last executing test programs: 31.488896272s ago: executing program 3 (id=899): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x2, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS2\x00', 0x101f81, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) ioctl$auto_TIOCVHANGUP2(r0, 0x5437, 0x0) 31.046122541s ago: executing program 3 (id=903): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/trigger\x00', 0x0, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x60, 0x0, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) ioctl$auto_BLKTRACESETUP2(0xffffffffffffffff, 0xc0481273, &(0x7f0000000140)={"57f475c61457e99f769f5235b668e09caf9941b9b26b2fb80cf70643d6ff9594", 0x3ff, 0x23, 0xc130, 0xd5e9, 0x401}) r0 = socket(0xa, 0x1, 0x84) r1 = getpid() process_vm_readv$auto(r1, &(0x7f0000000080)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) setsockopt$auto(r0, 0x0, 0x60, 0x0, 0x6f7250c4) 30.370368798s ago: executing program 3 (id=908): socket(0xa, 0x2, 0x73) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket(0x2, 0x80002, 0x73) ioctl$auto_TIOCSBRK(0xffffffffffffffff, 0x5427, 0x0) openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/numa_maps\x00', 0x20000, 0x0) mlockall$auto(0x7) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) shutdown$auto(0x200000003, 0x2) 29.563958596s ago: executing program 3 (id=912): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) mkdir$auto(0x0, 0x353) 28.800513125s ago: executing program 3 (id=917): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x7, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x52, 0x0) r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000400)='/dev/binderfs/binder0\x00', 0x40, 0x0) ioctl$auto_BINDER_WRITE_READ(r0, 0xc0306201, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) 28.242169451s ago: executing program 3 (id=920): close_range$auto(0x2, 0x8, 0x0) openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000000), 0x40002, 0x0) socket(0x11, 0x3, 0x3a) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r0, &(0x7f0000000180)='7\x00\\\xa0\x04|4\x00\x00\x03\x00\x00\x00\x10\x01\x00\x00\x00\x00\x00\x00\x00\x00rRVr\xc4O\xdc1\x9b%\x10Z\'\xb9\'\xa3stC=\x85\xc6\xf6\x13 \xeb\xff%\x11\x82\x05\xdfV\x02\xca&\xd8$<\xab&\xc8B-\xcc\x15\x04&\x13;\xfe\xbdQ\xaa\x16o\x1f\xc7\x94\xa3\xc9\x9a\xe1d\xf5\n\xe2\x88\x84\vT?\x98\xa2\x00'/206, 0x5) r1 = ioctl$auto_NS_GET_NSTYPE(0xffffffffffffffff, 0xb703, 0x0) ioctl$auto_TUNSETSNDBUF(r1, 0x400454d4, 0x0) accept$auto(0x3, 0xffffffffffffffff, 0xfffffffffffffffd) 27.434553871s ago: executing program 32 (id=920): close_range$auto(0x2, 0x8, 0x0) openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000000), 0x40002, 0x0) socket(0x11, 0x3, 0x3a) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r0, &(0x7f0000000180)='7\x00\\\xa0\x04|4\x00\x00\x03\x00\x00\x00\x10\x01\x00\x00\x00\x00\x00\x00\x00\x00rRVr\xc4O\xdc1\x9b%\x10Z\'\xb9\'\xa3stC=\x85\xc6\xf6\x13 \xeb\xff%\x11\x82\x05\xdfV\x02\xca&\xd8$<\xab&\xc8B-\xcc\x15\x04&\x13;\xfe\xbdQ\xaa\x16o\x1f\xc7\x94\xa3\xc9\x9a\xe1d\xf5\n\xe2\x88\x84\vT?\x98\xa2\x00'/206, 0x5) r1 = ioctl$auto_NS_GET_NSTYPE(0xffffffffffffffff, 0xb703, 0x0) ioctl$auto_TUNSETSNDBUF(r1, 0x400454d4, 0x0) accept$auto(0x3, 0xffffffffffffffff, 0xfffffffffffffffd) 6.773628328s ago: executing program 4 (id=1038): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x2, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_INTERFACE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="010b0bbd7000fcdbff7f05"], 0x14}, 0x1, 0x0, 0x0, 0x4008010}, 0x4040084) unshare$auto(0x40000080) read$auto(0x3, 0x0, 0x13) 6.02309129s ago: executing program 4 (id=1045): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x160) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50) socketpair$auto(0x1, 0x2, 0x7fd, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) setsockopt$auto(0x3, 0x0, 0xa, 0x0, 0x10000) 5.661767402s ago: executing program 2 (id=1048): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) shutdown$auto(0x200000003, 0x2) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0x8) 5.175795765s ago: executing program 4 (id=1050): prctl$auto(0x34, 0x0, 0x0, 0x0, 0x0) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x0, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x8000000000000001) sendfile$auto(0x1, 0x3, 0x0, 0x40000000c07) bpf$auto(0x78, 0x0, 0x3) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x101d00, 0x0) openat$auto_usbfs_devices_fops_usb(0xffffffffffffff9c, 0x0, 0x2040, 0x0) capset$auto(0x0, 0x0) 5.100658079s ago: executing program 2 (id=1051): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x0, 0x0) r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000000), 0x2802, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffff7effffd08, &(0x7f00000001c0)) poll$auto(0x0, 0x6, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x20009, 0x8d, 0xeb1, 0x401, 0x8000) r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/event2\x00', 0x0, 0x0) ioctl$auto_EVIOCSREP(r1, 0x40084503, 0x0) 4.952941178s ago: executing program 4 (id=1052): mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0xe3, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000140)='/dev/tty0\x00', 0x600343, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0) write$auto(0x3, 0x0, 0xfffffdef) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TCFLSH2(r0, 0x5408, 0x0) 4.852385518s ago: executing program 2 (id=1054): r0 = socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) write$auto_fops_init_pkru_pkeys(0xffffffffffffffff, 0x0, 0x0) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x10000}, 0x7, 0x0, 0x5, 0xb}, 0xfff}, 0x8, 0x311) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x18dd01, 0x0) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) 4.500714734s ago: executing program 0 (id=1056): unshare$auto(0x40000080) keyctl$auto(0x40001b, 0x1, 0x0, 0x3, 0x100010006) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1c9282, 0x0) mmap$auto(0x0, 0x1000, 0x7, 0xeb1, 0x404, 0x10008000) close_range$auto(0x2, 0x8, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0) write$auto(0x3, 0x0, 0xfffffdef) 4.385703901s ago: executing program 4 (id=1057): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x88042, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22241, 0x155) socket(0xa, 0x5, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x19, 0x0, 0x8) 4.130653553s ago: executing program 2 (id=1058): openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) keyctl$auto(0xa, 0xfffffffffffffffd, 0x0, 0x0, 0xfffffffb) r0 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0) io_uring_setup$auto(0x4005, 0x0) openat$auto_binder_features_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/features/freeze_notification\x00', 0x20000, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r0, 0x403c6f2b, 0x0) 4.111479247s ago: executing program 4 (id=1059): openat$auto_proc_mem_operations_base(0xffffffffffffff9c, 0x0, 0x401, 0x0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0x401, 0x8000) bind$auto(0x3, 0x0, 0x6d) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) listmount$auto(&(0x7f0000000080)={0x1f, @raw, 0x80000026, 0xfffffffffffffff7, 0x8}, 0x0, 0xf4240, 0x1) 3.2308503s ago: executing program 1 (id=1060): mmap$auto(0x0, 0x400008, 0x6, 0x209b72, 0x2, 0x1000000008000) lstat$auto(0x0, 0x0) move_pages$auto(0x0, 0x8, 0x0, 0x0, 0x0, 0x2) mmap$auto(0xfffffffffffffffc, 0xf64e, 0xe, 0xe31, 0x403, 0x4) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/lowpan0/uevent\x00', 0x101142, 0x0) write$auto(0x3, 0x0, 0x81) 2.978760449s ago: executing program 1 (id=1061): r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) openat$auto_debugfs_devm_entry_ops_file(0xffffffffffffff9c, 0x0, 0x505100, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) sysfs$auto(0x2, 0x1e, 0x0) ioctl$auto_TUNSETVNETLE2(r0, 0x400454dc, 0x0) write$auto(0x3, 0x0, 0xfdf3) 2.978447584s ago: executing program 2 (id=1062): socket(0x1f, 0x6, 0xffffffff) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) unshare$auto(0x40000080) exit$auto(0x7) mount$auto(0x0, &(0x7f00000000c0)='.\x00', 0x0, 0x7, 0x0) syz_clone(0x0, 0x0, 0xfffffffffffffd55, 0x0, 0x0, 0x0) 2.554379827s ago: executing program 1 (id=1063): openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, 0x0, 0x1, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x440402, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0) mmap$auto(0x0, 0x95, 0x4000000000e3, 0x40eb2, 0xffffffffffffffff, 0x300000000000) capget$auto(0x0, 0xfffffffffffffffe) clone3$auto(&(0x7f0000000400)={0x100008000, 0x980, 0x4, 0x6, 0x0, 0x2, 0x1, 0x8, 0x1, 0x0, 0x3}, 0x40) r0 = socket(0xa, 0x801, 0x84) getsockopt$auto(r0, 0x84, 0x83, 0x0, 0x0) 2.48187708s ago: executing program 0 (id=1064): socket(0x10, 0x2, 0x0) socket(0x2, 0x1, 0x106) socket(0x2, 0x80002, 0x73) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x100, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x169000, 0x0) r1 = io_uring_setup$auto(0x1, 0x0) ioctl$auto(r0, 0xc0585604, r1) 1.928805959s ago: executing program 0 (id=1065): mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x11, 0x3, 0x9) sendto$auto(0xffffffffffffffff, 0x0, 0x402, 0x0, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c) close_range$auto(0x2, r0, 0x0) socket(0xa, 0x2, 0x3a) io_uring_setup$auto(0x52, 0x0) sendmmsg$auto(r0, &(0x7f0000000400)={{&(0x7f0000000000), 0x205aa, &(0x7f0000000100)={0x0, 0x4b}, 0x1, 0x0, 0x5, 0x1060}, 0x5}, 0x2, 0x100) 1.763397426s ago: executing program 1 (id=1066): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/net/nr15/queues/tx-0/tx_maxrate\x00', 0x10b942, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000005c0)='/sys/devices/virtual/mac80211_hwsim/hwsim1/ieee80211/phy1/rfkill3/state\x00', 0x102, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, r1, 0x300000000000) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000000), r2) sendfile$auto(r1, r0, 0x0, 0x7) close_range$auto(r1, r0, 0x0) socket(0x79, 0x2, 0xb) 1.633577116s ago: executing program 0 (id=1067): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/erspan0/queues/tx-0/xps_cpus\x00', 0x8382, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/input/mouse0\x00', 0x42000, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7ffffffc, 0x8, 0x3000, 0x6, 0x7, 0x400b, r0, [], {0x6, 0x6, 0x8c48, 0x29a, 0x9, 0x80, 0x104, 0x6, 0x4}, {0x100, 0x1, 0x101, 0x85, 0x2, 0x24, 0xfe000000, 0x8, 0x3}}) r1 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x40000, 0x0) read$auto_vhci_fops_hci_vhci(r1, &(0x7f0000000d40)=""/16, 0x10) select$auto(0xe, 0x0, 0x0, &(0x7f0000000580)={[0x1ff, 0x8, 0xd, 0x1, 0x200948d, 0x3, 0x10015f4da0a, 0xd, 0x7, 0x6, 0x8000001f, 0x8, 0x6d3e, 0xc, 0x2, 0x2]}, 0x0) 704.578079ms ago: executing program 1 (id=1068): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) socket(0x1d, 0x2, 0x2) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) r0 = socket(0xa, 0x1, 0x84) getsockopt$auto(r0, 0x0, 0x53, 0x0, &(0x7f0000000040)=0x2c) 517.971769ms ago: executing program 0 (id=1069): write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0) r1 = getpid() openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/dri/vkms/clients\x00', 0x2100, 0x0) pipe2$auto(&(0x7f00000000c0), 0x0) process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) ioctl$auto(r0, 0x40246f4c, 0x38) 395.05504ms ago: executing program 2 (id=1070): mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) sysfs$auto(0x2, 0x23, 0x0) r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r2, 0x0, 0x4) 135.482566ms ago: executing program 1 (id=1071): prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = prctl$auto(0x8, 0xfffffffffffffffd, 0x0, 0xfffffffffff7fffd, 0x2) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r0, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0) sendfile$auto(r1, r1, 0x0, 0x3) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0x80000000}, 0x2, 0x4, 0x5) lseek$auto(0x3, 0x0, 0x1) sendmmsg$auto(0xffffffffffffffff, 0x0, 0xfffffff9, 0xfffffff7) 0s ago: executing program 0 (id=1072): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x840000000002, 0x3, 0xff) socketpair$auto(0x3, 0x5, 0x8, 0x0) setsockopt$auto(0x3, 0x0, 0x13, 0x0, 0x9) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @local}, 0x55) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x4, &(0x7f00000002c0)={0x0, 0xffeb}, 0x1, 0x0, 0x5, 0x7}, 0x8}, 0xffffffff, 0xb00) kernel console output (not intermixed with test programs): en creating new route [ 129.029526][ T6345] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 129.037087][ T6345] IPv6: NLM_F_CREATE should be set when creating new route [ 129.044536][ T6345] IPv6: NLM_F_CREATE should be set when creating new route [ 129.154655][ T6350] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 129.268635][ T6359] netlink: 342 bytes leftover after parsing attributes in process `syz.0.165'. [ 130.500149][ T6377] netlink: 342 bytes leftover after parsing attributes in process `syz.0.171'. [ 131.970674][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 131.977853][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.320839][ T6411] netlink: 28 bytes leftover after parsing attributes in process `syz.2.181'. [ 133.422870][ T6411] hsr_slave_0: left promiscuous mode [ 133.505067][ T6411] hsr_slave_1: left promiscuous mode [ 133.773051][ T6416] netlink: 338 bytes leftover after parsing attributes in process `syz.0.184'. [ 134.577814][ T6424] netlink: 4 bytes leftover after parsing attributes in process `syz.3.187'. [ 134.620589][ T6424] netlink: 13 bytes leftover after parsing attributes in process `syz.3.187'. [ 136.065574][ T6445] netlink: 'syz.1.196': attribute type 27 has an invalid length. [ 136.139250][ T6445] netlink: 334 bytes leftover after parsing attributes in process `syz.1.196'. [ 136.586786][ T6449] netlink: 146 bytes leftover after parsing attributes in process `syz.3.198'. [ 137.532188][ T6477] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 137.736143][ T6479] netlink: 198 bytes leftover after parsing attributes in process `syz.2.209'. [ 138.341655][ T6492] netlink: 334 bytes leftover after parsing attributes in process `syz.1.214'. [ 141.553382][ T6530] netlink: 146 bytes leftover after parsing attributes in process `syz.3.228'. [ 142.226294][ T6541] FAULT_INJECTION: forcing a failure. [ 142.226294][ T6541] name fail_futex, interval 1, probability 0, space 0, times 1 [ 142.350303][ T6541] CPU: 0 UID: 0 PID: 6541 Comm: syz.3.232 Not tainted syzkaller #0 PREEMPT(full) [ 142.350336][ T6541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 142.350351][ T6541] Call Trace: [ 142.350359][ T6541] [ 142.350368][ T6541] dump_stack_lvl+0x100/0x190 [ 142.350415][ T6541] should_fail_ex.cold+0x5/0xa [ 142.350444][ T6541] get_futex_key+0x1d2/0x1620 [ 142.350477][ T6541] ? __pfx_get_futex_key+0x10/0x10 [ 142.350508][ T6541] ? __do_sys_memfd_create+0x283/0x3d0 [ 142.350542][ T6541] ? kasan_save_stack+0x3f/0x50 [ 142.350581][ T6541] ? kasan_save_stack+0x30/0x50 [ 142.350618][ T6541] ? kasan_save_track+0x14/0x30 [ 142.350655][ T6541] ? kasan_save_free_info+0x3b/0x70 [ 142.350696][ T6541] ? __kasan_slab_free+0x5f/0x80 [ 142.350723][ T6541] futex_wake+0xea/0x530 [ 142.350763][ T6541] ? __pfx_futex_wake+0x10/0x10 [ 142.350814][ T6541] do_futex+0x32b/0x350 [ 142.350846][ T6541] ? __pfx_do_futex+0x10/0x10 [ 142.350887][ T6541] __x64_sys_futex+0x34f/0x4d0 [ 142.350924][ T6541] ? __pfx___x64_sys_futex+0x10/0x10 [ 142.350955][ T6541] ? kfree+0x1f6/0x6b0 [ 142.350986][ T6541] ? strncpy_from_user+0x19d/0x2d0 [ 142.351021][ T6541] do_syscall_64+0x106/0xf80 [ 142.351060][ T6541] ? clear_bhb_loop+0x40/0x90 [ 142.351090][ T6541] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 142.351116][ T6541] RIP: 0033:0x7fa63039c799 [ 142.351137][ T6541] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 142.351161][ T6541] RSP: 002b:00007fa62e5f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 142.351183][ T6541] RAX: ffffffffffffffda RBX: 00007fa630616098 RCX: 00007fa63039c799 [ 142.351199][ T6541] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa63061609c [ 142.351214][ T6541] RBP: 00007fa630616090 R08: 0000000000000000 R09: 0000000000000000 [ 142.351229][ T6541] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 142.351244][ T6541] R13: 00007fa630616128 R14: 00007fff71332f80 R15: 00007fff71333068 [ 142.351274][ T6541] [ 144.614152][ T6575] netlink: 86 bytes leftover after parsing attributes in process `syz.0.243'. [ 147.072513][ T6609] netlink: 342 bytes leftover after parsing attributes in process `syz.3.257'. [ 150.144305][ T6655] netlink: 'syz.0.271': attribute type 28 has an invalid length. [ 150.209220][ T6655] netlink: 334 bytes leftover after parsing attributes in process `syz.0.271'. [ 150.595480][ T6661] bond0: option all_slaves_active: invalid value (7) [ 153.990586][ T6726] netlink: 342 bytes leftover after parsing attributes in process `syz.0.292'. [ 154.436757][ T6734] netlink: 'syz.0.294': attribute type 14 has an invalid length. [ 154.491438][ T6734] netlink: 330 bytes leftover after parsing attributes in process `syz.0.294'. [ 155.392619][ T6746] ubi0: attaching mtd0 [ 155.423328][ T6746] ubi0: scanning is finished [ 155.481429][ T6746] ubi0: empty MTD device detected [ 155.744992][ T6746] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 155.819167][ T6746] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 155.847153][ T6746] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 155.884276][ T6746] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 155.926392][ T6746] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 156.000147][ T6746] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 156.041009][ T6746] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 1631706863 [ 156.098771][ T6746] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 156.166723][ T6753] ubi0: background thread "ubi_bgt0d" started, PID 6753 [ 156.184840][ T6748] ubi0: detaching mtd0 [ 156.295147][ T6748] ubi0: mtd0 is detached [ 156.890548][ T6768] netlink: 330 bytes leftover after parsing attributes in process `syz.3.305'. [ 158.738479][ T6801] netlink: 'syz.0.315': attribute type 33 has an invalid length. [ 158.788462][ T6801] netlink: 322 bytes leftover after parsing attributes in process `syz.0.315'. [ 160.917393][ T6837] FAULT_INJECTION: forcing a failure. [ 160.917393][ T6837] name failslab, interval 1, probability 0, space 0, times 0 [ 160.971609][ T6837] CPU: 0 UID: 0 PID: 6837 Comm: syz.0.331 Not tainted syzkaller #0 PREEMPT(full) [ 160.971642][ T6837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 160.971657][ T6837] Call Trace: [ 160.971665][ T6837] [ 160.971675][ T6837] dump_stack_lvl+0x100/0x190 [ 160.971717][ T6837] should_fail_ex.cold+0x5/0xa [ 160.971746][ T6837] should_failslab+0xc2/0x120 [ 160.971772][ T6837] __kmalloc_cache_noprof+0x7a/0x6f0 [ 160.971806][ T6837] ? snd_seq_timer_new+0x44/0x1b0 [ 160.971848][ T6837] snd_seq_timer_new+0x44/0x1b0 [ 160.971893][ T6837] snd_seq_queue_alloc+0x177/0x590 [ 160.971933][ T6837] snd_seq_ioctl_create_queue+0xa9/0x370 [ 160.971976][ T6837] call_seq_client_ctl+0xa3/0x130 [ 160.972026][ T6837] snd_seq_kernel_client_ctl+0x77/0xd0 [ 160.972070][ T6837] alloc_seq_queue+0xdb/0x180 [ 160.972094][ T6837] ? __pfx_alloc_seq_queue+0x10/0x10 [ 160.972137][ T6837] ? mark_held_locks+0x40/0x70 [ 160.972168][ T6837] ? _raw_spin_unlock_irq+0x23/0x50 [ 160.972200][ T6837] ? lockdep_hardirqs_on+0x78/0x100 [ 160.972239][ T6837] snd_seq_oss_open+0x2b2/0xa10 [ 160.972270][ T6837] odev_open+0x79/0xc0 [ 160.972290][ T6837] ? __pfx_odev_open+0x10/0x10 [ 160.972312][ T6837] soundcore_open+0x2e3/0x5a0 [ 160.972338][ T6837] ? __pfx_soundcore_open+0x10/0x10 [ 160.972362][ T6837] chrdev_open+0x234/0x6a0 [ 160.972387][ T6837] ? __pfx_apparmor_file_open+0x10/0x10 [ 160.972430][ T6837] ? __pfx_chrdev_open+0x10/0x10 [ 160.972457][ T6837] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 160.972489][ T6837] do_dentry_open+0x6d8/0x1660 [ 160.972513][ T6837] ? __pfx_chrdev_open+0x10/0x10 [ 160.972546][ T6837] vfs_open+0x82/0x3f0 [ 160.972581][ T6837] path_openat+0x208c/0x31a0 [ 160.972616][ T6837] ? __pfx_path_openat+0x10/0x10 [ 160.972654][ T6837] do_file_open+0x20e/0x430 [ 160.972682][ T6837] ? __pfx_do_file_open+0x10/0x10 [ 160.972728][ T6837] ? alloc_fd+0x476/0x790 [ 160.972755][ T6837] ? do_getname+0x191/0x390 [ 160.972789][ T6837] do_sys_openat2+0x10d/0x1e0 [ 160.972822][ T6837] ? __pfx_do_sys_openat2+0x10/0x10 [ 160.972877][ T6837] ? __fget_files+0x21f/0x3d0 [ 160.972907][ T6837] __x64_sys_openat+0x12d/0x210 [ 160.972941][ T6837] ? __pfx___x64_sys_openat+0x10/0x10 [ 160.972987][ T6837] do_syscall_64+0x106/0xf80 [ 160.973022][ T6837] ? clear_bhb_loop+0x40/0x90 [ 160.973052][ T6837] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 160.973078][ T6837] RIP: 0033:0x7f463e59c799 [ 160.973099][ T6837] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 160.973124][ T6837] RSP: 002b:00007f463f3ec028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 160.973148][ T6837] RAX: ffffffffffffffda RBX: 00007f463e815fa0 RCX: 00007f463e59c799 [ 160.973164][ T6837] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 160.973179][ T6837] RBP: 00007f463e632c99 R08: 0000000000000000 R09: 0000000000000000 [ 160.973194][ T6837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 160.973208][ T6837] R13: 00007f463e816038 R14: 00007f463e815fa0 R15: 00007fffb22e4a38 [ 160.973239][ T6837] [ 162.453047][ T6846] netlink: 342 bytes leftover after parsing attributes in process `syz.1.335'. [ 162.821763][ T6852] vcan0: tx drop: invalid da for name 0x000000000000003f [ 163.000639][ T6850] netlink: 334 bytes leftover after parsing attributes in process `syz.2.336'. [ 163.671318][ T6865] sg_write: data in/out 65500/90 bytes for SCSI command 0x0-- guessing data in; [ 163.671318][ T6865] program syz.1.345 not setting count and/or reply_len properly [ 164.229242][ T6877] netlink: 338 bytes leftover after parsing attributes in process `syz.1.349'. [ 168.602585][ T6952] tc_dump_action: action bad kind [ 169.627920][ T6966] netlink: 334 bytes leftover after parsing attributes in process `syz.3.380'. [ 169.715447][ T6966] netlink: 334 bytes leftover after parsing attributes in process `syz.3.380'. [ 172.151142][ T7013] sd 0:0:1:0: PR command failed: 1026 [ 172.157075][ T7013] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 172.328068][ T7013] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 172.908745][ T7025] netlink: 334 bytes leftover after parsing attributes in process `syz.2.401'. [ 174.133846][ T7036] netlink: 330 bytes leftover after parsing attributes in process `syz.0.405'. [ 175.563711][ T7058] netlink: 330 bytes leftover after parsing attributes in process `syz.2.414'. [ 175.713771][ T7060] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 175.837085][ T7063] netlink: 'syz.0.418': attribute type 16 has an invalid length. [ 175.861439][ T7063] netlink: 306 bytes leftover after parsing attributes in process `syz.0.418'. [ 176.850258][ T7082] netlink: 74 bytes leftover after parsing attributes in process `syz.2.425'. [ 178.330009][ T7111] netlink: 330 bytes leftover after parsing attributes in process `syz.2.436'. [ 178.399180][ T7111] IPv6: NLM_F_CREATE should be specified when creating new route [ 179.783315][ T7131] ptrace attach of "./syz-executor exec"[5832] was attempted by ""[7131] [ 179.887857][ T7146] netlink: 354 bytes leftover after parsing attributes in process `syz.1.444'. [ 180.131544][ T7141] zswap: compressor not available [ 180.183791][ T7154] netlink: 146 bytes leftover after parsing attributes in process `syz.2.446'. [ 180.259979][ T7156] netlink: 110 bytes leftover after parsing attributes in process `syz.1.447'. [ 185.688399][ T7283] netlink: 334 bytes leftover after parsing attributes in process `syz.1.489'. [ 186.024779][ T7279] zswap: compressor not available [ 187.238837][ T7315] netlink: 146 bytes leftover after parsing attributes in process `syz.2.500'. [ 188.253454][ T7332] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 188.855379][ T7349] binder: 7345:7349 ioctl 40086602 e20 returned -22 [ 188.875695][ T7350] netlink: 334 bytes leftover after parsing attributes in process `syz.0.512'. [ 189.835381][ T7370] FAULT_INJECTION: forcing a failure. [ 189.835381][ T7370] name failslab, interval 1, probability 0, space 0, times 0 [ 189.898989][ T7370] CPU: 0 UID: 0 PID: 7370 Comm: syz.1.520 Tainted: G L syzkaller #0 PREEMPT(full) [ 189.899030][ T7370] Tainted: [L]=SOFTLOCKUP [ 189.899038][ T7370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 189.899057][ T7370] Call Trace: [ 189.899065][ T7370] [ 189.899075][ T7370] dump_stack_lvl+0x100/0x190 [ 189.899118][ T7370] should_fail_ex.cold+0x5/0xa [ 189.899146][ T7370] ? create_ruleset+0x21/0x140 [ 189.899168][ T7370] should_failslab+0xc2/0x120 [ 189.899193][ T7370] __kmalloc_noprof+0xe0/0x850 [ 189.899238][ T7370] create_ruleset+0x21/0x140 [ 189.899261][ T7370] landlock_merge_ruleset+0xbb/0x830 [ 189.899288][ T7370] ? prepare_creds+0x5ee/0x950 [ 189.899329][ T7370] __do_sys_landlock_restrict_self+0x2a6/0x9e0 [ 189.899376][ T7370] do_syscall_64+0x106/0xf80 [ 189.899411][ T7370] ? clear_bhb_loop+0x40/0x90 [ 189.899441][ T7370] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 189.899466][ T7370] RIP: 0033:0x7fbd2059c799 [ 189.899486][ T7370] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 189.899510][ T7370] RSP: 002b:00007fbd2140f028 EFLAGS: 00000246 ORIG_RAX: 00000000000001be [ 189.899533][ T7370] RAX: ffffffffffffffda RBX: 00007fbd20815fa0 RCX: 00007fbd2059c799 [ 189.899549][ T7370] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000003 [ 189.899563][ T7370] RBP: 00007fbd20632c99 R08: 0000000000000000 R09: 0000000000000000 [ 189.899578][ T7370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 189.899592][ T7370] R13: 00007fbd20816038 R14: 00007fbd20815fa0 R15: 00007ffd1f2df538 [ 189.899623][ T7370] [ 193.116020][ T7415] netlink: 342 bytes leftover after parsing attributes in process `syz.3.536'. [ 193.176228][ T7415] netlink: 342 bytes leftover after parsing attributes in process `syz.3.536'. [ 193.937980][ T7432] futex_wake_op: syz.1.541 tries to shift op by -2048; fix this program [ 193.981911][ T7432] futex_wake_op: syz.1.541 tries to shift op by -2048; fix this program [ 194.371223][ T7442] netlink: 334 bytes leftover after parsing attributes in process `syz.3.546'. [ 194.686810][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.694833][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.821613][ T7475] netlink: 28 bytes leftover after parsing attributes in process `syz.2.554'. [ 196.453324][ T7485] mkiss: ax0: crc mode is auto. [ 197.598023][ T7498] FAULT_INJECTION: forcing a failure. [ 197.598023][ T7498] name failslab, interval 1, probability 0, space 0, times 0 [ 197.685163][ T7498] CPU: 0 UID: 0 PID: 7498 Comm: syz.1.561 Tainted: G L syzkaller #0 PREEMPT(full) [ 197.685203][ T7498] Tainted: [L]=SOFTLOCKUP [ 197.685212][ T7498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 197.685226][ T7498] Call Trace: [ 197.685234][ T7498] [ 197.685243][ T7498] dump_stack_lvl+0x100/0x190 [ 197.685286][ T7498] should_fail_ex.cold+0x5/0xa [ 197.685314][ T7498] ? tracepoint_add_func+0x2c5/0xf30 [ 197.685339][ T7498] should_failslab+0xc2/0x120 [ 197.685365][ T7498] __kmalloc_noprof+0xe0/0x850 [ 197.685407][ T7498] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 197.685432][ T7498] tracepoint_add_func+0x2c5/0xf30 [ 197.685456][ T7498] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 197.685480][ T7498] ? __pfx___mutex_lock+0x10/0x10 [ 197.685517][ T7498] ? rcu_is_watching+0x12/0xc0 [ 197.685558][ T7498] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 197.685583][ T7498] tracepoint_probe_register+0xc4/0x110 [ 197.685610][ T7498] ? __pfx_tracepoint_probe_register+0x10/0x10 [ 197.685636][ T7498] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 197.685665][ T7498] ? __lock_acquire+0x4a5/0x2630 [ 197.685705][ T7498] tracing_start_sched_switch+0xaf/0x170 [ 197.685747][ T7498] __ftrace_event_enable_disable+0x557/0x6f0 [ 197.685778][ T7498] __ftrace_set_clr_event_nolock+0x390/0xc30 [ 197.685817][ T7498] ftrace_set_clr_event+0x16e/0x330 [ 197.685851][ T7498] ? __pfx_ftrace_set_clr_event+0x10/0x10 [ 197.685883][ T7498] ? trace_get_user+0x3ae/0xa70 [ 197.685916][ T7498] ftrace_event_write+0x259/0x2c0 [ 197.685950][ T7498] ? __pfx_ftrace_event_write+0x10/0x10 [ 197.685994][ T7498] vfs_write+0x2aa/0x1070 [ 197.686051][ T7498] ? __pfx_ftrace_event_write+0x10/0x10 [ 197.686087][ T7498] ? __pfx_vfs_write+0x10/0x10 [ 197.686110][ T7498] ? __fget_files+0x215/0x3d0 [ 197.686139][ T7498] ? __fget_files+0x21f/0x3d0 [ 197.686171][ T7498] ksys_write+0x12a/0x250 [ 197.686194][ T7498] ? __pfx_ksys_write+0x10/0x10 [ 197.686225][ T7498] do_syscall_64+0x106/0xf80 [ 197.686260][ T7498] ? clear_bhb_loop+0x40/0x90 [ 197.686291][ T7498] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 197.686316][ T7498] RIP: 0033:0x7fbd2059c799 [ 197.686335][ T7498] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 197.686359][ T7498] RSP: 002b:00007fbd2140f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 197.686382][ T7498] RAX: ffffffffffffffda RBX: 00007fbd20815fa0 RCX: 00007fbd2059c799 [ 197.686398][ T7498] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 0000000000000005 [ 197.686412][ T7498] RBP: 00007fbd20632c99 R08: 0000000000000000 R09: 0000000000000000 [ 197.686427][ T7498] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 197.686441][ T7498] R13: 00007fbd20816038 R14: 00007fbd20815fa0 R15: 00007ffd1f2df538 [ 197.686473][ T7498] [ 197.686512][ T7498] wakeup trace: Couldn't activate tracepoint probe to kernel_sched_wakeup [ 200.723122][ T7562] FAULT_INJECTION: forcing a failure. [ 200.723122][ T7562] name failslab, interval 1, probability 0, space 0, times 0 [ 200.789615][ T7562] CPU: 0 UID: 0 PID: 7562 Comm: syz.1.578 Tainted: G L syzkaller #0 PREEMPT(full) [ 200.789655][ T7562] Tainted: [L]=SOFTLOCKUP [ 200.789664][ T7562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 200.789678][ T7562] Call Trace: [ 200.789686][ T7562] [ 200.789695][ T7562] dump_stack_lvl+0x100/0x190 [ 200.789739][ T7562] should_fail_ex.cold+0x5/0xa [ 200.789774][ T7562] should_failslab+0xc2/0x120 [ 200.789800][ T7562] __kmalloc_cache_noprof+0x7a/0x6f0 [ 200.789834][ T7562] ? snd_virmidi_input_open+0xc8/0x4d0 [ 200.789859][ T7562] ? __kasan_kmalloc+0xaa/0xb0 [ 200.789903][ T7562] snd_virmidi_input_open+0xc8/0x4d0 [ 200.789934][ T7562] open_substream+0x480/0x9e0 [ 200.789968][ T7562] rawmidi_open_priv+0x524/0x6f0 [ 200.790006][ T7562] snd_rawmidi_open+0x4c9/0xba0 [ 200.790044][ T7562] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 200.790080][ T7562] ? __pfx_default_wake_function+0x10/0x10 [ 200.790106][ T7562] ? soundcore_open+0x231/0x5a0 [ 200.790129][ T7562] ? soundcore_open+0x231/0x5a0 [ 200.790154][ T7562] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 200.790190][ T7562] soundcore_open+0x2e3/0x5a0 [ 200.790216][ T7562] ? __pfx_soundcore_open+0x10/0x10 [ 200.790239][ T7562] chrdev_open+0x234/0x6a0 [ 200.790266][ T7562] ? __pfx_chrdev_open+0x10/0x10 [ 200.790293][ T7562] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 200.790326][ T7562] do_dentry_open+0x6d8/0x1660 [ 200.790350][ T7562] ? __pfx_chrdev_open+0x10/0x10 [ 200.790382][ T7562] vfs_open+0x82/0x3f0 [ 200.790416][ T7562] path_openat+0x208c/0x31a0 [ 200.790452][ T7562] ? __pfx_path_openat+0x10/0x10 [ 200.790488][ T7562] do_file_open+0x20e/0x430 [ 200.790516][ T7562] ? __pfx_do_file_open+0x10/0x10 [ 200.790581][ T7562] ? alloc_fd+0x476/0x790 [ 200.790646][ T7562] ? do_getname+0x191/0x390 [ 200.790684][ T7562] do_sys_openat2+0x10d/0x1e0 [ 200.790727][ T7562] ? __pfx_do_sys_openat2+0x10/0x10 [ 200.790767][ T7562] ? __fget_files+0x21f/0x3d0 [ 200.790796][ T7562] __x64_sys_openat+0x12d/0x210 [ 200.790831][ T7562] ? __pfx___x64_sys_openat+0x10/0x10 [ 200.790888][ T7562] do_syscall_64+0x106/0xf80 [ 200.790923][ T7562] ? clear_bhb_loop+0x40/0x90 [ 200.790954][ T7562] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 200.790990][ T7562] RIP: 0033:0x7fbd2059c799 [ 200.791013][ T7562] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 200.791044][ T7562] RSP: 002b:00007fbd2140f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 200.791067][ T7562] RAX: ffffffffffffffda RBX: 00007fbd20815fa0 RCX: 00007fbd2059c799 [ 200.791083][ T7562] RDX: 0000000000000800 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 200.791098][ T7562] RBP: 00007fbd20632c99 R08: 0000000000000000 R09: 0000000000000000 [ 200.791113][ T7562] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 200.791128][ T7562] R13: 00007fbd20816038 R14: 00007fbd20815fa0 R15: 00007ffd1f2df538 [ 200.791159][ T7562] [ 201.396286][ T7575] netlink: 28 bytes leftover after parsing attributes in process `syz.3.582'. [ 201.749722][ T7583] netlink: 'syz.1.586': attribute type 22 has an invalid length. [ 201.768168][ T7583] netlink: 330 bytes leftover after parsing attributes in process `syz.1.586'. [ 202.714411][ T7601] netlink: 334 bytes leftover after parsing attributes in process `syz.1.592'. [ 204.651939][ T7639] FAULT_INJECTION: forcing a failure. [ 204.651939][ T7639] name failslab, interval 1, probability 0, space 0, times 0 [ 204.666648][ T7642] netlink: 'syz.2.608': attribute type 4 has an invalid length. [ 204.685348][ T7638] [U] [ 204.710017][ T7642] netlink: 314 bytes leftover after parsing attributes in process `syz.2.608'. [ 204.737663][ T7639] CPU: 0 UID: 0 PID: 7639 Comm: syz.1.607 Tainted: G L syzkaller #0 PREEMPT(full) [ 204.737703][ T7639] Tainted: [L]=SOFTLOCKUP [ 204.737711][ T7639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 204.737726][ T7639] Call Trace: [ 204.737733][ T7639] [ 204.737742][ T7639] dump_stack_lvl+0x100/0x190 [ 204.737784][ T7639] should_fail_ex.cold+0x5/0xa [ 204.737814][ T7639] should_failslab+0xc2/0x120 [ 204.737840][ T7639] __kmalloc_cache_noprof+0x7a/0x6f0 [ 204.737873][ T7639] ? wakeup_source_device_create+0x46/0x2e0 [ 204.737909][ T7639] wakeup_source_device_create+0x46/0x2e0 [ 204.737940][ T7639] wakeup_source_sysfs_add+0x1c/0x90 [ 204.737969][ T7639] wakeup_source_register+0x154/0x3e0 [ 204.738011][ T7639] ep_create_wakeup_source+0x1df/0x2e0 [ 204.738055][ T7639] ? __pfx_ep_create_wakeup_source+0x10/0x10 [ 204.738101][ T7639] ? do_epoll_ctl+0x1012/0x36a0 [ 204.738126][ T7639] ? do_epoll_ctl+0x1012/0x36a0 [ 204.738161][ T7639] do_epoll_ctl+0x1eee/0x36a0 [ 204.738199][ T7639] ? __pfx_do_epoll_ctl+0x10/0x10 [ 204.738223][ T7639] ? find_held_lock+0x2b/0x80 [ 204.738246][ T7639] ? __might_fault+0xc5/0x140 [ 204.738283][ T7639] ? __might_fault+0xc5/0x140 [ 204.738329][ T7639] ? __x64_sys_epoll_ctl+0x15c/0x1e0 [ 204.738354][ T7639] __x64_sys_epoll_ctl+0x15c/0x1e0 [ 204.738381][ T7639] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 204.738417][ T7639] do_syscall_64+0x106/0xf80 [ 204.738457][ T7639] ? clear_bhb_loop+0x40/0x90 [ 204.738488][ T7639] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 204.738514][ T7639] RIP: 0033:0x7fbd2059c799 [ 204.738535][ T7639] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 204.738558][ T7639] RSP: 002b:00007fbd2140f028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 204.738581][ T7639] RAX: ffffffffffffffda RBX: 00007fbd20815fa0 RCX: 00007fbd2059c799 [ 204.738597][ T7639] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004 [ 204.738611][ T7639] RBP: 00007fbd20632c99 R08: 0000000000000000 R09: 0000000000000000 [ 204.738626][ T7639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 204.738647][ T7639] R13: 00007fbd20816038 R14: 00007fbd20815fa0 R15: 00007ffd1f2df538 [ 204.738679][ T7639] [ 205.865501][ T7662] netlink: 342 bytes leftover after parsing attributes in process `syz.1.615'. [ 206.076820][ T7666] netlink: 326 bytes leftover after parsing attributes in process `syz.1.617'. [ 206.915024][ T7684] netlink: 350 bytes leftover after parsing attributes in process `syz.0.624'. [ 208.292778][ T7710] FAULT_INJECTION: forcing a failure. [ 208.292778][ T7710] name failslab, interval 1, probability 0, space 0, times 0 [ 208.356517][ T7710] CPU: 0 UID: 0 PID: 7710 Comm: syz.1.633 Tainted: G L syzkaller #0 PREEMPT(full) [ 208.356557][ T7710] Tainted: [L]=SOFTLOCKUP [ 208.356565][ T7710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 208.356580][ T7710] Call Trace: [ 208.356588][ T7710] [ 208.356598][ T7710] dump_stack_lvl+0x100/0x190 [ 208.356640][ T7710] should_fail_ex.cold+0x5/0xa [ 208.356668][ T7710] should_failslab+0xc2/0x120 [ 208.356694][ T7710] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 208.356737][ T7710] ? kstrdup_const+0x63/0x80 [ 208.356759][ T7710] ? find_held_lock+0x2b/0x80 [ 208.356787][ T7710] kstrdup+0x51/0xe0 [ 208.356828][ T7710] kstrdup_const+0x63/0x80 [ 208.356849][ T7710] __kernfs_new_node+0x9b/0x960 [ 208.356890][ T7710] ? __pfx___kernfs_new_node+0x10/0x10 [ 208.356933][ T7710] ? find_held_lock+0x2b/0x80 [ 208.356955][ T7710] ? kernfs_root+0xee/0x2a0 [ 208.356989][ T7710] ? kernfs_root+0xee/0x2a0 [ 208.357030][ T7710] kernfs_new_node+0x11b/0x1a0 [ 208.357075][ T7710] kernfs_create_link+0xcc/0x240 [ 208.357107][ T7710] sysfs_do_create_link_sd+0x90/0x140 [ 208.357153][ T7710] sysfs_create_link+0x61/0xc0 [ 208.357189][ T7710] device_add+0xb5d/0x1950 [ 208.357221][ T7710] ? __pfx_device_add+0x10/0x10 [ 208.357261][ T7710] __add_disk+0x518/0xe40 [ 208.357304][ T7710] ? find_held_lock+0x2b/0x80 [ 208.357329][ T7710] add_disk_fwnode+0x3d4/0x5c0 [ 208.357357][ T7710] zram_add+0x4d2/0x610 [ 208.357390][ T7710] ? __pfx_zram_add+0x10/0x10 [ 208.357444][ T7710] ? find_held_lock+0x2b/0x80 [ 208.357466][ T7710] ? sysfs_file_kobj+0xe4/0x290 [ 208.357500][ T7710] ? __pfx_hot_add_show+0x10/0x10 [ 208.357534][ T7710] hot_add_show+0x21/0x80 [ 208.357566][ T7710] class_attr_show+0x72/0xa0 [ 208.357595][ T7710] ? __pfx_class_attr_show+0x10/0x10 [ 208.357622][ T7710] sysfs_kf_seq_show+0x217/0x3a0 [ 208.357659][ T7710] seq_read_iter+0x32f/0x1270 [ 208.357711][ T7710] kernfs_fop_read_iter+0x46c/0x610 [ 208.357739][ T7710] ? rw_verify_area+0xce/0x6d0 [ 208.357775][ T7710] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 208.357805][ T7710] vfs_read+0x825/0xb30 [ 208.357849][ T7710] ? __pfx_vfs_read+0x10/0x10 [ 208.357908][ T7710] ksys_read+0x12a/0x250 [ 208.357930][ T7710] ? __pfx_ksys_read+0x10/0x10 [ 208.357961][ T7710] do_syscall_64+0x106/0xf80 [ 208.357997][ T7710] ? clear_bhb_loop+0x40/0x90 [ 208.358027][ T7710] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 208.358053][ T7710] RIP: 0033:0x7fbd2059c799 [ 208.358073][ T7710] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 208.358097][ T7710] RSP: 002b:00007fbd2140f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 208.358125][ T7710] RAX: ffffffffffffffda RBX: 00007fbd20815fa0 RCX: 00007fbd2059c799 [ 208.358141][ T7710] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000005 [ 208.358156][ T7710] RBP: 00007fbd20632c99 R08: 0000000000000000 R09: 0000000000000000 [ 208.358171][ T7710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 208.358185][ T7710] R13: 00007fbd20816038 R14: 00007fbd20815fa0 R15: 00007ffd1f2df538 [ 208.358217][ T7710] [ 210.555648][ T7745] netlink: 4 bytes leftover after parsing attributes in process `syz.1.648'. [ 210.618135][ T7745] netlink: 25 bytes leftover after parsing attributes in process `syz.1.648'. [ 211.318697][ T7766] netlink: 342 bytes leftover after parsing attributes in process `syz.0.655'. [ 211.682436][ T7770] phram: not enough arguments [ 211.719451][ T7772] FAULT_INJECTION: forcing a failure. [ 211.719451][ T7772] name failslab, interval 1, probability 0, space 0, times 0 [ 211.771836][ T7772] CPU: 0 UID: 0 PID: 7772 Comm: syz.2.659 Tainted: G L syzkaller #0 PREEMPT(full) [ 211.771875][ T7772] Tainted: [L]=SOFTLOCKUP [ 211.771884][ T7772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 211.771899][ T7772] Call Trace: [ 211.771907][ T7772] [ 211.771916][ T7772] dump_stack_lvl+0x100/0x190 [ 211.771958][ T7772] should_fail_ex.cold+0x5/0xa [ 211.771986][ T7772] should_failslab+0xc2/0x120 [ 211.772012][ T7772] __kmalloc_cache_noprof+0x7a/0x6f0 [ 211.772045][ T7772] ? __kthread_create_on_node+0xce/0x3f0 [ 211.772074][ T7772] ? lockdep_init_map_type+0x5c/0x250 [ 211.772118][ T7772] ? __pfx_tomoyo_gc_thread+0x10/0x10 [ 211.772146][ T7772] __kthread_create_on_node+0xce/0x3f0 [ 211.772177][ T7772] ? __pfx___kthread_create_on_node+0x10/0x10 [ 211.772221][ T7772] ? __pfx_tomoyo_gc_thread+0x10/0x10 [ 211.772249][ T7772] kthread_create_on_node+0xc7/0x100 [ 211.772279][ T7772] ? __pfx_kthread_create_on_node+0x10/0x10 [ 211.772310][ T7772] ? lockdep_hardirqs_on+0x78/0x100 [ 211.772347][ T7772] ? find_held_lock+0x2b/0x80 [ 211.772368][ T7772] ? tomoyo_notify_gc+0xc6/0x480 [ 211.772403][ T7772] tomoyo_notify_gc+0x102/0x480 [ 211.772429][ T7772] ? ima_iint_find+0xe9/0x130 [ 211.772467][ T7772] ? __pfx_tomoyo_release+0x10/0x10 [ 211.772500][ T7772] tomoyo_release+0x31/0x40 [ 211.772532][ T7772] __fput+0x3ff/0xb40 [ 211.772568][ T7772] task_work_run+0x150/0x240 [ 211.772605][ T7772] ? __pfx_task_work_run+0x10/0x10 [ 211.772649][ T7772] exit_to_user_mode_loop+0x100/0x4a0 [ 211.772685][ T7772] do_syscall_64+0x668/0xf80 [ 211.772720][ T7772] ? clear_bhb_loop+0x40/0x90 [ 211.772750][ T7772] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 211.772775][ T7772] RIP: 0033:0x7fdcefd9c799 [ 211.772794][ T7772] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 211.772817][ T7772] RSP: 002b:00007fdcf0c22028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 211.772840][ T7772] RAX: 0000000000000000 RBX: 00007fdcf0015fa0 RCX: 00007fdcefd9c799 [ 211.772856][ T7772] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 211.772873][ T7772] RBP: 00007fdcefe32c99 R08: 0000000000000000 R09: 0000000000000000 [ 211.772888][ T7772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 211.772902][ T7772] R13: 00007fdcf0016038 R14: 00007fdcf0015fa0 R15: 00007ffc67022cd8 [ 211.772933][ T7772] [ 212.757551][ T5839] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 212.757585][ T5839] Bluetooth: hci0: unexpected subevent 0x0e length: 725 > 15 [ 212.773789][ T5839] Bluetooth: hci0: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 214.723046][ T7815] FAULT_INJECTION: forcing a failure. [ 214.723046][ T7815] name failslab, interval 1, probability 0, space 0, times 0 [ 214.771606][ T7815] CPU: 0 UID: 0 PID: 7815 Comm: syz.1.674 Tainted: G L syzkaller #0 PREEMPT(full) [ 214.771656][ T7815] Tainted: [L]=SOFTLOCKUP [ 214.771665][ T7815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 214.771680][ T7815] Call Trace: [ 214.771687][ T7815] [ 214.771697][ T7815] dump_stack_lvl+0x100/0x190 [ 214.771739][ T7815] should_fail_ex.cold+0x5/0xa [ 214.771767][ T7815] ? snd_pcm_plugin_build+0x434/0x650 [ 214.771798][ T7815] should_failslab+0xc2/0x120 [ 214.771823][ T7815] __kmalloc_noprof+0xe0/0x850 [ 214.771867][ T7815] snd_pcm_plugin_build+0x434/0x650 [ 214.771903][ T7815] snd_pcm_plugin_build_mulaw+0x280/0x760 [ 214.771939][ T7815] ? __pfx_mulaw_decode+0x10/0x10 [ 214.771972][ T7815] ? __pfx_snd_pcm_plugin_build_mulaw+0x10/0x10 [ 214.772011][ T7815] ? snd_pcm_hw_params+0x262/0x1cb0 [ 214.772049][ T7815] snd_pcm_plug_format_plugins+0xbdd/0x1430 [ 214.772086][ T7815] ? __pfx_snd_pcm_plug_format_plugins+0x10/0x10 [ 214.772124][ T7815] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 214.772163][ T7815] snd_pcm_oss_change_params_locked+0x2e3c/0x39f0 [ 214.772206][ T7815] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 214.772235][ T7815] ? task_work_add+0x201/0x3b0 [ 214.772273][ T7815] ? __pfx___mutex_lock+0x10/0x10 [ 214.772327][ T7815] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 214.772358][ T7815] snd_pcm_oss_sync+0x265/0x840 [ 214.772392][ T7815] snd_pcm_oss_release+0x238/0x300 [ 214.772421][ T7815] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 214.772451][ T7815] __fput+0x3ff/0xb40 [ 214.772487][ T7815] task_work_run+0x150/0x240 [ 214.772524][ T7815] ? __pfx_task_work_run+0x10/0x10 [ 214.772568][ T7815] exit_to_user_mode_loop+0x100/0x4a0 [ 214.772604][ T7815] do_syscall_64+0x668/0xf80 [ 214.772639][ T7815] ? clear_bhb_loop+0x40/0x90 [ 214.772675][ T7815] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 214.772701][ T7815] RIP: 0033:0x7fbd2059c799 [ 214.772721][ T7815] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 214.772744][ T7815] RSP: 002b:00007fbd2140f028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 214.772768][ T7815] RAX: 0000000000000000 RBX: 00007fbd20815fa0 RCX: 00007fbd2059c799 [ 214.772783][ T7815] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 214.772797][ T7815] RBP: 00007fbd20632c99 R08: 0000000000000000 R09: 0000000000000000 [ 214.772812][ T7815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 214.772826][ T7815] R13: 00007fbd20816038 R14: 00007fbd20815fa0 R15: 00007ffd1f2df538 [ 214.772857][ T7815] [ 215.774798][ T7828] mmap: syz.0.678 (7828) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 217.483554][ T5830] Bluetooth: hci0: command 0x0406 tx timeout [ 218.428076][ T7891] netlink: 186 bytes leftover after parsing attributes in process `syz.1.698'. [ 220.115675][ T7932] random: crng reseeded on system resumption [ 220.471867][ T7943] GUP no longer grows the stack in syz.2.713 (7943): 14000-41000 (4000) [ 220.525071][ T7943] CPU: 0 UID: 0 PID: 7943 Comm: syz.2.713 Tainted: G L syzkaller #0 PREEMPT(full) [ 220.525111][ T7943] Tainted: [L]=SOFTLOCKUP [ 220.525120][ T7943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 220.525139][ T7943] Call Trace: [ 220.525148][ T7943] [ 220.525157][ T7943] dump_stack_lvl+0x100/0x190 [ 220.525200][ T7943] gup_vma_lookup.cold+0x83/0x96 [ 220.525237][ T7943] __get_user_pages+0x241/0x34d0 [ 220.525273][ T7943] ? down_read_killable+0x30e/0x4c0 [ 220.525297][ T7943] ? __lock_acquire+0x4a5/0x2630 [ 220.525329][ T7943] ? __pfx___get_user_pages+0x10/0x10 [ 220.525366][ T7943] __gup_longterm_locked+0x87d/0x16f0 [ 220.525404][ T7943] ? __pfx___gup_longterm_locked+0x10/0x10 [ 220.525436][ T7943] ? try_get_folio+0x262/0x750 [ 220.525460][ T7943] ? find_held_lock+0x2b/0x80 [ 220.525483][ T7943] ? sanity_check_pinned_pages+0x5f6/0x1250 [ 220.525516][ T7943] gup_fast_fallback+0x18c6/0x2460 [ 220.525565][ T7943] ? __pfx_gup_fast_fallback+0x10/0x10 [ 220.525595][ T7943] ? __lock_acquire+0x4a5/0x2630 [ 220.525626][ T7943] ? bio_associate_blkg_from_css+0xe33/0x13f0 [ 220.525660][ T7943] ? bio_associate_blkg+0x10c/0x2a0 [ 220.525693][ T7943] ? pcpu_block_update+0x20b/0x690 [ 220.525729][ T7943] pin_user_pages_fast+0xa7/0xf0 [ 220.525758][ T7943] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 220.525789][ T7943] ? find_held_lock+0x2b/0x80 [ 220.525811][ T7943] ? __debug_object_init+0x2de/0x3d0 [ 220.525852][ T7943] ? __debug_object_init+0x2de/0x3d0 [ 220.525894][ T7943] iov_iter_extract_pages+0xa0d/0x1ef0 [ 220.525933][ T7943] ? __lock_acquire+0x4a5/0x2630 [ 220.525964][ T7943] ? __pfx_iov_iter_extract_pages+0x10/0x10 [ 220.525999][ T7943] ? __lock_acquire+0x4a5/0x2630 [ 220.526036][ T7943] iov_iter_extract_bvecs+0x10e/0xf40 [ 220.526072][ T7943] ? find_held_lock+0x2b/0x80 [ 220.526099][ T7943] ? bio_associate_blkg_from_css+0x394/0x13f0 [ 220.526140][ T7943] ? __pfx_iov_iter_extract_bvecs+0x10/0x10 [ 220.526172][ T7943] ? bio_associate_blkg_from_css+0x550/0x13f0 [ 220.526213][ T7943] bio_iov_iter_get_pages+0x26a/0x970 [ 220.526251][ T7943] __blkdev_direct_IO_simple+0x3a7/0x890 [ 220.526302][ T7943] ? __pfx___blkdev_direct_IO_simple+0x10/0x10 [ 220.526364][ T7943] ? ktime_get_coarse_real_ts64_mg+0x249/0x300 [ 220.526396][ T7943] ? ktime_get_coarse_real_ts64_mg+0x1e0/0x300 [ 220.526435][ T7943] blkdev_direct_IO+0xc76/0x1fb0 [ 220.526484][ T7943] ? __pfx_blkdev_direct_IO+0x10/0x10 [ 220.526520][ T7943] ? rcu_is_watching+0x12/0xc0 [ 220.526558][ T7943] ? __mark_inode_dirty+0x55c/0x1790 [ 220.526594][ T7943] ? filemap_check_errors+0xa9/0x150 [ 220.526630][ T7943] blkdev_write_iter+0x703/0xd70 [ 220.526672][ T7943] vfs_write+0x6ac/0x1070 [ 220.526695][ T7943] ? __pfx_blkdev_write_iter+0x10/0x10 [ 220.526735][ T7943] ? __pfx_vfs_write+0x10/0x10 [ 220.526755][ T7943] ? find_held_lock+0x2b/0x80 [ 220.526796][ T7943] ksys_write+0x12a/0x250 [ 220.526818][ T7943] ? __pfx_ksys_write+0x10/0x10 [ 220.526849][ T7943] do_syscall_64+0x106/0xf80 [ 220.526884][ T7943] ? clear_bhb_loop+0x40/0x90 [ 220.526921][ T7943] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.526946][ T7943] RIP: 0033:0x7fdcefd9c799 [ 220.526971][ T7943] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 220.526995][ T7943] RSP: 002b:00007fdcf0c22028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 220.527018][ T7943] RAX: ffffffffffffffda RBX: 00007fdcf0015fa0 RCX: 00007fdcefd9c799 [ 220.527035][ T7943] RDX: 000000000010007c RSI: 0000000000000000 RDI: 0000000000000003 [ 220.527049][ T7943] RBP: 00007fdcefe32c99 R08: 0000000000000000 R09: 0000000000000000 [ 220.527064][ T7943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 220.527078][ T7943] R13: 00007fdcf0016038 R14: 00007fdcf0015fa0 R15: 00007ffc67022cd8 [ 220.527110][ T7943] [ 221.305677][ T7953] netlink: 354 bytes leftover after parsing attributes in process `syz.3.721'. [ 222.371285][ T51] Bluetooth: hci1: command 0x0406 tx timeout [ 222.381190][ T5835] Bluetooth: hci3: command 0x0406 tx timeout [ 222.387412][ T5835] Bluetooth: hci2: command 0x0406 tx timeout [ 222.743596][ T7984] netlink: 326 bytes leftover after parsing attributes in process `syz.2.730'. [ 223.607622][ T8004] FAULT_INJECTION: forcing a failure. [ 223.607622][ T8004] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 223.699105][ T8004] CPU: 0 UID: 0 PID: 8004 Comm: syz.2.735 Tainted: G L syzkaller #0 PREEMPT(full) [ 223.699145][ T8004] Tainted: [L]=SOFTLOCKUP [ 223.699154][ T8004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 223.699169][ T8004] Call Trace: [ 223.699176][ T8004] [ 223.699185][ T8004] dump_stack_lvl+0x100/0x190 [ 223.699227][ T8004] should_fail_ex.cold+0x5/0xa [ 223.699251][ T8004] ? prepare_alloc_pages+0x16d/0x5f0 [ 223.699282][ T8004] should_fail_alloc_page+0xeb/0x140 [ 223.699311][ T8004] prepare_alloc_pages+0x1f0/0x5f0 [ 223.699339][ T8004] ? unwind_get_return_address+0x59/0xa0 [ 223.699368][ T8004] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 223.699416][ T8004] ? stack_trace_save+0x8e/0xc0 [ 223.699440][ T8004] ? __pfx_stack_trace_save+0x10/0x10 [ 223.699464][ T8004] ? stack_depot_save_flags+0x27/0x9d0 [ 223.699496][ T8004] ? find_held_lock+0x2b/0x80 [ 223.699519][ T8004] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 223.699560][ T8004] ? kasan_save_stack+0x3f/0x50 [ 223.699599][ T8004] ? kasan_save_track+0x14/0x30 [ 223.699637][ T8004] ? __kasan_slab_alloc+0x89/0x90 [ 223.699659][ T8004] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 223.699696][ T8004] ? security_inode_alloc+0x3b/0x2c0 [ 223.699719][ T8004] ? inode_init_always_gfp+0xced/0x1040 [ 223.699743][ T8004] ? alloc_inode+0x8e/0x250 [ 223.699773][ T8004] ? sock_alloc+0x44/0x280 [ 223.699810][ T8004] ? __sock_create+0xc2/0x860 [ 223.699833][ T8004] ? __sys_socket+0x14d/0x260 [ 223.699870][ T8004] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 223.699914][ T8004] ? policy_nodemask+0xed/0x4f0 [ 223.699942][ T8004] alloc_pages_mpol+0x1fb/0x550 [ 223.699969][ T8004] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 223.700002][ T8004] ? sk_prot_alloc+0x10b/0x2a0 [ 223.700023][ T8004] ___kmalloc_large_node+0x104/0x150 [ 223.700055][ T8004] __kmalloc_large_node_noprof+0x1c/0x70 [ 223.700088][ T8004] __kmalloc_noprof+0x5be/0x850 [ 223.700137][ T8004] sk_prot_alloc+0x10b/0x2a0 [ 223.700163][ T8004] sk_alloc+0x36/0xe80 [ 223.700197][ T8004] can_create+0x1e5/0x630 [ 223.700233][ T8004] __sock_create+0x339/0x860 [ 223.700264][ T8004] __sys_socket+0x14d/0x260 [ 223.700292][ T8004] ? __pfx___sys_socket+0x10/0x10 [ 223.700328][ T8004] __x64_sys_socket+0x72/0xb0 [ 223.700355][ T8004] ? lockdep_hardirqs_on+0x78/0x100 [ 223.700390][ T8004] do_syscall_64+0x106/0xf80 [ 223.700425][ T8004] ? clear_bhb_loop+0x40/0x90 [ 223.700455][ T8004] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 223.700480][ T8004] RIP: 0033:0x7fdcefd9c799 [ 223.700501][ T8004] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 223.700524][ T8004] RSP: 002b:00007fdcf0c22028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 223.700547][ T8004] RAX: ffffffffffffffda RBX: 00007fdcf0015fa0 RCX: 00007fdcefd9c799 [ 223.700563][ T8004] RDX: 0000000000000006 RSI: 0000000000000002 RDI: 000000000000001d [ 223.700578][ T8004] RBP: 00007fdcefe32c99 R08: 0000000000000000 R09: 0000000000000000 [ 223.700592][ T8004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 223.700607][ T8004] R13: 00007fdcf0016038 R14: 00007fdcf0015fa0 R15: 00007ffc67022cd8 [ 223.700638][ T8004] [ 228.055646][ T8066] zswap: compressor û not available [ 230.054584][ T8111] netlink: 354 bytes leftover after parsing attributes in process `syz.1.761'. [ 233.164910][ T8168] netlink: 12 bytes leftover after parsing attributes in process `syz.1.778'. [ 233.218489][ T8170] netlink: 146 bytes leftover after parsing attributes in process `syz.3.780'. [ 234.049377][ T8178] FAULT_INJECTION: forcing a failure. [ 234.049377][ T8178] name failslab, interval 1, probability 0, space 0, times 0 [ 234.088762][ T8178] CPU: 0 UID: 0 PID: 8178 Comm: syz.2.782 Tainted: G L syzkaller #0 PREEMPT(full) [ 234.088801][ T8178] Tainted: [L]=SOFTLOCKUP [ 234.088818][ T8178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 234.088833][ T8178] Call Trace: [ 234.088842][ T8178] [ 234.088852][ T8178] dump_stack_lvl+0x100/0x190 [ 234.088902][ T8178] should_fail_ex.cold+0x5/0xa [ 234.088931][ T8178] should_failslab+0xc2/0x120 [ 234.088957][ T8178] __kmalloc_cache_noprof+0x7a/0x6f0 [ 234.089001][ T8178] ? snd_pcm_oss_change_params_locked+0x247/0x39f0 [ 234.089040][ T8178] snd_pcm_oss_change_params_locked+0x247/0x39f0 [ 234.089070][ T8178] ? trace_contention_end+0x61/0x180 [ 234.089106][ T8178] ? __mutex_lock+0x26a/0x1b90 [ 234.089146][ T8178] ? snd_pcm_oss_make_ready+0xcb/0x1b0 [ 234.089179][ T8178] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 234.089209][ T8178] ? __pfx___mutex_lock+0x10/0x10 [ 234.089250][ T8178] ? __lock_acquire+0x4a5/0x2630 [ 234.089301][ T8178] snd_pcm_oss_make_ready+0xeb/0x1b0 [ 234.089332][ T8178] snd_pcm_oss_set_trigger.isra.0+0x331/0x6c0 [ 234.089362][ T8178] ? lockdep_hardirqs_on+0x78/0x100 [ 234.089402][ T8178] snd_pcm_oss_poll+0x474/0xb80 [ 234.089436][ T8178] ? __pfx___pollwait+0x10/0x10 [ 234.089478][ T8178] ? __pfx_snd_pcm_oss_poll+0x10/0x10 [ 234.089505][ T8178] ? __fget_files+0x21f/0x3d0 [ 234.089534][ T8178] ? __pfx_snd_pcm_oss_poll+0x10/0x10 [ 234.089564][ T8178] do_select+0xd54/0x1850 [ 234.089625][ T8178] ? __pfx_do_select+0x10/0x10 [ 234.089667][ T8178] ? __pfx___pollwait+0x10/0x10 [ 234.089709][ T8178] ? __pfx_pollwake+0x10/0x10 [ 234.089750][ T8178] ? __pfx_pollwake+0x10/0x10 [ 234.089790][ T8178] ? __pfx_pollwake+0x10/0x10 [ 234.089831][ T8178] ? __pfx_pollwake+0x10/0x10 [ 234.089873][ T8178] ? __pfx_pollwake+0x10/0x10 [ 234.089935][ T8178] ? find_held_lock+0x2b/0x80 [ 234.089957][ T8178] ? __might_fault+0xc5/0x140 [ 234.089998][ T8178] ? __might_fault+0xc5/0x140 [ 234.090044][ T8178] ? core_sys_select+0x55b/0xbb0 [ 234.090083][ T8178] core_sys_select+0x55b/0xbb0 [ 234.090137][ T8178] ? __pfx_core_sys_select+0x10/0x10 [ 234.090212][ T8178] ? ktime_get_ts64+0x2d2/0x3f0 [ 234.090241][ T8178] ? read_tsc+0x9/0x20 [ 234.090267][ T8178] ? ktime_get_ts64+0x256/0x3f0 [ 234.090297][ T8178] kern_select+0x20c/0x270 [ 234.090340][ T8178] ? __pfx_kern_select+0x10/0x10 [ 234.090391][ T8178] __x64_sys_select+0xbd/0x160 [ 234.090413][ T8178] ? do_syscall_64+0x95/0xf80 [ 234.090447][ T8178] ? lockdep_hardirqs_on+0x78/0x100 [ 234.090482][ T8178] do_syscall_64+0x106/0xf80 [ 234.090516][ T8178] ? clear_bhb_loop+0x40/0x90 [ 234.090546][ T8178] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 234.090572][ T8178] RIP: 0033:0x7fdcefd9c799 [ 234.090592][ T8178] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 234.090616][ T8178] RSP: 002b:00007fdcf0c22028 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 234.090639][ T8178] RAX: ffffffffffffffda RBX: 00007fdcf0015fa0 RCX: 00007fdcefd9c799 [ 234.090655][ T8178] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000005 [ 234.090670][ T8178] RBP: 00007fdcefe32c99 R08: 00002000000001c0 R09: 0000000000000000 [ 234.090693][ T8178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 234.090708][ T8178] R13: 00007fdcf0016038 R14: 00007fdcf0015fa0 R15: 00007ffc67022cd8 [ 234.090739][ T8178] [ 234.527015][ T8165] kexec: Could not allocate control_code_buffer [ 235.931276][ T8202] sp0: Synchronizing with TNC [ 237.226215][ T8223] netlink: 342 bytes leftover after parsing attributes in process `syz.0.796'. [ 237.742901][ T8245] netlink: 16 bytes leftover after parsing attributes in process `syz.0.799'. [ 238.160880][ T8254] FAULT_INJECTION: forcing a failure. [ 238.160880][ T8254] name failslab, interval 1, probability 0, space 0, times 0 [ 238.229397][ T8254] CPU: 0 UID: 0 PID: 8254 Comm: syz.3.802 Tainted: G L syzkaller #0 PREEMPT(full) [ 238.229443][ T8254] Tainted: [L]=SOFTLOCKUP [ 238.229451][ T8254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 238.229466][ T8254] Call Trace: [ 238.229474][ T8254] [ 238.229483][ T8254] dump_stack_lvl+0x100/0x190 [ 238.229527][ T8254] should_fail_ex.cold+0x5/0xa [ 238.229555][ T8254] should_failslab+0xc2/0x120 [ 238.229581][ T8254] __kmalloc_cache_noprof+0x7a/0x6f0 [ 238.229615][ T8254] ? v9fs_get_tree+0x9c/0xb50 [ 238.229660][ T8254] v9fs_get_tree+0x9c/0xb50 [ 238.229697][ T8254] ? rcu_is_watching+0x12/0xc0 [ 238.229736][ T8254] ? __pfx_v9fs_get_tree+0x10/0x10 [ 238.229785][ T8254] ? bpf_lsm_capable+0x9/0x10 [ 238.229812][ T8254] ? security_capable+0x80/0x260 [ 238.229854][ T8254] vfs_get_tree+0x92/0x320 [ 238.229889][ T8254] vfs_cmd_create+0xd7/0x2a0 [ 238.229922][ T8254] __do_sys_fsconfig+0x55a/0xcb0 [ 238.229957][ T8254] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 238.230004][ T8254] do_syscall_64+0x106/0xf80 [ 238.230038][ T8254] ? clear_bhb_loop+0x40/0x90 [ 238.230069][ T8254] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.230094][ T8254] RIP: 0033:0x7fa63039c799 [ 238.230114][ T8254] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 238.230137][ T8254] RSP: 002b:00007fa63117f028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 238.230160][ T8254] RAX: ffffffffffffffda RBX: 00007fa630615fa0 RCX: 00007fa63039c799 [ 238.230176][ T8254] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003 [ 238.230191][ T8254] RBP: 00007fa630432c99 R08: 0000000000000000 R09: 0000000000000000 [ 238.230205][ T8254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 238.230220][ T8254] R13: 00007fa630616038 R14: 00007fa630615fa0 R15: 00007fff71333068 [ 238.230250][ T8254] [ 240.065014][ T8282] netlink: 12 bytes leftover after parsing attributes in process `syz.0.811'. [ 240.204474][ T8273] netlink: 342 bytes leftover after parsing attributes in process `syz.2.808'. [ 240.813266][ T8291] FAULT_INJECTION: forcing a failure. [ 240.813266][ T8291] name failslab, interval 1, probability 0, space 0, times 0 [ 240.882000][ T8291] CPU: 0 UID: 0 PID: 8291 Comm: syz.2.812 Tainted: G L syzkaller #0 PREEMPT(full) [ 240.882040][ T8291] Tainted: [L]=SOFTLOCKUP [ 240.882049][ T8291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 240.882064][ T8291] Call Trace: [ 240.882074][ T8291] [ 240.882084][ T8291] dump_stack_lvl+0x100/0x190 [ 240.882131][ T8291] should_fail_ex.cold+0x5/0xa [ 240.882159][ T8291] should_failslab+0xc2/0x120 [ 240.882185][ T8291] __kmalloc_cache_noprof+0x7a/0x6f0 [ 240.882218][ T8291] ? do_getname+0x238/0x390 [ 240.882250][ T8291] ? strncpy_from_user+0x19d/0x2d0 [ 240.882280][ T8291] do_getname+0x238/0x390 [ 240.882314][ T8291] do_sys_openat2+0xc5/0x1e0 [ 240.882347][ T8291] ? __pfx_do_sys_openat2+0x10/0x10 [ 240.882391][ T8291] __x64_sys_openat+0x12d/0x210 [ 240.882425][ T8291] ? __pfx___x64_sys_openat+0x10/0x10 [ 240.882470][ T8291] do_syscall_64+0x106/0xf80 [ 240.882505][ T8291] ? clear_bhb_loop+0x40/0x90 [ 240.882535][ T8291] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 240.882570][ T8291] RIP: 0033:0x7fdcefd9c799 [ 240.882590][ T8291] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 240.882613][ T8291] RSP: 002b:00007fdcf0c22028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 240.882637][ T8291] RAX: ffffffffffffffda RBX: 00007fdcf0015fa0 RCX: 00007fdcefd9c799 [ 240.882653][ T8291] RDX: 0000000000002304 RSI: 0000000000000000 RDI: ffffffffffffff9c [ 240.882667][ T8291] RBP: 00007fdcefe32c99 R08: 0000000000000000 R09: 0000000000000000 [ 240.882682][ T8291] R10: 0000000000001a00 R11: 0000000000000246 R12: 0000000000000000 [ 240.882696][ T8291] R13: 00007fdcf0016038 R14: 00007fdcf0015fa0 R15: 00007ffc67022cd8 [ 240.882727][ T8291] [ 242.151818][ T8278] kexec: Could not allocate control_code_buffer [ 242.724618][ T8303] FAULT_INJECTION: forcing a failure. [ 242.724618][ T8303] name failslab, interval 1, probability 0, space 0, times 0 [ 242.814097][ T8303] CPU: 0 UID: 0 PID: 8303 Comm: syz.0.822 Tainted: G L syzkaller #0 PREEMPT(full) [ 242.814137][ T8303] Tainted: [L]=SOFTLOCKUP [ 242.814146][ T8303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 242.814163][ T8303] Call Trace: [ 242.814172][ T8303] [ 242.814181][ T8303] dump_stack_lvl+0x100/0x190 [ 242.814223][ T8303] should_fail_ex.cold+0x5/0xa [ 242.814252][ T8303] should_failslab+0xc2/0x120 [ 242.814278][ T8303] __kmalloc_cache_noprof+0x7a/0x6f0 [ 242.814312][ T8303] ? kobject_create_and_add+0x46/0xc0 [ 242.814343][ T8303] kobject_create_and_add+0x46/0xc0 [ 242.814369][ T8303] __add_disk+0x6fe/0xe40 [ 242.814412][ T8303] ? find_held_lock+0x2b/0x80 [ 242.814439][ T8303] add_disk_fwnode+0x3d4/0x5c0 [ 242.814467][ T8303] zram_add+0x4d2/0x610 [ 242.814500][ T8303] ? __pfx_zram_add+0x10/0x10 [ 242.814552][ T8303] ? find_held_lock+0x2b/0x80 [ 242.814574][ T8303] ? sysfs_file_kobj+0xe4/0x290 [ 242.814615][ T8303] ? __pfx_hot_add_show+0x10/0x10 [ 242.814649][ T8303] hot_add_show+0x21/0x80 [ 242.814683][ T8303] class_attr_show+0x72/0xa0 [ 242.814712][ T8303] ? __pfx_class_attr_show+0x10/0x10 [ 242.814740][ T8303] sysfs_kf_seq_show+0x217/0x3a0 [ 242.814778][ T8303] seq_read_iter+0x32f/0x1270 [ 242.814829][ T8303] kernfs_fop_read_iter+0x46c/0x610 [ 242.814858][ T8303] ? rw_verify_area+0xce/0x6d0 [ 242.814894][ T8303] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 242.814924][ T8303] vfs_read+0x825/0xb30 [ 242.814967][ T8303] ? __pfx_vfs_read+0x10/0x10 [ 242.815026][ T8303] ksys_read+0x12a/0x250 [ 242.815048][ T8303] ? __pfx_ksys_read+0x10/0x10 [ 242.815079][ T8303] do_syscall_64+0x106/0xf80 [ 242.815118][ T8303] ? clear_bhb_loop+0x40/0x90 [ 242.815148][ T8303] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 242.815174][ T8303] RIP: 0033:0x7f463e59c799 [ 242.815194][ T8303] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 242.815217][ T8303] RSP: 002b:00007f463f3ec028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 242.815243][ T8303] RAX: ffffffffffffffda RBX: 00007f463e815fa0 RCX: 00007f463e59c799 [ 242.815260][ T8303] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000005 [ 242.815275][ T8303] RBP: 00007f463e632c99 R08: 0000000000000000 R09: 0000000000000000 [ 242.815290][ T8303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 242.815304][ T8303] R13: 00007f463e816038 R14: 00007f463e815fa0 R15: 00007fffb22e4a38 [ 242.815336][ T8303] [ 243.462417][ T8310] FAULT_INJECTION: forcing a failure. [ 243.462417][ T8310] name failslab, interval 1, probability 0, space 0, times 0 [ 243.533691][ T8310] CPU: 0 UID: 0 PID: 8310 Comm: syz.1.816 Tainted: G L syzkaller #0 PREEMPT(full) [ 243.533733][ T8310] Tainted: [L]=SOFTLOCKUP [ 243.533741][ T8310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 243.533755][ T8310] Call Trace: [ 243.533763][ T8310] [ 243.533787][ T8310] dump_stack_lvl+0x100/0x190 [ 243.533830][ T8310] should_fail_ex.cold+0x5/0xa [ 243.533858][ T8310] should_failslab+0xc2/0x120 [ 243.533886][ T8310] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 243.533926][ T8310] ? seq_open+0x55/0x170 [ 243.533967][ T8310] seq_open+0x55/0x170 [ 243.534001][ T8310] __seq_open_private+0x3e/0xd0 [ 243.534039][ T8310] tracing_open+0x2a8/0xef0 [ 243.534074][ T8310] do_dentry_open+0x6d8/0x1660 [ 243.534098][ T8310] ? __pfx_tracing_open+0x10/0x10 [ 243.534145][ T8310] vfs_open+0x82/0x3f0 [ 243.534181][ T8310] path_openat+0x208c/0x31a0 [ 243.534216][ T8310] ? __pfx_path_openat+0x10/0x10 [ 243.534258][ T8310] do_file_open+0x20e/0x430 [ 243.534286][ T8310] ? __pfx_do_file_open+0x10/0x10 [ 243.534333][ T8310] ? alloc_fd+0x476/0x790 [ 243.534359][ T8310] ? do_getname+0x191/0x390 [ 243.534394][ T8310] do_sys_openat2+0x10d/0x1e0 [ 243.534427][ T8310] ? __pfx_do_sys_openat2+0x10/0x10 [ 243.534471][ T8310] __x64_sys_openat+0x12d/0x210 [ 243.534512][ T8310] ? __pfx___x64_sys_openat+0x10/0x10 [ 243.534567][ T8310] do_syscall_64+0x106/0xf80 [ 243.534605][ T8310] ? clear_bhb_loop+0x40/0x90 [ 243.534636][ T8310] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 243.534662][ T8310] RIP: 0033:0x7fbd2059c799 [ 243.534682][ T8310] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 243.534705][ T8310] RSP: 002b:00007fbd2140f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 243.534737][ T8310] RAX: ffffffffffffffda RBX: 00007fbd20815fa0 RCX: 00007fbd2059c799 [ 243.534753][ T8310] RDX: 1a6b75d638929210 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 243.534769][ T8310] RBP: 00007fbd20632c99 R08: 0000000000000000 R09: 0000000000000000 [ 243.534784][ T8310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 243.534798][ T8310] R13: 00007fbd20816038 R14: 00007fbd20815fa0 R15: 00007ffd1f2df538 [ 243.534829][ T8310] [ 244.215993][ T8314] FAULT_INJECTION: forcing a failure. [ 244.215993][ T8314] name failslab, interval 1, probability 0, space 0, times 0 [ 244.304864][ T8314] CPU: 0 UID: 0 PID: 8314 Comm: syz.1.818 Tainted: G L syzkaller #0 PREEMPT(full) [ 244.304914][ T8314] Tainted: [L]=SOFTLOCKUP [ 244.304923][ T8314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 244.304953][ T8314] Call Trace: [ 244.304962][ T8314] [ 244.304974][ T8314] dump_stack_lvl+0x100/0x190 [ 244.305025][ T8314] should_fail_ex.cold+0x5/0xa [ 244.305056][ T8314] ? tomoyo_encode2+0xfb/0x3c0 [ 244.305090][ T8314] should_failslab+0xc2/0x120 [ 244.305288][ T8314] __kmalloc_noprof+0xe0/0x850 [ 244.305335][ T8314] tomoyo_encode2+0xfb/0x3c0 [ 244.305376][ T8314] tomoyo_encode+0x29/0x50 [ 244.305407][ T8314] tomoyo_path_perm+0x3a7/0x460 [ 244.305439][ T8314] ? __pfx_tomoyo_path_perm+0x10/0x10 [ 244.305474][ T8314] ? do_raw_spin_lock+0x128/0x260 [ 244.305533][ T8314] ? do_raw_spin_unlock+0x145/0x1e0 [ 244.305587][ T8314] ? __pfx_current_check_access_path+0x10/0x10 [ 244.305621][ T8314] ? simple_lookup+0x105/0x1d0 [ 244.305661][ T8314] ? lookup_one_qstr_excl+0xb3/0x250 [ 244.305699][ T8314] tomoyo_path_symlink+0x97/0xe0 [ 244.305736][ T8314] ? __pfx_tomoyo_path_symlink+0x10/0x10 [ 244.305780][ T8314] security_path_symlink+0x152/0x2d0 [ 244.305807][ T8314] filename_symlinkat+0x122/0x560 [ 244.305840][ T8314] ? __pfx_filename_symlinkat+0x10/0x10 [ 244.305870][ T8314] ? strncpy_from_user+0x19d/0x2d0 [ 244.305904][ T8314] ? do_getname+0x191/0x390 [ 244.306097][ T8314] __x64_sys_symlink+0x79/0xb0 [ 244.306128][ T8314] do_syscall_64+0x106/0xf80 [ 244.306164][ T8314] ? clear_bhb_loop+0x40/0x90 [ 244.306204][ T8314] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.306230][ T8314] RIP: 0033:0x7fbd2059c799 [ 244.306253][ T8314] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 244.306277][ T8314] RSP: 002b:00007fbd2140f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000058 [ 244.306300][ T8314] RAX: ffffffffffffffda RBX: 00007fbd20815fa0 RCX: 00007fbd2059c799 [ 244.306316][ T8314] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 244.306331][ T8314] RBP: 00007fbd20632c99 R08: 0000000000000000 R09: 0000000000000000 [ 244.306345][ T8314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 244.306439][ T8314] R13: 00007fbd20816038 R14: 00007fbd20815fa0 R15: 00007ffd1f2df538 [ 244.306490][ T8314] [ 247.515729][ T8353] netlink: 318 bytes leftover after parsing attributes in process `syz.1.830'. [ 247.540950][ T8345] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 247.551988][ T8345] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 247.695511][ T8345] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 247.733928][ T8345] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 247.824026][ T8345] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 247.879362][ T8345] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 247.899399][ T8345] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 247.923181][ T8345] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 248.144862][ T30] audit: type=1800 audit(1773835080.795:3): pid=8358 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.832" name="dbroot" dev="configfs" ino=19631 res=0 errno=0 [ 248.274440][ T8361] FAULT_INJECTION: forcing a failure. [ 248.274440][ T8361] name failslab, interval 1, probability 0, space 0, times 0 [ 248.368467][ T8361] CPU: 0 UID: 0 PID: 8361 Comm: syz.2.833 Tainted: G L syzkaller #0 PREEMPT(full) [ 248.368506][ T8361] Tainted: [L]=SOFTLOCKUP [ 248.368515][ T8361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 248.368530][ T8361] Call Trace: [ 248.368538][ T8361] [ 248.368547][ T8361] dump_stack_lvl+0x100/0x190 [ 248.368590][ T8361] should_fail_ex.cold+0x5/0xa [ 248.368620][ T8361] should_failslab+0xc2/0x120 [ 248.368646][ T8361] __kmalloc_cache_noprof+0x7a/0x6f0 [ 248.368679][ T8361] ? syslog_print+0xf8/0x620 [ 248.368716][ T8361] syslog_print+0xf8/0x620 [ 248.368750][ T8361] ? __pfx_syslog_print+0x10/0x10 [ 248.368786][ T8361] ? __pfx_futex_wait+0x10/0x10 [ 248.368847][ T8361] ? bpf_lsm_capable+0x9/0x10 [ 248.368882][ T8361] ? security_capable+0x80/0x260 [ 248.368925][ T8361] do_syslog+0x5bd/0x6d0 [ 248.368962][ T8361] ? __pfx_do_syslog+0x10/0x10 [ 248.369016][ T8361] __x64_sys_syslog+0x74/0xb0 [ 248.369053][ T8361] ? lockdep_hardirqs_on+0x78/0x100 [ 248.369089][ T8361] do_syscall_64+0x106/0xf80 [ 248.369123][ T8361] ? clear_bhb_loop+0x40/0x90 [ 248.369153][ T8361] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.369179][ T8361] RIP: 0033:0x7fdcefd9c799 [ 248.369199][ T8361] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 248.369224][ T8361] RSP: 002b:00007fdcf0c01028 EFLAGS: 00000246 ORIG_RAX: 0000000000000067 [ 248.369247][ T8361] RAX: ffffffffffffffda RBX: 00007fdcf0016090 RCX: 00007fdcefd9c799 [ 248.369263][ T8361] RDX: 00000000000008f7 RSI: 0000200000000340 RDI: 0000000000000002 [ 248.369278][ T8361] RBP: 00007fdcefe32c99 R08: 0000000000000000 R09: 0000000000000000 [ 248.369293][ T8361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 248.369307][ T8361] R13: 00007fdcf0016128 R14: 00007fdcf0016090 R15: 00007ffc67022cd8 [ 248.369338][ T8361] [ 249.046232][ T5839] Bluetooth: hci0: command 0x0406 tx timeout [ 249.210178][ T12] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 249.283428][ T8375] syz_tun: refused to change device tx_queue_len [ 249.697492][ T8382] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 249.744099][ T5839] Bluetooth: hci1: command 0x0406 tx timeout [ 249.899981][ T5839] Bluetooth: hci2: command 0x0406 tx timeout [ 249.977139][ T5839] Bluetooth: hci3: command 0x0406 tx timeout [ 250.161896][ T8391] FAULT_INJECTION: forcing a failure. [ 250.161896][ T8391] name failslab, interval 1, probability 0, space 0, times 0 [ 250.206956][ T8391] CPU: 0 UID: 0 PID: 8391 Comm: syz.3.844 Tainted: G L syzkaller #0 PREEMPT(full) [ 250.206998][ T8391] Tainted: [L]=SOFTLOCKUP [ 250.207006][ T8391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 250.207021][ T8391] Call Trace: [ 250.207029][ T8391] [ 250.207038][ T8391] dump_stack_lvl+0x100/0x190 [ 250.207080][ T8391] should_fail_ex.cold+0x5/0xa [ 250.207108][ T8391] ? constrain_params_by_rules+0x175/0xcc0 [ 250.207141][ T8391] should_failslab+0xc2/0x120 [ 250.207167][ T8391] __kmalloc_noprof+0xe0/0x850 [ 250.207204][ T8391] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 250.207236][ T8391] constrain_params_by_rules+0x175/0xcc0 [ 250.207274][ T8391] ? unwind_get_return_address+0x59/0xa0 [ 250.207312][ T8391] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 250.207355][ T8391] ? stack_trace_save+0x8e/0xc0 [ 250.207379][ T8391] ? __pfx_stack_trace_save+0x10/0x10 [ 250.207405][ T8391] ? snd_pcm_oss_change_params_locked+0xa6d/0x39f0 [ 250.207443][ T8391] ? snd_pcm_oss_change_params_locked+0xae1/0x39f0 [ 250.207473][ T8391] ? snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 250.207501][ T8391] ? snd_pcm_oss_sync+0x265/0x840 [ 250.207528][ T8391] ? snd_pcm_oss_release+0x238/0x300 [ 250.207556][ T8391] ? __fput+0x3ff/0xb40 [ 250.207583][ T8391] ? task_work_run+0x150/0x240 [ 250.207648][ T8391] ? snd_interval_refine+0x2d0/0x580 [ 250.207696][ T8391] snd_pcm_hw_refine+0x7e7/0xad0 [ 250.207737][ T8391] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 250.207794][ T8391] snd_pcm_hw_param_first+0x2b0/0x680 [ 250.207835][ T8391] snd_pcm_hw_param_near.constprop.0+0x739/0x850 [ 250.207873][ T8391] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 250.207904][ T8391] ? snd_pcm_oss_change_params_locked+0xa6d/0x39f0 [ 250.207938][ T8391] ? kfree+0x1f6/0x6b0 [ 250.207975][ T8391] snd_pcm_oss_change_params_locked+0xae1/0x39f0 [ 250.208017][ T8391] ? snd_pcm_oss_sync+0x243/0x840 [ 250.208046][ T8391] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 250.208075][ T8391] ? task_work_add+0x201/0x3b0 [ 250.208112][ T8391] ? __pfx___mutex_lock+0x10/0x10 [ 250.208166][ T8391] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 250.208198][ T8391] snd_pcm_oss_sync+0x265/0x840 [ 250.208231][ T8391] snd_pcm_oss_release+0x238/0x300 [ 250.208260][ T8391] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 250.208290][ T8391] __fput+0x3ff/0xb40 [ 250.208326][ T8391] task_work_run+0x150/0x240 [ 250.208363][ T8391] ? __pfx_task_work_run+0x10/0x10 [ 250.208407][ T8391] exit_to_user_mode_loop+0x100/0x4a0 [ 250.208443][ T8391] do_syscall_64+0x668/0xf80 [ 250.208481][ T8391] ? clear_bhb_loop+0x40/0x90 [ 250.208512][ T8391] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 250.208537][ T8391] RIP: 0033:0x7fa63039c799 [ 250.208557][ T8391] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 250.208581][ T8391] RSP: 002b:00007fa63117f028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 250.208604][ T8391] RAX: 0000000000000000 RBX: 00007fa630615fa0 RCX: 00007fa63039c799 [ 250.208620][ T8391] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000000 [ 250.208634][ T8391] RBP: 00007fa630432c99 R08: 0000000000000000 R09: 0000000000000000 [ 250.208649][ T8391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 250.208663][ T8391] R13: 00007fa630616038 R14: 00007fa630615fa0 R15: 00007fff71333068 [ 250.208694][ T8391] [ 251.218464][ T5839] Bluetooth: hci0: command 0x0406 tx timeout [ 251.810668][ T8411] input: jJǸ-¶š9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input6 [ 251.840855][ T5839] Bluetooth: hci1: command 0x0406 tx timeout [ 251.977452][ T5839] Bluetooth: hci2: command 0x0406 tx timeout [ 252.060213][ T5839] Bluetooth: hci3: command 0x0406 tx timeout [ 252.779282][ T8423] sp0: Synchronizing with TNC [ 252.963852][ T8426] netlink: 334 bytes leftover after parsing attributes in process `syz.1.857'. [ 253.836946][ T8446] delete_channel: no stack [ 253.842395][ T8449] type: 65536 invalid [ 254.093554][ T8456] netlink: 346 bytes leftover after parsing attributes in process `syz.3.866'. [ 255.139293][ T8476] FAULT_INJECTION: forcing a failure. [ 255.139293][ T8476] name failslab, interval 1, probability 0, space 0, times 0 [ 255.184068][ T8476] CPU: 0 UID: 0 PID: 8476 Comm: syz.2.873 Tainted: G L syzkaller #0 PREEMPT(full) [ 255.184108][ T8476] Tainted: [L]=SOFTLOCKUP [ 255.184117][ T8476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 255.184131][ T8476] Call Trace: [ 255.184140][ T8476] [ 255.184149][ T8476] dump_stack_lvl+0x100/0x190 [ 255.184192][ T8476] should_fail_ex.cold+0x5/0xa [ 255.184220][ T8476] should_failslab+0xc2/0x120 [ 255.184246][ T8476] __kmalloc_cache_noprof+0x7a/0x6f0 [ 255.184279][ T8476] ? snd_seq_fifo_new+0x42/0x270 [ 255.184321][ T8476] ? _raw_spin_unlock_irq+0x2e/0x50 [ 255.184356][ T8476] ? __pfx_snd_seq_open+0x10/0x10 [ 255.184397][ T8476] snd_seq_fifo_new+0x42/0x270 [ 255.184430][ T8476] snd_seq_open+0x3fe/0x590 [ 255.184471][ T8476] ? __pfx_snd_seq_open+0x10/0x10 [ 255.184509][ T8476] snd_open+0x22d/0x4c0 [ 255.184535][ T8476] ? __pfx_snd_open+0x10/0x10 [ 255.184559][ T8476] chrdev_open+0x234/0x6a0 [ 255.184583][ T8476] ? __pfx_apparmor_file_open+0x10/0x10 [ 255.184626][ T8476] ? __pfx_chrdev_open+0x10/0x10 [ 255.184653][ T8476] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 255.184685][ T8476] do_dentry_open+0x6d8/0x1660 [ 255.184710][ T8476] ? __pfx_chrdev_open+0x10/0x10 [ 255.184746][ T8476] vfs_open+0x82/0x3f0 [ 255.184781][ T8476] path_openat+0x208c/0x31a0 [ 255.184817][ T8476] ? __pfx_path_openat+0x10/0x10 [ 255.184853][ T8476] do_file_open+0x20e/0x430 [ 255.184881][ T8476] ? __pfx_do_file_open+0x10/0x10 [ 255.184928][ T8476] ? alloc_fd+0x476/0x790 [ 255.184956][ T8476] ? do_getname+0x191/0x390 [ 255.184991][ T8476] do_sys_openat2+0x10d/0x1e0 [ 255.185024][ T8476] ? __pfx_do_sys_openat2+0x10/0x10 [ 255.185073][ T8476] __x64_sys_openat+0x12d/0x210 [ 255.185111][ T8476] ? __pfx___x64_sys_openat+0x10/0x10 [ 255.185156][ T8476] do_syscall_64+0x106/0xf80 [ 255.185191][ T8476] ? clear_bhb_loop+0x40/0x90 [ 255.185223][ T8476] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 255.185249][ T8476] RIP: 0033:0x7fdcefd9c799 [ 255.185268][ T8476] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 255.185291][ T8476] RSP: 002b:00007fdcf0c22028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 255.185385][ T8476] RAX: ffffffffffffffda RBX: 00007fdcf0015fa0 RCX: 00007fdcefd9c799 [ 255.185401][ T8476] RDX: 00000000001e3800 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 255.185417][ T8476] RBP: 00007fdcefe32c99 R08: 0000000000000000 R09: 0000000000000000 [ 255.185432][ T8476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 255.185447][ T8476] R13: 00007fdcf0016038 R14: 00007fdcf0015fa0 R15: 00007ffc67022cd8 [ 255.185479][ T8476] [ 256.160468][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.166924][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.700933][ T8497] netlink: 146 bytes leftover after parsing attributes in process `syz.2.875'. [ 258.502572][ T8530] FAULT_INJECTION: forcing a failure. [ 258.502572][ T8530] name failslab, interval 1, probability 0, space 0, times 0 [ 258.573258][ T8530] CPU: 0 UID: 0 PID: 8530 Comm: syz.3.881 Tainted: G L syzkaller #0 PREEMPT(full) [ 258.573299][ T8530] Tainted: [L]=SOFTLOCKUP [ 258.573307][ T8530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 258.573322][ T8530] Call Trace: [ 258.573329][ T8530] [ 258.573339][ T8530] dump_stack_lvl+0x100/0x190 [ 258.573381][ T8530] should_fail_ex.cold+0x5/0xa [ 258.573410][ T8530] should_failslab+0xc2/0x120 [ 258.573436][ T8530] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 258.573474][ T8530] ? __proc_create+0x2cb/0x8c0 [ 258.573520][ T8530] __proc_create+0x2cb/0x8c0 [ 258.573561][ T8530] ? __pfx___proc_create+0x10/0x10 [ 258.573606][ T8530] ? _raw_write_unlock+0x28/0x50 [ 258.573648][ T8530] proc_create_reg+0x75/0x170 [ 258.573675][ T8530] proc_create_data+0x86/0x110 [ 258.573699][ T8530] ? __pfx_proc_create_data+0x10/0x10 [ 258.573724][ T8530] ? cache_register_net+0x137/0x5e0 [ 258.573763][ T8530] ? cache_register_net+0x137/0x5e0 [ 258.573807][ T8530] cache_register_net+0x1e0/0x5e0 [ 258.573857][ T8530] gss_svc_init_net+0x98/0x640 [ 258.573888][ T8530] ? __pfx_canbcm_pernet_init+0x10/0x10 [ 258.573928][ T8530] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 258.573962][ T8530] ops_init+0x1e2/0x5f0 [ 258.574003][ T8530] setup_net+0x118/0x3a0 [ 258.574049][ T8530] ? __pfx_setup_net+0x10/0x10 [ 258.574085][ T8530] ? lockdep_init_map_type+0x5c/0x250 [ 258.574120][ T8530] ? mutex_init_lockep+0x110/0x150 [ 258.574159][ T8530] copy_net_ns+0x46f/0x7c0 [ 258.574184][ T8530] create_new_namespaces+0x3ea/0xac0 [ 258.574217][ T8530] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 258.574246][ T8530] ksys_unshare+0x473/0xad0 [ 258.574279][ T8530] ? __pfx_ksys_unshare+0x10/0x10 [ 258.574321][ T8530] __x64_sys_unshare+0x31/0x40 [ 258.574352][ T8530] do_syscall_64+0x106/0xf80 [ 258.574386][ T8530] ? clear_bhb_loop+0x40/0x90 [ 258.574416][ T8530] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 258.574442][ T8530] RIP: 0033:0x7fa63039c799 [ 258.574462][ T8530] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 258.574485][ T8530] RSP: 002b:00007fa63117f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 258.574508][ T8530] RAX: ffffffffffffffda RBX: 00007fa630615fa0 RCX: 00007fa63039c799 [ 258.574525][ T8530] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 258.574539][ T8530] RBP: 00007fa630432c99 R08: 0000000000000000 R09: 0000000000000000 [ 258.574554][ T8530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 258.574568][ T8530] R13: 00007fa630616038 R14: 00007fa630615fa0 R15: 00007fff71333068 [ 258.574600][ T8530] [ 259.270673][ T8538] zswap: compressor not available [ 259.452073][ T8544] FAULT_INJECTION: forcing a failure. [ 259.452073][ T8544] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 259.488076][ T8544] CPU: 0 UID: 0 PID: 8544 Comm: syz.0.885 Tainted: G L syzkaller #0 PREEMPT(full) [ 259.488121][ T8544] Tainted: [L]=SOFTLOCKUP [ 259.488130][ T8544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 259.488145][ T8544] Call Trace: [ 259.488154][ T8544] [ 259.488163][ T8544] dump_stack_lvl+0x100/0x190 [ 259.488205][ T8544] should_fail_ex.cold+0x5/0xa [ 259.488233][ T8544] ? prepare_alloc_pages+0x16d/0x5f0 [ 259.488264][ T8544] should_fail_alloc_page+0xeb/0x140 [ 259.488293][ T8544] prepare_alloc_pages+0x1f0/0x5f0 [ 259.488326][ T8544] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 259.488369][ T8544] ? __pfx_futex_wake_mark+0x10/0x10 [ 259.488412][ T8544] ? futex_hash+0x2c5/0x380 [ 259.488444][ T8544] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 259.488486][ T8544] ? futex_wait+0x125/0x380 [ 259.488525][ T8544] ? __pfx_futex_wait+0x10/0x10 [ 259.488571][ T8544] ? vfs_write+0x15d/0x1070 [ 259.488594][ T8544] ? __pfx_sock_write_iter+0x10/0x10 [ 259.488619][ T8544] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 259.488663][ T8544] ? policy_nodemask+0xed/0x4f0 [ 259.488690][ T8544] alloc_pages_mpol+0x1fb/0x550 [ 259.488718][ T8544] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 259.488747][ T8544] ? __x64_sys_futex+0x34f/0x4d0 [ 259.488778][ T8544] ? __x64_sys_futex+0x358/0x4d0 [ 259.488814][ T8544] alloc_pages_noprof+0x131/0x390 [ 259.488841][ T8544] get_free_pages_noprof+0x10/0xb0 [ 259.488866][ T8544] __do_sys_mincore+0xf7/0x610 [ 259.488907][ T8544] do_syscall_64+0x106/0xf80 [ 259.488942][ T8544] ? clear_bhb_loop+0x40/0x90 [ 259.488972][ T8544] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 259.488999][ T8544] RIP: 0033:0x7f463e59c799 [ 259.489019][ T8544] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 259.489043][ T8544] RSP: 002b:00007f463f3ec028 EFLAGS: 00000246 ORIG_RAX: 000000000000001b [ 259.489072][ T8544] RAX: ffffffffffffffda RBX: 00007f463e815fa0 RCX: 00007f463e59c799 [ 259.489089][ T8544] RDX: 0000000000000000 RSI: 0000000004000000 RDI: 0000000000001000 [ 259.489104][ T8544] RBP: 00007f463e632c99 R08: 0000000000000000 R09: 0000000000000000 [ 259.489118][ T8544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 259.489133][ T8544] R13: 00007f463e816038 R14: 00007f463e815fa0 R15: 00007fffb22e4a38 [ 259.489164][ T8544] [ 260.882115][ T8565] FAULT_INJECTION: forcing a failure. [ 260.882115][ T8565] name failslab, interval 1, probability 0, space 0, times 0 [ 260.931993][ T8565] CPU: 0 UID: 0 PID: 8565 Comm: syz.0.892 Tainted: G L syzkaller #0 PREEMPT(full) [ 260.932033][ T8565] Tainted: [L]=SOFTLOCKUP [ 260.932041][ T8565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 260.932056][ T8565] Call Trace: [ 260.932064][ T8565] [ 260.932074][ T8565] dump_stack_lvl+0x100/0x190 [ 260.932125][ T8565] should_fail_ex.cold+0x5/0xa [ 260.932153][ T8565] ? constrain_params_by_rules+0x175/0xcc0 [ 260.932186][ T8565] should_failslab+0xc2/0x120 [ 260.932212][ T8565] __kmalloc_noprof+0xe0/0x850 [ 260.932250][ T8565] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 260.932282][ T8565] constrain_params_by_rules+0x175/0xcc0 [ 260.932314][ T8565] ? unwind_get_return_address+0x59/0xa0 [ 260.932352][ T8565] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 260.932387][ T8565] ? stack_trace_save+0x8e/0xc0 [ 260.932411][ T8565] ? __pfx_stack_trace_save+0x10/0x10 [ 260.932437][ T8565] ? snd_pcm_oss_change_params_locked+0xa6d/0x39f0 [ 260.932475][ T8565] ? snd_pcm_oss_change_params_locked+0xae1/0x39f0 [ 260.932504][ T8565] ? snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 260.932532][ T8565] ? snd_pcm_oss_sync+0x265/0x840 [ 260.932559][ T8565] ? snd_pcm_oss_release+0x238/0x300 [ 260.932586][ T8565] ? __fput+0x3ff/0xb40 [ 260.932613][ T8565] ? task_work_run+0x150/0x240 [ 260.932648][ T8565] ? snd_interval_refine+0x2d0/0x580 [ 260.932689][ T8565] snd_pcm_hw_refine+0x7e7/0xad0 [ 260.932727][ T8565] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 260.932783][ T8565] snd_pcm_hw_param_first+0x2b0/0x680 [ 260.932819][ T8565] snd_pcm_hw_param_near.constprop.0+0x739/0x850 [ 260.932853][ T8565] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 260.932883][ T8565] ? snd_pcm_oss_change_params_locked+0xa6d/0x39f0 [ 260.932912][ T8565] ? kfree+0x1f6/0x6b0 [ 260.932948][ T8565] snd_pcm_oss_change_params_locked+0xae1/0x39f0 [ 260.932989][ T8565] ? snd_pcm_oss_sync+0x243/0x840 [ 260.933018][ T8565] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 260.933047][ T8565] ? task_work_add+0x201/0x3b0 [ 260.933084][ T8565] ? __pfx___mutex_lock+0x10/0x10 [ 260.933144][ T8565] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 260.933176][ T8565] snd_pcm_oss_sync+0x265/0x840 [ 260.933210][ T8565] snd_pcm_oss_release+0x238/0x300 [ 260.933240][ T8565] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 260.933270][ T8565] __fput+0x3ff/0xb40 [ 260.933305][ T8565] task_work_run+0x150/0x240 [ 260.933342][ T8565] ? __pfx_task_work_run+0x10/0x10 [ 260.933386][ T8565] exit_to_user_mode_loop+0x100/0x4a0 [ 260.933422][ T8565] do_syscall_64+0x668/0xf80 [ 260.933457][ T8565] ? clear_bhb_loop+0x40/0x90 [ 260.933487][ T8565] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 260.933513][ T8565] RIP: 0033:0x7f463e59c799 [ 260.933533][ T8565] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 260.933556][ T8565] RSP: 002b:00007f463f3ec028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 260.933579][ T8565] RAX: 0000000000000000 RBX: 00007f463e815fa0 RCX: 00007f463e59c799 [ 260.933594][ T8565] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000000 [ 260.933608][ T8565] RBP: 00007f463e632c99 R08: 0000000000000000 R09: 0000000000000000 [ 260.933623][ T8565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 260.933637][ T8565] R13: 00007f463e816038 R14: 00007f463e815fa0 R15: 00007fffb22e4a38 [ 260.933668][ T8565] [ 261.770381][ T8569] FAULT_INJECTION: forcing a failure. [ 261.770381][ T8569] name failslab, interval 1, probability 0, space 0, times 0 [ 261.829442][ T8569] CPU: 0 UID: 0 PID: 8569 Comm: syz.0.893 Tainted: G L syzkaller #0 PREEMPT(full) [ 261.829485][ T8569] Tainted: [L]=SOFTLOCKUP [ 261.829493][ T8569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 261.829507][ T8569] Call Trace: [ 261.829515][ T8569] [ 261.829524][ T8569] dump_stack_lvl+0x100/0x190 [ 261.829566][ T8569] should_fail_ex.cold+0x5/0xa [ 261.829595][ T8569] should_failslab+0xc2/0x120 [ 261.829621][ T8569] __kmalloc_cache_noprof+0x7a/0x6f0 [ 261.829655][ T8569] ? ovs_ct_limit_cmd_set+0x30a/0xa70 [ 261.829702][ T8569] ovs_ct_limit_cmd_set+0x30a/0xa70 [ 261.829748][ T8569] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 261.829790][ T8569] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280 [ 261.829819][ T8569] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280 [ 261.829852][ T8569] genl_family_rcv_msg_doit+0x214/0x300 [ 261.829891][ T8569] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 261.829919][ T8569] ? genl_get_cmd+0x3ef/0x720 [ 261.829948][ T8569] ? bpf_lsm_capable+0x9/0x10 [ 261.829973][ T8569] ? security_capable+0x80/0x260 [ 261.830013][ T8569] ? ns_capable+0xd2/0xf0 [ 261.830039][ T8569] genl_rcv_msg+0x560/0x800 [ 261.830068][ T8569] ? __pfx_genl_rcv_msg+0x10/0x10 [ 261.830095][ T8569] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 261.830152][ T8569] netlink_rcv_skb+0x159/0x420 [ 261.830192][ T8569] ? __pfx_genl_rcv_msg+0x10/0x10 [ 261.830219][ T8569] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 261.830270][ T8569] ? netlink_deliver_tap+0x1ae/0xcc0 [ 261.830311][ T8569] genl_rcv+0x28/0x40 [ 261.830332][ T8569] netlink_unicast+0x5aa/0x870 [ 261.830375][ T8569] ? __pfx_netlink_unicast+0x10/0x10 [ 261.830413][ T8569] ? __asan_memset+0x23/0x50 [ 261.830448][ T8569] ? __build_skb_around+0x278/0x390 [ 261.830478][ T8569] ? is_vmalloc_addr+0x86/0xa0 [ 261.830518][ T8569] netlink_sendmsg+0x8b0/0xda0 [ 261.830562][ T8569] ? __pfx_netlink_sendmsg+0x10/0x10 [ 261.830600][ T8569] ? __import_iovec+0x1d2/0x640 [ 261.830632][ T8569] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 261.830677][ T8569] ____sys_sendmsg+0x9e1/0xb70 [ 261.830701][ T8569] ? __pfx_netlink_sendmsg+0x10/0x10 [ 261.830743][ T8569] ? __pfx_____sys_sendmsg+0x10/0x10 [ 261.830774][ T8569] ? __pfx_futex_wake_mark+0x10/0x10 [ 261.830818][ T8569] ___sys_sendmsg+0x190/0x1e0 [ 261.830854][ T8569] ? __pfx____sys_sendmsg+0x10/0x10 [ 261.830925][ T8569] __sys_sendmsg+0x170/0x220 [ 261.830961][ T8569] ? __pfx___sys_sendmsg+0x10/0x10 [ 261.830997][ T8569] ? __x64_sys_futex+0x34f/0x4d0 [ 261.831047][ T8569] do_syscall_64+0x106/0xf80 [ 261.831082][ T8569] ? clear_bhb_loop+0x40/0x90 [ 261.831112][ T8569] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 261.831138][ T8569] RIP: 0033:0x7f463e59c799 [ 261.831158][ T8569] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 261.831187][ T8569] RSP: 002b:00007f463f3ec028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 261.831210][ T8569] RAX: ffffffffffffffda RBX: 00007f463e815fa0 RCX: 00007f463e59c799 [ 261.831227][ T8569] RDX: 0000000000000004 RSI: 0000200000000100 RDI: 0000000000000005 [ 261.831241][ T8569] RBP: 00007f463e632c99 R08: 0000000000000000 R09: 0000000000000000 [ 261.831256][ T8569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 261.831271][ T8569] R13: 00007f463e816038 R14: 00007f463e815fa0 R15: 00007fffb22e4a38 [ 261.831302][ T8569] [ 262.943017][ T30] audit: type=1800 audit(1773835095.558:4): pid=8589 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.900" name="lu_gp_id" dev="configfs" ino=20584 res=0 errno=0 [ 263.331363][ T8594] netlink: 'syz.2.902': attribute type 21 has an invalid length. [ 263.407671][ T8594] netlink: 334 bytes leftover after parsing attributes in process `syz.2.902'. [ 264.013183][ T8608] netlink: 28 bytes leftover after parsing attributes in process `syz.0.909'. [ 265.471030][ T8629] zswap: compressor not available [ 266.965778][ T8652] netlink: 330 bytes leftover after parsing attributes in process `syz.1.925'. [ 267.291632][ T5149] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 267.304837][ T5149] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 267.318076][ T5149] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 267.331581][ T5149] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 267.344815][ T5149] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 267.512934][ T8656] zswap: compressor not available [ 267.732623][ T8669] FAULT_INJECTION: forcing a failure. [ 267.732623][ T8669] name failslab, interval 1, probability 0, space 0, times 0 [ 267.791823][ T8669] CPU: 0 UID: 0 PID: 8669 Comm: syz.2.929 Tainted: G L syzkaller #0 PREEMPT(full) [ 267.791863][ T8669] Tainted: [L]=SOFTLOCKUP [ 267.791871][ T8669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 267.791886][ T8669] Call Trace: [ 267.791893][ T8669] [ 267.791902][ T8669] dump_stack_lvl+0x100/0x190 [ 267.791951][ T8669] should_fail_ex.cold+0x5/0xa [ 267.791979][ T8669] ? iter_file_splice_write+0x1d8/0x10a0 [ 267.792004][ T8669] should_failslab+0xc2/0x120 [ 267.792030][ T8669] __kmalloc_noprof+0xe0/0x850 [ 267.792067][ T8669] ? __pfx___might_resched+0x10/0x10 [ 267.792110][ T8669] iter_file_splice_write+0x1d8/0x10a0 [ 267.792150][ T8669] ? __pfx_iter_file_splice_write+0x10/0x10 [ 267.792175][ T8669] ? __lock_acquire+0x4a5/0x2630 [ 267.792208][ T8669] ? shmem_file_splice_read+0x724/0xdd0 [ 267.792265][ T8669] ? __pfx_iter_file_splice_write+0x10/0x10 [ 267.792293][ T8669] direct_splice_actor+0x192/0x6c0 [ 267.792320][ T8669] splice_direct_to_actor+0x345/0xa30 [ 267.792346][ T8669] ? __pfx_direct_splice_actor+0x10/0x10 [ 267.792383][ T8669] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 267.792418][ T8669] do_splice_direct+0x174/0x240 [ 267.792443][ T8669] ? __pfx_do_splice_direct+0x10/0x10 [ 267.792469][ T8669] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 267.792516][ T8669] ? rw_verify_area+0xce/0x6d0 [ 267.792555][ T8669] do_sendfile+0xadc/0xe20 [ 267.792600][ T8669] ? __pfx_do_sendfile+0x10/0x10 [ 267.792649][ T8669] __x64_sys_sendfile64+0x154/0x220 [ 267.792679][ T8669] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 267.792721][ T8669] do_syscall_64+0x106/0xf80 [ 267.792755][ T8669] ? clear_bhb_loop+0x40/0x90 [ 267.792786][ T8669] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 267.792811][ T8669] RIP: 0033:0x7fdcefd9c799 [ 267.792832][ T8669] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 267.792855][ T8669] RSP: 002b:00007fdcf0c22028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 267.792878][ T8669] RAX: ffffffffffffffda RBX: 00007fdcf0015fa0 RCX: 00007fdcefd9c799 [ 267.792894][ T8669] RDX: 0000200000000000 RSI: 0000000000000005 RDI: 0000000000000005 [ 267.792908][ T8669] RBP: 00007fdcefe32c99 R08: 0000000000000000 R09: 0000000000000000 [ 267.792923][ T8669] R10: 0000000000000b5d R11: 0000000000000246 R12: 0000000000000000 [ 267.792937][ T8669] R13: 00007fdcf0016038 R14: 00007fdcf0015fa0 R15: 00007ffc67022cd8 [ 267.792968][ T8669] [ 268.225816][ T8662] chnl_net:caif_netlink_parms(): no params data found [ 268.421641][ T8662] bridge0: port 1(bridge_slave_0) entered blocking state [ 268.445738][ T8662] bridge0: port 1(bridge_slave_0) entered disabled state [ 268.465986][ T8662] bridge_slave_0: entered allmulticast mode [ 268.476012][ T8662] bridge_slave_0: entered promiscuous mode [ 268.492778][ T8662] bridge0: port 2(bridge_slave_1) entered blocking state [ 268.510561][ T8662] bridge0: port 2(bridge_slave_1) entered disabled state [ 268.525870][ T8662] bridge_slave_1: entered allmulticast mode [ 268.542109][ T8662] bridge_slave_1: entered promiscuous mode [ 268.629588][ T8662] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 268.662271][ T8662] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 268.721320][ T8662] team0: Port device team_slave_0 added [ 268.729713][ T8662] team0: Port device team_slave_1 added [ 268.761053][ T8662] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 268.771276][ T8662] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 268.802711][ T8662] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 268.816177][ T8662] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 268.823145][ T8662] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 268.850392][ T8662] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 268.907199][ T8662] hsr_slave_0: entered promiscuous mode [ 268.915414][ T8662] hsr_slave_1: entered promiscuous mode [ 268.923008][ T8662] debugfs: 'hsr0' already exists in 'hsr' [ 268.929207][ T8662] Cannot create hsr debugfs directory [ 269.128834][ T8662] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 269.140192][ T8662] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 269.150988][ T8662] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 269.162208][ T8662] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 269.255339][ T8662] 8021q: adding VLAN 0 to HW filter on device bond0 [ 269.280290][ T8662] 8021q: adding VLAN 0 to HW filter on device team0 [ 269.293304][ T2951] bridge0: port 1(bridge_slave_0) entered blocking state [ 269.300686][ T2951] bridge0: port 1(bridge_slave_0) entered forwarding state [ 269.329817][ T2951] bridge0: port 2(bridge_slave_1) entered blocking state [ 269.337142][ T2951] bridge0: port 2(bridge_slave_1) entered forwarding state [ 269.380418][ T8662] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 269.432241][ T5149] Bluetooth: hci3: command tx timeout [ 269.603008][ T8662] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 269.925666][ T8662] veth0_vlan: entered promiscuous mode [ 269.940873][ T8662] veth1_vlan: entered promiscuous mode [ 269.973494][ T8662] veth0_macvtap: entered promiscuous mode [ 269.991142][ T8662] veth1_macvtap: entered promiscuous mode [ 270.013061][ T8662] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 270.029593][ T8662] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 270.044020][ T2951] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 270.064854][ T2951] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 270.106112][ T2951] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 270.140753][ T2951] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 270.188324][ T3021] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 270.214713][ T3021] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 270.255267][ T1141] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 270.264422][ T1141] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 271.507395][ T5149] Bluetooth: hci3: command tx timeout [ 271.879633][ T8725] netlink: 234 bytes leftover after parsing attributes in process `syz.4.937'. [ 272.304880][ T8733] netlink: 4 bytes leftover after parsing attributes in process `syz.2.943'. [ 272.392028][ T8733] netlink: 5 bytes leftover after parsing attributes in process `syz.2.943'. [ 272.461065][ T8733] netlink: 16 bytes leftover after parsing attributes in process `syz.2.943'. [ 273.421453][ T8757] FAULT_INJECTION: forcing a failure. [ 273.421453][ T8757] name failslab, interval 1, probability 0, space 0, times 0 [ 273.456426][ T8758] syz_tun: mtu greater than device maximum [ 273.498977][ T8757] CPU: 0 UID: 0 PID: 8757 Comm: syz.1.953 Tainted: G L syzkaller #0 PREEMPT(full) [ 273.499019][ T8757] Tainted: [L]=SOFTLOCKUP [ 273.499027][ T8757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 273.499042][ T8757] Call Trace: [ 273.499051][ T8757] [ 273.499365][ T8757] dump_stack_lvl+0x100/0x190 [ 273.499456][ T8757] should_fail_ex.cold+0x5/0xa [ 273.499491][ T8757] should_failslab+0xc2/0x120 [ 273.499518][ T8757] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 273.499555][ T8757] ? do_epoll_ctl+0xc6c/0x36a0 [ 273.499581][ T8757] ? percpu_counter_add_batch+0xb9/0x230 [ 273.499614][ T8757] do_epoll_ctl+0xc6c/0x36a0 [ 273.499644][ T8757] ? ksys_write+0x190/0x250 [ 273.499665][ T8757] ? ksys_write+0x190/0x250 [ 273.499696][ T8757] ? __pfx_do_epoll_ctl+0x10/0x10 [ 273.499720][ T8757] ? find_held_lock+0x2b/0x80 [ 273.500039][ T8757] ? __might_fault+0xc5/0x140 [ 273.500107][ T8757] ? __might_fault+0xc5/0x140 [ 273.500154][ T8757] ? __x64_sys_epoll_ctl+0x15c/0x1e0 [ 273.500180][ T8757] __x64_sys_epoll_ctl+0x15c/0x1e0 [ 273.500209][ T8757] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 273.500245][ T8757] do_syscall_64+0x106/0xf80 [ 273.500280][ T8757] ? clear_bhb_loop+0x40/0x90 [ 273.500311][ T8757] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 273.500337][ T8757] RIP: 0033:0x7fbd2059c799 [ 273.500357][ T8757] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 273.500384][ T8757] RSP: 002b:00007fbd2140f028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 273.500416][ T8757] RAX: ffffffffffffffda RBX: 00007fbd20815fa0 RCX: 00007fbd2059c799 [ 273.500432][ T8757] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004 [ 273.500447][ T8757] RBP: 00007fbd20632c99 R08: 0000000000000000 R09: 0000000000000000 [ 273.500511][ T8757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 273.500525][ T8757] R13: 00007fbd20816038 R14: 00007fbd20815fa0 R15: 00007ffd1f2df538 [ 273.500560][ T8757] [ 273.981299][ T5149] Bluetooth: hci3: command tx timeout [ 274.851931][ T8785] FAULT_INJECTION: forcing a failure. [ 274.851931][ T8785] name failslab, interval 1, probability 0, space 0, times 0 [ 274.913563][ T8785] CPU: 0 UID: 0 PID: 8785 Comm: syz.1.964 Tainted: G L syzkaller #0 PREEMPT(full) [ 274.913602][ T8785] Tainted: [L]=SOFTLOCKUP [ 274.913611][ T8785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 274.913626][ T8785] Call Trace: [ 274.913635][ T8785] [ 274.913644][ T8785] dump_stack_lvl+0x100/0x190 [ 274.913686][ T8785] should_fail_ex.cold+0x5/0xa [ 274.913716][ T8785] should_failslab+0xc2/0x120 [ 274.913742][ T8785] __kmalloc_cache_noprof+0x7a/0x6f0 [ 274.913776][ T8785] ? drm_atomic_state_alloc+0xb8/0x120 [ 274.913824][ T8785] drm_atomic_state_alloc+0xb8/0x120 [ 274.913857][ T8785] drm_client_modeset_commit_atomic+0xcc/0x7e0 [ 274.913896][ T8785] ? trace_contention_end+0x140/0x180 [ 274.913932][ T8785] ? __mutex_lock+0x26a/0x1b90 [ 274.913970][ T8785] ? __mutex_lock+0x26a/0x1b90 [ 274.914006][ T8785] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 274.914044][ T8785] ? drm_master_internal_acquire+0x21/0x80 [ 274.914105][ T8785] drm_client_modeset_commit_locked+0x14d/0x580 [ 274.914147][ T8785] drm_client_modeset_commit+0x4f/0x80 [ 274.914184][ T8785] __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160 [ 274.914224][ T8785] drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0 [ 274.914263][ T8785] drm_fbdev_client_restore+0x1b/0x30 [ 274.914290][ T8785] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 274.914323][ T8785] drm_client_dev_restore+0x205/0x2a0 [ 274.914363][ T8785] drm_release+0x2c6/0x360 [ 274.914395][ T8785] ? __pfx_drm_release+0x10/0x10 [ 274.914427][ T8785] __fput+0x3ff/0xb40 [ 274.914463][ T8785] task_work_run+0x150/0x240 [ 274.914501][ T8785] ? __pfx_task_work_run+0x10/0x10 [ 274.914546][ T8785] exit_to_user_mode_loop+0x100/0x4a0 [ 274.914583][ T8785] do_syscall_64+0x668/0xf80 [ 274.914617][ T8785] ? clear_bhb_loop+0x40/0x90 [ 274.914648][ T8785] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 274.914673][ T8785] RIP: 0033:0x7fbd2059c799 [ 274.914693][ T8785] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 274.914717][ T8785] RSP: 002b:00007fbd2140f028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 274.914745][ T8785] RAX: 0000000000000000 RBX: 00007fbd20815fa0 RCX: 00007fbd2059c799 [ 274.914761][ T8785] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 274.914775][ T8785] RBP: 00007fbd20632c99 R08: 0000000000000000 R09: 0000000000000000 [ 274.914789][ T8785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 274.914809][ T8785] R13: 00007fbd20816038 R14: 00007fbd20815fa0 R15: 00007ffd1f2df538 [ 274.914841][ T8785] [ 275.366947][ T8791] FAULT_INJECTION: forcing a failure. [ 275.366947][ T8791] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 275.381104][ T8791] CPU: 0 UID: 0 PID: 8791 Comm: syz.4.968 Tainted: G L syzkaller #0 PREEMPT(full) [ 275.381143][ T8791] Tainted: [L]=SOFTLOCKUP [ 275.381152][ T8791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 275.381167][ T8791] Call Trace: [ 275.381174][ T8791] [ 275.381182][ T8791] dump_stack_lvl+0x100/0x190 [ 275.381225][ T8791] should_fail_ex.cold+0x5/0xa [ 275.381249][ T8791] ? prepare_alloc_pages+0x16d/0x5f0 [ 275.381280][ T8791] should_fail_alloc_page+0xeb/0x140 [ 275.381308][ T8791] prepare_alloc_pages+0x1f0/0x5f0 [ 275.381336][ T8791] ? is_bpf_text_address+0x94/0x1a0 [ 275.381379][ T8791] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 275.381432][ T8791] ? stack_trace_save+0x8e/0xc0 [ 275.381456][ T8791] ? __pfx_stack_trace_save+0x10/0x10 [ 275.381480][ T8791] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 275.381518][ T8791] ? stack_depot_save_flags+0x27/0x9d0 [ 275.381548][ T8791] ? lock_acquire+0x1cf/0x380 [ 275.381583][ T8791] ? kasan_save_stack+0x3f/0x50 [ 275.381622][ T8791] ? kasan_save_stack+0x30/0x50 [ 275.381659][ T8791] ? kasan_save_track+0x14/0x30 [ 275.381697][ T8791] ? __kasan_kmalloc+0xaa/0xb0 [ 275.381738][ T8791] ? do_file_open+0x20e/0x430 [ 275.381762][ T8791] ? do_sys_openat2+0x10d/0x1e0 [ 275.381804][ T8791] ? __x64_sys_openat+0x12d/0x210 [ 275.381836][ T8791] ? do_syscall_64+0x106/0xf80 [ 275.381870][ T8791] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.381900][ T8791] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 275.381952][ T8791] ? policy_nodemask+0xed/0x4f0 [ 275.381981][ T8791] alloc_pages_mpol+0x1fb/0x550 [ 275.382008][ T8791] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 275.382042][ T8791] alloc_pages_noprof+0x131/0x390 [ 275.382071][ T8791] get_zeroed_page_noprof+0x18/0xb0 [ 275.382098][ T8791] mon_alloc_buff+0xce/0x1b0 [ 275.382124][ T8791] ? kasan_save_track+0x14/0x30 [ 275.382166][ T8791] mon_bin_open+0x207/0x470 [ 275.382193][ T8791] ? __pfx_mon_bin_open+0x10/0x10 [ 275.382220][ T8791] chrdev_open+0x234/0x6a0 [ 275.382246][ T8791] ? __pfx_chrdev_open+0x10/0x10 [ 275.382273][ T8791] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 275.382306][ T8791] do_dentry_open+0x6d8/0x1660 [ 275.382329][ T8791] ? __pfx_chrdev_open+0x10/0x10 [ 275.382362][ T8791] vfs_open+0x82/0x3f0 [ 275.382396][ T8791] path_openat+0x208c/0x31a0 [ 275.382431][ T8791] ? __pfx_path_openat+0x10/0x10 [ 275.382467][ T8791] do_file_open+0x20e/0x430 [ 275.382495][ T8791] ? __pfx_do_file_open+0x10/0x10 [ 275.382541][ T8791] ? alloc_fd+0x476/0x790 [ 275.382568][ T8791] ? do_getname+0x191/0x390 [ 275.382602][ T8791] do_sys_openat2+0x10d/0x1e0 [ 275.382635][ T8791] ? __pfx_do_sys_openat2+0x10/0x10 [ 275.382670][ T8791] ? __fget_files+0x21f/0x3d0 [ 275.382699][ T8791] __x64_sys_openat+0x12d/0x210 [ 275.382733][ T8791] ? __pfx___x64_sys_openat+0x10/0x10 [ 275.382786][ T8791] do_syscall_64+0x106/0xf80 [ 275.382821][ T8791] ? clear_bhb_loop+0x40/0x90 [ 275.382852][ T8791] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.382877][ T8791] RIP: 0033:0x7fa988b9c799 [ 275.382898][ T8791] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 275.382921][ T8791] RSP: 002b:00007fa989b3b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 275.382944][ T8791] RAX: ffffffffffffffda RBX: 00007fa988e15fa0 RCX: 00007fa988b9c799 [ 275.382961][ T8791] RDX: 0000000000002040 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 275.382976][ T8791] RBP: 00007fa988c32c99 R08: 0000000000000000 R09: 0000000000000000 [ 275.382991][ T8791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 275.383005][ T8791] R13: 00007fa988e16038 R14: 00007fa988e15fa0 R15: 00007ffd09293258 [ 275.383036][ T8791] [ 275.957653][ T8797] FAULT_INJECTION: forcing a failure. [ 275.957653][ T8797] name failslab, interval 1, probability 0, space 0, times 0 [ 275.970844][ T8797] CPU: 0 UID: 0 PID: 8797 Comm: syz.0.969 Tainted: G L syzkaller #0 PREEMPT(full) [ 275.970883][ T8797] Tainted: [L]=SOFTLOCKUP [ 275.970891][ T8797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 275.970906][ T8797] Call Trace: [ 275.970913][ T8797] [ 275.970922][ T8797] dump_stack_lvl+0x100/0x190 [ 275.970963][ T8797] should_fail_ex.cold+0x5/0xa [ 275.970995][ T8797] should_failslab+0xc2/0x120 [ 275.971020][ T8797] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 275.971059][ T8797] ? mas_alloc_nodes+0x280/0x390 [ 275.971095][ T8797] mas_alloc_nodes+0x280/0x390 [ 275.971129][ T8797] mas_preallocate+0x39c/0xf10 [ 275.971166][ T8797] ? __memcg_slab_post_alloc_hook+0x420/0x990 [ 275.971200][ T8797] ? __pfx_mas_preallocate+0x10/0x10 [ 275.971246][ T8797] ? anon_vma_name+0x5a/0x250 [ 275.971280][ T8797] __split_vma+0x33d/0xd90 [ 275.971319][ T8797] ? __pfx___split_vma+0x10/0x10 [ 275.971360][ T8797] ? __pfx_mas_prev+0x10/0x10 [ 275.971405][ T8797] vms_gather_munmap_vmas+0x39f/0x1500 [ 275.971440][ T8797] ? find_held_lock+0x2b/0x80 [ 275.971478][ T8797] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 275.971514][ T8797] ? move_page_tables+0xe1d/0x4500 [ 275.971566][ T8797] do_vmi_align_munmap+0x287/0x5f0 [ 275.971607][ T8797] ? __pfx_do_vmi_align_munmap+0x10/0x10 [ 275.971685][ T8797] do_vmi_munmap+0x1f8/0x3e0 [ 275.971733][ T8797] move_vma+0xd99/0x1890 [ 275.971774][ T8797] ? __pfx_move_vma+0x10/0x10 [ 275.971814][ T8797] ? mm_get_unmapped_area_vmflags+0xd7/0x130 [ 275.971854][ T8797] ? vrm_set_new_addr+0x204/0x290 [ 275.971893][ T8797] mremap_to+0x1b7/0x450 [ 275.971932][ T8797] do_mremap+0xb76/0x2130 [ 275.971982][ T8797] ? __pfx_do_mremap+0x10/0x10 [ 275.972025][ T8797] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 275.972075][ T8797] __do_sys_mremap+0x126/0x170 [ 275.972113][ T8797] ? __pfx___do_sys_mremap+0x10/0x10 [ 275.972159][ T8797] ? __x64_sys_futex+0x34f/0x4d0 [ 275.972209][ T8797] do_syscall_64+0x106/0xf80 [ 275.972244][ T8797] ? clear_bhb_loop+0x40/0x90 [ 275.972274][ T8797] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.972300][ T8797] RIP: 0033:0x7f463e59c799 [ 275.972321][ T8797] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 275.972346][ T8797] RSP: 002b:00007f463f3cb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 275.972369][ T8797] RAX: ffffffffffffffda RBX: 00007f463e816090 RCX: 00007f463e59c799 [ 275.972386][ T8797] RDX: 0000000000000037 RSI: 0000000000000008 RDI: 0000200000001000 [ 275.972402][ T8797] RBP: 00007f463e632c99 R08: 000000110c230000 R09: 0000000000000000 [ 275.972418][ T8797] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 275.972433][ T8797] R13: 00007f463e816128 R14: 00007f463e816090 R15: 00007fffb22e4a38 [ 275.972465][ T8797] [ 276.288211][ T5839] Bluetooth: hci3: command tx timeout [ 276.376231][ T8800] FAULT_INJECTION: forcing a failure. [ 276.376231][ T8800] name failslab, interval 1, probability 0, space 0, times 0 [ 276.389510][ T8800] CPU: 0 UID: 0 PID: 8800 Comm: syz.2.970 Tainted: G L syzkaller #0 PREEMPT(full) [ 276.389554][ T8800] Tainted: [L]=SOFTLOCKUP [ 276.389562][ T8800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 276.389577][ T8800] Call Trace: [ 276.389585][ T8800] [ 276.389594][ T8800] dump_stack_lvl+0x100/0x190 [ 276.389636][ T8800] should_fail_ex.cold+0x5/0xa [ 276.389665][ T8800] should_failslab+0xc2/0x120 [ 276.389691][ T8800] __kmalloc_cache_noprof+0x7a/0x6f0 [ 276.389725][ T8800] ? rfkill_fop_open+0x1b6/0x750 [ 276.389751][ T8800] ? mark_held_locks+0x40/0x70 [ 276.389788][ T8800] rfkill_fop_open+0x1b6/0x750 [ 276.389820][ T8800] ? __pfx_rfkill_fop_open+0x10/0x10 [ 276.389849][ T8800] misc_open+0x26d/0x450 [ 276.389885][ T8800] ? __pfx_misc_open+0x10/0x10 [ 276.389912][ T8800] chrdev_open+0x234/0x6a0 [ 276.389937][ T8800] ? __pfx_apparmor_file_open+0x10/0x10 [ 276.389985][ T8800] ? __pfx_chrdev_open+0x10/0x10 [ 276.390012][ T8800] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 276.390050][ T8800] do_dentry_open+0x6d8/0x1660 [ 276.390074][ T8800] ? __pfx_chrdev_open+0x10/0x10 [ 276.390118][ T8800] vfs_open+0x82/0x3f0 [ 276.390159][ T8800] path_openat+0x208c/0x31a0 [ 276.390194][ T8800] ? __pfx_path_openat+0x10/0x10 [ 276.390240][ T8800] do_file_open+0x20e/0x430 [ 276.390267][ T8800] ? __pfx_do_file_open+0x10/0x10 [ 276.390321][ T8800] ? alloc_fd+0x476/0x790 [ 276.390348][ T8800] ? do_getname+0x191/0x390 [ 276.390382][ T8800] do_sys_openat2+0x10d/0x1e0 [ 276.390415][ T8800] ? __pfx_do_sys_openat2+0x10/0x10 [ 276.390450][ T8800] ? __fget_files+0x21f/0x3d0 [ 276.390480][ T8800] __x64_sys_openat+0x12d/0x210 [ 276.390515][ T8800] ? __pfx___x64_sys_openat+0x10/0x10 [ 276.390561][ T8800] do_syscall_64+0x106/0xf80 [ 276.390595][ T8800] ? clear_bhb_loop+0x40/0x90 [ 276.390626][ T8800] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 276.390651][ T8800] RIP: 0033:0x7fdcefd9c799 [ 276.390672][ T8800] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 276.390696][ T8800] RSP: 002b:00007fdcf0c22028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 276.390719][ T8800] RAX: ffffffffffffffda RBX: 00007fdcf0015fa0 RCX: 00007fdcefd9c799 [ 276.390736][ T8800] RDX: 0000000000000382 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 276.390752][ T8800] RBP: 00007fdcefe32c99 R08: 0000000000000000 R09: 0000000000000000 [ 276.390767][ T8800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 276.390782][ T8800] R13: 00007fdcf0016038 R14: 00007fdcf0015fa0 R15: 00007ffc67022cd8 [ 276.390814][ T8800] [ 279.825762][ T8857] netlink: 21 bytes leftover after parsing attributes in process `syz.1.992'. [ 279.969302][ T8860] netlink: 'syz.4.994': attribute type 19 has an invalid length. [ 280.010206][ T8860] netlink: 334 bytes leftover after parsing attributes in process `syz.4.994'. [ 280.556341][ T8852] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 280.583808][ T8852] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 280.600250][ T8852] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 280.629505][ T8852] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 280.672700][ T8852] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 280.841136][ T8852] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 281.173228][ T8875] netlink: 'syz.1.999': attribute type 1 has an invalid length. [ 281.223917][ T8875] netlink: 314 bytes leftover after parsing attributes in process `syz.1.999'. [ 281.834005][ T5149] Bluetooth: hci0: command 0x0406 tx timeout [ 282.635504][ T5149] Bluetooth: hci3: command 0x0c1a tx timeout [ 282.642638][ T5149] Bluetooth: hci2: command 0x0406 tx timeout [ 282.644171][ T5839] Bluetooth: hci1: command 0x0406 tx timeout [ 282.724153][ T8899] FAULT_INJECTION: forcing a failure. [ 282.724153][ T8899] name failslab, interval 1, probability 0, space 0, times 0 [ 282.770236][ T8900] FAULT_INJECTION: forcing a failure. [ 282.770236][ T8900] name failslab, interval 1, probability 0, space 0, times 0 [ 282.819812][ T8899] CPU: 0 UID: 0 PID: 8899 Comm: syz.2.1007 Tainted: G L syzkaller #0 PREEMPT(full) [ 282.819854][ T8899] Tainted: [L]=SOFTLOCKUP [ 282.819862][ T8899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 282.819877][ T8899] Call Trace: [ 282.819886][ T8899] [ 282.819897][ T8899] dump_stack_lvl+0x100/0x190 [ 282.819940][ T8899] should_fail_ex.cold+0x5/0xa [ 282.819969][ T8899] should_failslab+0xc2/0x120 [ 282.819996][ T8899] __kmalloc_cache_noprof+0x7a/0x6f0 [ 282.820029][ T8899] ? alloc_pipe_info+0x10e/0x590 [ 282.820055][ T8899] ? security_inode_alloc+0xcf/0x2c0 [ 282.820097][ T8899] alloc_pipe_info+0x10e/0x590 [ 282.820126][ T8899] create_pipe_files+0x8c/0x970 [ 282.820156][ T8899] do_pipe2+0xbd/0x1e0 [ 282.820181][ T8899] ? __pfx_do_pipe2+0x10/0x10 [ 282.820218][ T8899] __x64_sys_pipe+0x33/0x50 [ 282.820244][ T8899] do_syscall_64+0x106/0xf80 [ 282.820279][ T8899] ? clear_bhb_loop+0x40/0x90 [ 282.820310][ T8899] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 282.820337][ T8899] RIP: 0033:0x7fdcefd9c799 [ 282.820358][ T8899] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 282.820383][ T8899] RSP: 002b:00007fdcf0c22028 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 282.820406][ T8899] RAX: ffffffffffffffda RBX: 00007fdcf0015fa0 RCX: 00007fdcefd9c799 [ 282.820423][ T8899] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 282.820438][ T8899] RBP: 00007fdcefe32c99 R08: 0000000000000000 R09: 0000000000000000 [ 282.820453][ T8899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 282.820468][ T8899] R13: 00007fdcf0016038 R14: 00007fdcf0015fa0 R15: 00007ffc67022cd8 [ 282.820500][ T8899] [ 283.053045][ T8900] CPU: 0 UID: 0 PID: 8900 Comm: syz.0.1008 Tainted: G L syzkaller #0 PREEMPT(full) [ 283.053096][ T8900] Tainted: [L]=SOFTLOCKUP [ 283.053105][ T8900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 283.053121][ T8900] Call Trace: [ 283.053130][ T8900] [ 283.053139][ T8900] dump_stack_lvl+0x100/0x190 [ 283.053180][ T8900] should_fail_ex.cold+0x5/0xa [ 283.053209][ T8900] ? lsm_blob_alloc+0x68/0x90 [ 283.053244][ T8900] should_failslab+0xc2/0x120 [ 283.053270][ T8900] __kmalloc_noprof+0xe0/0x850 [ 283.053308][ T8900] ? trace_kmem_cache_alloc+0xf3/0x120 [ 283.053340][ T8900] lsm_blob_alloc+0x68/0x90 [ 283.053375][ T8900] security_sk_alloc+0x2d/0x290 [ 283.053401][ T8900] sk_prot_alloc+0x1d1/0x2a0 [ 283.053427][ T8900] sk_alloc+0x36/0xe80 [ 283.053461][ T8900] inet6_create+0x385/0x12b0 [ 283.053499][ T8900] ? inet6_create+0x7f/0x12b0 [ 283.053539][ T8900] __sock_create+0x339/0x860 [ 283.053571][ T8900] udp_sock_create6+0xc7/0x6a0 [ 283.053609][ T8900] ? __pfx_udp_sock_create6+0x10/0x10 [ 283.053651][ T8900] ? crng_make_state+0x477/0x6c0 [ 283.053675][ T8900] ? lockdep_hardirqs_on+0x78/0x100 [ 283.053712][ T8900] ? crng_make_state+0x2b0/0x6c0 [ 283.053739][ T8900] rxrpc_open_socket+0x206/0x6b0 [ 283.053766][ T8900] ? __pfx_rxrpc_open_socket+0x10/0x10 [ 283.053806][ T8900] ? rcu_is_watching+0x12/0xc0 [ 283.053849][ T8900] rxrpc_lookup_local+0xac7/0x1220 [ 283.053879][ T8900] ? __pfx_rxrpc_lookup_local+0x10/0x10 [ 283.053908][ T8900] ? __local_bh_enable_ip+0x9e/0x120 [ 283.053938][ T8900] rxrpc_sendmsg+0x34a/0x680 [ 283.053971][ T8900] sock_write_iter+0x524/0x5a0 [ 283.053996][ T8900] ? __pfx_rxrpc_sendmsg+0x10/0x10 [ 283.054024][ T8900] ? __pfx_sock_write_iter+0x10/0x10 [ 283.054060][ T8900] ? bpf_lsm_file_permission+0x9/0x10 [ 283.054111][ T8900] ? security_file_permission+0x76/0x210 [ 283.054143][ T8900] ? rw_verify_area+0xce/0x6d0 [ 283.054184][ T8900] vfs_write+0x6ac/0x1070 [ 283.054207][ T8900] ? __pfx_sock_write_iter+0x10/0x10 [ 283.054235][ T8900] ? __pfx_vfs_write+0x10/0x10 [ 283.054256][ T8900] ? find_held_lock+0x2b/0x80 [ 283.054297][ T8900] ksys_write+0x1f8/0x250 [ 283.054319][ T8900] ? __pfx_ksys_write+0x10/0x10 [ 283.054350][ T8900] do_syscall_64+0x106/0xf80 [ 283.054385][ T8900] ? clear_bhb_loop+0x40/0x90 [ 283.054415][ T8900] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 283.054441][ T8900] RIP: 0033:0x7f463e59c799 [ 283.054461][ T8900] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 283.054492][ T8900] RSP: 002b:00007f463f3ec028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 283.054516][ T8900] RAX: ffffffffffffffda RBX: 00007f463e815fa0 RCX: 00007f463e59c799 [ 283.054533][ T8900] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 283.054549][ T8900] RBP: 00007f463e632c99 R08: 0000000000000000 R09: 0000000000000000 [ 283.054564][ T8900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 283.054579][ T8900] R13: 00007f463e816038 R14: 00007f463e815fa0 R15: 00007fffb22e4a38 [ 283.054612][ T8900] [ 283.568271][ T8907] FAULT_INJECTION: forcing a failure. [ 283.568271][ T8907] name failslab, interval 1, probability 0, space 0, times 0 [ 283.581335][ T8907] CPU: 0 UID: 0 PID: 8907 Comm: syz.4.1011 Tainted: G L syzkaller #0 PREEMPT(full) [ 283.581375][ T8907] Tainted: [L]=SOFTLOCKUP [ 283.581383][ T8907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 283.581399][ T8907] Call Trace: [ 283.581408][ T8907] [ 283.581419][ T8907] dump_stack_lvl+0x100/0x190 [ 283.581461][ T8907] should_fail_ex.cold+0x5/0xa [ 283.581490][ T8907] should_failslab+0xc2/0x120 [ 283.581517][ T8907] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 283.581556][ T8907] ? sk_prot_alloc+0x60/0x2a0 [ 283.581585][ T8907] sk_prot_alloc+0x60/0x2a0 [ 283.581612][ T8907] sk_alloc+0x36/0xe80 [ 283.581645][ T8907] kcm_create+0xfc/0x6a0 [ 283.581678][ T8907] __sock_create+0x339/0x860 [ 283.581709][ T8907] __sys_socket+0x14d/0x260 [ 283.581738][ T8907] ? __pfx___sys_socket+0x10/0x10 [ 283.581774][ T8907] __x64_sys_socket+0x72/0xb0 [ 283.581801][ T8907] ? lockdep_hardirqs_on+0x78/0x100 [ 283.581837][ T8907] do_syscall_64+0x106/0xf80 [ 283.581872][ T8907] ? clear_bhb_loop+0x40/0x90 [ 283.581903][ T8907] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 283.581929][ T8907] RIP: 0033:0x7fa988b9c799 [ 283.581950][ T8907] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 283.581974][ T8907] RSP: 002b:00007fa989b3b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 283.581997][ T8907] RAX: ffffffffffffffda RBX: 00007fa988e15fa0 RCX: 00007fa988b9c799 [ 283.582014][ T8907] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000029 [ 283.582028][ T8907] RBP: 00007fa988c32c99 R08: 0000000000000000 R09: 0000000000000000 [ 283.582043][ T8907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 283.582061][ T8907] R13: 00007fa988e16038 R14: 00007fa988e15fa0 R15: 00007ffd09293258 [ 283.582092][ T8907] [ 284.430627][ T8924] binder: 8922:8924 ioctl 40046210 0 returned -14 [ 284.713873][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout [ 285.497804][ T8941] process 'syz.0.1024' launched ':,' with NULL argv: empty string added [ 286.644425][ T8951] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 286.666346][ T8951] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 286.689250][ T8951] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 286.715284][ T8951] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 287.974685][ T8989] futex_wake_op: syz.2.1042 tries to shift op by -2048; fix this program [ 287.999487][ T5839] Bluetooth: hci0: command 0x0406 tx timeout [ 288.717307][ T5839] Bluetooth: hci2: command 0x0406 tx timeout [ 288.723771][ T5149] Bluetooth: hci1: command 0x0406 tx timeout [ 288.796230][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout [ 289.030444][ T9007] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1049'. [ 289.163993][ T9014] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(8) [ 290.305903][ T9030] FAULT_INJECTION: forcing a failure. [ 290.305903][ T9030] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 290.351532][ T9032] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 290.369941][ T9030] CPU: 0 UID: 0 PID: 9030 Comm: syz.4.1059 Tainted: G L syzkaller #0 PREEMPT(full) [ 290.369987][ T9030] Tainted: [L]=SOFTLOCKUP [ 290.369996][ T9030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 290.370012][ T9030] Call Trace: [ 290.370022][ T9030] [ 290.370032][ T9030] dump_stack_lvl+0x100/0x190 [ 290.370074][ T9030] should_fail_ex.cold+0x5/0xa [ 290.370099][ T9030] ? prepare_alloc_pages+0x16d/0x5f0 [ 290.370131][ T9030] should_fail_alloc_page+0xeb/0x140 [ 290.370159][ T9030] prepare_alloc_pages+0x1f0/0x5f0 [ 290.370199][ T9030] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 290.370242][ T9030] ? rcu_is_watching+0x12/0xc0 [ 290.370282][ T9030] ? trace_mm_page_alloc+0x17a/0x1d0 [ 290.370311][ T9030] ? __alloc_frozen_pages_noprof+0x2b1/0x2ba0 [ 290.370355][ T9030] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 290.370394][ T9030] ? stack_trace_save+0x8e/0xc0 [ 290.370421][ T9030] ? stack_depot_save_flags+0x27/0x9d0 [ 290.370453][ T9030] ? is_bpf_text_address+0x8a/0x1a0 [ 290.370492][ T9030] ? is_bpf_text_address+0x8a/0x1a0 [ 290.370541][ T9030] ? kasan_save_stack+0x3f/0x50 [ 290.370581][ T9030] ? kasan_save_track+0x14/0x30 [ 290.370620][ T9030] ? kmem_cache_alloc_node_noprof+0x25a/0x6f0 [ 290.370664][ T9030] ? alloc_vmap_area+0x640/0x2bd0 [ 290.370688][ T9030] ? __get_vm_area_node+0x1ca/0x330 [ 290.370714][ T9030] ? __vmalloc_node_range_noprof+0x213/0x1530 [ 290.370745][ T9030] ? __kvmalloc_node_noprof+0x3de/0xa00 [ 290.370784][ T9030] ? __do_sys_listmount+0x289/0xee0 [ 290.370822][ T9030] ? do_syscall_64+0x106/0xf80 [ 290.370864][ T9030] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 290.370900][ T9030] alloc_pages_bulk_noprof+0x782/0x1490 [ 290.370952][ T9030] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 290.371003][ T9030] ? alloc_pages_noprof+0x233/0x390 [ 290.371033][ T9030] __kasan_populate_vmalloc+0xf0/0x210 [ 290.371078][ T9030] alloc_vmap_area+0x95d/0x2bd0 [ 290.371115][ T9030] ? __pfx_alloc_vmap_area+0x10/0x10 [ 290.371149][ T9030] __get_vm_area_node+0x1ca/0x330 [ 290.371183][ T9030] __vmalloc_node_range_noprof+0x213/0x1530 [ 290.371216][ T9030] ? __do_sys_listmount+0x289/0xee0 [ 290.371262][ T9030] ? __do_sys_listmount+0x289/0xee0 [ 290.371310][ T9030] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 290.371348][ T9030] ? rcu_is_watching+0x12/0xc0 [ 290.371392][ T9030] __kvmalloc_node_noprof+0x3de/0xa00 [ 290.371433][ T9030] ? __do_sys_listmount+0x289/0xee0 [ 290.371471][ T9030] ? __do_sys_listmount+0x289/0xee0 [ 290.371509][ T9030] ? _copy_from_user+0x59/0xd0 [ 290.371543][ T9030] ? copy_mnt_id_req+0x1b1/0x350 [ 290.371579][ T9030] __do_sys_listmount+0x289/0xee0 [ 290.371618][ T9030] ? __pfx_do_futex+0x10/0x10 [ 290.371654][ T9030] ? __fget_files+0x21f/0x3d0 [ 290.371678][ T9030] ? __pfx___do_sys_listmount+0x10/0x10 [ 290.371736][ T9030] do_syscall_64+0x106/0xf80 [ 290.371771][ T9030] ? clear_bhb_loop+0x40/0x90 [ 290.371801][ T9030] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 290.371828][ T9030] RIP: 0033:0x7fa988b9c799 [ 290.371849][ T9030] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 290.371873][ T9030] RSP: 002b:00007fa989b3b028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 290.371898][ T9030] RAX: ffffffffffffffda RBX: 00007fa988e15fa0 RCX: 00007fa988b9c799 [ 290.371915][ T9030] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000080 [ 290.371930][ T9030] RBP: 00007fa988c32c99 R08: 0000000000000000 R09: 0000000000000000 [ 290.371945][ T9030] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 290.371960][ T9030] R13: 00007fa988e16038 R14: 00007fa988e15fa0 R15: 00007ffd09293258 [ 290.371998][ T9030] [ 290.376194][ T9030] syz.4.1059: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null) [ 290.777512][ T9032] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 291.039542][ T9036] synth uevent: /devices/virtual/net/lowpan0: unknown uevent action string [ 291.057084][ T9036] net lowpan0: uevent: failed to send synthetic uevent: -22 [ 291.653208][ T9030] ,cpuset=/,mems_allowed=0-1 [ 291.719027][ T9030] CPU: 0 UID: 0 PID: 9030 Comm: syz.4.1059 Tainted: G L syzkaller #0 PREEMPT(full) [ 291.719066][ T9030] Tainted: [L]=SOFTLOCKUP [ 291.719074][ T9030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 291.719088][ T9030] Call Trace: [ 291.719096][ T9030] [ 291.719105][ T9030] dump_stack_lvl+0x100/0x190 [ 291.719153][ T9030] warn_alloc.cold+0x95/0x1c1 [ 291.719195][ T9030] ? __pfx_warn_alloc+0x10/0x10 [ 291.719229][ T9030] ? lockdep_hardirqs_on+0x78/0x100 [ 291.719267][ T9030] ? __get_vm_area_node+0x2c5/0x330 [ 291.719299][ T9030] ? __get_vm_area_node+0x208/0x330 [ 291.719332][ T9030] __vmalloc_node_range_noprof+0xbf4/0x1530 [ 291.719371][ T9030] ? __do_sys_listmount+0x289/0xee0 [ 291.719417][ T9030] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 291.719458][ T9030] ? rcu_is_watching+0x12/0xc0 [ 291.719502][ T9030] __kvmalloc_node_noprof+0x3de/0xa00 [ 291.719542][ T9030] ? __do_sys_listmount+0x289/0xee0 [ 291.719578][ T9030] ? __do_sys_listmount+0x289/0xee0 [ 291.719613][ T9030] ? _copy_from_user+0x59/0xd0 [ 291.719641][ T9030] ? copy_mnt_id_req+0x1b1/0x350 [ 291.719675][ T9030] __do_sys_listmount+0x289/0xee0 [ 291.719712][ T9030] ? __pfx_do_futex+0x10/0x10 [ 291.719746][ T9030] ? __fget_files+0x21f/0x3d0 [ 291.719769][ T9030] ? __pfx___do_sys_listmount+0x10/0x10 [ 291.719825][ T9030] do_syscall_64+0x106/0xf80 [ 291.719858][ T9030] ? clear_bhb_loop+0x40/0x90 [ 291.719887][ T9030] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 291.719911][ T9030] RIP: 0033:0x7fa988b9c799 [ 291.719931][ T9030] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 291.719955][ T9030] RSP: 002b:00007fa989b3b028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 291.719976][ T9030] RAX: ffffffffffffffda RBX: 00007fa988e15fa0 RCX: 00007fa988b9c799 [ 291.719993][ T9030] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000080 [ 291.720007][ T9030] RBP: 00007fa988c32c99 R08: 0000000000000000 R09: 0000000000000000 [ 291.720022][ T9030] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 291.720036][ T9030] R13: 00007fa988e16038 R14: 00007fa988e15fa0 R15: 00007ffd09293258 [ 291.720066][ T9030] [ 291.720085][ T9030] Mem-Info: [ 292.733266][ T9030] active_anon:13889 inactive_anon:0 isolated_anon:0 [ 292.733266][ T9030] active_file:16229 inactive_file:40439 isolated_file:0 [ 292.733266][ T9030] unevictable:768 dirty:549 writeback:0 [ 292.733266][ T9030] slab_reclaimable:10887 slab_unreclaimable:95040 [ 292.733266][ T9030] mapped:27723 shmem:6384 pagetables:1175 [ 292.733266][ T9030] sec_pagetables:0 bounce:0 [ 292.733266][ T9030] kernel_misc_reclaimable:0 [ 292.733266][ T9030] free:1319298 free_pcp:11415 free_cma:0 [ 292.892066][ T9030] Node 0 active_anon:61172kB inactive_anon:0kB active_file:64868kB inactive_file:161508kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:114392kB dirty:2140kB writeback:0kB shmem:29616kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11904kB pagetables:4520kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 293.062632][ T9030] Node 1 active_anon:0kB inactive_anon:0kB active_file:48kB inactive_file:248kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:88kB dirty:56kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:64kB pagetables:180kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 293.180013][ T9030] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 293.323689][ T9030] lowmem_reserve[]: 0 2477 2478 2478 2478 [ 293.357396][ T9030] Node 0 DMA32 free:1324736kB boost:0kB min:34056kB low:42568kB high:51080kB reserved_highatomic:0KB free_highatomic:0KB active_anon:68036kB inactive_anon:0kB active_file:64868kB inactive_file:161508kB unevictable:1536kB writepending:2140kB zspages:0kB present:3129332kB managed:2537380kB mlocked:0kB bounce:0kB free_pcp:35268kB local_pcp:35268kB free_cma:0kB [ 293.486190][ T9030] lowmem_reserve[]: 0 0 1 1 1 [ 293.578218][ T9030] Node 0 Normal free:0kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1060kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:16kB free_cma:0kB [ 293.774011][ T9030] lowmem_reserve[]: 0 0 0 0 0 [ 293.809891][ T9030] Node 1 Normal free:3924548kB boost:0kB min:55828kB low:69784kB high:83740kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:48kB inactive_file:248kB unevictable:1536kB writepending:56kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:11576kB local_pcp:11576kB free_cma:0kB [ 293.857811][ T9073] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 293.984644][ T9030] lowmem_reserve[]: 0 0 0 0 0 [ 294.016393][ T9030] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 294.128557][ T9030] Node 0 DMA32: 3961*4kB (UE) 2085*8kB (UME) 989*16kB (UME) 911*32kB (UME) 456*64kB (UME) 200*128kB (UM) 73*256kB (UME) 47*512kB (UM) 25*1024kB (UME) 8*2048kB (UME) 270*4096kB (M) = 1322940kB [ 294.258578][ T9030] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 294.292832][ T9078] ------------[ cut here ]------------ [ 294.298912][ T9078] IS_ERR(old) [ 294.298940][ T9078] WARNING: kernel/tracepoint.c:367 at tracepoint_probe_unregister+0x837/0xd10, CPU#0: syz.2.1070/9078 [ 294.314107][ T9078] Modules linked in: [ 294.318844][ T9078] CPU: 0 UID: 0 PID: 9078 Comm: syz.2.1070 Tainted: G L syzkaller #0 PREEMPT(full) [ 294.330634][ T9078] Tainted: [L]=SOFTLOCKUP [ 294.335066][ T9078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 294.345260][ T9078] RIP: 0010:tracepoint_probe_unregister+0x837/0xd10 [ 294.352501][ T9078] Code: cc e8 6d 2b fe ff 48 8d 73 f0 48 c7 c2 20 dc 09 82 48 c7 c7 40 31 87 8e e8 e6 79 e2 ff eb ba bb fe ff ff ff e8 4a 2b fe ff 90 <0f> 0b 90 eb ac e8 3f 2b fe ff 49 89 dd 45 31 ff 49 be 00 00 00 00 [ 294.374998][ T9078] RSP: 0018:ffffc90003a578a8 EFLAGS: 00010283 [ 294.383590][ T9078] RAX: 00000000000073ae RBX: 00000000fffffffe RCX: ffffc900064f9000 [ 294.391999][ T9078] RDX: 0000000000080000 RSI: ffffffff8209ed16 RDI: ffff88802f3b8000 [ 294.402646][ T9078] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 294.410855][ T9078] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff821007e0 [ 294.418946][ T9078] R13: 0000000000000302 R14: 0000000000000002 R15: ffffffff8f786be0 [ 294.427720][ T9078] FS: 00007fdcf0c226c0(0000) GS:ffff88812434a000(0000) knlGS:0000000000000000 [ 294.437634][ T9078] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 294.444427][ T9078] CR2: 0000001b3130fff8 CR3: 000000007be7e000 CR4: 00000000003526f0 [ 294.453551][ T9078] Call Trace: [ 294.457243][ T9078] [ 294.460598][ T9078] tracing_stop_cmdline_record+0x66/0xa0 [ 294.467521][ T9078] __ftrace_event_enable_disable+0x5c4/0x6f0 [ 294.474793][ T9078] ftrace_event_set_open+0x224/0x380 [ 294.482084][ T9078] do_dentry_open+0x6d8/0x1660 [ 294.486956][ T9078] ? __pfx_ftrace_event_set_open+0x10/0x10 [ 294.493636][ T9078] vfs_open+0x82/0x3f0 [ 294.498829][ T9078] path_openat+0x208c/0x31a0 [ 294.504336][ T9078] ? __pfx_path_openat+0x10/0x10 [ 294.509459][ T9078] do_file_open+0x20e/0x430 [ 294.514230][ T9078] ? __pfx_do_file_open+0x10/0x10 [ 294.520355][ T9078] ? alloc_fd+0x476/0x790 [ 294.524870][ T9078] ? do_getname+0x191/0x390 [ 294.530471][ T9078] do_sys_openat2+0x10d/0x1e0 [ 294.536301][ T9078] ? __pfx_do_sys_openat2+0x10/0x10 [ 294.542715][ T9078] ? find_held_lock+0x2b/0x80 [ 294.547756][ T9078] __x64_sys_openat+0x12d/0x210 [ 294.554053][ T9078] ? __pfx___x64_sys_openat+0x10/0x10 [ 294.561315][ T9078] do_syscall_64+0x106/0xf80 [ 294.566020][ T9078] ? clear_bhb_loop+0x40/0x90 [ 294.571137][ T9078] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 294.578230][ T9078] RIP: 0033:0x7fdcefd9c799 [ 294.583561][ T9078] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 294.604594][ T9078] RSP: 002b:00007fdcf0c22028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 294.613877][ T9078] RAX: ffffffffffffffda RBX: 00007fdcf0015fa0 RCX: 00007fdcefd9c799 [ 294.622604][ T9078] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 294.630852][ T9078] RBP: 00007fdcefe32c99 R08: 0000000000000000 R09: 0000000000000000 [ 294.639300][ T9078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 294.647382][ T9078] R13: 00007fdcf0016038 R14: 00007fdcf0015fa0 R15: 00007ffc67022cd8 [ 294.656177][ T9078] [ 294.659781][ T9078] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 294.667134][ T9078] CPU: 0 UID: 0 PID: 9078 Comm: syz.2.1070 Tainted: G L syzkaller #0 PREEMPT(full) [ 294.678376][ T9078] Tainted: [L]=SOFTLOCKUP [ 294.682802][ T9078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 294.693048][ T9078] Call Trace: [ 294.699979][ T9078] [ 294.703205][ T9078] dump_stack_lvl+0x100/0x190 [ 294.708907][ T9078] vpanic+0x552/0x970 [ 294.712940][ T9078] ? __pfx_vpanic+0x10/0x10 [ 294.717521][ T9078] panic+0xd1/0xe0 [ 294.721298][ T9078] ? __pfx_panic+0x10/0x10 [ 294.725756][ T9078] check_panic_on_warn.cold+0x19/0x34 [ 294.731155][ T9078] ? tracepoint_probe_unregister+0x837/0xd10 [ 294.737163][ T9078] __warn.cold+0x191/0x348 [ 294.741609][ T9078] __report_bug+0x296/0x3d0 [ 294.746144][ T9078] ? tracepoint_probe_unregister+0x837/0xd10 [ 294.752166][ T9078] ? __pfx___report_bug+0x10/0x10 [ 294.757265][ T9078] ? rcu_is_watching+0x12/0xc0 [ 294.762078][ T9078] ? trace_contention_end+0x140/0x180 [ 294.767574][ T9078] ? __mutex_lock+0x26a/0x1b90 [ 294.772507][ T9078] ? tracepoint_probe_unregister+0x31/0xd10 [ 294.778455][ T9078] ? tracepoint_probe_unregister+0x837/0xd10 [ 294.784489][ T9078] report_bug+0xb2/0x220 [ 294.788792][ T9078] ? tracepoint_probe_unregister+0x837/0xd10 [ 294.800603][ T9078] handle_bug+0x16a/0x2a0 [ 294.806665][ T9078] exc_invalid_op+0x17/0x50 [ 294.812715][ T9078] asm_exc_invalid_op+0x1a/0x20 [ 294.818584][ T9078] RIP: 0010:tracepoint_probe_unregister+0x837/0xd10 [ 294.825268][ T9078] Code: cc e8 6d 2b fe ff 48 8d 73 f0 48 c7 c2 20 dc 09 82 48 c7 c7 40 31 87 8e e8 e6 79 e2 ff eb ba bb fe ff ff ff e8 4a 2b fe ff 90 <0f> 0b 90 eb ac e8 3f 2b fe ff 49 89 dd 45 31 ff 49 be 00 00 00 00 [ 294.845084][ T9078] RSP: 0018:ffffc90003a578a8 EFLAGS: 00010283 [ 294.851422][ T9078] RAX: 00000000000073ae RBX: 00000000fffffffe RCX: ffffc900064f9000 [ 294.859610][ T9078] RDX: 0000000000080000 RSI: ffffffff8209ed16 RDI: ffff88802f3b8000 [ 294.867970][ T9078] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 294.876224][ T9078] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff821007e0 [ 294.885027][ T9078] R13: 0000000000000302 R14: 0000000000000002 R15: ffffffff8f786be0 [ 294.893860][ T9078] ? __pfx_probe_sched_switch+0x10/0x10 [ 294.901615][ T9078] ? tracepoint_probe_unregister+0x836/0xd10 [ 294.912061][ T9078] ? tracepoint_probe_unregister+0x836/0xd10 [ 294.918447][ T9078] tracing_stop_cmdline_record+0x66/0xa0 [ 294.924247][ T9078] __ftrace_event_enable_disable+0x5c4/0x6f0 [ 294.930286][ T9078] ftrace_event_set_open+0x224/0x380 [ 294.935680][ T9078] do_dentry_open+0x6d8/0x1660 [ 294.940751][ T9078] ? __pfx_ftrace_event_set_open+0x10/0x10 [ 294.946604][ T9078] vfs_open+0x82/0x3f0 [ 294.950760][ T9078] path_openat+0x208c/0x31a0 [ 294.955668][ T9078] ? __pfx_path_openat+0x10/0x10 [ 294.961149][ T9078] do_file_open+0x20e/0x430 [ 294.965836][ T9078] ? __pfx_do_file_open+0x10/0x10 [ 294.971035][ T9078] ? alloc_fd+0x476/0x790 [ 294.975499][ T9078] ? do_getname+0x191/0x390 [ 294.980119][ T9078] do_sys_openat2+0x10d/0x1e0 [ 294.984844][ T9078] ? __pfx_do_sys_openat2+0x10/0x10 [ 294.990253][ T9078] ? find_held_lock+0x2b/0x80 [ 294.995791][ T9078] __x64_sys_openat+0x12d/0x210 [ 295.002277][ T9078] ? __pfx___x64_sys_openat+0x10/0x10 [ 295.010882][ T9078] do_syscall_64+0x106/0xf80 [ 295.016567][ T9078] ? clear_bhb_loop+0x40/0x90 [ 295.021471][ T9078] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 295.027522][ T9078] RIP: 0033:0x7fdcefd9c799 [ 295.032107][ T9078] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 295.051850][ T9078] RSP: 002b:00007fdcf0c22028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 295.060447][ T9078] RAX: ffffffffffffffda RBX: 00007fdcf0015fa0 RCX: 00007fdcefd9c799 [ 295.068630][ T9078] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 295.076623][ T9078] RBP: 00007fdcefe32c99 R08: 0000000000000000 R09: 0000000000000000 [ 295.085036][ T9078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 295.093336][ T9078] R13: 00007fdcf0016038 R14: 00007fdcf0015fa0 R15: 00007ffc67022cd8 [ 295.101970][ T9078] [ 295.105087][ T9078] Kernel Offset: disabled [ 295.109804][ T9078] Rebooting in 86400 seconds..