last executing test programs: 35.507886716s ago: executing program 1 (id=10365): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000340), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000380)={'netdevsim0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_FEC_GET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000003c0)={0x20, r1, 0x5, 0x70bd25, 0x25dfdbfd, {}, [@ETHTOOL_A_FEC_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}]}, 0x20}}, 0x4000000) 35.366815438s ago: executing program 1 (id=10368): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = io_uring_setup$auto(0x3ff, 0x0) mmap$auto(0x0, 0x8004008, 0x2000000329, 0x2000000010011, r0, 0x8000) mprotect$auto(0x0, 0x5, 0x8) 35.160823784s ago: executing program 1 (id=10372): memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x5) fallocate$auto(0x3, 0x0, 0xe, 0x8ec5) mmap$auto(0x0, 0xe983, 0x3, 0x6b1, 0xffffffffffffffff, 0x8000) read$auto(0x3, 0x0, 0xfdef) 35.151124573s ago: executing program 0 (id=10373): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio1\x00', 0x1a1b42, 0x0) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000040)) ioctl$auto_SNDCTL_DSP_GETTRIGGER(r0, 0x80045010, &(0x7f0000000140)) write$auto_snd_pcm_oss_f_reg_pcm_oss(r0, 0x0, 0x0) 34.997197552s ago: executing program 1 (id=10376): socket(0x22, 0x1, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r0 = fanotify_init$auto(0x8, 0x2000000000002) fanotify_mark$auto(0x0, 0x451, 0x1, r0, 0x0) 34.87931592s ago: executing program 0 (id=10377): mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_TLV_COMMAND(r0, 0xc008551c, 0x0) 34.878483884s ago: executing program 2 (id=10378): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd14\x00', 0x2, 0x0) modify_ldt$auto(0x1, 0x0, 0x10) sysfs$auto(0x5, 0x9, 0x4) close_range$auto(0x0, 0x5, 0x0) 34.665812136s ago: executing program 1 (id=10380): r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x20904, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000000)={{0x3, 0x1000, 0x1, 0x5, 0x2}, "654c6dbc7a4d30983899a7e1325b6a29ba1e18441074052a3fa6c3ccf1bf00"}) readv$auto(r0, &(0x7f0000000a80)={0x0, 0x100000ffff}, 0x1) ioctl$auto_SNDRV_TIMER_IOCTL_INFO(r0, 0x80e85411, 0x0) 34.614156404s ago: executing program 0 (id=10382): close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x1, 0x0) socket(0x2, 0x1, 0x84) listen$auto(0x3, 0x0) 34.422477289s ago: executing program 1 (id=10383): r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000440)={0x2c, r0, 0x13, 0x4070bd2c, 0x25dfdbdd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r2}, @NL80211_ATTR_WIPHY_TX_POWER_SETTING={0x8, 0x61, 0x2}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x7ff}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24004080}, 0x20040894) 34.38350515s ago: executing program 0 (id=10385): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40342, 0x22) utimensat$auto(r0, &(0x7f0000001c80)='\x00', 0x0, 0x1000) 34.185927567s ago: executing program 3 (id=10386): mmap$auto(0x0, 0x40000b, 0xdf, 0x9b72, 0x2, 0x108000) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) futex$auto(0x0, 0x1, 0x40000006, 0x0, 0x0, 0x80000001) 34.162132387s ago: executing program 0 (id=10387): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x2, 0x4, 0x8201, 0x8, 0x0, 0xc, 0xe3, 0x4e, 0x3}, 0x6f5) bpf$auto(0x1, 0x0, 0xa1f) 34.02659565s ago: executing program 0 (id=10388): r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_CHANGE_NAN_CONFIG(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r0, @ANYBLOB="010025bd7000fedbdf256700000008000300", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0xc1}, 0x90) 33.236140457s ago: executing program 3 (id=10389): socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x0, @rand_addr=0x2}, 0x52) shutdown$auto(0x200000003, 0x2) 33.118103926s ago: executing program 3 (id=10390): openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb0\x00', 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x201, 0x9, 0x200000000000e, 0xf55, 0x2, 0x80000001, 0x15f4da0a, 0x8000000005, 0x9, 0x8, 0x80000001, 0x7, 0x80, 0xc, 0x1, 0x1]}, 0x0) writev$auto(0x3, &(0x7f0000000080)={0x0, 0x300000}, 0x3) 33.036575633s ago: executing program 3 (id=10391): r0 = socket$nl_generic(0x11, 0x3, 0x10) bind$auto(r0, &(0x7f0000000200)=@generic={0x11, "00030f00"}, 0x80) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x5}, 0x5}, 0x3, 0x0) 32.897622348s ago: executing program 3 (id=10392): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x0) setuid$auto(0xe) utimensat$auto(0x2, &(0x7f0000000100)='\x00', 0x0, 0x1000) 32.829763807s ago: executing program 3 (id=10393): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'veth0_to_hsr\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x30, r1, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@ETHTOOL_A_FEATURES_WANTED={0x10, 0x3, 0x0, 0x1, [@nested={0x4, 0x3}, @typed={0x8, 0x4, 0x0, 0x0, @pid}]}, @ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x24004840}, 0x4000000) 21.349770095s ago: executing program 2 (id=10394): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/v4l-touch4\x00', 0x200, 0x0) ioctl$auto(r1, 0xc008561b, r0) 21.28824391s ago: executing program 2 (id=10395): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/power/wakeup_active_count\x00', 0x0, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x6) 21.227605269s ago: executing program 2 (id=10396): mmap$auto(0x0, 0xe97f, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x45, 0x0) r0 = fsopen$auto(0x0, 0x1) close_range$auto(r0, 0x8, 0x0) 21.140835141s ago: executing program 2 (id=10397): mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) mremap$auto(0x4000, 0x4, 0x13fd7, 0x3, 0xfffff000) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) 21.003520383s ago: executing program 2 (id=10398): openat$auto_safesetid_gid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000000), 0x2c0302, 0x0) r0 = socket(0x11, 0x2, 0x6) capset$auto(0x0, &(0x7f0000000000)={0xa82, 0x3a, 0x4001}) sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000), 0x1aa, &(0x7f0000000100)={&(0x7f00000003c0), 0x49}, 0x5, &(0x7f0000000180), 0x5, 0x1000}, 0x5}, 0x2, 0x100) 18.95302421s ago: executing program 32 (id=10388): r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_CHANGE_NAN_CONFIG(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r0, @ANYBLOB="010025bd7000fedbdf256700000008000300", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0xc1}, 0x90) 18.8450614s ago: executing program 33 (id=10383): r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000440)={0x2c, r0, 0x13, 0x4070bd2c, 0x25dfdbdd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r2}, @NL80211_ATTR_WIPHY_TX_POWER_SETTING={0x8, 0x61, 0x2}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x7ff}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24004080}, 0x20040894) 101.896924ms ago: executing program 34 (id=10393): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'veth0_to_hsr\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x30, r1, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@ETHTOOL_A_FEATURES_WANTED={0x10, 0x3, 0x0, 0x1, [@nested={0x4, 0x3}, @typed={0x8, 0x4, 0x0, 0x0, @pid}]}, @ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x24004840}, 0x4000000) 0s ago: executing program 35 (id=10398): openat$auto_safesetid_gid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000000), 0x2c0302, 0x0) r0 = socket(0x11, 0x2, 0x6) capset$auto(0x0, &(0x7f0000000000)={0xa82, 0x3a, 0x4001}) sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000), 0x1aa, &(0x7f0000000100)={&(0x7f00000003c0), 0x49}, 0x5, &(0x7f0000000180), 0x5, 0x1000}, 0x5}, 0x2, 0x100) kernel console output (not intermixed with test programs): 7][T26348] R13: 00007fcc95be6038 R14: 00007fcc95be5fa0 R15: 00007ffd3417e268 [ 582.659902][T26348] [ 582.659914][T26348] memory: usage 3072kB, limit 3072kB, failcnt 33928 [ 582.731283][T26357] FAULT_INJECTION: forcing a failure. [ 582.731283][T26357] name failslab, interval 1, probability 0, space 0, times 0 [ 582.764073][T26348] memory+swap: usage 3360kB, limit 9007199254740988kB, failcnt 0 [ 582.817886][T26357] CPU: 1 UID: 0 PID: 26357 Comm: syz.2.9500 Tainted: G U L syzkaller #0 PREEMPT(full) [ 582.817938][T26357] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 582.817949][T26357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 582.817966][T26357] Call Trace: [ 582.817975][T26357] [ 582.817986][T26357] dump_stack_lvl+0x16c/0x1f0 [ 582.818024][T26357] should_fail_ex+0x512/0x640 [ 582.818065][T26357] ? fs_reclaim_acquire+0xae/0x150 [ 582.818111][T26357] should_failslab+0xc2/0x120 [ 582.818150][T26357] kmem_cache_alloc_noprof+0x83/0x770 [ 582.818180][T26357] ? __pfx_map_id_range_down+0x10/0x10 [ 582.818218][T26357] ? security_inode_alloc+0x3b/0x2b0 [ 582.818263][T26357] ? security_inode_alloc+0x3b/0x2b0 [ 582.818300][T26357] security_inode_alloc+0x3b/0x2b0 [ 582.818340][T26357] inode_init_always_gfp+0xced/0x1040 [ 582.818384][T26357] alloc_inode+0x86/0x240 [ 582.818413][T26357] path_from_stashed+0x25b/0x750 [ 582.818461][T26357] ? alloc_fd+0x471/0x7d0 [ 582.818505][T26357] pidfs_alloc_file+0xf8/0x290 [ 582.818544][T26357] ? __pfx_pidfs_alloc_file+0x10/0x10 [ 582.818588][T26357] ? _raw_spin_unlock_irq+0x23/0x50 [ 582.818622][T26357] pidfd_prepare+0x129/0x200 [ 582.818665][T26357] __x64_sys_pidfd_open+0x105/0x1a0 [ 582.818695][T26357] ? __pfx___x64_sys_pidfd_open+0x10/0x10 [ 582.818728][T26357] ? rcu_is_watching+0x12/0xc0 [ 582.818768][T26357] do_syscall_64+0xcd/0xf80 [ 582.818802][T26357] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 582.818830][T26357] RIP: 0033:0x7f9d7798f7c9 [ 582.818853][T26357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 582.818878][T26357] RSP: 002b:00007f9d78754038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b2 [ 582.818905][T26357] RAX: ffffffffffffffda RBX: 00007f9d77be5fa0 RCX: 00007f9d7798f7c9 [ 582.818924][T26357] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 582.818940][T26357] RBP: 00007f9d77a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 582.818956][T26357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 582.818973][T26357] R13: 00007f9d77be6038 R14: 00007f9d77be5fa0 R15: 00007ffc1464ab18 [ 582.819010][T26357] [ 583.248886][T26348] kmem: usage 1284kB, limit 9007199254740988kB, failcnt 0 [ 583.288664][T26348] Memory cgroup stats for /syz1: [ 583.288880][T26348] cache 0 [ 583.310956][T26348] rss 1830912 [ 583.314322][T26348] rss_huge 0 [ 583.317566][T26348] shmem 0 [ 583.349026][T26348] mapped_file 0 [ 583.352657][T26348] dirty 0 [ 583.355679][T26348] writeback 0 [ 583.378612][T26348] workingset_refault_anon 2062 [ 583.383485][T26348] workingset_refault_file 4768 [ 583.417644][T26348] swap 294912 [ 583.430189][T26348] swapcached 0 [ 583.433728][T26348] pgpgin 182349 [ 583.456749][T26348] pgpgout 185946 [ 583.481273][T26348] pgfault 284627 [ 583.484916][T26348] pgmajfault 1057 [ 583.507349][T26348] inactive_anon 0 [ 583.511066][T26348] active_anon 1830912 [ 583.515082][T26348] inactive_file 0 [ 583.537992][T26348] active_file 0 [ 583.546943][T26348] unevictable 0 [ 583.554779][T26348] hierarchical_memory_limit 3145728 [ 583.568889][T26348] hierarchical_memsw_limit 9223372036854771712 [ 583.581800][T26348] total_cache 0 [ 583.585430][T26348] total_rss 1830912 [ 583.616438][T26348] total_rss_huge 0 [ 583.626833][T26348] total_shmem 0 [ 583.630360][T26348] total_mapped_file 0 [ 583.634384][T26348] total_dirty 0 [ 583.666096][T26348] total_writeback 0 [ 583.670135][T26348] total_workingset_refault_anon 2062 [ 583.675554][T26348] total_workingset_refault_file 4768 [ 583.697239][T26372] zswap: compressor not available [ 583.705894][T26348] total_swap 294912 [ 583.709822][T26348] total_swapcached 0 [ 583.713804][T26348] total_pgpgin 182349 [ 583.732436][T26348] total_pgpgout 185946 [ 583.740011][T26348] total_pgfault 284627 [ 583.756271][T26348] total_pgmajfault 1057 [ 583.760515][T26348] total_inactive_anon 0 [ 583.764700][T26348] total_active_anon 1830912 [ 583.792429][T26348] total_inactive_file 0 [ 583.810482][T26348] total_active_file 0 [ 583.814581][T26348] total_unevictable 0 [ 583.850010][T26348] anon_cost 10 [ 583.853455][T26348] file_cost 0 [ 583.865035][T26348] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.9496,pid=26346,uid=0 [ 583.914886][T26348] Memory cgroup out of memory: Killed process 26346 (syz.1.9496) total-vm:106132kB, anon-rss:2804kB, file-rss:22444kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:0 [ 584.329538][T26411] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9520'. [ 584.395008][T26411] D: entered promiscuous mode [ 585.159620][T26447] Invalid ELF header len 5 [ 585.607055][T26451] syz.1.9530 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 585.635497][T26451] CPU: 0 UID: 0 PID: 26451 Comm: syz.1.9530 Tainted: G U L syzkaller #0 PREEMPT(full) [ 585.635548][T26451] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 585.635559][T26451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 585.635576][T26451] Call Trace: [ 585.635587][T26451] [ 585.635599][T26451] dump_stack_lvl+0x16c/0x1f0 [ 585.635643][T26451] dump_header+0x101/0x960 [ 585.635680][T26451] oom_kill_process+0x176/0x910 [ 585.635727][T26451] out_of_memory+0x350/0x1700 [ 585.635758][T26451] ? __lock_acquire+0x436/0x2890 [ 585.635796][T26451] ? __pfx_out_of_memory+0x10/0x10 [ 585.635841][T26451] mem_cgroup_out_of_memory+0x118/0x130 [ 585.635876][T26451] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 585.635920][T26451] ? do_raw_spin_unlock+0x172/0x230 [ 585.635961][T26451] try_charge_memcg+0x695/0xd30 [ 585.636025][T26451] ? __pfx_try_charge_memcg+0x10/0x10 [ 585.636080][T26451] ? find_held_lock+0x2b/0x80 [ 585.636125][T26451] charge_memcg+0x8a/0x230 [ 585.636169][T26451] mem_cgroup_swapin_charge_folio+0xeb/0x470 [ 585.636204][T26451] __read_swap_cache_async+0x397/0x500 [ 585.636245][T26451] ? __pfx___read_swap_cache_async+0x10/0x10 [ 585.636282][T26451] ? finish_task_switch.isra.0+0x202/0xbd0 [ 585.636328][T26451] ? rcu_is_watching+0x12/0xc0 [ 585.636368][T26451] ? finish_task_switch.isra.0+0x207/0xbd0 [ 585.636407][T26451] ? lockdep_hardirqs_on+0x7c/0x110 [ 585.636448][T26451] swap_cluster_readahead+0x528/0x770 [ 585.636486][T26451] ? __schedule+0x114c/0x6150 [ 585.636521][T26451] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 585.636564][T26451] ? __lock_acquire+0x436/0x2890 [ 585.636612][T26451] ? get_vma_policy+0x242/0x3c0 [ 585.636662][T26451] swapin_readahead+0x160/0x1220 [ 585.636721][T26451] ? __pfx_swapin_readahead+0x10/0x10 [ 585.636758][T26451] ? find_held_lock+0x2b/0x80 [ 585.636793][T26451] ? swap_cache_get_folio+0x267/0x8e0 [ 585.636834][T26451] ? swap_cache_get_folio+0x267/0x8e0 [ 585.636872][T26451] ? swap_cache_get_folio+0x267/0x8e0 [ 585.636910][T26451] ? swap_cache_get_folio+0x267/0x8e0 [ 585.636951][T26451] ? swap_cache_get_folio+0x293/0x8e0 [ 585.636990][T26451] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 585.637020][T26451] ? __pfx_get_swap_device+0x10/0x10 [ 585.637060][T26451] ? rcu_read_unlock+0x2d/0xb0 [ 585.637100][T26451] ? do_swap_page+0x962/0x64a0 [ 585.637134][T26451] do_swap_page+0x962/0x64a0 [ 585.637172][T26451] ? __lock_acquire+0x436/0x2890 [ 585.637212][T26451] ? __pfx_do_swap_page+0x10/0x10 [ 585.637246][T26451] ? __pfx_default_wake_function+0x10/0x10 [ 585.637300][T26451] ? rcu_is_watching+0x12/0xc0 [ 585.637347][T26451] ? ___pte_offset_map+0x175/0x380 [ 585.637394][T26451] __handle_mm_fault+0x19cb/0x2bb0 [ 585.637433][T26451] ? reacquire_held_locks+0xcd/0x1f0 [ 585.637469][T26451] ? __pfx___handle_mm_fault+0x10/0x10 [ 585.637505][T26451] ? lock_vma_under_rcu+0x176/0x580 [ 585.637549][T26451] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 585.637600][T26451] handle_mm_fault+0x3fe/0xad0 [ 585.637639][T26451] do_user_addr_fault+0x60c/0x1370 [ 585.637679][T26451] ? rcu_is_watching+0x12/0xc0 [ 585.637731][T26451] exc_page_fault+0x64/0xc0 [ 585.637766][T26451] asm_exc_page_fault+0x26/0x30 [ 585.637795][T26451] RIP: 0033:0x7fcc95865a7e [ 585.637820][T26451] Code: 0c 85 c0 74 e7 48 89 df 48 81 c3 f0 00 00 00 e8 28 c4 ff ff 48 39 eb 75 df 0f 1f 00 8b 05 36 23 38 00 85 c0 0f 8e a3 fd ff ff 5d 97 fe ff 49 39 c4 73 a0 48 8d 1d 11 05 38 00 83 3d 16 23 38 [ 585.637849][T26451] RSP: 002b:00007ffd3417e3d0 EFLAGS: 00010202 [ 585.637874][T26451] RAX: 0000000000000001 RBX: 00007fcc95be7da0 RCX: 0000000000000000 [ 585.637894][T26451] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555564c3b808 [ 585.637911][T26451] RBP: 00007fcc95be7da0 R08: 0000000000000000 R09: 00007fcc9689e000 [ 585.637929][T26451] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000008fac6 [ 585.637948][T26451] R13: 00007ffd3417e4c0 R14: ffffffffffffffff R15: 00007ffd3417e4e0 [ 585.637991][T26451] [ 586.080143][T26451] memory: usage 3072kB, limit 3072kB, failcnt 34124 [ 586.111979][T26451] memory+swap: usage 3276kB, limit 9007199254740988kB, failcnt 0 [ 586.133437][T26451] kmem: usage 3052kB, limit 9007199254740988kB, failcnt 0 [ 586.149334][T26451] Memory cgroup stats for /syz1: [ 586.149558][T26451] cache 0 [ 586.177495][T26451] rss 0 [ 586.180323][T26451] rss_huge 0 [ 586.210344][T26451] shmem 0 [ 586.233080][T26451] mapped_file 0 [ 586.236768][T26451] dirty 0 [ 586.239749][T26451] writeback 0 [ 586.248147][T26451] workingset_refault_anon 2118 [ 586.270133][T26451] workingset_refault_file 4768 [ 586.290759][T26451] swap 208896 [ 586.322355][T26451] swapcached 0 [ 586.325828][T26451] pgpgin 182515 [ 586.329404][T26451] pgpgout 186559 [ 586.362168][T26451] pgfault 285059 [ 586.365787][T26451] pgmajfault 1092 [ 586.369484][T26451] inactive_anon 0 [ 586.408872][T26451] active_anon 0 [ 586.412895][T26451] inactive_file 0 [ 586.416563][T26451] active_file 0 [ 586.420054][T26451] unevictable 0 [ 586.461613][T26451] hierarchical_memory_limit 3145728 [ 586.481606][T26451] hierarchical_memsw_limit 9223372036854771712 [ 586.498073][T26451] total_cache 0 [ 586.500680][T26471] netlink: Unknown conntrack attr (0) [ 586.511710][T26451] total_rss 0 [ 586.521259][T26451] total_rss_huge 0 [ 586.528757][T26451] total_shmem 0 [ 586.533530][T26451] total_mapped_file 0 [ 586.574500][T26451] total_dirty 0 [ 586.578164][T26451] total_writeback 0 [ 586.583047][T26451] total_workingset_refault_anon 2118 [ 586.588615][T26451] total_workingset_refault_file 4768 [ 586.610783][T26451] total_swap 208896 [ 586.614787][T26451] total_swapcached 0 [ 586.619323][T26451] total_pgpgin 182515 [ 586.631312][T26473] netlink: 112 bytes leftover after parsing attributes in process `syz.2.9540'. [ 586.638639][T26451] total_pgpgout 186559 [ 586.658138][T26451] total_pgfault 285059 [ 586.664655][T26451] total_pgmajfault 1092 [ 586.679053][T26451] total_inactive_anon 0 [ 586.690348][T26451] total_active_anon 0 [ 586.710522][T26451] total_inactive_file 0 [ 586.714761][T26451] total_active_file 0 [ 586.718929][T26451] total_unevictable 0 [ 586.733179][T26451] anon_cost 18 [ 586.736616][T26451] file_cost 0 [ 586.760447][T26451] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.9530,pid=26451,uid=0 [ 586.789936][T26451] Memory cgroup out of memory: Killed process 26451 (syz.1.9530) total-vm:104080kB, anon-rss:1140kB, file-rss:22700kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:0 [ 586.831314][T26479] FAULT_INJECTION: forcing a failure. [ 586.831314][T26479] name failslab, interval 1, probability 0, space 0, times 0 [ 586.860087][T26479] CPU: 1 UID: 0 PID: 26479 Comm: syz.0.9542 Tainted: G U L syzkaller #0 PREEMPT(full) [ 586.860139][T26479] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 586.860149][T26479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 586.860165][T26479] Call Trace: [ 586.860174][T26479] [ 586.860184][T26479] dump_stack_lvl+0x16c/0x1f0 [ 586.860224][T26479] should_fail_ex+0x512/0x640 [ 586.860266][T26479] ? fs_reclaim_acquire+0xae/0x150 [ 586.860312][T26479] should_failslab+0xc2/0x120 [ 586.860355][T26479] kmem_cache_alloc_noprof+0x83/0x770 [ 586.860386][T26479] ? __pfx_map_id_range_down+0x10/0x10 [ 586.860427][T26479] ? security_inode_alloc+0x3b/0x2b0 [ 586.860476][T26479] ? security_inode_alloc+0x3b/0x2b0 [ 586.860518][T26479] security_inode_alloc+0x3b/0x2b0 [ 586.860563][T26479] inode_init_always_gfp+0xced/0x1040 [ 586.860623][T26479] alloc_inode+0x86/0x240 [ 586.860658][T26479] path_from_stashed+0x25b/0x750 [ 586.860711][T26479] ? alloc_fd+0x471/0x7d0 [ 586.860759][T26479] pidfs_alloc_file+0xf8/0x290 [ 586.860801][T26479] ? __pfx_pidfs_alloc_file+0x10/0x10 [ 586.860848][T26479] ? _raw_spin_unlock_irq+0x23/0x50 [ 586.860885][T26479] pidfd_prepare+0x129/0x200 [ 586.860935][T26479] __x64_sys_pidfd_open+0x105/0x1a0 [ 586.860969][T26479] ? __pfx___x64_sys_pidfd_open+0x10/0x10 [ 586.861005][T26479] ? rcu_is_watching+0x12/0xc0 [ 586.861051][T26479] do_syscall_64+0xcd/0xf80 [ 586.861091][T26479] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 586.861131][T26479] RIP: 0033:0x7f1dd0f8f7c9 [ 586.861157][T26479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 586.861188][T26479] RSP: 002b:00007f1dcf1f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b2 [ 586.861219][T26479] RAX: ffffffffffffffda RBX: 00007f1dd11e5fa0 RCX: 00007f1dd0f8f7c9 [ 586.861241][T26479] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 586.861267][T26479] RBP: 00007f1dd1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 586.861285][T26479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 586.861303][T26479] R13: 00007f1dd11e6038 R14: 00007f1dd11e5fa0 R15: 00007fffe9ee6a38 [ 586.861346][T26479] [ 588.099376][T26513] syz.1.9558 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 588.127975][T26513] CPU: 0 UID: 0 PID: 26513 Comm: syz.1.9558 Tainted: G U L syzkaller #0 PREEMPT(full) [ 588.128033][T26513] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 588.128045][T26513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 588.128063][T26513] Call Trace: [ 588.128073][T26513] [ 588.128085][T26513] dump_stack_lvl+0x16c/0x1f0 [ 588.128127][T26513] dump_header+0x101/0x960 [ 588.128165][T26513] oom_kill_process+0x176/0x910 [ 588.128200][T26513] out_of_memory+0x350/0x1700 [ 588.128232][T26513] ? __lock_acquire+0x436/0x2890 [ 588.128266][T26513] ? __pfx_out_of_memory+0x10/0x10 [ 588.128310][T26513] mem_cgroup_out_of_memory+0x118/0x130 [ 588.128342][T26513] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 588.128385][T26513] ? do_raw_spin_unlock+0x172/0x230 [ 588.128433][T26513] try_charge_memcg+0x695/0xd30 [ 588.128487][T26513] ? __pfx_try_charge_memcg+0x10/0x10 [ 588.128532][T26513] ? __print_lock_name+0x61/0xe0 [ 588.128573][T26513] ? rcu_read_unlock+0x17/0x60 [ 588.128630][T26513] charge_memcg+0x8a/0x230 [ 588.128676][T26513] __mem_cgroup_charge+0x2b/0x1e0 [ 588.128704][T26513] do_anonymous_page+0xca9/0x2190 [ 588.128750][T26513] __handle_mm_fault+0x1ecf/0x2bb0 [ 588.128795][T26513] ? __pfx___handle_mm_fault+0x10/0x10 [ 588.128829][T26513] ? __pte_offset_map_lock+0x174/0x310 [ 588.128872][T26513] ? find_held_lock+0x2b/0x80 [ 588.128923][T26513] ? follow_page_pte+0x5cf/0x1390 [ 588.128977][T26513] handle_mm_fault+0x3fe/0xad0 [ 588.129017][T26513] __get_user_pages+0x54e/0x3590 [ 588.129078][T26513] ? __pfx___get_user_pages+0x10/0x10 [ 588.129135][T26513] populate_vma_page_range+0x267/0x3f0 [ 588.129191][T26513] ? __pfx_populate_vma_page_range+0x10/0x10 [ 588.129236][T26513] ? __pfx_find_vma_intersection+0x10/0x10 [ 588.129281][T26513] ? do_mmap+0x69c/0x1210 [ 588.129326][T26513] __mm_populate+0x1d8/0x380 [ 588.129370][T26513] ? __pfx___mm_populate+0x10/0x10 [ 588.129417][T26513] ? up_write+0x282/0x4e0 [ 588.129461][T26513] vm_mmap_pgoff+0x37f/0x470 [ 588.129507][T26513] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 588.129546][T26513] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 588.129586][T26513] ? count_memcg_events+0x122/0x290 [ 588.129633][T26513] ? find_held_lock+0x2b/0x80 [ 588.129676][T26513] ksys_mmap_pgoff+0x7d/0x5c0 [ 588.129726][T26513] __x64_sys_mmap+0x125/0x190 [ 588.129763][T26513] do_syscall_64+0xcd/0xf80 [ 588.129802][T26513] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 588.129834][T26513] RIP: 0033:0x7fcc9598f7c9 [ 588.129861][T26513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 588.129892][T26513] RSP: 002b:00007fcc9689d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 588.129923][T26513] RAX: ffffffffffffffda RBX: 00007fcc95be5fa0 RCX: 00007fcc9598f7c9 [ 588.129944][T26513] RDX: 00000000000000df RSI: 0000000000400005 RDI: 0000000000000000 [ 588.129963][T26513] RBP: 00007fcc95a13f91 R08: 0000000000000002 R09: 0000000000008000 [ 588.129981][T26513] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 588.129999][T26513] R13: 00007fcc95be6038 R14: 00007fcc95be5fa0 R15: 00007ffd3417e268 [ 588.130040][T26513] [ 588.130053][T26513] memory: usage 3072kB, limit 3072kB, failcnt 34295 [ 588.482963][T26513] memory+swap: usage 3184kB, limit 9007199254740988kB, failcnt 0 [ 588.490981][T26513] kmem: usage 1368kB, limit 9007199254740988kB, failcnt 0 [ 588.511435][T26513] Memory cgroup stats for /syz1: [ 588.511656][T26513] cache 0 [ 588.520177][T26513] rss 1744896 [ 588.524830][T26513] rss_huge 0 [ 588.528094][T26513] shmem 0 [ 588.531141][T26513] mapped_file 0 [ 588.534632][T26513] dirty 0 [ 588.537601][T26513] writeback 0 [ 588.543935][T26513] workingset_refault_anon 2150 [ 588.548752][T26513] workingset_refault_file 4768 [ 588.553669][T26513] swap 114688 [ 588.557089][T26513] swapcached 4096 [ 588.560837][T26513] pgpgin 183159 [ 588.564327][T26513] pgpgout 186777 [ 588.567908][T26513] pgfault 285961 [ 588.574457][T26513] pgmajfault 1110 [ 588.578134][T26513] inactive_anon 0 [ 588.583152][T26513] active_anon 1744896 [ 588.587295][T26513] inactive_file 0 [ 588.592267][T26513] active_file 0 [ 588.595779][T26513] unevictable 0 [ 588.599272][T26513] hierarchical_memory_limit 3145728 [ 588.604626][T26513] hierarchical_memsw_limit 9223372036854771712 [ 588.611436][T26513] total_cache 0 [ 588.615131][T26513] total_rss 1744896 [ 588.618976][T26513] total_rss_huge 0 [ 588.622855][T26513] total_shmem 0 [ 588.626359][T26513] total_mapped_file 0 [ 588.630559][T26513] total_dirty 0 [ 588.634053][T26513] total_writeback 0 [ 588.637996][T26513] total_workingset_refault_anon 2150 [ 588.646520][T26513] total_workingset_refault_file 4768 [ 588.659916][T26513] total_swap 114688 [ 588.663870][T26513] total_swapcached 4096 [ 588.668060][T26513] total_pgpgin 183159 [ 588.672135][T26513] total_pgpgout 186777 [ 588.676235][T26513] total_pgfault 285961 [ 588.682697][T26513] total_pgmajfault 1110 [ 588.686918][T26513] total_inactive_anon 0 [ 588.698309][T26513] total_active_anon 1744896 [ 588.704227][T26513] total_inactive_file 0 [ 588.708438][T26513] total_active_file 0 [ 588.719564][T26513] total_unevictable 0 [ 588.739726][T26513] anon_cost 21 [ 588.743175][T26513] file_cost 0 [ 588.749320][T26513] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.9558,pid=26512,uid=0 [ 588.769603][T26513] Memory cgroup out of memory: Killed process 26512 (syz.1.9558) total-vm:108180kB, anon-rss:2804kB, file-rss:21540kB, shmem-rss:0kB, UID:0 pgtables:112kB oom_score_adj:0 [ 589.676970][T26549] syz.1.9576 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 589.711929][T26549] CPU: 1 UID: 0 PID: 26549 Comm: syz.1.9576 Tainted: G U L syzkaller #0 PREEMPT(full) [ 589.711987][T26549] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 589.712000][T26549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 589.712018][T26549] Call Trace: [ 589.712029][T26549] [ 589.712041][T26549] dump_stack_lvl+0x16c/0x1f0 [ 589.712086][T26549] dump_header+0x101/0x960 [ 589.712126][T26549] oom_kill_process+0x176/0x910 [ 589.712167][T26549] out_of_memory+0x350/0x1700 [ 589.712204][T26549] ? __lock_acquire+0x436/0x2890 [ 589.712241][T26549] ? __pfx_out_of_memory+0x10/0x10 [ 589.712289][T26549] mem_cgroup_out_of_memory+0x118/0x130 [ 589.712328][T26549] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 589.712376][T26549] ? do_raw_spin_unlock+0x172/0x230 [ 589.712431][T26549] try_charge_memcg+0x695/0xd30 [ 589.712490][T26549] ? __pfx_try_charge_memcg+0x10/0x10 [ 589.712539][T26549] ? __print_lock_name+0x61/0xe0 [ 589.712583][T26549] ? rcu_read_unlock+0x17/0x60 [ 589.712643][T26549] charge_memcg+0x8a/0x230 [ 589.712691][T26549] __mem_cgroup_charge+0x2b/0x1e0 [ 589.712726][T26549] do_anonymous_page+0xca9/0x2190 [ 589.712775][T26549] __handle_mm_fault+0x1ecf/0x2bb0 [ 589.712822][T26549] ? __pfx___handle_mm_fault+0x10/0x10 [ 589.712858][T26549] ? __pte_offset_map_lock+0x174/0x310 [ 589.712904][T26549] ? find_held_lock+0x2b/0x80 [ 589.712958][T26549] ? follow_page_pte+0x5cf/0x1390 [ 589.713015][T26549] handle_mm_fault+0x3fe/0xad0 [ 589.713058][T26549] __get_user_pages+0x54e/0x3590 [ 589.713123][T26549] ? __pfx___get_user_pages+0x10/0x10 [ 589.713184][T26549] populate_vma_page_range+0x267/0x3f0 [ 589.713237][T26549] ? __pfx_populate_vma_page_range+0x10/0x10 [ 589.713286][T26549] ? __pfx_find_vma_intersection+0x10/0x10 [ 589.713335][T26549] ? do_mmap+0x69c/0x1210 [ 589.713385][T26549] __mm_populate+0x1d8/0x380 [ 589.713444][T26549] ? __pfx___mm_populate+0x10/0x10 [ 589.713497][T26549] ? up_write+0x282/0x4e0 [ 589.713536][T26549] vm_mmap_pgoff+0x37f/0x470 [ 589.713586][T26549] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 589.713630][T26549] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 589.713672][T26549] ? count_memcg_events+0x122/0x290 [ 589.713721][T26549] ? find_held_lock+0x2b/0x80 [ 589.713769][T26549] ksys_mmap_pgoff+0x7d/0x5c0 [ 589.713823][T26549] __x64_sys_mmap+0x125/0x190 [ 589.713861][T26549] do_syscall_64+0xcd/0xf80 [ 589.713904][T26549] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 589.713937][T26549] RIP: 0033:0x7fcc9598f7c9 [ 589.713963][T26549] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 589.713994][T26549] RSP: 002b:00007fcc9689d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 589.714026][T26549] RAX: ffffffffffffffda RBX: 00007fcc95be5fa0 RCX: 00007fcc9598f7c9 [ 589.714048][T26549] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 589.714067][T26549] RBP: 00007fcc95a13f91 R08: 0000000000000002 R09: 0000000000008000 [ 589.714086][T26549] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 589.714105][T26549] R13: 00007fcc95be6038 R14: 00007fcc95be5fa0 R15: 00007ffd3417e268 [ 589.714150][T26549] [ 589.714162][T26549] memory: usage 3072kB, limit 3072kB, failcnt 34844 [ 590.053025][T26549] memory+swap: usage 5036kB, limit 9007199254740988kB, failcnt 0 [ 590.078060][T26549] kmem: usage 1292kB, limit 9007199254740988kB, failcnt 0 [ 590.095948][T26549] Memory cgroup stats for /syz1: [ 590.096179][T26549] cache 0 [ 590.123045][T26549] rss 1822720 [ 590.126414][T26549] rss_huge 0 [ 590.136801][T26549] shmem 0 [ 590.139890][T26549] mapped_file 0 [ 590.155457][T26549] dirty 0 [ 590.162570][T26549] writeback 0 [ 590.168648][T26549] workingset_refault_anon 2167 [ 590.191840][T26549] workingset_refault_file 4768 [ 590.205699][T26549] swap 2011136 [ 590.209154][T26549] swapcached 4096 [ 590.225497][T26549] pgpgin 184132 [ 590.229032][T26549] pgpgout 187731 [ 590.242319][T26549] pgfault 287033 [ 590.250134][T26549] pgmajfault 1121 [ 590.260720][T26549] inactive_anon 0 [ 590.270860][T26549] active_anon 1822720 [ 590.293669][T26549] inactive_file 0 [ 590.297386][T26549] active_file 0 [ 590.300973][T26549] unevictable 0 [ 590.322741][T26549] hierarchical_memory_limit 3145728 [ 590.328196][T26549] hierarchical_memsw_limit 9223372036854771712 [ 590.350907][T26549] total_cache 0 [ 590.361072][T26549] total_rss 1822720 [ 590.371740][T26549] total_rss_huge 0 [ 590.381197][T26549] total_shmem 0 [ 590.391174][T26549] total_mapped_file 0 [ 590.395240][T26549] total_dirty 0 [ 590.411094][T26549] total_writeback 0 [ 590.415181][T26549] total_workingset_refault_anon 2167 [ 590.420502][T26549] total_workingset_refault_file 4768 [ 590.440931][T26549] total_swap 2011136 [ 590.444908][T26549] total_swapcached 4096 [ 590.449103][T26549] total_pgpgin 184132 [ 590.460958][T26549] total_pgpgout 187731 [ 590.465107][T26549] total_pgfault 287033 [ 590.469354][T26549] total_pgmajfault 1121 [ 590.490128][T26549] total_inactive_anon 0 [ 590.503551][T26549] total_active_anon 1822720 [ 590.508136][T26549] total_inactive_file 0 [ 590.522693][T26549] total_active_file 0 [ 590.531258][T26549] total_unevictable 0 [ 590.540438][T26549] anon_cost 82 [ 590.543860][T26549] file_cost 0 [ 590.558126][T26549] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.9576,pid=26548,uid=0 [ 590.591768][T26549] Memory cgroup out of memory: Killed process 26548 (syz.1.9576) total-vm:108180kB, anon-rss:2804kB, file-rss:21540kB, shmem-rss:0kB, UID:0 pgtables:116kB oom_score_adj:0 [ 593.516912][T26675] netlink: 16 bytes leftover after parsing attributes in process `syz.1.9636'. [ 593.821586][T26685] bridge0: port 3(gretap0) entered blocking state [ 593.867732][T26685] bridge0: port 3(gretap0) entered disabled state [ 593.886317][T26685] gretap0: entered allmulticast mode [ 593.920779][T26685] gretap0: entered promiscuous mode [ 593.937463][T26685] bridge0: port 3(gretap0) entered blocking state [ 593.944569][T26685] bridge0: port 3(gretap0) entered forwarding state [ 594.744283][T26707] syz.1.9653 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 594.763612][T26707] CPU: 1 UID: 0 PID: 26707 Comm: syz.1.9653 Tainted: G U L syzkaller #0 PREEMPT(full) [ 594.763669][T26707] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 594.763681][T26707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 594.763700][T26707] Call Trace: [ 594.763711][T26707] [ 594.763724][T26707] dump_stack_lvl+0x16c/0x1f0 [ 594.763770][T26707] dump_header+0x101/0x960 [ 594.763811][T26707] oom_kill_process+0x176/0x910 [ 594.763850][T26707] out_of_memory+0x350/0x1700 [ 594.763884][T26707] ? __lock_acquire+0x436/0x2890 [ 594.763920][T26707] ? __pfx_out_of_memory+0x10/0x10 [ 594.763968][T26707] mem_cgroup_out_of_memory+0x118/0x130 [ 594.764005][T26707] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 594.764052][T26707] ? do_raw_spin_unlock+0x172/0x230 [ 594.764097][T26707] try_charge_memcg+0x695/0xd30 [ 594.764155][T26707] ? __pfx_try_charge_memcg+0x10/0x10 [ 594.764203][T26707] ? __print_lock_name+0x61/0xe0 [ 594.764255][T26707] ? rcu_read_unlock+0x17/0x60 [ 594.764316][T26707] charge_memcg+0x8a/0x230 [ 594.764364][T26707] __mem_cgroup_charge+0x2b/0x1e0 [ 594.764399][T26707] do_anonymous_page+0xca9/0x2190 [ 594.764449][T26707] __handle_mm_fault+0x1ecf/0x2bb0 [ 594.764494][T26707] ? __pfx___handle_mm_fault+0x10/0x10 [ 594.764530][T26707] ? __pte_offset_map_lock+0x174/0x310 [ 594.764575][T26707] ? find_held_lock+0x2b/0x80 [ 594.764629][T26707] ? follow_page_pte+0x5cf/0x1390 [ 594.764684][T26707] handle_mm_fault+0x3fe/0xad0 [ 594.764725][T26707] __get_user_pages+0x54e/0x3590 [ 594.764786][T26707] ? __pfx___get_user_pages+0x10/0x10 [ 594.764841][T26707] populate_vma_page_range+0x267/0x3f0 [ 594.764892][T26707] ? __pfx_populate_vma_page_range+0x10/0x10 [ 594.764938][T26707] ? __pfx_find_vma_intersection+0x10/0x10 [ 594.764985][T26707] ? do_mmap+0x69c/0x1210 [ 594.765035][T26707] __mm_populate+0x1d8/0x380 [ 594.765085][T26707] ? __pfx___mm_populate+0x10/0x10 [ 594.765137][T26707] ? up_write+0x282/0x4e0 [ 594.765175][T26707] vm_mmap_pgoff+0x37f/0x470 [ 594.765225][T26707] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 594.765278][T26707] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 594.765321][T26707] ? count_memcg_events+0x122/0x290 [ 594.765369][T26707] ? find_held_lock+0x2b/0x80 [ 594.765416][T26707] ksys_mmap_pgoff+0x7d/0x5c0 [ 594.765469][T26707] __x64_sys_mmap+0x125/0x190 [ 594.765505][T26707] do_syscall_64+0xcd/0xf80 [ 594.765546][T26707] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 594.765577][T26707] RIP: 0033:0x7fcc9598f7c9 [ 594.765603][T26707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 594.765633][T26707] RSP: 002b:00007fcc9689d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 594.765664][T26707] RAX: ffffffffffffffda RBX: 00007fcc95be5fa0 RCX: 00007fcc9598f7c9 [ 594.765684][T26707] RDX: 00000000000000df RSI: 0000000000400009 RDI: 0000000000000000 [ 594.765702][T26707] RBP: 00007fcc95a13f91 R08: 8000000000000003 R09: 0000000000008000 [ 594.765720][T26707] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 594.765738][T26707] R13: 00007fcc95be6038 R14: 00007fcc95be5fa0 R15: 00007ffd3417e268 [ 594.765779][T26707] [ 594.765789][T26707] memory: usage 3072kB, limit 3072kB, failcnt 35579 [ 595.106979][T26707] memory+swap: usage 3272kB, limit 9007199254740988kB, failcnt 0 [ 595.136558][T26707] kmem: usage 1432kB, limit 9007199254740988kB, failcnt 0 [ 595.143750][T26707] Memory cgroup stats for /syz1: [ 595.143977][T26707] cache 0 [ 595.191771][T26707] rss 1679360 [ 595.195130][T26707] rss_huge 0 [ 595.199034][T26707] shmem 0 [ 595.202016][T26707] mapped_file 0 [ 595.205504][T26707] dirty 0 [ 595.209145][T26707] writeback 0 [ 595.212474][T26707] workingset_refault_anon 2216 [ 595.218002][T26707] workingset_refault_file 4768 [ 595.222804][T26707] swap 204800 [ 595.236346][T26707] swapcached 0 [ 595.239799][T26707] pgpgin 186310 [ 595.243307][T26707] pgpgout 189944 [ 595.275363][T26707] pgfault 290583 [ 595.279619][T26707] pgmajfault 1140 [ 595.283396][T26707] inactive_anon 73728 [ 595.288019][T26707] active_anon 1605632 [ 595.292043][T26707] inactive_file 0 [ 595.301642][T26707] active_file 0 [ 595.305156][T26707] unevictable 0 [ 595.309182][T26707] hierarchical_memory_limit 3145728 [ 595.314527][T26707] hierarchical_memsw_limit 9223372036854771712 [ 595.324631][T26707] total_cache 0 [ 595.333604][T26707] total_rss 1679360 [ 595.342350][T26707] total_rss_huge 0 [ 595.347319][T26707] total_shmem 0 [ 595.350923][T26707] total_mapped_file 0 [ 595.354951][T26707] total_dirty 0 [ 595.365669][T26707] total_writeback 0 [ 595.371761][T26707] total_workingset_refault_anon 2216 [ 595.377263][T26707] total_workingset_refault_file 4768 [ 595.395003][T26707] total_swap 204800 [ 595.399369][T26707] total_swapcached 0 [ 595.403293][T26707] total_pgpgin 186310 [ 595.412714][T26707] total_pgpgout 189944 [ 595.417355][T26707] total_pgfault 290583 [ 595.421575][T26707] total_pgmajfault 1140 [ 595.431762][T26707] total_inactive_anon 73728 [ 595.437075][T26707] total_active_anon 1605632 [ 595.441609][T26707] total_inactive_file 0 [ 595.464619][T26707] total_active_file 0 [ 595.473124][T26707] total_unevictable 0 [ 595.481138][T26707] anon_cost 37 [ 595.494573][T26707] file_cost 0 [ 595.497933][T26707] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.9653,pid=26706,uid=0 [ 595.524868][T26707] Memory cgroup out of memory: Killed process 26706 (syz.1.9653) total-vm:108180kB, anon-rss:2676kB, file-rss:21540kB, shmem-rss:0kB, UID:0 pgtables:112kB oom_score_adj:0 [ 595.950396][ T5830] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 595.992491][ T5830] CPU: 1 UID: 0 PID: 5830 Comm: syz-executor Tainted: G U L syzkaller #0 PREEMPT(full) [ 595.992544][ T5830] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 595.992565][ T5830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 595.992582][ T5830] Call Trace: [ 595.992591][ T5830] [ 595.992603][ T5830] dump_stack_lvl+0x16c/0x1f0 [ 595.992645][ T5830] dump_header+0x101/0x960 [ 595.992681][ T5830] oom_kill_process+0x176/0x910 [ 595.992719][ T5830] out_of_memory+0x350/0x1700 [ 595.992750][ T5830] ? __lock_acquire+0x436/0x2890 [ 595.992782][ T5830] ? __pfx_out_of_memory+0x10/0x10 [ 595.992824][ T5830] mem_cgroup_out_of_memory+0x118/0x130 [ 595.992860][ T5830] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 595.992904][ T5830] ? do_raw_spin_unlock+0x172/0x230 [ 595.992946][ T5830] try_charge_memcg+0x695/0xd30 [ 595.993000][ T5830] ? __pfx_try_charge_memcg+0x10/0x10 [ 595.993056][ T5830] ? find_held_lock+0x2b/0x80 [ 595.993101][ T5830] charge_memcg+0x8a/0x230 [ 595.993146][ T5830] mem_cgroup_swapin_charge_folio+0xeb/0x470 [ 595.993183][ T5830] __read_swap_cache_async+0x397/0x500 [ 595.993225][ T5830] ? __pfx___read_swap_cache_async+0x10/0x10 [ 595.993280][ T5830] swap_cluster_readahead+0x528/0x770 [ 595.993326][ T5830] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 595.993367][ T5830] ? __lock_acquire+0x436/0x2890 [ 595.993416][ T5830] ? get_vma_policy+0x242/0x3c0 [ 595.993467][ T5830] swapin_readahead+0x160/0x1220 [ 595.993520][ T5830] ? __pfx_swapin_readahead+0x10/0x10 [ 595.993567][ T5830] ? find_held_lock+0x2b/0x80 [ 595.993602][ T5830] ? swap_cache_get_folio+0x267/0x8e0 [ 595.993635][ T5830] ? swap_cache_get_folio+0x267/0x8e0 [ 595.993666][ T5830] ? swap_cache_get_folio+0x267/0x8e0 [ 595.993704][ T5830] ? swap_cache_get_folio+0x267/0x8e0 [ 595.993737][ T5830] ? swap_cache_get_folio+0x293/0x8e0 [ 595.993773][ T5830] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 595.993805][ T5830] ? __pfx_get_swap_device+0x10/0x10 [ 595.993847][ T5830] ? rcu_read_unlock+0x2d/0xb0 [ 595.993895][ T5830] ? do_swap_page+0x962/0x64a0 [ 595.993922][ T5830] do_swap_page+0x962/0x64a0 [ 595.993958][ T5830] ? __lock_acquire+0x436/0x2890 [ 595.993998][ T5830] ? __pfx_do_swap_page+0x10/0x10 [ 595.994034][ T5830] ? __pfx_default_wake_function+0x10/0x10 [ 595.994079][ T5830] ? rcu_is_watching+0x12/0xc0 [ 595.994119][ T5830] ? __free_object+0x286/0x410 [ 595.994158][ T5830] ? rcu_is_watching+0x12/0xc0 [ 595.994199][ T5830] ? ___pte_offset_map+0x175/0x380 [ 595.994246][ T5830] __handle_mm_fault+0x19cb/0x2bb0 [ 595.994284][ T5830] ? reacquire_held_locks+0xcd/0x1f0 [ 595.994314][ T5830] ? __pfx___handle_mm_fault+0x10/0x10 [ 595.994351][ T5830] ? lock_vma_under_rcu+0x176/0x580 [ 595.994397][ T5830] ? get_timespec64+0x136/0x1b0 [ 595.994437][ T5830] handle_mm_fault+0x3fe/0xad0 [ 595.994477][ T5830] do_user_addr_fault+0x60c/0x1370 [ 595.994518][ T5830] ? rcu_is_watching+0x12/0xc0 [ 595.994572][ T5830] exc_page_fault+0x64/0xc0 [ 595.994610][ T5830] asm_exc_page_fault+0x26/0x30 [ 595.994638][ T5830] RIP: 0033:0x7fcc959b75f0 [ 595.994663][ T5830] Code: 48 8b 3c 25 00 03 00 00 e8 1d 13 00 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 83 e7 02 74 0b c3 66 2e 0f 1f 84 00 00 00 00 00 <64> 48 8b 04 25 10 00 00 00 8b 90 08 03 00 00 48 8d b8 08 03 00 00 [ 595.994693][ T5830] RSP: 002b:00007ffd3417e578 EFLAGS: 00010246 [ 595.994717][ T5830] RAX: 0000000000000000 RBX: 0000000000001212 RCX: 00007fcc959c2085 [ 595.994738][ T5830] RDX: 00007ffd3417e5c0 RSI: 0000000000000000 RDI: 0000000000000000 [ 595.994757][ T5830] RBP: 00007ffd3417e62c R08: 0000000000000000 R09: 0000000000000000 [ 595.994775][ T5830] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000001388 [ 595.994794][ T5830] R13: 00000000000927c0 R14: 000000000009206b R15: 00007ffd3417e680 [ 595.994838][ T5830] [ 595.994944][ T5830] memory: usage 3072kB, limit 3072kB, failcnt 35721 [ 596.382463][ T5830] memory+swap: usage 3468kB, limit 9007199254740988kB, failcnt 0 [ 596.409889][ T5830] kmem: usage 1468kB, limit 9007199254740988kB, failcnt 0 [ 596.429664][ T5830] Memory cgroup stats for /syz1: [ 596.429886][ T5830] cache 0 [ 596.469497][ T5830] rss 1642496 [ 596.472924][ T5830] rss_huge 0 [ 596.487474][ T5830] shmem 0 [ 596.493948][ T5830] mapped_file 0 [ 596.497468][ T5830] dirty 0 [ 596.500599][ T30] audit: type=1800 audit(4295032926.563:31): pid=26756 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.9673" name="dbroot" dev="configfs" ino=74791 res=0 errno=0 [ 596.539205][ T5830] writeback 0 [ 596.549358][ T5830] workingset_refault_anon 2232 [ 596.554330][T12782] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 596.554366][T12782] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 596.577596][T12782] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 596.577680][T12782] Bluetooth: hci1: Malformed LE Event: 0x0d [ 596.593791][ T5830] workingset_refault_file 4768 [ 596.598604][ T5830] swap 405504 [ 596.607031][ T5830] swapcached 0 [ 596.611407][ T5830] pgpgin 186781 [ 596.615063][ T5830] pgpgout 190424 [ 596.619541][ T5830] pgfault 291084 [ 596.623205][ T5830] pgmajfault 1151 [ 596.626987][ T5830] inactive_anon 0 [ 596.634892][ T5830] active_anon 1642496 [ 596.639114][ T5830] inactive_file 0 [ 596.642808][ T5830] active_file 0 [ 596.646472][ T5830] unevictable 0 [ 596.650789][ T5830] hierarchical_memory_limit 3145728 [ 596.657021][ T5830] hierarchical_memsw_limit 9223372036854771712 [ 596.664735][ T5830] total_cache 0 [ 596.668232][ T5830] total_rss 1642496 [ 596.672561][ T5830] total_rss_huge 0 [ 596.676325][ T5830] total_shmem 0 [ 596.685213][ T5830] total_mapped_file 0 [ 596.689983][ T5830] total_dirty 0 [ 596.695605][ T5830] total_writeback 0 [ 596.700449][ T5830] total_workingset_refault_anon 2232 [ 596.705781][ T5830] total_workingset_refault_file 4768 [ 596.712061][ T5830] total_swap 405504 [ 596.715991][ T5830] total_swapcached 0 [ 596.728291][ T5830] total_pgpgin 186781 [ 596.732333][ T5830] total_pgpgout 190424 [ 596.736432][ T5830] total_pgfault 291084 [ 596.741232][ T5830] total_pgmajfault 1151 [ 596.745466][ T5830] total_inactive_anon 0 [ 596.751312][ T5830] total_active_anon 1642496 [ 596.755858][ T5830] total_inactive_file 0 [ 596.760923][ T5830] total_active_file 0 [ 596.764957][ T5830] total_unevictable 0 [ 596.775902][ T5830] anon_cost 43 [ 596.779497][ T5830] file_cost 0 [ 596.783369][ T5830] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.9668,pid=26740,uid=0 [ 596.814571][ T5830] Memory cgroup out of memory: Killed process 26740 (syz.1.9668) total-vm:108180kB, anon-rss:2548kB, file-rss:21540kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:0 [ 597.278552][T26780] FAULT_INJECTION: forcing a failure. [ 597.278552][T26780] name failslab, interval 1, probability 0, space 0, times 0 [ 597.303023][T26780] CPU: 0 UID: 0 PID: 26780 Comm: syz.2.9685 Tainted: G U L syzkaller #0 PREEMPT(full) [ 597.303082][T26780] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 597.303094][T26780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 597.303112][T26780] Call Trace: [ 597.303122][T26780] [ 597.303134][T26780] dump_stack_lvl+0x16c/0x1f0 [ 597.303178][T26780] should_fail_ex+0x512/0x640 [ 597.303225][T26780] ? __kmalloc_node_noprof+0xcd/0x930 [ 597.303272][T26780] should_failslab+0xc2/0x120 [ 597.303319][T26780] __kmalloc_node_noprof+0xee/0x930 [ 597.303359][T26780] ? lockdep_init_map_type+0x5c/0x270 [ 597.303390][T26780] ? blk_mq_alloc_tag_set+0x46f/0x12e0 [ 597.303431][T26780] ? blk_mq_alloc_tag_set+0x46f/0x12e0 [ 597.303463][T26780] blk_mq_alloc_tag_set+0x46f/0x12e0 [ 597.303497][T26780] ? __pfx_idr_alloc+0x10/0x10 [ 597.303580][T26780] loop_add+0x3b2/0xb70 [ 597.303623][T26780] ? __pfx_loop_add+0x10/0x10 [ 597.303685][T26780] ? find_held_lock+0x2b/0x80 [ 597.303728][T26780] loop_control_ioctl+0x13e/0x630 [ 597.303773][T26780] ? __pfx_loop_control_ioctl+0x10/0x10 [ 597.303821][T26780] ? __pfx_loop_control_ioctl+0x10/0x10 [ 597.303865][T26780] __x64_sys_ioctl+0x18e/0x210 [ 597.303907][T26780] do_syscall_64+0xcd/0xf80 [ 597.303949][T26780] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 597.303991][T26780] RIP: 0033:0x7f9d7798f7c9 [ 597.304018][T26780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 597.304048][T26780] RSP: 002b:00007f9d78754038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 597.304079][T26780] RAX: ffffffffffffffda RBX: 00007f9d77be5fa0 RCX: 00007f9d7798f7c9 [ 597.304101][T26780] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000003 [ 597.304122][T26780] RBP: 00007f9d77a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 597.304142][T26780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 597.304161][T26780] R13: 00007f9d77be6038 R14: 00007f9d77be5fa0 R15: 00007ffc1464ab18 [ 597.304204][T26780] [ 597.869032][T26793] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input29 [ 598.777074][T26841] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9709'. [ 599.166956][T26862] random: crng reseeded on system resumption [ 599.240950][T26862] hub 1-0:1.0: USB hub found [ 599.253459][T26862] hub 1-0:1.0: 1 port detected [ 599.280993][T26868] Restarting kernel threads ... [ 599.315454][T26868] Done restarting kernel threads. [ 599.349866][T12782] Bluetooth: hci1: unknown advertising packet type: 0xea [ 599.458373][T26876] netlink: 29 bytes leftover after parsing attributes in process `syz.2.9724'. [ 600.022402][T26905] FAULT_INJECTION: forcing a failure. [ 600.022402][T26905] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 600.048946][T26905] CPU: 1 UID: 0 PID: 26905 Comm: syz.3.9735 Tainted: G U L syzkaller #0 PREEMPT(full) [ 600.049001][T26905] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 600.049014][T26905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 600.049031][T26905] Call Trace: [ 600.049042][T26905] [ 600.049054][T26905] dump_stack_lvl+0x16c/0x1f0 [ 600.049099][T26905] should_fail_ex+0x512/0x640 [ 600.049155][T26905] _copy_from_user+0x2e/0xd0 [ 600.049203][T26905] get_itimerspec64+0x15b/0x2d0 [ 600.049238][T26905] ? __pfx_get_itimerspec64+0x10/0x10 [ 600.049272][T26905] ? _copy_from_user+0x59/0xd0 [ 600.049327][T26905] __x64_sys_timerfd_settime+0x15f/0x280 [ 600.049370][T26905] ? __pfx___x64_sys_timerfd_settime+0x10/0x10 [ 600.049433][T26905] do_syscall_64+0xcd/0xf80 [ 600.049475][T26905] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 600.049515][T26905] RIP: 0033:0x7f63aab8f7c9 [ 600.049540][T26905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 600.049570][T26905] RSP: 002b:00007f63abae0038 EFLAGS: 00000246 ORIG_RAX: 000000000000011e [ 600.049601][T26905] RAX: ffffffffffffffda RBX: 00007f63aade5fa0 RCX: 00007f63aab8f7c9 [ 600.049622][T26905] RDX: 0000200000000000 RSI: 0000000000000008 RDI: ffffffffffffffff [ 600.049642][T26905] RBP: 00007f63aac13f91 R08: 0000000000000000 R09: 0000000000000000 [ 600.049662][T26905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 600.049680][T26905] R13: 00007f63aade6038 R14: 00007f63aade5fa0 R15: 00007ffe3c940b48 [ 600.049723][T26905] [ 600.352433][T26919] __vm_enough_memory: pid: 26919, comm: syz.0.9743, bytes: 4398046511104 not enough memory for the allocation [ 600.773131][T26935] random: crng reseeded on system resumption [ 600.806483][T26935] hub 1-0:1.0: USB hub found [ 600.823531][T26935] hub 1-0:1.0: 1 port detected [ 600.848179][T26935] Restarting kernel threads ... [ 600.857222][T26935] Done restarting kernel threads. [ 601.713881][T26976] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9767'. [ 601.767197][T12782] Bluetooth: hci2: Malformed HCI Event [ 602.204677][T27000] UHID_CREATE from different security context by process 5189 (syz.2.9779), this is not allowed. [ 603.871130][T27050] syz.1.9802 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 603.891013][T27050] CPU: 1 UID: 0 PID: 27050 Comm: syz.1.9802 Tainted: G U L syzkaller #0 PREEMPT(full) [ 603.891070][T27050] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 603.891082][T27050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 603.891101][T27050] Call Trace: [ 603.891111][T27050] [ 603.891123][T27050] dump_stack_lvl+0x16c/0x1f0 [ 603.891167][T27050] dump_header+0x101/0x960 [ 603.891215][T27050] oom_kill_process+0x176/0x910 [ 603.891254][T27050] out_of_memory+0x350/0x1700 [ 603.891288][T27050] ? __lock_acquire+0x436/0x2890 [ 603.891324][T27050] ? __pfx_out_of_memory+0x10/0x10 [ 603.891372][T27050] mem_cgroup_out_of_memory+0x118/0x130 [ 603.891410][T27050] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 603.891454][T27050] ? do_raw_spin_unlock+0x172/0x230 [ 603.891498][T27050] try_charge_memcg+0x695/0xd30 [ 603.891554][T27050] ? __pfx_try_charge_memcg+0x10/0x10 [ 603.891601][T27050] ? __print_lock_name+0x61/0xe0 [ 603.891643][T27050] ? rcu_read_unlock+0x17/0x60 [ 603.891704][T27050] charge_memcg+0x8a/0x230 [ 603.891750][T27050] __mem_cgroup_charge+0x2b/0x1e0 [ 603.891784][T27050] do_anonymous_page+0xca9/0x2190 [ 603.891832][T27050] __handle_mm_fault+0x1ecf/0x2bb0 [ 603.891876][T27050] ? __pfx___handle_mm_fault+0x10/0x10 [ 603.891911][T27050] ? __pte_offset_map_lock+0x174/0x310 [ 603.891956][T27050] ? find_held_lock+0x2b/0x80 [ 603.892009][T27050] ? follow_page_pte+0x5cf/0x1390 [ 603.892066][T27050] handle_mm_fault+0x3fe/0xad0 [ 603.892107][T27050] __get_user_pages+0x54e/0x3590 [ 603.892172][T27050] ? __pfx___get_user_pages+0x10/0x10 [ 603.892240][T27050] populate_vma_page_range+0x267/0x3f0 [ 603.892292][T27050] ? __pfx_populate_vma_page_range+0x10/0x10 [ 603.892341][T27050] ? __pfx_find_vma_intersection+0x10/0x10 [ 603.892391][T27050] ? do_mmap+0x69c/0x1210 [ 603.892439][T27050] __mm_populate+0x1d8/0x380 [ 603.892489][T27050] ? __pfx___mm_populate+0x10/0x10 [ 603.892539][T27050] ? up_write+0x282/0x4e0 [ 603.892578][T27050] vm_mmap_pgoff+0x37f/0x470 [ 603.892628][T27050] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 603.892667][T27050] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 603.892706][T27050] ? count_memcg_events+0x122/0x290 [ 603.892751][T27050] ? find_held_lock+0x2b/0x80 [ 603.892794][T27050] ksys_mmap_pgoff+0x7d/0x5c0 [ 603.892842][T27050] __x64_sys_mmap+0x125/0x190 [ 603.892877][T27050] do_syscall_64+0xcd/0xf80 [ 603.892915][T27050] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 603.892944][T27050] RIP: 0033:0x7fcc9598f7c9 [ 603.892969][T27050] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 603.892998][T27050] RSP: 002b:00007fcc9689d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 603.893026][T27050] RAX: ffffffffffffffda RBX: 00007fcc95be5fa0 RCX: 00007fcc9598f7c9 [ 603.893047][T27050] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 603.893065][T27050] RBP: 00007fcc95a13f91 R08: 0000000000000002 R09: 0000000000008000 [ 603.893082][T27050] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 603.893100][T27050] R13: 00007fcc95be6038 R14: 00007fcc95be5fa0 R15: 00007ffd3417e268 [ 603.893143][T27050] [ 603.955693][T27014] kexec: Could not allocate control_code_buffer [ 603.958474][T27050] memory: usage 3072kB, limit 3072kB, failcnt 36637 [ 604.234649][T27050] memory+swap: usage 3404kB, limit 9007199254740988kB, failcnt 0 [ 604.257807][T27050] kmem: usage 1436kB, limit 9007199254740988kB, failcnt 0 [ 604.279567][T27050] Memory cgroup stats for /syz1: [ 604.279781][T27050] cache 0 [ 604.300649][T27050] rss 1675264 [ 604.304065][T27050] rss_huge 0 [ 604.307298][T27050] shmem 0 [ 604.319970][T27050] mapped_file 0 [ 604.333993][T27050] dirty 0 [ 604.337620][T27050] writeback 0 [ 604.341453][T27050] workingset_refault_anon 2278 [ 604.346355][T27050] workingset_refault_file 4768 [ 604.351754][T27050] swap 339968 [ 604.355077][T27050] swapcached 0 [ 604.379114][T27050] pgpgin 189443 [ 604.383547][T27050] pgpgout 193078 [ 604.387754][T27050] pgfault 295873 [ 604.394796][T27050] pgmajfault 1174 [ 604.399038][T27050] inactive_anon 0 [ 604.402702][T27050] active_anon 1634304 [ 604.406962][T27050] inactive_file 0 [ 604.412816][T27050] active_file 0 [ 604.416375][T27050] unevictable 0 [ 604.420674][T27050] hierarchical_memory_limit 3145728 [ 604.426001][T27050] hierarchical_memsw_limit 9223372036854771712 [ 604.435060][T27050] total_cache 0 [ 604.445657][T27050] total_rss 1675264 [ 604.455776][T27050] total_rss_huge 0 [ 604.465938][T27050] total_shmem 0 [ 604.472024][T27050] total_mapped_file 0 [ 604.476242][T27050] total_dirty 0 [ 604.483803][T27050] total_writeback 0 [ 604.488316][T27050] total_workingset_refault_anon 2278 [ 604.493726][T27050] total_workingset_refault_file 4768 [ 604.499636][T27050] total_swap 339968 [ 604.503485][T27050] total_swapcached 0 [ 604.507422][T27050] total_pgpgin 189443 [ 604.527744][T27050] total_pgpgout 193078 [ 604.533191][T27050] total_pgfault 295873 [ 604.539802][T27050] total_pgmajfault 1174 [ 604.547594][T27050] total_inactive_anon 0 [ 604.554339][T27050] total_active_anon 1634304 [ 604.564475][T27050] total_inactive_file 0 [ 604.573974][T27050] total_active_file 0 [ 604.580615][T27050] total_unevictable 0 [ 604.584938][T27050] anon_cost 12 [ 604.592921][T27050] file_cost 0 [ 604.596265][T27050] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.9802,pid=27049,uid=0 [ 604.611439][T27050] Memory cgroup out of memory: Killed process 27049 (syz.1.9802) total-vm:108180kB, anon-rss:2680kB, file-rss:21376kB, shmem-rss:0kB, UID:0 pgtables:112kB oom_score_adj:0 [ 605.649958][T27112] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9831'. [ 605.758432][ T30] audit: type=1804 audit(4295032935.901:32): pid=27118 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.9834" name="/newroot/2554/file0" dev="tmpfs" ino=12874 res=1 errno=0 [ 606.566489][T27141] syz.1.9843 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 606.578487][T27141] CPU: 0 UID: 0 PID: 27141 Comm: syz.1.9843 Tainted: G U L syzkaller #0 PREEMPT(full) [ 606.578544][T27141] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 606.578557][T27141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 606.578576][T27141] Call Trace: [ 606.578586][T27141] [ 606.578598][T27141] dump_stack_lvl+0x16c/0x1f0 [ 606.578643][T27141] dump_header+0x101/0x960 [ 606.578684][T27141] oom_kill_process+0x176/0x910 [ 606.578722][T27141] out_of_memory+0x350/0x1700 [ 606.578756][T27141] ? __lock_acquire+0x436/0x2890 [ 606.578791][T27141] ? __pfx_out_of_memory+0x10/0x10 [ 606.578838][T27141] mem_cgroup_out_of_memory+0x118/0x130 [ 606.578875][T27141] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 606.578923][T27141] ? do_raw_spin_unlock+0x172/0x230 [ 606.578968][T27141] try_charge_memcg+0x695/0xd30 [ 606.579024][T27141] ? __pfx_try_charge_memcg+0x10/0x10 [ 606.579072][T27141] ? __print_lock_name+0x61/0xe0 [ 606.579122][T27141] ? rcu_read_unlock+0x17/0x60 [ 606.579184][T27141] charge_memcg+0x8a/0x230 [ 606.579233][T27141] __mem_cgroup_charge+0x2b/0x1e0 [ 606.579267][T27141] do_anonymous_page+0xca9/0x2190 [ 606.579311][T27141] __handle_mm_fault+0x1ecf/0x2bb0 [ 606.579355][T27141] ? __pfx___handle_mm_fault+0x10/0x10 [ 606.579387][T27141] ? __pte_offset_map_lock+0x174/0x310 [ 606.579430][T27141] ? find_held_lock+0x2b/0x80 [ 606.579480][T27141] ? follow_page_pte+0x5cf/0x1390 [ 606.579537][T27141] handle_mm_fault+0x3fe/0xad0 [ 606.579575][T27141] __get_user_pages+0x54e/0x3590 [ 606.579634][T27141] ? __pfx___get_user_pages+0x10/0x10 [ 606.579693][T27141] populate_vma_page_range+0x267/0x3f0 [ 606.579744][T27141] ? __pfx_populate_vma_page_range+0x10/0x10 [ 606.579791][T27141] ? __pfx_find_vma_intersection+0x10/0x10 [ 606.579838][T27141] ? do_mmap+0x69c/0x1210 [ 606.579883][T27141] __mm_populate+0x1d8/0x380 [ 606.579932][T27141] ? __pfx___mm_populate+0x10/0x10 [ 606.579992][T27141] ? up_write+0x282/0x4e0 [ 606.580031][T27141] vm_mmap_pgoff+0x37f/0x470 [ 606.580078][T27141] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 606.580127][T27141] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 606.580171][T27141] ? count_memcg_events+0x122/0x290 [ 606.580220][T27141] ? find_held_lock+0x2b/0x80 [ 606.580266][T27141] ksys_mmap_pgoff+0x7d/0x5c0 [ 606.580318][T27141] __x64_sys_mmap+0x125/0x190 [ 606.580357][T27141] do_syscall_64+0xcd/0xf80 [ 606.580398][T27141] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 606.580431][T27141] RIP: 0033:0x7fcc9598f7c9 [ 606.580458][T27141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 606.580488][T27141] RSP: 002b:00007fcc9689d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 606.580519][T27141] RAX: ffffffffffffffda RBX: 00007fcc95be5fa0 RCX: 00007fcc9598f7c9 [ 606.580538][T27141] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 606.580555][T27141] RBP: 00007fcc95a13f91 R08: ffffffffffffffff R09: 0000000000000000 [ 606.580574][T27141] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 606.580593][T27141] R13: 00007fcc95be6038 R14: 00007fcc95be5fa0 R15: 00007ffd3417e268 [ 606.580638][T27141] [ 606.580741][T27141] memory: usage 3072kB, limit 3072kB, failcnt 36919 [ 606.934462][T27141] memory+swap: usage 4404kB, limit 9007199254740988kB, failcnt 0 [ 606.942345][T27141] kmem: usage 1472kB, limit 9007199254740988kB, failcnt 0 [ 606.950785][T27141] Memory cgroup stats for /syz1: [ 606.951013][T27141] cache 0 [ 606.959153][T27141] rss 1638400 [ 606.962476][T27141] rss_huge 0 [ 606.967046][T27141] shmem 0 [ 606.970127][T27141] mapped_file 0 [ 606.973610][T27141] dirty 0 [ 606.977114][T27141] writeback 0 [ 606.983316][T27141] workingset_refault_anon 2291 [ 606.988225][T27141] workingset_refault_file 4768 [ 606.993027][T27141] swap 1363968 [ 606.996497][T27141] swapcached 0 [ 606.999897][T27141] pgpgin 190405 [ 607.004237][T27141] pgpgout 194049 [ 607.007937][T27141] pgfault 297446 [ 607.011601][T27141] pgmajfault 1186 [ 607.015476][T27141] inactive_anon 16384 [ 607.020122][T27141] active_anon 1622016 [ 607.024146][T27141] inactive_file 0 [ 607.028109][T27141] active_file 0 [ 607.031600][T27141] unevictable 0 [ 607.044551][T27141] hierarchical_memory_limit 3145728 [ 607.049826][T27141] hierarchical_memsw_limit 9223372036854771712 [ 607.064469][T27141] total_cache 0 [ 607.068025][T27141] total_rss 1638400 [ 607.071865][T27141] total_rss_huge 0 [ 607.075676][T27141] total_shmem 0 [ 607.079171][T27141] total_mapped_file 0 [ 607.094245][T27141] total_dirty 0 [ 607.097777][T27141] total_writeback 0 [ 607.101630][T27141] total_workingset_refault_anon 2291 [ 607.107768][T27141] total_workingset_refault_file 4768 [ 607.113108][T27141] total_swap 1363968 [ 607.121376][T27141] total_swapcached 0 [ 607.134216][T27141] total_pgpgin 190405 [ 607.138270][T27141] total_pgpgout 194049 [ 607.142549][T27141] total_pgfault 297446 [ 607.167020][T27141] total_pgmajfault 1186 [ 607.171357][T27141] total_inactive_anon 16384 [ 607.176077][T27141] total_active_anon 1622016 [ 607.180707][T27141] total_inactive_file 0 [ 607.187301][T27141] total_active_file 0 [ 607.191471][T27141] total_unevictable 0 [ 607.205688][T27141] anon_cost 137 [ 607.209231][T27141] file_cost 0 [ 607.212547][T27141] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.9843,pid=27140,uid=0 [ 607.241785][T27141] Memory cgroup out of memory: Killed process 27140 (syz.1.9843) total-vm:108180kB, anon-rss:2676kB, file-rss:21548kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:0 [ 607.744771][T27184] bridge0: port 3(veth1_macvtap) entered blocking state [ 607.760667][T27184] bridge0: port 3(veth1_macvtap) entered disabled state [ 607.769751][T27184] veth1_macvtap: entered allmulticast mode [ 607.780088][T27184] veth1_macvtap: left allmulticast mode [ 608.641916][T27219] FAULT_INJECTION: forcing a failure. [ 608.641916][T27219] name failslab, interval 1, probability 0, space 0, times 0 [ 608.655187][T27219] CPU: 1 UID: 0 PID: 27219 Comm: syz.0.9878 Tainted: G U L syzkaller #0 PREEMPT(full) [ 608.655245][T27219] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 608.655258][T27219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 608.655277][T27219] Call Trace: [ 608.655287][T27219] [ 608.655299][T27219] dump_stack_lvl+0x16c/0x1f0 [ 608.655345][T27219] should_fail_ex+0x512/0x640 [ 608.655390][T27219] ? __kmalloc_cache_noprof+0x5f/0x800 [ 608.655430][T27219] should_failslab+0xc2/0x120 [ 608.655477][T27219] __kmalloc_cache_noprof+0x80/0x800 [ 608.655514][T27219] ? syslog_print_all+0xeb/0x400 [ 608.655553][T27219] ? syslog_print_all+0xeb/0x400 [ 608.655584][T27219] syslog_print_all+0xeb/0x400 [ 608.655621][T27219] ? __pfx_syslog_print_all+0x10/0x10 [ 608.655676][T27219] ? do_futex+0x122/0x350 [ 608.655718][T27219] do_syslog+0x32c/0x6c0 [ 608.655754][T27219] ? __pfx_do_syslog+0x10/0x10 [ 608.655804][T27219] ? xfd_validate_state+0x61/0x180 [ 608.655844][T27219] __x64_sys_syslog+0x74/0xb0 [ 608.655881][T27219] ? lockdep_hardirqs_on+0x7c/0x110 [ 608.655919][T27219] do_syscall_64+0xcd/0xf80 [ 608.655960][T27219] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 608.655992][T27219] RIP: 0033:0x7f1dd0f8f7c9 [ 608.656023][T27219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 608.656052][T27219] RSP: 002b:00007f1dcf1f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000067 [ 608.656083][T27219] RAX: ffffffffffffffda RBX: 00007f1dd11e5fa0 RCX: 00007f1dd0f8f7c9 [ 608.656114][T27219] RDX: 00000000000000da RSI: 0000200000000080 RDI: 0000000000000003 [ 608.656133][T27219] RBP: 00007f1dd1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 608.656152][T27219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 608.656171][T27219] R13: 00007f1dd11e6038 R14: 00007f1dd11e5fa0 R15: 00007fffe9ee6a38 [ 608.656213][T27219] [ 609.068215][T27225] ovs_: entered promiscuous mode [ 609.308260][T27224] syz.1.9880 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 609.333387][T27224] CPU: 1 UID: 0 PID: 27224 Comm: syz.1.9880 Tainted: G U L syzkaller #0 PREEMPT(full) [ 609.333442][T27224] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 609.333455][T27224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 609.333474][T27224] Call Trace: [ 609.333485][T27224] [ 609.333499][T27224] dump_stack_lvl+0x16c/0x1f0 [ 609.333544][T27224] dump_header+0x101/0x960 [ 609.333586][T27224] oom_kill_process+0x176/0x910 [ 609.333625][T27224] out_of_memory+0x350/0x1700 [ 609.333662][T27224] ? __lock_acquire+0x436/0x2890 [ 609.333699][T27224] ? __pfx_out_of_memory+0x10/0x10 [ 609.333747][T27224] mem_cgroup_out_of_memory+0x118/0x130 [ 609.333787][T27224] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 609.333835][T27224] ? do_raw_spin_unlock+0x172/0x230 [ 609.333880][T27224] try_charge_memcg+0x695/0xd30 [ 609.333939][T27224] ? __pfx_try_charge_memcg+0x10/0x10 [ 609.333988][T27224] ? __print_lock_name+0x61/0xe0 [ 609.334031][T27224] ? rcu_read_unlock+0x17/0x60 [ 609.334094][T27224] charge_memcg+0x8a/0x230 [ 609.334142][T27224] __mem_cgroup_charge+0x2b/0x1e0 [ 609.334177][T27224] do_anonymous_page+0xca9/0x2190 [ 609.334228][T27224] __handle_mm_fault+0x1ecf/0x2bb0 [ 609.334276][T27224] ? __pfx___handle_mm_fault+0x10/0x10 [ 609.334314][T27224] ? __pte_offset_map_lock+0x174/0x310 [ 609.334369][T27224] ? find_held_lock+0x2b/0x80 [ 609.334424][T27224] ? follow_page_pte+0x5cf/0x1390 [ 609.334480][T27224] handle_mm_fault+0x3fe/0xad0 [ 609.334521][T27224] __get_user_pages+0x54e/0x3590 [ 609.334585][T27224] ? __pfx___get_user_pages+0x10/0x10 [ 609.334646][T27224] populate_vma_page_range+0x267/0x3f0 [ 609.334698][T27224] ? __pfx_populate_vma_page_range+0x10/0x10 [ 609.334747][T27224] ? __pfx_find_vma_intersection+0x10/0x10 [ 609.334796][T27224] ? do_mmap+0x69c/0x1210 [ 609.334846][T27224] __mm_populate+0x1d8/0x380 [ 609.334897][T27224] ? __pfx___mm_populate+0x10/0x10 [ 609.334950][T27224] ? up_write+0x282/0x4e0 [ 609.334990][T27224] vm_mmap_pgoff+0x37f/0x470 [ 609.335061][T27224] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 609.335104][T27224] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 609.335147][T27224] ? count_memcg_events+0x122/0x290 [ 609.335196][T27224] ? find_held_lock+0x2b/0x80 [ 609.335243][T27224] ksys_mmap_pgoff+0x7d/0x5c0 [ 609.335296][T27224] __x64_sys_mmap+0x125/0x190 [ 609.335334][T27224] do_syscall_64+0xcd/0xf80 [ 609.335386][T27224] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 609.335416][T27224] RIP: 0033:0x7fcc9598f7c9 [ 609.335443][T27224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 609.335474][T27224] RSP: 002b:00007fcc9689d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 609.335505][T27224] RAX: ffffffffffffffda RBX: 00007fcc95be5fa0 RCX: 00007fcc9598f7c9 [ 609.335527][T27224] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 609.335546][T27224] RBP: 00007fcc95a13f91 R08: 0000000000000002 R09: 0000000000008000 [ 609.335567][T27224] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 609.335586][T27224] R13: 00007fcc95be6038 R14: 00007fcc95be5fa0 R15: 00007ffd3417e268 [ 609.335632][T27224] [ 609.335645][T27224] memory: usage 3072kB, limit 3072kB, failcnt 37045 [ 609.671976][T27224] memory+swap: usage 3464kB, limit 9007199254740988kB, failcnt 0 [ 609.679943][T27224] kmem: usage 1448kB, limit 9007199254740988kB, failcnt 0 [ 609.750436][T27224] Memory cgroup stats for /syz1: [ 609.750668][T27224] cache 0 [ 609.759646][T27224] rss 1642496 [ 609.770410][T27224] rss_huge 0 [ 609.773677][T27224] shmem 0 [ 609.776689][T27224] mapped_file 0 [ 609.780181][T27224] dirty 0 [ 609.797449][T27224] writeback 0 [ 609.806454][T27224] workingset_refault_anon 2306 [ 609.832254][T27224] workingset_refault_file 4768 [ 609.837115][T27224] swap 401408 [ 609.849958][T27224] swapcached 0 [ 609.853409][T27224] pgpgin 191156 [ 609.869881][T27224] pgpgout 194799 [ 609.873528][T27224] pgfault 298847 [ 609.889316][T27224] pgmajfault 1198 [ 609.893732][T27224] inactive_anon 0 [ 609.897501][T27224] active_anon 1642496 [ 609.929333][T27224] inactive_file 0 [ 609.933247][T27224] active_file 0 [ 609.938975][T27224] unevictable 0 [ 609.966272][T27224] hierarchical_memory_limit 3145728 [ 609.983443][T27224] hierarchical_memsw_limit 9223372036854771712 [ 609.999384][T27224] total_cache 0 [ 610.005274][T27224] total_rss 1642496 [ 610.015889][T27224] total_rss_huge 0 [ 610.024358][T27224] total_shmem 0 [ 610.027891][T27224] total_mapped_file 0 [ 610.054713][T27224] total_dirty 0 [ 610.058347][T27224] total_writeback 0 [ 610.068174][T27240] zswap: compressor not available [ 610.083314][T27250] vivid-007: ================= START STATUS ================= [ 610.088123][T27224] total_workingset_refault_anon 2306 [ 610.100150][T27250] vivid-007: Generate PTS: true [ 610.116754][T27250] vivid-007: Generate SCR: true [ 610.118552][T27224] total_workingset_refault_file 4768 [ 610.123942][T27250] tpg source WxH: 320x240 (Y'CbCr) [ 610.127007][T27224] total_swap 401408 [ 610.127024][T27224] total_swapcached 0 [ 610.127039][T27224] total_pgpgin 191156 [ 610.127054][T27224] total_pgpgout 194799 [ 610.127070][T27224] total_pgfault 298847 [ 610.138231][T27250] tpg field: 1 [ 610.178706][T27250] tpg crop: (0,0)/320x240 [ 610.185314][T27224] total_pgmajfault 1198 [ 610.193639][T27250] tpg compose: (0,0)/320x240 [ 610.199850][T27224] total_inactive_anon 0 [ 610.203763][T27250] tpg colorspace: 8 [ 610.204053][T27224] total_active_anon 1642496 [ 610.207876][T27250] tpg transfer function: 0/0 [ 610.249181][T27250] tpg Y'CbCr encoding: 0/0 [ 610.257854][T27224] total_inactive_file 0 [ 610.258293][T27250] tpg quantization: 0/0 [ 610.262070][T27224] total_active_file 0 [ 610.262087][T27224] total_unevictable 0 [ 610.262100][T27224] anon_cost 25 [ 610.262111][T27224] file_cost 0 [ 610.262125][T27224] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.9880,pid=27223,uid=0 [ 610.262304][T27224] Memory cgroup out of memory: Killed process 27223 (syz.1.9880) total-vm:108180kB, anon-rss:2676kB, file-rss:21548kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:0 [ 610.327770][T27250] tpg RGB range: 0/2 [ 610.347566][T27250] vivid-007: ================== END STATUS ================== [ 610.742458][T27273] blktrace: Concurrent blktraces are not allowed on loop2 [ 611.223339][T27292] syz_tun: tun_chr_ioctl cmd 1074025681 [ 612.488072][T27322] lo: entered allmulticast mode [ 612.494040][T27321] lo: left allmulticast mode [ 615.332089][T27446] bridge0: port 3(syz_tun) entered blocking state [ 615.351578][T27446] bridge0: port 3(syz_tun) entered disabled state [ 615.358285][T27446] syz_tun: entered allmulticast mode [ 615.382677][T27446] syz_tun: entered promiscuous mode [ 615.392158][T27446] bridge0: port 3(syz_tun) entered blocking state [ 615.398782][T27446] bridge0: port 3(syz_tun) entered forwarding state [ 615.548872][T27454] bridge0: port 3(team0) entered blocking state [ 615.568423][T27454] bridge0: port 3(team0) entered disabled state [ 615.590357][T27454] team0: entered allmulticast mode [ 615.595558][T27454] team_slave_0: entered allmulticast mode [ 615.617400][T27454] team_slave_1: entered allmulticast mode [ 615.634396][T27454] team0: entered promiscuous mode [ 615.649886][T27454] team_slave_0: entered promiscuous mode [ 615.660379][T27454] team_slave_1: entered promiscuous mode [ 615.672206][T27454] bridge0: port 3(team0) entered blocking state [ 615.678714][T27454] bridge0: port 3(team0) entered forwarding state [ 615.693423][T27452] syz.1.9982 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 615.703424][T27452] CPU: 1 UID: 0 PID: 27452 Comm: syz.1.9982 Tainted: G U L syzkaller #0 PREEMPT(full) [ 615.703485][T27452] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 615.703498][T27452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 615.703519][T27452] Call Trace: [ 615.703532][T27452] [ 615.703546][T27452] dump_stack_lvl+0x16c/0x1f0 [ 615.703594][T27452] dump_header+0x101/0x960 [ 615.703635][T27452] oom_kill_process+0x176/0x910 [ 615.703675][T27452] out_of_memory+0x350/0x1700 [ 615.703711][T27452] ? __lock_acquire+0x436/0x2890 [ 615.703749][T27452] ? __pfx_out_of_memory+0x10/0x10 [ 615.703798][T27452] mem_cgroup_out_of_memory+0x118/0x130 [ 615.703837][T27452] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 615.703886][T27452] ? do_raw_spin_unlock+0x172/0x230 [ 615.703932][T27452] try_charge_memcg+0x695/0xd30 [ 615.704000][T27452] ? __pfx_try_charge_memcg+0x10/0x10 [ 615.704051][T27452] ? __print_lock_name+0x61/0xe0 [ 615.704094][T27452] ? rcu_read_unlock+0x17/0x60 [ 615.704156][T27452] charge_memcg+0x8a/0x230 [ 615.704206][T27452] __mem_cgroup_charge+0x2b/0x1e0 [ 615.704240][T27452] do_anonymous_page+0xca9/0x2190 [ 615.704292][T27452] __handle_mm_fault+0x1ecf/0x2bb0 [ 615.704348][T27452] ? __pfx___handle_mm_fault+0x10/0x10 [ 615.704386][T27452] ? __pte_offset_map_lock+0x174/0x310 [ 615.704433][T27452] ? find_held_lock+0x2b/0x80 [ 615.704495][T27452] ? follow_page_pte+0x5cf/0x1390 [ 615.704553][T27452] handle_mm_fault+0x3fe/0xad0 [ 615.704595][T27452] __get_user_pages+0x54e/0x3590 [ 615.704662][T27452] ? __pfx___get_user_pages+0x10/0x10 [ 615.704724][T27452] populate_vma_page_range+0x267/0x3f0 [ 615.704778][T27452] ? __pfx_populate_vma_page_range+0x10/0x10 [ 615.704827][T27452] ? __pfx_find_vma_intersection+0x10/0x10 [ 615.704876][T27452] ? do_mmap+0x69c/0x1210 [ 615.704928][T27452] __mm_populate+0x1d8/0x380 [ 615.704987][T27452] ? __pfx___mm_populate+0x10/0x10 [ 615.705040][T27452] ? up_write+0x282/0x4e0 [ 615.705079][T27452] vm_mmap_pgoff+0x37f/0x470 [ 615.705130][T27452] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 615.705175][T27452] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 615.705217][T27452] ? count_memcg_events+0x122/0x290 [ 615.705268][T27452] ? find_held_lock+0x2b/0x80 [ 615.705315][T27452] ksys_mmap_pgoff+0x7d/0x5c0 [ 615.705368][T27452] __x64_sys_mmap+0x125/0x190 [ 615.705407][T27452] do_syscall_64+0xcd/0xf80 [ 615.705450][T27452] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 615.705483][T27452] RIP: 0033:0x7fcc9598f7c9 [ 615.705511][T27452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 615.705543][T27452] RSP: 002b:00007fcc9689d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 615.705575][T27452] RAX: ffffffffffffffda RBX: 00007fcc95be5fa0 RCX: 00007fcc9598f7c9 [ 615.705596][T27452] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 615.705615][T27452] RBP: 00007fcc95a13f91 R08: 0000000000000002 R09: 0000000000008000 [ 615.705635][T27452] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 615.705655][T27452] R13: 00007fcc95be6038 R14: 00007fcc95be5fa0 R15: 00007ffd3417e268 [ 615.705701][T27452] [ 615.705789][T27452] memory: usage 3072kB, limit 3072kB, failcnt 39704 [ 616.035722][T27452] memory+swap: usage 4444kB, limit 9007199254740988kB, failcnt 0 [ 616.044025][T27452] kmem: usage 1432kB, limit 9007199254740988kB, failcnt 0 [ 616.053538][T27452] Memory cgroup stats for /syz1: [ 616.053845][T27452] cache 0 [ 616.061923][T27452] rss 1679360 [ 616.065360][T27452] rss_huge 0 [ 616.068793][T27452] shmem 0 [ 616.071923][T27452] mapped_file 0 [ 616.075533][T27452] dirty 0 [ 616.078631][T27452] writeback 0 [ 616.082025][T27452] workingset_refault_anon 2419 [ 616.087181][T27452] workingset_refault_file 4782 [ 616.092155][T27452] swap 1404928 [ 616.095691][T27452] swapcached 0 [ 616.099298][T27452] pgpgin 195661 [ 616.102867][T27452] pgpgout 199295 [ 616.106532][T27452] pgfault 304545 [ 616.110638][T27452] pgmajfault 1264 [ 616.114401][T27452] inactive_anon 0 [ 616.118295][T27452] active_anon 1679360 [ 616.122467][T27452] inactive_file 0 [ 616.126218][T27452] active_file 0 [ 616.129881][T27452] unevictable 0 [ 616.133513][T27452] hierarchical_memory_limit 3145728 [ 616.139438][T27452] hierarchical_memsw_limit 9223372036854771712 [ 616.145806][T27452] total_cache 0 [ 616.151454][T27452] total_rss 1679360 [ 616.155388][T27452] total_rss_huge 0 [ 616.159394][T27452] total_shmem 0 [ 616.163051][T27452] total_mapped_file 0 [ 616.179092][T27452] total_dirty 0 [ 616.186175][T27452] total_writeback 0 [ 616.195925][T27452] total_workingset_refault_anon 2419 [ 616.207271][T27452] total_workingset_refault_file 4782 [ 616.220421][T27452] total_swap 1404928 [ 616.230263][T27452] total_swapcached 0 [ 616.238738][T27452] total_pgpgin 195661 [ 616.248504][T27452] total_pgpgout 199295 [ 616.261818][T27452] total_pgfault 304545 [ 616.271770][T27452] total_pgmajfault 1264 [ 616.281716][T27452] total_inactive_anon 0 [ 616.296556][T27452] total_active_anon 1679360 [ 616.301209][T27452] total_inactive_file 0 [ 616.311120][T27452] total_active_file 0 [ 616.315888][T27452] total_unevictable 0 [ 616.320209][T27452] anon_cost 40 [ 616.323722][T27452] file_cost 0 [ 616.327707][T27452] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.9982,pid=27451,uid=0 [ 616.343352][T27452] Memory cgroup out of memory: Killed process 27451 (syz.1.9982) total-vm:106132kB, anon-rss:2676kB, file-rss:21548kB, shmem-rss:0kB, UID:0 pgtables:116kB oom_score_adj:0 [ 617.576290][T27530] bridge0: port 4(hsr0) entered blocking state [ 617.591978][T27530] bridge0: port 4(hsr0) entered disabled state [ 617.603662][T27530] hsr0: entered allmulticast mode [ 617.609208][T27530] hsr_slave_0: entered allmulticast mode [ 617.620818][T27530] hsr_slave_1: entered allmulticast mode [ 617.647179][T27530] hsr0: entered promiscuous mode [ 617.654637][T27530] bridge0: port 4(hsr0) entered blocking state [ 617.661054][T27530] bridge0: port 4(hsr0) entered forwarding state [ 618.046254][T27541] ovs_: entered promiscuous mode [ 618.090347][T27548] FAULT_INJECTION: forcing a failure. [ 618.090347][T27548] name failslab, interval 1, probability 0, space 0, times 0 [ 618.107122][T27548] CPU: 1 UID: 0 PID: 27548 Comm: syz.2.10023 Tainted: G U L syzkaller #0 PREEMPT(full) [ 618.107180][T27548] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 618.107194][T27548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 618.107214][T27548] Call Trace: [ 618.107225][T27548] [ 618.107238][T27548] dump_stack_lvl+0x16c/0x1f0 [ 618.107297][T27548] should_fail_ex+0x512/0x640 [ 618.107345][T27548] ? __kmalloc_noprof+0xca/0x910 [ 618.107382][T27548] should_failslab+0xc2/0x120 [ 618.107425][T27548] __kmalloc_noprof+0xeb/0x910 [ 618.107459][T27548] ? sk_prot_alloc+0x1a8/0x2a0 [ 618.107504][T27548] ? sk_prot_alloc+0x1a8/0x2a0 [ 618.107541][T27548] sk_prot_alloc+0x1a8/0x2a0 [ 618.107584][T27548] sk_alloc+0x36/0xe30 [ 618.107634][T27548] mctp_pf_create+0xe8/0x360 [ 618.107675][T27548] __sock_create+0x339/0x8a0 [ 618.107733][T27548] __sys_socket+0x14d/0x260 [ 618.107775][T27548] ? __pfx___sys_socket+0x10/0x10 [ 618.107815][T27548] ? xfd_validate_state+0x61/0x180 [ 618.107843][T27548] ? __pfx_ksys_write+0x10/0x10 [ 618.107895][T27548] __x64_sys_socket+0x72/0xb0 [ 618.107936][T27548] ? lockdep_hardirqs_on+0x7c/0x110 [ 618.107974][T27548] do_syscall_64+0xcd/0xf80 [ 618.108015][T27548] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 618.108046][T27548] RIP: 0033:0x7f9d7798f7c9 [ 618.108073][T27548] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 618.108104][T27548] RSP: 002b:00007f9d78754038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 618.108136][T27548] RAX: ffffffffffffffda RBX: 00007f9d77be5fa0 RCX: 00007f9d7798f7c9 [ 618.108158][T27548] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 000000000000002d [ 618.108177][T27548] RBP: 00007f9d77a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 618.108197][T27548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 618.108217][T27548] R13: 00007f9d77be6038 R14: 00007f9d77be5fa0 R15: 00007ffc1464ab18 [ 618.108260][T27548] [ 618.754459][T27567] FAULT_INJECTION: forcing a failure. [ 618.754459][T27567] name failslab, interval 1, probability 0, space 0, times 0 [ 618.780882][T27567] CPU: 0 UID: 0 PID: 27567 Comm: syz.3.10031 Tainted: G U L syzkaller #0 PREEMPT(full) [ 618.780953][T27567] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 618.780966][T27567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 618.780986][T27567] Call Trace: [ 618.780998][T27567] [ 618.781012][T27567] dump_stack_lvl+0x16c/0x1f0 [ 618.781059][T27567] should_fail_ex+0x512/0x640 [ 618.781108][T27567] ? kmem_cache_alloc_lru_noprof+0x66/0x770 [ 618.781152][T27567] should_failslab+0xc2/0x120 [ 618.781200][T27567] kmem_cache_alloc_lru_noprof+0x87/0x770 [ 618.781240][T27567] ? rcu_is_watching+0x12/0xc0 [ 618.781285][T27567] ? __d_alloc+0x35/0xa80 [ 618.781342][T27567] ? __d_alloc+0x35/0xa80 [ 618.781389][T27567] __d_alloc+0x35/0xa80 [ 618.781443][T27567] d_alloc_pseudo+0x1c/0xc0 [ 618.781481][T27567] alloc_file_pseudo+0xcf/0x230 [ 618.781518][T27567] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 618.781554][T27567] ? alloc_fd+0x471/0x7d0 [ 618.781607][T27567] sock_alloc_file+0x50/0x210 [ 618.781645][T27567] __sys_socket+0x1c0/0x260 [ 618.781687][T27567] ? fput+0x70/0xf0 [ 618.781714][T27567] ? __pfx___sys_socket+0x10/0x10 [ 618.781758][T27567] ? xfd_validate_state+0x61/0x180 [ 618.781788][T27567] ? __pfx_ksys_write+0x10/0x10 [ 618.781842][T27567] __x64_sys_socket+0x72/0xb0 [ 618.781885][T27567] ? lockdep_hardirqs_on+0x7c/0x110 [ 618.781933][T27567] do_syscall_64+0xcd/0xf80 [ 618.781975][T27567] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 618.782008][T27567] RIP: 0033:0x7f63aab8f7c9 [ 618.782035][T27567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 618.782067][T27567] RSP: 002b:00007f63abae0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 618.782099][T27567] RAX: ffffffffffffffda RBX: 00007f63aade5fa0 RCX: 00007f63aab8f7c9 [ 618.782122][T27567] RDX: 0000000000000088 RSI: 0000000000000002 RDI: 000000000000000a [ 618.782142][T27567] RBP: 00007f63aac13f91 R08: 0000000000000000 R09: 0000000000000000 [ 618.782162][T27567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 618.782181][T27567] R13: 00007f63aade6038 R14: 00007f63aade5fa0 R15: 00007ffe3c940b48 [ 618.782224][T27567] [ 619.482306][T27580] syz.1.10038 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 619.502209][T27580] CPU: 0 UID: 0 PID: 27580 Comm: syz.1.10038 Tainted: G U L syzkaller #0 PREEMPT(full) [ 619.502264][T27580] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 619.502275][T27580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 619.502293][T27580] Call Trace: [ 619.502303][T27580] [ 619.502315][T27580] dump_stack_lvl+0x16c/0x1f0 [ 619.502358][T27580] dump_header+0x101/0x960 [ 619.502396][T27580] oom_kill_process+0x176/0x910 [ 619.502433][T27580] out_of_memory+0x350/0x1700 [ 619.502466][T27580] ? __lock_acquire+0x436/0x2890 [ 619.502500][T27580] ? __pfx_out_of_memory+0x10/0x10 [ 619.502545][T27580] mem_cgroup_out_of_memory+0x118/0x130 [ 619.502581][T27580] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 619.502626][T27580] ? do_raw_spin_unlock+0x172/0x230 [ 619.502668][T27580] try_charge_memcg+0x695/0xd30 [ 619.502723][T27580] ? __pfx_try_charge_memcg+0x10/0x10 [ 619.502770][T27580] ? __print_lock_name+0x61/0xe0 [ 619.502810][T27580] ? rcu_read_unlock+0x17/0x60 [ 619.502869][T27580] charge_memcg+0x8a/0x230 [ 619.502914][T27580] __mem_cgroup_charge+0x2b/0x1e0 [ 619.502946][T27580] do_anonymous_page+0xca9/0x2190 [ 619.502993][T27580] __handle_mm_fault+0x1ecf/0x2bb0 [ 619.503036][T27580] ? __pfx___handle_mm_fault+0x10/0x10 [ 619.503070][T27580] ? __pte_offset_map_lock+0x174/0x310 [ 619.503115][T27580] ? find_held_lock+0x2b/0x80 [ 619.503180][T27580] ? follow_page_pte+0x5cf/0x1390 [ 619.503238][T27580] handle_mm_fault+0x3fe/0xad0 [ 619.503280][T27580] __get_user_pages+0x54e/0x3590 [ 619.503346][T27580] ? __pfx___get_user_pages+0x10/0x10 [ 619.503407][T27580] populate_vma_page_range+0x267/0x3f0 [ 619.503461][T27580] ? __pfx_populate_vma_page_range+0x10/0x10 [ 619.503510][T27580] ? __pfx_find_vma_intersection+0x10/0x10 [ 619.503561][T27580] ? do_mmap+0x69c/0x1210 [ 619.503613][T27580] __mm_populate+0x1d8/0x380 [ 619.503665][T27580] ? __pfx___mm_populate+0x10/0x10 [ 619.503720][T27580] ? up_write+0x282/0x4e0 [ 619.503761][T27580] vm_mmap_pgoff+0x37f/0x470 [ 619.503810][T27580] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 619.503856][T27580] ? count_memcg_events+0x122/0x290 [ 619.503906][T27580] ? __x64_sys_futex+0x1e0/0x4c0 [ 619.503943][T27580] ? __x64_sys_futex+0x1e9/0x4c0 [ 619.503987][T27580] ksys_mmap_pgoff+0x7d/0x5c0 [ 619.504031][T27580] ? xfd_validate_state+0x61/0x180 [ 619.504068][T27580] __x64_sys_mmap+0x125/0x190 [ 619.504106][T27580] do_syscall_64+0xcd/0xf80 [ 619.504157][T27580] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 619.504189][T27580] RIP: 0033:0x7fcc9598f7c9 [ 619.504217][T27580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 619.504248][T27580] RSP: 002b:00007fcc9689d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 619.504280][T27580] RAX: ffffffffffffffda RBX: 00007fcc95be5fa0 RCX: 00007fcc9598f7c9 [ 619.504302][T27580] RDX: 00000000000000df RSI: 0000000000400005 RDI: 0000000000000000 [ 619.504322][T27580] RBP: 00007fcc95a13f91 R08: 0000000000000002 R09: 0000000000008000 [ 619.504342][T27580] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 619.504362][T27580] R13: 00007fcc95be6038 R14: 00007fcc95be5fa0 R15: 00007ffd3417e268 [ 619.504407][T27580] [ 619.504420][T27580] memory: usage 3072kB, limit 3072kB, failcnt 40084 [ 619.869377][T27580] memory+swap: usage 4216kB, limit 9007199254740988kB, failcnt 0 [ 619.893548][T27580] kmem: usage 1460kB, limit 9007199254740988kB, failcnt 0 [ 619.909255][T27580] Memory cgroup stats for /syz1: [ 619.909483][T27580] cache 0 [ 619.929856][T27580] rss 1650688 [ 619.933655][T27580] rss_huge 0 [ 619.945816][T27580] shmem 0 [ 619.952439][T27580] mapped_file 0 [ 619.961070][T27580] dirty 0 [ 619.966411][T27580] writeback 0 [ 619.974426][T27580] workingset_refault_anon 2487 [ 619.984342][T27580] workingset_refault_file 4782 [ 619.994961][T27580] swap 1171456 [ 620.004862][T27580] swapcached 0 [ 620.011683][T27580] pgpgin 197126 [ 620.015297][T27580] pgpgout 200767 [ 620.025484][T27580] pgfault 306571 [ 620.035190][T27580] pgmajfault 1295 [ 620.044807][T27580] inactive_anon 0 [ 620.053210][T27580] active_anon 1650688 [ 620.063268][T27580] inactive_file 0 [ 620.071404][T27580] active_file 0 [ 620.079487][T27580] unevictable 0 [ 620.086415][T27580] hierarchical_memory_limit 3145728 [ 620.101347][T27580] hierarchical_memsw_limit 9223372036854771712 [ 620.112096][T27580] total_cache 0 [ 620.115706][T27580] total_rss 1650688 [ 620.128301][T27580] total_rss_huge 0 [ 620.132100][T27580] total_shmem 0 [ 620.135686][T27580] total_mapped_file 0 [ 620.140521][T27580] total_dirty 0 [ 620.144805][T27580] total_writeback 0 [ 620.150180][T27580] total_workingset_refault_anon 2487 [ 620.155514][T27580] total_workingset_refault_file 4782 [ 620.163067][T27580] total_swap 1171456 [ 620.168337][T27580] total_swapcached 0 [ 620.172404][T27580] total_pgpgin 197126 [ 620.176929][T27580] total_pgpgout 200767 [ 620.182866][T27580] total_pgfault 306571 [ 620.196811][T27580] total_pgmajfault 1295 [ 620.201048][T27580] total_inactive_anon 0 [ 620.224573][T27580] total_active_anon 1650688 [ 620.236239][T27580] total_inactive_file 0 [ 620.240510][T27580] total_active_file 0 [ 620.251039][T27580] total_unevictable 0 [ 620.255109][T27580] anon_cost 17 [ 620.259187][T27580] file_cost 0 [ 620.262532][T27580] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.10038,pid=27577,uid=0 [ 620.306550][T27580] Memory cgroup out of memory: Killed process 27577 (syz.1.10038) total-vm:108180kB, anon-rss:2548kB, file-rss:22372kB, shmem-rss:0kB, UID:0 pgtables:144kB oom_score_adj:0 [ 620.313466][T27613] netlink: 'syz.0.10050': attribute type 1 has an invalid length. [ 621.289841][T27664] netlink: 32 bytes leftover after parsing attributes in process `syz.3.10064'. [ 621.569364][T27675] ptrace attach of "./syz-executor exec"[5828] was attempted by ""[27675] [ 622.224182][T27698] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10079'. [ 622.241416][T27700] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10080'. [ 622.295941][T27685] syz.1.10073 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 622.345341][T27685] CPU: 1 UID: 0 PID: 27685 Comm: syz.1.10073 Tainted: G U L syzkaller #0 PREEMPT(full) [ 622.345394][T27685] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 622.345407][T27685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 622.345425][T27685] Call Trace: [ 622.345436][T27685] [ 622.345447][T27685] dump_stack_lvl+0x16c/0x1f0 [ 622.345489][T27685] dump_header+0x101/0x960 [ 622.345529][T27685] oom_kill_process+0x176/0x910 [ 622.345568][T27685] out_of_memory+0x350/0x1700 [ 622.345601][T27685] ? __lock_acquire+0x436/0x2890 [ 622.345637][T27685] ? __pfx_out_of_memory+0x10/0x10 [ 622.345683][T27685] mem_cgroup_out_of_memory+0x118/0x130 [ 622.345721][T27685] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 622.345767][T27685] ? do_raw_spin_unlock+0x172/0x230 [ 622.345811][T27685] try_charge_memcg+0x695/0xd30 [ 622.345865][T27685] ? __pfx_try_charge_memcg+0x10/0x10 [ 622.345922][T27685] ? find_held_lock+0x2b/0x80 [ 622.345968][T27685] charge_memcg+0x8a/0x230 [ 622.346014][T27685] mem_cgroup_swapin_charge_folio+0xeb/0x470 [ 622.346051][T27685] __read_swap_cache_async+0x397/0x500 [ 622.346095][T27685] ? __pfx___read_swap_cache_async+0x10/0x10 [ 622.346133][T27685] ? finish_task_switch.isra.0+0x202/0xbd0 [ 622.346178][T27685] ? rcu_is_watching+0x12/0xc0 [ 622.346229][T27685] ? finish_task_switch.isra.0+0x207/0xbd0 [ 622.346270][T27685] ? lockdep_hardirqs_on+0x7c/0x110 [ 622.346313][T27685] swap_cluster_readahead+0x528/0x770 [ 622.346355][T27685] ? __schedule+0x114c/0x6150 [ 622.346393][T27685] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 622.346435][T27685] ? __lock_acquire+0x436/0x2890 [ 622.346486][T27685] ? get_vma_policy+0x242/0x3c0 [ 622.346537][T27685] swapin_readahead+0x160/0x1220 [ 622.346588][T27685] ? __pfx_swapin_readahead+0x10/0x10 [ 622.346627][T27685] ? find_held_lock+0x2b/0x80 [ 622.346664][T27685] ? swap_cache_get_folio+0x267/0x8e0 [ 622.346698][T27685] ? swap_cache_get_folio+0x267/0x8e0 [ 622.346729][T27685] ? swap_cache_get_folio+0x267/0x8e0 [ 622.346767][T27685] ? swap_cache_get_folio+0x267/0x8e0 [ 622.346801][T27685] ? swap_cache_get_folio+0x293/0x8e0 [ 622.346839][T27685] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 622.346872][T27685] ? __pfx_get_swap_device+0x10/0x10 [ 622.346916][T27685] ? rcu_read_unlock+0x2d/0xb0 [ 622.346956][T27685] ? do_swap_page+0x962/0x64a0 [ 622.346985][T27685] do_swap_page+0x962/0x64a0 [ 622.347022][T27685] ? __lock_acquire+0x436/0x2890 [ 622.347063][T27685] ? __pfx_do_swap_page+0x10/0x10 [ 622.347100][T27685] ? __pfx_default_wake_function+0x10/0x10 [ 622.347154][T27685] ? rcu_is_watching+0x12/0xc0 [ 622.347204][T27685] ? ___pte_offset_map+0x175/0x380 [ 622.347254][T27685] __handle_mm_fault+0x19cb/0x2bb0 [ 622.347296][T27685] ? reacquire_held_locks+0xcd/0x1f0 [ 622.347329][T27685] ? __pfx___handle_mm_fault+0x10/0x10 [ 622.347367][T27685] ? lock_vma_under_rcu+0x176/0x580 [ 622.347414][T27685] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 622.347467][T27685] handle_mm_fault+0x3fe/0xad0 [ 622.347508][T27685] do_user_addr_fault+0x60c/0x1370 [ 622.347551][T27685] ? rcu_is_watching+0x12/0xc0 [ 622.347598][T27685] exc_page_fault+0x64/0xc0 [ 622.347634][T27685] asm_exc_page_fault+0x26/0x30 [ 622.347663][T27685] RIP: 0033:0x7fcc9584d71f [ 622.347688][T27685] Code: 1f 84 00 00 00 00 00 0f 1f 40 00 41 89 fb 44 8d 56 04 4c 8d 0d f2 48 38 00 89 f0 4c 8d 05 e9 28 38 00 89 c2 81 e2 ff 1f 00 00 <49> 8b 0c d1 48 39 f1 74 28 48 85 c9 74 29 45 38 1c 10 75 23 83 c0 [ 622.347718][T27685] RSP: 002b:00007ffd3417e298 EFLAGS: 00010202 [ 622.347745][T27685] RAX: 00000000820992b0 RBX: 00007fcc96715720 RCX: 0000000000000062 [ 622.347765][T27685] RDX: 00000000000012b0 RSI: ffffffff820992b0 RDI: 0000000000000002 [ 622.347784][T27685] RBP: ffffffff820992b0 R08: 00007fcc95bd0000 R09: 00007fcc95bd2000 [ 622.347804][T27685] R10: 00000000820992b4 R11: 0000000000000002 R12: 0000000000000002 [ 622.347823][T27685] R13: 0000000000000054 R14: ffffffff82099dc9 R15: 0000000000000062 [ 622.347844][T27685] ? vma_start_read+0x1e9/0x910 [ 622.347875][T27685] ? perf_trace_mmap_lock+0x800/0x860 [ 622.347912][T27685] ? perf_trace_mmap_lock+0x800/0x860 [ 622.347949][T27685] [ 622.347962][T27685] memory: usage 3072kB, limit 3072kB, failcnt 40335 [ 622.798094][T27685] memory+swap: usage 3348kB, limit 9007199254740988kB, failcnt 0 [ 622.816770][T27685] kmem: usage 2976kB, limit 9007199254740988kB, failcnt 0 [ 622.836499][T27685] Memory cgroup stats for /syz1: [ 622.836701][T27685] cache 0 [ 622.855204][T27685] rss 73728 [ 622.858392][T27685] rss_huge 0 [ 622.861722][T27685] shmem 0 [ 622.876101][T27685] mapped_file 0 [ 622.879687][T27685] dirty 0 [ 622.892090][T27685] writeback 0 [ 622.900393][T27685] workingset_refault_anon 2596 [ 622.915279][T27685] workingset_refault_file 4782 [ 622.930468][T27685] swap 282624 [ 622.935238][T27685] swapcached 69632 [ 622.939010][T27685] pgpgin 197484 [ 622.945595][T27685] pgpgout 201510 [ 622.949298][T27685] pgfault 307478 [ 622.955364][T27685] pgmajfault 1373 [ 622.959135][T27685] inactive_anon 0 [ 622.963596][T27685] active_anon 61440 [ 622.967613][T27685] inactive_file 0 [ 622.971339][T27685] active_file 0 [ 622.977489][T27685] unevictable 0 [ 622.981213][T27685] hierarchical_memory_limit 3145728 [ 622.987297][T27685] hierarchical_memsw_limit 9223372036854771712 [ 622.993968][T27685] total_cache 0 [ 623.005885][T27685] total_rss 73728 [ 623.013754][T27685] total_rss_huge 0 [ 623.022121][T27685] total_shmem 0 [ 623.030118][T27685] total_mapped_file 0 [ 623.038763][T27685] total_dirty 0 [ 623.047953][T27685] total_writeback 0 [ 623.056372][T27685] total_workingset_refault_anon 2596 [ 623.068611][T27685] total_workingset_refault_file 4782 [ 623.082639][T27685] total_swap 282624 [ 623.093392][T27685] total_swapcached 69632 [ 623.102619][T27685] total_pgpgin 197484 [ 623.112398][T27685] total_pgpgout 201510 [ 623.121242][T27685] total_pgfault 307478 [ 623.129900][T27685] total_pgmajfault 1373 [ 623.138906][T27685] total_inactive_anon 0 [ 623.147966][T27685] total_active_anon 61440 [ 623.158151][T27685] total_inactive_file 0 [ 623.166969][T27685] total_active_file 0 [ 623.175793][T27685] total_unevictable 0 [ 623.191138][T27685] anon_cost 38 [ 623.194694][T27685] file_cost 0 [ 623.198050][T27685] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.10073,pid=27685,uid=0 [ 623.216550][T27690] kexec: Could not allocate control_code_buffer [ 623.239957][T27685] Memory cgroup out of memory: Killed process 27685 (syz.1.10073) total-vm:104212kB, anon-rss:1116kB, file-rss:22684kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:0 [ 624.416050][T27777] FAULT_INJECTION: forcing a failure. [ 624.416050][T27777] name fail_futex, interval 1, probability 0, space 0, times 1 [ 624.429181][T27777] CPU: 1 UID: 0 PID: 27777 Comm: syz.3.10105 Tainted: G U L syzkaller #0 PREEMPT(full) [ 624.429236][T27777] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 624.429249][T27777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 624.429270][T27777] Call Trace: [ 624.429281][T27777] [ 624.429294][T27777] dump_stack_lvl+0x16c/0x1f0 [ 624.429336][T27777] should_fail_ex+0x512/0x640 [ 624.429390][T27777] should_fail_futex+0x4c/0x60 [ 624.429422][T27777] futex_lock_pi_atomic+0x127/0xc50 [ 624.429469][T27777] futex_lock_pi+0x23f/0x7c0 [ 624.429516][T27777] ? __pfx_futex_lock_pi+0x10/0x10 [ 624.429557][T27777] ? __futex_wait+0x24b/0x2f0 [ 624.429630][T27777] ? futex_private_hash_put+0x160/0x1b0 [ 624.429668][T27777] ? __pfx_futex_wake_mark+0x10/0x10 [ 624.429722][T27777] ? ksys_write+0x190/0x250 [ 624.429772][T27777] do_futex+0x11a/0x350 [ 624.429808][T27777] ? __pfx_do_futex+0x10/0x10 [ 624.429850][T27777] __x64_sys_futex+0x1e0/0x4c0 [ 624.429891][T27777] ? fput+0x70/0xf0 [ 624.429920][T27777] ? __pfx___x64_sys_futex+0x10/0x10 [ 624.429958][T27777] ? xfd_validate_state+0x61/0x180 [ 624.429987][T27777] ? __pfx_ksys_write+0x10/0x10 [ 624.430041][T27777] do_syscall_64+0xcd/0xf80 [ 624.430093][T27777] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 624.430126][T27777] RIP: 0033:0x7f63aab8f7c9 [ 624.430154][T27777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 624.430186][T27777] RSP: 002b:00007f63abae0038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 624.430220][T27777] RAX: ffffffffffffffda RBX: 00007f63aade5fa0 RCX: 00007f63aab8f7c9 [ 624.430243][T27777] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 624.430262][T27777] RBP: 00007f63aac13f91 R08: 0000000000000000 R09: 000000008000fff5 [ 624.430284][T27777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 624.430305][T27777] R13: 00007f63aade6038 R14: 00007f63aade5fa0 R15: 00007ffe3c940b48 [ 624.430349][T27777] [ 625.892725][T27811] netlink: 16 bytes leftover after parsing attributes in process `syz.2.10121'. [ 626.115193][T27820] FAULT_INJECTION: forcing a failure. [ 626.115193][T27820] name failslab, interval 1, probability 0, space 0, times 0 [ 626.173146][T27820] CPU: 1 UID: 0 PID: 27820 Comm: syz.2.10124 Tainted: G U L syzkaller #0 PREEMPT(full) [ 626.173207][T27820] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 626.173220][T27820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 626.173238][T27820] Call Trace: [ 626.173250][T27820] [ 626.173262][T27820] dump_stack_lvl+0x16c/0x1f0 [ 626.173309][T27820] should_fail_ex+0x512/0x640 [ 626.173360][T27820] ? __kvmalloc_node_noprof+0x129/0xa40 [ 626.173409][T27820] should_failslab+0xc2/0x120 [ 626.173458][T27820] __kvmalloc_node_noprof+0x14a/0xa40 [ 626.173506][T27820] ? io_uring_setup+0x2f1/0x1f60 [ 626.173551][T27820] ? io_uring_setup+0x2f1/0x1f60 [ 626.173584][T27820] io_uring_setup+0x2f1/0x1f60 [ 626.173623][T27820] ? __pfx_io_uring_setup+0x10/0x10 [ 626.173661][T27820] ? do_futex+0x122/0x350 [ 626.173699][T27820] ? __pfx_do_futex+0x10/0x10 [ 626.173754][T27820] ? __fget_files+0x20e/0x3c0 [ 626.173799][T27820] ? __pfx___x64_sys_futex+0x10/0x10 [ 626.173846][T27820] __x64_sys_io_uring_setup+0xc2/0x170 [ 626.173882][T27820] do_syscall_64+0xcd/0xf80 [ 626.173924][T27820] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 626.173957][T27820] RIP: 0033:0x7f9d7798f7c9 [ 626.173985][T27820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 626.174017][T27820] RSP: 002b:00007f9d78754038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 626.174050][T27820] RAX: ffffffffffffffda RBX: 00007f9d77be5fa0 RCX: 00007f9d7798f7c9 [ 626.174073][T27820] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000059 [ 626.174093][T27820] RBP: 00007f9d77a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 626.174122][T27820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 626.174142][T27820] R13: 00007f9d77be6038 R14: 00007f9d77be5fa0 R15: 00007ffc1464ab18 [ 626.174186][T27820] [ 626.655592][T27831] netlink: 'syz.3.10127': attribute type 1 has an invalid length. [ 626.716117][T27840] FAULT_INJECTION: forcing a failure. [ 626.716117][T27840] name failslab, interval 1, probability 0, space 0, times 0 [ 626.753662][T27840] CPU: 1 UID: 0 PID: 27840 Comm: syz.0.10129 Tainted: G U L syzkaller #0 PREEMPT(full) [ 626.753720][T27840] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 626.753735][T27840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 626.753754][T27840] Call Trace: [ 626.753764][T27840] [ 626.753777][T27840] dump_stack_lvl+0x16c/0x1f0 [ 626.753833][T27840] should_fail_ex+0x512/0x640 [ 626.753878][T27840] ? __kvmalloc_node_noprof+0x129/0xa40 [ 626.753924][T27840] should_failslab+0xc2/0x120 [ 626.753971][T27840] __kvmalloc_node_noprof+0x14a/0xa40 [ 626.754012][T27840] ? security_capable+0x7e/0x260 [ 626.754055][T27840] ? proc_sys_call_handler+0x2d6/0x5b0 [ 626.754095][T27840] ? ns_capable_noaudit+0xda/0x110 [ 626.754144][T27840] ? proc_sys_call_handler+0x2d6/0x5b0 [ 626.754181][T27840] proc_sys_call_handler+0x2d6/0x5b0 [ 626.754226][T27840] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 626.754270][T27840] ? copy_splice_read+0x1a8/0xc20 [ 626.754322][T27840] copy_splice_read+0x618/0xc20 [ 626.754377][T27840] ? __pfx_copy_splice_read+0x10/0x10 [ 626.754425][T27840] ? look_up_lock_class+0x6b/0x130 [ 626.754476][T27840] ? lockdep_init_map_type+0x5c/0x270 [ 626.754510][T27840] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 626.754557][T27840] ? __pfx_copy_splice_read+0x10/0x10 [ 626.754602][T27840] do_splice_read+0x285/0x370 [ 626.754650][T27840] splice_direct_to_actor+0x2a1/0xa30 [ 626.754697][T27840] ? __pfx_direct_splice_actor+0x10/0x10 [ 626.754749][T27840] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 626.754835][T27840] do_splice_direct+0x174/0x240 [ 626.754882][T27840] ? __pfx_do_splice_direct+0x10/0x10 [ 626.754929][T27840] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 626.754980][T27840] ? rw_verify_area+0xcf/0x6c0 [ 626.755022][T27840] do_sendfile+0xb06/0xe50 [ 626.755069][T27840] ? __pfx_do_sendfile+0x10/0x10 [ 626.755116][T27840] ? __x64_sys_futex+0x1e0/0x4c0 [ 626.755149][T27840] ? __x64_sys_futex+0x1e9/0x4c0 [ 626.755189][T27840] __x64_sys_sendfile64+0x1d8/0x220 [ 626.755240][T27840] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 626.755302][T27840] do_syscall_64+0xcd/0xf80 [ 626.755341][T27840] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 626.755372][T27840] RIP: 0033:0x7f1dd0f8f7c9 [ 626.755397][T27840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 626.755427][T27840] RSP: 002b:00007f1dcf1f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 626.755458][T27840] RAX: ffffffffffffffda RBX: 00007f1dd11e5fa0 RCX: 00007f1dd0f8f7c9 [ 626.755481][T27840] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 626.755499][T27840] RBP: 00007f1dd1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 626.755519][T27840] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 626.755538][T27840] R13: 00007f1dd11e6038 R14: 00007f1dd11e5fa0 R15: 00007fffe9ee6a38 [ 626.755578][T27840] [ 626.772910][T27779] syz.1.10106 invoked oom-killer: gfp_mask=0x100dc0(GFP_USER|__GFP_ZERO), order=0, oom_score_adj=0 [ 627.016876][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 627.016986][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 627.126513][T27779] CPU: 1 UID: 0 PID: 27779 Comm: syz.1.10106 Tainted: G U L syzkaller #0 PREEMPT(full) [ 627.126569][T27779] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 627.126583][T27779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 627.126601][T27779] Call Trace: [ 627.126612][T27779] [ 627.126624][T27779] dump_stack_lvl+0x16c/0x1f0 [ 627.126661][T27779] dump_header+0x101/0x960 [ 627.126692][T27779] oom_kill_process+0x176/0x910 [ 627.126722][T27779] out_of_memory+0x350/0x1700 [ 627.126758][T27779] ? __pfx_out_of_memory+0x10/0x10 [ 627.126796][T27779] mem_cgroup_out_of_memory+0x118/0x130 [ 627.126828][T27779] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 627.126869][T27779] ? do_raw_spin_unlock+0x172/0x230 [ 627.126907][T27779] try_charge_memcg+0x695/0xd30 [ 627.126954][T27779] ? __pfx_try_charge_memcg+0x10/0x10 [ 627.126993][T27779] ? __print_lock_name+0x61/0xe0 [ 627.127027][T27779] ? rcu_read_unlock+0x17/0x60 [ 627.127086][T27779] charge_memcg+0x8a/0x230 [ 627.127126][T27779] __mem_cgroup_charge+0x2b/0x1e0 [ 627.127155][T27779] filemap_add_folio+0xe6/0x610 [ 627.127187][T27779] ? __pfx_filemap_add_folio+0x10/0x10 [ 627.127228][T27779] __filemap_get_folio_mpol+0x511/0xc60 [ 627.127269][T27779] ioctx_alloc+0x788/0x2230 [ 627.127310][T27779] ? __pfx_ioctx_alloc+0x10/0x10 [ 627.127338][T27779] ? __x64_sys_io_setup+0x6b/0x230 [ 627.127368][T27779] __x64_sys_io_setup+0xc9/0x230 [ 627.127399][T27779] do_syscall_64+0xcd/0xf80 [ 627.127434][T27779] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 627.127461][T27779] RIP: 0033:0x7fcc9598f7c9 [ 627.127485][T27779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 627.127510][T27779] RSP: 002b:00007fcc9689d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 627.127538][T27779] RAX: ffffffffffffffda RBX: 00007fcc95be5fa0 RCX: 00007fcc9598f7c9 [ 627.127557][T27779] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000007ffe [ 627.127574][T27779] RBP: 00007fcc95a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 627.127593][T27779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 627.127609][T27779] R13: 00007fcc95be6038 R14: 00007fcc95be5fa0 R15: 00007ffd3417e268 [ 627.127650][T27779] [ 627.127908][T27779] memory: usage 3072kB, limit 3072kB, failcnt 40518 [ 627.410848][T27779] memory+swap: usage 3412kB, limit 9007199254740988kB, failcnt 0 [ 627.471093][T27779] kmem: usage 1504kB, limit 9007199254740988kB, failcnt 0 [ 627.580958][T27779] Memory cgroup stats for /syz1: [ 627.581314][T27779] cache 1605632 [ 627.619027][T27779] rss 0 [ 627.621876][T27779] rss_huge 0 [ 627.625095][T27779] shmem 0 [ 627.642176][T27779] mapped_file 0 [ 627.645721][T27779] dirty 0 [ 627.688611][T27779] writeback 0 [ 627.691972][T27779] workingset_refault_anon 2613 [ 627.696761][T27779] workingset_refault_file 4782 [ 627.790997][T27779] swap 348160 [ 627.794368][T27779] swapcached 0 [ 627.811636][T27779] pgpgin 198073 [ 627.825481][T27779] pgpgout 201725 [ 627.836473][T27779] pgfault 308117 [ 627.866054][T27779] pgmajfault 1389 [ 627.869980][T27779] inactive_anon 0 [ 627.904226][T27779] active_anon 0 [ 627.914120][T27779] inactive_file 1605632 [ 627.931168][T27779] active_file 0 [ 627.948521][T27779] unevictable 0 [ 627.952057][T27779] hierarchical_memory_limit 3145728 [ 627.957772][T27779] hierarchical_memsw_limit 9223372036854771712 [ 627.963971][T27779] total_cache 1605632 [ 627.972015][T27779] total_rss 0 [ 627.975358][T27779] total_rss_huge 0 [ 627.979581][T27779] total_shmem 0 [ 627.983076][T27779] total_mapped_file 0 [ 628.006133][T27779] total_dirty 0 [ 628.009669][T27779] total_writeback 0 [ 628.013506][T27779] total_workingset_refault_anon 2613 [ 628.027079][T27779] total_workingset_refault_file 4782 [ 628.032442][T27779] total_swap 348160 [ 628.038782][T27779] total_swapcached 0 [ 628.042741][T27779] total_pgpgin 198073 [ 628.048671][T27779] total_pgpgout 201725 [ 628.052985][T27779] total_pgfault 308117 [ 628.058854][T27779] total_pgmajfault 1389 [ 628.065408][T27779] total_inactive_anon 0 [ 628.073355][T27779] total_active_anon 0 [ 628.080369][T27779] total_inactive_file 1605632 [ 628.087312][T27779] total_active_file 0 [ 628.092160][T27779] total_unevictable 0 [ 628.100412][T27779] anon_cost 0 [ 628.103751][T27779] file_cost 58 [ 628.107762][T27779] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.10106,pid=27778,uid=0 [ 628.127037][T27779] Memory cgroup out of memory: Killed process 27778 (syz.1.10106) total-vm:102296kB, anon-rss:1268kB, file-rss:22368kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:0 [ 630.204881][T27949] FAULT_INJECTION: forcing a failure. [ 630.204881][T27949] name failslab, interval 1, probability 0, space 0, times 0 [ 630.219174][T27949] CPU: 1 UID: 0 PID: 27949 Comm: syz.0.10167 Tainted: G U L syzkaller #0 PREEMPT(full) [ 630.219229][T27949] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 630.219242][T27949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 630.219263][T27949] Call Trace: [ 630.219274][T27949] [ 630.219287][T27949] dump_stack_lvl+0x16c/0x1f0 [ 630.219332][T27949] should_fail_ex+0x512/0x640 [ 630.219388][T27949] should_failslab+0xc2/0x120 [ 630.219437][T27949] __kmalloc_cache_noprof+0x80/0x800 [ 630.219474][T27949] ? report_access+0x100/0x550 [ 630.219514][T27949] ? report_access+0x100/0x550 [ 630.219548][T27949] report_access+0x100/0x550 [ 630.219589][T27949] yama_ptrace_access_check+0x589/0xd10 [ 630.219634][T27949] security_ptrace_access_check+0xb2/0x210 [ 630.219680][T27949] __ptrace_may_access+0x498/0x940 [ 630.219732][T27949] ptrace_attach+0x24f/0x6c0 [ 630.219782][T27949] __x64_sys_ptrace+0x25c/0x2a0 [ 630.219833][T27949] do_syscall_64+0xcd/0xf80 [ 630.219874][T27949] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 630.219909][T27949] RIP: 0033:0x7f1dd0f8f7c9 [ 630.219936][T27949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 630.219969][T27949] RSP: 002b:00007f1dcf1f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000065 [ 630.220002][T27949] RAX: ffffffffffffffda RBX: 00007f1dd11e5fa0 RCX: 00007f1dd0f8f7c9 [ 630.220024][T27949] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000004206 [ 630.220044][T27949] RBP: 00007f1dd1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 630.220065][T27949] R10: 0000000000200005 R11: 0000000000000246 R12: 0000000000000000 [ 630.220086][T27949] R13: 00007f1dd11e6038 R14: 00007f1dd11e5fa0 R15: 00007fffe9ee6a38 [ 630.220138][T27949] [ 630.534698][T27956] FAULT_INJECTION: forcing a failure. [ 630.534698][T27956] name fail_futex, interval 1, probability 0, space 0, times 0 [ 630.547957][T27956] CPU: 1 UID: 0 PID: 27956 Comm: syz.0.10171 Tainted: G U L syzkaller #0 PREEMPT(full) [ 630.548014][T27956] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 630.548026][T27956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 630.548045][T27956] Call Trace: [ 630.548057][T27956] [ 630.548071][T27956] dump_stack_lvl+0x16c/0x1f0 [ 630.548118][T27956] should_fail_ex+0x512/0x640 [ 630.548176][T27956] get_futex_key+0x1d0/0x15f0 [ 630.548219][T27956] ? __pfx_get_futex_key+0x10/0x10 [ 630.548253][T27956] ? __free_frozen_pages+0x817/0x1170 [ 630.548299][T27956] futex_wake+0xea/0x530 [ 630.548347][T27956] ? __pfx_futex_wake+0x10/0x10 [ 630.548397][T27956] ? import_iovec+0x86/0xb0 [ 630.548456][T27956] do_futex+0x1e3/0x350 [ 630.548497][T27956] ? __pfx_do_futex+0x10/0x10 [ 630.548546][T27956] __x64_sys_futex+0x1e0/0x4c0 [ 630.548592][T27956] ? __pfx___x64_sys_futex+0x10/0x10 [ 630.548646][T27956] do_syscall_64+0xcd/0xf80 [ 630.548687][T27956] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 630.548717][T27956] RIP: 0033:0x7f1dd0f8f7c9 [ 630.548744][T27956] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 630.548779][T27956] RSP: 002b:00007f1dcf1f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 630.548813][T27956] RAX: ffffffffffffffda RBX: 00007f1dd11e5fa8 RCX: 00007f1dd0f8f7c9 [ 630.548836][T27956] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1dd11e5fac [ 630.548866][T27956] RBP: 00007f1dd11e5fa0 R08: 00007f1dd1d27000 R09: 0000000000000000 [ 630.548887][T27956] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 630.548908][T27956] R13: 00007f1dd11e6038 R14: 00007fffe9ee6950 R15: 00007fffe9ee6a38 [ 630.548952][T27956] [ 630.880276][T27964] sg_write: data in/out 14745563/34144 bytes for SCSI command 0x0-- guessing data in; [ 630.880276][T27964] program syz.0.10174 not setting count and/or reply_len properly [ 634.982149][T28147] bridge0: port 3(veth0_to_bridge) entered blocking state [ 635.019642][T28147] bridge0: port 3(veth0_to_bridge) entered disabled state [ 635.050624][T28147] veth0_to_bridge: entered allmulticast mode [ 635.080808][T28147] veth0_to_bridge: entered promiscuous mode [ 635.087015][T28147] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 635.147053][T28147] bridge0: port 3(veth0_to_bridge) entered blocking state [ 635.155135][T28147] bridge0: port 3(veth0_to_bridge) entered forwarding state [ 635.425804][T28171] netlink: 2468 bytes leftover after parsing attributes in process `syz.0.10259'. [ 635.967346][T28212] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10268'. [ 636.028978][T28190] syz.1.10265 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 636.052377][T28190] CPU: 1 UID: 0 PID: 28190 Comm: syz.1.10265 Tainted: G U L syzkaller #0 PREEMPT(full) [ 636.052431][T28190] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 636.052444][T28190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 636.052464][T28190] Call Trace: [ 636.052474][T28190] [ 636.052487][T28190] dump_stack_lvl+0x16c/0x1f0 [ 636.052533][T28190] dump_header+0x101/0x960 [ 636.052573][T28190] oom_kill_process+0x176/0x910 [ 636.052614][T28190] out_of_memory+0x350/0x1700 [ 636.052649][T28190] ? __lock_acquire+0x436/0x2890 [ 636.052685][T28190] ? __pfx_out_of_memory+0x10/0x10 [ 636.052734][T28190] mem_cgroup_out_of_memory+0x118/0x130 [ 636.052773][T28190] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 636.052822][T28190] ? do_raw_spin_unlock+0x172/0x230 [ 636.052868][T28190] try_charge_memcg+0x695/0xd30 [ 636.052936][T28190] ? __pfx_try_charge_memcg+0x10/0x10 [ 636.052986][T28190] ? __print_lock_name+0x61/0xe0 [ 636.053029][T28190] ? rcu_read_unlock+0x17/0x60 [ 636.053094][T28190] charge_memcg+0x8a/0x230 [ 636.053144][T28190] __mem_cgroup_charge+0x2b/0x1e0 [ 636.053180][T28190] do_anonymous_page+0xca9/0x2190 [ 636.053234][T28190] __handle_mm_fault+0x1ecf/0x2bb0 [ 636.053280][T28190] ? __pfx___handle_mm_fault+0x10/0x10 [ 636.053317][T28190] ? __pte_offset_map_lock+0x174/0x310 [ 636.053363][T28190] ? find_held_lock+0x2b/0x80 [ 636.053418][T28190] ? follow_page_pte+0x5cf/0x1390 [ 636.053476][T28190] handle_mm_fault+0x3fe/0xad0 [ 636.053518][T28190] __get_user_pages+0x54e/0x3590 [ 636.053590][T28190] ? __pfx___get_user_pages+0x10/0x10 [ 636.053646][T28190] populate_vma_page_range+0x267/0x3f0 [ 636.053696][T28190] ? __pfx_populate_vma_page_range+0x10/0x10 [ 636.053742][T28190] ? __pfx_find_vma_intersection+0x10/0x10 [ 636.053787][T28190] ? do_mmap+0x69c/0x1210 [ 636.053835][T28190] __mm_populate+0x1d8/0x380 [ 636.053883][T28190] ? __pfx___mm_populate+0x10/0x10 [ 636.053969][T28190] ? up_write+0x282/0x4e0 [ 636.054010][T28190] vm_mmap_pgoff+0x37f/0x470 [ 636.054061][T28190] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 636.054103][T28190] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 636.054145][T28190] ? count_memcg_events+0x122/0x290 [ 636.054194][T28190] ? find_held_lock+0x2b/0x80 [ 636.054242][T28190] ksys_mmap_pgoff+0x7d/0x5c0 [ 636.054295][T28190] __x64_sys_mmap+0x125/0x190 [ 636.054334][T28190] do_syscall_64+0xcd/0xf80 [ 636.054376][T28190] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 636.054407][T28190] RIP: 0033:0x7fcc9598f7c9 [ 636.054434][T28190] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 636.054465][T28190] RSP: 002b:00007fcc9689d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 636.054497][T28190] RAX: ffffffffffffffda RBX: 00007fcc95be5fa0 RCX: 00007fcc9598f7c9 [ 636.054518][T28190] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 636.054538][T28190] RBP: 00007fcc95a13f91 R08: 0000000000000002 R09: 0000000000008000 [ 636.054558][T28190] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 636.054578][T28190] R13: 00007fcc95be6038 R14: 00007fcc95be5fa0 R15: 00007ffd3417e268 [ 636.054624][T28190] [ 636.383566][T28190] memory: usage 3072kB, limit 3072kB, failcnt 40842 [ 636.390331][T28190] memory+swap: usage 3820kB, limit 9007199254740988kB, failcnt 0 [ 636.398323][T28190] kmem: usage 1440kB, limit 9007199254740988kB, failcnt 0 [ 636.424681][T28190] Memory cgroup stats for /syz1: [ 636.424912][T28190] cache 0 [ 636.437559][T28190] rss 1671168 [ 636.440909][T28190] rss_huge 0 [ 636.445475][T28190] shmem 0 [ 636.448469][T28190] mapped_file 0 [ 636.453455][T28190] dirty 0 [ 636.456681][T28190] writeback 0 [ 636.460010][T28190] workingset_refault_anon 2778 [ 636.512149][T28190] workingset_refault_file 4782 [ 636.568605][T28190] swap 765952 [ 636.572950][T28190] swapcached 20480 [ 636.578374][T28190] pgpgin 199589 [ 636.587227][T28190] pgpgout 203226 [ 636.607021][T28190] pgfault 311280 [ 636.610651][T28190] pgmajfault 1485 [ 636.641615][T28190] inactive_anon 98304 [ 636.666061][T28190] active_anon 1572864 [ 636.670126][T28190] inactive_file 0 [ 636.713330][T28190] active_file 0 [ 636.716871][T28190] unevictable 0 [ 636.747988][T28190] hierarchical_memory_limit 3145728 [ 636.756712][T28190] hierarchical_memsw_limit 9223372036854771712 [ 636.770355][T28190] total_cache 0 [ 636.773914][T28190] total_rss 1671168 [ 636.778418][T28190] total_rss_huge 0 [ 636.784531][T28190] total_shmem 0 [ 636.788552][T28190] total_mapped_file 0 [ 636.800134][T28190] total_dirty 0 [ 636.803689][T28190] total_writeback 0 [ 636.807588][T28190] total_workingset_refault_anon 2778 [ 636.824061][T28190] total_workingset_refault_file 4782 [ 636.833230][T28190] total_swap 765952 [ 636.837205][T28190] total_swapcached 20480 [ 636.845802][T28190] total_pgpgin 199589 [ 636.853128][T28190] total_pgpgout 203226 [ 636.857258][T28190] total_pgfault 311280 [ 636.861916][T28190] total_pgmajfault 1485 [ 636.866206][T28190] total_inactive_anon 98304 [ 636.875570][T28190] total_active_anon 1572864 [ 636.888207][T28190] total_inactive_file 0 [ 636.896869][T28233] ovs_: entered promiscuous mode [ 636.902304][T28190] total_active_file 0 [ 636.906416][T28190] total_unevictable 0 [ 636.916628][T28190] anon_cost 86 [ 636.921039][T28190] file_cost 0 [ 636.924371][T28190] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.10265,pid=28188,uid=0 [ 636.952926][T28190] Memory cgroup out of memory: Killed process 28188 (syz.1.10265) total-vm:106132kB, anon-rss:2676kB, file-rss:21548kB, shmem-rss:0kB, UID:0 pgtables:116kB oom_score_adj:0 [ 639.326054][T28345] syz.1.10317 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 639.338850][T28345] CPU: 0 UID: 0 PID: 28345 Comm: syz.1.10317 Tainted: G U L syzkaller #0 PREEMPT(full) [ 639.338906][T28345] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 639.338919][T28345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 639.338948][T28345] Call Trace: [ 639.338960][T28345] [ 639.338973][T28345] dump_stack_lvl+0x16c/0x1f0 [ 639.339020][T28345] dump_header+0x101/0x960 [ 639.339059][T28345] oom_kill_process+0x176/0x910 [ 639.339100][T28345] out_of_memory+0x350/0x1700 [ 639.339132][T28345] ? __lock_acquire+0x436/0x2890 [ 639.339169][T28345] ? __pfx_out_of_memory+0x10/0x10 [ 639.339216][T28345] mem_cgroup_out_of_memory+0x118/0x130 [ 639.339254][T28345] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 639.339301][T28345] ? do_raw_spin_unlock+0x172/0x230 [ 639.339345][T28345] try_charge_memcg+0x695/0xd30 [ 639.339398][T28345] ? __pfx_try_charge_memcg+0x10/0x10 [ 639.339444][T28345] ? __print_lock_name+0x61/0xe0 [ 639.339487][T28345] ? rcu_read_unlock+0x17/0x60 [ 639.339544][T28345] charge_memcg+0x8a/0x230 [ 639.339589][T28345] __mem_cgroup_charge+0x2b/0x1e0 [ 639.339622][T28345] do_anonymous_page+0xca9/0x2190 [ 639.339667][T28345] __handle_mm_fault+0x1ecf/0x2bb0 [ 639.339712][T28345] ? __pfx___handle_mm_fault+0x10/0x10 [ 639.339749][T28345] ? __pte_offset_map_lock+0x174/0x310 [ 639.339791][T28345] ? find_held_lock+0x2b/0x80 [ 639.339841][T28345] ? follow_page_pte+0x5cf/0x1390 [ 639.339893][T28345] handle_mm_fault+0x3fe/0xad0 [ 639.339934][T28345] __get_user_pages+0x54e/0x3590 [ 639.340003][T28345] ? __pfx___get_user_pages+0x10/0x10 [ 639.340064][T28345] populate_vma_page_range+0x267/0x3f0 [ 639.340116][T28345] ? __pfx_populate_vma_page_range+0x10/0x10 [ 639.340164][T28345] ? __pfx_find_vma_intersection+0x10/0x10 [ 639.340210][T28345] ? do_mmap+0x69c/0x1210 [ 639.340259][T28345] __mm_populate+0x1d8/0x380 [ 639.340309][T28345] ? __pfx___mm_populate+0x10/0x10 [ 639.340361][T28345] ? up_write+0x282/0x4e0 [ 639.340402][T28345] vm_mmap_pgoff+0x37f/0x470 [ 639.340453][T28345] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 639.340499][T28345] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 639.340542][T28345] ? count_memcg_events+0x122/0x290 [ 639.340592][T28345] ? find_held_lock+0x2b/0x80 [ 639.340638][T28345] ksys_mmap_pgoff+0x7d/0x5c0 [ 639.340687][T28345] __x64_sys_mmap+0x125/0x190 [ 639.340720][T28345] do_syscall_64+0xcd/0xf80 [ 639.340753][T28345] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 639.340779][T28345] RIP: 0033:0x7fcc9598f7c9 [ 639.340801][T28345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 639.340825][T28345] RSP: 002b:00007fcc9689d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 639.340849][T28345] RAX: ffffffffffffffda RBX: 00007fcc95be5fa0 RCX: 00007fcc9598f7c9 [ 639.340865][T28345] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 639.340881][T28345] RBP: 00007fcc95a13f91 R08: 0000000000000002 R09: 0000000000008000 [ 639.340896][T28345] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 639.340911][T28345] R13: 00007fcc95be6038 R14: 00007fcc95be5fa0 R15: 00007ffd3417e268 [ 639.340958][T28345] [ 639.355216][T28345] memory: usage 3072kB, limit 3072kB, failcnt 41634 [ 639.543713][T28358] Device name cannot be null; rc = [-22] [ 639.565415][T28345] memory+swap: usage 3292kB, limit 9007199254740988kB, failcnt 0 [ 639.712482][T28345] kmem: usage 1436kB, limit 9007199254740988kB, failcnt 0 [ 639.729980][T28345] Memory cgroup stats for /syz1: [ 639.730194][T28345] cache 0 [ 639.749158][T28345] rss 1675264 [ 639.752521][T28345] rss_huge 0 [ 639.763450][T28345] shmem 0 [ 639.774323][T28345] mapped_file 0 [ 639.777856][T28345] dirty 0 [ 639.784432][T28345] writeback 0 [ 639.787776][T28345] workingset_refault_anon 2839 [ 639.792715][T28345] workingset_refault_file 4782 [ 639.824194][T28345] swap 225280 [ 639.827556][T28345] swapcached 0 [ 639.830970][T28345] pgpgin 201338 [ 639.867718][T28345] pgpgout 204974 [ 639.874514][T28345] pgfault 313596 [ 639.878270][T28345] pgmajfault 1504 [ 639.892221][T28345] inactive_anon 0 [ 639.904031][T28345] active_anon 1675264 [ 639.908210][T28345] inactive_file 0 [ 639.911891][T28345] active_file 0 [ 639.925747][T28345] unevictable 0 [ 639.929452][T28345] hierarchical_memory_limit 3145728 [ 639.953395][T28345] hierarchical_memsw_limit 9223372036854771712 [ 639.959649][T28345] total_cache 0 [ 639.963145][T28345] total_rss 1675264 [ 639.990787][T28345] total_rss_huge 0 [ 639.994702][T28345] total_shmem 0 [ 639.998200][T28345] total_mapped_file 0 [ 640.002223][T28345] total_dirty 0 [ 640.030273][T28345] total_writeback 0 [ 640.040530][T28345] total_workingset_refault_anon 2839 [ 640.053343][T28345] total_workingset_refault_file 4782 [ 640.068872][T28345] total_swap 225280 [ 640.074088][T28345] total_swapcached 0 [ 640.078027][T28345] total_pgpgin 201338 [ 640.082041][T28345] total_pgpgout 204974 [ 640.102616][T28345] total_pgfault 313596 [ 640.106752][T28345] total_pgmajfault 1504 [ 640.110949][T28345] total_inactive_anon 0 [ 640.143912][T28345] total_active_anon 1675264 [ 640.148495][T28345] total_inactive_file 0 [ 640.168172][T28345] total_active_file 0 [ 640.172720][T28345] total_unevictable 0 [ 640.176746][T28345] anon_cost 53 [ 640.188039][T28345] file_cost 0 [ 640.199736][T28345] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.10317,pid=28344,uid=0 [ 640.236146][T28345] Memory cgroup out of memory: Killed process 28344 (syz.1.10317) total-vm:108180kB, anon-rss:2676kB, file-rss:21548kB, shmem-rss:0kB, UID:0 pgtables:112kB oom_score_adj:0 [ 640.909371][T28408] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10346'. [ 641.725838][T28442] hugetlbfs: syz.1.10362 (28442): Using mlock ulimits for SHM_HUGETLB is obsolete [ 641.893429][T28449] sctp: [Deprecated]: syz.0.10366 (pid 28449) Use of struct sctp_assoc_value in delayed_ack socket option. [ 641.893429][T28449] Use struct sctp_sack_info instead [ 662.391470][T28529] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 662.668929][T28530] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 662.773349][T11197] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 662.806566][T28530] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 662.940198][T11197] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 662.971626][T28530] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 663.138781][T28530] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 663.934446][T11197] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 664.441302][T11197] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 664.627919][T28530] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 667.772127][T12782] Bluetooth: hci4: command tx timeout [ 669.846163][T28530] Bluetooth: hci4: command tx timeout [ 670.801071][T28530] Bluetooth: hci5: command tx timeout [ 671.940402][T28530] Bluetooth: hci4: command tx timeout [ 672.873939][T28530] Bluetooth: hci5: command tx timeout [ 673.984124][T28530] Bluetooth: hci4: command tx timeout [ 674.942378][T28530] Bluetooth: hci5: command tx timeout [ 677.199944][T12782] Bluetooth: hci5: command tx timeout [ 677.837553][T28528] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 679.945723][T11197] Bluetooth: hci7: Opcode 0x1003 failed: -110 [ 680.476443][T12782] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 680.500397][T28551] Bluetooth: hci7: Opcode 0x0c03 failed: -4 [ 680.649844][T28557] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 680.947883][T28557] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 682.894091][T28530] Bluetooth: hci6: Opcode 0x1001 failed: -110 [ 687.734971][T28548] Bluetooth: hci6: Opcode 0x0c03 failed: -110 [ 688.140960][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 688.147413][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 737.044787][T12782] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1 [ 738.288270][T28585] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9 [ 738.308361][T11197] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 738.328623][T28529] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1 [ 738.369592][T28528] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1 [ 738.418218][T11197] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 738.462083][T28585] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9 [ 738.506738][T28528] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9 [ 738.549721][T11197] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 738.579923][T28528] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9 [ 738.637027][T28528] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4 [ 738.656460][T28585] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9 [ 738.732022][T28528] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 738.762884][T11197] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2 [ 738.807646][T28529] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4 [ 738.827136][T28585] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9 [ 739.397565][T28528] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 739.461434][T28528] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2 [ 739.758124][T28585] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4 [ 739.970559][T28557] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2 [ 742.184972][T11197] Bluetooth: hci8: command tx timeout [ 742.303961][T28557] Bluetooth: hci9: command tx timeout [ 742.345265][T28557] Bluetooth: hci10: command tx timeout [ 742.618712][T28557] Bluetooth: hci11: command tx timeout [ 744.367966][T11197] Bluetooth: hci8: command tx timeout [ 744.475159][T11197] Bluetooth: hci10: command tx timeout [ 744.697939][T28582] Bluetooth: hci11: command tx timeout [ 745.506749][T28557] Bluetooth: hci9: command tx timeout [ 746.402069][T28557] Bluetooth: hci8: command tx timeout [ 748.336848][T28529] Bluetooth: hci9: command tx timeout [ 748.353218][T28557] Bluetooth: hci11: command tx timeout [ 748.469847][T28557] Bluetooth: hci8: command tx timeout [ 748.497180][T28582] Bluetooth: hci10: command tx timeout [ 749.261539][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 749.268059][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 750.381656][T28557] Bluetooth: hci9: command tx timeout [ 750.543497][T28557] Bluetooth: hci10: command tx timeout [ 750.592799][T11197] Bluetooth: hci11: command tx timeout [ 779.096956][T28557] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1 [ 779.131618][T28529] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 779.168325][T28557] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9 [ 779.301202][T28557] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9 [ 779.345530][T28529] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 779.377142][T28557] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4 [ 779.578645][T28557] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 779.585842][T28529] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2 [ 780.649918][T28557] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 781.025823][T28557] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 791.613757][T28529] Bluetooth: hci12: command tx timeout [ 791.757005][T28557] Bluetooth: hci7: command tx timeout [ 793.674880][T28582] Bluetooth: hci12: command tx timeout [ 794.160718][T11197] Bluetooth: hci7: command tx timeout [ 794.178531][T28582] Bluetooth: hci4: command 0x0406 tx timeout [ 795.110872][T11197] Bluetooth: hci5: command 0x0406 tx timeout [ 795.752307][T11197] Bluetooth: hci12: command tx timeout [ 796.389047][T11197] Bluetooth: hci7: command tx timeout [ 797.816803][T11197] Bluetooth: hci12: command tx timeout [ 798.451142][T11197] Bluetooth: hci7: command tx timeout [ 799.553602][ T31] INFO: task syz.1.10383:28487 blocked for more than 143 seconds. [ 799.561497][ T31] Tainted: G U L syzkaller #0 [ 799.573250][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 799.581977][ T31] task:syz.1.10383 state:D stack:27496 pid:28487 tgid:28483 ppid:5830 task_flags:0x400140 flags:0x00080002 [ 799.594928][ T31] Call Trace: [ 799.598258][ T31] [ 799.601223][ T31] ? __schedule+0x10b9/0x6150 [ 799.606475][ T31] __schedule+0x1139/0x6150 [ 799.611033][ T31] ? __lock_acquire+0x436/0x2890 [ 799.618453][ T31] ? __pfx___schedule+0x10/0x10 [ 799.624112][ T31] ? find_held_lock+0x2b/0x80 [ 799.628884][ T31] ? schedule+0x2d7/0x3a0 [ 799.633794][ T31] schedule+0xe7/0x3a0 [ 799.637915][ T31] schedule_preempt_disabled+0x13/0x30 [ 799.643976][ T31] __mutex_lock+0xc69/0x1ca0 [ 799.648638][ T31] ? find_held_lock+0x2b/0x80 [ 799.659254][ T31] ? nl80211_set_wiphy+0x1df/0x3310 [ 799.664948][ T31] ? __rtnl_unlock+0x68/0xf0 [ 799.669600][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 799.675248][ T31] ? __mutex_unlock_slowpath+0x161/0x790 [ 799.680951][ T31] ? lock_acquire+0x179/0x330 [ 799.686268][ T31] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 799.692316][ T31] ? rcu_is_watching+0x12/0xc0 [ 799.697735][ T31] ? trace_contention_end+0xdd/0x110 [ 799.703399][ T31] ? nl80211_set_wiphy+0x1df/0x3310 [ 799.708653][ T31] nl80211_set_wiphy+0x1df/0x3310 [ 799.714341][ T31] ? netdev_run_todo+0x850/0x12a0 [ 799.721109][ T31] ? __pfx_netdev_run_todo+0x10/0x10 [ 799.726905][ T31] ? __pfx_nl80211_set_wiphy+0x10/0x10 [ 799.732926][ T31] ? __nla_parse+0x40/0x60 [ 799.737492][ T31] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 799.743382][ T31] ? nl80211_pre_doit+0x1b0/0xb10 [ 799.748466][ T31] genl_family_rcv_msg_doit+0x209/0x2f0 [ 799.754597][ T31] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 799.760749][ T31] ? genl_get_cmd+0x194/0x580 [ 799.765996][ T31] ? bpf_lsm_capable+0x9/0x10 [ 799.770823][ T31] ? security_capable+0x7e/0x260 [ 799.776400][ T31] ? ns_capable+0xd7/0x110 [ 799.780968][ T31] genl_rcv_msg+0x55c/0x800 [ 799.786076][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 799.791163][ T31] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 799.797164][ T31] ? __pfx_nl80211_set_wiphy+0x10/0x10 [ 799.802967][ T31] ? __pfx_nl80211_post_doit+0x10/0x10 [ 799.808494][ T31] netlink_rcv_skb+0x158/0x420 [ 799.813941][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 799.819031][ T31] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 799.826583][ T31] genl_rcv+0x28/0x40 [ 799.830643][ T31] netlink_unicast+0x5aa/0x870 [ 799.835992][ T31] ? __pfx_netlink_unicast+0x10/0x10 [ 799.841354][ T31] netlink_sendmsg+0x8c8/0xdd0 [ 799.846648][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 799.852322][ T31] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 799.858476][ T31] ____sys_sendmsg+0xa5d/0xc30 [ 799.863702][ T31] ? copy_msghdr_from_user+0x10a/0x160 [ 799.869210][ T31] ? __pfx_____sys_sendmsg+0x10/0x10 [ 799.875141][ T31] ? __pfx_futex_wake_mark+0x10/0x10 [ 799.880578][ T31] ___sys_sendmsg+0x134/0x1d0 [ 799.890807][ T31] ? __pfx____sys_sendmsg+0x10/0x10 [ 799.896428][ T31] ? futex_private_hash_put+0x160/0x1b0 [ 799.902465][ T31] __sys_sendmsg+0x16d/0x220 [ 799.907128][ T31] ? __pfx___sys_sendmsg+0x10/0x10 [ 799.912885][ T31] ? __x64_sys_futex+0x1e0/0x4c0 [ 799.917912][ T31] do_syscall_64+0xcd/0xf80 [ 799.924622][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 799.930592][ T31] RIP: 0033:0x7fcc9598f7c9 [ 799.935857][ T31] RSP: 002b:00007fcc9689d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 799.944684][ T31] RAX: ffffffffffffffda RBX: 00007fcc95be5fa0 RCX: 00007fcc9598f7c9 [ 799.953592][ T31] RDX: 0000000020040894 RSI: 0000200000000080 RDI: 0000000000000003 [ 799.961976][ T31] RBP: 00007fcc95a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 799.970082][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 799.978719][ T31] R13: 00007fcc95be6038 R14: 00007fcc95be5fa0 R15: 00007ffd3417e268 [ 799.987298][ T31] [ 799.990360][ T31] INFO: task syz.0.10388:28495 blocked for more than 143 seconds. [ 799.998790][ T31] Tainted: G U L syzkaller #0 [ 800.005637][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 800.014704][ T31] task:syz.0.10388 state:D stack:27496 pid:28495 tgid:28494 ppid:5828 task_flags:0x400140 flags:0x00080002 [ 800.028648][ T31] Call Trace: [ 800.032320][ T31] [ 800.035323][ T31] ? __schedule+0x10b9/0x6150 [ 800.040055][ T31] __schedule+0x1139/0x6150 [ 800.045277][ T31] ? __lock_acquire+0x436/0x2890 [ 800.050293][ T31] ? __pfx___schedule+0x10/0x10 [ 800.055811][ T31] ? find_held_lock+0x2b/0x80 [ 800.060549][ T31] ? schedule+0x2d7/0x3a0 [ 800.065373][ T31] schedule+0xe7/0x3a0 [ 800.069497][ T31] schedule_preempt_disabled+0x13/0x30 [ 800.075549][ T31] __mutex_lock+0xc69/0x1ca0 [ 800.080203][ T31] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 800.086636][ T31] ? nl80211_pre_doit+0xb4/0xb10 [ 800.092018][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 800.097119][ T31] ? __nla_parse+0x40/0x60 [ 800.102070][ T31] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 800.107589][ T31] ? nl80211_pre_doit+0xb4/0xb10 [ 800.113875][ T31] ? rtnl_lock+0x9/0x20 [ 800.118098][ T31] nl80211_pre_doit+0xb4/0xb10 [ 800.129924][ T31] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 800.135930][ T31] genl_family_rcv_msg_doit+0x1c3/0x2f0 [ 800.141842][ T31] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 800.147968][ T31] ? genl_get_cmd+0x194/0x580 [ 800.153203][ T31] ? bpf_lsm_capable+0x9/0x10 [ 800.157936][ T31] ? security_capable+0x7e/0x260 [ 800.163384][ T31] ? ns_capable+0xd7/0x110 [ 800.167873][ T31] genl_rcv_msg+0x55c/0x800 [ 800.172958][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 800.178047][ T31] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 800.183913][ T31] ? __pfx_nl80211_vendor_cmd+0x10/0x10 [ 800.189534][ T31] ? __pfx_nl80211_post_doit+0x10/0x10 [ 800.195728][ T31] netlink_rcv_skb+0x158/0x420 [ 800.200860][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 800.205987][ T31] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 800.211883][ T31] ? netlink_deliver_tap+0x1ae/0xd30 [ 800.217234][ T31] genl_rcv+0x28/0x40 [ 800.221756][ T31] netlink_unicast+0x5aa/0x870 [ 800.226590][ T31] ? __pfx_netlink_unicast+0x10/0x10 [ 800.234120][ T31] netlink_sendmsg+0x8c8/0xdd0 [ 800.238964][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 800.244823][ T31] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 800.251322][ T31] ____sys_sendmsg+0xa5d/0xc30 [ 800.256154][ T31] ? copy_msghdr_from_user+0x10a/0x160 [ 800.262181][ T31] ? __pfx_____sys_sendmsg+0x10/0x10 [ 800.267642][ T31] ? __pfx_futex_wake_mark+0x10/0x10 [ 800.273520][ T31] ___sys_sendmsg+0x134/0x1d0 [ 800.278254][ T31] ? __pfx____sys_sendmsg+0x10/0x10 [ 800.284014][ T31] ? futex_private_hash_put+0x160/0x1b0 [ 800.290025][ T31] __sys_sendmsg+0x16d/0x220 [ 800.294769][ T31] ? __pfx___sys_sendmsg+0x10/0x10 [ 800.300377][ T31] ? __x64_sys_futex+0x1e0/0x4c0 [ 800.305439][ T31] do_syscall_64+0xcd/0xf80 [ 800.310488][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 800.316448][ T31] RIP: 0033:0x7f1dd0f8f7c9 [ 800.321361][ T31] RSP: 002b:00007f1dcf1f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 800.331846][ T31] RAX: ffffffffffffffda RBX: 00007f1dd11e5fa0 RCX: 00007f1dd0f8f7c9 [ 800.340209][ T31] RDX: 0000000000000090 RSI: 00002000000003c0 RDI: 0000000000000003 [ 800.348231][ T31] RBP: 00007f1dd1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 800.359133][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 800.367156][ T31] R13: 00007f1dd11e6038 R14: 00007f1dd11e5fa0 R15: 00007fffe9ee6a38 [ 800.377835][ T31] [ 800.381437][ T31] INFO: task syz.3.10393:28506 blocked for more than 144 seconds. [ 800.389674][ T31] Tainted: G U L syzkaller #0 [ 800.396292][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 800.405557][ T31] task:syz.3.10393 state:D stack:27160 pid:28506 tgid:28505 ppid:5829 task_flags:0x400140 flags:0x00080002 [ 800.417971][ T31] Call Trace: [ 800.425671][ T31] [ 800.429028][ T31] ? __schedule+0x10b9/0x6150 [ 800.435449][ T31] __schedule+0x1139/0x6150 [ 800.440552][ T31] ? __lock_acquire+0x436/0x2890 [ 800.445653][ T31] ? __pfx___schedule+0x10/0x10 [ 800.451019][ T31] ? find_held_lock+0x2b/0x80 [ 800.455766][ T31] ? schedule+0x2d7/0x3a0 [ 800.460693][ T31] schedule+0xe7/0x3a0 [ 800.464818][ T31] schedule_preempt_disabled+0x13/0x30 [ 800.470783][ T31] __mutex_lock+0xc69/0x1ca0 [ 800.475434][ T31] ? ethnl_set_features+0x1fb/0xcd0 [ 800.481304][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 800.486395][ T31] ? __pfx_ethnl_parse_header_dev_get+0x10/0x10 [ 800.493204][ T31] ? ethnl_set_features+0x1fb/0xcd0 [ 800.498932][ T31] ? rtnl_lock+0x9/0x20 [ 800.503144][ T31] ethnl_set_features+0x1fb/0xcd0 [ 800.508236][ T31] ? __pfx_ethnl_set_features+0x10/0x10 [ 800.514719][ T31] ? __pfx___nla_validate_parse+0x10/0x10 [ 800.520922][ T31] ? rcu_is_watching+0x12/0xc0 [ 800.525766][ T31] ? __nla_parse+0x40/0x60 [ 800.530716][ T31] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 800.540071][ T31] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 800.547542][ T31] genl_family_rcv_msg_doit+0x209/0x2f0 [ 800.553707][ T31] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 800.560134][ T31] ? genl_get_cmd+0x194/0x580 [ 800.564879][ T31] ? bpf_lsm_capable+0x9/0x10 [ 800.570167][ T31] ? security_capable+0x7e/0x260 [ 800.575172][ T31] ? ns_capable+0xd7/0x110 [ 800.580153][ T31] genl_rcv_msg+0x55c/0x800 [ 800.584726][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 800.594819][ T31] ? __pfx_ethnl_set_features+0x10/0x10 [ 800.600942][ T31] netlink_rcv_skb+0x158/0x420 [ 800.605764][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 800.611376][ T31] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 800.616744][ T31] ? netlink_deliver_tap+0x1ae/0xd30 [ 800.622666][ T31] genl_rcv+0x28/0x40 [ 800.626878][ T31] netlink_unicast+0x5aa/0x870 [ 800.632187][ T31] ? __pfx_netlink_unicast+0x10/0x10 [ 800.639421][ T31] netlink_sendmsg+0x8c8/0xdd0 [ 800.644262][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 800.650102][ T31] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 800.656245][ T31] ____sys_sendmsg+0xa5d/0xc30 [ 800.661552][ T31] ? copy_msghdr_from_user+0x10a/0x160 [ 800.667063][ T31] ? __pfx_____sys_sendmsg+0x10/0x10 [ 800.673005][ T31] ? __pfx_futex_wake_mark+0x10/0x10 [ 800.678771][ T31] ___sys_sendmsg+0x134/0x1d0 [ 800.683509][ T31] ? __pfx____sys_sendmsg+0x10/0x10 [ 800.689295][ T31] ? futex_private_hash_put+0x160/0x1b0 [ 800.695039][ T31] __sys_sendmsg+0x16d/0x220 [ 800.700139][ T31] ? __pfx___sys_sendmsg+0x10/0x10 [ 800.705304][ T31] ? __x64_sys_futex+0x1e0/0x4c0 [ 800.710877][ T31] do_syscall_64+0xcd/0xf80 [ 800.715527][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 800.722025][ T31] RIP: 0033:0x7f63aab8f7c9 [ 800.726484][ T31] RSP: 002b:00007f63abae0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 800.735592][ T31] RAX: ffffffffffffffda RBX: 00007f63aade5fa0 RCX: 00007f63aab8f7c9 [ 800.745510][ T31] RDX: 0000000004000000 RSI: 0000200000000440 RDI: 0000000000000003 [ 800.754121][ T31] RBP: 00007f63aac13f91 R08: 0000000000000000 R09: 0000000000000000 [ 800.762542][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 800.770943][ T31] R13: 00007f63aade6038 R14: 00007f63aade5fa0 R15: 00007ffe3c940b48 [ 800.779275][ T31] [ 800.782562][ T31] [ 800.782562][ T31] Showing all locks held in the system: [ 800.791156][ T31] 1 lock held by khungtaskd/31: [ 800.796225][ T31] #0: ffffffff8e3c94a0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0 [ 800.806679][ T31] 2 locks held by syz-executor/5816: [ 800.812370][ T31] #0: ffff88807581f308 (vm_lock){++++}-{0:0}, at: lock_vma_under_rcu+0x117/0x580 [ 800.826469][ T31] #1: ffff888034a26518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x174/0x380 [ 800.836521][ T31] 4 locks held by kworker/1:3/5832: [ 800.843679][ T31] #0: ffff88814372ad48 ((wq_completion)wg-kex-wg2#4){+.+.}-{0:0}, at: process_one_work+0x128d/0x1b20 [ 800.855146][ T31] #1: ffffc9000418fc90 ((work_completion)(&({ do { const void *__vpp_verify = (typeof((worker) + 0))((void *)0); (void)__vpp_verify; } while (0); ({ unsigned long __ptr; __asm__ ("" : "=r"(__ptr) : "0"((__typeof__(*((worker))) *)(( unsigned long)((worker))))); (typeof((__typeof__(*((worker))) *)(( unsigned long)((worker))))) (__ptr + (((__per_cpu_offset[(cpu)])))); }); })->work)){+.+.}-{0:0}, at: process_one_work+0x914/0x1b20 [ 800.895477][ T31] #2: ffff888079881308 (&wg->static_identity.lock){++++}-{4:4}, at: wg_noise_handshake_consume_response+0x22b/0x950 [ 800.908567][ T31] #3: ffff888029aec890 (&handshake->lock){++++}-{4:4}, at: wg_noise_handshake_consume_response+0x2f7/0x950 [ 800.920615][ T31] 2 locks held by kworker/0:8/11092: [ 800.925939][ T31] 3 locks held by kworker/u10:0/11196: [ 800.931965][ T31] 3 locks held by kworker/u10:1/11201: [ 800.937774][ T31] 4 locks held by kworker/u10:2/11203: [ 800.945032][ T31] 3 locks held by kworker/u10:3/11205: [ 800.951053][ T31] 3 locks held by kworker/u10:5/11209: [ 800.956950][ T31] 3 locks held by kworker/u10:6/11214: [ 800.962445][ T31] #0: ffff88814c434948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x128d/0x1b20 [ 800.974115][ T31] #1: ffffc90003037c90 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x914/0x1b20 [ 800.987789][ T31] #2: ffffffff90142068 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_verify_work+0x12/0x30 [ 800.997757][ T31] 4 locks held by kworker/u10:7/11217: [ 801.003251][ T31] 3 locks held by kworker/u10:8/11224: [ 801.009254][ T31] 3 locks held by kworker/u10:9/11235: [ 801.014754][ T31] 3 locks held by kworker/u10:10/11323: [ 801.020836][ T31] 8 locks held by kworker/u10:11/11638: [ 801.026767][ T31] 3 locks held by kworker/u10:12/12797: [ 801.032361][ T31] 3 locks held by kworker/u10:13/13154: [ 801.038427][ T31] 3 locks held by kworker/u10:15/16637: [ 801.053311][ T31] 3 locks held by syz.2.7404/21603: [ 801.058972][ T31] #0: ffff88807a42cec0 (&hdev->req_lock){+.+.}-{4:4}, at: hci_dev_do_close+0x26/0xc0 [ 801.069003][ T31] #1: ffff88807a42c0c0 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x3af/0x1260 [ 801.079227][ T31] #2: ffffffff8e3d4bf8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x284/0x3c0 [ 801.089723][ T31] 3 locks held by kworker/u10:16/23016: [ 801.095667][ T31] 6 locks held by kworker/u10:17/23453: [ 801.101258][ T31] 2 locks held by kworker/u10:18/23725: [ 801.107237][ T31] 4 locks held by kworker/u10:19/27856: [ 801.112824][ T31] 2 locks held by getty/28072: [ 801.118152][ T31] #0: ffff8880320510a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 801.128307][ T31] #1: ffffc900043e32f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x1510 [ 801.138960][ T31] 3 locks held by syz.1.10383/28487: [ 801.146371][ T31] #0: ffffffff901e8510 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 [ 801.154672][ T31] #1: ffffffff90142068 (rtnl_mutex){+.+.}-{4:4}, at: nl80211_set_wiphy+0x94/0x3310 [ 801.164750][ T31] #2: ffff888022ee8788 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: nl80211_set_wiphy+0x1df/0x3310 [ 801.175277][ T31] 2 locks held by syz.0.10388/28495: [ 801.180603][ T31] #0: ffffffff901e8510 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 [ 801.189406][ T31] #1: ffffffff90142068 (rtnl_mutex){+.+.}-{4:4}, at: nl80211_pre_doit+0xb4/0xb10 [ 801.199072][ T31] 2 locks held by syz.3.10393/28506: [ 801.204393][ T31] #0: ffffffff901e8510 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 [ 801.213104][ T31] #1: ffffffff90142068 (rtnl_mutex){+.+.}-{4:4}, at: ethnl_set_features+0x1fb/0xcd0 [ 801.223149][ T31] 1 lock held by syz-executor/28519: [ 801.228762][ T31] #0: ffffffff90142068 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540 [ 801.238630][ T31] 1 lock held by syz-executor/28520: [ 801.243954][ T31] #0: ffffffff90142068 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540 [ 801.255521][ T31] 5 locks held by kworker/u11:3/28529: [ 801.261020][ T31] #0: ffff888028563948 ((wq_completion)hci4){+.+.}-{0:0}, at: process_one_work+0x128d/0x1b20 [ 801.271995][ T31] #1: ffffc9000503fc90 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_one_work+0x914/0x1b20 [ 801.288544][ T31] #2: ffff888012a38ec0 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x175/0x470 [ 801.300800][ T31] #3: ffff888012a380c0 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x13f/0xb20 [ 801.311197][ T31] #4: ffffffff903bee88 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_failed+0x14f/0x360 [ 801.321520][ T31] 4 locks held by kworker/u10:21/28533: [ 801.327600][ T31] 4 locks held by kworker/u10:22/28538: [ 801.333180][ T31] 4 locks held by kworker/0:11/28543: [ 801.339168][ T31] 3 locks held by kworker/u10:26/28564: [ 801.345073][ T31] 1 lock held by syz-executor/28567: [ 801.352083][ T31] #0: ffffffff90142068 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540 [ 801.362298][ T31] 1 lock held by syz-executor/28568: [ 801.367965][ T31] #0: ffffffff90142068 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540 [ 801.377886][ T31] 1 lock held by syz-executor/28577: [ 801.383302][ T31] #0: ffffffff90142068 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540 [ 801.393308][ T31] 1 lock held by syz-executor/28583: [ 801.399038][ T31] #0: ffffffff90142068 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540 [ 801.408856][ T31] 7 locks held by kworker/u11:7/28585: [ 801.414720][ T31] #0: ffff888028561148 ((wq_completion)hci5){+.+.}-{0:0}, at: process_one_work+0x128d/0x1b20 [ 801.425431][ T31] #1: ffffc90004eefc90 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_one_work+0x914/0x1b20 [ 801.437820][ T31] #2: ffff88801cfc8ec0 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x175/0x470 [ 801.448084][ T31] #3: ffff88801cfc80c0 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x13f/0xb20 [ 801.459806][ T31] #4: ffffffff903bee88 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_failed+0x14f/0x360 [ 801.471245][ T31] #5: ffff88807976cb38 (&conn->lock#2){+.+.}-{4:4}, at: l2cap_conn_del+0x80/0x760 [ 801.481162][ T31] #6: ffffffff8e3d4bf8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x1a3/0x3c0 [ 801.491625][ T31] 5 locks held by kworker/0:13/28599: [ 801.497581][ T31] 2 locks held by kworker/0:14/28600: [ 801.503020][ T31] 1 lock held by syz-executor/28612: [ 801.508921][ T31] #0: ffffffff90142068 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540 [ 801.523144][ T31] 1 lock held by syz-executor/28615: [ 801.528586][ T31] #0: ffffffff90142068 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540 [ 801.538958][ T31] 4 locks held by kworker/u10:27/28617: [ 801.544900][ T31] [ 801.547259][ T31] ============================================= [ 801.547259][ T31] [ 801.558125][ T31] NMI backtrace for cpu 1 [ 801.558152][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G U L syzkaller #0 PREEMPT(full) [ 801.558200][ T31] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 801.558212][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 801.558231][ T31] Call Trace: [ 801.558241][ T31] [ 801.558253][ T31] dump_stack_lvl+0x116/0x1f0 [ 801.558298][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 801.558358][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 801.558391][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 801.558441][ T31] sys_info+0x133/0x180 [ 801.558482][ T31] watchdog+0xe66/0x1180 [ 801.558535][ T31] ? rcu_is_watching+0x12/0xc0 [ 801.558579][ T31] ? __pfx_watchdog+0x10/0x10 [ 801.558619][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 801.558659][ T31] ? __kthread_parkme+0x19e/0x250 [ 801.558706][ T31] ? __pfx_watchdog+0x10/0x10 [ 801.558749][ T31] kthread+0x3c5/0x780 [ 801.558781][ T31] ? __pfx_kthread+0x10/0x10 [ 801.558814][ T31] ? rcu_is_watching+0x12/0xc0 [ 801.558856][ T31] ? __pfx_kthread+0x10/0x10 [ 801.558889][ T31] ret_from_fork+0x983/0xb10 [ 801.558922][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 801.558955][ T31] ? __switch_to+0x7af/0x10d0 [ 801.558994][ T31] ? __pfx_kthread+0x10/0x10 [ 801.559026][ T31] ret_from_fork_asm+0x1a/0x30 [ 801.559089][ T31] [ 801.559101][ T31] Sending NMI from CPU 1 to CPUs 0: [ 801.703268][ C0] NMI backtrace for cpu 0 [ 801.703295][ C0] CPU: 0 UID: 0 PID: 11638 Comm: kworker/u10:11 Tainted: G U L syzkaller #0 PREEMPT(full) [ 801.703335][ C0] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 801.703345][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 801.703363][ C0] Workqueue: wg-kex-wg1 wg_packet_handshake_send_worker [ 801.703408][ C0] RIP: 0010:__rcu_read_lock+0xb4/0xf0 [ 801.703445][ C0] Code: 04 00 00 65 48 8b 1d 53 4b 0f 12 48 8d bb 84 04 00 00 48 89 fa 48 c1 ea 03 0f b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 04 <84> d2 75 1f 8b 83 84 04 00 00 3d ff ff ff 3f 7f 07 5b 5d c3 cc cc [ 801.703468][ C0] RSP: 0018:ffffc90000006ae8 EFLAGS: 00000202 [ 801.703488][ C0] RAX: 0000000000000007 RBX: ffff888029901e80 RCX: ffffc90000006ac4 [ 801.703505][ C0] RDX: 0000000000000000 RSI: ffffffff89461483 RDI: ffff888029902304 [ 801.703522][ C0] RBP: ffff888029901e80 R08: 0000000000000001 R09: 0000000039529a68 [ 801.703538][ C0] R10: 0000000000000002 R11: 00000000000845e6 R12: ffffffff81a8d780 [ 801.703555][ C0] R13: ffffc90000006b70 R14: 0000000000000000 R15: ffff888029901e80 [ 801.703572][ C0] FS: 0000000000000000(0000) GS:ffff888124904000(0000) knlGS:0000000000000000 [ 801.703603][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 801.703620][ C0] CR2: 00007fcc95bb42f8 CR3: 00000000326d2000 CR4: 00000000003526f0 [ 801.703637][ C0] Call Trace: [ 801.703647][ C0] [ 801.703658][ C0] unwind_next_frame+0xae/0x20a0 [ 801.703688][ C0] ? __napi_poll.constprop.0+0xb3/0x540 [ 801.703729][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 801.703767][ C0] arch_stack_walk+0x94/0x100 [ 801.703797][ C0] ? __napi_poll.constprop.0+0xb3/0x540 [ 801.703836][ C0] stack_trace_save+0x8e/0xc0 [ 801.703871][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 801.703909][ C0] ? __lock_acquire+0x436/0x2890 [ 801.703933][ C0] ? __kasan_slab_free+0x5f/0x80 [ 801.703965][ C0] ? kmem_cache_free+0x2d8/0x770 [ 801.703996][ C0] kasan_save_stack+0x33/0x60 [ 801.704025][ C0] ? kasan_save_stack+0x33/0x60 [ 801.704054][ C0] ? kasan_save_track+0x14/0x30 [ 801.704084][ C0] ? kasan_save_free_info+0x3b/0x60 [ 801.704107][ C0] ? __kasan_slab_free+0x5f/0x80 [ 801.704137][ C0] ? kmem_cache_free+0x2d8/0x770 [ 801.704164][ C0] ? kfree_skbmem+0x1a4/0x1f0 [ 801.704195][ C0] ? sk_skb_reason_drop+0x136/0x1a0 [ 801.704220][ C0] ? ip6_mc_input+0x82c/0xf60 [ 801.704242][ C0] ? ip6_rcv_finish+0x3df/0x580 [ 801.704263][ C0] ? ip_sabotage_in+0x21e/0x290 [ 801.704288][ C0] ? nf_hook_slow+0xbe/0x200 [ 801.704310][ C0] ? nf_hook.constprop.0+0x424/0x750 [ 801.704346][ C0] ? ipv6_rcv+0xa4/0x650 [ 801.704379][ C0] ? __netif_receive_skb_one_core+0x12d/0x1e0 [ 801.704414][ C0] ? __netif_receive_skb+0x1d/0x160 [ 801.704448][ C0] ? netif_receive_skb+0x137/0x760 [ 801.704482][ C0] ? br_pass_frame_up+0x346/0x490 [ 801.704508][ C0] ? br_handle_frame_finish+0x10e8/0x1f00 [ 801.704537][ C0] ? br_nf_hook_thresh+0x307/0x410 [ 801.704563][ C0] ? br_nf_pre_routing_finish_ipv6+0x76a/0xfc0 [ 801.704599][ C0] ? br_nf_pre_routing_ipv6+0x3cd/0x8c0 [ 801.704627][ C0] ? br_nf_pre_routing+0x860/0x15b0 [ 801.704653][ C0] ? br_handle_frame+0xb28/0x14e0 [ 801.704679][ C0] ? __netif_receive_skb_core.constprop.0+0x6b3/0x35b0 [ 801.704716][ C0] ? __netif_receive_skb_one_core+0xb0/0x1e0 [ 801.704751][ C0] ? __netif_receive_skb+0x1d/0x160 [ 801.704785][ C0] ? process_backlog+0x4a2/0x1650 [ 801.704818][ C0] ? __napi_poll.constprop.0+0xb3/0x540 [ 801.704869][ C0] kasan_save_track+0x14/0x30 [ 801.704900][ C0] kasan_save_free_info+0x3b/0x60 [ 801.704924][ C0] __kasan_slab_free+0x5f/0x80 [ 801.704957][ C0] kmem_cache_free+0x2d8/0x770 [ 801.704986][ C0] ? kfree_skbmem+0x1a4/0x1f0 [ 801.705018][ C0] ? kfree_skbmem+0x1a4/0x1f0 [ 801.705048][ C0] kfree_skbmem+0x1a4/0x1f0 [ 801.705079][ C0] sk_skb_reason_drop+0x136/0x1a0 [ 801.705108][ C0] ip6_mc_input+0x82c/0xf60 [ 801.705133][ C0] ? __pfx_ip6_mc_input+0x10/0x10 [ 801.705157][ C0] ? __netif_receive_skb_core.constprop.0+0x6fd/0x35b0 [ 801.705203][ C0] ip6_rcv_finish+0x3df/0x580 [ 801.705225][ C0] ? __pfx_ip6_rcv_finish+0x10/0x10 [ 801.705248][ C0] ? __pfx_ip_sabotage_in+0x10/0x10 [ 801.705273][ C0] ip_sabotage_in+0x21e/0x290 [ 801.705299][ C0] nf_hook_slow+0xbe/0x200 [ 801.705324][ C0] nf_hook.constprop.0+0x424/0x750 [ 801.705361][ C0] ? __pfx_ip6_rcv_finish+0x10/0x10 [ 801.705384][ C0] ? __pfx_nf_hook.constprop.0+0x10/0x10 [ 801.705420][ C0] ? ip6_rcv_core+0xbd4/0x1c30 [ 801.705457][ C0] ? __pfx_ip6_rcv_finish+0x10/0x10 [ 801.705480][ C0] ? ip6_rcv_core+0xc70/0x1c30 [ 801.705518][ C0] ? __pfx_ipv6_rcv+0x10/0x10 [ 801.705553][ C0] ipv6_rcv+0xa4/0x650 [ 801.705596][ C0] ? __pfx_ipv6_rcv+0x10/0x10 [ 801.705630][ C0] __netif_receive_skb_one_core+0x12d/0x1e0 [ 801.705666][ C0] ? __pfx___netif_receive_skb_one_core+0x10/0x10 [ 801.705703][ C0] ? get_rps_cpu+0x68a/0x16c0 [ 801.705742][ C0] __netif_receive_skb+0x1d/0x160 [ 801.705778][ C0] netif_receive_skb+0x137/0x760 [ 801.705812][ C0] ? __pfx_netif_receive_skb+0x10/0x10 [ 801.705851][ C0] ? br_netif_receive_skb+0xff/0x200 [ 801.705879][ C0] br_pass_frame_up+0x346/0x490 [ 801.705910][ C0] br_handle_frame_finish+0x10e8/0x1f00 [ 801.705942][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 801.705976][ C0] ? ip6t_do_table+0xc25/0x1c30 [ 801.706011][ C0] ? __pfx_ip6t_do_table+0x10/0x10 [ 801.706045][ C0] ? nf_hook_slow+0x132/0x200 [ 801.706072][ C0] br_nf_hook_thresh+0x307/0x410 [ 801.706099][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 801.706129][ C0] ? __pfx_br_nf_hook_thresh+0x10/0x10 [ 801.706158][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 801.706186][ C0] ? __pfx_nf_nat_ipv6_in+0x10/0x10 [ 801.706221][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 801.706255][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 801.706290][ C0] br_nf_pre_routing_finish_ipv6+0x76a/0xfc0 [ 801.706321][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 801.706354][ C0] br_nf_pre_routing_ipv6+0x3cd/0x8c0 [ 801.706384][ C0] ? __pfx_br_nf_pre_routing_ipv6+0x10/0x10 [ 801.706413][ C0] ? lock_acquire+0x179/0x330 [ 801.706436][ C0] ? __pfx_br_nf_pre_routing_finish_ipv6+0x10/0x10 [ 801.706466][ C0] ? net_generic+0xea/0x2a0 [ 801.706494][ C0] br_nf_pre_routing+0x860/0x15b0 [ 801.706525][ C0] br_handle_frame+0xb28/0x14e0 [ 801.706554][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 801.706590][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 801.706620][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 801.706647][ C0] __netif_receive_skb_core.constprop.0+0x6b3/0x35b0 [ 801.706690][ C0] ? kmem_cache_free+0x2d8/0x770 [ 801.706719][ C0] ? find_held_lock+0x2b/0x80 [ 801.706749][ C0] ? kfree_skbmem+0x1a4/0x1f0 [ 801.706781][ C0] ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10 [ 801.706830][ C0] ? kfree_skbmem+0x1a4/0x1f0 [ 801.706860][ C0] ? kfree_skbmem+0x1a4/0x1f0 [ 801.706889][ C0] ? sk_skb_reason_drop+0x136/0x1a0 [ 801.706916][ C0] ? ip6_mc_input+0x515/0xf60 [ 801.706940][ C0] ? __pfx_ip6_mc_input+0x10/0x10 [ 801.706965][ C0] ? __lock_acquire+0x436/0x2890 [ 801.706992][ C0] ? process_backlog+0x450/0x1650 [ 801.707027][ C0] __netif_receive_skb_one_core+0xb0/0x1e0 [ 801.707064][ C0] ? __pfx___netif_receive_skb_one_core+0x10/0x10 [ 801.707102][ C0] ? lock_acquire+0x179/0x330 [ 801.707128][ C0] ? process_backlog+0x450/0x1650 [ 801.707162][ C0] __netif_receive_skb+0x1d/0x160 [ 801.707198][ C0] process_backlog+0x4a2/0x1650 [ 801.707236][ C0] __napi_poll.constprop.0+0xb3/0x540 [ 801.707275][ C0] net_rx_action+0x9f9/0xfa0 [ 801.707316][ C0] ? __pfx_net_rx_action+0x10/0x10 [ 801.707352][ C0] ? mark_held_locks+0x49/0x80 [ 801.707375][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 801.707406][ C0] ? tmigr_handle_remote+0x132/0x380 [ 801.707446][ C0] ? run_timer_base+0x121/0x190 [ 801.707471][ C0] ? __pfx_run_timer_base+0x10/0x10 [ 801.707499][ C0] handle_softirqs+0x219/0x950 [ 801.707535][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 801.707568][ C0] ? kernel_fpu_end+0x59/0x70 [ 801.707603][ C0] do_softirq+0xb2/0xf0 [ 801.707636][ C0] [ 801.707644][ C0] [ 801.707653][ C0] __local_bh_enable_ip+0x100/0x120 [ 801.707686][ C0] kernel_fpu_end+0x5e/0x70 [ 801.707713][ C0] blake2s_compress+0x77/0xe0 [ 801.707749][ C0] blake2s_final+0xc9/0x160 [ 801.707784][ C0] hmac.constprop.0+0x252/0x420 [ 801.707813][ C0] ? __pfx_hmac.constprop.0+0x10/0x10 [ 801.707840][ C0] ? __asan_memcpy+0x3c/0x60 [ 801.707872][ C0] ? __pfx_encode_point+0x10/0x10 [ 801.707909][ C0] kdf.constprop.0+0x122/0x280 [ 801.707940][ C0] ? __pfx_kdf.constprop.0+0x10/0x10 [ 801.707968][ C0] ? __pfx_curve25519+0x10/0x10 [ 801.707996][ C0] ? kdf.constprop.0+0x223/0x280 [ 801.708027][ C0] ? __pfx_mix_hash+0x10/0x10 [ 801.708058][ C0] mix_dh+0xd2/0x130 [ 801.708087][ C0] ? __pfx_mix_dh+0x10/0x10 [ 801.708120][ C0] wg_noise_handshake_create_initiation+0x337/0x610 [ 801.708156][ C0] ? __pfx_wg_noise_handshake_create_initiation+0x10/0x10 [ 801.708189][ C0] ? find_held_lock+0x2b/0x80 [ 801.708221][ C0] ? ktime_get_coarse_with_offset+0x1af/0x240 [ 801.708246][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 801.708275][ C0] ? ktime_get_coarse_with_offset+0x1c1/0x240 [ 801.708300][ C0] ? ktime_get_coarse_with_offset+0x150/0x240 [ 801.708327][ C0] wg_packet_send_handshake_initiation+0x19a/0x360 [ 801.708366][ C0] ? __pfx_wg_packet_send_handshake_initiation+0x10/0x10 [ 801.708403][ C0] ? __lock_acquire+0x436/0x2890 [ 801.708438][ C0] wg_packet_handshake_send_worker+0x1c/0x30 [ 801.708475][ C0] process_one_work+0x9ba/0x1b20 [ 801.708507][ C0] ? __pfx_process_one_work+0x10/0x10 [ 801.708538][ C0] ? assign_work+0x1a0/0x250 [ 801.708565][ C0] worker_thread+0x6c8/0xf10 [ 801.708602][ C0] ? __kthread_parkme+0x19e/0x250 [ 801.708636][ C0] ? __pfx_worker_thread+0x10/0x10 [ 801.708663][ C0] kthread+0x3c5/0x780 [ 801.708687][ C0] ? __pfx_kthread+0x10/0x10 [ 801.708712][ C0] ? rcu_is_watching+0x12/0xc0 [ 801.708744][ C0] ? __pfx_kthread+0x10/0x10 [ 801.708768][ C0] ret_from_fork+0x983/0xb10 [ 801.708793][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 801.708819][ C0] ? __switch_to+0x7af/0x10d0 [ 801.708849][ C0] ? __pfx_kthread+0x10/0x10 [ 801.708872][ C0] ret_from_fork_asm+0x1a/0x30 [ 801.708914][ C0] [ 802.833789][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 802.840790][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G U L syzkaller #0 PREEMPT(full) [ 802.851534][ T31] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 802.856767][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 802.866861][ T31] Call Trace: [ 802.870181][ T31] [ 802.873143][ T31] dump_stack_lvl+0x3d/0x1f0 [ 802.877796][ T31] vpanic+0x640/0x6f0 [ 802.881829][ T31] panic+0xca/0xd0 [ 802.885590][ T31] ? __pfx_panic+0x10/0x10 [ 802.890046][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 802.896078][ T31] ? nmi_trigger_cpumask_backtrace+0x1b1/0x300 [ 802.902291][ T31] ? nmi_trigger_cpumask_backtrace+0x2be/0x300 [ 802.908511][ T31] ? watchdog+0xe83/0x1180 [ 802.912983][ T31] ? watchdog+0xe76/0x1180 [ 802.917545][ T31] watchdog+0xe94/0x1180 [ 802.921850][ T31] ? rcu_is_watching+0x12/0xc0 [ 802.926663][ T31] ? __pfx_watchdog+0x10/0x10 [ 802.931483][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 802.936938][ T31] ? __kthread_parkme+0x19e/0x250 [ 802.942023][ T31] ? __pfx_watchdog+0x10/0x10 [ 802.946755][ T31] kthread+0x3c5/0x780 [ 802.950872][ T31] ? __pfx_kthread+0x10/0x10 [ 802.955505][ T31] ? rcu_is_watching+0x12/0xc0 [ 802.960321][ T31] ? __pfx_kthread+0x10/0x10 [ 802.964976][ T31] ret_from_fork+0x983/0xb10 [ 802.969701][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 802.974857][ T31] ? __switch_to+0x7af/0x10d0 [ 802.979590][ T31] ? __pfx_kthread+0x10/0x10 [ 802.984221][ T31] ret_from_fork_asm+0x1a/0x30 [ 802.989064][ T31] [ 802.992402][ T31] Kernel Offset: disabled [ 802.996728][ T31] task:init state:S stack:21400 pid:1 tgid:1 ppid:0 task_flags:0x400100 flags:0x00080000 [ 803.008748][ T31] Call Trace: [ 803.012045][ T31] [ 803.015074][ T31] ? __schedule+0x10b9/0x6150 [ 803.019851][ T31] __schedule+0x1139/0x6150 [ 803.024377][ T31] ? __lock_acquire+0x436/0x2890 [ 803.029345][ T31] ? __pfx___schedule+0x10/0x10 [ 803.034318][ T31] ? find_held_lock+0x2b/0x80 [ 803.039022][ T31] ? schedule+0x2d7/0x3a0 [ 803.043358][ T31] schedule+0xe7/0x3a0 [ 803.047437][ T31] schedule_hrtimeout_range_clock+0x2dc/0x320 [ 803.053558][ T31] ? __pfx_schedule_hrtimeout_range_clock+0x10/0x10 [ 803.060146][ T31] ? dequeue_signal+0x21a/0x520 [ 803.065178][ T31] ? rcu_is_watching+0x12/0xc0 [ 803.070045][ T31] do_sigtimedwait+0x437/0x5e0 [ 803.074917][ T31] ? __pfx_do_sigtimedwait+0x10/0x10 [ 803.080204][ T31] ? __might_fault+0xe3/0x190 [ 803.084884][ T31] ? __might_fault+0xe3/0x190 [ 803.089582][ T31] __x64_sys_rt_sigtimedwait+0x1ed/0x2f0 [ 803.095228][ T31] ? __pfx___x64_sys_rt_sigtimedwait+0x10/0x10 [ 803.101393][ T31] ? common_nsleep+0xa1/0xd0 [ 803.106021][ T31] do_syscall_64+0xcd/0xf80 [ 803.110537][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 803.116438][ T31] RIP: 0033:0x7fdb3ed2d407 [ 803.120850][ T31] RSP: 002b:00007ffdd65b2170 EFLAGS: 00000202 ORIG_RAX: 0000000000000080 [ 803.129263][ T31] RAX: ffffffffffffffda RBX: 00007fdb3ebddc80 RCX: 00007fdb3ed2d407 [ 803.137319][ T31] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fdb3ef47498 [ 803.145291][ T31] RBP: 00007fdb3ef47490 R08: 0000000000000000 R09: 0000000000000000 [ 803.153353][ T31] R10: 0000000000000008 R11: 0000000000000202 R12: 00007fdb3ef47490 [ 803.161320][ T31] R13: 00007ffdd65b21ec R14: 00007fdb3ef87000 R15: 0000564242b6fd98 [ 803.169308][ T31] [ 803.172338][ T31] task:kthreadd state:S stack:26408 pid:2 tgid:2 ppid:0 task_flags:0x208040 flags:0x00080000 [ 803.184390][ T31] Call Trace: [ 803.187679][ T31] [ 803.190622][ T31] ? __schedule+0x10b9/0x6150 [ 803.195308][ T31] __schedule+0x1139/0x6150 [ 803.199834][ T31] ? __lock_acquire+0x436/0x2890 [ 803.204771][ T31] ? __set_cpus_allowed_ptr+0x179/0x230 [ 803.210344][ T31] ? __pfx___schedule+0x10/0x10 [ 803.215251][ T31] ? find_held_lock+0x2b/0x80 [ 803.219951][ T31] ? schedule+0x2d7/0x3a0 [ 803.224379][ T31] schedule+0xe7/0x3a0 [ 803.228470][ T31] ? kthreadd+0x2ce/0x800 [ 803.232803][ T31] kthreadd+0x5f3/0x800 [ 803.236974][ T31] ? __pfx_kthreadd+0x10/0x10 [ 803.241653][ T31] ret_from_fork+0x983/0xb10 [ 803.246244][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 803.251384][ T31] ? __switch_to+0x7af/0x10d0 [ 803.256069][ T31] ? __pfx_kthreadd+0x10/0x10 [ 803.260747][ T31] ret_from_fork_asm+0x1a/0x30 [ 803.265544][ T31] [ 803.268563][ T31] task:pool_workqueue_ state:D stack:28728 pid:3 tgid:3 ppid:2 task_flags:0x208040 flags:0x00080000 [ 803.280490][ T31] Call Trace: [ 803.283764][ T31] [ 803.286692][ T31] ? __schedule+0x10b9/0x6150 [ 803.291374][ T31] __schedule+0x1139/0x6150 [ 803.295879][ T31] ? __lock_acquire+0x436/0x2890 [ 803.300828][ T31] ? __pfx___schedule+0x10/0x10 [ 803.305697][ T31] ? find_held_lock+0x2b/0x80 [ 803.310396][ T31] ? schedule+0x2d7/0x3a0 [ 803.314729][ T31] schedule+0xe7/0x3a0 [ 803.318807][ T31] exp_funnel_lock+0x346/0x3c0 [ 803.323587][ T31] ? __pfx_exp_funnel_lock+0x10/0x10 [ 803.328965][ T31] ? __pfx_autoremove_wake_function+0x10/0x10 [ 803.335147][ T31] ? __pfx___might_resched+0x10/0x10 [ 803.340527][ T31] synchronize_rcu_expedited+0x28e/0x460 [ 803.346164][ T31] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 803.352329][ T31] ? rcu_is_watching+0x12/0xc0 [ 803.357106][ T31] ? __call_rcu_common.constprop.0+0x3f0/0xa10 [ 803.363367][ T31] pwq_release_workfn+0x5e6/0xa70 [ 803.368402][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 803.373603][ T31] kthread_worker_fn+0x310/0xbf0 [ 803.378554][ T31] ? __pfx_pwq_release_workfn+0x10/0x10 [ 803.384109][ T31] ? __pfx_kthread_worker_fn+0x10/0x10 [ 803.389575][ T31] kthread+0x3c5/0x780 [ 803.393644][ T31] ? __pfx_kthread+0x10/0x10 [ 803.398251][ T31] ? rcu_is_watching+0x12/0xc0 [ 803.403134][ T31] ? __pfx_kthread+0x10/0x10 [ 803.407736][ T31] ret_from_fork+0x983/0xb10 [ 803.412337][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 803.417498][ T31] ? __switch_to+0x7af/0x10d0 [ 803.422270][ T31] ? __pfx_kthread+0x10/0x10 [ 803.426860][ T31] ret_from_fork_asm+0x1a/0x30 [ 803.431680][ T31] [ 803.434788][ T31] task:kworker/R-rcu_g state:I stack:30280 pid:4 tgid:4 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 803.446807][ T31] Call Trace: [ 803.450083][ T31] [ 803.453032][ T31] ? __schedule+0x10b9/0x6150 [ 803.457757][ T31] __schedule+0x1139/0x6150 [ 803.462291][ T31] ? __lock_acquire+0x436/0x2890 [ 803.467281][ T31] ? __pfx___schedule+0x10/0x10 [ 803.472147][ T31] ? find_held_lock+0x2b/0x80 [ 803.476860][ T31] ? schedule+0x2d7/0x3a0 [ 803.481211][ T31] schedule+0xe7/0x3a0 [ 803.485329][ T31] rescuer_thread+0x7e4/0xf10 [ 803.490032][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 803.495253][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 803.500507][ T31] ? __kthread_parkme+0x19e/0x250 [ 803.505629][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 803.510828][ T31] kthread+0x3c5/0x780 [ 803.514898][ T31] ? __pfx_kthread+0x10/0x10 [ 803.519493][ T31] ? rcu_is_watching+0x12/0xc0 [ 803.524441][ T31] ? __pfx_kthread+0x10/0x10 [ 803.529030][ T31] ret_from_fork+0x983/0xb10 [ 803.533622][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 803.539003][ T31] ? __switch_to+0x7af/0x10d0 [ 803.543772][ T31] ? __pfx_kthread+0x10/0x10 [ 803.548712][ T31] ret_from_fork_asm+0x1a/0x30 [ 803.553527][ T31] [ 803.556657][ T31] task:kworker/R-sync_ state:I stack:30824 pid:5 tgid:5 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 803.568715][ T31] Call Trace: [ 803.572003][ T31] [ 803.574936][ T31] ? __schedule+0x10b9/0x6150 [ 803.579641][ T31] __schedule+0x1139/0x6150 [ 803.584239][ T31] ? __lock_acquire+0x436/0x2890 [ 803.589282][ T31] ? __pfx___schedule+0x10/0x10 [ 803.594241][ T31] ? find_held_lock+0x2b/0x80 [ 803.598935][ T31] ? schedule+0x2d7/0x3a0 [ 803.603788][ T31] schedule+0xe7/0x3a0 [ 803.607864][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 803.613260][ T31] rescuer_thread+0x7e4/0xf10 [ 803.618126][ T31] ? find_held_lock+0x2b/0x80 [ 803.623079][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 803.628295][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 803.633601][ T31] ? __kthread_parkme+0x19e/0x250 [ 803.638643][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 803.643953][ T31] kthread+0x3c5/0x780 [ 803.648023][ T31] ? __pfx_kthread+0x10/0x10 [ 803.652614][ T31] ? rcu_is_watching+0x12/0xc0 [ 803.657385][ T31] ? __pfx_kthread+0x10/0x10 [ 803.662066][ T31] ret_from_fork+0x983/0xb10 [ 803.666656][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 803.671775][ T31] ? __switch_to+0x7af/0x10d0 [ 803.676456][ T31] ? __pfx_kthread+0x10/0x10 [ 803.681135][ T31] ret_from_fork_asm+0x1a/0x30 [ 803.685923][ T31] [ 803.688938][ T31] task:kworker/R-kvfre state:I stack:29720 pid:6 tgid:6 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 803.701044][ T31] Workqueue: 0x0 (kvfree_rcu_reclaim) [ 803.706625][ T31] Call Trace: [ 803.709936][ T31] [ 803.712868][ T31] ? __schedule+0x10b9/0x6150 [ 803.717547][ T31] __schedule+0x1139/0x6150 [ 803.722052][ T31] ? __lock_acquire+0x436/0x2890 [ 803.727019][ T31] ? __pfx___schedule+0x10/0x10 [ 803.731885][ T31] ? find_held_lock+0x2b/0x80 [ 803.736568][ T31] ? schedule+0x2d7/0x3a0 [ 803.740900][ T31] schedule+0xe7/0x3a0 [ 803.745059][ T31] rescuer_thread+0x7e4/0xf10 [ 803.749750][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 803.755041][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 803.760246][ T31] ? __kthread_parkme+0x19e/0x250 [ 803.765321][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 803.770536][ T31] kthread+0x3c5/0x780 [ 803.774635][ T31] ? __pfx_kthread+0x10/0x10 [ 803.779585][ T31] ? rcu_is_watching+0x12/0xc0 [ 803.784377][ T31] ? __pfx_kthread+0x10/0x10 [ 803.788994][ T31] ret_from_fork+0x983/0xb10 [ 803.793624][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 803.798807][ T31] ? __switch_to+0x7af/0x10d0 [ 803.803612][ T31] ? __pfx_kthread+0x10/0x10 [ 803.808207][ T31] ret_from_fork_asm+0x1a/0x30 [ 803.813000][ T31] [ 803.816020][ T31] task:kworker/R-slub_ state:I stack:30824 pid:7 tgid:7 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 803.828073][ T31] Call Trace: [ 803.831369][ T31] [ 803.834395][ T31] ? __schedule+0x10b9/0x6150 [ 803.839078][ T31] __schedule+0x1139/0x6150 [ 803.843601][ T31] ? __lock_acquire+0x436/0x2890 [ 803.848571][ T31] ? __pfx___schedule+0x10/0x10 [ 803.853533][ T31] ? find_held_lock+0x2b/0x80 [ 803.858216][ T31] ? schedule+0x2d7/0x3a0 [ 803.862830][ T31] schedule+0xe7/0x3a0 [ 803.866918][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 803.872127][ T31] rescuer_thread+0x7e4/0xf10 [ 803.876811][ T31] ? find_held_lock+0x2b/0x80 [ 803.881509][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 803.886795][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 803.891998][ T31] ? __kthread_parkme+0x19e/0x250 [ 803.897032][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 803.902318][ T31] kthread+0x3c5/0x780 [ 803.906478][ T31] ? __pfx_kthread+0x10/0x10 [ 803.911079][ T31] ? rcu_is_watching+0x12/0xc0 [ 803.915941][ T31] ? __pfx_kthread+0x10/0x10 [ 803.920621][ T31] ret_from_fork+0x983/0xb10 [ 803.925233][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 803.931057][ T31] ? __switch_to+0x7af/0x10d0 [ 803.935741][ T31] ? __pfx_kthread+0x10/0x10 [ 803.940464][ T31] ret_from_fork_asm+0x1a/0x30 [ 803.945392][ T31] [ 803.948453][ T31] task:kworker/R-netns state:I stack:30824 pid:8 tgid:8 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 803.960520][ T31] Call Trace: [ 803.963811][ T31] [ 803.966748][ T31] ? __schedule+0x10b9/0x6150 [ 803.971444][ T31] __schedule+0x1139/0x6150 [ 803.975951][ T31] ? __lock_acquire+0x436/0x2890 [ 803.980908][ T31] ? __pfx___schedule+0x10/0x10 [ 803.985761][ T31] ? find_held_lock+0x2b/0x80 [ 803.990461][ T31] ? schedule+0x2d7/0x3a0 [ 803.994796][ T31] schedule+0xe7/0x3a0 [ 803.998953][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 804.004155][ T31] rescuer_thread+0x7e4/0xf10 [ 804.008838][ T31] ? find_held_lock+0x2b/0x80 [ 804.013538][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 804.018746][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 804.023952][ T31] ? __kthread_parkme+0x19e/0x250 [ 804.028989][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 804.034193][ T31] kthread+0x3c5/0x780 [ 804.038264][ T31] ? __pfx_kthread+0x10/0x10 [ 804.042965][ T31] ? rcu_is_watching+0x12/0xc0 [ 804.047834][ T31] ? __pfx_kthread+0x10/0x10 [ 804.052486][ T31] ret_from_fork+0x983/0xb10 [ 804.057103][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 804.062226][ T31] ? __switch_to+0x7af/0x10d0 [ 804.066923][ T31] ? __pfx_kthread+0x10/0x10 [ 804.071538][ T31] ret_from_fork_asm+0x1a/0x30 [ 804.076395][ T31] [ 804.079437][ T31] task:kworker/0:0 state:R running task stack:26232 pid:9 tgid:9 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 804.093323][ T31] Workqueue: events free_obj_work [ 804.098548][ T31] Call Trace: [ 804.101828][ T31] [ 804.104765][ T31] ? __schedule+0x10b9/0x6150 [ 804.109447][ T31] __schedule+0x1139/0x6150 [ 804.113959][ T31] ? kmem_cache_free+0x2d8/0x770 [ 804.118913][ T31] ? kthread+0x3c5/0x780 [ 804.123198][ T31] ? ret_from_fork+0x983/0xb10 [ 804.127976][ T31] ? ret_from_fork_asm+0x1a/0x30 [ 804.133030][ T31] ? __pfx___schedule+0x10/0x10 [ 804.137889][ T31] ? mark_held_locks+0x49/0x80 [ 804.142655][ T31] preempt_schedule_irq+0x51/0x90 [ 804.147862][ T31] irqentry_exit+0x1d8/0x8c0 [ 804.152460][ T31] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 804.158499][ T31] RIP: 0010:debug_check_no_locks_freed+0x14b/0x170 [ 804.165029][ T31] Code: ff ff 48 c7 c7 39 20 aa 8d e8 b1 dd 02 00 e8 dc 24 d0 09 e8 b7 f6 03 00 9c 58 f6 c4 02 75 28 41 f7 c5 00 02 00 00 74 01 fb 5b <5d> 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc 48 83 c3 28 48 39 cb 0f [ 804.184644][ T31] RSP: 0018:ffffc900000e7a40 EFLAGS: 00000206 [ 804.190728][ T31] RAX: 0000000000000046 RBX: ffff888049168968 RCX: ffff88801d6c0b80 [ 804.198707][ T31] RDX: ffffc900000e7cb8 RSI: 0000000000000028 RDI: ffff888049168968 [ 804.206693][ T31] RBP: ffff888049168968 R08: 0000000000000007 R09: 0000000000000000 [ 804.214754][ T31] R10: ffffea0001245a00 R11: 0000000000002b91 R12: ffff888049168990 [ 804.222846][ T31] R13: 0000000000000202 R14: ffff88801d6c0000 R15: ffffea0001245a00 [ 804.230856][ T31] kmem_cache_free+0xe1/0x770 [ 804.235572][ T31] ? do_raw_spin_lock+0x12c/0x2b0 [ 804.240611][ T31] ? free_object_list.isra.0+0xf8/0x2a0 [ 804.246174][ T31] ? free_object_list.isra.0+0xf8/0x2a0 [ 804.251819][ T31] free_object_list.isra.0+0xf8/0x2a0 [ 804.257197][ T31] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 804.263044][ T31] free_obj_work+0x19d/0x3d0 [ 804.267640][ T31] ? __pfx_free_obj_work+0x10/0x10 [ 804.272754][ T31] ? rcu_is_watching+0x12/0xc0 [ 804.277524][ T31] process_one_work+0x9ba/0x1b20 [ 804.282559][ T31] ? __pfx_nsim_dev_hwstats_traffic_work+0x10/0x10 [ 804.289104][ T31] ? __pfx_process_one_work+0x10/0x10 [ 804.294499][ T31] ? assign_work+0x1a0/0x250 [ 804.299269][ T31] worker_thread+0x6c8/0xf10 [ 804.303868][ T31] ? __pfx_worker_thread+0x10/0x10 [ 804.308984][ T31] kthread+0x3c5/0x780 [ 804.313052][ T31] ? __pfx_kthread+0x10/0x10 [ 804.317644][ T31] ? rcu_is_watching+0x12/0xc0 [ 804.322416][ T31] ? __pfx_kthread+0x10/0x10 [ 804.327012][ T31] ret_from_fork+0x983/0xb10 [ 804.331611][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 804.336722][ T31] ? __switch_to+0x7af/0x10d0 [ 804.341488][ T31] ? __pfx_kthread+0x10/0x10 [ 804.346080][ T31] ret_from_fork_asm+0x1a/0x30 [ 804.350863][ T31] [ 804.353883][ T31] task:kworker/0:0H state:I stack:26952 pid:11 tgid:11 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 804.365911][ T31] Workqueue: 0x0 (kblockd) [ 804.370424][ T31] Call Trace: [ 804.373697][ T31] [ 804.376627][ T31] ? __schedule+0x10b9/0x6150 [ 804.381302][ T31] __schedule+0x1139/0x6150 [ 804.385806][ T31] ? __lock_acquire+0x436/0x2890 [ 804.390751][ T31] ? __pfx___schedule+0x10/0x10 [ 804.395598][ T31] ? find_held_lock+0x2b/0x80 [ 804.400282][ T31] ? schedule+0x2d7/0x3a0 [ 804.404616][ T31] schedule+0xe7/0x3a0 [ 804.408685][ T31] ? worker_thread+0x28b/0xf10 [ 804.413565][ T31] worker_thread+0x2e5/0xf10 [ 804.418166][ T31] ? __pfx_worker_thread+0x10/0x10 [ 804.423297][ T31] kthread+0x3c5/0x780 [ 804.427377][ T31] ? __pfx_kthread+0x10/0x10 [ 804.431983][ T31] ? rcu_is_watching+0x12/0xc0 [ 804.436754][ T31] ? __pfx_kthread+0x10/0x10 [ 804.441354][ T31] ret_from_fork+0x983/0xb10 [ 804.445945][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 804.451067][ T31] ? __switch_to+0x7af/0x10d0 [ 804.455751][ T31] ? __pfx_kthread+0x10/0x10 [ 804.460354][ T31] ret_from_fork_asm+0x1a/0x30 [ 804.465135][ T31] [ 804.468151][ T31] task:kworker/R-mm_pe state:I stack:30736 pid:14 tgid:14 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 804.480319][ T31] Call Trace: [ 804.483627][ T31] [ 804.486649][ T31] ? __schedule+0x10b9/0x6150 [ 804.491624][ T31] __schedule+0x1139/0x6150 [ 804.496152][ T31] ? __lock_acquire+0x436/0x2890 [ 804.501110][ T31] ? __pfx___schedule+0x10/0x10 [ 804.505965][ T31] ? find_held_lock+0x2b/0x80 [ 804.510647][ T31] ? schedule+0x2d7/0x3a0 [ 804.514979][ T31] schedule+0xe7/0x3a0 [ 804.519055][ T31] rescuer_thread+0x7e4/0xf10 [ 804.523753][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 804.528969][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 804.534183][ T31] ? __kthread_parkme+0x19e/0x250 [ 804.539237][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 804.544437][ T31] kthread+0x3c5/0x780 [ 804.548518][ T31] ? __pfx_kthread+0x10/0x10 [ 804.553109][ T31] ? rcu_is_watching+0x12/0xc0 [ 804.557883][ T31] ? __pfx_kthread+0x10/0x10 [ 804.562558][ T31] ret_from_fork+0x983/0xb10 [ 804.567181][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 804.572557][ T31] ? __switch_to+0x7af/0x10d0 [ 804.577262][ T31] ? __pfx_kthread+0x10/0x10 [ 804.581900][ T31] ret_from_fork_asm+0x1a/0x30 [ 804.586724][ T31] [ 804.589745][ T31] task:ksoftirqd/0 state:R running task stack:22504 pid:15 tgid:15 ppid:2 task_flags:0x4208040 flags:0x00080000 [ 804.603517][ T31] Call Trace: [ 804.606806][ T31] [ 804.609743][ T31] ? __schedule+0x10b9/0x6150 [ 804.614458][ T31] __schedule+0x1139/0x6150 [ 804.618969][ T31] ? kvm_sched_clock_read+0x11/0x20 [ 804.624184][ T31] ? sched_clock+0x38/0x60 [ 804.628639][ T31] ? __pfx_try_to_wake_up+0x10/0x10 [ 804.633851][ T31] ? __pfx___schedule+0x10/0x10 [ 804.638709][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 804.644081][ T31] ? smpboot_thread_fn+0x326/0xae0 [ 804.649204][ T31] preempt_schedule_common+0x44/0xc0 [ 804.654508][ T31] preempt_schedule_thunk+0x16/0x30 [ 804.659911][ T31] ? smpboot_thread_fn+0x39b/0xae0 [ 804.665033][ T31] ? smpboot_thread_fn+0x927/0xae0 [ 804.670171][ T31] smpboot_thread_fn+0x92c/0xae0 [ 804.675153][ T31] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 804.680630][ T31] kthread+0x3c5/0x780 [ 804.684711][ T31] ? __pfx_kthread+0x10/0x10 [ 804.689303][ T31] ? rcu_is_watching+0x12/0xc0 [ 804.694175][ T31] ? __pfx_kthread+0x10/0x10 [ 804.698772][ T31] ret_from_fork+0x983/0xb10 [ 804.703495][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 804.708610][ T31] ? __switch_to+0x7af/0x10d0 [ 804.713382][ T31] ? __pfx_kthread+0x10/0x10 [ 804.718146][ T31] ret_from_fork_asm+0x1a/0x30 [ 804.723014][ T31] [ 804.726032][ T31] task:rcu_preempt state:I stack:28584 pid:16 tgid:16 ppid:2 task_flags:0x208040 flags:0x00080000 [ 804.737959][ T31] Call Trace: [ 804.741324][ T31] [ 804.744266][ T31] ? __schedule+0x10b9/0x6150 [ 804.748945][ T31] __schedule+0x1139/0x6150 [ 804.753449][ T31] ? __lock_acquire+0x436/0x2890 [ 804.758392][ T31] ? __mod_timer+0x8f2/0xd30 [ 804.762993][ T31] ? __pfx___schedule+0x10/0x10 [ 804.767933][ T31] ? find_held_lock+0x2b/0x80 [ 804.772630][ T31] ? schedule+0x2d7/0x3a0 [ 804.776968][ T31] schedule+0xe7/0x3a0 [ 804.781215][ T31] schedule_timeout+0x123/0x290 [ 804.786069][ T31] ? __pfx_schedule_timeout+0x10/0x10 [ 804.791450][ T31] ? __pfx_process_timeout+0x10/0x10 [ 804.796747][ T31] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 804.802576][ T31] ? prepare_to_swait_event+0xf5/0x480 [ 804.808050][ T31] rcu_gp_fqs_loop+0x1ea/0xaf0 [ 804.812820][ T31] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 804.818195][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 804.823517][ T31] ? __pfx_rcu_gp_init+0x10/0x10 [ 804.828498][ T31] ? rcu_gp_cleanup+0x7c1/0xe90 [ 804.833356][ T31] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 804.839168][ T31] rcu_gp_kthread+0x26d/0x380 [ 804.843846][ T31] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 804.849045][ T31] ? rcu_is_watching+0x12/0xc0 [ 804.853934][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 804.859139][ T31] ? __kthread_parkme+0x19e/0x250 [ 804.864173][ T31] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 804.869371][ T31] kthread+0x3c5/0x780 [ 804.873439][ T31] ? __pfx_kthread+0x10/0x10 [ 804.878032][ T31] ? rcu_is_watching+0x12/0xc0 [ 804.882905][ T31] ? __pfx_kthread+0x10/0x10 [ 804.887514][ T31] ret_from_fork+0x983/0xb10 [ 804.892107][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 804.897308][ T31] ? __switch_to+0x7af/0x10d0 [ 804.902083][ T31] ? __pfx_kthread+0x10/0x10 [ 804.906689][ T31] ret_from_fork_asm+0x1a/0x30 [ 804.911561][ T31] [ 804.914580][ T31] task:rcu_exp_par_gp_ state:S stack:30944 pid:17 tgid:17 ppid:2 task_flags:0x208040 flags:0x00080000 [ 804.926770][ T31] Call Trace: [ 804.930060][ T31] [ 804.932987][ T31] ? __schedule+0x10b9/0x6150 [ 804.937669][ T31] __schedule+0x1139/0x6150 [ 804.942174][ T31] ? __lock_acquire+0x436/0x2890 [ 804.947120][ T31] ? __pfx___schedule+0x10/0x10 [ 804.951967][ T31] ? find_held_lock+0x2b/0x80 [ 804.956646][ T31] ? schedule+0x2d7/0x3a0 [ 804.961066][ T31] schedule+0xe7/0x3a0 [ 804.965136][ T31] ? __pfx_kthread_worker_fn+0x10/0x10 [ 804.970601][ T31] kthread_worker_fn+0x516/0xbf0 [ 804.975542][ T31] ? __pfx_kthread_worker_fn+0x10/0x10 [ 804.980997][ T31] kthread+0x3c5/0x780 [ 804.985064][ T31] ? __pfx_kthread+0x10/0x10 [ 804.989669][ T31] ? rcu_is_watching+0x12/0xc0 [ 804.994438][ T31] ? __pfx_kthread+0x10/0x10 [ 804.999039][ T31] ret_from_fork+0x983/0xb10 [ 805.003648][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 805.008848][ T31] ? __switch_to+0x7af/0x10d0 [ 805.013616][ T31] ? __pfx_kthread+0x10/0x10 [ 805.018397][ T31] ret_from_fork_asm+0x1a/0x30 [ 805.023179][ T31] [ 805.026194][ T31] task:rcu_exp_gp_kthr state:D stack:29160 pid:18 tgid:18 ppid:2 task_flags:0x208040 flags:0x00080000 [ 805.038136][ T31] Call Trace: [ 805.041422][ T31] [ 805.044354][ T31] ? __schedule+0x10b9/0x6150 [ 805.049036][ T31] __schedule+0x1139/0x6150 [ 805.053545][ T31] ? __lock_acquire+0x436/0x2890 [ 805.058506][ T31] ? __mod_timer+0x8f2/0xd30 [ 805.063106][ T31] ? __pfx___schedule+0x10/0x10 [ 805.067961][ T31] ? find_held_lock+0x2b/0x80 [ 805.072642][ T31] ? schedule+0x2d7/0x3a0 [ 805.076976][ T31] schedule+0xe7/0x3a0 [ 805.081048][ T31] schedule_timeout+0x123/0x290 [ 805.085902][ T31] ? __pfx_schedule_timeout+0x10/0x10 [ 805.091366][ T31] ? __pfx_process_timeout+0x10/0x10 [ 805.096662][ T31] ? rcu_is_watching+0x12/0xc0 [ 805.101449][ T31] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 805.107259][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 805.112473][ T31] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 805.118299][ T31] rcu_exp_wait_wake+0x965/0x1600 [ 805.123353][ T31] ? rcu_is_watching+0x12/0xc0 [ 805.128122][ T31] ? __pfx_rcu_exp_wait_wake+0x10/0x10 [ 805.133578][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 805.138796][ T31] ? sync_rcu_exp_select_cpus+0x3cb/0xab0 [ 805.144515][ T31] ? rcu_is_watching+0x12/0xc0 [ 805.149381][ T31] kthread_worker_fn+0x310/0xbf0 [ 805.154404][ T31] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 805.159697][ T31] ? __pfx_kthread_worker_fn+0x10/0x10 [ 805.165156][ T31] kthread+0x3c5/0x780 [ 805.169231][ T31] ? __pfx_kthread+0x10/0x10 [ 805.173834][ T31] ? rcu_is_watching+0x12/0xc0 [ 805.178690][ T31] ? __pfx_kthread+0x10/0x10 [ 805.183279][ T31] ret_from_fork+0x983/0xb10 [ 805.187875][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 805.193073][ T31] ? __switch_to+0x7af/0x10d0 [ 805.197753][ T31] ? __pfx_kthread+0x10/0x10 [ 805.202345][ T31] ret_from_fork_asm+0x1a/0x30 [ 805.207126][ T31] [ 805.210142][ T31] task:migration/0 state:S stack:29736 pid:19 tgid:19 ppid:2 task_flags:0x4208040 flags:0x00080000 [ 805.222260][ T31] Stopper: 0x0 <- 0x0 [ 805.226243][ T31] Call Trace: [ 805.229519][ T31] [ 805.232449][ T31] ? __schedule+0x10b9/0x6150 [ 805.237132][ T31] __schedule+0x1139/0x6150 [ 805.241725][ T31] ? __lock_acquire+0x436/0x2890 [ 805.246689][ T31] ? __pfx___schedule+0x10/0x10 [ 805.251543][ T31] ? find_held_lock+0x2b/0x80 [ 805.256250][ T31] ? schedule+0x2d7/0x3a0 [ 805.260670][ T31] schedule+0xe7/0x3a0 [ 805.264755][ T31] smpboot_thread_fn+0x8e6/0xae0 [ 805.269789][ T31] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 805.275259][ T31] kthread+0x3c5/0x780 [ 805.279326][ T31] ? __pfx_kthread+0x10/0x10 [ 805.283924][ T31] ? rcu_is_watching+0x12/0xc0 [ 805.288869][ T31] ? __pfx_kthread+0x10/0x10 [ 805.293459][ T31] ret_from_fork+0x983/0xb10 [ 805.298153][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 805.303281][ T31] ? __switch_to+0x7af/0x10d0 [ 805.307989][ T31] ? __pfx_kthread+0x10/0x10 [ 805.312588][ T31] ret_from_fork_asm+0x1a/0x30 [ 805.317373][ T31] [ 805.320394][ T31] task:cpuhp/0 state:S stack:27048 pid:20 tgid:20 ppid:2 task_flags:0x4208040 flags:0x00080000 [ 805.332595][ T31] Call Trace: [ 805.335871][ T31] [ 805.338801][ T31] ? __schedule+0x10b9/0x6150 [ 805.343498][ T31] __schedule+0x1139/0x6150 [ 805.348004][ T31] ? __lock_acquire+0x436/0x2890 [ 805.352951][ T31] ? __pfx___schedule+0x10/0x10 [ 805.357804][ T31] ? find_held_lock+0x2b/0x80 [ 805.362519][ T31] ? schedule+0x2d7/0x3a0 [ 805.366851][ T31] schedule+0xe7/0x3a0 [ 805.370939][ T31] smpboot_thread_fn+0x8e6/0xae0 [ 805.375908][ T31] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 805.381396][ T31] kthread+0x3c5/0x780 [ 805.385464][ T31] ? __pfx_kthread+0x10/0x10 [ 805.390053][ T31] ? rcu_is_watching+0x12/0xc0 [ 805.394825][ T31] ? __pfx_kthread+0x10/0x10 [ 805.399518][ T31] ret_from_fork+0x983/0xb10 [ 805.404137][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 805.409271][ T31] ? __switch_to+0x7af/0x10d0 [ 805.414050][ T31] ? __pfx_kthread+0x10/0x10 [ 805.418744][ T31] ret_from_fork_asm+0x1a/0x30 [ 805.423527][ T31] [ 805.426716][ T31] task:cpuhp/1 state:S stack:27224 pid:21 tgid:21 ppid:2 task_flags:0x4208040 flags:0x00080000 [ 805.438739][ T31] Call Trace: [ 805.442012][ T31] [ 805.444940][ T31] ? __schedule+0x10b9/0x6150 [ 805.449705][ T31] __schedule+0x1139/0x6150 [ 805.454220][ T31] ? __lock_acquire+0x436/0x2890 [ 805.459182][ T31] ? __pfx___schedule+0x10/0x10 [ 805.464032][ T31] ? find_held_lock+0x2b/0x80 [ 805.468715][ T31] ? schedule+0x2d7/0x3a0 [ 805.473050][ T31] schedule+0xe7/0x3a0 [ 805.477119][ T31] smpboot_thread_fn+0x8e6/0xae0 [ 805.482066][ T31] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 805.487534][ T31] kthread+0x3c5/0x780 [ 805.491602][ T31] ? __pfx_kthread+0x10/0x10 [ 805.496194][ T31] ? rcu_is_watching+0x12/0xc0 [ 805.500972][ T31] ? __pfx_kthread+0x10/0x10 [ 805.505575][ T31] ret_from_fork+0x983/0xb10 [ 805.510191][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 805.515337][ T31] ? __switch_to+0x7af/0x10d0 [ 805.520037][ T31] ? __pfx_kthread+0x10/0x10 [ 805.524648][ T31] ret_from_fork_asm+0x1a/0x30 [ 805.529437][ T31] [ 805.532461][ T31] task:migration/1 state:S stack:29728 pid:22 tgid:22 ppid:2 task_flags:0x4208040 flags:0x00080000 [ 805.544481][ T31] Stopper: 0x0 <- 0x0 [ 805.548495][ T31] Call Trace: [ 805.551791][ T31] [ 805.554720][ T31] ? __schedule+0x10b9/0x6150 [ 805.559403][ T31] __schedule+0x1139/0x6150 [ 805.563926][ T31] ? __lock_acquire+0x436/0x2890 [ 805.569033][ T31] ? __pfx___schedule+0x10/0x10 [ 805.573920][ T31] ? find_held_lock+0x2b/0x80 [ 805.578613][ T31] ? schedule+0x2d7/0x3a0 [ 805.582997][ T31] schedule+0xe7/0x3a0 [ 805.587097][ T31] smpboot_thread_fn+0x8e6/0xae0 [ 805.592050][ T31] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 805.597522][ T31] kthread+0x3c5/0x780 [ 805.601701][ T31] ? __pfx_kthread+0x10/0x10 [ 805.606313][ T31] ? rcu_is_watching+0x12/0xc0 [ 805.611096][ T31] ? __pfx_kthread+0x10/0x10 [ 805.615702][ T31] ret_from_fork+0x983/0xb10 [ 805.620519][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 805.625634][ T31] ? __switch_to+0x7af/0x10d0 [ 805.630317][ T31] ? __pfx_kthread+0x10/0x10 [ 805.634909][ T31] ret_from_fork_asm+0x1a/0x30 [ 805.639786][ T31] [ 805.642808][ T31] task:ksoftirqd/1 state:S stack:24536 pid:23 tgid:23 ppid:2 task_flags:0x4208040 flags:0x00080000 [ 805.654827][ T31] Call Trace: [ 805.658127][ T31] [ 805.661054][ T31] ? __schedule+0x10b9/0x6150 [ 805.665734][ T31] __schedule+0x1139/0x6150 [ 805.670345][ T31] ? __lock_acquire+0x436/0x2890 [ 805.675312][ T31] ? __pfx___schedule+0x10/0x10 [ 805.680166][ T31] ? find_held_lock+0x2b/0x80 [ 805.684852][ T31] ? schedule+0x2d7/0x3a0 [ 805.689194][ T31] schedule+0xe7/0x3a0 [ 805.693267][ T31] smpboot_thread_fn+0x8e6/0xae0 [ 805.698235][ T31] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 805.703792][ T31] kthread+0x3c5/0x780 [ 805.707861][ T31] ? __pfx_kthread+0x10/0x10 [ 805.712504][ T31] ? rcu_is_watching+0x12/0xc0 [ 805.717361][ T31] ? __pfx_kthread+0x10/0x10 [ 805.722048][ T31] ret_from_fork+0x983/0xb10 [ 805.726661][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 805.731797][ T31] ? __switch_to+0x7af/0x10d0 [ 805.736493][ T31] ? __pfx_kthread+0x10/0x10 [ 805.741111][ T31] ret_from_fork_asm+0x1a/0x30 [ 805.745897][ T31] [ 805.748912][ T31] task:kworker/1:0 state:I stack:24856 pid:24 tgid:24 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 805.760922][ T31] Workqueue: 0x0 (events) [ 805.765349][ T31] Call Trace: [ 805.768623][ T31] [ 805.771568][ T31] ? __schedule+0x10b9/0x6150 [ 805.776249][ T31] __schedule+0x1139/0x6150 [ 805.780759][ T31] ? __lock_acquire+0x436/0x2890 [ 805.785711][ T31] ? __pfx___schedule+0x10/0x10 [ 805.790562][ T31] ? find_held_lock+0x2b/0x80 [ 805.795255][ T31] ? schedule+0x2d7/0x3a0 [ 805.799693][ T31] schedule+0xe7/0x3a0 [ 805.803764][ T31] ? worker_thread+0x28b/0xf10 [ 805.808551][ T31] worker_thread+0x2e5/0xf10 [ 805.813167][ T31] ? __pfx_worker_thread+0x10/0x10 [ 805.818286][ T31] kthread+0x3c5/0x780 [ 805.822366][ T31] ? __pfx_kthread+0x10/0x10 [ 805.827221][ T31] ? rcu_is_watching+0x12/0xc0 [ 805.831994][ T31] ? __pfx_kthread+0x10/0x10 [ 805.836583][ T31] ret_from_fork+0x983/0xb10 [ 805.841174][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 805.846286][ T31] ? __switch_to+0x7af/0x10d0 [ 805.851000][ T31] ? __pfx_kthread+0x10/0x10 [ 805.855859][ T31] ret_from_fork_asm+0x1a/0x30 [ 805.860646][ T31] [ 805.863659][ T31] task:kworker/1:0H state:I stack:27208 pid:25 tgid:25 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 805.875842][ T31] Workqueue: 0x0 (kblockd) [ 805.880428][ T31] Call Trace: [ 805.883724][ T31] [ 805.886667][ T31] ? __schedule+0x10b9/0x6150 [ 805.891352][ T31] __schedule+0x1139/0x6150 [ 805.895945][ T31] ? __lock_acquire+0x436/0x2890 [ 805.900896][ T31] ? __pfx___schedule+0x10/0x10 [ 805.905745][ T31] ? find_held_lock+0x2b/0x80 [ 805.910427][ T31] ? schedule+0x2d7/0x3a0 [ 805.914761][ T31] schedule+0xe7/0x3a0 [ 805.918853][ T31] ? worker_thread+0x28b/0xf10 [ 805.923709][ T31] worker_thread+0x2e5/0xf10 [ 805.928309][ T31] ? __pfx_worker_thread+0x10/0x10 [ 805.933422][ T31] kthread+0x3c5/0x780 [ 805.937492][ T31] ? __pfx_kthread+0x10/0x10 [ 805.942095][ T31] ? rcu_is_watching+0x12/0xc0 [ 805.946877][ T31] ? __pfx_kthread+0x10/0x10 [ 805.951464][ T31] ret_from_fork+0x983/0xb10 [ 805.956071][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 805.961187][ T31] ? __switch_to+0x7af/0x10d0 [ 805.965868][ T31] ? __pfx_kthread+0x10/0x10 [ 805.970456][ T31] ret_from_fork_asm+0x1a/0x30 [ 805.975241][ T31] [ 805.978284][ T31] task:kdevtmpfs state:S stack:26200 pid:26 tgid:26 ppid:2 task_flags:0x208140 flags:0x00080000 [ 805.990224][ T31] Call Trace: [ 805.993522][ T31] [ 805.996449][ T31] ? __schedule+0x10b9/0x6150 [ 806.001131][ T31] __schedule+0x1139/0x6150 [ 806.005636][ T31] ? __lock_acquire+0x436/0x2890 [ 806.010589][ T31] ? __pfx___schedule+0x10/0x10 [ 806.015437][ T31] ? find_held_lock+0x2b/0x80 [ 806.020118][ T31] ? schedule+0x2d7/0x3a0 [ 806.024448][ T31] schedule+0xe7/0x3a0 [ 806.028512][ T31] ? devtmpfs_work_loop+0xae4/0xcf0 [ 806.033729][ T31] devtmpfs_work_loop+0xb3e/0xcf0 [ 806.038758][ T31] ? __pfx_devtmpfs_work_loop+0x10/0x10 [ 806.044305][ T31] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 806.050126][ T31] ? rcu_is_watching+0x12/0xc0 [ 806.054925][ T31] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 806.060774][ T31] ? __pfx_devtmpfsd+0x10/0x10 [ 806.065645][ T31] devtmpfsd+0x4c/0x50 [ 806.069737][ T31] kthread+0x3c5/0x780 [ 806.073827][ T31] ? __pfx_kthread+0x10/0x10 [ 806.078429][ T31] ? rcu_is_watching+0x12/0xc0 [ 806.083215][ T31] ? __pfx_kthread+0x10/0x10 [ 806.087810][ T31] ret_from_fork+0x983/0xb10 [ 806.092419][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 806.097622][ T31] ? __switch_to+0x7af/0x10d0 [ 806.102391][ T31] ? __pfx_kthread+0x10/0x10 [ 806.106980][ T31] ret_from_fork_asm+0x1a/0x30 [ 806.111763][ T31] [ 806.114781][ T31] task:kworker/R-inet_ state:I stack:30696 pid:27 tgid:27 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 806.126799][ T31] Call Trace: [ 806.130093][ T31] [ 806.133024][ T31] ? __schedule+0x10b9/0x6150 [ 806.137892][ T31] __schedule+0x1139/0x6150 [ 806.142417][ T31] ? __lock_acquire+0x436/0x2890 [ 806.147395][ T31] ? __pfx___schedule+0x10/0x10 [ 806.152249][ T31] ? find_held_lock+0x2b/0x80 [ 806.156936][ T31] ? schedule+0x2d7/0x3a0 [ 806.161274][ T31] schedule+0xe7/0x3a0 [ 806.165345][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 806.170558][ T31] rescuer_thread+0x7e4/0xf10 [ 806.175335][ T31] ? find_held_lock+0x2b/0x80 [ 806.180109][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 806.185306][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 806.190508][ T31] ? __kthread_parkme+0x19e/0x250 [ 806.195558][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 806.200755][ T31] kthread+0x3c5/0x780 [ 806.204824][ T31] ? __pfx_kthread+0x10/0x10 [ 806.209472][ T31] ? rcu_is_watching+0x12/0xc0 [ 806.214271][ T31] ? __pfx_kthread+0x10/0x10 [ 806.218876][ T31] ret_from_fork+0x983/0xb10 [ 806.223493][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 806.228653][ T31] ? __switch_to+0x7af/0x10d0 [ 806.233356][ T31] ? __pfx_kthread+0x10/0x10 [ 806.237953][ T31] ret_from_fork_asm+0x1a/0x30 [ 806.242748][ T31] [ 806.245793][ T31] task:rcu_tasks_kthre state:I stack:29032 pid:28 tgid:28 ppid:2 task_flags:0x208040 flags:0x00080000 [ 806.257746][ T31] Call Trace: [ 806.261046][ T31] [ 806.263977][ T31] ? __schedule+0x10b9/0x6150 [ 806.268674][ T31] __schedule+0x1139/0x6150 [ 806.273184][ T31] ? __lock_acquire+0x436/0x2890 [ 806.278129][ T31] ? __pfx___schedule+0x10/0x10 [ 806.282976][ T31] ? find_held_lock+0x2b/0x80 [ 806.287673][ T31] ? schedule+0x2d7/0x3a0 [ 806.292003][ T31] schedule+0xe7/0x3a0 [ 806.296077][ T31] rcu_tasks_one_gp+0x55d/0xe20 [ 806.300947][ T31] rcu_tasks_kthread+0x1c5/0x250 [ 806.305905][ T31] ? __pfx_rcu_tasks_kthread+0x10/0x10 [ 806.311384][ T31] kthread+0x3c5/0x780 [ 806.315568][ T31] ? __pfx_kthread+0x10/0x10 [ 806.320197][ T31] ? rcu_is_watching+0x12/0xc0 [ 806.324989][ T31] ? __pfx_kthread+0x10/0x10 [ 806.329758][ T31] ret_from_fork+0x983/0xb10 [ 806.334554][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 806.339664][ T31] ? __switch_to+0x7af/0x10d0 [ 806.344348][ T31] ? __pfx_kthread+0x10/0x10 [ 806.348937][ T31] ret_from_fork_asm+0x1a/0x30 [ 806.353911][ T31] [ 806.356948][ T31] task:rcu_tasks_trace state:I stack:28976 pid:29 tgid:29 ppid:2 task_flags:0x208040 flags:0x00080000 [ 806.369158][ T31] Call Trace: [ 806.372532][ T31] [ 806.375481][ T31] ? __schedule+0x10b9/0x6150 [ 806.380193][ T31] __schedule+0x1139/0x6150 [ 806.384714][ T31] ? __lock_acquire+0x436/0x2890 [ 806.389675][ T31] ? __pfx___schedule+0x10/0x10 [ 806.394527][ T31] ? find_held_lock+0x2b/0x80 [ 806.399214][ T31] ? schedule+0x2d7/0x3a0 [ 806.403549][ T31] schedule+0xe7/0x3a0 [ 806.407618][ T31] rcu_tasks_one_gp+0x55d/0xe20 [ 806.412508][ T31] rcu_tasks_kthread+0x1c5/0x250 [ 806.417459][ T31] ? __pfx_rcu_tasks_kthread+0x10/0x10 [ 806.422942][ T31] kthread+0x3c5/0x780 [ 806.427028][ T31] ? __pfx_kthread+0x10/0x10 [ 806.431626][ T31] ? rcu_is_watching+0x12/0xc0 [ 806.436396][ T31] ? __pfx_kthread+0x10/0x10 [ 806.440983][ T31] ret_from_fork+0x983/0xb10 [ 806.445573][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 806.450683][ T31] ? __switch_to+0x7af/0x10d0 [ 806.455378][ T31] ? __pfx_kthread+0x10/0x10 [ 806.460535][ T31] ret_from_fork_asm+0x1a/0x30 [ 806.465351][ T31] [ 806.468388][ T31] task:kauditd state:S stack:29304 pid:30 tgid:30 ppid:2 task_flags:0x200040 flags:0x00080000 [ 806.480322][ T31] Call Trace: [ 806.483600][ T31] [ 806.486616][ T31] ? __schedule+0x10b9/0x6150 [ 806.491384][ T31] __schedule+0x1139/0x6150 [ 806.495891][ T31] ? __lock_acquire+0x436/0x2890 [ 806.500839][ T31] ? __pfx___schedule+0x10/0x10 [ 806.505778][ T31] ? find_held_lock+0x2b/0x80 [ 806.510477][ T31] ? schedule+0x2d7/0x3a0 [ 806.514809][ T31] schedule+0xe7/0x3a0 [ 806.518899][ T31] kauditd_thread+0x4d7/0xb30 [ 806.523583][ T31] ? __pfx_kauditd_thread+0x10/0x10 [ 806.528802][ T31] ? __pfx_autoremove_wake_function+0x10/0x10 [ 806.534905][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 806.540122][ T31] ? __kthread_parkme+0x19e/0x250 [ 806.545176][ T31] ? __pfx_kauditd_thread+0x10/0x10 [ 806.550382][ T31] kthread+0x3c5/0x780 [ 806.554451][ T31] ? __pfx_kthread+0x10/0x10 [ 806.559039][ T31] ? rcu_is_watching+0x12/0xc0 [ 806.563808][ T31] ? __pfx_kthread+0x10/0x10 [ 806.568397][ T31] ret_from_fork+0x983/0xb10 [ 806.572990][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 806.578109][ T31] ? __switch_to+0x7af/0x10d0 [ 806.582801][ T31] ? __pfx_kthread+0x10/0x10 [ 806.587480][ T31] ret_from_fork_asm+0x1a/0x30 [ 806.592268][ T31] [ 806.595294][ T31] task:khungtaskd state:R running task stack:27768 pid:31 tgid:31 ppid:2 task_flags:0x208040 flags:0x00080010 [ 806.608962][ T31] Call Trace: [ 806.612245][ T31] [ 806.615180][ T31] sched_show_task+0x423/0x630 [ 806.619983][ T31] ? __pfx_sched_show_task+0x10/0x10 [ 806.625313][ T31] show_state_filter+0xee/0x380 [ 806.630193][ T31] sys_info+0x102/0x180 [ 806.634358][ T31] vpanic+0x234/0x6f0 [ 806.638429][ T31] panic+0xca/0xd0 [ 806.642177][ T31] ? __pfx_panic+0x10/0x10 [ 806.646682][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 806.652662][ T31] ? nmi_trigger_cpumask_backtrace+0x1b1/0x300 [ 806.658826][ T31] ? nmi_trigger_cpumask_backtrace+0x2be/0x300 [ 806.665018][ T31] ? watchdog+0xe83/0x1180 [ 806.669967][ T31] ? watchdog+0xe76/0x1180 [ 806.674403][ T31] watchdog+0xe94/0x1180 [ 806.678665][ T31] ? rcu_is_watching+0x12/0xc0 [ 806.683462][ T31] ? __pfx_watchdog+0x10/0x10 [ 806.688153][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 806.693357][ T31] ? __kthread_parkme+0x19e/0x250 [ 806.698389][ T31] ? __pfx_watchdog+0x10/0x10 [ 806.703162][ T31] kthread+0x3c5/0x780 [ 806.707229][ T31] ? __pfx_kthread+0x10/0x10 [ 806.711824][ T31] ? rcu_is_watching+0x12/0xc0 [ 806.716597][ T31] ? __pfx_kthread+0x10/0x10 [ 806.721299][ T31] ret_from_fork+0x983/0xb10 [ 806.725892][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 806.731006][ T31] ? __switch_to+0x7af/0x10d0 [ 806.735707][ T31] ? __pfx_kthread+0x10/0x10 [ 806.740328][ T31] ret_from_fork_asm+0x1a/0x30 [ 806.745122][ T31] [ 806.748227][ T31] task:oom_reaper state:S stack:30584 pid:32 tgid:32 ppid:2 task_flags:0x200040 flags:0x00080000 [ 806.760516][ T31] Call Trace: [ 806.763790][ T31] [ 806.766741][ T31] ? __schedule+0x10b9/0x6150 [ 806.771506][ T31] __schedule+0x1139/0x6150 [ 806.776221][ T31] ? __lock_acquire+0x436/0x2890 [ 806.781188][ T31] ? __pfx___schedule+0x10/0x10 [ 806.786042][ T31] ? find_held_lock+0x2b/0x80 [ 806.791246][ T31] ? schedule+0x2d7/0x3a0 [ 806.795586][ T31] schedule+0xe7/0x3a0 [ 806.799760][ T31] ? __pfx_oom_reaper+0x10/0x10 [ 806.804624][ T31] oom_reaper+0x94c/0xaf0 [ 806.808969][ T31] ? do_raw_spin_lock+0x12c/0x2b0 [ 806.813998][ T31] ? find_held_lock+0x2b/0x80 [ 806.818678][ T31] ? __pfx_oom_reaper+0x10/0x10 [ 806.823532][ T31] ? __pfx_autoremove_wake_function+0x10/0x10 [ 806.829610][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 806.834902][ T31] ? __kthread_parkme+0x19e/0x250 [ 806.839937][ T31] ? __pfx_oom_reaper+0x10/0x10 [ 806.844785][ T31] kthread+0x3c5/0x780 [ 806.848856][ T31] ? __pfx_kthread+0x10/0x10 [ 806.853494][ T31] ? rcu_is_watching+0x12/0xc0 [ 806.858336][ T31] ? __pfx_kthread+0x10/0x10 [ 806.862937][ T31] ret_from_fork+0x983/0xb10 [ 806.867710][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 806.872920][ T31] ? __switch_to+0x7af/0x10d0 [ 806.877600][ T31] ? __pfx_kthread+0x10/0x10 [ 806.882626][ T31] ret_from_fork_asm+0x1a/0x30 [ 806.887495][ T31] [ 806.890539][ T31] task:kworker/R-write state:I stack:30824 pid:33 tgid:33 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 806.902571][ T31] Call Trace: [ 806.905852][ T31] [ 806.908812][ T31] ? __schedule+0x10b9/0x6150 [ 806.913497][ T31] __schedule+0x1139/0x6150 [ 806.918014][ T31] ? __lock_acquire+0x436/0x2890 [ 806.922975][ T31] ? __pfx___schedule+0x10/0x10 [ 806.927823][ T31] ? find_held_lock+0x2b/0x80 [ 806.932505][ T31] ? schedule+0x2d7/0x3a0 [ 806.936839][ T31] schedule+0xe7/0x3a0 [ 806.940908][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 806.946106][ T31] rescuer_thread+0x7e4/0xf10 [ 806.950807][ T31] ? find_held_lock+0x2b/0x80 [ 806.955491][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 806.960687][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 806.965890][ T31] ? __kthread_parkme+0x19e/0x250 [ 806.970942][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 806.976154][ T31] kthread+0x3c5/0x780 [ 806.980248][ T31] ? __pfx_kthread+0x10/0x10 [ 806.984843][ T31] ? rcu_is_watching+0x12/0xc0 [ 806.989611][ T31] ? __pfx_kthread+0x10/0x10 [ 806.994205][ T31] ret_from_fork+0x983/0xb10 [ 806.998883][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 807.003994][ T31] ? __switch_to+0x7af/0x10d0 [ 807.008672][ T31] ? __pfx_kthread+0x10/0x10 [ 807.013265][ T31] ret_from_fork_asm+0x1a/0x30 [ 807.018071][ T31] [ 807.021091][ T31] task:kcompactd0 state:S stack:29096 pid:34 tgid:34 ppid:2 task_flags:0x210040 flags:0x00080000 [ 807.033017][ T31] Call Trace: [ 807.036294][ T31] [ 807.039225][ T31] ? __schedule+0x10b9/0x6150 [ 807.043924][ T31] __schedule+0x1139/0x6150 [ 807.048429][ T31] ? __lock_acquire+0x436/0x2890 [ 807.053368][ T31] ? __mod_timer+0x8f2/0xd30 [ 807.057967][ T31] ? __pfx___schedule+0x10/0x10 [ 807.062815][ T31] ? find_held_lock+0x2b/0x80 [ 807.067584][ T31] ? schedule+0x2d7/0x3a0 [ 807.071917][ T31] schedule+0xe7/0x3a0 [ 807.075988][ T31] schedule_timeout+0x123/0x290 [ 807.080925][ T31] ? __pfx_schedule_timeout+0x10/0x10 [ 807.086313][ T31] ? __pfx_process_timeout+0x10/0x10 [ 807.091611][ T31] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 807.097418][ T31] ? prepare_to_wait_event+0xd0/0x6a0 [ 807.102804][ T31] kcompactd+0xa2c/0xe80 [ 807.107064][ T31] ? __pfx_kcompactd+0x10/0x10 [ 807.111834][ T31] ? find_held_lock+0x2b/0x80 [ 807.116518][ T31] ? __pfx_autoremove_wake_function+0x10/0x10 [ 807.122608][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 807.127833][ T31] ? __kthread_parkme+0x19e/0x250 [ 807.132900][ T31] ? __pfx_kcompactd+0x10/0x10 [ 807.137773][ T31] kthread+0x3c5/0x780 [ 807.141863][ T31] ? __pfx_kthread+0x10/0x10 [ 807.146476][ T31] ? rcu_is_watching+0x12/0xc0 [ 807.151247][ T31] ? __pfx_kthread+0x10/0x10 [ 807.155841][ T31] ret_from_fork+0x983/0xb10 [ 807.160468][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 807.165591][ T31] ? __switch_to+0x7af/0x10d0 [ 807.170282][ T31] ? __pfx_kthread+0x10/0x10 [ 807.174894][ T31] ret_from_fork_asm+0x1a/0x30 [ 807.179676][ T31] [ 807.182691][ T31] task:kcompactd1 state:S stack:29256 pid:35 tgid:35 ppid:2 task_flags:0x210040 flags:0x00080000 [ 807.194727][ T31] Call Trace: [ 807.197998][ T31] [ 807.200928][ T31] ? __schedule+0x10b9/0x6150 [ 807.205604][ T31] __schedule+0x1139/0x6150 [ 807.210108][ T31] ? __lock_acquire+0x436/0x2890 [ 807.215047][ T31] ? __mod_timer+0x8f2/0xd30 [ 807.219645][ T31] ? __pfx___schedule+0x10/0x10 [ 807.224495][ T31] ? find_held_lock+0x2b/0x80 [ 807.229180][ T31] ? schedule+0x2d7/0x3a0 [ 807.233511][ T31] schedule+0xe7/0x3a0 [ 807.237583][ T31] schedule_timeout+0x123/0x290 [ 807.242455][ T31] ? __pfx_schedule_timeout+0x10/0x10 [ 807.247913][ T31] ? __pfx_process_timeout+0x10/0x10 [ 807.253329][ T31] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 807.259153][ T31] ? prepare_to_wait_event+0xd0/0x6a0 [ 807.264581][ T31] kcompactd+0xa2c/0xe80 [ 807.268842][ T31] ? __pfx_kcompactd+0x10/0x10 [ 807.273629][ T31] ? find_held_lock+0x2b/0x80 [ 807.278336][ T31] ? __pfx_autoremove_wake_function+0x10/0x10 [ 807.284429][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 807.289651][ T31] ? __kthread_parkme+0x19e/0x250 [ 807.294691][ T31] ? __pfx_kcompactd+0x10/0x10 [ 807.299497][ T31] kthread+0x3c5/0x780 [ 807.303591][ T31] ? __pfx_kthread+0x10/0x10 [ 807.308182][ T31] ? rcu_is_watching+0x12/0xc0 [ 807.313041][ T31] ? __pfx_kthread+0x10/0x10 [ 807.317649][ T31] ret_from_fork+0x983/0xb10 [ 807.322240][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 807.327359][ T31] ? __switch_to+0x7af/0x10d0 [ 807.332044][ T31] ? __pfx_kthread+0x10/0x10 [ 807.336637][ T31] ret_from_fork_asm+0x1a/0x30 [ 807.341418][ T31] [ 807.344434][ T31] task:ksmd state:S stack:30056 pid:37 tgid:37 ppid:2 task_flags:0x200040 flags:0x00080000 [ 807.356365][ T31] Call Trace: [ 807.359817][ T31] [ 807.362762][ T31] ? __schedule+0x10b9/0x6150 [ 807.367460][ T31] __schedule+0x1139/0x6150 [ 807.372068][ T31] ? __lock_acquire+0x436/0x2890 [ 807.377190][ T31] ? __pfx___schedule+0x10/0x10 [ 807.382116][ T31] ? find_held_lock+0x2b/0x80 [ 807.386932][ T31] ? schedule+0x2d7/0x3a0 [ 807.391286][ T31] schedule+0xe7/0x3a0 [ 807.395371][ T31] ? __pfx_ksm_scan_thread+0x10/0x10 [ 807.400667][ T31] ksm_scan_thread+0x16fa/0x5ba0 [ 807.405611][ T31] ? __schedule+0x3bbb/0x6150 [ 807.410301][ T31] ? __lock_acquire+0x436/0x2890 [ 807.415239][ T31] ? __lock_acquire+0x436/0x2890 [ 807.420178][ T31] ? __pfx_ksm_scan_thread+0x10/0x10 [ 807.425492][ T31] ? do_raw_spin_lock+0x12c/0x2b0 [ 807.430568][ T31] ? __pfx_autoremove_wake_function+0x10/0x10 [ 807.436733][ T31] ? rcu_is_watching+0x12/0xc0 [ 807.441526][ T31] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 807.447341][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 807.452548][ T31] ? __kthread_parkme+0x19e/0x250 [ 807.457583][ T31] ? __pfx_ksm_scan_thread+0x10/0x10 [ 807.462873][ T31] kthread+0x3c5/0x780 [ 807.466945][ T31] ? __pfx_kthread+0x10/0x10 [ 807.471650][ T31] ? rcu_is_watching+0x12/0xc0 [ 807.476474][ T31] ? __pfx_kthread+0x10/0x10 [ 807.481086][ T31] ret_from_fork+0x983/0xb10 [ 807.485703][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 807.490840][ T31] ? __switch_to+0x7af/0x10d0 [ 807.495535][ T31] ? __pfx_kthread+0x10/0x10 [ 807.500148][ T31] ret_from_fork_asm+0x1a/0x30 [ 807.504974][ T31] [ 807.508008][ T31] task:khugepaged state:S stack:24136 pid:38 tgid:38 ppid:2 task_flags:0x200040 flags:0x00080000 [ 807.519958][ T31] Call Trace: [ 807.523280][ T31] [ 807.526214][ T31] ? __schedule+0x10b9/0x6150 [ 807.530906][ T31] __schedule+0x1139/0x6150 [ 807.535426][ T31] ? __lock_acquire+0x436/0x2890 [ 807.540388][ T31] ? __mod_timer+0x8f2/0xd30 [ 807.545033][ T31] ? __pfx___schedule+0x10/0x10 [ 807.549981][ T31] ? find_held_lock+0x2b/0x80 [ 807.554692][ T31] ? schedule+0x2d7/0x3a0 [ 807.559031][ T31] schedule+0xe7/0x3a0 [ 807.563103][ T31] schedule_timeout+0x123/0x290 [ 807.567952][ T31] ? __pfx_schedule_timeout+0x10/0x10 [ 807.573323][ T31] ? __pfx_process_timeout+0x10/0x10 [ 807.578638][ T31] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 807.584450][ T31] ? prepare_to_wait_event+0xd0/0x6a0 [ 807.589837][ T31] khugepaged+0x994/0x1690 [ 807.594276][ T31] ? __pfx_khugepaged+0x10/0x10 [ 807.599219][ T31] ? __lock_acquire+0x436/0x2890 [ 807.604163][ T31] ? __pfx_autoremove_wake_function+0x10/0x10 [ 807.610241][ T31] ? find_held_lock+0x2b/0x80 [ 807.614934][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 807.620138][ T31] ? __kthread_parkme+0x19e/0x250 [ 807.625172][ T31] ? __pfx_khugepaged+0x10/0x10 [ 807.630024][ T31] kthread+0x3c5/0x780 [ 807.634094][ T31] ? __pfx_kthread+0x10/0x10 [ 807.638775][ T31] ? rcu_is_watching+0x12/0xc0 [ 807.643558][ T31] ? __pfx_kthread+0x10/0x10 [ 807.648150][ T31] ret_from_fork+0x983/0xb10 [ 807.652750][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 807.657862][ T31] ? __switch_to+0x7af/0x10d0 [ 807.662653][ T31] ? __pfx_kthread+0x10/0x10 [ 807.667245][ T31] ret_from_fork_asm+0x1a/0x30 [ 807.672064][ T31] [ 807.675092][ T31] task:kworker/R-kbloc state:I stack:30752 pid:39 tgid:39 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 807.687110][ T31] Call Trace: [ 807.690403][ T31] [ 807.693333][ T31] ? __schedule+0x10b9/0x6150 [ 807.698029][ T31] __schedule+0x1139/0x6150 [ 807.702534][ T31] ? __lock_acquire+0x436/0x2890 [ 807.707479][ T31] ? __pfx___schedule+0x10/0x10 [ 807.712329][ T31] ? find_held_lock+0x2b/0x80 [ 807.717020][ T31] ? schedule+0x2d7/0x3a0 [ 807.721360][ T31] schedule+0xe7/0x3a0 [ 807.725440][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 807.730637][ T31] rescuer_thread+0x7e4/0xf10 [ 807.735460][ T31] ? find_held_lock+0x2b/0x80 [ 807.740233][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 807.745449][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 807.750653][ T31] ? __kthread_parkme+0x19e/0x250 [ 807.755686][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 807.760886][ T31] kthread+0x3c5/0x780 [ 807.764971][ T31] ? __pfx_kthread+0x10/0x10 [ 807.769576][ T31] ? rcu_is_watching+0x12/0xc0 [ 807.774352][ T31] ? __pfx_kthread+0x10/0x10 [ 807.779132][ T31] ret_from_fork+0x983/0xb10 [ 807.783738][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 807.788852][ T31] ? __switch_to+0x7af/0x10d0 [ 807.793620][ T31] ? __pfx_kthread+0x10/0x10 [ 807.798215][ T31] ret_from_fork_asm+0x1a/0x30 [ 807.802994][ T31] [ 807.806011][ T31] task:kworker/R-blkcg state:I stack:29864 pid:40 tgid:40 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 807.818129][ T31] Call Trace: [ 807.821404][ T31] [ 807.824342][ T31] ? __schedule+0x10b9/0x6150 [ 807.829107][ T31] __schedule+0x1139/0x6150 [ 807.833612][ T31] ? __lock_acquire+0x436/0x2890 [ 807.838558][ T31] ? __pfx___schedule+0x10/0x10 [ 807.843406][ T31] ? find_held_lock+0x2b/0x80 [ 807.848087][ T31] ? schedule+0x2d7/0x3a0 [ 807.852437][ T31] schedule+0xe7/0x3a0 [ 807.856510][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 807.861712][ T31] rescuer_thread+0x7e4/0xf10 [ 807.866466][ T31] ? find_held_lock+0x2b/0x80 [ 807.871158][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 807.876369][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 807.881573][ T31] ? __kthread_parkme+0x19e/0x250 [ 807.886607][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 807.891890][ T31] kthread+0x3c5/0x780 [ 807.895962][ T31] ? __pfx_kthread+0x10/0x10 [ 807.900549][ T31] ? rcu_is_watching+0x12/0xc0 [ 807.905316][ T31] ? __pfx_kthread+0x10/0x10 [ 807.909908][ T31] ret_from_fork+0x983/0xb10 [ 807.914498][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 807.919644][ T31] ? __switch_to+0x7af/0x10d0 [ 807.924326][ T31] ? __pfx_kthread+0x10/0x10 [ 807.928917][ T31] ret_from_fork_asm+0x1a/0x30 [ 807.933712][ T31] [ 807.936751][ T31] task:kworker/R-kinte state:I stack:29864 pid:41 tgid:41 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 807.948868][ T31] Call Trace: [ 807.952208][ T31] [ 807.955168][ T31] ? __schedule+0x10b9/0x6150 [ 807.959876][ T31] __schedule+0x1139/0x6150 [ 807.964393][ T31] ? __lock_acquire+0x436/0x2890 [ 807.969519][ T31] ? __pfx___schedule+0x10/0x10 [ 807.974644][ T31] ? find_held_lock+0x2b/0x80 [ 807.979331][ T31] ? schedule+0x2d7/0x3a0 [ 807.983665][ T31] schedule+0xe7/0x3a0 [ 807.987736][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 807.992963][ T31] rescuer_thread+0x7e4/0xf10 [ 807.997649][ T31] ? find_held_lock+0x2b/0x80 [ 808.002942][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 808.008147][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 808.013353][ T31] ? __kthread_parkme+0x19e/0x250 [ 808.018396][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 808.023779][ T31] kthread+0x3c5/0x780 [ 808.027943][ T31] ? __pfx_kthread+0x10/0x10 [ 808.032558][ T31] ? rcu_is_watching+0x12/0xc0 [ 808.037337][ T31] ? __pfx_kthread+0x10/0x10 [ 808.041927][ T31] ret_from_fork+0x983/0xb10 [ 808.046522][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 808.051653][ T31] ? __switch_to+0x7af/0x10d0 [ 808.056341][ T31] ? __pfx_kthread+0x10/0x10 [ 808.060932][ T31] ret_from_fork_asm+0x1a/0x30 [ 808.065733][ T31] [ 808.068751][ T31] task:irq/9-acpi state:S stack:30232 pid:43 tgid:43 ppid:2 task_flags:0x4208040 flags:0x00080000 [ 808.080766][ T31] Call Trace: [ 808.084040][ T31] [ 808.087057][ T31] ? __schedule+0x10b9/0x6150 [ 808.091832][ T31] __schedule+0x1139/0x6150 [ 808.096434][ T31] ? __lock_acquire+0x436/0x2890 [ 808.101372][ T31] ? __set_cpus_allowed_ptr+0x179/0x230 [ 808.106928][ T31] ? __pfx___schedule+0x10/0x10 [ 808.111785][ T31] ? find_held_lock+0x2b/0x80 [ 808.116479][ T31] ? schedule+0x2d7/0x3a0 [ 808.120829][ T31] schedule+0xe7/0x3a0 [ 808.124935][ T31] irq_thread+0x1e3/0x7f0 [ 808.129277][ T31] ? __pfx_irq_thread_fn+0x10/0x10 [ 808.134397][ T31] ? __pfx_irq_thread+0x10/0x10 [ 808.139280][ T31] ? rcu_is_watching+0x12/0xc0 [ 808.144051][ T31] ? __pfx_irq_thread_dtor+0x10/0x10 [ 808.149359][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 808.154562][ T31] ? __kthread_parkme+0x19e/0x250 [ 808.159611][ T31] ? __pfx_irq_thread+0x10/0x10 [ 808.164555][ T31] kthread+0x3c5/0x780 [ 808.168640][ T31] ? __pfx_kthread+0x10/0x10 [ 808.173232][ T31] ? rcu_is_watching+0x12/0xc0 [ 808.178029][ T31] ? __pfx_kthread+0x10/0x10 [ 808.182619][ T31] ret_from_fork+0x983/0xb10 [ 808.187216][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 808.192342][ T31] ? __switch_to+0x7af/0x10d0 [ 808.197025][ T31] ? __pfx_kthread+0x10/0x10 [ 808.201699][ T31] ret_from_fork_asm+0x1a/0x30 [ 808.206565][ T31] [ 808.209761][ T31] task:kworker/1:1 state:I stack:26152 pid:44 tgid:44 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 808.221987][ T31] Workqueue: 0x0 (wg-crypt-wg0) [ 808.226956][ T31] Call Trace: [ 808.230253][ T31] [ 808.233185][ T31] ? __schedule+0x10b9/0x6150 [ 808.237877][ T31] __schedule+0x1139/0x6150 [ 808.242386][ T31] ? __lock_acquire+0x436/0x2890 [ 808.247357][ T31] ? __pfx___schedule+0x10/0x10 [ 808.252222][ T31] ? find_held_lock+0x2b/0x80 [ 808.256902][ T31] ? schedule+0x2d7/0x3a0 [ 808.261234][ T31] schedule+0xe7/0x3a0 [ 808.265304][ T31] ? worker_thread+0x28b/0xf10 [ 808.270069][ T31] worker_thread+0x2e5/0xf10 [ 808.274669][ T31] ? __pfx_worker_thread+0x10/0x10 [ 808.279779][ T31] kthread+0x3c5/0x780 [ 808.283845][ T31] ? __pfx_kthread+0x10/0x10 [ 808.288437][ T31] ? rcu_is_watching+0x12/0xc0 [ 808.293206][ T31] ? __pfx_kthread+0x10/0x10 [ 808.297893][ T31] ret_from_fork+0x983/0xb10 [ 808.302583][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 808.307784][ T31] ? __switch_to+0x7af/0x10d0 [ 808.312468][ T31] ? __pfx_kthread+0x10/0x10 [ 808.317058][ T31] ret_from_fork_asm+0x1a/0x30 [ 808.321845][ T31] [ 808.324870][ T31] task:kworker/R-tpm_d state:I stack:29864 pid:45 tgid:45 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 808.336972][ T31] Call Trace: [ 808.340249][ T31] [ 808.343188][ T31] ? __schedule+0x10b9/0x6150 [ 808.347868][ T31] __schedule+0x1139/0x6150 [ 808.352469][ T31] ? __lock_acquire+0x436/0x2890 [ 808.357419][ T31] ? __pfx___schedule+0x10/0x10 [ 808.362269][ T31] ? find_held_lock+0x2b/0x80 [ 808.366953][ T31] ? schedule+0x2d7/0x3a0 [ 808.371314][ T31] schedule+0xe7/0x3a0 [ 808.375387][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 808.380612][ T31] rescuer_thread+0x7e4/0xf10 [ 808.385302][ T31] ? find_held_lock+0x2b/0x80 [ 808.389986][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 808.395185][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 808.400389][ T31] ? __kthread_parkme+0x19e/0x250 [ 808.405425][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 808.410622][ T31] kthread+0x3c5/0x780 [ 808.414691][ T31] ? __pfx_kthread+0x10/0x10 [ 808.419283][ T31] ? rcu_is_watching+0x12/0xc0 [ 808.424057][ T31] ? __pfx_kthread+0x10/0x10 [ 808.428655][ T31] ret_from_fork+0x983/0xb10 [ 808.433264][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 808.438391][ T31] ? __switch_to+0x7af/0x10d0 [ 808.443084][ T31] ? __pfx_kthread+0x10/0x10 [ 808.447672][ T31] ret_from_fork_asm+0x1a/0x30 [ 808.452543][ T31] [ 808.455568][ T31] task:kworker/R-ata_s state:I stack:29864 pid:46 tgid:46 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 808.467973][ T31] Call Trace: [ 808.471280][ T31] [ 808.474227][ T31] ? __schedule+0x10b9/0x6150 [ 808.479034][ T31] __schedule+0x1139/0x6150 [ 808.483549][ T31] ? __lock_acquire+0x436/0x2890 [ 808.488493][ T31] ? __pfx___schedule+0x10/0x10 [ 808.493425][ T31] ? find_held_lock+0x2b/0x80 [ 808.498109][ T31] ? schedule+0x2d7/0x3a0 [ 808.502528][ T31] schedule+0xe7/0x3a0 [ 808.506594][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 808.511791][ T31] rescuer_thread+0x7e4/0xf10 [ 808.516470][ T31] ? find_held_lock+0x2b/0x80 [ 808.521156][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 808.526440][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 808.531642][ T31] ? __kthread_parkme+0x19e/0x250 [ 808.536674][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 808.541875][ T31] kthread+0x3c5/0x780 [ 808.545946][ T31] ? __pfx_kthread+0x10/0x10 [ 808.550554][ T31] ? rcu_is_watching+0x12/0xc0 [ 808.555362][ T31] ? __pfx_kthread+0x10/0x10 [ 808.560062][ T31] ret_from_fork+0x983/0xb10 [ 808.564662][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 808.569779][ T31] ? __switch_to+0x7af/0x10d0 [ 808.574462][ T31] ? __pfx_kthread+0x10/0x10 [ 808.579148][ T31] ret_from_fork_asm+0x1a/0x30 [ 808.583942][ T31] [ 808.587136][ T31] task:kworker/R-md_bi state:I stack:29576 pid:47 tgid:47 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 808.599467][ T31] Call Trace: [ 808.602770][ T31] [ 808.605702][ T31] ? __schedule+0x10b9/0x6150 [ 808.610382][ T31] __schedule+0x1139/0x6150 [ 808.614890][ T31] ? __lock_acquire+0x436/0x2890 [ 808.619840][ T31] ? __pfx___schedule+0x10/0x10 [ 808.624799][ T31] ? find_held_lock+0x2b/0x80 [ 808.629484][ T31] ? schedule+0x2d7/0x3a0 [ 808.633818][ T31] schedule+0xe7/0x3a0 [ 808.637889][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 808.643096][ T31] rescuer_thread+0x7e4/0xf10 [ 808.647779][ T31] ? find_held_lock+0x2b/0x80 [ 808.652646][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 808.657936][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 808.663143][ T31] ? __kthread_parkme+0x19e/0x250 [ 808.668178][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 808.673382][ T31] kthread+0x3c5/0x780 [ 808.677460][ T31] ? __pfx_kthread+0x10/0x10 [ 808.682053][ T31] ? rcu_is_watching+0x12/0xc0 [ 808.686826][ T31] ? __pfx_kthread+0x10/0x10 [ 808.691418][ T31] ret_from_fork+0x983/0xb10 [ 808.696016][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 808.701146][ T31] ? __switch_to+0x7af/0x10d0 [ 808.705913][ T31] ? __pfx_kthread+0x10/0x10 [ 808.710519][ T31] ret_from_fork_asm+0x1a/0x30 [ 808.715390][ T31] [ 808.718668][ T31] task:kworker/R-md state:I stack:29864 pid:48 tgid:48 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 808.730700][ T31] Call Trace: [ 808.733977][ T31] [ 808.736909][ T31] ? __schedule+0x10b9/0x6150 [ 808.741586][ T31] __schedule+0x1139/0x6150 [ 808.746089][ T31] ? __lock_acquire+0x436/0x2890 [ 808.751051][ T31] ? __pfx___schedule+0x10/0x10 [ 808.755905][ T31] ? find_held_lock+0x2b/0x80 [ 808.760588][ T31] ? schedule+0x2d7/0x3a0 [ 808.764926][ T31] schedule+0xe7/0x3a0 [ 808.769027][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 808.774313][ T31] rescuer_thread+0x7e4/0xf10 [ 808.778997][ T31] ? find_held_lock+0x2b/0x80 [ 808.783707][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 808.788993][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 808.794194][ T31] ? __kthread_parkme+0x19e/0x250 [ 808.799239][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 808.804439][ T31] kthread+0x3c5/0x780 [ 808.808507][ T31] ? __pfx_kthread+0x10/0x10 [ 808.813187][ T31] ? rcu_is_watching+0x12/0xc0 [ 808.817963][ T31] ? __pfx_kthread+0x10/0x10 [ 808.822639][ T31] ret_from_fork+0x983/0xb10 [ 808.827331][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 808.832444][ T31] ? __switch_to+0x7af/0x10d0 [ 808.837135][ T31] ? __pfx_kthread+0x10/0x10 [ 808.841722][ T31] ret_from_fork_asm+0x1a/0x30 [ 808.846503][ T31] [ 808.849519][ T31] task:kworker/R-edac- state:I stack:29864 pid:49 tgid:49 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 808.861619][ T31] Call Trace: [ 808.864904][ T31] [ 808.867833][ T31] ? __schedule+0x10b9/0x6150 [ 808.872539][ T31] __schedule+0x1139/0x6150 [ 808.877044][ T31] ? __lock_acquire+0x436/0x2890 [ 808.882008][ T31] ? __pfx___schedule+0x10/0x10 [ 808.886869][ T31] ? find_held_lock+0x2b/0x80 [ 808.891557][ T31] ? schedule+0x2d7/0x3a0 [ 808.895986][ T31] schedule+0xe7/0x3a0 [ 808.900315][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 808.905513][ T31] rescuer_thread+0x7e4/0xf10 [ 808.910194][ T31] ? find_held_lock+0x2b/0x80 [ 808.914903][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 808.920100][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 808.925305][ T31] ? __kthread_parkme+0x19e/0x250 [ 808.930337][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 808.935633][ T31] kthread+0x3c5/0x780 [ 808.939884][ T31] ? __pfx_kthread+0x10/0x10 [ 808.944489][ T31] ? rcu_is_watching+0x12/0xc0 [ 808.949261][ T31] ? __pfx_kthread+0x10/0x10 [ 808.953850][ T31] ret_from_fork+0x983/0xb10 [ 808.958441][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 808.963551][ T31] ? __switch_to+0x7af/0x10d0 [ 808.968325][ T31] ? __pfx_kthread+0x10/0x10 [ 808.973090][ T31] ret_from_fork_asm+0x1a/0x30 [ 808.977958][ T31] [ 808.980988][ T31] task:kworker/R-quota state:I stack:30744 pid:50 tgid:50 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 808.993000][ T31] Call Trace: [ 808.996275][ T31] [ 808.999215][ T31] ? __schedule+0x10b9/0x6150 [ 809.004116][ T31] __schedule+0x1139/0x6150 [ 809.008636][ T31] ? __lock_acquire+0x436/0x2890 [ 809.013595][ T31] ? __pfx___schedule+0x10/0x10 [ 809.018554][ T31] ? find_held_lock+0x2b/0x80 [ 809.023238][ T31] ? schedule+0x2d7/0x3a0 [ 809.027587][ T31] schedule+0xe7/0x3a0 [ 809.031678][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 809.036892][ T31] rescuer_thread+0x7e4/0xf10 [ 809.041576][ T31] ? find_held_lock+0x2b/0x80 [ 809.046275][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 809.051498][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 809.056710][ T31] ? __kthread_parkme+0x19e/0x250 [ 809.061744][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 809.067119][ T31] kthread+0x3c5/0x780 [ 809.071211][ T31] ? __pfx_kthread+0x10/0x10 [ 809.075810][ T31] ? rcu_is_watching+0x12/0xc0 [ 809.080581][ T31] ? __pfx_kthread+0x10/0x10 [ 809.085251][ T31] ret_from_fork+0x983/0xb10 [ 809.089962][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 809.095116][ T31] ? __switch_to+0x7af/0x10d0 [ 809.099938][ T31] ? __pfx_kthread+0x10/0x10 [ 809.104541][ T31] ret_from_fork_asm+0x1a/0x30 [ 809.109347][ T31] [ 809.112365][ T31] task:kworker/R-ib-co state:I stack:29864 pid:51 tgid:51 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 809.124397][ T31] Call Trace: [ 809.127673][ T31] [ 809.130620][ T31] ? __schedule+0x10b9/0x6150 [ 809.135320][ T31] __schedule+0x1139/0x6150 [ 809.139838][ T31] ? __lock_acquire+0x436/0x2890 [ 809.145304][ T31] ? __pfx___schedule+0x10/0x10 [ 809.150151][ T31] ? find_held_lock+0x2b/0x80 [ 809.154847][ T31] ? schedule+0x2d7/0x3a0 [ 809.159179][ T31] schedule+0xe7/0x3a0 [ 809.163249][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 809.168454][ T31] rescuer_thread+0x7e4/0xf10 [ 809.173234][ T31] ? find_held_lock+0x2b/0x80 [ 809.178122][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 809.183372][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 809.188606][ T31] ? __kthread_parkme+0x19e/0x250 [ 809.193644][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 809.198865][ T31] kthread+0x3c5/0x780 [ 809.203146][ T31] ? __pfx_kthread+0x10/0x10 [ 809.207790][ T31] ? rcu_is_watching+0x12/0xc0 [ 809.212569][ T31] ? __pfx_kthread+0x10/0x10 [ 809.217180][ T31] ret_from_fork+0x983/0xb10 [ 809.221881][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 809.227001][ T31] ? __switch_to+0x7af/0x10d0 [ 809.231690][ T31] ? __pfx_kthread+0x10/0x10 [ 809.236280][ T31] ret_from_fork_asm+0x1a/0x30 [ 809.241246][ T31] [ 809.244271][ T31] task:kworker/R-ib-co state:I stack:29864 pid:53 tgid:53 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 809.256298][ T31] Call Trace: [ 809.259587][ T31] [ 809.262534][ T31] ? __schedule+0x10b9/0x6150 [ 809.267338][ T31] __schedule+0x1139/0x6150 [ 809.271847][ T31] ? __lock_acquire+0x436/0x2890 [ 809.276798][ T31] ? __pfx___schedule+0x10/0x10 [ 809.281658][ T31] ? find_held_lock+0x2b/0x80 [ 809.286339][ T31] ? schedule+0x2d7/0x3a0 [ 809.290684][ T31] schedule+0xe7/0x3a0 [ 809.294880][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 809.300083][ T31] rescuer_thread+0x7e4/0xf10 [ 809.304783][ T31] ? find_held_lock+0x2b/0x80 [ 809.309671][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 809.314893][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 809.320111][ T31] ? __kthread_parkme+0x19e/0x250 [ 809.325256][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 809.330454][ T31] kthread+0x3c5/0x780 [ 809.334526][ T31] ? __pfx_kthread+0x10/0x10 [ 809.339120][ T31] ? rcu_is_watching+0x12/0xc0 [ 809.343890][ T31] ? __pfx_kthread+0x10/0x10 [ 809.348476][ T31] ret_from_fork+0x983/0xb10 [ 809.353155][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 809.358268][ T31] ? __switch_to+0x7af/0x10d0 [ 809.362947][ T31] ? __pfx_kthread+0x10/0x10 [ 809.367609][ T31] ret_from_fork_asm+0x1a/0x30 [ 809.372397][ T31] [ 809.375410][ T31] task:kworker/R-ib_mc state:I stack:30696 pid:54 tgid:54 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 809.387443][ T31] Call Trace: [ 809.390732][ T31] [ 809.393660][ T31] ? __schedule+0x10b9/0x6150 [ 809.398344][ T31] __schedule+0x1139/0x6150 [ 809.402851][ T31] ? __lock_acquire+0x436/0x2890 [ 809.407798][ T31] ? __pfx___schedule+0x10/0x10 [ 809.412648][ T31] ? find_held_lock+0x2b/0x80 [ 809.417416][ T31] ? schedule+0x2d7/0x3a0 [ 809.421745][ T31] schedule+0xe7/0x3a0 [ 809.425827][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 809.431027][ T31] rescuer_thread+0x7e4/0xf10 [ 809.435704][ T31] ? find_held_lock+0x2b/0x80 [ 809.440396][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 809.445595][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 809.450807][ T31] ? __kthread_parkme+0x19e/0x250 [ 809.455859][ T31] ? __pfx_rescuer_thread+0x10/0x10 [ 809.461067][ T31] kthread+0x3c5/0x780 [ 809.465149][ T31] ? __pfx_kthread+0x10/0x10 [ 809.469844][ T31] ? rcu_is_watching+0x12/0xc0 [ 809.474721][ T31] ? __pfx_kthread+0x10/0x10 [ 809.479328][ T31] ret_from_fork+0x983/0xb10 [ 809.483932][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 809.489061][ T31] ? __switch_to+0x7af/0x10d0 [ 809.493758][ T31] ? __pfx_kthread+0x10/0x10 [ 809.498349][ T31] ret_from_fork_asm+0x1a/0x30 [ 809.503131][ T31] [ 809.506143][ T31] task:kworker/R-ib_nl state:I stack:29864 pid:55 tgid:55 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 809.518159][ T31] Call Trace: [ 809.521435][ T31] [ 809.524475][ T31] ? __schedule+0x10b9/0x6150 [ 809.529153][ T31] __schedule+0x1139/0x6150 [ 809.533658][ T31] ? __lock_acquire+0x436/0x2890 [ 809.538615][ T31] ? __pfx___schedule+0x10/0x10 [ 809.543554][ T31] ? find_held_lock+0x2b/0x80 [ 809.548240][ T31] ? schedule+0x2d7/0x3a0 [ 809.552579][ T31] schedule+0xe7/0x3a0 [ 809.556676][ T31] ? __pfx_rescuer_thread+0x10/0x10