last executing test programs: 284.969227ms ago: executing program 3 (id=4): openat(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools', 0x1, 0x0) 284.938138ms ago: executing program 2 (id=3): setpriority(0x0, 0x0, 0x0) 273.086953ms ago: executing program 4 (id=22): sched_getparam(0x0, &(0x7f0000000000)) 192.890248ms ago: executing program 3 (id=23): utime(&(0x7f0000000000), &(0x7f0000000000)) 192.490337ms ago: executing program 2 (id=25): syz_init_net_socket$rose(0xb, 0x5, 0x0) 192.362304ms ago: executing program 4 (id=26): open_by_handle_at(0xffffffffffffffff, &(0x7f0000000000), 0x0) 192.158089ms ago: executing program 1 (id=27): socket$inet_icmp(0x2, 0x2, 0x1) 192.102937ms ago: executing program 3 (id=28): setgid(0x0) 175.12503ms ago: executing program 1 (id=29): openat(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/damon/target_ids', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/damon/target_ids', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/damon/target_ids', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/damon/target_ids', 0x800, 0x0) 124.4125ms ago: executing program 2 (id=31): socket$phonet_pipe(0x23, 0x5, 0x2) 124.277987ms ago: executing program 4 (id=32): fchownat(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0, 0x0) 124.165055ms ago: executing program 3 (id=33): openat(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/status', 0x0, 0x0) 124.078012ms ago: executing program 1 (id=34): syz_open_dev$vivid(&(0x7f0000000040), 0x0, 0x0) syz_open_dev$vivid(&(0x7f0000000080), 0x0, 0x1) syz_open_dev$vivid(&(0x7f00000000c0), 0x0, 0x2) syz_open_dev$vivid(&(0x7f0000000100), 0x0, 0x800) 113.831834ms ago: executing program 3 (id=36): inotify_init() 113.252035ms ago: executing program 4 (id=37): timer_settime(0x0, 0x0, &(0x7f0000000000), 0x0) 108.210336ms ago: executing program 1 (id=38): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video36', 0x2, 0x0) 107.915281ms ago: executing program 2 (id=39): writev(0xffffffffffffffff, &(0x7f0000000000), 0x0) 52.120036ms ago: executing program 4 (id=41): pkey_alloc(0x0, 0x0) 51.898536ms ago: executing program 2 (id=42): openat(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/smackfs/cipso', 0x2, 0x0) 51.810057ms ago: executing program 1 (id=43): ioprio_set$auto(0x0, 0x0, 0x0) 51.530394ms ago: executing program 3 (id=44): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse', 0x2, 0x0) 51.249833ms ago: executing program 0 (id=45): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/seq', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/seq', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/seq', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/seq', 0x800, 0x0) 50.917121ms ago: executing program 4 (id=46): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vga_arbiter', 0x800, 0x0) 41.779912ms ago: executing program 1 (id=47): set_thread_area(&(0x7f0000000000)) 806.117µs ago: executing program 2 (id=48): openat(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/damon/attrs', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/damon/attrs', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/damon/attrs', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/damon/attrs', 0x800, 0x0) 510.525µs ago: executing program 0 (id=49): openat(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/damon/rm_contexts', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/damon/rm_contexts', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/damon/rm_contexts', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/damon/rm_contexts', 0x800, 0x0) 341.246µs ago: executing program 0 (id=50): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fb1', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fb1', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb1', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb1', 0x800, 0x0) 205.711µs ago: executing program 0 (id=51): sched_getscheduler(0x0) 163.812µs ago: executing program 0 (id=52): fchmodat(0xffffffffffffffff, &(0x7f0000000000), 0x0) 0s ago: executing program 0 (id=53): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/renderD128', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dri/renderD128', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dri/renderD128', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dri/renderD128', 0x800, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.112' (ED25519) to the list of known hosts. [ 66.833422][ T5825] cgroup: Unknown subsys name 'net' [ 66.902253][ T5825] cgroup: Unknown subsys name 'cpuset' [ 66.911966][ T5825] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 68.291554][ T5825] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 70.850241][ T5891] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000046: 0000 [#1] SMP KASAN PTI [ 70.862271][ T5891] KASAN: null-ptr-deref in range [0x0000000000000230-0x0000000000000237] [ 70.870712][ T5891] CPU: 0 UID: 0 PID: 5891 Comm: syz.3.44 Not tainted syzkaller #0 PREEMPT(full) [ 70.879836][ T5891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 70.889909][ T5891] RIP: 0010:fuse_dev_alloc_install+0x39/0x80 [ 70.895944][ T5891] Code: e8 bc f8 ff ff 48 89 c3 48 85 c0 74 47 e8 7f 57 7f fe 49 8d be 30 02 00 00 48 89 f8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 74 05 e8 6c 94 e9 fe 49 8b 96 30 02 00 00 49 c7 86 30 [ 70.895966][ T5891] RSP: 0018:ffffc90004017710 EFLAGS: 00010202 [ 70.895985][ T5891] RAX: 0000000000000046 RBX: ffff888029906a00 RCX: dffffc0000000000 [ 70.895998][ T5891] RDX: 0000000000000000 RSI: ffffffff8dfcdb14 RDI: 0000000000000230 [ 70.896010][ T5891] RBP: ffff888029e96b90 R08: ffffffff9032e7f7 R09: 1ffffffff2065cfe [ 70.896024][ T5891] R10: dffffc0000000000 R11: fffffbfff2065cff R12: ffff888079502840 [ 70.896037][ T5891] R13: ffff888079502810 R14: 0000000000000000 R15: ffff888079502800 [ 70.896050][ T5891] FS: 00005555872e9500(0000) GS:ffff88812522f000(0000) knlGS:0000000000000000 [ 70.896065][ T5891] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 70.896078][ T5891] CR2: 000055557caac8c8 CR3: 0000000075b6c000 CR4: 00000000003526f0 [ 70.896103][ T5891] Call Trace: [ 70.896110][ T5891] [ 70.896118][ T5891] cuse_channel_open+0x107/0x7c0 [ 70.896147][ T5891] ? __pfx_cuse_channel_open+0x10/0x10 [ 70.896169][ T5891] misc_open+0x2d5/0x350 [ 70.896194][ T5891] chrdev_open+0x4cd/0x5e0 [ 70.896215][ T5891] ? __pfx_chrdev_open+0x10/0x10 [ 70.896235][ T5891] ? fsnotify_open_perm_and_set_mode+0x135/0x6d0 [ 70.896255][ T5891] ? __pfx_chrdev_open+0x10/0x10 [ 70.896275][ T5891] do_dentry_open+0x785/0x14e0 [ 70.896303][ T5891] vfs_open+0x3b/0x340 [ 70.896325][ T5891] ? path_openat+0x2df0/0x3860 [ 70.896344][ T5891] path_openat+0x2e08/0x3860 [ 70.896367][ T5891] ? __pfx_stack_trace_save+0x10/0x10 [ 70.896390][ T5891] ? stack_depot_save_flags+0x33/0x810 [ 70.896417][ T5891] ? __pfx_path_openat+0x10/0x10 [ 70.896434][ T5891] ? __x64_sys_openat+0x138/0x170 [ 70.896459][ T5891] ? __lock_acquire+0x6b5/0x2cf0 [ 70.896493][ T5891] do_file_open+0x23e/0x4a0 [ 70.896513][ T5891] ? __pfx_do_file_open+0x10/0x10 [ 70.896538][ T5891] ? _raw_spin_unlock+0x28/0x50 [ 70.896558][ T5891] ? alloc_fd+0x64b/0x6c0 [ 70.896585][ T5891] do_sys_openat2+0x113/0x200 [ 70.896608][ T5891] ? __pfx_do_sys_openat2+0x10/0x10 [ 70.896632][ T5891] ? exc_page_fault+0x6a/0xc0 [ 70.896654][ T5891] ? do_user_addr_fault+0xc6f/0x1340 [ 70.896679][ T5891] __x64_sys_openat+0x138/0x170 [ 70.896701][ T5891] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 70.896718][ T5891] do_syscall_64+0x15f/0xf80 [ 70.896738][ T5891] ? trace_irq_disable+0x3b/0x140 [ 71.130451][ T5891] ? clear_bhb_loop+0x40/0x90 [ 71.135127][ T5891] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 71.141008][ T5891] RIP: 0033:0x7fbf9f19c819 [ 71.145426][ T5891] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 71.165109][ T5891] RSP: 002b:00007ffc68104678 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 71.173519][ T5891] RAX: ffffffffffffffda RBX: 00007fbf9f415fa0 RCX: 00007fbf9f19c819 [ 71.181480][ T5891] RDX: 0000000000000002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 71.189447][ T5891] RBP: 00007fbf9f232c91 R08: 0000000000000000 R09: 0000000000000000 [ 71.197404][ T5891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 71.205457][ T5891] R13: 00007fbf9f415fac R14: 00007fbf9f415fa0 R15: 00007fbf9f415fa0 [ 71.213436][ T5891] [ 71.216448][ T5891] Modules linked in: [ 71.220745][ T5891] ---[ end trace 0000000000000000 ]--- [ 71.239939][ T5891] RIP: 0010:fuse_dev_alloc_install+0x39/0x80 [ 71.246049][ T5891] Code: e8 bc f8 ff ff 48 89 c3 48 85 c0 74 47 e8 7f 57 7f fe 49 8d be 30 02 00 00 48 89 f8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 74 05 e8 6c 94 e9 fe 49 8b 96 30 02 00 00 49 c7 86 30 SYZFAIL: failed to send rpc fd=3 want=192 sent=0 n=-1 (errno 32: Broken pipe) [ 71.312856][ T5891] RSP: 0018:ffffc90004017710 EFLAGS: 00010202 [ 71.408030][ T5891] RAX: 0000000000000046 RBX: ffff888029906a00 RCX: dffffc0000000000 [ 71.430996][ T5891] RDX: 0000000000000000 RSI: ffffffff8dfcdb14 RDI: 0000000000000230 [ 71.455245][ T5891] RBP: ffff888029e96b90 R08: ffffffff9032e7f7 R09: 1ffffffff2065cfe [ 71.461633][ T1315] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.463624][ T5891] R10: dffffc0000000000 R11: fffffbfff2065cff R12: ffff888079502840 [ 71.470377][ T1315] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.479006][ T5891] R13: ffff888079502810 R14: 0000000000000000 R15: ffff888079502800 [ 71.494170][ T5891] FS: 00005555872e9500(0000) GS:ffff88812522f000(0000) knlGS:0000000000000000 [ 71.505151][ T5891] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 71.512093][ T5891] CR2: 00007ffcdab27f44 CR3: 0000000075b6c000 CR4: 00000000003526f0 [ 71.520612][ T5891] Kernel panic - not syncing: Fatal exception [ 71.527098][ T5891] Kernel Offset: disabled [ 71.531429][ T5891] Rebooting in 86400 seconds..