][T11526] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 321.835530][T11526] RIP: 0033:0x7feaa319c799 [ 321.835554][T11526] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 321.835582][T11526] RSP: 002b:00007feaa4136028 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 [ 321.835610][T11526] RAX: ffffffffffffffda RBX: 00007feaa3415fa0 RCX: 00007feaa319c799 [ 321.835629][T11526] RDX: 0000000000001298 RSI: 0000000000000026 RDI: 0000000000000004 [ 321.835647][T11526] RBP: 00007feaa3232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 321.835665][T11526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 321.835682][T11526] R13: 00007feaa3416038 R14: 00007feaa3415fa0 R15: 00007ffde90e78d8 [ 321.835719][T11526] [ 323.153431][T11560] futex_wake_op: syz.3.1968 tries to shift op by -2048; fix this program [ 323.689437][T11577] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input7 [ 324.666627][T11590] netlink: 'syz.2.1979': attribute type 4 has an invalid length. [ 324.675106][T11590] netlink: 314 bytes leftover after parsing attributes in process `syz.2.1979'. [ 324.707568][T11595] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1981'. [ 325.033612][T11612] FAULT_INJECTION: forcing a failure. [ 325.033612][T11612] name failslab, interval 1, probability 0, space 0, times 0 [ 325.057190][T11612] CPU: 1 UID: 0 PID: 11612 Comm: syz.3.1986 Tainted: G U L syzkaller #0 PREEMPT(full) [ 325.057239][T11612] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 325.057250][T11612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 325.057265][T11612] Call Trace: [ 325.057275][T11612] [ 325.057284][T11612] dump_stack_lvl+0x100/0x190 [ 325.057331][T11612] should_fail_ex.cold+0x5/0xa [ 325.057364][T11612] ? security_inode_init_security+0x113/0x370 [ 325.057397][T11612] should_failslab+0xc2/0x120 [ 325.057423][T11612] __kmalloc_noprof+0xe0/0x850 [ 325.057465][T11612] security_inode_init_security+0x113/0x370 [ 325.057499][T11612] ? __pfx_shmem_initxattrs+0x10/0x10 [ 325.057526][T11612] ? __pfx_security_inode_init_security+0x10/0x10 [ 325.057560][T11612] ? make_vfsgid+0xf1/0x140 [ 325.057597][T11612] shmem_mknod+0x2bf/0x470 [ 325.057630][T11612] ? __pfx_shmem_mknod+0x10/0x10 [ 325.057688][T11612] vfs_create+0x301/0x6c0 [ 325.057729][T11612] filename_mknodat+0x2de/0x7f0 [ 325.057763][T11612] ? __pfx_filename_mknodat+0x10/0x10 [ 325.057790][T11612] ? strncpy_from_user+0x19d/0x2d0 [ 325.057835][T11612] ? do_getname+0x191/0x390 [ 325.057869][T11612] __x64_sys_mknod+0x8f/0xc0 [ 325.057895][T11612] do_syscall_64+0x106/0xf80 [ 325.057929][T11612] ? clear_bhb_loop+0x40/0x90 [ 325.057963][T11612] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 325.057991][T11612] RIP: 0033:0x7feaa319c799 [ 325.058016][T11612] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 325.058042][T11612] RSP: 002b:00007feaa4136028 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 325.058071][T11612] RAX: ffffffffffffffda RBX: 00007feaa3415fa0 RCX: 00007feaa319c799 [ 325.058101][T11612] RDX: 0000000000000009 RSI: 0000000000000002 RDI: 0000000000000000 [ 325.058118][T11612] RBP: 00007feaa3232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 325.058135][T11612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 325.058153][T11612] R13: 00007feaa3416038 R14: 00007feaa3415fa0 R15: 00007ffde90e78d8 [ 325.058191][T11612] getty: ttyS0: read error: Resource temporarily unavailable [ 327.378316][T11665] raw_sendmsg: syz.2.2006 forgot to set AF_INET. Fix it! [ 328.639606][T11704] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2022'. [ 328.649940][T11704] netlink: 25 bytes leftover after parsing attributes in process `syz.3.2022'. [ 328.880296][T11700] zswap: compressor not available [ 333.106722][T11785] futex_wake_op: syz.0.2046 tries to shift op by -2048; fix this program [ 333.389856][T11795] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2050'. [ 333.399167][T11795] IPv6: Can't replace route, no match found [ 334.201614][T11820] : entered promiscuous mode [ 335.614962][T11859] : entered promiscuous mode [ 335.844380][T11863] serio: Serial port ttyS2 [ 336.585935][T11894] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2084'. [ 337.693275][T11919] FAULT_INJECTION: forcing a failure. [ 337.693275][T11919] name failslab, interval 1, probability 0, space 0, times 0 [ 337.706876][T11919] CPU: 1 UID: 0 PID: 11919 Comm: syz.3.2095 Tainted: G U L syzkaller #0 PREEMPT(full) [ 337.706923][T11919] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 337.706935][T11919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 337.706951][T11919] Call Trace: [ 337.706960][T11919] [ 337.706971][T11919] dump_stack_lvl+0x100/0x190 [ 337.707018][T11919] should_fail_ex.cold+0x5/0xa [ 337.707051][T11919] should_failslab+0xc2/0x120 [ 337.707079][T11919] __kmalloc_cache_noprof+0x7a/0x6f0 [ 337.707113][T11919] ? drm_atomic_state_alloc+0xb8/0x120 [ 337.707169][T11919] drm_atomic_state_alloc+0xb8/0x120 [ 337.707215][T11919] drm_client_modeset_commit_atomic+0xcc/0x7e0 [ 337.707250][T11919] ? trace_contention_end+0x140/0x180 [ 337.707289][T11919] ? __mutex_lock+0x26a/0x1b90 [ 337.707324][T11919] ? __mutex_lock+0x26a/0x1b90 [ 337.707356][T11919] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 337.707390][T11919] ? drm_master_internal_acquire+0x21/0x80 [ 337.707465][T11919] drm_client_modeset_commit_locked+0x14d/0x580 [ 337.707515][T11919] drm_client_modeset_commit+0x4f/0x80 [ 337.707549][T11919] __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160 [ 337.707586][T11919] drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0 [ 337.707622][T11919] drm_fbdev_client_restore+0x1b/0x30 [ 337.707664][T11919] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 337.707704][T11919] drm_client_dev_restore+0x205/0x2a0 [ 337.707743][T11919] drm_release+0x2c6/0x360 [ 337.707776][T11919] ? __pfx_drm_release+0x10/0x10 [ 337.707804][T11919] __fput+0x3ff/0xb40 [ 337.707844][T11919] task_work_run+0x150/0x240 [ 337.707885][T11919] ? __pfx_task_work_run+0x10/0x10 [ 337.707936][T11919] exit_to_user_mode_loop+0x100/0x4a0 [ 337.707976][T11919] do_syscall_64+0x668/0xf80 [ 337.708003][T11919] ? clear_bhb_loop+0x40/0x90 [ 337.708038][T11919] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 337.708067][T11919] RIP: 0033:0x7feaa319c799 [ 337.708090][T11919] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 337.708116][T11919] RSP: 002b:00007feaa4136028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 337.708142][T11919] RAX: 0000000000000000 RBX: 00007feaa3415fa0 RCX: 00007feaa319c799 [ 337.708159][T11919] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 337.708174][T11919] RBP: 00007feaa3232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 337.708190][T11919] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 337.708205][T11919] R13: 00007feaa3416038 R14: 00007feaa3415fa0 R15: 00007ffde90e78d8 [ 337.708250][T11919] [ 338.678796][T11946] : entered promiscuous mode [ 340.242699][T11986] netlink: 146 bytes leftover after parsing attributes in process `syz.0.2117'. [ 340.284286][T11989] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2118'. [ 340.295602][T11989] netlink: 25 bytes leftover after parsing attributes in process `syz.2.2118'. [ 341.363787][T12027] netlink: 346 bytes leftover after parsing attributes in process `syz.1.2132'. [ 341.733891][T12041] FAULT_INJECTION: forcing a failure. [ 341.733891][T12041] name failslab, interval 1, probability 0, space 0, times 0 [ 341.771936][T12041] CPU: 1 UID: 0 PID: 12041 Comm: syz.3.2140 Tainted: G U L syzkaller #0 PREEMPT(full) [ 341.771985][T12041] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 341.771997][T12041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 341.772013][T12041] Call Trace: [ 341.772022][T12041] [ 341.772032][T12041] dump_stack_lvl+0x100/0x190 [ 341.772087][T12041] should_fail_ex.cold+0x5/0xa [ 341.772120][T12041] should_failslab+0xc2/0x120 [ 341.772149][T12041] __kmalloc_cache_noprof+0x7a/0x6f0 [ 341.772183][T12041] ? snd_timer_instance_new+0x47/0x2e0 [ 341.772232][T12041] snd_timer_instance_new+0x47/0x2e0 [ 341.772274][T12041] snd_seq_timer_open+0x1d4/0x600 [ 341.772309][T12041] ? __pfx_snd_seq_timer_open+0x10/0x10 [ 341.772353][T12041] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 341.772383][T12041] ? lockdep_hardirqs_on+0x78/0x100 [ 341.772413][T12041] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 341.772447][T12041] queue_use+0xdc/0x1f0 [ 341.772491][T12041] snd_seq_queue_alloc+0x2e5/0x590 [ 341.772540][T12041] snd_seq_ioctl_create_queue+0xa9/0x370 [ 341.772577][T12041] call_seq_client_ctl+0xa3/0x130 [ 341.772614][T12041] snd_seq_kernel_client_ctl+0x77/0xd0 [ 341.772651][T12041] alloc_seq_queue+0xdb/0x180 [ 341.772685][T12041] ? __pfx_alloc_seq_queue+0x10/0x10 [ 341.772737][T12041] ? mark_held_locks+0x40/0x70 [ 341.772770][T12041] ? _raw_spin_unlock_irq+0x23/0x50 [ 341.772797][T12041] ? lockdep_hardirqs_on+0x78/0x100 [ 341.772833][T12041] snd_seq_oss_open+0x2b2/0xa10 [ 341.772878][T12041] odev_open+0x79/0xc0 [ 341.772911][T12041] ? __pfx_odev_open+0x10/0x10 [ 341.772946][T12041] soundcore_open+0x2e3/0x5a0 [ 341.772984][T12041] ? __pfx_soundcore_open+0x10/0x10 [ 341.773022][T12041] chrdev_open+0x234/0x6a0 [ 341.773047][T12041] ? __pfx_apparmor_file_open+0x10/0x10 [ 341.773098][T12041] ? __pfx_chrdev_open+0x10/0x10 [ 341.773126][T12041] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 341.773176][T12041] do_dentry_open+0x6d8/0x1660 [ 341.773212][T12041] ? __pfx_chrdev_open+0x10/0x10 [ 341.773247][T12041] vfs_open+0x82/0x3f0 [ 341.773283][T12041] path_openat+0x208c/0x31a0 [ 341.773318][T12041] ? __pfx_path_openat+0x10/0x10 [ 341.773355][T12041] do_file_open+0x20e/0x430 [ 341.773382][T12041] ? __pfx_do_file_open+0x10/0x10 [ 341.773434][T12041] ? alloc_fd+0x476/0x790 [ 341.773481][T12041] ? do_getname+0x191/0x390 [ 341.773517][T12041] do_sys_openat2+0x10d/0x1e0 [ 341.773550][T12041] ? __pfx_do_sys_openat2+0x10/0x10 [ 341.773588][T12041] ? __fget_files+0x21f/0x3d0 [ 341.773636][T12041] __x64_sys_openat+0x12d/0x210 [ 341.773670][T12041] ? __pfx___x64_sys_openat+0x10/0x10 [ 341.773715][T12041] do_syscall_64+0x106/0xf80 [ 341.773744][T12041] ? clear_bhb_loop+0x40/0x90 [ 341.773778][T12041] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 341.773804][T12041] RIP: 0033:0x7feaa319c799 [ 341.773826][T12041] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 341.773853][T12041] RSP: 002b:00007feaa4136028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 341.773879][T12041] RAX: ffffffffffffffda RBX: 00007feaa3415fa0 RCX: 00007feaa319c799 [ 341.773898][T12041] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 341.773916][T12041] RBP: 00007feaa3232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 341.773932][T12041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 341.773949][T12041] R13: 00007feaa3416038 R14: 00007feaa3415fa0 R15: 00007ffde90e78d8 [ 341.773982][T12041] [ 343.671618][T12079] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2154'. [ 343.825851][T12086] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2157'. [ 345.277941][ T29] audit: type=1800 audit(1772315582.350:7): pid=12129 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2171" name="members" dev="configfs" ino=39529 res=0 errno=0 [ 346.811073][T12195] FAULT_INJECTION: forcing a failure. [ 346.811073][T12195] name failslab, interval 1, probability 0, space 0, times 0 [ 346.878693][T12195] CPU: 0 UID: 0 PID: 12195 Comm: syz.2.2185 Tainted: G U L syzkaller #0 PREEMPT(full) [ 346.878743][T12195] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 346.878755][T12195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 346.878772][T12195] Call Trace: [ 346.878781][T12195] [ 346.878791][T12195] dump_stack_lvl+0x100/0x190 [ 346.878838][T12195] should_fail_ex.cold+0x5/0xa [ 346.878869][T12195] should_failslab+0xc2/0x120 [ 346.878896][T12195] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 346.878935][T12195] ? shmem_alloc_inode+0x25/0x50 [ 346.878966][T12195] ? __pfx_shmem_alloc_inode+0x10/0x10 [ 346.878994][T12195] shmem_alloc_inode+0x25/0x50 [ 346.879020][T12195] alloc_inode+0x68/0x250 [ 346.879052][T12195] new_inode+0x22/0x1c0 [ 346.879088][T12195] shmem_get_inode+0x212/0x1040 [ 346.879125][T12195] ? __pfx_shmem_get_inode+0x10/0x10 [ 346.879161][T12195] ? map_id_range_up+0x2ce/0x3b0 [ 346.879187][T12195] ? __pfx_make_vfsuid+0x10/0x10 [ 346.879226][T12195] shmem_symlink+0x11b/0xa00 [ 346.879262][T12195] ? generic_permission+0xae/0x800 [ 346.879297][T12195] ? __pfx_shmem_symlink+0x10/0x10 [ 346.879334][T12195] ? security_inode_permission+0xbf/0x250 [ 346.879376][T12195] ? inode_permission+0x374/0x620 [ 346.879407][T12195] ? tomoyo_path_symlink+0x97/0xe0 [ 346.879448][T12195] vfs_symlink+0x178/0x4d0 [ 346.879489][T12195] filename_symlinkat+0x2a6/0x560 [ 346.879520][T12195] ? __pfx_filename_symlinkat+0x10/0x10 [ 346.879562][T12195] ? strncpy_from_user+0x19d/0x2d0 [ 346.879608][T12195] ? do_getname+0x191/0x390 [ 346.879648][T12195] __x64_sys_symlink+0x79/0xb0 [ 346.879681][T12195] do_syscall_64+0x106/0xf80 [ 346.879712][T12195] ? clear_bhb_loop+0x40/0x90 [ 346.879745][T12195] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 346.879773][T12195] RIP: 0033:0x7fd0a5b9c799 [ 346.879802][T12195] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 346.879830][T12195] RSP: 002b:00007fd0a698e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000058 [ 346.879858][T12195] RAX: ffffffffffffffda RBX: 00007fd0a5e16090 RCX: 00007fd0a5b9c799 [ 346.879877][T12195] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 346.879893][T12195] RBP: 00007fd0a5c32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 346.879910][T12195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 346.879927][T12195] R13: 00007fd0a5e16128 R14: 00007fd0a5e16090 R15: 00007ffd0c4c9748 [ 346.879965][T12195] [ 347.293164][T12200] zswap: compressor not available [ 347.299164][T12203] overlayfs: "check_copy_up" module option is obsolete [ 347.837205][T12224] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2193'. [ 347.854203][T12224] IPv6: NLM_F_CREATE should be specified when creating new route [ 347.893213][T12224] IPv6: Can't replace route, no match found [ 348.300111][T12236] netlink: 252 bytes leftover after parsing attributes in process `syz.0.2198'. [ 348.412414][T12240] sp0: Synchronizing with TNC [ 348.836960][T12255] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2204'. [ 348.858892][T12255] IPv6: NLM_F_CREATE should be specified when creating new route [ 348.883257][T12255] IPv6: Can't replace route, no match found [ 349.105637][T12266] netlink: 186 bytes leftover after parsing attributes in process `syz.3.2210'. [ 349.141499][T12268] FAULT_INJECTION: forcing a failure. [ 349.141499][T12268] name failslab, interval 1, probability 0, space 0, times 0 [ 349.167128][T12268] CPU: 1 UID: 0 PID: 12268 Comm: syz.2.2211 Tainted: G U L syzkaller #0 PREEMPT(full) [ 349.167174][T12268] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 349.167187][T12268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 349.167202][T12268] Call Trace: [ 349.167211][T12268] [ 349.167221][T12268] dump_stack_lvl+0x100/0x190 [ 349.167267][T12268] should_fail_ex.cold+0x5/0xa [ 349.167296][T12268] ? alloc_pipe_info+0x1ec/0x590 [ 349.167319][T12268] should_failslab+0xc2/0x120 [ 349.167353][T12268] __kmalloc_noprof+0xe0/0x850 [ 349.167396][T12268] alloc_pipe_info+0x1ec/0x590 [ 349.167423][T12268] splice_direct_to_actor+0x78f/0xa30 [ 349.167463][T12268] ? __lock_acquire+0x4a5/0x2630 [ 349.167490][T12268] ? __pfx_direct_splice_actor+0x10/0x10 [ 349.167528][T12268] ? __pfx_aa_file_perm+0x10/0x10 [ 349.167557][T12268] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 349.167604][T12268] do_splice_direct+0x174/0x240 [ 349.167641][T12268] ? __pfx_do_splice_direct+0x10/0x10 [ 349.167678][T12268] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 349.167719][T12268] ? rw_verify_area+0xce/0x6d0 [ 349.167753][T12268] do_sendfile+0xadc/0xe20 [ 349.167792][T12268] ? __pfx_do_sendfile+0x10/0x10 [ 349.167823][T12268] ? apparmor_capable+0x1d7/0x4d0 [ 349.167859][T12268] ? __x64_sys_futex+0x34f/0x4d0 [ 349.167888][T12268] ? __x64_sys_futex+0x358/0x4d0 [ 349.167921][T12268] __x64_sys_sendfile64+0x1d8/0x220 [ 349.167948][T12268] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 349.167982][T12268] do_syscall_64+0x106/0xf80 [ 349.168008][T12268] ? clear_bhb_loop+0x40/0x90 [ 349.168037][T12268] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 349.168063][T12268] RIP: 0033:0x7fd0a5b9c799 [ 349.168083][T12268] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 349.168107][T12268] RSP: 002b:00007fd0a69af028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 349.168132][T12268] RAX: ffffffffffffffda RBX: 00007fd0a5e15fa0 RCX: 00007fd0a5b9c799 [ 349.168148][T12268] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000005 [ 349.168163][T12268] RBP: 00007fd0a5c32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 349.168178][T12268] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 349.168193][T12268] R13: 00007fd0a5e16038 R14: 00007fd0a5e15fa0 R15: 00007ffd0c4c9748 [ 349.168226][T12268] [ 349.910299][T12281] serio: Serial port ttyS2 [ 350.379994][T12288] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2219'. [ 351.605373][T12332] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2229'. [ 351.626339][T12332] IPv6: Can't replace route, no match found [ 351.816856][T12341] netlink: 146 bytes leftover after parsing attributes in process `syz.1.2239'. [ 352.392318][T12353] serio: Serial port ttyS2 [ 353.460133][ T5832] Bluetooth: hci1: Unable to find connection for big 0xd2 [ 354.718647][T12423] FAULT_INJECTION: forcing a failure. [ 354.718647][T12423] name failslab, interval 1, probability 0, space 0, times 0 [ 354.751673][T12423] CPU: 0 UID: 0 PID: 12423 Comm: syz.3.2255 Tainted: G U L syzkaller #0 PREEMPT(full) [ 354.751721][T12423] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 354.751734][T12423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 354.751752][T12423] Call Trace: [ 354.751762][T12423] [ 354.751774][T12423] dump_stack_lvl+0x100/0x190 [ 354.751824][T12423] should_fail_ex.cold+0x5/0xa [ 354.751858][T12423] should_failslab+0xc2/0x120 [ 354.751887][T12423] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 354.751927][T12423] ? create_new_namespaces+0x30/0xac0 [ 354.751964][T12423] create_new_namespaces+0x30/0xac0 [ 354.752010][T12423] __do_sys_setns+0x213/0x1f30 [ 354.752045][T12423] ? __pfx___do_sys_setns+0x10/0x10 [ 354.752089][T12423] do_syscall_64+0x106/0xf80 [ 354.752121][T12423] ? clear_bhb_loop+0x40/0x90 [ 354.752155][T12423] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 354.752185][T12423] RIP: 0033:0x7feaa319c799 [ 354.752211][T12423] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 354.752240][T12423] RSP: 002b:00007feaa4136028 EFLAGS: 00000246 ORIG_RAX: 0000000000000134 [ 354.752268][T12423] RAX: ffffffffffffffda RBX: 00007feaa3415fa0 RCX: 00007feaa319c799 [ 354.752288][T12423] RDX: 0000000000000000 RSI: 0000000060020000 RDI: 0000000000000004 [ 354.752306][T12423] RBP: 00007feaa3232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 354.752324][T12423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 354.752342][T12423] R13: 00007feaa3416038 R14: 00007feaa3415fa0 R15: 00007ffde90e78d8 [ 354.752381][T12423] [ 357.116965][T12488] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2268'. [ 358.376985][T12522] netlink: 'syz.0.2277': attribute type 19 has an invalid length. [ 358.398522][T12522] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2277'. [ 362.064491][T12614] FAULT_INJECTION: forcing a failure. [ 362.064491][T12614] name failslab, interval 1, probability 0, space 0, times 0 [ 362.078542][T12614] CPU: 1 UID: 0 PID: 12614 Comm: syz.0.2306 Tainted: G U L syzkaller #0 PREEMPT(full) [ 362.078589][T12614] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 362.078601][T12614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 362.078617][T12614] Call Trace: [ 362.078626][T12614] [ 362.078637][T12614] dump_stack_lvl+0x100/0x190 [ 362.078686][T12614] should_fail_ex.cold+0x5/0xa [ 362.078720][T12614] ? trace_parser_get_init+0x30/0xc0 [ 362.078748][T12614] should_failslab+0xc2/0x120 [ 362.078777][T12614] __kmalloc_noprof+0xe0/0x850 [ 362.078824][T12614] trace_parser_get_init+0x30/0xc0 [ 362.078852][T12614] trace_pid_write+0xf3/0x460 [ 362.078895][T12614] ? __pfx_trace_pid_write+0x10/0x10 [ 362.078970][T12614] event_pid_write.isra.0+0x1e4/0x800 [ 362.079019][T12614] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 362.079074][T12614] vfs_write+0x2aa/0x1070 [ 362.079117][T12614] ? __pfx_ftrace_event_npid_write+0x10/0x10 [ 362.079164][T12614] ? __pfx_vfs_write+0x10/0x10 [ 362.079203][T12614] ? __fget_files+0x215/0x3d0 [ 362.079253][T12614] ? __fget_files+0x21f/0x3d0 [ 362.079305][T12614] ksys_write+0x12a/0x250 [ 362.079344][T12614] ? __pfx_ksys_write+0x10/0x10 [ 362.079396][T12614] do_syscall_64+0x106/0xf80 [ 362.079425][T12614] ? clear_bhb_loop+0x40/0x90 [ 362.079460][T12614] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 362.079490][T12614] RIP: 0033:0x7f4c1419c799 [ 362.079513][T12614] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 362.079548][T12614] RSP: 002b:00007f4c15031028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 362.079576][T12614] RAX: ffffffffffffffda RBX: 00007f4c14415fa0 RCX: 00007f4c1419c799 [ 362.079595][T12614] RDX: 00000000000005c8 RSI: 0000000000000000 RDI: 0000000000000003 [ 362.079612][T12614] RBP: 00007f4c14232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 362.079629][T12614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 362.079647][T12614] R13: 00007f4c14416038 R14: 00007f4c14415fa0 R15: 00007ffdd1a85b18 [ 362.079686][T12614] [ 362.662779][T12622] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 363.015952][T12633] netlink: 326 bytes leftover after parsing attributes in process `syz.3.2314'. [ 363.213254][T12639] netlink: 'syz.0.2316': attribute type 21 has an invalid length. [ 363.221584][T12639] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2316'. [ 363.355450][T12643] netlink: 346 bytes leftover after parsing attributes in process `syz.1.2318'. [ 364.951161][T12666] zswap: compressor not available [ 365.057512][T12686] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2333'. [ 365.081755][T12686] netlink: 13 bytes leftover after parsing attributes in process `syz.2.2333'. [ 365.137904][T12690] FAULT_INJECTION: forcing a failure. [ 365.137904][T12690] name failslab, interval 1, probability 0, space 0, times 0 [ 365.164293][T12690] CPU: 0 UID: 0 PID: 12690 Comm: syz.1.2332 Tainted: G U L syzkaller #0 PREEMPT(full) [ 365.164345][T12690] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 365.164357][T12690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 365.164374][T12690] Call Trace: [ 365.164384][T12690] [ 365.164395][T12690] dump_stack_lvl+0x100/0x190 [ 365.164443][T12690] should_fail_ex.cold+0x5/0xa [ 365.164478][T12690] should_failslab+0xc2/0x120 [ 365.164506][T12690] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 365.164552][T12690] ? security_inode_alloc+0x3b/0x2c0 [ 365.164592][T12690] ? lockdep_init_map_type+0x5c/0x250 [ 365.164632][T12690] security_inode_alloc+0x3b/0x2c0 [ 365.164674][T12690] inode_init_always_gfp+0xced/0x1040 [ 365.164721][T12690] alloc_inode+0x8e/0x250 [ 365.164753][T12690] new_inode+0x22/0x1c0 [ 365.164791][T12690] shmem_get_inode+0x212/0x1040 [ 365.164830][T12690] ? __pfx_shmem_get_inode+0x10/0x10 [ 365.164871][T12690] ? map_id_range_up+0x2ce/0x3b0 [ 365.164901][T12690] ? __pfx_make_vfsuid+0x10/0x10 [ 365.164942][T12690] shmem_symlink+0x11b/0xa00 [ 365.164981][T12690] ? generic_permission+0xae/0x800 [ 365.165014][T12690] ? __pfx_shmem_symlink+0x10/0x10 [ 365.165052][T12690] ? security_inode_permission+0xbf/0x250 [ 365.165094][T12690] ? inode_permission+0x374/0x620 [ 365.165126][T12690] ? tomoyo_path_symlink+0x97/0xe0 [ 365.165169][T12690] vfs_symlink+0x178/0x4d0 [ 365.165207][T12690] filename_symlinkat+0x2a6/0x560 [ 365.165241][T12690] ? __pfx_filename_symlinkat+0x10/0x10 [ 365.165272][T12690] ? strncpy_from_user+0x19d/0x2d0 [ 365.165316][T12690] ? do_getname+0x191/0x390 [ 365.165351][T12690] __x64_sys_symlink+0x79/0xb0 [ 365.165382][T12690] do_syscall_64+0x106/0xf80 [ 365.165413][T12690] ? clear_bhb_loop+0x40/0x90 [ 365.165447][T12690] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 365.165476][T12690] RIP: 0033:0x7fe97ab9c799 [ 365.165499][T12690] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 365.165527][T12690] RSP: 002b:00007fe978df6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000058 [ 365.165553][T12690] RAX: ffffffffffffffda RBX: 00007fe97ae16090 RCX: 00007fe97ab9c799 [ 365.165573][T12690] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 365.165589][T12690] RBP: 00007fe97ac32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 365.165606][T12690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 365.165622][T12690] R13: 00007fe97ae16128 R14: 00007fe97ae16090 R15: 00007ffe3d401798 [ 365.165660][T12690] [ 365.601783][T12698] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2335'. [ 365.964401][T12705] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2339'. [ 365.989177][T12705] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2339'. [ 366.354114][ T58] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 366.594255][ T58] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 366.675441][ T51] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 366.695983][ T51] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 366.705548][ T51] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 366.731149][ T51] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 366.739042][ T51] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 366.897677][ T58] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 367.337716][ T58] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 367.687724][ T58] bridge_slave_1: left allmulticast mode [ 367.693605][ T58] bridge_slave_1: left promiscuous mode [ 367.713327][ T58] bridge0: port 2(bridge_slave_1) entered disabled state [ 367.781292][ T58] bridge_slave_0: left allmulticast mode [ 367.796684][ T58] bridge_slave_0: left promiscuous mode [ 367.802481][ T58] bridge0: port 1(bridge_slave_0) entered disabled state [ 368.176968][ T58] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 368.198837][ T58] bond0 (unregistering): Released all slaves [ 368.306432][ T58] : left promiscuous mode [ 368.562505][T12721] chnl_net:caif_netlink_parms(): no params data found [ 368.837250][ T5832] Bluetooth: hci2: command tx timeout [ 369.104866][T12721] bridge0: port 1(bridge_slave_0) entered blocking state [ 369.133510][T12721] bridge0: port 1(bridge_slave_0) entered disabled state [ 369.163412][T12721] bridge_slave_0: entered allmulticast mode [ 369.197823][T12721] bridge_slave_0: entered promiscuous mode [ 369.267076][T12721] bridge0: port 2(bridge_slave_1) entered blocking state [ 369.280612][T12721] bridge0: port 2(bridge_slave_1) entered disabled state [ 369.305053][T12721] bridge_slave_1: entered allmulticast mode [ 369.338950][T12721] bridge_slave_1: entered promiscuous mode [ 369.523672][T12721] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 369.580600][T12721] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 369.874311][T12721] team0: Port device team_slave_0 added [ 369.900582][T12721] team0: Port device team_slave_1 added [ 370.072166][T12721] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 370.107411][T12721] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 370.157253][T12721] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 370.337625][T12721] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 370.344598][T12721] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 370.503617][T12791] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2360'. [ 370.507752][T12721] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 370.934338][ T5832] Bluetooth: hci2: command tx timeout [ 371.371062][T12721] hsr_slave_0: entered promiscuous mode [ 371.386568][T12721] hsr_slave_1: entered promiscuous mode [ 371.394409][T12721] debugfs: 'hsr0' already exists in 'hsr' [ 371.418439][T12721] Cannot create hsr debugfs directory [ 371.873074][ T58] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 371.881443][ T58] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 371.900596][ T58] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 371.908116][ T58] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 372.166669][ T58] veth1_macvtap: left promiscuous mode [ 372.189436][ T58] veth0_macvtap: left promiscuous mode [ 372.220156][ T58] veth1_vlan: left promiscuous mode [ 372.226521][ T58] veth0_vlan: left promiscuous mode [ 372.750069][ T58]  (unregistering): Port device team_slave_1 removed [ 372.822254][ T58]  (unregistering): Port device team_slave_0 removed [ 372.998788][ T5832] Bluetooth: hci2: command tx timeout [ 373.575428][T12721] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 373.605836][T12721] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 373.644911][T12721] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 373.763208][T12721] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 374.034346][T12721] 8021q: adding VLAN 0 to HW filter on device bond0 [ 374.083820][T12721] 8021q: adding VLAN 0 to HW filter on device team0 [ 374.126124][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 374.133340][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 374.175266][ T58] bridge0: port 2(bridge_slave_1) entered blocking state [ 374.182454][ T58] bridge0: port 2(bridge_slave_1) entered forwarding state [ 374.278727][T12721] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 374.695980][T12721] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 375.080418][ T5832] Bluetooth: hci2: command tx timeout [ 375.232774][T12721] veth0_vlan: entered promiscuous mode [ 375.263442][T12721] veth1_vlan: entered promiscuous mode [ 375.333303][T12721] veth0_macvtap: entered promiscuous mode [ 375.373283][T12721] veth1_macvtap: entered promiscuous mode [ 375.403954][T12721] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 375.429024][T12721] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 375.479162][ T13] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 375.517096][ T13] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 375.532099][ T13] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 375.543817][ T13] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 375.656947][ T3498] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 375.680357][ T3498] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 375.745648][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 375.757550][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 376.687409][ T6309] ------------[ cut here ]------------ [ 376.693389][ T6309] ODEBUG: free active (active state 0) object: ffff888034745460 object type: timer_list hint: hci_devcd_timeout+0x0/0x2e0 [ 376.706200][ T6309] WARNING: lib/debugobjects.c:612 at debug_print_object+0x18e/0x2a0, CPU#1: syz.0.155/6309 [ 376.716331][ T6309] Modules linked in: [ 376.720267][ T6309] CPU: 1 UID: 0 PID: 6309 Comm: syz.0.155 Tainted: G U L syzkaller #0 PREEMPT(full) [ 376.731575][ T6309] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 376.736793][ T6309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 376.747243][ T6309] RIP: 0010:debug_print_object+0x19b/0x2a0 [ 376.753111][ T6309] Code: b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 4f 48 8d 3d 52 e3 e8 0b 41 56 48 8b 14 dd 60 02 1b 8c 4c 89 e6 <67> 48 0f b9 3a 58 83 05 0c 87 de 0b 01 48 83 c4 18 5b 5d 41 5c 41 [ 376.773408][ T6309] RSP: 0018:ffffc900057cf708 EFLAGS: 00010246 [ 376.779506][ T6309] RAX: dffffc0000000000 RBX: 0000000000000003 RCX: 0000000000000000 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 376.787900][ T6309] RDX: ffffffff8c1b01a0 RSI: ffffffff8c1afdc0 RDI: ffffffff90e43620 [ 376.796013][ T6309] RBP: 0000000000000001 R08: ffff888034745460 R09: ffffffff8bb2b800 [ 376.804050][ T6309] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8c1afdc0 [ 376.812066][ T6309] R13: ffffffff8bb2b840 R14: ffffffff8a95f2f0 R15: ffffc900057cf808 [ 376.820049][ T6309] FS: 0000000000000000(0000) GS:ffff88812444e000(0000) knlGS:0000000000000000 [ 376.829495][ T6309] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 376.836540][ T6309] CR2: 00007ffdef18db40 CR3: 000000000e598000 CR4: 00000000003526f0 [ 376.844848][ T6309] Call Trace: [ 376.848136][ T6309] [ 376.851104][ T6309] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 376.856595][ T6309] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 376.862787][ T6309] debug_check_no_obj_freed+0x4da/0x630 [ 376.868627][ T6309] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 376.874968][ T6309] ? __page_table_check_zero+0x333/0x410 [ 376.880691][ T6309] ? __page_table_check_zero+0x338/0x410 [ 376.886370][ T6309] __free_frozen_pages+0x392/0x10d0 [ 376.891650][ T6309] hci_release_dev+0x4ef/0x630 [ 376.896447][ T6309] ? __pfx_hci_release_dev+0x10/0x10 [ 376.901790][ T6309] ? device_release+0x69/0x240 [ 376.906569][ T6309] ? rcu_is_watching+0x12/0xc0 [ 376.911409][ T6309] ? device_release+0x69/0x240 [ 376.916187][ T6309] ? kfree+0x2ec/0x6b0 [ 376.920282][ T6309] bt_host_release+0x6a/0xb0 [ 376.925055][ T6309] ? __pfx_bt_host_release+0x10/0x10 [ 376.930365][ T6309] device_release+0xa4/0x240 [ 376.935481][ T6309] kobject_put+0x1f7/0x640 [ 376.939926][ T6309] put_device+0x1f/0x30 [ 376.944447][ T6309] vhci_release+0x185/0x230 [ 376.948987][ T6309] ? __pfx_vhci_release+0x10/0x10 [ 376.954196][ T6309] __fput+0x3ff/0xb40 [ 376.958207][ T6309] task_work_run+0x150/0x240 [ 376.962847][ T6309] ? __pfx_task_work_run+0x10/0x10 [ 376.968333][ T6309] do_exit+0x829/0x2aa0 [ 376.972738][ T6309] ? __pfx_do_exit+0x10/0x10 [ 376.977358][ T6309] ? cgroup_update_frozen_flag+0x107/0x210 [ 376.983235][ T6309] ? find_held_lock+0x2b/0x80 [ 376.987927][ T6309] ? get_signal+0x184f/0x21e0 [ 376.992645][ T6309] do_group_exit+0xd5/0x2a0 [ 376.997170][ T6309] get_signal+0x1ec7/0x21e0 [ 377.001739][ T6309] ? __asan_memset+0x23/0x50 [ 377.006369][ T6309] ? __pfx_get_signal+0x10/0x10 [ 377.011314][ T6309] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 377.016549][ T6309] arch_do_signal_or_restart+0x91/0x770 [ 377.022160][ T6309] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 377.028345][ T6309] ? __x64_sys_clock_nanosleep+0x347/0x480 [ 377.034710][ T6309] exit_to_user_mode_loop+0x86/0x4a0 [ 377.040026][ T6309] do_syscall_64+0x668/0xf80 [ 377.045040][ T6309] ? clear_bhb_loop+0x40/0x90 [ 377.049744][ T6309] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 377.055705][ T6309] RIP: 0033:0x7f4c1415cfce [ 377.060131][ T6309] Code: Unable to access opcode bytes at 0x7f4c1415cfa4. [ 377.067216][ T6309] RSP: 002b:00007f4c15030f58 EFLAGS: 00000246 ORIG_RAX: 00000000000000e6 [ 377.075942][ T6309] RAX: fffffffffffffdfc RBX: 00007f4c150316c0 RCX: 00007f4c1415cfce [ 377.084327][ T6309] RDX: 00007f4c15030fb0 RSI: 0000000000000000 RDI: 0000000000000000 [ 377.092348][ T6309] RBP: 00007f4c14232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 377.100332][ T6309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 377.108366][ T6309] R13: 00007f4c14416038 R14: 00007f4c14415fa0 R15: 00007ffdd1a85b18 [ 377.116464][ T6309] [ 377.119505][ T6309] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 377.126798][ T6309] CPU: 1 UID: 0 PID: 6309 Comm: syz.0.155 Tainted: G U L syzkaller #0 PREEMPT(full) [ 377.137584][ T6309] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 377.142791][ T6309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 377.152853][ T6309] Call Trace: [ 377.156132][ T6309] [ 377.159061][ T6309] dump_stack_lvl+0x100/0x190 [ 377.163756][ T6309] vpanic+0x552/0x970 [ 377.167740][ T6309] ? __pfx_vpanic+0x10/0x10 [ 377.172249][ T6309] panic+0xd1/0xe0 [ 377.175968][ T6309] ? __pfx_panic+0x10/0x10 [ 377.180393][ T6309] ? check_panic_on_warn+0x1f/0x90 [ 377.185526][ T6309] check_panic_on_warn.cold+0x19/0x34 [ 377.190917][ T6309] ? debug_print_object+0x18e/0x2a0 [ 377.196126][ T6309] __warn.cold+0x191/0x348 [ 377.200556][ T6309] __report_bug+0x296/0x3d0 [ 377.205068][ T6309] ? debug_print_object+0x18e/0x2a0 [ 377.210284][ T6309] ? __pfx___report_bug+0x10/0x10 [ 377.215330][ T6309] ? __lock_acquire+0x4a5/0x2630 [ 377.220352][ T6309] ? unwind_next_frame+0x3c8/0x1ea0 [ 377.225573][ T6309] report_bug_entry+0xe1/0x290 [ 377.230356][ T6309] ? debug_print_object+0x19b/0x2a0 [ 377.235570][ T6309] handle_bug+0x1c9/0x2a0 [ 377.239916][ T6309] exc_invalid_op+0x17/0x50 [ 377.244430][ T6309] asm_exc_invalid_op+0x1a/0x20 [ 377.249283][ T6309] RIP: 0010:debug_print_object+0x19b/0x2a0 [ 377.255103][ T6309] Code: b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 4f 48 8d 3d 52 e3 e8 0b 41 56 48 8b 14 dd 60 02 1b 8c 4c 89 e6 <67> 48 0f b9 3a 58 83 05 0c 87 de 0b 01 48 83 c4 18 5b 5d 41 5c 41 [ 377.274711][ T6309] RSP: 0018:ffffc900057cf708 EFLAGS: 00010246 [ 377.280778][ T6309] RAX: dffffc0000000000 RBX: 0000000000000003 RCX: 0000000000000000 [ 377.288744][ T6309] RDX: ffffffff8c1b01a0 RSI: ffffffff8c1afdc0 RDI: ffffffff90e43620 [ 377.296713][ T6309] RBP: 0000000000000001 R08: ffff888034745460 R09: ffffffff8bb2b800 [ 377.304684][ T6309] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8c1afdc0 [ 377.312654][ T6309] R13: ffffffff8bb2b840 R14: ffffffff8a95f2f0 R15: ffffc900057cf808 [ 377.320625][ T6309] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 377.326112][ T6309] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 377.331582][ T6309] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 377.337390][ T6309] debug_check_no_obj_freed+0x4da/0x630 [ 377.342953][ T6309] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 377.349026][ T6309] ? __page_table_check_zero+0x333/0x410 [ 377.354672][ T6309] ? __page_table_check_zero+0x338/0x410 [ 377.360322][ T6309] __free_frozen_pages+0x392/0x10d0 [ 377.365533][ T6309] hci_release_dev+0x4ef/0x630 [ 377.370312][ T6309] ? __pfx_hci_release_dev+0x10/0x10 [ 377.375605][ T6309] ? device_release+0x69/0x240 [ 377.380369][ T6309] ? rcu_is_watching+0x12/0xc0 [ 377.385143][ T6309] ? device_release+0x69/0x240 [ 377.389905][ T6309] ? kfree+0x2ec/0x6b0 [ 377.393978][ T6309] bt_host_release+0x6a/0xb0 [ 377.398574][ T6309] ? __pfx_bt_host_release+0x10/0x10 [ 377.403866][ T6309] device_release+0xa4/0x240 [ 377.408466][ T6309] kobject_put+0x1f7/0x640 [ 377.412893][ T6309] put_device+0x1f/0x30 [ 377.417048][ T6309] vhci_release+0x185/0x230 [ 377.421564][ T6309] ? __pfx_vhci_release+0x10/0x10 [ 377.426616][ T6309] __fput+0x3ff/0xb40 [ 377.430621][ T6309] task_work_run+0x150/0x240 [ 377.435235][ T6309] ? __pfx_task_work_run+0x10/0x10 [ 377.440370][ T6309] do_exit+0x829/0x2aa0 [ 377.444540][ T6309] ? __pfx_do_exit+0x10/0x10 [ 377.449141][ T6309] ? cgroup_update_frozen_flag+0x107/0x210 [ 377.454967][ T6309] ? find_held_lock+0x2b/0x80 [ 377.459646][ T6309] ? get_signal+0x184f/0x21e0 [ 377.464327][ T6309] do_group_exit+0xd5/0x2a0 [ 377.468841][ T6309] get_signal+0x1ec7/0x21e0 [ 377.473342][ T6309] ? __asan_memset+0x23/0x50 [ 377.477944][ T6309] ? __pfx_get_signal+0x10/0x10 [ 377.482798][ T6309] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 377.488004][ T6309] arch_do_signal_or_restart+0x91/0x770 [ 377.493555][ T6309] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 377.499720][ T6309] ? __x64_sys_clock_nanosleep+0x347/0x480 [ 377.505546][ T6309] exit_to_user_mode_loop+0x86/0x4a0 [ 377.510848][ T6309] do_syscall_64+0x668/0xf80 [ 377.515447][ T6309] ? clear_bhb_loop+0x40/0x90 [ 377.520132][ T6309] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 377.526025][ T6309] RIP: 0033:0x7f4c1415cfce [ 377.530433][ T6309] Code: Unable to access opcode bytes at 0x7f4c1415cfa4. [ 377.537440][ T6309] RSP: 002b:00007f4c15030f58 EFLAGS: 00000246 ORIG_RAX: 00000000000000e6 [ 377.545853][ T6309] RAX: fffffffffffffdfc RBX: 00007f4c150316c0 RCX: 00007f4c1415cfce [ 377.553819][ T6309] RDX: 00007f4c15030fb0 RSI: 0000000000000000 RDI: 0000000000000000 [ 377.561786][ T6309] RBP: 00007f4c14232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 377.569750][ T6309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 377.577714][ T6309] R13: 00007f4c14416038 R14: 00007f4c14415fa0 R15: 00007ffdd1a85b18 [ 377.585697][ T6309] [ 377.588840][ T6309] Kernel Offset: disabled [ 377.593155][ T6309] Rebooting in 86400 seconds..